gitlab-org--gitlab-foss/lib/api/internal.rb

module API
  # Internal access API
  class Internal < Grape::API
    namespace 'internal' do
      # Check if git command is allowed to project
      #
      # Params:
      #   key_id - ssh key id for Git over SSH
      #   user_id - user id for Git over HTTP
      #   project - project path with namespace
      #   action - git action (git-upload-pack or git-receive-pack)
      #   ref - branch name
      #   forced_push - forced_push
      #
      post "/allowed" do
        status 200
        project_path = params[:project]

        # Check for *.wiki repositories.
        # Strip out the .wiki from the pathname before finding the
        # project. This applies the correct project permissions to
        # the wiki repository as well.
        access =
          if project_path =~ /\.wiki\Z/
            project_path.sub!(/\.wiki\Z/, '')
            Gitlab::GitAccessWiki.new
          else
            Gitlab::GitAccess.new
          end

        project = Project.find_with_namespace(project_path)
        return false unless project

        actor = if params[:key_id]
                  Key.find(params[:key_id])
                elsif params[:user_id]
                  User.find(params[:user_id])
                end

        return false unless actor

        access.allowed?(
          actor,
          params[:action],
          project,
          params[:changes]
        )
      end

      #
      # Discover user by ssh key
      #
      get "/discover" do
        key = Key.find(params[:key_id])
        present key.user, with: Entities::UserSafe
      end

      get "/check" do
        {
          api_version: API.version,
          gitlab_version: Gitlab::VERSION,
          gitlab_rev: Gitlab::REVISION,
        }
      end
    end
  end
end
Refactor API classes. So api classes like Gitlab::Issues become API::Issues 2013-05-14 12:33:31 +00:00			`module API`
Fixed: post-receive, project remove, tests 2013-02-05 10:47:50 +00:00			`# Internal access API`
Internal API 2013-02-04 15:53:43 +00:00			`class Internal < Grape::API`
Fixed: post-receive, project remove, tests 2013-02-05 10:47:50 +00:00			`namespace 'internal' do`
Use GitAccess in internal api Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-03-19 19:02:12 +00:00			`# Check if git command is allowed to project`
Fixed: post-receive, project remove, tests 2013-02-05 10:47:50 +00:00			`#`
specs for api/internal 2013-02-26 20:53:59 +00:00			`# Params:`
Use GitAccess in internal api Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-03-19 19:02:12 +00:00			`# key_id - ssh key id for Git over SSH`
			`# user_id - user id for Git over HTTP`
specs for api/internal 2013-02-26 20:53:59 +00:00			`# project - project path with namespace`
			`# action - git action (git-upload-pack or git-receive-pack)`
			`# ref - branch name`
first setup to protect protected branched to force updates 2014-01-28 21:36:50 +00:00			`# forced_push - forced_push`
specs for api/internal 2013-02-26 20:53:59 +00:00			`#`
/api/allowed use POST now Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-09-03 06:06:16 +00:00			`post "/allowed" do`
Make sure /api/allowed return 200 status code Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-09-03 10:33:44 +00:00			`status 200`
Developers can push to wiki repo. Protected branches does not affect wiki repo any more Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-10-07 13:05:24 +00:00			`project_path = params[:project]`
Make sure /api/allowed return 200 status code Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-09-03 10:33:44 +00:00
Replace current Wiki system with Gollum Wikis. This commit replaces the old database backed Wiki system with the excellent Gollum git based Wiki system. The UI has been updated to allow for utilizing the extra features that Gollum provides. Specifically: * Edit page now allows you to choose the content format. * Edit page allows you to provide a commit message for the change. * History page now shows Format, Commit Message, and Commit Hash. * A new Git Access page has been added with the Wiki Repo URL. * The default page has been changed to Home from Index to match the Gollum standard. The old Wiki model has been left in tact to provide for the development of a migration script that will move all content stored in the old Wiki system into new Gollum Wikis. 2013-03-04 03:43:52 +00:00			`# Check for *.wiki repositories.`
			`# Strip out the .wiki from the pathname before finding the`
			`# project. This applies the correct project permissions to`
			`# the wiki repository as well.`
Developers can push to wiki repo. Protected branches does not affect wiki repo any more Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-10-07 13:05:24 +00:00			`access =`
			`if project_path =~ /\.wiki\Z/`
Improve wiki path parsing in internal api Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-10-07 14:28:55 +00:00			`project_path.sub!(/\.wiki\Z/, '')`
Developers can push to wiki repo. Protected branches does not affect wiki repo any more Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-10-07 13:05:24 +00:00			`Gitlab::GitAccessWiki.new`
			`else`
			`Gitlab::GitAccess.new`
			`end`

Replace current Wiki system with Gollum Wikis. This commit replaces the old database backed Wiki system with the excellent Gollum git based Wiki system. The UI has been updated to allow for utilizing the extra features that Gollum provides. Specifically: * Edit page now allows you to choose the content format. * Edit page allows you to provide a commit message for the change. * History page now shows Format, Commit Message, and Commit Hash. * A new Git Access page has been added with the Wiki Repo URL. * The default page has been changed to Home from Index to match the Gollum standard. The old Wiki model has been left in tact to provide for the development of a migration script that will move all content stored in the old Wiki system into new Gollum Wikis. 2013-03-04 03:43:52 +00:00			`project = Project.find_with_namespace(project_path)`
Fix: API 500 error when project does not exists 2013-03-14 07:02:36 +00:00			`return false unless project`
deploy keys support for gitlab-shell api 2013-02-07 07:56:13 +00:00
Use GitAccess in internal api Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-03-19 19:02:12 +00:00			`actor = if params[:key_id]`
			`Key.find(params[:key_id])`
			`elsif params[:user_id]`
			`User.find(params[:user_id])`
			`end`

			`return false unless actor`

Developers can push to wiki repo. Protected branches does not affect wiki repo any more Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-10-07 13:05:24 +00:00			`access.allowed?(`
Use GitAccess in internal api Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-03-19 19:02:12 +00:00			`actor,`
			`params[:action],`
			`project,`
Rewrite GitAccess for gitlab-shell v2 Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-09-01 16:57:25 +00:00			`params[:changes]`
Use GitAccess in internal api Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-03-19 19:02:12 +00:00			`)`
Fixed: post-receive, project remove, tests 2013-02-05 10:47:50 +00:00			`end`

			`#`
			`# Discover user by ssh key`
			`#`
			`get "/discover" do`
			`key = Key.find(params[:key_id])`
Reduce amount of user info provided with internal api 2013-03-11 12:35:00 +00:00			`present key.user, with: Entities::UserSafe`
Fixed: post-receive, project remove, tests 2013-02-05 10:47:50 +00:00			`end`
api check call 2013-02-05 13:55:49 +00:00
			`get "/check" do`
			`{`
Refactor API classes. So api classes like Gitlab::Issues become API::Issues 2013-05-14 12:33:31 +00:00			`api_version: API.version,`
uppercase Gitlab version and revision constants. check api return gitlab version now 2013-02-16 12:42:22 +00:00			`gitlab_version: Gitlab::VERSION,`
			`gitlab_rev: Gitlab::REVISION,`
api check call 2013-02-05 13:55:49 +00:00			`}`
			`end`
Internal API 2013-02-04 15:53:43 +00:00			`end`
			`end`
			`end`