| | |
|---|
| | | */
|
|---|
| | | public class GitFilter extends AccessRestrictionFilter {
|
|---|
| | |
|
|---|
| | | protected final String gitReceivePack = "/git-receive-pack";
|
|---|
| | | protected static final String gitReceivePack = "/git-receive-pack";
|
|---|
| | |
|
|---|
| | | protected final String gitUploadPack = "/git-upload-pack";
|
|---|
| | | protected static final String gitUploadPack = "/git-upload-pack";
|
|---|
| | |
|
|---|
| | | protected final String[] suffixes = { gitReceivePack, gitUploadPack, "/info/refs", "/HEAD",
|
|---|
| | | protected static final String[] suffixes = { gitReceivePack, gitUploadPack, "/info/refs", "/HEAD",
|
|---|
| | | "/objects" };
|
|---|
| | |
|
|---|
| | | /**
|
|---|
| | | * Extract the repository name from the url.
|
|---|
| | | * |
|---|
| | | * @param url
|
|---|
| | | * @return repository name
|
|---|
| | | */
|
|---|
| | | public static String getRepositoryName(String value) {
|
|---|
| | | String repository = value;
|
|---|
| | | // get the repository name from the url by finding a known url suffix
|
|---|
| | | for (String urlSuffix : suffixes) {
|
|---|
| | | if (repository.indexOf(urlSuffix) > -1) {
|
|---|
| | | repository = repository.substring(0, repository.indexOf(urlSuffix));
|
|---|
| | | }
|
|---|
| | | }
|
|---|
| | | return repository;
|
|---|
| | | }
|
|---|
| | |
|
|---|
| | | /**
|
|---|
| | | * Extract the repository name from the url.
|
|---|
| | |
|---|
| | | */
|
|---|
| | | @Override
|
|---|
| | | protected String extractRepositoryName(String url) {
|
|---|
| | | String repository = url;
|
|---|
| | | // get the repository name from the url by finding a known url suffix
|
|---|
| | | for (String urlSuffix : suffixes) {
|
|---|
| | | if (repository.indexOf(urlSuffix) > -1) {
|
|---|
| | | repository = repository.substring(0, repository.indexOf(urlSuffix));
|
|---|
| | | }
|
|---|
| | | }
|
|---|
| | | return repository;
|
|---|
| | | return GitFilter.getRepositoryName(url);
|
|---|
| | | }
|
|---|
| | |
|
|---|
| | | /**
|
|---|
| | |
|---|
| | | */
|
|---|
| | | @Override
|
|---|
| | | protected boolean isActionAllowed(RepositoryModel repository, String action) {
|
|---|
| | | if (action.equals(gitReceivePack)) {
|
|---|
| | | // Push request
|
|---|
| | | if (!repository.isBare) {
|
|---|
| | | logger.warn("Gitblit does not allow pushes to repositories with a working copy");
|
|---|
| | | return false;
|
|---|
| | | if (!StringUtils.isEmpty(action)) {
|
|---|
| | | if (action.equals(gitReceivePack)) {
|
|---|
| | | // Push request
|
|---|
| | | if (!repository.isBare) {
|
|---|
| | | logger.warn("Gitblit does not allow pushes to repositories with a working copy");
|
|---|
| | | return false;
|
|---|
| | | }
|
|---|
| | | }
|
|---|
| | | }
|
|---|
| | | return true;
|
|---|
| | |
|---|
| | | * Determine if the repository requires authentication.
|
|---|
| | | *
|
|---|
| | | * @param repository
|
|---|
| | | * @param action
|
|---|
| | | * @return true if authentication required
|
|---|
| | | */
|
|---|
| | | @Override
|
|---|
| | | protected boolean requiresAuthentication(RepositoryModel repository) {
|
|---|
| | | return repository.accessRestriction.atLeast(AccessRestrictionType.PUSH);
|
|---|
| | | protected boolean requiresAuthentication(RepositoryModel repository, String action) {
|
|---|
| | | if (gitUploadPack.equals(action)) {
|
|---|
| | | // send to client
|
|---|
| | | return repository.accessRestriction.atLeast(AccessRestrictionType.CLONE); |
|---|
| | | } else if (gitReceivePack.equals(action)) {
|
|---|
| | | // receive from client
|
|---|
| | | return repository.accessRestriction.atLeast(AccessRestrictionType.PUSH);
|
|---|
| | | }
|
|---|
| | | return false;
|
|---|
| | | }
|
|---|
| | |
|
|---|
| | | /**
|
|---|
