githubFork/gitblit.git - Solinfo Gitblit

			@@ -19,7 +19,6 @@
			import java.util.ArrayList;
			import java.util.Arrays;
			import java.util.Collections;
			import java.util.Date;
			import java.util.Iterator;
			import java.util.List;
			import java.util.Map;
			@@ -104,6 +103,22 @@

			// automatically convert backslashes to forward slashes
			repositoryModel.name = repositoryModel.name.replace('\\', '/');
			// Automatically replace // with /
			repositoryModel.name = repositoryModel.name.replace("//", "/");

			// prohibit folder paths
			if (repositoryModel.name.startsWith("/")) {
			error("Leading root folder references (/) are prohibited.");
			return;
			}
			if (repositoryModel.name.startsWith("../")) {
			error("Relative folder references (../) are prohibited.");
			return;
			}
			if (repositoryModel.name.contains("/../")) {
			error("Relative folder references (../) are prohibited.");
			return;
			}

			// confirm valid characters in repository name
			char[] validChars = { '/', '.', '_', '-' };
			@@ -128,7 +143,7 @@
			}

			// save the repository
			GitBlit.self().editRepositoryModel(oldName, repositoryModel, isCreate);
			GitBlit.self().updateRepositoryModel(oldName, repositoryModel, isCreate);

			// save the repository access list
			if (repositoryModel.accessRestriction.exceeds(AccessRestrictionType.NONE)) {
			@@ -164,6 +179,7 @@
			form.add(new CheckBox("useTickets"));
			form.add(new CheckBox("useDocs"));
			form.add(new CheckBox("showRemoteBranches"));
			form.add(new CheckBox("showReadme"));
			form.add(usersPalette);

			add(form);