Move push authorization from the ARF to the receive pack
| | |
|---|
| | | return false;
|
|---|
| | | }
|
|---|
| | | if (action.equals(gitReceivePack)) {
|
|---|
| | | // Push request
|
|---|
| | | if (user.canPush(repository)) {
|
|---|
| | | return true;
|
|---|
| | | } else {
|
|---|
| | | // user is unauthorized to push to this repository
|
|---|
| | | logger.warn(MessageFormat.format("user {0} is not authorized to push to {1}",
|
|---|
| | | user.username, repository));
|
|---|
| | | return false;
|
|---|
| | | }
|
|---|
| | | // push permissions are enforced in the receive pack
|
|---|
| | | return true;
|
|---|
| | | } else if (action.equals(gitUploadPack)) {
|
|---|
| | | // Clone request
|
|---|
| | | if (user.canClone(repository)) {
|
|---|
