afan
/
gitea
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 0 Vikivietne Aktivitāte
gitea源码
3 Revīzijas
2 Atzari
Atzars: master
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no 'master'
${ noResults }
gitea/routers/api/v1/repo/migrate.go

migrate.go 8.9KB
Patstāvīgā saite Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278 
  1. // Copyright 2020 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package repo

  5. 

  6. import (

  7. 	"bytes"

  8. 	"errors"

  9. 	"fmt"

  10. 	"net/http"

  11. 	"strings"

  12. 

  13. 	"code.gitea.io/gitea/models/db"

  14. 	"code.gitea.io/gitea/models/organization"

  15. 	"code.gitea.io/gitea/models/perm"

  16. 	access_model "code.gitea.io/gitea/models/perm/access"

  17. 	repo_model "code.gitea.io/gitea/models/repo"

  18. 	user_model "code.gitea.io/gitea/models/user"

  19. 	"code.gitea.io/gitea/modules/git"

  20. 	"code.gitea.io/gitea/modules/graceful"

  21. 	"code.gitea.io/gitea/modules/lfs"

  22. 	"code.gitea.io/gitea/modules/log"

  23. 	base "code.gitea.io/gitea/modules/migration"

  24. 	"code.gitea.io/gitea/modules/setting"

  25. 	api "code.gitea.io/gitea/modules/structs"

  26. 	"code.gitea.io/gitea/modules/util"

  27. 	"code.gitea.io/gitea/modules/web"

  28. 	"code.gitea.io/gitea/services/context"

  29. 	"code.gitea.io/gitea/services/convert"

  30. 	"code.gitea.io/gitea/services/migrations"

  31. 	notify_service "code.gitea.io/gitea/services/notify"

  32. 	repo_service "code.gitea.io/gitea/services/repository"

  33. )

  34. 

  35. // Migrate migrate remote git repository to gitea

  36. func Migrate(ctx *context.APIContext) {

  37. 	// swagger:operation POST /repos/migrate repository repoMigrate

  38. 	// ---

  39. 	// summary: Migrate a remote git repository

  40. 	// consumes:

  41. 	// - application/json

  42. 	// produces:

  43. 	// - application/json

  44. 	// parameters:

  45. 	// - name: body

  46. 	//   in: body

  47. 	//   schema:

  48. 	//     "$ref": "#/definitions/MigrateRepoOptions"

  49. 	// responses:

  50. 	//   "201":

  51. 	//     "$ref": "#/responses/Repository"

  52. 	//   "403":

  53. 	//     "$ref": "#/responses/forbidden"

  54. 	//   "409":

  55. 	//     description: The repository with the same name already exists.

  56. 	//   "422":

  57. 	//     "$ref": "#/responses/validationError"

  58. 

  59. 	form := web.GetForm(ctx).(*api.MigrateRepoOptions)

  60. 

  61. 	// get repoOwner

  62. 	var (

  63. 		repoOwner *user_model.User

  64. 		err       error

  65. 	)

  66. 	if len(form.RepoOwner) != 0 {

  67. 		repoOwner, err = user_model.GetUserByName(ctx, form.RepoOwner)

  68. 	} else if form.RepoOwnerID != 0 {

  69. 		repoOwner, err = user_model.GetUserByID(ctx, form.RepoOwnerID)

  70. 	} else {

  71. 		repoOwner = ctx.Doer

  72. 	}

  73. 	if err != nil {

  74. 		if user_model.IsErrUserNotExist(err) {

  75. 			ctx.APIError(http.StatusUnprocessableEntity, err)

  76. 		} else {

  77. 			ctx.APIErrorInternal(err)

  78. 		}

  79. 		return

  80. 	}

  81. 

  82. 	if ctx.HasAPIError() {

  83. 		ctx.APIError(http.StatusUnprocessableEntity, ctx.GetErrMsg())

  84. 		return

  85. 	}

  86. 

  87. 	if !ctx.Doer.IsAdmin {

  88. 		if !repoOwner.IsOrganization() && ctx.Doer.ID != repoOwner.ID {

  89. 			ctx.APIError(http.StatusForbidden, "Given user is not an organization.")

  90. 			return

  91. 		}

  92. 

  93. 		if repoOwner.IsOrganization() {

  94. 			// Check ownership of organization.

  95. 			isOwner, err := organization.OrgFromUser(repoOwner).IsOwnedBy(ctx, ctx.Doer.ID)

  96. 			if err != nil {

  97. 				ctx.APIErrorInternal(err)

  98. 				return

  99. 			} else if !isOwner {

  100. 				ctx.APIError(http.StatusForbidden, "Given user is not owner of organization.")

  101. 				return

  102. 			}

  103. 		}

  104. 	}

  105. 

  106. 	remoteAddr, err := git.ParseRemoteAddr(form.CloneAddr, form.AuthUsername, form.AuthPassword)

  107. 	if err == nil {

  108. 		err = migrations.IsMigrateURLAllowed(remoteAddr, ctx.Doer)

  109. 	}

  110. 	if err != nil {

  111. 		handleRemoteAddrError(ctx, err)

  112. 		return

  113. 	}

  114. 

  115. 	gitServiceType := convert.ToGitServiceType(form.Service)

  116. 

  117. 	if form.Mirror && setting.Mirror.DisableNewPull {

  118. 		ctx.APIError(http.StatusForbidden, errors.New("the site administrator has disabled the creation of new pull mirrors"))

  119. 		return

  120. 	}

  121. 

  122. 	if setting.Repository.DisableMigrations {

  123. 		ctx.APIError(http.StatusForbidden, errors.New("the site administrator has disabled migrations"))

  124. 		return

  125. 	}

  126. 

  127. 	form.LFS = form.LFS && setting.LFS.StartServer

  128. 

  129. 	if form.LFS && len(form.LFSEndpoint) > 0 {

  130. 		ep := lfs.DetermineEndpoint("", form.LFSEndpoint)

  131. 		if ep == nil {

  132. 			ctx.APIErrorInternal(errors.New("the LFS endpoint is not valid"))

  133. 			return

  134. 		}

  135. 		err = migrations.IsMigrateURLAllowed(ep.String(), ctx.Doer)

  136. 		if err != nil {

  137. 			handleRemoteAddrError(ctx, err)

  138. 			return

  139. 		}

  140. 	}

  141. 

  142. 	opts := migrations.MigrateOptions{

  143. 		CloneAddr:      remoteAddr,

  144. 		RepoName:       form.RepoName,

  145. 		Description:    form.Description,

  146. 		Private:        form.Private || setting.Repository.ForcePrivate,

  147. 		Mirror:         form.Mirror,

  148. 		LFS:            form.LFS,

  149. 		LFSEndpoint:    form.LFSEndpoint,

  150. 		AuthUsername:   form.AuthUsername,

  151. 		AuthPassword:   form.AuthPassword,

  152. 		AuthToken:      form.AuthToken,

  153. 		Wiki:           form.Wiki,

  154. 		Issues:         form.Issues,

  155. 		Milestones:     form.Milestones,

  156. 		Labels:         form.Labels,

  157. 		Comments:       form.Issues || form.PullRequests,

  158. 		PullRequests:   form.PullRequests,

  159. 		Releases:       form.Releases,

  160. 		GitServiceType: gitServiceType,

  161. 		MirrorInterval: form.MirrorInterval,

  162. 	}

  163. 	if opts.Mirror {

  164. 		opts.Issues = false

  165. 		opts.Milestones = false

  166. 		opts.Labels = false

  167. 		opts.Comments = false

  168. 		opts.PullRequests = false

  169. 		opts.Releases = false

  170. 	}

  171. 	if gitServiceType == api.CodeCommitService {

  172. 		opts.AWSAccessKeyID = form.AWSAccessKeyID

  173. 		opts.AWSSecretAccessKey = form.AWSSecretAccessKey

  174. 	}

  175. 

  176. 	repo, err := repo_service.CreateRepositoryDirectly(ctx, ctx.Doer, repoOwner, repo_service.CreateRepoOptions{

  177. 		Name:           opts.RepoName,

  178. 		Description:    opts.Description,

  179. 		OriginalURL:    form.CloneAddr,

  180. 		GitServiceType: gitServiceType,

  181. 		IsPrivate:      opts.Private || setting.Repository.ForcePrivate,

  182. 		IsMirror:       opts.Mirror,

  183. 		Status:         repo_model.RepositoryBeingMigrated,

  184. 	}, false)

  185. 	if err != nil {

  186. 		handleMigrateError(ctx, repoOwner, err)

  187. 		return

  188. 	}

  189. 

  190. 	opts.MigrateToRepoID = repo.ID

  191. 

  192. 	defer func() {

  193. 		if e := recover(); e != nil {

  194. 			var buf bytes.Buffer

  195. 			fmt.Fprintf(&buf, "Handler crashed with error: %v", log.Stack(2))

  196. 

  197. 			err = errors.New(buf.String())

  198. 		}

  199. 

  200. 		if err == nil {

  201. 			notify_service.MigrateRepository(ctx, ctx.Doer, repoOwner, repo)

  202. 			return

  203. 		}

  204. 

  205. 		if repo != nil {

  206. 			if errDelete := repo_service.DeleteRepositoryDirectly(ctx, repo.ID); errDelete != nil {

  207. 				log.Error("DeleteRepository: %v", errDelete)

  208. 			}

  209. 		}

  210. 	}()

  211. 

  212. 	if repo, err = migrations.MigrateRepository(graceful.GetManager().HammerContext(), ctx.Doer, repoOwner.Name, opts, nil); err != nil {

  213. 		handleMigrateError(ctx, repoOwner, err)

  214. 		return

  215. 	}

  216. 

  217. 	log.Trace("Repository migrated: %s/%s", repoOwner.Name, form.RepoName)

  218. 	ctx.JSON(http.StatusCreated, convert.ToRepo(ctx, repo, access_model.Permission{AccessMode: perm.AccessModeAdmin}))

  219. }

  220. 

  221. func handleMigrateError(ctx *context.APIContext, repoOwner *user_model.User, err error) {

  222. 	switch {

  223. 	case repo_model.IsErrRepoAlreadyExist(err):

  224. 		ctx.APIError(http.StatusConflict, "The repository with the same name already exists.")

  225. 	case repo_model.IsErrRepoFilesAlreadyExist(err):

  226. 		ctx.APIError(http.StatusConflict, "Files already exist for this repository. Adopt them or delete them.")

  227. 	case migrations.IsRateLimitError(err):

  228. 		ctx.APIError(http.StatusUnprocessableEntity, "Remote visit addressed rate limitation.")

  229. 	case migrations.IsTwoFactorAuthError(err):

  230. 		ctx.APIError(http.StatusUnprocessableEntity, "Remote visit required two factors authentication.")

  231. 	case repo_model.IsErrReachLimitOfRepo(err):

  232. 		ctx.APIError(http.StatusUnprocessableEntity, fmt.Sprintf("You have already reached your limit of %d repositories.", repoOwner.MaxCreationLimit()))

  233. 	case db.IsErrNameReserved(err):

  234. 		ctx.APIError(http.StatusUnprocessableEntity, fmt.Sprintf("The username '%s' is reserved.", err.(db.ErrNameReserved).Name))

  235. 	case db.IsErrNameCharsNotAllowed(err):

  236. 		ctx.APIError(http.StatusUnprocessableEntity, fmt.Sprintf("The username '%s' contains invalid characters.", err.(db.ErrNameCharsNotAllowed).Name))

  237. 	case db.IsErrNamePatternNotAllowed(err):

  238. 		ctx.APIError(http.StatusUnprocessableEntity, fmt.Sprintf("The pattern '%s' is not allowed in a username.", err.(db.ErrNamePatternNotAllowed).Pattern))

  239. 	case git.IsErrInvalidCloneAddr(err):

  240. 		ctx.APIError(http.StatusUnprocessableEntity, err)

  241. 	case base.IsErrNotSupported(err):

  242. 		ctx.APIError(http.StatusUnprocessableEntity, err)

  243. 	default:

  244. 		err = util.SanitizeErrorCredentialURLs(err)

  245. 		if strings.Contains(err.Error(), "Authentication failed") ||

  246. 			strings.Contains(err.Error(), "Bad credentials") ||

  247. 			strings.Contains(err.Error(), "could not read Username") {

  248. 			ctx.APIError(http.StatusUnprocessableEntity, fmt.Sprintf("Authentication failed: %v.", err))

  249. 		} else if strings.Contains(err.Error(), "fatal:") {

  250. 			ctx.APIError(http.StatusUnprocessableEntity, fmt.Sprintf("Migration failed: %v.", err))

  251. 		} else {

  252. 			ctx.APIErrorInternal(err)

  253. 		}

  254. 	}

  255. }

  256. 

  257. func handleRemoteAddrError(ctx *context.APIContext, err error) {

  258. 	if git.IsErrInvalidCloneAddr(err) {

  259. 		addrErr := err.(*git.ErrInvalidCloneAddr)

  260. 		switch {

  261. 		case addrErr.IsURLError:

  262. 			ctx.APIError(http.StatusUnprocessableEntity, err)

  263. 		case addrErr.IsPermissionDenied:

  264. 			if addrErr.LocalPath {

  265. 				ctx.APIError(http.StatusUnprocessableEntity, "You are not allowed to import local repositories.")

  266. 			} else {

  267. 				ctx.APIError(http.StatusUnprocessableEntity, "You can not import from disallowed hosts.")

  268. 			}

  269. 		case addrErr.IsInvalidPath:

  270. 			ctx.APIError(http.StatusUnprocessableEntity, "Invalid local path, it does not exist or not a directory.")

  271. 		default:

  272. 			ctx.APIErrorInternal(fmt.Errorf("unknown error type (ErrInvalidCloneAddr): %w", err))

  273. 		}

  274. 	} else {

  275. 		ctx.APIErrorInternal(err)

  276. 	}

  277. }