afan
/
gitea
Прати 1
Волим 0
Креирај огранак 0
Код Дискусије 0 Захтеви за спајање 0 Издања 0 Вики Activity
gitea源码
3 Комити
2 Гране
Грана: master
Гране Ознаке
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
gitea/routers/api/v1/user/key.go

key.go 8.1KB
Пермалинк Историја Датотека

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305 
  1. // Copyright 2015 The Gogs Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package user

  5. 

  6. import (

  7. 	std_ctx "context"

  8. 	"errors"

  9. 	"net/http"

  10. 

  11. 	asymkey_model "code.gitea.io/gitea/models/asymkey"

  12. 	"code.gitea.io/gitea/models/db"

  13. 	"code.gitea.io/gitea/models/perm"

  14. 	user_model "code.gitea.io/gitea/models/user"

  15. 	"code.gitea.io/gitea/modules/setting"

  16. 	api "code.gitea.io/gitea/modules/structs"

  17. 	"code.gitea.io/gitea/modules/web"

  18. 	"code.gitea.io/gitea/routers/api/v1/repo"

  19. 	"code.gitea.io/gitea/routers/api/v1/utils"

  20. 	asymkey_service "code.gitea.io/gitea/services/asymkey"

  21. 	"code.gitea.io/gitea/services/context"

  22. 	"code.gitea.io/gitea/services/convert"

  23. )

  24. 

  25. // appendPrivateInformation appends the owner and key type information to api.PublicKey

  26. func appendPrivateInformation(ctx std_ctx.Context, apiKey *api.PublicKey, key *asymkey_model.PublicKey, defaultUser *user_model.User) (*api.PublicKey, error) {

  27. 	switch key.Type {

  28. 	case asymkey_model.KeyTypeDeploy:

  29. 		apiKey.KeyType = "deploy"

  30. 	case asymkey_model.KeyTypeUser:

  31. 		apiKey.KeyType = "user"

  32. 

  33. 		if defaultUser.ID == key.OwnerID {

  34. 			apiKey.Owner = convert.ToUser(ctx, defaultUser, defaultUser)

  35. 		} else {

  36. 			user, err := user_model.GetUserByID(ctx, key.OwnerID)

  37. 			if err != nil {

  38. 				return apiKey, err

  39. 			}

  40. 			apiKey.Owner = convert.ToUser(ctx, user, user)

  41. 		}

  42. 	default:

  43. 		apiKey.KeyType = "unknown"

  44. 	}

  45. 	apiKey.ReadOnly = key.Mode == perm.AccessModeRead

  46. 	return apiKey, nil

  47. }

  48. 

  49. func composePublicKeysAPILink() string {

  50. 	return setting.AppURL + "api/v1/user/keys/"

  51. }

  52. 

  53. func listPublicKeys(ctx *context.APIContext, user *user_model.User) {

  54. 	var keys []*asymkey_model.PublicKey

  55. 	var err error

  56. 	var count int

  57. 

  58. 	fingerprint := ctx.FormString("fingerprint")

  59. 	username := ctx.PathParam("username")

  60. 

  61. 	if fingerprint != "" {

  62. 		var userID int64 // Unrestricted

  63. 		// Querying not just listing

  64. 		if username != "" {

  65. 			// Restrict to provided uid

  66. 			userID = user.ID

  67. 		}

  68. 		keys, err = db.Find[asymkey_model.PublicKey](ctx, asymkey_model.FindPublicKeyOptions{

  69. 			OwnerID:     userID,

  70. 			Fingerprint: fingerprint,

  71. 		})

  72. 		count = len(keys)

  73. 	} else {

  74. 		var total int64

  75. 		// Use ListPublicKeys

  76. 		keys, total, err = db.FindAndCount[asymkey_model.PublicKey](ctx, asymkey_model.FindPublicKeyOptions{

  77. 			ListOptions: utils.GetListOptions(ctx),

  78. 			OwnerID:     user.ID,

  79. 			NotKeytype:  asymkey_model.KeyTypePrincipal,

  80. 		})

  81. 		count = int(total)

  82. 	}

  83. 

  84. 	if err != nil {

  85. 		ctx.APIErrorInternal(err)

  86. 		return

  87. 	}

  88. 

  89. 	apiLink := composePublicKeysAPILink()

  90. 	apiKeys := make([]*api.PublicKey, len(keys))

  91. 	for i := range keys {

  92. 		apiKeys[i] = convert.ToPublicKey(apiLink, keys[i])

  93. 		if ctx.Doer.IsAdmin || ctx.Doer.ID == keys[i].OwnerID {

  94. 			apiKeys[i], _ = appendPrivateInformation(ctx, apiKeys[i], keys[i], user)

  95. 		}

  96. 	}

  97. 

  98. 	ctx.SetTotalCountHeader(int64(count))

  99. 	ctx.JSON(http.StatusOK, &apiKeys)

  100. }

  101. 

  102. // ListMyPublicKeys list all of the authenticated user's public keys

  103. func ListMyPublicKeys(ctx *context.APIContext) {

  104. 	// swagger:operation GET /user/keys user userCurrentListKeys

  105. 	// ---

  106. 	// summary: List the authenticated user's public keys

  107. 	// parameters:

  108. 	// - name: fingerprint

  109. 	//   in: query

  110. 	//   description: fingerprint of the key

  111. 	//   type: string

  112. 	// - name: page

  113. 	//   in: query

  114. 	//   description: page number of results to return (1-based)

  115. 	//   type: integer

  116. 	// - name: limit

  117. 	//   in: query

  118. 	//   description: page size of results

  119. 	//   type: integer

  120. 	// produces:

  121. 	// - application/json

  122. 	// responses:

  123. 	//   "200":

  124. 	//     "$ref": "#/responses/PublicKeyList"

  125. 

  126. 	listPublicKeys(ctx, ctx.Doer)

  127. }

  128. 

  129. // ListPublicKeys list the given user's public keys

  130. func ListPublicKeys(ctx *context.APIContext) {

  131. 	// swagger:operation GET /users/{username}/keys user userListKeys

  132. 	// ---

  133. 	// summary: List the given user's public keys

  134. 	// produces:

  135. 	// - application/json

  136. 	// parameters:

  137. 	// - name: username

  138. 	//   in: path

  139. 	//   description: username of the user whose public keys are to be listed

  140. 	//   type: string

  141. 	//   required: true

  142. 	// - name: fingerprint

  143. 	//   in: query

  144. 	//   description: fingerprint of the key

  145. 	//   type: string

  146. 	// - name: page

  147. 	//   in: query

  148. 	//   description: page number of results to return (1-based)

  149. 	//   type: integer

  150. 	// - name: limit

  151. 	//   in: query

  152. 	//   description: page size of results

  153. 	//   type: integer

  154. 	// responses:

  155. 	//   "200":

  156. 	//     "$ref": "#/responses/PublicKeyList"

  157. 	//   "404":

  158. 	//     "$ref": "#/responses/notFound"

  159. 

  160. 	listPublicKeys(ctx, ctx.ContextUser)

  161. }

  162. 

  163. // GetPublicKey get a public key

  164. func GetPublicKey(ctx *context.APIContext) {

  165. 	// swagger:operation GET /user/keys/{id} user userCurrentGetKey

  166. 	// ---

  167. 	// summary: Get a public key

  168. 	// produces:

  169. 	// - application/json

  170. 	// parameters:

  171. 	// - name: id

  172. 	//   in: path

  173. 	//   description: id of key to get

  174. 	//   type: integer

  175. 	//   format: int64

  176. 	//   required: true

  177. 	// responses:

  178. 	//   "200":

  179. 	//     "$ref": "#/responses/PublicKey"

  180. 	//   "404":

  181. 	//     "$ref": "#/responses/notFound"

  182. 

  183. 	key, err := asymkey_model.GetPublicKeyByID(ctx, ctx.PathParamInt64("id"))

  184. 	if err != nil {

  185. 		if asymkey_model.IsErrKeyNotExist(err) {

  186. 			ctx.APIErrorNotFound()

  187. 		} else {

  188. 			ctx.APIErrorInternal(err)

  189. 		}

  190. 		return

  191. 	}

  192. 

  193. 	apiLink := composePublicKeysAPILink()

  194. 	apiKey := convert.ToPublicKey(apiLink, key)

  195. 	if ctx.Doer.IsAdmin || ctx.Doer.ID == key.OwnerID {

  196. 		apiKey, _ = appendPrivateInformation(ctx, apiKey, key, ctx.Doer)

  197. 	}

  198. 	ctx.JSON(http.StatusOK, apiKey)

  199. }

  200. 

  201. // CreateUserPublicKey creates new public key to given user by ID.

  202. func CreateUserPublicKey(ctx *context.APIContext, form api.CreateKeyOption, uid int64) {

  203. 	if user_model.IsFeatureDisabledWithLoginType(ctx.Doer, setting.UserFeatureManageSSHKeys) {

  204. 		ctx.APIErrorNotFound("Not Found", errors.New("ssh keys setting is not allowed to be visited"))

  205. 		return

  206. 	}

  207. 

  208. 	content, err := asymkey_model.CheckPublicKeyString(form.Key)

  209. 	if err != nil {

  210. 		repo.HandleCheckKeyStringError(ctx, err)

  211. 		return

  212. 	}

  213. 

  214. 	key, err := asymkey_model.AddPublicKey(ctx, uid, form.Title, content, 0)

  215. 	if err != nil {

  216. 		repo.HandleAddKeyError(ctx, err)

  217. 		return

  218. 	}

  219. 	apiLink := composePublicKeysAPILink()

  220. 	apiKey := convert.ToPublicKey(apiLink, key)

  221. 	if ctx.Doer.IsAdmin || ctx.Doer.ID == key.OwnerID {

  222. 		apiKey, _ = appendPrivateInformation(ctx, apiKey, key, ctx.Doer)

  223. 	}

  224. 	ctx.JSON(http.StatusCreated, apiKey)

  225. }

  226. 

  227. // CreatePublicKey create one public key for me

  228. func CreatePublicKey(ctx *context.APIContext) {

  229. 	// swagger:operation POST /user/keys user userCurrentPostKey

  230. 	// ---

  231. 	// summary: Create a public key

  232. 	// consumes:

  233. 	// - application/json

  234. 	// produces:

  235. 	// - application/json

  236. 	// parameters:

  237. 	// - name: body

  238. 	//   in: body

  239. 	//   schema:

  240. 	//     "$ref": "#/definitions/CreateKeyOption"

  241. 	// responses:

  242. 	//   "201":

  243. 	//     "$ref": "#/responses/PublicKey"

  244. 	//   "422":

  245. 	//     "$ref": "#/responses/validationError"

  246. 

  247. 	form := web.GetForm(ctx).(*api.CreateKeyOption)

  248. 	CreateUserPublicKey(ctx, *form, ctx.Doer.ID)

  249. }

  250. 

  251. // DeletePublicKey delete one public key

  252. func DeletePublicKey(ctx *context.APIContext) {

  253. 	// swagger:operation DELETE /user/keys/{id} user userCurrentDeleteKey

  254. 	// ---

  255. 	// summary: Delete a public key

  256. 	// produces:

  257. 	// - application/json

  258. 	// parameters:

  259. 	// - name: id

  260. 	//   in: path

  261. 	//   description: id of key to delete

  262. 	//   type: integer

  263. 	//   format: int64

  264. 	//   required: true

  265. 	// responses:

  266. 	//   "204":

  267. 	//     "$ref": "#/responses/empty"

  268. 	//   "403":

  269. 	//     "$ref": "#/responses/forbidden"

  270. 	//   "404":

  271. 	//     "$ref": "#/responses/notFound"

  272. 

  273. 	if user_model.IsFeatureDisabledWithLoginType(ctx.Doer, setting.UserFeatureManageSSHKeys) {

  274. 		ctx.APIErrorNotFound("Not Found", errors.New("ssh keys setting is not allowed to be visited"))

  275. 		return

  276. 	}

  277. 

  278. 	id := ctx.PathParamInt64("id")

  279. 	externallyManaged, err := asymkey_model.PublicKeyIsExternallyManaged(ctx, id)

  280. 	if err != nil {

  281. 		if asymkey_model.IsErrKeyNotExist(err) {

  282. 			ctx.APIErrorNotFound()

  283. 		} else {

  284. 			ctx.APIErrorInternal(err)

  285. 		}

  286. 		return

  287. 	}

  288. 

  289. 	if externallyManaged {

  290. 		ctx.APIError(http.StatusForbidden, "SSH Key is externally managed for this user")

  291. 		return

  292. 	}

  293. 

  294. 	if err := asymkey_service.DeletePublicKey(ctx, ctx.Doer, id); err != nil {

  295. 		if asymkey_model.IsErrKeyAccessDenied(err) {

  296. 			ctx.APIError(http.StatusForbidden, "You do not have access to this key")

  297. 		} else {

  298. 			ctx.APIErrorInternal(err)

  299. 		}

  300. 		return

  301. 	}

  302. 

  303. 	ctx.Status(http.StatusNoContent)

  304. }