afan
/
gitea
Obserwuj 1
Gwiazdka 0
Forkuj 0
Kod Problemy 0 Pull Requests 0 Wydania 0 Wiki Aktywność
gitea源码
1 Commit
2 Gałęzie
Drzewo: 61128e8e94
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z '61128e8e94'
${ noResults }
gitea/services/context/base.go

base.go 6.6KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203 
  1. // Copyright 2020 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package context

  5. 

  6. import (

  7. 	"fmt"

  8. 	"html/template"

  9. 	"io"

  10. 	"net/http"

  11. 	"strconv"

  12. 	"strings"

  13. 

  14. 	"code.gitea.io/gitea/modules/httplib"

  15. 	"code.gitea.io/gitea/modules/json"

  16. 	"code.gitea.io/gitea/modules/log"

  17. 	"code.gitea.io/gitea/modules/reqctx"

  18. 	"code.gitea.io/gitea/modules/setting"

  19. 	"code.gitea.io/gitea/modules/translation"

  20. 	"code.gitea.io/gitea/modules/web/middleware"

  21. )

  22. 

  23. type BaseContextKeyType struct{}

  24. 

  25. var BaseContextKey BaseContextKeyType

  26. 

  27. // Base is the base context for all web handlers

  28. // ATTENTION: This struct should never be manually constructed in routes/services,

  29. // it has many internal details which should be carefully prepared by the framework.

  30. // If it is abused, it would cause strange bugs like panic/resource-leak.

  31. type Base struct {

  32. 	reqctx.RequestContext

  33. 

  34. 	Resp ResponseWriter

  35. 	Req  *http.Request

  36. 

  37. 	// Data is prepared by ContextDataStore middleware, this field only refers to the pre-created/prepared ContextData.

  38. 	// Although it's mainly used for MVC templates, sometimes it's also used to pass data between middlewares/handler

  39. 	Data reqctx.ContextData

  40. 

  41. 	// Locale is mainly for Web context, although the API context also uses it in some cases: message response, form validation

  42. 	Locale translation.Locale

  43. }

  44. 

  45. // AppendAccessControlExposeHeaders append headers by name to "Access-Control-Expose-Headers" header

  46. func (b *Base) AppendAccessControlExposeHeaders(names ...string) {

  47. 	val := b.RespHeader().Get("Access-Control-Expose-Headers")

  48. 	if len(val) != 0 {

  49. 		b.RespHeader().Set("Access-Control-Expose-Headers", fmt.Sprintf("%s, %s", val, strings.Join(names, ", ")))

  50. 	} else {

  51. 		b.RespHeader().Set("Access-Control-Expose-Headers", strings.Join(names, ", "))

  52. 	}

  53. }

  54. 

  55. // SetTotalCountHeader set "X-Total-Count" header

  56. func (b *Base) SetTotalCountHeader(total int64) {

  57. 	b.RespHeader().Set("X-Total-Count", strconv.FormatInt(total, 10))

  58. 	b.AppendAccessControlExposeHeaders("X-Total-Count")

  59. }

  60. 

  61. // Written returns true if there are something sent to web browser

  62. func (b *Base) Written() bool {

  63. 	return b.Resp.WrittenStatus() != 0

  64. }

  65. 

  66. func (b *Base) WrittenStatus() int {

  67. 	return b.Resp.WrittenStatus()

  68. }

  69. 

  70. // Status writes status code

  71. func (b *Base) Status(status int) {

  72. 	b.Resp.WriteHeader(status)

  73. }

  74. 

  75. // Write writes data to web browser

  76. func (b *Base) Write(bs []byte) (int, error) {

  77. 	return b.Resp.Write(bs)

  78. }

  79. 

  80. // RespHeader returns the response header

  81. func (b *Base) RespHeader() http.Header {

  82. 	return b.Resp.Header()

  83. }

  84. 

  85. // HTTPError returned an error to web browser

  86. // FIXME: many calls to this HTTPError are not right: it shouldn't expose err.Error() directly, it doesn't accept more than one content

  87. func (b *Base) HTTPError(status int, contents ...string) {

  88. 	v := http.StatusText(status)

  89. 	if len(contents) > 0 {

  90. 		v = contents[0]

  91. 	}

  92. 	http.Error(b.Resp, v, status)

  93. }

  94. 

  95. // JSON render content as JSON

  96. func (b *Base) JSON(status int, content any) {

  97. 	b.Resp.Header().Set("Content-Type", "application/json;charset=utf-8")

  98. 	b.Resp.WriteHeader(status)

  99. 	if err := json.NewEncoder(b.Resp).Encode(content); err != nil {

  100. 		log.Error("Render JSON failed: %v", err)

  101. 	}

  102. }

  103. 

  104. // RemoteAddr returns the client machine ip address

  105. func (b *Base) RemoteAddr() string {

  106. 	return b.Req.RemoteAddr

  107. }

  108. 

  109. // PlainTextBytes renders bytes as plain text

  110. func (b *Base) plainTextInternal(skip, status int, bs []byte) {

  111. 	statusPrefix := status / 100

  112. 	if statusPrefix == 4 || statusPrefix == 5 {

  113. 		log.Log(skip, log.TRACE, "plainTextInternal (status=%d): %s", status, string(bs))

  114. 	}

  115. 	b.Resp.Header().Set("Content-Type", "text/plain;charset=utf-8")

  116. 	b.Resp.Header().Set("X-Content-Type-Options", "nosniff")

  117. 	b.Resp.WriteHeader(status)

  118. 	_, _ = b.Resp.Write(bs)

  119. }

  120. 

  121. // PlainTextBytes renders bytes as plain text

  122. func (b *Base) PlainTextBytes(status int, bs []byte) {

  123. 	b.plainTextInternal(2, status, bs)

  124. }

  125. 

  126. // PlainText renders content as plain text

  127. func (b *Base) PlainText(status int, text string) {

  128. 	b.plainTextInternal(2, status, []byte(text))

  129. }

  130. 

  131. // Redirect redirects the request

  132. func (b *Base) Redirect(location string, status ...int) {

  133. 	code := http.StatusSeeOther

  134. 	if len(status) == 1 {

  135. 		code = status[0]

  136. 	}

  137. 

  138. 	if !httplib.IsRelativeURL(location) {

  139. 		// Some browsers (Safari) have buggy behavior for Cookie + Cache + External Redirection, eg: /my-path => https://other/path

  140. 		// 1. the first request to "/my-path" contains cookie

  141. 		// 2. some time later, the request to "/my-path" doesn't contain cookie (caused by Prevent web tracking)

  142. 		// 3. Gitea's Sessioner doesn't see the session cookie, so it generates a new session id, and returns it to browser

  143. 		// 4. then the browser accepts the empty session, then the user is logged out

  144. 		// So in this case, we should remove the session cookie from the response header

  145. 		removeSessionCookieHeader(b.Resp)

  146. 	}

  147. 	// in case the request is made by htmx, have it redirect the browser instead of trying to follow the redirect inside htmx

  148. 	if b.Req.Header.Get("HX-Request") == "true" {

  149. 		b.Resp.Header().Set("HX-Redirect", location)

  150. 		// we have to return a non-redirect status code so XMLHTTPRequest will not immediately follow the redirect

  151. 		// so as to give htmx redirect logic a chance to run

  152. 		b.Status(http.StatusNoContent)

  153. 		return

  154. 	}

  155. 	http.Redirect(b.Resp, b.Req, location, code)

  156. }

  157. 

  158. type ServeHeaderOptions httplib.ServeHeaderOptions

  159. 

  160. func (b *Base) SetServeHeaders(opt *ServeHeaderOptions) {

  161. 	httplib.ServeSetHeaders(b.Resp, (*httplib.ServeHeaderOptions)(opt))

  162. }

  163. 

  164. // ServeContent serves content to http request

  165. func (b *Base) ServeContent(r io.ReadSeeker, opts *ServeHeaderOptions) {

  166. 	httplib.ServeSetHeaders(b.Resp, (*httplib.ServeHeaderOptions)(opts))

  167. 	http.ServeContent(b.Resp, b.Req, opts.Filename, opts.LastModified, r)

  168. }

  169. 

  170. func (b *Base) Tr(msg string, args ...any) template.HTML {

  171. 	return b.Locale.Tr(msg, args...)

  172. }

  173. 

  174. func (b *Base) TrN(cnt any, key1, keyN string, args ...any) template.HTML {

  175. 	return b.Locale.TrN(cnt, key1, keyN, args...)

  176. }

  177. 

  178. func NewBaseContext(resp http.ResponseWriter, req *http.Request) *Base {

  179. 	reqCtx := reqctx.FromContext(req.Context())

  180. 	b := &Base{

  181. 		RequestContext: reqCtx,

  182. 

  183. 		Req:    req,

  184. 		Resp:   WrapResponseWriter(resp),

  185. 		Locale: middleware.Locale(resp, req),

  186. 		Data:   reqCtx.GetData(),

  187. 	}

  188. 	b.Req = b.Req.WithContext(b)

  189. 	reqCtx.SetContextValue(BaseContextKey, b)

  190. 	reqCtx.SetContextValue(translation.ContextKey, b.Locale)

  191. 	reqCtx.SetContextValue(httplib.RequestContextKey, b.Req)

  192. 	return b

  193. }

  194. 

  195. func NewBaseContextForTest(resp http.ResponseWriter, req *http.Request) *Base {

  196. 	if !setting.IsInTesting {

  197. 		panic("This function is only for testing")

  198. 	}

  199. 	ctx := reqctx.NewRequestContextForTest(req.Context())

  200. 	*req = *req.WithContext(ctx)

  201. 	return NewBaseContext(resp, req)

  202. }