afan
/
gitea
Volgen 1
Ster 0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Publicaties 0 Wiki Activiteit
gitea源码
3 Commits
2 Branches
Tree: 6d2efddf43
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van '6d2efddf43'
${ noResults }
gitea/routers/api/v1/repo/release_attachment.go

release_attachment.go 10KB
Geschiedenis Ruw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403 
  1. // Copyright 2018 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package repo

  5. 

  6. import (

  7. 	"io"

  8. 	"net/http"

  9. 	"strings"

  10. 

  11. 	repo_model "code.gitea.io/gitea/models/repo"

  12. 	"code.gitea.io/gitea/modules/log"

  13. 	"code.gitea.io/gitea/modules/setting"

  14. 	api "code.gitea.io/gitea/modules/structs"

  15. 	"code.gitea.io/gitea/modules/web"

  16. 	attachment_service "code.gitea.io/gitea/services/attachment"

  17. 	"code.gitea.io/gitea/services/context"

  18. 	"code.gitea.io/gitea/services/context/upload"

  19. 	"code.gitea.io/gitea/services/convert"

  20. )

  21. 

  22. func checkReleaseMatchRepo(ctx *context.APIContext, releaseID int64) bool {

  23. 	release, err := repo_model.GetReleaseByID(ctx, releaseID)

  24. 	if err != nil {

  25. 		if repo_model.IsErrReleaseNotExist(err) {

  26. 			ctx.APIErrorNotFound()

  27. 			return false

  28. 		}

  29. 		ctx.APIErrorInternal(err)

  30. 		return false

  31. 	}

  32. 	if release.RepoID != ctx.Repo.Repository.ID {

  33. 		ctx.APIErrorNotFound()

  34. 		return false

  35. 	}

  36. 	return true

  37. }

  38. 

  39. // GetReleaseAttachment gets a single attachment of the release

  40. func GetReleaseAttachment(ctx *context.APIContext) {

  41. 	// swagger:operation GET /repos/{owner}/{repo}/releases/{id}/assets/{attachment_id} repository repoGetReleaseAttachment

  42. 	// ---

  43. 	// summary: Get a release attachment

  44. 	// produces:

  45. 	// - application/json

  46. 	// parameters:

  47. 	// - name: owner

  48. 	//   in: path

  49. 	//   description: owner of the repo

  50. 	//   type: string

  51. 	//   required: true

  52. 	// - name: repo

  53. 	//   in: path

  54. 	//   description: name of the repo

  55. 	//   type: string

  56. 	//   required: true

  57. 	// - name: id

  58. 	//   in: path

  59. 	//   description: id of the release

  60. 	//   type: integer

  61. 	//   format: int64

  62. 	//   required: true

  63. 	// - name: attachment_id

  64. 	//   in: path

  65. 	//   description: id of the attachment to get

  66. 	//   type: integer

  67. 	//   format: int64

  68. 	//   required: true

  69. 	// responses:

  70. 	//   "200":

  71. 	//     "$ref": "#/responses/Attachment"

  72. 	//   "404":

  73. 	//     "$ref": "#/responses/notFound"

  74. 

  75. 	releaseID := ctx.PathParamInt64("id")

  76. 	if !checkReleaseMatchRepo(ctx, releaseID) {

  77. 		return

  78. 	}

  79. 

  80. 	attachID := ctx.PathParamInt64("attachment_id")

  81. 	attach, err := repo_model.GetAttachmentByID(ctx, attachID)

  82. 	if err != nil {

  83. 		if repo_model.IsErrAttachmentNotExist(err) {

  84. 			ctx.APIErrorNotFound()

  85. 			return

  86. 		}

  87. 		ctx.APIErrorInternal(err)

  88. 		return

  89. 	}

  90. 	if attach.ReleaseID != releaseID {

  91. 		log.Info("User requested attachment is not in release, release_id %v, attachment_id: %v", releaseID, attachID)

  92. 		ctx.APIErrorNotFound()

  93. 		return

  94. 	}

  95. 	// FIXME Should prove the existence of the given repo, but results in unnecessary database requests

  96. 	ctx.JSON(http.StatusOK, convert.ToAPIAttachment(ctx.Repo.Repository, attach))

  97. }

  98. 

  99. // ListReleaseAttachments lists all attachments of the release

  100. func ListReleaseAttachments(ctx *context.APIContext) {

  101. 	// swagger:operation GET /repos/{owner}/{repo}/releases/{id}/assets repository repoListReleaseAttachments

  102. 	// ---

  103. 	// summary: List release's attachments

  104. 	// produces:

  105. 	// - application/json

  106. 	// parameters:

  107. 	// - name: owner

  108. 	//   in: path

  109. 	//   description: owner of the repo

  110. 	//   type: string

  111. 	//   required: true

  112. 	// - name: repo

  113. 	//   in: path

  114. 	//   description: name of the repo

  115. 	//   type: string

  116. 	//   required: true

  117. 	// - name: id

  118. 	//   in: path

  119. 	//   description: id of the release

  120. 	//   type: integer

  121. 	//   format: int64

  122. 	//   required: true

  123. 	// responses:

  124. 	//   "200":

  125. 	//     "$ref": "#/responses/AttachmentList"

  126. 	//   "404":

  127. 	//     "$ref": "#/responses/notFound"

  128. 

  129. 	releaseID := ctx.PathParamInt64("id")

  130. 	release, err := repo_model.GetReleaseByID(ctx, releaseID)

  131. 	if err != nil {

  132. 		if repo_model.IsErrReleaseNotExist(err) {

  133. 			ctx.APIErrorNotFound()

  134. 			return

  135. 		}

  136. 		ctx.APIErrorInternal(err)

  137. 		return

  138. 	}

  139. 	if release.RepoID != ctx.Repo.Repository.ID {

  140. 		ctx.APIErrorNotFound()

  141. 		return

  142. 	}

  143. 	if err := release.LoadAttributes(ctx); err != nil {

  144. 		ctx.APIErrorInternal(err)

  145. 		return

  146. 	}

  147. 	ctx.JSON(http.StatusOK, convert.ToAPIRelease(ctx, ctx.Repo.Repository, release).Attachments)

  148. }

  149. 

  150. // CreateReleaseAttachment creates an attachment and saves the given file

  151. func CreateReleaseAttachment(ctx *context.APIContext) {

  152. 	// swagger:operation POST /repos/{owner}/{repo}/releases/{id}/assets repository repoCreateReleaseAttachment

  153. 	// ---

  154. 	// summary: Create a release attachment

  155. 	// produces:

  156. 	// - application/json

  157. 	// consumes:

  158. 	// - multipart/form-data

  159. 	// - application/octet-stream

  160. 	// parameters:

  161. 	// - name: owner

  162. 	//   in: path

  163. 	//   description: owner of the repo

  164. 	//   type: string

  165. 	//   required: true

  166. 	// - name: repo

  167. 	//   in: path

  168. 	//   description: name of the repo

  169. 	//   type: string

  170. 	//   required: true

  171. 	// - name: id

  172. 	//   in: path

  173. 	//   description: id of the release

  174. 	//   type: integer

  175. 	//   format: int64

  176. 	//   required: true

  177. 	// - name: name

  178. 	//   in: query

  179. 	//   description: name of the attachment

  180. 	//   type: string

  181. 	//   required: false

  182. 	// - name: attachment

  183. 	//   in: formData

  184. 	//   description: attachment to upload

  185. 	//   type: file

  186. 	//   required: false

  187. 	// responses:

  188. 	//   "201":

  189. 	//     "$ref": "#/responses/Attachment"

  190. 	//   "400":

  191. 	//     "$ref": "#/responses/error"

  192. 	//   "404":

  193. 	//     "$ref": "#/responses/notFound"

  194. 

  195. 	// Check if attachments are enabled

  196. 	if !setting.Attachment.Enabled {

  197. 		ctx.APIErrorNotFound("Attachment is not enabled")

  198. 		return

  199. 	}

  200. 

  201. 	// Check if release exists an load release

  202. 	releaseID := ctx.PathParamInt64("id")

  203. 	if !checkReleaseMatchRepo(ctx, releaseID) {

  204. 		return

  205. 	}

  206. 

  207. 	// Get uploaded file from request

  208. 	var content io.ReadCloser

  209. 	var filename string

  210. 	var size int64 = -1

  211. 

  212. 	if strings.HasPrefix(strings.ToLower(ctx.Req.Header.Get("Content-Type")), "multipart/form-data") {

  213. 		file, header, err := ctx.Req.FormFile("attachment")

  214. 		if err != nil {

  215. 			ctx.APIErrorInternal(err)

  216. 			return

  217. 		}

  218. 		defer file.Close()

  219. 

  220. 		content = file

  221. 		size = header.Size

  222. 		filename = header.Filename

  223. 		if name := ctx.FormString("name"); name != "" {

  224. 			filename = name

  225. 		}

  226. 	} else {

  227. 		content = ctx.Req.Body

  228. 		filename = ctx.FormString("name")

  229. 	}

  230. 

  231. 	if filename == "" {

  232. 		ctx.APIError(http.StatusBadRequest, "Could not determine name of attachment.")

  233. 		return

  234. 	}

  235. 

  236. 	// Create a new attachment and save the file

  237. 	attach, err := attachment_service.UploadAttachment(ctx, content, setting.Repository.Release.AllowedTypes, size, &repo_model.Attachment{

  238. 		Name:       filename,

  239. 		UploaderID: ctx.Doer.ID,

  240. 		RepoID:     ctx.Repo.Repository.ID,

  241. 		ReleaseID:  releaseID,

  242. 	})

  243. 	if err != nil {

  244. 		if upload.IsErrFileTypeForbidden(err) {

  245. 			ctx.APIError(http.StatusBadRequest, err)

  246. 			return

  247. 		}

  248. 		ctx.APIErrorInternal(err)

  249. 		return

  250. 	}

  251. 

  252. 	ctx.JSON(http.StatusCreated, convert.ToAPIAttachment(ctx.Repo.Repository, attach))

  253. }

  254. 

  255. // EditReleaseAttachment updates the given attachment

  256. func EditReleaseAttachment(ctx *context.APIContext) {

  257. 	// swagger:operation PATCH /repos/{owner}/{repo}/releases/{id}/assets/{attachment_id} repository repoEditReleaseAttachment

  258. 	// ---

  259. 	// summary: Edit a release attachment

  260. 	// produces:

  261. 	// - application/json

  262. 	// consumes:

  263. 	// - application/json

  264. 	// parameters:

  265. 	// - name: owner

  266. 	//   in: path

  267. 	//   description: owner of the repo

  268. 	//   type: string

  269. 	//   required: true

  270. 	// - name: repo

  271. 	//   in: path

  272. 	//   description: name of the repo

  273. 	//   type: string

  274. 	//   required: true

  275. 	// - name: id

  276. 	//   in: path

  277. 	//   description: id of the release

  278. 	//   type: integer

  279. 	//   format: int64

  280. 	//   required: true

  281. 	// - name: attachment_id

  282. 	//   in: path

  283. 	//   description: id of the attachment to edit

  284. 	//   type: integer

  285. 	//   format: int64

  286. 	//   required: true

  287. 	// - name: body

  288. 	//   in: body

  289. 	//   schema:

  290. 	//     "$ref": "#/definitions/EditAttachmentOptions"

  291. 	// responses:

  292. 	//   "201":

  293. 	//     "$ref": "#/responses/Attachment"

  294. 	//   "422":

  295. 	//     "$ref": "#/responses/validationError"

  296. 	//   "404":

  297. 	//     "$ref": "#/responses/notFound"

  298. 

  299. 	form := web.GetForm(ctx).(*api.EditAttachmentOptions)

  300. 

  301. 	// Check if release exists an load release

  302. 	releaseID := ctx.PathParamInt64("id")

  303. 	if !checkReleaseMatchRepo(ctx, releaseID) {

  304. 		return

  305. 	}

  306. 

  307. 	attachID := ctx.PathParamInt64("attachment_id")

  308. 	attach, err := repo_model.GetAttachmentByID(ctx, attachID)

  309. 	if err != nil {

  310. 		if repo_model.IsErrAttachmentNotExist(err) {

  311. 			ctx.APIErrorNotFound()

  312. 			return

  313. 		}

  314. 		ctx.APIErrorInternal(err)

  315. 		return

  316. 	}

  317. 	if attach.ReleaseID != releaseID {

  318. 		log.Info("User requested attachment is not in release, release_id %v, attachment_id: %v", releaseID, attachID)

  319. 		ctx.APIErrorNotFound()

  320. 		return

  321. 	}

  322. 	// FIXME Should prove the existence of the given repo, but results in unnecessary database requests

  323. 	if form.Name != "" {

  324. 		attach.Name = form.Name

  325. 	}

  326. 

  327. 	if err := attachment_service.UpdateAttachment(ctx, setting.Repository.Release.AllowedTypes, attach); err != nil {

  328. 		if upload.IsErrFileTypeForbidden(err) {

  329. 			ctx.APIError(http.StatusUnprocessableEntity, err)

  330. 			return

  331. 		}

  332. 		ctx.APIErrorInternal(err)

  333. 		return

  334. 	}

  335. 	ctx.JSON(http.StatusCreated, convert.ToAPIAttachment(ctx.Repo.Repository, attach))

  336. }

  337. 

  338. // DeleteReleaseAttachment delete a given attachment

  339. func DeleteReleaseAttachment(ctx *context.APIContext) {

  340. 	// swagger:operation DELETE /repos/{owner}/{repo}/releases/{id}/assets/{attachment_id} repository repoDeleteReleaseAttachment

  341. 	// ---

  342. 	// summary: Delete a release attachment

  343. 	// produces:

  344. 	// - application/json

  345. 	// parameters:

  346. 	// - name: owner

  347. 	//   in: path

  348. 	//   description: owner of the repo

  349. 	//   type: string

  350. 	//   required: true

  351. 	// - name: repo

  352. 	//   in: path

  353. 	//   description: name of the repo

  354. 	//   type: string

  355. 	//   required: true

  356. 	// - name: id

  357. 	//   in: path

  358. 	//   description: id of the release

  359. 	//   type: integer

  360. 	//   format: int64

  361. 	//   required: true

  362. 	// - name: attachment_id

  363. 	//   in: path

  364. 	//   description: id of the attachment to delete

  365. 	//   type: integer

  366. 	//   format: int64

  367. 	//   required: true

  368. 	// responses:

  369. 	//   "204":

  370. 	//     "$ref": "#/responses/empty"

  371. 	//   "404":

  372. 	//     "$ref": "#/responses/notFound"

  373. 

  374. 	// Check if release exists an load release

  375. 	releaseID := ctx.PathParamInt64("id")

  376. 	if !checkReleaseMatchRepo(ctx, releaseID) {

  377. 		return

  378. 	}

  379. 

  380. 	attachID := ctx.PathParamInt64("attachment_id")

  381. 	attach, err := repo_model.GetAttachmentByID(ctx, attachID)

  382. 	if err != nil {

  383. 		if repo_model.IsErrAttachmentNotExist(err) {

  384. 			ctx.APIErrorNotFound()

  385. 			return

  386. 		}

  387. 		ctx.APIErrorInternal(err)

  388. 		return

  389. 	}

  390. 	if attach.ReleaseID != releaseID {

  391. 		log.Info("User requested attachment is not in release, release_id %v, attachment_id: %v", releaseID, attachID)

  392. 		ctx.APIErrorNotFound()

  393. 		return

  394. 	}

  395. 	// FIXME Should prove the existence of the given repo, but results in unnecessary database requests

  396. 

  397. 	if err := repo_model.DeleteAttachment(ctx, attach, true); err != nil {

  398. 		ctx.APIErrorInternal(err)

  399. 		return

  400. 	}

  401. 	ctx.Status(http.StatusNoContent)

  402. }