afan
/
gitea
Seguir 1
Destacar 0
Cuchillo 0
Código Incidencias 0 Peticiones pull 0 Lanzamientos 0 Wiki Activity
gitea源码
2 Commits
2 Ramas
Árbol: f5d5e77162
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde 'f5d5e77162'
${ noResults }
gitea/routers/private/internal.go

internal.go 4.3KB
Histórico Original

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. // Package private contains all internal routes. The package name "internal" isn't usable because Golang reserves it for disabling cross-package usage.

  5. package private

  6. 

  7. import (

  8. 	"crypto/subtle"

  9. 	"net/http"

  10. 	"strings"

  11. 

  12. 	"code.gitea.io/gitea/modules/log"

  13. 	"code.gitea.io/gitea/modules/private"

  14. 	"code.gitea.io/gitea/modules/setting"

  15. 	"code.gitea.io/gitea/modules/web"

  16. 	"code.gitea.io/gitea/routers/common"

  17. 	"code.gitea.io/gitea/services/context"

  18. 

  19. 	"gitea.com/go-chi/binding"

  20. 	chi_middleware "github.com/go-chi/chi/v5/middleware"

  21. )

  22. 

  23. func authInternal(next http.Handler) http.Handler {

  24. 	return http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {

  25. 		if setting.InternalToken == "" {

  26. 			log.Warn(`The INTERNAL_TOKEN setting is missing from the configuration file: %q, internal API can't work.`, setting.CustomConf)

  27. 			http.Error(w, http.StatusText(http.StatusForbidden), http.StatusForbidden)

  28. 			return

  29. 		}

  30. 

  31. 		tokens := req.Header.Get("X-Gitea-Internal-Auth") // TODO: use something like JWT or HMAC to avoid passing the token in the clear

  32. 		after, found := strings.CutPrefix(tokens, "Bearer ")

  33. 		authSucceeded := found && subtle.ConstantTimeCompare([]byte(after), []byte(setting.InternalToken)) == 1

  34. 		if !authSucceeded {

  35. 			log.Debug("Forbidden attempt to access internal url: Authorization header: %s", tokens)

  36. 			http.Error(w, http.StatusText(http.StatusForbidden), http.StatusForbidden)

  37. 			return

  38. 		}

  39. 		next.ServeHTTP(w, req)

  40. 	})

  41. }

  42. 

  43. // bind binding an obj to a handler

  44. func bind[T any](_ T) any {

  45. 	return func(ctx *context.PrivateContext) {

  46. 		theObj := new(T) // create a new form obj for every request but not use obj directly

  47. 		binding.Bind(ctx.Req, theObj)

  48. 		web.SetForm(ctx, theObj)

  49. 	}

  50. }

  51. 

  52. // Routes registers all internal APIs routes to web application.

  53. // These APIs will be invoked by internal commands for example `gitea serv` and etc.

  54. func Routes() *web.Router {

  55. 	r := web.NewRouter()

  56. 	r.Use(context.PrivateContexter())

  57. 	r.Use(authInternal)

  58. 	// Log the real ip address of the request from SSH is really helpful for diagnosing sometimes.

  59. 	// Since internal API will be sent only from Gitea sub commands and it's under control (checked by InternalToken), we can trust the headers.

  60. 	r.Use(chi_middleware.RealIP)

  61. 

  62. 	r.Post("/ssh/authorized_keys", AuthorizedPublicKeyByContent)

  63. 	r.Post("/ssh/{id}/update/{repoid}", UpdatePublicKeyInRepo)

  64. 	r.Post("/ssh/log", bind(private.SSHLogOption{}), SSHLog)

  65. 	r.Post("/hook/pre-receive/{owner}/{repo}", RepoAssignment, bind(private.HookOptions{}), HookPreReceive)

  66. 	r.Post("/hook/post-receive/{owner}/{repo}", context.OverrideContext(), bind(private.HookOptions{}), HookPostReceive)

  67. 	r.Post("/hook/proc-receive/{owner}/{repo}", context.OverrideContext(), RepoAssignment, bind(private.HookOptions{}), HookProcReceive)

  68. 	r.Post("/hook/set-default-branch/{owner}/{repo}/{branch}", RepoAssignment, SetDefaultBranch)

  69. 	r.Get("/serv/none/{keyid}", ServNoCommand)

  70. 	r.Get("/serv/command/{keyid}/{owner}/{repo}", ServCommand)

  71. 	r.Post("/manager/shutdown", Shutdown)

  72. 	r.Post("/manager/restart", Restart)

  73. 	r.Post("/manager/reload-templates", ReloadTemplates)

  74. 	r.Post("/manager/flush-queues", bind(private.FlushOptions{}), FlushQueues)

  75. 	r.Post("/manager/pause-logging", PauseLogging)

  76. 	r.Post("/manager/resume-logging", ResumeLogging)

  77. 	r.Post("/manager/release-and-reopen-logging", ReleaseReopenLogging)

  78. 	r.Post("/manager/set-log-sql", SetLogSQL)

  79. 	r.Post("/manager/add-logger", bind(private.LoggerOptions{}), AddLogger)

  80. 	r.Post("/manager/remove-logger/{logger}/{writer}", RemoveLogger)

  81. 	r.Get("/manager/processes", Processes)

  82. 	r.Post("/mail/send", SendEmail)

  83. 	r.Post("/restore_repo", RestoreRepo)

  84. 	r.Post("/actions/generate_actions_runner_token", GenerateActionsRunnerToken)

  85. 

  86. 	r.Group("/repo", func() {

  87. 		// FIXME: it is not right to use context.Contexter here because all routes here should use PrivateContext

  88. 		// Fortunately, the LFS handlers are able to handle requests without a complete web context

  89. 		common.AddOwnerRepoGitLFSRoutes(r, func(ctx *context.PrivateContext) {

  90. 			webContext := &context.Context{Base: ctx.Base}         // see above, it shouldn't manually construct the web context

  91. 			ctx.SetContextValue(context.WebContextKey, webContext) // FIXME: this is not ideal but no other way at the moment

  92. 		})

  93. 	})

  94. 

  95. 	return r

  96. }