2015-12-04 17:16:42 -05:00
// Copyright 2015 The Gogs Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.
package v1
import (
"strings"
"github.com/go-macaron/binding"
"gopkg.in/macaron.v1"
2016-11-11 10:39:44 +01:00
api "code.gitea.io/sdk/gitea"
2016-11-10 17:24:48 +01:00
"code.gitea.io/gitea/models"
"code.gitea.io/gitea/modules/auth"
"code.gitea.io/gitea/modules/context"
"code.gitea.io/gitea/routers/api/v1/admin"
"code.gitea.io/gitea/routers/api/v1/misc"
"code.gitea.io/gitea/routers/api/v1/org"
"code.gitea.io/gitea/routers/api/v1/repo"
"code.gitea.io/gitea/routers/api/v1/user"
2015-12-04 17:16:42 -05:00
)
2016-08-04 17:08:01 -07:00
func repoAssignment ( ) macaron . Handler {
2016-03-13 18:49:16 -04:00
return func ( ctx * context . APIContext ) {
2015-12-04 17:16:42 -05:00
userName := ctx . Params ( ":username" )
repoName := ctx . Params ( ":reponame" )
var (
owner * models . User
err error
)
// Check if the user is the same as the repository owner.
if ctx . IsSigned && ctx . User . LowerName == strings . ToLower ( userName ) {
owner = ctx . User
} else {
owner , err = models . GetUserByName ( userName )
if err != nil {
if models . IsErrUserNotExist ( err ) {
2016-03-13 18:49:16 -04:00
ctx . Status ( 404 )
2015-12-04 17:16:42 -05:00
} else {
2016-03-13 18:49:16 -04:00
ctx . Error ( 500 , "GetUserByName" , err )
2015-12-04 17:16:42 -05:00
}
return
}
}
ctx . Repo . Owner = owner
// Get repository.
2016-07-24 01:08:22 +08:00
repo , err := models . GetRepositoryByName ( owner . ID , repoName )
2015-12-04 17:16:42 -05:00
if err != nil {
if models . IsErrRepoNotExist ( err ) {
2016-03-13 18:49:16 -04:00
ctx . Status ( 404 )
2015-12-04 17:16:42 -05:00
} else {
2016-03-13 18:49:16 -04:00
ctx . Error ( 500 , "GetRepositoryByName" , err )
2015-12-04 17:16:42 -05:00
}
return
} else if err = repo . GetOwner ( ) ; err != nil {
2016-03-13 18:49:16 -04:00
ctx . Error ( 500 , "GetOwner" , err )
2015-12-04 17:16:42 -05:00
return
}
2016-03-13 23:20:22 -04:00
if ctx . IsSigned && ctx . User . IsAdmin {
2016-11-07 17:20:37 +01:00
ctx . Repo . AccessMode = models . AccessModeOwner
2016-03-13 23:20:22 -04:00
} else {
mode , err := models . AccessLevel ( ctx . User , repo )
if err != nil {
ctx . Error ( 500 , "AccessLevel" , err )
return
}
ctx . Repo . AccessMode = mode
2015-12-04 17:16:42 -05:00
}
2016-03-13 23:20:22 -04:00
if ! ctx . Repo . HasAccess ( ) {
2016-03-13 18:49:16 -04:00
ctx . Status ( 404 )
2015-12-04 17:16:42 -05:00
return
}
ctx . Repo . Repository = repo
}
}
// Contexter middleware already checks token for user sign in process.
2016-08-04 17:08:01 -07:00
func reqToken ( ) macaron . Handler {
2016-03-11 11:56:52 -05:00
return func ( ctx * context . Context ) {
2015-12-04 17:16:42 -05:00
if ! ctx . IsSigned {
ctx . Error ( 401 )
return
}
}
}
2016-08-04 17:08:01 -07:00
func reqBasicAuth ( ) macaron . Handler {
2016-03-11 11:56:52 -05:00
return func ( ctx * context . Context ) {
2015-12-04 17:16:42 -05:00
if ! ctx . IsBasicAuth {
ctx . Error ( 401 )
return
}
}
}
2016-08-04 17:08:01 -07:00
func reqAdmin ( ) macaron . Handler {
2016-03-11 11:56:52 -05:00
return func ( ctx * context . Context ) {
2016-07-23 17:56:37 +08:00
if ! ctx . IsSigned || ! ctx . User . IsAdmin {
2015-12-04 17:16:42 -05:00
ctx . Error ( 403 )
return
}
}
}
2016-08-24 16:05:56 -07:00
func reqRepoWriter ( ) macaron . Handler {
return func ( ctx * context . Context ) {
if ! ctx . Repo . IsWriter ( ) {
ctx . Error ( 403 )
return
}
}
}
2016-08-04 17:08:01 -07:00
func orgAssignment ( args ... bool ) macaron . Handler {
2016-03-25 18:04:02 -04:00
var (
2016-04-04 19:41:34 -04:00
assignOrg bool
2016-03-25 18:04:02 -04:00
assignTeam bool
)
if len ( args ) > 0 {
2016-04-04 19:41:34 -04:00
assignOrg = args [ 0 ]
}
if len ( args ) > 1 {
assignTeam = args [ 1 ]
2016-03-25 18:04:02 -04:00
}
return func ( ctx * context . APIContext ) {
2016-04-04 19:41:34 -04:00
ctx . Org = new ( context . APIOrganization )
var err error
if assignOrg {
ctx . Org . Organization , err = models . GetUserByName ( ctx . Params ( ":orgname" ) )
if err != nil {
if models . IsErrUserNotExist ( err ) {
ctx . Status ( 404 )
} else {
ctx . Error ( 500 , "GetUserByName" , err )
}
return
2016-03-25 18:04:02 -04:00
}
}
if assignTeam {
ctx . Org . Team , err = models . GetTeamByID ( ctx . ParamsInt64 ( ":teamid" ) )
if err != nil {
if models . IsErrUserNotExist ( err ) {
ctx . Status ( 404 )
} else {
ctx . Error ( 500 , "GetTeamById" , err )
}
return
}
}
}
}
2016-08-04 17:08:01 -07:00
func mustEnableIssues ( ctx * context . APIContext ) {
2016-08-04 16:32:02 -07:00
if ! ctx . Repo . Repository . EnableIssues || ctx . Repo . Repository . EnableExternalTracker {
ctx . Status ( 404 )
return
}
}
2015-12-04 17:16:42 -05:00
// RegisterRoutes registers all v1 APIs routes to web application.
// FIXME: custom form error response
func RegisterRoutes ( m * macaron . Macaron ) {
bind := binding . Bind
m . Group ( "/v1" , func ( ) {
// Miscellaneous
m . Post ( "/markdown" , bind ( api . MarkdownOption { } ) , misc . Markdown )
m . Post ( "/markdown/raw" , misc . MarkdownRaw )
// Users
m . Group ( "/users" , func ( ) {
m . Get ( "/search" , user . Search )
m . Group ( "/:username" , func ( ) {
m . Get ( "" , user . GetInfo )
m . Group ( "/tokens" , func ( ) {
m . Combo ( "" ) . Get ( user . ListAccessTokens ) .
Post ( bind ( api . CreateAccessTokenOption { } ) , user . CreateAccessToken )
2016-08-04 17:08:01 -07:00
} , reqBasicAuth ( ) )
2015-12-04 17:16:42 -05:00
} )
} )
m . Group ( "/users" , func ( ) {
m . Group ( "/:username" , func ( ) {
2015-12-05 17:13:13 -05:00
m . Get ( "/keys" , user . ListPublicKeys )
2015-12-21 04:24:11 -08:00
m . Get ( "/followers" , user . ListFollowers )
m . Group ( "/following" , func ( ) {
m . Get ( "" , user . ListFollowing )
m . Get ( "/:target" , user . CheckFollowing )
} )
2015-12-04 17:16:42 -05:00
} )
2016-08-04 17:08:01 -07:00
} , reqToken ( ) )
2015-12-04 17:16:42 -05:00
m . Group ( "/user" , func ( ) {
2016-08-11 15:29:39 -07:00
m . Get ( "" , user . GetAuthenticatedUser )
2015-12-21 04:24:11 -08:00
m . Combo ( "/emails" ) . Get ( user . ListEmails ) .
Post ( bind ( api . CreateEmailOption { } ) , user . AddEmail ) .
Delete ( bind ( api . CreateEmailOption { } ) , user . DeleteEmail )
m . Get ( "/followers" , user . ListMyFollowers )
m . Group ( "/following" , func ( ) {
m . Get ( "" , user . ListMyFollowing )
m . Combo ( "/:username" ) . Get ( user . CheckMyFollowing ) . Put ( user . Follow ) . Delete ( user . Unfollow )
} )
2015-12-04 17:16:42 -05:00
m . Group ( "/keys" , func ( ) {
m . Combo ( "" ) . Get ( user . ListMyPublicKeys ) .
Post ( bind ( api . CreateKeyOption { } ) , user . CreatePublicKey )
m . Combo ( "/:id" ) . Get ( user . GetPublicKey ) .
Delete ( user . DeletePublicKey )
} )
2016-08-04 17:08:01 -07:00
} , reqToken ( ) )
2015-12-04 17:16:42 -05:00
// Repositories
2016-08-04 17:08:01 -07:00
m . Combo ( "/user/repos" , reqToken ( ) ) . Get ( repo . ListMyRepos ) .
2015-12-04 17:16:42 -05:00
Post ( bind ( api . CreateRepoOption { } ) , repo . Create )
2016-08-04 17:08:01 -07:00
m . Post ( "/org/:org/repos" , reqToken ( ) , bind ( api . CreateRepoOption { } ) , repo . CreateOrgRepo )
2015-12-04 17:16:42 -05:00
m . Group ( "/repos" , func ( ) {
m . Get ( "/search" , repo . Search )
} )
m . Group ( "/repos" , func ( ) {
m . Post ( "/migrate" , bind ( auth . MigrateRepoForm { } ) , repo . Migrate )
m . Combo ( "/:username/:reponame" ) . Get ( repo . Get ) .
Delete ( repo . Delete )
m . Group ( "/:username/:reponame" , func ( ) {
2016-07-16 19:08:38 -05:00
m . Group ( "/hooks" , func ( ) {
m . Combo ( "" ) . Get ( repo . ListHooks ) .
Post ( bind ( api . CreateHookOption { } ) , repo . CreateHook )
2016-07-17 09:25:30 +08:00
m . Combo ( "/:id" ) . Patch ( bind ( api . EditHookOption { } ) , repo . EditHook ) .
2016-07-16 19:08:38 -05:00
Delete ( repo . DeleteHook )
} )
2016-08-11 20:23:25 +02:00
m . Put ( "/collaborators/:collaborator" , bind ( api . AddCollaboratorOption { } ) , repo . AddCollaborator )
2016-03-11 11:56:52 -05:00
m . Get ( "/raw/*" , context . RepoRef ( ) , repo . GetRawFile )
2015-12-04 17:16:42 -05:00
m . Get ( "/archive/*" , repo . GetArchive )
2016-01-15 19:24:03 +01:00
m . Group ( "/branches" , func ( ) {
2016-03-11 11:56:52 -05:00
m . Get ( "" , repo . ListBranches )
m . Get ( "/:branchname" , repo . GetBranch )
2016-01-15 19:24:03 +01:00
} )
2015-12-04 17:16:42 -05:00
m . Group ( "/keys" , func ( ) {
m . Combo ( "" ) . Get ( repo . ListDeployKeys ) .
Post ( bind ( api . CreateKeyOption { } ) , repo . CreateDeployKey )
m . Combo ( "/:id" ) . Get ( repo . GetDeployKey ) .
Delete ( repo . DeleteDeploykey )
} )
2016-03-13 23:20:22 -04:00
m . Group ( "/issues" , func ( ) {
m . Combo ( "" ) . Get ( repo . ListIssues ) . Post ( bind ( api . CreateIssueOption { } ) , repo . CreateIssue )
2016-08-03 09:24:16 -07:00
m . Group ( "/:index" , func ( ) {
m . Combo ( "" ) . Get ( repo . GetIssue ) . Patch ( bind ( api . EditIssueOption { } ) , repo . EditIssue )
2016-08-27 01:23:21 +07:00
m . Group ( "/comments" , func ( ) {
m . Combo ( "" ) . Get ( repo . ListIssueComments ) . Post ( bind ( api . CreateIssueCommentOption { } ) , repo . CreateIssueComment )
m . Combo ( "/:id" ) . Patch ( bind ( api . EditIssueCommentOption { } ) , repo . EditIssueComment )
} )
2016-08-03 09:24:16 -07:00
m . Group ( "/labels" , func ( ) {
2016-08-03 11:51:22 -07:00
m . Combo ( "" ) . Get ( repo . ListIssueLabels ) .
2016-08-03 09:24:16 -07:00
Post ( bind ( api . IssueLabelsOption { } ) , repo . AddIssueLabels ) .
Put ( bind ( api . IssueLabelsOption { } ) , repo . ReplaceIssueLabels ) .
Delete ( repo . ClearIssueLabels )
m . Delete ( "/:id" , repo . DeleteIssueLabel )
} )
} )
2016-08-04 17:08:01 -07:00
} , mustEnableIssues )
2016-08-03 09:24:16 -07:00
m . Group ( "/labels" , func ( ) {
m . Combo ( "" ) . Get ( repo . ListLabels ) .
2016-08-03 11:51:22 -07:00
Post ( bind ( api . CreateLabelOption { } ) , repo . CreateLabel )
m . Combo ( "/:id" ) . Get ( repo . GetLabel ) . Patch ( bind ( api . EditLabelOption { } ) , repo . EditLabel ) .
2016-08-03 09:24:16 -07:00
Delete ( repo . DeleteLabel )
2016-03-13 18:49:16 -04:00
} )
2016-08-24 15:18:56 -07:00
m . Group ( "/milestones" , func ( ) {
m . Combo ( "" ) . Get ( repo . ListMilestones ) .
2016-08-24 16:05:56 -07:00
Post ( reqRepoWriter ( ) , bind ( api . CreateMilestoneOption { } ) , repo . CreateMilestone )
m . Combo ( "/:id" ) . Get ( repo . GetMilestone ) .
Patch ( reqRepoWriter ( ) , bind ( api . EditMilestoneOption { } ) , repo . EditMilestone ) .
Delete ( reqRepoWriter ( ) , repo . DeleteMilestone )
2016-08-24 15:18:56 -07:00
} )
2016-08-30 20:18:40 -03:00
m . Get ( "/editorconfig/:filename" , context . RepoRef ( ) , repo . GetEditorconfig )
2016-08-04 17:08:01 -07:00
} , repoAssignment ( ) )
} , reqToken ( ) )
2015-12-04 17:16:42 -05:00
2015-12-17 02:28:47 -05:00
// Organizations
2016-08-04 17:08:01 -07:00
m . Get ( "/user/orgs" , reqToken ( ) , org . ListMyOrgs )
2015-12-17 02:28:47 -05:00
m . Get ( "/users/:username/orgs" , org . ListUserOrgs )
2016-03-21 12:53:04 -04:00
m . Group ( "/orgs/:orgname" , func ( ) {
m . Combo ( "" ) . Get ( org . Get ) . Patch ( bind ( api . EditOrgOption { } ) , org . Edit )
m . Combo ( "/teams" ) . Get ( org . ListTeams )
2016-08-04 17:08:01 -07:00
} , orgAssignment ( true ) )
2015-12-17 02:28:47 -05:00
2016-03-11 11:56:52 -05:00
m . Any ( "/*" , func ( ctx * context . Context ) {
2015-12-04 17:16:42 -05:00
ctx . Error ( 404 )
} )
2015-12-05 17:13:13 -05:00
m . Group ( "/admin" , func ( ) {
m . Group ( "/users" , func ( ) {
m . Post ( "" , bind ( api . CreateUserOption { } ) , admin . CreateUser )
m . Group ( "/:username" , func ( ) {
m . Combo ( "" ) . Patch ( bind ( api . EditUserOption { } ) , admin . EditUser ) .
Delete ( admin . DeleteUser )
2016-01-08 08:49:03 +08:00
m . Post ( "/keys" , bind ( api . CreateKeyOption { } ) , admin . CreatePublicKey )
2015-12-17 02:28:47 -05:00
m . Post ( "/orgs" , bind ( api . CreateOrgOption { } ) , admin . CreateOrg )
2015-12-17 22:57:41 -05:00
m . Post ( "/repos" , bind ( api . CreateRepoOption { } ) , admin . CreateRepo )
2015-12-05 17:13:13 -05:00
} )
} )
2016-03-21 12:47:54 -04:00
m . Group ( "/orgs/:orgname" , func ( ) {
2016-03-25 18:04:02 -04:00
m . Group ( "/teams" , func ( ) {
2016-08-04 17:08:01 -07:00
m . Post ( "" , orgAssignment ( true ) , bind ( api . CreateTeamOption { } ) , admin . CreateTeam )
2016-03-25 18:04:02 -04:00
} )
2016-03-21 12:47:54 -04:00
} )
2016-04-04 19:41:34 -04:00
m . Group ( "/teams" , func ( ) {
m . Group ( "/:teamid" , func ( ) {
m . Combo ( "/members/:username" ) . Put ( admin . AddTeamMember ) . Delete ( admin . RemoveTeamMember )
m . Combo ( "/repos/:reponame" ) . Put ( admin . AddTeamRepository ) . Delete ( admin . RemoveTeamRepository )
2016-08-04 17:08:01 -07:00
} , orgAssignment ( false , true ) )
2016-04-04 19:41:34 -04:00
} )
2016-08-04 17:08:01 -07:00
} , reqAdmin ( ) )
2016-03-13 18:49:16 -04:00
} , context . APIContexter ( ) )
2015-12-04 17:16:42 -05:00
}