2021-06-06 01:59:27 +02:00
// Copyright 2021 The Gitea Authors. All rights reserved.
2020-04-05 01:20:50 -05:00
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.
2016-12-26 02:16:37 +01:00
package lfs
import (
2021-08-31 15:35:08 +02:00
"crypto/sha256"
2016-12-26 02:16:37 +01:00
"encoding/base64"
2021-08-31 15:35:08 +02:00
"encoding/hex"
2021-06-06 01:59:27 +02:00
"errors"
2016-12-26 02:16:37 +01:00
"fmt"
"io"
"net/http"
2021-11-16 18:18:25 +00:00
"net/url"
2017-11-08 15:04:19 +02:00
"path"
2016-12-26 02:16:37 +01:00
"regexp"
"strconv"
"strings"
2022-06-12 23:51:54 +08:00
git_model "code.gitea.io/gitea/models/git"
2021-11-28 19:58:28 +08:00
"code.gitea.io/gitea/models/perm"
2022-05-11 18:09:36 +08:00
access_model "code.gitea.io/gitea/models/perm/access"
2021-12-10 09:27:50 +08:00
repo_model "code.gitea.io/gitea/models/repo"
2021-11-10 03:57:58 +08:00
"code.gitea.io/gitea/models/unit"
2021-11-24 17:49:20 +08:00
user_model "code.gitea.io/gitea/models/user"
2016-12-26 02:16:37 +01:00
"code.gitea.io/gitea/modules/context"
2021-07-25 00:03:58 +08:00
"code.gitea.io/gitea/modules/json"
2021-04-09 00:25:57 +02:00
lfs_module "code.gitea.io/gitea/modules/lfs"
2016-12-26 02:16:37 +01:00
"code.gitea.io/gitea/modules/log"
"code.gitea.io/gitea/modules/setting"
2021-08-22 02:22:06 +08:00
"code.gitea.io/gitea/modules/storage"
2017-11-08 15:04:19 +02:00
2022-01-14 23:03:31 +08:00
"github.com/golang-jwt/jwt/v4"
2016-12-26 02:16:37 +01:00
)
2021-04-09 00:25:57 +02:00
// requestContext contain variables from the HTTP request.
type requestContext struct {
2016-12-26 02:16:37 +01:00
User string
Repo string
Authorization string
}
2020-03-09 19:56:18 +00:00
// Claims is a JWT Token Claims
type Claims struct {
RepoID int64
Op string
UserID int64
2022-01-20 21:52:56 +00:00
jwt . RegisteredClaims
2020-03-09 19:56:18 +00:00
}
2021-06-06 01:59:27 +02:00
// DownloadLink builds a URL to download the object.
func ( rc * requestContext ) DownloadLink ( p lfs_module . Pointer ) string {
2021-11-16 18:18:25 +00:00
return setting . AppURL + path . Join ( url . PathEscape ( rc . User ) , url . PathEscape ( rc . Repo + ".git" ) , "info/lfs/objects" , url . PathEscape ( p . Oid ) )
2017-11-08 15:04:19 +02:00
}
2021-06-06 01:59:27 +02:00
// UploadLink builds a URL to upload the object.
func ( rc * requestContext ) UploadLink ( p lfs_module . Pointer ) string {
2021-11-16 18:18:25 +00:00
return setting . AppURL + path . Join ( url . PathEscape ( rc . User ) , url . PathEscape ( rc . Repo + ".git" ) , "info/lfs/objects" , url . PathEscape ( p . Oid ) , strconv . FormatInt ( p . Size , 10 ) )
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
// VerifyLink builds a URL for verifying the object.
func ( rc * requestContext ) VerifyLink ( p lfs_module . Pointer ) string {
2021-11-16 18:18:25 +00:00
return setting . AppURL + path . Join ( url . PathEscape ( rc . User ) , url . PathEscape ( rc . Repo + ".git" ) , "info/lfs/verify" )
2018-07-19 23:39:19 +08:00
}
2021-06-06 01:59:27 +02:00
// CheckAcceptMediaType checks if the client accepts the LFS media type.
func CheckAcceptMediaType ( ctx * context . Context ) {
mediaParts := strings . Split ( ctx . Req . Header . Get ( "Accept" ) , ";" )
2019-05-25 00:21:00 +03:00
2021-06-06 01:59:27 +02:00
if mediaParts [ 0 ] != lfs_module . MediaType {
log . Trace ( "Calling a LFS method without accepting the correct media type: %s" , lfs_module . MediaType )
writeStatus ( ctx , http . StatusUnsupportedMediaType )
2016-12-26 02:16:37 +01:00
return
}
}
2021-06-06 01:59:27 +02:00
// DownloadHandler gets the content from the content store
func DownloadHandler ( ctx * context . Context ) {
rc := getRequestContext ( ctx )
p := lfs_module . Pointer { Oid : ctx . Params ( "oid" ) }
2017-10-30 14:11:56 +02:00
2021-06-06 01:59:27 +02:00
meta := getAuthenticatedMeta ( ctx , rc , p , false )
2017-10-30 14:11:56 +02:00
if meta == nil {
2016-12-26 02:16:37 +01:00
return
}
// Support resume download using Range header
2020-05-11 09:37:59 +01:00
var fromByte , toByte int64
toByte = meta . Size - 1
2021-06-06 01:59:27 +02:00
statusCode := http . StatusOK
2016-12-26 02:16:37 +01:00
if rangeHdr := ctx . Req . Header . Get ( "Range" ) ; rangeHdr != "" {
2020-05-11 09:37:59 +01:00
regex := regexp . MustCompile ( ` bytes=(\d+)\-(\d*).* ` )
2016-12-26 02:16:37 +01:00
match := regex . FindStringSubmatch ( rangeHdr )
2019-06-12 21:41:28 +02:00
if len ( match ) > 1 {
2021-06-06 01:59:27 +02:00
statusCode = http . StatusPartialContent
2016-12-26 02:16:37 +01:00
fromByte , _ = strconv . ParseInt ( match [ 1 ] , 10 , 32 )
2020-05-11 09:37:59 +01:00
2021-04-06 15:22:34 +02:00
if fromByte >= meta . Size {
writeStatus ( ctx , http . StatusRequestedRangeNotSatisfiable )
return
}
2020-05-11 09:37:59 +01:00
if match [ 2 ] != "" {
_toByte , _ := strconv . ParseInt ( match [ 2 ] , 10 , 32 )
if _toByte >= fromByte && _toByte < toByte {
toByte = _toByte
}
}
ctx . Resp . Header ( ) . Set ( "Content-Range" , fmt . Sprintf ( "bytes %d-%d/%d" , fromByte , toByte , meta . Size - fromByte ) )
2020-08-13 18:18:18 +01:00
ctx . Resp . Header ( ) . Set ( "Access-Control-Expose-Headers" , "Content-Range" )
2016-12-26 02:16:37 +01:00
}
}
2021-04-09 00:25:57 +02:00
contentStore := lfs_module . NewContentStore ( )
content , err := contentStore . Get ( meta . Pointer )
2016-12-26 02:16:37 +01:00
if err != nil {
2021-04-06 15:22:34 +02:00
writeStatus ( ctx , http . StatusNotFound )
2016-12-26 02:16:37 +01:00
return
}
2020-03-09 19:56:18 +00:00
defer content . Close ( )
2016-12-26 02:16:37 +01:00
2021-04-06 15:22:34 +02:00
if fromByte > 0 {
_ , err = content . Seek ( fromByte , io . SeekStart )
if err != nil {
log . Error ( "Whilst trying to read LFS OID[%s]: Unable to seek to %d Error: %v" , meta . Oid , fromByte , err )
writeStatus ( ctx , http . StatusInternalServerError )
return
}
}
2020-05-11 09:37:59 +01:00
contentLength := toByte + 1 - fromByte
ctx . Resp . Header ( ) . Set ( "Content-Length" , strconv . FormatInt ( contentLength , 10 ) )
2016-12-26 02:16:37 +01:00
ctx . Resp . Header ( ) . Set ( "Content-Type" , "application/octet-stream" )
filename := ctx . Params ( "filename" )
if len ( filename ) > 0 {
decodedFilename , err := base64 . RawURLEncoding . DecodeString ( filename )
if err == nil {
ctx . Resp . Header ( ) . Set ( "Content-Disposition" , "attachment; filename=\"" + string ( decodedFilename ) + "\"" )
2020-08-13 18:18:18 +01:00
ctx . Resp . Header ( ) . Set ( "Access-Control-Expose-Headers" , "Content-Disposition" )
2016-12-26 02:16:37 +01:00
}
}
ctx . Resp . WriteHeader ( statusCode )
2020-05-11 09:37:59 +01:00
if written , err := io . CopyN ( ctx . Resp , content , contentLength ) ; err != nil {
2020-03-09 19:56:18 +00:00
log . Error ( "Error whilst copying LFS OID[%s] to the response after %d bytes. Error: %v" , meta . Oid , written , err )
}
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
// BatchHandler provides the batch api
func BatchHandler ( ctx * context . Context ) {
var br lfs_module . BatchRequest
if err := decodeJSON ( ctx . Req , & br ) ; err != nil {
log . Trace ( "Unable to decode BATCH request vars: Error: %v" , err )
writeStatus ( ctx , http . StatusBadRequest )
2018-05-01 04:46:04 +03:00
return
}
2021-06-06 01:59:27 +02:00
var isUpload bool
if br . Operation == "upload" {
isUpload = true
} else if br . Operation == "download" {
isUpload = false
} else {
log . Trace ( "Attempt to BATCH with invalid operation: %s" , br . Operation )
writeStatus ( ctx , http . StatusBadRequest )
2018-05-01 04:46:04 +03:00
return
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
rc := getRequestContext ( ctx )
2020-02-28 04:46:57 +00:00
2021-06-06 01:59:27 +02:00
repository := getAuthenticatedRepository ( ctx , rc , isUpload )
if repository == nil {
2016-12-26 02:16:37 +01:00
return
}
2021-04-09 00:25:57 +02:00
contentStore := lfs_module . NewContentStore ( )
var responseObjects [ ] * lfs_module . ObjectResponse
2016-12-26 02:16:37 +01:00
2021-06-06 01:59:27 +02:00
for _ , p := range br . Objects {
if ! p . IsValid ( ) {
responseObjects = append ( responseObjects , buildObjectResponse ( rc , p , false , false , & lfs_module . ObjectError {
Code : http . StatusUnprocessableEntity ,
Message : "Oid or size are invalid" ,
} ) )
2018-07-19 23:39:19 +08:00
continue
}
2021-06-06 01:59:27 +02:00
exists , err := contentStore . Exists ( p )
2016-12-26 02:16:37 +01:00
if err != nil {
2021-06-06 01:59:27 +02:00
log . Error ( "Unable to check if LFS OID[%s] exist. Error: %v" , p . Oid , rc . User , rc . Repo , err )
writeStatus ( ctx , http . StatusInternalServerError )
2016-12-26 02:16:37 +01:00
return
}
2022-06-12 23:51:54 +08:00
meta , err := git_model . GetLFSMetaObjectByOid ( repository . ID , p . Oid )
if err != nil && err != git_model . ErrLFSObjectNotExist {
2021-06-06 01:59:27 +02:00
log . Error ( "Unable to get LFS MetaObject [%s] for %s/%s. Error: %v" , p . Oid , rc . User , rc . Repo , err )
writeStatus ( ctx , http . StatusInternalServerError )
2016-12-26 02:16:37 +01:00
return
}
2021-06-06 01:59:27 +02:00
if meta != nil && p . Size != meta . Size {
responseObjects = append ( responseObjects , buildObjectResponse ( rc , p , false , false , & lfs_module . ObjectError {
Code : http . StatusUnprocessableEntity ,
Message : fmt . Sprintf ( "Object %s is not %d bytes" , p . Oid , p . Size ) ,
} ) )
continue
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
var responseObject * lfs_module . ObjectResponse
if isUpload {
var err * lfs_module . ObjectError
if ! exists && setting . LFS . MaxFileSize > 0 && p . Size > setting . LFS . MaxFileSize {
err = & lfs_module . ObjectError {
Code : http . StatusUnprocessableEntity ,
Message : fmt . Sprintf ( "Size must be less than or equal to %d" , setting . LFS . MaxFileSize ) ,
}
}
2020-03-03 20:57:27 +00:00
2021-08-31 15:35:08 +02:00
if exists && meta == nil {
2022-06-12 23:51:54 +08:00
accessible , err := git_model . LFSObjectAccessible ( ctx . Doer , p . Oid )
2021-08-31 15:35:08 +02:00
if err != nil {
log . Error ( "Unable to check if LFS MetaObject [%s] is accessible. Error: %v" , p . Oid , err )
writeStatus ( ctx , http . StatusInternalServerError )
return
}
if accessible {
2022-06-12 23:51:54 +08:00
_ , err := git_model . NewLFSMetaObject ( & git_model . LFSMetaObject { Pointer : p , RepositoryID : repository . ID } )
2021-06-06 01:59:27 +02:00
if err != nil {
log . Error ( "Unable to create LFS MetaObject [%s] for %s/%s. Error: %v" , p . Oid , rc . User , rc . Repo , err )
writeStatus ( ctx , http . StatusInternalServerError )
return
}
2021-08-31 15:35:08 +02:00
} else {
exists = false
2021-06-06 01:59:27 +02:00
}
2020-09-08 23:45:10 +08:00
}
2021-06-06 01:59:27 +02:00
responseObject = buildObjectResponse ( rc , p , false , ! exists , err )
2020-03-09 19:56:18 +00:00
} else {
2021-06-06 01:59:27 +02:00
var err * lfs_module . ObjectError
if ! exists || meta == nil {
err = & lfs_module . ObjectError {
Code : http . StatusNotFound ,
Message : http . StatusText ( http . StatusNotFound ) ,
}
}
responseObject = buildObjectResponse ( rc , p , true , false , err )
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
responseObjects = append ( responseObjects , responseObject )
2016-12-26 02:16:37 +01:00
}
2021-04-09 00:25:57 +02:00
respobj := & lfs_module . BatchResponse { Objects : responseObjects }
2016-12-26 02:16:37 +01:00
2021-06-06 01:59:27 +02:00
ctx . Resp . Header ( ) . Set ( "Content-Type" , lfs_module . MediaType )
2021-07-25 00:03:58 +08:00
enc := json . NewEncoder ( ctx . Resp )
2020-03-09 19:56:18 +00:00
if err := enc . Encode ( respobj ) ; err != nil {
log . Error ( "Failed to encode representation as json. Error: %v" , err )
}
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
// UploadHandler receives data from the client and puts it into the content store
func UploadHandler ( ctx * context . Context ) {
rc := getRequestContext ( ctx )
2016-12-26 02:16:37 +01:00
2021-06-06 01:59:27 +02:00
p := lfs_module . Pointer { Oid : ctx . Params ( "oid" ) }
var err error
if p . Size , err = strconv . ParseInt ( ctx . Params ( "size" ) , 10 , 64 ) ; err != nil {
writeStatusMessage ( ctx , http . StatusUnprocessableEntity , err . Error ( ) )
}
if ! p . IsValid ( ) {
log . Trace ( "Attempt to access invalid LFS OID[%s] in %s/%s" , p . Oid , rc . User , rc . Repo )
writeStatus ( ctx , http . StatusUnprocessableEntity )
return
}
repository := getAuthenticatedRepository ( ctx , rc , true )
if repository == nil {
return
}
2021-04-09 00:25:57 +02:00
contentStore := lfs_module . NewContentStore ( )
2021-06-06 01:59:27 +02:00
exists , err := contentStore . Exists ( p )
if err != nil {
log . Error ( "Unable to check if LFS OID[%s] exist. Error: %v" , p . Oid , err )
writeStatus ( ctx , http . StatusInternalServerError )
return
}
2021-08-31 15:35:08 +02:00
uploadOrVerify := func ( ) error {
if exists {
2022-06-12 23:51:54 +08:00
accessible , err := git_model . LFSObjectAccessible ( ctx . Doer , p . Oid )
2021-08-31 15:35:08 +02:00
if err != nil {
log . Error ( "Unable to check if LFS MetaObject [%s] is accessible. Error: %v" , p . Oid , err )
return err
}
if ! accessible {
// The file exists but the user has no access to it.
// The upload gets verified by hashing and size comparison to prove access to it.
hash := sha256 . New ( )
written , err := io . Copy ( hash , ctx . Req . Body )
if err != nil {
log . Error ( "Error creating hash. Error: %v" , err )
return err
}
if written != p . Size {
return lfs_module . ErrSizeMismatch
}
if hex . EncodeToString ( hash . Sum ( nil ) ) != p . Oid {
return lfs_module . ErrHashMismatch
}
}
} else if err := contentStore . Put ( p , ctx . Req . Body ) ; err != nil {
log . Error ( "Error putting LFS MetaObject [%s] into content store. Error: %v" , p . Oid , err )
return err
}
2022-06-12 23:51:54 +08:00
_ , err := git_model . NewLFSMetaObject ( & git_model . LFSMetaObject { Pointer : p , RepositoryID : repository . ID } )
2021-08-31 15:35:08 +02:00
return err
2021-06-06 01:59:27 +02:00
}
2021-01-26 23:36:53 +08:00
defer ctx . Req . Body . Close ( )
2021-08-31 15:35:08 +02:00
if err := uploadOrVerify ( ) ; err != nil {
2021-06-06 01:59:27 +02:00
if errors . Is ( err , lfs_module . ErrSizeMismatch ) || errors . Is ( err , lfs_module . ErrHashMismatch ) {
2021-08-31 15:35:08 +02:00
log . Error ( "Upload does not match LFS MetaObject [%s]. Error: %v" , p . Oid , err )
2021-06-06 01:59:27 +02:00
writeStatusMessage ( ctx , http . StatusUnprocessableEntity , err . Error ( ) )
2020-03-09 19:56:18 +00:00
} else {
2021-06-06 01:59:27 +02:00
writeStatus ( ctx , http . StatusInternalServerError )
2020-03-09 19:56:18 +00:00
}
2022-06-12 23:51:54 +08:00
if _ , err = git_model . RemoveLFSMetaObjectByOid ( repository . ID , p . Oid ) ; err != nil {
2021-06-06 01:59:27 +02:00
log . Error ( "Error whilst removing metaobject for LFS OID[%s]: %v" , p . Oid , err )
2017-10-30 14:11:56 +02:00
}
2016-12-26 02:16:37 +01:00
return
}
2021-06-06 01:59:27 +02:00
writeStatus ( ctx , http . StatusOK )
2016-12-26 02:16:37 +01:00
}
2017-11-08 15:04:19 +02:00
// VerifyHandler verify oid and its size from the content store
func VerifyHandler ( ctx * context . Context ) {
2021-06-06 01:59:27 +02:00
var p lfs_module . Pointer
if err := decodeJSON ( ctx . Req , & p ) ; err != nil {
writeStatus ( ctx , http . StatusUnprocessableEntity )
2017-11-08 15:04:19 +02:00
return
}
2021-06-06 01:59:27 +02:00
rc := getRequestContext ( ctx )
2017-11-08 15:04:19 +02:00
2021-06-06 01:59:27 +02:00
meta := getAuthenticatedMeta ( ctx , rc , p , true )
2017-11-08 15:04:19 +02:00
if meta == nil {
return
}
2021-04-09 00:25:57 +02:00
contentStore := lfs_module . NewContentStore ( )
ok , err := contentStore . Verify ( meta . Pointer )
2021-06-06 01:59:27 +02:00
status := http . StatusOK
2017-11-08 15:04:19 +02:00
if err != nil {
2021-06-06 01:59:27 +02:00
status = http . StatusInternalServerError
} else if ! ok {
status = http . StatusNotFound
2017-11-08 15:04:19 +02:00
}
2021-06-06 01:59:27 +02:00
writeStatus ( ctx , status )
}
func decodeJSON ( req * http . Request , v interface { } ) error {
defer req . Body . Close ( )
2017-11-08 15:04:19 +02:00
2021-07-25 00:03:58 +08:00
dec := json . NewDecoder ( req . Body )
2021-06-06 01:59:27 +02:00
return dec . Decode ( v )
2017-11-08 15:04:19 +02:00
}
2021-06-06 01:59:27 +02:00
func getRequestContext ( ctx * context . Context ) * requestContext {
return & requestContext {
User : ctx . Params ( "username" ) ,
Repo : strings . TrimSuffix ( ctx . Params ( "reponame" ) , ".git" ) ,
Authorization : ctx . Req . Header . Get ( "Authorization" ) ,
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
}
2016-12-26 02:16:37 +01:00
2022-06-12 23:51:54 +08:00
func getAuthenticatedMeta ( ctx * context . Context , rc * requestContext , p lfs_module . Pointer , requireWrite bool ) * git_model . LFSMetaObject {
2021-06-06 01:59:27 +02:00
if ! p . IsValid ( ) {
log . Info ( "Attempt to access invalid LFS OID[%s] in %s/%s" , p . Oid , rc . User , rc . Repo )
writeStatusMessage ( ctx , http . StatusUnprocessableEntity , "Oid or size are invalid" )
return nil
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
repository := getAuthenticatedRepository ( ctx , rc , requireWrite )
if repository == nil {
return nil
2016-12-26 02:16:37 +01:00
}
2022-06-12 23:51:54 +08:00
meta , err := git_model . GetLFSMetaObjectByOid ( repository . ID , p . Oid )
2021-06-06 01:59:27 +02:00
if err != nil {
log . Error ( "Unable to get LFS OID[%s] Error: %v" , p . Oid , err )
writeStatus ( ctx , http . StatusNotFound )
return nil
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
return meta
}
2019-05-25 00:21:00 +03:00
2021-12-10 09:27:50 +08:00
func getAuthenticatedRepository ( ctx * context . Context , rc * requestContext , requireWrite bool ) * repo_model . Repository {
repository , err := repo_model . GetRepositoryByOwnerAndName ( rc . User , rc . Repo )
2021-06-06 01:59:27 +02:00
if err != nil {
log . Error ( "Unable to get repository: %s/%s Error: %v" , rc . User , rc . Repo , err )
writeStatus ( ctx , http . StatusNotFound )
return nil
}
2019-05-25 00:21:00 +03:00
2021-06-06 01:59:27 +02:00
if ! authenticate ( ctx , repository , rc . Authorization , false , requireWrite ) {
requireAuth ( ctx )
return nil
2017-11-08 15:04:19 +02:00
}
2021-06-06 01:59:27 +02:00
return repository
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
func buildObjectResponse ( rc * requestContext , pointer lfs_module . Pointer , download , upload bool , err * lfs_module . ObjectError ) * lfs_module . ObjectResponse {
rep := & lfs_module . ObjectResponse { Pointer : pointer }
if err != nil {
rep . Error = err
} else {
rep . Actions = make ( map [ string ] * lfs_module . Link )
2016-12-26 02:16:37 +01:00
2021-06-06 01:59:27 +02:00
header := make ( map [ string ] string )
2016-12-26 02:16:37 +01:00
2021-06-06 01:59:27 +02:00
if len ( rc . Authorization ) > 0 {
header [ "Authorization" ] = rc . Authorization
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
if download {
rep . Actions [ "download" ] = & lfs_module . Link { Href : rc . DownloadLink ( pointer ) , Header : header }
2021-08-22 02:22:06 +08:00
if setting . LFS . ServeDirect {
2022-01-20 18:46:10 +01:00
// If we have a signed url (S3, object storage), redirect to this directly.
2021-08-22 02:22:06 +08:00
u , err := storage . LFS . URL ( pointer . RelativePath ( ) , pointer . Oid )
if u != nil && err == nil {
rep . Actions [ "download" ] = & lfs_module . Link { Href : u . String ( ) , Header : header }
}
}
2021-06-06 01:59:27 +02:00
}
if upload {
rep . Actions [ "upload" ] = & lfs_module . Link { Href : rc . UploadLink ( pointer ) , Header : header }
2016-12-26 02:16:37 +01:00
2021-06-06 01:59:27 +02:00
verifyHeader := make ( map [ string ] string )
for key , value := range header {
verifyHeader [ key ] = value
}
2016-12-26 02:16:37 +01:00
2021-06-06 01:59:27 +02:00
// This is only needed to workaround https://github.com/git-lfs/git-lfs/issues/3662
verifyHeader [ "Accept" ] = lfs_module . MediaType
2016-12-26 02:16:37 +01:00
2021-06-06 01:59:27 +02:00
rep . Actions [ "verify" ] = & lfs_module . Link { Href : rc . VerifyLink ( pointer ) , Header : verifyHeader }
}
2016-12-26 02:16:37 +01:00
}
2021-06-06 01:59:27 +02:00
return rep
2016-12-26 02:16:37 +01:00
}
func writeStatus ( ctx * context . Context , status int ) {
2021-06-06 01:59:27 +02:00
writeStatusMessage ( ctx , status , http . StatusText ( status ) )
}
2016-12-26 02:16:37 +01:00
2021-06-06 01:59:27 +02:00
func writeStatusMessage ( ctx * context . Context , status int , message string ) {
ctx . Resp . Header ( ) . Set ( "Content-Type" , lfs_module . MediaType )
2016-12-26 02:16:37 +01:00
ctx . Resp . WriteHeader ( status )
2021-06-06 01:59:27 +02:00
er := lfs_module . ErrorResponse { Message : message }
2021-07-25 00:03:58 +08:00
enc := json . NewEncoder ( ctx . Resp )
2021-06-06 01:59:27 +02:00
if err := enc . Encode ( er ) ; err != nil {
log . Error ( "Failed to encode error response as json. Error: %v" , err )
}
2016-12-26 02:16:37 +01:00
}
// authenticate uses the authorization string to determine whether
// or not to proceed. This server assumes an HTTP Basic auth format.
2021-12-10 09:27:50 +08:00
func authenticate ( ctx * context . Context , repository * repo_model . Repository , authorization string , requireSigned , requireWrite bool ) bool {
2021-11-28 19:58:28 +08:00
accessMode := perm . AccessModeRead
2016-12-26 02:16:37 +01:00
if requireWrite {
2021-11-28 19:58:28 +08:00
accessMode = perm . AccessModeWrite
2016-12-26 02:16:37 +01:00
}
2019-01-31 21:36:57 +08:00
// ctx.IsSigned is unnecessary here, this will be checked in perm.CanAccess
2022-05-11 18:09:36 +08:00
perm , err := access_model . GetUserRepoPermission ( ctx , repository , ctx . Doer )
2018-11-28 19:26:14 +08:00
if err != nil {
2022-03-22 08:03:22 +01:00
log . Error ( "Unable to GetUserRepoPermission for user %-v in repo %-v Error: %v" , ctx . Doer , repository )
2018-11-28 19:26:14 +08:00
return false
2016-12-26 02:16:37 +01:00
}
2019-01-31 21:36:57 +08:00
2021-11-10 03:57:58 +08:00
canRead := perm . CanAccess ( accessMode , unit . TypeCode )
2021-05-15 16:32:09 +01:00
if canRead && ( ! requireSigned || ctx . IsSigned ) {
2019-01-31 21:36:57 +08:00
return true
2016-12-26 02:16:37 +01:00
}
2021-05-15 16:32:09 +01:00
user , err := parseToken ( authorization , repository , accessMode )
2016-12-26 02:16:37 +01:00
if err != nil {
2020-03-09 19:56:18 +00:00
// Most of these are Warn level - the true internal server errors are logged in parseToken already
log . Warn ( "Authentication failure for provided token with Error: %v" , err )
2016-12-26 02:16:37 +01:00
return false
}
2022-03-22 08:03:22 +01:00
ctx . Doer = user
2021-05-15 16:32:09 +01:00
return true
}
2021-12-10 09:27:50 +08:00
func handleLFSToken ( tokenSHA string , target * repo_model . Repository , mode perm . AccessMode ) ( * user_model . User , error ) {
2021-05-15 16:32:09 +01:00
if ! strings . Contains ( tokenSHA , "." ) {
return nil , nil
2016-12-26 02:16:37 +01:00
}
2021-05-15 16:32:09 +01:00
token , err := jwt . ParseWithClaims ( tokenSHA , & Claims { } , func ( t * jwt . Token ) ( interface { } , error ) {
if _ , ok := t . Method . ( * jwt . SigningMethodHMAC ) ; ! ok {
return nil , fmt . Errorf ( "unexpected signing method: %v" , t . Header [ "alg" ] )
2018-01-27 17:48:15 +01:00
}
2021-05-15 16:32:09 +01:00
return setting . LFS . JWTSecretBytes , nil
} )
if err != nil {
return nil , nil
2016-12-26 02:16:37 +01:00
}
2021-05-15 16:32:09 +01:00
claims , claimsOk := token . Claims . ( * Claims )
if ! token . Valid || ! claimsOk {
return nil , fmt . Errorf ( "invalid token claim" )
2018-01-27 17:48:15 +01:00
}
2021-05-15 16:32:09 +01:00
if claims . RepoID != target . ID {
return nil , fmt . Errorf ( "invalid token claim" )
2016-12-26 02:16:37 +01:00
}
2021-11-28 19:58:28 +08:00
if mode == perm . AccessModeWrite && claims . Op != "upload" {
2021-05-15 16:32:09 +01:00
return nil , fmt . Errorf ( "invalid token claim" )
2016-12-26 02:16:37 +01:00
}
2021-11-24 17:49:20 +08:00
u , err := user_model . GetUserByID ( claims . UserID )
2021-05-15 16:32:09 +01:00
if err != nil {
log . Error ( "Unable to GetUserById[%d]: Error: %v" , claims . UserID , err )
return nil , err
}
return u , nil
}
2021-12-10 09:27:50 +08:00
func parseToken ( authorization string , target * repo_model . Repository , mode perm . AccessMode ) ( * user_model . User , error ) {
2021-05-15 16:32:09 +01:00
if authorization == "" {
return nil , fmt . Errorf ( "no token" )
}
parts := strings . SplitN ( authorization , " " , 2 )
if len ( parts ) != 2 {
return nil , fmt . Errorf ( "no token" )
}
tokenSHA := parts [ 1 ]
switch strings . ToLower ( parts [ 0 ] ) {
case "bearer" :
fallthrough
case "token" :
return handleLFSToken ( tokenSHA , target , mode )
}
return nil , fmt . Errorf ( "token not found" )
2016-12-26 02:16:37 +01:00
}
func requireAuth ( ctx * context . Context ) {
ctx . Resp . Header ( ) . Set ( "WWW-Authenticate" , "Basic realm=gitea-lfs" )
2021-06-06 01:59:27 +02:00
writeStatus ( ctx , http . StatusUnauthorized )
2016-12-26 02:16:37 +01:00
}