gitea/routers/web/admin/applications.go

// Copyright 2022 The Gitea Authors. All rights reserved.
// SPDX-License-Identifier: MIT

package admin

import (
	"fmt"
	"net/http"

	"code.gitea.io/gitea/models/auth"
	"code.gitea.io/gitea/models/db"
	"code.gitea.io/gitea/modules/base"
	"code.gitea.io/gitea/modules/setting"
	user_setting "code.gitea.io/gitea/routers/web/user/setting"
	"code.gitea.io/gitea/services/context"
)

var (
	tplSettingsApplications          base.TplName = "admin/applications/list"
	tplSettingsOauth2ApplicationEdit base.TplName = "admin/applications/oauth2_edit"
)

func newOAuth2CommonHandlers() *user_setting.OAuth2CommonHandlers {
	return &user_setting.OAuth2CommonHandlers{
		OwnerID:            0,
		BasePathList:       fmt.Sprintf("%s/admin/applications", setting.AppSubURL),
		BasePathEditPrefix: fmt.Sprintf("%s/admin/applications/oauth2", setting.AppSubURL),
		TplAppEdit:         tplSettingsOauth2ApplicationEdit,
	}
}

// Applications render org applications page (for org, at the moment, there are only OAuth2 applications)
func Applications(ctx *context.Context) {
	ctx.Data["Title"] = ctx.Tr("settings.applications")
	ctx.Data["PageIsAdminApplications"] = true

	apps, err := db.Find[auth.OAuth2Application](ctx, auth.FindOAuth2ApplicationsOptions{
		IsGlobal: true,
	})
	if err != nil {
		ctx.ServerError("GetOAuth2ApplicationsByUserID", err)
		return
	}
	ctx.Data["Applications"] = apps
	ctx.Data["BuiltinApplications"] = auth.BuiltinApplications()
	ctx.HTML(http.StatusOK, tplSettingsApplications)
}

// ApplicationsPost response for adding an oauth2 application
func ApplicationsPost(ctx *context.Context) {
	ctx.Data["Title"] = ctx.Tr("settings.applications")
	ctx.Data["PageIsAdminApplications"] = true

	oa := newOAuth2CommonHandlers()
	oa.AddApp(ctx)
}

// EditApplication displays the given application
func EditApplication(ctx *context.Context) {
	ctx.Data["PageIsAdminApplications"] = true

	oa := newOAuth2CommonHandlers()
	oa.EditShow(ctx)
}

// EditApplicationPost response for editing oauth2 application
func EditApplicationPost(ctx *context.Context) {
	ctx.Data["Title"] = ctx.Tr("settings.applications")
	ctx.Data["PageIsAdminApplications"] = true

	oa := newOAuth2CommonHandlers()
	oa.EditSave(ctx)
}

// ApplicationsRegenerateSecret handles the post request for regenerating the secret
func ApplicationsRegenerateSecret(ctx *context.Context) {
	ctx.Data["Title"] = ctx.Tr("settings")
	ctx.Data["PageIsAdminApplications"] = true

	oa := newOAuth2CommonHandlers()
	oa.RegenerateSecret(ctx)
}

// DeleteApplication deletes the given oauth2 application
func DeleteApplication(ctx *context.Context) {
	oa := newOAuth2CommonHandlers()
	oa.DeleteApp(ctx)
}

// TODO: revokes the grant with the given id
Support instance-wide OAuth2 applications (#21335) Support OAuth2 applications created by admins on the admin panel, they aren't owned by anybody. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Lauris BH <lauris@nix.lv> 2022-10-12 16:08:29 +02:00			`// Copyright 2022 The Gitea Authors. All rights reserved.`
Implement FSFE REUSE for golang files (#21840) Change all license headers to comply with REUSE specification. Fix #16132 Co-authored-by: flynnnnnnnnnn <flynnnnnnnnnn@github> Co-authored-by: John Olheiser <john.olheiser@gmail.com> 2022-11-27 13:20:29 -05:00			`// SPDX-License-Identifier: MIT`
Support instance-wide OAuth2 applications (#21335) Support OAuth2 applications created by admins on the admin panel, they aren't owned by anybody. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Lauris BH <lauris@nix.lv> 2022-10-12 16:08:29 +02:00
			`package admin`

			`import (`
			`"fmt"`
			`"net/http"`

			`"code.gitea.io/gitea/models/auth"`
Use db.Find instead of writing methods for every object (#28084) For those simple objects, it's unnecessary to write the find and count methods again and again. 2023-11-24 11:49:41 +08:00			`"code.gitea.io/gitea/models/db"`
Support instance-wide OAuth2 applications (#21335) Support OAuth2 applications created by admins on the admin panel, they aren't owned by anybody. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Lauris BH <lauris@nix.lv> 2022-10-12 16:08:29 +02:00			`"code.gitea.io/gitea/modules/base"`
			`"code.gitea.io/gitea/modules/setting"`
			`user_setting "code.gitea.io/gitea/routers/web/user/setting"`
Move context from modules to services (#29440) Since `modules/context` has to depend on `models` and many other packages, it should be moved from `modules/context` to `services/context` according to design principles. There is no logic code change on this PR, only move packages. - Move `code.gitea.io/gitea/modules/context` to `code.gitea.io/gitea/services/context` - Move `code.gitea.io/gitea/modules/contexttest` to `code.gitea.io/gitea/services/contexttest` because of depending on context - Move `code.gitea.io/gitea/modules/upload` to `code.gitea.io/gitea/services/context/upload` because of depending on context 2024-02-27 15:12:22 +08:00			`"code.gitea.io/gitea/services/context"`
Support instance-wide OAuth2 applications (#21335) Support OAuth2 applications created by admins on the admin panel, they aren't owned by anybody. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Lauris BH <lauris@nix.lv> 2022-10-12 16:08:29 +02:00			`)`

			`var (`
			`tplSettingsApplications base.TplName = "admin/applications/list"`
			`tplSettingsOauth2ApplicationEdit base.TplName = "admin/applications/oauth2_edit"`
			`)`

			`func newOAuth2CommonHandlers() *user_setting.OAuth2CommonHandlers {`
			`return &user_setting.OAuth2CommonHandlers{`
			`OwnerID: 0,`
			`BasePathList: fmt.Sprintf("%s/admin/applications", setting.AppSubURL),`
			`BasePathEditPrefix: fmt.Sprintf("%s/admin/applications/oauth2", setting.AppSubURL),`
			`TplAppEdit: tplSettingsOauth2ApplicationEdit,`
			`}`
			`}`

			`// Applications render org applications page (for org, at the moment, there are only OAuth2 applications)`
			`func Applications(ctx *context.Context) {`
			`ctx.Data["Title"] = ctx.Tr("settings.applications")`
			`ctx.Data["PageIsAdminApplications"] = true`

Use db.Find instead of writing methods for every object (#28084) For those simple objects, it's unnecessary to write the find and count methods again and again. 2023-11-24 11:49:41 +08:00			`apps, err := db.Find[auth.OAuth2Application](ctx, auth.FindOAuth2ApplicationsOptions{`
			`IsGlobal: true,`
			`})`
Support instance-wide OAuth2 applications (#21335) Support OAuth2 applications created by admins on the admin panel, they aren't owned by anybody. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Lauris BH <lauris@nix.lv> 2022-10-12 16:08:29 +02:00			`if err != nil {`
			`ctx.ServerError("GetOAuth2ApplicationsByUserID", err)`
			`return`
			`}`
			`ctx.Data["Applications"] = apps`
Pre-register OAuth2 applications for git credential helpers (#26291) This PR is an extended implementation of #25189 and builds upon the proposal by @hickford in #25653, utilizing some ideas proposed internally by @wxiaoguang. Mainly, this PR consists of a mechanism to pre-register OAuth2 applications on startup, which can be enabled or disabled by modifying the `[oauth2].DEFAULT_APPLICATIONS` parameter in app.ini. The OAuth2 applications registered this way are being marked as "locked" and neither be deleted nor edited over UI to prevent confusing/unexpected behavior. Instead, they're being removed if no longer enabled in config. ![grafik](https://github.com/go-gitea/gitea/assets/47871822/81a78b1c-4b68-40a7-9e99-c272ebb8f62e) The implemented mechanism can also be used to pre-register other OAuth2 applications in the future, if wanted. Co-authored-by: hickford <mirth.hickford@gmail.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> --------- Co-authored-by: M Hickford <mirth.hickford@gmail.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> 2023-08-09 14:24:07 +02:00			`ctx.Data["BuiltinApplications"] = auth.BuiltinApplications()`
Support instance-wide OAuth2 applications (#21335) Support OAuth2 applications created by admins on the admin panel, they aren't owned by anybody. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Lauris BH <lauris@nix.lv> 2022-10-12 16:08:29 +02:00			`ctx.HTML(http.StatusOK, tplSettingsApplications)`
			`}`

			`// ApplicationsPost response for adding an oauth2 application`
			`func ApplicationsPost(ctx *context.Context) {`
			`ctx.Data["Title"] = ctx.Tr("settings.applications")`
			`ctx.Data["PageIsAdminApplications"] = true`

			`oa := newOAuth2CommonHandlers()`
			`oa.AddApp(ctx)`
			`}`

			`// EditApplication displays the given application`
			`func EditApplication(ctx *context.Context) {`
			`ctx.Data["PageIsAdminApplications"] = true`

			`oa := newOAuth2CommonHandlers()`
			`oa.EditShow(ctx)`
			`}`

			`// EditApplicationPost response for editing oauth2 application`
			`func EditApplicationPost(ctx *context.Context) {`
			`ctx.Data["Title"] = ctx.Tr("settings.applications")`
			`ctx.Data["PageIsAdminApplications"] = true`

			`oa := newOAuth2CommonHandlers()`
			`oa.EditSave(ctx)`
			`}`

			`// ApplicationsRegenerateSecret handles the post request for regenerating the secret`
			`func ApplicationsRegenerateSecret(ctx *context.Context) {`
			`ctx.Data["Title"] = ctx.Tr("settings")`
			`ctx.Data["PageIsAdminApplications"] = true`

			`oa := newOAuth2CommonHandlers()`
			`oa.RegenerateSecret(ctx)`
			`}`

			`// DeleteApplication deletes the given oauth2 application`
			`func DeleteApplication(ctx *context.Context) {`
			`oa := newOAuth2CommonHandlers()`
			`oa.DeleteApp(ctx)`
			`}`

			`// TODO: revokes the grant with the given id`