gitlabhq/lib/api/internal.rb

module Gitlab
  # Internal access API
  class Internal < Grape::API
    namespace 'internal' do
      #
      # Check if ssh key has access to project code
      #
      # Params:
      #   key_id - SSH Key id
      #   project - project path with namespace
      #   action - git action (git-upload-pack or git-receive-pack)
      #   ref - branch name
      #
      get "/allowed" do
        # Check for *.wiki repositories.
        # Strip out the .wiki from the pathname before finding the
        # project. This applies the correct project permissions to
        # the wiki repository as well.
        project_path = params[:project]
        project_path.gsub!(/\.wiki/,'') if project_path =~ /\.wiki/

        key = Key.find(params[:key_id])
        project = Project.find_with_namespace(project_path)
        git_cmd = params[:action]


        if key.is_deploy_key
          project == key.project && git_cmd == 'git-upload-pack'
        else
          user = key.user

          return false if user.blocked?

          action = case git_cmd
                   when 'git-upload-pack'
                     then :download_code
                   when 'git-receive-pack'
                     then
                     if project.protected_branch?(params[:ref])
                       :push_code_to_protected_branches
                     else
                       :push_code
                     end
                   end

          user.can?(action, project)
        end
      end

      #
      # Discover user by ssh key
      #
      get "/discover" do
        key = Key.find(params[:key_id])
        present key.user, with: Entities::UserSafe
      end

      get "/check" do
        {
          api_version: Gitlab::API.version,
          gitlab_version: Gitlab::VERSION,
          gitlab_rev: Gitlab::REVISION,
        }
      end
    end
  end
end
Internal API 2013-02-04 16:53:43 +01:00			`module Gitlab`
Fixed: post-receive, project remove, tests 2013-02-05 11:47:50 +01:00			`# Internal access API`
Internal API 2013-02-04 16:53:43 +01:00			`class Internal < Grape::API`
Fixed: post-receive, project remove, tests 2013-02-05 11:47:50 +01:00			`namespace 'internal' do`
			`#`
			`# Check if ssh key has access to project code`
			`#`
specs for api/internal 2013-02-26 21:53:59 +01:00			`# Params:`
			`# key_id - SSH Key id`
			`# project - project path with namespace`
			`# action - git action (git-upload-pack or git-receive-pack)`
			`# ref - branch name`
			`#`
Fixed: post-receive, project remove, tests 2013-02-05 11:47:50 +01:00			`get "/allowed" do`
Replace current Wiki system with Gollum Wikis. This commit replaces the old database backed Wiki system with the excellent Gollum git based Wiki system. The UI has been updated to allow for utilizing the extra features that Gollum provides. Specifically: * Edit page now allows you to choose the content format. * Edit page allows you to provide a commit message for the change. * History page now shows Format, Commit Message, and Commit Hash. * A new Git Access page has been added with the Wiki Repo URL. * The default page has been changed to Home from Index to match the Gollum standard. The old Wiki model has been left in tact to provide for the development of a migration script that will move all content stored in the old Wiki system into new Gollum Wikis. 2013-03-04 04:43:52 +01:00			`# Check for *.wiki repositories.`
			`# Strip out the .wiki from the pathname before finding the`
			`# project. This applies the correct project permissions to`
			`# the wiki repository as well.`
			`project_path = params[:project]`
			`project_path.gsub!(/\.wiki/,'') if project_path =~ /\.wiki/`

Fixed: post-receive, project remove, tests 2013-02-05 11:47:50 +01:00			`key = Key.find(params[:key_id])`
Replace current Wiki system with Gollum Wikis. This commit replaces the old database backed Wiki system with the excellent Gollum git based Wiki system. The UI has been updated to allow for utilizing the extra features that Gollum provides. Specifically: * Edit page now allows you to choose the content format. * Edit page allows you to provide a commit message for the change. * History page now shows Format, Commit Message, and Commit Hash. * A new Git Access page has been added with the Wiki Repo URL. * The default page has been changed to Home from Index to match the Gollum standard. The old Wiki model has been left in tact to provide for the development of a migration script that will move all content stored in the old Wiki system into new Gollum Wikis. 2013-03-04 04:43:52 +01:00			`project = Project.find_with_namespace(project_path)`
deploy keys support for gitlab-shell api 2013-02-07 08:56:13 +01:00			`git_cmd = params[:action]`


			`if key.is_deploy_key`
			`project == key.project && git_cmd == 'git-upload-pack'`
			`else`
			`user = key.user`
block user should not be able to push 2013-03-07 13:18:30 +01:00
			`return false if user.blocked?`

deploy keys support for gitlab-shell api 2013-02-07 08:56:13 +01:00			`action = case git_cmd`
			`when 'git-upload-pack'`
			`then :download_code`
			`when 'git-receive-pack'`
			`then`
			`if project.protected_branch?(params[:ref])`
			`:push_code_to_protected_branches`
			`else`
			`:push_code`
			`end`
Fixed: post-receive, project remove, tests 2013-02-05 11:47:50 +01:00			`end`
Internal API 2013-02-04 16:53:43 +01:00
deploy keys support for gitlab-shell api 2013-02-07 08:56:13 +01:00			`user.can?(action, project)`
			`end`
Fixed: post-receive, project remove, tests 2013-02-05 11:47:50 +01:00			`end`

			`#`
			`# Discover user by ssh key`
			`#`
			`get "/discover" do`
			`key = Key.find(params[:key_id])`
Reduce amount of user info provided with internal api 2013-03-11 13:35:00 +01:00			`present key.user, with: Entities::UserSafe`
Fixed: post-receive, project remove, tests 2013-02-05 11:47:50 +01:00			`end`
api check call 2013-02-05 14:55:49 +01:00
			`get "/check" do`
			`{`
uppercase Gitlab version and revision constants. check api return gitlab version now 2013-02-16 13:42:22 +01:00			`api_version: Gitlab::API.version,`
			`gitlab_version: Gitlab::VERSION,`
			`gitlab_rev: Gitlab::REVISION,`
api check call 2013-02-05 14:55:49 +01:00			`}`
			`end`
Internal API 2013-02-04 16:53:43 +01:00			`end`
			`end`
			`end`