deac/gitolite
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

add some checks to perms

Browse source 
- check user auth
  - check role names in legacy mode
This commit is contained in:
Sitaram Chamarty 2012-03-20 10:18:02 +05:30
parent a6d8184a56
commit 34cfdb4355
1 changed files with 8 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
src/commands/perms
View file

@ -40,7 +40,7 @@ setperms(@ARGV);
sub getperms { sub getperms {
my $repo = shift; my $repo = shift;
_die "repo '$repo' missing" if repo_missing($repo); _die "sorry you are not authorised" if repo_missing($repo) or creator($repo) ne $ENV{GL_USER};
my $pf = "$rc{GL_REPO_BASE}/$repo.git/gl-perms"; my $pf = "$rc{GL_REPO_BASE}/$repo.git/gl-perms";
print slurp($pf) if -f $pf; print slurp($pf) if -f $pf;
@ -50,13 +50,18 @@ sub getperms {
sub setperms { sub setperms {
my $repo = shift; my $repo = shift;
_die "repo '$repo' missing" if repo_missing($repo); _die "sorry you are not authorised" if repo_missing($repo) or creator($repo) ne $ENV{GL_USER};
my $pf = "$rc{GL_REPO_BASE}/$repo.git/gl-perms"; my $pf = "$rc{GL_REPO_BASE}/$repo.git/gl-perms";
if ( not @_ ) { if ( not @_ ) {
# legacy mode; pipe data in # legacy mode; pipe data in
@ARGV = (); @ARGV = ();
_print( $pf, <> ); my @a;
for (<>) {
_die "Invalid role '$1'; check the rc file" if /(\S+)/ and not $rc{ROLES}{$1};
push @a, $_;
}
_print( $pf, @a );
exit; exit;
} }