wangwei
/
aiforge
Not watched
1
0
Fork 0
Code
Releases 128 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
Tree: d59544d2a3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd59544d2a3'
${ noResults }
aiforge/routers/private/internal.go

75 lines
2.8 kB
Raw Blame History 

  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. // Package private includes all internal routes. The package name internal is ideal but Golang is not allowed, so we use private as package name instead.

  6. package private

  7. 

  8. import (

  9. 	"net/http"

  10. 	"reflect"

  11. 	"strings"

  12. 

  13. 	"code.gitea.io/gitea/modules/context"

  14. 	"code.gitea.io/gitea/modules/log"

  15. 	"code.gitea.io/gitea/modules/private"

  16. 	"code.gitea.io/gitea/modules/setting"

  17. 	"code.gitea.io/gitea/modules/web"

  18. 

  19. 	"gitea.com/go-chi/binding"

  20. )

  21. 

  22. // CheckInternalToken check internal token is set

  23. func CheckInternalToken(next http.Handler) http.Handler {

  24. 	return http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {

  25. 		tokens := req.Header.Get("Authorization")

  26. 		fields := strings.Fields(tokens)

  27. 		if len(fields) != 2 || fields[0] != "Bearer" || fields[1] != setting.InternalToken {

  28. 			log.Debug("Forbidden attempt to access internal url: Authorization header: %s", tokens)

  29. 			http.Error(w, http.StatusText(http.StatusForbidden), http.StatusForbidden)

  30. 		} else {

  31. 			next.ServeHTTP(w, req)

  32. 		}

  33. 	})

  34. }

  35. 

  36. // bind binding an obj to a handler

  37. func bind(obj interface{}) http.HandlerFunc {

  38. 	var tp = reflect.TypeOf(obj)

  39. 	for tp.Kind() == reflect.Ptr {

  40. 		tp = tp.Elem()

  41. 	}

  42. 	return web.Wrap(func(ctx *context.PrivateContext) {

  43. 		var theObj = reflect.New(tp).Interface() // create a new form obj for every request but not use obj directly

  44. 		binding.Bind(ctx.Req, theObj)

  45. 		web.SetForm(ctx, theObj)

  46. 	})

  47. }

  48. 

  49. // Routes registers all internal APIs routes to web application.

  50. // These APIs will be invoked by internal commands for example `gitea serv` and etc.

  51. func Routes() *web.Route {

  52. 	var r = web.NewRoute()

  53. 	r.Use(context.PrivateContexter())

  54. 	r.Use(CheckInternalToken)

  55. 

  56. 	r.Post("/ssh/authorized_keys", AuthorizedPublicKeyByContent)

  57. 	r.Post("/ssh/{id}/update/{repoid}", UpdatePublicKeyInRepo)

  58. 	r.Post("/hook/pre-receive/{owner}/{repo}", bind(private.HookOptions{}), HookPreReceive)

  59. 	r.Post("/hook/post-receive/{owner}/{repo}", bind(private.HookOptions{}), HookPostReceive)

  60. 	r.Post("/hook/set-default-branch/{owner}/{repo}/{branch}", SetDefaultBranch)

  61. 	r.Get("/serv/none/{keyid}", ServNoCommand)

  62. 	r.Get("/serv/command/{keyid}/{owner}/{repo}", ServCommand)

  63. 	r.Post("/manager/shutdown", Shutdown)

  64. 	r.Post("/manager/restart", Restart)

  65. 	r.Post("/manager/flush-queues", bind(private.FlushOptions{}), FlushQueues)

  66. 	r.Post("/manager/pause-logging", PauseLogging)

  67. 	r.Post("/manager/resume-logging", ResumeLogging)

  68. 	r.Post("/manager/release-and-reopen-logging", ReleaseReopenLogging)

  69. 	r.Post("/manager/add-logger", bind(private.LoggerOptions{}), AddLogger)

  70. 	r.Post("/manager/remove-logger/{group}/{name}", RemoveLogger)

  71. 	r.Post("/mail/send", SendEmail)

  72. 

  73. 	return r

  74. }