githubFork/gitblit.git - Solinfo Gitblit

			@@ -100,6 +100,7 @@
			import com.gitblit.utils.ContainerUtils;
			import com.gitblit.utils.DeepCopier;
			import com.gitblit.utils.FederationUtils;
			import com.gitblit.utils.HttpUtils;
			import com.gitblit.utils.JGitUtils;
			import com.gitblit.utils.JsonUtils;
			import com.gitblit.utils.MetricUtils;
			@@ -561,6 +562,14 @@
			* @return a user object or null
			*/
			public UserModel authenticate(HttpServletRequest httpRequest) {
			boolean checkValidity = settings.getBoolean(Keys.git.enforceCertificateValidity, true);
			String [] oids = getStrings(Keys.git.certificateUsernameOIDs).toArray(new String[0]);
			UserModel model = HttpUtils.getUserModelFromCertificate(httpRequest, checkValidity, oids);
			if (model != null) {
			UserModel user = GitBlit.self().getUserModel(model.username);
			logger.info("{0} authenticated by client certificate from {1}", user.username, httpRequest.getRemoteAddr());
			return user;
			}
			return null;
			}

			@@ -660,46 +669,76 @@
			* @return a user object or null
			*/
			public UserModel getUserModel(String username) {
			UserModel user = userService.getUserModel(username);
			UserModel user = userService.getUserModel(username);
			return user;
			}

			/**
			* Returns the effective list of permissions for this user, taking into account
			* team memberships, ownerships.
			*
			* @param user
			* @return the effective list of permissions for the user
			*/
			public List<RegistrantAccessPermission> getUserAccessPermissions(UserModel user) {
			Set<RegistrantAccessPermission> set = new LinkedHashSet<RegistrantAccessPermission>();
			set.addAll(user.getRepositoryPermissions());
			// Flag missing repositories
			for (RegistrantAccessPermission permission : set) {
			if (permission.mutable && PermissionType.EXPLICIT.equals(permission.permissionType)) {
			RepositoryModel rm = GitBlit.self().getRepositoryModel(permission.registrant);
			if (rm == null) {
			permission.permissionType = PermissionType.MISSING;
			permission.mutable = false;
			continue;
			}
			}
			}

			// TODO reconsider ownership as a user property
			// manually specify personal repository ownerships
			for (RepositoryModel rm : repositoryListCache.values()) {
			if (rm.isUsersPersonalRepository(user.username) \|\| rm.isOwner(user.username)) {
			RegistrantAccessPermission rp = new RegistrantAccessPermission(rm.name, AccessPermission.REWIND,
			PermissionType.OWNER, RegistrantType.REPOSITORY, null, false);
			// user may be owner of a repository to which they've inherited
			// a team permission, replace any existing perm with owner perm
			set.remove(rp);
			set.add(rp);
			}
			}

			List<RegistrantAccessPermission> list = new ArrayList<RegistrantAccessPermission>(set);
			Collections.sort(list);
			return list;
			}

			/**
			* Returns the list of users and their access permissions for the specified repository.
			* Returns the list of users and their access permissions for the specified
			* repository including permission source information such as the team or
			* regular expression which sets the permission.
			*
			* @param repository
			* @return a list of User-AccessPermission tuples
			* @return a list of RegistrantAccessPermissions
			*/
			public List<RegistrantAccessPermission> getUserAccessPermissions(RepositoryModel repository) {
			Set<RegistrantAccessPermission> permissions = new LinkedHashSet<RegistrantAccessPermission>();
			if (!StringUtils.isEmpty(repository.owner)) {
			UserModel owner = userService.getUserModel(repository.owner);
			if (owner != null) {
			permissions.add(new RegistrantAccessPermission(owner.username, AccessPermission.REWIND, PermissionType.OWNER, RegistrantType.USER, false));
			List<RegistrantAccessPermission> list = new ArrayList<RegistrantAccessPermission>();
			if (AccessRestrictionType.NONE.equals(repository.accessRestriction)) {
			// no permissions needed, REWIND for everyone!
			return list;
			}
			if (AuthorizationControl.AUTHENTICATED.equals(repository.authorizationControl)) {
			// no permissions needed, REWIND for authenticated!
			return list;
			}
			// NAMED users and teams
			for (UserModel user : userService.getAllUsers()) {
			RegistrantAccessPermission ap = user.getRepositoryPermission(repository);
			if (ap.permission.exceeds(AccessPermission.NONE)) {
			list.add(ap);
			}
			}
			if (repository.isPersonalRepository()) {
			UserModel owner = userService.getUserModel(repository.projectPath.substring(1));
			if (owner != null) {
			permissions.add(new RegistrantAccessPermission(owner.username, AccessPermission.REWIND, PermissionType.OWNER, RegistrantType.USER, false));
			}
			}
			for (String user : userService.getUsernamesForRepositoryRole(repository.name)) {
			UserModel model = userService.getUserModel(user);
			AccessPermission ap = model.getRepositoryPermission(repository);
			PermissionType pType = PermissionType.REGEX;
			boolean editable = false;
			if (repository.isOwner(model.username)) {
			pType = PermissionType.OWNER;
			} else if (repository.isUsersPersonalRepository(model.username)) {
			pType = PermissionType.OWNER;
			} else if (model.hasExplicitRepositoryPermission(repository.name)) {
			pType = PermissionType.EXPLICIT;
			editable = true;
			}
			permissions.add(new RegistrantAccessPermission(user, ap, pType, RegistrantType.USER, editable));
			}
			return new ArrayList<RegistrantAccessPermission>(permissions);
			return list;
			}

			/**
			@@ -712,7 +751,7 @@
			public boolean setUserAccessPermissions(RepositoryModel repository, Collection<RegistrantAccessPermission> permissions) {
			List<UserModel> users = new ArrayList<UserModel>();
			for (RegistrantAccessPermission up : permissions) {
			if (up.isEditable) {
			if (up.mutable) {
			// only set editable defined permissions
			UserModel user = userService.getUserModel(up.registrant);
			user.setRepositoryPermission(repository.name, up.permission);
			@@ -823,25 +862,23 @@
			}

			/**
			* Returns the list of teams and their access permissions for the specified repository.
			* Returns the list of teams and their access permissions for the specified
			* repository including the source of the permission such as the admin flag
			* or a regular expression.
			*
			* @param repository
			* @return a list of Team-AccessPermission tuples
			* @return a list of RegistrantAccessPermissions
			*/
			public List<RegistrantAccessPermission> getTeamAccessPermissions(RepositoryModel repository) {
			List<RegistrantAccessPermission> permissions = new ArrayList<RegistrantAccessPermission>();
			for (String team : userService.getTeamnamesForRepositoryRole(repository.name)) {
			TeamModel model = userService.getTeamModel(team);
			AccessPermission ap = model.getRepositoryPermission(repository);
			PermissionType pType = PermissionType.REGEX;
			boolean editable = false;
			if (model.hasExplicitRepositoryPermission(repository.name)) {
			pType = PermissionType.EXPLICIT;
			editable = true;
			List<RegistrantAccessPermission> list = new ArrayList<RegistrantAccessPermission>();
			for (TeamModel team : userService.getAllTeams()) {
			RegistrantAccessPermission ap = team.getRepositoryPermission(repository);
			if (ap.permission.exceeds(AccessPermission.NONE)) {
			list.add(ap);
			}
			permissions.add(new RegistrantAccessPermission(team, ap, pType, RegistrantType.TEAM, editable));
			}
			return permissions;
			Collections.sort(list);
			return list;
			}

			/**
			@@ -854,7 +891,7 @@
			public boolean setTeamAccessPermissions(RepositoryModel repository, Collection<RegistrantAccessPermission> permissions) {
			List<TeamModel> teams = new ArrayList<TeamModel>();
			for (RegistrantAccessPermission tp : permissions) {
			if (tp.isEditable) {
			if (tp.mutable) {
			// only set explicitly defined access permissions
			TeamModel team = userService.getTeamModel(tp.registrant);
			team.setRepositoryPermission(repository.name, tp.permission);
			@@ -932,7 +969,7 @@
			*/
			private void addToCachedRepositoryList(RepositoryModel model) {
			if (settings.getBoolean(Keys.git.cacheRepositoryList, true)) {
			repositoryListCache.put(model.name, model);
			repositoryListCache.put(model.name.toLowerCase(), model);

			// update the fork origin repository with this repository clone
			if (!StringUtils.isEmpty(model.originRepository)) {
			@@ -954,7 +991,7 @@
			if (StringUtils.isEmpty(name)) {
			return null;
			}
			return repositoryListCache.remove(name);
			return repositoryListCache.remove(name.toLowerCase());
			}

			/**
			@@ -1045,6 +1082,16 @@
			// update cache
			for (String repository : repositories) {
			getRepositoryModel(repository);
			}
			}

			// rebuild fork networks
			for (RepositoryModel model : repositoryListCache.values()) {
			if (!StringUtils.isEmpty(model.originRepository)) {
			if (repositoryListCache.containsKey(model.originRepository)) {
			RepositoryModel origin = repositoryListCache.get(model.originRepository);
			origin.addFork(model.name);
			}
			}
			}

			@@ -1178,7 +1225,7 @@
			}

			// cached model
			RepositoryModel model = repositoryListCache.get(repositoryName);
			RepositoryModel model = repositoryListCache.get(repositoryName.toLowerCase());

			if (gcExecutor.isCollectingGarbage(model.name)) {
			// Gitblit is busy collecting garbage, use our cached model
			@@ -1445,7 +1492,7 @@
			Constants.CONFIG_GITBLIT, null, "federationSets")));
			model.isFederated = getConfig(config, "isFederated", false);
			model.gcThreshold = getConfig(config, "gcThreshold", settings.getString(Keys.git.defaultGarbageCollectionThreshold, "500KB"));
			model.gcPeriod = getConfig(config, "gcPeriod", settings.getString(Keys.git.defaultGarbageCollectionPeriod, "7 days"));
			model.gcPeriod = getConfig(config, "gcPeriod", settings.getInteger(Keys.git.defaultGarbageCollectionPeriod, 7));
			try {
			model.lastGC = new SimpleDateFormat(Constants.ISO8601).parse(getConfig(config, "lastGC", "1970-01-01'T'00:00:00Z"));
			} catch (Exception e) {
			@@ -1483,7 +1530,7 @@
			// ensure origin still exists
			File repoFolder = new File(getRepositoriesFolder(), originRepo);
			if (repoFolder.exists()) {
			model.originRepository = originRepo;
			model.originRepository = originRepo.toLowerCase();
			}
			}
			} catch (URISyntaxException e) {
			@@ -1503,7 +1550,7 @@
			if (settings.getBoolean(Keys.git.cacheRepositoryList, true)) {
			// if we are caching use the cache to determine availability
			// otherwise we end up adding a phantom repository to the cache
			return repositoryListCache.containsKey(repositoryName);
			return repositoryListCache.containsKey(repositoryName.toLowerCase());
			}
			Repository r = getRepository(repositoryName, false);
			if (r == null) {
			@@ -1561,7 +1608,7 @@
			}

			for (String repository : repositoryListCache.keySet()) {
			if (repository.toLowerCase().startsWith(userPath)) {
			if (repository.startsWith(userPath)) {
			RepositoryModel model = repositoryListCache.get(repository);
			if (!StringUtils.isEmpty(model.originRepository)) {
			if (roots.contains(model.originRepository)) {
			@@ -1575,7 +1622,7 @@
			// not caching
			ProjectModel project = getProjectModel(userProject);
			for (String repository : project.repositories) {
			if (repository.toLowerCase().startsWith(userProject)) {
			if (repository.startsWith(userProject)) {
			RepositoryModel model = repositoryListCache.get(repository);
			if (model.originRepository.equalsIgnoreCase(origin)) {
			// user has a fork
			@@ -1598,7 +1645,7 @@
			public ForkModel getForkNetwork(String repository) {
			if (settings.getBoolean(Keys.git.cacheRepositoryList, true)) {
			// find the root
			RepositoryModel model = repositoryListCache.get(repository);
			RepositoryModel model = repositoryListCache.get(repository.toLowerCase());
			while (model.originRepository != null) {
			model = repositoryListCache.get(model.originRepository);
			}
			@@ -1609,7 +1656,7 @@
			}

			private ForkModel getForkModel(String repository) {
			RepositoryModel model = repositoryListCache.get(repository);
			RepositoryModel model = repositoryListCache.get(repository.toLowerCase());
			ForkModel fork = new ForkModel(model);
			if (!ArrayUtils.isEmpty(model.forks)) {
			for (String aFork : model.forks) {
			@@ -1729,6 +1776,27 @@
			*/
			private boolean getConfig(StoredConfig config, String field, boolean defaultValue) {
			return config.getBoolean(Constants.CONFIG_GITBLIT, field, defaultValue);
			}

			/**
			* Returns the gitblit string value for the specified key. If key is not
			* set, returns defaultValue.
			*
			* @param config
			* @param field
			* @param defaultValue
			* @return field value or defaultValue
			*/
			private int getConfig(StoredConfig config, String field, int defaultValue) {
			String value = config.getString(Constants.CONFIG_GITBLIT, null, field);
			if (StringUtils.isEmpty(value)) {
			return defaultValue;
			}
			try {
			return Integer.parseInt(value);
			} catch (Exception e) {
			}
			return defaultValue;
			}

			/**
			@@ -1896,7 +1964,7 @@
			repository.federationStrategy.name());
			config.setBoolean(Constants.CONFIG_GITBLIT, null, "isFederated", repository.isFederated);
			config.setString(Constants.CONFIG_GITBLIT, null, "gcThreshold", repository.gcThreshold);
			config.setString(Constants.CONFIG_GITBLIT, null, "gcPeriod", repository.gcPeriod);
			config.setInt(Constants.CONFIG_GITBLIT, null, "gcPeriod", repository.gcPeriod);
			if (repository.lastGC != null) {
			config.setString(Constants.CONFIG_GITBLIT, null, "lastGC", new SimpleDateFormat(Constants.ISO8601).format(repository.lastGC));
			}
			@@ -2195,6 +2263,8 @@
			case PULL_SETTINGS:
			case PULL_SCRIPTS:
			return token.equals(all);
			default:
			break;
			}
			return false;
			}
			@@ -2337,6 +2407,8 @@
			if (!StringUtils.isEmpty(model.origin)) {
			url = model.origin;
			}
			break;
			default:
			break;
			}

			@@ -2595,6 +2667,37 @@
			}

			/**
			* Notify users by email of something.
			*
			* @param subject
			* @param message
			* @param toAddresses
			*/
			public void sendHtmlMail(String subject, String message, Collection<String> toAddresses) {
			this.sendHtmlMail(subject, message, toAddresses.toArray(new String[0]));
			}

			/**
			* Notify users by email of something.
			*
			* @param subject
			* @param message
			* @param toAddresses
			*/
			public void sendHtmlMail(String subject, String message, String... toAddresses) {
			try {
			Message mail = mailExecutor.createMessage(toAddresses);
			if (mail != null) {
			mail.setSubject(subject);
			mail.setContent(message, "text/html");
			mailExecutor.queue(mail);
			}
			} catch (MessagingException e) {
			logger.error("Messaging error", e);
			}
			}

			/**
			* Returns the descriptions/comments of the Gitblit config settings.
			*
			* @return SettingsModel
			@@ -2695,15 +2798,15 @@
			public void configureContext(IStoredSettings settings, boolean startFederation) {
			logger.info("Reading configuration from " + settings.toString());
			this.settings = settings;


			repositoriesFolder = getRepositoriesFolder();
			logger.info("Git repositories folder " + repositoriesFolder.getAbsolutePath());

			// prepare service executors
			mailExecutor = new MailExecutor(settings);
			luceneExecutor = new LuceneExecutor(settings, repositoriesFolder);
			gcExecutor = new GCExecutor(settings);

			repositoriesFolder = getRepositoriesFolder();
			logger.info("Git repositories folder " + repositoriesFolder.getAbsolutePath());

			// calculate repository list settings checksum for future config changes
			repositoryListSettingsChecksum.set(getRepositoryListSettingsChecksum());

			@@ -2876,6 +2979,14 @@
			}

			/**
			*
			* @return true if we are running the gc executor
			*/
			public boolean isCollectingGarbage() {
			return gcExecutor.isRunning();
			}

			/**
			* Returns true if Gitblit is actively collecting garbage in this repository.
			*
			* @param repositoryName