2022-10-18 01:24:12 +00:00
|
|
|
// Copyright 2022 Woodpecker Authors
|
2021-06-28 17:28:18 +00:00
|
|
|
// Copyright 2021 Informatyka Boguslawski sp. z o.o. sp.k., http://www.ib.pl/
|
2022-10-18 01:24:12 +00:00
|
|
|
// Copyright 2018 Drone.IO Inc.
|
2018-03-21 13:02:17 +00:00
|
|
|
//
|
2018-02-19 22:24:10 +00:00
|
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
// you may not use this file except in compliance with the License.
|
|
|
|
// You may obtain a copy of the License at
|
2018-03-21 13:02:17 +00:00
|
|
|
//
|
2018-02-19 22:24:10 +00:00
|
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
2018-03-21 13:02:17 +00:00
|
|
|
//
|
2018-02-19 22:24:10 +00:00
|
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
// See the License for the specific language governing permissions and
|
|
|
|
// limitations under the License.
|
|
|
|
|
2021-09-22 18:48:01 +00:00
|
|
|
package api
|
2015-04-08 22:43:59 +00:00
|
|
|
|
|
|
|
import (
|
2023-07-14 00:03:54 +00:00
|
|
|
"errors"
|
2015-09-30 01:21:17 +00:00
|
|
|
"fmt"
|
2019-06-28 06:29:57 +00:00
|
|
|
"net/http"
|
2024-05-27 09:52:43 +00:00
|
|
|
"strconv"
|
2016-01-10 23:19:48 +00:00
|
|
|
|
|
|
|
"github.com/gin-gonic/gin"
|
2021-10-12 07:25:13 +00:00
|
|
|
"github.com/rs/zerolog/log"
|
2017-03-16 10:14:02 +00:00
|
|
|
|
2023-12-08 07:15:08 +00:00
|
|
|
"go.woodpecker-ci.org/woodpecker/v2/server"
|
2024-02-11 09:44:50 +00:00
|
|
|
"go.woodpecker-ci.org/woodpecker/v2/server/forge"
|
2023-12-08 07:15:08 +00:00
|
|
|
"go.woodpecker-ci.org/woodpecker/v2/server/forge/types"
|
|
|
|
"go.woodpecker-ci.org/woodpecker/v2/server/model"
|
|
|
|
"go.woodpecker-ci.org/woodpecker/v2/server/pipeline"
|
|
|
|
"go.woodpecker-ci.org/woodpecker/v2/server/store"
|
|
|
|
"go.woodpecker-ci.org/woodpecker/v2/shared/token"
|
2015-04-08 22:43:59 +00:00
|
|
|
)
|
|
|
|
|
2023-06-03 19:38:36 +00:00
|
|
|
// GetQueueInfo
|
|
|
|
//
|
2023-12-24 14:50:01 +00:00
|
|
|
// @Summary Get pipeline queue information
|
2023-06-03 19:38:36 +00:00
|
|
|
// @Description TODO: link the InfoT response object - this is blocked, until the `swaggo/swag` tool dependency is v1.18.12 or newer
|
2023-12-24 14:50:01 +00:00
|
|
|
// @Router /queue/info [get]
|
|
|
|
// @Produce json
|
|
|
|
// @Success 200 {object} map[string]string
|
|
|
|
// @Tags Pipeline queues
|
|
|
|
// @Param Authorization header string true "Insert your personal access token" default(Bearer <personal access token>)
|
2017-03-16 10:14:02 +00:00
|
|
|
func GetQueueInfo(c *gin.Context) {
|
2023-03-19 12:52:58 +00:00
|
|
|
c.IndentedJSON(http.StatusOK,
|
2021-09-22 18:48:01 +00:00
|
|
|
server.Config.Services.Queue.Info(c),
|
2017-03-16 10:14:02 +00:00
|
|
|
)
|
|
|
|
}
|
|
|
|
|
2023-06-03 19:38:36 +00:00
|
|
|
// PauseQueue
|
|
|
|
//
|
2024-05-01 09:50:41 +00:00
|
|
|
// @Summary Pause the pipeline queue
|
2023-06-03 19:38:36 +00:00
|
|
|
// @Router /queue/pause [post]
|
|
|
|
// @Produce plain
|
2023-10-28 11:37:54 +00:00
|
|
|
// @Success 204
|
2023-06-03 19:38:36 +00:00
|
|
|
// @Tags Pipeline queues
|
|
|
|
// @Param Authorization header string true "Insert your personal access token" default(Bearer <personal access token>)
|
2019-06-28 06:29:57 +00:00
|
|
|
func PauseQueue(c *gin.Context) {
|
2021-09-22 18:48:01 +00:00
|
|
|
server.Config.Services.Queue.Pause()
|
2023-10-28 11:37:54 +00:00
|
|
|
c.Status(http.StatusNoContent)
|
2019-06-28 06:29:57 +00:00
|
|
|
}
|
|
|
|
|
2023-06-03 19:38:36 +00:00
|
|
|
// ResumeQueue
|
|
|
|
//
|
2024-05-01 09:50:41 +00:00
|
|
|
// @Summary Resume the pipeline queue
|
2023-06-03 19:38:36 +00:00
|
|
|
// @Router /queue/resume [post]
|
|
|
|
// @Produce plain
|
2023-10-28 11:37:54 +00:00
|
|
|
// @Success 204
|
2023-06-03 19:38:36 +00:00
|
|
|
// @Tags Pipeline queues
|
|
|
|
// @Param Authorization header string true "Insert your personal access token" default(Bearer <personal access token>)
|
2019-06-28 06:29:57 +00:00
|
|
|
func ResumeQueue(c *gin.Context) {
|
2021-09-22 18:48:01 +00:00
|
|
|
server.Config.Services.Queue.Resume()
|
2023-10-28 11:37:54 +00:00
|
|
|
c.Status(http.StatusNoContent)
|
2019-06-28 06:29:57 +00:00
|
|
|
}
|
|
|
|
|
2023-06-03 19:38:36 +00:00
|
|
|
// BlockTilQueueHasRunningItem
|
|
|
|
//
|
|
|
|
// @Summary Block til pipeline queue has a running item
|
|
|
|
// @Router /queue/norunningpipelines [get]
|
|
|
|
// @Produce plain
|
2023-10-28 11:37:54 +00:00
|
|
|
// @Success 204
|
2023-06-03 19:38:36 +00:00
|
|
|
// @Tags Pipeline queues
|
|
|
|
// @Param Authorization header string true "Insert your personal access token" default(Bearer <personal access token>)
|
2019-06-28 06:42:06 +00:00
|
|
|
func BlockTilQueueHasRunningItem(c *gin.Context) {
|
|
|
|
for {
|
2021-09-22 18:48:01 +00:00
|
|
|
info := server.Config.Services.Queue.Info(c)
|
2019-06-28 06:42:06 +00:00
|
|
|
if info.Stats.Running == 0 {
|
|
|
|
break
|
|
|
|
}
|
|
|
|
}
|
2023-10-28 11:37:54 +00:00
|
|
|
c.Status(http.StatusNoContent)
|
2019-06-28 06:42:06 +00:00
|
|
|
}
|
|
|
|
|
2023-06-03 19:38:36 +00:00
|
|
|
// PostHook
|
|
|
|
//
|
|
|
|
// @Summary Incoming webhook from forge
|
|
|
|
// @Router /hook [post]
|
|
|
|
// @Produce plain
|
|
|
|
// @Success 200
|
|
|
|
// @Tags System
|
|
|
|
// @Param hook body object true "the webhook payload; forge is automatically detected"
|
2015-04-08 22:43:59 +00:00
|
|
|
func PostHook(c *gin.Context) {
|
2021-12-01 13:22:06 +00:00
|
|
|
_store := store.FromContext(c)
|
2024-04-16 06:04:55 +00:00
|
|
|
|
|
|
|
_forge, err := server.Config.Services.Manager.ForgeMain() // TODO: get the forge for the specific repo somehow
|
|
|
|
if err != nil {
|
|
|
|
log.Error().Err(err).Msg("Cannot get main forge")
|
|
|
|
c.AbortWithStatus(http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
2015-04-08 22:43:59 +00:00
|
|
|
|
2023-08-16 14:15:44 +00:00
|
|
|
//
|
|
|
|
// 1. Parse webhook
|
|
|
|
//
|
|
|
|
|
2024-02-11 09:44:50 +00:00
|
|
|
tmpRepo, tmpPipeline, err := _forge.Hook(c, c.Request)
|
2015-04-08 22:43:59 +00:00
|
|
|
if err != nil {
|
2023-07-14 00:03:54 +00:00
|
|
|
if errors.Is(err, &types.ErrIgnoreEvent{}) {
|
|
|
|
msg := fmt.Sprintf("forge driver: %s", err)
|
|
|
|
log.Debug().Err(err).Msg(msg)
|
|
|
|
c.String(http.StatusOK, msg)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2021-12-17 23:09:09 +00:00
|
|
|
msg := "failure to parse hook"
|
|
|
|
log.Debug().Err(err).Msg(msg)
|
2021-12-18 13:58:01 +00:00
|
|
|
c.String(http.StatusBadRequest, msg)
|
2015-04-08 22:43:59 +00:00
|
|
|
return
|
|
|
|
}
|
2023-07-14 00:03:54 +00:00
|
|
|
|
2023-08-16 00:42:37 +00:00
|
|
|
if tmpPipeline == nil {
|
2022-10-18 01:24:12 +00:00
|
|
|
msg := "ignoring hook: hook parsing resulted in empty pipeline"
|
2021-12-18 13:58:01 +00:00
|
|
|
log.Debug().Msg(msg)
|
|
|
|
c.String(http.StatusOK, msg)
|
2015-04-08 22:43:59 +00:00
|
|
|
return
|
|
|
|
}
|
2021-09-27 21:32:08 +00:00
|
|
|
if tmpRepo == nil {
|
2021-12-18 13:58:01 +00:00
|
|
|
msg := "failure to ascertain repo from hook"
|
|
|
|
log.Debug().Msg(msg)
|
|
|
|
c.String(http.StatusBadRequest, msg)
|
2015-04-08 22:43:59 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2023-08-16 14:15:44 +00:00
|
|
|
//
|
|
|
|
// 2. Get related repo from store and take repo renaming into account
|
|
|
|
//
|
|
|
|
|
2022-11-15 14:01:23 +00:00
|
|
|
repo, err := _store.GetRepoNameFallback(tmpRepo.ForgeRemoteID, tmpRepo.FullName)
|
2015-04-08 22:43:59 +00:00
|
|
|
if err != nil {
|
2023-09-02 11:31:10 +00:00
|
|
|
log.Error().Err(err).Msgf("failure to get repo %s from store", tmpRepo.FullName)
|
2024-01-10 21:56:42 +00:00
|
|
|
handleDBError(c, err)
|
2015-04-08 22:43:59 +00:00
|
|
|
return
|
|
|
|
}
|
2017-07-14 19:58:38 +00:00
|
|
|
if !repo.IsActive {
|
2023-09-02 11:31:10 +00:00
|
|
|
log.Debug().Msgf("ignoring hook: repo %s is inactive", tmpRepo.FullName)
|
|
|
|
c.Status(http.StatusNoContent)
|
2017-07-14 19:58:38 +00:00
|
|
|
return
|
|
|
|
}
|
2024-05-27 09:52:43 +00:00
|
|
|
currentRepoFullName := repo.FullName
|
2022-09-05 15:08:51 +00:00
|
|
|
|
2023-08-16 14:15:44 +00:00
|
|
|
if repo.UserID == 0 {
|
2023-09-02 11:31:10 +00:00
|
|
|
log.Warn().Msgf("ignoring hook. repo %s has no owner.", repo.FullName)
|
|
|
|
c.Status(http.StatusNoContent)
|
2022-09-05 15:08:51 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2024-02-11 09:44:50 +00:00
|
|
|
user, err := _store.GetUser(repo.UserID)
|
|
|
|
if err != nil {
|
|
|
|
handleDBError(c, err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
forge.Refresh(c, _forge, _store, user)
|
|
|
|
|
2023-08-16 14:15:44 +00:00
|
|
|
//
|
|
|
|
// 3. Check if the webhook is a valid and authorized one
|
|
|
|
//
|
|
|
|
|
2015-08-11 08:36:07 +00:00
|
|
|
// get the token and verify the hook is authorized
|
2024-05-27 09:52:43 +00:00
|
|
|
parsedToken, err := token.ParseRequest(c.Request, func(_ *token.Token) (string, error) {
|
2015-09-09 21:05:52 +00:00
|
|
|
return repo.Hash, nil
|
|
|
|
})
|
|
|
|
if err != nil {
|
2021-12-17 23:09:09 +00:00
|
|
|
msg := fmt.Sprintf("failure to parse token from hook for %s", repo.FullName)
|
|
|
|
log.Error().Err(err).Msg(msg)
|
2021-12-18 13:58:01 +00:00
|
|
|
c.String(http.StatusBadRequest, msg)
|
2015-09-09 21:05:52 +00:00
|
|
|
return
|
|
|
|
}
|
2024-05-27 09:52:43 +00:00
|
|
|
|
|
|
|
// TODO: remove fallback for text full name in next major release
|
|
|
|
verifiedKey := parsedToken.Get("repo-id") == strconv.FormatInt(repo.ID, 10) || parsedToken.Get("text") == currentRepoFullName
|
2022-09-05 15:08:51 +00:00
|
|
|
if !verifiedKey {
|
|
|
|
verifiedKey, err = _store.HasRedirectionForRepo(repo.ID, repo.FullName)
|
|
|
|
if err != nil {
|
|
|
|
msg := "failure to verify token from hook. Could not check for redirections of the repo"
|
|
|
|
log.Error().Err(err).Msg(msg)
|
|
|
|
c.String(http.StatusInternalServerError, msg)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if !verifiedKey {
|
2024-05-27 09:52:43 +00:00
|
|
|
msg := fmt.Sprintf("failure to verify token from hook. Expected %s, got %s", repo.FullName, parsedToken.Get("text"))
|
2021-12-17 23:09:09 +00:00
|
|
|
log.Debug().Msg(msg)
|
|
|
|
c.String(http.StatusForbidden, msg)
|
2015-08-11 08:36:07 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2023-08-16 14:15:44 +00:00
|
|
|
//
|
|
|
|
// 4. Update repo
|
|
|
|
//
|
|
|
|
|
2024-05-27 09:52:43 +00:00
|
|
|
if currentRepoFullName != tmpRepo.FullName {
|
2023-08-16 14:15:44 +00:00
|
|
|
// create a redirection
|
|
|
|
err = _store.CreateRedirection(&model.Redirection{RepoID: repo.ID, FullName: repo.FullName})
|
|
|
|
if err != nil {
|
|
|
|
_ = c.AbortWithError(http.StatusInternalServerError, err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
repo.Update(tmpRepo)
|
|
|
|
err = _store.UpdateRepo(repo)
|
|
|
|
if err != nil {
|
|
|
|
c.String(http.StatusInternalServerError, err.Error())
|
2015-04-11 22:46:30 +00:00
|
|
|
return
|
2015-09-30 01:21:17 +00:00
|
|
|
}
|
|
|
|
|
2023-08-16 14:15:44 +00:00
|
|
|
//
|
|
|
|
// 5. Check if pull requests are allowed for this repo
|
|
|
|
//
|
|
|
|
|
2024-01-22 19:46:46 +00:00
|
|
|
if (tmpPipeline.Event == model.EventPull || tmpPipeline.Event == model.EventPullClosed) && !repo.AllowPull {
|
2023-09-02 11:31:10 +00:00
|
|
|
log.Debug().Str("repo", repo.FullName).Msg("ignoring hook: pull requests are disabled for this repo in woodpecker")
|
|
|
|
c.Status(http.StatusNoContent)
|
2015-04-08 22:43:59 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2023-08-16 14:15:44 +00:00
|
|
|
//
|
|
|
|
// 6. Finally create a pipeline
|
|
|
|
//
|
|
|
|
|
2023-08-16 00:42:37 +00:00
|
|
|
pl, err := pipeline.Create(c, _store, repo, tmpPipeline)
|
2015-04-08 22:43:59 +00:00
|
|
|
if err != nil {
|
2022-06-15 19:33:29 +00:00
|
|
|
handlePipelineErr(c, err)
|
|
|
|
} else {
|
2023-03-19 12:52:58 +00:00
|
|
|
c.JSON(http.StatusOK, pl)
|
2019-06-11 08:50:50 +00:00
|
|
|
}
|
2017-05-05 16:59:37 +00:00
|
|
|
}
|