Add repo permission endpoint (#436)

This commit is contained in:
Anbraten 2021-10-13 14:16:26 +02:00 committed by GitHub
parent 12db87f8e6
commit 72aa979644
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 49 additions and 38 deletions

View file

@ -165,6 +165,11 @@ func GetRepo(c *gin.Context) {
c.JSON(http.StatusOK, session.Repo(c)) c.JSON(http.StatusOK, session.Repo(c))
} }
func GetRepoPermissions(c *gin.Context) {
perm := session.Perm(c)
c.JSON(http.StatusOK, perm)
}
func DeleteRepo(c *gin.Context) { func DeleteRepo(c *gin.Context) {
remove, _ := strconv.ParseBool(c.Query("remove")) remove, _ := strconv.ParseBool(c.Query("remove"))
r := remote.FromContext(c) r := remote.FromContext(c)

View file

@ -43,54 +43,60 @@ func apiRoutes(e *gin.Engine) {
users.DELETE("/:login", api.DeleteUser) users.DELETE("/:login", api.DeleteUser)
} }
repo := e.Group("/api/repos/:owner/:name") repoBase := e.Group("/api/repos/:owner/:name")
{ {
repo.Use(session.SetRepo()) repoBase.Use(session.SetRepo())
repo.Use(session.SetPerm()) repoBase.Use(session.SetPerm())
repo.Use(session.MustPull)
repo.POST("", session.MustRepoAdmin(), api.PostRepo) repoBase.GET("/permissions", api.GetRepoPermissions)
repo.GET("", api.GetRepo)
repo.GET("/builds", api.GetBuilds) repo := repoBase.Group("")
repo.GET("/builds/:number", api.GetBuild) {
repo.Use(session.MustPull)
// requires push permissions repo.POST("", session.MustRepoAdmin(), api.PostRepo)
repo.POST("/builds/:number", session.MustPush, api.PostBuild) repo.GET("", api.GetRepo)
repo.DELETE("/builds/:number", session.MustPush, api.DeleteBuild)
repo.POST("/builds/:number/approve", session.MustPush, api.PostApproval)
repo.POST("/builds/:number/decline", session.MustPush, api.PostDecline)
repo.DELETE("/builds/:number/:job", session.MustPush, api.DeleteBuild)
repo.GET("/logs/:number/:pid", api.GetProcLogs) repo.GET("/builds", api.GetBuilds)
repo.GET("/logs/:number/:pid/:proc", api.GetBuildLogs) repo.GET("/builds/:number", api.GetBuild)
// requires push permissions // requires push permissions
repo.DELETE("/logs/:number", session.MustPush, api.DeleteBuildLogs) repo.POST("/builds/:number", session.MustPush, api.PostBuild)
repo.DELETE("/builds/:number", session.MustPush, api.DeleteBuild)
repo.POST("/builds/:number/approve", session.MustPush, api.PostApproval)
repo.POST("/builds/:number/decline", session.MustPush, api.PostDecline)
repo.DELETE("/builds/:number/:job", session.MustPush, api.DeleteBuild)
repo.GET("/files/:number", api.FileList) repo.GET("/logs/:number/:pid", api.GetProcLogs)
repo.GET("/files/:number/:proc/*file", api.FileGet) repo.GET("/logs/:number/:pid/:proc", api.GetBuildLogs)
// requires push permissions // requires push permissions
repo.GET("/secrets", session.MustPush, api.GetSecretList) repo.DELETE("/logs/:number", session.MustPush, api.DeleteBuildLogs)
repo.POST("/secrets", session.MustPush, api.PostSecret)
repo.GET("/secrets/:secret", session.MustPush, api.GetSecret)
repo.PATCH("/secrets/:secret", session.MustPush, api.PatchSecret)
repo.DELETE("/secrets/:secret", session.MustPush, api.DeleteSecret)
// requires push permissions repo.GET("/files/:number", api.FileList)
repo.GET("/registry", session.MustPush, api.GetRegistryList) repo.GET("/files/:number/:proc/*file", api.FileGet)
repo.POST("/registry", session.MustPush, api.PostRegistry)
repo.GET("/registry/:registry", session.MustPush, api.GetRegistry)
repo.PATCH("/registry/:registry", session.MustPush, api.PatchRegistry)
repo.DELETE("/registry/:registry", session.MustPush, api.DeleteRegistry)
// requires admin permissions // requires push permissions
repo.PATCH("", session.MustRepoAdmin(), api.PatchRepo) repo.GET("/secrets", session.MustPush, api.GetSecretList)
repo.DELETE("", session.MustRepoAdmin(), api.DeleteRepo) repo.POST("/secrets", session.MustPush, api.PostSecret)
repo.POST("/chown", session.MustRepoAdmin(), api.ChownRepo) repo.GET("/secrets/:secret", session.MustPush, api.GetSecret)
repo.POST("/repair", session.MustRepoAdmin(), api.RepairRepo) repo.PATCH("/secrets/:secret", session.MustPush, api.PatchSecret)
repo.POST("/move", session.MustRepoAdmin(), api.MoveRepo) repo.DELETE("/secrets/:secret", session.MustPush, api.DeleteSecret)
// requires push permissions
repo.GET("/registry", session.MustPush, api.GetRegistryList)
repo.POST("/registry", session.MustPush, api.PostRegistry)
repo.GET("/registry/:registry", session.MustPush, api.GetRegistry)
repo.PATCH("/registry/:registry", session.MustPush, api.PatchRegistry)
repo.DELETE("/registry/:registry", session.MustPush, api.DeleteRegistry)
// requires admin permissions
repo.PATCH("", session.MustRepoAdmin(), api.PatchRepo)
repo.DELETE("", session.MustRepoAdmin(), api.DeleteRepo)
repo.POST("/chown", session.MustRepoAdmin(), api.ChownRepo)
repo.POST("/repair", session.MustRepoAdmin(), api.RepairRepo)
repo.POST("/move", session.MustRepoAdmin(), api.MoveRepo)
}
} }
badges := e.Group("/api/badges/:owner/:name") badges := e.Group("/api/badges/:owner/:name")