mirror of
https://github.com/woodpecker-ci/woodpecker.git
synced 2025-01-22 15:18:43 +00:00
100 lines
2.6 KiB
Go
100 lines
2.6 KiB
Go
package gitlab
|
|
|
|
import (
|
|
"encoding/base32"
|
|
"fmt"
|
|
"net/url"
|
|
|
|
"code.google.com/p/goauth2/oauth"
|
|
"github.com/Bugagazavr/go-gitlab-client"
|
|
"github.com/gorilla/securecookie"
|
|
)
|
|
|
|
func NewOauthConfig(g *Gitlab, host string) *oauth.Config {
|
|
return &oauth.Config{
|
|
ClientId: g.Client,
|
|
ClientSecret: g.Secret,
|
|
Scope: "api",
|
|
AuthURL: fmt.Sprintf("%s/oauth/authorize", g.url),
|
|
TokenURL: fmt.Sprintf("%s/oauth/token", g.url),
|
|
RedirectURL: fmt.Sprintf("%s/api/auth/%s", host, g.GetKind()),
|
|
}
|
|
}
|
|
|
|
// NewClient is a helper function that returns a new GitHub
|
|
// client using the provided OAuth token.
|
|
func NewClient(url, accessToken string, skipVerify bool) *gogitlab.Gitlab {
|
|
client := gogitlab.NewGitlabCert(url, "/api/v3", accessToken, skipVerify)
|
|
client.Bearer = true
|
|
return client
|
|
}
|
|
|
|
// IsRead is a helper function that returns true if the
|
|
// user has Read-only access to the repository.
|
|
func IsRead(proj *gogitlab.Project) bool {
|
|
var user = proj.Permissions.ProjectAccess
|
|
var group = proj.Permissions.GroupAccess
|
|
|
|
switch {
|
|
case proj.Public:
|
|
return true
|
|
case user != nil && user.AccessLevel >= 20:
|
|
return true
|
|
case group != nil && group.AccessLevel >= 20:
|
|
return true
|
|
default:
|
|
return false
|
|
}
|
|
}
|
|
|
|
// IsWrite is a helper function that returns true if the
|
|
// user has Read-Write access to the repository.
|
|
func IsWrite(proj *gogitlab.Project) bool {
|
|
var user = proj.Permissions.ProjectAccess
|
|
var group = proj.Permissions.GroupAccess
|
|
|
|
switch {
|
|
case user != nil && user.AccessLevel >= 30:
|
|
return true
|
|
case group != nil && group.AccessLevel >= 30:
|
|
return true
|
|
default:
|
|
return false
|
|
}
|
|
}
|
|
|
|
// IsAdmin is a helper function that returns true if the
|
|
// user has Admin access to the repository.
|
|
func IsAdmin(proj *gogitlab.Project) bool {
|
|
var user = proj.Permissions.ProjectAccess
|
|
var group = proj.Permissions.GroupAccess
|
|
|
|
switch {
|
|
case user != nil && user.AccessLevel >= 40:
|
|
return true
|
|
case group != nil && group.AccessLevel >= 40:
|
|
return true
|
|
default:
|
|
return false
|
|
}
|
|
}
|
|
|
|
// GetKeyTitle is a helper function that generates a title for the
|
|
// RSA public key based on the username and domain name.
|
|
func GetKeyTitle(rawurl string) (string, error) {
|
|
var uri, err = url.Parse(rawurl)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return fmt.Sprintf("drone@%s", uri.Host), nil
|
|
}
|
|
|
|
func ns(owner, name string) string {
|
|
return fmt.Sprintf("%s%%2F%s", owner, name)
|
|
}
|
|
|
|
// GetRandom is a helper function that generates a 32-bit random
|
|
// key, base32 encoded as a string value.
|
|
func GetRandom() string {
|
|
return base32.StdEncoding.EncodeToString(securecookie.GenerateRandomKey(32))
|
|
}
|