forgejo/services/context/repository.go

37 lines
1.1 KiB
Go
Raw Normal View History

2023-10-23 17:16:38 +02:00
// Copyright 2023 The forgejo Authors. All rights reserved.
// SPDX-License-Identifier: MIT
package context
import (
"net/http"
repo_model "code.gitea.io/gitea/models/repo"
"code.gitea.io/gitea/modules/context"
)
// RepositoryIDAssignmentAPI returns a middleware to handle context-repo assignment for api routes
func RepositoryIDAssignmentAPI() func(ctx *context.APIContext) {
return func(ctx *context.APIContext) {
// TODO: enough validation for security?
repositoryID := ctx.ParamsInt64(":repository-id")
//TODO: check auth here ?
if !ctx.Repo.HasAccess() && !ctx.IsUserSiteAdmin() {
ctx.Error(http.StatusForbidden, "reqAnyRepoReader", "user should have any permission to read repository or permissions of site admin")
return
}
var err error
2023-10-24 09:10:31 +02:00
repository := new(context.Repository)
// TODO: does repository struct need more infos?
repository.Repository, err = repo_model.GetRepositoryByID(ctx, repositoryID)
2023-10-23 17:16:38 +02:00
2023-10-24 09:10:31 +02:00
// TODO: check & convert errors
2023-10-23 17:16:38 +02:00
if err != nil {
ctx.Error(http.StatusInternalServerError, "GetRepositoryByID", err)
}
2023-10-24 09:10:31 +02:00
ctx.Repo = repository
2023-10-23 17:16:38 +02:00
}
}