Search in sources :

Example 1 with ForbiddenException

use of com.gitblit.GitBlitException.ForbiddenException in project gitblit by gitblit.

the class JsonUtils method retrieveJsonString.

/**
	 * Retrieves a JSON message.
	 *
	 * @param url
	 * @return the JSON message as a string
	 * @throws {@link IOException}
	 */
public static String retrieveJsonString(String url, String username, char[] password) throws IOException {
    try {
        URLConnection conn = ConnectionUtils.openReadConnection(url, username, password);
        InputStream is = conn.getInputStream();
        BufferedReader reader = new BufferedReader(new InputStreamReader(is, ConnectionUtils.CHARSET));
        StringBuilder json = new StringBuilder();
        char[] buffer = new char[4096];
        int len = 0;
        while ((len = reader.read(buffer)) > -1) {
            json.append(buffer, 0, len);
        }
        is.close();
        return json.toString();
    } catch (IOException e) {
        if (e.getMessage().indexOf("401") > -1) {
            // unauthorized
            throw new UnauthorizedException(url);
        } else if (e.getMessage().indexOf("403") > -1) {
            // requested url is forbidden by the requesting user
            throw new ForbiddenException(url);
        } else if (e.getMessage().indexOf("405") > -1) {
            // requested url is not allowed by the server
            throw new NotAllowedException(url);
        } else if (e.getMessage().indexOf("501") > -1) {
            // requested url is not recognized by the server
            throw new UnknownRequestException(url);
        }
        throw e;
    }
}
Also used : ForbiddenException(com.gitblit.GitBlitException.ForbiddenException) InputStreamReader(java.io.InputStreamReader) NotAllowedException(com.gitblit.GitBlitException.NotAllowedException) InputStream(java.io.InputStream) BufferedReader(java.io.BufferedReader) UnauthorizedException(com.gitblit.GitBlitException.UnauthorizedException) UnknownRequestException(com.gitblit.GitBlitException.UnknownRequestException) IOException(java.io.IOException) HttpURLConnection(java.net.HttpURLConnection) URLConnection(java.net.URLConnection)

Example 2 with ForbiddenException

use of com.gitblit.GitBlitException.ForbiddenException in project gitblit by gitblit.

the class GitblitManager method login.

@Override
public void login(GitblitRegistration reg) {
    if (!reg.savePassword && (reg.password == null || reg.password.length == 0)) {
        // prompt for password
        EditRegistrationDialog dialog = new EditRegistrationDialog(this, reg, true);
        dialog.setLocationRelativeTo(GitblitManager.this);
        dialog.setVisible(true);
        GitblitRegistration newReg = dialog.getRegistration();
        if (newReg == null) {
            // user canceled
            return;
        }
        // preserve feeds
        newReg.feeds.addAll(reg.feeds);
        // use new reg
        reg = newReg;
    }
    // login
    setCursor(Cursor.getPredefinedCursor(Cursor.WAIT_CURSOR));
    final GitblitRegistration registration = reg;
    final GitblitPanel panel = new GitblitPanel(registration, this);
    SwingWorker<Boolean, Void> worker = new SwingWorker<Boolean, Void>() {

        @Override
        protected Boolean doInBackground() throws IOException {
            panel.login();
            return true;
        }

        @Override
        protected void done() {
            try {
                boolean success = get();
                serverTabs.addTab(registration.name, panel);
                int idx = serverTabs.getTabCount() - 1;
                serverTabs.setSelectedIndex(idx);
                serverTabs.setTabComponentAt(idx, new ClosableTabComponent(registration.name, null, serverTabs, panel));
                registration.lastLogin = new Date();
                saveRegistration(registration.name, registration);
                registrations.put(registration.name, registration);
                rebuildRecentMenu();
                if (!registration.savePassword) {
                    // clear password
                    registration.password = null;
                }
            } catch (Throwable t) {
                Throwable cause = t.getCause();
                if (cause instanceof ConnectException) {
                    JOptionPane.showMessageDialog(GitblitManager.this, cause.getMessage(), Translation.get("gb.error"), JOptionPane.ERROR_MESSAGE);
                } else if (cause instanceof ForbiddenException) {
                    JOptionPane.showMessageDialog(GitblitManager.this, "This Gitblit server does not allow RPC Management or Administration", Translation.get("gb.error"), JOptionPane.ERROR_MESSAGE);
                } else {
                    Utils.showException(GitblitManager.this, t);
                }
            } finally {
                setCursor(Cursor.getPredefinedCursor(Cursor.DEFAULT_CURSOR));
            }
        }
    };
    worker.execute();
}
Also used : ForbiddenException(com.gitblit.GitBlitException.ForbiddenException) Point(java.awt.Point) Date(java.util.Date) SwingWorker(javax.swing.SwingWorker) ConnectException(java.net.ConnectException)

Example 3 with ForbiddenException

use of com.gitblit.GitBlitException.ForbiddenException in project gitblit by gitblit.

the class JsonUtils method sendJsonString.

/**
	 * Sends a JSON message.
	 *
	 * @param url
	 *            the url to write to
	 * @param json
	 *            the json message to send
	 * @param username
	 * @param password
	 * @return the http request result code
	 * @throws {@link IOException}
	 */
public static int sendJsonString(String url, String json, String username, char[] password) throws IOException {
    try {
        byte[] jsonBytes = json.getBytes(ConnectionUtils.CHARSET);
        URLConnection conn = ConnectionUtils.openConnection(url, username, password);
        conn.setRequestProperty("Content-Type", "text/plain;charset=" + ConnectionUtils.CHARSET);
        conn.setRequestProperty("Content-Length", "" + jsonBytes.length);
        // write json body
        OutputStream os = conn.getOutputStream();
        os.write(jsonBytes);
        os.close();
        int status = ((HttpURLConnection) conn).getResponseCode();
        return status;
    } catch (IOException e) {
        if (e.getMessage().indexOf("401") > -1) {
            // unauthorized
            throw new UnauthorizedException(url);
        } else if (e.getMessage().indexOf("403") > -1) {
            // requested url is forbidden by the requesting user
            throw new ForbiddenException(url);
        } else if (e.getMessage().indexOf("405") > -1) {
            // requested url is not allowed by the server
            throw new NotAllowedException(url);
        } else if (e.getMessage().indexOf("501") > -1) {
            // requested url is not recognized by the server
            throw new UnknownRequestException(url);
        }
        throw e;
    }
}
Also used : ForbiddenException(com.gitblit.GitBlitException.ForbiddenException) HttpURLConnection(java.net.HttpURLConnection) NotAllowedException(com.gitblit.GitBlitException.NotAllowedException) OutputStream(java.io.OutputStream) UnauthorizedException(com.gitblit.GitBlitException.UnauthorizedException) UnknownRequestException(com.gitblit.GitBlitException.UnknownRequestException) IOException(java.io.IOException) HttpURLConnection(java.net.HttpURLConnection) URLConnection(java.net.URLConnection)

Example 4 with ForbiddenException

use of com.gitblit.GitBlitException.ForbiddenException in project gitblit by gitblit.

the class FederationPullService method pull.

/**
	 * Mirrors a repository and, optionally, the server's users, and/or
	 * configuration settings from a origin Gitblit instance.
	 *
	 * @param registration
	 * @throws Exception
	 */
private void pull(FederationModel registration) throws Exception {
    Map<String, RepositoryModel> repositories = FederationUtils.getRepositories(registration, true);
    String registrationFolder = registration.folder.toLowerCase().trim();
    // confirm valid characters in server alias
    Character c = StringUtils.findInvalidCharacter(registrationFolder);
    if (c != null) {
        logger.error(MessageFormat.format("Illegal character ''{0}'' in folder name ''{1}'' of federation registration {2}!", c, registrationFolder, registration.name));
        return;
    }
    File repositoriesFolder = gitblit.getRepositoriesFolder();
    File registrationFolderFile = new File(repositoriesFolder, registrationFolder);
    registrationFolderFile.mkdirs();
    // Clone/Pull the repository
    for (Map.Entry<String, RepositoryModel> entry : repositories.entrySet()) {
        String cloneUrl = entry.getKey();
        RepositoryModel repository = entry.getValue();
        if (!repository.hasCommits) {
            logger.warn(MessageFormat.format("Skipping federated repository {0} from {1} @ {2}. Repository is EMPTY.", repository.name, registration.name, registration.url));
            registration.updateStatus(repository, FederationPullStatus.SKIPPED);
            continue;
        }
        // Determine local repository name
        String repositoryName;
        if (StringUtils.isEmpty(registrationFolder)) {
            repositoryName = repository.name;
        } else {
            repositoryName = registrationFolder + "/" + repository.name;
        }
        if (registration.bare) {
            // bare repository, ensure .git suffix
            if (!repositoryName.toLowerCase().endsWith(DOT_GIT_EXT)) {
                repositoryName += DOT_GIT_EXT;
            }
        } else {
            // normal repository, strip .git suffix
            if (repositoryName.toLowerCase().endsWith(DOT_GIT_EXT)) {
                repositoryName = repositoryName.substring(0, repositoryName.indexOf(DOT_GIT_EXT));
            }
        }
        // confirm that the origin of any pre-existing repository matches
        // the clone url
        String fetchHead = null;
        Repository existingRepository = gitblit.getRepository(repositoryName);
        if (existingRepository == null && gitblit.isCollectingGarbage(repositoryName)) {
            logger.warn(MessageFormat.format("Skipping local repository {0}, busy collecting garbage", repositoryName));
            continue;
        }
        if (existingRepository != null) {
            StoredConfig config = existingRepository.getConfig();
            config.load();
            String origin = config.getString("remote", "origin", "url");
            RevCommit commit = JGitUtils.getCommit(existingRepository, org.eclipse.jgit.lib.Constants.FETCH_HEAD);
            if (commit != null) {
                fetchHead = commit.getName();
            }
            existingRepository.close();
            if (!origin.startsWith(registration.url)) {
                logger.warn(MessageFormat.format("Skipping federated repository {0} from {1} @ {2}. Origin does not match, consider EXCLUDING.", repository.name, registration.name, registration.url));
                registration.updateStatus(repository, FederationPullStatus.SKIPPED);
                continue;
            }
        }
        // clone/pull this repository
        CredentialsProvider credentials = new UsernamePasswordCredentialsProvider(Constants.FEDERATION_USER, registration.token);
        logger.info(MessageFormat.format("Pulling federated repository {0} from {1} @ {2}", repository.name, registration.name, registration.url));
        CloneResult result = JGitUtils.cloneRepository(registrationFolderFile, repository.name, cloneUrl, registration.bare, credentials);
        Repository r = gitblit.getRepository(repositoryName);
        RepositoryModel rm = gitblit.getRepositoryModel(repositoryName);
        repository.isFrozen = registration.mirror;
        if (result.createdRepository) {
            // default local settings
            repository.federationStrategy = FederationStrategy.EXCLUDE;
            repository.isFrozen = registration.mirror;
            repository.showRemoteBranches = !registration.mirror;
            logger.info(MessageFormat.format("     cloning {0}", repository.name));
            registration.updateStatus(repository, FederationPullStatus.MIRRORED);
        } else {
            // fetch and update
            boolean fetched = false;
            RevCommit commit = JGitUtils.getCommit(r, org.eclipse.jgit.lib.Constants.FETCH_HEAD);
            String newFetchHead = commit.getName();
            fetched = fetchHead == null || !fetchHead.equals(newFetchHead);
            if (registration.mirror) {
                // mirror
                if (fetched) {
                    // update local branches to match the remote tracking branches
                    for (RefModel ref : JGitUtils.getRemoteBranches(r, false, -1)) {
                        if (ref.displayName.startsWith("origin/")) {
                            String branch = org.eclipse.jgit.lib.Constants.R_HEADS + ref.displayName.substring(ref.displayName.indexOf('/') + 1);
                            String hash = ref.getReferencedObjectId().getName();
                            JGitUtils.setBranchRef(r, branch, hash);
                            logger.info(MessageFormat.format("     resetting {0} of {1} to {2}", branch, repository.name, hash));
                        }
                    }
                    String newHead;
                    if (StringUtils.isEmpty(repository.HEAD)) {
                        newHead = newFetchHead;
                    } else {
                        newHead = repository.HEAD;
                    }
                    JGitUtils.setHEADtoRef(r, newHead);
                    logger.info(MessageFormat.format("     resetting HEAD of {0} to {1}", repository.name, newHead));
                    registration.updateStatus(repository, FederationPullStatus.MIRRORED);
                } else {
                    // indicate no commits pulled
                    registration.updateStatus(repository, FederationPullStatus.NOCHANGE);
                }
            } else {
                // non-mirror
                if (fetched) {
                    // indicate commits pulled to origin/master
                    registration.updateStatus(repository, FederationPullStatus.PULLED);
                } else {
                    // indicate no commits pulled
                    registration.updateStatus(repository, FederationPullStatus.NOCHANGE);
                }
            }
            // preserve local settings
            repository.isFrozen = rm.isFrozen;
            repository.federationStrategy = rm.federationStrategy;
            // merge federation sets
            Set<String> federationSets = new HashSet<String>();
            if (rm.federationSets != null) {
                federationSets.addAll(rm.federationSets);
            }
            if (repository.federationSets != null) {
                federationSets.addAll(repository.federationSets);
            }
            repository.federationSets = new ArrayList<String>(federationSets);
            // merge indexed branches
            Set<String> indexedBranches = new HashSet<String>();
            if (rm.indexedBranches != null) {
                indexedBranches.addAll(rm.indexedBranches);
            }
            if (repository.indexedBranches != null) {
                indexedBranches.addAll(repository.indexedBranches);
            }
            repository.indexedBranches = new ArrayList<String>(indexedBranches);
        }
        // only repositories that are actually _cloned_ from the origin
        // Gitblit repository are marked as federated. If the origin
        // is from somewhere else, these repositories are not considered
        // "federated" repositories.
        repository.isFederated = cloneUrl.startsWith(registration.url);
        gitblit.updateConfiguration(r, repository);
        r.close();
    }
    IUserService userService = null;
    try {
        // Pull USERS
        // TeamModels are automatically pulled because they are contained
        // within the UserModel. The UserService creates unknown teams
        // and updates existing teams.
        Collection<UserModel> users = FederationUtils.getUsers(registration);
        if (users != null && users.size() > 0) {
            File realmFile = new File(registrationFolderFile, registration.name + "_users.conf");
            realmFile.delete();
            userService = new ConfigUserService(realmFile);
            for (UserModel user : users) {
                userService.updateUserModel(user.username, user);
                // the user accounts of this Gitblit instance
                if (registration.mergeAccounts) {
                    // repositories are stored within subfolders
                    if (!StringUtils.isEmpty(registrationFolder)) {
                        if (user.permissions != null) {
                            // pulling from >= 1.2 version
                            Map<String, AccessPermission> copy = new HashMap<String, AccessPermission>(user.permissions);
                            user.permissions.clear();
                            for (Map.Entry<String, AccessPermission> entry : copy.entrySet()) {
                                user.setRepositoryPermission(registrationFolder + "/" + entry.getKey(), entry.getValue());
                            }
                        } else {
                            // pulling from <= 1.1 version
                            List<String> permissions = new ArrayList<String>(user.repositories);
                            user.repositories.clear();
                            for (String permission : permissions) {
                                user.addRepositoryPermission(registrationFolder + "/" + permission);
                            }
                        }
                    }
                    // insert new user or update local user
                    UserModel localUser = gitblit.getUserModel(user.username);
                    if (localUser == null) {
                        // create new local user
                        gitblit.addUser(user);
                    } else {
                        // update repository permissions of local user
                        if (user.permissions != null) {
                            // pulling from >= 1.2 version
                            Map<String, AccessPermission> copy = new HashMap<String, AccessPermission>(user.permissions);
                            for (Map.Entry<String, AccessPermission> entry : copy.entrySet()) {
                                localUser.setRepositoryPermission(entry.getKey(), entry.getValue());
                            }
                        } else {
                            // pulling from <= 1.1 version
                            for (String repository : user.repositories) {
                                localUser.addRepositoryPermission(repository);
                            }
                        }
                        localUser.password = user.password;
                        localUser.canAdmin = user.canAdmin;
                        gitblit.reviseUser(localUser.username, localUser);
                    }
                    for (String teamname : gitblit.getAllTeamNames()) {
                        TeamModel team = gitblit.getTeamModel(teamname);
                        if (user.isTeamMember(teamname) && !team.hasUser(user.username)) {
                            // new team member
                            team.addUser(user.username);
                            gitblit.updateTeamModel(teamname, team);
                        } else if (!user.isTeamMember(teamname) && team.hasUser(user.username)) {
                            // remove team member
                            team.removeUser(user.username);
                            gitblit.updateTeamModel(teamname, team);
                        }
                        // update team repositories
                        TeamModel remoteTeam = user.getTeam(teamname);
                        if (remoteTeam != null) {
                            if (remoteTeam.permissions != null) {
                                // pulling from >= 1.2
                                for (Map.Entry<String, AccessPermission> entry : remoteTeam.permissions.entrySet()) {
                                    team.setRepositoryPermission(entry.getKey(), entry.getValue());
                                }
                                gitblit.updateTeamModel(teamname, team);
                            } else if (!ArrayUtils.isEmpty(remoteTeam.repositories)) {
                                // pulling from <= 1.1
                                team.addRepositoryPermissions(remoteTeam.repositories);
                                gitblit.updateTeamModel(teamname, team);
                            }
                        }
                    }
                }
            }
        }
    } catch (ForbiddenException e) {
    // ignore forbidden exceptions
    } catch (IOException e) {
        logger.warn(MessageFormat.format("Failed to retrieve USERS from federated gitblit ({0} @ {1})", registration.name, registration.url), e);
    }
    try {
        // mailing lists or push scripts without specifying users.
        if (userService != null) {
            Collection<TeamModel> teams = FederationUtils.getTeams(registration);
            if (teams != null && teams.size() > 0) {
                for (TeamModel team : teams) {
                    userService.updateTeamModel(team);
                }
            }
        }
    } catch (ForbiddenException e) {
    // ignore forbidden exceptions
    } catch (IOException e) {
        logger.warn(MessageFormat.format("Failed to retrieve TEAMS from federated gitblit ({0} @ {1})", registration.name, registration.url), e);
    }
    try {
        // Pull SETTINGS
        Map<String, String> settings = FederationUtils.getSettings(registration);
        if (settings != null && settings.size() > 0) {
            Properties properties = new Properties();
            properties.putAll(settings);
            FileOutputStream os = new FileOutputStream(new File(registrationFolderFile, registration.name + "_" + Constants.PROPERTIES_FILE));
            properties.store(os, null);
            os.close();
        }
    } catch (ForbiddenException e) {
    // ignore forbidden exceptions
    } catch (IOException e) {
        logger.warn(MessageFormat.format("Failed to retrieve SETTINGS from federated gitblit ({0} @ {1})", registration.name, registration.url), e);
    }
    try {
        // Pull SCRIPTS
        Map<String, String> scripts = FederationUtils.getScripts(registration);
        if (scripts != null && scripts.size() > 0) {
            for (Map.Entry<String, String> script : scripts.entrySet()) {
                String scriptName = script.getKey();
                if (scriptName.endsWith(".groovy")) {
                    scriptName = scriptName.substring(0, scriptName.indexOf(".groovy"));
                }
                File file = new File(registrationFolderFile, registration.name + "_" + scriptName + ".groovy");
                FileUtils.writeContent(file, script.getValue());
            }
        }
    } catch (ForbiddenException e) {
    // ignore forbidden exceptions
    } catch (IOException e) {
        logger.warn(MessageFormat.format("Failed to retrieve SCRIPTS from federated gitblit ({0} @ {1})", registration.name, registration.url), e);
    }
}
Also used : RefModel(com.gitblit.models.RefModel) HashMap(java.util.HashMap) ArrayList(java.util.ArrayList) RepositoryModel(com.gitblit.models.RepositoryModel) Properties(java.util.Properties) StoredConfig(org.eclipse.jgit.lib.StoredConfig) UserModel(com.gitblit.models.UserModel) TeamModel(com.gitblit.models.TeamModel) RevCommit(org.eclipse.jgit.revwalk.RevCommit) HashSet(java.util.HashSet) UsernamePasswordCredentialsProvider(org.eclipse.jgit.transport.UsernamePasswordCredentialsProvider) ForbiddenException(com.gitblit.GitBlitException.ForbiddenException) ConfigUserService(com.gitblit.ConfigUserService) AccessPermission(com.gitblit.Constants.AccessPermission) UsernamePasswordCredentialsProvider(org.eclipse.jgit.transport.UsernamePasswordCredentialsProvider) CredentialsProvider(org.eclipse.jgit.transport.CredentialsProvider) IOException(java.io.IOException) CloneResult(com.gitblit.utils.JGitUtils.CloneResult) Repository(org.eclipse.jgit.lib.Repository) IUserService(com.gitblit.IUserService) FileOutputStream(java.io.FileOutputStream) File(java.io.File) HashMap(java.util.HashMap) Map(java.util.Map)

Example 5 with ForbiddenException

use of com.gitblit.GitBlitException.ForbiddenException in project gitblit by gitblit.

the class RpcTests method testGetUser.

@Test
public void testGetUser() throws IOException {
    UserModel user = null;
    try {
        user = RpcUtils.getUser("admin", url, null, null);
    } catch (ForbiddenException e) {
    }
    assertNull("Server allows anyone to get user!", user);
    user = RpcUtils.getUser("admin", url, "admin", "admin".toCharArray());
    assertEquals("User is not the admin!", "admin", user.username);
    assertTrue("User is not an administrator!", user.canAdmin());
}
Also used : UserModel(com.gitblit.models.UserModel) ForbiddenException(com.gitblit.GitBlitException.ForbiddenException) Test(org.junit.Test)

Aggregations

ForbiddenException (com.gitblit.GitBlitException.ForbiddenException)5 IOException (java.io.IOException)3 NotAllowedException (com.gitblit.GitBlitException.NotAllowedException)2 UnauthorizedException (com.gitblit.GitBlitException.UnauthorizedException)2 UnknownRequestException (com.gitblit.GitBlitException.UnknownRequestException)2 UserModel (com.gitblit.models.UserModel)2 HttpURLConnection (java.net.HttpURLConnection)2 URLConnection (java.net.URLConnection)2 ConfigUserService (com.gitblit.ConfigUserService)1 AccessPermission (com.gitblit.Constants.AccessPermission)1 IUserService (com.gitblit.IUserService)1 RefModel (com.gitblit.models.RefModel)1 RepositoryModel (com.gitblit.models.RepositoryModel)1 TeamModel (com.gitblit.models.TeamModel)1 CloneResult (com.gitblit.utils.JGitUtils.CloneResult)1 Point (java.awt.Point)1 BufferedReader (java.io.BufferedReader)1 File (java.io.File)1 FileOutputStream (java.io.FileOutputStream)1 InputStream (java.io.InputStream)1