View Javadoc
1   /*
2    * Copyright (C) 2009-2010, Google Inc.
3    * and other copyright owners as documented in the project's IP log.
4    *
5    * This program and the accompanying materials are made available
6    * under the terms of the Eclipse Distribution License v1.0 which
7    * accompanies this distribution, is reproduced below, and is
8    * available at http://www.eclipse.org/org/documents/edl-v10.php
9    *
10   * All rights reserved.
11   *
12   * Redistribution and use in source and binary forms, with or
13   * without modification, are permitted provided that the following
14   * conditions are met:
15   *
16   * - Redistributions of source code must retain the above copyright
17   *   notice, this list of conditions and the following disclaimer.
18   *
19   * - Redistributions in binary form must reproduce the above
20   *   copyright notice, this list of conditions and the following
21   *   disclaimer in the documentation and/or other materials provided
22   *   with the distribution.
23   *
24   * - Neither the name of the Eclipse Foundation, Inc. nor the
25   *   names of its contributors may be used to endorse or promote
26   *   products derived from this software without specific prior
27   *   written permission.
28   *
29   * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND
30   * CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,
31   * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
32   * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
33   * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR
34   * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
35   * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
36   * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
37   * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
38   * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
39   * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
40   * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
41   * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
42   */
43  
44  package org.eclipse.jgit.http.server.resolver;
45  
46  import javax.servlet.http.HttpServletRequest;
47  
48  import org.eclipse.jgit.lib.Config;
49  import org.eclipse.jgit.lib.PersonIdent;
50  import org.eclipse.jgit.lib.Repository;
51  import org.eclipse.jgit.lib.Config.SectionParser;
52  import org.eclipse.jgit.transport.ReceivePack;
53  import org.eclipse.jgit.transport.resolver.ReceivePackFactory;
54  import org.eclipse.jgit.transport.resolver.ServiceNotAuthorizedException;
55  import org.eclipse.jgit.transport.resolver.ServiceNotEnabledException;
56  
57  /**
58   * Create and configure {@link ReceivePack} service instance.
59   * <p>
60   * Writing by receive-pack is permitted if any of the following is true:
61   * <ul>
62   * <li>The container has authenticated the user and set
63   * {@link HttpServletRequest#getRemoteUser()} to the authenticated name.
64   * <li>The repository configuration file has {@code http.receivepack} explicitly
65   * set to true.
66   * </ul>
67   * and explicitly rejected otherwise.
68   */
69  public class DefaultReceivePackFactory implements
70  		ReceivePackFactory<HttpServletRequest> {
71  	private static final SectionParser<ServiceConfig> CONFIG = new SectionParser<ServiceConfig>() {
72  		public ServiceConfig parse(final Config cfg) {
73  			return new ServiceConfig(cfg);
74  		}
75  	};
76  
77  	private static class ServiceConfig {
78  		final boolean set;
79  
80  		final boolean enabled;
81  
82  		ServiceConfig(final Config cfg) {
83  			set = cfg.getString("http", null, "receivepack") != null;
84  			enabled = cfg.getBoolean("http", "receivepack", false);
85  		}
86  	}
87  
88  	public ReceivePack create(final HttpServletRequest req, final Repository db)
89  			throws ServiceNotEnabledException, ServiceNotAuthorizedException {
90  		final ServiceConfig cfg = db.getConfig().get(CONFIG);
91  		String user = req.getRemoteUser();
92  
93  		if (cfg.set) {
94  			if (cfg.enabled) {
95  				if (user == null || "".equals(user))
96  					user = "anonymous";
97  				return createFor(req, db, user);
98  			}
99  			throw new ServiceNotEnabledException();
100 		}
101 
102 		if (user != null && !"".equals(user))
103 			return createFor(req, db, user);
104 		throw new ServiceNotAuthorizedException();
105 	}
106 
107 	private static ReceivePack createFor(final HttpServletRequest req,
108 			final Repository db, final String user) {
109 		final ReceivePack rp = new ReceivePack(db);
110 		rp.setRefLogIdent(toPersonIdent(req, user));
111 		return rp;
112 	}
113 
114 	private static PersonIdent toPersonIdent(HttpServletRequest req, String user) {
115 		return new PersonIdent(user, user + "@" + req.getRemoteHost());
116 	}
117 }