View Javadoc
1   /*
2    * Copyright (C) 2009-2010, Google Inc.
3    * and other copyright owners as documented in the project's IP log.
4    *
5    * This program and the accompanying materials are made available
6    * under the terms of the Eclipse Distribution License v1.0 which
7    * accompanies this distribution, is reproduced below, and is
8    * available at http://www.eclipse.org/org/documents/edl-v10.php
9    *
10   * All rights reserved.
11   *
12   * Redistribution and use in source and binary forms, with or
13   * without modification, are permitted provided that the following
14   * conditions are met:
15   *
16   * - Redistributions of source code must retain the above copyright
17   *   notice, this list of conditions and the following disclaimer.
18   *
19   * - Redistributions in binary form must reproduce the above
20   *   copyright notice, this list of conditions and the following
21   *   disclaimer in the documentation and/or other materials provided
22   *   with the distribution.
23   *
24   * - Neither the name of the Eclipse Foundation, Inc. nor the
25   *   names of its contributors may be used to endorse or promote
26   *   products derived from this software without specific prior
27   *   written permission.
28   *
29   * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND
30   * CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,
31   * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
32   * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
33   * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR
34   * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
35   * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
36   * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
37   * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
38   * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
39   * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
40   * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
41   * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
42   */
43  
44  package org.eclipse.jgit.http.server.resolver;
45  
46  import javax.servlet.http.HttpServletRequest;
47  
48  import org.eclipse.jgit.lib.Config;
49  import org.eclipse.jgit.lib.PersonIdent;
50  import org.eclipse.jgit.lib.Repository;
51  import org.eclipse.jgit.transport.ReceivePack;
52  import org.eclipse.jgit.transport.resolver.ReceivePackFactory;
53  import org.eclipse.jgit.transport.resolver.ServiceNotAuthorizedException;
54  import org.eclipse.jgit.transport.resolver.ServiceNotEnabledException;
55  
56  /**
57   * Create and configure {@link ReceivePack} service instance.
58   * <p>
59   * Writing by receive-pack is permitted if any of the following is true:
60   * <ul>
61   * <li>The container has authenticated the user and set
62   * {@link HttpServletRequest#getRemoteUser()} to the authenticated name.
63   * <li>The repository configuration file has {@code http.receivepack} explicitly
64   * set to true.
65   * </ul>
66   * and explicitly rejected otherwise.
67   */
68  public class DefaultReceivePackFactory implements
69  		ReceivePackFactory<HttpServletRequest> {
70  	private static class ServiceConfig {
71  		final boolean set;
72  
73  		final boolean enabled;
74  
75  		ServiceConfig(final Config cfg) {
76  			set = cfg.getString("http", null, "receivepack") != null;
77  			enabled = cfg.getBoolean("http", "receivepack", false);
78  		}
79  	}
80  
81  	@Override
82  	public ReceivePack create(final HttpServletRequest req, final Repository db)
83  			throws ServiceNotEnabledException, ServiceNotAuthorizedException {
84  		final ServiceConfig cfg = db.getConfig().get(ServiceConfig::new);
85  		String user = req.getRemoteUser();
86  
87  		if (cfg.set) {
88  			if (cfg.enabled) {
89  				if (user == null || "".equals(user))
90  					user = "anonymous";
91  				return createFor(req, db, user);
92  			}
93  			throw new ServiceNotEnabledException();
94  		}
95  
96  		if (user != null && !"".equals(user))
97  			return createFor(req, db, user);
98  		throw new ServiceNotAuthorizedException();
99  	}
100 
101 	private static ReceivePack createFor(final HttpServletRequest req,
102 			final Repository db, final String user) {
103 		final ReceivePack rp = new ReceivePack(db);
104 		rp.setRefLogIdent(toPersonIdent(req, user));
105 		return rp;
106 	}
107 
108 	private static PersonIdent toPersonIdent(HttpServletRequest req, String user) {
109 		return new PersonIdent(user, user + "@" + req.getRemoteHost());
110 	}
111 }