View Javadoc
1   /*
2    * Copyright (C) 2009-2010, Google Inc.
3    * and other copyright owners as documented in the project's IP log.
4    *
5    * This program and the accompanying materials are made available
6    * under the terms of the Eclipse Distribution License v1.0 which
7    * accompanies this distribution, is reproduced below, and is
8    * available at http://www.eclipse.org/org/documents/edl-v10.php
9    *
10   * All rights reserved.
11   *
12   * Redistribution and use in source and binary forms, with or
13   * without modification, are permitted provided that the following
14   * conditions are met:
15   *
16   * - Redistributions of source code must retain the above copyright
17   *   notice, this list of conditions and the following disclaimer.
18   *
19   * - Redistributions in binary form must reproduce the above
20   *   copyright notice, this list of conditions and the following
21   *   disclaimer in the documentation and/or other materials provided
22   *   with the distribution.
23   *
24   * - Neither the name of the Eclipse Foundation, Inc. nor the
25   *   names of its contributors may be used to endorse or promote
26   *   products derived from this software without specific prior
27   *   written permission.
28   *
29   * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND
30   * CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,
31   * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
32   * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
33   * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR
34   * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
35   * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
36   * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
37   * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
38   * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
39   * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
40   * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
41   * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
42   */
43  
44  package org.eclipse.jgit.http.server.resolver;
45  
46  import javax.servlet.http.HttpServletRequest;
47  
48  import org.eclipse.jgit.lib.Config;
49  import org.eclipse.jgit.lib.PersonIdent;
50  import org.eclipse.jgit.lib.Repository;
51  import org.eclipse.jgit.transport.ReceivePack;
52  import org.eclipse.jgit.transport.resolver.ReceivePackFactory;
53  import org.eclipse.jgit.transport.resolver.ServiceNotAuthorizedException;
54  import org.eclipse.jgit.transport.resolver.ServiceNotEnabledException;
55  
56  /**
57   * Create and configure {@link org.eclipse.jgit.transport.ReceivePack} service
58   * instance.
59   * <p>
60   * Writing by receive-pack is permitted if any of the following is true:
61   * <ul>
62   * <li>The container has authenticated the user and set
63   * {@link javax.servlet.http.HttpServletRequest#getRemoteUser()} to the
64   * authenticated name.
65   * <li>The repository configuration file has {@code http.receivepack} explicitly
66   * set to true.
67   * </ul>
68   * and explicitly rejected otherwise.
69   */
70  public class DefaultReceivePackFactory implements
71  		ReceivePackFactory<HttpServletRequest> {
72  	private static class ServiceConfig {
73  		final boolean set;
74  
75  		final boolean enabled;
76  
77  		ServiceConfig(Config cfg) {
78  			set = cfg.getString("http", null, "receivepack") != null;
79  			enabled = cfg.getBoolean("http", "receivepack", false);
80  		}
81  	}
82  
83  	/** {@inheritDoc} */
84  	@Override
85  	public ReceivePack create(HttpServletRequest req, Repository db)
86  			throws ServiceNotEnabledException, ServiceNotAuthorizedException {
87  		final ServiceConfig cfg = db.getConfig().get(ServiceConfig::new);
88  		String user = req.getRemoteUser();
89  
90  		if (cfg.set) {
91  			if (cfg.enabled) {
92  				if (user == null || "".equals(user))
93  					user = "anonymous";
94  				return createFor(req, db, user);
95  			}
96  			throw new ServiceNotEnabledException();
97  		}
98  
99  		if (user != null && !"".equals(user))
100 			return createFor(req, db, user);
101 		throw new ServiceNotAuthorizedException();
102 	}
103 
104 	private static ReceivePack createFor(final HttpServletRequest req,
105 			final Repository db, final String user) {
106 		final ReceivePackort/ReceivePack.html#ReceivePack">ReceivePack rp = new ReceivePack(db);
107 		rp.setRefLogIdent(toPersonIdent(req, user));
108 		return rp;
109 	}
110 
111 	private static PersonIdent toPersonIdent(HttpServletRequest req, String user) {
112 		return new PersonIdent(user, user + "@" + req.getRemoteHost());
113 	}
114 }