Class: Gitolite::Dtg::GitoliteAdmin

Inherits:

Object

• Object
• Gitolite::Dtg::GitoliteAdmin

Defined in:

lib/gitolite-dtg/gitolite_admin.rb

Constant Summary

CONF =

"gitolite.conf"

CONFDIR =

"conf"

BRANCH =

"master"

Instance Attribute Summary

• #config ⇒ Object

  Returns the value of attribute config.

• #gl_admin ⇒ Object

  Returns the value of attribute gl_admin.

Class Method Summary

• .is_gitolite_admin_repo?(dir) ⇒ Boolean

  Checks to see if the given path is a gitolite-admin repository A valid repository contains a conf folder, keydir folder, and a configuration file within the conf folder.

Instance Method Summary

• #authorize(repo_name, username, resource_path, wanted_access) ⇒ Object

  repo_name - the repository name username - the authenticated user name resource_path - the path relative to the repository root that the user is requesting access to wanted_access - the type of access the user is requesting.

• #initialize(path, options = {}) ⇒ GitoliteAdmin constructor

  Intialize with the path to the gitolite-admin repository.

• #reload! ⇒ Object

  This method will destroy the in-memory data structures and reload everything from the file system.

Constructor Details

#initialize(path, options = {}) ⇒ GitoliteAdmin

Intialize with the path to the gitolite-admin repository

# File 'lib/gitolite-dtg/gitolite_admin.rb', line 14

def initialize(path, options = {})
  @path = path
  @gl_admin = Grit::Repo.new(path)

  @conf = options[:conf] || CONF
  @confdir = options[:confdir] || CONFDIR
  @branch  = options[:branch] || BRANCH

  # Load the configuration
  load_data
end

Instance Attribute Details

#config ⇒ Object

Returns the value of attribute config.

# File 'lib/gitolite-dtg/gitolite_admin.rb', line 6

def config
  @config
end

#gl_admin ⇒ Object

Returns the value of attribute gl_admin.

# File 'lib/gitolite-dtg/gitolite_admin.rb', line 6

def gl_admin
  @gl_admin
end

Class Method Details

.is_gitolite_admin_repo?(dir) ⇒ Boolean

Checks to see if the given path is a gitolite-admin repository A valid repository contains a conf folder, keydir folder, and a configuration file within the conf folder

Returns:

• (Boolean)

# File 'lib/gitolite-dtg/gitolite_admin.rb', line 35

def self.is_gitolite_admin_repo?(dir)
  # First check if it is a git repository
  begin
  repo = Grit::Repo.new(dir)
  rescue Grit::InvalidGitRepositoryError
  return false
  end

  # If we got here it is a valid git repo,
  # now check directory structure
  cbl = repo.tree / 'conf/gitolite.conf'
  if cbl != nil
  return true
  else
  return false
  end
end

Instance Method Details

#authorize(repo_name, username, resource_path, wanted_access) ⇒ Object

repo_name - the repository name username - the authenticated user name resource_path - the path relative to the repository root that

the user is requesting access to

wanted_access - the type of access the user is requesting. can

be 'R' or 'W'

# File 'lib/gitolite-dtg/gitolite_admin.rb', line 59

def authorize(repo_name, username, resource_path, wanted_access)
  if @config == nil
    return false
  end
  repo = @config.repos[repo_name]
  if repo != nil
    repo.permissions.each do |perm_hash|
      perm_hash.each do |perm, list|
        #process a permission line
        list.each do |refex, users|
        
        ul = []
         users.each do |user|
          if user[0,1]=='@'
              gname = user.gsub('@', '')
              if ((@config.special_groups.include? gname) == false)
              grp = @config.flat_groups[gname]
              ul.concat(grp)
            else
              ul.push(user)
              end
          else
            ul.push(user)
          end
         end
         ul.uniq!
         
         user_matches = false
         if ((ul.include? "@all") || ((ul.include? "@raven") && (username != nil)) || (ul.include? username))
          user_matches = true
         end
         
         if user_matches == false
          next
        end
        
        
        refex_applies = false;
        if refex == ''
          refex_applies = true;
        else
          dirs = []
          dirs.push(refex)
          dirs.push(resource_path)

          common_prefix = dirs.abbrev.keys.min_by {|key| key.length}.chop
          common_directory = common_prefix.sub(%r{/[^/]*$}, '')
          
          if common_directory != ''
            refex_applies = true
          end
        end
        if !refex_applies
          next # if rule refex does not refer to the resource the user requested, go to the next rule
        end
        
         
         access_matches = false
         if (perm.include? wanted_access)
          access_matches = true
         end
         
         # authorization cases. at this point, user_matches==true and refex_applies==true:
         if (perm == "-")
          return false
        elsif (user_matches && access_matches)
          #print "Access allowed by matching rule: " + perm + " "
          #print list
          #print "\n"
          return true
        else
          next
         end

        end
      end
    end
  end
  return false
end

#reload! ⇒ Object

This method will destroy the in-memory data structures and reload everything from the file system

# File 'lib/gitolite-dtg/gitolite_admin.rb', line 28

def reload!
  load_data
end