diff options
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/api/groups.rb | 12 | ||||
| -rw-r--r-- | lib/gitlab/ldap/access.rb | 4 | ||||
| -rw-r--r-- | lib/omni_auth/request_forgery_protection.rb | 63 | ||||
| -rw-r--r-- | lib/tasks/gitlab/git.rake | 55 | ||||
| -rw-r--r-- | lib/tasks/gitlab/import.rake | 2 | ||||
| -rw-r--r-- | lib/tasks/gitlab/list_repos.rake | 17 | ||||
| -rw-r--r-- | lib/tasks/gitlab/task_helpers.rake | 8 | 
7 files changed, 106 insertions, 55 deletions
| diff --git a/lib/api/groups.rb b/lib/api/groups.rb index 024aeec2e14..1a14d870a4a 100644 --- a/lib/api/groups.rb +++ b/lib/api/groups.rb @@ -65,6 +65,18 @@ module API          DestroyGroupService.new(group, current_user).execute        end +      # Get a list of projects in this group +      # +      # Example Request: +      #   GET /groups/:id/projects +      get ":id/projects" do +        group = find_group(params[:id]) +        projects = group.projects +        projects = filter_projects(projects) +        projects = paginate projects +        present projects, with: Entities::Project +      end +        # Transfer a project to the Group namespace        #        # Parameters: diff --git a/lib/gitlab/ldap/access.rb b/lib/gitlab/ldap/access.rb index 16ff03c38d4..c438a3d167b 100644 --- a/lib/gitlab/ldap/access.rb +++ b/lib/gitlab/ldap/access.rb @@ -37,13 +37,15 @@ module Gitlab            # Block user in GitLab if he/she was blocked in AD            if Gitlab::LDAP::Person.disabled_via_active_directory?(user.ldap_identity.extern_uid, adapter) -            user.block unless user.blocked? +            user.block              false            else              user.activate if user.blocked? && !ldap_config.block_auto_created_users              true            end          else +          # Block the user if they no longer exist in LDAP/AD +          user.block             false          end        rescue diff --git a/lib/omni_auth/request_forgery_protection.rb b/lib/omni_auth/request_forgery_protection.rb index 3557522d3c9..69155131d8d 100644 --- a/lib/omni_auth/request_forgery_protection.rb +++ b/lib/omni_auth/request_forgery_protection.rb @@ -1,66 +1,21 @@  # Protects OmniAuth request phase against CSRF.  module OmniAuth -  # Based on ActionController::RequestForgeryProtection. -  class RequestForgeryProtection -    def initialize(env) -      @env = env -    end - -    def request -      @request ||= ActionDispatch::Request.new(@env) -    end - -    def session -      request.session -    end - -    def reset_session -      request.reset_session -    end - -    def params -      request.params -    end - -    def call -      verify_authenticity_token -    end +  module RequestForgeryProtection +    class Controller < ActionController::Base +      protect_from_forgery with: :exception -    def verify_authenticity_token -      if !verified_request? -        Rails.logger.warn "Can't verify CSRF token authenticity" if Rails.logger -        handle_unverified_request +      def index +        head :ok        end      end -    private - -    def protect_against_forgery? -      ApplicationController.allow_forgery_protection -    end - -    def request_forgery_protection_token -      ApplicationController.request_forgery_protection_token -    end - -    def forgery_protection_strategy -      ApplicationController.forgery_protection_strategy -    end - -    def verified_request? -      !protect_against_forgery? || request.get? || request.head? || -        form_authenticity_token == params[request_forgery_protection_token] || -        form_authenticity_token == request.headers['X-CSRF-Token'] -    end - -    def handle_unverified_request -      forgery_protection_strategy.new(self).handle_unverified_request +    def self.app +      @app ||= Controller.action(:index)      end -    # Sets the token value for the current session. -    def form_authenticity_token -      session[:_csrf_token] ||= SecureRandom.base64(32) +    def self.call(env) +      app.call(env)      end    end  end diff --git a/lib/tasks/gitlab/git.rake b/lib/tasks/gitlab/git.rake new file mode 100644 index 00000000000..65ee430d550 --- /dev/null +++ b/lib/tasks/gitlab/git.rake @@ -0,0 +1,55 @@ +namespace :gitlab do +  namespace :git do + +    desc "GitLab | Git | Repack" +    task repack: :environment do +      failures = perform_git_cmd(%W(git repack -a --quiet), "Repacking repo") +      if failures.empty? +        puts "Done".green +      else +        output_failures(failures) +      end +    end + +    desc "GitLab | Git | Run garbage collection on all repos" +    task gc: :environment do +      failures = perform_git_cmd(%W(git gc --auto --quiet), "Garbage Collecting") +      if failures.empty? +        puts "Done".green +      else +        output_failures(failures) +      end +    end +     +    desc "GitLab | Git | Prune all repos" +    task prune: :environment do +      failures = perform_git_cmd(%W(git prune), "Git Prune") +      if failures.empty? +        puts "Done".green +      else +        output_failures(failures) +      end +    end + +    def perform_git_cmd(cmd, message) +      puts "Starting #{message} on all repositories" + +      failures = [] +      all_repos do |repo| +        if system(*cmd, chdir: repo) +          puts "Performed #{message} at #{repo}" +        else +          failures << repo +        end +      end + +      failures +    end + +    def output_failures(failures) +      puts "The following repositories reported errors:".red +      failures.each { |f| puts "- #{f}" } +    end + +  end +end diff --git a/lib/tasks/gitlab/import.rake b/lib/tasks/gitlab/import.rake index c1ee271ae2b..1c04f47f08f 100644 --- a/lib/tasks/gitlab/import.rake +++ b/lib/tasks/gitlab/import.rake @@ -64,6 +64,8 @@ namespace :gitlab do            if project.persisted?              puts " * Created #{project.name} (#{repo_path})".green +            project.update_repository_size +            project.update_commit_count            else              puts " * Failed trying to create #{project.name} (#{repo_path})".red              puts "   Errors: #{project.errors.messages}".red diff --git a/lib/tasks/gitlab/list_repos.rake b/lib/tasks/gitlab/list_repos.rake new file mode 100644 index 00000000000..c7596e7abcb --- /dev/null +++ b/lib/tasks/gitlab/list_repos.rake @@ -0,0 +1,17 @@ +namespace :gitlab do +  task list_repos: :environment do +    scope = Project +    if ENV['SINCE'] +      date = Time.parse(ENV['SINCE']) +      warn "Listing repositories with activity or changes since #{date}" +      project_ids = Project.where('last_activity_at > ? OR updated_at > ?', date, date).pluck(:id).sort +      namespace_ids = Namespace.where(['updated_at > ?', date]).pluck(:id).sort +      scope = scope.where('id IN (?) OR namespace_id in (?)', project_ids, namespace_ids) +    end +    scope.find_each do |project| +      base = File.join(Gitlab.config.gitlab_shell.repos_path, project.path_with_namespace) +      puts base + '.git' +      puts base + '.wiki.git' +    end +  end +end diff --git a/lib/tasks/gitlab/task_helpers.rake b/lib/tasks/gitlab/task_helpers.rake index efb863a8764..ebe516ec879 100644 --- a/lib/tasks/gitlab/task_helpers.rake +++ b/lib/tasks/gitlab/task_helpers.rake @@ -118,4 +118,12 @@ namespace :gitlab do        false      end    end + +  def all_repos +    IO.popen(%W(find #{Gitlab.config.gitlab_shell.repos_path} -mindepth 2 -maxdepth 2 -type d -name *.git)) do |find| +      find.each_line do |path| +        yield path.chomp +      end +    end +  end  end | 
