app/controllers/projects/deployments_controller.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27

class Projects::DeploymentsController < Projects::ApplicationController
  layout 'project'

  def terminal
  end

  # GET /terminal_websocket : implemented in gitlab-workhorse

  def terminal_websocket_authorize
    Gitlab::Workhorse.verify_api_request!(request.headers)

    variables = Hash[*%w[
      openshift_project CI_PROJECT_NAME
      openshift_app APP
      openshift_server OPENSHIFT_SERVER
      openshift_token OPENSHIFT_TOKEN
    ]].map { |json_key, variable_key| [json_key, project.variables.find_by(key: variable_key)] }.to_h

    # TODO: restrict access: this allows even 'guests' to have terminal access
    if variables.values.all?(&:present?)
      set_workhorse_internal_api_content_type
      render json: variables.map { |k, v| [k, v.value] }.to_h
    else
      render text: 'Not found', status: 404
    end
  end
end