rio/internal/repo/repo.go

package repo

//go:generate mockgen -destination mock_repo_test.go -package repo code.gitea.io/sdk/gitea Client

import (
	"encoding/json"
	"errors"
	"slices"
	"strings"

	"git.polynom.me/rio/internal/constants"
	"git.polynom.me/rio/internal/context"
	"git.polynom.me/rio/internal/gitea"

	log "github.com/sirupsen/logrus"
)

var (
	ForbiddenHeaders = []string{
		"content-length",
		"content-type",
		"date",
		"location",
		"strict-transport-security",
		"set-cookie",
	}
)

func lookupRepositoryAndCache(username, reponame, branchName, host, domain, path, cname string, ctx *context.GlobalContext) (*gitea.Repository, error) {
	log.Debugf("CNAME: %s", cname)
	log.Debugf("Looking up repository %s/%s", username, reponame)
	repo, err := ctx.Gitea.GetRepository(username, reponame)
	if err != nil {
		return nil, err
	}

	if !ctx.Gitea.HasBranch(username, reponame, branchName) {
		return nil, errors.New("Specified branch does not exist")
	}

	// Check if the CNAME file matches

	if cname != "" {
		log.Debug("Checking CNAME")
		repoInfo := GetRepositoryInformation(username, reponame, ctx)
		if repoInfo == nil {
			log.Warn("Repository does not contain a rio.json file")
			return nil, errors.New("No CNAME available in repository")
		}

		log.Debugf("CNAME Content: \"%s\"", repoInfo.CNAME)
		if repoInfo.CNAME != host {
			log.Warnf("CNAME mismatch: Repo '%s', Host '%s'", repoInfo.CNAME, host)
			return nil, errors.New("CNAME mismatch")
		}
	}

	// Cache data
	ctx.Cache.SetRepositoryPath(
		domain,
		path,
		context.RepositoryPathInformation{
			Repository: repo,
			Path:       path,
		},
	)
	return &repo, nil
}

// host is the domain name we're accessed from. cname is the domain that host is pointing
// if, if we're accessed via a CNAME. If not, then cname is "".
func RepoFromPath(username, host, cname, path string, ctx *context.GlobalContext) (*gitea.Repository, string, error) {
	domain := host

	// Guess the repository
	entry := ctx.Cache.GetRepositoryPath(domain, path)
	if entry != nil {
		return &entry.Repository, entry.Path, nil
	}

	// Allow specifying the repository name in the TXT record
	reponame := ""
	if cname != "" {
		repoLookup, err := ctx.Gitea.LookupRepoTXT(host)
		if err == nil && repoLookup != "" {
			log.Infof(
				"TXT lookup for %s resulted in choosing repository %s",
				host,
				repoLookup,
			)
			reponame = repoLookup
		}
	}

	pathParts := strings.Split(path, "/")
	log.Debugf("reponame='%s' len(pathParts)='%d'", reponame, len(pathParts))
	if reponame == "" && len(pathParts) > 1 {
		log.Debugf("Trying repository %s", pathParts[0])
		modifiedPath := strings.Join(pathParts[1:], "/")
		repo, err := lookupRepositoryAndCache(
			username,
			pathParts[0],
			constants.PagesBranch,
			host,
			domain,
			modifiedPath,
			cname,
			ctx,
		)
		if err == nil {
			return repo, modifiedPath, nil
		}
	}

	if reponame == "" {
		reponame = domain
	}
	log.Debugf("Trying repository %s/%s", username, reponame)
	repo, err := lookupRepositoryAndCache(
		username,
		reponame,
		constants.PagesBranch,
		host,
		domain,
		path,
		cname,
		ctx,
	)
	return repo, path, err
}

// Checks if the username exists as an organisation or an user on the Gitea
// instance, so that an attacker can't just request certificates for random
// usernames.
func CanRequestCertificate(username string, ctx *context.GlobalContext) bool {
	found := ctx.Cache.GetUser(username)
	if found {
		return true
	}

	hasUser := ctx.Gitea.HasUser(username)
	if hasUser {
		ctx.Cache.SetUser(username)
	}
	return hasUser
}

func filterHeaders(headers map[string]string) map[string]string {
	newHeaders := make(map[string]string)

	for key, value := range headers {
		if slices.Contains[[]string, string](ForbiddenHeaders, strings.ToLower(key)) {
			continue
		}

		newHeaders[key] = value
	}

	return newHeaders
}

func GetRepositoryInformation(owner, repoName string, ctx *context.GlobalContext) *context.RepositoryInformation {
	res := ctx.Cache.GetRepositoryInformation(owner, repoName)
	if res != nil {
		return res
	}

	fetchedConfig, _, err := ctx.Gitea.GetFile(
		owner,
		repoName,
		constants.PagesBranch,
		"rio.json",
		nil,
	)
	if err != nil {
		log.Errorf("Failed to request rio.json for %s/%s:%v", owner, repoName, err)
		return nil
	}

	var payload map[string]interface{}
	err = json.Unmarshal(fetchedConfig, &payload)
	if err != nil {
		log.Errorf("Failed to unmarshal rio.json for %s/%s:%v", owner, repoName, err)
		return nil
	}

	headers, found := payload["headers"]
	if !found {
		log.Warnf("Did not find headers key in rio.json for %s/%s", owner, repoName)
		headers = make(map[string]string)
	}

	cname, found := payload["CNAME"]
	if found {
		switch cname.(type) {
		case string:
			// NOOP
		default:
			log.Warnf("CNAME attribute is not a string for %s/%s", owner, repoName)
			cname = ""
		}
	} else {
		cname = ""
	}

	info := context.RepositoryInformation{
		Headers: filterHeaders(headers.(map[string]string)),
		CNAME:   cname.(string),
	}
	ctx.Cache.SetRepositoryInformation(owner, repoName, info)
	return &info
}
chore: Restructure 2024-01-01 13:19:19 +00:00			`package repo`
Initial commit 2023-12-31 12:26:56 +00:00
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`//go:generate mockgen -destination mock_repo_test.go -package repo code.gitea.io/sdk/gitea Client`

Initial commit 2023-12-31 12:26:56 +00:00			`import (`
feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`"encoding/json"`
Initial commit 2023-12-31 12:26:56 +00:00			`"errors"`
feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`"slices"`
Initial commit 2023-12-31 12:26:56 +00:00			`"strings"`

feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`"git.polynom.me/rio/internal/constants"`
feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`"git.polynom.me/rio/internal/context"`
			`"git.polynom.me/rio/internal/gitea"`
chore: Restructure 2024-01-01 13:19:19 +00:00
Initial commit 2023-12-31 12:26:56 +00:00			`log "github.com/sirupsen/logrus"`
			`)`

feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`var (`
			`ForbiddenHeaders = []string{`
			`"content-length",`
			`"content-type",`
			`"date",`
			`"location",`
			`"strict-transport-security",`
			`"set-cookie",`
			`}`
			`)`

feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`func lookupRepositoryAndCache(username, reponame, branchName, host, domain, path, cname string, ctx context.GlobalContext) (gitea.Repository, error) {`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`log.Debugf("CNAME: %s", cname)`
Initial commit 2023-12-31 12:26:56 +00:00			`log.Debugf("Looking up repository %s/%s", username, reponame)`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`repo, err := ctx.Gitea.GetRepository(username, reponame)`
Initial commit 2023-12-31 12:26:56 +00:00			`if err != nil {`
			`return nil, err`
			`}`

feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`if !ctx.Gitea.HasBranch(username, reponame, branchName) {`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`return nil, errors.New("Specified branch does not exist")`
			`}`

Initial commit 2023-12-31 12:26:56 +00:00			`// Check if the CNAME file matches`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00
Initial commit 2023-12-31 12:26:56 +00:00			`if cname != "" {`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`log.Debug("Checking CNAME")`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`repoInfo := GetRepositoryInformation(username, reponame, ctx)`
			`if repoInfo == nil {`
			`log.Warn("Repository does not contain a rio.json file")`
			`return nil, errors.New("No CNAME available in repository")`
Initial commit 2023-12-31 12:26:56 +00:00			`}`

feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`log.Debugf("CNAME Content: \"%s\"", repoInfo.CNAME)`
			`if repoInfo.CNAME != host {`
			`log.Warnf("CNAME mismatch: Repo '%s', Host '%s'", repoInfo.CNAME, host)`
Initial commit 2023-12-31 12:26:56 +00:00			`return nil, errors.New("CNAME mismatch")`
			`}`
			`}`

			`// Cache data`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`ctx.Cache.SetRepositoryPath(`
			`domain,`
			`path,`
			`context.RepositoryPathInformation{`
			`Repository: repo,`
			`Path: path,`
Initial commit 2023-12-31 12:26:56 +00:00			`},`
			`)`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`return &repo, nil`
Initial commit 2023-12-31 12:26:56 +00:00			`}`

What is a CNAME? 2024-01-06 20:26:09 +00:00			`// host is the domain name we're accessed from. cname is the domain that host is pointing`
			`// if, if we're accessed via a CNAME. If not, then cname is "".`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`func RepoFromPath(username, host, cname, path string, ctx context.GlobalContext) (gitea.Repository, string, error) {`
Initial commit 2023-12-31 12:26:56 +00:00			`domain := host`

			`// Guess the repository`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`entry := ctx.Cache.GetRepositoryPath(domain, path)`
			`if entry != nil {`
			`return &entry.Repository, entry.Path, nil`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`}`

			`// Allow specifying the repository name in the TXT record`
			`reponame := ""`
			`if cname != "" {`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`repoLookup, err := ctx.Gitea.LookupRepoTXT(host)`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`if err == nil && repoLookup != "" {`
			`log.Infof(`
			`"TXT lookup for %s resulted in choosing repository %s",`
What is a CNAME? 2024-01-06 20:26:09 +00:00			`host,`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`repoLookup,`
			`)`
			`reponame = repoLookup`
			`}`
Initial commit 2023-12-31 12:26:56 +00:00			`}`

			`pathParts := strings.Split(path, "/")`
fix: Tests 2024-01-06 20:30:44 +00:00			`log.Debugf("reponame='%s' len(pathParts)='%d'", reponame, len(pathParts))`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`if reponame == "" && len(pathParts) > 1 {`
Initial commit 2023-12-31 12:26:56 +00:00			`log.Debugf("Trying repository %s", pathParts[0])`
			`modifiedPath := strings.Join(pathParts[1:], "/")`
			`repo, err := lookupRepositoryAndCache(`
			`username,`
			`pathParts[0],`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`constants.PagesBranch,`
Initial commit 2023-12-31 12:26:56 +00:00			`host,`
			`domain,`
			`modifiedPath,`
			`cname,`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`ctx,`
Initial commit 2023-12-31 12:26:56 +00:00			`)`
			`if err == nil {`
			`return repo, modifiedPath, nil`
			`}`
			`}`

feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`if reponame == "" {`
			`reponame = domain`
Add more code 2023-12-31 21:41:51 +00:00			`}`
Allow using the CNAME as the repository name 2023-12-31 13:15:39 +00:00			`log.Debugf("Trying repository %s/%s", username, reponame)`
Initial commit 2023-12-31 12:26:56 +00:00			`repo, err := lookupRepositoryAndCache(`
			`username,`
Allow using the CNAME as the repository name 2023-12-31 13:15:39 +00:00			`reponame,`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`constants.PagesBranch,`
Initial commit 2023-12-31 12:26:56 +00:00			`host,`
			`domain,`
			`path,`
			`cname,`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`ctx,`
Initial commit 2023-12-31 12:26:56 +00:00			`)`
			`return repo, path, err`
			`}`
feat: Only request certificates for existing users and orgs 2024-01-01 19:05:20 +00:00
			`// Checks if the username exists as an organisation or an user on the Gitea`
			`// instance, so that an attacker can't just request certificates for random`
			`// usernames.`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`func CanRequestCertificate(username string, ctx *context.GlobalContext) bool {`
			`found := ctx.Cache.GetUser(username)`
			`if found {`
feat: Only request certificates for existing users and orgs 2024-01-01 19:05:20 +00:00			`return true`
			`}`

feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`hasUser := ctx.Gitea.HasUser(username)`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`if hasUser {`
feat: Move the CNAME into the rio.json 2024-02-03 14:39:31 +00:00			`ctx.Cache.SetUser(username)`
feat: Only request certificates for existing users and orgs 2024-01-01 19:05:20 +00:00			`}`
feat: Add tests for the repository picking behaviour 2024-01-06 13:47:47 +00:00			`return hasUser`
feat: Only request certificates for existing users and orgs 2024-01-01 19:05:20 +00:00			`}`
feat: Allow specifying a custom CSP 2024-01-06 16:42:08 +00:00
feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`func filterHeaders(headers map[string]string) map[string]string {`
			`newHeaders := make(map[string]string)`

			`for key, value := range headers {`
			`if slices.Contains[[]string, string](ForbiddenHeaders, strings.ToLower(key)) {`
			`continue`
			`}`

			`newHeaders[key] = value`
feat: Allow specifying a custom CSP 2024-01-06 16:42:08 +00:00			`}`

feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`return newHeaders`
			`}`

			`func GetRepositoryInformation(owner, repoName string, ctx context.GlobalContext) context.RepositoryInformation {`
			`res := ctx.Cache.GetRepositoryInformation(owner, repoName)`
			`if res != nil {`
			`return res`
			`}`

			`fetchedConfig, _, err := ctx.Gitea.GetFile(`
			`owner,`
			`repoName,`
feat: Allow specifying a custom CSP 2024-01-06 16:42:08 +00:00			`constants.PagesBranch,`
feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`"rio.json",`
			`nil,`
feat: Allow specifying a custom CSP 2024-01-06 16:42:08 +00:00			`)`
			`if err != nil {`
feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`log.Errorf("Failed to request rio.json for %s/%s:%v", owner, repoName, err)`
			`return nil`
			`}`
feat: Allow specifying a custom CSP 2024-01-06 16:42:08 +00:00
feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`var payload map[string]interface{}`
			`err = json.Unmarshal(fetchedConfig, &payload)`
			`if err != nil {`
			`log.Errorf("Failed to unmarshal rio.json for %s/%s:%v", owner, repoName, err)`
			`return nil`
			`}`
feat: Allow specifying a custom CSP 2024-01-06 16:42:08 +00:00
feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`headers, found := payload["headers"]`
			`if !found {`
			`log.Warnf("Did not find headers key in rio.json for %s/%s", owner, repoName)`
			`headers = make(map[string]string)`
feat: Allow specifying a custom CSP 2024-01-06 16:42:08 +00:00			`}`

fix: Fix CNAME parsing 2024-02-03 14:51:23 +00:00			`cname, found := payload["CNAME"]`
			`if found {`
			`switch cname.(type) {`
			`case string:`
			`// NOOP`
			`default:`
			`log.Warnf("CNAME attribute is not a string for %s/%s", owner, repoName)`
			`cname = ""`
			`}`
			`} else {`
			`cname = ""`
			`}`

feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`info := context.RepositoryInformation{`
			`Headers: filterHeaders(headers.(map[string]string)),`
fix: Fix CNAME parsing 2024-02-03 14:51:23 +00:00			`CNAME: cname.(string),`
feaT: Allow specifying custom headers in the rio.json 2024-02-03 14:18:37 +00:00			`}`
			`ctx.Cache.SetRepositoryInformation(owner, repoName, info)`
			`return &info`
feat: Allow specifying a custom CSP 2024-01-06 16:42:08 +00:00			`}`