2014-11-18 11:07:16 -05:00
|
|
|
// Copyright 2014 The Gogs Authors. All rights reserved.
|
2018-07-06 21:54:30 -04:00
|
|
|
// Copyright 2018 The Gitea Authors. All rights reserved.
|
2014-11-18 11:07:16 -05:00
|
|
|
// Use of this source code is governed by a MIT-style
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
2015-12-04 17:16:42 -05:00
|
|
|
package user
|
2014-11-18 11:07:16 -05:00
|
|
|
|
|
|
|
import (
|
2019-05-11 06:21:34 -04:00
|
|
|
api "code.gitea.io/gitea/modules/structs"
|
2014-11-18 11:07:16 -05:00
|
|
|
|
2016-11-10 11:24:48 -05:00
|
|
|
"code.gitea.io/gitea/models"
|
|
|
|
"code.gitea.io/gitea/modules/context"
|
2014-11-18 11:07:16 -05:00
|
|
|
)
|
|
|
|
|
2016-11-24 02:04:31 -05:00
|
|
|
// ListAccessTokens list all the access tokens
|
2016-03-13 18:49:16 -04:00
|
|
|
func ListAccessTokens(ctx *context.APIContext) {
|
2017-11-13 02:02:25 -05:00
|
|
|
// swagger:operation GET /users/{username}/tokens user userGetTokens
|
|
|
|
// ---
|
|
|
|
// summary: List the authenticated user's access tokens
|
|
|
|
// produces:
|
|
|
|
// - application/json
|
2018-06-12 10:59:22 -04:00
|
|
|
// parameters:
|
|
|
|
// - name: username
|
|
|
|
// in: path
|
|
|
|
// description: username of user
|
|
|
|
// type: string
|
|
|
|
// required: true
|
2017-11-13 02:02:25 -05:00
|
|
|
// responses:
|
|
|
|
// "200":
|
|
|
|
// "$ref": "#/responses/AccessTokenList"
|
2016-07-23 13:08:22 -04:00
|
|
|
tokens, err := models.ListAccessTokens(ctx.User.ID)
|
2014-11-18 11:07:16 -05:00
|
|
|
if err != nil {
|
2016-03-13 18:49:16 -04:00
|
|
|
ctx.Error(500, "ListAccessTokens", err)
|
2014-11-18 11:07:16 -05:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
apiTokens := make([]*api.AccessToken, len(tokens))
|
|
|
|
for i := range tokens {
|
2019-05-12 13:29:07 -04:00
|
|
|
if tokens[i].Name == "drone" {
|
|
|
|
tokens[i].Name = "drone-legacy-use-oauth2-instead"
|
|
|
|
}
|
2017-02-26 00:25:35 -05:00
|
|
|
apiTokens[i] = &api.AccessToken{
|
2019-05-04 11:45:34 -04:00
|
|
|
ID: tokens[i].ID,
|
|
|
|
Name: tokens[i].Name,
|
|
|
|
TokenLastEight: tokens[i].TokenLastEight,
|
2017-02-26 00:25:35 -05:00
|
|
|
}
|
2014-11-18 11:07:16 -05:00
|
|
|
}
|
|
|
|
ctx.JSON(200, &apiTokens)
|
|
|
|
}
|
|
|
|
|
2016-11-24 02:04:31 -05:00
|
|
|
// CreateAccessToken create access tokens
|
2016-03-13 18:49:16 -04:00
|
|
|
func CreateAccessToken(ctx *context.APIContext, form api.CreateAccessTokenOption) {
|
2017-11-13 02:02:25 -05:00
|
|
|
// swagger:operation POST /users/{username}/tokens user userCreateToken
|
|
|
|
// ---
|
|
|
|
// summary: Create an access token
|
|
|
|
// consumes:
|
|
|
|
// - application/json
|
|
|
|
// produces:
|
|
|
|
// - application/json
|
2018-06-12 10:59:22 -04:00
|
|
|
// parameters:
|
|
|
|
// - name: username
|
|
|
|
// in: path
|
|
|
|
// description: username of user
|
|
|
|
// type: string
|
|
|
|
// required: true
|
2018-10-20 23:40:42 -04:00
|
|
|
// - name: accessToken
|
|
|
|
// in: body
|
|
|
|
// schema:
|
|
|
|
// type: object
|
|
|
|
// required:
|
|
|
|
// - name
|
|
|
|
// properties:
|
|
|
|
// name:
|
|
|
|
// type: string
|
2017-11-13 02:02:25 -05:00
|
|
|
// responses:
|
|
|
|
// "200":
|
|
|
|
// "$ref": "#/responses/AccessToken"
|
2014-11-18 11:07:16 -05:00
|
|
|
t := &models.AccessToken{
|
2016-07-23 13:08:22 -04:00
|
|
|
UID: ctx.User.ID,
|
2014-11-18 11:07:16 -05:00
|
|
|
Name: form.Name,
|
|
|
|
}
|
2019-05-12 13:29:07 -04:00
|
|
|
if t.Name == "drone" {
|
|
|
|
t.Name = "drone-legacy-use-oauth2-instead"
|
|
|
|
}
|
2014-11-18 11:07:16 -05:00
|
|
|
if err := models.NewAccessToken(t); err != nil {
|
2016-03-13 18:49:16 -04:00
|
|
|
ctx.Error(500, "NewAccessToken", err)
|
2014-11-18 11:07:16 -05:00
|
|
|
return
|
|
|
|
}
|
2017-02-26 00:25:35 -05:00
|
|
|
ctx.JSON(201, &api.AccessToken{
|
2019-05-12 13:29:07 -04:00
|
|
|
Name: t.Name,
|
|
|
|
Token: t.Token,
|
|
|
|
ID: t.ID,
|
|
|
|
TokenLastEight: t.TokenLastEight,
|
2017-02-26 00:25:35 -05:00
|
|
|
})
|
2014-11-18 11:07:16 -05:00
|
|
|
}
|
2018-07-06 21:54:30 -04:00
|
|
|
|
|
|
|
// DeleteAccessToken delete access tokens
|
|
|
|
func DeleteAccessToken(ctx *context.APIContext) {
|
|
|
|
// swagger:operation DELETE /users/{username}/tokens/{token} user userDeleteAccessToken
|
|
|
|
// ---
|
|
|
|
// summary: delete an access token
|
|
|
|
// produces:
|
|
|
|
// - application/json
|
|
|
|
// parameters:
|
|
|
|
// - name: username
|
|
|
|
// in: path
|
|
|
|
// description: username of user
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// - name: token
|
|
|
|
// in: path
|
|
|
|
// description: token to be deleted
|
|
|
|
// type: integer
|
2018-10-20 23:40:42 -04:00
|
|
|
// format: int64
|
2018-07-06 21:54:30 -04:00
|
|
|
// required: true
|
|
|
|
// responses:
|
|
|
|
// "204":
|
|
|
|
// "$ref": "#/responses/empty"
|
|
|
|
tokenID := ctx.ParamsInt64(":id")
|
|
|
|
if err := models.DeleteAccessTokenByID(tokenID, ctx.User.ID); err != nil {
|
|
|
|
if models.IsErrAccessTokenNotExist(err) {
|
2019-03-18 22:29:43 -04:00
|
|
|
ctx.NotFound()
|
2018-07-06 21:54:30 -04:00
|
|
|
} else {
|
|
|
|
ctx.Error(500, "DeleteAccessTokenByID", err)
|
|
|
|
}
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
ctx.Status(204)
|
|
|
|
}
|