552 lines
13 KiB
Go
552 lines
13 KiB
Go
package lfs
|
|
|
|
import (
|
|
"bytes"
|
|
"encoding/base64"
|
|
"encoding/json"
|
|
"errors"
|
|
"fmt"
|
|
"github.com/cheggaaa/pb"
|
|
"github.com/rubyist/tracerx"
|
|
"io"
|
|
"io/ioutil"
|
|
"mime"
|
|
"net/http"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
)
|
|
|
|
const (
|
|
// Legacy type
|
|
gitMediaType = "application/vnd.git-media"
|
|
|
|
// The main type, sub type, and suffix. Use this when ensuring the type from
|
|
// an HTTP response is correct.
|
|
gitMediaMetaTypePrefix = gitMediaType + "+json"
|
|
|
|
// Adds the extra mime params. Use this when sending the type in an HTTP
|
|
// request.
|
|
gitMediaMetaType = gitMediaMetaTypePrefix + "; charset=utf-8"
|
|
)
|
|
|
|
func Download(oidPath string) (io.ReadCloser, int64, *WrappedError) {
|
|
oid := filepath.Base(oidPath)
|
|
req, creds, err := request("GET", oid)
|
|
if err != nil {
|
|
return nil, 0, Error(err)
|
|
}
|
|
|
|
req.Header.Set("Accept", gitMediaType)
|
|
res, wErr := doHTTPWithCreds(req, creds)
|
|
|
|
if wErr != nil {
|
|
return nil, 0, wErr
|
|
}
|
|
|
|
contentType := res.Header.Get("Content-Type")
|
|
if contentType == "" {
|
|
wErr = Error(errors.New("Empty Content-Type"))
|
|
setErrorResponseContext(wErr, res)
|
|
return nil, 0, wErr
|
|
}
|
|
|
|
if strings.HasPrefix(contentType, gitMediaMetaTypePrefix) {
|
|
obj := &objectResource{}
|
|
err := json.NewDecoder(res.Body).Decode(obj)
|
|
res.Body.Close()
|
|
if err != nil {
|
|
wErr := Error(err)
|
|
setErrorResponseContext(wErr, res)
|
|
return nil, 0, wErr
|
|
}
|
|
|
|
dlReq, err := obj.NewRequest("download", "GET")
|
|
if err != nil {
|
|
wErr := Error(err)
|
|
setErrorResponseContext(wErr, res)
|
|
return nil, 0, wErr
|
|
}
|
|
|
|
dlCreds, err := setRequestHeaders(dlReq)
|
|
if err != nil {
|
|
return nil, 0, Errorf(err, "Error attempting to GET %s", oidPath)
|
|
}
|
|
|
|
dlRes, err := DoHTTP(Config, dlReq)
|
|
if err != nil {
|
|
wErr := Error(err)
|
|
setErrorResponseContext(wErr, res)
|
|
return nil, 0, wErr
|
|
}
|
|
|
|
saveCredentials(dlCreds, dlRes)
|
|
|
|
contentType := dlRes.Header.Get("Content-Type")
|
|
if contentType == "" {
|
|
wErr = Error(errors.New("Empty Content-Type"))
|
|
setErrorResponseContext(wErr, res)
|
|
return nil, 0, wErr
|
|
}
|
|
|
|
res = dlRes
|
|
}
|
|
|
|
ok, headerSize, wErr := validateMediaHeader(contentType, res.Body)
|
|
if !ok {
|
|
setErrorResponseContext(wErr, res)
|
|
return nil, 0, wErr
|
|
}
|
|
|
|
return res.Body, res.ContentLength - int64(headerSize), nil
|
|
}
|
|
|
|
func Upload(oidPath, filename string, cb CopyCallback) *WrappedError {
|
|
linkMeta, status, err := callPost(oidPath, filename)
|
|
if err != nil && status != 302 {
|
|
return Errorf(err, "Error starting file upload.")
|
|
}
|
|
|
|
oid := filepath.Base(oidPath)
|
|
|
|
switch status {
|
|
case 200: // object exists on the server
|
|
case 405, 302:
|
|
// Do the old style OPTIONS + PUT
|
|
status, wErr := callOptions(oidPath)
|
|
if wErr != nil {
|
|
return wErr
|
|
}
|
|
|
|
if status != 200 {
|
|
err = callPut(oidPath, filename, cb)
|
|
if err != nil {
|
|
return Errorf(err, "Error uploading file %s (%s)", filename, oid)
|
|
}
|
|
}
|
|
case 202:
|
|
// the server responded with hypermedia links to upload and verify the object.
|
|
err = callExternalPut(oidPath, filename, linkMeta, cb)
|
|
if err != nil {
|
|
return Errorf(err, "Error uploading file %s (%s)", filename, oid)
|
|
}
|
|
default:
|
|
return Errorf(err, "Unexpected HTTP response: %d", status)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
type objectResource struct {
|
|
Oid string `json:"oid,omitempty"`
|
|
Size int64 `json:"size,omitempty"`
|
|
Links map[string]*linkRelation `json:"_links,omitempty"`
|
|
}
|
|
|
|
var objectRelationDoesNotExist = errors.New("relation does not exist")
|
|
|
|
func (o *objectResource) NewRequest(relation, method string) (*http.Request, error) {
|
|
rel, ok := o.Rel(relation)
|
|
if !ok {
|
|
return nil, objectRelationDoesNotExist
|
|
}
|
|
|
|
req, err := http.NewRequest(method, rel.Href, nil)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
for h, v := range rel.Header {
|
|
req.Header.Set(h, v)
|
|
}
|
|
|
|
return req, nil
|
|
}
|
|
|
|
func (o *objectResource) Rel(name string) (*linkRelation, bool) {
|
|
if o.Links == nil {
|
|
return nil, false
|
|
}
|
|
|
|
rel, ok := o.Links[name]
|
|
return rel, ok
|
|
}
|
|
|
|
type linkRelation struct {
|
|
Href string `json:"href"`
|
|
Header map[string]string `json:"header,omitempty"`
|
|
}
|
|
|
|
func callOptions(filehash string) (int, *WrappedError) {
|
|
oid := filepath.Base(filehash)
|
|
_, err := os.Stat(filehash)
|
|
if err != nil {
|
|
return 0, Errorf(err, "Internal object does not exist: %s", filehash)
|
|
}
|
|
|
|
tracerx.Printf("api_options: %s", oid)
|
|
req, creds, err := request("OPTIONS", oid)
|
|
if err != nil {
|
|
return 0, Errorf(err, "Unable to build OPTIONS request for %s", oid)
|
|
}
|
|
|
|
res, wErr := doHTTPWithCreds(req, creds)
|
|
if wErr != nil {
|
|
return 0, wErr
|
|
}
|
|
|
|
return res.StatusCode, nil
|
|
}
|
|
|
|
func callPut(filehash, filename string, cb CopyCallback) *WrappedError {
|
|
if filename == "" {
|
|
filename = filehash
|
|
}
|
|
|
|
oid := filepath.Base(filehash)
|
|
file, err := os.Open(filehash)
|
|
if err != nil {
|
|
return Errorf(err, "Internal object does not exist: %s", filehash)
|
|
}
|
|
defer file.Close()
|
|
|
|
stat, err := file.Stat()
|
|
if err != nil {
|
|
return Errorf(err, "Internal object does not exist: %s", filehash)
|
|
}
|
|
|
|
req, creds, err := request("PUT", oid)
|
|
if err != nil {
|
|
return Errorf(err, "Unable to build PUT request for %s", oid)
|
|
}
|
|
|
|
fileSize := stat.Size()
|
|
reader := &CallbackReader{
|
|
C: cb,
|
|
TotalSize: fileSize,
|
|
Reader: file,
|
|
}
|
|
|
|
bar := pb.StartNew(int(fileSize))
|
|
bar.SetUnits(pb.U_BYTES)
|
|
bar.Start()
|
|
|
|
req.Header.Set("Content-Type", gitMediaType)
|
|
req.Header.Set("Accept", gitMediaMetaType)
|
|
req.Body = ioutil.NopCloser(bar.NewProxyReader(reader))
|
|
req.ContentLength = fileSize
|
|
|
|
fmt.Printf("Sending %s\n", filename)
|
|
|
|
tracerx.Printf("api_put: %s %s", oid, filename)
|
|
_, wErr := doHTTPWithCreds(req, creds)
|
|
|
|
return wErr
|
|
}
|
|
|
|
func callExternalPut(filehash, filename string, obj *objectResource, cb CopyCallback) *WrappedError {
|
|
if obj == nil {
|
|
return Errorf(errors.New("No hypermedia links provided"),
|
|
"Error attempting to PUT %s", filename)
|
|
}
|
|
|
|
req, err := obj.NewRequest("upload", "PUT")
|
|
if err == objectRelationDoesNotExist {
|
|
return Errorf(errors.New("No upload link provided"),
|
|
"Error attempting to PUT %s", filename)
|
|
}
|
|
|
|
if err != nil {
|
|
return Errorf(err, "Error attempting to PUT %s", filename)
|
|
}
|
|
|
|
file, err := os.Open(filehash)
|
|
if err != nil {
|
|
return Errorf(err, "Error attempting to PUT %s", filename)
|
|
}
|
|
defer file.Close()
|
|
|
|
stat, err := file.Stat()
|
|
if err != nil {
|
|
return Errorf(err, "Error attempting to PUT %s", filename)
|
|
}
|
|
fileSize := stat.Size()
|
|
reader := &CallbackReader{
|
|
C: cb,
|
|
TotalSize: fileSize,
|
|
Reader: file,
|
|
}
|
|
|
|
creds, err := setRequestHeaders(req)
|
|
if err != nil {
|
|
return Errorf(err, "Error attempting to PUT %s", filename)
|
|
}
|
|
|
|
bar := pb.StartNew(int(fileSize))
|
|
bar.SetUnits(pb.U_BYTES)
|
|
bar.Start()
|
|
|
|
req.Body = ioutil.NopCloser(bar.NewProxyReader(reader))
|
|
req.ContentLength = fileSize
|
|
|
|
tracerx.Printf("external_put: %s %s", filepath.Base(filehash), req.URL)
|
|
res, err := DoHTTP(Config, req)
|
|
if err != nil {
|
|
return Errorf(err, "Error attempting to PUT %s", filename)
|
|
}
|
|
saveCredentials(creds, res)
|
|
|
|
// Run the verify callback
|
|
verifyReq, err := obj.NewRequest("verify", "POST")
|
|
if err == objectRelationDoesNotExist {
|
|
return nil
|
|
}
|
|
|
|
if err != nil {
|
|
return Errorf(err, "Error attempting to verify %s", filename)
|
|
}
|
|
|
|
verifyCreds, err := setRequestHeaders(verifyReq)
|
|
if err != nil {
|
|
return Errorf(err, "Error attempting to verify %s", filename)
|
|
}
|
|
|
|
oid := filepath.Base(filehash)
|
|
d := fmt.Sprintf(`{"oid":"%s", "size":%d}`, oid, fileSize)
|
|
verifyReq.Body = ioutil.NopCloser(bytes.NewBufferString(d))
|
|
|
|
tracerx.Printf("verify: %s %s", oid, verifyReq.URL.String())
|
|
verifyRes, err := DoHTTP(Config, verifyReq)
|
|
if err != nil {
|
|
return Errorf(err, "Error attempting to verify %s", filename)
|
|
}
|
|
saveCredentials(verifyCreds, verifyRes)
|
|
|
|
return nil
|
|
}
|
|
|
|
func callPost(filehash, filename string) (*objectResource, int, *WrappedError) {
|
|
oid := filepath.Base(filehash)
|
|
req, creds, err := request("POST", "")
|
|
if err != nil {
|
|
return nil, 0, Errorf(err, "Error attempting to POST %s", filename)
|
|
}
|
|
|
|
file, err := os.Open(filehash)
|
|
if err != nil {
|
|
return nil, 0, Errorf(err, "Error attempting to POST %s", filename)
|
|
}
|
|
defer file.Close()
|
|
|
|
stat, err := file.Stat()
|
|
if err != nil {
|
|
return nil, 0, Errorf(err, "Error attempting to POST %s", filename)
|
|
}
|
|
fileSize := stat.Size()
|
|
|
|
d := fmt.Sprintf(`{"oid":"%s", "size":%d}`, oid, fileSize)
|
|
req.Body = ioutil.NopCloser(bytes.NewBufferString(d))
|
|
|
|
req.Header.Set("Accept", gitMediaMetaType)
|
|
|
|
tracerx.Printf("api_post: %s %s", oid, filename)
|
|
res, wErr := doHTTPWithCreds(req, creds)
|
|
if wErr != nil {
|
|
return nil, 0, wErr
|
|
}
|
|
|
|
if res.StatusCode == 202 {
|
|
obj := &objectResource{}
|
|
err := json.NewDecoder(res.Body).Decode(obj)
|
|
if err != nil {
|
|
return nil, res.StatusCode, Errorf(err, "Error decoding JSON from %s %s.", req.Method, req.URL)
|
|
}
|
|
|
|
return obj, res.StatusCode, nil
|
|
}
|
|
|
|
return nil, res.StatusCode, nil
|
|
}
|
|
|
|
func validateMediaHeader(contentType string, reader io.Reader) (bool, int, *WrappedError) {
|
|
mediaType, params, err := mime.ParseMediaType(contentType)
|
|
var headerSize int
|
|
|
|
if err != nil {
|
|
return false, headerSize, Errorf(err, "Invalid Media Type: %s", contentType)
|
|
}
|
|
|
|
if mediaType == gitMediaType {
|
|
|
|
givenHeader, ok := params["header"]
|
|
if !ok {
|
|
return false, headerSize, Error(fmt.Errorf("Missing Git Media header in %s", contentType))
|
|
}
|
|
|
|
fullGivenHeader := "--" + givenHeader + "\n"
|
|
headerSize = len(fullGivenHeader)
|
|
|
|
header := make([]byte, headerSize)
|
|
_, err = io.ReadAtLeast(reader, header, len(fullGivenHeader))
|
|
if err != nil {
|
|
return false, headerSize, Errorf(err, "Error reading response body.")
|
|
}
|
|
|
|
if string(header) != fullGivenHeader {
|
|
return false, headerSize, Error(fmt.Errorf("Invalid header: %s expected, got %s", fullGivenHeader, header))
|
|
}
|
|
}
|
|
return true, headerSize, nil
|
|
}
|
|
|
|
// Wraps DoHTTP(), and saves or removes credentials from the git credential
|
|
// store based on the response.
|
|
func doHTTPWithCreds(req *http.Request, creds Creds) (*http.Response, *WrappedError) {
|
|
res, err := DoHTTP(Config, req)
|
|
|
|
var wErr *WrappedError
|
|
|
|
if err == RedirectError {
|
|
err = nil
|
|
}
|
|
|
|
if err == nil {
|
|
if creds != nil {
|
|
saveCredentials(creds, res)
|
|
}
|
|
|
|
wErr = handleResponseError(res)
|
|
} else if res.StatusCode != 302 { // hack for pre-release
|
|
wErr = Errorf(err, "Error sending HTTP request to %s", req.URL.String())
|
|
}
|
|
|
|
if wErr != nil {
|
|
if res != nil {
|
|
setErrorResponseContext(wErr, res)
|
|
} else {
|
|
setErrorRequestContext(wErr, req)
|
|
}
|
|
}
|
|
|
|
return res, wErr
|
|
}
|
|
|
|
func handleResponseError(res *http.Response) *WrappedError {
|
|
if res.StatusCode < 400 || res.StatusCode == 405 {
|
|
return nil
|
|
}
|
|
|
|
var wErr *WrappedError
|
|
apiErr := &ClientError{}
|
|
dec := json.NewDecoder(res.Body)
|
|
if err := dec.Decode(apiErr); err != nil {
|
|
wErr = Errorf(err, "Error decoding JSON from response")
|
|
} else {
|
|
var msg string
|
|
switch res.StatusCode {
|
|
case 401, 403:
|
|
msg = fmt.Sprintf("Authorization error: %s\nCheck that you have proper access to the repository.", res.Request.URL)
|
|
case 404:
|
|
msg = fmt.Sprintf("Repository not found: %s\nCheck that it exists and that you have proper access to it.", res.Request.URL)
|
|
default:
|
|
msg = fmt.Sprintf("Invalid response: %d", res.StatusCode)
|
|
}
|
|
|
|
wErr = Errorf(apiErr, msg)
|
|
}
|
|
|
|
if res.StatusCode < 500 {
|
|
wErr.Panic = false
|
|
}
|
|
|
|
return wErr
|
|
}
|
|
|
|
func saveCredentials(creds Creds, res *http.Response) {
|
|
if creds == nil {
|
|
return
|
|
}
|
|
|
|
if res.StatusCode < 300 {
|
|
execCreds(creds, "approve")
|
|
return
|
|
}
|
|
|
|
if res.StatusCode < 404 {
|
|
execCreds(creds, "reject")
|
|
}
|
|
}
|
|
|
|
var hiddenHeaders = map[string]bool{
|
|
"Authorization": true,
|
|
}
|
|
|
|
func setErrorRequestContext(err *WrappedError, req *http.Request) {
|
|
err.Set("Endpoint", Config.Endpoint())
|
|
err.Set("URL", fmt.Sprintf("%s %s", req.Method, req.URL.String()))
|
|
setErrorHeaderContext(err, "Response", req.Header)
|
|
}
|
|
|
|
func setErrorResponseContext(err *WrappedError, res *http.Response) {
|
|
err.Set("Status", res.Status)
|
|
setErrorHeaderContext(err, "Request", res.Header)
|
|
setErrorRequestContext(err, res.Request)
|
|
}
|
|
|
|
func setErrorHeaderContext(err *WrappedError, prefix string, head http.Header) {
|
|
for key, _ := range head {
|
|
contextKey := fmt.Sprintf("%s:%s", prefix, key)
|
|
if _, skip := hiddenHeaders[key]; skip {
|
|
err.Set(contextKey, "--")
|
|
} else {
|
|
err.Set(contextKey, head.Get(key))
|
|
}
|
|
}
|
|
}
|
|
|
|
func request(method, oid string) (*http.Request, Creds, error) {
|
|
u := Config.ObjectUrl(oid)
|
|
req, err := http.NewRequest(method, u.String(), nil)
|
|
if err != nil {
|
|
return req, nil, err
|
|
}
|
|
|
|
creds, err := setRequestHeaders(req)
|
|
return req, creds, err
|
|
}
|
|
|
|
func setRequestHeaders(req *http.Request) (Creds, error) {
|
|
req.Header.Set("User-Agent", UserAgent)
|
|
|
|
if _, ok := req.Header["Authorization"]; ok {
|
|
return nil, nil
|
|
}
|
|
|
|
creds, err := credentials(req.URL)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
token := fmt.Sprintf("%s:%s", creds["username"], creds["password"])
|
|
auth := "Basic " + base64.URLEncoding.EncodeToString([]byte(token))
|
|
req.Header.Set("Authorization", auth)
|
|
return creds, nil
|
|
}
|
|
|
|
type ClientError struct {
|
|
Message string `json:"message"`
|
|
DocumentationUrl string `json:"documentation_url,omitempty"`
|
|
RequestId string `json:"request_id,omitempty"`
|
|
}
|
|
|
|
func (e *ClientError) Error() string {
|
|
msg := e.Message
|
|
if len(e.DocumentationUrl) > 0 {
|
|
msg += "\nDocs: " + e.DocumentationUrl
|
|
}
|
|
if len(e.RequestId) > 0 {
|
|
msg += "\nRequest ID: " + e.RequestId
|
|
}
|
|
return msg
|
|
}
|