X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/db36b8ad5184c46c0bcbb42a384f298a6c45dee5..e0213cbec6a151e077b8cca00700815c3c3d18e7:/services/arv-git-httpd/auth_handler.go?ds=sidebyside diff --git a/services/arv-git-httpd/auth_handler.go b/services/arv-git-httpd/auth_handler.go index f91ed3f8c0..b284f19153 100644 --- a/services/arv-git-httpd/auth_handler.go +++ b/services/arv-git-httpd/auth_handler.go @@ -52,7 +52,19 @@ func (h *authHandler) ServeHTTP(wOrig http.ResponseWriter, r *http.Request) { w.WriteHeader(statusCode) w.Write([]byte(statusText)) } - log.Println(quoteStrings(r.RemoteAddr, username, password, wroteStatus, statusText, repoName, r.URL.Path)...) + + // If the given password is a valid token, log the first 10 characters of the token. + // Otherwise: log the string if a password is given, else an empty string. + passwordToLog := "" + if statusCode == 401 || strings.Contains(statusText, "Unauthorized") { + if len(password) > 0 { + passwordToLog = "" + } + } else { + passwordToLog = password[0:10] + } + + log.Println(quoteStrings(r.RemoteAddr, username, passwordToLog, wroteStatus, statusText, repoName, r.Method, r.URL.Path)...) }() // HTTP request username is logged, but unused. Password is an @@ -60,7 +72,7 @@ func (h *authHandler) ServeHTTP(wOrig http.ResponseWriter, r *http.Request) { username, password, ok := BasicAuth(r) if !ok || username == "" || password == "" { statusCode, statusText = http.StatusUnauthorized, "no credentials provided" - w.Header().Add("WWW-Authenticate", "basic") + w.Header().Add("WWW-Authenticate", "Basic realm=\"git\"") return } @@ -75,32 +87,6 @@ func (h *authHandler) ServeHTTP(wOrig http.ResponseWriter, r *http.Request) { repoName = pathParts[0] repoName = strings.TrimRight(repoName, "/") - // Regardless of whether the client asked for "/foo.git" or - // "/foo/.git", we choose whichever variant exists in our repo - // root. If neither exists, we won't even bother checking - // authentication. - rewrittenPath := "" - tryDirs := []string{ - "/" + repoName + ".git", - "/" + repoName + "/.git", - } - for _, dir := range tryDirs { - if fileInfo, err := os.Stat(theConfig.Root + dir); err != nil { - if !os.IsNotExist(err) { - statusCode, statusText = http.StatusInternalServerError, err.Error() - return - } - } else if fileInfo.IsDir() { - rewrittenPath = dir + "/" + pathParts[1] - break - } - } - if rewrittenPath == "" { - statusCode, statusText = http.StatusNotFound, "not found" - return - } - r.URL.Path = rewrittenPath - arv, ok := connectionPool.Get().(*arvadosclient.ArvadosClient) if !ok || arv == nil { statusCode, statusText = http.StatusInternalServerError, "connection pool failed" @@ -108,11 +94,12 @@ func (h *authHandler) ServeHTTP(wOrig http.ResponseWriter, r *http.Request) { } defer connectionPool.Put(arv) - // Ask API server whether the repository is readable using this token (by trying to read it!) + // Ask API server whether the repository is readable using + // this token (by trying to read it!) arv.ApiToken = password reposFound := arvadosclient.Dict{} if err := arv.List("repositories", arvadosclient.Dict{ - "filters": [][]string{[]string{"name", "=", repoName}}, + "filters": [][]string{{"name", "=", repoName}}, }, &reposFound); err != nil { statusCode, statusText = http.StatusInternalServerError, err.Error() return @@ -127,12 +114,14 @@ func (h *authHandler) ServeHTTP(wOrig http.ResponseWriter, r *http.Request) { statusCode, statusText = http.StatusInternalServerError, "name collision" return } + + repoUUID := reposFound["items"].([]interface{})[0].(map[string]interface{})["uuid"].(string) + isWrite := strings.HasSuffix(r.URL.Path, "/git-receive-pack") if !isWrite { statusText = "read" } else { - uuid := reposFound["items"].([]interface{})[0].(map[string]interface{})["uuid"].(string) - err := arv.Update("repositories", uuid, arvadosclient.Dict{ + err := arv.Update("repositories", repoUUID, arvadosclient.Dict{ "repository": arvadosclient.Dict{ "modified_at": time.Now().String(), }, @@ -143,6 +132,41 @@ func (h *authHandler) ServeHTTP(wOrig http.ResponseWriter, r *http.Request) { } statusText = "write" } + + // Regardless of whether the client asked for "/foo.git" or + // "/foo/.git", we choose whichever variant exists in our repo + // root, and we try {uuid}.git and {uuid}/.git first. If none + // of these exist, we 404 even though the API told us the repo + // _should_ exist (presumably this means the repo was just + // created, and gitolite sync hasn't run yet). + rewrittenPath := "" + tryDirs := []string{ + "/" + repoUUID + ".git", + "/" + repoUUID + "/.git", + "/" + repoName + ".git", + "/" + repoName + "/.git", + } + for _, dir := range tryDirs { + if fileInfo, err := os.Stat(theConfig.Root + dir); err != nil { + if !os.IsNotExist(err) { + statusCode, statusText = http.StatusInternalServerError, err.Error() + return + } + } else if fileInfo.IsDir() { + rewrittenPath = dir + "/" + pathParts[1] + break + } + } + if rewrittenPath == "" { + log.Println("WARNING:", repoUUID, + "git directory not found in", theConfig.Root, tryDirs) + // We say "content not found" to disambiguate from the + // earlier "API says that repo does not exist" error. + statusCode, statusText = http.StatusNotFound, "content not found" + return + } + r.URL.Path = rewrittenPath + handlerCopy := *h.handler handlerCopy.Env = append(handlerCopy.Env, "REMOTE_USER="+r.RemoteAddr) // Should be username handlerCopy.ServeHTTP(&w, r)