2014-07-26 13:24:27 +09:00
|
|
|
// Copyright 2014 The Gogs Authors. All rights reserved.
|
2018-11-15 10:00:04 +09:00
|
|
|
// Copyright 2018 The Gitea Authors. All rights reserved.
|
2014-07-26 13:24:27 +09:00
|
|
|
// Use of this source code is governed by a MIT-style
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
|
|
|
package auth
|
|
|
|
|
|
|
|
import (
|
2014-11-22 00:58:08 +09:00
|
|
|
"mime/multipart"
|
2018-11-15 10:00:04 +09:00
|
|
|
"strings"
|
|
|
|
|
|
|
|
"code.gitea.io/gitea/modules/setting"
|
2014-11-22 00:58:08 +09:00
|
|
|
|
2015-10-16 10:28:12 +09:00
|
|
|
"github.com/go-macaron/binding"
|
2019-01-10 02:22:57 +09:00
|
|
|
macaron "gopkg.in/macaron.v1"
|
2014-07-26 13:24:27 +09:00
|
|
|
)
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// InstallForm form for installation page
|
2014-07-26 13:24:27 +09:00
|
|
|
type InstallForm struct {
|
2015-07-09 14:17:48 +09:00
|
|
|
DbType string `binding:"Required"`
|
|
|
|
DbHost string
|
|
|
|
DbUser string
|
|
|
|
DbPasswd string
|
|
|
|
DbName string
|
2015-07-20 13:34:53 +09:00
|
|
|
SSLMode string
|
2015-07-09 14:17:48 +09:00
|
|
|
DbPath string
|
|
|
|
|
|
|
|
AppName string `binding:"Required" locale:"install.app_name"`
|
|
|
|
RepoRootPath string `binding:"Required"`
|
2016-12-26 10:16:37 +09:00
|
|
|
LFSRootPath string
|
2015-07-09 14:17:48 +09:00
|
|
|
RunUser string `binding:"Required"`
|
|
|
|
Domain string `binding:"Required"`
|
2015-08-19 21:36:19 +09:00
|
|
|
SSHPort int
|
2015-07-20 13:34:53 +09:00
|
|
|
HTTPPort string `binding:"Required"`
|
2016-11-27 15:03:59 +09:00
|
|
|
AppURL string `binding:"Required"`
|
2016-02-13 00:10:02 +09:00
|
|
|
LogRootPath string `binding:"Required"`
|
2015-07-09 14:17:48 +09:00
|
|
|
|
2015-07-20 13:34:53 +09:00
|
|
|
SMTPHost string
|
|
|
|
SMTPFrom string
|
2017-02-24 10:37:13 +09:00
|
|
|
SMTPUser string `binding:"OmitEmpty;MaxSize(254)" locale:"install.mailer_user"`
|
2015-07-20 13:34:53 +09:00
|
|
|
SMTPPasswd string
|
2015-07-09 14:17:48 +09:00
|
|
|
RegisterConfirm bool
|
|
|
|
MailNotify bool
|
|
|
|
|
2017-05-12 17:09:53 +09:00
|
|
|
OfflineMode bool
|
|
|
|
DisableGravatar bool
|
|
|
|
EnableFederatedAvatar bool
|
2017-08-20 00:34:49 +09:00
|
|
|
EnableOpenIDSignIn bool
|
|
|
|
EnableOpenIDSignUp bool
|
2017-05-12 17:09:53 +09:00
|
|
|
DisableRegistration bool
|
2018-05-13 16:51:16 +09:00
|
|
|
AllowOnlyExternalRegistration bool
|
2017-05-12 17:09:53 +09:00
|
|
|
EnableCaptcha bool
|
|
|
|
RequireSignInView bool
|
|
|
|
DefaultKeepEmailPrivate bool
|
2017-05-09 04:51:53 +09:00
|
|
|
DefaultAllowCreateOrganization bool
|
2017-09-12 15:48:13 +09:00
|
|
|
DefaultEnableTimetracking bool
|
2017-05-12 17:09:53 +09:00
|
|
|
NoReplyAddress string
|
2015-07-09 14:17:48 +09:00
|
|
|
|
2015-07-08 20:47:56 +09:00
|
|
|
AdminName string `binding:"OmitEmpty;AlphaDashDot;MaxSize(30)" locale:"install.admin_name"`
|
2015-08-18 03:30:33 +09:00
|
|
|
AdminPasswd string `binding:"OmitEmpty;MaxSize(255)" locale:"install.admin_password"`
|
2015-07-08 20:47:56 +09:00
|
|
|
AdminConfirmPasswd string
|
2015-10-30 10:12:41 +09:00
|
|
|
AdminEmail string `binding:"OmitEmpty;MinSize(3);MaxSize(254);Include(@)" locale:"install.admin_email"`
|
2014-07-26 13:24:27 +09:00
|
|
|
}
|
|
|
|
|
2017-03-15 09:52:01 +09:00
|
|
|
// Validate validates the fields
|
2014-10-16 00:19:20 +09:00
|
|
|
func (f *InstallForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
2014-07-26 13:24:27 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
// _____ ____ _________________ ___
|
|
|
|
// / _ \ | | \__ ___/ | \
|
|
|
|
// / /_\ \| | / | | / ~ \
|
|
|
|
// / | \ | / | | \ Y /
|
|
|
|
// \____|__ /______/ |____| \___|_ /
|
|
|
|
// \/ \/
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// RegisterForm form for registering
|
2014-07-26 13:24:27 +09:00
|
|
|
type RegisterForm struct {
|
2019-02-26 03:56:47 +09:00
|
|
|
UserName string `binding:"Required;AlphaDashDot;MaxSize(40)"`
|
2018-07-05 13:13:05 +09:00
|
|
|
Email string `binding:"Required;Email;MaxSize(254)"`
|
|
|
|
Password string `binding:"Required;MaxSize(255)"`
|
|
|
|
Retype string
|
|
|
|
GRecaptchaResponse string `form:"g-recaptcha-response"`
|
2014-07-26 13:24:27 +09:00
|
|
|
}
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// Validate valideates the fields
|
2014-10-16 00:19:20 +09:00
|
|
|
func (f *RegisterForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
2014-07-26 13:24:27 +09:00
|
|
|
}
|
|
|
|
|
2018-11-15 10:00:04 +09:00
|
|
|
// IsEmailDomainWhitelisted validates that the email address
|
|
|
|
// provided by the user matches what has been configured .
|
|
|
|
// If the domain whitelist from the config is empty, it marks the
|
|
|
|
// email as whitelisted
|
|
|
|
func (f RegisterForm) IsEmailDomainWhitelisted() bool {
|
|
|
|
if len(setting.Service.EmailDomainWhitelist) == 0 {
|
|
|
|
return true
|
|
|
|
}
|
|
|
|
|
|
|
|
n := strings.LastIndex(f.Email, "@")
|
|
|
|
if n <= 0 {
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
|
|
|
|
domain := strings.ToLower(f.Email[n+1:])
|
|
|
|
|
|
|
|
for _, v := range setting.Service.EmailDomainWhitelist {
|
|
|
|
if strings.ToLower(v) == domain {
|
|
|
|
return true
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
|
2018-09-13 21:04:25 +09:00
|
|
|
// MustChangePasswordForm form for updating your password after account creation
|
|
|
|
// by an admin
|
|
|
|
type MustChangePasswordForm struct {
|
|
|
|
Password string `binding:"Required;MaxSize(255)"`
|
|
|
|
Retype string
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate valideates the fields
|
|
|
|
func (f *MustChangePasswordForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
2017-03-17 23:16:08 +09:00
|
|
|
// SignInForm form for signing in with user/password
|
2014-07-26 13:24:27 +09:00
|
|
|
type SignInForm struct {
|
2015-09-15 11:50:44 +09:00
|
|
|
UserName string `binding:"Required;MaxSize(254)"`
|
|
|
|
Password string `binding:"Required;MaxSize(255)"`
|
|
|
|
Remember bool
|
2014-07-26 13:24:27 +09:00
|
|
|
}
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// Validate valideates the fields
|
2014-10-16 00:19:20 +09:00
|
|
|
func (f *SignInForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
2014-07-26 13:24:27 +09:00
|
|
|
}
|
|
|
|
|
2019-03-09 01:42:50 +09:00
|
|
|
// AuthorizationForm form for authorizing oauth2 clients
|
|
|
|
type AuthorizationForm struct {
|
|
|
|
ResponseType string `binding:"Required;In(code)"`
|
|
|
|
ClientID string `binding:"Required"`
|
|
|
|
RedirectURI string
|
|
|
|
State string
|
|
|
|
|
|
|
|
// PKCE support
|
|
|
|
CodeChallengeMethod string // S256, plain
|
|
|
|
CodeChallenge string
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate valideates the fields
|
|
|
|
func (f *AuthorizationForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
|
|
|
// GrantApplicationForm form for authorizing oauth2 clients
|
|
|
|
type GrantApplicationForm struct {
|
|
|
|
ClientID string `binding:"Required"`
|
|
|
|
RedirectURI string
|
|
|
|
State string
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate valideates the fields
|
|
|
|
func (f *GrantApplicationForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
|
|
|
// AccessTokenForm for issuing access tokens from authorization codes or refresh tokens
|
|
|
|
type AccessTokenForm struct {
|
|
|
|
GrantType string
|
|
|
|
ClientID string
|
|
|
|
ClientSecret string
|
|
|
|
RedirectURI string
|
|
|
|
// TODO Specify authentication code length to prevent against birthday attacks
|
|
|
|
Code string
|
|
|
|
RefreshToken string
|
|
|
|
|
|
|
|
// PKCE support
|
|
|
|
CodeVerifier string
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate valideates the fields
|
|
|
|
func (f *AccessTokenForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
2014-07-26 13:24:27 +09:00
|
|
|
// __________________________________________.___ _______ ________ _________
|
|
|
|
// / _____/\_ _____/\__ ___/\__ ___/| |\ \ / _____/ / _____/
|
|
|
|
// \_____ \ | __)_ | | | | | |/ | \/ \ ___ \_____ \
|
|
|
|
// / \ | \ | | | | | / | \ \_\ \/ \
|
|
|
|
// /_______ //_______ / |____| |____| |___\____|__ /\______ /_______ /
|
|
|
|
// \/ \/ \/ \/ \/
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// UpdateProfileForm form for updating profile
|
2014-07-26 13:24:27 +09:00
|
|
|
type UpdateProfileForm struct {
|
2019-02-26 03:56:47 +09:00
|
|
|
Name string `binding:"AlphaDashDot;MaxSize(40)"`
|
2017-01-08 12:12:03 +09:00
|
|
|
FullName string `binding:"MaxSize(100)"`
|
|
|
|
Email string `binding:"Required;Email;MaxSize(254)"`
|
|
|
|
KeepEmailPrivate bool
|
2017-04-19 12:02:20 +09:00
|
|
|
Website string `binding:"ValidUrl;MaxSize(255)"`
|
2017-01-08 12:12:03 +09:00
|
|
|
Location string `binding:"MaxSize(50)"`
|
2018-05-05 09:28:30 +09:00
|
|
|
Language string `binding:"Size(5)"`
|
2014-07-26 13:24:27 +09:00
|
|
|
}
|
|
|
|
|
2017-03-15 09:52:01 +09:00
|
|
|
// Validate validates the fields
|
2014-10-16 00:19:20 +09:00
|
|
|
func (f *UpdateProfileForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
2014-07-26 13:24:27 +09:00
|
|
|
}
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// Avatar types
|
2016-08-08 02:27:38 +09:00
|
|
|
const (
|
2016-11-08 01:55:31 +09:00
|
|
|
AvatarLocal string = "local"
|
|
|
|
AvatarByMail string = "bymail"
|
2016-08-08 02:27:38 +09:00
|
|
|
)
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// AvatarForm form for changing avatar
|
2016-08-08 02:27:38 +09:00
|
|
|
type AvatarForm struct {
|
|
|
|
Source string
|
|
|
|
Avatar *multipart.FileHeader
|
|
|
|
Gravatar string `binding:"OmitEmpty;Email;MaxSize(254)"`
|
|
|
|
Federavatar bool
|
2014-11-22 00:58:08 +09:00
|
|
|
}
|
|
|
|
|
2017-03-15 09:52:01 +09:00
|
|
|
// Validate validates the fields
|
2016-08-08 02:27:38 +09:00
|
|
|
func (f *AvatarForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
2014-11-22 00:58:08 +09:00
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// AddEmailForm form for adding new email
|
2014-12-18 00:42:54 +09:00
|
|
|
type AddEmailForm struct {
|
2015-09-11 00:40:34 +09:00
|
|
|
Email string `binding:"Required;Email;MaxSize(254)"`
|
2014-12-18 00:42:54 +09:00
|
|
|
}
|
|
|
|
|
2017-03-15 09:52:01 +09:00
|
|
|
// Validate validates the fields
|
2014-12-18 00:42:54 +09:00
|
|
|
func (f *AddEmailForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
2019-01-10 02:22:57 +09:00
|
|
|
// UpdateThemeForm form for updating a users' theme
|
|
|
|
type UpdateThemeForm struct {
|
|
|
|
Theme string `binding:"Required;MaxSize(30)"`
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate validates the field
|
|
|
|
func (f *UpdateThemeForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
|
|
|
// IsThemeExists checks if the theme is a theme available in the config.
|
|
|
|
func (f UpdateThemeForm) IsThemeExists() bool {
|
|
|
|
var exists bool
|
|
|
|
|
|
|
|
for _, v := range setting.UI.Themes {
|
|
|
|
if strings.ToLower(v) == strings.ToLower(f.Theme) {
|
|
|
|
exists = true
|
|
|
|
break
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return exists
|
|
|
|
}
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// ChangePasswordForm form for changing password
|
2014-07-26 13:24:27 +09:00
|
|
|
type ChangePasswordForm struct {
|
2017-02-22 16:14:37 +09:00
|
|
|
OldPassword string `form:"old_password" binding:"MaxSize(255)"`
|
2015-08-18 03:30:33 +09:00
|
|
|
Password string `form:"password" binding:"Required;MaxSize(255)"`
|
2014-07-26 13:24:27 +09:00
|
|
|
Retype string `form:"retype"`
|
|
|
|
}
|
|
|
|
|
2017-03-15 09:52:01 +09:00
|
|
|
// Validate validates the fields
|
2014-10-16 00:19:20 +09:00
|
|
|
func (f *ChangePasswordForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
2014-07-26 13:24:27 +09:00
|
|
|
}
|
2014-11-12 20:48:50 +09:00
|
|
|
|
2017-03-17 23:16:08 +09:00
|
|
|
// AddOpenIDForm is for changing openid uri
|
|
|
|
type AddOpenIDForm struct {
|
2017-03-21 09:55:00 +09:00
|
|
|
Openid string `binding:"Required;MaxSize(256)"`
|
2017-03-17 23:16:08 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
// Validate validates the fields
|
|
|
|
func (f *AddOpenIDForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
2017-04-26 22:10:43 +09:00
|
|
|
// AddKeyForm form for adding SSH/GPG key
|
|
|
|
type AddKeyForm struct {
|
2018-01-07 07:55:53 +09:00
|
|
|
Type string `binding:"OmitEmpty"`
|
|
|
|
Title string `binding:"Required;MaxSize(50)"`
|
|
|
|
Content string `binding:"Required"`
|
|
|
|
IsWritable bool
|
2014-11-12 20:48:50 +09:00
|
|
|
}
|
|
|
|
|
2017-03-15 09:52:01 +09:00
|
|
|
// Validate validates the fields
|
2017-04-26 22:10:43 +09:00
|
|
|
func (f *AddKeyForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
2014-11-12 20:48:50 +09:00
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// NewAccessTokenForm form for creating access token
|
2014-11-12 20:48:50 +09:00
|
|
|
type NewAccessTokenForm struct {
|
2018-05-16 23:18:13 +09:00
|
|
|
Name string `binding:"Required;MaxSize(255)"`
|
2014-11-12 20:48:50 +09:00
|
|
|
}
|
|
|
|
|
2016-11-27 15:03:59 +09:00
|
|
|
// Validate valideates the fields
|
2014-11-12 20:48:50 +09:00
|
|
|
func (f *NewAccessTokenForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
2017-01-16 11:14:29 +09:00
|
|
|
|
2019-03-09 01:42:50 +09:00
|
|
|
// EditOAuth2ApplicationForm form for editing oauth2 applications
|
|
|
|
type EditOAuth2ApplicationForm struct {
|
|
|
|
Name string `binding:"Required;MaxSize(255)" form:"application_name"`
|
|
|
|
RedirectURI string `binding:"Required" form:"redirect_uri"`
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate valideates the fields
|
|
|
|
func (f *EditOAuth2ApplicationForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
2017-01-16 11:14:29 +09:00
|
|
|
// TwoFactorAuthForm for logging in with 2FA token.
|
|
|
|
type TwoFactorAuthForm struct {
|
|
|
|
Passcode string `binding:"Required"`
|
|
|
|
}
|
|
|
|
|
2017-03-15 09:52:01 +09:00
|
|
|
// Validate validates the fields
|
2017-01-16 11:14:29 +09:00
|
|
|
func (f *TwoFactorAuthForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
|
|
|
// TwoFactorScratchAuthForm for logging in with 2FA scratch token.
|
|
|
|
type TwoFactorScratchAuthForm struct {
|
|
|
|
Token string `binding:"Required"`
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate valideates the fields
|
|
|
|
func (f *TwoFactorScratchAuthForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
2018-05-19 23:12:37 +09:00
|
|
|
|
|
|
|
// U2FRegistrationForm for reserving an U2F name
|
|
|
|
type U2FRegistrationForm struct {
|
|
|
|
Name string `binding:"Required"`
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate valideates the fields
|
|
|
|
func (f *U2FRegistrationForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|
|
|
|
|
|
|
|
// U2FDeleteForm for deleting U2F keys
|
|
|
|
type U2FDeleteForm struct {
|
|
|
|
ID int64 `binding:"Required"`
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate valideates the fields
|
|
|
|
func (f *U2FDeleteForm) Validate(ctx *macaron.Context, errs binding.Errors) binding.Errors {
|
|
|
|
return validate(errs, ctx.Data, f, ctx.Locale)
|
|
|
|
}
|