mirror of
https://github.com/go-gitea/gitea.git
synced 2025-06-28 20:19:55 +00:00
c9505a26b9
* Signed SSH commits can look in the UI like on GitHub, just like gpg keys today in Gitea * SSH format can be added in gitea config * SSH Signing worked before with DEFAULT_TRUST_MODEL=committer `TRUSTED_SSH_KEYS` can be a list of additional ssh public key contents to trust for every user of this instance Closes #34329 Related #31392 --------- Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Co-authored-by: techknowlogick <techknowlogick@gitea.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
106 lines
2.8 KiB
Go
106 lines
2.8 KiB
Go
// Copyright 2020 The Gitea Authors. All rights reserved.
|
|
// SPDX-License-Identifier: MIT
|
|
|
|
package misc
|
|
|
|
import (
|
|
"code.gitea.io/gitea/modules/git"
|
|
asymkey_service "code.gitea.io/gitea/services/asymkey"
|
|
"code.gitea.io/gitea/services/context"
|
|
)
|
|
|
|
func getSigningKey(ctx *context.APIContext, expectedFormat string) {
|
|
// if the handler is in the repo's route group, get the repo's signing key
|
|
// otherwise, get the global signing key
|
|
path := ""
|
|
if ctx.Repo != nil && ctx.Repo.Repository != nil {
|
|
path = ctx.Repo.Repository.RepoPath()
|
|
}
|
|
content, format, err := asymkey_service.PublicSigningKey(ctx, path)
|
|
if err != nil {
|
|
ctx.APIErrorInternal(err)
|
|
return
|
|
}
|
|
if format == "" {
|
|
ctx.APIErrorNotFound("no signing key")
|
|
return
|
|
} else if format != expectedFormat {
|
|
ctx.APIErrorNotFound("signing key format is " + format)
|
|
return
|
|
}
|
|
_, _ = ctx.Write([]byte(content))
|
|
}
|
|
|
|
// SigningKeyGPG returns the public key of the default signing key if it exists
|
|
func SigningKeyGPG(ctx *context.APIContext) {
|
|
// swagger:operation GET /signing-key.gpg miscellaneous getSigningKey
|
|
// ---
|
|
// summary: Get default signing-key.gpg
|
|
// produces:
|
|
// - text/plain
|
|
// responses:
|
|
// "200":
|
|
// description: "GPG armored public key"
|
|
// schema:
|
|
// type: string
|
|
|
|
// swagger:operation GET /repos/{owner}/{repo}/signing-key.gpg repository repoSigningKey
|
|
// ---
|
|
// summary: Get signing-key.gpg for given repository
|
|
// produces:
|
|
// - text/plain
|
|
// parameters:
|
|
// - name: owner
|
|
// in: path
|
|
// description: owner of the repo
|
|
// type: string
|
|
// required: true
|
|
// - name: repo
|
|
// in: path
|
|
// description: name of the repo
|
|
// type: string
|
|
// required: true
|
|
// responses:
|
|
// "200":
|
|
// description: "GPG armored public key"
|
|
// schema:
|
|
// type: string
|
|
getSigningKey(ctx, git.SigningKeyFormatOpenPGP)
|
|
}
|
|
|
|
// SigningKeySSH returns the public key of the default signing key if it exists
|
|
func SigningKeySSH(ctx *context.APIContext) {
|
|
// swagger:operation GET /signing-key.pub miscellaneous getSigningKeySSH
|
|
// ---
|
|
// summary: Get default signing-key.pub
|
|
// produces:
|
|
// - text/plain
|
|
// responses:
|
|
// "200":
|
|
// description: "ssh public key"
|
|
// schema:
|
|
// type: string
|
|
|
|
// swagger:operation GET /repos/{owner}/{repo}/signing-key.pub repository repoSigningKeySSH
|
|
// ---
|
|
// summary: Get signing-key.pub for given repository
|
|
// produces:
|
|
// - text/plain
|
|
// parameters:
|
|
// - name: owner
|
|
// in: path
|
|
// description: owner of the repo
|
|
// type: string
|
|
// required: true
|
|
// - name: repo
|
|
// in: path
|
|
// description: name of the repo
|
|
// type: string
|
|
// required: true
|
|
// responses:
|
|
// "200":
|
|
// description: "ssh public key"
|
|
// schema:
|
|
// type: string
|
|
getSigningKey(ctx, git.SigningKeyFormatSSH)
|
|
}
|