rhodecode-enterprise-ce Files · rhodecode/templates/admin/repos/repo_creating.mako

security: fixed issues with exposing repository names using global PR redirection link...

security: fixed issues with exposing repository names using global PR redirection link logic. - Since redirect was created to repository which linked to the PR, users who didn't have permissions to those repos could still see the name in the url generated.

marcink - - Load All Authors

File last commit:

r2414:e045e245 default


                r4044:573a1043

default

Download file

             repo_creating.mako
        
                    80 lines
            
             | 2.6 KiB
            
                | application/x-mako
            
             |
                MakoHtmlLexer
            
             / rhodecode / templates / admin / repos / repo_creating.mako
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      ## -*- coding: utf-8 -*-

      <%inherit file="/base/base.mako"/>

      <%def name="title()">

          ${_('{} Creating repository').format(c.repo_name)}

          %if c.rhodecode_name:

              &middot; ${h.branding(c.rhodecode_name)}

          %endif

      </%def>

      <%def name="breadcrumbs_links()">

          ${_('Creating repository')} ${c.repo_name}

      </%def>

      <%def name="menu_bar_nav()">

          ${self.menu_items(active='repositories')}

      </%def>

      <%def name="main()">

      <div class="box">

          <!-- box / title -->

          <div class="title">

              ${self.breadcrumbs()}

          </div>

          <div id="progress-message">

              ${_('Repository "%(repo_name)s" is being created, you will be redirected when this process is finished.' % {'repo_name':c.repo_name})}

          </div>

          <div id="progress">

              <div class="progress progress-striped active">

                <div class="progress-bar progress-bar" role="progressbar"

                     aria-valuenow="100" aria-valuemin="0" aria-valuemax="100">

                </div>

              </div>

          </div>

      </div>

      <script>

      (function worker() {

        var skipCheck = false;

        var url = "${h.route_path('repo_creating_check', repo_name=c.repo_name, _query=dict(task_id=c.task_id))}";

        $.ajax({

          url: url,

          timeout: 60*1000, // sets timeout to 60 seconds

          complete: function(resp) {

              if (resp.status === 200) {

                  var jsonResponse = resp.responseJSON;

                  if (jsonResponse === undefined) {

                      setTimeout(function () {

                          // we might have a backend problem, try dashboard again

                          window.location = "${h.route_path('repo_summary', repo_name = c.repo_name)}";

                      }, 3000);

                  } else {

                      if (skipCheck || jsonResponse.result === true) {

                          // success, means go to dashboard

                          window.location = "${h.route_path('repo_summary', repo_name = c.repo_name)}";

                      } else {

                          // Schedule the next request when the current one's complete

                          setTimeout(worker, 1000);

                      }

                  }

              }

              else {

                  var currentUrl = "${h.current_route_path(request)}";

                  var message = _gettext('Fetching repository state failed. Error code: {0} {1}. Try <a href="{2}">refreshing</a> this page.').format(resp.status, resp.statusText, currentUrl);

                  var payload = {

                      message: {

                          message: message,

                          level: 'error',

                          force: true

                      }

                  };

                  $.Topic('/notifications').publish(payload);

              }

          }

        });

      })();

      </script>

      </%def>

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				## -- coding: utf-8 --
				<%inherit file="/base/base.mako"/>

				<%def name="title()">
				${_('{} Creating repository').format(c.repo_name)}
				%if c.rhodecode_name:
				· ${h.branding(c.rhodecode_name)}
				%endif
				</%def>

				<%def name="breadcrumbs_links()">
				${_('Creating repository')} ${c.repo_name}
				</%def>

				<%def name="menu_bar_nav()">
				${self.menu_items(active='repositories')}
				</%def>
				<%def name="main()">
				<div class="box">
				<!-- box / title -->
				<div class="title">
				${self.breadcrumbs()}
				</div>

				<div id="progress-message">
				${_('Repository "%(repo_name)s" is being created, you will be redirected when this process is finished.' % {'repo_name':c.repo_name})}
				</div>

				<div id="progress">
				<div class="progress progress-striped active">
				<div class="progress-bar progress-bar" role="progressbar"
				aria-valuenow="100" aria-valuemin="0" aria-valuemax="100">
				</div>
				</div>
				</div>
				</div>

				<script>
				(function worker() {
				var skipCheck = false;
				var url = "${h.route_path('repo_creating_check', repo_name=c.repo_name, _query=dict(task_id=c.task_id))}";
				$.ajax({
				url: url,
				timeout: 60*1000, // sets timeout to 60 seconds
				complete: function(resp) {
				if (resp.status === 200) {
				var jsonResponse = resp.responseJSON;

				if (jsonResponse === undefined) {
				setTimeout(function () {
				// we might have a backend problem, try dashboard again
				window.location = "${h.route_path('repo_summary', repo_name = c.repo_name)}";
				}, 3000);
				} else {
				if (skipCheck \|\| jsonResponse.result === true) {
				// success, means go to dashboard
				window.location = "${h.route_path('repo_summary', repo_name = c.repo_name)}";
				} else {
				// Schedule the next request when the current one's complete
				setTimeout(worker, 1000);
				}
				}
				}
				else {
				var currentUrl = "${h.current_route_path(request)}";
				var message = _gettext('Fetching repository state failed. Error code: {0} {1}. Try <a href="{2}">refreshing</a> this page.').format(resp.status, resp.statusText, currentUrl);
				var payload = {
				message: {
				message: message,
				level: 'error',
				force: true
				}
				};
				$.Topic('/notifications').publish(payload);
				}
				}
				});
				})();
				</script>
				</%def>