VladPolskiy/gitlabhq
1
0
Fork 0
mirror of https://github.com/gitlabhq/gitlabhq.git synced 2025-08-03 16:37:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
0a0fc6fa1a821062d5feaa94cb14d23a65e75073
gitlabhq/lib/gitlab/git/hook_env.rb
GitLab Bot 1f5a6f7200 Add latest changes from gitlab-org/gitlab@master
2024-04-22 18:11:44 +00:00

70 lines
2.4 KiB
Ruby
Raw Blame History

# frozen_string_literal: true
# Gitaly note: JV: no RPC's here.
module Gitlab
module Git
# Ephemeral (per request) storage for environment variables that some
# Git commands need during internal API calls made from the Git
# pre-receive push hook.
#
# See
# https://gitlab.com/gitlab-org/gitaly/-/blob/master/doc/object_quarantine.md#gitlab-and-git-object-quarantine
# for more information.
#
# This class is thread-safe via RequestStore.
class HookEnv
ALLOWLISTED_VARIABLES = %w[
GIT_OBJECT_DIRECTORY_RELATIVE
GIT_ALTERNATE_OBJECT_DIRECTORIES_RELATIVE
].freeze
# set stores the quarantining variables into request store.
#
# relative_path is sent from Gitaly to Rails when invoking internal API. In production it points to the
# transaction's snapshot repository. Tests should pass the original relative path of the repository as
# Gitaly is stubbed out from the invokation loop and doesn't create a transaction snapshot.
def self.set(gl_repository, relative_path, env)
return unless Gitlab::SafeRequestStore.active?
raise "missing gl_repository" if gl_repository.blank?
Gitlab::SafeRequestStore[:gitlab_git_env] ||= {}
Gitlab::SafeRequestStore[:gitlab_git_env][gl_repository] = allowlist_git_env(env)
Gitlab::SafeRequestStore[:gitlab_git_relative_path] = relative_path
end
# get_relative_path returns the relative path of the repository this hook call is triggered for.
# This is the repository's relative path in the transaction's snapshot and is passed back to Gitaly
# in quarantined calls.
def self.get_relative_path
return unless Gitlab::SafeRequestStore.active?
Gitlab::SafeRequestStore.fetch(:gitlab_git_relative_path)
end
def self.all(gl_repository)
return {} unless Gitlab::SafeRequestStore.active?
h = Gitlab::SafeRequestStore.fetch(:gitlab_git_env) { {} }
h.fetch(gl_repository, {})
end
def self.to_env_hash(gl_repository)
env = {}
all(gl_repository).compact.each do |key, value|
value = value.join(File::PATH_SEPARATOR) if value.is_a?(Array)
env[key.to_s] = value
end
env
end
def self.allowlist_git_env(env)
env.select { |key, _| ALLOWLISTED_VARIABLES.include?(key.to_s) }.with_indifferent_access
end
end
end
end
Reference in New Issue View Git Blame Copy Permalink