Merge branch 'gitlab_importer' into 'master'

Ability to clone project using oauth2 token See merge request !1447

Merge branch 'gitlab_importer' into 'master'
Ability to clone project using oauth2 token See merge request !1447
6e1f9e74 · Dmitriy Zaporozhets · beb7a425 · d74e7322 · 6e1f9e74 · 6e1f9e74
Commit 6e1f9e74 authored Jan 29, 2015 by Dmitriy Zaporozhets
4 changed files
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -20,6 +20,8 @@ v 7.8.0
  - Increate font size when browse source files and diffs
  - Create new file in empty repository using GitLab UI
  - 
+  - Ability to clone project using oauth2 token
+  - 
  - Upgrade Sidekiq gem to version 3.3.0
  - Stop git zombie creation during force push check
  - Show success/error messages for test setting button in services

--- a/db/migrate/20150116234545_add_gitlab_access_token_to_user.rb
+++ b/db/migrate/20150116234545_add_gitlab_access_token_to_user.rb
+class AddGitlabAccessTokenToUser < ActiveRecord::Migration
+  def change
+    add_column :users, :gitlab_access_token, :string
+  end
+end
--- a/db/schema.rb
+++ b/db/schema.rb
@@ -11,7 +11,7 @@
 #
 # It's strongly recommended that you check this file into your version control system.

-ActiveRecord::Schema.define(version: 20150116234544) do
+ActiveRecord::Schema.define(version: 20150116234545) do

  # These are extensions that must be enabled in order to support this database
  enable_extension "plpgsql"
@@ -434,6 +434,7 @@ ActiveRecord::Schema.define(version: 20150116234544) do
    t.string   "website_url",              default: "",    null: false
    t.datetime "last_credential_check_at"
    t.string   "github_access_token"
+    t.string   "gitlab_access_token"
  end

  add_index "users", ["admin"], name: "index_users_on_admin", using: :btree

--- a/lib/gitlab/backend/grack_auth.rb
+++ b/lib/gitlab/backend/grack_auth.rb
@@ -34,7 +34,7 @@ module Grack
    def auth!
      if @auth.provided?
        return bad_request unless @auth.basic?
-
+        
        # Authentication with username and password
        login, password = @auth.credentials

@@ -71,8 +71,20 @@ module Grack
      false
    end

+    def oauth_access_token_check(login, password)
+      if login == "oauth2" && git_cmd == 'git-upload-pack' && password.present?
+        token = Doorkeeper::AccessToken.by_token(password)
+        token && token.accessible? && User.find_by(id: token.resource_owner_id)
+      end
+    end
+
    def authenticate_user(login, password)
      user = Gitlab::Auth.new.find(login, password)
+      
+      unless user
+        user = oauth_access_token_check(login, password)
+      end
+      
      return user if user.present?

      # At this point, we know the credentials were wrong. We let Rack::Attack