#1458: Authorities were messed up when using mysql database

2025-10-31 05:11:41 +01:00 · 2015-08-28 13:51:15 +08:00 · 2015-08-28 13:51:15 +08:00 · ff35a37769
commit ff35a37769
parent 70e0153b93
5 changed files with 30 additions and 45 deletions
--- a/gogs.go
+++ b/gogs.go
@ -17,7 +17,7 @@ import (
 	"github.com/gogits/gogs/modules/setting"
 )

-const APP_VER = "0.6.6.0827 Beta"
+const APP_VER = "0.6.6.0828 Beta"

 func init() {
 	runtime.GOMAXPROCS(runtime.NumCPU())
--- a/models/access.go
+++ b/models/access.go
@ -145,25 +145,6 @@ func (repo *Repository) refreshCollaboratorAccesses(e Engine, accessMap map[int6
 	for _, c := range collaborators {
 		accessMap[c.Id] = ACCESS_MODE_WRITE
 	}
-
-	// Adds team members access.
-	if repo.Owner.IsOrganization() {
-		if err = repo.Owner.GetTeams(); err != nil {
-			return fmt.Errorf("GetTeams: %v", err)
-		}
-		for _, t := range repo.Owner.Teams {
-			if err = t.GetMembers(); err != nil {
-				return fmt.Errorf("GetMembers: %v", err)
-			}
-			for _, m := range t.Members {
-				if t.IsOwnerTeam() {
-					accessMap[m.Id] = ACCESS_MODE_OWNER
-				} else {
-					accessMap[m.Id] = maxAccessMode(accessMap[m.Id], t.Authorize)
-				}
-			}
-		}
-	}
 	return nil
 }

@ -175,34 +156,36 @@ func (repo *Repository) recalculateTeamAccesses(e Engine, ignTeamID int64) (err

 	if err = repo.getOwner(e); err != nil {
 		return err
+	} else if !repo.Owner.IsOrganization() {
+		return fmt.Errorf("owner is not an organization: %d", repo.OwnerID)
 	}
+
 	if err = repo.refreshCollaboratorAccesses(e, accessMap); err != nil {
 		return fmt.Errorf("refreshCollaboratorAccesses: %v", err)
 	}
-	if repo.Owner.IsOrganization() {
-		if err = repo.Owner.getTeams(e); err != nil {
-			return err
+
+	if err = repo.Owner.getTeams(e); err != nil {
+		return err
+	}
+
+	for _, t := range repo.Owner.Teams {
+		if t.ID == ignTeamID {
+			continue
 		}

-		for _, t := range repo.Owner.Teams {
-			if t.ID == ignTeamID {
-				continue
-			}
+		// Owner team gets owner access, and skip for teams that do not
+		// have relations with repository.
+		if t.IsOwnerTeam() {
+			t.Authorize = ACCESS_MODE_OWNER
+		} else if !t.hasRepository(e, repo.ID) {
+			continue
+		}

-			// Owner team gets owner access, and skip for teams that do not
-			// have relations with repository.
-			if t.IsOwnerTeam() {
-				t.Authorize = ACCESS_MODE_OWNER
-			} else if !t.hasRepository(e, repo.ID) {
-				continue
-			}
-
-			if err = t.getMembers(e); err != nil {
-				return fmt.Errorf("getMembers '%d': %v", t.ID, err)
-			}
-			for _, m := range t.Members {
-				accessMap[m.Id] = maxAccessMode(accessMap[m.Id], t.Authorize)
-			}
+		if err = t.getMembers(e); err != nil {
+			return fmt.Errorf("getMembers '%d': %v", t.ID, err)
+		}
+		for _, m := range t.Members {
+			accessMap[m.Id] = maxAccessMode(accessMap[m.Id], t.Authorize)
 		}
 	}

@ -210,6 +193,10 @@ func (repo *Repository) recalculateTeamAccesses(e Engine, ignTeamID int64) (err
 }

 func (repo *Repository) recalculateAccesses(e Engine) error {
+	if repo.Owner.IsOrganization() {
+		return repo.recalculateTeamAccesses(e, 0)
+	}
+
 	accessMap := make(map[int64]AccessMode, 20)
 	if err := repo.refreshCollaboratorAccesses(e, accessMap); err != nil {
 		return fmt.Errorf("refreshCollaboratorAccesses: %v", err)
--- a/models/org.go
+++ b/models/org.go
@ -483,7 +483,7 @@ func (t *Team) hasRepository(e Engine, repoID int64) bool {

 // HasRepository returns true if given repository belong to team.
 func (t *Team) HasRepository(repoID int64) bool {
-	return HasTeamRepo(t.OrgID, t.ID, repoID)
+	return t.hasRepository(x, repoID)
 }

 func (t *Team) addRepository(e Engine, repo *Repository) (err error) {
--- a/routers/install.go
+++ b/routers/install.go
@ -39,8 +39,6 @@ func checkRunMode() {
 		macaron.Env = macaron.PROD
 		macaron.ColorLog = false
 		setting.ProdMode = true
-	case "test":
-		macaron.Env = macaron.TEST
 	}
 	log.Info("Run Mode: %s", strings.Title(macaron.Env))
 }
--- a/templates/.VERSION
+++ b/templates/.VERSION
@ -1 +1 @@
-0.6.6.0827 Beta
+0.6.6.0828 Beta