| @@ -208,7 +208,7 sub access_handler { | |||||
| 208 | my $project_id = get_project_identifier($r); |
|
208 | my $project_id = get_project_identifier($r); | |
| 209 |
|
209 | |||
| 210 | $r->set_handlers(PerlAuthenHandler => [\&OK]) |
|
210 | $r->set_handlers(PerlAuthenHandler => [\&OK]) | |
| 211 | if is_public_project($project_id, $r); |
|
211 | if is_public_project($project_id, $r) && anonymous_role_allows_browse_repository($r); | |
| 212 |
|
212 | |||
| 213 | return OK |
|
213 | return OK | |
| 214 | } |
|
214 | } | |
| @@ -280,6 +280,29 sub is_public_project { | |||||
| 280 | $ret; |
|
280 | $ret; | |
| 281 | } |
|
281 | } | |
| 282 |
|
282 | |||
|
|
283 | sub anonymous_role_allows_browse_repository { | |||
|
|
284 | my $r = shift; | |||
|
|
285 | ||||
|
|
286 | my $dbh = connect_database($r); | |||
|
|
287 | my $sth = $dbh->prepare( | |||
|
|
288 | "SELECT permissions FROM roles WHERE builtin = 2;" | |||
|
|
289 | ); | |||
|
|
290 | ||||
|
|
291 | $sth->execute(); | |||
|
|
292 | my $ret = 0; | |||
|
|
293 | if (my @row = $sth->fetchrow_array) { | |||
|
|
294 | if ($row[0] =~ /:browse_repository/) { | |||
|
|
295 | $ret = 1; | |||
|
|
296 | } | |||
|
|
297 | } | |||
|
|
298 | $sth->finish(); | |||
|
|
299 | undef $sth; | |||
|
|
300 | $dbh->disconnect(); | |||
|
|
301 | undef $dbh; | |||
|
|
302 | ||||
|
|
303 | $ret; | |||
|
|
304 | } | |||
|
|
305 | ||||
| 283 | # perhaps we should use repository right (other read right) to check public access. |
|
306 | # perhaps we should use repository right (other read right) to check public access. | |
| 284 | # it could be faster BUT it doesn't work for the moment. |
|
307 | # it could be faster BUT it doesn't work for the moment. | |
| 285 | # sub is_public_project_by_file { |
|
308 | # sub is_public_project_by_file { | |
General Comments 0
You need to be logged in to leave comments.
Login now