package bitbucketserver // Requires the following to be set // GIT_USERNAME -> a username on the stash server that has access to clone all repos // GIT_USERPASSWORD -> password to the user that has access to clone all repos // REMOTE_DRIVER=bitbucketserver // REMOTE_CONFIG=https://{servername}?consumer_key={key added on the stash server for oath1}&open={not used yet} // Configure application links in the bitbucket server -- // application url needs to be the base url to drone // incoming auth needs to have the consumer key (same as the key in REMOTE_CONFIG) // set the public key (public key from the private key added to /private_key.pem name matters) // consumer call back is the base url to drone plus /authorize/ // Needs a pem private key added to / something like "ADD private_key.pem /" (name matters, needs to be /private_key.pem) to the Dockerfile // After that you should be good to go import ( "github.com/drone/drone/shared/envconfig" "net/url" log "github.com/Sirupsen/logrus" "net/http" "github.com/drone/drone/model" "fmt" "io/ioutil" "strconv" "encoding/json" ) type BitbucketServer struct { URL string ConsumerKey string GitUserName string GitPassword string Open bool } func Load(env envconfig.Env) *BitbucketServer{ //Read config := env.String("REMOTE_CONFIG", "") gitUserName := env.String("GIT_USERNAME", "") gitUserPassword := env.String("GIT_USERPASSWORD","") url_, err := url.Parse(config) if err != nil { log.Fatalln("unable to parse remote dsn. %s", err) } params := url_.Query() url_.Path = "" url_.RawQuery = "" bitbucketserver := BitbucketServer{} bitbucketserver.URL = url_.String() bitbucketserver.GitUserName = gitUserName bitbucketserver.GitPassword = gitUserPassword bitbucketserver.ConsumerKey = params.Get("consumer_key") bitbucketserver.Open, _ = strconv.ParseBool(params.Get("open")) return &bitbucketserver } func (bs *BitbucketServer) Login(res http.ResponseWriter, req *http.Request) (*model.User, bool, error){ log.Info("Starting to login for bitbucketServer") c := NewClient(bs.ConsumerKey, bs.URL) log.Info("getting the requestToken") requestToken, url, err := c.GetRequestTokenAndUrl("oob") if err != nil { log.Fatal(err) } var code = req.FormValue("oauth_verifier") if len(code) == 0 { log.Info("redirecting to %s", url) http.Redirect(res, req, url, http.StatusSeeOther) return nil, false, nil } var request_oauth_token = req.FormValue("oauth_token") requestToken.Token = request_oauth_token accessToken, err := c.AuthorizeToken(requestToken, code) if err !=nil { log.Error(err) } client, err := c.MakeHttpClient(accessToken) if err != nil { log.Fatal(err) } response, err := client.Get(bs.URL + "/plugins/servlet/applinks/whoami") if err != nil { log.Fatal(err) } defer response.Body.Close() bits, err := ioutil.ReadAll(response.Body) userName := string(bits) response1, err := client.Get(bs.URL + "/rest/api/1.0/users/" +userName) contents, err := ioutil.ReadAll(response1.Body) defer response1.Body.Close() var mUser User json.Unmarshal(contents, &mUser) user := model.User{} user.Login = userName user.Email = mUser.EmailAddress user.Token = accessToken.Token user.Avatar = avatarLink(mUser.EmailAddress) return &user, bs.Open, nil } func (bs *BitbucketServer) Auth(token, secret string) (string, error) { log.Info("Staring to auth for bitbucketServer. %s", token) if len(token) == 0 { return "", fmt.Errorf("Hasn't logged in yet") } return token, nil; } func (bs *BitbucketServer) Repo(u *model.User, owner, name string) (*model.Repo, error){ log.Info("Staring repo for bitbucketServer with user " + u.Login + " " + owner + " " + name ) client := NewClientWithToken(bs.ConsumerKey, bs.URL, u.Token) url := bs.URL + "/rest/api/1.0/projects/" + owner + "/repos/" + name log.Info("Trying to get " + url) response, err := client.Get(url) if err != nil { log.Fatal(err) } defer response.Body.Close() contents, err := ioutil.ReadAll(response.Body) bsRepo := BSRepo{} json.Unmarshal(contents, &bsRepo) cloneLink := "" repoLink := "" for _, item := range bsRepo.Links.Clone { if item.Name == "http" { cloneLink = item.Href } } for _, item := range bsRepo.Links.Self { if item.Href != "" { repoLink = item.Href } } //TODO: get the real allow tag+ infomration repo := &model.Repo{} repo.Clone = cloneLink repo.Link = repoLink repo.Name=bsRepo.Slug repo.Owner=bsRepo.Project.Key repo.AllowTag=false repo.AllowDeploy=false repo.AllowPull=false repo.AllowPush=true repo.FullName = bsRepo.Project.Key +"/" +bsRepo.Slug repo.Branch = "master" repo.Kind = model.RepoGit return repo, nil; } func (bs *BitbucketServer) Repos(u *model.User) ([]*model.RepoLite, error){ log.Info("Staring repos for bitbucketServer " + u.Login) var repos = []*model.RepoLite{} client := NewClientWithToken(bs.ConsumerKey, bs.URL, u.Token) response, err := client.Get(bs.URL + "/rest/api/1.0/repos?limit=10000") if err != nil { log.Fatal(err) } defer response.Body.Close() contents, err := ioutil.ReadAll(response.Body) var repoResponse Repos json.Unmarshal(contents, &repoResponse) for _, repo := range repoResponse.Values { repos = append(repos, &model.RepoLite{ Name: repo.Slug, FullName: repo.Project.Key + "/" + repo.Slug, Owner: repo.Project.Key, }) } return repos, nil; } func (bs *BitbucketServer) Perm(u *model.User, owner, repo string) (*model.Perm, error){ //TODO: find the real permissions log.Info("Staring perm for bitbucketServer") perms := new(model.Perm) perms.Pull = true perms.Admin = true perms.Push = true return perms , nil } func (bs *BitbucketServer) File(u *model.User, r *model.Repo, b *model.Build, f string) ([]byte, error){ log.Info(fmt.Sprintf("Staring file for bitbucketServer login: %s repo: %s buildevent: %s string: %s",u.Login, r.Name, b.Event, f)) client := NewClientWithToken(bs.ConsumerKey, bs.URL, u.Token) fileURL := fmt.Sprintf("%s/projects/%s/repos/%s/browse/%s?raw", bs.URL,r.Owner,r.Name,f) log.Info(fileURL) response, err := client.Get(fileURL) if err != nil { log.Fatal(err) } if response.StatusCode == 404 { return nil,nil } defer response.Body.Close() responseBytes, err := ioutil.ReadAll(response.Body) if err != nil { log.Fatal(err) } return responseBytes, nil; } func (bs *BitbucketServer) Status(u *model.User, r *model.Repo, b *model.Build, link string) error{ log.Info("Staring status for bitbucketServer") return nil; } func (bs *BitbucketServer) Netrc(user *model.User, r *model.Repo) (*model.Netrc, error){ log.Info("Starting the Netrc lookup") u, err := url.Parse(bs.URL) if err != nil { panic(err) } return &model.Netrc{ Machine: u.Host, Login: bs.GitUserName, Password: bs.GitPassword, }, nil } func (bs *BitbucketServer) Activate(u *model.User, r *model.Repo, k *model.Key, link string) error{ log.Info(fmt.Sprintf("Staring activate for bitbucketServer user: %s repo: %s key: %s link: %s",u.Login,r.Name,k,link)) client := NewClientWithToken(bs.ConsumerKey, bs.URL, u.Token) hook, err := bs.CreateHook(client, r.Owner,r.Name, "com.atlassian.stash.plugin.stash-web-post-receive-hooks-plugin:postReceiveHook",link) if err !=nil { return err } log.Info(hook) return nil; } func (bs *BitbucketServer) Deactivate(u *model.User, r *model.Repo, link string) error{ log.Info(fmt.Sprintf("Staring deactivating for bitbucketServer user: %s repo: %s link: %s",u.Login,r.Name,link)) client := NewClientWithToken(bs.ConsumerKey, bs.URL, u.Token) err := bs.DeleteHook(client, r.Owner,r.Name, "com.atlassian.stash.plugin.stash-web-post-receive-hooks-plugin:postReceiveHook",link) if err !=nil { return err } return nil; } func (bs *BitbucketServer) Hook(r *http.Request) (*model.Repo, *model.Build, error){ log.Info("Staring hook for bitbucketServer") defer r.Body.Close() contents, err := ioutil.ReadAll(r.Body) if err != nil { log.Info(err) } var hookPost postHook json.Unmarshal(contents, &hookPost) buildModel := &model.Build{} buildModel.Event = model.EventPush buildModel.Ref = hookPost.RefChanges[0].RefID buildModel.Author = hookPost.Changesets.Values[0].ToCommit.Author.EmailAddress buildModel.Commit = hookPost.RefChanges[0].ToHash buildModel.Avatar = avatarLink(hookPost.Changesets.Values[0].ToCommit.Author.EmailAddress) //All you really need is the name and owner. That's what creates the lookup key, so it needs to match the repo info. Just an FYI repo := &model.Repo{} repo.Name=hookPost.Repository.Slug repo.Owner = hookPost.Repository.Project.Key repo.AllowTag=false repo.AllowDeploy=false repo.AllowPull=false repo.AllowPush=true repo.FullName = hookPost.Repository.Project.Key +"/" +hookPost.Repository.Slug repo.Branch = "master" repo.Kind = model.RepoGit return repo, buildModel, nil; } func (bs *BitbucketServer) String() string { return "bitbucketserver" } type HookDetail struct { Key string `"json:key"` Name string `"json:name"` Type string `"json:type"` Description string `"json:description"` Version string `"json:version"` ConfigFormKey string `"json:configFormKey"` } type Hook struct { Enabled bool `"json:enabled"` Details *HookDetail `"json:details"` } // Enable hook for named repository func (bs *BitbucketServer)CreateHook(client *http.Client, project, slug, hook_key, link string) (*Hook, error) { // Set hook hookBytes := []byte(fmt.Sprintf(`{"hook-url-0":"%s"}`,link)) // Enable hook enablePath := fmt.Sprintf("/rest/api/1.0/projects/%s/repos/%s/settings/hooks/%s/enabled", project, slug, hook_key) doPut(client, bs.URL + enablePath, hookBytes) return nil, nil } // Disable hook for named repository func (bs *BitbucketServer)DeleteHook(client *http.Client, project, slug, hook_key, link string) error { enablePath := fmt.Sprintf("/rest/api/1.0/projects/%s/repos/%s/settings/hooks/%s/enabled", project, slug, hook_key) doDelete(client, bs.URL + enablePath) return nil }