aboutsummaryrefslogtreecommitdiff
path: root/internal/route/lfs
diff options
context:
space:
mode:
Diffstat (limited to 'internal/route/lfs')
-rw-r--r--internal/route/lfs/route.go7
-rw-r--r--internal/route/lfs/route_test.go4
2 files changed, 8 insertions, 3 deletions
diff --git a/internal/route/lfs/route.go b/internal/route/lfs/route.go
index 40cb95eb..ff1bd591 100644
--- a/internal/route/lfs/route.go
+++ b/internal/route/lfs/route.go
@@ -131,7 +131,12 @@ func authorize(mode db.AccessMode) macaron.Handler {
return
}
- if !db.Perms.Authorize(actor.ID, repo, mode) {
+ if !db.Perms.Authorize(actor.ID, repo.ID, mode,
+ db.AccessModeOptions{
+ OwnerID: repo.OwnerID,
+ Private: repo.IsPrivate,
+ },
+ ) {
c.Status(http.StatusNotFound)
return
}
diff --git a/internal/route/lfs/route_test.go b/internal/route/lfs/route_test.go
index b6ef1ebc..9571c89d 100644
--- a/internal/route/lfs/route_test.go
+++ b/internal/route/lfs/route_test.go
@@ -209,7 +209,7 @@ func Test_authorize(t *testing.T) {
},
},
mockPermsStore: &db.MockPermsStore{
- MockAuthorize: func(userID int64, repo *db.Repository, desired db.AccessMode) bool {
+ MockAuthorize: func(userID, repoID int64, desired db.AccessMode, opts db.AccessModeOptions) bool {
return desired <= db.AccessModeRead
},
},
@@ -230,7 +230,7 @@ func Test_authorize(t *testing.T) {
},
},
mockPermsStore: &db.MockPermsStore{
- MockAuthorize: func(userID int64, repo *db.Repository, desired db.AccessMode) bool {
+ MockAuthorize: func(userID, repoID int64, desired db.AccessMode, opts db.AccessModeOptions) bool {
return desired <= db.AccessModeRead
},
},
Powered by cgit, Themed by Ted Yin.