This statement cannot be reached, since s.repos.GetRepoVisibility never returns an os.IsNotExist error.

Similar to gin-auth Coveralls integration.

Currently the project uses golang library log, fmt.Fprint and a custom repod.Server method log throughout the project.

Currently collaborators are added with repository permission level can-push which cannot be changed.

• Add PUT route /users/{user}/repos/{repo}/collaborators/{username}/permission to update the repository permission level of a collaborator. The user facilitating this change has to at least have the is-admin repo access level for the repository in question. Only valid store.repo.AccessLevel are supported.
• Edit listRepoCollaborators to include the repository permission level of a collaborator to the response JSON.

Details TBD.

Repo "Visibility" shall be refactored to "Private".

• Change proto.wire.Repo.Visibility and all its usages to Private.
• Change usage in getRepoVisibility and setRepoVisibility from string to bool.

Because there is none.

Currently we try to lookup keys for all users that try to authenticate not only the git user. This will make login impossible for users that uploaded their keys. :(

Get the current uid (os. Getuid()) and pass %u to gin-shell. Compare the two and bail if they don't match.

Change repo.BranchExists here, to something like RefExists to make it reusable for e.g. tags.

Find the original comment here.

Depends on G-Node/gin-auth#103.

The model objects of the git objects in our git packages are not directly connected (they refer to each other via their ids (i.e. SHA1s). Also, opening the same object (i.e. the same id) twice will lead to two different instances.
For some operations it is better to represent the objects as a tree structure in memory. Initial support for this was done in git/graph.go (CommitGraph, CommitNode). Support for the rest of the git objects are missing:

• Tree
• Blob
• Tag
• Ref (maybe)

Alternatively we could refactor the existing base git objects to be the graph nodes (i.e. merge their functionality with *Node.

repod.getRepoVisibility requires a repository exists check.

Create collaborators REST endpoints:

• GET collaborators for a repository.
• PUT a new collaborator.
• DELETE an existing collaborator.

We should create a universal git hook command line tool to be put in place in the server git repositories that forwards all information passed to the hook (and its identity) to the gin-repod server so we can it can take appropriate action.

We could use commit object and tree structs for handling requests.
Currently, this info is built directly into a string (see

Should we have a couple of structs in proto (as with all other response structs) for this? Also, isn't it simpler to marshal the struct instead of constructing a string buffer?

Depends on gin-core G-Node/gin-core#1.

Refactor existing responses and implement responses where they are still missing.

Example:

tree bfd89dbc4b90e556713340092c20ff46d0b82368
parent 55cb2b438e594002e8465e1373acea081762d76e
author cgars <[email protected]> 1476889145 +0200
committer cgars <[email protected]> 1476890106 +0200
gpgsig -----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1

 iQIcBAABAgAGBQJYB437AAoJEHQliMt6qIEXdbUQAKccdTeQZBpqB0gSdiKedqbl
 D3k+6548IPgZsXKdM75M2jv9dnClHK1i/8BP0TfF5yILzvvv5ED/GwbGfLPSNuv6
 zBYqiAOFL3cCTZkaxyBtzbTQba0i8FaQaUPoybWTFtuDtqK2i5dK+BHEwwHzA5So
 g/JSJXf1jjZI/jBDnPASw+3rGRdaK31KacppB/e7mYppZHu8FxikdgEzINxTyRm1
 sKHE9euX/fs6T/Tfw7W4qMm9nJmIWOm5R8nsYwKeHACE+UwbZe8tKNjfAQAh89FW
 iTMMoA4A73Mdu0Sz6y8YLLhYiQxCF0wkyAid2poYj+bB2HAYnszptGD+Ny0vjXgl
 R+IjzOWDnNGDgemfAF0cZ3+jzkrwldlPySmIlXtR6BckzdZh+kKs1HoJKs9LsaDx
 k1T4159T7HjQBIOn/73UTXfGW4arW7qg4Jo1EGA6mV7B3msz4rOqkyJQT5WRCUpI
 3xspXTPd1S4Q3pphGkKMYskrPqRv9LM9CG7jM/YSG/6MwN+1VBOdkTvhFNJNsZLI
 20ZC8sJKtR2YdHeliby/K9LqdEBa655sUOoVvCsJk7vpWSfl43iIS+wlQTcUsi09
 k9LAGntpvqRgiqlN9fJiv10+97z751p9lBcF2NoFj7fS6YOuFmfem0ApASGBDw4m
 yy26RY9yRJsx7gaR7fHc
 =Iuow
 -----END PGP SIGNATURE-----

Imp: remove routes for individual hooks and add the fire route

Need to add a field to git.Commit, parse and write it properly.

Entry ID here is missing a comma:

out.WriteString(fmt.Sprintf("%q: %q\n", "id", entry.ID))

Mode here has a comma too many:

out.WriteString(fmt.Sprintf("%q: \"%08o\",\n", "mode", entry.Mode))

We don't want big files be directly checked in into git (this is what git annex is for, also it hurts git performance[1]). For this we need to:

• install an update hook
• in the update hook walk all commits, their trees and their blobs and check the blob's sizes
• reject if any blob's size > maxfilesize

The steps above depend on issue #19 and #20

[1] http://stackoverflow.com/questions/17888604/git-with-large-files/19494211#19494211

The idea is to be able to do (REST) call (GET) on /user/repo/this/is/the/branch/this/is/the/path and get a directory listening (or the object info, data). We need to do two things

1. Match the beginning of the path to a git reference or commit
2. resolve to path to the git object in question

Step 1. could possibly be made more easy by separating the tag from the path via a double slash (//).

• Enable PATCH CORS for repod.
• Add a new PATCH REST endpoint /users/{user}/repos/{repo}/settings and update any changed repository settings.

In some cases (see eg. here and when verified commits get packed the pack_test.go test, which tests against the repository it is in if i get it correctly, does fail.

Ill confess that Git and verified commits are a complex issue (see here and here and it might well be that I should not sign my commits whatsoever, at least not if not everybody does so, however, i guess signed commits and Pack files might become an issue again at some point in time.

As a quick "fix": Shall i remove (rewrite) the signed commits for the time being?
Ideas @gicmo @mpsonntag ?

go test -v -short ./... will fail due to the introduction of Test_RepoExists, which creates a local user store. That in turned expects the gin.secret file to be there but since the server won't have started, it actually won't be there. We need to call auth.CreateSharedSecret before.

Currently the address is hardcoded, we should have a command line parameter for that.

The current url schemes in use were done ad hoc, and we should verify that they are the way we want them to be and are consistent also with future needs.

As suggested in this comment replace the git log call here to reduce calls to git binaries.

Depends on #20.

We should make sure that we check the contents of user- and repo-names consistently and across services (i.e. gin-auth).

The places where we currently do checks are:

• store.RepoIdParse
• gin-repod.checkName
• gin-repod.varsToRepoID

Returns

{
"Name": "Repository name",
"Owner":"Repository owner",
"Description": "Repository description",
"Head": "[current head]",
"Public": boolean value
}

Currently the test repositories are set up only once when the very first test is run. This means tests changing repository settings are not independent, if repository settings are changed, repositories are created or deleted, currently theses changes all have to be reset at the end of test. This leads to an overhead when creating a test and potential cross reactions when a test is not properly reset.

• Figure out a more robust way of handling the test setup.
• Refactor the tests that already reset the test environment.