mirror of
https://github.com/ansible-collections/community.general.git
synced 2024-09-14 20:13:21 +02:00
Check login_token for user before any operations (#23600)
Fix adds extra check if user is authorized or not while using login_token. Fixes https://github.com/ansible/ansible/issues/23033 Signed-off-by: Abhijeet Kasurde <akasurde@redhat.com>
This commit is contained in:
parent
e99815e9f5
commit
a255cfd22a
3 changed files with 26 additions and 1 deletions
|
@ -165,7 +165,8 @@ def main():
|
|||
)
|
||||
|
||||
if not HAS_GITLAB_PACKAGE:
|
||||
module.fail_json(msg="Missing requried gitlab module (check docs or install with: pip install pyapi-gitlab")
|
||||
module.fail_json(msg="Missing required gitlab module (check docs or "
|
||||
"install with: pip install pyapi-gitlab")
|
||||
|
||||
server_url = module.params['server_url']
|
||||
verify_ssl = module.params['validate_certs']
|
||||
|
@ -200,6 +201,14 @@ def main():
|
|||
e = get_exception()
|
||||
module.fail_json(msg="Failed to connect to Gitlab server: %s " % e)
|
||||
|
||||
# Check if user is authorized or not before proceeding to any operations
|
||||
# if not, exit from here
|
||||
auth_msg = git.currentuser().get('message', None)
|
||||
if auth_msg is not None and auth_msg == '401 Unauthorized':
|
||||
module.fail_json(msg='User unauthorized',
|
||||
details="User is not allowed to access Gitlab server "
|
||||
"using login_token. Please check login_token")
|
||||
|
||||
# Validate if group exists and take action based on "state"
|
||||
group = GitLabGroup(module, git)
|
||||
group_name = group_name.lower()
|
||||
|
|
|
@ -375,6 +375,14 @@ def main():
|
|||
e = get_exception()
|
||||
module.fail_json(msg="Failed to connect to Gitlab server: %s " % e)
|
||||
|
||||
# Check if user is authorized or not before proceeding to any operations
|
||||
# if not, exit from here
|
||||
auth_msg = git.currentuser().get('message', None)
|
||||
if auth_msg is not None and auth_msg == '401 Unauthorized':
|
||||
module.fail_json(msg='User unauthorized',
|
||||
details="User is not allowed to access Gitlab server "
|
||||
"using login_token. Please check login_token")
|
||||
|
||||
# Validate if project exists and take action based on "state"
|
||||
project = GitLabProject(module, git)
|
||||
project_exists = project.existsProject(group_name, project_name)
|
||||
|
|
|
@ -340,6 +340,14 @@ def main():
|
|||
e = get_exception()
|
||||
module.fail_json(msg="Failed to connect to Gitlab server: %s " % e)
|
||||
|
||||
# Check if user is authorized or not before proceeding to any operations
|
||||
# if not, exit from here
|
||||
auth_msg = git.currentuser().get('message', None)
|
||||
if auth_msg is not None and auth_msg == '401 Unauthorized':
|
||||
module.fail_json(msg='User unauthorized',
|
||||
details="User is not allowed to access Gitlab server "
|
||||
"using login_token. Please check login_token")
|
||||
|
||||
# Validate if group exists and take action based on "state"
|
||||
user = GitLabUser(module, git)
|
||||
|
||||
|
|
Loading…
Reference in a new issue