Admin : Retrieve the metastore without the authentication test

Yopai · Yopai · commit 3a9de0825ffc · 2015-08-19T23:51:14.000+02:00
Alow retrieval of a raw content from admin, even when the repository is not public.
diff --git a/meta_store.go b/meta_store.go
@@ -55,7 +55,14 @@ func (s *MetaStore) Get(v *RequestVars) (*MetaObject, error) {
 	if !s.authenticate(v.Authorization) {
 		return nil, newAuthError()
 	}
+	meta, error := s.UnsafeGet(v)
+	return meta, error;
+}
 
+// Get retrieves the Meta information for an object given information in
+// RequestVars
+// DO NOT CHECK authentication, as it is supposed to have been done before
+func (s *MetaStore) UnsafeGet(v *RequestVars) (*MetaObject, error) {
 	var meta MetaObject
 
 	err := s.db.View(func(tx *bolt.Tx) error {
diff --git a/mgmt.go b/mgmt.go
@@ -101,7 +101,7 @@ func (a *App) objectsRawHandler(w http.ResponseWriter, r *http.Request) {
 		Authorization: r.Header.Get("Authorization"),
 	}
 
-	meta, err := a.metaStore.Get(rv)
+	meta, err := a.metaStore.UnsafeGet(rv)
 	if err != nil {
 		if isAuthError(err) {
 			requireAuth(w, r)

Original file line number	Diff line number	Diff line change
`@@ -101,7 +101,7 @@ func (a App) objectsRawHandler(w http.ResponseWriter, r http.Request) {`
`101`	`101`	`Authorization: r.Header.Get("Authorization"),`
`102`	`102`	`}`
`103`	`103`
`104`		`- meta, err := a.metaStore.Get(rv)`
	`104`	`+ meta, err := a.metaStore.UnsafeGet(rv)`
`105`	`105`	`if err != nil {`
`106`	`106`	`if isAuthError(err) {`
`107`	`107`	`requireAuth(w, r)`