library-mirrors/lazuscripts-githook
1
0
Fork 0
mirror of https://github.com/lazuscripts/githook.git synced 2024-11-18 03:04:23 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

secret can be stored in utility.settings

Browse Source
This commit is contained in:
Paul Liverman III 2018-05-11 13:45:22 -07:00
parent 8ed4675c87
commit 8fae031e16
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
githook.moon
View File

@ -118,16 +118,17 @@ class extends lapis.Application
return render: locate "views.githook_get"
POST: json_params =>
if config.githook_secret
secret = config.githook_secret or settings["githook.secret"]
if secret
ngx.req.read_body!
if body = ngx.req.get_body_data!
local authorized
if github_hash = @req.headers["X-Hub-Signature"]
authorized = const_compare "sha1=#{hex_dump hmac_sha1 config.githook_secret, body}", github_hash
authorized = const_compare "sha1=#{hex_dump hmac_sha1 secret, body}", github_hash
elseif gogs_hash = @req.headers["X-Gogs-Signature"]
authorized = const_compare gogs_hash, hex_dump hmac_sha256 config.githook_secret, body
authorized = const_compare gogs_hash, hex_dump hmac_sha256 secret, body
elseif @params.secret
authorized = const_compare @params.secret, config.githook_secret
authorized = const_compare @params.secret, secret
unless authorized
return unauthorized!
if @params.ref == "refs/heads/#{@branch}"