544ef7d394
Backport #15895 Storing these credentials is a liability. * Encrypt credentials with SECRET_KEY before persisting to task queue table (they need to be persisted due to the nature of the task queue) - security in depth: helps when attacker has access to DB only, but not app.ini * Delete all credentials (even encrypted) from the task table, once the migration is done, for safety - security in depth: minimizes leaked data if attacker gains access to snapshot of both DB and app.ini
40 lines
1.5 KiB
Go
40 lines
1.5 KiB
Go
// Copyright 2019 The Gitea Authors. All rights reserved.
|
|
// Copyright 2018 Jonas Franz. All rights reserved.
|
|
// Use of this source code is governed by a MIT-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package base
|
|
|
|
import "code.gitea.io/gitea/modules/structs"
|
|
|
|
// MigrateOptions defines the way a repository gets migrated
|
|
// this is for internal usage by migrations module and func who interact with it
|
|
type MigrateOptions struct {
|
|
// required: true
|
|
CloneAddr string `json:"clone_addr" binding:"Required"`
|
|
CloneAddrEncrypted string `json:"clone_addr_encrypted,omitempty"`
|
|
AuthUsername string `json:"auth_username"`
|
|
AuthPassword string `json:"auth_password,omitempty"`
|
|
AuthPasswordEncrypted string `json:"auth_password_encrypted,omitempty"`
|
|
AuthToken string `json:"auth_token,omitempty"`
|
|
AuthTokenEncrypted string `json:"auth_token_encrypted,omitempty"`
|
|
// required: true
|
|
UID int `json:"uid" binding:"Required"`
|
|
// required: true
|
|
RepoName string `json:"repo_name" binding:"Required"`
|
|
Mirror bool `json:"mirror"`
|
|
Private bool `json:"private"`
|
|
Description string `json:"description"`
|
|
OriginalURL string
|
|
GitServiceType structs.GitServiceType
|
|
Wiki bool
|
|
Issues bool
|
|
Milestones bool
|
|
Labels bool
|
|
Releases bool
|
|
Comments bool
|
|
PullRequests bool
|
|
ReleaseAssets bool
|
|
MigrateToRepoID int64
|
|
MirrorInterval string `json:"mirror_interval"`
|
|
}
|