githubFork/gitblit.git - Solinfo Gitblit

githubFork / gitblit

Gitblit devel

parent: 30dc4e42 | patch | commit | ignore whitespace

Merged #167 "Do not let new forks inadvertently disclose repository contents"

James Moger

2014-09-05 90eb5a08ddd6a3a246e8b73da9524c304838928a

Merged #167 "Do not let new forks inadvertently disclose repository contents"

1 files modified

src/main/java/com/gitblit/manager/GitblitManager.java

7 ●●●●● patch | view | raw | blame | history

 src/main/java/com/gitblit/manager/GitblitManager.java

@@ -216,6 +216,13 @@
        RepositoryModel cloneModel = repository.cloneAs(cloneName);
        // owner has REWIND/RW+ permissions
        cloneModel.addOwner(user.username);

        // ensure initial access restriction of the fork
        // is not lower than the source repository  (issue-495/ticket-167)
        if (repository.accessRestriction.exceeds(cloneModel.accessRestriction)) {
            cloneModel.accessRestriction = repository.accessRestriction;
        }

        repositoryManager.updateRepositoryModel(cloneName, cloneModel, false);

        // add the owner of the source repository to the clone's access list