fix #627 issue, correct username to principal name

when registry repo name can customized, the username is same with repository name. so it can't query with email. fix it.
Dataman-Cloud · Jan 22, 2017 · 5e1c975 · 5e1c975
1 parent d927494
commit 5e1c975
Showing 1 changed file with 10 additions and 9 deletions.
diff --git a/src/plugins/registry/util.go b/src/plugins/registry/util.go
@@ -10,7 +10,7 @@ import (
 	"time"
 
 	"github.com/Dataman-Cloud/crane/src/plugins/auth"
-
+	log "github.com/Sirupsen/logrus"
 	"github.com/docker/distribution/registry/auth/token"
 	"github.com/docker/libtrust"
 )
@@ -52,6 +52,7 @@ func (registry *Registry) FilterAccess(username string, authenticated bool, a *t
 			namespace := strings.Split(a.Name, "/")[0]
 			image := strings.Split(a.Name, "/")[1]
 
+			log.Infof("username: %s, namespace: %s, image: %s", username, namespace, image)
 			permission := registry.GetPermission(username, namespace, image)
 			if strings.Contains(permission, "W") {
 				a.Actions = append(a.Actions, "push")
@@ -151,31 +152,31 @@ func base64UrlEncode(b []byte) string {
 	return strings.TrimRight(base64.URLEncoding.EncodeToString(b), "=")
 }
 
-func (registry *Registry) GetPermission(username, namespace, image string) string {
-	if namespace == "library" && len(registry.Authenticator.GetDefaultAccounts()) > 0 &&
-		registry.Authenticator.GetDefaultAccounts()[0].Email == username {
+func (registry *Registry) GetPermission(principal, namespace, image string) string {
+	if namespace == "library" && len(registry.Authenticator.GetDefaultAccounts()) > 0 {
 		return "RW"
 	}
 
 	if namespace == "library" {
 		return "R"
 	}
 
-	if registry.registryNamespaceForEmail(username) == namespace { // for user access himself's repository
-		return "RWM"
+	// for user access himself's repository
+	var namespaceEmail NamespaceEmail
+	if err := registry.DbClient.Where("namespace = ?", principal).Find(&namespaceEmail).Error; err != nil {
+		return ""
 	}
 
 	var modelImage Image
-	err := registry.DbClient.Where("namespace = ? AND image = ?", namespace, image).Find(&modelImage)
-	if err != nil {
+	if err := registry.DbClient.Where("namespace = ? AND image = ?", namespace, image).Find(&modelImage).Error; err != nil {
 		return ""
 	}
 
 	if modelImage.Publicity == 1 { // for public repository
 		return "R"
 	}
 
-	return ""
+	return "RWM"
 }
 
 func (registry *Registry) GenTokenForUI(username, service, scope string) (string, error) {