summaryrefslogtreecommitdiffstats
path: root/java/com/google/gerrit/gpg/server/DeleteGpgKey.java
diff options
context:
space:
mode:
Diffstat (limited to 'java/com/google/gerrit/gpg/server/DeleteGpgKey.java')
-rw-r--r--java/com/google/gerrit/gpg/server/DeleteGpgKey.java111
1 files changed, 111 insertions, 0 deletions
diff --git a/java/com/google/gerrit/gpg/server/DeleteGpgKey.java b/java/com/google/gerrit/gpg/server/DeleteGpgKey.java
new file mode 100644
index 0000000000..a636a8b491
--- /dev/null
+++ b/java/com/google/gerrit/gpg/server/DeleteGpgKey.java
@@ -0,0 +1,111 @@
+// Copyright (C) 2015 The Android Open Source Project
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package com.google.gerrit.gpg.server;
+
+import static com.google.gerrit.gpg.PublicKeyStore.keyIdToString;
+import static com.google.gerrit.server.account.externalids.ExternalId.SCHEME_GPGKEY;
+
+import com.google.common.io.BaseEncoding;
+import com.google.gerrit.extensions.common.Input;
+import com.google.gerrit.extensions.restapi.ResourceConflictException;
+import com.google.gerrit.extensions.restapi.ResourceNotFoundException;
+import com.google.gerrit.extensions.restapi.Response;
+import com.google.gerrit.extensions.restapi.RestApiException;
+import com.google.gerrit.extensions.restapi.RestModifyView;
+import com.google.gerrit.gpg.PublicKeyStore;
+import com.google.gerrit.server.GerritPersonIdent;
+import com.google.gerrit.server.UserInitiated;
+import com.google.gerrit.server.account.AccountsUpdate;
+import com.google.gerrit.server.account.externalids.ExternalId;
+import com.google.gerrit.server.account.externalids.ExternalIds;
+import com.google.gwtorm.server.OrmException;
+import com.google.inject.Inject;
+import com.google.inject.Provider;
+import java.io.IOException;
+import java.util.Optional;
+import org.bouncycastle.openpgp.PGPException;
+import org.bouncycastle.openpgp.PGPPublicKey;
+import org.eclipse.jgit.errors.ConfigInvalidException;
+import org.eclipse.jgit.lib.CommitBuilder;
+import org.eclipse.jgit.lib.PersonIdent;
+import org.eclipse.jgit.lib.RefUpdate;
+
+public class DeleteGpgKey implements RestModifyView<GpgKey, Input> {
+
+ private final Provider<PersonIdent> serverIdent;
+ private final Provider<PublicKeyStore> storeProvider;
+ private final Provider<AccountsUpdate> accountsUpdateProvider;
+ private final ExternalIds externalIds;
+
+ @Inject
+ DeleteGpgKey(
+ @GerritPersonIdent Provider<PersonIdent> serverIdent,
+ Provider<PublicKeyStore> storeProvider,
+ @UserInitiated Provider<AccountsUpdate> accountsUpdateProvider,
+ ExternalIds externalIds) {
+ this.serverIdent = serverIdent;
+ this.storeProvider = storeProvider;
+ this.accountsUpdateProvider = accountsUpdateProvider;
+ this.externalIds = externalIds;
+ }
+
+ @Override
+ public Response<?> apply(GpgKey rsrc, Input input)
+ throws RestApiException, PGPException, OrmException, IOException, ConfigInvalidException {
+ PGPPublicKey key = rsrc.getKeyRing().getPublicKey();
+ String fingerprint = BaseEncoding.base16().encode(key.getFingerprint());
+ Optional<ExternalId> extId = externalIds.get(ExternalId.Key.create(SCHEME_GPGKEY, fingerprint));
+ if (!extId.isPresent()) {
+ throw new ResourceNotFoundException(fingerprint);
+ }
+
+ accountsUpdateProvider
+ .get()
+ .update(
+ "Delete GPG Key via API",
+ rsrc.getUser().getAccountId(),
+ u -> u.deleteExternalId(extId.get()));
+
+ try (PublicKeyStore store = storeProvider.get()) {
+ store.remove(rsrc.getKeyRing().getPublicKey().getFingerprint());
+
+ CommitBuilder cb = new CommitBuilder();
+ PersonIdent committer = serverIdent.get();
+ cb.setAuthor(rsrc.getUser().newCommitterIdent(committer.getWhen(), committer.getTimeZone()));
+ cb.setCommitter(committer);
+ cb.setMessage("Delete public key " + keyIdToString(key.getKeyID()));
+
+ RefUpdate.Result saveResult = store.save(cb);
+ switch (saveResult) {
+ case NO_CHANGE:
+ case FAST_FORWARD:
+ break;
+ case FORCED:
+ case IO_FAILURE:
+ case LOCK_FAILURE:
+ case NEW:
+ case NOT_ATTEMPTED:
+ case REJECTED:
+ case REJECTED_CURRENT_BRANCH:
+ case RENAMED:
+ case REJECTED_MISSING_OBJECT:
+ case REJECTED_OTHER_REASON:
+ default:
+ throw new ResourceConflictException("Failed to delete public key: " + saveResult);
+ }
+ }
+ return Response.none();
+ }
+}
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-13 23:43:44 +0000