Merge pull request #6470 from cd1989/retag-problem

Give meaningful error messages when retag is forbidden
2024-11-27 04:35:16 +01:00 · 2018-12-06 18:47:58 +08:00 · 2018-12-06 18:47:58 +08:00 · bcd6947fcc
commit bcd6947fcc
parent 60d65a9d86 caf07a96fe
2 changed files with 5 additions and 5 deletions
--- a/src/common/api/base.go
+++ b/src/common/api/base.go
@ -61,9 +61,9 @@ func (b *BaseAPI) HandleUnauthorized() {
 }
 // HandleForbidden ...
-func (b *BaseAPI) HandleForbidden(username string) {
+func (b *BaseAPI) HandleForbidden(text string) {
-	log.Infof("forbidden: %s", username)
+	log.Infof("forbidden: %s", text)
-	b.RenderError(http.StatusForbidden, "")
+	b.RenderError(http.StatusForbidden, text)
 }
 // HandleBadRequest ...
--- a/src/core/api/repository.go
+++ b/src/core/api/repository.go
@ -480,14 +480,14 @@ func (ra *RepositoryAPI) Retag() {
 	// Check whether use has read permission to source project
 	if !ra.SecurityCtx.HasReadPerm(srcImage.Project) {
 		log.Errorf("user has no read permission to project '%s'", srcImage.Project)
-		ra.HandleForbidden(ra.SecurityCtx.GetUsername())
+		ra.HandleForbidden(fmt.Sprintf("%s has no read permission to project %s", ra.SecurityCtx.GetUsername(), srcImage.Project))
 		return
 	}
 	// Check whether user has write permission to target project
 	if !ra.SecurityCtx.HasWritePerm(project) {
 		log.Errorf("user has no write permission to project '%s'", project)
-		ra.HandleForbidden(ra.SecurityCtx.GetUsername())
+		ra.HandleForbidden(fmt.Sprintf("%s has no write permission to project %s", ra.SecurityCtx.GetUsername(), project))
 		return
 	}