fix(api): owner ID should be zero when created repo secret (#31715)

- Change condition to include `RepoID` equal to 0 for organization secrets --------- Signed-off-by: Bo-Yi Wu <appleboy.tw@gmail.com> Co-authored-by: Giteabot <teabot@gitea.io> (cherry picked from commit d39bce7f003cf2137a5a561ed488c7b638e52275) Conflicts: routers/api/v1/repo/action.go trivial context conflict (PathParams vs Params)
2024-11-11 04:11:18 +01:00 · 2024-07-30 01:15:02 +08:00 · 2024-07-30 01:15:02 +08:00 · 6a4d1dfab8
commit 6a4d1dfab8
parent 6e63afe31f
1 changed files with 2 additions and 4 deletions
--- a/routers/api/v1/repo/action.go
+++ b/routers/api/v1/repo/action.go
@ -117,12 +117,11 @@ func (Action) CreateOrUpdateSecret(ctx *context.APIContext) {
 	//   "404":
 	//     "$ref": "#/responses/notFound"

-	owner := ctx.Repo.Owner
 	repo := ctx.Repo.Repository

 	opt := web.GetForm(ctx).(*api.CreateOrUpdateSecretOption)

-	_, created, err := secret_service.CreateOrUpdateSecret(ctx, owner.ID, repo.ID, ctx.Params("secretname"), opt.Data)
+	_, created, err := secret_service.CreateOrUpdateSecret(ctx, 0, repo.ID, ctx.Params("secretname"), opt.Data)
 	if err != nil {
 		if errors.Is(err, util.ErrInvalidArgument) {
 			ctx.Error(http.StatusBadRequest, "CreateOrUpdateSecret", err)
@ -174,10 +173,9 @@ func (Action) DeleteSecret(ctx *context.APIContext) {
 	//   "404":
 	//     "$ref": "#/responses/notFound"

-	owner := ctx.Repo.Owner
 	repo := ctx.Repo.Repository

-	err := secret_service.DeleteSecretByName(ctx, owner.ID, repo.ID, ctx.Params("secretname"))
+	err := secret_service.DeleteSecretByName(ctx, 0, repo.ID, ctx.Params("secretname"))
 	if err != nil {
 		if errors.Is(err, util.ErrInvalidArgument) {
 			ctx.Error(http.StatusBadRequest, "DeleteSecret", err)