fix test

wxiaoguang · wxiaoguang · commit 46cd47dd8036 · 2025-10-18T15:09:54.000+08:00
diff --git a/models/organization/org.go b/models/organization/org.go
@@ -429,7 +429,7 @@ func HasOrgOrUserVisible(ctx context.Context, orgOrUser, user *user_model.User)
 		return true
 	}
 
-	if orgOrUser.Visibility == structs.VisibleTypePublic {
+	if !setting.Service.RequireSignInViewStrict && orgOrUser.Visibility == structs.VisibleTypePublic {
 		return true
 	}
 
diff --git a/models/perm/access/access.go b/models/perm/access/access.go
@@ -13,6 +13,7 @@ import (
 	"code.gitea.io/gitea/models/perm"
 	repo_model "code.gitea.io/gitea/models/repo"
 	user_model "code.gitea.io/gitea/models/user"
+	"code.gitea.io/gitea/modules/setting"
 	"code.gitea.io/gitea/modules/structs"
 
 	"xorm.io/builder"
@@ -46,7 +47,7 @@ func accessLevel(ctx context.Context, user *user_model.User, repo *repo_model.Re
 		return mode, err
 	}
 
-	repoIsFullyPublic := repo.Owner.Visibility == structs.VisibleTypePublic && !repo.IsPrivate
+	repoIsFullyPublic := !setting.Service.RequireSignInViewStrict && repo.Owner.Visibility == structs.VisibleTypePublic && !repo.IsPrivate
 	if (restricted && repoIsFullyPublic) || (!restricted && !repo.IsPrivate) {
 		mode = perm.AccessModeRead
 	}
diff --git a/models/perm/access/access_test.go b/models/perm/access/access_test.go
@@ -12,6 +12,7 @@ import (
 	repo_model "code.gitea.io/gitea/models/repo"
 	"code.gitea.io/gitea/models/unittest"
 	user_model "code.gitea.io/gitea/models/user"
+	"code.gitea.io/gitea/modules/setting"
 
 	"github.com/stretchr/testify/assert"
 )
@@ -51,7 +52,14 @@ func TestAccessLevel(t *testing.T) {
 	assert.NoError(t, err)
 	assert.Equal(t, perm_model.AccessModeNone, level)
 
-	// restricted user has no access to a public repo
+	// restricted user has no access to a public repo if no sign-in is required
+	setting.Service.RequireSignInViewStrict = false
+	level, err = access_model.AccessLevel(t.Context(), user29, repo1)
+	assert.NoError(t, err)
+	assert.Equal(t, perm_model.AccessModeRead, level)
+
+	// restricted user has no access to a public repo if sign-in is required
+	setting.Service.RequireSignInViewStrict = true
 	level, err = access_model.AccessLevel(t.Context(), user29, repo1)
 	assert.NoError(t, err)
 	assert.Equal(t, perm_model.AccessModeNone, level)
diff --git a/models/repo/repo_list.go b/models/repo/repo_list.go
@@ -687,7 +687,7 @@ func AccessibleRepositoryCondition(user *user_model.User, unitType unit.Type) bu
 		if !user.IsRestricted {
 			// 5. Be able to see all public repos in private organizations that we are an org_user of
 			cond = cond.Or(userOrgPublicRepoCond(user.ID))
-		} else {
+		} else if !setting.Service.RequireSignInViewStrict {
 			orgVisibilityLimit := []structs.VisibleType{structs.VisibleTypePrivate, structs.VisibleTypeLimited}
 			cond = userAllPublicRepoCond(cond, orgVisibilityLimit)
 		}

Original file line number	Diff line number	Diff line change
`@@ -429,7 +429,7 @@ func HasOrgOrUserVisible(ctx context.Context, orgOrUser, user *user_model.User)`
`429`	`429`	`return true`
`430`	`430`	`}`
`431`	`431`
`432`		`- if orgOrUser.Visibility == structs.VisibleTypePublic {`
	`432`	`+ if !setting.Service.RequireSignInViewStrict && orgOrUser.Visibility == structs.VisibleTypePublic {`
`433`	`433`	`return true`
`434`	`434`	`}`
`435`	`435`
Original file line number	Diff line number	Diff line change
`@@ -13,6 +13,7 @@ import (`
`13`	`13`	`"code.gitea.io/gitea/models/perm"`
`14`	`14`	`repo_model "code.gitea.io/gitea/models/repo"`
`15`	`15`	`user_model "code.gitea.io/gitea/models/user"`
	`16`	`+ "code.gitea.io/gitea/modules/setting"`
`16`	`17`	`"code.gitea.io/gitea/modules/structs"`
`17`	`18`
`18`	`19`	`"xorm.io/builder"`
`@@ -46,7 +47,7 @@ func accessLevel(ctx context.Context, user user_model.User, repo repo_model.Re`
`46`	`47`	`return mode, err`
`47`	`48`	`}`
`48`	`49`
`49`		`- repoIsFullyPublic := repo.Owner.Visibility == structs.VisibleTypePublic && !repo.IsPrivate`
	`50`	`+ repoIsFullyPublic := !setting.Service.RequireSignInViewStrict && repo.Owner.Visibility == structs.VisibleTypePublic && !repo.IsPrivate`
`50`	`51`	`if (restricted && repoIsFullyPublic) \|\| (!restricted && !repo.IsPrivate) {`
`51`	`52`	`mode = perm.AccessModeRead`
`52`	`53`	`}`
Original file line number	Diff line number	Diff line change
`@@ -687,7 +687,7 @@ func AccessibleRepositoryCondition(user *user_model.User, unitType unit.Type) bu`
`687`	`687`	`if !user.IsRestricted {`
`688`	`688`	`// 5. Be able to see all public repos in private organizations that we are an org_user of`
`689`	`689`	`cond = cond.Or(userOrgPublicRepoCond(user.ID))`
`690`		`- } else {`
	`690`	`+ } else if !setting.Service.RequireSignInViewStrict {`
`691`	`691`	`orgVisibilityLimit := []structs.VisibleType{structs.VisibleTypePrivate, structs.VisibleTypeLimited}`
`692`	`692`	`cond = userAllPublicRepoCond(cond, orgVisibilityLimit)`
`693`	`693`	`}`