##// END OF EJS Templates
follow-up on texts missing from 'users groups'/'repositories group' cleanup
follow-up on texts missing from 'users groups'/'repositories group' cleanup

File last commit:

r3354:cf00e8d3 default
r3416:5706f6ab beta
Show More
simplehg.py
289 lines | 11.4 KiB | text/x-python | PythonLexer
code docs, updates
r903 # -*- coding: utf-8 -*-
"""
rhodecode.lib.middleware.simplehg
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
source code cleanup: remove trailing white space, normalize file endings
r1203 SimpleHG middleware for handling mercurial protocol request
code docs, updates
r903 (push/clone etc.). It's implemented with basic auth function
source code cleanup: remove trailing white space, normalize file endings
r1203
code docs, updates
r903 :created_on: Apr 28, 2010
:author: marcink
2012 copyrights
r1824 :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
code docs, updates
r903 :license: GPLv3, see COPYING for more details.
"""
fixed license issue #149
r1206 # This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
source code cleanup: remove trailing white space, normalize file endings
r1203 #
renamed project to rhodecode
r547 # This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
source code cleanup: remove trailing white space, normalize file endings
r1203 #
renamed project to rhodecode
r547 # You should have received a copy of the GNU General Public License
fixed license issue #149
r1206 # along with this program. If not, see <http://www.gnu.org/licenses/>.
renamed project to rhodecode
r547
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 import os
import logging
import traceback
renamed project to rhodecode
r547 from mercurial.error import RepoError
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 from mercurial.hgweb import hgweb_mod
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910
renamed project to rhodecode
r547 from paste.httpheaders import REMOTE_USER, AUTH_TYPE
Implementes #509 require SSL flag now works for both git and mercurial....
r2668 from webob.exc import HTTPNotFound, HTTPForbidden, HTTPInternalServerError, \
HTTPBadRequest, HTTPNotAcceptable
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910
Implemented #628: Pass server URL to rc-extensions hooks...
r2969 from rhodecode.lib.utils2 import safe_str, fix_PATH, get_server_url
Wrapped calls for git and hg middleware in extra block that clears db Session....
r1761 from rhodecode.lib.base import BaseVCSController
from rhodecode.lib.auth import get_container_username
from rhodecode.lib.utils import make_ui, is_valid_repo, ui_sections
use os.environ as a fallback for getting special info from hooks, this will allow...
r2716 from rhodecode.lib.compat import json
Removed deprecated usage of UserModel() in simplehg and simplegit
r1497 from rhodecode.model.db import User
Implemented basic locking functionality....
r2726 from rhodecode.lib.exceptions import HTTPLockedRC
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910
security bugfix simplehg wasn't checking for permissions on remote commands different than pull or push.
r605
renamed project to rhodecode
r547 log = logging.getLogger(__name__)
pep8ify middlewares
r1275
project refactoring, cleaned up lib.utils from rarly used functions, and place them...
r756 def is_mercurial(environ):
fixed some unicode problems with waitress...
r2100 """
Returns True if request's target is mercurial server - header
project refactoring, cleaned up lib.utils from rarly used functions, and place them...
r756 ``HTTP_ACCEPT`` of such request would start with ``application/mercurial``.
"""
http_accept = environ.get('HTTP_ACCEPT')
fixed some unicode problems with waitress...
r2100 path_info = environ['PATH_INFO']
project refactoring, cleaned up lib.utils from rarly used functions, and place them...
r756 if http_accept and http_accept.startswith('application/mercurial'):
fixed some unicode problems with waitress...
r2100 ishg_path = True
else:
ishg_path = False
log.debug('pathinfo: %s detected as HG %s' % (
path_info, ishg_path)
)
return ishg_path
project refactoring, cleaned up lib.utils from rarly used functions, and place them...
r756
pep8ify middlewares
r1275
Wrapped calls for git and hg middleware in extra block that clears db Session....
r1761 class SimpleHg(BaseVCSController):
renamed project to rhodecode
r547
Wrapped calls for git and hg middleware in extra block that clears db Session....
r1761 def _handle_request(self, environ, start_response):
renamed project to rhodecode
r547 if not is_mercurial(environ):
return self.application(environ, start_response)
Implementes #509 require SSL flag now works for both git and mercurial....
r2668 if not self._check_ssl(environ, start_response):
return HTTPNotAcceptable('SSL REQUIRED !')(environ, start_response)
Moved out reposcan into hg Model....
r665
Added UserIpMap interface for allowed IP addresses and IP restriction access...
r3125 ip_addr = self._get_ip_addr(environ)
white space cleanup
r2673 username = None
fixed error propagation when using git/mercurial requests
r898 # skip passing error to error controller
environ['pylons.status_code_redirect'] = True
Fixed test_hg_operations test and added concurency test
r1529
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 #======================================================================
# EXTRACT REPOSITORY NAME FROM ENV
#======================================================================
try:
repo_name = environ['REPO_NAME'] = self.__get_repository(environ)
log.debug('Extracted repo name is %s' % repo_name)
except:
return HTTPInternalServerError()(environ, start_response)
Moved out reposcan into hg Model....
r665
git+hg middleware do repo verification at earliest possible state, giving 404 as fast as possible. If repo is not found.
r2122 # quick check if that dir exists...
use os.environ as a fallback for getting special info from hooks, this will allow...
r2716 if is_valid_repo(repo_name, self.basepath, 'hg') is False:
git+hg middleware do repo verification at earliest possible state, giving 404 as fast as possible. If repo is not found.
r2122 return HTTPNotFound()(environ, start_response)
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 #======================================================================
# GET ACTION PULL or PUSH
#======================================================================
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 action = self.__get_action(environ)
fixed some unicode problems with waitress...
r2100
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 #======================================================================
# CHECK ANONYMOUS PERMISSION
#======================================================================
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 if action in ['pull', 'push']:
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 anonymous_user = self.__get_user('default')
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 username = anonymous_user.username
better logging
r2021 anonymous_perm = self._check_permission(action, anonymous_user,
Added UserIpMap interface for allowed IP addresses and IP restriction access...
r3125 repo_name, ip_addr)
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910
if anonymous_perm is not True or anonymous_user.active is False:
if anonymous_perm is not True:
pep8ify middlewares
r1275 log.debug('Not enough credentials to access this '
'repository as anonymous user')
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 if anonymous_user.active is False:
log.debug('Anonymous access is disabled, running '
'authentication')
fixes #97 in simplehg and simplegit, force casting to headers
r918 #==============================================================
source code cleanup: remove trailing white space, normalize file endings
r1203 # DEFAULT PERM FAILED OR ANONYMOUS ACCESS IS DISABLED SO WE
fixes #97 in simplehg and simplegit, force casting to headers
r918 # NEED TO AUTHENTICATE AND ASK FOR AUTH USER PERMISSIONS
#==============================================================
fixed chrome repo switcher issue
r607
Liad Shani
Improved container-based auth support for middleware
r1630 # Attempting to retrieve username from the container
username = get_container_username(environ, self.config)
# If not authenticated by the container, running basic auth
if not username:
Unicode fixes, added safe_str method for global str() operations +better test sandboxing
r1401 self.authenticate.realm = \
safe_str(self.config['rhodecode_realm'])
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 result = self.authenticate(environ)
if isinstance(result, str):
AUTH_TYPE.update(environ, 'basic')
REMOTE_USER.update(environ, result)
Liad Shani
Improved container-based auth support for middleware
r1630 username = result
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 else:
return result.wsgi_application(environ, start_response)
fixes #97 in simplehg and simplegit, force casting to headers
r918 #==============================================================
Liad Shani
Improved container-based auth support for middleware
r1630 # CHECK PERMISSIONS FOR THIS REQUEST USING GIVEN USERNAME
fixes #97 in simplehg and simplegit, force casting to headers
r918 #==============================================================
possible fix for #486 undefined variable username...
r2500 try:
user = self.__get_user(username)
if user is None or not user.active:
return HTTPForbidden()(environ, start_response)
username = user.username
except:
log.error(traceback.format_exc())
return HTTPInternalServerError()(environ, start_response)
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910
possible fix for #486 undefined variable username...
r2500 #check permissions for this repository
Added UserIpMap interface for allowed IP addresses and IP restriction access...
r3125 perm = self._check_permission(action, user, repo_name, ip_addr)
possible fix for #486 undefined variable username...
r2500 if perm is not True:
return HTTPForbidden()(environ, start_response)
Moved out reposcan into hg Model....
r665
fixed some unicode problems with waitress...
r2100 # extras are injected into mercurial UI object and later available
# in hg hooks executed by rhodecode
Vincent Caron
Pass on RhodeCode config file down to a python-based Hg hook via the extras pseudo-config key, see https://bitbucket.org/marcinkuzminski/rhodecode/issue/558/access-to-rhodecode-config-from-a-hg
r2857 from rhodecode import CONFIG
Implemented #628: Pass server URL to rc-extensions hooks...
r2969 server_url = get_server_url(environ)
fixed some unicode problems with waitress...
r2100 extras = {
Added UserIpMap interface for allowed IP addresses and IP restriction access...
r3125 'ip': ip_addr,
fixed some unicode problems with waitress...
r2100 'username': username,
'action': action,
added emulation of pull hook for git-backend, and dummy git-push hook
r2203 'repository': repo_name,
'scm': 'hg',
Vincent Caron
Pass on RhodeCode config file down to a python-based Hg hook via the extras pseudo-config key, see https://bitbucket.org/marcinkuzminski/rhodecode/issue/558/access-to-rhodecode-config-from-a-hg
r2857 'config': CONFIG['__file__'],
Implemented #628: Pass server URL to rc-extensions hooks...
r2969 'server_url': server_url,
Implemented basic locking functionality....
r2726 'make_lock': None,
'locked_by': [None, None]
fixed some unicode problems with waitress...
r2100 }
pep8ify middlewares
r1275 #======================================================================
renamed project to rhodecode
r547 # MERCURIAL REQUEST HANDLING
pep8ify middlewares
r1275 #======================================================================
fixed some unicode problems with waitress...
r2100 repo_path = os.path.join(safe_str(self.basepath), safe_str(repo_name))
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 log.debug('Repository path is %s' % repo_path)
Fixed test_hg_operations test and added concurency test
r1529
Implemented basic locking functionality....
r2726 # CHECK LOCKING only if it's not ANONYMOUS USER
if username != User.DEFAULT_USER:
log.debug('Checking locking on repository')
(make_lock,
locked,
locked_by) = self._check_locking_state(
environ=environ, action=action,
repo=repo_name, user_id=user.user_id
)
# store the make_lock for later evaluation in hooks
extras.update({'make_lock': make_lock,
'locked_by': locked_by})
# set the environ variables for this request
os.environ['RC_SCM_DATA'] = json.dumps(extras)
fix for issue #578 git hooks sometimes cannot be executed due to different python they runned under, this commit tries to fix that by altering the PATH env variable using current python that rhodecode is running
r2869 fix_PATH()
Implemented basic locking functionality....
r2726 log.debug('HOOKS extras is %s' % extras)
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 baseui = make_ui('db')
self.__inject_extras(repo_path, baseui, extras)
Fixed test_hg_operations test and added concurency test
r1529
renamed project to rhodecode
r547 try:
Mads Kiilerich
logging: include more info in action logging...
r3135 log.info('%s action on HG repo "%s" by "%s" from %s' %
(action, repo_name, username, ip_addr))
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 app = self.__make_app(repo_path, baseui, extras)
return app(environ, start_response)
renamed project to rhodecode
r547 except RepoError, e:
if str(e).find('not found') != -1:
return HTTPNotFound()(environ, start_response)
Implemented basic locking functionality....
r2726 except HTTPLockedRC, e:
Mads Kiilerich
logging: include more info in action logging...
r3135 log.debug('Repository LOCKED ret code 423!')
Implemented basic locking functionality....
r2726 return e(environ, start_response)
renamed project to rhodecode
r547 except Exception:
log.error(traceback.format_exc())
return HTTPInternalServerError()(environ, start_response)
git hook handler shouldn't ever use cache instances...
r3278 finally:
# invalidate cache on push
if action == 'push':
self._invalidate_cache(repo_name)
security bugfix simplehg wasn't checking for permissions on remote commands different than pull or push.
r605
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 def __make_app(self, repo_name, baseui, extras):
small rewrite for injecting rhodecode_extras into ui. instead of injecting to hgweb instance, inject to ui and pass to hgweb. It's simpler and more readable.
r1276 """
Make an wsgi application using hgweb, and inject generated baseui
instance, additionally inject some extras into ui object
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 """
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 return hgweb_mod.hgweb(repo_name, name=repo_name, baseui=baseui)
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910
def __get_repository(self, environ):
small rewrite for injecting rhodecode_extras into ui. instead of injecting to hgweb instance, inject to ui and pass to hgweb. It's simpler and more readable.
r1276 """
Get's repository name out of PATH_INFO header
source code cleanup: remove trailing white space, normalize file endings
r1203
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 :param environ: environ where PATH_INFO is stored
"""
try:
implements #285: Implemented non changeable urls for clone url, and web views
r1813 environ['PATH_INFO'] = self._get_by_id(environ['PATH_INFO'])
Rewrite simehg for enabling cloning with raw url for anonymous access + some optimizations for making less queries when authenticating users....
r910 repo_name = '/'.join(environ['PATH_INFO'].split('/')[1:])
if repo_name.endswith('/'):
repo_name = repo_name.rstrip('/')
except:
log.error(traceback.format_exc())
raise
return repo_name
renamed project to rhodecode
r547 def __get_user(self, username):
Refactoring of model get functions
r1530 return User.get_by_username(username)
security bugfix simplehg wasn't checking for permissions on remote commands different than pull or push.
r605
renamed project to rhodecode
r547 def __get_action(self, environ):
small rewrite for injecting rhodecode_extras into ui. instead of injecting to hgweb instance, inject to ui and pass to hgweb. It's simpler and more readable.
r1276 """
Maps mercurial request commands into a clone,pull or push command.
Fixed journal action loggin doubled messages.
r606 This should always return a valid command string
source code cleanup: remove trailing white space, normalize file endings
r1203
security bugfix simplehg wasn't checking for permissions on remote commands different than pull or push.
r605 :param environ:
renamed project to rhodecode
r547 """
mapping = {'changegroup': 'pull',
'changegroupsubset': 'pull',
'stream_out': 'pull',
#48 rewrite action loggers into hooks with all changesets that are inside a push
r654 'listkeys': 'pull',
renamed project to rhodecode
r547 'unbundle': 'push',
'pushkey': 'push', }
for qry in environ['QUERY_STRING'].split('&'):
if qry.startswith('cmd'):
cmd = qry.split('=')[-1]
pep8ify middlewares
r1275 if cmd in mapping:
renamed project to rhodecode
r547 return mapping[cmd]
make get_action always return action
r2501
Don't always return action, raise an Exception if we cannot check what the action is
r2525 return 'pull'
raise Exception('Unable to detect pull/push action !!'
'Are you using non standard command or client ?')
security bugfix simplehg wasn't checking for permissions on remote commands different than pull or push.
r605
Fixed test_hg_operations test and added concurency test
r1529 def __inject_extras(self, repo_path, baseui, extras={}):
fixed local hgrc settings, patch introduced by Marc Villetard
r1321 """
Injects some extra params into baseui instance
auto white-space removal
r1818
fixed local hgrc settings, patch introduced by Marc Villetard
r1321 also overwrites global settings with those takes from local hgrc file
auto white-space removal
r1818
fixed local hgrc settings, patch introduced by Marc Villetard
r1321 :param baseui: baseui instance
:param extras: dict with extra params to put into baseui
"""
security bugfix simplehg wasn't checking for permissions on remote commands different than pull or push.
r605
#176 LookupError: 00changelog.i@66f0739d7517: no node...
r1495 hgrc = os.path.join(repo_path, '.hg', 'hgrc')
# make our hgweb quiet so it doesn't print output
baseui.setconfig('ui', 'quiet', 'true')
Moved out reposcan into hg Model....
r665
#48 rewrite action loggers into hooks with all changesets that are inside a push
r654 #inject some additional parameters that will be available in ui
#for hooks
for k, v in extras.items():
small rewrite for injecting rhodecode_extras into ui. instead of injecting to hgweb instance, inject to ui and pass to hgweb. It's simpler and more readable.
r1276 baseui.setconfig('rhodecode_extras', k, v)
Moved out reposcan into hg Model....
r665
renamed project to rhodecode
r547 repoui = make_ui('file', hgrc, False)
security bugfix simplehg wasn't checking for permissions on remote commands different than pull or push.
r605
renamed project to rhodecode
r547 if repoui:
#overwrite our ui instance with the section from hgrc file
for section in ui_sections:
for k, v in repoui.configitems(section):
fixed local hgrc settings, patch introduced by Marc Villetard
r1321 baseui.setconfig(section, k, v)