hgweb_mod.py
527 lines
| 18.4 KiB
| text/x-python
|
PythonLexer
Eric Hopper
|
r2391 | # hgweb/hgweb_mod.py - Web interface for a repository. | ||
Eric Hopper
|
r2356 | # | ||
# Copyright 21 May 2005 - (c) 2005 Jake Edge <jake@edge2.net> | ||||
Thomas Arendsen Hein
|
r4635 | # Copyright 2005-2007 Matt Mackall <mpm@selenic.com> | ||
Eric Hopper
|
r2356 | # | ||
Martin Geisler
|
r8225 | # This software may be used and distributed according to the terms of the | ||
Matt Mackall
|
r10263 | # GNU General Public License version 2 or any later version. | ||
Eric Hopper
|
r2356 | |||
Yuya Nishihara
|
r27046 | from __future__ import absolute_import | ||
Gregory Szorc
|
r26220 | import contextlib | ||
Gregory Szorc
|
r26162 | import os | ||
Yuya Nishihara
|
r27046 | |||
from .common import ( | ||||
ErrorResponse, | ||||
HTTP_BAD_REQUEST, | ||||
Gregory Szorc
|
r30766 | cspvalues, | ||
Yuya Nishihara
|
r27046 | permhooks, | ||
Gregory Szorc
|
r36895 | statusmessage, | ||
Yuya Nishihara
|
r27046 | ) | ||
Gregory Szorc
|
r43359 | from ..pycompat import getattr | ||
Yuya Nishihara
|
r27046 | |||
from .. import ( | ||||
encoding, | ||||
error, | ||||
Yuya Nishihara
|
r40759 | extensions, | ||
Yuya Nishihara
|
r36535 | formatter, | ||
Yuya Nishihara
|
r27046 | hg, | ||
hook, | ||||
Gregory Szorc
|
r29787 | profiling, | ||
Augie Fackler
|
r34516 | pycompat, | ||
Yuya Nishihara
|
r37238 | registrar, | ||
Yuya Nishihara
|
r27046 | repoview, | ||
templatefilters, | ||||
templater, | ||||
Yuya Nishihara
|
r37527 | templateutil, | ||
Yuya Nishihara
|
r27046 | ui as uimod, | ||
util, | ||||
Gregory Szorc
|
r35874 | wireprotoserver, | ||
Yuya Nishihara
|
r27046 | ) | ||
from . import ( | ||||
Gregory Szorc
|
r36822 | request as requestmod, | ||
Yuya Nishihara
|
r27046 | webcommands, | ||
webutil, | ||||
wsgicgi, | ||||
) | ||||
Eric Hopper
|
r2356 | |||
Augie Fackler
|
r43346 | |||
Augie Fackler
|
r34516 | def getstyle(req, configfn, templatepath): | ||
styles = ( | ||||
Augie Fackler
|
r43347 | req.qsparams.get(b'style', None), | ||
configfn(b'web', b'style'), | ||||
b'paper', | ||||
Augie Fackler
|
r34516 | ) | ||
Martin von Zweigbergk
|
r45867 | return styles, _stylemap(styles, templatepath) | ||
def _stylemap(styles, path=None): | ||||
"""Return path to mapfile for a given style. | ||||
Searches mapfile in the following locations: | ||||
1. templatepath/style/map | ||||
2. templatepath/map-style | ||||
3. templatepath/map | ||||
""" | ||||
Martin von Zweigbergk
|
r45877 | for style in styles: | ||
# only plain name is allowed to honor template paths | ||||
if ( | ||||
not style | ||||
or style in (pycompat.oscurdir, pycompat.ospardir) | ||||
or pycompat.ossep in style | ||||
or pycompat.osaltsep | ||||
and pycompat.osaltsep in style | ||||
): | ||||
continue | ||||
locations = (os.path.join(style, b'map'), b'map-' + style, b'map') | ||||
Martin von Zweigbergk
|
r45867 | |||
Martin von Zweigbergk
|
r45877 | for location in locations: | ||
Martin von Zweigbergk
|
r45880 | mapfile, fp = templater.try_open_template(location, path) | ||
Martin von Zweigbergk
|
r45877 | if mapfile: | ||
Martin von Zweigbergk
|
r45878 | return style, mapfile, fp | ||
Martin von Zweigbergk
|
r45867 | |||
raise RuntimeError(b"No hgweb templates found in %r" % path) | ||||
Augie Fackler
|
r34516 | |||
Augie Fackler
|
r43346 | |||
Augie Fackler
|
r43347 | def makebreadcrumb(url, prefix=b''): | ||
Angel Ezquerra <angel.ezquerra at gmail.com>
|
r18258 | '''Return a 'URL breadcrumb' list | ||
A 'URL breadcrumb' is a list of URL-name pairs, | ||||
corresponding to each of the path items on a URL. | ||||
This can be used to create path navigation entries. | ||||
''' | ||||
Augie Fackler
|
r43347 | if url.endswith(b'/'): | ||
Angel Ezquerra <angel.ezquerra at gmail.com>
|
r18258 | url = url[:-1] | ||
Angel Ezquerra
|
r18515 | if prefix: | ||
Augie Fackler
|
r43347 | url = b'/' + prefix + url | ||
Angel Ezquerra <angel.ezquerra at gmail.com>
|
r18258 | relpath = url | ||
Augie Fackler
|
r43347 | if relpath.startswith(b'/'): | ||
Angel Ezquerra <angel.ezquerra at gmail.com>
|
r18258 | relpath = relpath[1:] | ||
breadcrumb = [] | ||||
urlel = url | ||||
Augie Fackler
|
r43347 | pathitems = [b''] + relpath.split(b'/') | ||
Angel Ezquerra <angel.ezquerra at gmail.com>
|
r18258 | for pathel in reversed(pathitems): | ||
if not pathel or not urlel: | ||||
break | ||||
Augie Fackler
|
r43347 | breadcrumb.append({b'url': urlel, b'name': pathel}) | ||
Angel Ezquerra <angel.ezquerra at gmail.com>
|
r18258 | urlel = os.path.dirname(urlel) | ||
Yuya Nishihara
|
r37527 | return templateutil.mappinglist(reversed(breadcrumb)) | ||
Angel Ezquerra <angel.ezquerra at gmail.com>
|
r18258 | |||
Augie Fackler
|
r43346 | |||
Gregory Szorc
|
r26134 | class requestcontext(object): | ||
"""Holds state/context for an individual request. | ||||
Servers can be multi-threaded. Holding state on the WSGI application | ||||
is prone to race conditions. Instances of this class exist to hold | ||||
mutable and race-free state for requests. | ||||
""" | ||||
Augie Fackler
|
r43346 | |||
Gregory Szorc
|
r36886 | def __init__(self, app, repo, req, res): | ||
Gregory Szorc
|
r26219 | self.repo = repo | ||
Gregory Szorc
|
r26217 | self.reponame = app.reponame | ||
Gregory Szorc
|
r36886 | self.req = req | ||
self.res = res | ||||
Gregory Szorc
|
r26134 | |||
Augie Fackler
|
r43347 | self.maxchanges = self.configint(b'web', b'maxchanges') | ||
self.stripecount = self.configint(b'web', b'stripes') | ||||
self.maxshortchanges = self.configint(b'web', b'maxshortchanges') | ||||
self.maxfiles = self.configint(b'web', b'maxfiles') | ||||
self.allowpull = self.configbool(b'web', b'allow-pull') | ||||
Gregory Szorc
|
r26135 | |||
Gregory Szorc
|
r26163 | # we use untrusted=False to prevent a repo owner from using | ||
# web.templates in .hg/hgrc to get access to any file readable | ||||
# by the user running the CGI script | ||||
Augie Fackler
|
r43347 | self.templatepath = self.config(b'web', b'templates', untrusted=False) | ||
Gregory Szorc
|
r26163 | |||
Gregory Szorc
|
r26164 | # This object is more expensive to build than simple config values. | ||
# It is shared across requests. The app will replace the object | ||||
# if it is updated. Since this is a reference and nothing should | ||||
# modify the underlying object, it should be constant for the lifetime | ||||
# of the request. | ||||
Gregory Szorc
|
r26217 | self.websubtable = app.websubtable | ||
Gregory Szorc
|
r26164 | |||
Gregory Szorc
|
r30766 | self.csp, self.nonce = cspvalues(self.repo.ui) | ||
Gregory Szorc
|
r26135 | # Trust the settings from the .hg/hgrc files by default. | ||
Martin von Zweigbergk
|
r45874 | def config(self, *args, **kwargs): | ||
kwargs.setdefault('untrusted', True) | ||||
return self.repo.ui.config(*args, **kwargs) | ||||
Gregory Szorc
|
r26135 | |||
Martin von Zweigbergk
|
r45874 | def configbool(self, *args, **kwargs): | ||
kwargs.setdefault('untrusted', True) | ||||
return self.repo.ui.configbool(*args, **kwargs) | ||||
Gregory Szorc
|
r26135 | |||
Martin von Zweigbergk
|
r45874 | def configint(self, *args, **kwargs): | ||
kwargs.setdefault('untrusted', True) | ||||
return self.repo.ui.configint(*args, **kwargs) | ||||
Gregory Szorc
|
r26135 | |||
Martin von Zweigbergk
|
r45874 | def configlist(self, *args, **kwargs): | ||
kwargs.setdefault('untrusted', True) | ||||
return self.repo.ui.configlist(*args, **kwargs) | ||||
Gregory Szorc
|
r26135 | |||
Gregory Szorc
|
r26136 | def archivelist(self, nodeid): | ||
Yuya Nishihara
|
r37532 | return webutil.archivelist(self.repo.ui, nodeid) | ||
Angel Ezquerra <angel.ezquerra at gmail.com>
|
r18258 | |||
Gregory Szorc
|
r36884 | def templater(self, req): | ||
Gregory Szorc
|
r26183 | # determine scheme, port and server name | ||
# this is needed to create absolute urls | ||||
Augie Fackler
|
r43347 | logourl = self.config(b'web', b'logourl') | ||
logoimg = self.config(b'web', b'logoimg') | ||||
Augie Fackler
|
r43346 | staticurl = ( | ||
Augie Fackler
|
r43347 | self.config(b'web', b'staticurl') | ||
or req.apppath.rstrip(b'/') + b'/static/' | ||||
Augie Fackler
|
r43346 | ) | ||
Augie Fackler
|
r43347 | if not staticurl.endswith(b'/'): | ||
staticurl += b'/' | ||||
Gregory Szorc
|
r26183 | |||
# figure out which style to use | ||||
vars = {} | ||||
Martin von Zweigbergk
|
r45878 | styles, (style, mapfile, fp) = getstyle( | ||
req, self.config, self.templatepath | ||||
) | ||||
Gregory Szorc
|
r26183 | if style == styles[0]: | ||
Augie Fackler
|
r43347 | vars[b'style'] = style | ||
Gregory Szorc
|
r26183 | |||
Augie Fackler
|
r43347 | sessionvars = webutil.sessionvars(vars, b'?') | ||
Gregory Szorc
|
r26183 | |||
if not self.reponame: | ||||
Augie Fackler
|
r43346 | self.reponame = ( | ||
Augie Fackler
|
r43347 | self.config(b'web', b'name', b'') | ||
Augie Fackler
|
r43346 | or req.reponame | ||
or req.apppath | ||||
or self.repo.root | ||||
) | ||||
Gregory Szorc
|
r26183 | |||
Yuya Nishihara
|
r37238 | filters = {} | ||
templatefilter = registrar.templatefilter(filters) | ||||
Augie Fackler
|
r43346 | |||
Augie Fackler
|
r43347 | @templatefilter(b'websub', intype=bytes) | ||
Gregory Szorc
|
r26183 | def websubfilter(text): | ||
Yuya Nishihara
|
r27008 | return templatefilters.websub(text, self.websubtable) | ||
Gregory Szorc
|
r26183 | |||
# create the templater | ||||
Yuya Nishihara
|
r36535 | # TODO: export all keywords: defaults = templatekw.keywords.copy() | ||
Yuya Nishihara
|
r28954 | defaults = { | ||
Augie Fackler
|
r43347 | b'url': req.apppath + b'/', | ||
b'logourl': logourl, | ||||
b'logoimg': logoimg, | ||||
b'staticurl': staticurl, | ||||
b'urlbase': req.advertisedbaseurl, | ||||
b'repo': self.reponame, | ||||
b'encoding': encoding.encoding, | ||||
b'sessionvars': sessionvars, | ||||
b'pathdef': makebreadcrumb(req.apppath), | ||||
b'style': style, | ||||
b'nonce': self.nonce, | ||||
Yuya Nishihara
|
r28954 | } | ||
Yuya Nishihara
|
r38964 | templatekeyword = registrar.templatekeyword(defaults) | ||
Augie Fackler
|
r43346 | |||
Augie Fackler
|
r43347 | @templatekeyword(b'motd', requires=()) | ||
Yuya Nishihara
|
r38964 | def motd(context, mapping): | ||
Augie Fackler
|
r43347 | yield self.config(b'web', b'motd') | ||
Yuya Nishihara
|
r38964 | |||
Yuya Nishihara
|
r36535 | tres = formatter.templateresources(self.repo.ui, self.repo) | ||
Martin von Zweigbergk
|
r45878 | return templater.templater.frommapfile( | ||
mapfile, fp=fp, filters=filters, defaults=defaults, resources=tres | ||||
Augie Fackler
|
r43346 | ) | ||
Gregory Szorc
|
r26183 | |||
Gregory Szorc
|
r36899 | def sendtemplate(self, name, **kwargs): | ||
"""Helper function to send a response generated from a template.""" | ||||
Yuya Nishihara
|
r37037 | kwargs = pycompat.byteskwargs(kwargs) | ||
self.res.setbodygen(self.tmpl.generate(name, kwargs)) | ||||
Gregory Szorc
|
r36899 | return self.res.sendresponse() | ||
Gregory Szorc
|
r26183 | |||
Augie Fackler
|
r43346 | |||
Eric Hopper
|
r2356 | class hgweb(object): | ||
Gregory Szorc
|
r26132 | """HTTP server for individual repositories. | ||
Instances of this class serve HTTP responses for a particular | ||||
repository. | ||||
Instances are typically used as WSGI applications. | ||||
Some servers are multi-threaded. On these servers, there may | ||||
be multiple active threads inside __call__. | ||||
""" | ||||
Augie Fackler
|
r43346 | |||
Matt Mackall
|
r10994 | def __init__(self, repo, name=None, baseui=None): | ||
Augie Fackler
|
r37764 | if isinstance(repo, bytes): | ||
Matt Mackall
|
r10994 | if baseui: | ||
u = baseui.copy() | ||||
else: | ||||
Yuya Nishihara
|
r30559 | u = uimod.ui.load() | ||
Yuya Nishihara
|
r40759 | extensions.loadall(u) | ||
Yuya Nishihara
|
r40760 | extensions.populateui(u) | ||
Matt Mackall
|
r20168 | r = hg.repository(u, repo) | ||
Eric Hopper
|
r2356 | else: | ||
Matt Mackall
|
r22087 | # we trust caller to give us a private copy | ||
Matt Mackall
|
r20168 | r = repo | ||
Eric Hopper
|
r2356 | |||
Augie Fackler
|
r43347 | r.ui.setconfig(b'ui', b'report_untrusted', b'off', b'hgweb') | ||
r.baseui.setconfig(b'ui', b'report_untrusted', b'off', b'hgweb') | ||||
r.ui.setconfig(b'ui', b'nontty', b'true', b'hgweb') | ||||
r.baseui.setconfig(b'ui', b'nontty', b'true', b'hgweb') | ||||
Yuya Nishihara
|
r26294 | # resolve file patterns relative to repo root | ||
Augie Fackler
|
r43347 | r.ui.setconfig(b'ui', b'forcecwd', r.root, b'hgweb') | ||
r.baseui.setconfig(b'ui', b'forcecwd', r.root, b'hgweb') | ||||
Yuya Nishihara
|
r38158 | # it's unlikely that we can replace signal handlers in WSGI server, | ||
# and mod_wsgi issues a big warning. a plain hgweb process (with no | ||||
# threading) could replace signal handlers, but we don't bother | ||||
# conditionally enabling it. | ||||
Augie Fackler
|
r43347 | r.ui.setconfig(b'ui', b'signal-safe-lock', b'false', b'hgweb') | ||
r.baseui.setconfig(b'ui', b'signal-safe-lock', b'false', b'hgweb') | ||||
Pierre-Yves David
|
r25488 | # displaying bundling progress bar while serving feel wrong and may | ||
# break some wsgi implementation. | ||||
Augie Fackler
|
r43347 | r.ui.setconfig(b'progress', b'disable', b'true', b'hgweb') | ||
r.baseui.setconfig(b'progress', b'disable', b'true', b'hgweb') | ||||
Gregory Szorc
|
r26220 | self._repos = [hg.cachedlocalrepo(self._webifyrepo(r))] | ||
self._lastrepo = self._repos[0] | ||||
Matt Mackall
|
r5833 | hook.redirect(True) | ||
Eric Hopper
|
r2356 | self.reponame = name | ||
Alexis S. L. Carvalho
|
r3555 | |||
Gregory Szorc
|
r26218 | def _webifyrepo(self, repo): | ||
repo = getwebview(repo) | ||||
self.websubtable = webutil.getwebsubs(repo) | ||||
return repo | ||||
Gregory Szorc
|
r26220 | @contextlib.contextmanager | ||
def _obtainrepo(self): | ||||
"""Obtain a repo unique to the caller. | ||||
Internally we maintain a stack of cachedlocalrepo instances | ||||
to be handed out. If one is available, we pop it and return it, | ||||
ensuring it is up to date in the process. If one is not available, | ||||
we clone the most recently used repo instance and return it. | ||||
Gregory Szorc
|
r26219 | |||
Gregory Szorc
|
r26220 | It is currently possible for the stack to grow without bounds | ||
if the server allows infinite threads. However, servers should | ||||
have a thread limit, thus establishing our limit. | ||||
""" | ||||
if self._repos: | ||||
cached = self._repos.pop() | ||||
r, created = cached.fetch() | ||||
else: | ||||
cached = self._lastrepo.copy() | ||||
r, created = cached.fetch() | ||||
Gregory Szorc
|
r26240 | if created: | ||
r = self._webifyrepo(r) | ||||
Gregory Szorc
|
r26220 | |||
self._lastrepo = cached | ||||
self.mtime = cached.mtime | ||||
try: | ||||
yield r | ||||
finally: | ||||
self._repos.append(cached) | ||||
Eric Hopper
|
r2356 | |||
Dirkjan Ochtman
|
r5591 | def run(self): | ||
Gregory Szorc
|
r26132 | """Start a server from CGI environment. | ||
Modern servers should be using WSGI and should avoid this | ||||
method, if possible. | ||||
""" | ||||
Augie Fackler
|
r43347 | if not encoding.environ.get(b'GATEWAY_INTERFACE', b'').startswith( | ||
b"CGI/1." | ||||
Augie Fackler
|
r43346 | ): | ||
raise RuntimeError( | ||||
Augie Fackler
|
r43347 | b"This function is only intended to be " | ||
b"called while running as a CGI script." | ||||
Augie Fackler
|
r43346 | ) | ||
Dirkjan Ochtman
|
r5591 | wsgicgi.launch(self) | ||
def __call__(self, env, respond): | ||||
Gregory Szorc
|
r26132 | """Run the WSGI application. | ||
This may be called by multiple threads. | ||||
""" | ||||
Gregory Szorc
|
r36928 | req = requestmod.parserequestfromenv(env) | ||
res = requestmod.wsgiresponse(req, respond) | ||||
Dirkjan Ochtman
|
r5591 | |||
Gregory Szorc
|
r36928 | return self.run_wsgi(req, res) | ||
def run_wsgi(self, req, res): | ||||
Gregory Szorc
|
r26132 | """Internal method to run the WSGI application. | ||
Dirkjan Ochtman
|
r5591 | |||
Gregory Szorc
|
r26132 | This is typically only called by Mercurial. External consumers | ||
should be using instances of this class as the WSGI application. | ||||
""" | ||||
Gregory Szorc
|
r26220 | with self._obtainrepo() as repo: | ||
Augie Fackler
|
r43347 | profile = repo.ui.configbool(b'profiling', b'enabled') | ||
r32788 | with profiling.profile(repo.ui, enabled=profile): | |||
Gregory Szorc
|
r36928 | for r in self._runwsgi(req, res, repo): | ||
Gregory Szorc
|
r29787 | yield r | ||
Gregory Szorc
|
r26220 | |||
Gregory Szorc
|
r36928 | def _runwsgi(self, req, res, repo): | ||
Gregory Szorc
|
r36886 | rctx = requestcontext(self, repo, req, res) | ||
Dirkjan Ochtman
|
r5591 | |||
Gregory Szorc
|
r26160 | # This state is global across all threads. | ||
Augie Fackler
|
r43347 | encoding.encoding = rctx.config(b'web', b'encoding') | ||
Gregory Szorc
|
r36925 | rctx.repo.ui.environ = req.rawenv | ||
Dirkjan Ochtman
|
r5591 | |||
Gregory Szorc
|
r30766 | if rctx.csp: | ||
# hgwebdir may have added CSP header. Since we generate our own, | ||||
# replace it. | ||||
Augie Fackler
|
r43347 | res.headers[b'Content-Security-Policy'] = rctx.csp | ||
Gregory Szorc
|
r30766 | |||
Gregory Szorc
|
r37064 | # /api/* is reserved for various API implementations. Dispatch | ||
Gregory Szorc
|
r37111 | # accordingly. But URL paths can conflict with subrepos and virtual | ||
# repos in hgwebdir. So until we have a workaround for this, only | ||||
# expose the URLs if the feature is enabled. | ||||
Augie Fackler
|
r43347 | apienabled = rctx.repo.ui.configbool(b'experimental', b'web.apiserver') | ||
Gregory Szorc
|
r37111 | if apienabled and req.dispatchparts and req.dispatchparts[0] == b'api': | ||
Augie Fackler
|
r43346 | wireprotoserver.handlewsgiapirequest( | ||
rctx, req, res, self.check_perm | ||||
) | ||||
Gregory Szorc
|
r37064 | return res.sendresponse() | ||
Gregory Szorc
|
r36877 | handled = wireprotoserver.handlewsgirequest( | ||
Augie Fackler
|
r43346 | rctx, req, res, self.check_perm | ||
) | ||||
Gregory Szorc
|
r36830 | if handled: | ||
Gregory Szorc
|
r36877 | return res.sendresponse() | ||
Gregory Szorc
|
r36830 | |||
Gregory Szorc
|
r36914 | # Old implementations of hgweb supported dispatching the request via | ||
# the initial query string parameter instead of using PATH_INFO. | ||||
# If PATH_INFO is present (signaled by ``req.dispatchpath`` having | ||||
# a value), we use it. Otherwise fall back to the query string. | ||||
if req.dispatchpath is not None: | ||||
Gregory Szorc
|
r36829 | query = req.dispatchpath | ||
Dirkjan Ochtman
|
r5596 | else: | ||
Augie Fackler
|
r43347 | query = req.querystring.partition(b'&')[0].partition(b';')[0] | ||
Dirkjan Ochtman
|
r5591 | |||
Dirkjan Ochtman
|
r5596 | # translate user-visible url structure to internal structure | ||
Augie Fackler
|
r43347 | args = query.split(b'/', 2) | ||
if b'cmd' not in req.qsparams and args and args[0]: | ||||
Dirkjan Ochtman
|
r5591 | cmd = args.pop(0) | ||
Augie Fackler
|
r43347 | style = cmd.rfind(b'-') | ||
Dirkjan Ochtman
|
r5591 | if style != -1: | ||
Augie Fackler
|
r43347 | req.qsparams[b'style'] = cmd[:style] | ||
Augie Fackler
|
r43346 | cmd = cmd[style + 1 :] | ||
Dirkjan Ochtman
|
r5596 | |||
Dirkjan Ochtman
|
r5591 | # avoid accepting e.g. style parameter as command | ||
Augie Fackler
|
r14953 | if util.safehasattr(webcommands, cmd): | ||
Augie Fackler
|
r43347 | req.qsparams[b'cmd'] = cmd | ||
Dirkjan Ochtman
|
r5591 | |||
Augie Fackler
|
r43347 | if cmd == b'static': | ||
req.qsparams[b'file'] = b'/'.join(args) | ||||
Brendan Cully
|
r7287 | else: | ||
if args and args[0]: | ||||
Augie Fackler
|
r43347 | node = args.pop(0).replace(b'%2F', b'/') | ||
req.qsparams[b'node'] = node | ||||
Brendan Cully
|
r7287 | if args: | ||
Augie Fackler
|
r43347 | if b'file' in req.qsparams: | ||
del req.qsparams[b'file'] | ||||
Gregory Szorc
|
r36880 | for a in args: | ||
Augie Fackler
|
r43347 | req.qsparams.add(b'file', a) | ||
Dirkjan Ochtman
|
r5591 | |||
Augie Fackler
|
r43347 | ua = req.headers.get(b'User-Agent', b'') | ||
if cmd == b'rev' and b'mercurial' in ua: | ||||
req.qsparams[b'style'] = b'raw' | ||||
Dirkjan Ochtman
|
r9731 | |||
Augie Fackler
|
r43347 | if cmd == b'archive': | ||
fn = req.qsparams[b'node'] | ||||
Gregory Szorc
|
r43376 | for type_, spec in pycompat.iteritems(webutil.archivespecs): | ||
Dirkjan Ochtman
|
r5591 | ext = spec[2] | ||
if fn.endswith(ext): | ||||
Augie Fackler
|
r43347 | req.qsparams[b'node'] = fn[: -len(ext)] | ||
req.qsparams[b'type'] = type_ | ||||
Gregory Szorc
|
r36002 | else: | ||
Augie Fackler
|
r43347 | cmd = req.qsparams.get(b'cmd', b'') | ||
Dirkjan Ochtman
|
r5591 | |||
Dirkjan Ochtman
|
r6149 | # process the web interface request | ||
Dirkjan Ochtman
|
r5599 | |||
try: | ||||
Gregory Szorc
|
r36899 | rctx.tmpl = rctx.templater(req) | ||
Augie Fackler
|
r43346 | ctype = rctx.tmpl.render( | ||
Augie Fackler
|
r43347 | b'mimetype', {b'encoding': encoding.encoding} | ||
Augie Fackler
|
r43346 | ) | ||
Dirkjan Ochtman
|
r6149 | |||
Mark Edgington
|
r7562 | # check read permissions non-static content | ||
Augie Fackler
|
r43347 | if cmd != b'static': | ||
Gregory Szorc
|
r36893 | self.check_perm(rctx, req, None) | ||
Mark Edgington
|
r7336 | |||
Augie Fackler
|
r43347 | if cmd == b'': | ||
req.qsparams[b'cmd'] = rctx.tmpl.render(b'default', {}) | ||||
cmd = req.qsparams[b'cmd'] | ||||
Dirkjan Ochtman
|
r5890 | |||
Gregory Szorc
|
r30766 | # Don't enable caching if using a CSP nonce because then it wouldn't | ||
# be a nonce. | ||||
Augie Fackler
|
r43347 | if rctx.configbool(b'web', b'cache') and not rctx.nonce: | ||
tag = b'W/"%d"' % self.mtime | ||||
if req.headers.get(b'If-None-Match') == tag: | ||||
res.status = b'304 Not Modified' | ||||
Gregory Szorc
|
r37846 | # Content-Type may be defined globally. It isn't valid on a | ||
# 304, so discard it. | ||||
try: | ||||
del res.headers[b'Content-Type'] | ||||
except KeyError: | ||||
pass | ||||
Gregory Szorc
|
r36894 | # Response body not allowed on 304. | ||
Augie Fackler
|
r43347 | res.setbodybytes(b'') | ||
Gregory Szorc
|
r36894 | return res.sendresponse() | ||
Gregory Szorc
|
r36885 | |||
Augie Fackler
|
r43347 | res.headers[b'ETag'] = tag | ||
Gregory Szorc
|
r36885 | |||
Dirkjan Ochtman
|
r6149 | if cmd not in webcommands.__all__: | ||
Augie Fackler
|
r43347 | msg = b'no such method: %s' % cmd | ||
Dirkjan Ochtman
|
r6149 | raise ErrorResponse(HTTP_BAD_REQUEST, msg) | ||
else: | ||||
Gregory Szorc
|
r36886 | # Set some globals appropriate for web handlers. Commands can | ||
# override easily enough. | ||||
Augie Fackler
|
r43347 | res.status = b'200 Script output follows' | ||
res.headers[b'Content-Type'] = ctype | ||||
Gregory Szorc
|
r36903 | return getattr(webcommands, cmd)(rctx) | ||
Dirkjan Ochtman
|
r5600 | |||
Gregory Szorc
|
r25660 | except (error.LookupError, error.RepoLookupError) as err: | ||
Augie Fackler
|
r36272 | msg = pycompat.bytestr(err) | ||
Augie Fackler
|
r43347 | if util.safehasattr(err, b'name') and not isinstance( | ||
Augie Fackler
|
r43346 | err, error.ManifestLookupError | ||
): | ||||
Augie Fackler
|
r43347 | msg = b'revision not found: %s' % err.name | ||
Gregory Szorc
|
r36895 | |||
Augie Fackler
|
r43347 | res.status = b'404 Not Found' | ||
res.headers[b'Content-Type'] = ctype | ||||
return rctx.sendtemplate(b'error', error=msg) | ||||
Gregory Szorc
|
r39813 | except (error.RepoError, error.StorageError) as e: | ||
Augie Fackler
|
r43347 | res.status = b'500 Internal Server Error' | ||
res.headers[b'Content-Type'] = ctype | ||||
return rctx.sendtemplate(b'error', error=pycompat.bytestr(e)) | ||||
Yuya Nishihara
|
r39506 | except error.Abort as e: | ||
Augie Fackler
|
r43347 | res.status = b'403 Forbidden' | ||
res.headers[b'Content-Type'] = ctype | ||||
return rctx.sendtemplate(b'error', error=pycompat.bytestr(e)) | ||||
Gregory Szorc
|
r36895 | except ErrorResponse as e: | ||
Sune Foldager
|
r38326 | for k, v in e.headers: | ||
res.headers[k] = v | ||||
Gregory Szorc
|
r36895 | res.status = statusmessage(e.code, pycompat.bytestr(e)) | ||
Augie Fackler
|
r43347 | res.headers[b'Content-Type'] = ctype | ||
return rctx.sendtemplate(b'error', error=pycompat.bytestr(e)) | ||||
Dirkjan Ochtman
|
r5599 | |||
Gregory Szorc
|
r26134 | def check_perm(self, rctx, req, op): | ||
Mads Kiilerich
|
r22200 | for permhook in permhooks: | ||
Gregory Szorc
|
r26134 | permhook(rctx, req, op) | ||
Gregory Szorc
|
r26208 | |||
Augie Fackler
|
r43346 | |||
Gregory Szorc
|
r26208 | def getwebview(repo): | ||
"""The 'web.view' config controls changeset filter to hgweb. Possible | ||||
values are ``served``, ``visible`` and ``all``. Default is ``served``. | ||||
The ``served`` filter only shows changesets that can be pulled from the | ||||
hgweb instance. The``visible`` filter includes secret changesets but | ||||
still excludes "hidden" one. | ||||
See the repoview module for details. | ||||
The option has been around undocumented since Mercurial 2.5, but no | ||||
user ever asked about it. So we better keep it undocumented for now.""" | ||||
Boris Feld
|
r34585 | # experimental config: web.view | ||
Augie Fackler
|
r43347 | viewconfig = repo.ui.config(b'web', b'view', untrusted=True) | ||
if viewconfig == b'all': | ||||
Gregory Szorc
|
r26208 | return repo.unfiltered() | ||
elif viewconfig in repoview.filtertable: | ||||
return repo.filtered(viewconfig) | ||||
else: | ||||
Augie Fackler
|
r43347 | return repo.filtered(b'served') | ||