##// END OF EJS Templates
hooks: introduce a `:run-with-plain` option for hooks...
hooks: introduce a `:run-with-plain` option for hooks This option control if HGPLAIN should be set or not for the hooks. This is the first step to give user some control of the HGPLAIN setting for they hooks. Some hooks (eg: consistency checking) deserve to be run with HGPLAIN, some other (eg: user set visual helper) might need to respect the user config and setting. So both usage are valid and we need to restore the ability to run -without- HGPLAIN that got lost in Mercurial 5.7. This does not offer a way to restore the pre-5.7 behavior yet (respect whatever HGPLAIN setting from the shell), this will be dealt with in the next changeset. The option name is a bit verbose because implementing this highlighs the need for another option: `:run-if-plain`. That would make it possible for some hooks to be easily disabled if HG PLAIN is set. However such option would be a new feature, not something introduced to mitigate a behavior change introduced in 5.7, so the `:run-if-plain` option belong to the default branch and is not part of this series. Differential Revision: https://phab.mercurial-scm.org/D9981

File last commit:

r46554:89a2afe3 default
r47242:7289eac7 stable
Show More
common.py
288 lines | 8.9 KiB | text/x-python | PythonLexer
Eric Hopper
Fixing up comment headers for split up code.
r2391 # hgweb/common.py - Utility functions needed by hgweb_mod and hgwebdir_mod
Eric Hopper
Final stage of the hgweb split up....
r2356 #
# Copyright 21 May 2005 - (c) 2005 Jake Edge <jake@edge2.net>
Vadim Gelfer
update copyrights.
r2859 # Copyright 2005, 2006 Matt Mackall <mpm@selenic.com>
Eric Hopper
Final stage of the hgweb split up....
r2356 #
Martin Geisler
updated license to be explicit about GPL version 2
r8225 # This software may be used and distributed according to the terms of the
Matt Mackall
Update license to GPLv2+
r10263 # GNU General Public License version 2 or any later version.
Eric Hopper
Final stage of the hgweb split up....
r2356
Yuya Nishihara
hgweb: use absolute_import
r27046 from __future__ import absolute_import
Gregory Szorc
hgweb: support Content Security Policy...
r30766 import base64
Yuya Nishihara
hgweb: use absolute_import
r27046 import errno
import mimetypes
import os
Augie Fackler
cleanup: use stat_result[stat.ST_MTIME] instead of stat_result.st_mtime...
r36799 import stat
Bryan O'Sullivan
hgweb: return meaningful HTTP status codes instead of nonsense
r5561
Gregory Szorc
py3: manually import getattr where it is needed...
r43359 from ..pycompat import (
getattr,
open,
)
Pulkit Goyal
py3: replace os.sep with pycompat.ossep (part 3 of 4)
r30615 from .. import (
Pulkit Goyal
py3: replace os.environ with encoding.environ (part 3 of 5)
r30636 encoding,
Pulkit Goyal
py3: replace os.sep with pycompat.ossep (part 3 of 4)
r30615 pycompat,
Martin von Zweigbergk
hgweb: let staticfile() look up path from default location unless provided...
r45938 templater,
Pulkit Goyal
py3: replace os.sep with pycompat.ossep (part 3 of 4)
r30615 util,
)
Pulkit Goyal
py3: conditionalize BaseHTTPServer, SimpleHTTPServer and CGIHTTPServer import...
r29566
httpserver = util.httpserver
Dirkjan Ochtman
hgweb: explicit response status
r5993 HTTP_OK = 200
Matt Harbison
lfs: add support for serving blob files
r37167 HTTP_CREATED = 201
Dirkjan Ochtman
hgweb: support very simple caching model (issue1845)
r12183 HTTP_NOT_MODIFIED = 304
Dirkjan Ochtman
hgweb: explicit response status
r5993 HTTP_BAD_REQUEST = 400
Dirkjan Ochtman
hgweb: raise ErrorResponses to communicate protocol errors
r6926 HTTP_UNAUTHORIZED = 401
Rocco Rutte
hgweb: Respond with HTTP 403 for disabled archive types instead of 404...
r7029 HTTP_FORBIDDEN = 403
Dirkjan Ochtman
hgweb: explicit response status
r5993 HTTP_NOT_FOUND = 404
Dirkjan Ochtman
hgweb: raise ErrorResponses to communicate protocol errors
r6926 HTTP_METHOD_NOT_ALLOWED = 405
Matt Harbison
lfs: update the HTTP status codes in error cases...
r37711 HTTP_NOT_ACCEPTABLE = 406
HTTP_UNSUPPORTED_MEDIA_TYPE = 415
Dirkjan Ochtman
hgweb: explicit response status
r5993 HTTP_SERVER_ERROR = 500
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910
Wagner Bruna
hgweb: refactor checks for granting and revoking user permissions...
r19032 def ismember(ui, username, userlist):
"""Check if username is a member of userlist.
If userlist has a single '*' member, all users are considered members.
Mads Kiilerich
spelling: random spell checker fixes
r19951 Can be overridden by extensions to provide more complex authorization
Wagner Bruna
hgweb: refactor checks for granting and revoking user permissions...
r19032 schemes.
"""
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 return userlist == [b'*'] or username in userlist
Wagner Bruna
hgweb: refactor checks for granting and revoking user permissions...
r19032
Augie Fackler
formatting: blacken the codebase...
r43346
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910 def checkauthz(hgweb, req, op):
Augie Fackler
formating: upgrade to black 20.8b1...
r46554 """Check permission for operation based on request data (including
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910 authentication info). Return if op allowed, else raise an ErrorResponse
Augie Fackler
formating: upgrade to black 20.8b1...
r46554 exception."""
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910
Gregory Szorc
hgweb: transition permissions hooks to modern request type (API)...
r36893 user = req.remoteuser
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 deny_read = hgweb.configlist(b'web', b'deny_read')
Wagner Bruna
hgweb: refactor checks for granting and revoking user permissions...
r19032 if deny_read and (not user or ismember(hgweb.repo.ui, user, deny_read)):
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 raise ErrorResponse(HTTP_UNAUTHORIZED, b'read not authorized')
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 allow_read = hgweb.configlist(b'web', b'allow_read')
Wagner Bruna
hgweb: refactor checks for granting and revoking user permissions...
r19032 if allow_read and (not ismember(hgweb.repo.ui, user, allow_read)):
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 raise ErrorResponse(HTTP_UNAUTHORIZED, b'read not authorized')
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 if op == b'pull' and not hgweb.allowpull:
raise ErrorResponse(HTTP_UNAUTHORIZED, b'pull not authorized')
elif op == b'pull' or op is None: # op is None for interface requests
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910 return
Matt Harbison
lfs: add basic routing for the server side wire protocol processing...
r37165 # Allow LFS uploading via PUT requests
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 if op == b'upload':
if req.method != b'PUT':
msg = b'upload requires PUT request'
Matt Harbison
lfs: add basic routing for the server side wire protocol processing...
r37165 raise ErrorResponse(HTTP_METHOD_NOT_ALLOWED, msg)
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910 # enforce that you can only push using POST requests
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 elif req.method != b'POST':
msg = b'push requires POST request'
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910 raise ErrorResponse(HTTP_METHOD_NOT_ALLOWED, msg)
# require ssl by default for pushing, auth info cannot be sniffed
# and replayed
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 if hgweb.configbool(b'web', b'push_ssl') and req.urlscheme != b'https':
raise ErrorResponse(HTTP_FORBIDDEN, b'ssl required')
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 deny = hgweb.configlist(b'web', b'deny_push')
Wagner Bruna
hgweb: refactor checks for granting and revoking user permissions...
r19032 if deny and (not user or ismember(hgweb.repo.ui, user, deny)):
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 raise ErrorResponse(HTTP_UNAUTHORIZED, b'push not authorized')
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 allow = hgweb.configlist(b'web', b'allow-push')
Wagner Bruna
hgweb: refactor checks for granting and revoking user permissions...
r19032 if not (allow and ismember(hgweb.repo.ui, user, allow)):
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 raise ErrorResponse(HTTP_UNAUTHORIZED, b'push not authorized')
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910
Augie Fackler
formatting: blacken the codebase...
r43346
Martin Geisler
hgweb: initialize permhooks at definition time...
r14058 # Hooks for hgweb permission checks; extensions can add hooks here.
# Each hook is invoked like this: hook(hgweb, request, operation),
Matt Harbison
lfs: add basic routing for the server side wire protocol processing...
r37165 # where operation is either read, pull, push or upload. Hooks should either
Martin Geisler
hgweb: initialize permhooks at definition time...
r14058 # raise an ErrorResponse exception, or just return.
#
# It is possible to do both authentication and authorization through
# this.
permhooks = [checkauthz]
Sune Foldager
hgweb: add support for extension-provided permission hooks...
r9910
Bryan O'Sullivan
hgweb: return meaningful HTTP status codes instead of nonsense
r5561 class ErrorResponse(Exception):
Gregory Szorc
hgweb: don't use mutable default argument value
r31390 def __init__(self, code, message=None, headers=None):
Mads Kiilerich
hgweb: give ErrorResponse a descriptive string/Exception representation...
r13444 if message is None:
message = _statusmessage(code)
Augie Fackler
hgweb: pass exception message to builtin Exception ctor as sysstr...
r36447 Exception.__init__(self, pycompat.sysstr(message))
Bryan O'Sullivan
hgweb: return meaningful HTTP status codes instead of nonsense
r5561 self.code = code
Pierre-Yves David
hgweb: explicitly tests for None...
r31435 if headers is None:
headers = []
self.headers = headers
Connor Sheehan
hgweb: add a `message` attribute to `hgweb.common.ErrorResponse`...
r43192 self.message = message
Bryan O'Sullivan
hgweb: fix breaking tests on Python < 2.5
r5563
Augie Fackler
formatting: blacken the codebase...
r43346
Augie Fackler
hgweb: add support for 100-continue as recommended by PEP 333.
r13570 class continuereader(object):
Gregory Szorc
hgweb: document continuereader...
r36869 """File object wrapper to handle HTTP 100-continue.
This is used by servers so they automatically handle Expect: 100-continue
request headers. On first read of the request body, the 100 Continue
response is sent. This should trigger the client into actually sending
the request body.
"""
Augie Fackler
formatting: blacken the codebase...
r43346
Augie Fackler
hgweb: add support for 100-continue as recommended by PEP 333.
r13570 def __init__(self, f, write):
self.f = f
self._write = write
self.continued = False
def read(self, amt=-1):
if not self.continued:
self.continued = True
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 self._write(b'HTTP/1.1 100 Continue\r\n\r\n')
Augie Fackler
hgweb: add support for 100-continue as recommended by PEP 333.
r13570 return self.f.read(amt)
def __getattr__(self, attr):
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 if attr in (b'close', b'readline', b'readlines', b'__iter__'):
Augie Fackler
hgweb: add support for 100-continue as recommended by PEP 333.
r13570 return getattr(self.f, attr)
Brodie Rao
cleanup: "raise SomeException()" -> "raise SomeException"
r16687 raise AttributeError
Bryan O'Sullivan
hgweb: fix breaking tests on Python < 2.5
r5563
Augie Fackler
formatting: blacken the codebase...
r43346
Bryan O'Sullivan
hgweb: fix breaking tests on Python < 2.5
r5563 def _statusmessage(code):
Pulkit Goyal
py3: conditionalize BaseHTTPServer, SimpleHTTPServer and CGIHTTPServer import...
r29566 responses = httpserver.basehttprequesthandler.responses
Augie Fackler
cleanup: remove pointless r-prefixes on single-quoted strings...
r43906 return pycompat.bytesurl(responses.get(code, ('Error', 'Unknown error'))[0])
Augie Fackler
formatting: blacken the codebase...
r43346
Thomas Arendsen Hein
Removed tabs and trailing whitespace in python files
r5760
Sune Foldager
hgweb: send proper error messages to the client...
r9694 def statusmessage(code, message=None):
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 return b'%d %s' % (code, message or _statusmessage(code))
Eric Hopper
Final stage of the hgweb split up....
r2356
Augie Fackler
formatting: blacken the codebase...
r43346
Pierre-Yves David
hgweb: drop the default argument for get_stat...
r25717 def get_stat(spath, fn):
"""stat fn if it exists, spath otherwise"""
Anton Shestakov
hgweb: refresh hgweb.repo on phase change (issue4061)...
r22577 cl_path = os.path.join(spath, fn)
Benoit Boissinot
switch to the .hg/store layout, fix the tests
r3853 if os.path.exists(cl_path):
Martin Geisler
hgweb: detect change based on changelog size too...
r13958 return os.stat(cl_path)
Eric Hopper
Final stage of the hgweb split up....
r2356 else:
Martin Geisler
hgweb: detect change based on changelog size too...
r13958 return os.stat(spath)
Augie Fackler
formatting: blacken the codebase...
r43346
Martin Geisler
hgweb: detect change based on changelog size too...
r13958 def get_mtime(spath):
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 return get_stat(spath, b"00changelog.i")[stat.ST_MTIME]
Eric Hopper
Final stage of the hgweb split up....
r2356
Augie Fackler
formatting: blacken the codebase...
r43346
Gregory Szorc
hgweb: extract path traversal checking into standalone function...
r31790 def ispathsafe(path):
"""Determine if a path is safe to use for filesystem access."""
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 parts = path.split(b'/')
Gregory Szorc
hgweb: extract path traversal checking into standalone function...
r31790 for part in parts:
Augie Fackler
formatting: blacken the codebase...
r43346 if (
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 part in (b'', pycompat.oscurdir, pycompat.ospardir)
Augie Fackler
formatting: blacken the codebase...
r43346 or pycompat.ossep in part
or pycompat.osaltsep is not None
and pycompat.osaltsep in part
):
Gregory Szorc
hgweb: extract path traversal checking into standalone function...
r31790 return False
return True
Augie Fackler
formatting: blacken the codebase...
r43346
Martin von Zweigbergk
hgweb: let staticfile() look up path from default location unless provided...
r45938 def staticfile(templatepath, directory, fname, res):
Dirkjan Ochtman
send conservatively capitalized HTTP headers
r5930 """return a file inside directory with guessed Content-Type header
Eric Hopper
Final stage of the hgweb split up....
r2356
fname always uses '/' as directory separator and isn't allowed to
contain unusual path components.
Dirkjan Ochtman
send conservatively capitalized HTTP headers
r5930 Content-Type is guessed using the mimetypes module.
Eric Hopper
Final stage of the hgweb split up....
r2356 Return an empty string if fname is illegal or file not found.
"""
Gregory Szorc
hgweb: extract path traversal checking into standalone function...
r31790 if not ispathsafe(fname):
return
Martin von Zweigbergk
hgweb: let staticfile() look up path from default location unless provided...
r45938 if not directory:
tp = templatepath or templater.templatedir()
if tp is not None:
directory = os.path.join(tp, b'static')
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 fpath = os.path.join(*fname.split(b'/'))
Martin von Zweigbergk
hgweb: minimize scope of a try-block in staticfile()...
r45940 ct = pycompat.sysbytes(
mimetypes.guess_type(pycompat.fsdecode(fpath))[0] or r"text/plain"
)
Martin von Zweigbergk
hgweb: simplify staticfile() now that we always pass it a single directory...
r45866 path = os.path.join(directory, fpath)
Eric Hopper
Final stage of the hgweb split up....
r2356 try:
os.stat(path)
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 with open(path, b'rb') as fh:
Gregory Szorc
hgweb: use context manager for file I/O
r31789 data = fh.read()
Bryan O'Sullivan
hgweb: return meaningful HTTP status codes instead of nonsense
r5561 except TypeError:
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 raise ErrorResponse(HTTP_SERVER_ERROR, b'illegal filename')
Gregory Szorc
global: mass rewrite to use modern exception syntax...
r25660 except OSError as err:
Bryan O'Sullivan
hgweb: return meaningful HTTP status codes instead of nonsense
r5561 if err.errno == errno.ENOENT:
Dirkjan Ochtman
hgweb: explicit response status
r5993 raise ErrorResponse(HTTP_NOT_FOUND)
Bryan O'Sullivan
hgweb: return meaningful HTTP status codes instead of nonsense
r5561 else:
Augie Fackler
formatting: blacken the codebase...
r43346 raise ErrorResponse(
HTTP_SERVER_ERROR, encoding.strtolocal(err.strerror)
)
Martin von Zweigbergk
hgweb: minimize scope of a try-block in staticfile()...
r45940 res.headers[b'Content-Type'] = ct
res.setbodybytes(data)
return res
Thomas Arendsen Hein
hgweb: Search templates in templatepath/style/map, too, using a common function....
r3276
Thomas Arendsen Hein
hgweb: use generator to count parity of horizontal stripes for easier reading....
r4462 def paritygen(stripecount, offset=0):
"""count parity of horizontal stripes for easier reading"""
if stripecount and offset:
# account for offset, e.g. due to building the list in reverse
count = (stripecount + offset) % stripecount
Pulkit Goyal
py3: use '//' for integer division in hgweb/common.py...
r36415 parity = (stripecount + offset) // stripecount & 1
Thomas Arendsen Hein
hgweb: use generator to count parity of horizontal stripes for easier reading....
r4462 else:
count = 0
parity = 0
while True:
yield parity
count += 1
if stripecount and count >= stripecount:
parity = 1 - parity
count = 0
Augie Fackler
formatting: blacken the codebase...
r43346
Thomas Arendsen Hein
Don't let ui.username override web.contact (issue900)...
r5779 def get_contact(config):
"""Return repo contact information or empty string.
web.contact is the primary source, but if that is not set, try
ui.username or $EMAIL as a fallback to display something useful.
"""
Augie Fackler
formatting: blacken the codebase...
r43346 return (
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 config(b"web", b"contact")
or config(b"ui", b"username")
or encoding.environ.get(b"EMAIL")
or b""
Augie Fackler
formatting: blacken the codebase...
r43346 )
Dirkjan Ochtman
hgweb: support very simple caching model (issue1845)
r12183
Gregory Szorc
hgweb: support Content Security Policy...
r30766 def cspvalues(ui):
"""Obtain the Content-Security-Policy header and nonce value.
Returns a 2-tuple of the CSP header value and the nonce value.
First value is ``None`` if CSP isn't enabled. Second value is ``None``
if CSP isn't enabled or if the CSP header doesn't need a nonce.
"""
Jun Wu
hgweb: do not import uuid immediately to avoid its side effect...
r34644 # Without demandimport, "import uuid" could have an immediate side-effect
# running "ldconfig" on Linux trying to find libuuid.
# With Python <= 2.7.12, that "ldconfig" is run via a shell and the shell
# may pollute the terminal with:
#
# shell-init: error retrieving current directory: getcwd: cannot access
# parent directories: No such file or directory
#
# Python >= 2.7.13 has fixed it by running "ldconfig" directly without a
# shell (hg changeset a09ae70f3489).
#
# Moved "import uuid" from here so it's executed after we know we have
# a sane cwd (i.e. after dispatch.py cwd check).
#
# We can move it back once we no longer need Python <= 2.7.12 support.
import uuid
Gregory Szorc
hgweb: support Content Security Policy...
r30766 # Don't allow untrusted CSP setting since it be disable protections
# from a trusted/global source.
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 csp = ui.config(b'web', b'csp', untrusted=False)
Gregory Szorc
hgweb: support Content Security Policy...
r30766 nonce = None
Augie Fackler
formatting: byteify all mercurial/ and hgext/ string literals...
r43347 if csp and b'%nonce%' in csp:
nonce = base64.urlsafe_b64encode(uuid.uuid4().bytes).rstrip(b'=')
csp = csp.replace(b'%nonce%', nonce)
Gregory Szorc
hgweb: support Content Security Policy...
r30766
return csp, nonce