upstream/mercurial-mirror Files · tests/test-hgweb-auth.py.out

convert: pass absolute paths to git (SEC)...

convert: pass absolute paths to git (SEC) Fixes CVE-2016-3105 (1/1). Previously, it was possible for the repository path passed to git-ls-remote to be misinterpreted as a URL. Always passing an absolute path to git is a simple way to avoid this.

Patrick Mezard - - Load All Authors

File last commit:

r15024:0f1311e8 stable


                r29051:a56296f5

3.8.1 stable

Download file

             test-hgweb-auth.py.out
        
                    196 lines
            
             | 4.7 KiB
            
                | text/plain
            
             |
                TextLexer

/ tests / test-hgweb-auth.py.out

History | Source | Raw |Copy content |Copy permalink

Sune Foldager allow http authentication information to be specified in the configuration	r8333
		*** Test in-uri schemes

		CFG: {x.prefix: http://example.org}
		URI: http://example.org/foo
		('x', 'x')
		URI: http://example.org/foo/bar
		('x', 'x')
		URI: http://example.org/bar
		('x', 'x')
		URI: https://example.org/foo
		abort
		URI: https://example.org/foo/bar
		abort
		URI: https://example.org/bar
		abort
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		abort
		URI: https://y@example.org/bar
		abort
Sune Foldager allow http authentication information to be specified in the configuration	r8333	CFG: {x.prefix: https://example.org}
		URI: http://example.org/foo
		abort
		URI: http://example.org/foo/bar
		abort
		URI: http://example.org/bar
		abort
		URI: https://example.org/foo
		('x', 'x')
		URI: https://example.org/foo/bar
		('x', 'x')
		URI: https://example.org/bar
		('x', 'x')
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		('x', 'x')
		URI: https://y@example.org/bar
		abort
Sune Foldager allow http authentication information to be specified in the configuration	r8333	CFG: {x.prefix: http://example.org, x.schemes: https}
		URI: http://example.org/foo
		('x', 'x')
		URI: http://example.org/foo/bar
		('x', 'x')
		URI: http://example.org/bar
		('x', 'x')
		URI: https://example.org/foo
		abort
		URI: https://example.org/foo/bar
		abort
		URI: https://example.org/bar
		abort
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		abort
		URI: https://y@example.org/bar
		abort
Sune Foldager allow http authentication information to be specified in the configuration	r8333	CFG: {x.prefix: https://example.org, x.schemes: http}
		URI: http://example.org/foo
		abort
		URI: http://example.org/foo/bar
		abort
		URI: http://example.org/bar
		abort
		URI: https://example.org/foo
		('x', 'x')
		URI: https://example.org/foo/bar
		('x', 'x')
		URI: https://example.org/bar
		('x', 'x')
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		('x', 'x')
		URI: https://y@example.org/bar
		abort
Sune Foldager allow http authentication information to be specified in the configuration	r8333
		*** Test separately configured schemes

		CFG: {x.prefix: example.org, x.schemes: http}
		URI: http://example.org/foo
		('x', 'x')
		URI: http://example.org/foo/bar
		('x', 'x')
		URI: http://example.org/bar
		('x', 'x')
		URI: https://example.org/foo
		abort
		URI: https://example.org/foo/bar
		abort
		URI: https://example.org/bar
		abort
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		abort
		URI: https://y@example.org/bar
		abort
Sune Foldager allow http authentication information to be specified in the configuration	r8333	CFG: {x.prefix: example.org, x.schemes: https}
		URI: http://example.org/foo
		abort
		URI: http://example.org/foo/bar
		abort
		URI: http://example.org/bar
		abort
		URI: https://example.org/foo
		('x', 'x')
		URI: https://example.org/foo/bar
		('x', 'x')
		URI: https://example.org/bar
		('x', 'x')
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		('x', 'x')
		URI: https://y@example.org/bar
		abort
Sune Foldager allow http authentication information to be specified in the configuration	r8333	CFG: {x.prefix: example.org, x.schemes: http https}
		URI: http://example.org/foo
		('x', 'x')
		URI: http://example.org/foo/bar
		('x', 'x')
		URI: http://example.org/bar
		('x', 'x')
		URI: https://example.org/foo
		('x', 'x')
		URI: https://example.org/foo/bar
		('x', 'x')
		URI: https://example.org/bar
		('x', 'x')
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		('x', 'x')
		URI: https://y@example.org/bar
		abort
Sune Foldager allow http authentication information to be specified in the configuration	r8333
		*** Test prefix matching

		CFG: {x.prefix: http://example.org/foo, y.prefix: http://example.org/bar}
		URI: http://example.org/foo
		('x', 'x')
		URI: http://example.org/foo/bar
		('x', 'x')
		URI: http://example.org/bar
		('y', 'y')
		URI: https://example.org/foo
		abort
		URI: https://example.org/foo/bar
		abort
		URI: https://example.org/bar
		abort
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		abort
		URI: https://y@example.org/bar
		abort
Sune Foldager allow http authentication information to be specified in the configuration	r8333	CFG: {x.prefix: http://example.org/foo, y.prefix: http://example.org/foo/bar}
		URI: http://example.org/foo
		('x', 'x')
		URI: http://example.org/foo/bar
		('y', 'y')
		URI: http://example.org/bar
		abort
		URI: https://example.org/foo
		abort
		URI: https://example.org/foo/bar
		abort
		URI: https://example.org/bar
		abort
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		abort
		URI: https://y@example.org/bar
		abort
Sune Foldager allow http authentication information to be specified in the configuration	r8333	CFG: {x.prefix: *, y.prefix: https://example.org/bar}
		URI: http://example.org/foo
		abort
		URI: http://example.org/foo/bar
		abort
		URI: http://example.org/bar
		abort
		URI: https://example.org/foo
		('x', 'x')
		URI: https://example.org/foo/bar
		('x', 'x')
		URI: https://example.org/bar
		('y', 'y')
Patrick Mezard hgweb: do not ignore [auth] if url has a username (issue2822)...	r15005	URI: https://x@example.org/bar
		('x', 'x')
		URI: https://y@example.org/bar
		('y', 'y')

		*** Test user matching

		CFG: {x.password: xpassword, x.prefix: http://example.org/foo, x.username: None}
		URI: http://y@example.org/foo
		('y', 'xpassword')
		CFG: {x.password: xpassword, x.prefix: http://example.org/foo, x.username: None, y.password: ypassword, y.prefix: http://example.org/foo, y.username: y}
		URI: http://y@example.org/foo
		('y', 'ypassword')
		CFG: {x.password: xpassword, x.prefix: http://example.org/foo/bar, x.username: None, y.password: ypassword, y.prefix: http://example.org/foo, y.username: y}
		URI: http://y@example.org/foo/bar
		('y', 'xpassword')
Patrick Mezard http: strip credentials from urllib2 manager URIs (issue2885)...	r15024
		*** Test urllib2 and util.url

		URIs: http://user@example.com:8080/foo http://example.com:8080/foo
		('user', '')

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages