upstream/mercurial-mirror Commit - r38768:258d90f6

hgweb: strip trailing '/' in apppath before appending '/static/' (issue5943)...

Cédric Krier -

r38768:258d90f6 @90 stable

parent child

mercurial/hgweb/hgweb_mod.py

0 +1 -1

             # hgweb/hgweb_mod.py - Web interface for a repository.
             #
             # Copyright 21 May 2005 - (c) 2005 Jake Edge <jake@edge2.net>
             # Copyright 2005-2007 Matt Mackall <mpm@selenic.com>
             #
             # This software may be used and distributed according to the terms of the
             # GNU General Public License version 2 or any later version.
             from __future__ import absolute_import
             import contextlib
             import os
             from .common import (
                 ErrorResponse,
                 HTTP_BAD_REQUEST,
                 cspvalues,
                 permhooks,
                 statusmessage,
             )
             from .. import (
                 encoding,
                 error,
                 formatter,
                 hg,
                 hook,
                 profiling,
                 pycompat,
                 registrar,
                 repoview,
                 templatefilters,
                 templater,
                 templateutil,
                 ui as uimod,
                 util,
                 wireprotoserver,
             )
             from . import (
                 request as requestmod,
                 webcommands,
                 webutil,
                 wsgicgi,
             )
             def getstyle(req, configfn, templatepath):
                 styles = (
                     req.qsparams.get('style', None),
                     configfn('web', 'style'),
                     'paper',
                 )
                 return styles, templater.stylemap(styles, templatepath)
             def makebreadcrumb(url, prefix=''):
                 '''Return a 'URL breadcrumb' list
                 A 'URL breadcrumb' is a list of URL-name pairs,
                 corresponding to each of the path items on a URL.
                 This can be used to create path navigation entries.
                 '''
                 if url.endswith('/'):
                     url = url[:-1]
                 if prefix:
                     url = '/' + prefix + url
                 relpath = url
                 if relpath.startswith('/'):
                     relpath = relpath[1:]
                 breadcrumb = []
                 urlel = url
                 pathitems = [''] + relpath.split('/')
                 for pathel in reversed(pathitems):
                     if not pathel or not urlel:
                         break
                     breadcrumb.append({'url': urlel, 'name': pathel})
                     urlel = os.path.dirname(urlel)
                 return templateutil.mappinglist(reversed(breadcrumb))
             class requestcontext(object):
                 """Holds state/context for an individual request.
                 Servers can be multi-threaded. Holding state on the WSGI application
                 is prone to race conditions. Instances of this class exist to hold
                 mutable and race-free state for requests.
                 """
                 def __init__(self, app, repo, req, res):
                     self.repo = repo
                     self.reponame = app.reponame
                     self.req = req
                     self.res = res
                     self.maxchanges = self.configint('web', 'maxchanges')
                     self.stripecount = self.configint('web', 'stripes')
                     self.maxshortchanges = self.configint('web', 'maxshortchanges')
                     self.maxfiles = self.configint('web', 'maxfiles')
                     self.allowpull = self.configbool('web', 'allow-pull')
                     # we use untrusted=False to prevent a repo owner from using
                     # web.templates in .hg/hgrc to get access to any file readable
                     # by the user running the CGI script
                     self.templatepath = self.config('web', 'templates', untrusted=False)
                     # This object is more expensive to build than simple config values.
                     # It is shared across requests. The app will replace the object
                     # if it is updated. Since this is a reference and nothing should
                     # modify the underlying object, it should be constant for the lifetime
                     # of the request.
                     self.websubtable = app.websubtable
                     self.csp, self.nonce = cspvalues(self.repo.ui)
                 # Trust the settings from the .hg/hgrc files by default.
                 def config(self, section, name, default=uimod._unset, untrusted=True):
                     return self.repo.ui.config(section, name, default,
                                                untrusted=untrusted)
                 def configbool(self, section, name, default=uimod._unset, untrusted=True):
                     return self.repo.ui.configbool(section, name, default,
                                                    untrusted=untrusted)
                 def configint(self, section, name, default=uimod._unset, untrusted=True):
                     return self.repo.ui.configint(section, name, default,
                                                   untrusted=untrusted)
                 def configlist(self, section, name, default=uimod._unset, untrusted=True):
                     return self.repo.ui.configlist(section, name, default,
                                                    untrusted=untrusted)
                 def archivelist(self, nodeid):
                     return webutil.archivelist(self.repo.ui, nodeid)
                 def templater(self, req):
                     # determine scheme, port and server name
                     # this is needed to create absolute urls
                     logourl = self.config('web', 'logourl')
                     logoimg = self.config('web', 'logoimg')
                     staticurl = (self.config('web', 'staticurl')
-                                 or req.apppath + '/static/')
+                                 or req.apppath.rstrip('/') + '/static/')
                     if not staticurl.endswith('/'):
                         staticurl += '/'
                     # some functions for the templater
                     def motd(**map):
                         yield self.config('web', 'motd')
                     # figure out which style to use
                     vars = {}
                     styles, (style, mapfile) = getstyle(req, self.config,
                                                         self.templatepath)
                     if style == styles[0]:
                         vars['style'] = style
                     sessionvars = webutil.sessionvars(vars, '?')
                     if not self.reponame:
                         self.reponame = (self.config('web', 'name', '')
                                          or req.reponame
                                          or req.apppath
                                          or self.repo.root)
                     filters = {}
                     templatefilter = registrar.templatefilter(filters)
                     @templatefilter('websub', intype=bytes)
                     def websubfilter(text):
                         return templatefilters.websub(text, self.websubtable)
                     # create the templater
                     # TODO: export all keywords: defaults = templatekw.keywords.copy()
                     defaults = {
                         'url': req.apppath + '/',
                         'logourl': logourl,
                         'logoimg': logoimg,
                         'staticurl': staticurl,
                         'urlbase': req.advertisedbaseurl,
                         'repo': self.reponame,
                         'encoding': encoding.encoding,
                         'motd': motd,
                         'sessionvars': sessionvars,
                         'pathdef': makebreadcrumb(req.apppath),
                         'style': style,
                         'nonce': self.nonce,
                     }
                     tres = formatter.templateresources(self.repo.ui, self.repo)
                     tmpl = templater.templater.frommapfile(mapfile,
                                                            filters=filters,
                                                            defaults=defaults,
                                                            resources=tres)
                     return tmpl
                 def sendtemplate(self, name, **kwargs):
                     """Helper function to send a response generated from a template."""
                     kwargs = pycompat.byteskwargs(kwargs)
                     self.res.setbodygen(self.tmpl.generate(name, kwargs))
                     return self.res.sendresponse()
             class hgweb(object):
                 """HTTP server for individual repositories.
                 Instances of this class serve HTTP responses for a particular
                 repository.
                 Instances are typically used as WSGI applications.
                 Some servers are multi-threaded. On these servers, there may
                 be multiple active threads inside __call__.
                 """
                 def __init__(self, repo, name=None, baseui=None):
                     if isinstance(repo, bytes):
                         if baseui:
                             u = baseui.copy()
                         else:
                             u = uimod.ui.load()
                         r = hg.repository(u, repo)
                     else:
                         # we trust caller to give us a private copy
                         r = repo
                     r.ui.setconfig('ui', 'report_untrusted', 'off', 'hgweb')
                     r.baseui.setconfig('ui', 'report_untrusted', 'off', 'hgweb')
                     r.ui.setconfig('ui', 'nontty', 'true', 'hgweb')
                     r.baseui.setconfig('ui', 'nontty', 'true', 'hgweb')
                     # resolve file patterns relative to repo root
                     r.ui.setconfig('ui', 'forcecwd', r.root, 'hgweb')
                     r.baseui.setconfig('ui', 'forcecwd', r.root, 'hgweb')
                     # it's unlikely that we can replace signal handlers in WSGI server,
                     # and mod_wsgi issues a big warning. a plain hgweb process (with no
                     # threading) could replace signal handlers, but we don't bother
                     # conditionally enabling it.
                     r.ui.setconfig('ui', 'signal-safe-lock', 'false', 'hgweb')
                     r.baseui.setconfig('ui', 'signal-safe-lock', 'false', 'hgweb')
                     # displaying bundling progress bar while serving feel wrong and may
                     # break some wsgi implementation.
                     r.ui.setconfig('progress', 'disable', 'true', 'hgweb')
                     r.baseui.setconfig('progress', 'disable', 'true', 'hgweb')
                     self._repos = [hg.cachedlocalrepo(self._webifyrepo(r))]
                     self._lastrepo = self._repos[0]
                     hook.redirect(True)
                     self.reponame = name
                 def _webifyrepo(self, repo):
                     repo = getwebview(repo)
                     self.websubtable = webutil.getwebsubs(repo)
                     return repo
                 @contextlib.contextmanager
                 def _obtainrepo(self):
                     """Obtain a repo unique to the caller.
                     Internally we maintain a stack of cachedlocalrepo instances
                     to be handed out. If one is available, we pop it and return it,
                     ensuring it is up to date in the process. If one is not available,
                     we clone the most recently used repo instance and return it.
                     It is currently possible for the stack to grow without bounds
                     if the server allows infinite threads. However, servers should
                     have a thread limit, thus establishing our limit.
                     """
                     if self._repos:
                         cached = self._repos.pop()
                         r, created = cached.fetch()
                     else:
                         cached = self._lastrepo.copy()
                         r, created = cached.fetch()
                     if created:
                         r = self._webifyrepo(r)
                     self._lastrepo = cached
                     self.mtime = cached.mtime
                     try:
                         yield r
                     finally:
                         self._repos.append(cached)
                 def run(self):
                     """Start a server from CGI environment.
                     Modern servers should be using WSGI and should avoid this
                     method, if possible.
                     """
                     if not encoding.environ.get('GATEWAY_INTERFACE',
                                                 '').startswith("CGI/1."):
                         raise RuntimeError("This function is only intended to be "
                                            "called while running as a CGI script.")
                     wsgicgi.launch(self)
                 def __call__(self, env, respond):
                     """Run the WSGI application.
                     This may be called by multiple threads.
                     """
                     req = requestmod.parserequestfromenv(env)
                     res = requestmod.wsgiresponse(req, respond)
                     return self.run_wsgi(req, res)
                 def run_wsgi(self, req, res):
                     """Internal method to run the WSGI application.
                     This is typically only called by Mercurial. External consumers
                     should be using instances of this class as the WSGI application.
                     """
                     with self._obtainrepo() as repo:
                         profile = repo.ui.configbool('profiling', 'enabled')
                         with profiling.profile(repo.ui, enabled=profile):
                             for r in self._runwsgi(req, res, repo):
                                 yield r
                 def _runwsgi(self, req, res, repo):
                     rctx = requestcontext(self, repo, req, res)
                     # This state is global across all threads.
                     encoding.encoding = rctx.config('web', 'encoding')
                     rctx.repo.ui.environ = req.rawenv
                     if rctx.csp:
                         # hgwebdir may have added CSP header. Since we generate our own,
                         # replace it.
                         res.headers['Content-Security-Policy'] = rctx.csp
                     # /api/* is reserved for various API implementations. Dispatch
                     # accordingly. But URL paths can conflict with subrepos and virtual
                     # repos in hgwebdir. So until we have a workaround for this, only
                     # expose the URLs if the feature is enabled.
                     apienabled = rctx.repo.ui.configbool('experimental', 'web.apiserver')
                     if apienabled and req.dispatchparts and req.dispatchparts[0] == b'api':
                         wireprotoserver.handlewsgiapirequest(rctx, req, res,
                                                              self.check_perm)
                         return res.sendresponse()
                     handled = wireprotoserver.handlewsgirequest(
                         rctx, req, res, self.check_perm)
                     if handled:
                         return res.sendresponse()
                     # Old implementations of hgweb supported dispatching the request via
                     # the initial query string parameter instead of using PATH_INFO.
                     # If PATH_INFO is present (signaled by ``req.dispatchpath`` having
                     # a value), we use it. Otherwise fall back to the query string.
                     if req.dispatchpath is not None:
                         query = req.dispatchpath
                     else:
                         query = req.querystring.partition('&')[0].partition(';')[0]
                     # translate user-visible url structure to internal structure
                     args = query.split('/', 2)
                     if 'cmd' not in req.qsparams and args and args[0]:
                         cmd = args.pop(0)
                         style = cmd.rfind('-')
                         if style != -1:
                             req.qsparams['style'] = cmd[:style]
                             cmd = cmd[style + 1:]
                         # avoid accepting e.g. style parameter as command
                         if util.safehasattr(webcommands, cmd):
                             req.qsparams['cmd'] = cmd
                         if cmd == 'static':
                             req.qsparams['file'] = '/'.join(args)
                         else:
                             if args and args[0]:
                                 node = args.pop(0).replace('%2F', '/')
                                 req.qsparams['node'] = node
                             if args:
                                 if 'file' in req.qsparams:
                                     del req.qsparams['file']
                                 for a in args:
                                     req.qsparams.add('file', a)
                         ua = req.headers.get('User-Agent', '')
                         if cmd == 'rev' and 'mercurial' in ua:
                             req.qsparams['style'] = 'raw'
                         if cmd == 'archive':
                             fn = req.qsparams['node']
                             for type_, spec in webutil.archivespecs.iteritems():
                                 ext = spec[2]
                                 if fn.endswith(ext):
                                     req.qsparams['node'] = fn[:-len(ext)]
                                     req.qsparams['type'] = type_
                     else:
                         cmd = req.qsparams.get('cmd', '')
                     # process the web interface request
                     try:
                         rctx.tmpl = rctx.templater(req)
                         ctype = rctx.tmpl.render('mimetype',
                                                  {'encoding': encoding.encoding})
                         # check read permissions non-static content
                         if cmd != 'static':
                             self.check_perm(rctx, req, None)
                         if cmd == '':
                             req.qsparams['cmd'] = rctx.tmpl.render('default', {})
                             cmd = req.qsparams['cmd']
                         # Don't enable caching if using a CSP nonce because then it wouldn't
                         # be a nonce.
                         if rctx.configbool('web', 'cache') and not rctx.nonce:
                             tag = 'W/"%d"' % self.mtime
                             if req.headers.get('If-None-Match') == tag:
                                 res.status = '304 Not Modified'
                                 # Content-Type may be defined globally. It isn't valid on a
                                 # 304, so discard it.
                                 try:
                                     del res.headers[b'Content-Type']
                                 except KeyError:
                                     pass
                                 # Response body not allowed on 304.
                                 res.setbodybytes('')
                                 return res.sendresponse()
                             res.headers['ETag'] = tag
                         if cmd not in webcommands.__all__:
                             msg = 'no such method: %s' % cmd
                             raise ErrorResponse(HTTP_BAD_REQUEST, msg)
                         else:
                             # Set some globals appropriate for web handlers. Commands can
                             # override easily enough.
                             res.status = '200 Script output follows'
                             res.headers['Content-Type'] = ctype
                             return getattr(webcommands, cmd)(rctx)
                     except (error.LookupError, error.RepoLookupError) as err:
                         msg = pycompat.bytestr(err)
                         if (util.safehasattr(err, 'name') and
                             not isinstance(err,  error.ManifestLookupError)):
                             msg = 'revision not found: %s' % err.name
                         res.status = '404 Not Found'
                         res.headers['Content-Type'] = ctype
                         return rctx.sendtemplate('error', error=msg)
                     except (error.RepoError, error.RevlogError) as e:
                         res.status = '500 Internal Server Error'
                         res.headers['Content-Type'] = ctype
                         return rctx.sendtemplate('error', error=pycompat.bytestr(e))
                     except ErrorResponse as e:
                         for k, v in e.headers:
                             res.headers[k] = v
                         res.status = statusmessage(e.code, pycompat.bytestr(e))
                         res.headers['Content-Type'] = ctype
                         return rctx.sendtemplate('error', error=pycompat.bytestr(e))
                 def check_perm(self, rctx, req, op):
                     for permhook in permhooks:
                         permhook(rctx, req, op)
             def getwebview(repo):
                 """The 'web.view' config controls changeset filter to hgweb. Possible
                 values are ``served``, ``visible`` and ``all``. Default is ``served``.
                 The ``served`` filter only shows changesets that can be pulled from the
                 hgweb instance.  The``visible`` filter includes secret changesets but
                 still excludes "hidden" one.
                 See the repoview module for details.
                 The option has been around undocumented since Mercurial 2.5, but no
                 user ever asked about it. So we better keep it undocumented for now."""
                 # experimental config: web.view
                 viewconfig = repo.ui.config('web', 'view', untrusted=True)
                 if viewconfig == 'all':
                     return repo.unfiltered()
                 elif viewconfig in repoview.filtertable:
                     return repo.filtered(viewconfig)
                 else:
                     return repo.filtered('served')

mercurial/hgweb/hgwebdir_mod.py

0 +1 -1

             # hgweb/hgwebdir_mod.py - Web interface for a directory of repositories.
             #
             # Copyright 21 May 2005 - (c) 2005 Jake Edge <jake@edge2.net>
             # Copyright 2005, 2006 Matt Mackall <mpm@selenic.com>
             #
             # This software may be used and distributed according to the terms of the
             # GNU General Public License version 2 or any later version.
             from __future__ import absolute_import
             import gc
             import os
             import time
             from ..i18n import _
             from .common import (
                 ErrorResponse,
                 HTTP_SERVER_ERROR,
                 cspvalues,
                 get_contact,
                 get_mtime,
                 ismember,
                 paritygen,
                 staticfile,
                 statusmessage,
             )
             from .. import (
                 configitems,
                 encoding,
                 error,
                 hg,
                 profiling,
                 pycompat,
                 scmutil,
                 templater,
                 templateutil,
                 ui as uimod,
                 util,
             )
             from . import (
                 hgweb_mod,
                 request as requestmod,
                 webutil,
                 wsgicgi,
             )
             from ..utils import dateutil
             def cleannames(items):
                 return [(util.pconvert(name).strip('/'), path) for name, path in items]
             def findrepos(paths):
                 repos = []
                 for prefix, root in cleannames(paths):
                     roothead, roottail = os.path.split(root)
                     # "foo = /bar/*" or "foo = /bar/**" lets every repo /bar/N in or below
                     # /bar/ be served as as foo/N .
                     # '*' will not search inside dirs with .hg (except .hg/patches),
                     # '**' will search inside dirs with .hg (and thus also find subrepos).
                     try:
                         recurse = {'*': False, '**': True}[roottail]
                     except KeyError:
                         repos.append((prefix, root))
                         continue
                     roothead = os.path.normpath(os.path.abspath(roothead))
                     paths = scmutil.walkrepos(roothead, followsym=True, recurse=recurse)
                     repos.extend(urlrepos(prefix, roothead, paths))
                 return repos
             def urlrepos(prefix, roothead, paths):
                 """yield url paths and filesystem paths from a list of repo paths
                 >>> conv = lambda seq: [(v, util.pconvert(p)) for v,p in seq]
                 >>> conv(urlrepos(b'hg', b'/opt', [b'/opt/r', b'/opt/r/r', b'/opt']))
                 [('hg/r', '/opt/r'), ('hg/r/r', '/opt/r/r'), ('hg', '/opt')]
                 >>> conv(urlrepos(b'', b'/opt', [b'/opt/r', b'/opt/r/r', b'/opt']))
                 [('r', '/opt/r'), ('r/r', '/opt/r/r'), ('', '/opt')]
                 """
                 for path in paths:
                     path = os.path.normpath(path)
                     yield (prefix + '/' +
                            util.pconvert(path[len(roothead):]).lstrip('/')).strip('/'), path
             def readallowed(ui, req):
                 """Check allow_read and deny_read config options of a repo's ui object
                 to determine user permissions.  By default, with neither option set (or
                 both empty), allow all users to read the repo.  There are two ways a
                 user can be denied read access:  (1) deny_read is not empty, and the
                 user is unauthenticated or deny_read contains user (or *), and (2)
                 allow_read is not empty and the user is not in allow_read.  Return True
                 if user is allowed to read the repo, else return False."""
                 user = req.remoteuser
                 deny_read = ui.configlist('web', 'deny_read', untrusted=True)
                 if deny_read and (not user or ismember(ui, user, deny_read)):
                     return False
                 allow_read = ui.configlist('web', 'allow_read', untrusted=True)
                 # by default, allow reading if no allow_read option has been set
                 if not allow_read or ismember(ui, user, allow_read):
                     return True
                 return False
             def rawindexentries(ui, repos, req, subdir=''):
                 descend = ui.configbool('web', 'descend')
                 collapse = ui.configbool('web', 'collapse')
                 seenrepos = set()
                 seendirs = set()
                 for name, path in repos:
                     if not name.startswith(subdir):
                         continue
                     name = name[len(subdir):]
                     directory = False
                     if '/' in name:
                         if not descend:
                             continue
                         nameparts = name.split('/')
                         rootname = nameparts[0]
                         if not collapse:
                             pass
                         elif rootname in seendirs:
                             continue
                         elif rootname in seenrepos:
                             pass
                         else:
                             directory = True
                             name = rootname
                             # redefine the path to refer to the directory
                             discarded = '/'.join(nameparts[1:])
                             # remove name parts plus accompanying slash
                             path = path[:-len(discarded) - 1]
                             try:
                                 r = hg.repository(ui, path)
                                 directory = False
                             except (IOError, error.RepoError):
                                 pass
                     parts = [
                         req.apppath.strip('/'),
                         subdir.strip('/'),
                         name.strip('/'),
                     ]
                     url = '/' + '/'.join(p for p in parts if p) + '/'
                     # show either a directory entry or a repository
                     if directory:
                         # get the directory's time information
                         try:
                             d = (get_mtime(path), dateutil.makedate()[1])
                         except OSError:
                             continue
                         # add '/' to the name to make it obvious that
                         # the entry is a directory, not a regular repository
                         row = {'contact': "",
                                'contact_sort': "",
                                'name': name + '/',
                                'name_sort': name,
                                'url': url,
                                'description': "",
                                'description_sort': "",
                                'lastchange': d,
                                'lastchange_sort': d[1] - d[0],
                                'archives': templateutil.mappinglist([]),
                                'isdirectory': True,
                                'labels': templateutil.hybridlist([], name='label'),
                                }
                         seendirs.add(name)
                         yield row
                         continue
                     u = ui.copy()
                     try:
                         u.readconfig(os.path.join(path, '.hg', 'hgrc'))
                     except Exception as e:
                         u.warn(_('error reading %s/.hg/hgrc: %s\n') % (path, e))
                         continue
                     def get(section, name, default=uimod._unset):
                         return u.config(section, name, default, untrusted=True)
                     if u.configbool("web", "hidden", untrusted=True):
                         continue
                     if not readallowed(u, req):
                         continue
                     # update time with local timezone
                     try:
                         r = hg.repository(ui, path)
                     except IOError:
                         u.warn(_('error accessing repository at %s\n') % path)
                         continue
                     except error.RepoError:
                         u.warn(_('error accessing repository at %s\n') % path)
                         continue
                     try:
                         d = (get_mtime(r.spath), dateutil.makedate()[1])
                     except OSError:
                         continue
                     contact = get_contact(get)
                     description = get("web", "description")
                     seenrepos.add(name)
                     name = get("web", "name", name)
                     labels = u.configlist('web', 'labels', untrusted=True)
                     row = {'contact': contact or "unknown",
                            'contact_sort': contact.upper() or "unknown",
                            'name': name,
                            'name_sort': name,
                            'url': url,
                            'description': description or "unknown",
                            'description_sort': description.upper() or "unknown",
                            'lastchange': d,
                            'lastchange_sort': d[1] - d[0],
                            'archives': webutil.archivelist(u, "tip", url),
                            'isdirectory': None,
                            'labels': templateutil.hybridlist(labels, name='label'),
                            }
                     yield row
             def _indexentriesgen(context, ui, repos, req, stripecount, sortcolumn,
                                  descending, subdir):
                 rows = rawindexentries(ui, repos, req, subdir=subdir)
                 sortdefault = None, False
                 if sortcolumn and sortdefault != (sortcolumn, descending):
                     sortkey = '%s_sort' % sortcolumn
                     rows = sorted(rows, key=lambda x: x[sortkey],
                                   reverse=descending)
                 for row, parity in zip(rows, paritygen(stripecount)):
                     row['parity'] = parity
                     yield row
             def indexentries(ui, repos, req, stripecount, sortcolumn='',
                              descending=False, subdir=''):
                 args = (ui, repos, req, stripecount, sortcolumn, descending, subdir)
                 return templateutil.mappinggenerator(_indexentriesgen, args=args)
             class hgwebdir(object):
                 """HTTP server for multiple repositories.
                 Given a configuration, different repositories will be served depending
                 on the request path.
                 Instances are typically used as WSGI applications.
                 """
                 def __init__(self, conf, baseui=None):
                     self.conf = conf
                     self.baseui = baseui
                     self.ui = None
                     self.lastrefresh = 0
                     self.motd = None
                     self.refresh()
                 def refresh(self):
                     if self.ui:
                         refreshinterval = self.ui.configint('web', 'refreshinterval')
                     else:
                         item = configitems.coreitems['web']['refreshinterval']
                         refreshinterval = item.default
                     # refreshinterval <= 0 means to always refresh.
                     if (refreshinterval > 0 and
                         self.lastrefresh + refreshinterval > time.time()):
                         return
                     if self.baseui:
                         u = self.baseui.copy()
                     else:
                         u = uimod.ui.load()
                         u.setconfig('ui', 'report_untrusted', 'off', 'hgwebdir')
                         u.setconfig('ui', 'nontty', 'true', 'hgwebdir')
                         # displaying bundling progress bar while serving feels wrong and may
                         # break some wsgi implementations.
                         u.setconfig('progress', 'disable', 'true', 'hgweb')
                     if not isinstance(self.conf, (dict, list, tuple)):
                         map = {'paths': 'hgweb-paths'}
                         if not os.path.exists(self.conf):
                             raise error.Abort(_('config file %s not found!') % self.conf)
                         u.readconfig(self.conf, remap=map, trust=True)
                         paths = []
                         for name, ignored in u.configitems('hgweb-paths'):
                             for path in u.configlist('hgweb-paths', name):
                                 paths.append((name, path))
                     elif isinstance(self.conf, (list, tuple)):
                         paths = self.conf
                     elif isinstance(self.conf, dict):
                         paths = self.conf.items()
                     repos = findrepos(paths)
                     for prefix, root in u.configitems('collections'):
                         prefix = util.pconvert(prefix)
                         for path in scmutil.walkrepos(root, followsym=True):
                             repo = os.path.normpath(path)
                             name = util.pconvert(repo)
                             if name.startswith(prefix):
                                 name = name[len(prefix):]
                             repos.append((name.lstrip('/'), repo))
                     self.repos = repos
                     self.ui = u
                     encoding.encoding = self.ui.config('web', 'encoding')
                     self.style = self.ui.config('web', 'style')
                     self.templatepath = self.ui.config('web', 'templates', untrusted=False)
                     self.stripecount = self.ui.config('web', 'stripes')
                     if self.stripecount:
                         self.stripecount = int(self.stripecount)
                     prefix = self.ui.config('web', 'prefix')
                     if prefix.startswith('/'):
                         prefix = prefix[1:]
                     if prefix.endswith('/'):
                         prefix = prefix[:-1]
                     self.prefix = prefix
                     self.lastrefresh = time.time()
                 def run(self):
                     if not encoding.environ.get('GATEWAY_INTERFACE',
                                                 '').startswith("CGI/1."):
                         raise RuntimeError("This function is only intended to be "
                                            "called while running as a CGI script.")
                     wsgicgi.launch(self)
                 def __call__(self, env, respond):
                     baseurl = self.ui.config('web', 'baseurl')
                     req = requestmod.parserequestfromenv(env, altbaseurl=baseurl)
                     res = requestmod.wsgiresponse(req, respond)
                     return self.run_wsgi(req, res)
                 def run_wsgi(self, req, res):
                     profile = self.ui.configbool('profiling', 'enabled')
                     with profiling.profile(self.ui, enabled=profile):
                         try:
                             for r in self._runwsgi(req, res):
                                 yield r
                         finally:
                             # There are known cycles in localrepository that prevent
                             # those objects (and tons of held references) from being
                             # collected through normal refcounting. We mitigate those
                             # leaks by performing an explicit GC on every request.
                             # TODO remove this once leaks are fixed.
                             # TODO only run this on requests that create localrepository
                             # instances instead of every request.
                             gc.collect()
                 def _runwsgi(self, req, res):
                     try:
                         self.refresh()
                         csp, nonce = cspvalues(self.ui)
                         if csp:
                             res.headers['Content-Security-Policy'] = csp
                         virtual = req.dispatchpath.strip('/')
                         tmpl = self.templater(req, nonce)
                         ctype = tmpl.render('mimetype', {'encoding': encoding.encoding})
                         # Global defaults. These can be overridden by any handler.
                         res.status = '200 Script output follows'
                         res.headers['Content-Type'] = ctype
                         # a static file
                         if virtual.startswith('static/') or 'static' in req.qsparams:
                             if virtual.startswith('static/'):
                                 fname = virtual[7:]
                             else:
                                 fname = req.qsparams['static']
                             static = self.ui.config("web", "static", None,
                                                     untrusted=False)
                             if not static:
                                 tp = self.templatepath or templater.templatepaths()
                                 if isinstance(tp, str):
                                     tp = [tp]
                                 static = [os.path.join(p, 'static') for p in tp]
                             staticfile(static, fname, res)
                             return res.sendresponse()
                         # top-level index
                         repos = dict(self.repos)
                         if (not virtual or virtual == 'index') and virtual not in repos:
                             return self.makeindex(req, res, tmpl)
                         # nested indexes and hgwebs
                         if virtual.endswith('/index') and virtual not in repos:
                             subdir = virtual[:-len('index')]
                             if any(r.startswith(subdir) for r in repos):
                                 return self.makeindex(req, res, tmpl, subdir)
                         def _virtualdirs():
                             # Check the full virtual path, each parent, and the root ('')
                             if virtual != '':
                                 yield virtual
                                 for p in util.finddirs(virtual):
                                     yield p
                             yield ''
                         for virtualrepo in _virtualdirs():
                             real = repos.get(virtualrepo)
                             if real:
                                 # Re-parse the WSGI environment to take into account our
                                 # repository path component.
                                 uenv = req.rawenv
                                 if pycompat.ispy3:
                                     uenv = {k.decode('latin1'): v for k, v in
                                             uenv.iteritems()}
                                 req = requestmod.parserequestfromenv(
                                     uenv, reponame=virtualrepo,
                                     altbaseurl=self.ui.config('web', 'baseurl'),
                                     # Reuse wrapped body file object otherwise state
                                     # tracking can get confused.
                                     bodyfh=req.bodyfh)
                                 try:
                                     # ensure caller gets private copy of ui
                                     repo = hg.repository(self.ui.copy(), real)
                                     return hgweb_mod.hgweb(repo).run_wsgi(req, res)
                                 except IOError as inst:
                                     msg = encoding.strtolocal(inst.strerror)
                                     raise ErrorResponse(HTTP_SERVER_ERROR, msg)
                                 except error.RepoError as inst:
                                     raise ErrorResponse(HTTP_SERVER_ERROR, bytes(inst))
                         # browse subdirectories
                         subdir = virtual + '/'
                         if [r for r in repos if r.startswith(subdir)]:
                             return self.makeindex(req, res, tmpl, subdir)
                         # prefixes not found
                         res.status = '404 Not Found'
                         res.setbodygen(tmpl.generate('notfound', {'repo': virtual}))
                         return res.sendresponse()
                     except ErrorResponse as e:
                         res.status = statusmessage(e.code, pycompat.bytestr(e))
                         res.setbodygen(tmpl.generate('error', {'error': e.message or ''}))
                         return res.sendresponse()
                     finally:
                         tmpl = None
                 def makeindex(self, req, res, tmpl, subdir=""):
                     self.refresh()
                     sortable = ["name", "description", "contact", "lastchange"]
                     sortcolumn, descending = None, False
                     if 'sort' in req.qsparams:
                         sortcolumn = req.qsparams['sort']
                         descending = sortcolumn.startswith('-')
                         if descending:
                             sortcolumn = sortcolumn[1:]
                         if sortcolumn not in sortable:
                             sortcolumn = ""
                     sort = [("sort_%s" % column,
                              "%s%s" % ((not descending and column == sortcolumn)
                                         and "-" or "", column))
                             for column in sortable]
                     self.refresh()
                     entries = indexentries(self.ui, self.repos, req,
                                            self.stripecount, sortcolumn=sortcolumn,
                                            descending=descending, subdir=subdir)
                     mapping = {
                         'entries': entries,
                         'subdir': subdir,
                         'pathdef': hgweb_mod.makebreadcrumb('/' + subdir, self.prefix),
                         'sortcolumn': sortcolumn,
                         'descending': descending,
                     }
                     mapping.update(sort)
                     res.setbodygen(tmpl.generate('index', mapping))
                     return res.sendresponse()
                 def templater(self, req, nonce):
                     def motd(**map):
                         if self.motd is not None:
                             yield self.motd
                         else:
                             yield config('web', 'motd')
                     def config(section, name, default=uimod._unset, untrusted=True):
                         return self.ui.config(section, name, default, untrusted)
                     vars = {}
                     styles, (style, mapfile) = hgweb_mod.getstyle(req, config,
                                                                   self.templatepath)
                     if style == styles[0]:
                         vars['style'] = style
                     sessionvars = webutil.sessionvars(vars, r'?')
                     logourl = config('web', 'logourl')
                     logoimg = config('web', 'logoimg')
                     staticurl = (config('web', 'staticurl')
-                                 or req.apppath + '/static/')
+                                 or req.apppath.rstrip('/') + '/static/')
                     if not staticurl.endswith('/'):
                         staticurl += '/'
                     defaults = {
                         "encoding": encoding.encoding,
                         "motd": motd,
                         "url": req.apppath + '/',
                         "logourl": logourl,
                         "logoimg": logoimg,
                         "staticurl": staticurl,
                         "sessionvars": sessionvars,
                         "style": style,
                         "nonce": nonce,
                     }
                     tmpl = templater.templater.frommapfile(mapfile, defaults=defaults)
                     return tmpl

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages