upstream/mercurial-mirror Commit - r34807:afd7fd95

1

# hgweb/hgweb_mod.py - Web interface for a repository.

1

# hgweb/hgweb_mod.py - Web interface for a repository.

2

#

2

#

3

4

5

#

5

#

6

# This software may be used and distributed according to the terms of the

6

# This software may be used and distributed according to the terms of the

7

# GNU General Public License version 2 or any later version.

7

# GNU General Public License version 2 or any later version.

8

9

from __future__ import absolute_import

9

from __future__ import absolute_import

10

11

import contextlib

11

import contextlib

12

import os

12

import os

13

14

from .common import (

14

from .common import (

15

ErrorResponse,

15

ErrorResponse,

16

HTTP_BAD_REQUEST,

16

HTTP_BAD_REQUEST,

17

HTTP_NOT_FOUND,

17

HTTP_NOT_FOUND,

18

HTTP_NOT_MODIFIED,

18

HTTP_NOT_MODIFIED,

19

HTTP_OK,

19

HTTP_OK,

20

HTTP_SERVER_ERROR,

20

HTTP_SERVER_ERROR,

21

caching,

21

caching,

22

cspvalues,

22

cspvalues,

23

permhooks,

23

permhooks,

24

)

24

)

25

from .request import wsgirequest

25

from .request import wsgirequest

26

27

from .. import (

27

from .. import (

28

encoding,

28

encoding,

29

error,

29

error,

30

hg,

30

hg,

31

hook,

31

hook,

32

profiling,

32

profiling,

33

pycompat,

33

pycompat,

34

repoview,

34

repoview,

35

templatefilters,

35

templatefilters,

36

templater,

36

templater,

37

ui as uimod,

37

ui as uimod,

38

util,

38

util,

39

)

39

)

40

41

from . import (

41

from . import (

42

protocol,

42

protocol,

43

webcommands,

43

webcommands,

44

webutil,

44

webutil,

45

wsgicgi,

45

wsgicgi,

46

)

46

)

47

48

perms = {

48

perms = {

49

'changegroup': 'pull',

49

'changegroup': 'pull',

50

'changegroupsubset': 'pull',

50

'changegroupsubset': 'pull',

51

'getbundle': 'pull',

51

'getbundle': 'pull',

52

'stream_out': 'pull',

52

'stream_out': 'pull',

53

'listkeys': 'pull',

53

'listkeys': 'pull',

54

'unbundle': 'push',

54

'unbundle': 'push',

55

'pushkey': 'push',

55

'pushkey': 'push',

56

}

56

}

57

58

archivespecs = util.sortdict((

58

archivespecs = util.sortdict((

59

('zip', ('application/zip', 'zip', '.zip', None)),

59

('zip', ('application/zip', 'zip', '.zip', None)),

60

('gz', ('application/x-gzip', 'tgz', '.tar.gz', None)),

60

('gz', ('application/x-gzip', 'tgz', '.tar.gz', None)),

61

('bz2', ('application/x-bzip2', 'tbz2', '.tar.bz2', None)),

61

('bz2', ('application/x-bzip2', 'tbz2', '.tar.bz2', None)),

62

))

62

))

63

64

def getstyle(req, configfn, templatepath):

64

def getstyle(req, configfn, templatepath):

65

fromreq = req.form.get('style', [None])[0]

65

fromreq = req.form.get('style', [None])[0]

66

if fromreq is not None:

66

if fromreq is not None:

67

fromreq = pycompat.sysbytes(fromreq)

67

fromreq = pycompat.sysbytes(fromreq)

68

styles = (

68

styles = (

69

fromreq,

69

fromreq,

70

configfn('web', 'style'),

70

configfn('web', 'style'),

71

'paper',

71

'paper',

72

)

72

)

73

return styles, templater.stylemap(styles, templatepath)

73

return styles, templater.stylemap(styles, templatepath)

74

75

def makebreadcrumb(url, prefix=''):

75

def makebreadcrumb(url, prefix=''):

76

'''Return a 'URL breadcrumb' list

76

'''Return a 'URL breadcrumb' list

77

78

A 'URL breadcrumb' is a list of URL-name pairs,

78

A 'URL breadcrumb' is a list of URL-name pairs,

79

corresponding to each of the path items on a URL.

79

corresponding to each of the path items on a URL.

80

This can be used to create path navigation entries.

80

This can be used to create path navigation entries.

81

'''

81

'''

82

if url.endswith('/'):

82

if url.endswith('/'):

83

url = url[:-1]

83

url = url[:-1]

84

if prefix:

84

if prefix:

85

url = '/' + prefix + url

85

url = '/' + prefix + url

86

relpath = url

86

relpath = url

87

if relpath.startswith('/'):

87

if relpath.startswith('/'):

88

relpath = relpath[1:]

88

relpath = relpath[1:]

89

90

breadcrumb = []

90

breadcrumb = []

91

urlel = url

91

urlel = url

92

pathitems = [''] + relpath.split('/')

92

pathitems = [''] + relpath.split('/')

93

for pathel in reversed(pathitems):

93

for pathel in reversed(pathitems):

94

if not pathel or not urlel:

94

if not pathel or not urlel:

95

break

95

break

96

breadcrumb.append({'url': urlel, 'name': pathel})

96

breadcrumb.append({'url': urlel, 'name': pathel})

97

urlel = os.path.dirname(urlel)

97

urlel = os.path.dirname(urlel)

98

return reversed(breadcrumb)

98

return reversed(breadcrumb)

99

100

class requestcontext(object):

100

class requestcontext(object):

101

"""Holds state/context for an individual request.

101

"""Holds state/context for an individual request.

102

103

Servers can be multi-threaded. Holding state on the WSGI application

103

Servers can be multi-threaded. Holding state on the WSGI application

104

is prone to race conditions. Instances of this class exist to hold

104

is prone to race conditions. Instances of this class exist to hold

105

mutable and race-free state for requests.

105

mutable and race-free state for requests.

106

"""

106

"""

107

def __init__(self, app, repo):

107

def __init__(self, app, repo):

108

self.repo = repo

108

self.repo = repo

109

self.reponame = app.reponame

109

self.reponame = app.reponame

110

111

self.archivespecs = archivespecs

111

self.archivespecs = archivespecs

112

113

self.maxchanges = self.configint('web', 'maxchanges')

113

self.maxchanges = self.configint('web', 'maxchanges')

114

self.stripecount = self.configint('web', 'stripes')

114

self.stripecount = self.configint('web', 'stripes')

115

self.maxshortchanges = self.configint('web', 'maxshortchanges')

115

self.maxshortchanges = self.configint('web', 'maxshortchanges')

116

self.maxfiles = self.configint('web', 'maxfiles')

116

self.maxfiles = self.configint('web', 'maxfiles')

117

self.allowpull = self.configbool('web', 'allowpull')

117

self.allowpull = self.configbool('web', 'allowpull')

118

119

# we use untrusted=False to prevent a repo owner from using

119

# we use untrusted=False to prevent a repo owner from using

120

# web.templates in .hg/hgrc to get access to any file readable

120

# web.templates in .hg/hgrc to get access to any file readable

121

# by the user running the CGI script

121

# by the user running the CGI script

122

self.templatepath = self.config('web', 'templates', untrusted=False)

122

self.templatepath = self.config('web', 'templates', untrusted=False)

123

124

# This object is more expensive to build than simple config values.

124

# This object is more expensive to build than simple config values.

125

# It is shared across requests. The app will replace the object

125

# It is shared across requests. The app will replace the object

126

# if it is updated. Since this is a reference and nothing should

126

# if it is updated. Since this is a reference and nothing should

127

# modify the underlying object, it should be constant for the lifetime

127

# modify the underlying object, it should be constant for the lifetime

128

# of the request.

128

# of the request.

129

self.websubtable = app.websubtable

129

self.websubtable = app.websubtable

130

131

self.csp, self.nonce = cspvalues(self.repo.ui)

131

self.csp, self.nonce = cspvalues(self.repo.ui)

132

133

# Trust the settings from the .hg/hgrc files by default.

133

# Trust the settings from the .hg/hgrc files by default.

134

def config(self, section, name, default=uimod._unset, untrusted=True):

134

def config(self, section, name, default=uimod._unset, untrusted=True):

135

return self.repo.ui.config(section, name, default,

135

return self.repo.ui.config(section, name, default,

136

untrusted=untrusted)

136

untrusted=untrusted)

137

138

def configbool(self, section, name, default=uimod._unset, untrusted=True):

138

def configbool(self, section, name, default=uimod._unset, untrusted=True):

139

return self.repo.ui.configbool(section, name, default,

139

return self.repo.ui.configbool(section, name, default,

140

untrusted=untrusted)

140

untrusted=untrusted)

141

142

def configint(self, section, name, default=uimod._unset, untrusted=True):

142

def configint(self, section, name, default=uimod._unset, untrusted=True):

143

return self.repo.ui.configint(section, name, default,

143

return self.repo.ui.configint(section, name, default,

144

untrusted=untrusted)

144

untrusted=untrusted)

145

146

def configlist(self, section, name, default=uimod._unset, untrusted=True):

146

def configlist(self, section, name, default=uimod._unset, untrusted=True):

147

return self.repo.ui.configlist(section, name, default,

147

return self.repo.ui.configlist(section, name, default,

148

untrusted=untrusted)

148

untrusted=untrusted)

149

150

def archivelist(self, nodeid):

150

def archivelist(self, nodeid):

151

allowed = self.configlist('web', 'allow_archive')

151

allowed = self.configlist('web', 'allow_archive')

152

for typ, spec in self.archivespecs.iteritems():

152

for typ, spec in self.archivespecs.iteritems():

153

if typ in allowed or self.configbool('web', 'allow%s' % typ):

153

if typ in allowed or self.configbool('web', 'allow%s' % typ):

154

yield {'type': typ, 'extension': spec[2], 'node': nodeid}

154

yield {'type': typ, 'extension': spec[2], 'node': nodeid}

155

156

def templater(self, req):

156

def templater(self, req):

157

# determine scheme, port and server name

157

# determine scheme, port and server name

158

# this is needed to create absolute urls

158

# this is needed to create absolute urls

159

160

proto = req.env.get('wsgi.url_scheme')

160

proto = req.env.get('wsgi.url_scheme')

161

if proto == 'https':

161

if proto == 'https':

162

proto = 'https'

162

proto = 'https'

163

default_port = '443'

163

default_port = '443'

164

else:

164

else:

165

proto = 'http'

165

proto = 'http'

166

default_port = '80'

166

default_port = '80'

167

168

port = req.env[r'SERVER_PORT']

168

port = req.env[r'SERVER_PORT']

169

port = port != default_port and (r':' + port) or r''

169

port = port != default_port and (r':' + port) or r''

170

urlbase = r'%s://%s%s' % (proto, req.env[r'SERVER_NAME'], port)

170

urlbase = r'%s://%s%s' % (proto, req.env[r'SERVER_NAME'], port)

171

logourl = self.config('web', 'logourl')

171

logourl = self.config('web', 'logourl')

172

logoimg = self.config('web', 'logoimg')

172

logoimg = self.config('web', 'logoimg')

173

staticurl = self.config('web', 'staticurl') or req.url + 'static/'

173

staticurl = self.config('web', 'staticurl') or req.url + 'static/'

174

if not staticurl.endswith('/'):

174

if not staticurl.endswith('/'):

175

staticurl += '/'

175

staticurl += '/'

176

177

# some functions for the templater

177

# some functions for the templater

178

179

def motd(**map):

179

def motd(**map):

180

yield self.config('web', 'motd')

180

yield self.config('web', 'motd')

181

182

# figure out which style to use

182

# figure out which style to use

183

184

vars = {}

184

vars = {}

185

styles, (style, mapfile) = getstyle(req, self.config,

185

styles, (style, mapfile) = getstyle(req, self.config,

186

self.templatepath)

186

self.templatepath)

187

if style == styles[0]:

187

if style == styles[0]:

188

vars['style'] = style

188

vars['style'] = style

189

190

start = r'&' if req.url[-1] == r'?' else r'?'

190

start = '&' if req.url[-1] == r'?' else '?'

191

sessionvars = webutil.sessionvars(vars, start)

191

sessionvars = webutil.sessionvars(vars, start)

192

193

if not self.reponame:

193

if not self.reponame:

194

self.reponame = (self.config('web', 'name', '')

194

self.reponame = (self.config('web', 'name', '')

195

or req.env.get('REPO_NAME')

195

or req.env.get('REPO_NAME')

196

or req.url.strip('/') or self.repo.root)

196

or req.url.strip('/') or self.repo.root)

197

198

def websubfilter(text):

198

def websubfilter(text):

199

return templatefilters.websub(text, self.websubtable)

199

return templatefilters.websub(text, self.websubtable)

200

201

# create the templater

201

# create the templater

202

203

defaults = {

203

defaults = {

204

'url': req.url,

204

'url': req.url,

205

'logourl': logourl,

205

'logourl': logourl,

206

'logoimg': logoimg,

206

'logoimg': logoimg,

207

'staticurl': staticurl,

207

'staticurl': staticurl,

208

'urlbase': urlbase,

208

'urlbase': urlbase,

209

'repo': self.reponame,

209

'repo': self.reponame,

210

'encoding': encoding.encoding,

210

'encoding': encoding.encoding,

211

'motd': motd,

211

'motd': motd,

212

'sessionvars': sessionvars,

212

'sessionvars': sessionvars,

213

'pathdef': makebreadcrumb(req.url),

213

'pathdef': makebreadcrumb(req.url),

214

'style': style,

214

'style': style,

215

'nonce': self.nonce,

215

'nonce': self.nonce,

216

}

216

}

217

tmpl = templater.templater.frommapfile(mapfile,

217

tmpl = templater.templater.frommapfile(mapfile,

218

filters={'websub': websubfilter},

218

filters={'websub': websubfilter},

219

defaults=defaults)

219

defaults=defaults)

220

return tmpl

220

return tmpl

221

222

223

class hgweb(object):

223

class hgweb(object):

224

"""HTTP server for individual repositories.

224

"""HTTP server for individual repositories.

225

226

Instances of this class serve HTTP responses for a particular

226

Instances of this class serve HTTP responses for a particular

227

repository.

227

repository.

228

229

Instances are typically used as WSGI applications.

229

Instances are typically used as WSGI applications.

230

231

Some servers are multi-threaded. On these servers, there may

231

Some servers are multi-threaded. On these servers, there may

232

be multiple active threads inside __call__.

232

be multiple active threads inside __call__.

233

"""

233

"""

234

def __init__(self, repo, name=None, baseui=None):

234

def __init__(self, repo, name=None, baseui=None):

235

if isinstance(repo, str):

235

if isinstance(repo, str):

236

if baseui:

236

if baseui:

237

u = baseui.copy()

237

u = baseui.copy()

238

else:

238

else:

239

u = uimod.ui.load()

239

u = uimod.ui.load()

240

r = hg.repository(u, repo)

240

r = hg.repository(u, repo)

241

else:

241

else:

242

# we trust caller to give us a private copy

242

# we trust caller to give us a private copy

243

r = repo

243

r = repo

244

245

r.ui.setconfig('ui', 'report_untrusted', 'off', 'hgweb')

245

r.ui.setconfig('ui', 'report_untrusted', 'off', 'hgweb')

246

r.baseui.setconfig('ui', 'report_untrusted', 'off', 'hgweb')

246

r.baseui.setconfig('ui', 'report_untrusted', 'off', 'hgweb')

247

r.ui.setconfig('ui', 'nontty', 'true', 'hgweb')

247

r.ui.setconfig('ui', 'nontty', 'true', 'hgweb')

248

r.baseui.setconfig('ui', 'nontty', 'true', 'hgweb')

248

r.baseui.setconfig('ui', 'nontty', 'true', 'hgweb')

249

# resolve file patterns relative to repo root

249

# resolve file patterns relative to repo root

250

r.ui.setconfig('ui', 'forcecwd', r.root, 'hgweb')

250

r.ui.setconfig('ui', 'forcecwd', r.root, 'hgweb')

251

r.baseui.setconfig('ui', 'forcecwd', r.root, 'hgweb')

251

r.baseui.setconfig('ui', 'forcecwd', r.root, 'hgweb')

252

# displaying bundling progress bar while serving feel wrong and may

252

# displaying bundling progress bar while serving feel wrong and may

253

# break some wsgi implementation.

253

# break some wsgi implementation.

254

r.ui.setconfig('progress', 'disable', 'true', 'hgweb')

254

r.ui.setconfig('progress', 'disable', 'true', 'hgweb')

255

r.baseui.setconfig('progress', 'disable', 'true', 'hgweb')

255

r.baseui.setconfig('progress', 'disable', 'true', 'hgweb')

256

self._repos = [hg.cachedlocalrepo(self._webifyrepo(r))]

256

self._repos = [hg.cachedlocalrepo(self._webifyrepo(r))]

257

self._lastrepo = self._repos[0]

257

self._lastrepo = self._repos[0]

258

hook.redirect(True)

258

hook.redirect(True)

259

self.reponame = name

259

self.reponame = name

260

261

def _webifyrepo(self, repo):

261

def _webifyrepo(self, repo):

262

repo = getwebview(repo)

262

repo = getwebview(repo)

263

self.websubtable = webutil.getwebsubs(repo)

263

self.websubtable = webutil.getwebsubs(repo)

264

return repo

264

return repo

265

266

@contextlib.contextmanager

266

@contextlib.contextmanager

267

def _obtainrepo(self):

267

def _obtainrepo(self):

268

"""Obtain a repo unique to the caller.

268

"""Obtain a repo unique to the caller.

269

270

Internally we maintain a stack of cachedlocalrepo instances

270

Internally we maintain a stack of cachedlocalrepo instances

271

to be handed out. If one is available, we pop it and return it,

271

to be handed out. If one is available, we pop it and return it,

272

ensuring it is up to date in the process. If one is not available,

272

ensuring it is up to date in the process. If one is not available,

273

we clone the most recently used repo instance and return it.

273

we clone the most recently used repo instance and return it.

274

275

It is currently possible for the stack to grow without bounds

275

It is currently possible for the stack to grow without bounds

276

if the server allows infinite threads. However, servers should

276

if the server allows infinite threads. However, servers should

277

have a thread limit, thus establishing our limit.

277

have a thread limit, thus establishing our limit.

278

"""

278

"""

279

if self._repos:

279

if self._repos:

280

cached = self._repos.pop()

280

cached = self._repos.pop()

281

r, created = cached.fetch()

281

r, created = cached.fetch()

282

else:

282

else:

283

cached = self._lastrepo.copy()

283

cached = self._lastrepo.copy()

284

r, created = cached.fetch()

284

r, created = cached.fetch()

285

if created:

285

if created:

286

r = self._webifyrepo(r)

286

r = self._webifyrepo(r)

287

288

self._lastrepo = cached

288

self._lastrepo = cached

289

self.mtime = cached.mtime

289

self.mtime = cached.mtime

290

try:

290

try:

291

yield r

291

yield r

292

finally:

292

finally:

293

self._repos.append(cached)

293

self._repos.append(cached)

294

295

def run(self):

295

def run(self):

296

"""Start a server from CGI environment.

296

"""Start a server from CGI environment.

297

298

Modern servers should be using WSGI and should avoid this

298

Modern servers should be using WSGI and should avoid this

299

method, if possible.

299

method, if possible.

300

"""

300

"""

301

if not encoding.environ.get('GATEWAY_INTERFACE',

301

if not encoding.environ.get('GATEWAY_INTERFACE',

302

'').startswith("CGI/1."):

302

'').startswith("CGI/1."):

303

raise RuntimeError("This function is only intended to be "

303

raise RuntimeError("This function is only intended to be "

304

"called while running as a CGI script.")

304

"called while running as a CGI script.")

305

wsgicgi.launch(self)

305

wsgicgi.launch(self)

306

307

def __call__(self, env, respond):

307

def __call__(self, env, respond):

308

"""Run the WSGI application.

308

"""Run the WSGI application.

309

310

This may be called by multiple threads.

310

This may be called by multiple threads.

311

"""

311

"""

312

req = wsgirequest(env, respond)

312

req = wsgirequest(env, respond)

313

return self.run_wsgi(req)

313

return self.run_wsgi(req)

314

315

def run_wsgi(self, req):

315

def run_wsgi(self, req):

316

"""Internal method to run the WSGI application.

316

"""Internal method to run the WSGI application.

317

318

This is typically only called by Mercurial. External consumers

318

This is typically only called by Mercurial. External consumers

319

should be using instances of this class as the WSGI application.

319

should be using instances of this class as the WSGI application.

320

"""

320

"""

321

with self._obtainrepo() as repo:

321

with self._obtainrepo() as repo:

322

profile = repo.ui.configbool('profiling', 'enabled')

322

profile = repo.ui.configbool('profiling', 'enabled')

323

with profiling.profile(repo.ui, enabled=profile):

323

with profiling.profile(repo.ui, enabled=profile):

324

for r in self._runwsgi(req, repo):

324

for r in self._runwsgi(req, repo):

325

yield r

325

yield r

326

327

def _runwsgi(self, req, repo):

327

def _runwsgi(self, req, repo):

328

rctx = requestcontext(self, repo)

328

rctx = requestcontext(self, repo)

329

330

# This state is global across all threads.

330

# This state is global across all threads.

331

encoding.encoding = rctx.config('web', 'encoding')

331

encoding.encoding = rctx.config('web', 'encoding')

332

rctx.repo.ui.environ = req.env

332

rctx.repo.ui.environ = req.env

333

334

if rctx.csp:

334

if rctx.csp:

335

# hgwebdir may have added CSP header. Since we generate our own,

335

# hgwebdir may have added CSP header. Since we generate our own,

336

# replace it.

336

# replace it.

337

req.headers = [h for h in req.headers

337

req.headers = [h for h in req.headers

338

if h[0] != 'Content-Security-Policy']

338

if h[0] != 'Content-Security-Policy']

339

req.headers.append(('Content-Security-Policy', rctx.csp))

339

req.headers.append(('Content-Security-Policy', rctx.csp))

340

341

# work with CGI variables to create coherent structure

341

# work with CGI variables to create coherent structure

342

# use SCRIPT_NAME, PATH_INFO and QUERY_STRING as well as our REPO_NAME

342

# use SCRIPT_NAME, PATH_INFO and QUERY_STRING as well as our REPO_NAME

343

344

req.url = req.env[r'SCRIPT_NAME']

344

req.url = req.env[r'SCRIPT_NAME']

345

if not req.url.endswith('/'):

345

if not req.url.endswith('/'):

346

req.url += '/'

346

req.url += '/'

347

if req.env.get('REPO_NAME'):

347

if req.env.get('REPO_NAME'):

348

req.url += req.env[r'REPO_NAME'] + r'/'

348

req.url += req.env[r'REPO_NAME'] + r'/'

349

350

if r'PATH_INFO' in req.env:

350

if r'PATH_INFO' in req.env:

351

parts = req.env[r'PATH_INFO'].strip('/').split('/')

351

parts = req.env[r'PATH_INFO'].strip('/').split('/')

352

repo_parts = req.env.get(r'REPO_NAME', r'').split(r'/')

352

repo_parts = req.env.get(r'REPO_NAME', r'').split(r'/')

353

if parts[:len(repo_parts)] == repo_parts:

353

if parts[:len(repo_parts)] == repo_parts:

354

parts = parts[len(repo_parts):]

354

parts = parts[len(repo_parts):]

355

query = '/'.join(parts)

355

query = '/'.join(parts)

356

else:

356

else:

357

query = req.env[r'QUERY_STRING'].partition(r'&')[0]

357

query = req.env[r'QUERY_STRING'].partition(r'&')[0]

358

query = query.partition(r';')[0]

358

query = query.partition(r';')[0]

359

360

# process this if it's a protocol request

360

# process this if it's a protocol request

361

# protocol bits don't need to create any URLs

361

# protocol bits don't need to create any URLs

362

# and the clients always use the old URL structure

362

# and the clients always use the old URL structure

363

364

cmd = pycompat.sysbytes(req.form.get(r'cmd', [r''])[0])

364

cmd = pycompat.sysbytes(req.form.get(r'cmd', [r''])[0])

365

if protocol.iscmd(cmd):

365

if protocol.iscmd(cmd):

366

try:

366

try:

367

if query:

367

if query:

368

raise ErrorResponse(HTTP_NOT_FOUND)

368

raise ErrorResponse(HTTP_NOT_FOUND)

369

if cmd in perms:

369

if cmd in perms:

370

self.check_perm(rctx, req, perms[cmd])

370

self.check_perm(rctx, req, perms[cmd])

371

return protocol.call(rctx.repo, req, cmd)

371

return protocol.call(rctx.repo, req, cmd)

372

except ErrorResponse as inst:

372

except ErrorResponse as inst:

373

# A client that sends unbundle without 100-continue will

373

# A client that sends unbundle without 100-continue will

374

# break if we respond early.

374

# break if we respond early.

375

if (cmd == 'unbundle' and

375

if (cmd == 'unbundle' and

376

(req.env.get('HTTP_EXPECT',

376

(req.env.get('HTTP_EXPECT',

377

'').lower() != '100-continue') or

377

'').lower() != '100-continue') or

378

req.env.get('X-HgHttp2', '')):

378

req.env.get('X-HgHttp2', '')):

379

req.drain()

379

req.drain()

380

else:

380

else:

381

req.headers.append((r'Connection', r'Close'))

381

req.headers.append((r'Connection', r'Close'))

382

req.respond(inst, protocol.HGTYPE,

382

req.respond(inst, protocol.HGTYPE,

383

body='0\n%s\n' % inst)

383

body='0\n%s\n' % inst)

384

return ''

384

return ''

385

386

# translate user-visible url structure to internal structure

386

# translate user-visible url structure to internal structure

387

388

args = query.split('/', 2)

388

args = query.split('/', 2)

389

if r'cmd' not in req.form and args and args[0]:

389

if r'cmd' not in req.form and args and args[0]:

390

cmd = args.pop(0)

390

cmd = args.pop(0)

391

style = cmd.rfind('-')

391

style = cmd.rfind('-')

392

if style != -1:

392

if style != -1:

393

req.form['style'] = [cmd[:style]]

393

req.form['style'] = [cmd[:style]]

394

cmd = cmd[style + 1:]

394

cmd = cmd[style + 1:]

395

396

# avoid accepting e.g. style parameter as command

396

# avoid accepting e.g. style parameter as command

397

if util.safehasattr(webcommands, cmd):

397

if util.safehasattr(webcommands, cmd):

398

req.form[r'cmd'] = [cmd]

398

req.form[r'cmd'] = [cmd]

399

400

if cmd == 'static':

400

if cmd == 'static':

401

req.form['file'] = ['/'.join(args)]

401

req.form['file'] = ['/'.join(args)]

402

else:

402

else:

403

if args and args[0]:

403

if args and args[0]:

404

node = args.pop(0).replace('%2F', '/')

404

node = args.pop(0).replace('%2F', '/')

405

req.form['node'] = [node]

405

req.form['node'] = [node]

406

if args:

406

if args:

407

req.form['file'] = args

407

req.form['file'] = args

408

409

ua = req.env.get('HTTP_USER_AGENT', '')

409

ua = req.env.get('HTTP_USER_AGENT', '')

410

if cmd == 'rev' and 'mercurial' in ua:

410

if cmd == 'rev' and 'mercurial' in ua:

411

req.form['style'] = ['raw']

411

req.form['style'] = ['raw']

412

413

if cmd == 'archive':

413

if cmd == 'archive':

414

fn = req.form['node'][0]

414

fn = req.form['node'][0]

415

for type_, spec in rctx.archivespecs.iteritems():

415

for type_, spec in rctx.archivespecs.iteritems():

416

ext = spec[2]

416

ext = spec[2]

417

if fn.endswith(ext):

417

if fn.endswith(ext):

418

req.form['node'] = [fn[:-len(ext)]]

418

req.form['node'] = [fn[:-len(ext)]]

419

req.form['type'] = [type_]

419

req.form['type'] = [type_]

420

421

# process the web interface request

421

# process the web interface request

422

423

try:

423

try:

424

tmpl = rctx.templater(req)

424

tmpl = rctx.templater(req)

425

ctype = tmpl('mimetype', encoding=encoding.encoding)

425

ctype = tmpl('mimetype', encoding=encoding.encoding)

426

ctype = templater.stringify(ctype)

426

ctype = templater.stringify(ctype)

427

428

# check read permissions non-static content

428

# check read permissions non-static content

429

if cmd != 'static':

429

if cmd != 'static':

430

self.check_perm(rctx, req, None)

430

self.check_perm(rctx, req, None)

431

432

if cmd == '':

432

if cmd == '':

433

req.form[r'cmd'] = [tmpl.cache['default']]

433

req.form[r'cmd'] = [tmpl.cache['default']]

434

cmd = req.form[r'cmd'][0]

434

cmd = req.form[r'cmd'][0]

435

436

# Don't enable caching if using a CSP nonce because then it wouldn't

436

# Don't enable caching if using a CSP nonce because then it wouldn't

437

# be a nonce.

437

# be a nonce.

438

if rctx.configbool('web', 'cache') and not rctx.nonce:

438

if rctx.configbool('web', 'cache') and not rctx.nonce:

439

caching(self, req) # sets ETag header or raises NOT_MODIFIED

439

caching(self, req) # sets ETag header or raises NOT_MODIFIED

440

if cmd not in webcommands.__all__:

440

if cmd not in webcommands.__all__:

441

msg = 'no such method: %s' % cmd

441

msg = 'no such method: %s' % cmd

442

raise ErrorResponse(HTTP_BAD_REQUEST, msg)

442

raise ErrorResponse(HTTP_BAD_REQUEST, msg)

443

elif cmd == 'file' and r'raw' in req.form.get(r'style', []):

443

elif cmd == 'file' and r'raw' in req.form.get(r'style', []):

444

rctx.ctype = ctype

444

rctx.ctype = ctype

445

content = webcommands.rawfile(rctx, req, tmpl)

445

content = webcommands.rawfile(rctx, req, tmpl)

446

else:

446

else:

447

content = getattr(webcommands, cmd)(rctx, req, tmpl)

447

content = getattr(webcommands, cmd)(rctx, req, tmpl)

448

req.respond(HTTP_OK, ctype)

448

req.respond(HTTP_OK, ctype)

449

450

return content

450

return content

451

452

except (error.LookupError, error.RepoLookupError) as err:

452

except (error.LookupError, error.RepoLookupError) as err:

453

req.respond(HTTP_NOT_FOUND, ctype)

453

req.respond(HTTP_NOT_FOUND, ctype)

454

msg = str(err)

454

msg = str(err)

455

if (util.safehasattr(err, 'name') and

455

if (util.safehasattr(err, 'name') and

456

not isinstance(err, error.ManifestLookupError)):

456

not isinstance(err, error.ManifestLookupError)):

457

msg = 'revision not found: %s' % err.name

457

msg = 'revision not found: %s' % err.name

458

return tmpl('error', error=msg)

458

return tmpl('error', error=msg)

459

except (error.RepoError, error.RevlogError) as inst:

459

except (error.RepoError, error.RevlogError) as inst:

460

req.respond(HTTP_SERVER_ERROR, ctype)

460

req.respond(HTTP_SERVER_ERROR, ctype)

461

return tmpl('error', error=str(inst))

461

return tmpl('error', error=str(inst))

462

except ErrorResponse as inst:

462

except ErrorResponse as inst:

463

req.respond(inst, ctype)

463

req.respond(inst, ctype)

464

if inst.code == HTTP_NOT_MODIFIED:

464

if inst.code == HTTP_NOT_MODIFIED:

465

# Not allowed to return a body on a 304

465

# Not allowed to return a body on a 304

466

return ['']

466

return ['']

467

return tmpl('error', error=str(inst))

467

return tmpl('error', error=str(inst))

468

469

def check_perm(self, rctx, req, op):

469

def check_perm(self, rctx, req, op):

470

for permhook in permhooks:

470

for permhook in permhooks:

471

permhook(rctx, req, op)

471

permhook(rctx, req, op)

472

473

def getwebview(repo):

473

def getwebview(repo):

474

"""The 'web.view' config controls changeset filter to hgweb. Possible

474

"""The 'web.view' config controls changeset filter to hgweb. Possible

475

values are ``served``, ``visible`` and ``all``. Default is ``served``.

475

values are ``served``, ``visible`` and ``all``. Default is ``served``.

476

The ``served`` filter only shows changesets that can be pulled from the

476

The ``served`` filter only shows changesets that can be pulled from the

477

hgweb instance. The``visible`` filter includes secret changesets but

477

hgweb instance. The``visible`` filter includes secret changesets but

478

still excludes "hidden" one.

478

still excludes "hidden" one.

479

480

See the repoview module for details.

480

See the repoview module for details.

481

482

The option has been around undocumented since Mercurial 2.5, but no

482

The option has been around undocumented since Mercurial 2.5, but no

483

user ever asked about it. So we better keep it undocumented for now."""

483

user ever asked about it. So we better keep it undocumented for now."""

484

# experimental config: web.view

484

# experimental config: web.view

485

viewconfig = repo.ui.config('web', 'view', untrusted=True)

485

viewconfig = repo.ui.config('web', 'view', untrusted=True)

486

if viewconfig == 'all':

486

if viewconfig == 'all':

487

return repo.unfiltered()

487

return repo.unfiltered()

488

elif viewconfig in repoview.filtertable:

488

elif viewconfig in repoview.filtertable:

489

return repo.filtered(viewconfig)

489

return repo.filtered(viewconfig)

490

else:

490

else:

491

return repo.filtered('served')

491

return repo.filtered('served')

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

             # hgweb/hgweb_mod.py - Web interface for a repository.
             #
             # Copyright 21 May 2005 - (c) 2005 Jake Edge <jake@edge2.net>
             # Copyright 2005-2007 Matt Mackall <mpm@selenic.com>
             #
             # This software may be used and distributed according to the terms of the
             # GNU General Public License version 2 or any later version.
             from __future__ import absolute_import
             import contextlib
             import os
             from .common import (
                 ErrorResponse,
                 HTTP_BAD_REQUEST,
                 HTTP_NOT_FOUND,
                 HTTP_NOT_MODIFIED,
                 HTTP_OK,
                 HTTP_SERVER_ERROR,
                 caching,
                 cspvalues,
                 permhooks,
             )
             from .request import wsgirequest
             from .. import (
                 encoding,
                 error,
                 hg,
                 hook,
                 profiling,
                 pycompat,
                 repoview,
                 templatefilters,
                 templater,
                 ui as uimod,
                 util,
             )
             from . import (
                 protocol,
                 webcommands,
                 webutil,
                 wsgicgi,
             )
             perms = {
                 'changegroup': 'pull',
                 'changegroupsubset': 'pull',
                 'getbundle': 'pull',
                 'stream_out': 'pull',
                 'listkeys': 'pull',
                 'unbundle': 'push',
                 'pushkey': 'push',
             }
             archivespecs = util.sortdict((
                 ('zip', ('application/zip', 'zip', '.zip', None)),
                 ('gz', ('application/x-gzip', 'tgz', '.tar.gz', None)),
                 ('bz2', ('application/x-bzip2', 'tbz2', '.tar.bz2', None)),
             ))
             def getstyle(req, configfn, templatepath):
                 fromreq = req.form.get('style', [None])[0]
                 if fromreq is not None:
                     fromreq = pycompat.sysbytes(fromreq)
                 styles = (
                     fromreq,
                     configfn('web', 'style'),
                     'paper',
                 )
                 return styles, templater.stylemap(styles, templatepath)
             def makebreadcrumb(url, prefix=''):
                 '''Return a 'URL breadcrumb' list
                 A 'URL breadcrumb' is a list of URL-name pairs,
                 corresponding to each of the path items on a URL.
                 This can be used to create path navigation entries.
                 '''
                 if url.endswith('/'):
                     url = url[:-1]
                 if prefix:
                     url = '/' + prefix + url
                 relpath = url
                 if relpath.startswith('/'):
                     relpath = relpath[1:]
                 breadcrumb = []
                 urlel = url
                 pathitems = [''] + relpath.split('/')
                 for pathel in reversed(pathitems):
                     if not pathel or not urlel:
                         break
                     breadcrumb.append({'url': urlel, 'name': pathel})
                     urlel = os.path.dirname(urlel)
                 return reversed(breadcrumb)
             class requestcontext(object):
                 """Holds state/context for an individual request.
                 Servers can be multi-threaded. Holding state on the WSGI application
                 is prone to race conditions. Instances of this class exist to hold
                 mutable and race-free state for requests.
                 """
                 def __init__(self, app, repo):
                     self.repo = repo
                     self.reponame = app.reponame
                     self.archivespecs = archivespecs
                     self.maxchanges = self.configint('web', 'maxchanges')
                     self.stripecount = self.configint('web', 'stripes')
                     self.maxshortchanges = self.configint('web', 'maxshortchanges')
                     self.maxfiles = self.configint('web', 'maxfiles')
                     self.allowpull = self.configbool('web', 'allowpull')
                     # we use untrusted=False to prevent a repo owner from using
                     # web.templates in .hg/hgrc to get access to any file readable
                     # by the user running the CGI script
                     self.templatepath = self.config('web', 'templates', untrusted=False)
                     # This object is more expensive to build than simple config values.
                     # It is shared across requests. The app will replace the object
                     # if it is updated. Since this is a reference and nothing should
                     # modify the underlying object, it should be constant for the lifetime
                     # of the request.
                     self.websubtable = app.websubtable
                     self.csp, self.nonce = cspvalues(self.repo.ui)
                 # Trust the settings from the .hg/hgrc files by default.
                 def config(self, section, name, default=uimod._unset, untrusted=True):
                     return self.repo.ui.config(section, name, default,
                                                untrusted=untrusted)
                 def configbool(self, section, name, default=uimod._unset, untrusted=True):
                     return self.repo.ui.configbool(section, name, default,
                                                    untrusted=untrusted)
                 def configint(self, section, name, default=uimod._unset, untrusted=True):
                     return self.repo.ui.configint(section, name, default,
                                                   untrusted=untrusted)
                 def configlist(self, section, name, default=uimod._unset, untrusted=True):
                     return self.repo.ui.configlist(section, name, default,
                                                    untrusted=untrusted)
                 def archivelist(self, nodeid):
                     allowed = self.configlist('web', 'allow_archive')
                     for typ, spec in self.archivespecs.iteritems():
                         if typ in allowed or self.configbool('web', 'allow%s' % typ):
                             yield {'type': typ, 'extension': spec[2], 'node': nodeid}
                 def templater(self, req):
                     # determine scheme, port and server name
                     # this is needed to create absolute urls
                     proto = req.env.get('wsgi.url_scheme')
                     if proto == 'https':
                         proto = 'https'
                         default_port = '443'
                     else:
                         proto = 'http'
                         default_port = '80'
                     port = req.env[r'SERVER_PORT']
                     port = port != default_port and (r':' + port) or r''
                     urlbase = r'%s://%s%s' % (proto, req.env[r'SERVER_NAME'], port)
                     logourl = self.config('web', 'logourl')
                     logoimg = self.config('web', 'logoimg')
                     staticurl = self.config('web', 'staticurl') or req.url + 'static/'
                     if not staticurl.endswith('/'):
                         staticurl += '/'
                     # some functions for the templater
                     def motd(**map):
                         yield self.config('web', 'motd')
                     # figure out which style to use
                     vars = {}
                     styles, (style, mapfile) = getstyle(req, self.config,
                                                         self.templatepath)
                     if style == styles[0]:
                         vars['style'] = style
-                    start = r'&' if req.url[-1] == r'?' else r'?'
+                    start = '&' if req.url[-1] == r'?' else '?'
                     sessionvars = webutil.sessionvars(vars, start)
                     if not self.reponame:
                         self.reponame = (self.config('web', 'name', '')
                                          or req.env.get('REPO_NAME')
                                          or req.url.strip('/') or self.repo.root)
                     def websubfilter(text):
                         return templatefilters.websub(text, self.websubtable)
                     # create the templater
                     defaults = {
                         'url': req.url,
                         'logourl': logourl,
                         'logoimg': logoimg,
                         'staticurl': staticurl,
                         'urlbase': urlbase,
                         'repo': self.reponame,
                         'encoding': encoding.encoding,
                         'motd': motd,
                         'sessionvars': sessionvars,
                         'pathdef': makebreadcrumb(req.url),
                         'style': style,
                         'nonce': self.nonce,
                     }
                     tmpl = templater.templater.frommapfile(mapfile,
                                                            filters={'websub': websubfilter},
                                                            defaults=defaults)
                     return tmpl
             class hgweb(object):
                 """HTTP server for individual repositories.
                 Instances of this class serve HTTP responses for a particular
                 repository.
                 Instances are typically used as WSGI applications.
                 Some servers are multi-threaded. On these servers, there may
                 be multiple active threads inside __call__.
                 """
                 def __init__(self, repo, name=None, baseui=None):
                     if isinstance(repo, str):
                         if baseui:
                             u = baseui.copy()
                         else:
                             u = uimod.ui.load()
                         r = hg.repository(u, repo)
                     else:
                         # we trust caller to give us a private copy
                         r = repo
                     r.ui.setconfig('ui', 'report_untrusted', 'off', 'hgweb')
                     r.baseui.setconfig('ui', 'report_untrusted', 'off', 'hgweb')
                     r.ui.setconfig('ui', 'nontty', 'true', 'hgweb')
                     r.baseui.setconfig('ui', 'nontty', 'true', 'hgweb')
                     # resolve file patterns relative to repo root
                     r.ui.setconfig('ui', 'forcecwd', r.root, 'hgweb')
                     r.baseui.setconfig('ui', 'forcecwd', r.root, 'hgweb')
                     # displaying bundling progress bar while serving feel wrong and may
                     # break some wsgi implementation.
                     r.ui.setconfig('progress', 'disable', 'true', 'hgweb')
                     r.baseui.setconfig('progress', 'disable', 'true', 'hgweb')
                     self._repos = [hg.cachedlocalrepo(self._webifyrepo(r))]
                     self._lastrepo = self._repos[0]
                     hook.redirect(True)
                     self.reponame = name
                 def _webifyrepo(self, repo):
                     repo = getwebview(repo)
                     self.websubtable = webutil.getwebsubs(repo)
                     return repo
                 @contextlib.contextmanager
                 def _obtainrepo(self):
                     """Obtain a repo unique to the caller.
                     Internally we maintain a stack of cachedlocalrepo instances
                     to be handed out. If one is available, we pop it and return it,
                     ensuring it is up to date in the process. If one is not available,
                     we clone the most recently used repo instance and return it.
                     It is currently possible for the stack to grow without bounds
                     if the server allows infinite threads. However, servers should
                     have a thread limit, thus establishing our limit.
                     """
                     if self._repos:
                         cached = self._repos.pop()
                         r, created = cached.fetch()
                     else:
                         cached = self._lastrepo.copy()
                         r, created = cached.fetch()
                     if created:
                         r = self._webifyrepo(r)
                     self._lastrepo = cached
                     self.mtime = cached.mtime
                     try:
                         yield r
                     finally:
                         self._repos.append(cached)
                 def run(self):
                     """Start a server from CGI environment.
                     Modern servers should be using WSGI and should avoid this
                     method, if possible.
                     """
                     if not encoding.environ.get('GATEWAY_INTERFACE',
                                                 '').startswith("CGI/1."):
                         raise RuntimeError("This function is only intended to be "
                                            "called while running as a CGI script.")
                     wsgicgi.launch(self)
                 def __call__(self, env, respond):
                     """Run the WSGI application.
                     This may be called by multiple threads.
                     """
                     req = wsgirequest(env, respond)
                     return self.run_wsgi(req)
                 def run_wsgi(self, req):
                     """Internal method to run the WSGI application.
                     This is typically only called by Mercurial. External consumers
                     should be using instances of this class as the WSGI application.
                     """
                     with self._obtainrepo() as repo:
                         profile = repo.ui.configbool('profiling', 'enabled')
                         with profiling.profile(repo.ui, enabled=profile):
                             for r in self._runwsgi(req, repo):
                                 yield r
                 def _runwsgi(self, req, repo):
                     rctx = requestcontext(self, repo)
                     # This state is global across all threads.
                     encoding.encoding = rctx.config('web', 'encoding')
                     rctx.repo.ui.environ = req.env
                     if rctx.csp:
                         # hgwebdir may have added CSP header. Since we generate our own,
                         # replace it.
                         req.headers = [h for h in req.headers
                                        if h[0] != 'Content-Security-Policy']
                         req.headers.append(('Content-Security-Policy', rctx.csp))
                     # work with CGI variables to create coherent structure
                     # use SCRIPT_NAME, PATH_INFO and QUERY_STRING as well as our REPO_NAME
                     req.url = req.env[r'SCRIPT_NAME']
                     if not req.url.endswith('/'):
                         req.url += '/'
                     if req.env.get('REPO_NAME'):
                         req.url += req.env[r'REPO_NAME'] + r'/'
                     if r'PATH_INFO' in req.env:
                         parts = req.env[r'PATH_INFO'].strip('/').split('/')
                         repo_parts = req.env.get(r'REPO_NAME', r'').split(r'/')
                         if parts[:len(repo_parts)] == repo_parts:
                             parts = parts[len(repo_parts):]
                         query = '/'.join(parts)
                     else:
                         query = req.env[r'QUERY_STRING'].partition(r'&')[0]
                         query = query.partition(r';')[0]
                     # process this if it's a protocol request
                     # protocol bits don't need to create any URLs
                     # and the clients always use the old URL structure
                     cmd = pycompat.sysbytes(req.form.get(r'cmd', [r''])[0])
                     if protocol.iscmd(cmd):
                         try:
                             if query:
                                 raise ErrorResponse(HTTP_NOT_FOUND)
                             if cmd in perms:
                                 self.check_perm(rctx, req, perms[cmd])
                             return protocol.call(rctx.repo, req, cmd)
                         except ErrorResponse as inst:
                             # A client that sends unbundle without 100-continue will
                             # break if we respond early.
                             if (cmd == 'unbundle' and
                                 (req.env.get('HTTP_EXPECT',
                                              '').lower() != '100-continue') or
                                 req.env.get('X-HgHttp2', '')):
                                 req.drain()
                             else:
                                 req.headers.append((r'Connection', r'Close'))
                             req.respond(inst, protocol.HGTYPE,
                                         body='0\n%s\n' % inst)
                             return ''
                     # translate user-visible url structure to internal structure
                     args = query.split('/', 2)
                     if r'cmd' not in req.form and args and args[0]:
                         cmd = args.pop(0)
                         style = cmd.rfind('-')
                         if style != -1:
                             req.form['style'] = [cmd[:style]]
                             cmd = cmd[style + 1:]
                         # avoid accepting e.g. style parameter as command
                         if util.safehasattr(webcommands, cmd):
                             req.form[r'cmd'] = [cmd]
                         if cmd == 'static':
                             req.form['file'] = ['/'.join(args)]
                         else:
                             if args and args[0]:
                                 node = args.pop(0).replace('%2F', '/')
                                 req.form['node'] = [node]
                             if args:
                                 req.form['file'] = args
                         ua = req.env.get('HTTP_USER_AGENT', '')
                         if cmd == 'rev' and 'mercurial' in ua:
                             req.form['style'] = ['raw']
                         if cmd == 'archive':
                             fn = req.form['node'][0]
                             for type_, spec in rctx.archivespecs.iteritems():
                                 ext = spec[2]
                                 if fn.endswith(ext):
                                     req.form['node'] = [fn[:-len(ext)]]
                                     req.form['type'] = [type_]
                     # process the web interface request
                     try:
                         tmpl = rctx.templater(req)
                         ctype = tmpl('mimetype', encoding=encoding.encoding)
                         ctype = templater.stringify(ctype)
                         # check read permissions non-static content
                         if cmd != 'static':
                             self.check_perm(rctx, req, None)
                         if cmd == '':
                             req.form[r'cmd'] = [tmpl.cache['default']]
                             cmd = req.form[r'cmd'][0]
                         # Don't enable caching if using a CSP nonce because then it wouldn't
                         # be a nonce.
                         if rctx.configbool('web', 'cache') and not rctx.nonce:
                             caching(self, req) # sets ETag header or raises NOT_MODIFIED
                         if cmd not in webcommands.__all__:
                             msg = 'no such method: %s' % cmd
                             raise ErrorResponse(HTTP_BAD_REQUEST, msg)
                         elif cmd == 'file' and r'raw' in req.form.get(r'style', []):
                             rctx.ctype = ctype
                             content = webcommands.rawfile(rctx, req, tmpl)
                         else:
                             content = getattr(webcommands, cmd)(rctx, req, tmpl)
                             req.respond(HTTP_OK, ctype)
                         return content
                     except (error.LookupError, error.RepoLookupError) as err:
                         req.respond(HTTP_NOT_FOUND, ctype)
                         msg = str(err)
                         if (util.safehasattr(err, 'name') and
                             not isinstance(err,  error.ManifestLookupError)):
                             msg = 'revision not found: %s' % err.name
                         return tmpl('error', error=msg)
                     except (error.RepoError, error.RevlogError) as inst:
                         req.respond(HTTP_SERVER_ERROR, ctype)
                         return tmpl('error', error=str(inst))
                     except ErrorResponse as inst:
                         req.respond(inst, ctype)
                         if inst.code == HTTP_NOT_MODIFIED:
                             # Not allowed to return a body on a 304
                             return ['']
                         return tmpl('error', error=str(inst))
                 def check_perm(self, rctx, req, op):
                     for permhook in permhooks:
                         permhook(rctx, req, op)
             def getwebview(repo):
                 """The 'web.view' config controls changeset filter to hgweb. Possible
                 values are ``served``, ``visible`` and ``all``. Default is ``served``.
                 The ``served`` filter only shows changesets that can be pulled from the
                 hgweb instance.  The``visible`` filter includes secret changesets but
                 still excludes "hidden" one.
                 See the repoview module for details.
                 The option has been around undocumented since Mercurial 2.5, but no
                 user ever asked about it. So we better keep it undocumented for now."""
                 # experimental config: web.view
                 viewconfig = repo.ui.config('web', 'view', untrusted=True)
                 if viewconfig == 'all':
                     return repo.unfiltered()
                 elif viewconfig in repoview.filtertable:
                     return repo.filtered(viewconfig)
                 else:
                     return repo.filtered('served')