upstream/mercurial-mirror Files · tests/test-hgweb-auth.py

hgweb: do not ignore [auth] if url has a username (issue2822)...

hgweb: do not ignore [auth] if url has a username (issue2822) The [auth] section was ignored when handling URLs like: http://user@example.com/foo Instead, we look in [auth] for an entry matching the URL and supplied user name. Entries without username can match URL with a username. Prefix length ties are resolved in favor of entries matching the username. With: foo.prefix = http://example.org foo.username = user foo.password = password bar.prefix = http://example.org/bar and the input URL: http://user@example.org/bar the 'bar' entry will be selected because of prefix length, therefore prompting for a password. This behaviour ensure that entries selection is consistent when looking for credentials or for certificates, and that certificates can be picked even if their entries do no define usernames while the URL does. Additionally, entries without a username matched against a username are returned as if they did have requested username set to avoid prompting again for a username if the password is not set. v2: reparse the URL in readauthforuri() to handle HTTP and HTTPS similarly. v3: allow unset usernames to match URL usernames to pick certificates. Resolve prefix length ties in favor of entries with usernames.

Patrick Mezard - - Load All Authors

File last commit:

r15005:4a43e23b 1.9.1 stable


                r15005:4a43e23b

1.9.1 stable

Download file

             test-hgweb-auth.py
        
                    97 lines
            
             | 3.0 KiB
            
                | text/x-python
            
             |
                PythonLexer
            
             / tests / test-hgweb-auth.py
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      from mercurial import demandimport; demandimport.enable()

      from mercurial import ui, util

      from mercurial import url

      from mercurial.error import Abort

      class myui(ui.ui):

          def interactive(self):

              return False

      origui = myui()

      def writeauth(items):

          ui = origui.copy()

          for name, value in items.iteritems():

              ui.setconfig('auth', name, value)

          return ui

      def dumpdict(dict):

          return '{' + ', '.join(['%s: %s' % (k, dict[k])

                                  for k in sorted(dict.iterkeys())]) + '}'

      def test(auth, urls=None):

          print 'CFG:', dumpdict(auth)

          prefixes = set()

          for k in auth:

              prefixes.add(k.split('.', 1)[0])

          for p in prefixes:

              for name in ('.username', '.password'):

                  if (p + name) not in auth:

                      auth[p + name] = p

          auth = dict((k, v) for k, v in auth.iteritems() if v is not None)

          ui = writeauth(auth)

          def _test(uri):

              print 'URI:', uri

              try:

                  pm = url.passwordmgr(ui)

                  authinfo = util.url(uri).authinfo()[1]

                  if authinfo is not None:

                      pm.add_password(*authinfo)

                  print '    ', pm.find_user_password('test', uri)

              except Abort, e:

                  print 'abort'

          if not urls:

              urls = [

                  'http://example.org/foo',

                  'http://example.org/foo/bar',

                  'http://example.org/bar',

                  'https://example.org/foo',

                  'https://example.org/foo/bar',

                  'https://example.org/bar',

                  'https://x@example.org/bar',

                  'https://y@example.org/bar',

                  ]

          for u in urls:

              _test(u)

      print '\n*** Test in-uri schemes\n'

      test({'x.prefix': 'http://example.org'})

      test({'x.prefix': 'https://example.org'})

      test({'x.prefix': 'http://example.org', 'x.schemes': 'https'})

      test({'x.prefix': 'https://example.org', 'x.schemes': 'http'})

      print '\n*** Test separately configured schemes\n'

      test({'x.prefix': 'example.org', 'x.schemes': 'http'})

      test({'x.prefix': 'example.org', 'x.schemes': 'https'})

      test({'x.prefix': 'example.org', 'x.schemes': 'http https'})

      print '\n*** Test prefix matching\n'

      test({'x.prefix': 'http://example.org/foo',

            'y.prefix': 'http://example.org/bar'})

      test({'x.prefix': 'http://example.org/foo',

            'y.prefix': 'http://example.org/foo/bar'})

      test({'x.prefix': '*', 'y.prefix': 'https://example.org/bar'})

      print '\n*** Test user matching\n'

      test({'x.prefix': 'http://example.org/foo',

            'x.username': None,

            'x.password': 'xpassword'},

           urls=['http://y@example.org/foo'])

      test({'x.prefix': 'http://example.org/foo',

            'x.username': None,

            'x.password': 'xpassword',

            'y.prefix': 'http://example.org/foo',

            'y.username': 'y',

            'y.password': 'ypassword'},

           urls=['http://y@example.org/foo'])

      test({'x.prefix': 'http://example.org/foo/bar',

            'x.username': None,

            'x.password': 'xpassword',

            'y.prefix': 'http://example.org/foo',

            'y.username': 'y',

            'y.password': 'ypassword'},

           urls=['http://y@example.org/foo/bar'])

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				from mercurial import demandimport; demandimport.enable()
				from mercurial import ui, util
				from mercurial import url
				from mercurial.error import Abort

				class myui(ui.ui):
				def interactive(self):
				return False

				origui = myui()

				def writeauth(items):
				ui = origui.copy()
				for name, value in items.iteritems():
				ui.setconfig('auth', name, value)
				return ui

				def dumpdict(dict):
				return '{' + ', '.join(['%s: %s' % (k, dict[k])
				for k in sorted(dict.iterkeys())]) + '}'

				def test(auth, urls=None):
				print 'CFG:', dumpdict(auth)
				prefixes = set()
				for k in auth:
				prefixes.add(k.split('.', 1)[0])
				for p in prefixes:
				for name in ('.username', '.password'):
				if (p + name) not in auth:
				auth[p + name] = p
				auth = dict((k, v) for k, v in auth.iteritems() if v is not None)

				ui = writeauth(auth)

				def _test(uri):
				print 'URI:', uri
				try:
				pm = url.passwordmgr(ui)
				authinfo = util.url(uri).authinfo()[1]
				if authinfo is not None:
				pm.add_password(*authinfo)
				print ' ', pm.find_user_password('test', uri)
				except Abort, e:
				print 'abort'

				if not urls:
				urls = [
				'http://example.org/foo',
				'http://example.org/foo/bar',
				'http://example.org/bar',
				'https://example.org/foo',
				'https://example.org/foo/bar',
				'https://example.org/bar',
				'https://x@example.org/bar',
				'https://y@example.org/bar',
				]
				for u in urls:
				_test(u)


				print '\n*** Test in-uri schemes\n'
				test({'x.prefix': 'http://example.org'})
				test({'x.prefix': 'https://example.org'})
				test({'x.prefix': 'http://example.org', 'x.schemes': 'https'})
				test({'x.prefix': 'https://example.org', 'x.schemes': 'http'})

				print '\n*** Test separately configured schemes\n'
				test({'x.prefix': 'example.org', 'x.schemes': 'http'})
				test({'x.prefix': 'example.org', 'x.schemes': 'https'})
				test({'x.prefix': 'example.org', 'x.schemes': 'http https'})

				print '\n*** Test prefix matching\n'
				test({'x.prefix': 'http://example.org/foo',
				'y.prefix': 'http://example.org/bar'})
				test({'x.prefix': 'http://example.org/foo',
				'y.prefix': 'http://example.org/foo/bar'})
				test({'x.prefix': '*', 'y.prefix': 'https://example.org/bar'})

				print '\n*** Test user matching\n'
				test({'x.prefix': 'http://example.org/foo',
				'x.username': None,
				'x.password': 'xpassword'},
				urls=['http://y@example.org/foo'])
				test({'x.prefix': 'http://example.org/foo',
				'x.username': None,
				'x.password': 'xpassword',
				'y.prefix': 'http://example.org/foo',
				'y.username': 'y',
				'y.password': 'ypassword'},
				urls=['http://y@example.org/foo'])
				test({'x.prefix': 'http://example.org/foo/bar',
				'x.username': None,
				'x.password': 'xpassword',
				'y.prefix': 'http://example.org/foo',
				'y.username': 'y',
				'y.password': 'ypassword'},
				urls=['http://y@example.org/foo/bar'])