Changeset - 94ef0b609d17
Parent rev.
Child rev.
[Not reviewed]
beta
0 2 0
Marcin Kuzminski - 13 years ago 2012-06-21 17:48:41
marcin@python-works.com
possible fix for #486 undefined variable username
- cleaned a code on git/hg middleware
2 files changed with 26 insertions and 29 deletions:
rhodecode/lib/middleware/simplegit.py
13
14
rhodecode/lib/middleware/simplehg.py
13
15
0 comments (0 inline, 0 general)
rhodecode/lib/middleware/simplegit.py
Show inline comments
 
@@ -167,21 +167,20 @@ class SimpleGit(BaseVCSController):
 
                #==============================================================
 
                # CHECK PERMISSIONS FOR THIS REQUEST USING GIVEN USERNAME
 
                #==============================================================
 
                if action in ['pull', 'push']:
 
                    try:
 
                        user = self.__get_user(username)
 
                        if user is None or not user.active:
 
                            return HTTPForbidden()(environ, start_response)
 
                        username = user.username
 
                    except:
 
                        log.error(traceback.format_exc())
 
                        return HTTPInternalServerError()(environ,
 
                                                         start_response)
 
                try:
 
                    user = self.__get_user(username)
 
                    if user is None or not user.active:
 
                        return HTTPForbidden()(environ, start_response)
 
                    username = user.username
 
                except:
 
                    log.error(traceback.format_exc())
 
                    return HTTPInternalServerError()(environ, start_response)
 

			




	
	
	
		
 
                    #check permissions for this repository

			




	
	
	
		
 
                    perm = self._check_permission(action, user, repo_name)

			




	
	
	
		
 
                    if perm is not True:

			




	
	
	
		
 
                        return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                #check permissions for this repository

			




	
	
	
		
 
                perm = self._check_permission(action, user, repo_name)

			




	
	
	
		
 
                if perm is not True:

			




	
	
	
		
 
                    return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
        extras = {

			




	
	
	
		
 
            'ip': ipaddr,

			




	
	
	
		
 
            'username': username,

			




        

    


    
    

    

        

                

                    rhodecode/lib/middleware/simplehg.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -70,7 +70,7 @@ class SimpleHg(BaseVCSController):

			




	
	
	
		
 
            return self.application(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
        ipaddr = self._get_ip_addr(environ)

			




	
	
	
		
 

			




	
	
	
		
 
        username = None 

			




	
	
	
		
 
        # skip passing error to error controller

			




	
	
	
		
 
        environ['pylons.status_code_redirect'] = True

			




	
	
	
		
 

			




	
	
		
 
@@ -131,21 +131,19 @@ class SimpleHg(BaseVCSController):

			




	
	
	
		
 
                #==============================================================

			




	
	
	
		
 
                # CHECK PERMISSIONS FOR THIS REQUEST USING GIVEN USERNAME

			




	
	
	
		
 
                #==============================================================

			




	
	
	
		
 
                if action in ['pull', 'push']:

			




	
	
	
		
 
                    try:

			




	
	
	
		
 
                        user = self.__get_user(username)

			




	
	
	
		
 
                        if user is None or not user.active:

			




	
	
	
		
 
                            return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                        username = user.username

			




	
	
	
		
 
                    except:

			




	
	
	
		
 
                        log.error(traceback.format_exc())

			




	
	
	
		
 
                        return HTTPInternalServerError()(environ,

			




	
	
	
		
 
                                                         start_response)

			




	
	
	
		
 
                try:

			




	
	
	
		
 
                    user = self.__get_user(username)

			




	
	
	
		
 
                    if user is None or not user.active:

			




	
	
	
		
 
                        return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                    username = user.username

			




	
	
	
		
 
                except:

			




	
	
	
		
 
                    log.error(traceback.format_exc())

			




	
	
	
		
 
                    return HTTPInternalServerError()(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
                    #check permissions for this repository

			




	
	
	
		
 
                    perm = self._check_permission(action, user, repo_name)

			




	
	
	
		
 
                    if perm is not True:

			




	
	
	
		
 
                        return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                #check permissions for this repository

			




	
	
	
		
 
                perm = self._check_permission(action, user, repo_name)

			




	
	
	
		
 
                if perm is not True:

			




	
	
	
		
 
                    return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
        # extras are injected into mercurial UI object and later available

			




	
	
	
		
 
        # in hg hooks executed by rhodecode

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.