Changeset - 94ef0b609d17
Parent rev.
Child rev.
[Not reviewed]
beta
0 2 0
Marcin Kuzminski - 13 years ago 2012-06-21 17:48:41
marcin@python-works.com
possible fix for #486 undefined variable username
- cleaned a code on git/hg middleware
2 files changed with 26 insertions and 29 deletions:
rhodecode/lib/middleware/simplegit.py
13
14
rhodecode/lib/middleware/simplehg.py
13
15
0 comments (0 inline, 0 general)
rhodecode/lib/middleware/simplegit.py
Show inline comments
 
@@ -158,39 +158,38 @@ class SimpleGit(BaseVCSController):
 
                        safe_str(self.config['rhodecode_realm'])
 
                    result = self.authenticate(environ)
 
                    if isinstance(result, str):
 
                        AUTH_TYPE.update(environ, 'basic')
 
                        REMOTE_USER.update(environ, result)
 
                        username = result
 
                    else:
 
                        return result.wsgi_application(environ, start_response)
 

			




	
	
	
		
 
                #==============================================================

			




	
	
	
		
 
                # CHECK PERMISSIONS FOR THIS REQUEST USING GIVEN USERNAME

			




	
	
	
		
 
                #==============================================================

			




	
	
	
		
 
                if action in ['pull', 'push']:

			




	
	
	
		
 
                    try:

			




	
	
	
		
 
                        user = self.__get_user(username)

			




	
	
	
		
 
                        if user is None or not user.active:

			




	
	
	
		
 
                            return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                        username = user.username

			




	
	
	
		
 
                    except:

			




	
	
	
		
 
                        log.error(traceback.format_exc())

			




	
	
	
		
 
                        return HTTPInternalServerError()(environ,

			




	
	
	
		
 
                                                         start_response)

			




	
	
	
		
 
                try:

			




	
	
	
		
 
                    user = self.__get_user(username)

			




	
	
	
		
 
                    if user is None or not user.active:

			




	
	
	
		
 
                        return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                    username = user.username

			




	
	
	
		
 
                except:

			




	
	
	
		
 
                    log.error(traceback.format_exc())

			




	
	
	
		
 
                    return HTTPInternalServerError()(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
                    #check permissions for this repository

			




	
	
	
		
 
                    perm = self._check_permission(action, user, repo_name)

			




	
	
	
		
 
                    if perm is not True:

			




	
	
	
		
 
                        return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                #check permissions for this repository

			




	
	
	
		
 
                perm = self._check_permission(action, user, repo_name)

			




	
	
	
		
 
                if perm is not True:

			




	
	
	
		
 
                    return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
        extras = {

			




	
	
	
		
 
            'ip': ipaddr,

			




	
	
	
		
 
            'username': username,

			




	
	
	
		
 
            'action': action,

			




	
	
	
		
 
            'repository': repo_name,

			




	
	
	
		
 
            'scm': 'git',

			




	
	
	
		
 
        }

			




	
	
	
		
 

			




	
	
	
		
 
        #===================================================================

			




	
	
	
		
 
        # GIT REQUEST HANDLING

			




	
	
	
		
 
        #===================================================================

			




	
	
	
		
 
        repo_path = os.path.join(safe_str(self.basepath), safe_str(repo_name))

			




        

    


    
    

    

        

                

                    rhodecode/lib/middleware/simplehg.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -61,25 +61,25 @@ def is_mercurial(environ):

			




	
	
	
		
 
        path_info, ishg_path)

			




	
	
	
		
 
    )

			




	
	
	
		
 
    return ishg_path

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class SimpleHg(BaseVCSController):

			




	
	
	
		
 

			




	
	
	
		
 
    def _handle_request(self, environ, start_response):

			




	
	
	
		
 
        if not is_mercurial(environ):

			




	
	
	
		
 
            return self.application(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
        ipaddr = self._get_ip_addr(environ)

			




	
	
	
		
 

			




	
	
	
		
 
        username = None 

			




	
	
	
		
 
        # skip passing error to error controller

			




	
	
	
		
 
        environ['pylons.status_code_redirect'] = True

			




	
	
	
		
 

			




	
	
	
		
 
        #======================================================================

			




	
	
	
		
 
        # EXTRACT REPOSITORY NAME FROM ENV

			




	
	
	
		
 
        #======================================================================

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            repo_name = environ['REPO_NAME'] = self.__get_repository(environ)

			




	
	
	
		
 
            log.debug('Extracted repo name is %s' % repo_name)

			




	
	
	
		
 
        except:

			




	
	
	
		
 
            return HTTPInternalServerError()(environ, start_response)

			




	
	
	
		
 

			




	
	
		
 
@@ -122,39 +122,37 @@ class SimpleHg(BaseVCSController):

			




	
	
	
		
 
                        safe_str(self.config['rhodecode_realm'])

			




	
	
	
		
 
                    result = self.authenticate(environ)

			




	
	
	
		
 
                    if isinstance(result, str):

			




	
	
	
		
 
                        AUTH_TYPE.update(environ, 'basic')

			




	
	
	
		
 
                        REMOTE_USER.update(environ, result)

			




	
	
	
		
 
                        username = result

			




	
	
	
		
 
                    else:

			




	
	
	
		
 
                        return result.wsgi_application(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
                #==============================================================

			




	
	
	
		
 
                # CHECK PERMISSIONS FOR THIS REQUEST USING GIVEN USERNAME

			




	
	
	
		
 
                #==============================================================

			




	
	
	
		
 
                if action in ['pull', 'push']:

			




	
	
	
		
 
                    try:

			




	
	
	
		
 
                        user = self.__get_user(username)

			




	
	
	
		
 
                        if user is None or not user.active:

			




	
	
	
		
 
                            return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                        username = user.username

			




	
	
	
		
 
                    except:

			




	
	
	
		
 
                        log.error(traceback.format_exc())

			




	
	
	
		
 
                        return HTTPInternalServerError()(environ,

			




	
	
	
		
 
                                                         start_response)

			




	
	
	
		
 
                try:

			




	
	
	
		
 
                    user = self.__get_user(username)

			




	
	
	
		
 
                    if user is None or not user.active:

			




	
	
	
		
 
                        return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                    username = user.username

			




	
	
	
		
 
                except:

			




	
	
	
		
 
                    log.error(traceback.format_exc())

			




	
	
	
		
 
                    return HTTPInternalServerError()(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
                    #check permissions for this repository

			




	
	
	
		
 
                    perm = self._check_permission(action, user, repo_name)

			




	
	
	
		
 
                    if perm is not True:

			




	
	
	
		
 
                        return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 
                #check permissions for this repository

			




	
	
	
		
 
                perm = self._check_permission(action, user, repo_name)

			




	
	
	
		
 
                if perm is not True:

			




	
	
	
		
 
                    return HTTPForbidden()(environ, start_response)

			




	
	
	
		
 

			




	
	
	
		
 
        # extras are injected into mercurial UI object and later available

			




	
	
	
		
 
        # in hg hooks executed by rhodecode

			




	
	
	
		
 
        extras = {

			




	
	
	
		
 
            'ip': ipaddr,

			




	
	
	
		
 
            'username': username,

			




	
	
	
		
 
            'action': action,

			




	
	
	
		
 
            'repository': repo_name,

			




	
	
	
		
 
            'scm': 'hg',

			




	
	
	
		
 
        }

			




	
	
	
		
 

			




	
	
	
		
 
        #======================================================================

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.