Mercurial Mercurial > hg > stx-libscm / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | zip | gz | bz2 | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Added simple extension to test HTTP authentication.
authorJan Vrany <jan.vrany@fit.cvut.cz>
Tue, 18 Feb 2014 21:56:01 +0000
changeset 377 b2123fd2888b
parent 375 6ecd3ade39be
child 378 5c36325d6f60
Added simple extension to test HTTP authentication. authserve.py extension adds a basic HTTP authentication to repositories served by `hg serve` command. Username and password is set plain-text in repository .hgrc config file. This extension should be used only for testing purposes.
mercurial/hgext/authserve.py file | annotate | diff | comparison | revisions 
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/mercurial/hgext/authserve.py	Tue Feb 18 21:56:01 2014 +0000
@@ -0,0 +1,79 @@
+"""
+Simple extension that adds HTTP Basic authentication to `hg serve`.
+Username and password are configured using repository hgrc file:
+
+[web]
+# default value: Mercurial
+auth.realm=realm
+# default value: test
+auth.user=username
+#default value: test
+auth.password=password
+
+NOTE: Only one user/password is allowed although it would be easy to extend to
+do so.
+
+NOTE: This extension does not support SSL connections, although it would be easy
+to extend it to do so.
+
+WARNING: This **should not** be used for serving mercurial repositories. This
+extension is merely intended to allow for easy testing of third-party  libraries
+against HTTP-served repositories.
+
+Author: Jan Vrany <jan.vrany (a) fit.cvut.cz>
+"""
+
+import mercurial.hgweb.server as hgserve
+import mercurial.extensions as hgexts
+from base64 import b64encode
+
+class _httpauthenticatedrequesthandler(hgserve._httprequesthandler):
+    def realm(self):
+        return self.server.ui.config('web', 'auth.realm', 'Mercurial')
+
+    def user(self):
+        return self.server.ui.config('web', 'auth.user', 'test')
+
+    def password(self):
+        return self.server.ui.config('web', 'auth.password', 'test')
+
+    def secret(self):
+        return b64encode("%s:%s" % ( self.user(), self.password() ))
+
+    def do_HEAD(self):
+        self.send_response(200)
+        self.send_header('Content-type', 'text/html')
+        self.end_headers()
+
+    def do_AUTHHEAD(self):
+        self.send_response(401)
+        self.send_header('WWW-Authenticate', 'Basic realm=\"%s\"' % self.realm())
+        self.send_header('Content-type', 'text/html')
+        self.end_headers()
+
+    def do_GET(self):
+        if self.headers.getheader('Authorization') == None:
+            self.do_AUTHHEAD()
+            self.wfile.write('Not authorized')
+            pass
+        elif self.headers.getheader('Authorization') == ('Basic %s' % self.secret()):
+            hgserve._httprequesthandler.do_GET(self)
+            pass
+        else:
+            self.do_AUTHHEAD()
+            self.wfile.write('Not authenticated')
+            pass
+
+def auth_create_server(create_server, ui, app):
+    httpd = create_server(ui, app)
+    httpd.ui = ui
+    httpd.RequestHandlerClass = _httpauthenticatedrequesthandler
+    return httpd
+
+hgexts.wrapfunction(hgserve, 'create_server', auth_create_server)
+
+
+
+
+
+
hg/stx-libscm