2011-05-09 11:03:42 -07:00
|
|
|
''' factotum support '''
|
|
|
|
|
|
|
|
import mercurial.url
|
|
|
|
import urllib2
|
|
|
|
import factotum
|
2011-05-09 11:53:34 -07:00
|
|
|
import base64
|
|
|
|
|
|
|
|
class factotumbasic(urllib2.BaseHandler):
|
|
|
|
def __init__(self, passmgr=None):
|
|
|
|
self.f = factotum.Factotum()
|
|
|
|
def http_error_401(self, req, fp, code, msg, headers):
|
|
|
|
host = urllib2.urlparse.urlparse(req.get_full_url())[1]
|
|
|
|
authreq = headers.get('www-authenticate', None)
|
|
|
|
if authreq == None: return None
|
|
|
|
authreq = authreq.split(' ', 1)
|
|
|
|
if authreq[0].lower() != 'basic': return None
|
|
|
|
chal = urllib2.parse_keqv_list(urllib2.parse_http_list(authreq[1]))
|
|
|
|
realm = chal['realm']
|
|
|
|
self.f.start(proto="pass", host=host, realm=realm, role="client")
|
|
|
|
pw = self.f.read()
|
|
|
|
user = self.f.attr()["user"]
|
|
|
|
val = 'Basic %s' % base64.b64encode(user + ':' + pw).strip()
|
|
|
|
if req.headers.get('Authorization', None) == val: return None
|
|
|
|
req.add_header('Authorization', val)
|
|
|
|
return self.parent.open(req)
|
2011-05-09 11:03:42 -07:00
|
|
|
|
|
|
|
class factotumdigest(urllib2.BaseHandler):
|
|
|
|
auth_header = 'Authorization'
|
|
|
|
handler_order = 490
|
|
|
|
|
|
|
|
def __init__(self, passmgr=None):
|
|
|
|
self.f = factotum.Factotum()
|
|
|
|
self.retried = 0
|
|
|
|
def http_error_401(self, req, fp, code, msg, headers):
|
|
|
|
self.retried += 1
|
|
|
|
host = urllib2.urlparse.urlparse(req.get_full_url())[1]
|
|
|
|
authreq = headers.get('www-authenticate', None)
|
|
|
|
if authreq == None: return None
|
|
|
|
authreq = authreq.split(' ', 1)
|
|
|
|
if authreq[0].lower() != 'digest': return None
|
|
|
|
chal = urllib2.parse_keqv_list(urllib2.parse_http_list(authreq[1]))
|
|
|
|
realm = chal['realm']
|
|
|
|
nonce = chal['nonce']
|
|
|
|
if self.retried >= 6:
|
2011-05-09 11:53:34 -07:00
|
|
|
self.f.delkey(proto="httpdigest", realm=realm, host=host)
|
|
|
|
self.f.start(proto="httpdigest", role="client", realm=realm, host=host)
|
2011-05-09 11:03:42 -07:00
|
|
|
self.f.write(nonce + ' ' + req.get_method() + ' ' + req.get_selector())
|
|
|
|
resp = self.f.read()
|
2011-05-09 11:53:34 -07:00
|
|
|
user = self.f.attr()["user"]
|
2011-05-09 11:03:42 -07:00
|
|
|
self.f.close()
|
2011-05-09 11:53:34 -07:00
|
|
|
val = 'Digest username="%s", realm="%s", nonce="%s", uri="%s", response="%s", algorithm=MD5' % (user, realm, nonce, req.get_selector(), resp)
|
2011-05-09 11:03:42 -07:00
|
|
|
if req.headers.get('Authorization', None) == val: return None
|
|
|
|
req.add_unredirected_header('Authorization', val)
|
|
|
|
result = self.parent.open(req)
|
|
|
|
self.retried = 0
|
|
|
|
return result
|
|
|
|
|
2011-05-09 11:53:34 -07:00
|
|
|
urllib2.HTTPBasicAuthHandler = factotumbasic
|
2011-05-09 11:03:42 -07:00
|
|
|
mercurial.url.httpdigestauthhandler = factotumdigest
|