mercurial-scm/hg: mercurial/hgweb/hgweb

comparison mercurial/hgweb/hgweb_mod.py @ 36799:c638a13093cf

wireprotoserver: check permissions in main dispatch function The permissions checking code merged from stable is out of place in the refactored hgweb_mod module. This commit moves the main call to wireprotoserver. We still have some lingering code in hgweb_mod. This will get addressed later. Differential Revision: https://phab.mercurial-scm.org/D2717

author	Gregory Szorc <gregory.szorc@gmail.com>
date	Tue, 06 Mar 2018 15:08:33 -0800
parents	7bf80d9d9543
children	0b18604db95e

comparison

equal deleted inserted replaced

-:7574c8173d5e
+:c638a13093cf
 # Route it to a wire protocol handler if it looks like a wire protocol
 # request.
 protohandler = wireprotoserver.parsehttprequest(rctx.repo, req, query)
 if protohandler:
-cmd = protohandler['cmd']
 try:
 if query:
 raise ErrorResponse(HTTP_NOT_FOUND)
 # TODO fold this into parsehttprequest
-req.checkperm = lambda op: self.check_perm(rctx, req, op)
+checkperm = lambda op: self.check_perm(rctx, req, op)
-protohandler['proto'].checkperm = req.checkperm
+protohandler['proto'].checkperm = checkperm
-# Assume commands with no defined permissions are writes /
+return protohandler['dispatch'](checkperm)
-# for pushes. This is the safest from a security perspective
-# because it doesn't allow commands with undefined semantics
-# from bypassing permissions checks.
-req.checkperm(perms.get(cmd, 'push'))
-return protohandler['dispatch']()
 except ErrorResponse as inst:
 return protohandler['handleerror'](inst)
 # translate user-visible url structure to internal structure

Mercurial > public > mercurial-scm > hg

comparison mercurial/hgweb/hgweb_mod.py @ 36799:c638a13093cf