easyhg: easyhg.py comparison

comparison easyhg.py @ 454:6f5acaf27d60

Merge from branch "authfile_refactor"

author	Chris Cannam
date	Wed, 29 Jun 2011 15:37:20 +0100
parents	f2ab2cdd000b
children	856da063d76e

comparison

equal deleted inserted replaced

-:8156537329ff
+:6f5acaf27d60
 #
 #    EasyMercurial
 #
 #    Based on hgExplorer by Jari Korhonen
 #    Copyright (c) 2010 Jari Korhonen
-#    Copyright (c) 2010 Chris Cannam
+#    Copyright (c) 2010-2011 Chris Cannam
-#    Copyright (c) 2010 Queen Mary, University of London
+#    Copyright (c) 2010-2011 Queen Mary, University of London
 #
 #    This program is free software; you can redistribute it and/or
 #    modify it under the terms of the GNU General Public License as
 #    published by the Free Software Foundation; either version 2 of the
 #    License, or (at your option) any later version.  See the file
 except ImportError:
 print "EasyHg: Failed to import required modules for authfile support"
 easyhg_authfile_imports_ok = False
-def encrypt_salted(text, key):
+class EasyHgAuthStore(object):
-salt = os.urandom(8)
-text = '%d.%s.%s' % (len(text), base64.b64encode(salt), text)
+ui = None
-text += (16 - len(text) % 16) * ' '
-cipher = AES.new(key, AES.MODE_CBC)
+remote_url = ''
-return base64.b64encode(cipher.encrypt(text))
+use_auth_file = False
-def decrypt_salted(ctext, key):
-cipher = AES.new(key, AES.MODE_CBC)
+auth_config = None
-text = cipher.decrypt(base64.b64decode(ctext))
+auth_file = ''
-(tlen, d, text) = text.partition('.')
+auth_key = ''
-(salt, d, text) = text.partition('.')
+auth_cipher = None
-return text[0:int(tlen)]
+user = ''
-def pathless_url(url):
+passwd = ''
-parsed_url = urlparse.urlparse(url)
-return "%s://%s" % (parsed_url.scheme, parsed_url.netloc)
+remember = False
-# from mercurial_keyring by Marcin Kasperski
+def __init__(self, ui, url, user, passwd):
-def canonical_url(url):
-parsed_url = urlparse.urlparse(url)
+self.ui = ui
-return "%s://%s%s" % (parsed_url.scheme, parsed_url.netloc,
+self.remote_url = url
-parsed_url.path)
+self.user = user
-def load_config(pcfg, pfile):
+self.passwd = passwd
-fp = None
-try:
+self.auth_key = self.ui.config('easyhg', 'authkey')
-fp = open(pfile)
+self.auth_file = self.ui.config('easyhg', 'authfile')
-except:
-return
+self.use_auth_file = (easyhg_authfile_imports_ok and
-pcfg.readfp(fp)
+self.auth_key and self.auth_file)
-fp.close()
+if self.use_auth_file:
-def save_config(ui, pcfg, pfile):
+self.auth_cipher = AES.new(self.auth_key, AES.MODE_CBC)
-ofp = None
+self.auth_file = os.path.expanduser(self.auth_file)
-try:
+self.load_auth_data()
-ofp = open(pfile, 'w')
-except:
+def save(self):
-ui.write("failed to open authfile %s for writing\n" % pfile)
+if self.use_auth_file:
-raise
+self.save_auth_data()
-if platform.system() != 'Windows':
-try:
+def encrypt(self, text):
-os.fchmod(ofp.fileno(), stat.S_IRUSR | stat.S_IWUSR)
+iv = os.urandom(12)
+text = '%s.%d.%s.easyhg' % (base64.b64encode(iv), len(text), text)
+text += (16 - (len(text) % 16)) * ' '
+ctext = base64.b64encode(self.auth_cipher.encrypt(text))
+return ctext
+def decrypt(self, ctext):
+text = self.auth_cipher.decrypt(base64.b64decode(ctext))
+(iv, d, text) = text.partition('.')
+(tlen, d, text) = text.partition('.')
+try:
+return text[0:int(tlen)]
 except:
-ofp.close()
+self.ui.write("failed to decrypt/convert cached data!")
-ui.write("failed to set permissions on authfile %s\n" % pfile)
+return ''
+def argless_url(self):
+parsed = urlparse.urlparse(self.remote_url)
+return "%s://%s%s" % (parsed.scheme, parsed.netloc, parsed.path)
+def pathless_url(self):
+parsed = urlparse.urlparse(self.remote_url)
+return "%s://%s" % (parsed.scheme, parsed.netloc)
+def load_config(self):
+if not self.auth_config:
+self.auth_config = ConfigParser.RawConfigParser()
+fp = None
+try:
+fp = open(self.auth_file)
+except:
+self.ui.write("unable to read authfile %s, ignoring\n" % self.auth_file)
+return
+self.auth_config.readfp(fp)
+fp.close()
+def save_config(self):
+ofp = None
+try:
+ofp = open(self.auth_file, 'w')
+except:
+self.ui.write("failed to open authfile %s for writing\n" % self.auth_file)
 raise
-pcfg.write(ofp)
+if platform.system() != 'Windows':
-ofp.close()
+try:
+os.fchmod(ofp.fileno(), stat.S_IRUSR | stat.S_IWUSR)
-def get_from_config(pcfg, sect, key):
+except:
-data = None
+ofp.close()
-try:
+self.ui.write("failed to set permissions on authfile %s\n" % self.auth_file)
-data = pcfg.get(sect, key)
+raise
-except (ConfigParser.NoOptionError, ConfigParser.NoSectionError):
+self.auth_config.write(ofp)
-pass
+ofp.close()
-return data
+def get_from_config(self, sect, key):
-def get_boolean_from_config(pcfg, sect, key, deflt):
+data = None
-data = deflt
+try:
-try:
+data = self.auth_config.get(sect, key)
-data = pcfg.getboolean(sect, key)
+except (ConfigParser.NoOptionError, ConfigParser.NoSectionError):
-except (ConfigParser.NoOptionError, ConfigParser.NoSectionError):
+pass
-pass
+return data
-return data
+def get_boolean_from_config(self, sect, key, deflt):
-def set_to_config(pcfg, sect, key, data):
+data = deflt
-if not pcfg.has_section(sect):
+try:
-pcfg.add_section(sect)
+data = self.auth_config.getboolean(sect, key)
-pcfg.set(sect, key, data)
+except (ConfigParser.NoOptionError, ConfigParser.NoSectionError):
+pass
-def remote_key(uri, user, key):
+return data
-# generate a "safe-for-config-file" key representing uri+user
-s = '%s@@%s' % (uri, user)
+def set_to_config(self, sect, key, data):
-h = hashlib.sha1()
+if not self.auth_config.has_section(sect):
-h.update(key)
+self.auth_config.add_section(sect)
-h.update(s)
+self.auth_config.set(sect, key, data)
-return h.hexdigest()
+def remote_key(self, url, user):
+# generate a "safe-for-config-file" key representing uri+user
+self.ui.write('generating remote_key for url %s and user %s\n' % (url, user))
+s = '%s@@%s' % (url, user)
+h = hashlib.sha1()
+h.update(self.auth_key)
+h.update(s)
+hx = h.hexdigest()
+return hx
+def remote_user_key(self):
+return self.remote_key(self.pathless_url(), '')
+def remote_passwd_key(self):
+return self.remote_key(self.pathless_url(), self.user)
+def load_auth_data(self):
+self.load_config()
+if not self.auth_config: return
+self.remember = self.get_boolean_from_config(
+'preferences', 'remember', False)
+if not self.user:
+d = self.get_from_config('user', self.remote_user_key())
+if d:
+self.user = self.decrypt(d)
+if self.user:
+d = self.get_from_config('auth', self.remote_passwd_key())
+if d:
+self.passwd = self.decrypt(d)
+def save_auth_data(self):
+self.load_config()
+if not self.auth_config: return
+self.set_to_config('preferences', 'remember', self.remember)
+self.ui.write('aiming to store details for user %s\n' % self.user)
+if self.remember and self.user:
+d = self.encrypt(self.user)
+self.set_to_config('user', self.remote_user_key(), d)
+else:
+self.set_to_config('user', self.remote_user_key(), '')
+if self.remember and self.user and self.passwd:
+d = self.encrypt(self.passwd)
+self.set_to_config('auth', self.remote_passwd_key(), d)
+elif self.user:
+self.set_to_config('auth', self.remote_passwd_key(), '')
+self.save_config()
+class EasyHgAuthDialog(object):
+auth_store = None
+def __init__(self, ui, url, user, passwd):
+self.auth_store = EasyHgAuthStore(ui, url, user, passwd)
+def ask(self):
+dialog = QtGui.QDialog()
+layout = QtGui.QGridLayout()
+dialog.setLayout(layout)
+layout.addWidget(QtGui.QLabel(_('<h3>Login required</h3><p>Please provide your login details for the repository at<br><code>%s</code>:') % self.auth_store.argless_url()), 0, 0, 1, 2)
+user_field = QtGui.QLineEdit()
+if self.auth_store.user: user_field.setText(self.auth_store.user)
+layout.addWidget(QtGui.QLabel(_('User:')), 1, 0)
+layout.addWidget(user_field, 1, 1)
+passwd_field = QtGui.QLineEdit()
+passwd_field.setEchoMode(QtGui.QLineEdit.Password)
+if self.auth_store.passwd: passwd_field.setText(self.auth_store.passwd)
+layout.addWidget(QtGui.QLabel(_('Password:')), 2, 0)
+layout.addWidget(passwd_field, 2, 1)
+user_field.connect(user_field, Qt.SIGNAL("textChanged(QString)"),
+passwd_field, Qt.SLOT("clear()"))
+remember_field = None
+if self.auth_store.use_auth_file:
+remember_field = QtGui.QCheckBox()
+remember_field.setChecked(self.auth_store.remember)
+remember_field.setText(_('Remember these details while EasyMercurial is running'))
+layout.addWidget(remember_field, 3, 1)
+bb = QtGui.QDialogButtonBox()
+ok = bb.addButton(bb.Ok)
+cancel = bb.addButton(bb.Cancel)
+cancel.setDefault(False)
+cancel.setAutoDefault(False)
+ok.setDefault(True)
+bb.connect(ok, Qt.SIGNAL("clicked()"), dialog, Qt.SLOT("accept()"))
+bb.connect(cancel, Qt.SIGNAL("clicked()"), dialog, Qt.SLOT("reject()"))
+layout.addWidget(bb, 4, 0, 1, 2)
+dialog.setWindowTitle(_('EasyMercurial: Login'))
+dialog.show()
+if not self.auth_store.user:
+user_field.setFocus(True)
+elif not self.auth_store.passwd:
+passwd_field.setFocus(True)
+else:
+ok.setFocus(True)
+dialog.raise_()
+ok = dialog.exec_()
+if not ok:
+raise util.Abort(_('password entry cancelled'))
+self.auth_store.user = user_field.text()
+self.auth_store.passwd = passwd_field.text()
+if remember_field:
+self.auth_store.remember = remember_field.isChecked()
+self.auth_store.save()
+return (self.auth_store.user, self.auth_store.passwd)
 def uisetup(ui):
 if not easyhg_pyqt_ok:
 raise util.Abort(_('Failed to load PyQt4 module required by easyhg.py'))
 user, passwd = authinfo
 if user and passwd:
 return orig_find(self, realm, authuri)
-#    self.ui.write("want username and/or password for %s\n" % authuri)
+self.ui.write("want username and/or password for %s\n" % authuri)
-short_uri = canonical_url(authuri)
+dialog = EasyHgAuthDialog(self.ui, authuri, user, passwd)
-pathless_uri = pathless_url(authuri)
+(user, passwd) = dialog.ask()
-authkey = self.ui.config('easyhg', 'authkey')
-authfile = self.ui.config('easyhg', 'authfile')
-use_authfile = (easyhg_authfile_imports_ok and authkey and authfile)
-if authfile: authfile = os.path.expanduser(authfile)
-dialog = QtGui.QDialog()
-layout = QtGui.QGridLayout()
-dialog.setLayout(layout)
-layout.addWidget(QtGui.QLabel(_('<h3>Login required</h3><p>Please provide your login details for the repository at<br><code>%s</code>:') % short_uri), 0, 0, 1, 2)
-user_field = QtGui.QLineEdit()
-if user:
-user_field.setText(user)
-layout.addWidget(QtGui.QLabel(_('User:')), 1, 0)
-layout.addWidget(user_field, 1, 1)
-passwd_field = QtGui.QLineEdit()
-passwd_field.setEchoMode(QtGui.QLineEdit.Password)
-if passwd:
-passwd_field.setText(passwd)
-layout.addWidget(QtGui.QLabel(_('Password:')), 2, 0)
-layout.addWidget(passwd_field, 2, 1)
-user_field.connect(user_field, Qt.SIGNAL("textChanged(QString)"),
-passwd_field, Qt.SLOT("clear()"))
-remember_field = None
-remember = False
-authconfig = None
-authdata = None
-if use_authfile:
-authconfig = ConfigParser.RawConfigParser()
-load_config(authconfig, authfile)
-remember = get_boolean_from_config(authconfig, 'preferences',
-'remember', False)
-if not user:
-authdata = get_from_config(authconfig, 'user',
-remote_key(short_uri, '', authkey))
-if authdata:
-user = decrypt_salted(authdata, authkey)
-user_field.setText(user)
-if not passwd:
-authdata = get_from_config(authconfig, 'auth',
-remote_key(pathless_uri, user, authkey))
-if authdata:
-passwd = decrypt_salted(authdata, authkey)
-passwd_field.setText(passwd)
-remember_field = QtGui.QCheckBox()
-remember_field.setChecked(remember)
-remember_field.setText(_('Remember these details while EasyMercurial is running'))
-layout.addWidget(remember_field, 3, 1)
-bb = QtGui.QDialogButtonBox()
-ok = bb.addButton(bb.Ok)
-cancel = bb.addButton(bb.Cancel)
-cancel.setDefault(False)
-cancel.setAutoDefault(False)
-ok.setDefault(True)
-bb.connect(ok, Qt.SIGNAL("clicked()"), dialog, Qt.SLOT("accept()"))
-bb.connect(cancel, Qt.SIGNAL("clicked()"), dialog, Qt.SLOT("reject()"))
-layout.addWidget(bb, 4, 0, 1, 2)
-dialog.setWindowTitle(_('EasyMercurial: Login'))
-dialog.show()
-if not user:
-user_field.setFocus(True)
-elif not passwd:
-passwd_field.setFocus(True)
-else:
-ok.setFocus(True)
-dialog.raise_()
-ok = dialog.exec_()
-if not ok:
-raise util.Abort(_('password entry cancelled'))
-user = user_field.text()
-passwd = passwd_field.text()
-if use_authfile:
-remember = remember_field.isChecked()
-set_to_config(authconfig, 'preferences', 'remember', remember)
-if user:
-if remember:
-authdata = encrypt_salted(user, authkey)
-set_to_config(authconfig, 'user', remote_key(short_uri, '', authkey), authdata)
-else:
-set_to_config(authconfig, 'user', remote_key(short_uri, '', authkey), '')
-if passwd:
-if remember:
-authdata = encrypt_salted(passwd, authkey)
-set_to_config(authconfig, 'auth', remote_key(pathless_uri, user, authkey), authdata)
-else:
-set_to_config(authconfig, 'auth', remote_key(pathless_uri, user, authkey), '')
-save_config(self.ui, authconfig, authfile)
 self.add_password(realm, authuri, user, passwd)
 return (user, passwd)

Mercurial > hg > easyhg

comparison easyhg.py @ 454:6f5acaf27d60