File: auth_callback.py

package info (click to toggle)
dulwich 1.0.0-2
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 7,388 kB
  • sloc: python: 99,991; makefile: 163; sh: 67
file content (81 lines) | stat: -rw-r--r-- 2,736 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
 
#!/usr/bin/env python3
"""Example of using callback-based authentication with dulwich HTTP client.

This example demonstrates how to use the new callback-based authentication
feature to handle HTTP and proxy authentication dynamically.

Note: Dulwich currently supports 'basic' and 'anyauth' proxy authentication
methods via the http.proxyAuthMethod git config option or the
GIT_HTTP_PROXY_AUTHMETHOD environment variable. Other methods like 'digest',
'negotiate', and 'ntlm' will raise NotImplementedError.
"""

from dulwich.client import HttpGitClient


def my_auth_callback(url, www_authenticate, attempt):
    """Callback function for HTTP authentication.

    Args:
        url: The URL that requires authentication
        www_authenticate: The WWW-Authenticate header value from the server
        attempt: The attempt number (starts at 1)

    Returns:
        dict: Credentials with 'username' and 'password' keys, or None to cancel
    """
    print(f"Authentication required for {url}")
    print(f"Server says: {www_authenticate}")
    print(f"Attempt {attempt} of 3")

    # In a real application, you might:
    # - Prompt the user for credentials
    # - Look up credentials in a password manager
    # - Parse the www_authenticate header to determine the auth scheme

    if attempt <= 2:
        # Example: return hardcoded credentials for demo
        return {"username": "myuser", "password": "mypassword"}
    else:
        # Give up after 2 attempts
        return None


def my_proxy_auth_callback(url, proxy_authenticate, attempt):
    """Callback function for proxy authentication.

    Args:
        url: The URL being accessed through the proxy
        proxy_authenticate: The Proxy-Authenticate header value from the proxy
        attempt: The attempt number (starts at 1)

    Returns:
        dict: Credentials with 'username' and 'password' keys, or None to cancel
    """
    print(f"Proxy authentication required for accessing {url}")
    print(f"Proxy says: {proxy_authenticate}")

    # Return proxy credentials
    return {"username": "proxyuser", "password": "proxypass"}


def main():
    # Create an HTTP Git client with authentication callbacks
    client = HttpGitClient(
        "https://github.com/private/repo.git",
        auth_callback=my_auth_callback,
        proxy_auth_callback=my_proxy_auth_callback,
    )

    # Now when you use the client, it will call your callbacks
    # if authentication is required
    try:
        # Example: fetch refs from the repository
        refs = client.fetch_refs("https://github.com/private/repo.git")
        print(f"Successfully fetched refs: {refs}")
    except Exception as e:
        print(f"Error: {e}")


if __name__ == "__main__":
    main()