File: http.py

package info (click to toggle)
trac-accountmanager 0.6.1%2Bsvn18669-1
  • links: PTS, VCS
  • area: main
  • in suites: sid, trixie
  • size: 2,552 kB
  • sloc: python: 6,863; javascript: 175; makefile: 4
file content (84 lines) | stat: -rw-r--r-- 3,145 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
 
# -*- coding: utf-8 -*-
#
# Copyright (C) 2005 Matthew Good <trac@matt-good.net>
# Copyright (C) 2011 Dennis McRitchie
# All rights reserved.
#
# This software is licensed as described in the file COPYING, which
# you should have received as part of this distribution.
#
# Author: Matthew Good <trac@matt-good.net>

import sys
if sys.version_info[0] == 2:
    from urlparse import urlparse
    from urllib2 import (HTTPPasswordMgrWithDefaultRealm,
                         HTTPBasicAuthHandler, HTTPDigestAuthHandler,
                         build_opener)
else:
    from urllib.parse import urlparse
    from urllib.request import (HTTPPasswordMgrWithDefaultRealm,
                                HTTPBasicAuthHandler, HTTPDigestAuthHandler,
                                build_opener)

from trac.config import Option
from trac.core import Component, implements
from trac.web.href import Href

from .api import IPasswordStore, N_


class HttpAuthStore(Component):

    implements(IPasswordStore)

    auth_url = Option('account-manager', 'authentication_url', '',
        doc=N_("URL of the HTTP authentication service"))

    def check_password(self, username, password):
        self.log.debug("Trac.ini authentication_url = '%s'", self.auth_url)
        # Nothing to do, if URL is absolute.
        if self.auth_url.startswith('http://') or \
                self.auth_url.startswith('https://'):
            auth_url = self.auth_url
        # Handle server-relative URLs.
        elif self.auth_url.startswith('/'):
            # Prepend the Trac server component.
            pr = urlparse(self.env.abs_href())
            href = Href(pr[0] + '://' + pr[1])
            auth_url = href(self.auth_url)
        elif '/' in self.auth_url:
            # URLs with path like 'common/authFile' or 'site/authFile'.
            auth_url = self.env.abs_href.chrome(self.auth_url)
        else:
            # Bare file name option value like 'authFile'.
            auth_url = self.env.abs_href.chrome('common', self.auth_url)
        self.log.debug("Final auth_url = '%s'", auth_url)

        acctmgr = HTTPPasswordMgrWithDefaultRealm()
        acctmgr.add_password(None, auth_url, username, password)
        try:
            build_opener(HTTPBasicAuthHandler(acctmgr),
                                 HTTPDigestAuthHandler(acctmgr))\
                   .open(auth_url)
        except IOError as e:
            if hasattr(e, 'code') and e.code == 404:
                self.log.debug("HttpAuthStore page not found; we are "
                               "authenticated nonetheless")
                return True
            if hasattr(e, 'code') and e.code == 401:
                self.log.debug("HttpAuthStore authentication failed")
            return None
        except ValueError:
            self.log.debug("HttpAuthStore: 'authentication_url' specifies "
                           "an invalid URL""")
            return None
        else:
            self.log.debug("HttpAuthStore page exists; we are authenticated")
            return True

    def get_users(self):
        return []

    def has_user(self, user):
        return False