Fossil SCM

Update the proxy handler so that it supports basic authorization.

drh 2009-09-12 21:53 trunk

Commit 9e274a2e7bc97635edb085425cd8548a8b72df45

Parent c198613ae13c8ae…

3 files changed +3 +1 +35 -13

M src/http.c

		--- src/http.c
		+++ src/http.c
		@@ -90,10 +90,13 @@
90	90	zSep = "";
91	91	}else{
92	92	zSep = "/";
93	93	}
94	94	blob_appendf(pHdr, "POST %s%sxfer HTTP/1.1\r\n", g.urlPath, zSep);
	95	+ if( g.urlProxyAuth ){
	96	+ blob_appendf(pHdr, "Proxy-Authorization: %s\n", g.urlProxyAuth);
	97	+ }
95	98	blob_appendf(pHdr, "Host: %s\r\n", g.urlHostname);
96	99	blob_appendf(pHdr, "User-Agent: Fossil/" MANIFEST_VERSION "\r\n");
97	100	if( g.fHttpTrace ){
98	101	blob_appendf(pHdr, "Content-Type: application/x-fossil-debug\r\n");
99	102	}else{
100	103

	--- src/http.c
	+++ src/http.c
	@@ -90,10 +90,13 @@
90	zSep = "";
91	}else{
92	zSep = "/";
93	}
94	blob_appendf(pHdr, "POST %s%sxfer HTTP/1.1\r\n", g.urlPath, zSep);



95	blob_appendf(pHdr, "Host: %s\r\n", g.urlHostname);
96	blob_appendf(pHdr, "User-Agent: Fossil/" MANIFEST_VERSION "\r\n");
97	if( g.fHttpTrace ){
98	blob_appendf(pHdr, "Content-Type: application/x-fossil-debug\r\n");
99	}else{
100

	--- src/http.c
	+++ src/http.c
	@@ -90,10 +90,13 @@
90	zSep = "";
91	}else{
92	zSep = "/";
93	}
94	blob_appendf(pHdr, "POST %s%sxfer HTTP/1.1\r\n", g.urlPath, zSep);
95	if( g.urlProxyAuth ){
96	blob_appendf(pHdr, "Proxy-Authorization: %s\n", g.urlProxyAuth);
97	}
98	blob_appendf(pHdr, "Host: %s\r\n", g.urlHostname);
99	blob_appendf(pHdr, "User-Agent: Fossil/" MANIFEST_VERSION "\r\n");
100	if( g.fHttpTrace ){
101	blob_appendf(pHdr, "Content-Type: application/x-fossil-debug\r\n");
102	}else{
103

M src/main.c

		--- src/main.c
		+++ src/main.c
		@@ -98,10 +98,11 @@
98	98	int urlDfltPort; /* The default port for the given protocol */
99	99	char urlPath; / Pathname for http: */
100	100	char urlUser; / User id for http: */
101	101	char urlPasswd; / Password for http: */
102	102	char urlCanonical; / Canonical representation of the URL */
	103	+ char urlProxyAuth; / Proxy-Authorizer: string */
103	104
104	105	const char zLogin; / Login name. "" if not logged in. */
105	106	int noPswd; /* Logged in without password (on 127.0.0.1) */
106	107	int userUid; /* Integer user id */
107	108
108	109

	--- src/main.c
	+++ src/main.c
	@@ -98,10 +98,11 @@
98	int urlDfltPort; /* The default port for the given protocol */
99	char urlPath; / Pathname for http: */
100	char urlUser; / User id for http: */
101	char urlPasswd; / Password for http: */
102	char urlCanonical; / Canonical representation of the URL */

103
104	const char zLogin; / Login name. "" if not logged in. */
105	int noPswd; /* Logged in without password (on 127.0.0.1) */
106	int userUid; /* Integer user id */
107
108

	--- src/main.c
	+++ src/main.c
	@@ -98,10 +98,11 @@
98	int urlDfltPort; /* The default port for the given protocol */
99	char urlPath; / Pathname for http: */
100	char urlUser; / User id for http: */
101	char urlPasswd; / Password for http: */
102	char urlCanonical; / Canonical representation of the URL */
103	char urlProxyAuth; / Proxy-Authorizer: string */
104
105	const char zLogin; / Login name. "" if not logged in. */
106	int noPswd; /* Logged in without password (on 127.0.0.1) */
107	int userUid; /* Integer user id */
108
109

M src/url.c

+35 -13

		--- src/url.c
		+++ src/url.c
		@@ -27,17 +27,21 @@
27	27	#include "url.h"
28	28
29	29	/*
30	30	** Parse the given URL. Populate variables in the global "g" structure.
31	31	**
32		-** g.urlIsFile True if this is a file URL
33		-** g.urlName Hostname for HTTP:. Filename for FILE:
34		-** g.urlPort Port name for HTTP.
35		-** g.urlPath Path name for HTTP.
	32	+** g.urlIsFile True if FILE:
	33	+** g.urlIsHttps True if HTTPS:
	34	+** g.urlProtocol "http" or "https" or "file"
	35	+** g.urlName Hostname for HTTP: or HTTPS:. Filename for FILE:
	36	+** g.urlPort TCP port number for HTTP or HTTPS.
	37	+** g.urlDfltPort Default TCP port number (80 or 443).
	38	+** g.urlPath Path name for HTTP or HTTPS.
36	39	** g.urlUser Userid.
37	40	** g.urlPasswd Password.
38		-** g.urlCanonical The URL in canonical form
	41	+** g.urlHostname HOST:PORT or just HOST if port is the default.
	42	+** g.urlCanonical The URL in canonical form, omitting userid/password
39	43	**
40	44	** HTTP url format is:
41	45	**
42	46	** http://userid:password@host:port/path?query#fragment
43	47	**
		@@ -159,32 +163,38 @@
159	163	}
160	164	}
161	165	}
162	166
163	167	/*
164		-** Proxy specified on the command-line.
	168	+** Proxy specified on the command-line using the --proxy option.
	169	+** If there is no --proxy option on the command-line then this
	170	+** variable holds a NULL pointer.
165	171	*/
166	172	static const char *zProxyOpt = 0;
167	173
168	174	/*
169		-** Extra any proxy options from the command-line.
	175	+** Extract any proxy options from the command-line.
170	176	**
171	177	** --proxy URL\|off
172	178	**
	179	+** This also happens to be a convenient function to use to look for
	180	+** the --nosync option that will temporarily disable the "autosync"
	181	+** feature.
173	182	*/
174	183	void url_proxy_options(void){
175	184	zProxyOpt = find_option("proxy", 0, 1);
176	185	if( find_option("nosync",0,0) ) g.fNoSync = 1;
177	186	}
178	187
179	188	/*
180		-** If the "proxy" setting is defined, then change the URL to refer
181		-** to the proxy server.
	189	+** If the "proxy" setting is defined, then change the URL settings
	190	+** (initialized by a prior call to url_parse()) so that the HTTP
	191	+** header will be appropriate for the proxy and so that the TCP/IP
	192	+** connection will be opened to the proxy rather than to the server.
182	193	**
183		-** If the protocol is "https://" then start stunnel to handle the SSL
184		-** and make the url setting refer to stunnel rather than the original
185		-** destination.
	194	+** If zMsg is not NULL and a proxy is used, then print zMsg followed
	195	+** by the canonical name of the proxy (with userid and password suppressed).
186	196	*/
187	197	void url_enable_proxy(const char *zMsg){
188	198	const char *zProxy;
189	199	zProxy = zProxyOpt;
190	200	if( zProxy==0 ){
		@@ -194,14 +204,26 @@
194	204	}
195	205	}
196	206	if( zProxy && zProxy[0] && !is_false(zProxy) ){
197	207	char *zOriginalUrl = g.urlCanonical;
198	208	char *zOriginalHost = g.urlHostname;
199		- if( zMsg ) printf("%s%s\n", zMsg, zProxy);
	209	+ char *zOriginalUser = g.urlUser;
	210	+ char *zOriginalPasswd = g.urlPasswd;
	211	+ g.urlUser = 0;
	212	+ g.urlPasswd = "";
200	213	url_parse(zProxy);
	214	+ if( zMsg ) printf("%s%s\n", zMsg, g.urlCanonical);
201	215	g.urlPath = zOriginalUrl;
202	216	g.urlHostname = zOriginalHost;
	217	+ if( g.urlUser ){
	218	+ char *zCredentials1 = mprintf("%s:%s", g.urlUser, g.urlPasswd);
	219	+ char *zCredentials2 = encode64(zCredentials1, -1);
	220	+ g.urlProxyAuth = mprintf("Basic %z", zCredentials2);
	221	+ free(zCredentials1);
	222	+ }
	223	+ g.urlUser = zOriginalUser;
	224	+ g.urlPasswd = zOriginalPasswd;
203	225	}
204	226	}
205	227
206	228	#if INTERFACE
207	229	/*
208	230

	--- src/url.c
	+++ src/url.c
	@@ -27,17 +27,21 @@
27	#include "url.h"
28
29	/*
30	** Parse the given URL. Populate variables in the global "g" structure.
31	**
32	** g.urlIsFile True if this is a file URL
33	** g.urlName Hostname for HTTP:. Filename for FILE:
34	** g.urlPort Port name for HTTP.
35	** g.urlPath Path name for HTTP.



36	** g.urlUser Userid.
37	** g.urlPasswd Password.
38	** g.urlCanonical The URL in canonical form

39	**
40	** HTTP url format is:
41	**
42	** http://userid:password@host:port/path?query#fragment
43	**
	@@ -159,32 +163,38 @@
159	}
160	}
161	}
162
163	/*
164	** Proxy specified on the command-line.


165	*/
166	static const char *zProxyOpt = 0;
167
168	/*
169	** Extra any proxy options from the command-line.
170	**
171	** --proxy URL\|off
172	**



173	*/
174	void url_proxy_options(void){
175	zProxyOpt = find_option("proxy", 0, 1);
176	if( find_option("nosync",0,0) ) g.fNoSync = 1;
177	}
178
179	/*
180	** If the "proxy" setting is defined, then change the URL to refer
181	** to the proxy server.


182	**
183	** If the protocol is "https://" then start stunnel to handle the SSL
184	** and make the url setting refer to stunnel rather than the original
185	** destination.
186	*/
187	void url_enable_proxy(const char *zMsg){
188	const char *zProxy;
189	zProxy = zProxyOpt;
190	if( zProxy==0 ){
	@@ -194,14 +204,26 @@
194	}
195	}
196	if( zProxy && zProxy[0] && !is_false(zProxy) ){
197	char *zOriginalUrl = g.urlCanonical;
198	char *zOriginalHost = g.urlHostname;
199	if( zMsg ) printf("%s%s\n", zMsg, zProxy);



200	url_parse(zProxy);

201	g.urlPath = zOriginalUrl;
202	g.urlHostname = zOriginalHost;








203	}
204	}
205
206	#if INTERFACE
207	/*
208

	--- src/url.c
	+++ src/url.c
	@@ -27,17 +27,21 @@
27	#include "url.h"
28
29	/*
30	** Parse the given URL. Populate variables in the global "g" structure.
31	**
32	** g.urlIsFile True if FILE:
33	** g.urlIsHttps True if HTTPS:
34	** g.urlProtocol "http" or "https" or "file"
35	** g.urlName Hostname for HTTP: or HTTPS:. Filename for FILE:
36	** g.urlPort TCP port number for HTTP or HTTPS.
37	** g.urlDfltPort Default TCP port number (80 or 443).
38	** g.urlPath Path name for HTTP or HTTPS.
39	** g.urlUser Userid.
40	** g.urlPasswd Password.
41	** g.urlHostname HOST:PORT or just HOST if port is the default.
42	** g.urlCanonical The URL in canonical form, omitting userid/password
43	**
44	** HTTP url format is:
45	**
46	** http://userid:password@host:port/path?query#fragment
47	**
	@@ -159,32 +163,38 @@
163	}
164	}
165	}
166
167	/*
168	** Proxy specified on the command-line using the --proxy option.
169	** If there is no --proxy option on the command-line then this
170	** variable holds a NULL pointer.
171	*/
172	static const char *zProxyOpt = 0;
173
174	/*
175	** Extract any proxy options from the command-line.
176	**
177	** --proxy URL\|off
178	**
179	** This also happens to be a convenient function to use to look for
180	** the --nosync option that will temporarily disable the "autosync"
181	** feature.
182	*/
183	void url_proxy_options(void){
184	zProxyOpt = find_option("proxy", 0, 1);
185	if( find_option("nosync",0,0) ) g.fNoSync = 1;
186	}
187
188	/*
189	** If the "proxy" setting is defined, then change the URL settings
190	** (initialized by a prior call to url_parse()) so that the HTTP
191	** header will be appropriate for the proxy and so that the TCP/IP
192	** connection will be opened to the proxy rather than to the server.
193	**
194	** If zMsg is not NULL and a proxy is used, then print zMsg followed
195	** by the canonical name of the proxy (with userid and password suppressed).

196	*/
197	void url_enable_proxy(const char *zMsg){
198	const char *zProxy;
199	zProxy = zProxyOpt;
200	if( zProxy==0 ){
	@@ -194,14 +204,26 @@
204	}
205	}
206	if( zProxy && zProxy[0] && !is_false(zProxy) ){
207	char *zOriginalUrl = g.urlCanonical;
208	char *zOriginalHost = g.urlHostname;
209	char *zOriginalUser = g.urlUser;
210	char *zOriginalPasswd = g.urlPasswd;
211	g.urlUser = 0;
212	g.urlPasswd = "";
213	url_parse(zProxy);
214	if( zMsg ) printf("%s%s\n", zMsg, g.urlCanonical);
215	g.urlPath = zOriginalUrl;
216	g.urlHostname = zOriginalHost;
217	if( g.urlUser ){
218	char *zCredentials1 = mprintf("%s:%s", g.urlUser, g.urlPasswd);
219	char *zCredentials2 = encode64(zCredentials1, -1);
220	g.urlProxyAuth = mprintf("Basic %z", zCredentials2);
221	free(zCredentials1);
222	}
223	g.urlUser = zOriginalUser;
224	g.urlPasswd = zOriginalPasswd;
225	}
226	}
227
228	#if INTERFACE
229	/*
230

Fossil SCM

Keyboard Shortcuts