Mercurial: tests/test-http-permissions.t annotate

annotate tests/test-http-permissions.t @ 36752:bbd4027b019b stable

tests: comprehensively test HTTP server permissions checking We didn't have test coverage for numerous web.* config options. We add that test coverage. Included in the tests are tests for custom commands. We have commands that are supposedly read-only and perform writes and a variation of each that does and does not define its operation type in hgweb_mod.perms. The tests reveal a handful of security bugs related to permissions checking. Subsequent commits will address these security bugs.

author	Gregory Szorc <gregory.szorc@gmail.com>
date	Tue, 20 Feb 2018 19:09:01 -0800
parents	2c647da851ed
children	742ce6fbc109

rev	line source
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1 #require killdaemons
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	2
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	3 $ cat > fakeremoteuser.py << EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	4 > import os
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	5 > from mercurial.hgweb import hgweb_mod
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	6 > from mercurial import wireproto
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	7 > class testenvhgweb(hgweb_mod.hgweb):
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	8 > def __call__(self, env, respond):
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	9 > # Allow REMOTE_USER to define authenticated user.
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	10 > if r'REMOTE_USER' in os.environ:
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	11 > env[r'REMOTE_USER'] = os.environ[r'REMOTE_USER']
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	12 > # Allow REQUEST_METHOD to override HTTP method
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	13 > if r'REQUEST_METHOD' in os.environ:
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	14 > env[r'REQUEST_METHOD'] = os.environ[r'REQUEST_METHOD']
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	15 > return super(testenvhgweb, self).__call__(env, respond)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	16 > hgweb_mod.hgweb = testenvhgweb
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	17 >
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	18 > @wireproto.wireprotocommand('customreadnoperm')
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	19 > def customread(repo, proto):
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	20 > return b'read-only command no defined permissions\n'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	21 > @wireproto.wireprotocommand('customwritenoperm')
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	22 > def customwritenoperm(repo, proto):
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	23 > return b'write command no defined permissions\n'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	24 > hgweb_mod.perms['customreadwithperm'] = 'pull'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	25 > @wireproto.wireprotocommand('customreadwithperm')
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	26 > def customreadwithperm(repo, proto):
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	27 > return b'read-only command w/ defined permissions\n'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	28 > hgweb_mod.perms['customwritewithperm'] = 'push'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	29 > @wireproto.wireprotocommand('customwritewithperm')
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	30 > def customwritewithperm(repo, proto):
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	31 > return b'write command w/ defined permissions\n'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	32 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	33
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	34 $ cat >> $HGRCPATH << EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	35 > [extensions]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	36 > fakeremoteuser = $TESTTMP/fakeremoteuser.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	37 > strip =
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	38 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	39
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	40 $ hg init test
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	41 $ cd test
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	42 $ echo a > a
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	43 $ hg ci -Ama
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	44 adding a
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	45 $ cd ..
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	46 $ hg clone test test2
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	47 updating to branch default
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	48 1 files updated, 0 files merged, 0 files removed, 0 files unresolved
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	49 $ cd test2
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	50 $ echo a >> a
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	51 $ hg ci -mb
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	52 $ hg book bm -r 0
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	53 $ cd ../test
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	54
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	55 web.deny_read=* prevents access to wire protocol for all users
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	56
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	57 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	58 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	59 > deny_read = *
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	60 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	61
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	62 $ hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	63 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	64
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	65 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=capabilities'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	66 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	67
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	68 lookup changegroupsubset branchmap pushkey known getbundle unbundlehash batch streamreqs=generaldelta,revlogv1 $USUAL_BUNDLE2_CAPS_SERVER$ unbundle=HG10GZ,HG10BZ,HG10UN httpheader=1024 httpmediatype=0.1rx,0.1tx,0.2tx compression=$BUNDLE2_COMPRESSIONS$ (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	69
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	70 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=stream_out'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	71 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	72
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	73 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	74 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	75 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	76
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	77 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	78 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	79
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	80 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	81 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	82 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	83
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	84 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	85
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	86 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	87 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	88
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	89 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	90 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	91
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	92 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	93
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	94 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	95 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	96
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	97 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	98
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	99 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	100 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	101
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	102 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	103 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	104 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	105
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	106 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	107 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	108
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	109 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	110
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	111 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	112 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	113
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	114 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	115 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	116 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	117
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	118 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	119 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	120 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	121 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	122 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	123 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	124
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	125 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	126
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	127 web.deny_read=* with REMOTE_USER set still locks out clients
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	128
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	129 $ REMOTE_USER=authed_user hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	130 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	131
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	132 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=capabilities'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	133 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	134
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	135 lookup changegroupsubset branchmap pushkey known getbundle unbundlehash batch streamreqs=generaldelta,revlogv1 $USUAL_BUNDLE2_CAPS_SERVER$ unbundle=HG10GZ,HG10BZ,HG10UN httpheader=1024 httpmediatype=0.1rx,0.1tx,0.2tx compression=$BUNDLE2_COMPRESSIONS$ (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	136
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	137 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=stream_out'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	138 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	139
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	140 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	141 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	142 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	143
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	144 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	145
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	146 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	147 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	148
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	149 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	150 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	151
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	152 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	153
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	154 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	155 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	156
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	157 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	158
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	159 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	160 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	161
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	162 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	163 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	164 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	165
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	166 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	167 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	168
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	169 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	170
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	171 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	172 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	173
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	174 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	175 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	176 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	177
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	178 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	179 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	180 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	181 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	182 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	183 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	184
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	185 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	186
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	187 web.deny_read=<user> denies access to unauthenticated user
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	188
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	189 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	190 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	191 > deny_read = baduser1,baduser2
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	192 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	193
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	194 $ hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	195 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	196
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	197 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	198 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	199
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	200 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	201 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	202 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	203
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	204 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	205
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	206 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	207 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	208
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	209 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	210 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	211
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	212 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	213
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	214 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	215 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	216
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	217 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	218
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	219 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	220 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	221
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	222 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	223 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	224 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	225
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	226 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	227 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	228
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	229 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	230
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	231 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	232 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	233
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	234 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	235 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	236 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	237
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	238 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	239 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	240 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	241 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	242 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	243 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	244
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	245 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	246
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	247 web.deny_read=<user> denies access to users in deny list
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	248
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	249 $ REMOTE_USER=baduser2 hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	250 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	251
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	252 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	253 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	254
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	255 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	256 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	257 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	258
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	259 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	260
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	261 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	262 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	263
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	264 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	265 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	266
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	267 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	268
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	269 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	270 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	271
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	272 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	273
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	274 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	275 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	276
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	277 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	278 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	279 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	280
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	281 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	282 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	283
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	284 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	285
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	286 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	287 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	288
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	289 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	290 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	291 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	292
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	293 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	294 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	295 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	296 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	297 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	298 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	299
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	300 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	301
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	302 web.deny_read=<user> allows access to authenticated users not in list
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	303
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	304 $ REMOTE_USER=gooduser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	305 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	306
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	307 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	308 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	309
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	310 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	311 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	312
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	313 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	314 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	315
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	316 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	317 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	318
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	319 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	320 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	321
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	322 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	323
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	324 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	325 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	326
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	327 read-only command w/ defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	328
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	329 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	330
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	331 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	332 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	333
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	334 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	335
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	336 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	337 405 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	338
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	339 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	340 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	341 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	342
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	343 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	344 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	345 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	346 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	347
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	348 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	349
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	350 web.allow_read=* allows reads for unauthenticated users
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	351
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	352 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	353 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	354 > allow_read = *
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	355 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	356
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	357 $ hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	358 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	359
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	360 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	361 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	362
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	363 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	364 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	365
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	366 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	367 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	368
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	369 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	370 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	371
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	372 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	373 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	374
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	375 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	376
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	377 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	378 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	379
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	380 read-only command w/ defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	381
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	382 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	383
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	384 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	385 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	386
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	387 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	388
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	389 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	390 405 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	391
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	392 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	393 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	394 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	395
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	396 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	397 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	398 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	399 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	400
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	401 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	402
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	403 web.allow_read=* allows read for authenticated user
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	404
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	405 $ REMOTE_USER=authed_user hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	406 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	407
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	408 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	409 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	410
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	411 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	412 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	413
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	414 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	415 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	416
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	417 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	418 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	419
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	420 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	421 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	422
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	423 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	424
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	425 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	426 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	427
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	428 read-only command w/ defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	429
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	430 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	431
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	432 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	433 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	434
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	435 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	436
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	437 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	438 405 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	439
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	440 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	441 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	442 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	443
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	444 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	445 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	446 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	447 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	448
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	449 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	450
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	451 web.allow_read=<user> does not allow unauthenticated users to read
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	452
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	453 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	454 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	455 > allow_read = gooduser
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	456 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	457
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	458 $ hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	459 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	460
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	461 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	462 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	463
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	464 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	465 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	466 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	467
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	468 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	469
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	470 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	471 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	472
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	473 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	474 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	475
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	476 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	477
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	478 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	479 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	480
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	481 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	482
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	483 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	484 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	485
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	486 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	487 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	488 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	489
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	490 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	491 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	492
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	493 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	494
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	495 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	496 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	497
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	498 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	499 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	500 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	501
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	502 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	503 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	504 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	505 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	506 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	507 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	508
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	509 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	510
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	511 web.allow_read=<user> does not allow user not in list to read
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	512
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	513 $ REMOTE_USER=baduser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	514 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	515
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	516 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	517 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	518
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	519 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	520 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	521 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	522
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	523 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	524
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	525 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	526 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	527
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	528 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	529 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	530
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	531 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	532
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	533 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	534 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	535
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	536 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	537
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	538 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	539 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	540
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	541 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	542 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	543 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	544
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	545 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	546 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	547
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	548 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	549
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	550 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	551 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	552
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	553 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	554 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	555 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	556
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	557 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	558 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	559 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	560 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	561 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	562 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	563
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	564 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	565
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	566 web.allow_read=<user> allows read from user in list
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	567
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	568 $ REMOTE_USER=gooduser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	569 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	570
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	571 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	572 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	573
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	574 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	575 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	576
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	577 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	578 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	579
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	580 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	581 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	582
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	583 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	584 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	585
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	586 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	587
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	588 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	589 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	590
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	591 read-only command w/ defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	592
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	593 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	594
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	595 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	596 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	597
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	598 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	599
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	600 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	601 405 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	602
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	603 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	604 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	605 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	606
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	607 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	608 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	609 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	610 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	611
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	612 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	613
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	614 web.deny_read takes precedence over web.allow_read
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	615
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	616 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	617 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	618 > allow_read = baduser
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	619 > deny_read = baduser
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	620 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	621
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	622 $ REMOTE_USER=baduser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	623 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	624
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	625 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	626 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	627
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	628 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	629 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	630 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	631
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	632 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	633
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	634 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	635 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	636
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	637 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	638 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	639
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	640 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	641
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	642 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	643 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	644
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	645 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	646
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	647 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	648 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	649
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	650 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	651 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	652 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	653
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	654 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	655 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	656
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	657 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	658
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	659 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	660 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	661
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	662 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	663 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	664 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	665
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	666 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	667 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	668 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	669 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	670 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	671 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	672
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	673 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	674
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	675 web.allow-pull=false denies read access to repo
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	676
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	677 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	678 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	679 > allow-pull = false
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	680 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	681
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	682 $ hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	683 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	684
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	685 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=capabilities'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	686 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	687
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	688 lookup changegroupsubset branchmap pushkey known getbundle unbundlehash batch streamreqs=generaldelta,revlogv1 $USUAL_BUNDLE2_CAPS_SERVER$ unbundle=HG10GZ,HG10BZ,HG10UN httpheader=1024 httpmediatype=0.1rx,0.1tx,0.2tx compression=$BUNDLE2_COMPRESSIONS$ (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	689
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	690 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=listkeys' --requestheader 'x-hgarg-1=namespace=phases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	691 401 pull not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	692
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	693 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	694 pull not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	695 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	696
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	697 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	698
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	699 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=listkeys+namespace%3Dphases'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	700 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	701
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	702 cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	703 publishing True (no-eol)
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	704
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	705 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	706
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	707 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	708 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	709
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	710 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	711
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	712 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	713 401 pull not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	714
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	715 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	716 pull not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	717 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	718
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	719 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	720 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	721
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	722 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	723
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	724 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	725 405 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	726
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	727 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	728 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	729 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	730
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	731 $ hg --cwd ../test2 pull http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	732 pulling from http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	733 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	734 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	735 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	736 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	737
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	738 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	739
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	740 Attempting a write command with HTTP GET fails
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	741
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	742 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	743 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	744
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	745 $ REQUEST_METHOD=GET hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	746 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	747
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	748 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	749 405 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	750
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	751 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	752 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	753 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	754
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	755 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	756
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	757 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	758 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	759
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	760 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	761
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	762 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	763 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	764 $ hg bookmark -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	765
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	766 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	767
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	768 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	769 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	770
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	771 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	772
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	773 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	774 405 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	775
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	776 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	777 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	778 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	779
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	780 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	781
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	782 Attempting a write command with an unknown HTTP verb fails
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	783
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	784 $ REQUEST_METHOD=someverb hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	785 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	786
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	787 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	788 405 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	789
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	790 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	791 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	792 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	793
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	794 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	795
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	796 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	797 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	798
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	799 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	800
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	801 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	802 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	803 $ hg bookmark -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	804
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	805 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	806
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	807 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	808 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	809
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	810 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	811
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	812 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	813 405 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	814
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	815 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	816 push requires POST request
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	817 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	818
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	819 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	820
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	821 Pushing on a plaintext channel is disabled by default
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	822
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	823 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	824 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	825
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	826 $ REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	827 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	828
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	829 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	830 403 ssl required
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	831
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	832 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	833 ssl required
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	834 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	835
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	836 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	837
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	838 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	839 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	840
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	841 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	842
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	843 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	844 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	845 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	846
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	847 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	848
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	849 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	850 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	851
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	852 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	853
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	854 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	855 403 ssl required
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	856
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	857 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	858 ssl required
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	859 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	860
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	861 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	862
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	863 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	864 $ hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	865 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	866
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	867 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	868 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	869 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	870 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	871 abort: HTTP Error 403: ssl required
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	872 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	873
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	874 $ hg --cwd ../test2 push http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	875 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	876 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	877 abort: HTTP Error 403: ssl required
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	878 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	879
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	880 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	881
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	882 web.deny_push=* denies pushing to unauthenticated users
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	883
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	884 $ cat > .hg/hgrc <<EOF
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	885 > [web]
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	886 > push_ssl = false
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	887 > deny_push = *
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	888 > EOF
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	889
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	890 $ REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	891 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	892
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	893 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	894 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	895
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	896 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	897 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	898 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	899
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	900 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	901
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	902 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	903 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	904
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	905 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	906
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	907 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	908 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	909 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	910
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	911 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	912
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	913 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	914 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	915
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	916 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	917
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	918 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	919 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	920
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	921 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	922 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	923 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	924
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	925 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	926
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	927 $ killdaemons.py
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	928 $ hg serve -p $HGPORT -d --pid-file hg.pid
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	929 $ cat hg.pid > $DAEMON_PIDS
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	930
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	931 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	932 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	933 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	934 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	935 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	936 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	937
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	938 $ hg --cwd ../test2 push http://localhost:$HGPORT/
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	939 pushing to http://localhost:$HGPORT/
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	940 searching for changes
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	941 abort: authorization failed
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	942 [255]
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	943
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	944 $ killdaemons.py
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	945
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	946 web.deny_push=* denies pushing to authenticated users
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	947
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	948 $ REMOTE_USER=someuser REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	949 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	950
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	951 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	952 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	953
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	954 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	955 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	956 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	957
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	958 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	959
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	960 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	961 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	962
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	963 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	964
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	965 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	966 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	967 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	968
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	969 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	970
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	971 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	972 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	973
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	974 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	975
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	976 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	977 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	978
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	979 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	980 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	981 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	982
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	983 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	984
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	985 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	986 $ REMOTE_USER=someuser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	987 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	988
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	989 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	990 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	991 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	992 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	993 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	994 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	995
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	996 $ hg --cwd ../test2 push http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	997 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	998 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	999 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1000 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1001
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1002 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1003
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1004 web.deny_push=<user> denies pushing to user in list
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1005
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1006 $ cat > .hg/hgrc <<EOF
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1007 > [web]
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1008 > push_ssl = false
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1009 > deny_push = baduser
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1010 > EOF
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1011
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1012 $ REMOTE_USER=baduser REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1013 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1014
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1015 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1016 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1017
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1018 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1019 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1020 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1021
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1022 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1023
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1024 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1025 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1026
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1027 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1028
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1029 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1030 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1031 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1032
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1033 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1034
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1035 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1036 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1037
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1038 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1039
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1040 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1041 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1042
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1043 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1044 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1045 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1046
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1047 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1048
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1049 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1050 $ REMOTE_USER=baduser hg serve -p $HGPORT -d --pid-file hg.pid
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1051 $ cat hg.pid > $DAEMON_PIDS
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1052
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1053 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1054 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1055 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1056 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1057 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1058 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1059
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1060 $ hg --cwd ../test2 push http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1061 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1062 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1063 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1064 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1065
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1066 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1067
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1068 web.deny_push=<user> denies pushing to user not in list because allow-push isn't set
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1069
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1070 $ REMOTE_USER=gooduser REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1071 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1072
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1073 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1074 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1075
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1076 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1077 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1078 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1079
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1080 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1081
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1082 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1083 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1084
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1085 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1086
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1087 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1088 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1089 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1090
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1091 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1092
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1093 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1094 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1095
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1096 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1097
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1098 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1099 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1100
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1101 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1102 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1103 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1104
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1105 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1106
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1107 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1108 $ REMOTE_USER=gooduser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1109 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1110
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1111 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1112 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1113 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1114 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1115 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1116 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1117
36751 2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1118 $ hg --cwd ../test2 push http://localhost:$HGPORT/
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1119 pushing to http://localhost:$HGPORT/
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1120 searching for changes
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1121 abort: authorization failed
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1122 [255]
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1123
2c647da851ed tests: extract HTTP permissions tests to own test file Gregory Szorc <gregory.szorc@gmail.com> parents: diff changeset	1124 $ killdaemons.py
36752 bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1125
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1126 web.allow-push=* allows pushes from unauthenticated users
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1127
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1128 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1129 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1130 > push_ssl = false
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1131 > allow-push = *
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1132 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1133
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1134 $ REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1135 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1136
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1137 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1138 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1139
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1140 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1141
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1142 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1143 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1144 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1145
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1146 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1147 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1148
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1149 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1150
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1151 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1152 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1153
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1154 write command w/ defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1155
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1156 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1157
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1158 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1159 $ hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1160 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1161
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1162 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1163 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1164 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1165 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1166 exporting bookmark bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1167 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1168
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1169 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1170
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1171 $ hg --cwd ../test2 push http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1172 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1173 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1174 remote: adding changesets
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1175 remote: adding manifests
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1176 remote: adding file changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1177 remote: added 1 changesets with 1 changes to 1 files
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1178
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1179 $ hg strip -r 1:
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1180 saved backup bundle to $TESTTMP/test/.hg/strip-backup/ba677d0156c1-eea704d7-backup.hg
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1181
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1182 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1183
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1184 web.allow-push=* allows pushes from authenticated users
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1185
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1186 $ REMOTE_USER=someuser REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1187 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1188
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1189 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1190 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1191
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1192 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1193
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1194 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1195 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1196 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1197
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1198 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1199 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1200
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1201 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1202
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1203 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1204 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1205
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1206 write command w/ defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1207
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1208 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1209
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1210 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1211 $ REMOTE_USER=someuser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1212 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1213
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1214 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1215 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1216 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1217 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1218 exporting bookmark bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1219 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1220
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1221 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1222
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1223 $ hg --cwd ../test2 push http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1224 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1225 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1226 remote: adding changesets
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1227 remote: adding manifests
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1228 remote: adding file changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1229 remote: added 1 changesets with 1 changes to 1 files
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1230
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1231 $ hg strip -r 1:
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1232 saved backup bundle to $TESTTMP/test/.hg/strip-backup/ba677d0156c1-eea704d7-backup.hg
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1233
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1234 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1235
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1236 web.allow-push=<user> denies push to user not in list
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1237
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1238 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1239 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1240 > push_ssl = false
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1241 > allow-push = gooduser
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1242 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1243
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1244 $ REMOTE_USER=baduser REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1245 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1246
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1247 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1248 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1249
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1250 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1251 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1252 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1253
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1254 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1255
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1256 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1257 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1258
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1259 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1260
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1261 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1262 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1263 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1264
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1265 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1266
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1267 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1268 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1269
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1270 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1271
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1272 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1273 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1274
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1275 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1276 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1277 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1278
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1279 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1280
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1281 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1282 $ REMOTE_USER=baduser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1283 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1284
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1285 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1286 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1287 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1288 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1289 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1290 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1291
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1292 $ hg --cwd ../test2 push http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1293 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1294 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1295 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1296 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1297
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1298 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1299
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1300 web.allow-push=<user> allows push from user in list
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1301
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1302 $ REMOTE_USER=gooduser REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1303 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1304
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1305 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1306 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1307
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1308 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1309
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1310 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1311 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1312 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1313
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1314 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1315 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1316
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1317 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1318
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1319 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1320 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1321 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1322
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1323 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1324 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1325
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1326 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1327
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1328 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1329 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1330
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1331 write command w/ defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1332
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1333 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1334
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1335 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1336 $ REMOTE_USER=gooduser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1337 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1338
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1339 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1340 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1341 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1342 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1343 exporting bookmark bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1344 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1345
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1346 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1347
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1348 $ hg --cwd ../test2 push http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1349 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1350 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1351 remote: adding changesets
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1352 remote: adding manifests
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1353 remote: adding file changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1354 remote: added 1 changesets with 1 changes to 1 files
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1355
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1356 $ hg strip -r 1:
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1357 saved backup bundle to $TESTTMP/test/.hg/strip-backup/ba677d0156c1-eea704d7-backup.hg
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1358
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1359 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1360
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1361 web.deny_push takes precedence over web.allow_push
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1362
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1363 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1364 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1365 > push_ssl = false
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1366 > allow-push = someuser
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1367 > deny_push = someuser
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1368 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1369
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1370 $ REMOTE_USER=someuser REQUEST_METHOD=POST hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1371 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1372
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1373 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1374 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1375
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1376 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1377 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1378 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1379
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1380 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1381
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1382 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1383 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1384
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1385 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1386
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1387 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1388 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1389 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1390
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1391 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1392
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1393 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1394 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1395
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1396 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1397
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1398 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1399 401 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1400
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1401 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1402 push not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1403 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1404
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1405 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1406
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1407 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1408 $ REMOTE_USER=someuser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1409 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1410
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1411 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1412 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1413 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1414 no changes found
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1415 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1416 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1417
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1418 $ hg --cwd ../test2 push http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1419 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1420 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1421 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1422 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1423
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1424 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1425
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1426 web.allow-push has no effect if web.deny_read is set
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1427
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1428 $ cat > .hg/hgrc <<EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1429 > [web]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1430 > push_ssl = false
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1431 > allow-push = *
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1432 > deny_read = *
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1433 > EOF
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1434
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1435 $ REQUEST_METHOD=POST REMOTE_USER=someuser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1436 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1437
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1438 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=pushkey' --requestheader 'x-hgarg-1=namespace=bookmarks&key=bm&old=&new=cb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1439 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1440
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1441 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1442 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1443 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1444
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1445 TODO batch command doesn't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1446
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1447 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=batch' --requestheader 'x-hgarg-1=cmds=pushkey+namespace%3Dbookmarks%2Ckey%3Dbm%2Cold%3D%2Cnew%3Dcb9a9f314b8b07ba71012fcdbc544b5a4d82ff5b'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1448 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1449
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1450 1
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1451
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1452 $ hg bookmarks
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1453 bm 0:cb9a9f314b8b
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1454 $ hg book -d bm
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1455
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1456 TODO custom commands don't check permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1457
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1458 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadnoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1459 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1460
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1461 read-only command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1462
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1463 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customreadwithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1464 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1465
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1466 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1467 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1468 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1469
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1470 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritenoperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1471 200 Script output follows
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1472
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1473 write command no defined permissions
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1474
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1475 $ get-with-headers.py $LOCALIP:$HGPORT '?cmd=customwritewithperm'
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1476 401 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1477
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1478 0
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1479 read not authorized
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1480 [1]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1481
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1482 Reset server to remove REQUEST_METHOD hack to test hg client
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1483
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1484 $ killdaemons.py
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1485 $ REMOTE_USER=someuser hg serve -p $HGPORT -d --pid-file hg.pid
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1486 $ cat hg.pid > $DAEMON_PIDS
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1487
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1488 $ hg --cwd ../test2 push -B bm http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1489 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1490 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1491 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1492 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1493
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1494 $ hg --cwd ../test2 push http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1495 pushing to http://localhost:$HGPORT/
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1496 searching for changes
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1497 abort: authorization failed
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1498 [255]
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1499
bbd4027b019b tests: comprehensively test HTTP server permissions checking Gregory Szorc <gregory.szorc@gmail.com> parents: 36751 diff changeset	1500 $ killdaemons.py

Mercurial > hg

annotate tests/test-http-permissions.t @ 36752:bbd4027b019b stable