Mercurial: comparison mercurial/hgweb/common.py

equal deleted inserted replaced

-:97f44b0720e2
+:02bea04b4c54
 def checkauthz(hgweb, req, op):
 '''Check permission for operation based on request data (including
 authentication info). Return if op allowed, else raise an ErrorResponse
 exception.'''
-user = req.env.get(r'REMOTE_USER')
+user = req.remoteuser
 deny_read = hgweb.configlist('web', 'deny_read')
 if deny_read and (not user or ismember(hgweb.repo.ui, user, deny_read)):
 raise ErrorResponse(HTTP_UNAUTHORIZED, 'read not authorized')
 raise ErrorResponse(HTTP_UNAUTHORIZED, 'pull not authorized')
 elif op == 'pull' or op is None: # op is None for interface requests
 return
 # enforce that you can only push using POST requests
-if req.env[r'REQUEST_METHOD'] != r'POST':
+if req.method != 'POST':
 msg = 'push requires POST request'
 raise ErrorResponse(HTTP_METHOD_NOT_ALLOWED, msg)
 # require ssl by default for pushing, auth info cannot be sniffed
 # and replayed
-scheme = req.env.get('wsgi.url_scheme')
+if hgweb.configbool('web', 'push_ssl') and req.urlscheme != 'https':
-if hgweb.configbool('web', 'push_ssl') and scheme != 'https':
 raise ErrorResponse(HTTP_FORBIDDEN, 'ssl required')
 deny = hgweb.configlist('web', 'deny_push')
 if deny and (not user or ismember(hgweb.repo.ui, user, deny)):
 raise ErrorResponse(HTTP_UNAUTHORIZED, 'push not authorized')