equal
deleted
inserted
replaced
46 |
46 |
47 # require ssl by default for pushing, auth info cannot be sniffed |
47 # require ssl by default for pushing, auth info cannot be sniffed |
48 # and replayed |
48 # and replayed |
49 scheme = req.env.get('wsgi.url_scheme') |
49 scheme = req.env.get('wsgi.url_scheme') |
50 if hgweb.configbool('web', 'push_ssl', True) and scheme != 'https': |
50 if hgweb.configbool('web', 'push_ssl', True) and scheme != 'https': |
51 raise ErrorResponse(HTTP_OK, 'ssl required') |
51 raise ErrorResponse(HTTP_FORBIDDEN, 'ssl required') |
52 |
52 |
53 deny = hgweb.configlist('web', 'deny_push') |
53 deny = hgweb.configlist('web', 'deny_push') |
54 if deny and (not user or deny == ['*'] or user in deny): |
54 if deny and (not user or deny == ['*'] or user in deny): |
55 raise ErrorResponse(HTTP_UNAUTHORIZED, 'push not authorized') |
55 raise ErrorResponse(HTTP_UNAUTHORIZED, 'push not authorized') |
56 |
56 |