Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support authentication #128

Open
wants to merge 16 commits into
base: master
Choose a base branch
from
Open

Support authentication #128

wants to merge 16 commits into from

Conversation

kyrofa
Copy link

@kyrofa kyrofa commented Apr 22, 2020
edited
Loading

vcs_base.load_url() currently doesn't support authentication. Add support for both basic and token-based authentication by parsing netrc-formatted files. Use appdirs to support vcstool-specific authentication files for both the user and the system (user takes precedence).

@kyrofa kyrofa force-pushed the feature/netrc-support branch from 0a7b055 to a9e9a4f Compare April 22, 2020 23:59
@kyrofa kyrofa mentioned this pull request Apr 23, 2020
Closed
@kyrofa kyrofa force-pushed the feature/netrc-support branch from d341bc2 to a9e9a4f Compare April 23, 2020 00:11
@kyrofa
Copy link
Author

kyrofa commented Apr 23, 2020
edited
Loading

Huh. I'm not sure what I'm doing wrong on the mock bits for earlier pythons.

@kyrofa kyrofa force-pushed the feature/netrc-support branch from ffd89d0 to 95b8db6 Compare April 23, 2020 21:33
@kyrofa
Copy link
Author

kyrofa commented Apr 23, 2020

Ah ha, it's an upstream python bug. All fixed now.

@kyrofa kyrofa force-pushed the feature/netrc-support branch 2 times, most recently from 7a1be83 to 042fc24 Compare April 23, 2020 22:29
@dirk-thomas
Copy link
Owner

Note that this borrows heavily from vcstools.

As discussed offline it needs to be double checked that this contribution complies with the license.

@kyrofa
Support authentication
b7f27ae 
`vcs_base.load_url()` currently doesn't support authentication. Add
support for both basic and token-based authentication by parsing
netrc-formatted files. Use `appdirs` to support vcstool-specific
authentication files for both the user and the system (user takes
precedence).

Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa kyrofa force-pushed the feature/netrc-support branch from 042fc24 to b7f27ae Compare May 18, 2020 20:44
@kyrofa kyrofa changed the title Support authentication via netrc Support authentication May 18, 2020
@kyrofa
Copy link
Author

kyrofa commented May 18, 2020
edited
Loading

Alright, this has been completely redesigned and rewritten from scratch. It does introduce the appdirs dependency, as discussed.

dirk-thomas
dirk-thomas reviewed May 21, 2020
View reviewed changes
Copy link
Owner

@dirk-thomas dirk-thomas left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please add some documentation about the new auth files to the README.

(I haven't looked at the test code yet.)

vcstool/clients/vcs_base.py Outdated Show resolved Hide resolved
vcstool/clients/vcs_base.py Outdated Show resolved Hide resolved
vcstool/clients/vcs_base.py Outdated Show resolved Hide resolved
vcstool/clients/vcs_base.py Outdated Show resolved Hide resolved
.travis.yml Outdated Show resolved Hide resolved
kyrofa added 3 commits May 22, 2020 11:39
@kyrofa
Refactor authentication fallback return/raise pattern
1cdc397 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa
Add appdirs dependency
92a3bdf 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa
Make _authenticated_urlopen retryable
91f6ad0 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa kyrofa force-pushed the feature/netrc-support branch from b494569 to 91f6ad0 Compare May 22, 2020 20:41
kyrofa added 5 commits May 22, 2020 14:20
@kyrofa
Support testing authenticated URLs
f328627 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa
Use older assertRaisesRegexp
bdc0d09 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa
Get rid of assertRaisesRegex* completely
6b2b87b 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa
Use get_full_url()
7ea0db9 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa
Get rid of functools
157967f 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa
Document authentication behavior in README
fc361a2 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa kyrofa force-pushed the feature/netrc-support branch from 8b402e4 to fc361a2 Compare May 26, 2020 20:34
@kyrofa
Copy link
Author

kyrofa commented May 26, 2020

Please add some documentation about the new auth files to the README.

Done in fc361a2, does that seem to be a sensible place to put it?

dirk-thomas
dirk-thomas reviewed Jun 11, 2020
View reviewed changes
Copy link
Owner

@dirk-thomas dirk-thomas left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I made a few minor edits myself but added some more questions / suggestions inline.

README.rst Outdated Show resolved Hide resolved
vcstool/clients/vcs_base.py Show resolved Hide resolved
vcstool/clients/vcs_base.py
if e.errno not in (errno.ENOENT, errno.EACCES):
raise
except netrc.NetrcParseError:
# If this file had issues, don't error out so we can try fallbacks
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would a warning be more helpful to the user rather then silently ignoring it? On the other hand this behavior might match how other programs using .netrc work.

Copy link
Author

@kyrofa kyrofa Jun 15, 2020
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We're a little bit in uncharted territory here, to be honest. My inspiration for the design is apt, but one generally runs that as root, so running into permissions issues accessing those files isn't normally an issue. It could be here, if the machine admin only wanted members of a particular group to be able to fetch repositories using these credentials. I had mixed feelings about warning about this or quietly proceeding, so I'm happy adding a warning if you like.

dirk-thomas and others added 3 commits June 10, 2020 22:25
@dirk-thomas
style only
de57cd4
@kyrofa
Specify that this feature is for .tar and .zip
f06fdce 
Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa
Compare against Request type instead of str
45d012d 
For python 2 compatibility.

Signed-off-by: Kyle Fazzari <kyle@canonical.com>
@kyrofa
Copy link
Author

kyrofa commented Sep 3, 2020

Gentle ping here.

@kyrofa
Copy link
Author

kyrofa commented Oct 22, 2020

Hey @dirk-thomas, how are you feeling about this?

@scpeters scpeters mentioned this pull request Jan 4, 2021
Open
@galou galou mentioned this pull request May 14, 2021
Closed
@0xjairo
Copy link

0xjairo commented Jan 11, 2022

@kyrofa / @dirk-thomas is there a reason why this MR was not accepted?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dirk-thomas dirk-thomas dirk-thomas left review comments

Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@kyrofa @dirk-thomas @0xjairo