diff --git a/CHANGES b/CHANGES
index bc045506..d59618c8 100644
--- a/CHANGES
+++ b/CHANGES
@@ -1,6 +1,165 @@
Version 1.2.0 (released ??-???-????)
+ * bumped minimum support Python version to 2.4
+ * implemented support for property diffs (issue #383)
* allow user-configurable cvsgraph display (issue #336)
+ * allow rNNNN syntax for Subversion revision numbers (issue #441)
+
+Version 1.1.20 (released 24-Apr-2013)
+
+ * fix tab-to-space handling regression in markup view
+ * fix regression in root lookup handling (issue #526)
+
+Version 1.1.19 (released 22-Apr-2013)
+
+ * improve root lookup performance (issue #523)
+ * new 'max_filesize_kbytes' config option and handling (issue #524)
+ * tarball generation improvements:
+ - preserve Subversion symlinks in generated tarballs (issue #487)
+ - reduce memory usage of tarball generation logic
+ - fix double compression of generated tarballs (issue #525)
+ * file content handling improvements:
+ - expanded support for encoding detection and transcoding (issue #11)
+ - fix tab-to-space conversion bugs in markup, annotate, and diff views
+ - fix handling of trailing whitespace in diff view
+ * add support for timestamp display in ISO8601 format (issue #46)
+
+Version 1.1.18 (released 28-Feb-2013)
+
+ * fix exception raised by BDB-backed SVN repositories (issue #519)
+ * hide revision-less files when rcsparse is in use
+ * include branchpoints in branch views using rcsparse (issue #347)
+ * miscellaneous cvsdb improvements:
+ - add --port option to make-database (issue #521)
+ - explicitly name columns in queries (issue #522)
+ - update MySQL syntax to avoid discontinued "TYPE=" terms
+
+Version 1.1.17 (released 25-Oct-2012)
+
+ * fix exception caused by uninitialized variable usage (issue #516)
+
+Version 1.1.16 (released 24-Oct-2012)
+
+ * security fix: escape "extra" diff info to avoid XSS attack (issue #515)
+ * add 'binary_mime_types' configuration option and handling (issue #510)
+ * fix 'select for diffs' persistence across log pages (issue #512)
+ * remove lock status and filesize check on directories in remote SVN views
+ * fix bogus 'Annotation of' page title for non-annotated view (issue #514)
+
+Version 1.1.15 (released 22-Jun-2012)
+
+ * security fix: complete authz support for remote SVN views (issue #353)
+ * security fix: log msg leak in SVN revision view with unreadable copy source
+ * fix several instances of incorrect information in remote SVN views
+ * increase performance of some revision metadata lookups in remote SVN views
+ * fix RSS feed regression introduced in 1.1.14
+
+Version 1.1.14 (released 12-Jun-2012)
+
+ * fix annotation of svn files with non-URI-safe paths (issue #504)
+ * handle file:/// Subversion rootpaths as local roots (issue #446)
+ * fix bug caused by trying to case-normalize anon usernames (issue #505)
+ * speed up log handling by reusing tokenization results (issue #506)
+ * add support for custom revision log markup rules (issue #246)
+
+Version 1.1.13 (released 23-Jan-2012)
+
+ * fix svndbadmin failure on deleted paths under Subversion 1.7 (issue #499)
+ * fix annotation of files in svn roots with non-URI-safe paths
+ * fix stray annotation warning in markup display of images
+ * more gracefully handle attempts to display binary content (issue #501)
+
+Version 1.1.12 (released 03-Nov-2011)
+
+ * fix path display in patch and certain diff views (issue #485)
+ * fix broken cvsdb glob searching (issue 486)
+ * allow svn revision specifiers to have leading r's (issue #441, #448)
+ * allow environmental override of configuration location (issue #494)
+ * fix exception HTML-escaping non-string data under WSGI (issue #454)
+ * add links to root logs from roots view (issue #470)
+ * use Pygments lexer-guessing functionality (issue #495)
+
+Version 1.1.11 (released 17-May-2011)
+
+ * security fix: remove user-reachable override of cvsdb row limit
+ * fix broken standalone.py -c and -d options handling
+ * add --help option to standalone.py
+ * fix stack trace when asked to checkout a directory (issue #478)
+ * improve memory usage and speed of revision log markup (issue #477)
+ * fix broken annotation view in CVS keyword-bearing files (issue #479)
+ * warn users when query results are incomplete (issue #433)
+ * avoid parsing errors on RCS newphrases in the admin section (issue #483)
+ * make rlog parsing code more robust in certain error cases (issue #444)
+
+Version 1.1.10 (released 15-Mar-2011)
+
+ * fix stack trace in Subversion revision info logic (issue #475, issue #476)
+
+Version 1.1.9 (released 18-Feb-2011)
+
+ * vcauth universal access determinations (issue #425)
+ * rework svn revision info cache for performance
+ * make revision log "extra pages" count configurable
+ * fix Subversion 1.4.x revision log compatibility code regression
+ * display sanitized error when authzfile is malformed
+ * restore markup of URLs in file contents (issue #455)
+ * optionally display last-committed metadata in roots view (issue #457)
+
+Version 1.1.8 (released 02-Dec-2010)
+
+ * fix slowness triggered by allow_compress=1 configuration (issue #467)
+ * allow use of 'fcrypt' for Windows standalone.py authn support (issue #471)
+ * yield more useful error on directory markup/annotate request (issue #472)
+
+Version 1.1.7 (released 09-Sep-2010)
+
+ * display Subversion revision properties in the revision view (issue #453)
+ * fix exception in 'standalone.py -r REPOS' when run without a config file
+ * fix standalone.py server root deployments (--script-alias='')
+ * add rudimentary Basic authentication support to standalone.py (issue #49)
+ * fix obscure "unexpected NULL parent pool" Subversion bindings error
+ * enable path info / link display in remote Subversion root revision view
+ * fix vhost name case handling inconsistency (issue #466)
+ * use svn:mime-type property charset param as encoding hint
+ * markup Subversion revision references in log messages (issue #313)
+ * add rudimentary support for FastCGI-based deployments (issue #464)
+ * fix query script WSGI deployment
+ * add configuration to fix query script cross-linking to ViewVC
+
+Version 1.1.6 (released 02-Jun-2010)
+
+ * add rudimentary support for WSGI-based deployments (issue #397)
+ * fix exception caused by trying to HTML-escape non-string data (issue #454)
+ * fix incorrect RSS feed Content-Type header (issue #449)
+ * fix RSS encoding problem (issue #451)
+ * allow 'svndbadmin purge' to work on missing repositories (issue #452)
+
+Version 1.1.5 (released 29-Mar-2010)
+
+ * security fix: escape user-provided search_re input to avoid XSS attack
+
+Version 1.1.4 (released 10-Mar-2010)
+
+ * security fix: escape user-provided query form input to avoid XSS attack
+ * fix standalone.py failure (when per-root options aren't used) (issue #445)
+ * fix annotate failure caused by ignored svn_config_dir (issue #447)
+
+Version 1.1.3 (released 22-Dec-2009)
+
+ * security fix: add root listing support of per-root authz config
+ * security fix: query.py requires 'forbidden' authorizer (or none) in config
+ * fix URL-ification of truncated log messages (issue #3)
+ * fix regexp input validation (issue #426, #427, #440)
+ * add support for configurable tab-to-spaces conversion
+ * fix not-a-sequence error in diff view
+ * allow viewvc-install to work when templates-contrib is absent
+ * minor template improvements/corrections
+ * expose revision metadata in diff view (issue #431)
+ * markup file/directory item property URLs and email addresses (issue #434)
+ * make ViewVC cross copies in Subversion history by default
+ * fix bug that caused standalone.py failure under Python 1.5.2 (issue #442)
+ * fix support for per-vhost overrides of authorizer parameters (issue #411)
+ * fix root name identification in query.py interface
Version 1.1.2 (released 11-Aug-2009)
@@ -62,6 +221,27 @@ Version 1.1.0 (released 13-May-2009)
* fix exception in rev-sorted remote Subversion directory views (issue #409)
* allow setting of page sizes for log and dir views individually (issue #402)
+Version 1.0.13 (released 24-Oct-2012)
+
+ * security fix: escape "extra" diff info to avoid XSS attack (issue #515)
+ * security fix: remove user-reachable override of cvsdb row limit
+ * fix obscure "unexpected NULL parent pool" Subversion bindings error
+ * fix svndbadmin failure on deleted paths under Subversion 1.7 (issue #499)
+
+Version 1.0.12 (released 02-Jun-2010)
+
+ * fix exception caused by trying to HTML-escape non-string data (issue #454)
+
+Version 1.0.11 (released 29-Mar-2010)
+
+ * security fix: escape user-provided search_re input to avoid XSS attack
+
+Version 1.0.10 (released 10-Mar-2010)
+
+ * security fix: escape user-provided query form input to avoid XSS attack
+ * fix errors viewing remote Subversion paths with URI-unsafe characters
+ * fix regexp input validation (issue #426, #427, #440)
+
Version 1.0.9 (released 11-Aug-2009)
* security fix: validate the 'view' parameter to avoid XSS attack
diff --git a/INSTALL b/INSTALL
index 1d15d9a6..d193c8d9 100644
--- a/INSTALL
+++ b/INSTALL
@@ -17,10 +17,13 @@ Congratulations on getting this far. :-)
Required Software And Configuration Needed To Run ViewVC:
+ In General:
+
+ * Python 2, version 2.4 or later (sorry, no 3.x support yet)
+ (http://www.python.org/)
+
For CVS Support:
- * Python 1.5.2 or later
- (http://www.python.org/)
* RCS, Revision Control System
(http://www.cs.purdue.edu/homes/trinkle/RCS/)
* GNU-diff to replace diff implementations without the -u option
@@ -30,11 +33,9 @@ Congratulations on getting this far. :-)
For Subversion Support:
- * Python 2.0 or later
- (http://www.python.org/)
* Subversion, Version Control System, 1.3.1 or later
(binary installation and Python bindings)
- (http://subversion.tigris.org/)
+ (http://subversion.apache.org/)
Optional:
@@ -168,72 +169,185 @@ checkin database working are below.
APACHE CONFIGURATION
--------------------
-1) Find out where the web server configuration file is kept. Typical
- locations are /etc/httpd/httpd.conf, /etc/httpd/conf/httpd.conf,
- and /etc/apache/httpd.conf. Depending on how apache was installed,
- you may also look under /usr/local/etc or /etc/local. Use the vendor
- documentation or the find utility if in doubt.
+1) Locate your Apache configuration file(s).
-Either METHOD A:
-2) The ScriptAlias directive is very useful for pointing
+ Typical locations are /etc/httpd/httpd.conf,
+ /etc/httpd/conf/httpd.conf, and /etc/apache/httpd.conf. Depending
+ on how Apache was installed, you may also look under /usr/local/etc
+ or /etc/local. Use the vendor documentation or the find utility if
+ in doubt.
+
+2) Depending on how your Apache configuration is setup by default, you
+ might need to explicitly allow high-level access to the ViewVC
+ install location.
+
+ <Directory <VIEWVC_INSTALLATION_DIRECTORY>>
+ Order allow,deny
+ Allow from all
+ </Directory>
+
+ For example, if ViewVC is installed in /usr/local/viewvc-1.0 on
+ your system:
+
+ <Directory /usr/local/viewvc-1.0>
+ Order allow,deny
+ Allow from all
+ </Directory>
+
+3) Configure Apache to expose ViewVC to users at the URL of your choice.
+
+ ViewVC provides several different ways to do this. Choose one of
+ the following methods:
+
+ -----------------------------------
+ METHOD A: CGI mode via ScriptAlias
+ -----------------------------------
+ The ScriptAlias directive is very useful for pointing
directly to the viewvc.cgi script. Simply insert a line containing
- ScriptAlias /viewvc <VIEWVC_INSTALLATION_DIRECTORY>/bin/cgi/viewvc.cgi
+ ScriptAlias /viewvc <VIEWVC_INSTALLATION_DIRECTORY>/bin/cgi/viewvc.cgi
into your httpd.conf file. Choose the location in httpd.conf where
also the other ScriptAlias lines reside. Some examples:
- ScriptAlias /viewvc /usr/local/viewvc-1.0/bin/cgi/viewvc.cgi
- ScriptAlias /query /usr/local/viewvc-1.0/bin/cgi/query.cgi
+ ScriptAlias /viewvc /usr/local/viewvc-1.0/bin/cgi/viewvc.cgi
+ ScriptAlias /query /usr/local/viewvc-1.0/bin/cgi/query.cgi
- continue with step 3).
-
-or alternatively METHOD B:
-2) Copy the CGI scripts from
+ ----------------------------------------
+ METHOD B: CGI mode in cgi-bin directory
+ ----------------------------------------
+ Copy the CGI scripts from
<VIEWVC_INSTALLATION_DIRECTORY>/bin/cgi/*.cgi
to the /cgi-bin/ directory configured in your httpd.conf file.
- continue with step 3).
+ You can override configuration file location using:
+
+ SetEnv VIEWVC_CONF_PATHNAME /etc/viewvc.conf
-and then there's METHOD C:
-2) Copy the CGI scripts from
+ ------------------------------------------
+ METHOD C: CGI mode in ExecCGI'd directory
+ ------------------------------------------
+ Copy the CGI scripts from
<VIEWVC_INSTALLATION_DIRECTORY>/bin/cgi/*.cgi
to the directory of your choosing in the Document Root adding the following
- apache directives for the directory in httpd.conf or an .htaccess file:
+ Apache directives for the directory in httpd.conf or an .htaccess file:
- Options +ExecCGI
- AddHandler cgi-script .cgi
+ Options +ExecCGI
+ AddHandler cgi-script .cgi
- (Note: For this to work mod_cgi has to be loaded. And for the .htaccess file
+ Note: For this to work mod_cgi has to be loaded. And for the .htaccess file
to be effective, "AllowOverride All" or "AllowOverride Options FileInfo"
- need to have been specified for the directory.)
+ needs to have been specified for the directory.
- continue with step 3).
-
-or if you've got Mod_Python installed you can use METHOD D:
-2) Copy the Python scripts and .htaccess file from
+ ------------------------------------------
+ METHOD D: Using mod_python (if installed)
+ ------------------------------------------
+ Copy the Python scripts and .htaccess file from
<VIEWVC_INSTALLATION_DIRECTORY>/bin/mod_python/
- to a directory being served by apache.
+ to a directory being served by Apache.
In httpd.conf, make sure that "AllowOverride All" or at least
"AllowOverride FileInfo Options" are enabled for the directory
you copied the files to.
+
+ You can override configuration file location using:
+
+ SetEnv VIEWVC_CONF_PATHNAME /etc/viewvc.conf
Note: If you are using Mod_Python under Apache 1.3 the tarball generation
feature may not work because it uses multithreading. This works fine
under Apache 2.
- continue with step 3).
+ ----------------------------------------
+ METHOD E: Using mod_wsgi (if installed)
+ ----------------------------------------
+ Copy the Python scripts file from
+ <VIEWVC_INSTALLATION_DIRECTORY>/bin/wsgi/
+ to the directory of your choosing. Modify httpd.conf with the
+ following directives:
-3) Restart apache. The commands to do this vary. "httpd -k restart" and
- "apache -k restart" are two common variants. On RedHat Linux it is
- done using the command "/sbin/service httpd restart" and on SuSE Linux
- it is done with "rcapache restart"
+ WSGIScriptAlias /viewvc <VIEWVC_INSTALLATION_DIRECTORY>/bin/wsgi/viewvc.wsgi
+ WSGIScriptAlias /query <VIEWVC_INSTALLATION_DIRECTORY>/bin/wsgi/query.wsgi
-4) Optional: Add access control.
+ You'll probably also need the following directive because of the
+ not-quite-sanctioned way that ViewVC manipulates Python objects.
- In your httpd.conf you can control access to certain modules by adding
- directives like this:
+ WSGIApplicationGroup %{GLOBAL}
+
+ Note: WSGI support in ViewVC is at this time quite rudimentary,
+ bordering on downright experimental. Your mileage may vary.
+
+ -----------------------------------------
+ METHOD F: Using mod_fcgid (if installed)
+ -----------------------------------------
+
+ This uses ViewVC's WSGI support (from above), but supports using FastCGI,
+ and is a somewhat hybrid approach of several of the above methods.
+
+ Especially if fcgi is already being used for other purposes, e.g. PHP,
+ also using fcgi can prevent the need for including additional modules
+ (e.g. mod_python or mod_wsgi) within Apache, which may help lessen Apache's
+ memory usage and/or help improve performance.
+
+ This depends on mod_fcgid:
+
+ http://httpd.apache.org/mod_fcgid/
+
+ as well as the fcgi server from Python's flup package:
+
+ http://pypi.python.org/pypi/flup
+ http://trac.saddi.com/flup
+
+ The following are some example httpd.conf fragments you can use to
+ support this configuration:
+
+ ScriptAlias /viewvc /usr/local/viewvc/bin/wsgi/viewvc.fcgi
+ ScriptAlias /query /usr/local/viewvc/bin/wsgi/query.fcgi
+
+4) [Optional] Provide direct access to icons, stylesheets, etc.
+
+ ViewVC's HTML templates reference various stylesheets and icons
+ provided by ViewVC itself. By default, ViewVC generates URLs to
+ those artifacts which point back into ViewVC (using a magic
+ syntax); ViewVC in turn handles such magic URL requests by
+ streaming back the contents of the requested icon or stylesheet
+ file. While this simplifies the configuration and initial
+ deployment of ViewVC, it's not the most efficient approach to
+ deliver what is essentially static content.
+
+ To improve performance, consider carving out a URL space in your
+ webserver's configuration solely for this static content and
+ instruct ViewVC to use that space when generating URLs for that
+ content. For example, you might add an Alias such as the following
+ to your httpd.conf:
+
+ Alias /viewvc-docroot /usr/local/viewvc/templates/default/docroot
+
+ And then, in viewvc.conf, set the 'docroot' option to the same
+ location:
+
+ docroot = /viewvc-docroot
+
+ WARNING: As always when using Alias directives, be careful that you
+ have them in the correct order. For example, if you use an
+ ordering such as the following, Apache will hand requests for your
+ static documents off to ViewVC as if they were versioned resources:
+
+ ScriptAlias /viewvc /usr/local/viewvc/bin/wsgi/viewvc.fcgi
+ Alias /viewvc/static /usr/local/viewvc/templates/default/docroot
+
+ The correct order would be:
+
+ Alias /viewvc/static /usr/local/viewvc/templates/default/docroot
+ ScriptAlias /viewvc /usr/local/viewvc/bin/wsgi/viewvc.fcgi
+
+ (That said, it's best to avoid such namespace nesting altogether if
+ you can.)
+
+5) [Optional] Add access control.
+
+ In your httpd.conf you can control access to certain modules by
+ adding directives like this:
<Location "<url to viewvc.cgi>/<modname_you_wish_to_access_ctl>">
AllowOverride None
@@ -251,7 +365,14 @@ or if you've got Mod_Python installed you can use METHOD D:
http://<server_name>/viewvc/~checkout~/<module_name>
http://<server_name>/viewvc/<module_name>.tar.gz?view=tar
-5) Optional: Protect your ViewVC instance from server-whacking webcrawlers.
+6) Restart Apache.
+
+ The commands to do this vary. "httpd -k restart" and "apache -k
+ restart" are two common variants. On RedHat Linux it is done using
+ the command "/sbin/service httpd restart" and on SuSE Linux it is
+ done with "rcapache restart". Other systems use "apachectl restart".
+
+7) [Optional] Protect your ViewVC instance from server-whacking webcrawlers.
As ViewVC is a web-based application which each page containing various
links to other pages and views, you can expect your server's performance
diff --git a/LICENSE.html b/LICENSE.html
index 2dcb6d02..d15d9b8d 100644
--- a/LICENSE.html
+++ b/LICENSE.html
@@ -15,7 +15,7 @@
<blockquote>
-<p><strong>Copyright © 1999-2008 The ViewCVS Group. All rights
+<p><strong>Copyright © 1999-2013 The ViewCVS Group. All rights
reserved.</strong></p>
<p>By using ViewVC, you agree to the terms and conditions set forth
@@ -59,6 +59,11 @@
<li>March 17, 2006 — software renamed from "ViewCVS"</li>
<li>April 10, 2007 — copyright years updated</li>
<li>February 22, 2008 — copyright years updated</li>
+ <li>March 18, 2009 — copyright years updated</li>
+ <li>March 29, 2010 — copyright years updated</li>
+ <li>February 18, 2011 — copyright years updated</li>
+ <li>January 23, 2012 — copyright years updated</li>
+ <li>January 04, 2013 — copyright years updated</li>
</ul>
</body>
diff --git a/bin/asp/query.asp b/bin/asp/query.asp
index 314e2d8a..7eaa9467 100644
--- a/bin/asp/query.asp
+++ b/bin/asp/query.asp
@@ -3,7 +3,7 @@
# -*-python-*-
#
-# Copyright (C) 1999-2006 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
@@ -54,7 +54,10 @@ import query
server = sapi.AspServer(Server, Request, Response, Application)
try:
cfg = viewvc.load_config(CONF_PATHNAME, server)
- query.main(server, cfg, "viewvc.asp")
+ viewvc_base_url = cfg.query.viewvc_base_url
+ if viewvc_base_url is None:
+ viewvc_base_url = "viewvc.asp"
+ query.main(server, cfg, viewvc_base_url)
finally:
s.close()
diff --git a/bin/asp/viewvc.asp b/bin/asp/viewvc.asp
index 4f9b2cff..143ef045 100644
--- a/bin/asp/viewvc.asp
+++ b/bin/asp/viewvc.asp
@@ -3,7 +3,7 @@
# -*-python-*-
#
-# Copyright (C) 1999-2006 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
diff --git a/bin/cgi/query.cgi b/bin/cgi/query.cgi
index 408e6dab..99eba47a 100644
--- a/bin/cgi/query.cgi
+++ b/bin/cgi/query.cgi
@@ -1,7 +1,7 @@
#!/usr/bin/env python
# -*-python-*-
#
-# Copyright (C) 1999-2006 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
@@ -34,7 +34,7 @@ CONF_PATHNAME = viewvcinstallpath.CONF_PATHNAME
#########################################################################
#
-# Adjust sys.path to include our library directory
+# Adjust sys.path to include our library directory.
#
import sys
@@ -47,6 +47,20 @@ else:
"../../../lib")))
#########################################################################
+#
+# If admins want nicer processes, here's the place to get them.
+#
+
+#try:
+# os.nice(20) # bump the nice level of this process
+#except:
+# pass
+
+
+#########################################################################
+#
+# Go do the work.
+#
import sapi
import viewvc
@@ -54,4 +68,7 @@ import query
server = sapi.CgiServer()
cfg = viewvc.load_config(CONF_PATHNAME, server)
-query.main(server, cfg, "viewvc.cgi")
+viewvc_base_url = cfg.query.viewvc_base_url
+if viewvc_base_url is None:
+ viewvc_base_url = "viewvc.cgi"
+query.main(server, cfg, viewvc_base_url)
diff --git a/bin/cgi/viewvc.cgi b/bin/cgi/viewvc.cgi
index ae307323..eff18e09 100644
--- a/bin/cgi/viewvc.cgi
+++ b/bin/cgi/viewvc.cgi
@@ -1,7 +1,7 @@
#!/usr/bin/env python
# -*-python-*-
#
-# Copyright (C) 1999-2006 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
@@ -34,7 +34,7 @@ CONF_PATHNAME = viewvcinstallpath.CONF_PATHNAME
#########################################################################
#
-# Adjust sys.path to include our library directory
+# Adjust sys.path to include our library directory.
#
import sys
@@ -47,12 +47,21 @@ else:
"../../../lib")))
#########################################################################
+#
+# If admins want nicer processes, here's the place to get them.
+#
+
+#try:
+# os.nice(20) # bump the nice level of this process
+#except:
+# pass
-### add code for checking the load average
#########################################################################
+#
+# Go do the work.
+#
-# go do the work
import sapi
import viewvc
diff --git a/bin/cvsdbadmin b/bin/cvsdbadmin
index 5b8b51f9..22f3db93 100755
--- a/bin/cvsdbadmin
+++ b/bin/cvsdbadmin
@@ -1,7 +1,7 @@
#!/usr/bin/python
# -*-python-*-
#
-# Copyright (C) 1999-2008 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
@@ -40,7 +40,6 @@ else:
#########################################################################
import os
-import string
import cvsdb
import viewvc
import vclib.ccvs
@@ -62,7 +61,7 @@ def UpdateFile(db, repository, path, update, latest_checkin, quiet_level, encodi
except vclib.ItemNotFound, e:
return
- file = string.join(path, "/")
+ file = '/'.join(path)
printing = 0
if update:
if quiet_level < 1 or (quiet_level < 2 and len(commit_list)):
diff --git a/bin/loginfo-handler b/bin/loginfo-handler
index 340bed6f..8574bb03 100755
--- a/bin/loginfo-handler
+++ b/bin/loginfo-handler
@@ -1,7 +1,7 @@
#!/usr/bin/env python
# -*-python-*-
#
-# Copyright (C) 1999-2008 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
@@ -39,7 +39,6 @@ else:
#########################################################################
import os
-import string
import getopt
import re
import cvsdb
@@ -152,11 +151,11 @@ def FindLongestDirectory(s, repository):
and a file name, either of which may contain spaces. Returns the longest
possible directory name that actually exists"""
- parts = string.split(s, " ")
+ parts = s.split()
for i in range(len(parts)-1, 0, -1):
- directory = string.join(parts[:i])
- filename = string.join(parts[i:])
+ directory = ' '.join(parts[:i])
+ filename = ' '.join(parts[i:])
if os.path.isdir(os.path.join(repository, directory)):
return directory, filename
@@ -227,7 +226,7 @@ def ProcessLoginfo(rootpath, directory, files):
cfg.utilities, 0)
# split up the directory components
- dirpath = filter(None, string.split(os.path.normpath(directory), os.sep))
+ dirpath = filter(None, os.path.normpath(directory).split(os.sep))
## build a list of Commit objects
commit_list = []
@@ -279,7 +278,7 @@ if __name__ == '__main__':
else:
# if there are no arguments, read version information from
# first line of input like old versions of ViewCVS did
- arg = string.rstrip(sys.stdin.readline())
+ arg = sys.stdin.readline().rstrip()
if len(sys.argv) > 2:
# if there is a second argument it indicates which parser
diff --git a/bin/mod_python/handler.py b/bin/mod_python/handler.py
index 792a9d23..e9ff22c1 100755
--- a/bin/mod_python/handler.py
+++ b/bin/mod_python/handler.py
@@ -1,6 +1,6 @@
# -*-python-*-
#
-# Copyright (C) 1999-2006 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
diff --git a/bin/mod_python/query.py b/bin/mod_python/query.py
index dda3c55c..75a2adef 100755
--- a/bin/mod_python/query.py
+++ b/bin/mod_python/query.py
@@ -1,7 +1,7 @@
#!/usr/bin/env python
# -*-python-*-
#
-# Copyright (C) 1999-2008 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
@@ -66,7 +66,10 @@ cfg = viewvc.load_config(CONF_PATHNAME)
def index(req):
server = sapi.ModPythonServer(req)
try:
- query.main(server, cfg, "viewvc.py")
+ viewvc_base_url = cfg.query.viewvc_base_url
+ if viewvc_base_url is None:
+ viewvc_base_url = "viewvc.py"
+ query.main(server, cfg, viewvc_base_url)
finally:
server.close()
diff --git a/bin/mod_python/viewvc.py b/bin/mod_python/viewvc.py
index d625275a..ba13c5fa 100755
--- a/bin/mod_python/viewvc.py
+++ b/bin/mod_python/viewvc.py
@@ -1,7 +1,7 @@
#!/usr/bin/env python
# -*-python-*-
#
-# Copyright (C) 1999-2008 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
diff --git a/bin/standalone.py b/bin/standalone.py
index 0f15d746..48522548 100755
--- a/bin/standalone.py
+++ b/bin/standalone.py
@@ -1,7 +1,7 @@
#!/usr/bin/env python
# -*-python-*-
#
-# Copyright (C) 1999-2009 The ViewCVS Group. All Rights Reserved.
+# Copyright (C) 1999-2013 The ViewCVS Group. All Rights Reserved.
#
# By using this file, you agree to the terms and conditions set forth in
# the LICENSE.html file which can be found at the top level of the ViewVC
@@ -10,19 +10,17 @@
# For more information, visit http://viewvc.org/
#
# -----------------------------------------------------------------------
+#
+# This program originally written by Peter Funk <pf@artcom-gmbh.de>, with
+# contributions by Ka-Ping Yee.
+#
+# -----------------------------------------------------------------------
"""Run "standalone.py -p <port>" to start an HTTP server on a given port
on the local machine to generate ViewVC web pages.
"""
-__author__ = "Peter Funk <pf@artcom-gmbh.de>"
-__date__ = "11 November 2001"
-__version__ = "$Revision: 1962 $"
-__credits__ = """Guido van Rossum, for an excellent programming language.
-Greg Stein, for writing ViewCVS in the first place.
-Ka-Ping Yee, for the GUI code and the framework stolen from pydoc.py.
-"""
-
+#
# INSTALL-TIME CONFIGURATION
#
# These values will be set during the installation process. During
@@ -42,6 +40,7 @@ import urllib
import rfc822
import socket
import select
+import base64
import BaseHTTPServer
if LIBRARY_DIR:
@@ -51,633 +50,539 @@ else:
import sapi
import viewvc
-import compat; compat.for_standalone()
+
+
+# The 'crypt' module is only available on Unix platforms. We'll try
+# to use 'fcrypt' if it's available (for more information, see
+# http://carey.geek.nz/code/python-fcrypt/).
+has_crypt = False
+try:
+ import crypt
+ has_crypt = True
+ def _check_passwd(user_passwd, real_passwd):
+ return real_passwd == crypt.crypt(user_passwd, real_passwd[:2])
+except ImportError:
+ try:
+ import fcrypt
+ has_crypt = True
+ def _check_passwd(user_passwd, real_passwd):
+ return real_passwd == fcrypt.crypt(user_passwd, real_passwd[:2])
+ except ImportError:
+ def _check_passwd(user_passwd, real_passwd):
+ return False
class Options:
- port = 49152 # default TCP/IP port used for the server
- start_gui = 0 # No GUI unless requested.
- daemon = 0 # stay in the foreground by default
- repositories = {} # use default repositories specified in config
- if sys.platform == 'mac':
- host = '127.0.0.1'
- else:
- host = 'localhost'
- script_alias = 'viewvc'
- config_file = None
+ port = 49152 # default TCP/IP port used for the server
+ repositories = {} # use default repositories specified in config
+ host = sys.platform == 'mac' and '127.0.0.1' or 'localhost'
+ script_alias = 'viewvc'
+ config_file = None
+ htpasswd_file = None
-# --- web browser interface: ----------------------------------------------
class StandaloneServer(sapi.CgiServer):
- def __init__(self, handler):
- sapi.CgiServer.__init__(self, inheritableOut = sys.platform != "win32")
- self.handler = handler
+ """Custom sapi interface that uses a BaseHTTPRequestHandler HANDLER
+ to generate output."""
+
+ def __init__(self, handler):
+ sapi.CgiServer.__init__(self, inheritableOut = sys.platform != "win32")
+ self.handler = handler
- def header(self, content_type='text/html', status=None):
- if not self.headerSent:
- self.headerSent = 1
- if status is None:
- statusCode = 200
- statusText = 'OK'
- else:
- p = string.find(status, ' ')
- if p < 0:
- statusCode = int(status)
- statusText = ''
- else:
- statusCode = int(status[:p])
- statusText = status[p+1:]
- self.handler.send_response(statusCode, statusText)
- self.handler.send_header("Content-type", content_type)
- for (name, value) in self.headers:
- self.handler.send_header(name, value)
- self.handler.end_headers()
-
+ def header(self, content_type='text/html', status=None):
+ if not self.headerSent:
+ self.headerSent = 1
+ if status is None:
+ statusCode = 200
+ statusText = 'OK'
+ else:
+ p = status.find(' ')
+ if p < 0:
+ statusCode = int(status)
+ statusText = ''
+ else:
+ statusCode = int(status[:p])
+ statusText = status[p+1:]
+ self.handler.send_response(statusCode, statusText)
+ self.handler.send_header("Content-type", content_type)
+ for (name, value) in self.headers:
+ self.handler.send_header(name, value)
+ self.handler.end_headers()
-def serve(host, port, callback=None):
- """start a HTTP server on the given port. call 'callback' when the
- server is ready to serve"""
- class ViewVC_Handler(BaseHTTPServer.BaseHTTPRequestHandler):
-
- def do_GET(self):
- """Serve a GET request."""
- if not self.path or self.path == "/":
- self.redirect()
- elif self.is_viewvc():
- try:
- self.run_viewvc()
- except IOError:
- # ignore IOError: [Errno 32] Broken pipe
- pass
- else:
- self.send_error(404)
+class NotViewVCLocationException(Exception):
+ """The request location was not aimed at ViewVC."""
+ pass
- def do_POST(self):
- """Serve a POST request."""
- if self.is_viewvc():
- self.run_viewvc()
- else:
- self.send_error(501, "Can only POST to %s"
- % (options.script_alias))
- def is_viewvc(self):
- """Check whether self.path is, or is a child of, the ScriptAlias"""
- if self.path == '/' + options.script_alias:
- return 1
- if self.path[:len(options.script_alias)+2] == \
- '/' + options.script_alias + '/':
- return 1
- if self.path[:len(options.script_alias)+2] == \
- '/' + options.script_alias + '?':
- return 1
- return 0
+class AuthenticationException(Exception):
+ """Authentication requirements have not been met."""
+ pass
- def redirect(self):
- """redirect the browser to the viewvc URL"""
- new_url = self.server.url + options.script_alias + '/'
- self.send_response(301, "Moved (redirection follows)")
- self.send_header("Content-type", "text/html")
- self.send_header("Location", new_url)
- self.end_headers()
- self.wfile.write("""<html>
+
+class ViewVCHTTPRequestHandler(BaseHTTPServer.BaseHTTPRequestHandler):
+ """Custom HTTP request handler for ViewVC."""
+
+ def do_GET(self):
+ """Serve a GET request."""
+ self.handle_request('GET')
+
+ def do_POST(self):
+ """Serve a POST request."""
+ self.handle_request('POST')
+
+ def handle_request(self, method):
+ """Handle a request of type METHOD."""
+ try:
+ self.run_viewvc()
+ except NotViewVCLocationException:
+ # If the request was aimed at the server root, but there's a
+ # non-empty script_alias, automatically redirect to the
+ # script_alias. Otherwise, just return a 404 and shrug.
+ if (not self.path or self.path == "/") and options.script_alias:
+ new_url = self.server.url + options.script_alias + '/'
+ self.send_response(301, "Moved Permanently")
+ self.send_header("Content-type", "text/html")
+ self.send_header("Location", new_url)
+ self.end_headers()
+ self.wfile.write("""<html>
<head>
-<meta http-equiv="refresh" content="1; URL=%s">
+<meta http-equiv="refresh" content="10; url=%s" />
+<title>Moved Temporarily
-Redirection to ViewVC
-Wait a second. You will be automatically redirected to ViewVC.
-If this doesn't work, please click on the link above.
+Redirecting to ViewVC
+You will be automatically redirected to ViewVC.
+ If this doesn't work, please click on the link above.