Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improve scheme check in repo url #602

Merged
merged 12 commits into from May 11, 2020
Merged

Improve scheme check in repo url #602

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
7f36886
Improve scheme check in repo url
deveshks Apr 22, 2020
24bf15d
Use rfc3986 to validate repo url
deveshks May 8, 2020
8bc6d8a
Patch validate_url in integration tests for devpi and pypi server
deveshks May 8, 2020
9120e2e
Update validate_url to return boolean
deveshks May 10, 2020
9dbbd27
Ignore missing type annotations for rfc3986
deveshks May 10, 2020
60e2c9f
Revert patching of integration test
deveshks May 10, 2020
781c39e
Refactor validate_url to allow http and raise specific exceptions
deveshks May 10, 2020
1b1276f
Add unit tests to check invalid repo urls
deveshks May 10, 2020
197670a
Fix imports and error message
deveshks May 10, 2020
5c2fff3
Fix error message check in test utils invalid url
deveshks May 10, 2020
42b032b
Fix mypy missing import order for rfc3986
deveshks May 10, 2020
88f6a99
Make validate url private and move exception handling inside it
deveshks May 11, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
3 changes: 3 additions & 0 deletions mypy.ini
View file
Open in desktop
Expand Up @@ -38,6 +38,9 @@ ignore_missing_imports = True
; https://github.com/pypa/readme_renderer/issues/166
ignore_missing_imports = True

[mypy-rfc3986]
ignore_missing_imports = True

[mypy-setuptools]
; https://github.com/python/typeshed/issues/2171
ignore_missing_imports = True
Expand Down
1 change: 1 addition & 0 deletions setup.cfg
View file
Open in desktop
Expand Up @@ -42,6 +42,7 @@ install_requires=
tqdm >= 4.14
importlib_metadata; python_version < "3.8"
keyring >= 15.1
rfc3986 >= 1.4.0
setup_requires =
setuptools_scm >= 1.15

Expand Down
39 changes: 34 additions & 5 deletions tests/test_utils.py
View file
Open in desktop
Expand Up @@ -184,15 +184,44 @@ def test_get_repository_config_missing(tmpdir):
assert utils.get_repository_from_config(pypirc, "pypi") == exp


def test_get_repository_config_invalid_url(tmpdir):
def test_get_repository_config_invalid_scheme(tmpdir):
"""
Test if we get an URL without a protocol
Test if we get an URL with a invalid scheme
"""

pypirc = os.path.join(str(tmpdir), ".pypirc")

with pytest.raises(
exceptions.UnreachableRepositoryURLDetected,
match=r"Invalid repository URL: "
r"scheme was required to be one of \['http', 'https'\] but was 'ftp'.",
):
utils.get_repository_from_config(pypirc, "foo.bar", "ftp://test.pypi.org")


def test_get_repository_config_missing_components(tmpdir):
"""
Test if we get an URL with missing components
"""
pypirc = os.path.join(str(tmpdir), ".pypirc")

repository_url = "foo.bar"
with pytest.raises(exceptions.UnreachableRepositoryURLDetected):
utils.get_repository_from_config(pypirc, "foo.bar", repository_url)
with pytest.raises(
exceptions.UnreachableRepositoryURLDetected,
match="Invalid repository URL: host was required but missing.",
):
utils.get_repository_from_config(pypirc, "foo.bar", "https:/")

with pytest.raises(
exceptions.UnreachableRepositoryURLDetected,
match="Invalid repository URL: scheme was required but missing.",
):
utils.get_repository_from_config(pypirc, "foo.bar", "//test.pypi.org")

with pytest.raises(
exceptions.UnreachableRepositoryURLDetected,
match="Invalid repository URL: host, scheme were required but missing.",
):
utils.get_repository_from_config(pypirc, "foo.bar", "foo.bar")


def test_get_repository_config_missing_config(tmpdir):
Expand Down
28 changes: 22 additions & 6 deletions twine/utils.py
View file
Open in desktop
Expand Up @@ -28,6 +28,7 @@
from urllib.parse import urlunparse

import requests
import rfc3986

from twine import exceptions

Expand Down Expand Up @@ -99,23 +100,38 @@ def get_config(path: str = "~/.pypirc") -> Dict[str, RepositoryConfig]:
return dict(config)


def _validate_repository_url(repository_url: str) -> None:
"""Validate the given url for allowed schemes and components"""

# Allowed schemes are http and https, based on whether the repository
# supports TLS or not, and scheme and host must be present in the URL
validator = (
rfc3986.validators.Validator()
.allow_schemes("http", "https")
.require_presence_of("scheme", "host")
)
try:
validator.validate(rfc3986.uri_reference(repository_url))
except rfc3986.exceptions.RFC3986Exception as exc:
raise exceptions.UnreachableRepositoryURLDetected(
f"Invalid repository URL: {exc.args[0]}."
)


def get_repository_from_config(
config_file: str, repository: str, repository_url: Optional[str] = None
) -> RepositoryConfig:
# Get our config from, if provided, command-line values for the
# repository name and URL, or the .pypirc file
if repository_url and "://" in repository_url:

if repository_url:
_validate_repository_url(repository_url)
# prefer CLI `repository_url` over `repository` or .pypirc
return {
"repository": repository_url,
"username": None,
"password": None,
}
if repository_url and "://" not in repository_url:
raise exceptions.UnreachableRepositoryURLDetected(
"Repository URL {} has no protocol. Please add "
"'https://'. \n".format(repository_url)
)
try:
return get_config(config_file)[repository]
except KeyError:
Expand Down