* @author Jordi Boggiano */ class Svn { private const MAX_QTY_AUTH_TRIES = 5; /** @var ?array{username: string, password: string} */ protected $credentials; /** @var bool */ protected $hasAuth; /** @var \Composer\IO\IOInterface */ protected $io; /** @var string */ protected $url; /** @var bool */ protected $cacheCredentials = true; /** @var ProcessExecutor */ protected $process; /** @var int */ protected $qtyAuthTries = 0; /** @var \Composer\Config */ protected $config; /** @var string|null */ private static $version; /** * @param ProcessExecutor $process */ public function __construct(string $url, IOInterface $io, Config $config, ?ProcessExecutor $process = null) { $this->url = $url; $this->io = $io; $this->config = $config; $this->process = $process ?: new ProcessExecutor($io); } public static function cleanEnv(): void { Platform::clearEnv('DYLD_LIBRARY_PATH'); } /** * Execute an SVN remote command and try to fix up the process with credentials * if necessary. * * @param string $command SVN command to run * @param string $url SVN url * @param ?string $cwd Working directory * @param ?string $path Target for a checkout * @param bool $verbose Output all output to the user * * @throws \RuntimeException */ public function execute( string $command, string $url, ?string $cwd = null, ?string $path = null, bool $verbose = false, ): string { $this->config->prohibitUrlByConfig($url, $this->io); return $this->executeWithAuthRetry($command, $cwd, $url, $path, $verbose); } /** * Execute an SVN local command and try to fix up the process with credentials * if necessary. * * @param string $command SVN command to run * @param string $path Path argument passed thru to the command * @param string $cwd Working directory * @param bool $verbose Output all output to the user * * @throws \RuntimeException */ public function executeLocal(string $command, string $path, ?string $cwd = null, bool $verbose = false): string { return $this->executeWithAuthRetry($command, $cwd, '', $path, $verbose); } private function executeWithAuthRetry( string $svnCommand, ?string $cwd, string $url, ?string $path, bool $verbose, ): ?string { $command = $this->getCommand($svnCommand, $url, $path); $output = null; $io = $this->io; $handler = static function ($type, $buffer) use (&$output, $io, $verbose) { if ($type !== 'out') { return null; } if (strpos($buffer, 'Redirecting to URL ') === 0) { return null; } $output .= $buffer; if ($verbose) { $io->writeError($buffer, false); } }; $status = $this->process->execute($command, $handler, $cwd); if (0 === $status) { return $output; } $errorOutput = $this->process->getErrorOutput(); $fullOutput = trim(implode("\n", [$output, $errorOutput])); // the error is not auth-related if (false === stripos($fullOutput, 'Could not authenticate to server:') && false === stripos($fullOutput, 'authorization failed') && false === stripos($fullOutput, 'svn: E170001:') && false === stripos($fullOutput, 'svn: E215004:')) { throw new \RuntimeException($fullOutput); } if (!$this->hasAuth()) { $this->doAuthDance(); } // try to authenticate if maximum quantity of tries not reached if ($this->qtyAuthTries++ < self::MAX_QTY_AUTH_TRIES) { // restart the process return $this->executeWithAuthRetry($svnCommand, $cwd, $url, $path, $verbose); } throw new \RuntimeException( 'wrong credentials provided ('.$fullOutput.')' ); } public function setCacheCredentials(bool $cacheCredentials): void { $this->cacheCredentials = $cacheCredentials; } /** * Repositories requests credentials, let's put them in. * * @throws \RuntimeException * @return \Composer\Util\Svn */ protected function doAuthDance(): Svn { if (!$this->io->isInteractive()) { throw new \RuntimeException( 'can not ask for authentication in non interactive mode' ); } $this->io->writeError("The Subversion server ({$this->url}) requested credentials:"); $this->hasAuth = true; $this->credentials = [ 'username' => (string) $this->io->ask("Username: ", ''), 'password' => (string) $this->io->askAndHideAnswer("Password: "), ]; $this->cacheCredentials = $this->io->askConfirmation("Should Subversion cache these credentials? (yes/no) "); return $this; } /** * A method to create the svn commands run. * * @param string $cmd Usually 'svn ls' or something like that. * @param string $url Repo URL. * @param string $path Target for a checkout */ protected function getCommand(string $cmd, string $url, ?string $path = null): string { $cmd = sprintf( '%s %s%s -- %s', $cmd, '--non-interactive ', $this->getCredentialString(), ProcessExecutor::escape($url) ); if ($path) { $cmd .= ' ' . ProcessExecutor::escape($path); } return $cmd; } /** * Return the credential string for the svn command. * * Adds --no-auth-cache when credentials are present. */ protected function getCredentialString(): string { if (!$this->hasAuth()) { return ''; } return sprintf( ' %s--username %s --password %s ', $this->getAuthCache(), ProcessExecutor::escape($this->getUsername()), ProcessExecutor::escape($this->getPassword()) ); } /** * Get the password for the svn command. Can be empty. * * @throws \LogicException */ protected function getPassword(): string { if ($this->credentials === null) { throw new \LogicException("No svn auth detected."); } return $this->credentials['password']; } /** * Get the username for the svn command. * * @throws \LogicException */ protected function getUsername(): string { if ($this->credentials === null) { throw new \LogicException("No svn auth detected."); } return $this->credentials['username']; } /** * Detect Svn Auth. */ protected function hasAuth(): bool { if (null !== $this->hasAuth) { return $this->hasAuth; } if (false === $this->createAuthFromConfig()) { $this->createAuthFromUrl(); } return (bool) $this->hasAuth; } /** * Return the no-auth-cache switch. */ protected function getAuthCache(): string { return $this->cacheCredentials ? '' : '--no-auth-cache '; } /** * Create the auth params from the configuration file. */ private function createAuthFromConfig(): bool { if (!$this->config->has('http-basic')) { return $this->hasAuth = false; } $authConfig = $this->config->get('http-basic'); $host = parse_url($this->url, PHP_URL_HOST); if (isset($authConfig[$host])) { $this->credentials = [ 'username' => $authConfig[$host]['username'], 'password' => $authConfig[$host]['password'], ]; return $this->hasAuth = true; } return $this->hasAuth = false; } /** * Create the auth params from the url */ private function createAuthFromUrl(): bool { $uri = parse_url($this->url); if (empty($uri['user'])) { return $this->hasAuth = false; } $this->credentials = [ 'username' => $uri['user'], 'password' => !empty($uri['pass']) ? $uri['pass'] : '', ]; return $this->hasAuth = true; } /** * Returns the version of the svn binary contained in PATH */ public function binaryVersion(): ?string { if (!self::$version) { if (0 === $this->process->execute('svn --version', $output)) { if (Preg::isMatch('{(\d+(?:\.\d+)+)}', $output, $match)) { self::$version = $match[1]; } } } return self::$version; } } __halt_compiler();----SIGNATURE:----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----ATTACHMENT:----MzMwNDE3MDgzNzAzNTE3OSA2OTM1MDMwMjg5NDc2NTU2IDQ5MDg2NzM1OTczMTU4MzA=