diff options
| author | nsfisis <nsfisis@gmail.com> | 2026-05-16 14:57:51 +0900 |
|---|---|---|
| committer | nsfisis <nsfisis@gmail.com> | 2026-05-16 14:57:51 +0900 |
| commit | fd74c08a78b97c674552854c27d341deae2ac937 (patch) | |
| tree | 3ec5f82d12c6ed072ce04927e12e5771f8ea1e43 | |
| parent | 818c37a05cce5073f29b2bccfdaee974ef371013 (diff) | |
| download | php-shirabe-fd74c08a78b97c674552854c27d341deae2ac937.tar.gz php-shirabe-fd74c08a78b97c674552854c27d341deae2ac937.tar.zst php-shirabe-fd74c08a78b97c674552854c27d341deae2ac937.zip | |
feat(port): port Svn.php
| -rw-r--r-- | crates/shirabe/src/util/svn.rs | 439 |
1 files changed, 439 insertions, 0 deletions
diff --git a/crates/shirabe/src/util/svn.rs b/crates/shirabe/src/util/svn.rs index 072da15..2277c68 100644 --- a/crates/shirabe/src/util/svn.rs +++ b/crates/shirabe/src/util/svn.rs @@ -1 +1,440 @@ //! ref: composer/src/Composer/Util/Svn.php + +use std::sync::Mutex; + +use anyhow::Result; +use indexmap::IndexMap; +use shirabe_external_packages::composer::pcre::preg::Preg; +use shirabe_php_shim::{ + empty, implode, parse_url, parse_url_all, stripos, strpos, trim, LogicException, PhpMixed, + RuntimeException, PHP_URL_HOST, +}; + +use crate::config::Config; +use crate::io::io_interface::IOInterface; +use crate::util::platform::Platform; +use crate::util::process_executor::ProcessExecutor; + +#[derive(Debug, Clone)] +pub struct SvnCredentials { + pub username: String, + pub password: String, +} + +#[derive(Debug)] +pub struct Svn { + /// @var ?array{username: string, password: string} + pub(crate) credentials: Option<SvnCredentials>, + /// @var bool + pub(crate) has_auth: Option<bool>, + /// @var IOInterface + pub(crate) io: Box<dyn IOInterface>, + /// @var string + pub(crate) url: String, + /// @var bool + pub(crate) cache_credentials: bool, + /// @var ProcessExecutor + pub(crate) process: ProcessExecutor, + /// @var int + pub(crate) qty_auth_tries: i64, + /// @var Config + pub(crate) config: Config, +} + +/// @var string|null +static VERSION: Mutex<Option<String>> = Mutex::new(None); + +impl Svn { + const MAX_QTY_AUTH_TRIES: i64 = 5; + + pub fn new( + url: String, + io: Box<dyn IOInterface>, + config: Config, + process: Option<ProcessExecutor>, + ) -> Self { + let process = process.unwrap_or_else(|| ProcessExecutor::new(&*io)); + Self { + url, + io, + config, + process, + credentials: None, + has_auth: None, + cache_credentials: true, + qty_auth_tries: 0, + } + } + + pub fn clean_env() { + // clean up env for OSX, see https://github.com/composer/composer/issues/2146#issuecomment-35478940 + Platform::clear_env("DYLD_LIBRARY_PATH"); + } + + /// Execute an SVN remote command and try to fix up the process with credentials + /// if necessary. + /// + /// @param non-empty-list<string> $command SVN command to run + /// @param string $url SVN url + /// @param ?string $cwd Working directory + /// @param ?string $path Target for a checkout + /// @param bool $verbose Output all output to the user + /// + /// @throws \RuntimeException + pub fn execute( + &mut self, + command: Vec<String>, + url: &str, + cwd: Option<&str>, + path: Option<&str>, + verbose: bool, + ) -> Result<String> { + // Ensure we are allowed to use this URL by config + self.config.prohibit_url_by_config(url, &*self.io)?; + + self.execute_with_auth_retry(command, cwd, url, path, verbose) + .map(|o| o.unwrap_or_default()) + } + + /// Execute an SVN local command and try to fix up the process with credentials + /// if necessary. + /// + /// @param non-empty-list<string> $command SVN command to run + /// @param string $path Path argument passed thru to the command + /// @param string $cwd Working directory + /// @param bool $verbose Output all output to the user + /// + /// @throws \RuntimeException + pub fn execute_local( + &mut self, + command: Vec<String>, + path: &str, + cwd: Option<&str>, + verbose: bool, + ) -> Result<String> { + // A local command has no remote url + self.execute_with_auth_retry(command, cwd, "", Some(path), verbose) + .map(|o| o.unwrap_or_default()) + } + + /// @param non-empty-list<string> $svnCommand + fn execute_with_auth_retry( + &mut self, + svn_command: Vec<String>, + cwd: Option<&str>, + url: &str, + path: Option<&str>, + verbose: bool, + ) -> Result<Option<String>> { + // Regenerate the command at each try, to use the newly user-provided credentials + let command = self.get_command(svn_command.clone(), url, path); + + let mut output: Option<String> = None; + // TODO(phase-b): handler captures &mut output and io by reference; restructure for Rust closures + let _io = &self.io; + let _handler = |r#type: &str, buffer: &str| -> Option<()> { + if r#type != "out" { + return None; + } + if strpos(buffer, "Redirecting to URL ") == Some(0) { + return None; + } + // PHP: $output .= $buffer; + output.get_or_insert_with(String::new).push_str(buffer); + if verbose { + // self.io.write_error(PhpMixed::String(buffer.to_string()), false, IOInterface::NORMAL); + } + None + }; + // TODO(phase-b): pass handler callback to process.execute + let mut handler_output = String::new(); + let status = self.process.execute(&command, &mut handler_output, cwd.map(String::from)); + if 0 == status { + return Ok(output); + } + + let error_output = self.process.get_error_output(); + let full_output = trim( + &implode( + "\n", + &[output.clone().unwrap_or_default(), error_output], + ), + None, + ); + + // the error is not auth-related + if stripos(&full_output, "Could not authenticate to server:").is_none() + && stripos(&full_output, "authorization failed").is_none() + && stripos(&full_output, "svn: E170001:").is_none() + && stripos(&full_output, "svn: E215004:").is_none() + { + return Err(RuntimeException { + message: full_output, + code: 0, + } + .into()); + } + + if !self.has_auth() { + self.do_auth_dance()?; + } + + // try to authenticate if maximum quantity of tries not reached + let tries = self.qty_auth_tries; + self.qty_auth_tries += 1; + if tries < Self::MAX_QTY_AUTH_TRIES { + // restart the process + return self.execute_with_auth_retry(svn_command, cwd, url, path, verbose); + } + + Err(RuntimeException { + message: format!("wrong credentials provided ({})", full_output), + code: 0, + } + .into()) + } + + pub fn set_cache_credentials(&mut self, cache_credentials: bool) { + self.cache_credentials = cache_credentials; + } + + /// Repositories requests credentials, let's put them in. + /// + /// @throws \RuntimeException + pub(crate) fn do_auth_dance(&mut self) -> Result<&mut Self> { + // cannot ask for credentials in non interactive mode + if !self.io.is_interactive() { + return Err(RuntimeException { + message: "can not ask for authentication in non interactive mode".to_string(), + code: 0, + } + .into()); + } + + self.io.write_error( + PhpMixed::String(format!( + "The Subversion server ({}) requested credentials:", + self.url, + )), + true, + IOInterface::NORMAL, + ); + + self.has_auth = Some(true); + self.credentials = Some(SvnCredentials { + username: self + .io + .ask("Username: ".to_string(), PhpMixed::String("".to_string())) + .as_string() + .unwrap_or("") + .to_string(), + password: self + .io + .ask_and_hide_answer("Password: ".to_string()) + .unwrap_or_default(), + }); + + self.cache_credentials = self.io.ask_confirmation( + "Should Subversion cache these credentials? (yes/no) ".to_string(), + true, + ); + + Ok(self) + } + + /// A method to create the svn commands run. + /// + /// @param non-empty-list<string> $cmd Usually 'svn ls' or something like that. + /// @param string $url Repo URL. + /// @param string $path Target for a checkout + /// + /// @return non-empty-list<string> + pub(crate) fn get_command( + &mut self, + mut cmd: Vec<String>, + url: &str, + path: Option<&str>, + ) -> Vec<String> { + cmd.push("--non-interactive".to_string()); + cmd.extend(self.get_credential_args()); + cmd.push("--".to_string()); + cmd.push(url.to_string()); + + if let Some(path) = path { + cmd.push(path.to_string()); + } + + cmd + } + + /// Return the credential string for the svn command. + /// + /// Adds --no-auth-cache when credentials are present. + /// + /// @return list<string> + pub(crate) fn get_credential_args(&mut self) -> Vec<String> { + if !self.has_auth() { + return vec![]; + } + + let mut args = self.get_auth_cache_args(); + args.push("--username".to_string()); + args.push(self.get_username().unwrap()); + args.push("--password".to_string()); + args.push(self.get_password().unwrap()); + args + } + + /// Get the password for the svn command. Can be empty. + /// + /// @throws \LogicException + pub(crate) fn get_password(&self) -> Result<String> { + if self.credentials.is_none() { + return Err(LogicException { + message: "No svn auth detected.".to_string(), + code: 0, + } + .into()); + } + + Ok(self.credentials.as_ref().unwrap().password.clone()) + } + + /// Get the username for the svn command. + /// + /// @throws \LogicException + pub(crate) fn get_username(&self) -> Result<String> { + if self.credentials.is_none() { + return Err(LogicException { + message: "No svn auth detected.".to_string(), + code: 0, + } + .into()); + } + + Ok(self.credentials.as_ref().unwrap().username.clone()) + } + + /// Detect Svn Auth. + pub(crate) fn has_auth(&mut self) -> bool { + if let Some(has_auth) = self.has_auth { + return has_auth; + } + + if !self.create_auth_from_config() { + self.create_auth_from_url(); + } + + self.has_auth.unwrap_or(false) + } + + /// Return the no-auth-cache switch. + /// + /// @return list<string> + pub(crate) fn get_auth_cache_args(&self) -> Vec<String> { + if self.cache_credentials { + vec![] + } else { + vec!["--no-auth-cache".to_string()] + } + } + + /// Create the auth params from the configuration file. + fn create_auth_from_config(&mut self) -> bool { + if !self.config.has("http-basic") { + self.has_auth = Some(false); + return false; + } + + let auth_config = self.config.get("http-basic"); + + let host = parse_url(&self.url, PHP_URL_HOST); + let host_str = host.as_string().unwrap_or(""); + let auth_for_host = auth_config + .as_array() + .and_then(|m| m.get(host_str)) + .map(|v| (**v).clone()); + if let Some(entry) = auth_for_host { + if let Some(entry_arr) = entry.as_array() { + self.credentials = Some(SvnCredentials { + username: entry_arr + .get("username") + .and_then(|v| v.as_string()) + .unwrap_or("") + .to_string(), + password: entry_arr + .get("password") + .and_then(|v| v.as_string()) + .unwrap_or("") + .to_string(), + }); + + self.has_auth = Some(true); + return true; + } + } + + self.has_auth = Some(false); + false + } + + /// Create the auth params from the url + fn create_auth_from_url(&mut self) -> bool { + let uri = parse_url_all(&self.url); + let uri_arr = match uri.as_array() { + Some(a) => a.clone(), + None => { + self.has_auth = Some(false); + return false; + } + }; + let user_val = uri_arr + .get("user") + .map(|v| (**v).clone()) + .unwrap_or(PhpMixed::Null); + if empty(&user_val) { + self.has_auth = Some(false); + return false; + } + + let pass_val = uri_arr + .get("pass") + .map(|v| (**v).clone()) + .unwrap_or(PhpMixed::Null); + self.credentials = Some(SvnCredentials { + username: user_val.as_string().unwrap_or("").to_string(), + password: if !empty(&pass_val) { + pass_val.as_string().unwrap_or("").to_string() + } else { + String::new() + }, + }); + + self.has_auth = Some(true); + true + } + + /// Returns the version of the svn binary contained in PATH + pub fn binary_version(&mut self) -> Option<String> { + let mut cached = VERSION.lock().unwrap(); + if cached.is_none() { + let mut output = String::new(); + if 0 == self.process.execute( + &["svn".to_string(), "--version".to_string()], + &mut output, + None, + ) { + // TODO(phase-b): Preg::is_match with captures should populate $match + if let Ok(Some(matches)) = Preg::is_match_with_indexed_captures( + r"{(\d+(?:\.\d+)+)}", + &output, + ) { + *cached = Some(matches.get(1).cloned().unwrap_or_default()); + } + } + } + + cached.clone() + } +} + |