mirror of
https://github.com/pnpm/pnpm.git
synced 2026-01-27 16:28:59 -05:00
172 lines
4.9 KiB
TypeScript
172 lines
4.9 KiB
TypeScript
import url, { URL } from 'url'
|
|
import fetch from '@pnpm/fetch'
|
|
|
|
import git from 'graceful-git'
|
|
import HostedGit from 'hosted-git-info'
|
|
|
|
export type HostedPackageSpec = ({
|
|
fetchSpec: string
|
|
hosted?: {
|
|
type: string
|
|
user: string
|
|
project: string
|
|
committish: string
|
|
tarball: () => string | undefined
|
|
}
|
|
normalizedPref: string
|
|
gitCommittish: string | null
|
|
gitRange?: string
|
|
})
|
|
|
|
const gitProtocols = new Set([
|
|
'git',
|
|
'git+http',
|
|
'git+https',
|
|
'git+rsync',
|
|
'git+ftp',
|
|
'git+file',
|
|
'git+ssh',
|
|
'ssh',
|
|
])
|
|
|
|
export default async function parsePref (pref: string): Promise<HostedPackageSpec | null> {
|
|
const hosted = HostedGit.fromUrl(pref)
|
|
if (hosted != null) {
|
|
return fromHostedGit(hosted)
|
|
}
|
|
const colonsPos = pref.indexOf(':')
|
|
if (colonsPos === -1) return null
|
|
const protocol = pref.slice(0, colonsPos)
|
|
if (protocol && gitProtocols.has(protocol.toLocaleLowerCase())) {
|
|
const urlparse = new URL(escapeColon(pref))
|
|
if (!urlparse || !urlparse.protocol) return null
|
|
const match = urlparse.protocol === 'git+ssh:' && matchGitScp(pref)
|
|
if (match) {
|
|
return {
|
|
...match,
|
|
normalizedPref: pref,
|
|
}
|
|
}
|
|
|
|
const committish = (urlparse.hash?.length > 1) ? decodeURIComponent(urlparse.hash.slice(1)) : null
|
|
return {
|
|
fetchSpec: urlToFetchSpec(urlparse),
|
|
normalizedPref: pref,
|
|
...setGitCommittish(committish),
|
|
}
|
|
}
|
|
return null
|
|
}
|
|
|
|
function escapeColon (url: string) {
|
|
if (!url.includes('@')) return url
|
|
const [front, ...backs] = url.split('@')
|
|
const escapedBacks = backs.map(e => e.replace(/:([^/\d]|\d+[^:/\d])/, ':/$1'))
|
|
return [front, ...escapedBacks].join('@')
|
|
}
|
|
|
|
function urlToFetchSpec (urlparse: URL) {
|
|
urlparse.hash = ''
|
|
const fetchSpec = url.format(urlparse)
|
|
if (fetchSpec.startsWith('git+')) {
|
|
return fetchSpec.slice(4)
|
|
}
|
|
return fetchSpec
|
|
}
|
|
|
|
async function fromHostedGit (hosted: any): Promise<HostedPackageSpec> { // eslint-disable-line
|
|
let fetchSpec: string | null = null
|
|
// try git/https url before fallback to ssh url
|
|
|
|
// Note only GitHub has gitTemplate (git://...) in hosted-git-info, has to use
|
|
// sshTemplate (git@...) for bitbucket and gitlab.
|
|
const gitUrl = hosted.git({ noCommittish: true }) ?? hosted.ssh({ noCommittish: true })
|
|
if (gitUrl && await accessRepository(gitUrl)) {
|
|
fetchSpec = gitUrl
|
|
}
|
|
|
|
if (!fetchSpec) {
|
|
const httpsUrl: string | null = hosted.https({ noGitPlus: true, noCommittish: true })
|
|
if (httpsUrl) {
|
|
if (hosted.auth && await accessRepository(httpsUrl)) {
|
|
return {
|
|
fetchSpec: httpsUrl,
|
|
hosted: {
|
|
...hosted,
|
|
_fill: hosted._fill,
|
|
tarball: undefined,
|
|
},
|
|
normalizedPref: `git+${httpsUrl}`,
|
|
...setGitCommittish(hosted.committish),
|
|
}
|
|
} else {
|
|
try {
|
|
// when git ls-remote private repo, it asks for login credentials.
|
|
// use HTTP HEAD request to test whether this is a private repo, to avoid login prompt.
|
|
// this is very similar to yarn's behaviour.
|
|
// npm instead tries git ls-remote directly which prompts user for login credentials.
|
|
|
|
// HTTP HEAD on https://domain/user/repo, strip out ".git"
|
|
const response = await fetch(httpsUrl.slice(0, -4), { method: 'HEAD', follow: 0, retry: { retries: 0 } })
|
|
if (response.ok) {
|
|
fetchSpec = httpsUrl
|
|
}
|
|
} catch (e) {
|
|
// ignore
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if (!fetchSpec) {
|
|
// use ssh url for likely private repo
|
|
fetchSpec = hosted.sshurl({ noCommittish: true })
|
|
}
|
|
|
|
return {
|
|
fetchSpec: fetchSpec!,
|
|
hosted: {
|
|
...hosted,
|
|
_fill: hosted._fill,
|
|
tarball: hosted.tarball,
|
|
},
|
|
normalizedPref: hosted.shortcut(),
|
|
...setGitCommittish(hosted.committish),
|
|
}
|
|
}
|
|
|
|
async function accessRepository (repository: string) {
|
|
try {
|
|
await git(['ls-remote', '--exit-code', repository, 'HEAD'], { retries: 0 })
|
|
return true
|
|
} catch (err: any) { // eslint-disable-line
|
|
return false
|
|
}
|
|
}
|
|
|
|
function setGitCommittish (committish: string | null) {
|
|
if (committish !== null && committish.length >= 7 && committish.slice(0, 7) === 'semver:') {
|
|
return {
|
|
gitCommittish: null,
|
|
gitRange: committish.slice(7),
|
|
}
|
|
}
|
|
return { gitCommittish: committish }
|
|
}
|
|
|
|
function matchGitScp (spec: string) {
|
|
// git ssh specifiers are overloaded to also use scp-style git
|
|
// specifiers, so we have to parse those out and treat them special.
|
|
// They are NOT true URIs, so we can't hand them to `url.parse`.
|
|
//
|
|
// This regex looks for things that look like:
|
|
// git+ssh://git@my.custom.git.com:username/project.git#deadbeef
|
|
//
|
|
// ...and various combinations. The username in the beginning is *required*.
|
|
const matched = spec.match(/^git\+ssh:\/\/([^:]+:[^#]+(?:\.git)?)(?:#(.*))$/i)
|
|
return (matched != null) && (matched[1].match(/:[0-9]+\/?.*$/i) == null) && {
|
|
fetchSpec: matched[1],
|
|
gitCommittish: matched[2],
|
|
}
|
|
}
|