cs50 · rongxin-liu · Aug 8, 2025 · Aug 5, 2025 · Aug 6, 2025 · Aug 7, 2025
diff --git a/lib50/_api.py b/lib50/_api.py
@@ -39,7 +39,7 @@
 DEFAULT_FILE_LIMIT = 10000
 
 
-def push(tool, slug, config_loader, repo=None, data=None, prompt=lambda question, included, excluded: True, file_limit=DEFAULT_FILE_LIMIT):
+def push(tool, slug, config_loader, repo=None, data=None, prompt=lambda question, included, excluded: True, file_limit=DEFAULT_FILE_LIMIT, auth_method=None):
     """
     Pushes to Github in name of a tool.
     What should be pushed is configured by the tool and its configuration in the .cs50.yml file identified by the slug.
@@ -61,6 +61,10 @@ def push(tool, slug, config_loader, repo=None, data=None, prompt=lambda question
     :type prompt: lambda str, list, list => bool, optional
     :param file_limit: maximum number of files to be matched by any globbing pattern.
     :type file_limit: int
+    :param auth_method: The authentication method to use.  Accepts `"https"` or `"ssh"`. \
+                        If any other value is provided, attempts SSH \
+                        authentication first and fall back to HTTPS if SSH fails.
+    :type auth_method: str
     :return: GitHub username and the commit hash
     :type: tuple(str, str)
 
@@ -89,7 +93,7 @@ def push(tool, slug, config_loader, repo=None, data=None, prompt=lambda question
     remote, (honesty, included, excluded) = connect(slug, config_loader, file_limit=DEFAULT_FILE_LIMIT)
 
     # Authenticate the user with GitHub, and prepare the submission
-    with authenticate(remote["org"], repo=repo) as user, prepare(tool, slug, user, included):
+    with authenticate(remote["org"], repo=repo, auth_method=auth_method) as user, prepare(tool, slug, user, included):
 
         # Show any prompt if specified
         if prompt(honesty, included, excluded):
@@ -1020,23 +1024,46 @@ def _match_files(universe, pattern):
 
 def get_content(org, repo, branch, filepath):
     """Get all content from org/repo/branch/filepath at GitHub."""
-    url = "https://github.com/{}/{}/raw/{}/{}".format(org, repo, branch, filepath)
-    try:
-        r = requests.get(url)
-        if not r.ok:
-            if r.status_code == 404:
-                raise InvalidSlugError(_("Invalid slug. Did you mean to submit something else?"))
-            else:
-                # Check if GitHub outage may be the source of the issue
-                check_github_status()
-
-                # Otherwise raise a ConnectionError
-                raise ConnectionError(_("Could not connect to GitHub. Do make sure you are connected to the internet."))
-
-    except requests.exceptions.SSLError as e:
+
+    def _handle_ssl_error(e):
+        """Handle SSL errors consistently."""
         raise ConnectionError(_(f"Could not connect to GitHub due to a SSL error.\nPlease check GitHub's status at githubstatus.com.\nError: {e}"))
+
+    def _handle_non_404_error():
+        """Handle non-404 HTTP errors consistently."""
 
-    return r.content
+        # Check if GitHub outage may be the source of the issue
+        check_github_status()
+
+        # Otherwise raise a ConnectionError
+        raise ConnectionError(_("Could not connect to GitHub. Do make sure you are connected to the internet."))
+
+    def _make_request(url):
+        """Make a request and handle SSL errors."""
+        try:
+            return requests.get(url)
+        except requests.exceptions.SSLError as e:
+            _handle_ssl_error(e)
+
+    url = "https://github.com/{}/{}/raw/{}/{}".format(org, repo, branch, filepath)
+    r = _make_request(url)
+
+    if r.ok:
+        return r.content
+
+    if r.status_code == 404:
+        # Try fallback URL in case there were issues with github.com's redirect
+        fallback_url = "https://raw.githubusercontent.com/{}/{}/{}/{}".format(org, repo, branch, filepath)
+        r = _make_request(fallback_url)
+
+        if r.ok:
+            return r.content
+        elif r.status_code == 404:
+            raise InvalidSlugError(_("Invalid slug. Did you mean to submit something else?"))
+        else:
+            _handle_non_404_error()
+    else:
+        _handle_non_404_error()
 
 
 def check_github_status():

diff --git a/lib50/authentication.py b/lib50/authentication.py
@@ -32,14 +32,18 @@ class User:
                     init=False)
 
 @contextlib.contextmanager
-def authenticate(org, repo=None):
+def authenticate(org, repo=None, auth_method=None):
     """
-    A contextmanager that authenticates a user with GitHub via SSH if possible, otherwise via HTTPS.
+    A contextmanager that authenticates a user with GitHub.
 
     :param org: GitHub organisation to authenticate with
     :type org: str
     :param repo: GitHub repo (part of the org) to authenticate with. Default is the user's GitHub login.
     :type repo: str, optional
+    :param auth_method: The authentication method to use.  Accepts `"https"` or `"ssh"`. \
+                        If any other value is provided, attempts SSH \
+                        authentication first and fall back to HTTPS if SSH fails.
+    :type auth_method: str, optional
     :return: an authenticated user
     :type: lib50.User
 
@@ -51,21 +55,34 @@ def authenticate(org, repo=None):
             print(user.name)
 
     """
-    with api.ProgressBar(_("Authenticating")) as progress_bar:
-        # Both authentication methods can require user input, best stop the bar
-        progress_bar.stop()
+    def try_https(org, repo):
+        with _authenticate_https(org, repo=repo) as user:
+            return user
 
-        # Try auth through SSH
+    def try_ssh(org, repo):
         user = _authenticate_ssh(org, repo=repo)
-
-        # SSH auth failed, fallback to HTTPS
         if user is None:
-            with _authenticate_https(org, repo=repo) as user:
-                yield user
-        # yield SSH user
-        else:
-            yield user
+            raise ConnectionError
+        return user
 
+    # Showcase the type of authentication based on input
+    method_label = f" ({auth_method.upper()})" if auth_method in ("https", "ssh") else ""
+    with api.ProgressBar(_("Authenticating{}").format(method_label)) as progress_bar:
+        # Both authentication methods can require user input, best stop the bar
+        progress_bar.stop()
+
+        match auth_method:
+            case "https":
+                yield try_https(org, repo)
+            case "ssh":
+                yield try_ssh(org, repo)
+            case _:
+                # Try auth through SSH
+                try:
+                    yield try_ssh(org, repo)
+                except ConnectionError:
+                    # SSH auth failed, fallback to HTTPS
+                    yield try_https(org, repo)
 
 def logout():
     """

diff --git a/lib50/locale/vi/LC_MESSAGES/lib50.mo b/lib50/locale/vi/LC_MESSAGES/lib50.mo