cubicweb: web/application.py@df15d194a134 (annotated)

7428 5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	1	# copyright 2003-2011 LOGILAB S.A. (Paris, FRANCE), all rights reserved.
5421 8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	2	# contact http://www.logilab.fr/ -- mailto:contact@logilab.fr
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	3	#
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	4	# This file is part of CubicWeb.
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	5	#
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	6	# CubicWeb is free software: you can redistribute it and/or modify it under the
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	7	# terms of the GNU Lesser General Public License as published by the Free
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	8	# Software Foundation, either version 2.1 of the License, or (at your option)
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	9	# any later version.
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	10	#
5424 8ecbcbff9777 replace logilab-common by CubicWeb in disclaimer Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5421 diff changeset	11	# CubicWeb is distributed in the hope that it will be useful, but WITHOUT
5421 8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	12	# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	13	# FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	14	# details.
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	15	#
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	16	# You should have received a copy of the GNU Lesser General Public License along
8167de96c523 proper licensing information (LGPL-2.1). Hope I get it right this time. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5377 diff changeset	17	# with CubicWeb. If not, see <http://www.gnu.org/licenses/>.
5722 61d6a4caa963 [iprogress] move adapter to entities.adapters Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5655 diff changeset	18	"""CubicWeb web client application object"""
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	19
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	20	from __future__ import with_statement
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	21
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	22	__docformat__ = "restructuredtext en"
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	23
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	24	import sys
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	25	from time import clock, time
7876 df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	26	from contextlib import contextmanager
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	27
2613 5e19c2bb370e R [all] logilab.common 0.44 provides only deprecated Nicolas Chauvat <nicolas.chauvat@logilab.fr> parents: 2476 diff changeset	28	from logilab.common.deprecation import deprecated
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	29
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	30	from rql import BadRQLQuery
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	31
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	32	from cubicweb import set_log_methods, cwvreg
7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	33	from cubicweb import (
7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	34	ValidationError, Unauthorized, AuthenticationError, NoSelectableObject,
6791 fe58b234f9c2 [web session] refactor to finally closes #343036: allow _postlogin behaviour overloading Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6680 diff changeset	35	BadConnectionId, CW_EVENT_MANAGER)
7876 df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	36	from cubicweb.dbapi import DBAPISession, anonymous_session
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	37	from cubicweb.web import LOGGER, component
7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	38	from cubicweb.web import (
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	39	StatusResponse, DirectResponse, Redirect, NotFound, LogOut,
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	40	RemoteCallFailed, InvalidSession, RequestError)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	41
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	42	# make session manager available through a global variable so the debug view can
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	43	# print information about web session
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	44	SESSION_MANAGER = None
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	45
7876 df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	46
df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	47	@contextmanager
df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	48	def anonymized_request(req):
df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	49	orig_session = req.session
df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	50	req.set_session(anonymous_session(req.vreg))
df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	51	try:
df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	52	yield req
df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	53	finally:
df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	54	req.set_session(orig_session)
df15d194a134 [views] implement json / jsonp export views (closes #1942658) Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 7855 diff changeset	55
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	56	class AbstractSessionManager(component.Component):
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	57	"""manage session data associated to a session identifier"""
3408 c92170fca813 [api] use __regid__ instead of deprecated id Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 2887 diff changeset	58	__regid__ = 'sessionmanager'
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	59
2887 1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	60	def __init__(self, vreg):
1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	61	self.session_time = vreg.config['http-session-time'] or None
1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	62	self.authmanager = vreg['components'].select('authmanager', vreg=vreg)
6012 d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	63	interval = (self.session_time or 0) / 2.
5325 f1c660e1169e [web] consistent cleanup session interval time Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5283 diff changeset	64	if vreg.config.anonymous_user() is not None:
6012 d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	65	self.cleanup_anon_session_time = vreg.config['cleanup-anonymous-session-time'] or 5 * 60
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	66	assert self.cleanup_anon_session_time > 0
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	67	if self.session_time is not None:
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	68	self.cleanup_anon_session_time = min(self.session_time,
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	69	self.cleanup_anon_session_time)
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	70	interval = self.cleanup_anon_session_time / 2.
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	71	# we don't want to check session more than once every 5 minutes
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	72	self.clean_sessions_interval = max(5 * 60, interval)
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	73
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	74	def clean_sessions(self):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	75	"""cleanup sessions which has not been unused since a given amount of
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	76	time. Return the number of sessions which have been closed.
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	77	"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	78	self.debug('cleaning http sessions')
6012 d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	79	session_time = self.session_time
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	80	closed, total = 0, 0
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	81	for session in self.current_sessions():
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	82	total += 1
6012 d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	83	try:
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	84	last_usage_time = session.cnx.check()
7589 d3459fe041f0 [web session] fix bad cleanup of session without a connection set. Closes #1772125 Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7428 diff changeset	85	except AttributeError:
d3459fe041f0 [web session] fix bad cleanup of session without a connection set. Closes #1772125 Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7428 diff changeset	86	last_usage_time = session.mtime
6012 d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	87	except BadConnectionId:
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	88	self.close_session(session)
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	89	closed += 1
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	90	else:
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	91	no_use_time = (time() - last_usage_time)
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	92	if session.anonymous_session:
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	93	if no_use_time >= self.cleanup_anon_session_time:
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	94	self.close_session(session)
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	95	closed += 1
d56fd78006cd [session] cleanup session-time / cleanup-session-time... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	96	elif session_time is not None and no_use_time >= session_time:
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	97	self.close_session(session)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	98	closed += 1
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	99	return closed, total - closed
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	100
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	101	def current_sessions(self):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	102	"""return currently open sessions"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	103	raise NotImplementedError()
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	104
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	105	def get_session(self, req, sessionid):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	106	"""return existing session for the given session identifier"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	107	raise NotImplementedError()
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	108
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	109	def open_session(self, req):
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	110	"""open and return a new session for the given request. The session is
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	111	also bound to the request.
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	112
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	113	raise :exc:`cubicweb.AuthenticationError` if authentication failed
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	114	(no authentication info found or wrong user/password)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	115	"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	116	raise NotImplementedError()
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	117
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	118	def close_session(self, session):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	119	"""close session on logout or on invalid session detected (expired out,
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	120	corrupted...)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	121	"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	122	raise NotImplementedError()
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	123
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	124
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	125	class AbstractAuthenticationManager(component.Component):
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	126	"""authenticate user associated to a request and check session validity"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	127	id = 'authmanager'
2887 1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	128	vreg = None # XXX necessary until property for deprecation warning is on appobject
1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	129
1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	130	def __init__(self, vreg):
1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	131	self.vreg = vreg
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	132
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	133	def validate_session(self, req, session):
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	134	"""check session validity, reconnecting it to the repository if the
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	135	associated connection expired in the repository side (hence the
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	136	necessity for this method).
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	137
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	138	raise :exc:`InvalidSession` if session is corrupted for a reason or
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	139	another and should be closed
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	140	"""
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	141	raise NotImplementedError()
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	142
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	143	def authenticate(self, req):
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	144	"""authenticate user using connection information found in the request,
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	145	and return corresponding a :class:`~cubicweb.dbapi.Connection` instance,
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	146	as well as login and authentication information dictionary used to open
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	147	the connection.
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	148
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	149	raise :exc:`cubicweb.AuthenticationError` if authentication failed
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	150	(no authentication info found or wrong user/password)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	151	"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	152	raise NotImplementedError()
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	153
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	154
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	155	class CookieSessionHandler(object):
6680 b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	156	"""a session handler using a cookie to store the session identifier"""
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	157
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	158	def __init__(self, appli):
2706 09baf5175196 [web session] proper reloading of the session manager on vreg update Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2705 diff changeset	159	self.vreg = appli.vreg
2887 1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	160	self.session_manager = self.vreg['components'].select('sessionmanager',
1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	161	vreg=self.vreg)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	162	global SESSION_MANAGER
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	163	SESSION_MANAGER = self.session_manager
5000 f1a10b41417a [test] don't try to reset session manager during test, Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4914 diff changeset	164	if self.vreg.config.mode != 'test':
f1a10b41417a [test] don't try to reset session manager during test, Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4914 diff changeset	165	# don't try to reset session manager during test, this leads to
f1a10b41417a [test] don't try to reset session manager during test, Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4914 diff changeset	166	# weird failures when running multiple tests
f1a10b41417a [test] don't try to reset session manager during test, Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4914 diff changeset	167	CW_EVENT_MANAGER.bind('after-registry-reload',
f1a10b41417a [test] don't try to reset session manager during test, Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4914 diff changeset	168	self.reset_session_manager)
2706 09baf5175196 [web session] proper reloading of the session manager on vreg update Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2705 diff changeset	169
09baf5175196 [web session] proper reloading of the session manager on vreg update Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2705 diff changeset	170	def reset_session_manager(self):
09baf5175196 [web session] proper reloading of the session manager on vreg update Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2705 diff changeset	171	data = self.session_manager.dump_data()
2887 1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	172	self.session_manager = self.vreg['components'].select('sessionmanager',
1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	173	vreg=self.vreg)
2706 09baf5175196 [web session] proper reloading of the session manager on vreg update Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2705 diff changeset	174	self.session_manager.restore_data(data)
09baf5175196 [web session] proper reloading of the session manager on vreg update Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2705 diff changeset	175	global SESSION_MANAGER
09baf5175196 [web session] proper reloading of the session manager on vreg update Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2705 diff changeset	176	SESSION_MANAGER = self.session_manager
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	177
5325 f1c660e1169e [web] consistent cleanup session interval time Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5283 diff changeset	178	@property
f1c660e1169e [web] consistent cleanup session interval time Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5283 diff changeset	179	def clean_sessions_interval(self):
f1c660e1169e [web] consistent cleanup session interval time Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5283 diff changeset	180	return self.session_manager.clean_sessions_interval
f1c660e1169e [web] consistent cleanup session interval time Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5283 diff changeset	181
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	182	def clean_sessions(self):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	183	"""cleanup sessions which has not been unused since a given amount of
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	184	time
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	185	"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	186	self.session_manager.clean_sessions()
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	187
6680 b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	188	def session_cookie(self, req):
b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	189	"""return a string giving the name of the cookie used to store the
b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	190	session identifier.
b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	191	"""
b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	192	if req.https:
b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	193	return '__%s_https_session' % self.vreg.config.appid
b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	194	return '__%s_session' % self.vreg.config.appid
b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	195
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	196	def set_session(self, req):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	197	"""associate a session to the request
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	198
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	199	Session id is searched from :
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	200	- # form variable
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	201	- cookie
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	202
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	203	if no session id is found, open a new session for the connected user
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	204	or request authentification as needed
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	205
6109 47d9c0e0f7b7 integrate Celso's work on translation file: proper/complete spanish translation, fixed some typos in french translation, occured -> occurred fix in various places Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5868 diff changeset	206	:raise Redirect: if authentication has occurred and succeed
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	207	"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	208	cookie = req.get_cookie()
6680 b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	209	sessioncookie = self.session_cookie(req)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	210	try:
6680 b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	211	sessionid = str(cookie[sessioncookie].value)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	212	except KeyError: # no session cookie
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	213	session = self.open_session(req)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	214	else:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	215	try:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	216	session = self.get_session(req, sessionid)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	217	except InvalidSession:
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	218	# try to open a new session, so we get an anonymous session if
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	219	# allowed
7428 5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	220	session = self.open_session(req)
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	221	else:
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	222	if not session.cnx:
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	223	# session exists but is not bound to a connection. We should
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	224	# try to authenticate
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	225	loginsucceed = False
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	226	try:
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	227	if self.open_session(req, allow_no_cnx=False):
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	228	loginsucceed = True
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	229	except Redirect:
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	230	# may be raised in open_session (by postlogin mechanism)
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	231	# on successful connection
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	232	loginsucceed = True
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	233	raise
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	234	except AuthenticationError:
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	235	# authentication failed, continue to use this session
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	236	req.set_session(session)
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	237	finally:
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	238	if loginsucceed:
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	239	# session should be replaced by new session created
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	240	# in open_session
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	241	self.session_manager.close_session(session)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	242
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	243	def get_session(self, req, sessionid):
7589 d3459fe041f0 [web session] fix bad cleanup of session without a connection set. Closes #1772125 Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7428 diff changeset	244	session = self.session_manager.get_session(req, sessionid)
d3459fe041f0 [web session] fix bad cleanup of session without a connection set. Closes #1772125 Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7428 diff changeset	245	session.mtime = time()
d3459fe041f0 [web session] fix bad cleanup of session without a connection set. Closes #1772125 Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7428 diff changeset	246	return session
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	247
7428 5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	248	def open_session(self, req, allow_no_cnx=True):
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	249	session = self.session_manager.open_session(req, allow_no_cnx=allow_no_cnx)
6680 b62ebf1d9388 [web session] fix '#1375582: sometime have to relogin since secure session cookie are used' by having different session cookie for http/https version. Also add application name to avoid potential pb when developping differents appls on the same port. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6582 diff changeset	250	sessioncookie = self.session_cookie(req)
7855 54283a5b7afc [web request] fix cookie 'expires' formating (closes #1953945) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7815 diff changeset	251	secure = req.https and req.base_url().startswith('https://')
54283a5b7afc [web request] fix cookie 'expires' formating (closes #1953945) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7815 diff changeset	252	req.set_cookie(sessioncookie, session.sessionid,
54283a5b7afc [web request] fix cookie 'expires' formating (closes #1953945) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7815 diff changeset	253	maxage=None, secure=secure)
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	254	if not session.anonymous_session:
6791 fe58b234f9c2 [web session] refactor to finally closes #343036: allow _postlogin behaviour overloading Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6680 diff changeset	255	self.session_manager.postlogin(req)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	256	return session
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	257
4911 898c35be5873 #750055: make it easier to change post logout url Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4709 diff changeset	258	def logout(self, req, goto_url):
2476 1294a6bdf3bf application -> instance where it makes sense Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2293 diff changeset	259	"""logout from the instance by cleaning the session and raising
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	260	`AuthenticationError`
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	261	"""
5494 f3bb53f1737c [web session] fix potential key error on logout (occurs once the session has been transparently reconnected, hence session.sessionid and session.cnx.sessionid differs) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5426 diff changeset	262	self.session_manager.close_session(req.session)
7855 54283a5b7afc [web request] fix cookie 'expires' formating (closes #1953945) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7815 diff changeset	263	req.remove_cookie(self.session_cookie(req))
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	264	raise LogOut(url=goto_url)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	265
7083 b8e35cde46e9 help pylint by explicitely defining some attributes Alexandre Fayolle <alexandre.fayolle@logilab.fr> parents: 6791 diff changeset	266	# these are overridden by set_log_methods below
b8e35cde46e9 help pylint by explicitely defining some attributes Alexandre Fayolle <alexandre.fayolle@logilab.fr> parents: 6791 diff changeset	267	# only defining here to prevent pylint from complaining
b8e35cde46e9 help pylint by explicitely defining some attributes Alexandre Fayolle <alexandre.fayolle@logilab.fr> parents: 6791 diff changeset	268	info = warning = error = critical = exception = debug = lambda msg,a,*kw: None
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	269
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	270	class CubicWebPublisher(object):
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	271	"""the publisher is a singleton hold by the web frontend, and is responsible
7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	272	to publish HTTP request.
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	273	"""
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	274
5442 3ed8afbbdf70 [webconfig] refactor/cleanup debug mode management on startup: simply use config.debugmode instead of debug argument everywhere... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5426 diff changeset	275	def __init__(self, config,
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	276	session_handler_fact=CookieSessionHandler,
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	277	vreg=None):
4484 d87989d91635 fix duplicated vregistry initialization during tests Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4212 diff changeset	278	self.info('starting web instance from %s', config.apphome)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	279	if vreg is None:
5442 3ed8afbbdf70 [webconfig] refactor/cleanup debug mode management on startup: simply use config.debugmode instead of debug argument everywhere... Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5426 diff changeset	280	vreg = cwvreg.CubicWebVRegistry(config)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	281	self.vreg = vreg
4484 d87989d91635 fix duplicated vregistry initialization during tests Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4212 diff changeset	282	# connect to the repository and get instance's schema
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	283	self.repo = config.repository(vreg)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	284	if not vreg.initialized:
5650 86e874fe30ea [web] cleanup use of config in web application initialisation Julien Jehannet <julien.jehannet@logilab.fr> parents: 5587 diff changeset	285	config.init_cubes(self.repo.get_cubes())
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	286	vreg.init_properties(self.repo.properties())
4484 d87989d91635 fix duplicated vregistry initialization during tests Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4212 diff changeset	287	vreg.set_schema(self.repo.get_schema())
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	288	# set the correct publish method
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	289	if config['query-log-file']:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	290	from threading import Lock
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	291	self._query_log = open(config['query-log-file'], 'a')
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	292	self.publish = self.log_publish
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	293	self._logfile_lock = Lock()
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	294	else:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	295	self._query_log = None
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	296	self.publish = self.main_publish
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	297	# instantiate session and url resolving helpers
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	298	self.session_handler = session_handler_fact(self)
2685 0518ca8f63e3 [autoreload] recompute urlresolver / urlrewriter after autoreload Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 2666 diff changeset	299	self.set_urlresolver()
2705 30bcdbd92820 [events] renamed source-reload into registry-reload to avoid potential confusions with datasources Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 2685 diff changeset	300	CW_EVENT_MANAGER.bind('after-registry-reload', self.set_urlresolver)
2685 0518ca8f63e3 [autoreload] recompute urlresolver / urlrewriter after autoreload Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 2666 diff changeset	301
0518ca8f63e3 [autoreload] recompute urlresolver / urlrewriter after autoreload Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 2666 diff changeset	302	def set_urlresolver(self):
2887 1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	303	self.url_resolver = self.vreg['components'].select('urlpublisher',
1282dc6525c5 give vreg where we need it (eg no bound request) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2867 diff changeset	304	vreg=self.vreg)
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	305
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	306	def connect(self, req):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	307	"""return a connection for a logged user object according to existing
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	308	sessions (i.e. a new connection may be created or an already existing
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	309	one may be reused
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	310	"""
7428 5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	311	self.session_handler.set_session(req)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	312
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	313	# publish methods #########################################################
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	314
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	315	def log_publish(self, path, req):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	316	"""wrapper around _publish to log all queries executed for a given
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	317	accessed path
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	318	"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	319	try:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	320	return self.main_publish(path, req)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	321	finally:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	322	cnx = req.cnx
5244 5467674ad101 [web] put a fake object that raise Unauthorized on any attribute access as req.cnx and req._user, so we are properly asked to authenticated on any view that tries to do something with one of those attributes (instead of doing defensive programming everywhere we're doing that) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5223 diff changeset	323	if cnx:
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	324	with self._logfile_lock:
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	325	try:
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	326	result = ['\n'+''80]
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	327	result.append(req.url())
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	328	result += ['%s %s -- (%.3f sec, %.3f CPU sec)' % q
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	329	for q in cnx.executed_queries]
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	330	cnx.executed_queries = []
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	331	self._query_log.write('\n'.join(result).encode(req.encoding))
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	332	self._query_log.flush()
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	333	except Exception:
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	334	self.exception('error while logging queries')
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	335
2788 8d3dbe577d3a R put version info in deprecation warnings Nicolas Chauvat <nicolas.chauvat@logilab.fr> parents: 2706 diff changeset	336	@deprecated("[3.4] use vreg['controllers'].select(...)")
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	337	def select_controller(self, oid, req):
7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	338	try:
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	339	return self.vreg['controllers'].select(oid, req=req, appli=self)
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	340	except NoSelectableObject:
7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	341	raise Unauthorized(req._('not authorized'))
7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	342
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	343	def main_publish(self, path, req):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	344	"""method called by the main publisher to process <path>
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	345
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	346	should return a string containing the resulting page or raise a
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	347	`NotFound` exception
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	348
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	349	:type path: str
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	350	:param path: the path part of the url to publish
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	351
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	352	:type req: `web.Request`
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	353	:param req: the request object
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	354
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	355	:rtype: str
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	356	:return: the result of the pusblished url
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	357	"""
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	358	path = path or 'view'
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	359	# don't log form values they may contains sensitive information
6318 de6264ac7c50 [publisher] add session id when logging published path Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6273 diff changeset	360	self.info('publish "%s" (%s, form params: %s)',
de6264ac7c50 [publisher] add session id when logging published path Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6273 diff changeset	361	path, req.session.sessionid, req.form.keys())
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	362	# remove user callbacks on a new request (except for json controllers
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	363	# to avoid callbacks being unregistered before they could be called)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	364	tstart = clock()
5865 af414723598d [publisher] avoid useless rollback after successful commit, which clutters debug logs and may also not be cost-free Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5721 diff changeset	365	commited = False
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	366	try:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	367	try:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	368	ctrlid, rset = self.url_resolver.process(req, path)
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	369	try:
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	370	controller = self.vreg['controllers'].select(ctrlid, req,
18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	371	appli=self)
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	372	except NoSelectableObject:
5584 c1823448f81d [web] disallow authenticated users to access to the login form (closes #914873) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5494 diff changeset	373	if ctrlid == 'login':
c1823448f81d [web] disallow authenticated users to access to the login form (closes #914873) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5494 diff changeset	374	raise Unauthorized(req._('log out first'))
2058 7ef12c03447c nicer vreg api, try to make rset an optional named argument in select and derivated (including selectors) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 1977 diff changeset	375	raise Unauthorized(req._('not authorized'))
581 09f87f2c535e update_search_state in the publisher since it should be done whatever the controller sylvain.thenault@logilab.fr parents: 168 diff changeset	376	req.update_search_state()
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	377	result = controller.publish(rset=rset)
5244 5467674ad101 [web] put a fake object that raise Unauthorized on any attribute access as req.cnx and req._user, so we are properly asked to authenticated on any view that tries to do something with one of those attributes (instead of doing defensive programming everywhere we're doing that) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5223 diff changeset	378	if req.cnx:
5467674ad101 [web] put a fake object that raise Unauthorized on any attribute access as req.cnx and req._user, so we are properly asked to authenticated on any view that tries to do something with one of those attributes (instead of doing defensive programming everywhere we're doing that) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5223 diff changeset	379	# no req.cnx if anonymous aren't allowed and we are
5467674ad101 [web] put a fake object that raise Unauthorized on any attribute access as req.cnx and req._user, so we are properly asked to authenticated on any view that tries to do something with one of those attributes (instead of doing defensive programming everywhere we're doing that) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5223 diff changeset	380	# displaying some anonymous enabled view such as the cookie
5467674ad101 [web] put a fake object that raise Unauthorized on any attribute access as req.cnx and req._user, so we are properly asked to authenticated on any view that tries to do something with one of those attributes (instead of doing defensive programming everywhere we're doing that) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5223 diff changeset	381	# authentication form
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	382	req.cnx.commit()
5865 af414723598d [publisher] avoid useless rollback after successful commit, which clutters debug logs and may also not be cost-free Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5721 diff changeset	383	commited = True
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	384	except (StatusResponse, DirectResponse):
5244 5467674ad101 [web] put a fake object that raise Unauthorized on any attribute access as req.cnx and req._user, so we are properly asked to authenticated on any view that tries to do something with one of those attributes (instead of doing defensive programming everywhere we're doing that) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5223 diff changeset	385	if req.cnx:
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	386	req.cnx.commit()
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	387	raise
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	388	except (AuthenticationError, LogOut):
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	389	raise
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	390	except Redirect:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	391	# redirect is raised by edit controller when everything went fine,
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	392	# so try to commit
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	393	try:
7428 5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	394	if req.cnx:
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	395	txuuid = req.cnx.commit()
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	396	if txuuid is not None:
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	397	msg = u'<span class="undo">[<a href="%s">%s</a>]</span>' %(
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	398	req.build_url('undo', txuuid=txuuid), req._('undo'))
5338d895b891 [web session] fix session handling so we get a chance to have for instance the 'forgotpwd' feature working on a site where anonymous are not allowed Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7348 diff changeset	399	req.append_to_redirect_message(msg)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	400	except ValidationError, ex:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	401	self.validation_error_handler(req, ex)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	402	except Unauthorized, ex:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	403	req.data['errmsg'] = req._('You\'re not authorized to access this page. '
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	404	'If you think you should, please contact the site administrator.')
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	405	self.error_handler(req, ex, tb=False)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	406	except Exception, ex:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	407	self.error_handler(req, ex, tb=True)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	408	else:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	409	# delete validation errors which may have been previously set
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	410	if '__errorurl' in req.form:
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	411	req.session.data.pop(req.form['__errorurl'], None)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	412	raise
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	413	except RemoteCallFailed, ex:
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	414	req.set_header('content-type', 'application/json')
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	415	raise StatusResponse(500, ex.dumps())
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	416	except NotFound:
6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	417	raise StatusResponse(404, self.notfound_content(req))
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	418	except ValidationError, ex:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	419	self.validation_error_handler(req, ex)
7348 dce4fa28ae49 [web server] #1642893 issue a 403 instead of a 500 on Unauthorized exception Pierre-Yves David <pierre-yves.david@logilab.fr> parents: 7083 diff changeset	420	except Unauthorized, ex:
dce4fa28ae49 [web server] #1642893 issue a 403 instead of a 500 on Unauthorized exception Pierre-Yves David <pierre-yves.david@logilab.fr> parents: 7083 diff changeset	421	self.error_handler(req, ex, tb=False, code=403)
dce4fa28ae49 [web server] #1642893 issue a 403 instead of a 500 on Unauthorized exception Pierre-Yves David <pierre-yves.david@logilab.fr> parents: 7083 diff changeset	422	except (BadRQLQuery, RequestError), ex:
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	423	self.error_handler(req, ex, tb=False)
6272 bb546568e466 [publisher] with python>=2.5, we should catch BaseException here Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6109 diff changeset	424	except BaseException, ex:
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	425	self.error_handler(req, ex, tb=True)
5377 84d14ddfae13 [python2.6] prefer python2.6's builtin json module over simplejson Alexandre Fayolle <alexandre.fayolle@logilab.fr> parents: 5326 diff changeset	426	except:
84d14ddfae13 [python2.6] prefer python2.6's builtin json module over simplejson Alexandre Fayolle <alexandre.fayolle@logilab.fr> parents: 5326 diff changeset	427	self.critical('Catch all triggered!!!')
84d14ddfae13 [python2.6] prefer python2.6's builtin json module over simplejson Alexandre Fayolle <alexandre.fayolle@logilab.fr> parents: 5326 diff changeset	428	self.exception('this is what happened')
6273 8dbdd4cc7938 [publisher] avoid extra Name error on unexpected error Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 6272 diff changeset	429	result = 'oops'
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	430	finally:
5865 af414723598d [publisher] avoid useless rollback after successful commit, which clutters debug logs and may also not be cost-free Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5721 diff changeset	431	if req.cnx and not commited:
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	432	try:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	433	req.cnx.rollback()
7815 2a164a9cf81c [exceptions] stop catching any exception in various places (closes #1942716) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7589 diff changeset	434	except Exception:
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	435	pass # ignore rollback error at this point
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	436	self.info('query %s executed in %s sec', req.relative_path(), clock() - tstart)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	437	return result
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	438
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	439	def validation_error_handler(self, req, ex):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	440	ex.errors = dict((k, v) for k, v in ex.errors.items())
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	441	if '__errorurl' in req.form:
4224 5998df006968 refactor form error handling: Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 3408 diff changeset	442	forminfo = {'error': ex,
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	443	'values': req.form,
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	444	'eidmap': req.data.get('eidmap', {})
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	445	}
5223 6abd6e3599f4 #773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query. Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 5174 diff changeset	446	req.session.data[req.form['__errorurl']] = forminfo
4679 d8ad65dab3e9 remove #<formid> from url used to redirect after a validation error Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4639 diff changeset	447	# XXX form session key / __error_url should be differentiated:
d8ad65dab3e9 remove #<formid> from url used to redirect after a validation error Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4639 diff changeset	448	# session key is 'url + #<form dom id', though we usually don't want
d8ad65dab3e9 remove #<formid> from url used to redirect after a validation error Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4639 diff changeset	449	# the browser to move to the form since it hides the global
d8ad65dab3e9 remove #<formid> from url used to redirect after a validation error Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4639 diff changeset	450	# messages.
d8ad65dab3e9 remove #<formid> from url used to redirect after a validation error Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4639 diff changeset	451	raise Redirect(req.form['__errorurl'].rsplit('#', 1)[0])
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	452	self.error_handler(req, ex, tb=False)
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	453
7348 dce4fa28ae49 [web server] #1642893 issue a 403 instead of a 500 on Unauthorized exception Pierre-Yves David <pierre-yves.david@logilab.fr> parents: 7083 diff changeset	454	def error_handler(self, req, ex, tb=False, code=500):
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	455	excinfo = sys.exc_info()
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	456	self.exception(repr(ex))
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	457	req.set_header('Cache-Control', 'no-cache')
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	458	req.remove_header('Etag')
4897 e402e0b32075 [web] start a new message system based on id of message stored in session's data Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 4709 diff changeset	459	req.reset_message()
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	460	req.reset_headers()
4709 6a71fc0b4274 [web] fix #724769: Use RemoteCallFailed in the publisher's error_handler Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 4679 diff changeset	461	if req.json_request:
6a71fc0b4274 [web] fix #724769: Use RemoteCallFailed in the publisher's error_handler Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: 4679 diff changeset	462	raise RemoteCallFailed(unicode(ex))
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	463	try:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	464	req.data['ex'] = ex
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	465	if tb:
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	466	req.data['excinfo'] = excinfo
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	467	req.form['vid'] = 'error'
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	468	errview = self.vreg['views'].select('error', req)
882 75488a2a875e fix ui.main-template property handling sylvain.thenault@logilab.fr parents: 871 diff changeset	469	template = self.main_template_id(req)
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	470	content = self.vreg['views'].main_template(req, template, view=errview)
7815 2a164a9cf81c [exceptions] stop catching any exception in various places (closes #1942716) Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 7589 diff changeset	471	except Exception:
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	472	content = self.vreg['views'].main_template(req, 'error-template')
7348 dce4fa28ae49 [web server] #1642893 issue a 403 instead of a 500 on Unauthorized exception Pierre-Yves David <pierre-yves.david@logilab.fr> parents: 7083 diff changeset	473	raise StatusResponse(code, content)
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	474
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	475	def need_login_content(self, req):
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	476	return self.vreg['views'].main_template(req, 'login')
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	477
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	478	def loggedout_content(self, req):
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	479	return self.vreg['views'].main_template(req, 'loggedout')
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	480
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	481	def notfound_content(self, req):
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	482	req.form['vid'] = '404'
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	483	view = self.vreg['views'].select('404', req)
882 75488a2a875e fix ui.main-template property handling sylvain.thenault@logilab.fr parents: 871 diff changeset	484	template = self.main_template_id(req)
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	485	return self.vreg['views'].main_template(req, template, view=view)
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	486
882 75488a2a875e fix ui.main-template property handling sylvain.thenault@logilab.fr parents: 871 diff changeset	487	def main_template_id(self, req):
2263 1f59cd5b710f accept a __template parameter that specifies a different (main) template Aurelien Campeas <aurelien.campeas@logilab.fr> parents: 1977 diff changeset	488	template = req.form.get('__template', req.property_value('ui.main-template'))
2650 18aec79ec3a3 R [vreg] important refactoring of the vregistry, moving behaviour to end dictionnary (and so leaving room for more flexibility ; keep bw compat ; update api usage in cw Sylvain Thénault <sylvain.thenault@logilab.fr> parents: 2613 diff changeset	489	if template not in self.vreg['views']:
882 75488a2a875e fix ui.main-template property handling sylvain.thenault@logilab.fr parents: 871 diff changeset	490	template = 'main-template'
75488a2a875e fix ui.main-template property handling sylvain.thenault@logilab.fr parents: 871 diff changeset	491	return template
1426 379261551578 remove trailing spaces sylvain.thenault@logilab.fr parents: 1132 diff changeset	492
7083 b8e35cde46e9 help pylint by explicitely defining some attributes Alexandre Fayolle <alexandre.fayolle@logilab.fr> parents: 6791 diff changeset	493	# these are overridden by set_log_methods below
b8e35cde46e9 help pylint by explicitely defining some attributes Alexandre Fayolle <alexandre.fayolle@logilab.fr> parents: 6791 diff changeset	494	# only defining here to prevent pylint from complaining
b8e35cde46e9 help pylint by explicitely defining some attributes Alexandre Fayolle <alexandre.fayolle@logilab.fr> parents: 6791 diff changeset	495	info = warning = error = critical = exception = debug = lambda msg,a,*kw: None
0 b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	496
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	497	set_log_methods(CubicWebPublisher, LOGGER)
b97547f5f1fa Showtime ! Adrien Di Mascio <Adrien.DiMascio@logilab.fr> parents: diff changeset	498	set_log_methods(CookieSessionHandler, LOGGER)

author	Adrien Di Mascio <Adrien.DiMascio@logilab.fr>
	Tue, 27 Sep 2011 18:47:11 +0200
changeset 7876	df15d194a134
parent 7855	54283a5b7afc
child 7990	a673d1d9a738
permissions	-rw-r--r--