author | Sylvain Thénault <sylvain.thenault@logilab.fr> |
Tue, 13 Mar 2012 14:11:40 +0100 | |
changeset 8299 | e5d636081571 |
parent 8272 | 18893bb969d2 |
child 8309 | 48ef505aa9f9 |
permissions | -rw-r--r-- |
5421
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
1 |
# copyright 2003-2010 LOGILAB S.A. (Paris, FRANCE), all rights reserved. |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
2 |
# contact http://www.logilab.fr/ -- mailto:contact@logilab.fr |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
3 |
# |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
4 |
# This file is part of CubicWeb. |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
5 |
# |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
6 |
# CubicWeb is free software: you can redistribute it and/or modify it under the |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
7 |
# terms of the GNU Lesser General Public License as published by the Free |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
8 |
# Software Foundation, either version 2.1 of the License, or (at your option) |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
9 |
# any later version. |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
10 |
# |
5424
8ecbcbff9777
replace logilab-common by CubicWeb in disclaimer
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
5421
diff
changeset
|
11 |
# CubicWeb is distributed in the hope that it will be useful, but WITHOUT |
5421
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
12 |
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
13 |
# FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
14 |
# details. |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
15 |
# |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
16 |
# You should have received a copy of the GNU Lesser General Public License along |
8167de96c523
proper licensing information (LGPL-2.1). Hope I get it right this time.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
17 |
# with CubicWeb. If not, see <http://www.gnu.org/licenses/>. |
0 | 18 |
"""WSGI request handler for cubicweb |
19 |
||
20 |
""" |
|
21 |
||
22 |
__docformat__ = "restructuredtext en" |
|
23 |
||
4719
aaed3f813ef8
kill dead/useless code as suggested by pylint
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4252
diff
changeset
|
24 |
from cubicweb import AuthenticationError |
5223
6abd6e3599f4
#773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
25 |
from cubicweb.web import Redirect, DirectResponse, StatusResponse, LogOut |
0 | 26 |
from cubicweb.web.application import CubicWebPublisher |
27 |
from cubicweb.wsgi.request import CubicWebWsgiRequest |
|
28 |
||
29 |
# See http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html |
|
30 |
STATUS_CODE_TEXT = { |
|
31 |
100: 'CONTINUE', |
|
32 |
101: 'SWITCHING PROTOCOLS', |
|
33 |
200: 'OK', |
|
34 |
201: 'CREATED', |
|
35 |
202: 'ACCEPTED', |
|
36 |
203: 'NON-AUTHORITATIVE INFORMATION', |
|
37 |
204: 'NO CONTENT', |
|
38 |
205: 'RESET CONTENT', |
|
39 |
206: 'PARTIAL CONTENT', |
|
40 |
300: 'MULTIPLE CHOICES', |
|
41 |
301: 'MOVED PERMANENTLY', |
|
42 |
302: 'FOUND', |
|
43 |
303: 'SEE OTHER', |
|
44 |
304: 'NOT MODIFIED', |
|
45 |
305: 'USE PROXY', |
|
46 |
306: 'RESERVED', |
|
47 |
307: 'TEMPORARY REDIRECT', |
|
48 |
400: 'BAD REQUEST', |
|
49 |
401: 'UNAUTHORIZED', |
|
50 |
402: 'PAYMENT REQUIRED', |
|
51 |
403: 'FORBIDDEN', |
|
52 |
404: 'NOT FOUND', |
|
53 |
405: 'METHOD NOT ALLOWED', |
|
54 |
406: 'NOT ACCEPTABLE', |
|
55 |
407: 'PROXY AUTHENTICATION REQUIRED', |
|
56 |
408: 'REQUEST TIMEOUT', |
|
57 |
409: 'CONFLICT', |
|
58 |
410: 'GONE', |
|
59 |
411: 'LENGTH REQUIRED', |
|
60 |
412: 'PRECONDITION FAILED', |
|
61 |
413: 'REQUEST ENTITY TOO LARGE', |
|
62 |
414: 'REQUEST-URI TOO LONG', |
|
63 |
415: 'UNSUPPORTED MEDIA TYPE', |
|
64 |
416: 'REQUESTED RANGE NOT SATISFIABLE', |
|
65 |
417: 'EXPECTATION FAILED', |
|
66 |
500: 'INTERNAL SERVER ERROR', |
|
67 |
501: 'NOT IMPLEMENTED', |
|
68 |
502: 'BAD GATEWAY', |
|
69 |
503: 'SERVICE UNAVAILABLE', |
|
70 |
504: 'GATEWAY TIMEOUT', |
|
71 |
505: 'HTTP VERSION NOT SUPPORTED', |
|
72 |
} |
|
73 |
||
74 |
||
75 |
class WSGIResponse(object): |
|
76 |
"""encapsulates the wsgi response parameters |
|
77 |
(code, headers and body if there is one) |
|
78 |
""" |
|
79 |
def __init__(self, code, req, body=None): |
|
80 |
text = STATUS_CODE_TEXT.get(code, 'UNKNOWN STATUS CODE') |
|
81 |
self.status = '%s %s' % (code, text) |
|
82 |
self.headers = [(str(k), str(v)) for k, v in req.headers_out.items()] |
|
83 |
if body: |
|
84 |
self.body = [body] |
|
85 |
else: |
|
86 |
self.body = [] |
|
87 |
||
88 |
def __iter__(self): |
|
89 |
return iter(self.body) |
|
1802
d628defebc17
delete-trailing-whitespace + some copyright update
Adrien Di Mascio <Adrien.DiMascio@logilab.fr>
parents:
0
diff
changeset
|
90 |
|
0 | 91 |
|
92 |
||
93 |
class CubicWebWSGIApplication(object): |
|
94 |
"""This is the wsgi application which will be called by the |
|
95 |
wsgi server with the WSGI ``environ`` and ``start_response`` |
|
96 |
parameters. |
|
97 |
||
98 |
XXX: missing looping tasks and proper repository shutdown when |
|
99 |
the application is stopped. |
|
100 |
NOTE: no pyro |
|
101 |
""" |
|
102 |
||
5442
3ed8afbbdf70
[webconfig] refactor/cleanup debug mode management on startup: simply use config.debugmode instead of debug argument everywhere...
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
5426
diff
changeset
|
103 |
def __init__(self, config, vreg=None): |
3ed8afbbdf70
[webconfig] refactor/cleanup debug mode management on startup: simply use config.debugmode instead of debug argument everywhere...
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
5426
diff
changeset
|
104 |
self.appli = CubicWebPublisher(config, vreg=vreg) |
0 | 105 |
self.config = config |
106 |
self.base_url = None |
|
107 |
# self.base_url = config['base-url'] or config.default_base_url() |
|
108 |
# assert self.base_url[-1] == '/' |
|
109 |
# self.https_url = config['https-url'] |
|
110 |
# assert not self.https_url or self.https_url[-1] == '/' |
|
2770
356e9d7c356d
R propagate registry API changes
Nicolas Chauvat <nicolas.chauvat@logilab.fr>
parents:
2058
diff
changeset
|
111 |
self.url_rewriter = self.appli.vreg['components'].select_or_none('urlrewriter') |
1802
d628defebc17
delete-trailing-whitespace + some copyright update
Adrien Di Mascio <Adrien.DiMascio@logilab.fr>
parents:
0
diff
changeset
|
112 |
|
0 | 113 |
def _render(self, req): |
114 |
"""this function performs the actual rendering |
|
115 |
XXX missing: https handling, url rewriting, cache management, |
|
116 |
authentication |
|
117 |
""" |
|
118 |
if self.base_url is None: |
|
119 |
self.base_url = self.config._base_url = req.base_url() |
|
120 |
# XXX https handling needs to be implemented |
|
121 |
if req.authmode == 'http': |
|
122 |
# activate realm-based auth |
|
123 |
realm = self.config['realm'] |
|
124 |
req.set_header('WWW-Authenticate', [('Basic', {'realm' : realm })], raw=False) |
|
125 |
try: |
|
126 |
self.appli.connect(req) |
|
127 |
except Redirect, ex: |
|
128 |
return self.redirect(req, ex.location) |
|
129 |
try: |
|
130 |
result = self.appli.publish(path, req) |
|
131 |
except DirectResponse, ex: |
|
132 |
return WSGIResponse(200, req, ex.response) |
|
133 |
except StatusResponse, ex: |
|
134 |
return WSGIResponse(ex.status, req, ex.content) |
|
5223
6abd6e3599f4
#773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
135 |
except AuthenticationError: # must be before AuthenticationError |
0 | 136 |
return self.request_auth(req) |
5223
6abd6e3599f4
#773448: refactor session and 'no connection' handling, by introducing proper web session. We should now be able to see page even when no anon is configured, and be redirected to the login form as soon as one tries to do a query.
Sylvain Thénault <sylvain.thenault@logilab.fr>
parents:
4721
diff
changeset
|
137 |
except LogOut: |
0 | 138 |
if self.config['auth-mode'] == 'cookie': |
139 |
# in cookie mode redirecting to the index view is enough : |
|
140 |
# either anonymous connection is allowed and the page will |
|
141 |
# be displayed or we'll be redirected to the login form |
|
142 |
msg = req._('you have been logged out') |
|
143 |
# if req.https: |
|
144 |
# req._base_url = self.base_url |
|
145 |
# req.https = False |
|
146 |
url = req.build_url('view', vid='index', __message=msg) |
|
147 |
return self.redirect(req, url) |
|
148 |
else: |
|
149 |
# in http we have to request auth to flush current http auth |
|
150 |
# information |
|
151 |
return self.request_auth(req, loggedout=True) |
|
152 |
except Redirect, ex: |
|
153 |
return self.redirect(req, ex.location) |
|
154 |
if not result: |
|
155 |
# no result, something went wrong... |
|
156 |
self.error('no data (%s)', req) |
|
157 |
# 500 Internal server error |
|
158 |
return self.redirect(req, req.build_url('error')) |
|
159 |
return WSGIResponse(200, req, result) |
|
1802
d628defebc17
delete-trailing-whitespace + some copyright update
Adrien Di Mascio <Adrien.DiMascio@logilab.fr>
parents:
0
diff
changeset
|
160 |
|
d628defebc17
delete-trailing-whitespace + some copyright update
Adrien Di Mascio <Adrien.DiMascio@logilab.fr>
parents:
0
diff
changeset
|
161 |
|
0 | 162 |
def __call__(self, environ, start_response): |
163 |
"""WSGI protocol entry point""" |
|
164 |
req = CubicWebWsgiRequest(environ, self.appli.vreg, self.base_url) |
|
165 |
response = self._render(req) |
|
166 |
start_response(response.status, response.headers) |
|
167 |
return response.body |
|
168 |
||
169 |
def redirect(self, req, location): |
|
170 |
"""convenience function which builds a redirect WSGIResponse""" |
|
171 |
self.debug('redirecting to %s', location) |
|
172 |
req.set_header('location', str(location)) |
|
173 |
return WSGIResponse(303, req) |
|
1802
d628defebc17
delete-trailing-whitespace + some copyright update
Adrien Di Mascio <Adrien.DiMascio@logilab.fr>
parents:
0
diff
changeset
|
174 |
|
0 | 175 |
def request_auth(self, req, loggedout=False): |
176 |
"""returns the appropriate WSGIResponse to require the user to log in |
|
177 |
""" |
|
178 |
# if self.https_url and req.base_url() != self.https_url: |
|
179 |
# return self.redirect(self.https_url + 'login') |
|
180 |
if self.config['auth-mode'] == 'http': |
|
181 |
code = 401 # UNAUTHORIZED |
|
182 |
else: |
|
183 |
code = 403 # FORBIDDEN |
|
184 |
if loggedout: |
|
185 |
# if req.https: |
|
186 |
# req._base_url = self.base_url |
|
187 |
# req.https = False |
|
188 |
content = self.appli.loggedout_content(req) |
|
189 |
else: |
|
190 |
content = self.appli.need_login_content(req) |
|
191 |
return WSGIResponse(code, req, content) |
|
192 |
||
7083
b8e35cde46e9
help pylint by explicitely defining some attributes
Alexandre Fayolle <alexandre.fayolle@logilab.fr>
parents:
5442
diff
changeset
|
193 |
# these are overridden by set_log_methods below |
b8e35cde46e9
help pylint by explicitely defining some attributes
Alexandre Fayolle <alexandre.fayolle@logilab.fr>
parents:
5442
diff
changeset
|
194 |
# only defining here to prevent pylint from complaining |
b8e35cde46e9
help pylint by explicitely defining some attributes
Alexandre Fayolle <alexandre.fayolle@logilab.fr>
parents:
5442
diff
changeset
|
195 |
info = warning = error = critical = exception = debug = lambda msg,*a,**kw: None |
b8e35cde46e9
help pylint by explicitely defining some attributes
Alexandre Fayolle <alexandre.fayolle@logilab.fr>
parents:
5442
diff
changeset
|
196 |
|
0 | 197 |
|
198 |
from logging import getLogger |
|
199 |
from cubicweb import set_log_methods |
|
200 |
set_log_methods(CubicWebWSGIApplication, getLogger('cubicweb.wsgi')) |