1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
1 |
# IVLE - Informatics Virtual Learning Environment
|
1080.1.2
by matt.giuca
New module: ivle.database. Classes and utilities for Storm ORM. |
2 |
# Copyright (C) 2007-2009 The University of Melbourne
|
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
3 |
#
|
4 |
# This program is free software; you can redistribute it and/or modify
|
|
5 |
# it under the terms of the GNU General Public License as published by
|
|
6 |
# the Free Software Foundation; either version 2 of the License, or
|
|
7 |
# (at your option) any later version.
|
|
8 |
#
|
|
9 |
# This program is distributed in the hope that it will be useful,
|
|
10 |
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
11 |
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
12 |
# GNU General Public License for more details.
|
|
13 |
#
|
|
14 |
# You should have received a copy of the GNU General Public License
|
|
15 |
# along with this program; if not, write to the Free Software
|
|
16 |
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
|
|
17 |
||
18 |
# Author: Matt Giuca
|
|
1080.1.2
by matt.giuca
New module: ivle.database. Classes and utilities for Storm ORM. |
19 |
|
20 |
"""
|
|
21 |
IVLE Request Object
|
|
22 |
||
23 |
Builds an IVLE request object from a mod_python request object.
|
|
24 |
See design notes/apps/dispatch.txt for a full specification of this request
|
|
25 |
object.
|
|
26 |
"""
|
|
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
27 |
|
1099.1.5
by William Grant
ivle.dispatch{,.{login,request}}: Fix mod_python imports to ensure that we can |
28 |
try: |
29 |
import mod_python.Session |
|
30 |
import mod_python.Cookie |
|
31 |
import mod_python.util |
|
32 |
except ImportError: |
|
33 |
# This needs to be importable from outside Apache.
|
|
34 |
pass
|
|
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
35 |
|
36 |
import ivle.util |
|
37 |
import ivle.conf |
|
1080.1.2
by matt.giuca
New module: ivle.database. Classes and utilities for Storm ORM. |
38 |
import ivle.database |
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
39 |
import plugins.console # XXX: Relies on www/ being in the Python path. |
40 |
||
41 |
class Request: |
|
42 |
"""An IVLE request object. This is presented to the IVLE apps as a way of
|
|
43 |
interacting with the web server and the dispatcher.
|
|
44 |
||
45 |
Request object attributes:
|
|
46 |
method (read)
|
|
47 |
String. The request method (eg. 'GET', 'POST', etc)
|
|
48 |
uri (read)
|
|
49 |
String. The path portion of the URI.
|
|
50 |
app (read)
|
|
51 |
String. Name of the application specified in the URL, or None.
|
|
52 |
path (read)
|
|
53 |
String. The path specified in the URL *not including* the
|
|
54 |
application or the IVLE location prefix. eg. a URL of
|
|
55 |
"/ivle/files/joe/myfiles" has a path of "joe/myfiles".
|
|
56 |
user (read)
|
|
57 |
User object. Details of the user who is currently logged in, or
|
|
58 |
None.
|
|
1080.1.2
by matt.giuca
New module: ivle.database. Classes and utilities for Storm ORM. |
59 |
store (read)
|
60 |
storm.store.Store instance. Holds a database transaction open,
|
|
61 |
which is available for the entire lifetime of the request.
|
|
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
62 |
hostname (read)
|
63 |
String. Hostname the server is running on.
|
|
64 |
headers_in (read)
|
|
65 |
Table object representing headers sent by the client.
|
|
66 |
headers_out (read, can be written to)
|
|
67 |
Table object representing headers to be sent to the client.
|
|
68 |
publicmode (read)
|
|
69 |
Bool. True if the request came for the "public host" as
|
|
70 |
configured in conf.py. Note that public mode requests do not
|
|
71 |
have an app (app is set to None).
|
|
72 |
||
73 |
status (write)
|
|
74 |
Int. Response status number. Use one of the status codes defined
|
|
75 |
in class Request.
|
|
76 |
content_type (write)
|
|
77 |
String. The Content-Type (mime type) header value.
|
|
78 |
location (write)
|
|
79 |
String. Response "Location" header value. Used with HTTP redirect
|
|
80 |
responses.
|
|
81 |
title (write)
|
|
82 |
String. HTML page title. Used if write_html_head_foot is True, in
|
|
83 |
the HTML title element text.
|
|
84 |
styles (write)
|
|
85 |
List of strings. Write a list of URLs to CSS files here, and they
|
|
86 |
will be incorporated as <link rel="stylesheet" type="text/css">
|
|
87 |
elements in the head, if write_html_head_foot is True.
|
|
88 |
URLs should be relative to the IVLE root; they will be fixed up
|
|
89 |
to be site-relative.
|
|
90 |
scripts (write)
|
|
91 |
List of strings. Write a list of URLs to JS files here, and they
|
|
92 |
will be incorporated as <script type="text/javascript"> elements
|
|
93 |
in the head, if write_html_head_foot is True.
|
|
94 |
URLs should be relative to the IVLE root; they will be fixed up
|
|
95 |
to be site-relative.
|
|
96 |
scripts_init (write)
|
|
97 |
List of strings. Write a list of JS function names, and they
|
|
98 |
will be added as window.addListener('load', ..., false); calls
|
|
99 |
in the head, if write_html_head_foot is True.
|
|
100 |
This is the propper way to specify functions that need to run at
|
|
101 |
page load time.
|
|
102 |
write_html_head_foot (write)
|
|
103 |
Boolean. If True, dispatch assumes that this is an XHTML page, and
|
|
104 |
will immediately write a full HTML head, open the body element,
|
|
105 |
and write heading contents to the page, before any bytes are
|
|
106 |
written. It will then write footer contents and close the body and
|
|
107 |
html elements at the end of execution.
|
|
108 |
||
109 |
This value should be set to true by all applications for all HTML
|
|
110 |
output (unless there is a good reason, eg. exec). The
|
|
111 |
applications should therefore output HTML content assuming that
|
|
112 |
it will be written inside the body tag. Do not write opening or
|
|
113 |
closing <html> or <body> tags.
|
|
114 |
"""
|
|
115 |
||
116 |
# Special code for an OK response.
|
|
117 |
# Do not use HTTP_OK; for some reason Apache produces an "OK" error
|
|
118 |
# message if you do that.
|
|
119 |
OK = 0 |
|
120 |
||
121 |
# HTTP status codes
|
|
122 |
||
123 |
HTTP_CONTINUE = 100 |
|
124 |
HTTP_SWITCHING_PROTOCOLS = 101 |
|
125 |
HTTP_PROCESSING = 102 |
|
126 |
HTTP_OK = 200 |
|
127 |
HTTP_CREATED = 201 |
|
128 |
HTTP_ACCEPTED = 202 |
|
129 |
HTTP_NON_AUTHORITATIVE = 203 |
|
130 |
HTTP_NO_CONTENT = 204 |
|
131 |
HTTP_RESET_CONTENT = 205 |
|
132 |
HTTP_PARTIAL_CONTENT = 206 |
|
133 |
HTTP_MULTI_STATUS = 207 |
|
134 |
HTTP_MULTIPLE_CHOICES = 300 |
|
135 |
HTTP_MOVED_PERMANENTLY = 301 |
|
136 |
HTTP_MOVED_TEMPORARILY = 302 |
|
137 |
HTTP_SEE_OTHER = 303 |
|
138 |
HTTP_NOT_MODIFIED = 304 |
|
139 |
HTTP_USE_PROXY = 305 |
|
140 |
HTTP_TEMPORARY_REDIRECT = 307 |
|
141 |
HTTP_BAD_REQUEST = 400 |
|
142 |
HTTP_UNAUTHORIZED = 401 |
|
143 |
HTTP_PAYMENT_REQUIRED = 402 |
|
144 |
HTTP_FORBIDDEN = 403 |
|
145 |
HTTP_NOT_FOUND = 404 |
|
146 |
HTTP_METHOD_NOT_ALLOWED = 405 |
|
147 |
HTTP_NOT_ACCEPTABLE = 406 |
|
148 |
HTTP_PROXY_AUTHENTICATION_REQUIRED= 407 |
|
149 |
HTTP_REQUEST_TIME_OUT = 408 |
|
150 |
HTTP_CONFLICT = 409 |
|
151 |
HTTP_GONE = 410 |
|
152 |
HTTP_LENGTH_REQUIRED = 411 |
|
153 |
HTTP_PRECONDITION_FAILED = 412 |
|
154 |
HTTP_REQUEST_ENTITY_TOO_LARGE = 413 |
|
155 |
HTTP_REQUEST_URI_TOO_LARGE = 414 |
|
156 |
HTTP_UNSUPPORTED_MEDIA_TYPE = 415 |
|
157 |
HTTP_RANGE_NOT_SATISFIABLE = 416 |
|
158 |
HTTP_EXPECTATION_FAILED = 417 |
|
159 |
HTTP_UNPROCESSABLE_ENTITY = 422 |
|
160 |
HTTP_LOCKED = 423 |
|
161 |
HTTP_FAILED_DEPENDENCY = 424 |
|
162 |
HTTP_INTERNAL_SERVER_ERROR = 500 |
|
163 |
HTTP_NOT_IMPLEMENTED = 501 |
|
164 |
HTTP_BAD_GATEWAY = 502 |
|
165 |
HTTP_SERVICE_UNAVAILABLE = 503 |
|
166 |
HTTP_GATEWAY_TIME_OUT = 504 |
|
167 |
HTTP_VERSION_NOT_SUPPORTED = 505 |
|
168 |
HTTP_VARIANT_ALSO_VARIES = 506 |
|
169 |
HTTP_INSUFFICIENT_STORAGE = 507 |
|
170 |
HTTP_NOT_EXTENDED = 510 |
|
171 |
||
172 |
def __init__(self, req, write_html_head): |
|
173 |
"""Builds an IVLE request object from a mod_python request object.
|
|
174 |
This results in an object with all of the necessary methods and
|
|
175 |
additional fields.
|
|
176 |
||
177 |
req: A mod_python request object.
|
|
178 |
write_html_head: Function which is called when writing the automatic
|
|
179 |
HTML header. Accepts a single argument, the IVLE request object.
|
|
180 |
"""
|
|
181 |
||
182 |
# Methods are mostly wrappers around the Apache request object
|
|
183 |
self.apache_req = req |
|
184 |
self.func_write_html_head = write_html_head |
|
185 |
self.headers_written = False |
|
186 |
||
187 |
# Determine if the browser used the public host name to make the
|
|
188 |
# request (in which case we are in "public mode")
|
|
189 |
if req.hostname == ivle.conf.public_host: |
|
190 |
self.publicmode = True |
|
191 |
else: |
|
192 |
self.publicmode = False |
|
193 |
||
194 |
# Inherit values for the input members
|
|
195 |
self.method = req.method |
|
196 |
self.uri = req.uri |
|
197 |
# Split the given path into the app (top-level dir) and sub-path
|
|
198 |
# (after first stripping away the root directory)
|
|
199 |
path = ivle.util.unmake_path(req.uri) |
|
200 |
(self.app, self.path) = (ivle.util.split_path(path)) |
|
201 |
self.user = None |
|
202 |
self.hostname = req.hostname |
|
203 |
self.headers_in = req.headers_in |
|
204 |
self.headers_out = req.headers_out |
|
205 |
||
1080.1.2
by matt.giuca
New module: ivle.database. Classes and utilities for Storm ORM. |
206 |
# Open a database connection and transaction, keep it around for users
|
207 |
# of the Request object to use
|
|
208 |
self.store = ivle.database.get_store() |
|
209 |
||
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
210 |
# Default values for the output members
|
211 |
self.status = Request.HTTP_OK |
|
212 |
self.content_type = None # Use Apache's default |
|
213 |
self.location = None |
|
214 |
self.title = None # Will be set by dispatch before passing to app |
|
215 |
self.styles = [] |
|
216 |
self.scripts = [] |
|
217 |
self.scripts_init = [] |
|
218 |
self.write_html_head_foot = False |
|
219 |
# In some cases we don't want the template JS (such as the username
|
|
220 |
# and public FQDN) in the output HTML. In that case, set this to 0.
|
|
221 |
self.write_javascript_settings = True |
|
222 |
self.got_common_vars = False |
|
223 |
||
1080.1.2
by matt.giuca
New module: ivle.database. Classes and utilities for Storm ORM. |
224 |
def __del__(self): |
225 |
"""Cleanup."""
|
|
226 |
self.store.close() |
|
227 |
||
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
228 |
def __writeheaders(self): |
229 |
"""Writes out the HTTP and HTML headers before any real data is
|
|
230 |
written."""
|
|
231 |
self.headers_written = True |
|
232 |
||
233 |
# app is the App object for the chosen app
|
|
234 |
try: |
|
235 |
app = ivle.conf.apps.app_url[self.app] |
|
236 |
except KeyError: |
|
237 |
app = None |
|
238 |
||
239 |
# Write any final modifications to header content
|
|
240 |
if app and app.useconsole and self.user: |
|
241 |
plugins.console.insert_scripts_styles(self.scripts, self.styles, \ |
|
242 |
self.scripts_init) |
|
243 |
||
244 |
# Prepare the HTTP and HTML headers before the first write is made
|
|
245 |
if self.content_type != None: |
|
246 |
self.apache_req.content_type = self.content_type |
|
247 |
self.apache_req.status = self.status |
|
248 |
if self.location != None: |
|
249 |
self.apache_req.headers_out['Location'] = self.location |
|
250 |
if self.write_html_head_foot: |
|
251 |
# Write the HTML header, pass "self" (request object)
|
|
252 |
self.func_write_html_head(self) |
|
253 |
||
254 |
def ensure_headers_written(self): |
|
255 |
"""Writes out the HTTP and HTML headers if they haven't already been
|
|
256 |
written."""
|
|
257 |
if not self.headers_written: |
|
258 |
self.__writeheaders() |
|
259 |
||
260 |
def write(self, string, flush=1): |
|
261 |
"""Writes string directly to the client, then flushes the buffer,
|
|
262 |
unless flush is 0."""
|
|
263 |
||
264 |
if not self.headers_written: |
|
265 |
self.__writeheaders() |
|
266 |
if isinstance(string, unicode): |
|
267 |
# Encode unicode strings as UTF-8
|
|
268 |
# (Otherwise cannot handle being written to a bytestream)
|
|
269 |
self.apache_req.write(string.encode('utf8'), flush) |
|
270 |
else: |
|
271 |
# 8-bit clean strings just get written directly.
|
|
272 |
# This includes binary strings.
|
|
273 |
self.apache_req.write(string, flush) |
|
274 |
||
1081
by me at id
ivle.conf, ivle.dispatch: Redo some of Nick's changes made between the |
275 |
def logout(self): |
276 |
"""Log out the current user by destroying the session state.
|
|
277 |
Then redirect to the top-level IVLE page."""
|
|
278 |
# List of cookies that IVLE uses (to be removed at logout)
|
|
279 |
ivle_cookies = ["ivleforumcookie", "clipboard"] |
|
280 |
||
281 |
if hasattr(self, 'session'): |
|
282 |
self.session.invalidate() |
|
283 |
self.session.delete() |
|
284 |
# Invalidates all IVLE cookies
|
|
1099.1.5
by William Grant
ivle.dispatch{,.{login,request}}: Fix mod_python imports to ensure that we can |
285 |
all_cookies = mod_python.Cookie.get_cookies(self) |
1081
by me at id
ivle.conf, ivle.dispatch: Redo some of Nick's changes made between the |
286 |
for cookie in all_cookies: |
287 |
if cookie in ivle_cookies: |
|
1099.1.5
by William Grant
ivle.dispatch{,.{login,request}}: Fix mod_python imports to ensure that we can |
288 |
self.add_cookie(mod_python.Cookie.Cookie(cookie,'',expires=1,path='/')) |
1082
by me at id
ivle.dispatch.request: Use ivle.util, not common.util, in the remerged bit. |
289 |
self.throw_redirect(ivle.util.make_path('')) |
1081
by me at id
ivle.conf, ivle.dispatch: Redo some of Nick's changes made between the |
290 |
|
291 |
||
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
292 |
def flush(self): |
293 |
"""Flushes the output buffer."""
|
|
294 |
self.apache_req.flush() |
|
295 |
||
296 |
def sendfile(self, filename): |
|
297 |
"""Sends the named file directly to the client."""
|
|
298 |
if not self.headers_written: |
|
299 |
self.__writeheaders() |
|
300 |
self.apache_req.sendfile(filename) |
|
301 |
||
302 |
def read(self, len=None): |
|
303 |
"""Reads at most len bytes directly from the client. (See mod_python
|
|
304 |
Request.read)."""
|
|
305 |
if len is None: |
|
306 |
return self.apache_req.read() |
|
307 |
else: |
|
308 |
return self.apache_req.read(len) |
|
309 |
||
310 |
def throw_error(self, httpcode, message=None): |
|
311 |
"""Writes out an HTTP error of the specified code. Raises an exception
|
|
312 |
which is caught by the dispatch or web server, so any code following
|
|
313 |
this call will not be executed.
|
|
314 |
||
315 |
httpcode: An HTTP response status code. Pass a constant from the
|
|
316 |
Request class.
|
|
317 |
"""
|
|
318 |
raise ivle.util.IVLEError(httpcode, message) |
|
319 |
||
320 |
def throw_redirect(self, location): |
|
321 |
"""Writes out an HTTP redirect to the specified URL. Raises an
|
|
322 |
exception which is caught by the dispatch or web server, so any
|
|
323 |
code following this call will not be executed.
|
|
324 |
||
325 |
httpcode: An HTTP response status code. Pass a constant from the
|
|
326 |
Request class.
|
|
327 |
"""
|
|
1080.1.7
by matt.giuca
The new ivle.database.User class is now used in Request and usrmgt, which |
328 |
# Note: location may be a unicode, but it MUST only have ASCII
|
329 |
# characters (non-ascii characters should be URL-encoded).
|
|
330 |
mod_python.util.redirect(self.apache_req, location.encode("ascii")) |
|
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
331 |
|
332 |
def add_cookie(self, cookie, value=None, **attributes): |
|
333 |
"""Inserts a cookie into this request object's headers."""
|
|
334 |
if value is None: |
|
1099.1.5
by William Grant
ivle.dispatch{,.{login,request}}: Fix mod_python imports to ensure that we can |
335 |
mod_python.Cookie.add_cookie(self.apache_req, cookie) |
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
336 |
else: |
1099.1.5
by William Grant
ivle.dispatch{,.{login,request}}: Fix mod_python imports to ensure that we can |
337 |
mod_python.Cookie.add_cookie(self.apache_req, cookie, value, **attributes) |
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
338 |
|
339 |
def get_session(self): |
|
340 |
"""Returns a mod_python Session object for this request.
|
|
341 |
Note that this is dependent on mod_python and may need to change
|
|
342 |
interface if porting away from mod_python."""
|
|
343 |
# Cache the session object and set the timeout to 24 hours.
|
|
344 |
if not hasattr(self, 'session'): |
|
1099.1.5
by William Grant
ivle.dispatch{,.{login,request}}: Fix mod_python imports to ensure that we can |
345 |
self.session = mod_python.Session.FileSession(self.apache_req, |
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
346 |
timeout = 60 * 60 * 24) |
347 |
return self.session |
|
348 |
||
349 |
def get_fieldstorage(self): |
|
350 |
"""Returns a mod_python FieldStorage object for this request.
|
|
351 |
Note that this is dependent on mod_python and may need to change
|
|
352 |
interface if porting away from mod_python."""
|
|
353 |
# Cache the fieldstorage object
|
|
354 |
if not hasattr(self, 'fields'): |
|
1099.1.5
by William Grant
ivle.dispatch{,.{login,request}}: Fix mod_python imports to ensure that we can |
355 |
self.fields = mod_python.util.FieldStorage(self.apache_req) |
1079
by William Grant
Merge setup-refactor branch. This completely breaks existing installations; |
356 |
return self.fields |
357 |
||
358 |
def get_cgi_environ(self): |
|
359 |
"""Returns the CGI environment emulation for this request. (Calls
|
|
360 |
add_common_vars). The environment is returned as a mapping
|
|
361 |
compatible with os.environ."""
|
|
362 |
if not self.got_common_vars: |
|
363 |
self.apache_req.add_common_vars() |
|
364 |
self.got_common_vars = True |
|
365 |
return self.apache_req.subprocess_env |
|
366 |
||
367 |
@staticmethod
|
|
368 |
def get_http_codename(code): |
|
369 |
"""Given a HTTP error code int, returns a (name, description)
|
|
370 |
pair, suitable for displaying to the user.
|
|
371 |
May return (None,None) if code is unknown.
|
|
372 |
Only lists common 4xx and 5xx codes (since this is just used
|
|
373 |
to display throw_error error messages).
|
|
374 |
"""
|
|
375 |
try: |
|
376 |
return http_codenames[code] |
|
377 |
except KeyError: |
|
378 |
return None, None |
|
379 |
||
380 |
# Human strings for HTTP response codes
|
|
381 |
http_codenames = { |
|
382 |
Request.HTTP_BAD_REQUEST: |
|
383 |
("Bad Request", |
|
384 |
"Your browser sent a request IVLE did not understand."), |
|
385 |
Request.HTTP_UNAUTHORIZED: |
|
386 |
("Unauthorized", |
|
387 |
"You are not allowed to view this part of IVLE."), |
|
388 |
Request.HTTP_FORBIDDEN: |
|
389 |
("Forbidden", |
|
390 |
"You are not allowed to view this part of IVLE."), |
|
391 |
Request.HTTP_NOT_FOUND: |
|
392 |
("Not Found", |
|
393 |
"The application or file you requested does not exist."), |
|
394 |
Request.HTTP_METHOD_NOT_ALLOWED: |
|
395 |
("Method Not Allowed", |
|
396 |
"Your browser is interacting with IVLE in the wrong way."
|
|
397 |
"This is probably a bug in IVLE. "
|
|
398 |
"Please report it to the administrators."), |
|
399 |
Request.HTTP_INTERNAL_SERVER_ERROR: |
|
400 |
("Internal Server Error", |
|
401 |
"An unknown error occured in IVLE."), |
|
402 |
Request.HTTP_NOT_IMPLEMENTED: |
|
403 |
("Not Implemented", |
|
404 |
"The application or file you requested has not been implemented "
|
|
405 |
"in IVLE."), |
|
406 |
Request.HTTP_SERVICE_UNAVAILABLE: |
|
407 |
("Service Unavailable", |
|
408 |
"IVLE is currently experiencing technical difficulties. "
|
|
409 |
"Please try again later."), |
|
410 |
}
|