40
from mod_python import apache, Cookie
42
42
from ivle import util
44
from ivle.dispatch.request import Request
45
import ivle.webapp.security
46
from ivle.webapp.base.plugins import ViewPlugin, PublicViewPlugin
47
from ivle.webapp.base.xhtml import XHTMLView, XHTMLErrorView
48
from ivle.webapp.errors import HTTPError, Unauthorized, NotFound
50
def generate_route_mapper(view_plugins, attr):
52
Build a Mapper object for doing URL matching using 'routes', based on the
53
given plugin registry.
55
m = routes.Mapper(explicit=True)
56
for plugin in view_plugins:
57
# Establish a URL pattern for each element of plugin.urls
58
assert hasattr(plugin, 'urls'), "%r does not have any urls" % plugin
59
for url in getattr(plugin, attr):
62
kwargs_dict = url[2] if len(url) >= 3 else {}
63
m.connect(routex, view=view_class, **kwargs_dict)
66
def handler(apachereq):
67
"""Handles an HTTP request.
48
from request import Request
49
import plugins.console # XXX: Relies on www/ being in the Python path.
51
# List of cookies that IVLE uses (to be removed at logout)
52
ivle_cookies = ["ivleforumcookie", "clipboard"]
55
"""Handles a request which may be to anywhere in the site except media.
69
56
Intended to be called by mod_python, as a handler.
71
@param apachereq: An Apache request object.
73
# Make the request object into an IVLE request which can be given to views
74
req = Request(apachereq)
58
req: An Apache request object.
60
# Make the request object into an IVLE request which can be passed to apps
63
req = Request(req, html.write_html_head)
65
# Pass the apachereq to error reporter, since ivle req isn't created
67
handle_unknown_exception(apachereq, *sys.exc_info())
68
# Tell Apache not to generate its own errors as well
71
# Run the main handler, and catch all exceptions
73
return handler_(req, apachereq)
74
except mod_python.apache.SERVER_RETURN:
75
# An apache error. We discourage these, but they might still happen.
79
handle_unknown_exception(req, *sys.exc_info())
80
# Tell Apache not to generate its own errors as well
83
def handler_(req, apachereq):
85
Nested handler function. May raise exceptions. The top-level handler is
86
just used to catch exceptions.
87
Takes both an IVLE request and an Apache req.
76
89
# Hack? Try and get the user login early just in case we throw an error
77
90
# (most likely 404) to stop us seeing not logged in even when we are.
78
91
if not req.publicmode:
79
user = ivle.webapp.security.get_user_details(req)
81
# Don't set the user if it is disabled or hasn't accepted the ToS.
82
if user and user.valid:
85
conf = ivle.config.Config()
92
req.user = login.get_user_details(req)
94
# Check req.app to see if it is valid. 404 if not.
95
if req.app is not None and req.app not in ivle.conf.apps.app_url:
96
# Maybe it is a special app!
97
if req.app == 'logout':
100
req.throw_error(Request.HTTP_NOT_FOUND,
101
"There is no application called %s." % repr(req.app))
103
# Special handling for public mode - only allow the public app, call it
105
# NOTE: This will not behave correctly if the public app uses
106
# write_html_head_foot, but "serve" does not.
88
107
if req.publicmode:
89
req.mapper = generate_route_mapper(conf.plugin_index[PublicViewPlugin],
92
req.mapper = generate_route_mapper(conf.plugin_index[ViewPlugin],
95
matchdict = req.mapper.match(req.uri)
96
if matchdict is not None:
97
viewcls = matchdict['view']
98
# Get the remaining arguments, less 'view', 'action' and 'controller'
99
# (The latter two seem to be built-in, and we don't want them).
100
kwargs = matchdict.copy()
103
# Instantiate the view, which should be a BaseView class
104
view = viewcls(req, **kwargs)
106
# Check that the request (mainly the user) is permitted to access
108
if not view.authorize(req):
113
# A view explicitly raised an HTTP error. Respect it.
116
# Try to find a custom error view.
117
if hasattr(viewcls, 'get_error_view'):
118
errviewcls = viewcls.get_error_view(e)
120
errviewcls = XHTMLView.get_error_view(e)
123
errview = errviewcls(req, e)
131
except mod_python.apache.SERVER_RETURN:
132
# A mod_python-specific Apache error.
133
# XXX: We need to raise these because req.throw_error() uses them.
134
# Remove this after Google Code issue 117 is fixed.
137
# A non-HTTPError appeared. We have an unknown exception. Panic.
138
handle_unknown_exception(req, *sys.exc_info())
144
XHTMLErrorView(req, NotFound()).render(req)
108
if req.app != ivle.conf.apps.public_app:
109
req.throw_error(Request.HTTP_FORBIDDEN,
110
"This application is not available on the public site.")
111
app = ivle.conf.apps.app_url[ivle.conf.apps.public_app]
112
apps.call_app(app.dir, req)
115
# app is the App object for the chosen app
117
app = ivle.conf.apps.app_url[ivle.conf.apps.default_app]
119
app = ivle.conf.apps.app_url[req.app]
121
# Check if app requires auth. If so, perform authentication and login.
122
# This will either return a User object, None, or perform a redirect
123
# which we will not catch here.
125
req.user = login.login(req)
126
logged_in = req.user is not None
128
req.user = login.get_user_details(req)
132
# Keep the user's session alive by writing to the session object.
133
# req.get_session().save()
134
# Well, it's a fine idea, but it creates considerable grief in the
135
# concurrent update department, so instead, we'll just make the
136
# sessions not time out.
137
req.get_session().unlock()
139
# If user did not specify an app, HTTP redirect to default app and
142
req.throw_redirect(util.make_path(ivle.conf.apps.default_app))
144
# Set the default title to the app's tab name, if any. Otherwise URL
146
if app.name is not None:
151
# Call the specified app with the request object
152
apps.call_app(app.dir, req)
154
# if not logged in, login.login will have written the login box.
155
# Just clean up and exit.
157
# MAKE SURE we write the HTTP (and possibly HTML) header. This
158
# wouldn't happen if nothing else ever got written, so we have to make
160
req.ensure_headers_written()
162
# When done, write out the HTML footer if the app has requested it
163
if req.write_html_head_foot:
164
# Show the console if required
165
if logged_in and app.useconsole:
166
plugins.console.present(req, windowpane=True)
167
html.write_html_foot(req)
169
# Note: Apache will not write custom HTML error messages here.
170
# Use req.throw_error to do that.
174
"""Log out the current user (if any) by destroying the session state.
175
Then redirect to the top-level IVLE page."""
176
session = req.get_session()
179
# Invalidates all IVLE cookies
180
all_cookies = Cookie.get_cookies(req)
181
for cookie in all_cookies:
182
if cookie in ivle_cookies:
183
req.add_cookie(Cookie.Cookie(cookie,'',expires=1,path='/'))
184
req.throw_redirect(util.make_path(''))
147
186
def handle_unknown_exception(req, exc_type, exc_value, exc_traceback):
149
188
Given an exception that has just been thrown from IVLE, print its details
190
# A "bad" error message. We shouldn't get here unless IVLE
191
# misbehaves (which is currently very easy, if things aren't set up
193
# Write the traceback.
194
# If this is a non-4xx IVLEError, get the message and httpcode and
195
# make the error message a bit nicer (but still include the
197
# We also need to special-case IVLEJailError, as we can get another
198
# almost-exception out of it.
200
codename, msg = None, None
202
if exc_type is util.IVLEJailError:
203
msg = exc_value.type_str + ": " + exc_value.message
204
tb = 'Exception information extracted from IVLEJailError:\n'
205
tb += urllib.unquote(exc_value.info)
234
logging.debug('Logging Unhandled Exception')
236
# We handle 3 types of error.
237
# IVLEErrors with 4xx response codes (client error).
238
# IVLEErrors with 5xx response codes (handled server error).
239
# Other exceptions (unhandled server error).
240
# IVLEErrors should not have other response codes than 4xx or 5xx
241
# (eg. throw_redirect should have been used for 3xx codes).
242
# Therefore, that is treated as an unhandled error.
244
if (exc_type == util.IVLEError and httpcode >= 400
245
and httpcode <= 499):
246
# IVLEErrors with 4xx response codes are client errors.
247
# Therefore, these have a "nice" response (we even coat it in the IVLE
250
req.write_html_head_foot = True
251
req.write_javascript_settings = False
252
req.write('<div id="ivle_padding">\n')
208
254
codename, msg = req.get_http_codename(httpcode)
209
255
except AttributeError:
212
tb = ''.join(traceback.format_exception(exc_type, exc_value,
215
logging.error('%s\n%s'%(str(msg), tb))
217
# Error messages are only displayed is the user is NOT a student,
218
# or if there has been a problem logging the error message
219
show_errors = (not publicmode) and ((login and req.user.admin) or logfail)
220
req.write("""<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
256
codename, msg = None, None
257
# Override the default message with the supplied one,
259
if exc_value.message is not None:
260
msg = exc_value.message
261
if codename is not None:
262
req.write("<h1>Error: %s</h1>\n" % cgi.escape(codename))
264
req.write("<h1>Error</h1>\n")
266
req.write("<p>%s</p>\n" % cgi.escape(msg))
268
req.write("<p>An unknown error occured.</p>\n")
271
logging.info(str(msg))
273
req.write("<p>(HTTP error code %d)</p>\n" % httpcode)
275
req.write("<p>Warning: Could not open Error Log: '%s'</p>\n"
276
%cgi.escape(logfile))
277
req.write('</div>\n')
278
html.write_html_foot(req)
280
# A "bad" error message. We shouldn't get here unless IVLE
281
# misbehaves (which is currently very easy, if things aren't set up
283
# Write the traceback.
284
# If this is a non-4xx IVLEError, get the message and httpcode and
285
# make the error message a bit nicer (but still include the
287
# We also need to special-case IVLEJailError, as we can get another
288
# almost-exception out of it.
290
codename, msg = None, None
292
if exc_type is util.IVLEJailError:
293
msg = exc_value.type_str + ": " + exc_value.message
294
tb = 'Exception information extracted from IVLEJailError:\n'
295
tb += urllib.unquote(exc_value.info)
298
codename, msg = req.get_http_codename(httpcode)
299
except AttributeError:
301
# Override the default message with the supplied one,
303
if hasattr(exc_value, 'message') and exc_value.message is not None:
304
msg = exc_value.message
305
# Prepend the exception type
306
if exc_type != util.IVLEError:
307
msg = exc_type.__name__ + ": " + msg
309
tb = ''.join(traceback.format_exception(exc_type, exc_value,
313
logging.error('%s\n%s'%(str(msg), tb))
315
req.write("""<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
221
316
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
222
317
<html xmlns="http://www.w3.org/1999/xhtml">
223
318
<head><title>IVLE Internal Server Error</title></head>
225
320
<h1>IVLE Internal Server Error""")
227
if codename is not None and \
228
httpcode != mod_python.apache.HTTP_INTERNAL_SERVER_ERROR:
321
if (codename is not None
322
and httpcode != apache.HTTP_INTERNAL_SERVER_ERROR):
229
323
req.write(": %s" % cgi.escape(codename))
232
325
<p>An error has occured which is the fault of the IVLE developers or
236
req.write("Please report this issue to the server administrators, "
237
"along with the following information.")
239
req.write("Details have been logged for further examination.")
243
328
if msg is not None:
244
329
req.write("<p>%s</p>\n" % cgi.escape(msg))
245
330
if httpcode is not None:
246
331
req.write("<p>(HTTP error code %d)</p>\n" % httpcode)
247
req.write("<h2>Debugging information</h2>")
333
<p>Please report this to <a href="mailto:%s">%s</a> (the system
334
administrator). Include the following information:</p>
335
""" % (cgi.escape(admin_email), cgi.escape(admin_email)))
249
337
req.write("<pre>\n%s\n</pre>\n"%cgi.escape(tb))
250
req.write("</body></html>")
339
req.write("<p>Warning: Could not open Error Log: '%s'</p>\n"
340
%cgi.escape(logfile))
341
req.write("</body></html>")
added
removed
ivle/dispatch/__init__.py
