~azzar1/unity/add-show-desktop-key

« back to all changes in this revision

Viewing changes to ivle/interpret.py

Committer: William Grant
Date: 2009-02-17 11:42:31 UTC
mfrom: (1099.1.149 new-dispatch)
mto: (1092.1.63 setup-stuff) (1099.1.151 new-dispatch)
mto: This revision was merged to the branch mainline in revision 1100.
Revision ID: grantw@unimelb.edu.au-20090217114231-empcnob0xheln34c

Merge from new-dispatch.

files removed:
services/interpretservice

www/apps/download

www/apps/download/__init__.py

files renamed:
www/apps/server/ => ivle/webapp/filesystem/serve/

www/apps/userservice/ => ivle/webapp/userservice/

files modified:
bin/ivle-addexercise

bin/ivle-makeuser

ivle/conf/apps.py

ivle/database.py

ivle/dispatch/__init__.py

ivle/dispatch/html.py

ivle/interpret.py

ivle/rpc/decorators.py

ivle/studpath.py

ivle/webapp/base/plugins.py

ivle/webapp/base/xhtml.py

ivle/webapp/filesystem/serve/__init__.py

ivle/webapp/security/views.py

ivle/webapp/tos/__init__.py

ivle/webapp/tutorial/__init__.py

ivle/webapp/tutorial/exercise.html

ivle/webapp/tutorial/media/tutorial.js

ivle/webapp/tutorial/service.py

ivle/webapp/tutorial/test/TestFramework.py

ivle/webapp/tutorial/test/parse_exercise.py

ivle/webapp/tutorial/worksheet.html

ivle/webapp/userservice/__init__.py

ivle/zip.py

services/serveservice

setup/util.py

userdb/migrations/20090212-01.sql

userdb/users.sql

Show diffs side-by-side

added added

removed removed

ivle/interpret.py

134

del os.environ[k]

135

for (k,v) in req.get_cgi_environ().items():

136

os.environ[k] = v

137

fixup_environ(req)

137

fixup_environ(req, script_path)

138

139

# usage: tramp uid jail_dir working_dir script_path

140

pid = subprocess.Popen(

359

# python-server-page

360

}

361

362

def fixup_environ(req):

362

def fixup_environ(req, script_path):

363

"""Assuming os.environ has been written with the CGI variables from

364

apache, make a few changes for security and correctness.

365

385

del env['PATH']

386

except: pass

387

388

# Remove SCRIPT_FILENAME. Not part of CGI spec (see SCRIPT_NAME).

389

390

# PATH_INFO is wrong because the script doesn't physically exist.

391

# Apache makes it relative to the "serve" app. It should actually be made

392

# relative to the student's script. intepretservice does that in the jail,

393

# so here we just clear it.

394

env['PATH_INFO'] = ''

395

env['PATH_TRANSLATED'] = ''

396

397

388

# CGI specifies that REMOTE_HOST SHOULD be set, and MAY just be set to

398

389

# REMOTE_ADDR. Since Apache does not appear to set this, set it to

399

390

# REMOTE_ADDR.

400

391

if 'REMOTE_HOST' not in env and 'REMOTE_ADDR' in env:

401

392

env['REMOTE_HOST'] = env['REMOTE_ADDR']

402

393

394

env['PATH_INFO'] = ''

395

del env['PATH_TRANSLATED']

396

397

normuri = os.path.normpath(req.uri)

398

env['SCRIPT_NAME'] = normuri

399

403

400

# SCRIPT_NAME is the path to the script WITHOUT PATH_INFO.

404

script_name = req.uri

405

env['SCRIPT_NAME'] = script_name

401

# We don't care about these if the script is null (ie. noop).

402

# XXX: We check for /home because we don't want to interfere with

403

# CGIRequest, which fileservice still uses.

404

if script_path and script_path.startswith('/home'):

405

normscript = os.path.normpath(script_path)

406

407

uri_into_jail = studpath.url_to_jailpaths(os.path.normpath(req.path))[2]

408

409

# PATH_INFO is wrong because the script doesn't physically exist.

410

env['PATH_INFO'] = uri_into_jail[len(normscript):]

411

if len(env['PATH_INFO']) > 0:

412

env['SCRIPT_NAME'] = normuri[:-len(env['PATH_INFO'])]

406

413

407

414

# SERVER_SOFTWARE is actually not Apache but IVLE, since we are

408

415

# custom-making the CGI request.

Older »