42
42
from ivle import util
44
45
from ivle.dispatch.request import Request
45
import ivle.webapp.security
46
from ivle.webapp.base.plugins import ViewPlugin, PublicViewPlugin
47
from ivle.webapp.base.xhtml import XHTMLView, XHTMLErrorView
48
from ivle.webapp.errors import HTTPError, Unauthorized, NotFound
50
config = ivle.config.Config()
52
def generate_router(view_plugins, attr):
46
from ivle.dispatch import login
49
import plugins.console # XXX: Relies on www/ being in the Python path.
51
# XXX List of plugins, which will eventually be read in from conf
53
'ivle.webapp.admin.user#Plugin',
54
'ivle.webapp.tutorial#Plugin',
55
'ivle.webapp.admin.subject#Plugin',
56
'ivle.webapp.filesystem.browser#Plugin',
57
'ivle.webapp.filesystem.diff#Plugin',
58
'ivle.webapp.filesystem.svnlog#Plugin',
59
'ivle.webapp.groups#Plugin',
60
'ivle.webapp.console#Plugin',
61
'ivle.webapp.security#Plugin',
62
'ivle.webapp.media#Plugin',
65
def generate_route_mapper(plugins):
54
67
Build a Mapper object for doing URL matching using 'routes', based on the
55
68
given plugin registry.
57
70
m = routes.Mapper(explicit=True)
58
for plugin in view_plugins:
59
72
# Establish a URL pattern for each element of plugin.urls
60
assert hasattr(plugin, 'urls'), "%r does not have any urls" % plugin
61
for url in getattr(plugin, attr):
73
if not hasattr(plugins[name], 'urls'):
75
for url in plugins[name].urls:
63
77
view_class = url[1]
64
78
kwargs_dict = url[2] if len(url) >= 3 else {}
65
79
m.connect(routex, view=view_class, **kwargs_dict)
68
def handler(apachereq):
69
"""Handles an HTTP request.
82
def get_plugin(pluginstr):
83
plugin_path, classname = pluginstr.split('#')
84
# Load the plugin module from somewhere in the Python path
85
# (Note that plugin_path is a fully-qualified Python module name).
87
getattr(__import__(plugin_path, fromlist=[classname]), classname))
90
"""Handles a request which may be to anywhere in the site except media.
71
91
Intended to be called by mod_python, as a handler.
73
@param apachereq: An Apache request object.
75
# Make the request object into an IVLE request which can be given to views
76
req = Request(apachereq, config)
93
req: An Apache request object.
95
# Make the request object into an IVLE request which can be passed to apps
98
req = Request(req, html.write_html_head)
100
# Pass the apachereq to error reporter, since ivle req isn't created
102
handle_unknown_exception(apachereq, *sys.exc_info())
103
# Tell Apache not to generate its own errors as well
104
return mod_python.apache.OK
106
# Run the main handler, and catch all exceptions
108
return handler_(req, apachereq)
109
except mod_python.apache.SERVER_RETURN:
110
# An apache error. We discourage these, but they might still happen.
114
handle_unknown_exception(req, *sys.exc_info())
115
# Tell Apache not to generate its own errors as well
116
return mod_python.apache.OK
118
def handler_(req, apachereq):
120
Nested handler function. May raise exceptions. The top-level handler is
121
just used to catch exceptions.
122
Takes both an IVLE request and an Apache req.
78
124
# Hack? Try and get the user login early just in case we throw an error
79
125
# (most likely 404) to stop us seeing not logged in even when we are.
80
126
if not req.publicmode:
81
user = ivle.webapp.security.get_user_details(req)
83
# Don't set the user if it is disabled or hasn't accepted the ToS.
84
if user and user.valid:
88
req.mapper = generate_router(config.plugin_index[PublicViewPlugin],
91
req.mapper = generate_router(config.plugin_index[ViewPlugin], 'urls')
127
req.user = login.get_user_details(req)
129
### BEGIN New plugins framework ###
130
# XXX This should be done ONCE per Python process, not per request.
132
# XXX No authentication is done here
133
req.plugins = dict([get_plugin(pluginstr) for pluginstr in plugins_HACK])
134
req.reverse_plugins = dict([(v, k) for (k, v) in req.plugins.items()])
135
req.mapper = generate_route_mapper(req.plugins)
93
137
matchdict = req.mapper.match(req.uri)
94
138
if matchdict is not None:
97
141
# (The latter two seem to be built-in, and we don't want them).
98
142
kwargs = matchdict.copy()
99
143
del kwargs['view']
101
# Instantiate the view, which should be a BaseView class
102
view = viewcls(req, **kwargs)
104
# Check that the request (mainly the user) is permitted to access
106
if not view.authorize(req):
111
# A view explicitly raised an HTTP error. Respect it.
114
# Try to find a custom error view.
115
if hasattr(viewcls, 'get_error_view'):
116
errviewcls = viewcls.get_error_view(e)
118
errviewcls = XHTMLView.get_error_view(e)
121
errview = errviewcls(req, e)
129
except mod_python.apache.SERVER_RETURN:
130
# A mod_python-specific Apache error.
131
# XXX: We need to raise these because req.throw_error() uses them.
132
# Remove this after Google Code issue 117 is fixed.
135
# A non-HTTPError appeared. We have an unknown exception. Panic.
136
handle_unknown_exception(req, *sys.exc_info())
144
# Instantiate the view, which should be a BaseView class
145
view = viewcls(req, **kwargs)
150
### END New plugins framework ###
152
# Check req.app to see if it is valid. 404 if not.
153
if req.app is not None and req.app not in ivle.conf.apps.app_url:
154
req.throw_error(Request.HTTP_NOT_FOUND,
155
"There is no application called %s." % repr(req.app))
157
# Special handling for public mode - only allow the public app, call it
159
# NOTE: This will not behave correctly if the public app uses
160
# write_html_head_foot, but "serve" does not.
162
if req.app != ivle.conf.apps.public_app:
163
req.throw_error(Request.HTTP_FORBIDDEN,
164
"This application is not available on the public site.")
165
app = ivle.conf.apps.app_url[ivle.conf.apps.public_app]
166
apps.call_app(app.dir, req)
169
# app is the App object for the chosen app
171
app = ivle.conf.apps.app_url[ivle.conf.apps.default_app]
173
app = ivle.conf.apps.app_url[req.app]
175
# Check if app requires auth. If so, perform authentication and login.
176
# This will either return a User object, None, or perform a redirect
177
# which we will not catch here.
179
req.user = login.login(req)
180
logged_in = req.user is not None
182
req.user = login.get_user_details(req)
186
# Keep the user's session alive by writing to the session object.
187
# req.get_session().save()
188
# Well, it's a fine idea, but it creates considerable grief in the
189
# concurrent update department, so instead, we'll just make the
190
# sessions not time out.
191
req.get_session().unlock()
193
# If user did not specify an app, HTTP redirect to default app and
196
req.throw_redirect(util.make_path(ivle.conf.apps.default_app))
198
# Set the default title to the app's tab name, if any. Otherwise URL
200
if app.name is not None:
143
XHTMLErrorView(req, NotFound()).render(req)
205
# Call the specified app with the request object
206
apps.call_app(app.dir, req)
208
# if not logged in, login.login will have written the login box.
209
# Just clean up and exit.
211
# MAKE SURE we write the HTTP (and possibly HTML) header. This
212
# wouldn't happen if nothing else ever got written, so we have to make
214
req.ensure_headers_written()
216
# When done, write out the HTML footer if the app has requested it
217
if req.write_html_head_foot:
218
# Show the console if required
219
if logged_in and app.useconsole:
220
plugins.console.present(req, windowpane=True)
221
html.write_html_foot(req)
223
# Note: Apache will not write custom HTML error messages here.
224
# Use req.throw_error to do that.
146
227
def handle_unknown_exception(req, exc_type, exc_value, exc_traceback):
150
231
This is a full handler. It assumes nothing has been written, and writes a
151
232
complete HTML page.
152
233
req: May be EITHER an IVLE req or an Apache req.
153
The handler code may pass an apache req if an exception occurs before
234
IVLE reqs may have the HTML head/foot written (on a 400 error), but
235
the handler code may pass an apache req if an exception occurs before
154
236
the IVLE request is created.
156
238
req.content_type = "text/html"
157
logfile = os.path.join(config['paths']['logs'], 'ivle_error.log')
239
logfile = os.path.join(ivle.conf.log_path, 'ivle_error.log')
160
# XXX: This remains here for ivle.interpret's IVLEErrors. Once we rewrite
161
# fileservice, req.status should always be 500 (ISE) here.
241
# For some reason, some versions of mod_python have "_server" instead of
242
# "main_server". So we check for both.
244
admin_email = mod_python.apache.main_server.server_admin
245
except AttributeError:
247
admin_email = mod_python.apache._server.server_admin
248
except AttributeError:
163
251
httpcode = exc_value.httpcode
164
252
req.status = httpcode
165
253
except AttributeError:
167
255
req.status = mod_python.apache.HTTP_INTERNAL_SERVER_ERROR
170
257
publicmode = req.publicmode
171
258
except AttributeError:
193
# A "bad" error message. We shouldn't get here unless IVLE
194
# misbehaves (which is currently very easy, if things aren't set up
196
# Write the traceback.
198
# We need to special-case IVLEJailError, as we can get another
199
# almost-exception out of it.
200
if exc_type is util.IVLEJailError:
201
tb = 'Exception information extracted from IVLEJailError:\n'
202
tb += urllib.unquote(exc_value.info)
283
logging.debug('Logging Unhandled Exception')
285
# We handle 3 types of error.
286
# IVLEErrors with 4xx response codes (client error).
287
# IVLEErrors with 5xx response codes (handled server error).
288
# Other exceptions (unhandled server error).
289
# IVLEErrors should not have other response codes than 4xx or 5xx
290
# (eg. throw_redirect should have been used for 3xx codes).
291
# Therefore, that is treated as an unhandled error.
293
if (exc_type == util.IVLEError and httpcode >= 400
294
and httpcode <= 499):
295
# IVLEErrors with 4xx response codes are client errors.
296
# Therefore, these have a "nice" response (we even coat it in the IVLE
299
req.write_html_head_foot = True
300
req.write_javascript_settings = False
301
req.write('<div id="ivle_padding">\n')
303
codename, msg = req.get_http_codename(httpcode)
304
except AttributeError:
305
codename, msg = None, None
306
# Override the default message with the supplied one,
308
if exc_value.message is not None:
309
msg = exc_value.message
310
if codename is not None:
311
req.write("<h1>Error: %s</h1>\n" % cgi.escape(codename))
313
req.write("<h1>Error</h1>\n")
315
req.write("<p>%s</p>\n" % cgi.escape(msg))
317
req.write("<p>An unknown error occured.</p>\n")
320
logging.info(str(msg))
322
req.write("<p>(HTTP error code %d)</p>\n" % httpcode)
324
req.write("<p>Warning: Could not open Error Log: '%s'</p>\n"
325
%cgi.escape(logfile))
326
req.write('</div>\n')
327
html.write_html_foot(req)
204
tb = ''.join(traceback.format_exception(exc_type, exc_value,
207
logging.error('\n' + tb)
209
# Error messages are only displayed is the user is NOT a student,
210
# or if there has been a problem logging the error message
211
show_errors = (not publicmode) and ((login and req.user.admin) or logfail)
212
req.write("""<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
329
# A "bad" error message. We shouldn't get here unless IVLE
330
# misbehaves (which is currently very easy, if things aren't set up
332
# Write the traceback.
333
# If this is a non-4xx IVLEError, get the message and httpcode and
334
# make the error message a bit nicer (but still include the
336
# We also need to special-case IVLEJailError, as we can get another
337
# almost-exception out of it.
339
codename, msg = None, None
341
if exc_type is util.IVLEJailError:
342
msg = exc_value.type_str + ": " + exc_value.message
343
tb = 'Exception information extracted from IVLEJailError:\n'
344
tb += urllib.unquote(exc_value.info)
347
codename, msg = req.get_http_codename(httpcode)
348
except AttributeError:
350
# Override the default message with the supplied one,
352
if hasattr(exc_value, 'message') and exc_value.message is not None:
353
msg = exc_value.message
354
# Prepend the exception type
355
if exc_type != util.IVLEError:
356
msg = exc_type.__name__ + ": " + msg
358
tb = ''.join(traceback.format_exception(exc_type, exc_value,
362
logging.error('%s\n%s'%(str(msg), tb))
363
# Error messages are only displayed is the user is NOT a student,
364
# or if there has been a problem logging the error message
365
show_errors = (not publicmode) and ((login and \
366
str(role) != "student") or logfail)
367
req.write("""<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
213
368
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
214
369
<html xmlns="http://www.w3.org/1999/xhtml">
215
370
<head><title>IVLE Internal Server Error</title></head>
217
<h1>IVLE Internal Server Error</h1>
372
<h1>IVLE Internal Server Error""")
374
if (codename is not None
375
and httpcode != mod_python.apache.HTTP_INTERNAL_SERVER_ERROR):
376
req.write(": %s" % cgi.escape(codename))
218
379
<p>An error has occured which is the fault of the IVLE developers or
222
req.write("Please report this issue to the server administrators, "
223
"along with the following information.")
225
req.write("Details have been logged for further examination.")
229
req.write("<h2>Debugging information</h2>")
230
req.write("<pre>\n%s\n</pre>\n"%cgi.escape(tb))
231
req.write("</body></html>")
380
administration. The developers have been notified.</p>
384
req.write("<p>%s</p>\n" % cgi.escape(msg))
385
if httpcode is not None:
386
req.write("<p>(HTTP error code %d)</p>\n" % httpcode)
388
<p>Please report this to <a href="mailto:%s">%s</a> (the system
389
administrator). Include the following information:</p>
390
""" % (cgi.escape(admin_email), cgi.escape(admin_email)))
392
req.write("<pre>\n%s\n</pre>\n"%cgi.escape(tb))
394
req.write("<p>Warning: Could not open Error Log: '%s'</p>\n"
395
%cgi.escape(logfile))
396
req.write("</body></html>")
added
removed
ivle/dispatch/__init__.py
