~azzar1/unity/add-show-desktop-key

Viewing changes to ivle/dispatch/__init__.py

Committer: William Grant
Date: 2009-03-17 04:48:07 UTC
mfrom: (1099.1.243 exercise-ui)
Revision ID: grantw@unimelb.edu.au-20090317044807-pozdt54fapazp2sp

Merge lp:~ivle-dev/ivle/exercise-ui.

Lecturers can now add and edit exercises, and worksheets can be written
in RST directly inside IVLE.

files added:
doc/dependencies.txt

doc/notes

doc/notes/Makefile

doc/notes/README

doc/notes/apps

doc/notes/apps/Makefile

doc/notes/apps/browser.txt

doc/notes/apps/dispatch.txt

doc/notes/architecture.txt

doc/notes/execution.txt

doc/notes/imports.txt

doc/notes/misc.txt

doc/notes/session.txt

doc/notes/subversion.txt

doc/notes/timeline.txt

doc/setup

doc/setup/faq.txt

doc/setup/forum.txt

doc/setup/install_proc.txt

doc/setup/ivle-both.conf

doc/setup/ivle-svn.conf

doc/setup/ivle.conf

doc/setup/pound.cfg

doc/setup/usrmgt-server.init

doc/template.py

doc/tutorial

doc/tutorial/TestSuite_output.txt

doc/upgrade.txt

ivle/webapp/admin/enrol.html

ivle/webapp/admin/subject.html

ivle/webapp/admin/subjects.html

ivle/webapp/admin/user-media

ivle/webapp/admin/user-media/settings.js

ivle/webapp/admin/user-settings-help.html

ivle/webapp/admin/user-settings.html

ivle/webapp/groups/help.html

ivle/webapp/tutorial/templates/subjectmenu.html

userdb/users.png

userdb/users.vpp

website

website/Makefile

website/images

website/images/console.png

website/images/console_small.png

website/images/file_browser.png

website/images/file_browser_small.png

website/images/ivle_banner.png

website/images/text_editor.png

website/images/text_editor_small.png

website/images/tutorial.png

website/images/tutorial_small.png

website/index.html

files removed:
bin/ivle-dev-setup

bin/ivle-fetchsubmissions

bin/ivle-loadsampledata

bin/ivle-refreshfilesystem

doc/Makefile

doc/conf.py

doc/dev

doc/dev/architecture.rst

doc/dev/coding.rst

doc/dev/docs.rst

doc/dev/faq.rst

doc/dev/index.rst

doc/dev/releases.rst

doc/images

doc/images/ivle-system-diagram.png

doc/index.rst

doc/man

doc/man/architecture.rst

doc/man/config.rst

doc/man/directory.rst

doc/man/faq.rst

doc/man/index.rst

doc/man/install.rst

doc/man/roles.rst

doc/man/sample.rst

doc/man/scripts.rst

doc/man/tour.rst

doc/static

doc/templates

examples

examples/config

examples/config/apache-ssl.conf

examples/config/apache-svn.conf

examples/config/apache.conf

examples/config/usrmgt-server.init

examples/db

examples/db/sample.sql

examples/userrepos

examples/userrepos/group1.dump

examples/userrepos/studenta.dump

image-source/breadcrumb-chevron.svg

image-source/drop-down.svg

image-source/ivle-system-diagram.svg

image-source/root-breadcrumb.svg

ivle/tests

ivle/tests/__init__.py

ivle/tests/test_chat.py

ivle/webapp/admin/breadcrumbs.py

ivle/webapp/admin/offeringservice.py

ivle/webapp/admin/projectservice.py

ivle/webapp/admin/publishing.py

ivle/webapp/admin/subject-media/project.css

ivle/webapp/admin/subject-media/project.js

ivle/webapp/admin/templates

ivle/webapp/admin/templates/enrol.html

ivle/webapp/admin/templates/enrolment-delete.html

ivle/webapp/admin/templates/enrolment-edit.html

ivle/webapp/admin/templates/enrolments.html

ivle/webapp/admin/templates/offering-clone-worksheets.html

ivle/webapp/admin/templates/offering-edit.html

ivle/webapp/admin/templates/offering-form.html

ivle/webapp/admin/templates/offering-new.html

ivle/webapp/admin/templates/offering.html

ivle/webapp/admin/templates/offering_projects.html

ivle/webapp/admin/templates/project.html

ivle/webapp/admin/templates/project_fragment.html

ivle/webapp/admin/templates/projectset_fragment.html

ivle/webapp/admin/templates/semester-edit.html

ivle/webapp/admin/templates/semester-form.html

ivle/webapp/admin/templates/semester-new.html

ivle/webapp/admin/templates/subject-edit.html

ivle/webapp/admin/templates/subject-form.html

ivle/webapp/admin/templates/subject-new.html

ivle/webapp/admin/templates/subject.html

ivle/webapp/admin/templates/subjects-manage.html

ivle/webapp/admin/templates/subjects.html

ivle/webapp/admin/templates/user-admin.html

ivle/webapp/admin/templates/user-edit.html

ivle/webapp/admin/templates/user-password-change.html

ivle/webapp/admin/templates/user-password-reset.html

ivle/webapp/admin/templates/users.html

ivle/webapp/admin/user-media

ivle/webapp/admin/user-media/users.png

ivle/webapp/base/forms.py

ivle/webapp/breadcrumbs.py

ivle/webapp/coremedia/images/chrome/breadcrumb-chevron.png

ivle/webapp/coremedia/images/chrome/drop-down.png

ivle/webapp/coremedia/images/chrome/root-breadcrumb.png

ivle/webapp/coremedia/images/interface/README

ivle/webapp/coremedia/images/interface/add.png

ivle/webapp/coremedia/images/interface/cross.png

ivle/webapp/coremedia/images/interface/delete.png

ivle/webapp/coremedia/images/interface/group.png

ivle/webapp/coremedia/images/interface/help.png

ivle/webapp/coremedia/images/interface/key.png

ivle/webapp/coremedia/images/interface/magnifier.png

ivle/webapp/coremedia/images/interface/pencil.png

ivle/webapp/coremedia/images/interface/world.png

ivle/webapp/coremedia/images/interface/wrench.png

ivle/webapp/coremedia/images/svn/replaced.png

ivle/webapp/coremedia/images/svn/unversioned.png

ivle/webapp/filesystem/browser/help-run-serve.html

ivle/webapp/filesystem/browser/help-svn.html

ivle/webapp/filesystem/svnlog/media/log.js

ivle/webapp/groups/media/cross.png

ivle/webapp/publisher

ivle/webapp/publisher/__init__.py

ivle/webapp/publisher/decorators.py

ivle/webapp/publisher/test_publisher.py

ivle/webapp/submit

ivle/webapp/submit/__init__.py

ivle/webapp/submit/help.html

ivle/webapp/submit/submit.html

ivle/webapp/submit/submitted.html

ivle/webapp/tutorial/breadcrumbs.py

ivle/webapp/tutorial/media.py

ivle/webapp/tutorial/media/worksheet.css

ivle/webapp/tutorial/publishing.py

ivle/webapp/tutorial/templates/exercise.html

ivle/webapp/tutorial/templates/exercise_deleted.html

ivle/webapp/tutorial/templates/exercise_undeletable.html

ivle/webapp/tutorial/templates/worksheet_form.html

setup.cfg

userdb/migrations/20090406-01.sql

userdb/migrations/20090814-01.sql

userdb/migrations/20091217-01.sql

userdb/migrations/20100216-01.sql

files renamed:
bin/ivle-adduser => bin/ivle-makeuser

ivle/mimetypes.py => ivle/conf/mimetypes.py

ivle/webapp/tutorial/templates/exercise_fragment.html => ivle/webapp/tutorial/templates/exercise.html

files modified:
.bzrignore

bin/ivle-addexercise

bin/ivle-buildjail

bin/ivle-cloneworksheets

bin/ivle-config

bin/ivle-createdatadirs

bin/ivle-enrol

bin/ivle-enrolallusers

bin/ivle-listusers

bin/ivle-marks

bin/ivle-mountallusers

bin/ivle-remakeuser

bin/ivle-showenrolment

bin/trampoline/trampoline.c

ivle/__init__.py

ivle/auth/authenticate.py

ivle/cgirequest.py

ivle/chat.py

ivle/conf/__init__.py

ivle/conf/app/server.py

ivle/conf/conf.py

ivle/config/__init__.py

ivle/config/ivle-spec.conf

ivle/console.py

ivle/database.py

ivle/date.py

ivle/dispatch/__init__.py

ivle/dispatch/request.py

ivle/fileservice_lib/__init__.py

ivle/fileservice_lib/action.py

ivle/fileservice_lib/listing.py

ivle/interpret.py

ivle/makeuser.py

ivle/pulldown_subj/__init__.py

ivle/pulldown_subj/dummy_subj.py

ivle/rpc/decorators.py

ivle/studpath.py

ivle/svn.py

ivle/util.py

ivle/webapp/__init__.py

ivle/webapp/admin/subject.py

ivle/webapp/admin/user.py

ivle/webapp/base/ivle-headings.html

ivle/webapp/base/plugins.py

ivle/webapp/base/rest.py

ivle/webapp/base/test/test_rest.py

ivle/webapp/base/views.py

ivle/webapp/base/xhtml.py

ivle/webapp/base/xhtmlunauthorized.html

ivle/webapp/console/__init__.py

ivle/webapp/console/help.html

ivle/webapp/console/media/console.css

ivle/webapp/console/media/console.js

ivle/webapp/console/overlay.html

ivle/webapp/console/overlay.py

ivle/webapp/console/service.py

ivle/webapp/coremedia/images/README

ivle/webapp/coremedia/images/svn/added.png

ivle/webapp/coremedia/images/svn/conflicted.png

ivle/webapp/coremedia/images/svn/deleted.png

ivle/webapp/coremedia/images/svn/missing.png

ivle/webapp/coremedia/images/svn/modified.png

ivle/webapp/coremedia/images/svn/normal.png

ivle/webapp/coremedia/images/svn/revision.png

ivle/webapp/coremedia/ivle.css

ivle/webapp/coremedia/util.js

ivle/webapp/errors.py

ivle/webapp/fileservice/__init__.py

ivle/webapp/filesystem/__init__.py

ivle/webapp/filesystem/browser/__init__.py

ivle/webapp/filesystem/browser/help.html

ivle/webapp/filesystem/browser/media/browser.css

ivle/webapp/filesystem/browser/media/browser.js

ivle/webapp/filesystem/browser/media/codepress/engines/gecko.js

ivle/webapp/filesystem/browser/media/editor.js

ivle/webapp/filesystem/browser/media/listing.css

ivle/webapp/filesystem/browser/media/listing.js

ivle/webapp/filesystem/browser/media/specialhome.js

ivle/webapp/filesystem/browser/template.html

ivle/webapp/filesystem/diff/__init__.py

ivle/webapp/filesystem/diff/template.html

ivle/webapp/filesystem/serve/__init__.py

ivle/webapp/filesystem/svnlog/__init__.py

ivle/webapp/filesystem/svnlog/media/log.css

ivle/webapp/filesystem/svnlog/template.html

ivle/webapp/forum/__init__.py

ivle/webapp/groups/__init__.py

ivle/webapp/groups/media/groups.js

ivle/webapp/groups/template.html

ivle/webapp/help/__init__.py

ivle/webapp/help/toc.html

ivle/webapp/media.py

ivle/webapp/security/__init__.py

ivle/webapp/security/login.html

ivle/webapp/security/logout.html

ivle/webapp/security/views.py

ivle/webapp/testing/__init__.py

ivle/webapp/tos/__init__.py

ivle/webapp/tos/media/tos.js

ivle/webapp/tutorial/__init__.py

ivle/webapp/tutorial/exercise_service.py

ivle/webapp/tutorial/media/exercise_admin.css

ivle/webapp/tutorial/media/exercise_admin.js

ivle/webapp/tutorial/media/images/pencil.png

ivle/webapp/tutorial/media/tutorial.css

ivle/webapp/tutorial/media/tutorial.js

ivle/webapp/tutorial/media/tutorial_admin.js

ivle/webapp/tutorial/service.py

ivle/webapp/tutorial/templates/exercise_add.html

ivle/webapp/tutorial/templates/exercise_delete.html

ivle/webapp/tutorial/templates/exercise_edit.html

ivle/webapp/tutorial/templates/exercises.html

ivle/webapp/tutorial/templates/worksheet.html

ivle/webapp/tutorial/templates/worksheet_add.html

ivle/webapp/tutorial/templates/worksheet_edit.html

ivle/webapp/tutorial/templates/worksheets_edit.html

ivle/webapp/tutorial/test/TestFramework.py

ivle/webapp/tutorial/test/__init__.py

ivle/webapp/userservice/__init__.py

ivle/worksheet/definitions.txt

ivle/worksheet/rst.py

ivle/worksheet/utils.py

services/diffservice

services/python-console

services/serveservice

services/svnlogservice

services/usrmgt-server

setup/install.py

setup/util.py

userdb/users.sql

Show diffs side-by-side

added added

removed removed

ivle/dispatch/__init__.py

import os

import os.path

import urllib

import urlparse

import cgi

import traceback

import logging

import time

import mod_python

import routes

from ivle import util

import ivle.config

import ivle.conf

from ivle.dispatch.request import Request

import ivle.webapp.security

from ivle.webapp.base.plugins import ViewPlugin, PublicViewPlugin

from ivle.webapp.base.xhtml import XHTMLView, XHTMLErrorView

from ivle.webapp.errors import BadRequest, HTTPError, NotFound, Unauthorized

from ivle.webapp.publisher import Publisher, PublishingError

from ivle.webapp import ApplicationRoot

config = ivle.config.Config()

class ObjectPermissionCheckingPublisher(Publisher):

"""A specialised publisher that checks object permissions.

This publisher verifies that the user holds any permission at all

on the model objects through which the resolution path passes. If

no permission is held, resolution is aborted with an Unauthorized

exception.

IMPORTANT: This does NOT check view permissions. It only checks

the objects in between the root and the view, exclusive!

"""

def traversed_to_object(self, obj):

"""Check that the user has any permission at all over the object."""

if (hasattr(obj, 'get_permissions') and

len(obj.get_permissions(self.root.user, config)) == 0):

# Indicate the forbidden object if this is an admin.

if self.root.user and self.root.user.admin:

raise Unauthorized('Unauthorized: %s' % obj)

else:

raise Unauthorized()

def generate_publisher(view_plugins, root, publicmode=False):

from ivle.webapp.errors import HTTPError, Unauthorized, NotFound

def generate_route_mapper(view_plugins, attr):

"""

Build a Mapper object for doing URL matching using 'routes', based on the

given plugin registry.

"""

r = ObjectPermissionCheckingPublisher(root=root)

r.add_set_switch('api', 'api')

if publicmode:

view_attr = 'public_views'

forward_route_attr = 'public_forward_routes'

reverse_route_attr = 'public_reverse_routes'

else:

view_attr = 'views'

forward_route_attr = 'forward_routes'

reverse_route_attr = 'reverse_routes'

m = routes.Mapper(explicit=True)

for plugin in view_plugins:

if hasattr(plugin, forward_route_attr):

for fr in getattr(plugin, forward_route_attr):

# An annotated function can also be passed in directly.

100

if hasattr(fr, '_forward_route_meta'):

101

r.add_forward_func(fr)

102

else:

103

r.add_forward(*fr)

104

105

if hasattr(plugin, reverse_route_attr):

106

for rr in getattr(plugin, reverse_route_attr):

107

# An annotated function can also be passed in directly.

108

if hasattr(rr, '_reverse_route_src'):

109

r.add_reverse_func(rr)

110

else:

111

r.add_reverse(*rr)

112

113

if hasattr(plugin, view_attr):

114

for v in getattr(plugin, view_attr):

115

r.add_view(*v)

116

117

return r

# Establish a URL pattern for each element of plugin.urls

assert hasattr(plugin, 'urls'), "%r does not have any urls" % plugin

for url in getattr(plugin, attr):

routex = url[0]

view_class = url[1]

kwargs_dict = url[2] if len(url) >= 3 else {}

m.connect(routex, view=view_class, **kwargs_dict)

return m

118

119

def handler(apachereq):

120

"""Handles an HTTP request.

124

@param apachereq: An Apache request object.

125

"""

126

# Make the request object into an IVLE request which can be given to views

127

req = Request(apachereq, config)

req = Request(apachereq)

128

129

# Hack? Try and get the user login early just in case we throw an error

130

# (most likely 404) to stop us seeing not logged in even when we are.

135

if user and user.valid:

136

req.user = user

137

138

req.publisher = generate_publisher(

139

config.plugin_index[ViewPlugin],

140

ApplicationRoot(req.config, req.store, req.user),

141

publicmode=req.publicmode)

142

143

try:

144

obj, viewcls, subpath = req.publisher.resolve(req.uri.decode('utf-8'))

conf = ivle.config.Config()

req.config = conf

if req.publicmode:

req.mapper = generate_route_mapper(conf.plugin_index[PublicViewPlugin],

'public_urls')

else:

req.mapper = generate_route_mapper(conf.plugin_index[ViewPlugin],

'urls')

matchdict = req.mapper.match(req.uri)

if matchdict is not None:

viewcls = matchdict['view']

# Get the remaining arguments, less 'view', 'action' and 'controller'

# (The latter two seem to be built-in, and we don't want them).

100

kwargs = matchdict.copy()

101

del kwargs['view']

145

102

try:

146

# We 404 if we have a subpath but the view forbids it.

147

if not viewcls.subpath_allowed and subpath:

148

raise NotFound()

149

150

103

# Instantiate the view, which should be a BaseView class

151

view = viewcls(req, obj, subpath)

104

view = viewcls(req, **kwargs)

152

105

153

106

# Check that the request (mainly the user) is permitted to access

154

107

# the view.

155

108

if not view.authorize(req):

156

# Indicate the forbidden object if this is an admin.

157

if req.user and req.user.admin:

158

raise Unauthorized('Unauthorized: %s' % view)

159

else:

160

raise Unauthorized()

161

162

# Non-GET requests from other sites leave us vulnerable to

163

# CSRFs. Block them.

164

referer = req.headers_in.get('Referer')

165

if (referer is None or

166

urlparse.urlparse(req.headers_in.get('Referer')).netloc !=

167

req.hostname):

168

if req.method != 'GET' and not view.offsite_posts_allowed:

169

raise BadRequest(

170

"Non-GET requests from external sites are forbidden "

171

"for security reasons.")

172

109

raise Unauthorized()

173

110

# Render the output

174

111

view.render(req)

175

112

except HTTPError, e:

183

120

errviewcls = XHTMLView.get_error_view(e)

184

121

185

122

if errviewcls:

186

errview = errviewcls(req, e, obj)

123

errview = errviewcls(req, e)

187

124

errview.render(req)

188

125

return req.OK

189

126

elif e.message:

203

140

else:

204

141

req.store.commit()

205

142

return req.OK

206

except Unauthorized, e:

207

# Resolution failed due to a permission check. Display a pretty

208

# error, or maybe a login page.

209

XHTMLView.get_error_view(e)(req, e, req.publisher.root).render(req)

210

return req.OK

211

except PublishingError, e:

212

req.status = 404

213

214

if req.user and req.user.admin:

215

XHTMLErrorView(req, NotFound('Not found: ' +

216

str(e.args)), e[0]).render(req)

217

else:

218

XHTMLErrorView(req, NotFound(), e[0]).render(req)

219

220

return req.OK

221

finally:

222

req.store.close()

143

else:

144

XHTMLErrorView(req, NotFound()).render(req)

145

return req.OK

223

146

224

147

def handle_unknown_exception(req, exc_type, exc_value, exc_traceback):

225

148

"""

232

155

the IVLE request is created.

233

156

"""

234

157

req.content_type = "text/html"

235

logfile = os.path.join(config['paths']['logs'], 'ivle_error.log')

158

logfile = os.path.join(ivle.conf.log_path, 'ivle_error.log')

236

159

logfail = False

237

238

# XXX: This remains here for ivle.interpret's IVLEErrors. Once we rewrite

239

# fileservice, req.status should always be 500 (ISE) here.

240

160

try:

241

161

httpcode = exc_value.httpcode

242

162

req.status = httpcode

243

163

except AttributeError:

244

164

httpcode = None

245

165

req.status = mod_python.apache.HTTP_INTERNAL_SERVER_ERROR

246

247

166

try:

248

167

publicmode = req.publicmode

249

168

except AttributeError:

272

191

# misbehaves (which is currently very easy, if things aren't set up

273

192

# correctly).

274

193

# Write the traceback.

275

276

# We need to special-case IVLEJailError, as we can get another

194

# If this is a non-4xx IVLEError, get the message and httpcode and

195

# make the error message a bit nicer (but still include the

196

# traceback).

197

# We also need to special-case IVLEJailError, as we can get another

277

198

# almost-exception out of it.

199

200

codename, msg = None, None

201

278

202

if exc_type is util.IVLEJailError:

203

msg = exc_value.type_str + ": " + exc_value.message

279

204

tb = 'Exception information extracted from IVLEJailError:\n'

280

205

tb += urllib.unquote(exc_value.info)

281

206

else:

207

try:

208

codename, msg = req.get_http_codename(httpcode)

209

except AttributeError:

210

pass

211

282

212

tb = ''.join(traceback.format_exception(exc_type, exc_value,

283

213

exc_traceback))

284

214

285

logging.error('\n' + tb)

215

logging.error('%s\n%s'%(str(msg), tb))

286

216

287

217

# Error messages are only displayed is the user is NOT a student,

288

218

# or if there has been a problem logging the error message

292

222

293

223

<head><title>IVLE Internal Server Error</title></head>

294

224

<body>

295

<h1>IVLE Internal Server Error</h1>

225

<h1>IVLE Internal Server Error""")

226

if show_errors:

227

if codename is not None and \

228

httpcode != mod_python.apache.HTTP_INTERNAL_SERVER_ERROR:

229

req.write(": %s" % cgi.escape(codename))

230

231

req.write("""</h1>

296

232

<p>An error has occured which is the fault of the IVLE developers or

297

233

administrators. """)

298

234

304

240

req.write("</p>")

305

241

306

242

if show_errors:

243

if msg is not None:

244

req.write("<p>%s</p>\n" % cgi.escape(msg))

245

if httpcode is not None:

246

req.write("<p>(HTTP error code %d)</p>\n" % httpcode)

307

247

req.write("<h2>Debugging information</h2>")

248

308

249

req.write("<pre>\n%s\n</pre>\n"%cgi.escape(tb))

309

250

req.write("</body></html>")

Older »