43
41
from ivle import util
46
43
from ivle.dispatch.request import Request
47
from ivle.dispatch import login
48
from ivle.webapp.base.plugins import ViewPlugin
49
from ivle.webapp.errors import HTTPError, Unauthorized
53
# XXX List of plugins, which will eventually be read in from conf
55
'ivle.webapp.core#Plugin',
56
'ivle.webapp.admin.user#Plugin',
57
'ivle.webapp.tutorial#Plugin',
58
'ivle.webapp.admin.subject#Plugin',
59
'ivle.webapp.filesystem.browser#Plugin',
60
'ivle.webapp.filesystem.diff#Plugin',
61
'ivle.webapp.filesystem.svnlog#Plugin',
62
'ivle.webapp.groups#Plugin',
63
'ivle.webapp.console#Plugin',
64
'ivle.webapp.security#Plugin',
65
'ivle.webapp.media#Plugin',
66
'ivle.webapp.forum#Plugin',
67
'ivle.webapp.help#Plugin',
68
'ivle.webapp.tos#Plugin',
71
def generate_route_mapper(view_plugins):
44
import ivle.webapp.security
45
from ivle.webapp.base.plugins import ViewPlugin, PublicViewPlugin
46
from ivle.webapp.base.xhtml import XHTMLView, XHTMLErrorView
47
from ivle.webapp.errors import HTTPError, Unauthorized, NotFound
48
from ivle.webapp.urls import Router, RoutingError
49
from ivle.webapp import ApplicationRoot
51
config = ivle.config.Config()
53
def generate_router(view_plugins, root):
73
55
Build a Mapper object for doing URL matching using 'routes', based on the
74
56
given plugin registry.
76
m = routes.Mapper(explicit=True)
60
r.add_set_switch('api', 'api')
77
62
for plugin in view_plugins:
78
# Establish a URL pattern for each element of plugin.urls
79
assert hasattr(plugin, 'urls'), "%r does not have any urls" % plugin
80
for url in plugin.urls:
83
kwargs_dict = url[2] if len(url) >= 3 else {}
84
m.connect(routex, view=view_class, **kwargs_dict)
87
def get_plugin(pluginstr):
88
plugin_path, classname = pluginstr.split('#')
89
# Load the plugin module from somewhere in the Python path
90
# (Note that plugin_path is a fully-qualified Python module name).
92
getattr(__import__(plugin_path, fromlist=[classname]), classname))
95
"""Handles a request which may be to anywhere in the site except media.
63
if hasattr(plugin, 'forward_routes'):
64
for fr in plugin.forward_routes:
67
if hasattr(plugin, 'views'):
68
for v in plugin.views:
73
def handler(apachereq):
74
"""Handles an HTTP request.
96
76
Intended to be called by mod_python, as a handler.
98
req: An Apache request object.
100
# Make the request object into an IVLE request which can be passed to apps
103
req = Request(req, html.write_html_head)
105
# Pass the apachereq to error reporter, since ivle req isn't created
107
handle_unknown_exception(apachereq, *sys.exc_info())
108
# Tell Apache not to generate its own errors as well
109
return mod_python.apache.OK
111
# Run the main handler, and catch all exceptions
113
return handler_(req, apachereq)
114
except mod_python.apache.SERVER_RETURN:
115
# An apache error. We discourage these, but they might still happen.
119
handle_unknown_exception(req, *sys.exc_info())
120
# Tell Apache not to generate its own errors as well
121
return mod_python.apache.OK
123
def handler_(req, apachereq):
125
Nested handler function. May raise exceptions. The top-level handler is
126
just used to catch exceptions.
127
Takes both an IVLE request and an Apache req.
78
@param apachereq: An Apache request object.
80
# Make the request object into an IVLE request which can be given to views
81
req = Request(apachereq, config)
129
83
# Hack? Try and get the user login early just in case we throw an error
130
84
# (most likely 404) to stop us seeing not logged in even when we are.
131
85
if not req.publicmode:
132
req.user = login.get_user_details(req)
134
### BEGIN New plugins framework ###
135
# XXX This should be done ONCE per Python process, not per request.
137
# XXX No authentication is done here
138
req.plugins = dict([get_plugin(pluginstr) for pluginstr in plugins_HACK])
139
# Index the plugins by base class
140
req.plugin_index = {}
141
for plugin in req.plugins.values():
142
# Getmro returns a tuple of all the super-classes of the plugin
143
for base in inspect.getmro(plugin):
144
if base not in req.plugin_index:
145
req.plugin_index[base] = []
146
req.plugin_index[base].append(plugin)
147
req.reverse_plugins = dict([(v, k) for (k, v) in req.plugins.items()])
148
req.mapper = generate_route_mapper(req.plugin_index[ViewPlugin])
150
matchdict = req.mapper.match(req.uri)
151
if matchdict is not None:
152
viewcls = matchdict['view']
153
# Get the remaining arguments, less 'view', 'action' and 'controller'
154
# (The latter two seem to be built-in, and we don't want them).
155
kwargs = matchdict.copy()
86
user = ivle.webapp.security.get_user_details(req)
88
# Don't set the user if it is disabled or hasn't accepted the ToS.
89
if user and user.valid:
93
raise NotImplementedError("no public mode with obtrav yet!")
95
req.router = generate_router(config.plugin_index[ViewPlugin],
96
ApplicationRoot(req.config, req.store))
99
obj, viewcls, subpath = req.router.resolve(req.uri.decode('utf-8'))
158
101
# Instantiate the view, which should be a BaseView class
159
view = viewcls(req, **kwargs)
102
view = viewcls(req, obj)
161
104
# Check that the request (mainly the user) is permitted to access
189
139
req.store.commit()
191
### END New plugins framework ###
193
# Check req.app to see if it is valid. 404 if not.
194
if req.app is not None and req.app not in ivle.conf.apps.app_url:
195
req.throw_error(Request.HTTP_NOT_FOUND,
196
"There is no application called %s." % repr(req.app))
198
# Special handling for public mode - only allow the public app, call it
200
# NOTE: This will not behave correctly if the public app uses
201
# write_html_head_foot, but "serve" does not.
203
if req.app != ivle.conf.apps.public_app:
204
req.throw_error(Request.HTTP_FORBIDDEN,
205
"This application is not available on the public site.")
206
app = ivle.conf.apps.app_url[ivle.conf.apps.public_app]
207
apps.call_app(app.dir, req)
141
except RoutingError, e:
143
XHTMLErrorView(req, NotFound('Not found: ' +
144
str(e.args))).render(req)
146
XHTMLErrorView(req, NotFound()).render(req)
210
# app is the App object for the chosen app
212
app = ivle.conf.apps.app_url[ivle.conf.apps.default_app]
214
app = ivle.conf.apps.app_url[req.app]
216
# Check if app requires auth. If so, perform authentication and login.
217
# This will either return a User object, None, or perform a redirect
218
# which we will not catch here.
220
req.user = login.login(req)
221
logged_in = req.user is not None
223
req.user = login.get_user_details(req)
227
# Keep the user's session alive by writing to the session object.
228
# req.get_session().save()
229
# Well, it's a fine idea, but it creates considerable grief in the
230
# concurrent update department, so instead, we'll just make the
231
# sessions not time out.
232
req.get_session().unlock()
234
# If user did not specify an app, HTTP redirect to default app and
237
req.throw_redirect(util.make_path(ivle.conf.apps.default_app))
239
# Set the default title to the app's tab name, if any. Otherwise URL
241
if app.name is not None:
246
# Call the specified app with the request object
247
apps.call_app(app.dir, req)
249
# if not logged in, login.login will have written the login box.
250
# Just clean up and exit.
252
# MAKE SURE we write the HTTP (and possibly HTML) header. This
253
# wouldn't happen if nothing else ever got written, so we have to make
255
req.ensure_headers_written()
257
# When done, write out the HTML footer if the app has requested it
258
if req.write_html_head_foot:
259
html.write_html_foot(req)
261
# Note: Apache will not write custom HTML error messages here.
262
# Use req.throw_error to do that.
265
150
def handle_unknown_exception(req, exc_type, exc_value, exc_traceback):
267
152
Given an exception that has just been thrown from IVLE, print its details
269
154
This is a full handler. It assumes nothing has been written, and writes a
270
155
complete HTML page.
271
156
req: May be EITHER an IVLE req or an Apache req.
272
IVLE reqs may have the HTML head/foot written (on a 400 error), but
273
the handler code may pass an apache req if an exception occurs before
157
The handler code may pass an apache req if an exception occurs before
274
158
the IVLE request is created.
276
160
req.content_type = "text/html"
277
logfile = os.path.join(ivle.conf.log_path, 'ivle_error.log')
161
logfile = os.path.join(config['paths']['logs'], 'ivle_error.log')
279
# For some reason, some versions of mod_python have "_server" instead of
280
# "main_server". So we check for both.
282
admin_email = mod_python.apache.main_server.server_admin
283
except AttributeError:
285
admin_email = mod_python.apache._server.server_admin
286
except AttributeError:
164
# XXX: This remains here for ivle.interpret's IVLEErrors. Once we rewrite
165
# fileservice, req.status should always be 500 (ISE) here.
289
167
httpcode = exc_value.httpcode
290
168
req.status = httpcode
291
169
except AttributeError:
293
171
req.status = mod_python.apache.HTTP_INTERNAL_SERVER_ERROR
295
174
publicmode = req.publicmode
296
175
except AttributeError:
321
logging.debug('Logging Unhandled Exception')
323
# We handle 3 types of error.
324
# IVLEErrors with 4xx response codes (client error).
325
# IVLEErrors with 5xx response codes (handled server error).
326
# Other exceptions (unhandled server error).
327
# IVLEErrors should not have other response codes than 4xx or 5xx
328
# (eg. throw_redirect should have been used for 3xx codes).
329
# Therefore, that is treated as an unhandled error.
331
if (exc_type == util.IVLEError and httpcode >= 400
332
and httpcode <= 499):
333
# IVLEErrors with 4xx response codes are client errors.
334
# Therefore, these have a "nice" response (we even coat it in the IVLE
337
req.write_html_head_foot = True
338
req.write_javascript_settings = False
339
req.write('<div id="ivle_padding">\n')
341
codename, msg = req.get_http_codename(httpcode)
342
except AttributeError:
343
codename, msg = None, None
344
# Override the default message with the supplied one,
346
if exc_value.message is not None:
347
msg = exc_value.message
348
if codename is not None:
349
req.write("<h1>Error: %s</h1>\n" % cgi.escape(codename))
351
req.write("<h1>Error</h1>\n")
353
req.write("<p>%s</p>\n" % cgi.escape(msg))
355
req.write("<p>An unknown error occured.</p>\n")
358
logging.info(str(msg))
360
req.write("<p>(HTTP error code %d)</p>\n" % httpcode)
362
req.write("<p>Warning: Could not open Error Log: '%s'</p>\n"
363
%cgi.escape(logfile))
364
req.write('</div>\n')
365
html.write_html_foot(req)
197
# A "bad" error message. We shouldn't get here unless IVLE
198
# misbehaves (which is currently very easy, if things aren't set up
200
# Write the traceback.
202
# We need to special-case IVLEJailError, as we can get another
203
# almost-exception out of it.
204
if exc_type is util.IVLEJailError:
205
tb = 'Exception information extracted from IVLEJailError:\n'
206
tb += urllib.unquote(exc_value.info)
367
# A "bad" error message. We shouldn't get here unless IVLE
368
# misbehaves (which is currently very easy, if things aren't set up
370
# Write the traceback.
371
# If this is a non-4xx IVLEError, get the message and httpcode and
372
# make the error message a bit nicer (but still include the
374
# We also need to special-case IVLEJailError, as we can get another
375
# almost-exception out of it.
377
codename, msg = None, None
379
if exc_type is util.IVLEJailError:
380
msg = exc_value.type_str + ": " + exc_value.message
381
tb = 'Exception information extracted from IVLEJailError:\n'
382
tb += urllib.unquote(exc_value.info)
385
codename, msg = req.get_http_codename(httpcode)
386
except AttributeError:
388
# Override the default message with the supplied one,
390
if hasattr(exc_value, 'message') and exc_value.message is not None:
391
msg = exc_value.message
392
# Prepend the exception type
393
if exc_type != util.IVLEError:
394
msg = exc_type.__name__ + ": " + msg
396
tb = ''.join(traceback.format_exception(exc_type, exc_value,
400
logging.error('%s\n%s'%(str(msg), tb))
401
# Error messages are only displayed is the user is NOT a student,
402
# or if there has been a problem logging the error message
403
show_errors = (not publicmode) and ((login and \
404
str(role) != "student") or logfail)
405
req.write("""<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
208
tb = ''.join(traceback.format_exception(exc_type, exc_value,
211
logging.error('\n' + tb)
213
# Error messages are only displayed is the user is NOT a student,
214
# or if there has been a problem logging the error message
215
show_errors = (not publicmode) and ((login and req.user.admin) or logfail)
216
req.write("""<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
406
217
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
407
218
<html xmlns="http://www.w3.org/1999/xhtml">
408
219
<head><title>IVLE Internal Server Error</title></head>
410
<h1>IVLE Internal Server Error""")
412
if (codename is not None
413
and httpcode != mod_python.apache.HTTP_INTERNAL_SERVER_ERROR):
414
req.write(": %s" % cgi.escape(codename))
221
<h1>IVLE Internal Server Error</h1>
417
222
<p>An error has occured which is the fault of the IVLE developers or
418
administration. The developers have been notified.</p>
422
req.write("<p>%s</p>\n" % cgi.escape(msg))
423
if httpcode is not None:
424
req.write("<p>(HTTP error code %d)</p>\n" % httpcode)
426
<p>Please report this to <a href="mailto:%s">%s</a> (the system
427
administrator). Include the following information:</p>
428
""" % (cgi.escape(admin_email), cgi.escape(admin_email)))
430
req.write("<pre>\n%s\n</pre>\n"%cgi.escape(tb))
432
req.write("<p>Warning: Could not open Error Log: '%s'</p>\n"
433
%cgi.escape(logfile))
434
req.write("</body></html>")
226
req.write("Please report this issue to the server administrators, "
227
"along with the following information.")
229
req.write("Details have been logged for further examination.")
233
req.write("<h2>Debugging information</h2>")
234
req.write("<pre>\n%s\n</pre>\n"%cgi.escape(tb))
235
req.write("</body></html>")
added
removed
ivle/dispatch/__init__.py
