1
# IVLE - Informatics Virtual Learning Environment
2
# Copyright (C) 2007-2009 The University of Melbourne
4
# This program is free software; you can redistribute it and/or modify
5
# it under the terms of the GNU General Public License as published by
6
# the Free Software Foundation; either version 2 of the License, or
7
# (at your option) any later version.
9
# This program is distributed in the hope that it will be useful,
10
# but WITHOUT ANY WARRANTY; without even the implied warranty of
11
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12
# GNU General Public License for more details.
14
# You should have received a copy of the GNU General Public License
15
# along with this program; if not, write to the Free Software
16
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
18
# Author: Matt Giuca, Will Grant
21
This is a mod_python handler program. The correct way to call it is to have
22
Apache send all requests to be handled by the module 'dispatch'.
24
Top-level handler. Handles all requests to all pages in IVLE.
25
Handles authentication and delegates to views for authorization,
26
then passes the request along to the appropriate view.
44
from ivle.dispatch.request import Request
45
import ivle.webapp.security
46
from ivle.webapp.base.plugins import ViewPlugin, PublicViewPlugin
47
from ivle.webapp.base.xhtml import XHTMLView, XHTMLErrorView
48
from ivle.webapp.errors import BadRequest, HTTPError, NotFound, Unauthorized
49
from ivle.webapp.publisher import Publisher, PublishingError
50
from ivle.webapp import ApplicationRoot
52
config = ivle.config.Config()
54
class ObjectPermissionCheckingPublisher(Publisher):
55
"""A specialised publisher that checks object permissions.
57
This publisher verifies that the user holds any permission at all
58
on the model objects through which the resolution path passes. If
59
no permission is held, resolution is aborted with an Unauthorized
62
IMPORTANT: This does NOT check view permissions. It only checks
63
the objects in between the root and the view, exclusive!
66
def traversed_to_object(self, obj):
67
"""Check that the user has any permission at all over the object."""
68
if (hasattr(obj, 'get_permissions') and
69
len(obj.get_permissions(self.root.user, config)) == 0):
70
# Indicate the forbidden object if this is an admin.
71
if self.root.user and self.root.user.admin:
72
raise Unauthorized('Unauthorized: %s' % obj)
77
def generate_publisher(view_plugins, root, publicmode=False):
79
Build a Mapper object for doing URL matching using 'routes', based on the
80
given plugin registry.
82
r = ObjectPermissionCheckingPublisher(root=root)
84
r.add_set_switch('api', 'api')
87
view_attr = 'public_views'
88
forward_route_attr = 'public_forward_routes'
89
reverse_route_attr = 'public_reverse_routes'
92
forward_route_attr = 'forward_routes'
93
reverse_route_attr = 'reverse_routes'
96
for plugin in view_plugins:
97
if hasattr(plugin, forward_route_attr):
98
for fr in getattr(plugin, forward_route_attr):
99
# An annotated function can also be passed in directly.
100
if hasattr(fr, '_forward_route_meta'):
101
r.add_forward_func(fr)
105
if hasattr(plugin, reverse_route_attr):
106
for rr in getattr(plugin, reverse_route_attr):
107
# An annotated function can also be passed in directly.
108
if hasattr(rr, '_reverse_route_src'):
109
r.add_reverse_func(rr)
113
if hasattr(plugin, view_attr):
114
for v in getattr(plugin, view_attr):
119
def handler(apachereq):
120
"""Handles an HTTP request.
122
Intended to be called by mod_python, as a handler.
124
@param apachereq: An Apache request object.
126
# Make the request object into an IVLE request which can be given to views
127
req = Request(apachereq, config)
129
# Hack? Try and get the user login early just in case we throw an error
130
# (most likely 404) to stop us seeing not logged in even when we are.
131
if not req.publicmode:
132
user = ivle.webapp.security.get_user_details(req)
134
# Don't set the user if it is disabled or hasn't accepted the ToS.
135
if user and user.valid:
138
req.publisher = generate_publisher(
139
config.plugin_index[ViewPlugin],
140
ApplicationRoot(req.config, req.store, req.user),
141
publicmode=req.publicmode)
144
obj, viewcls, subpath = req.publisher.resolve(req.uri.decode('utf-8'))
146
# We 404 if we have a subpath but the view forbids it.
147
if not viewcls.subpath_allowed and subpath:
150
# Instantiate the view, which should be a BaseView class
151
view = viewcls(req, obj, subpath)
153
# Check that the request (mainly the user) is permitted to access
155
if not view.authorize(req):
156
# Indicate the forbidden object if this is an admin.
157
if req.user and req.user.admin:
158
raise Unauthorized('Unauthorized: %s' % view)
162
# Non-GET requests from other sites leave us vulnerable to
164
referer = req.headers_in.get('Referer')
165
if (referer is None or
166
urlparse.urlparse(req.headers_in.get('Referer')).netloc !=
168
if req.method != 'GET' and not view.offsite_posts_allowed:
170
"Non-GET requests from external sites are forbidden "
171
"for security reasons.")
176
# A view explicitly raised an HTTP error. Respect it.
179
# Try to find a custom error view.
180
if hasattr(viewcls, 'get_error_view'):
181
errviewcls = viewcls.get_error_view(e)
183
errviewcls = XHTMLView.get_error_view(e)
186
errview = errviewcls(req, e, obj)
194
except mod_python.apache.SERVER_RETURN:
195
# A mod_python-specific Apache error.
196
# XXX: We need to raise these because req.throw_error() uses them.
197
# Remove this after Google Code issue 117 is fixed.
200
# A non-HTTPError appeared. We have an unknown exception. Panic.
201
handle_unknown_exception(req, *sys.exc_info())
206
except Unauthorized, e:
207
# Resolution failed due to a permission check. Display a pretty
208
# error, or maybe a login page.
209
XHTMLView.get_error_view(e)(req, e, req.publisher.root).render(req)
211
except PublishingError, e:
214
if req.user and req.user.admin:
215
XHTMLErrorView(req, NotFound('Not found: ' +
216
str(e.args)), e[0]).render(req)
218
XHTMLErrorView(req, NotFound(), e[0]).render(req)
224
def handle_unknown_exception(req, exc_type, exc_value, exc_traceback):
226
Given an exception that has just been thrown from IVLE, print its details
228
This is a full handler. It assumes nothing has been written, and writes a
230
req: May be EITHER an IVLE req or an Apache req.
231
The handler code may pass an apache req if an exception occurs before
232
the IVLE request is created.
234
req.content_type = "text/html"
235
logfile = os.path.join(config['paths']['logs'], 'ivle_error.log')
238
# XXX: This remains here for ivle.interpret's IVLEErrors. Once we rewrite
239
# fileservice, req.status should always be 500 (ISE) here.
241
httpcode = exc_value.httpcode
242
req.status = httpcode
243
except AttributeError:
245
req.status = mod_python.apache.HTTP_INTERNAL_SERVER_ERROR
248
publicmode = req.publicmode
249
except AttributeError:
252
login = req.user.login
253
except AttributeError:
258
for h in logging.getLogger().handlers:
259
logging.getLogger().removeHandler(h)
260
logging.basicConfig(level=logging.INFO,
261
format='%(asctime)s %(levelname)s: ' +
262
'(HTTP: ' + str(req.status) +
263
', Ref: ' + str(login) + '@' +
264
str(socket.gethostname()) + str(req.uri) +
271
# A "bad" error message. We shouldn't get here unless IVLE
272
# misbehaves (which is currently very easy, if things aren't set up
274
# Write the traceback.
276
# We need to special-case IVLEJailError, as we can get another
277
# almost-exception out of it.
278
if exc_type is util.IVLEJailError:
279
tb = 'Exception information extracted from IVLEJailError:\n'
280
tb += urllib.unquote(exc_value.info)
282
tb = ''.join(traceback.format_exception(exc_type, exc_value,
285
logging.error('\n' + tb)
287
# Error messages are only displayed is the user is NOT a student,
288
# or if there has been a problem logging the error message
289
show_errors = (not publicmode) and ((login and req.user.admin) or logfail)
290
req.write("""<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
291
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
292
<html xmlns="http://www.w3.org/1999/xhtml">
293
<head><title>IVLE Internal Server Error</title></head>
295
<h1>IVLE Internal Server Error</h1>
296
<p>An error has occured which is the fault of the IVLE developers or
300
req.write("Please report this issue to the server administrators, "
301
"along with the following information.")
303
req.write("Details have been logged for further examination.")
307
req.write("<h2>Debugging information</h2>")
308
req.write("<pre>\n%s\n</pre>\n"%cgi.escape(tb))
309
req.write("</body></html>")
added
removed
ivle/dispatch/__init__.py
