22
22
Apache send all requests to be handled by the module 'dispatch'.
24
24
Top-level handler. Handles all requests to all pages in IVLE.
25
Handles authentication (not authorization).
26
Then passes the request along to the appropriate ivle app.
25
Handles authentication and delegates to views for authorization,
26
then passes the request along to the appropriate view.
40
# We want to use the Storm C extensions if at all possible.
41
# Since we can't use SetEnv in Apache, do this here. It *must* appear
42
# before storm is imported for the first time.
43
os.environ['STORM_CEXTENSIONS'] = '1'
42
47
from ivle import util
45
49
from ivle.dispatch.request import Request
46
from ivle.dispatch import login
49
import plugins.console # XXX: Relies on www/ being in the Python path.
51
# XXX List of plugins, which will eventually be read in from conf
53
'ivle.webapp.admin.user#Plugin',
54
'ivle.webapp.tutorial#Plugin',
55
'ivle.webapp.admin.subject#Plugin',
56
'ivle.webapp.browser#Plugin',
57
'ivle.webapp.groups#Plugin',
58
'ivle.webapp.console#Plugin',
59
'ivle.webapp.security#Plugin',
62
def get_routes_mapper():
50
import ivle.webapp.security
51
from ivle.webapp.base.plugins import ViewPlugin, PublicViewPlugin
52
from ivle.webapp.base.xhtml import XHTMLView, XHTMLErrorView
53
from ivle.webapp.errors import BadRequest, HTTPError, NotFound, Unauthorized
54
from ivle.webapp.publisher import Publisher, PublishingError
55
from ivle.webapp import ApplicationRoot
57
config = ivle.config.Config()
59
class ObjectPermissionCheckingPublisher(Publisher):
60
"""A specialised publisher that checks object permissions.
62
This publisher verifies that the user holds any permission at all
63
on the model objects through which the resolution path passes. If
64
no permission is held, resolution is aborted with an Unauthorized
67
IMPORTANT: This does NOT check view permissions. It only checks
68
the objects in between the root and the view, exclusive!
71
def traversed_to_object(self, obj):
72
"""Check that the user has any permission at all over the object."""
73
if (hasattr(obj, 'get_permissions') and
74
len(obj.get_permissions(self.root.user, config)) == 0):
75
# Indicate the forbidden object if this is an admin.
76
if self.root.user and self.root.user.admin:
77
raise Unauthorized('Unauthorized: %s' % obj)
82
def generate_publisher(view_plugins, root, publicmode=False):
64
84
Build a Mapper object for doing URL matching using 'routes', based on the
85
given plugin registry.
67
m = routes.Mapper(explicit=True)
68
for pluginstr in plugins_HACK:
69
plugin_path, classname = pluginstr.split('#')
70
# Load the plugin module from somewhere in the Python path
71
# (Note that plugin_path is a fully-qualified Python module name).
72
plugin = getattr(__import__(plugin_path, fromlist=[classname]),
74
# Establish a URL pattern for each element of plugin.urls
75
for url in plugin.urls:
78
kwargs_dict = url[2] if len(url) >= 3 else {}
79
m.connect(routex, view=view_class, **kwargs_dict)
83
"""Handles a request which may be to anywhere in the site except media.
87
r = ObjectPermissionCheckingPublisher(root=root)
89
r.add_set_switch('api', 'api')
92
view_attr = 'public_views'
93
forward_route_attr = 'public_forward_routes'
94
reverse_route_attr = 'public_reverse_routes'
97
forward_route_attr = 'forward_routes'
98
reverse_route_attr = 'reverse_routes'
101
for plugin in view_plugins:
102
if hasattr(plugin, forward_route_attr):
103
for fr in getattr(plugin, forward_route_attr):
104
# An annotated function can also be passed in directly.
105
if hasattr(fr, '_forward_route_meta'):
106
r.add_forward_func(fr)
110
if hasattr(plugin, reverse_route_attr):
111
for rr in getattr(plugin, reverse_route_attr):
112
# An annotated function can also be passed in directly.
113
if hasattr(rr, '_reverse_route_src'):
114
r.add_reverse_func(rr)
118
if hasattr(plugin, view_attr):
119
for v in getattr(plugin, view_attr):
124
def handler(apachereq):
125
"""Handles an HTTP request.
84
127
Intended to be called by mod_python, as a handler.
86
req: An Apache request object.
88
# Make the request object into an IVLE request which can be passed to apps
91
req = Request(req, html.write_html_head)
93
# Pass the apachereq to error reporter, since ivle req isn't created
95
handle_unknown_exception(apachereq, *sys.exc_info())
96
# Tell Apache not to generate its own errors as well
97
return mod_python.apache.OK
99
# Run the main handler, and catch all exceptions
101
return handler_(req, apachereq)
102
except mod_python.apache.SERVER_RETURN:
103
# An apache error. We discourage these, but they might still happen.
107
handle_unknown_exception(req, *sys.exc_info())
108
# Tell Apache not to generate its own errors as well
109
return mod_python.apache.OK
111
def handler_(req, apachereq):
113
Nested handler function. May raise exceptions. The top-level handler is
114
just used to catch exceptions.
115
Takes both an IVLE request and an Apache req.
117
# Hack? Try and get the user login early just in case we throw an error
118
# (most likely 404) to stop us seeing not logged in even when we are.
119
if not req.publicmode:
120
req.user = login.get_user_details(req)
122
### BEGIN New plugins framework ###
123
# XXX This should be done ONCE per Python process, not per request.
125
# XXX No authentication is done here
126
req.mapper = get_routes_mapper()
127
matchdict = req.mapper.match(req.uri)
128
if matchdict is not None:
129
viewcls = matchdict['view']
130
# Get the remaining arguments, less 'view', 'action' and 'controller'
131
# (The latter two seem to be built-in, and we don't want them).
132
kwargs = matchdict.copy()
134
# Instantiate the view, which should be a BaseView class
135
view = viewcls(req, **kwargs)
140
### END New plugins framework ###
142
# Check req.app to see if it is valid. 404 if not.
143
if req.app is not None and req.app not in ivle.conf.apps.app_url:
144
req.throw_error(Request.HTTP_NOT_FOUND,
145
"There is no application called %s." % repr(req.app))
147
# Special handling for public mode - only allow the public app, call it
149
# NOTE: This will not behave correctly if the public app uses
150
# write_html_head_foot, but "serve" does not.
152
if req.app != ivle.conf.apps.public_app:
153
req.throw_error(Request.HTTP_FORBIDDEN,
154
"This application is not available on the public site.")
155
app = ivle.conf.apps.app_url[ivle.conf.apps.public_app]
156
apps.call_app(app.dir, req)
159
# app is the App object for the chosen app
161
app = ivle.conf.apps.app_url[ivle.conf.apps.default_app]
163
app = ivle.conf.apps.app_url[req.app]
165
# Check if app requires auth. If so, perform authentication and login.
166
# This will either return a User object, None, or perform a redirect
167
# which we will not catch here.
169
req.user = login.login(req)
170
logged_in = req.user is not None
172
req.user = login.get_user_details(req)
176
# Keep the user's session alive by writing to the session object.
177
# req.get_session().save()
178
# Well, it's a fine idea, but it creates considerable grief in the
179
# concurrent update department, so instead, we'll just make the
180
# sessions not time out.
181
req.get_session().unlock()
183
# If user did not specify an app, HTTP redirect to default app and
186
req.throw_redirect(util.make_path(ivle.conf.apps.default_app))
188
# Set the default title to the app's tab name, if any. Otherwise URL
190
if app.name is not None:
195
# Call the specified app with the request object
196
apps.call_app(app.dir, req)
198
# if not logged in, login.login will have written the login box.
199
# Just clean up and exit.
201
# MAKE SURE we write the HTTP (and possibly HTML) header. This
202
# wouldn't happen if nothing else ever got written, so we have to make
204
req.ensure_headers_written()
206
# When done, write out the HTML footer if the app has requested it
207
if req.write_html_head_foot:
208
# Show the console if required
209
if logged_in and app.useconsole:
210
plugins.console.present(req, windowpane=True)
211
html.write_html_foot(req)
213
# Note: Apache will not write custom HTML error messages here.
214
# Use req.throw_error to do that.
129
@param apachereq: An Apache request object.
131
# Make the request object into an IVLE request which can be given to views
132
req = Request(apachereq, config)
134
req.publisher = generate_publisher(
135
config.plugin_index[ViewPlugin], ApplicationRoot(req),
136
publicmode=req.publicmode)
139
obj, viewcls, subpath = req.publisher.resolve(req.uri.decode('utf-8'))
141
# We 404 if we have a subpath but the view forbids it.
142
if not viewcls.subpath_allowed and subpath:
145
# Instantiate the view, which should be a BaseView class
146
view = viewcls(req, obj, subpath)
148
# Check that the request (mainly the user) is permitted to access
150
if not view.authorize(req):
151
# Indicate the forbidden object if this is an admin.
152
if req.user and req.user.admin:
153
raise Unauthorized('Unauthorized: %s' % view)
157
# Non-GET requests from other sites leave us vulnerable to
159
referer = req.headers_in.get('Referer')
160
if (referer is None or
161
urlparse.urlparse(req.headers_in.get('Referer')).netloc !=
163
if req.method != 'GET' and not view.offsite_posts_allowed:
165
"Non-GET requests from external sites are forbidden "
166
"for security reasons.")
171
# A view explicitly raised an HTTP error. Respect it.
174
# Try to find a custom error view.
175
if hasattr(viewcls, 'get_error_view'):
176
errviewcls = viewcls.get_error_view(e)
178
errviewcls = XHTMLView.get_error_view(e)
181
errview = errviewcls(req, e, obj)
189
except mod_python.apache.SERVER_RETURN:
190
# A mod_python-specific Apache error.
191
# XXX: We need to raise these because req.throw_error() uses them.
192
# Remove this after Google Code issue 117 is fixed.
195
# A non-HTTPError appeared. We have an unknown exception. Panic.
196
handle_unknown_exception(req, *sys.exc_info())
199
# Commit the transaction if we have a store open.
202
except Unauthorized, e:
203
# Resolution failed due to a permission check. Display a pretty
204
# error, or maybe a login page.
205
XHTMLView.get_error_view(e)(req, e, req.publisher.root).render(req)
207
except PublishingError, e:
210
if req.user and req.user.admin:
211
XHTMLErrorView(req, NotFound('Not found: ' +
212
str(e.args)), e[0]).render(req)
214
XHTMLErrorView(req, NotFound(), e[0]).render(req)
218
# Make sure we close the store.
217
221
def handle_unknown_exception(req, exc_type, exc_value, exc_traceback):
273
logging.debug('Logging Unhandled Exception')
275
# We handle 3 types of error.
276
# IVLEErrors with 4xx response codes (client error).
277
# IVLEErrors with 5xx response codes (handled server error).
278
# Other exceptions (unhandled server error).
279
# IVLEErrors should not have other response codes than 4xx or 5xx
280
# (eg. throw_redirect should have been used for 3xx codes).
281
# Therefore, that is treated as an unhandled error.
283
if (exc_type == util.IVLEError and httpcode >= 400
284
and httpcode <= 499):
285
# IVLEErrors with 4xx response codes are client errors.
286
# Therefore, these have a "nice" response (we even coat it in the IVLE
289
req.write_html_head_foot = True
290
req.write_javascript_settings = False
291
req.write('<div id="ivle_padding">\n')
293
codename, msg = req.get_http_codename(httpcode)
294
except AttributeError:
295
codename, msg = None, None
296
# Override the default message with the supplied one,
298
if exc_value.message is not None:
299
msg = exc_value.message
300
if codename is not None:
301
req.write("<h1>Error: %s</h1>\n" % cgi.escape(codename))
303
req.write("<h1>Error</h1>\n")
305
req.write("<p>%s</p>\n" % cgi.escape(msg))
307
req.write("<p>An unknown error occured.</p>\n")
310
logging.info(str(msg))
312
req.write("<p>(HTTP error code %d)</p>\n" % httpcode)
314
req.write("<p>Warning: Could not open Error Log: '%s'</p>\n"
315
%cgi.escape(logfile))
316
req.write('</div>\n')
317
html.write_html_foot(req)
268
# A "bad" error message. We shouldn't get here unless IVLE
269
# misbehaves (which is currently very easy, if things aren't set up
271
# Write the traceback.
273
# We need to special-case IVLEJailError, as we can get another
274
# almost-exception out of it.
275
if exc_type is util.IVLEJailError:
276
tb = 'Exception information extracted from IVLEJailError:\n'
277
tb += urllib.unquote(exc_value.info)
319
# A "bad" error message. We shouldn't get here unless IVLE
320
# misbehaves (which is currently very easy, if things aren't set up
322
# Write the traceback.
323
# If this is a non-4xx IVLEError, get the message and httpcode and
324
# make the error message a bit nicer (but still include the
326
# We also need to special-case IVLEJailError, as we can get another
327
# almost-exception out of it.
329
codename, msg = None, None
331
if exc_type is util.IVLEJailError:
332
msg = exc_value.type_str + ": " + exc_value.message
333
tb = 'Exception information extracted from IVLEJailError:\n'
334
tb += urllib.unquote(exc_value.info)
337
codename, msg = req.get_http_codename(httpcode)
338
except AttributeError:
340
# Override the default message with the supplied one,
342
if hasattr(exc_value, 'message') and exc_value.message is not None:
343
msg = exc_value.message
344
# Prepend the exception type
345
if exc_type != util.IVLEError:
346
msg = exc_type.__name__ + ": " + msg
348
tb = ''.join(traceback.format_exception(exc_type, exc_value,
352
logging.error('%s\n%s'%(str(msg), tb))
353
# Error messages are only displayed is the user is NOT a student,
354
# or if there has been a problem logging the error message
355
show_errors = (not publicmode) and ((login and \
356
str(role) != "student") or logfail)
357
req.write("""<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
279
tb = ''.join(traceback.format_exception(exc_type, exc_value,
282
logging.error('\n' + tb)
284
# Error messages are only displayed is the user is NOT a student,
285
# or if there has been a problem logging the error message
286
show_errors = (not publicmode) and ((login and req.user.admin) or logfail)
287
req.write("""<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
358
288
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
359
289
<html xmlns="http://www.w3.org/1999/xhtml">
360
290
<head><title>IVLE Internal Server Error</title></head>
362
<h1>IVLE Internal Server Error""")
364
if (codename is not None
365
and httpcode != mod_python.apache.HTTP_INTERNAL_SERVER_ERROR):
366
req.write(": %s" % cgi.escape(codename))
292
<h1>IVLE Internal Server Error</h1>
369
293
<p>An error has occured which is the fault of the IVLE developers or
370
administration. The developers have been notified.</p>
374
req.write("<p>%s</p>\n" % cgi.escape(msg))
375
if httpcode is not None:
376
req.write("<p>(HTTP error code %d)</p>\n" % httpcode)
378
<p>Please report this to <a href="mailto:%s">%s</a> (the system
379
administrator). Include the following information:</p>
380
""" % (cgi.escape(admin_email), cgi.escape(admin_email)))
382
req.write("<pre>\n%s\n</pre>\n"%cgi.escape(tb))
384
req.write("<p>Warning: Could not open Error Log: '%s'</p>\n"
385
%cgi.escape(logfile))
386
req.write("</body></html>")
297
req.write("Please report this issue to the server administrators, "
298
"along with the following information.")
300
req.write("Details have been logged for further examination.")
304
req.write("<h2>Debugging information</h2>")
305
req.write("<pre>\n%s\n</pre>\n"%cgi.escape(tb))
306
req.write("</body></html>")
added
removed
ivle/dispatch/__init__.py
