~azzar1/unity/add-show-desktop-key

« back to all changes in this revision

Viewing changes to ivle/dispatch/request.py

Committer: William Grant
Date: 2010-02-25 13:53:09 UTC
Revision ID: grantw@unimelb.edu.au-20100225135309-nfuzipcjj9zfu4ma

Set 'secure' flag on cookies if served over a direct or proxied HTTPS connection.

files modified:
ivle/dispatch/request.py

Show diffs side-by-side

added added

removed removed

ivle/dispatch/request.py

import mod_python.Session

import mod_python.Cookie

import mod_python.util

import mod_python.apache

except ImportError:

# This needs to be importable from outside Apache.

pass

from ivle.webapp.base.plugins import CookiePlugin

import ivle.webapp.security

class PotentiallySecureFileSession(mod_python.Session.FileSession):

"""A mod_python FileSession that sets secure cookie when appropriate.

A secure cookie will be set if the request itself is over HTTPS, or if

a proxy in front has set X-Forwarded-Proto: https. Otherwise the cookie

will be insecure.

"""

def make_cookie(self):

cookie = super(PotentiallySecureFileSession, self).make_cookie()

if (self._req.is_https() or

self._req.headers_in.get('X-Forwarded-Proto') == 'https'):

cookie.secure = True

return cookie

class Request:

"""An IVLE request object. This is presented to the IVLE apps as a way of

interacting with the web server and the dispatcher.

255

272

"""

256

273

# Cache the session object and set the timeout to 24 hours.

257

274

if not hasattr(self, 'session'):

258

self.session = mod_python.Session.FileSession(self.apache_req,

259

timeout = 60 * 60 * 24)

275

self.session = PotentiallySecureFileSession(

276

self.apache_req, timeout = 60 * 60 * 24)

260

277

return self.session

261

278

262

279

def get_fieldstorage(self):

Older »