154 lines
7.3 KiB
Python
154 lines
7.3 KiB
Python
# w.c.s. - web application for online forms
|
|
# Copyright (C) 2005-2010 Entr'ouvert
|
|
#
|
|
# This program is free software; you can redistribute it and/or modify
|
|
# it under the terms of the GNU General Public License as published by
|
|
# the Free Software Foundation; either version 2 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License
|
|
# along with this program; if not, see <http://www.gnu.org/licenses/>.
|
|
|
|
import base64
|
|
import re
|
|
|
|
from quixote import get_session, get_publisher
|
|
import quixote.http_request
|
|
from quixote.errors import RequestError
|
|
|
|
from http_response import HTTPResponse
|
|
|
|
class HTTPRequest(quixote.http_request.HTTPRequest):
|
|
signed = False
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
quixote.http_request.HTTPRequest.__init__(self, *args, **kwargs)
|
|
self.response = HTTPResponse()
|
|
self.charset = get_publisher().site_charset
|
|
self.is_json_marker = None
|
|
self.ignore_session = False
|
|
|
|
_user = () # use empty tuple instead of None as None is a "valid" user value
|
|
def get_user(self):
|
|
if self._user != ():
|
|
return self._user
|
|
|
|
auth_header = self.get_header('Authorization', '')
|
|
if auth_header.startswith('Basic '):
|
|
auth_header = auth_header.split(' ', 1)[1]
|
|
username, password = base64.decodestring(auth_header).split(':', 1)
|
|
from qommon.ident.password_accounts import PasswordAccount
|
|
try:
|
|
self._user = PasswordAccount.get_with_credentials(username, password)
|
|
except KeyError:
|
|
self._user = None
|
|
return
|
|
|
|
try:
|
|
self._user = get_session().get_user()
|
|
except AttributeError:
|
|
self._user = None
|
|
return self._user
|
|
user = property(get_user)
|
|
|
|
def get_server(self, clean = True):
|
|
server_name = quixote.http_request.HTTPRequest.get_server(self)
|
|
if clean and server_name.lower()[:7] in ('iframe.', 'iframe-'):
|
|
server_name = server_name[7:]
|
|
return server_name
|
|
|
|
def get_local_url(self, n=0):
|
|
'''Return the local part of the URL, query string included'''
|
|
query = self.get_query()
|
|
if query:
|
|
return self.get_path(n) + '?' + query
|
|
else:
|
|
return self.get_path(n)
|
|
|
|
def get_frontoffice_url(self, n=0):
|
|
return get_publisher().get_frontoffice_url(without_script_name=True) + \
|
|
self.get_local_url(n)
|
|
|
|
def get_substitution_variables(self):
|
|
# environment variables APPNAME_* are exported to env_*
|
|
prefix = get_publisher().APP_NAME.lower() + '_'
|
|
variables = {}
|
|
for k, v in self.environ.items():
|
|
if k.lower().startswith(prefix):
|
|
variables['env_' + k.lower()[len(prefix):]] = v
|
|
return variables
|
|
|
|
def dump(self):
|
|
# straight copy of HTTPRequest.dump(), sole modification is that the
|
|
# values are printed as %r, not %s
|
|
result = []
|
|
row = '%-15s %r'
|
|
|
|
if self.form:
|
|
result.append("Form:")
|
|
for k, v in sorted(self.form.items()):
|
|
result.append(row % (k, v))
|
|
|
|
result.append("")
|
|
result.append("Cookies:")
|
|
for k, v in sorted(self.cookies.items()):
|
|
result.append(row % (k, v))
|
|
|
|
result.append("")
|
|
result.append("Environment:")
|
|
for k, v in sorted(self.environ.items()):
|
|
result.append(row % (k, v))
|
|
return "\n".join(result)
|
|
|
|
def process_inputs(self):
|
|
quixote.http_request.HTTPRequest.process_inputs(self)
|
|
ctype = self.environ.get("CONTENT_TYPE")
|
|
if ctype == 'application/json':
|
|
from .misc import json_loads
|
|
length = int(self.environ.get('CONTENT_LENGTH') or '0')
|
|
payload = self.django_request.read(length)
|
|
try:
|
|
self.json = json_loads(payload)
|
|
except ValueError, e:
|
|
raise RequestError('invalid json payload (%s)' % str(e))
|
|
# Make sure request.form doesn't contain unicode strings, converting
|
|
# them all to strings encoded in the site charset.
|
|
self.form = dict(
|
|
(str(k), v.encode(self.charset) if isinstance(v, unicode) else v)
|
|
for k, v in self.form.items())
|
|
|
|
def is_json(self):
|
|
if self.is_json_marker:
|
|
return True
|
|
if self.get_header('Content-Type', '').strip() == 'application/json':
|
|
return True
|
|
if self.get_header('Accept', '').strip() == 'application/json':
|
|
return True
|
|
if self.get_query() == 'json':
|
|
return True
|
|
if self.form and self.form.get('format') == 'json':
|
|
return True
|
|
return False
|
|
|
|
def has_mobile_user_agent(self):
|
|
# regex from http://detectmobilebrowsers.com/
|
|
reg_b = re.compile(r"(android|bb\\d+|meego).+mobile|avantgo|bada\\/|blackberry|blazer|compal|elaine|fennec|hiptop|iemobile|ip(hone|od)|iris|kindle|lge |maemo|midp|mmp|mobile.+firefox|netfront|opera m(ob|in)i|palm( os)?|phone|p(ixi|re)\\/|plucker|pocket|psp|series(4|6)0|symbian|treo|up\\.(browser|link)|vodafone|wap|windows ce|xda|xiino", re.I|re.M)
|
|
reg_v = re.compile(r"1207|6310|6590|3gso|4thp|50[1-6]i|770s|802s|a wa|abac|ac(er|oo|s\\-)|ai(ko|rn)|al(av|ca|co)|amoi|an(ex|ny|yw)|aptu|ar(ch|go)|as(te|us)|attw|au(di|\\-m|r |s )|avan|be(ck|ll|nq)|bi(lb|rd)|bl(ac|az)|br(e|v)w|bumb|bw\\-(n|u)|c55\\/|capi|ccwa|cdm\\-|cell|chtm|cldc|cmd\\-|co(mp|nd)|craw|da(it|ll|ng)|dbte|dc\\-s|devi|dica|dmob|do(c|p)o|ds(12|\\-d)|el(49|ai)|em(l2|ul)|er(ic|k0)|esl8|ez([4-7]0|os|wa|ze)|fetc|fly(\\-|_)|g1 u|g560|gene|gf\\-5|g\\-mo|go(\\.w|od)|gr(ad|un)|haie|hcit|hd\\-(m|p|t)|hei\\-|hi(pt|ta)|hp( i|ip)|hs\\-c|ht(c(\\-| |_|a|g|p|s|t)|tp)|hu(aw|tc)|i\\-(20|go|ma)|i230|iac( |\\-|\\/)|ibro|idea|ig01|ikom|im1k|inno|ipaq|iris|ja(t|v)a|jbro|jemu|jigs|kddi|keji|kgt( |\\/)|klon|kpt |kwc\\-|kyo(c|k)|le(no|xi)|lg( g|\\/(k|l|u)|50|54|\\-[a-w])|libw|lynx|m1\\-w|m3ga|m50\\/|ma(te|ui|xo)|mc(01|21|ca)|m\\-cr|me(rc|ri)|mi(o8|oa|ts)|mmef|mo(01|02|bi|de|do|t(\\-| |o|v)|zz)|mt(50|p1|v )|mwbp|mywa|n10[0-2]|n20[2-3]|n30(0|2)|n50(0|2|5)|n7(0(0|1)|10)|ne((c|m)\\-|on|tf|wf|wg|wt)|nok(6|i)|nzph|o2im|op(ti|wv)|oran|owg1|p800|pan(a|d|t)|pdxg|pg(13|\\-([1-8]|c))|phil|pire|pl(ay|uc)|pn\\-2|po(ck|rt|se)|prox|psio|pt\\-g|qa\\-a|qc(07|12|21|32|60|\\-[2-7]|i\\-)|qtek|r380|r600|raks|rim9|ro(ve|zo)|s55\\/|sa(ge|ma|mm|ms|ny|va)|sc(01|h\\-|oo|p\\-)|sdk\\/|se(c(\\-|0|1)|47|mc|nd|ri)|sgh\\-|shar|sie(\\-|m)|sk\\-0|sl(45|id)|sm(al|ar|b3|it|t5)|so(ft|ny)|sp(01|h\\-|v\\-|v )|sy(01|mb)|t2(18|50)|t6(00|10|18)|ta(gt|lk)|tcl\\-|tdg\\-|tel(i|m)|tim\\-|t\\-mo|to(pl|sh)|ts(70|m\\-|m3|m5)|tx\\-9|up(\\.b|g1|si)|utst|v400|v750|veri|vi(rg|te)|vk(40|5[0-3]|\\-v)|vm40|voda|vulc|vx(52|53|60|61|70|80|81|83|85|98)|w3c(\\-| )|webc|whit|wi(g |nc|nw)|wmlb|wonu|x700|yas\\-|your|zeto|zte\\-", re.I|re.M)
|
|
|
|
user_agent = self.get_header('User-Agent', '')
|
|
b = reg_b.search(user_agent)
|
|
v = reg_v.search(user_agent[0:4])
|
|
return (b or v)
|
|
|
|
def is_in_backoffice(self):
|
|
return self.get_path().startswith('/backoffice/')
|
|
|
|
@property
|
|
def META(self):
|
|
return self.environ
|