##// END OF EJS Templates
http: Use http as default setting when sanitize config values. Part of #4237
Martin Bornhold -
r958:d2115b36 default
parent child Browse files
Show More
@@ -1,469 +1,470 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2010-2016 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 """
22 22 Pylons middleware initialization
23 23 """
24 24 import logging
25 25 from collections import OrderedDict
26 26
27 27 from paste.registry import RegistryManager
28 28 from paste.gzipper import make_gzip_middleware
29 29 from pylons.wsgiapp import PylonsApp
30 30 from pyramid.authorization import ACLAuthorizationPolicy
31 31 from pyramid.config import Configurator
32 32 from pyramid.settings import asbool, aslist
33 33 from pyramid.wsgi import wsgiapp
34 34 from pyramid.httpexceptions import (
35 35 HTTPError, HTTPInternalServerError, HTTPFound)
36 36 from pyramid.events import ApplicationCreated
37 37 from pyramid.renderers import render_to_response
38 38 from routes.middleware import RoutesMiddleware
39 39 import routes.util
40 40
41 41 import rhodecode
42 42 from rhodecode.model import meta
43 43 from rhodecode.config import patches
44 44 from rhodecode.config.routing import STATIC_FILE_PREFIX
45 45 from rhodecode.config.environment import (
46 46 load_environment, load_pyramid_environment)
47 47 from rhodecode.lib.middleware import csrf
48 48 from rhodecode.lib.middleware.appenlight import wrap_in_appenlight_if_enabled
49 49 from rhodecode.lib.middleware.error_handling import (
50 50 PylonsErrorHandlingMiddleware)
51 51 from rhodecode.lib.middleware.https_fixup import HttpsFixup
52 52 from rhodecode.lib.middleware.vcs import VCSMiddleware
53 53 from rhodecode.lib.plugins.utils import register_rhodecode_plugin
54 54 from rhodecode.lib.utils2 import aslist as rhodecode_aslist
55 55 from rhodecode.subscribers import scan_repositories_if_enabled
56 56
57 57
58 58 log = logging.getLogger(__name__)
59 59
60 60
61 61 # this is used to avoid avoid the route lookup overhead in routesmiddleware
62 62 # for certain routes which won't go to pylons to - eg. static files, debugger
63 63 # it is only needed for the pylons migration and can be removed once complete
64 64 class SkippableRoutesMiddleware(RoutesMiddleware):
65 65 """ Routes middleware that allows you to skip prefixes """
66 66
67 67 def __init__(self, *args, **kw):
68 68 self.skip_prefixes = kw.pop('skip_prefixes', [])
69 69 super(SkippableRoutesMiddleware, self).__init__(*args, **kw)
70 70
71 71 def __call__(self, environ, start_response):
72 72 for prefix in self.skip_prefixes:
73 73 if environ['PATH_INFO'].startswith(prefix):
74 74 # added to avoid the case when a missing /_static route falls
75 75 # through to pylons and causes an exception as pylons is
76 76 # expecting wsgiorg.routingargs to be set in the environ
77 77 # by RoutesMiddleware.
78 78 if 'wsgiorg.routing_args' not in environ:
79 79 environ['wsgiorg.routing_args'] = (None, {})
80 80 return self.app(environ, start_response)
81 81
82 82 return super(SkippableRoutesMiddleware, self).__call__(
83 83 environ, start_response)
84 84
85 85
86 86 def make_app(global_conf, static_files=True, **app_conf):
87 87 """Create a Pylons WSGI application and return it
88 88
89 89 ``global_conf``
90 90 The inherited configuration for this application. Normally from
91 91 the [DEFAULT] section of the Paste ini file.
92 92
93 93 ``app_conf``
94 94 The application's local configuration. Normally specified in
95 95 the [app:<name>] section of the Paste ini file (where <name>
96 96 defaults to main).
97 97
98 98 """
99 99 # Apply compatibility patches
100 100 patches.kombu_1_5_1_python_2_7_11()
101 101 patches.inspect_getargspec()
102 102
103 103 # Configure the Pylons environment
104 104 config = load_environment(global_conf, app_conf)
105 105
106 106 # The Pylons WSGI app
107 107 app = PylonsApp(config=config)
108 108 if rhodecode.is_test:
109 109 app = csrf.CSRFDetector(app)
110 110
111 111 expected_origin = config.get('expected_origin')
112 112 if expected_origin:
113 113 # The API can be accessed from other Origins.
114 114 app = csrf.OriginChecker(app, expected_origin,
115 115 skip_urls=[routes.util.url_for('api')])
116 116
117 117 # Establish the Registry for this application
118 118 app = RegistryManager(app)
119 119
120 120 app.config = config
121 121
122 122 return app
123 123
124 124
125 125 def make_pyramid_app(global_config, **settings):
126 126 """
127 127 Constructs the WSGI application based on Pyramid and wraps the Pylons based
128 128 application.
129 129
130 130 Specials:
131 131
132 132 * We migrate from Pylons to Pyramid. While doing this, we keep both
133 133 frameworks functional. This involves moving some WSGI middlewares around
134 134 and providing access to some data internals, so that the old code is
135 135 still functional.
136 136
137 137 * The application can also be integrated like a plugin via the call to
138 138 `includeme`. This is accompanied with the other utility functions which
139 139 are called. Changing this should be done with great care to not break
140 140 cases when these fragments are assembled from another place.
141 141
142 142 """
143 143 # The edition string should be available in pylons too, so we add it here
144 144 # before copying the settings.
145 145 settings.setdefault('rhodecode.edition', 'Community Edition')
146 146
147 147 # As long as our Pylons application does expect "unprepared" settings, make
148 148 # sure that we keep an unmodified copy. This avoids unintentional change of
149 149 # behavior in the old application.
150 150 settings_pylons = settings.copy()
151 151
152 152 sanitize_settings_and_apply_defaults(settings)
153 153 config = Configurator(settings=settings)
154 154 add_pylons_compat_data(config.registry, global_config, settings_pylons)
155 155
156 156 load_pyramid_environment(global_config, settings)
157 157
158 158 includeme_first(config)
159 159 includeme(config)
160 160 pyramid_app = config.make_wsgi_app()
161 161 pyramid_app = wrap_app_in_wsgi_middlewares(pyramid_app, config)
162 162 pyramid_app.config = config
163 163
164 164 # creating the app uses a connection - return it after we are done
165 165 meta.Session.remove()
166 166
167 167 return pyramid_app
168 168
169 169
170 170 def make_not_found_view(config):
171 171 """
172 172 This creates the view which should be registered as not-found-view to
173 173 pyramid. Basically it contains of the old pylons app, converted to a view.
174 174 Additionally it is wrapped by some other middlewares.
175 175 """
176 176 settings = config.registry.settings
177 177 vcs_server_enabled = settings['vcs.server.enable']
178 178
179 179 # Make pylons app from unprepared settings.
180 180 pylons_app = make_app(
181 181 config.registry._pylons_compat_global_config,
182 182 **config.registry._pylons_compat_settings)
183 183 config.registry._pylons_compat_config = pylons_app.config
184 184
185 185 # Appenlight monitoring.
186 186 pylons_app, appenlight_client = wrap_in_appenlight_if_enabled(
187 187 pylons_app, settings)
188 188
189 189 # The pylons app is executed inside of the pyramid 404 exception handler.
190 190 # Exceptions which are raised inside of it are not handled by pyramid
191 191 # again. Therefore we add a middleware that invokes the error handler in
192 192 # case of an exception or error response. This way we return proper error
193 193 # HTML pages in case of an error.
194 194 reraise = (settings.get('debugtoolbar.enabled', False) or
195 195 rhodecode.disable_error_handler)
196 196 pylons_app = PylonsErrorHandlingMiddleware(
197 197 pylons_app, error_handler, reraise)
198 198
199 199 # The VCSMiddleware shall operate like a fallback if pyramid doesn't find a
200 200 # view to handle the request. Therefore it is wrapped around the pylons
201 201 # app. It has to be outside of the error handling otherwise error responses
202 202 # from the vcsserver are converted to HTML error pages. This confuses the
203 203 # command line tools and the user won't get a meaningful error message.
204 204 if vcs_server_enabled:
205 205 pylons_app = VCSMiddleware(
206 206 pylons_app, settings, appenlight_client, registry=config.registry)
207 207
208 208 # Convert WSGI app to pyramid view and return it.
209 209 return wsgiapp(pylons_app)
210 210
211 211
212 212 def add_pylons_compat_data(registry, global_config, settings):
213 213 """
214 214 Attach data to the registry to support the Pylons integration.
215 215 """
216 216 registry._pylons_compat_global_config = global_config
217 217 registry._pylons_compat_settings = settings
218 218
219 219
220 220 def error_handler(exception, request):
221 221 from rhodecode.model.settings import SettingsModel
222 222 from rhodecode.lib.utils2 import AttributeDict
223 223
224 224 try:
225 225 rc_config = SettingsModel().get_all_settings()
226 226 except Exception:
227 227 log.exception('failed to fetch settings')
228 228 rc_config = {}
229 229
230 230 base_response = HTTPInternalServerError()
231 231 # prefer original exception for the response since it may have headers set
232 232 if isinstance(exception, HTTPError):
233 233 base_response = exception
234 234
235 235 c = AttributeDict()
236 236 c.error_message = base_response.status
237 237 c.error_explanation = base_response.explanation or str(base_response)
238 238 c.visual = AttributeDict()
239 239
240 240 c.visual.rhodecode_support_url = (
241 241 request.registry.settings.get('rhodecode_support_url') or
242 242 request.route_url('rhodecode_support')
243 243 )
244 244 c.redirect_time = 0
245 245 c.rhodecode_name = rc_config.get('rhodecode_title', '')
246 246 if not c.rhodecode_name:
247 247 c.rhodecode_name = 'Rhodecode'
248 248
249 249 c.causes = []
250 250 if hasattr(base_response, 'causes'):
251 251 c.causes = base_response.causes
252 252
253 253 response = render_to_response(
254 254 '/errors/error_document.html', {'c': c}, request=request,
255 255 response=base_response)
256 256
257 257 return response
258 258
259 259
260 260 def includeme(config):
261 261 settings = config.registry.settings
262 262
263 263 # plugin information
264 264 config.registry.rhodecode_plugins = OrderedDict()
265 265
266 266 config.add_directive(
267 267 'register_rhodecode_plugin', register_rhodecode_plugin)
268 268
269 269 if asbool(settings.get('appenlight', 'false')):
270 270 config.include('appenlight_client.ext.pyramid_tween')
271 271
272 272 # Includes which are required. The application would fail without them.
273 273 config.include('pyramid_mako')
274 274 config.include('pyramid_beaker')
275 275 config.include('rhodecode.channelstream')
276 276 config.include('rhodecode.admin')
277 277 config.include('rhodecode.authentication')
278 278 config.include('rhodecode.integrations')
279 279 config.include('rhodecode.login')
280 280 config.include('rhodecode.tweens')
281 281 config.include('rhodecode.api')
282 282 config.include('rhodecode.svn_support')
283 283 config.add_route(
284 284 'rhodecode_support', 'https://rhodecode.com/help/', static=True)
285 285
286 286 # Add subscribers.
287 287 config.add_subscriber(scan_repositories_if_enabled, ApplicationCreated)
288 288
289 289 # Set the authorization policy.
290 290 authz_policy = ACLAuthorizationPolicy()
291 291 config.set_authorization_policy(authz_policy)
292 292
293 293 # Set the default renderer for HTML templates to mako.
294 294 config.add_mako_renderer('.html')
295 295
296 296 # include RhodeCode plugins
297 297 includes = aslist(settings.get('rhodecode.includes', []))
298 298 for inc in includes:
299 299 config.include(inc)
300 300
301 301 # This is the glue which allows us to migrate in chunks. By registering the
302 302 # pylons based application as the "Not Found" view in Pyramid, we will
303 303 # fallback to the old application each time the new one does not yet know
304 304 # how to handle a request.
305 305 config.add_notfound_view(make_not_found_view(config))
306 306
307 307 if not settings.get('debugtoolbar.enabled', False):
308 308 # if no toolbar, then any exception gets caught and rendered
309 309 config.add_view(error_handler, context=Exception)
310 310
311 311 config.add_view(error_handler, context=HTTPError)
312 312
313 313
314 314 def includeme_first(config):
315 315 # redirect automatic browser favicon.ico requests to correct place
316 316 def favicon_redirect(context, request):
317 317 return HTTPFound(
318 318 request.static_path('rhodecode:public/images/favicon.ico'))
319 319
320 320 config.add_view(favicon_redirect, route_name='favicon')
321 321 config.add_route('favicon', '/favicon.ico')
322 322
323 323 config.add_static_view(
324 324 '_static/deform', 'deform:static')
325 325 config.add_static_view(
326 326 '_static/rhodecode', path='rhodecode:public', cache_max_age=3600 * 24)
327 327
328 328
329 329 def wrap_app_in_wsgi_middlewares(pyramid_app, config):
330 330 """
331 331 Apply outer WSGI middlewares around the application.
332 332
333 333 Part of this has been moved up from the Pylons layer, so that the
334 334 data is also available if old Pylons code is hit through an already ported
335 335 view.
336 336 """
337 337 settings = config.registry.settings
338 338
339 339 # enable https redirects based on HTTP_X_URL_SCHEME set by proxy
340 340 pyramid_app = HttpsFixup(pyramid_app, settings)
341 341
342 342 # Add RoutesMiddleware to support the pylons compatibility tween during
343 343 # migration to pyramid.
344 344 pyramid_app = SkippableRoutesMiddleware(
345 345 pyramid_app, config.registry._pylons_compat_config['routes.map'],
346 346 skip_prefixes=(STATIC_FILE_PREFIX, '/_debug_toolbar'))
347 347
348 348 pyramid_app, _ = wrap_in_appenlight_if_enabled(pyramid_app, settings)
349 349
350 350 if settings['gzip_responses']:
351 351 pyramid_app = make_gzip_middleware(
352 352 pyramid_app, settings, compress_level=1)
353 353
354 354
355 355 # this should be the outer most middleware in the wsgi stack since
356 356 # middleware like Routes make database calls
357 357 def pyramid_app_with_cleanup(environ, start_response):
358 358 try:
359 359 return pyramid_app(environ, start_response)
360 360 finally:
361 361 # Dispose current database session and rollback uncommitted
362 362 # transactions.
363 363 meta.Session.remove()
364 364
365 365 # In a single threaded mode server, on non sqlite db we should have
366 366 # '0 Current Checked out connections' at the end of a request,
367 367 # if not, then something, somewhere is leaving a connection open
368 368 pool = meta.Base.metadata.bind.engine.pool
369 369 log.debug('sa pool status: %s', pool.status())
370 370
371 371
372 372 return pyramid_app_with_cleanup
373 373
374 374
375 375 def sanitize_settings_and_apply_defaults(settings):
376 376 """
377 377 Applies settings defaults and does all type conversion.
378 378
379 379 We would move all settings parsing and preparation into this place, so that
380 380 we have only one place left which deals with this part. The remaining parts
381 381 of the application would start to rely fully on well prepared settings.
382 382
383 383 This piece would later be split up per topic to avoid a big fat monster
384 384 function.
385 385 """
386 386
387 387 # Pyramid's mako renderer has to search in the templates folder so that the
388 388 # old templates still work. Ported and new templates are expected to use
389 389 # real asset specifications for the includes.
390 390 mako_directories = settings.setdefault('mako.directories', [
391 391 # Base templates of the original Pylons application
392 392 'rhodecode:templates',
393 393 ])
394 394 log.debug(
395 395 "Using the following Mako template directories: %s",
396 396 mako_directories)
397 397
398 398 # Default includes, possible to change as a user
399 399 pyramid_includes = settings.setdefault('pyramid.includes', [
400 400 'rhodecode.lib.middleware.request_wrapper',
401 401 ])
402 402 log.debug(
403 403 "Using the following pyramid.includes: %s",
404 404 pyramid_includes)
405 405
406 406 # TODO: johbo: Re-think this, usually the call to config.include
407 407 # should allow to pass in a prefix.
408 408 settings.setdefault('rhodecode.api.url', '/_admin/api')
409 409
410 410 # Sanitize generic settings.
411 411 _list_setting(settings, 'default_encoding', 'UTF-8')
412 412 _bool_setting(settings, 'is_test', 'false')
413 413 _bool_setting(settings, 'gzip_responses', 'false')
414 414
415 415 # Call split out functions that sanitize settings for each topic.
416 416 _sanitize_appenlight_settings(settings)
417 417 _sanitize_vcs_settings(settings)
418 418
419 419 return settings
420 420
421 421
422 422 def _sanitize_appenlight_settings(settings):
423 423 _bool_setting(settings, 'appenlight', 'false')
424 424
425 425
426 426 def _sanitize_vcs_settings(settings):
427 427 """
428 428 Applies settings defaults and does type conversion for all VCS related
429 429 settings.
430 430 """
431 431 _string_setting(settings, 'vcs.svn.compatible_version', '')
432 432 _string_setting(settings, 'git_rev_filter', '--all')
433 _string_setting(settings, 'vcs.hooks.protocol', 'pyro4')
433 _string_setting(settings, 'vcs.hooks.protocol', 'http')
434 _string_setting(settings, 'vcs.scm_app_implementation', 'http')
434 435 _string_setting(settings, 'vcs.server', '')
435 436 _string_setting(settings, 'vcs.server.log_level', 'debug')
436 _string_setting(settings, 'vcs.server.protocol', 'pyro4')
437 _string_setting(settings, 'vcs.server.protocol', 'http')
437 438 _bool_setting(settings, 'startup.import_repos', 'false')
438 439 _bool_setting(settings, 'vcs.hooks.direct_calls', 'false')
439 440 _bool_setting(settings, 'vcs.server.enable', 'true')
440 441 _bool_setting(settings, 'vcs.start_server', 'false')
441 442 _list_setting(settings, 'vcs.backends', 'hg, git, svn')
442 443 _int_setting(settings, 'vcs.connection_timeout', 3600)
443 444
444 445
445 446 def _int_setting(settings, name, default):
446 447 settings[name] = int(settings.get(name, default))
447 448
448 449
449 450 def _bool_setting(settings, name, default):
450 451 input = settings.get(name, default)
451 452 if isinstance(input, unicode):
452 453 input = input.encode('utf8')
453 454 settings[name] = asbool(input)
454 455
455 456
456 457 def _list_setting(settings, name, default):
457 458 raw_value = settings.get(name, default)
458 459
459 460 old_separator = ','
460 461 if old_separator in raw_value:
461 462 # If we get a comma separated list, pass it to our own function.
462 463 settings[name] = rhodecode_aslist(raw_value, sep=old_separator)
463 464 else:
464 465 # Otherwise we assume it uses pyramids space/newline separation.
465 466 settings[name] = aslist(raw_value)
466 467
467 468
468 469 def _string_setting(settings, name, default):
469 470 settings[name] = settings.get(name, default).lower()
General Comments 0
You need to be logged in to leave comments. Login now