u/pc/rhodecode-enterprise-ce-fork-pc Files · rhodecode/tweens.py

pull-requests: increase stability of concurrent pull requests creation by flushing prematurly the statuses of commits....

pull-requests: increase stability of concurrent pull requests creation by flushing prematurly the statuses of commits. This is required to increase the versions on each concurrent call. Otherwise we could get into an integrity errors of commitsha+version+repo

marcink - - Load All Authors

File last commit:

r3363:f08e98b1 default


                r3408:2a133f7e

stable

Download file

             tweens.py
        
                    117 lines
            
             | 3.8 KiB
            
                | text/x-python
            
             |
                PythonLexer
            
             / rhodecode / tweens.py
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        marcink
    
project: added all source files and assets

              r1
            
      # -*- coding: utf-8 -*-

        marcink
    
release: update copyright year to 2018

              r2487
            
      # Copyright (C) 2010-2018 RhodeCode GmbH

        marcink
    
project: added all source files and assets

              r1
            
      #

      # This program is free software: you can redistribute it and/or modify

      # it under the terms of the GNU Affero General Public License, version 3

      # (only), as published by the Free Software Foundation.

      #

      # This program is distributed in the hope that it will be useful,

      # but WITHOUT ANY WARRANTY; without even the implied warranty of

      # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

      # GNU General Public License for more details.

      #

      # You should have received a copy of the GNU Affero General Public License

      # along with this program.  If not, see <http://www.gnu.org/licenses/>.

      #

      # This program is dual-licensed. If you wish to learn more about the

      # RhodeCode Enterprise Edition, including its added features, Support services,

      # and proprietary license terms, please see https://rhodecode.com/licenses/

      import logging

        marcink
    
core: use application wide detection of invalid bytes sent via URL/GET/POST data.

              r3145
            
      from pyramid.httpexceptions import HTTPException, HTTPBadRequest

        marcink
    
project: added all source files and assets

              r1
            
        marcink
    
vcs: do an early detection of vcs-type request....

              r1297
            
      from rhodecode.lib.middleware.vcs import (

          detect_vcs_request, VCS_TYPE_KEY, VCS_TYPE_SKIP)

        marcink
    
project: added all source files and assets

              r1
            
        marcink
    
vcs: do an early detection of vcs-type request....

              r1297
            
        marcink
    
project: added all source files and assets

              r1
            
      log = logging.getLogger(__name__)

        marcink
    
core: use proper event to bootstrap pylons env....

              r1309
            
      def vcs_detection_tween_factory(handler, registry):

        marcink
    
vcs: do an early detection of vcs-type request....

              r1297
            
        marcink
    
core: use proper event to bootstrap pylons env....

              r1309
            
          def vcs_detection_tween(request):

        marcink
    
project: added all source files and assets

              r1
            
              """

        marcink
    
core: use proper event to bootstrap pylons env....

              r1309
            
              Do detection of vcs type, and save results for other layers to re-use

              this information

        marcink
    
project: added all source files and assets

              r1
            
              """

        marcink
    
pylons: remove pylons as dependency...

              r2351
            
              vcs_server_enabled = request.registry.settings.get('vcs.server.enable')

              vcs_handler = vcs_server_enabled and detect_vcs_request(

        marcink
    
vcs: do an early detection of vcs-type request....

              r1297
            
                  request.environ, request.registry.settings.get('vcs.backends'))

              if vcs_handler:

        marcink
    
code: added more logging, and some notes

              r1300
            
                  # save detected VCS type for later re-use

        marcink
    
vcs: do an early detection of vcs-type request....

              r1297
            
                  request.environ[VCS_TYPE_KEY] = vcs_handler.SCM

        marcink
    
core: use proper event to bootstrap pylons env....

              r1309
            
                  request.vcs_call = vcs_handler.SCM

        marcink
    
pylons: remove pylons as dependency...

              r2351
            
                  log.debug('Processing request with `%s` handler', handler)

        marcink
    
vcs: do an early detection of vcs-type request....

              r1297
            
                  return handler(request)

        marcink
    
code: added more logging, and some notes

              r1300
            
              # mark that we didn't detect an VCS, and we can skip detection later on

        marcink
    
vcs: do an early detection of vcs-type request....

              r1297
            
              request.environ[VCS_TYPE_KEY] = VCS_TYPE_SKIP

        marcink
    
project: added all source files and assets

              r1
            
        marcink
    
pylons: remove pylons as dependency...

              r2351
            
              log.debug('Processing request with `%s` handler', handler)

        dan
    
db: move Session.remove to outer wsgi layer and also add it...

              r669
            
              return handler(request)

        marcink
    
project: added all source files and assets

              r1
            
        marcink
    
core: use proper event to bootstrap pylons env....

              r1309
            
          return vcs_detection_tween

        marcink
    
project: added all source files and assets

              r1
            
        marcink
    
core: use application wide detection of invalid bytes sent via URL/GET/POST data.

              r3145
            
      def junk_encoding_detector(request):

          """

          Detect bad encoded GET params, and fail immediately with BadRequest

          """

          try:

              request.GET.get("", None)

          except UnicodeDecodeError:

              raise HTTPBadRequest("Invalid bytes in query string.")

      def bad_url_data_detector(request):

          """

          Detect invalid bytes in a path.

          """

          try:

              request.path_info

          except UnicodeDecodeError:

              raise HTTPBadRequest("Invalid bytes in URL.")

      def junk_form_data_detector(request):

          """

          Detect bad encoded POST params, and fail immediately with BadRequest

          """

          if request.method == "POST":

              try:

                  request.POST.get("", None)

              except ValueError:

                  raise HTTPBadRequest("Invalid bytes in form data.")

      def sanity_check_factory(handler, registry):

          def sanity_check(request):

              try:

                  junk_encoding_detector(request)

                  bad_url_data_detector(request)

                  junk_form_data_detector(request)

              except HTTPException as exc:

                  return exc

              return handler(request)

          return sanity_check

        marcink
    
project: added all source files and assets

              r1
            
      def includeme(config):

          config.add_subscriber('rhodecode.subscribers.add_renderer_globals',

                                'pyramid.events.BeforeRender')

        marcink
    
i18n: use consistent way of setting user language.

              r1307
            
          config.add_subscriber('rhodecode.subscribers.set_user_lang',

                                'pyramid.events.NewRequest')

        marcink
    
project: added all source files and assets

              r1
            
          config.add_subscriber('rhodecode.subscribers.add_localizer',

                                'pyramid.events.NewRequest')

        marcink
    
pyramid: moved extraction of user into a seperate subscriber.

              r1903
            
          config.add_subscriber('rhodecode.subscribers.add_request_user_context',

                                'pyramid.events.ContextFound')

        marcink
    
core: use application wide detection of invalid bytes sent via URL/GET/POST data.

              r3145
            
          config.add_tween('rhodecode.tweens.sanity_check_factory')

        marcink
    
core: use proper event to bootstrap pylons env....

              r1309
            
          config.add_tween('rhodecode.tweens.vcs_detection_tween_factory')

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

marcink project: added all source files and assets	r1	# -- coding: utf-8 --

marcink release: update copyright year to 2018	r2487	# Copyright (C) 2010-2018 RhodeCode GmbH
marcink project: added all source files and assets	r1	#
		# This program is free software: you can redistribute it and/or modify
		# it under the terms of the GNU Affero General Public License, version 3
		# (only), as published by the Free Software Foundation.
		#
		# This program is distributed in the hope that it will be useful,
		# but WITHOUT ANY WARRANTY; without even the implied warranty of
		# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
		# GNU General Public License for more details.
		#
		# You should have received a copy of the GNU Affero General Public License
		# along with this program. If not, see <http://www.gnu.org/licenses/>.
		#
		# This program is dual-licensed. If you wish to learn more about the
		# RhodeCode Enterprise Edition, including its added features, Support services,
		# and proprietary license terms, please see https://rhodecode.com/licenses/


		import logging
marcink core: use application wide detection of invalid bytes sent via URL/GET/POST data.	r3145	from pyramid.httpexceptions import HTTPException, HTTPBadRequest
marcink project: added all source files and assets	r1
marcink vcs: do an early detection of vcs-type request....	r1297	from rhodecode.lib.middleware.vcs import (
		detect_vcs_request, VCS_TYPE_KEY, VCS_TYPE_SKIP)
marcink project: added all source files and assets	r1
marcink vcs: do an early detection of vcs-type request....	r1297
marcink project: added all source files and assets	r1	log = logging.getLogger(__name__)


marcink core: use proper event to bootstrap pylons env....	r1309	def vcs_detection_tween_factory(handler, registry):
marcink vcs: do an early detection of vcs-type request....	r1297
marcink core: use proper event to bootstrap pylons env....	r1309	def vcs_detection_tween(request):
marcink project: added all source files and assets	r1	"""
marcink core: use proper event to bootstrap pylons env....	r1309	Do detection of vcs type, and save results for other layers to re-use
		this information
marcink project: added all source files and assets	r1	"""
marcink pylons: remove pylons as dependency...	r2351	vcs_server_enabled = request.registry.settings.get('vcs.server.enable')
		vcs_handler = vcs_server_enabled and detect_vcs_request(
marcink vcs: do an early detection of vcs-type request....	r1297	request.environ, request.registry.settings.get('vcs.backends'))

		if vcs_handler:
marcink code: added more logging, and some notes	r1300	# save detected VCS type for later re-use
marcink vcs: do an early detection of vcs-type request....	r1297	request.environ[VCS_TYPE_KEY] = vcs_handler.SCM
marcink core: use proper event to bootstrap pylons env....	r1309	request.vcs_call = vcs_handler.SCM
marcink pylons: remove pylons as dependency...	r2351
		log.debug('Processing request with `%s` handler', handler)
marcink vcs: do an early detection of vcs-type request....	r1297	return handler(request)

marcink code: added more logging, and some notes	r1300	# mark that we didn't detect an VCS, and we can skip detection later on
marcink vcs: do an early detection of vcs-type request....	r1297	request.environ[VCS_TYPE_KEY] = VCS_TYPE_SKIP
marcink project: added all source files and assets	r1
marcink pylons: remove pylons as dependency...	r2351	log.debug('Processing request with `%s` handler', handler)
dan db: move Session.remove to outer wsgi layer and also add it...	r669	return handler(request)
marcink project: added all source files and assets	r1
marcink core: use proper event to bootstrap pylons env....	r1309	return vcs_detection_tween
marcink project: added all source files and assets	r1

marcink core: use application wide detection of invalid bytes sent via URL/GET/POST data.	r3145	def junk_encoding_detector(request):
		"""
		Detect bad encoded GET params, and fail immediately with BadRequest
		"""

		try:
		request.GET.get("", None)
		except UnicodeDecodeError:
		raise HTTPBadRequest("Invalid bytes in query string.")


		def bad_url_data_detector(request):
		"""
		Detect invalid bytes in a path.
		"""
		try:
		request.path_info
		except UnicodeDecodeError:
		raise HTTPBadRequest("Invalid bytes in URL.")


		def junk_form_data_detector(request):
		"""
		Detect bad encoded POST params, and fail immediately with BadRequest
		"""

		if request.method == "POST":
		try:
		request.POST.get("", None)
		except ValueError:
		raise HTTPBadRequest("Invalid bytes in form data.")


		def sanity_check_factory(handler, registry):
		def sanity_check(request):
		try:
		junk_encoding_detector(request)
		bad_url_data_detector(request)
		junk_form_data_detector(request)
		except HTTPException as exc:
		return exc

		return handler(request)

		return sanity_check


marcink project: added all source files and assets	r1	def includeme(config):
		config.add_subscriber('rhodecode.subscribers.add_renderer_globals',
		'pyramid.events.BeforeRender')
marcink i18n: use consistent way of setting user language.	r1307	config.add_subscriber('rhodecode.subscribers.set_user_lang',
		'pyramid.events.NewRequest')
marcink project: added all source files and assets	r1	config.add_subscriber('rhodecode.subscribers.add_localizer',
		'pyramid.events.NewRequest')
marcink pyramid: moved extraction of user into a seperate subscriber.	r1903	config.add_subscriber('rhodecode.subscribers.add_request_user_context',
		'pyramid.events.ContextFound')
marcink core: use application wide detection of invalid bytes sent via URL/GET/POST data.	r3145	config.add_tween('rhodecode.tweens.sanity_check_factory')
marcink core: use proper event to bootstrap pylons env....	r1309	config.add_tween('rhodecode.tweens.vcs_detection_tween_factory')