upstream/ipython Files · IPython/html/services/security/handlers.py

Merge branch csp into 3.x...

Merge branch csp into 3.x Add APIHandler

Min RK - - Load All Authors

File last commit:

r21469:b15ba97b


                r21487:7222bd53

Download file

             handlers.py
        
                    23 lines
            
             | 707 B
            
                | text/x-python
            
             |
                PythonLexer
            
             / IPython / html / services / security / handlers.py
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        Kyle Kelley
    
Log CSP violations via report

              r19141
            
      """Tornado handlers for security logging."""

      # Copyright (c) IPython Development Team.

      # Distributed under the terms of the Modified BSD License.

      from tornado import gen, web

        Min RK
    
Add APIHandler base class...

              r21469
            
      from ...base.handlers import APIHandler, json_errors

        Kyle Kelley
    
One unified CSP report URI

              r19148
            
      from . import csp_report_uri

        Kyle Kelley
    
Handle CSP Reports

              r19140
            
        Min RK
    
Add APIHandler base class...

              r21469
            
      class CSPReportHandler(APIHandler):

        Kyle Kelley
    
Handle CSP Reports

              r19140
            
          '''Accepts a content security policy violation report'''

          @web.authenticated

          @json_errors

          def post(self):

              '''Log a content security policy violation report'''

              csp_report = self.get_json_body()

        Kyle Kelley
    
Log warning directly.

              r19156
            
              self.log.warn("Content security violation: %s",

                            self.request.body.decode('utf8', 'replace'))

        Kyle Kelley
    
Handle CSP Reports

              r19140
            
      default_handlers = [

          (csp_report_uri, CSPReportHandler)

      ]

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

Kyle Kelley Log CSP violations via report	r19141	"""Tornado handlers for security logging."""

		# Copyright (c) IPython Development Team.
		# Distributed under the terms of the Modified BSD License.

		from tornado import gen, web

Min RK Add APIHandler base class...	r21469	from ...base.handlers import APIHandler, json_errors
Kyle Kelley One unified CSP report URI	r19148	from . import csp_report_uri
Kyle Kelley Handle CSP Reports	r19140
Min RK Add APIHandler base class...	r21469	class CSPReportHandler(APIHandler):
Kyle Kelley Handle CSP Reports	r19140	'''Accepts a content security policy violation report'''
		@web.authenticated
		@json_errors
		def post(self):
		'''Log a content security policy violation report'''
		csp_report = self.get_json_body()
Kyle Kelley Log warning directly.	r19156	self.log.warn("Content security violation: %s",
		self.request.body.decode('utf8', 'replace'))
Kyle Kelley Handle CSP Reports	r19140
		default_handlers = [
		(csp_report_uri, CSPReportHandler)
		]