upstream/ipython Files · IPython/html/services/nbconvert/handlers.py

Merge Security Pull Request: google-caja...

Merge Security Pull Request: google-caja Adds HTML sanitization. The basics: - untrusted HTML is always sanitized, with no warning (there is console logging for changes made) - markdown is always treated as untrusted - no warnings for simply excluded output (e.g. Javascript) - CSS tags and attributes are always stripped from untrusted HTML - never check whether HTML is "safe," only sanitize - add 'Trust notebook' to File menu

MinRK - - Load All Authors

File last commit:

r14044:c016ca7e


                r15674:f33c5e99

Download file

             handlers.py
        
                    25 lines
            
             | 704 B
            
                | text/x-python
            
             |
                PythonLexer
            
             / IPython / html / services / nbconvert / handlers.py
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      import json

      from tornado import web

      from ...base.handlers import IPythonHandler, json_errors

      class NbconvertRootHandler(IPythonHandler):

          SUPPORTED_METHODS = ('GET',)

          @web.authenticated

          @json_errors

          def get(self):

              try:

                  from IPython.nbconvert.exporters.export import exporter_map

              except ImportError as e:

                  raise web.HTTPError(500, "Could not import nbconvert: %s" % e)

              res = {}

              for format, exporter in exporter_map.items():

                  res[format] = info = {}

                  info['output_mimetype'] = exporter.output_mimetype

              self.finish(json.dumps(res))

      default_handlers = [

          (r"/api/nbconvert", NbconvertRootHandler),

      ]

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				import json

				from tornado import web

				from ...base.handlers import IPythonHandler, json_errors

				class NbconvertRootHandler(IPythonHandler):
				SUPPORTED_METHODS = ('GET',)

				@web.authenticated
				@json_errors
				def get(self):
				try:
				from IPython.nbconvert.exporters.export import exporter_map
				except ImportError as e:
				raise web.HTTPError(500, "Could not import nbconvert: %s" % e)
				res = {}
				for format, exporter in exporter_map.items():
				res[format] = info = {}
				info['output_mimetype'] = exporter.output_mimetype

				self.finish(json.dumps(res))

				default_handlers = [
				(r"/api/nbconvert", NbconvertRootHandler),
				]