Mirror
/
zulip
mirror of https://github.com/zulip/zulip.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
zulip/zerver/decorator.py

697 lines
31 KiB
Python
Raw Normal View History

Enable absolute imports. See PEP 328[1] for details. This feature was introduced in Python 2.5 and will become mandatory in Python 3. [1]: http://www.python.org/dev/peps/pep-0328 (imported from commit 7444eeba8a08d5f91b94c7921848f2274979bd76)
2013-04-23 18:51:17 +02:00
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
from django.utils.translation import ugettext as _
Annotate zerver/decorator.py.
2016-06-06 01:54:58 +02:00
from django.http import HttpResponseRedirect, HttpResponse
login: Fix logging for login/register actions. Previously, Zulip's server logs would not show which user or client was involved in login or user registration actions, which made debugging more annoying than it needed to be.
2017-08-25 01:11:30 +02:00
from django.contrib.auth import REDIRECT_FIELD_NAME, login as django_login
Move view decorators into decorator.py (imported from commit 737cff552b395493f44864ac06e901b0ba17fa29)
2012-11-06 20:27:55 +01:00
from django.views.decorators.csrf import csrf_exempt
Annotate zerver/decorator.py.
2016-06-06 01:54:58 +02:00
from django.http import QueryDict, HttpResponseNotAllowed, HttpRequest
Create update_subscriptions_backend to allow mass mutation of user subs. This includes a process_patch_as_post decorator which enables this view to be invoked as a PATCH on an object. Hopefully this decorator can go away once POST values are correctly parsed in Django for PATCH verb invocations. (imported from commit 6cf9d69cfb9dea5354ea37408566146757b5be54)
2013-03-21 20:18:44 +01:00
from django.http.multipartparser import MultiPartParser
subdomains: Simplify out check_subdomain from an uncommon use. This also replaces an implicit use of "" for Realm.SUBDOMAIN_FOR_ROOT_DOMAIN.
2017-10-20 02:52:15 +02:00
from zerver.models import Realm, UserProfile, get_client, get_user_profile_by_api_key
Fix trello integration by adding handling HEAD confirmation request. Previously, we rejected the HEAD requests that the trello integration uses to check if the server accepts the integration. Add decorator for returning 200 status code if request is HEAD. Fixes: #2311.
2016-11-15 17:20:22 +01:00
from zerver.lib.response import json_error, json_unauthorized, json_success
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
from django.shortcuts import resolve_url
from django.utils.decorators import available_attrs
Replace timezone.now with timezone_now.
2017-04-15 04:03:56 +02:00
from django.utils.timezone import now as timezone_now
Create and use @internal_notify_view Resolves #288. (imported from commit 982bf5651a34fa66cd81c882ed0351829eaadf86)
2012-11-28 05:37:13 +01:00
from django.conf import settings
[manual] Rename Django app from zephyr to zerver. This needs to be deployed to both staging and prod at the same off-peak time (and the schema migration run). At the time it is deployed, we need to make a few changes directly in the database: (1) UPDATE django_content_type set app_label='zerver' where app_label='zephyr'; (2) UPDATE south_migrationhistory set app_name='zerver' where app_name='zephyr'; (imported from commit eb3fd719571740189514ef0b884738cb30df1320)
2013-07-29 23:03:31 +02:00
from zerver.lib.queue import queue_json_publish
subdomains: Refactor check_subdomain to a clearer interface. Now that every call site of check_subdomain produces its second argument in exactly the same way, push that shared bit of logic into a new wrapper for check_subdomain. Also give that new function a name that says more specifically what it's checking -- which I think is easier to articulate for this interface than for that of check_subdomain.
2017-10-20 02:53:24 +02:00
from zerver.lib.subdomains import get_subdomain, user_matches_subdomain
decorator.py: Add to_utc_datetime converter function.
2016-12-22 04:46:31 +01:00
from zerver.lib.timestamp import datetime_to_timestamp, timestamp_to_datetime
subdomains: Extract zerver.lib.subdomains library. These never really belonged with the rest of zerver.lib.utils.py, and having a separate library makes it easier to enforce full test coverage.
2017-10-19 07:21:57 +02:00
from zerver.lib.utils import statsd, is_remote_server
push_notifications: Fix error message for unregistered bouncer. Previously, we were just returning a JSON error to the client, when it was a server problem. Fixes #6639.
2017-10-12 03:02:35 +02:00
from zerver.lib.exceptions import RateLimited, JsonableError, ErrorCode
[manual] Rename Django app from zephyr to zerver. This needs to be deployed to both staging and prod at the same off-peak time (and the schema migration run). At the time it is deployed, we need to make a few changes directly in the database: (1) UPDATE django_content_type set app_label='zerver' where app_label='zephyr'; (2) UPDATE south_migrationhistory set app_name='zerver' where app_name='zephyr'; (imported from commit eb3fd719571740189514ef0b884738cb30df1320)
2013-07-29 23:03:31 +02:00
from zerver.lib.rate_limiter import incr_ratelimit, is_ratelimited, \
rate_limited: Upgrade is_ratelimited to generic API.
2017-07-28 06:45:53 +02:00
api_calls_left, RateLimitedUser
Move REQ and friends to their own module.
2016-05-29 16:52:55 +02:00
from zerver.lib.request import REQ, has_request_variables, JsonableError, RequestVariableMissingError
Annotate zerver/decorator.py.
2016-06-06 01:54:58 +02:00
from django.core.handlers import base
[schema] Support for authenticating Deployments via the API. Here we introduce a new Django app, zilencer. The intent is to not have this app enabled on LOCALSERVER instances, and for it to grow to include all the functionality we want to have in our central server that isn't relevant for local deployments. Currently we have to modify functions in zerver/* to match; in the future, it would be cool to have the relevant shared code broken out into a separate library. This commit inclues both the migration to create the models as well as a data migration that (for non-LOCALSERVER) creates a single default Deployment for zulip.com. To apply this migration to your system, run: ./manage.py migrate zilencer (imported from commit 86d5497ac120e03fa7f298a9cc08b192d5939b43)
2013-10-17 16:33:04 +02:00
Use functools.wraps on the functions returned by our decorators This lets Django report the correct view name in errors (imported from commit b21347e7af39cda439125355f99f4fc63fc3bd2f)
2012-11-02 00:23:26 +01:00
from functools import wraps
Implement generic rest_dispatch method for new API. (imported from commit 912ee803db03098f195d18648ab98401915fead6)
2013-03-21 20:15:27 +01:00
import base64
decorator.py: Add to_utc_datetime converter function.
2016-12-22 04:46:31 +01:00
import datetime
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
import ujson
logger: Add new create_logger abstraction to simplify logging. This deduplicates a ton of Python logger-creation code to use a single standard implementation, so we can avoid copy-paste problems.
2017-08-25 15:25:00 +02:00
import logging
zerver/decorator.py: Use BytesIO to read request. Use BytesIO instead of StringIO to get a file-like object on the request's body.
2016-07-15 07:42:54 +02:00
from io import BytesIO
Change urllib import to be Python 3-specific.
2017-11-05 05:30:31 +01:00
import urllib
Add a decorator for sending count information to statsd (imported from commit 5263e39d8c235ac56517f0a69a1b1337e6f8942a)
2013-04-16 22:52:32 +02:00
Add cachify decorator.
2017-10-31 00:31:47 +01:00
from typing import Union, Any, Callable, Sequence, Dict, Optional, TypeVar, Text, Tuple, cast
logger: Add new create_logger abstraction to simplify logging. This deduplicates a ton of Python logger-creation code to use a single standard implementation, so we can avoid copy-paste problems.
2017-08-25 15:25:00 +02:00
from zerver.lib.logging_util import create_logger
Annotate zerver/decorator.py.
2016-06-06 01:54:58 +02:00
Add support infrastructure for push notification bouncer service. This is an incomplete cleaned-up continuation of Lisa Neigut's push notification bouncer work. It supports registration and deregistration of individual push tokens with a central push notification bouncer server. It still is missing a few things before we can complete this effort: * A registration form for server admins to configure their server for this service, with tests. * Code (and tests) for actually bouncing the notifications.
2016-10-27 23:55:31 +02:00
# This is a hack to ensure that RemoteZulipServer always exists even
# if Zilencer isn't enabled.
if settings.ZILENCER_ENABLED:
from zilencer.models import get_remote_server_by_uuid, RemoteZulipServer
else:
from mock import Mock
get_remote_server_by_uuid = Mock()
pep8: Add compliance with rule E261 decorator.py.
2017-06-04 11:52:09 +02:00
RemoteZulipServer = Mock() # type: ignore # https://github.com/JukkaL/mypy/issues/1188
Add support infrastructure for push notification bouncer service. This is an incomplete cleaned-up continuation of Lisa Neigut's push notification bouncer work. It supports registration and deregistration of individual push tokens with a central push notification bouncer server. It still is missing a few things before we can complete this effort: * A registration form for server admins to configure their server for this service, with tests. * Code (and tests) for actually bouncing the notifications.
2016-10-27 23:55:31 +02:00
Improve annotations of decorators.
2016-07-22 15:10:19 +02:00
ViewFuncT = TypeVar('ViewFuncT', bound=Callable[..., HttpResponse])
mypy: Improve constraint on return types in statsd_increment decorator.
2017-10-29 06:28:41 +01:00
ReturnT = TypeVar('ReturnT')
Improve annotations of decorators.
2016-07-22 15:10:19 +02:00
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
## logger setup
logging: Eliminate log_level from create_logger. Because calls to `create_logger` generally run after settings are configured, these would override what we have in `settings.LOGGING` -- which in particular defeated any attempt to set log levels in `test_settings.py`. Move all of these settings to the same place in `settings.py`, so they can be overridden in a uniform way.
2017-12-13 01:22:10 +01:00
webhook_logger = create_logger("zulip.zerver.webhooks", settings.API_KEY_ONLY_WEBHOOK_LOG_PATH)
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
zerver: Remove inheritance from object.
2017-11-05 11:53:59 +01:00
class _RespondAsynchronously:
Return a special value to initiate longpolling Fixes #261. (imported from commit dd0312c3574c9ca924ab76edcb2fb6c03085be32)
2012-11-28 06:16:28 +01:00
pass
Implement long polling using Tornado. (imported from commit 4385304b27d7fe55a57a23133cd214fe8fc33482)
2012-08-28 22:56:21 +02:00
Return a special value to initiate longpolling Fixes #261. (imported from commit dd0312c3574c9ca924ab76edcb2fb6c03085be32)
2012-11-28 06:16:28 +01:00
# Return RespondAsynchronously from an @asynchronous view if the
Rename humbug_finish to zulip_finish. (imported from commit a73ef9302d16a4068c7d050d4882d2eba699488d)
2013-08-06 22:21:12 +02:00
# response will be provided later by calling handler.zulip_finish(),
Use humbug_finish() wrapper for finish() with required arguments. I think this is a little cleaner than the previous approach. (imported from commit fa6233721f43c94003de643d7801a88a156affd2)
2013-03-15 17:28:03 +01:00
# or has already been provided this way. We use this for longpolling
# mode.
Return a special value to initiate longpolling Fixes #261. (imported from commit dd0312c3574c9ca924ab76edcb2fb6c03085be32)
2012-11-28 06:16:28 +01:00
RespondAsynchronously = _RespondAsynchronously()
Implement long polling using Tornado. (imported from commit 4385304b27d7fe55a57a23133cd214fe8fc33482)
2012-08-28 22:56:21 +02:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
AsyncWrapperT = Callable[..., Union[HttpResponse, _RespondAsynchronously]]
def asynchronous(method: Callable[..., Union[HttpResponse, _RespondAsynchronously]]) -> AsyncWrapperT:
Annotate zerver/decorator.py.
2016-06-06 01:54:58 +02:00
# TODO: this should be the correct annotation when mypy gets fixed: type:
lint: Wrap many very long lines in the Python codebase. This decreases the maximum line length in our Python codebase to 130.
2017-10-27 02:31:10 +02:00
# (Callable[[HttpRequest, base.BaseHandler, Sequence[Any], Dict[str, Any]],
# Union[HttpResponse, _RespondAsynchronously]]) ->
Annotate zerver/decorator.py.
2016-06-06 01:54:58 +02:00
# Callable[[HttpRequest, Sequence[Any], Dict[str, Any]], Union[HttpResponse, _RespondAsynchronously]]
# TODO: see https://github.com/python/mypy/issues/1655
Use functools.wraps on the functions returned by our decorators This lets Django report the correct view name in errors (imported from commit b21347e7af39cda439125355f99f4fc63fc3bd2f)
2012-11-02 00:23:26 +01:00
@wraps(method)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def wrapper(request: HttpRequest, *args: Any,
**kwargs: Any) -> Union[HttpResponse, _RespondAsynchronously]:
Return a special value to initiate longpolling Fixes #261. (imported from commit dd0312c3574c9ca924ab76edcb2fb6c03085be32)
2012-11-28 06:16:28 +01:00
return method(request, handler=request._tornado_handler, *args, **kwargs)
Copy the csrf_exempt attribute in @asynchronous Needed for @csrf_exempt to work. (imported from commit 563ab11b0d26262511e9a6d9cc2735b0b835a391)
2012-10-27 23:56:01 +02:00
if getattr(method, 'csrf_exempt', False):
pep8: Add compliance with rule E261 decorator.py.
2017-06-04 11:52:09 +02:00
wrapper.csrf_exempt = True # type: ignore # https://github.com/JukkaL/mypy/issues/1170
Implement long polling using Tornado. (imported from commit 4385304b27d7fe55a57a23133cd214fe8fc33482)
2012-08-28 22:56:21 +02:00
return wrapper
Move view decorators into decorator.py (imported from commit 737cff552b395493f44864ac06e901b0ba17fa29)
2012-11-06 20:27:55 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def cachify(method: Callable[..., ReturnT]) -> Callable[..., ReturnT]:
mypy: Specify generic type parameters in cachify decorator. Use of the decorator in event_queue.py suggests concrete return type, for application of copy() function.
2017-11-08 05:43:05 +01:00
dct = {} # type: Dict[Tuple[Any, ...], ReturnT]
Add cachify decorator.
2017-10-31 00:31:47 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def cache_wrapper(*args: Any) -> ReturnT:
Add cachify decorator.
2017-10-31 00:31:47 +01:00
tup = tuple(args)
if tup in dct:
return dct[tup]
result = method(*args)
dct[tup] = result
return result
return cache_wrapper
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def update_user_activity(request: HttpRequest, user_profile: UserProfile,
query: Optional[str]) -> None:
Centralize dispatch logic for which queue processor to use. Previous we had around 4 copies of the logic for deciding whether we should publish data via a SimpleQueueClient queue, a TornadoQueueClient queue, or to directly handle the operation, which resulted in their getting out of sync and buggy (see e.g. the previous commit). We need to add a lock around adding things to the queue to work around a bug with pika's BlockingConnection. I should note that the previous logic in some places had a bunch of tests of the form "elif settings.TEST_SUITE" for doing the work that would have been done by the queue processor directly; these should have just been "else" clauses -- since we generally want that code to run on development environments whether or not the test suite is currently running. (imported from commit 16bdbed4fff04b1bda6fde3b16bee7359917720b)
2013-03-25 20:37:00 +01:00
# update_active_status also pushes to rabbitmq, and it seems
# redundant to log that here as well.
Replace /json/update_active_status with REST style route.
2016-04-03 07:58:06 +02:00
if request.META["PATH_INFO"] == '/json/users/me/presence':
Centralize dispatch logic for which queue processor to use. Previous we had around 4 copies of the logic for deciding whether we should publish data via a SimpleQueueClient queue, a TornadoQueueClient queue, or to directly handle the operation, which resulted in their getting out of sync and buggy (see e.g. the previous commit). We need to add a lock around adding things to the queue to work around a bug with pika's BlockingConnection. I should note that the previous logic in some places had a bunch of tests of the form "elif settings.TEST_SUITE" for doing the work that would have been done by the queue processor directly; these should have just been "else" clauses -- since we generally want that code to run on development environments whether or not the test suite is currently running. (imported from commit 16bdbed4fff04b1bda6fde3b16bee7359917720b)
2013-03-25 20:37:00 +01:00
return
Support request._query in update_user_activity(). If request._query is set in the call to update_user_activity(), we will use that instead of request.META['PATH_INFO'] for the query field of the UserActivity row we write. (imported from commit fcee30098e1c7c5cb4195a1e5905fc7b88af804f)
2013-10-03 19:48:03 +02:00
user_activity: Allow passing the `query` more directly. This won't work for all call paths without deeper refactoring, but for at least some paths we can make this more direct -- function arguments, rather than mutating a request attribute -- so it's easier to see how the data is flowing.
2017-11-03 22:44:59 +01:00
if query is not None:
pass
elif hasattr(request, '_query'):
Support request._query in update_user_activity(). If request._query is set in the call to update_user_activity(), we will use that instead of request.META['PATH_INFO'] for the query field of the UserActivity row we write. (imported from commit fcee30098e1c7c5cb4195a1e5905fc7b88af804f)
2013-10-03 19:48:03 +02:00
query = request._query
else:
query = request.META['PATH_INFO']
pep8: Fix E225 pep8 violations.
2016-11-28 23:29:01 +01:00
event = {'query': query,
'user_profile_id': user_profile.id,
Replace timezone.now with timezone_now.
2017-04-15 04:03:56 +02:00
'time': datetime_to_timestamp(timezone_now()),
pep8: Fix E225 pep8 violations.
2016-11-28 23:29:01 +01:00
'client': request.client.name}
Centralize dispatch logic for which queue processor to use. Previous we had around 4 copies of the logic for deciding whether we should publish data via a SimpleQueueClient queue, a TornadoQueueClient queue, or to directly handle the operation, which resulted in their getting out of sync and buggy (see e.g. the previous commit). We need to add a lock around adding things to the queue to work around a bug with pika's BlockingConnection. I should note that the previous logic in some places had a bunch of tests of the form "elif settings.TEST_SUITE" for doing the work that would have been done by the queue processor directly; these should have just been "else" clauses -- since we generally want that code to run on development environments whether or not the test suite is currently running. (imported from commit 16bdbed4fff04b1bda6fde3b16bee7359917720b)
2013-03-25 20:37:00 +01:00
queue_json_publish("user_activity", event, lambda event: None)
[manual] Use rabbitmq queue to process UserActivity. Before this is deployed, we need to install rabbitmq and pika on the target server (see the puppet part of this commit for how). When this is deployed, we need to start the new user activity bot: ./manage.py process_user_activity in the screen session on the relevant server, or user_activity logs won't be processed (which will eventually result in all users getting notifications about how their mirrors are out of date). (imported from commit 44d605aca0290bef2c94fb99267e15e26b21673b)
2013-01-11 21:16:42 +01:00
socket: Build a real Request object to send through our full stack, including middleware One quirk here is that the Request object is built in the message_sender worker, not Tornado. This means that the request time only counts time taken for the actual sending and does not account for socket overhead. For this reason, I've left the fake logging in for now so we can compare the two times. (imported from commit b0c60a3017527a328cadf11ba68166e59cf23ddf)
2013-11-08 02:02:48 +01:00
# Based on django.views.decorators.http.require_http_methods
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def require_post(func: ViewFuncT) -> ViewFuncT:
socket: Build a real Request object to send through our full stack, including middleware One quirk here is that the Request object is built in the message_sender worker, not Tornado. This means that the request time only counts time taken for the actual sending and does not account for socket overhead. For this reason, I've left the fake logging in for now so we can compare the two times. (imported from commit b0c60a3017527a328cadf11ba68166e59cf23ddf)
2013-11-08 02:02:48 +01:00
@wraps(func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def wrapper(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
lint: Clean up W503 PEP-8 warning.
2017-01-24 05:50:04 +01:00
if (request.method != "POST" and
not (request.method == "SOCKET" and
request.META['zulip.emulated_method'] == "POST")):
socket: Build a real Request object to send through our full stack, including middleware One quirk here is that the Request object is built in the message_sender worker, not Tornado. This means that the request time only counts time taken for the actual sending and does not account for socket overhead. For this reason, I've left the fake logging in for now so we can compare the two times. (imported from commit b0c60a3017527a328cadf11ba68166e59cf23ddf)
2013-11-08 02:02:48 +01:00
if request.method == "SOCKET":
err_method = "SOCKET/%s" % (request.META['zulip.emulated_method'],)
else:
err_method = request.method
logging.warning('Method Not Allowed (%s): %s', err_method, request.path,
extra={'status_code': 405, 'request': request})
return HttpResponseNotAllowed(["POST"])
return func(request, *args, **kwargs)
pep8: Add compliance with rule E261 decorator.py.
2017-06-04 11:52:09 +02:00
return wrapper # type: ignore # https://github.com/python/mypy/issues/1927
Move view decorators into decorator.py (imported from commit 737cff552b395493f44864ac06e901b0ba17fa29)
2012-11-06 20:27:55 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def require_realm_admin(func: ViewFuncT) -> ViewFuncT:
Add a decorator for checking whether a user is a realm administrator. (imported from commit 8ba2c54ccd0a92e8c7ab8f1a8873e581f6cadd51)
2013-12-09 22:12:18 +01:00
@wraps(func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def wrapper(request: HttpRequest, user_profile: UserProfile, *args: Any, **kwargs: Any) -> HttpResponse:
Replace use of django-guardian with fields on UserProfile. As documented in https://github.com/zulip/zulip/issues/441, Guardian has quite poor performance, and in fact almost 50% of the time spent running the Zulip backend test suite on my laptop was inside Guardian. As part of this migration, we also clean up the old API_SUPER_USERS variable used to mark EMAIL_GATEWAY_BOT as an API super user; now that permission is managed entirely via the database. When rebasing past this commit, developers will need to do a `manage.py migrate` in order to apply the migration changes before the server will run again. We can't yet remove Guardian from INSTALLED_APPS, requirements.txt, etc. in this release, because otherwise the reverse migration won't work. Fixes #441.
2016-02-08 03:59:38 +01:00
if not user_profile.is_realm_admin:
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
raise JsonableError(_("Must be a realm administrator"))
Add a decorator for checking whether a user is a realm administrator. (imported from commit 8ba2c54ccd0a92e8c7ab8f1a8873e581f6cadd51)
2013-12-09 22:12:18 +01:00
return func(request, user_profile, *args, **kwargs)
pep8: Add compliance with rule E261 decorator.py.
2017-06-04 11:52:09 +02:00
return wrapper # type: ignore # https://github.com/python/mypy/issues/1927
Add a decorator for checking whether a user is a realm administrator. (imported from commit 8ba2c54ccd0a92e8c7ab8f1a8873e581f6cadd51)
2013-12-09 22:12:18 +01:00
api: Extract client strings from UserAgent. (imported from commit 22468dd0eb06bb52ed7273f3067ae3e2461ee0a5)
2013-12-19 18:10:30 +01:00
from zerver.lib.user_agent import parse_user_agent
Fix dozens of unnecessary memcached queries when importing views.py. Previously, every function which had the @json_* decorators on it would independently call get_client when views.py was imported; we resolve this using a small bit of in-memory caching, which is safe since Client objects are immutable. This also more generally cleans up the code path to be more common between the API and JSON views. (imported from commit 674ea327fc4cb5fa982a75e388f0b604bae66567)
2013-06-27 20:21:21 +02:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def get_client_name(request: HttpRequest, is_browser_view: bool) -> Text:
api: Extract client strings from UserAgent. (imported from commit 22468dd0eb06bb52ed7273f3067ae3e2461ee0a5)
2013-12-19 18:10:30 +01:00
# If the API request specified a client in the request content,
# that has priority. Otherwise, extract the client from the
# User-Agent.
Django 1.10: Deprecate request.REQUEST.
2016-11-03 13:00:18 +01:00
if 'client' in request.GET:
return request.GET['client']
decorator: Improve user agent parsing.
2017-02-11 05:26:10 +01:00
if 'client' in request.POST:
Django 1.10: Deprecate request.REQUEST.
2016-11-03 13:00:18 +01:00
return request.POST['client']
decorator: Improve user agent parsing.
2017-02-11 05:26:10 +01:00
if "HTTP_USER_AGENT" in request.META:
api: Extract client strings from UserAgent. (imported from commit 22468dd0eb06bb52ed7273f3067ae3e2461ee0a5)
2013-12-19 18:10:30 +01:00
user_agent = parse_user_agent(request.META["HTTP_USER_AGENT"])
decorator: Improve user agent parsing.
2017-02-11 05:26:10 +01:00
else:
user_agent = None
if user_agent is not None:
api: Extract client strings from UserAgent. (imported from commit 22468dd0eb06bb52ed7273f3067ae3e2461ee0a5)
2013-12-19 18:10:30 +01:00
# We could check for a browser's name being "Mozilla", but
# e.g. Opera and MobileSafari don't set that, and it seems
decorator: Fix is_browser_view handling of e.g. mobile apps. We may end up with some endpoints that could be the browser or the mobile apps, and we want the right default to happen here.
2017-08-25 01:21:05 +02:00
# more robust to just key off whether it was a browser view
if is_browser_view and not user_agent["name"].startswith("Zulip"):
# Avoid changing the client string for browsers, but let
# the Zulip desktop and mobile apps be themselves.
DRY up process_client() by extracting get_client_name(). Avoid repeating request.client = get_client(foo) 5 times, and decouple the logic for determining the client name from how we represent the client as an ORM object and piggyback it on the Django request. (imported from commit efdf81cbaf9599a5606da18e06d7ffe9b88aaf6f)
2014-01-08 17:36:54 +01:00
return "website"
api: Extract client strings from UserAgent. (imported from commit 22468dd0eb06bb52ed7273f3067ae3e2461ee0a5)
2013-12-19 18:10:30 +01:00
else:
DRY up process_client() by extracting get_client_name(). Avoid repeating request.client = get_client(foo) 5 times, and decouple the logic for determining the client name from how we represent the client as an ORM object and piggyback it on the Django request. (imported from commit efdf81cbaf9599a5606da18e06d7ffe9b88aaf6f)
2014-01-08 17:36:54 +01:00
return user_agent["name"]
Refactor process_client() to avoid double negative. The "else" branch used to execute when it was not the case case that HTTP_USER_AGENT was not in request.META. Now it's more readable. (imported from commit ea0664e89d8b3d94cd1c0f8667047461b149ba41)
2014-01-08 17:25:49 +01:00
else:
# In the future, we will require setting USER_AGENT, but for
# now we just want to tag these requests so we can review them
# in logs and figure out the extent of the problem
decorator: Rename is_json_view to is_browser_view. This improves clarity, now that we're planning to start logging in the login/registration pages, which aren't browser views.
2017-08-25 01:18:46 +02:00
if is_browser_view:
DRY up process_client() by extracting get_client_name(). Avoid repeating request.client = get_client(foo) 5 times, and decouple the logic for determining the client name from how we represent the client as an ORM object and piggyback it on the Django request. (imported from commit efdf81cbaf9599a5606da18e06d7ffe9b88aaf6f)
2014-01-08 17:36:54 +01:00
return "website"
Refactor process_client() to avoid double negative. The "else" branch used to execute when it was not the case case that HTTP_USER_AGENT was not in request.META. Now it's more readable. (imported from commit ea0664e89d8b3d94cd1c0f8667047461b149ba41)
2014-01-08 17:25:49 +01:00
else:
pep8: Fix E111 violations
2016-12-01 06:20:27 +01:00
return "Unspecified"
Factor out client extraction and API key validation from authenticated_api_view (imported from commit b8e3fc2f956b4de07ea0fe9b6f596dd353013935)
2013-03-21 19:21:46 +01:00
user_activity: Allow passing the `query` more directly. This won't work for all call paths without deeper refactoring, but for at least some paths we can make this more direct -- function arguments, rather than mutating a request attribute -- so it's easier to see how the data is flowing.
2017-11-03 22:44:59 +01:00
def process_client(request, user_profile, *, is_browser_view=False, client_name=None,
remote_server_request=False, query=None):
# type: (HttpRequest, UserProfile, bool, Optional[Text], bool, Optional[Text]) -> None
Move getting client to api_key_only_webhook_view. This decreases the amount of convention developers need to understand in order to write a new webhook integration.
2016-05-12 22:49:36 +02:00
if client_name is None:
decorator: Rename is_json_view to is_browser_view. This improves clarity, now that we're planning to start logging in the login/registration pages, which aren't browser views.
2017-08-25 01:18:46 +02:00
client_name = get_client_name(request, is_browser_view)
Replace "ios" with "ZulipiOS" in process_client(). (imported from commit 72b4f5ded6dbb86fe67884d6fe8da1ee2146c4c5)
2014-01-08 17:52:36 +01:00
DRY up process_client() by extracting get_client_name(). Avoid repeating request.client = get_client(foo) 5 times, and decouple the logic for determining the client name from how we represent the client as an ORM object and piggyback it on the Django request. (imported from commit efdf81cbaf9599a5606da18e06d7ffe9b88aaf6f)
2014-01-08 17:36:54 +01:00
request.client = get_client(client_name)
Avoid UserActivity logging for RemoteZulipServer requests. We had a somewhat messy bug where we were sending invalid entries to the UserActivity queue when using the push notification bouncer.
2017-05-16 02:09:31 +02:00
if not remote_server_request:
user_activity: Allow passing the `query` more directly. This won't work for all call paths without deeper refactoring, but for at least some paths we can make this more direct -- function arguments, rather than mutating a request attribute -- so it's easier to see how the data is flowing.
2017-11-03 22:44:59 +01:00
update_user_activity(request, user_profile, query)
Factor out client extraction and API key validation from authenticated_api_view (imported from commit b8e3fc2f956b4de07ea0fe9b6f596dd353013935)
2013-03-21 19:21:46 +01:00
push_notifications: Fix error message for unregistered bouncer. Previously, we were just returning a JSON error to the client, when it was a server problem. Fixes #6639.
2017-10-12 03:02:35 +02:00
class InvalidZulipServerError(JsonableError):
code = ErrorCode.INVALID_ZULIP_SERVER
data_fields = ['role']
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def __init__(self, role: Text) -> None:
push_notifications: Fix error message for unregistered bouncer. Previously, we were just returning a JSON error to the client, when it was a server problem. Fixes #6639.
2017-10-12 03:02:35 +02:00
self.role = role # type: Text
@staticmethod
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def msg_format() -> Text:
push_notifications: Fix error message for unregistered bouncer. Previously, we were just returning a JSON error to the client, when it was a server problem. Fixes #6639.
2017-10-12 03:02:35 +02:00
return "Zulip server auth failure: {role} is not registered"
class InvalidZulipServerKeyError(JsonableError):
@staticmethod
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def msg_format() -> Text:
push_notifications: Fix error message for unregistered bouncer. Previously, we were just returning a JSON error to the client, when it was a server problem. Fixes #6639.
2017-10-12 03:02:35 +02:00
return "Zulip server auth failure: key does not match role {role}"
decorator: Use validate_api_key in api_key_only_webhook_view code path. This completes the effort to deduplicate the main code of our authentication decorators.
2017-08-15 01:21:46 +02:00
def validate_api_key(request, role, api_key, is_webhook=False,
client_name=None):
# type: (HttpRequest, Optional[Text], Text, bool, Optional[Text]) -> Union[UserProfile, RemoteZulipServer]
Strip whitespace from email/key during API auth Trac #1681 (imported from commit 4c97bfea052d2da7673ba5a9520f7ddc7515d975)
2013-08-21 00:36:45 +02:00
# Remove whitespace to protect users from trivial errors.
decorator: Use validate_api_key in api_key_only_webhook_view code path. This completes the effort to deduplicate the main code of our authentication decorators.
2017-08-15 01:21:46 +02:00
api_key = api_key.strip()
if role is not None:
role = role.strip()
Strip whitespace from email/key during API auth Trac #1681 (imported from commit 4c97bfea052d2da7673ba5a9520f7ddc7515d975)
2013-08-21 00:36:45 +02:00
decorator: Use validate_api_key in api_key_only_webhook_view code path. This completes the effort to deduplicate the main code of our authentication decorators.
2017-08-15 01:21:46 +02:00
if settings.ZILENCER_ENABLED and role is not None and is_remote_server(role):
Add support infrastructure for push notification bouncer service. This is an incomplete cleaned-up continuation of Lisa Neigut's push notification bouncer work. It supports registration and deregistration of individual push tokens with a central push notification bouncer server. It still is missing a few things before we can complete this effort: * A registration form for server admins to configure their server for this service, with tests. * Code (and tests) for actually bouncing the notifications.
2016-10-27 23:55:31 +02:00
try:
decorator: Clean up 'profile' variable reuse.
2017-08-15 00:41:04 +02:00
remote_server = get_remote_server_by_uuid(role)
Add support infrastructure for push notification bouncer service. This is an incomplete cleaned-up continuation of Lisa Neigut's push notification bouncer work. It supports registration and deregistration of individual push tokens with a central push notification bouncer server. It still is missing a few things before we can complete this effort: * A registration form for server admins to configure their server for this service, with tests. * Code (and tests) for actually bouncing the notifications.
2016-10-27 23:55:31 +02:00
except RemoteZulipServer.DoesNotExist:
push_notifications: Fix error message for unregistered bouncer. Previously, we were just returning a JSON error to the client, when it was a server problem. Fixes #6639.
2017-10-12 03:02:35 +02:00
raise InvalidZulipServerError(role)
decorator: Clean up 'profile' variable reuse.
2017-08-15 00:41:04 +02:00
if api_key != remote_server.api_key:
push_notifications: Fix error message for unregistered bouncer. Previously, we were just returning a JSON error to the client, when it was a server problem. Fixes #6639.
2017-10-12 03:02:35 +02:00
raise InvalidZulipServerKeyError(role)
decorator: Reorganize remote Zulip server code into one block.
2017-08-15 00:39:36 +02:00
subdomains: Simplify out check_subdomain from an uncommon use. This also replaces an implicit use of "" for Realm.SUBDOMAIN_FOR_ROOT_DOMAIN.
2017-10-20 02:52:15 +02:00
if get_subdomain(request) != Realm.SUBDOMAIN_FOR_ROOT_DOMAIN:
push_notifications: Fix error message for unregistered bouncer. Previously, we were just returning a JSON error to the client, when it was a server problem. Fixes #6639.
2017-10-12 03:02:35 +02:00
raise JsonableError(_("Invalid subdomain for push notifications bouncer"))
decorator: Fix request.user handling of remote servers. The refactor in b46af40bd385f13e3731987832f5dd0eda649206 didn't correctly translate the code for managing request.user and request._email, resulting in requests for the push notification bouncer being rejected with this exception: AttributeError: 'AnonymousUser' object has no attribute 'rate_limits'
2017-08-16 06:04:19 +02:00
request.user = remote_server
request._email = "zulip-server:" + role
decorator: Refactor more code into validate_api_key.
2017-08-15 00:59:19 +02:00
remote_server.rate_limits = ""
process_client(request, remote_server, remote_server_request=True)
decorator: Clean up 'profile' variable reuse.
2017-08-15 00:41:04 +02:00
return remote_server
decorator: Simplify control flow in validate_api_key. This technically changes the behavior in the case that !settings.ZILENCER_ENABLED but is_remote_zulip_server(role). Fortunately, that case is mostly irrelevant (in that remote zulip servers is a Zilencer feature). The old behavior was also probably slightly wrong, in that you'd get a zilencer-specific error message in that case.
2017-08-15 00:40:20 +02:00
validate_api_key: Stop using 'profile' local variable.
2017-08-15 00:59:57 +02:00
user_profile = access_user_by_api_key(request, api_key, email=role)
if user_profile.is_incoming_webhook and not is_webhook:
decorator: Fix check for incoming webhook bots and move later The check itself was correct, but the error message was in fact the opposite of what this check is for. In other words, the only things these users can do is post messages, and the error message when you tried to do something else was to tell you that the user can't post messages.
2017-08-15 00:44:34 +02:00
raise JsonableError(_("This API is not available to incoming webhook bots."))
decorator: Refactor more code into validate_api_key.
2017-08-15 00:59:19 +02:00
request.user = user_profile
request._email = user_profile.email
decorator: Use validate_api_key in api_key_only_webhook_view code path. This completes the effort to deduplicate the main code of our authentication decorators.
2017-08-15 01:21:46 +02:00
process_client(request, user_profile, client_name=client_name)
decorator: Refactor more code into validate_api_key.
2017-08-15 00:59:19 +02:00
validate_api_key: Stop using 'profile' local variable.
2017-08-15 00:59:57 +02:00
return user_profile
Factor out client extraction and API key validation from authenticated_api_view (imported from commit b8e3fc2f956b4de07ea0fe9b6f596dd353013935)
2013-03-21 19:21:46 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def validate_account_and_subdomain(request: HttpRequest, user_profile: UserProfile) -> None:
decorators: Extract access_user_by_api_key.
2017-08-15 00:28:39 +02:00
if not user_profile.is_active:
raise JsonableError(_("Account not active"))
if user_profile.realm.deactivated:
raise JsonableError(_("Realm for account has been deactivated"))
decorator: Fix SOCKET requests being broken with REALMS_HAVE_SUBDOMAINS. This code path broken in a recent refactoring meant that sending messages via websockets didn't work if REALMS_HAVE_SUBDOMAINS.
2017-08-16 04:14:11 +02:00
# Either the subdomain matches, or processing a websockets message
# in the message_sender worker (which will have already had the
# subdomain validated), or we're accessing Tornado from and to
# localhost (aka spoofing a request as the user).
subdomains: Refactor check_subdomain to a clearer interface. Now that every call site of check_subdomain produces its second argument in exactly the same way, push that shared bit of logic into a new wrapper for check_subdomain. Also give that new function a name that says more specifically what it's checking -- which I think is easier to articulate for this interface than for that of check_subdomain.
2017-10-20 02:53:24 +02:00
if (not user_matches_subdomain(get_subdomain(request), user_profile) and
decorator: Fix SOCKET requests being broken with REALMS_HAVE_SUBDOMAINS. This code path broken in a recent refactoring meant that sending messages via websockets didn't work if REALMS_HAVE_SUBDOMAINS.
2017-08-16 04:14:11 +02:00
not (request.method == "SOCKET" and
request.META['SERVER_NAME'] == "127.0.0.1") and
decorator: Add localhost/Tornado hack to access_user_by_api_key. This should make it possible to share that code with other code paths.
2017-08-15 00:42:16 +02:00
not (settings.RUNNING_INSIDE_TORNADO and
request.META["SERVER_NAME"] == "127.0.0.1" and
request.META["REMOTE_ADDR"] == "127.0.0.1")):
decorator: Improve wrong-subdomain logging output. Often, it's helpful to see both values in errors.
2017-10-02 22:12:04 +02:00
logging.warning("User %s (%s) attempted to access API on wrong subdomain (%s)" % (
user_profile.email, user_profile.realm.subdomain, get_subdomain(request)))
decorators: Extract access_user_by_api_key.
2017-08-15 00:28:39 +02:00
raise JsonableError(_("Account is not associated with this subdomain"))
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def access_user_by_api_key(request: HttpRequest, api_key: Text, email: Optional[Text]=None) -> UserProfile:
decorator: Extract validate_account_and_subdomain and deduplicate. This fixes the significant duplication of code between the authenticate_log_and_execute_json code path and the `validate_api_key` code path. These's till a bit of duplication, in the form of `process_client` and `request._email` interactions, but it is very minor at this point.
2017-08-15 01:28:48 +02:00
try:
models: Add new get_user_profile_by_api_key helper. This results in a slight performance increase.
2017-08-25 07:43:38 +02:00
user_profile = get_user_profile_by_api_key(api_key)
decorator: Extract validate_account_and_subdomain and deduplicate. This fixes the significant duplication of code between the authenticate_log_and_execute_json code path and the `validate_api_key` code path. These's till a bit of duplication, in the form of `process_client` and `request._email` interactions, but it is very minor at this point.
2017-08-15 01:28:48 +02:00
except UserProfile.DoesNotExist:
raise JsonableError(_("Invalid API key"))
if email is not None and email != user_profile.email:
# This covers the case that the API key is correct, but for a
# different user. We may end up wanting to relaxing this
# constraint or give a different error message in the future.
raise JsonableError(_("Invalid API key"))
validate_account_and_subdomain(request, user_profile)
decorators: Extract access_user_by_api_key.
2017-08-15 00:28:39 +02:00
return user_profile
Add api_key_only_webhook_view decorator. This is for webhook API endpoints that only get passed in an api_key, not an email. An example would be api_jira_webhook, and some of the code is borrowed from there. The rest of the code is from authenticated_api_view(). (imported from commit b5b2a4ea52f9b317f00357ef3142c76534fabf20)
2013-10-03 01:12:57 +02:00
# Use this for webhook views that don't get an email passed in.
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
WrappedViewFuncT = Callable[[Callable[..., HttpResponse]], Callable[..., HttpResponse]]
def api_key_only_webhook_view(client_name: Text) -> WrappedViewFuncT:
mypy: Improve return type of api_key_only_webhook_view decorator.
2017-10-28 05:50:09 +02:00
# TODO The typing here could be improved by using the Extended Callable types:
# https://mypy.readthedocs.io/en/latest/kinds_of_types.html#extended-callable-types
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_view_func(view_func: Callable[..., HttpResponse]) -> Callable[..., HttpResponse]:
Move getting client to api_key_only_webhook_view. This decreases the amount of convention developers need to understand in order to write a new webhook integration.
2016-05-12 22:49:36 +02:00
@csrf_exempt
@has_request_variables
@wraps(view_func)
Desupport using uninstantiated REQ with has_request_variables. This makes life difficult for doing static type annotations, and didn't make the code look that much better anyway.
2016-05-31 16:29:39 +02:00
def _wrapped_func_arguments(request, api_key=REQ(),
Move getting client to api_key_only_webhook_view. This decreases the amount of convention developers need to understand in order to write a new webhook integration.
2016-05-12 22:49:36 +02:00
*args, **kwargs):
mypy: Update zerver directory to use Text
2016-12-27 07:09:35 +01:00
# type: (HttpRequest, Text, *Any, **Any) -> HttpResponse
decorator: Use validate_api_key in api_key_only_webhook_view code path. This completes the effort to deduplicate the main code of our authentication decorators.
2017-08-15 01:21:46 +02:00
user_profile = validate_api_key(request, None, api_key, is_webhook=True,
client_name="Zulip{}Webhook".format(client_name))
Move getting client to api_key_only_webhook_view. This decreases the amount of convention developers need to understand in order to write a new webhook integration.
2016-05-12 22:49:36 +02:00
if settings.RATE_LIMITING:
rate_limit_user(request, user_profile, domain='all')
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
try:
return view_func(request, user_profile, *args, **kwargs)
decorator: Handle invalid JSON in api_key_only_webhook_view. Exception logging within api_key_only_webhook_view fails when ValueError is raised if the request.body passed to ujson.loads isn't valid JSON. In this case, we now just convert the payload to a string and log that. This allows us to inspect JSON payloads that aren't being decoded properly.
2017-07-19 05:08:51 +02:00
except Exception as err:
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
if request.content_type == 'application/json':
decorator: Handle invalid JSON in api_key_only_webhook_view. Exception logging within api_key_only_webhook_view fails when ValueError is raised if the request.body passed to ujson.loads isn't valid JSON. In this case, we now just convert the payload to a string and log that. This allows us to inspect JSON payloads that aren't being decoded properly.
2017-07-19 05:08:51 +02:00
try:
request_body = ujson.dumps(ujson.loads(request.body), indent=4)
except ValueError:
request_body = str(request.body)
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
else:
mypy: request.body is bytes, should be str.
2017-05-24 03:07:36 +02:00
request_body = str(request.body)
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
message = """
user: {email} ({realm})
client: {client_name}
URL: {path_info}
decorator: Handle invalid JSON in api_key_only_webhook_view. Exception logging within api_key_only_webhook_view fails when ValueError is raised if the request.body passed to ujson.loads isn't valid JSON. In this case, we now just convert the payload to a string and log that. This allows us to inspect JSON payloads that aren't being decoded properly.
2017-07-19 05:08:51 +02:00
content_type: {content_type}
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
body:
{body}
""".format(
email=user_profile.email,
realm=user_profile.realm.string_id,
decorator: Use validate_api_key in api_key_only_webhook_view code path. This completes the effort to deduplicate the main code of our authentication decorators.
2017-08-15 01:21:46 +02:00
client_name=request.client.name,
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
body=request_body,
path_info=request.META.get('PATH_INFO', None),
decorator: Handle invalid JSON in api_key_only_webhook_view. Exception logging within api_key_only_webhook_view fails when ValueError is raised if the request.body passed to ujson.loads isn't valid JSON. In this case, we now just convert the payload to a string and log that. This allows us to inspect JSON payloads that aren't being decoded properly.
2017-07-19 05:08:51 +02:00
content_type=request.content_type,
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
)
webhook_logger.exception(message)
decorator: Handle invalid JSON in api_key_only_webhook_view. Exception logging within api_key_only_webhook_view fails when ValueError is raised if the request.body passed to ujson.loads isn't valid JSON. In this case, we now just convert the payload to a string and log that. This allows us to inspect JSON payloads that aren't being decoded properly.
2017-07-19 05:08:51 +02:00
raise err
zerver/decorators: Log all exceptions raised in api_key_only_webhook_view. Fixes #4742.
2017-05-12 05:21:09 +02:00
Move getting client to api_key_only_webhook_view. This decreases the amount of convention developers need to understand in order to write a new webhook integration.
2016-05-12 22:49:36 +02:00
return _wrapped_func_arguments
Add api_key_only_webhook_view decorator. This is for webhook API endpoints that only get passed in an api_key, not an email. An example would be api_jira_webhook, and some of the code is borrowed from there. The rest of the code is from authenticated_api_view(). (imported from commit b5b2a4ea52f9b317f00357ef3142c76534fabf20)
2013-10-03 01:12:57 +02:00
return _wrapped_view_func
Fix slightly ugly login page URL of /login?next=/.
2016-04-21 23:41:28 +02:00
# From Django 1.8, modified to leave off ?next=/
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
def redirect_to_login(next, login_url=None,
redirect_field_name=REDIRECT_FIELD_NAME):
mypy: Update zerver directory to use Text
2016-12-27 07:09:35 +01:00
# type: (Text, Optional[Text], Text) -> HttpResponseRedirect
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
"""
Redirects the user to the login page, passing the given 'next' page
"""
resolved_url = resolve_url(login_url or settings.LOGIN_URL)
login_url_parts = list(urllib.parse.urlparse(resolved_url))
if redirect_field_name:
querystring = QueryDict(login_url_parts[4], mutable=True)
querystring[redirect_field_name] = next
Fix slightly ugly login page URL of /login?next=/.
2016-04-21 23:41:28 +02:00
# Don't add ?next=/, to keep our URLs clean
if next != '/':
login_url_parts[4] = querystring.urlencode(safe='/')
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
return HttpResponseRedirect(urllib.parse.urlunparse(login_url_parts))
# From Django 1.8
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def user_passes_test(test_func: Callable[[HttpResponse], bool], login_url: Optional[Text]=None,
redirect_field_name: Text=REDIRECT_FIELD_NAME) -> WrappedViewFuncT:
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
"""
Decorator for views that checks that the user passes the given test,
redirecting to the log-in page if necessary. The test should be a callable
that takes the user object and returns True if the user passes.
"""
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def decorator(view_func: Callable[..., HttpResponse]) -> Callable[..., HttpResponse]:
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
@wraps(view_func, assigned=available_attrs(view_func))
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_view(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
Replace UserProfile with HttpRequest in logged_in_and_active.
2016-07-19 14:22:13 +02:00
if test_func(request):
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
return view_func(request, *args, **kwargs)
path = request.build_absolute_uri()
resolved_login_url = resolve_url(login_url or settings.LOGIN_URL)
# If the login url is the same scheme and net location then just
# use the path as the "next" url.
login_scheme, login_netloc = urllib.parse.urlparse(resolved_login_url)[:2]
current_scheme, current_netloc = urllib.parse.urlparse(path)[:2]
if ((not login_scheme or login_scheme == current_scheme) and
(not login_netloc or login_netloc == current_netloc)):
path = request.get_full_path()
return redirect_to_login(
path, resolved_login_url, redirect_field_name)
return _wrapped_view
return decorator
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def logged_in_and_active(request: HttpRequest) -> bool:
Django 1.11: is_authenticated is now a property.
2017-05-18 11:42:19 +02:00
if not request.user.is_authenticated:
zulip_login_required: Add checks for active users and realms. Like the recent change blocking JSON endpoints for deactivated users and users in deactivated realms, this change is a hardening improvement. Those users should be unable to get an active session anyway, but if somehow one is leaked, this means they won't be able to access any user data.
2016-04-22 00:56:39 +02:00
return False
Replace UserProfile with HttpRequest in logged_in_and_active.
2016-07-19 14:22:13 +02:00
if not request.user.is_active:
zulip_login_required: Add checks for active users and realms. Like the recent change blocking JSON endpoints for deactivated users and users in deactivated realms, this change is a hardening improvement. Those users should be unable to get an active session anyway, but if somehow one is leaked, this means they won't be able to access any user data.
2016-04-22 00:56:39 +02:00
return False
Replace UserProfile with HttpRequest in logged_in_and_active.
2016-07-19 14:22:13 +02:00
if request.user.realm.deactivated:
zulip_login_required: Add checks for active users and realms. Like the recent change blocking JSON endpoints for deactivated users and users in deactivated realms, this change is a hardening improvement. Those users should be unable to get an active session anyway, but if somehow one is leaked, this means they won't be able to access any user data.
2016-04-22 00:56:39 +02:00
return False
subdomains: Refactor check_subdomain to a clearer interface. Now that every call site of check_subdomain produces its second argument in exactly the same way, push that shared bit of logic into a new wrapper for check_subdomain. Also give that new function a name that says more specifically what it's checking -- which I think is easier to articulate for this interface than for that of check_subdomain.
2017-10-20 02:53:24 +02:00
return user_matches_subdomain(get_subdomain(request), request.user)
zulip_login_required: Add checks for active users and realms. Like the recent change blocking JSON endpoints for deactivated users and users in deactivated realms, this change is a hardening improvement. Those users should be unable to get an active session anyway, but if somehow one is leaked, this means they won't be able to access any user data.
2016-04-22 00:56:39 +02:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def do_login(request: HttpRequest, user_profile: UserProfile) -> None:
login: Fix logging for login/register actions. Previously, Zulip's server logs would not show which user or client was involved in login or user registration actions, which made debugging more annoying than it needed to be.
2017-08-25 01:11:30 +02:00
"""Creates a session, logging in the user, using the Django method,
and also adds helpful data needed by our server logs.
"""
django_login(request, user_profile)
request._email = user_profile.email
process_client(request, user_profile, is_browser_view=True)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def log_view_func(view_func: ViewFuncT) -> ViewFuncT:
auth: Set user_activity `query` nicely for several auth views. This gets used when we call `process_client`, which we generally do at some kind of login; and in particular, we do in the shared auth codepath `login_or_register_remote_user`. Add a decorator to make it easy, and use it on the various views that wind up there. In particular, this ensures that the `query` is some reasonable constant corresponding to the view, as intended. When not set, we fall back in `update_user_activity` on the URL path, but in particular for `log_into_subdomain` that can now contain a bunch of request-specific data, which makes it (a) not aggregate properly, and (b) not even fit in the `CHARACTER VARYING(50)` database field we've allotted it.
2017-11-03 22:26:31 +01:00
@wraps(view_func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_view_func(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
auth: Set user_activity `query` nicely for several auth views. This gets used when we call `process_client`, which we generally do at some kind of login; and in particular, we do in the shared auth codepath `login_or_register_remote_user`. Add a decorator to make it easy, and use it on the various views that wind up there. In particular, this ensures that the `query` is some reasonable constant corresponding to the view, as intended. When not set, we fall back in `update_user_activity` on the URL path, but in particular for `log_into_subdomain` that can now contain a bunch of request-specific data, which makes it (a) not aggregate properly, and (b) not even fit in the `CHARACTER VARYING(50)` database field we've allotted it.
2017-11-03 22:26:31 +01:00
request._query = view_func.__name__
return view_func(request, *args, **kwargs)
return _wrapped_view_func # type: ignore # https://github.com/python/mypy/issues/1927
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def add_logging_data(view_func: ViewFuncT) -> ViewFuncT:
decorator: Add logging data to zulip_login_required. This fixes an issue that many logged=in pages such as /stats did not correctly report either the connecting client or the user in server logs.
2017-02-20 20:55:18 +01:00
@wraps(view_func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_view_func(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
decorator: Add logging data to zulip_login_required. This fixes an issue that many logged=in pages such as /stats did not correctly report either the connecting client or the user in server logs.
2017-02-20 20:55:18 +01:00
request._email = request.user.email
user_activity: Allow passing the `query` more directly. This won't work for all call paths without deeper refactoring, but for at least some paths we can make this more direct -- function arguments, rather than mutating a request attribute -- so it's easier to see how the data is flowing.
2017-11-03 22:44:59 +01:00
process_client(request, request.user, is_browser_view=True,
query=view_func.__name__)
decorator: Add rate limiting to zulip_login_required.
2017-03-26 07:00:59 +02:00
return rate_limit()(view_func)(request, *args, **kwargs)
decorator: Add logging data to zulip_login_required. This fixes an issue that many logged=in pages such as /stats did not correctly report either the connecting client or the user in server logs.
2017-02-20 20:55:18 +01:00
return _wrapped_view_func # type: ignore # https://github.com/python/mypy/issues/1927
decorator: Add human_users_only decorator. Applies it to presence.update_active_status_backend as an example of usage.
2017-04-15 20:51:51 +02:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def human_users_only(view_func: ViewFuncT) -> ViewFuncT:
decorator: Add human_users_only decorator. Applies it to presence.update_active_status_backend as an example of usage.
2017-04-15 20:51:51 +02:00
@wraps(view_func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_view_func(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
decorator: Add human_users_only decorator. Applies it to presence.update_active_status_backend as an example of usage.
2017-04-15 20:51:51 +02:00
if request.user.is_bot:
return json_error(_("This endpoint does not accept bot requests."))
return view_func(request, *args, **kwargs)
return _wrapped_view_func # type: ignore # https://github.com/python/mypy/issues/1927
decorator: Add logging data to zulip_login_required. This fixes an issue that many logged=in pages such as /stats did not correctly report either the connecting client or the user in server logs.
2017-02-20 20:55:18 +01:00
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
# Based on Django 1.8's @login_required
def zulip_login_required(function=None,
redirect_field_name=REDIRECT_FIELD_NAME,
login_url=settings.HOME_NOT_LOGGED_IN):
mypy: Update zerver directory to use Text
2016-12-27 07:09:35 +01:00
# type: (Optional[Callable[..., HttpResponse]], Text, Text) -> Union[Callable[[Callable[..., HttpResponse]], Callable[..., HttpResponse]], Callable[..., HttpResponse]]
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
actual_decorator = user_passes_test(
zulip_login_required: Add checks for active users and realms. Like the recent change blocking JSON endpoints for deactivated users and users in deactivated realms, this change is a hardening improvement. Those users should be unable to get an active session anyway, but if somehow one is leaked, this means they won't be able to access any user data.
2016-04-22 00:56:39 +02:00
logged_in_and_active,
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
login_url=login_url,
redirect_field_name=redirect_field_name
)
if function:
decorator: Add logging data to zulip_login_required. This fixes an issue that many logged=in pages such as /stats did not correctly report either the connecting client or the user in server logs.
2017-02-20 20:55:18 +01:00
# Add necessary logging data via add_logging_data
return actual_decorator(add_logging_data(function))
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
return actual_decorator
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def require_server_admin(view_func: ViewFuncT) -> ViewFuncT:
Switch to using a Zulip version of @login_required. Currently the code is the unmodified Django upstream implementation; this commit is preparation for modifying it.
2016-04-21 23:48:34 +02:00
@zulip_login_required
Improve zulip_internal decorator. I added the @wraps decorator, and I point request._query at the function name to override the URL, since some of the internal URLs have realm names and domain names in them. I basically prefer the function names in most cases, so I just made this automatic for zulip_internal functions, rather than having to remember to address URL-vs.-function-name for every new endpoint. (imported from commit 5583607f395be4dfae0bac31e1cdbffdf51fb3e8)
2013-11-01 18:43:38 +01:00
@wraps(view_func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_view_func(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
decorator: Change /activity to be gated on is_staff. Zulip doesn't previously make use of the standard Django is_staff flag (in that the Django admin site is disabled), but since conceptually the /activity page would be part of the Django admin site if we were using it (i.e. for server-level administrators), it makes sense to key off of that rather than the previous, fragile, check for the realm domain name.
2016-12-14 06:02:50 +01:00
if not request.user.is_staff:
Add zulip_internal decorator for internal Zulip reports. (This also ensures that /queries is viewable only from inside Zulip.) (imported from commit 697da768889943ab6cea62b3e922cc43afa04759)
2013-10-22 15:39:39 +02:00
return HttpResponseRedirect(settings.HOME_NOT_LOGGED_IN)
Log client/email in zulip_internal decorator. (imported from commit 43b7ae75bd5cd3e8a086f82b31507079d999a42b)
2013-10-22 21:03:34 +02:00
decorator: Add logging data to zulip_login_required. This fixes an issue that many logged=in pages such as /stats did not correctly report either the connecting client or the user in server logs.
2017-02-20 20:55:18 +01:00
return add_logging_data(view_func)(request, *args, **kwargs)
pep8: Add compliance with rule E261 decorator.py.
2017-06-04 11:52:09 +02:00
return _wrapped_view_func # type: ignore # https://github.com/python/mypy/issues/1927
Add api_key_only_webhook_view decorator. This is for webhook API endpoints that only get passed in an api_key, not an email. An example would be api_jira_webhook, and some of the code is borrowed from there. The rest of the code is from authenticated_api_view(). (imported from commit b5b2a4ea52f9b317f00357ef3142c76534fabf20)
2013-10-03 01:12:57 +02:00
Improve comments for remaining legacy API endpoints. (imported from commit 923b30b4c2a8e724ce8262e9eaeb69887572fd4b)
2013-12-11 20:50:49 +01:00
# authenticated_api_view will add the authenticated user's
# user_profile to the view function's arguments list, since we have to
# look it up anyway. It is deprecated in favor on the REST API
# versions.
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def authenticated_api_view(is_webhook: bool=False) -> WrappedViewFuncT:
def _wrapped_view_func(view_func: Callable[..., HttpResponse]) -> Callable[..., HttpResponse]:
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
@csrf_exempt
@require_post
@has_request_variables
@wraps(view_func)
def _wrapped_func_arguments(request, email=REQ(), api_key=REQ(default=None),
api_key_legacy=REQ('api-key', default=None),
*args, **kwargs):
mypy: Update zerver directory to use Text
2016-12-27 07:09:35 +01:00
# type: (HttpRequest, Text, Optional[Text], Optional[Text], *Any, **Any) -> HttpResponse
decorator: Cleanup api_key_legacy code readability.
2017-02-11 05:28:20 +01:00
if api_key is None:
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
api_key = api_key_legacy
decorator: Cleanup api_key_legacy code readability.
2017-02-11 05:28:20 +01:00
if api_key is None:
raise RequestVariableMissingError("api_key")
validate_api_key: Accept the request as an argument. This is a prerequisite for checking the subdomain of the request.
2016-09-28 06:13:43 +02:00
user_profile = validate_api_key(request, email, api_key, is_webhook)
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
# Apply rate limiting
limited_func = rate_limit()(view_func)
return limited_func(request, user_profile, *args, **kwargs)
return _wrapped_func_arguments
Move view decorators into decorator.py (imported from commit 737cff552b395493f44864ac06e901b0ba17fa29)
2012-11-06 20:27:55 +01:00
return _wrapped_view_func
Comment that authenticated_rest_api_view does Basic auth (imported from commit 145ea6b0a17ab904c32e23e809410f56448baa72)
2013-08-29 20:47:04 +02:00
# A more REST-y authentication decorator, using, in particular, HTTP Basic
# authentication.
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def authenticated_rest_api_view(is_webhook: bool=False) -> WrappedViewFuncT:
def _wrapped_view_func(view_func: Callable[..., HttpResponse]) -> Callable[..., HttpResponse]:
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
@csrf_exempt
@wraps(view_func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_func_arguments(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
# First try block attempts to get the credentials we need to do authentication
try:
# Grab the base64-encoded authentication string, decode it, and split it into
# the email and API key
zerver/decorator.py: Use force_bytes instead of encode. The value type of request.META is str, not text type. So use force_bytes on the data instead of encode('utf-8').
2016-07-07 21:50:08 +02:00
auth_type, credentials = request.META['HTTP_AUTHORIZATION'].split()
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
# case insensitive per RFC 1945
if auth_type.lower() != "basic":
capitalization: Fix Only Basic authentication is supported.
2017-03-08 18:04:59 +01:00
return json_error(_("This endpoint requires HTTP basic authentication."))
Don't use force_bytes() in decorator.py. In python3 base64.b64decode() can take an ASCII string, and any legit data will be ASCII. If you pass in non-ASCII data, the function will properly throw a ValueError (verified in python3 shell). >>> s = '안녕하세요' >>> import base64 >>> base64.b64decode(s) Traceback (most recent call last): File "/srv/zulip-py3-venv/lib/python3.4/base64.py", line 37, in _bytes_from_decode_data return s.encode('ascii') UnicodeEncodeError: 'ascii' codec can't encode characters in position 0-4: ordinal not in range(128) During handling of the above exception, another exception occurred: Traceback (most recent call last): File "<stdin>", line 1, in <module> File "/srv/zulip-py3-venv/lib/python3.4/base64.py", line 83, in b64decode s = _bytes_from_decode_data(s) File "/srv/zulip-py3-venv/lib/python3.4/base64.py", line 39, in _bytes_from_decode_data raise ValueError('string argument should contain only ASCII characters') ValueError: string argument should contain only ASCII characters
2017-11-04 16:53:23 +01:00
role, api_key = base64.b64decode(credentials).decode('utf-8').split(":")
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
except ValueError:
Fix unnecessary traceback in authenticated_rest_api_view. Apparently, we weren't returning the `json_error`, resulting in users encountering this condition receiving a 500, rather than the proper 40x error. This fixes a regresion introduced in 9ae68ade8b514940a49764ac6ecc802a57519d5b.
2017-01-29 21:48:10 +01:00
return json_unauthorized(_("Invalid authorization header for basic auth"))
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
except KeyError:
return json_unauthorized("Missing authorization header for basic auth")
# Now we try to do authentication or die
try:
Add support infrastructure for push notification bouncer service. This is an incomplete cleaned-up continuation of Lisa Neigut's push notification bouncer work. It supports registration and deregistration of individual push tokens with a central push notification bouncer server. It still is missing a few things before we can complete this effort: * A registration form for server admins to configure their server for this service, with tests. * Code (and tests) for actually bouncing the notifications.
2016-10-27 23:55:31 +02:00
# profile is a Union[UserProfile, RemoteZulipServer]
validate_api_key: Accept the request as an argument. This is a prerequisite for checking the subdomain of the request.
2016-09-28 06:13:43 +02:00
profile = validate_api_key(request, role, api_key, is_webhook)
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
except JsonableError as e:
JsonableError: Rename message from `error` to `msg`. The whole thing is an error, so "message" is a more apt word for the error message specifically. We abbreviate that as `msg` in the actual HTTP responses and in the signatures of `json_error` and friends, so do the same here.
2017-07-20 00:22:36 +02:00
return json_unauthorized(e.msg)
Add is_webhook option to authentication decorats. Modified: authenticated_rest_api_view authenticated_api_view and validate_api_key.
2016-05-18 20:35:35 +02:00
# Apply rate limiting
return rate_limit()(view_func)(request, profile, *args, **kwargs)
return _wrapped_func_arguments
Implement generic rest_dispatch method for new API. (imported from commit 912ee803db03098f195d18648ab98401915fead6)
2013-03-21 20:15:27 +01:00
return _wrapped_view_func
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def process_as_post(view_func: ViewFuncT) -> ViewFuncT:
Create update_subscriptions_backend to allow mass mutation of user subs. This includes a process_patch_as_post decorator which enables this view to be invoked as a PATCH on an object. Hopefully this decorator can go away once POST values are correctly parsed in Django for PATCH verb invocations. (imported from commit 6cf9d69cfb9dea5354ea37408566146757b5be54)
2013-03-21 20:18:44 +01:00
@wraps(view_func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_view_func(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
Create update_subscriptions_backend to allow mass mutation of user subs. This includes a process_patch_as_post decorator which enables this view to be invoked as a PATCH on an object. Hopefully this decorator can go away once POST values are correctly parsed in Django for PATCH verb invocations. (imported from commit 6cf9d69cfb9dea5354ea37408566146757b5be54)
2013-03-21 20:18:44 +01:00
# Adapted from django/http/__init__.py.
# So by default Django doesn't populate request.POST for anything besides
Rename process_patch_as_post to process_as_post for generality (imported from commit c920216176a8b6d4b0172a60b6e65df6a58fc79a)
2013-04-03 21:44:12 +02:00
# POST requests. We want this dict populated for PATCH/PUT, so we have to
Create update_subscriptions_backend to allow mass mutation of user subs. This includes a process_patch_as_post decorator which enables this view to be invoked as a PATCH on an object. Hopefully this decorator can go away once POST values are correctly parsed in Django for PATCH verb invocations. (imported from commit 6cf9d69cfb9dea5354ea37408566146757b5be54)
2013-03-21 20:18:44 +01:00
# do it ourselves.
#
# This will not be required in the future, a bug will be filed against
# Django upstream.
Don't convert to POST vars if POST is already populated. Otherwise you could encounter errors if you POST to a method with this decorator applied. (imported from commit bcb31f336ea2a1eeee6b9e3e9dfeed1d205ae26a)
2013-04-03 22:01:58 +02:00
if not request.POST:
# Only take action if POST is empty.
if request.META.get('CONTENT_TYPE', '').startswith('multipart'):
Support request.FILES in process_as_post. (imported from commit 646019b5efe4ae3f6f66f99f76f2036d9fd9ec8e)
2013-08-01 19:33:30 +02:00
# Note that request._files is just the private attribute that backs the
# FILES property, so we are essentially setting request.FILES here. (In
# Django 1.5 FILES was still a read-only property.)
pep8: Fix many rule E128 violations. [Tweaked by tabbott to adjust some approaches used in wrapping]
2016-12-03 00:04:17 +01:00
request.POST, request._files = MultiPartParser(
request.META,
BytesIO(request.body),
request.upload_handlers,
request.encoding
).parse()
Don't convert to POST vars if POST is already populated. Otherwise you could encounter errors if you POST to a method with this decorator applied. (imported from commit bcb31f336ea2a1eeee6b9e3e9dfeed1d205ae26a)
2013-04-03 22:01:58 +02:00
else:
request.POST = QueryDict(request.body, encoding=request.encoding)
Create update_subscriptions_backend to allow mass mutation of user subs. This includes a process_patch_as_post decorator which enables this view to be invoked as a PATCH on an object. Hopefully this decorator can go away once POST values are correctly parsed in Django for PATCH verb invocations. (imported from commit 6cf9d69cfb9dea5354ea37408566146757b5be54)
2013-03-21 20:18:44 +01:00
return view_func(request, *args, **kwargs)
pep8: Add compliance with rule E261 decorator.py.
2017-06-04 11:52:09 +02:00
return _wrapped_view_func # type: ignore # https://github.com/python/mypy/issues/1927
Create update_subscriptions_backend to allow mass mutation of user subs. This includes a process_patch_as_post decorator which enables this view to be invoked as a PATCH on an object. Hopefully this decorator can go away once POST values are correctly parsed in Django for PATCH verb invocations. (imported from commit 6cf9d69cfb9dea5354ea37408566146757b5be54)
2013-03-21 20:18:44 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def authenticate_log_and_execute_json(request: HttpRequest,
view_func: Callable[..., HttpResponse],
*args: Any, **kwargs: Any) -> HttpResponse:
Django 1.11: is_authenticated is now a property.
2017-05-18 11:42:19 +02:00
if not request.user.is_authenticated:
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
return json_error(_("Not logged in"), status=401)
[manual] Authenticate using a user_profile as request.user. When this is deployed to staging, we need to run ./manage.py logout_all_users --realm=humbughq.com When this is deployed to prod, we need to run ./manage.py logout_all_users (imported from commit d6c6ea4b1c347f3d9122742db23c7b67767a7349)
2013-03-29 17:39:53 +01:00
user_profile = request.user
decorator: Extract validate_account_and_subdomain and deduplicate. This fixes the significant duplication of code between the authenticate_log_and_execute_json code path and the `validate_api_key` code path. These's till a bit of duplication, in the form of `process_client` and `request._email` interactions, but it is very minor at this point.
2017-08-15 01:28:48 +02:00
validate_account_and_subdomain(request, user_profile)
Add new is_incoming_webhook bot type. This type of bot is only able to send messages via webhook endpoints.
2016-05-19 23:44:58 +02:00
if user_profile.is_incoming_webhook:
raise JsonableError(_("Webhook bots can only access webhooks"))
subdomains: Enforce subdomain checks on every API endpoint. This ensures that everything is using the correct subdomain for requests. While it probably wouldn't be a real security problem for the wrong subdomain to work, this enforcement is essential to catching bugs in the product and users' API scripts.
2016-08-14 04:16:39 +02:00
decorator: Set the user_activity query in another case. Now that this is a little less mysterious-looking to do, let's do it in this spot too.
2017-11-03 22:58:33 +01:00
process_client(request, user_profile, is_browser_view=True,
query=view_func.__name__)
Access the UserProfile's new email field rather than using User. This is preparatory for stopping using the User model. (imported from commit a1b0808c8cc2ddd19a25163f91c4f18620c9ce90)
2013-03-28 20:43:34 +01:00
request._email = user_profile.email
decorator: Add rate-limiting to JSON views.
2017-03-26 06:36:39 +02:00
return rate_limit()(view_func)(request, user_profile, *args, **kwargs)
decorators: split authenticated_json_view into POST and non-POST versions. (imported from commit cdcfdb51c379c07e94ebc763cf925e6a73747fc0)
2012-12-02 20:51:51 +01:00
Move view decorators into decorator.py (imported from commit 737cff552b395493f44864ac06e901b0ba17fa29)
2012-11-06 20:27:55 +01:00
# Checks if the request is a POST request and that the user is logged
# in. If not, return an error (the @login_required behavior of
# redirecting to a login page doesn't make sense for json views)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def authenticated_json_post_view(view_func: ViewFuncT) -> ViewFuncT:
Move view decorators into decorator.py (imported from commit 737cff552b395493f44864ac06e901b0ba17fa29)
2012-11-06 20:27:55 +01:00
@require_post
decorators: Use @has_request_variables to extract client. (imported from commit 8407a556fcc1922d69e593edee3897957742f3fb)
2012-11-28 21:15:50 +01:00
@has_request_variables
Move view decorators into decorator.py (imported from commit 737cff552b395493f44864ac06e901b0ba17fa29)
2012-11-06 20:27:55 +01:00
@wraps(view_func)
decorators: Use @has_request_variables to extract client. (imported from commit 8407a556fcc1922d69e593edee3897957742f3fb)
2012-11-28 21:15:50 +01:00
def _wrapped_view_func(request,
*args, **kwargs):
Annotate zerver/decorator.py.
2016-06-06 01:54:58 +02:00
# type: (HttpRequest, *Any, **Any) -> HttpResponse
Fix dozens of unnecessary memcached queries when importing views.py. Previously, every function which had the @json_* decorators on it would independently call get_client when views.py was imported; we resolve this using a small bit of in-memory caching, which is safe since Client objects are immutable. This also more generally cleans up the code path to be more common between the API and JSON views. (imported from commit 674ea327fc4cb5fa982a75e388f0b604bae66567)
2013-06-27 20:21:21 +02:00
return authenticate_log_and_execute_json(request, view_func, *args, **kwargs)
pep8: Add compliance with rule E261 decorator.py.
2017-06-04 11:52:09 +02:00
return _wrapped_view_func # type: ignore # https://github.com/python/mypy/issues/1927
decorators: split authenticated_json_view into POST and non-POST versions. (imported from commit cdcfdb51c379c07e94ebc763cf925e6a73747fc0)
2012-12-02 20:51:51 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def authenticated_json_view(view_func: ViewFuncT) -> ViewFuncT:
decorators: split authenticated_json_view into POST and non-POST versions. (imported from commit cdcfdb51c379c07e94ebc763cf925e6a73747fc0)
2012-12-02 20:51:51 +01:00
@wraps(view_func)
def _wrapped_view_func(request,
*args, **kwargs):
Annotate zerver/decorator.py.
2016-06-06 01:54:58 +02:00
# type: (HttpRequest, *Any, **Any) -> HttpResponse
Fix dozens of unnecessary memcached queries when importing views.py. Previously, every function which had the @json_* decorators on it would independently call get_client when views.py was imported; we resolve this using a small bit of in-memory caching, which is safe since Client objects are immutable. This also more generally cleans up the code path to be more common between the API and JSON views. (imported from commit 674ea327fc4cb5fa982a75e388f0b604bae66567)
2013-06-27 20:21:21 +02:00
return authenticate_log_and_execute_json(request, view_func, *args, **kwargs)
pep8: Add compliance with rule E261 decorator.py.
2017-06-04 11:52:09 +02:00
return _wrapped_view_func # type: ignore # https://github.com/python/mypy/issues/1927
Add magic request variable extractor decorator Functions with the @has_request_variables decorator can have some of their arguments extracted from the HTTP request. For each such argument, its default value should be an instance of the POST class. The arguments to the POST constructor control the request variable name that the function parameter should be populated from (it defaults to the same as the parameter name), whether the value should be converted before being passed, and whether a default value should be supplied if the parameter is missing from the request. (imported from commit ba1c25d73ba3980e44abec1458e6496807fcdaa4)
2012-11-01 23:21:12 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def is_local_addr(addr: Text) -> bool:
decorators: Extract is_local_addr().
2016-07-09 20:37:09 +02:00
return addr in ('127.0.0.1', '::1')
Create and use @internal_notify_view Resolves #288. (imported from commit 982bf5651a34fa66cd81c882ed0351829eaadf86)
2012-11-28 05:37:13 +01:00
# These views are used by the main Django server to notify the Tornado server
# of events. We protect them from the outside world by checking a shared
# secret, and also the originating IP (for now).
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def authenticate_notify(request: HttpRequest) -> bool:
lint: Clean up W503 PEP-8 warning.
2017-01-24 05:50:04 +01:00
return (is_local_addr(request.META['REMOTE_ADDR']) and
request.POST.get('secret') == settings.SHARED_SECRET)
Create and use @internal_notify_view Resolves #288. (imported from commit 982bf5651a34fa66cd81c882ed0351829eaadf86)
2012-11-28 05:37:13 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def client_is_exempt_from_rate_limiting(request: HttpRequest) -> bool:
Extracted client_is_exempt_from_rate_limiting().
2016-07-09 08:08:42 +02:00
# Don't rate limit requests from Django that come from our own servers,
# and don't rate-limit dev instances
lint: Clean up W503 PEP-8 warning.
2017-01-24 05:50:04 +01:00
return ((request.client and request.client.name.lower() == 'internal') and
(is_local_addr(request.META['REMOTE_ADDR']) or
settings.DEBUG_RATE_LIMITING))
Extracted client_is_exempt_from_rate_limiting().
2016-07-09 08:08:42 +02:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def internal_notify_view(is_tornado_view: bool) -> WrappedViewFuncT:
mypy: Improve return type of internal_notify_view decorator.
2017-10-28 05:52:10 +02:00
# The typing here could be improved by using the Extended Callable types:
# https://mypy.readthedocs.io/en/latest/kinds_of_types.html#extended-callable-types
decorator: Add support for Django internal_notify_view.
2017-04-18 18:56:19 +02:00
"""Used for situations where something running on the Zulip server
needs to make a request to the (other) Django/Tornado processes running on
the server."""
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_view_func(view_func: Callable[..., HttpResponse]) -> Callable[..., HttpResponse]:
decorator: Add support for Django internal_notify_view.
2017-04-18 18:56:19 +02:00
@csrf_exempt
@require_post
@wraps(view_func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def _wrapped_func_arguments(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
decorator: Add support for Django internal_notify_view.
2017-04-18 18:56:19 +02:00
if not authenticate_notify(request):
return json_error(_('Access denied'), status=403)
is_tornado_request = hasattr(request, '_tornado_handler')
# These next 2 are not security checks; they are internal
# assertions to help us find bugs.
if is_tornado_view and not is_tornado_request:
raise RuntimeError('Tornado notify view called with no Tornado handler')
if not is_tornado_view and is_tornado_request:
raise RuntimeError('Django notify view called with Tornado handler')
request._email = "internal"
return view_func(request, *args, **kwargs)
return _wrapped_func_arguments
Create and use @internal_notify_view Resolves #288. (imported from commit 982bf5651a34fa66cd81c882ed0351829eaadf86)
2012-11-28 05:37:13 +01:00
return _wrapped_view_func
Move tornado views to their own file. (imported from commit e0d9182cbc89a16eedd2846fa17cfba482510565)
2013-01-08 17:44:22 +01:00
# Converter functions for use with has_request_variables
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def to_non_negative_int(s: Text) -> int:
annotations: Fix to_non_negative_int().
2016-10-28 16:25:37 +02:00
x = int(s)
Move tornado views to their own file. (imported from commit e0d9182cbc89a16eedd2846fa17cfba482510565)
2013-01-08 17:44:22 +01:00
if x < 0:
raise ValueError("argument is negative")
return x
retention-period: Add retention period to front-end admin organization settings. - Add message retention period field to organization settings form. - Add css for retention period field. - Add convertor to not negative int or to None. - Add retention period setting processing to back-end. - Fix tests. Modified by tabbott to hide the setting, since it doesn't work yet. The goal of merging this setting code now is to avoid unnecessary merge conflicts in the future. Part of #106.
2016-11-30 10:42:58 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def to_not_negative_int_or_none(s: Text) -> Optional[int]:
retention-period: Add retention period to front-end admin organization settings. - Add message retention period field to organization settings form. - Add css for retention period field. - Add convertor to not negative int or to None. - Add retention period setting processing to back-end. - Fix tests. Modified by tabbott to hide the setting, since it doesn't work yet. The goal of merging this setting code now is to avoid unnecessary merge conflicts in the future. Part of #106.
2016-11-30 10:42:58 +01:00
if s:
return to_non_negative_int(s)
return None
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def flexible_boolean(boolean: Text) -> bool:
Fix Github webhook exclude_* options. We were expecting Github to send us the string "true" when the exclude_* options were set. However, we were actually getting "1" when an option was set and the empty string when unset. So we were always setting the options to False. (imported from commit 067ba60b0b0404aebc6eda9487b1201fc2764243)
2014-07-31 04:54:50 +02:00
"""Returns True for any of "1", "true", or "True". Returns False otherwise."""
if boolean in ("1", "true", "True"):
Improve Backend for Github integration Refactor github webhook to handle multiple payload verions split github fixtures into v1 and v2 versions Group together all realm-specific logic. When v2 becomes available, we can ask someone in each org to make the changes via the Github Hook configuration, and slowly remove the special cases. TODO: when our pull request for github-services gets merged, the integrations page should say to look for Zulip instead of Humbug (imported from commit 4790a730010b37186640f9996291afa6e8f96c2b)
2014-01-09 20:59:05 +01:00
return True
else:
return False
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def to_utc_datetime(timestamp: Text) -> datetime.datetime:
decorator.py: Add to_utc_datetime converter function.
2016-12-22 04:46:31 +01:00
return timestamp_to_datetime(float(timestamp))
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
WrapperT = Callable[[Callable[..., ReturnT]], Callable[..., ReturnT]]
Add a decorator for sending count information to statsd (imported from commit 5263e39d8c235ac56517f0a69a1b1337e6f8942a)
2013-04-16 22:52:32 +02:00
def statsd_increment(counter, val=1):
mypy: Improve constraint on return types in statsd_increment decorator.
2017-10-29 06:28:41 +01:00
# type: (Text, int) -> Callable[[Callable[..., ReturnT]], Callable[..., ReturnT]]
Add a decorator for sending count information to statsd (imported from commit 5263e39d8c235ac56517f0a69a1b1337e6f8942a)
2013-04-16 22:52:32 +02:00
"""Increments a statsd counter on completion of the
decorated function.
Pass the name of the counter to this decorator-returning function."""
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def wrapper(func: Callable[..., ReturnT]) -> Callable[..., ReturnT]:
Add a decorator for sending count information to statsd (imported from commit 5263e39d8c235ac56517f0a69a1b1337e6f8942a)
2013-04-16 22:52:32 +02:00
@wraps(func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def wrapped_func(*args: Any, **kwargs: Any) -> ReturnT:
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
ret = func(*args, **kwargs)
Add a decorator for sending count information to statsd (imported from commit 5263e39d8c235ac56517f0a69a1b1337e6f8942a)
2013-04-16 22:52:32 +02:00
statsd.incr(counter, val)
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
return ret
return wrapped_func
return wrapper
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def rate_limit_user(request: HttpRequest, user: UserProfile, domain: Text) -> None:
Rate limit jira and beanstalk API endpoints (imported from commit ea299df983d53ee3f917f3c7314e78e813fe95a2)
2013-06-06 20:08:02 +02:00
"""Returns whether or not a user was rate limited. Will raise a RateLimited exception
if the user has been rate limited, otherwise returns and modifies request to contain
the rate limit information"""
rate_limited: Upgrade is_ratelimited to generic API.
2017-07-28 06:45:53 +02:00
entity = RateLimitedUser(user, domain=domain)
ratelimited, time = is_ratelimited(entity)
Rate limit jira and beanstalk API endpoints (imported from commit ea299df983d53ee3f917f3c7314e78e813fe95a2)
2013-06-06 20:08:02 +02:00
request._ratelimit_applied_limits = True
request._ratelimit_secs_to_freedom = time
request._ratelimit_over_limit = ratelimited
decorator.py: Use the singular 'they' pronoun.
2017-07-05 11:43:37 +02:00
# Abort this request if the user is over their rate limits
Rate limit jira and beanstalk API endpoints (imported from commit ea299df983d53ee3f917f3c7314e78e813fe95a2)
2013-06-06 20:08:02 +02:00
if ratelimited:
[schema] Support for authenticating Deployments via the API. Here we introduce a new Django app, zilencer. The intent is to not have this app enabled on LOCALSERVER instances, and for it to grow to include all the functionality we want to have in our central server that isn't relevant for local deployments. Currently we have to modify functions in zerver/* to match; in the future, it would be cool to have the relevant shared code broken out into a separate library. This commit inclues both the migration to create the models as well as a data migration that (for non-LOCALSERVER) creates a single default Deployment for zulip.com. To apply this migration to your system, run: ./manage.py migrate zilencer (imported from commit 86d5497ac120e03fa7f298a9cc08b192d5939b43)
2013-10-17 16:33:04 +02:00
statsd.incr("ratelimiter.limited.%s.%s" % (type(user), user.id))
Rate limit jira and beanstalk API endpoints (imported from commit ea299df983d53ee3f917f3c7314e78e813fe95a2)
2013-06-06 20:08:02 +02:00
raise RateLimited()
rate_limiter: Upgrade incr_ratelimit to generic API.
2017-07-31 07:26:24 +02:00
incr_ratelimit(entity)
rate_limiter: Upgrade api_calls_left to generic API.
2017-07-31 07:55:09 +02:00
calls_remaining, time_reset = api_calls_left(entity)
Rate limit jira and beanstalk API endpoints (imported from commit ea299df983d53ee3f917f3c7314e78e813fe95a2)
2013-06-06 20:08:02 +02:00
request._ratelimit_remaining = calls_remaining
request._ratelimit_secs_to_freedom = time_reset
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def rate_limit(domain: Text='all') -> Callable[[Callable[..., HttpResponse]], Callable[..., HttpResponse]]:
zerver: Fix bare except clause.
2017-01-08 16:40:03 +01:00
"""Rate-limits a view. Takes an optional 'domain' param if you wish to
rate limit different types of API calls independently.
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
Returns a decorator"""
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def wrapper(func: Callable[..., HttpResponse]) -> Callable[..., HttpResponse]:
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
@wraps(func)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def wrapped_func(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
Extracted client_is_exempt_from_rate_limiting().
2016-07-09 08:08:42 +02:00
Clean up rate_limit() for deployments that opt out. If settings.RATE_LIMITING is False, short circuit rate limiting earlier in rate_limit(). This change particularly avoids inspect request.user and possibly spamming the error log for sites that don't care about rate limiting.
2016-07-09 20:25:31 +02:00
# It is really tempting to not even wrap our original function
# when settings.RATE_LIMITING is False, but it would make
# for awkward unit testing in some situations.
if not settings.RATE_LIMITING:
return func(request, *args, **kwargs)
Extracted client_is_exempt_from_rate_limiting().
2016-07-09 08:08:42 +02:00
if client_is_exempt_from_rate_limiting(request):
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
return func(request, *args, **kwargs)
try:
user = request.user
zerver: Fix bare except clause.
2017-01-08 16:40:03 +01:00
except Exception:
Extracted client_is_exempt_from_rate_limiting().
2016-07-09 08:08:42 +02:00
# TODO: This logic is not tested, and I'm not sure we are
# doing the right thing here.
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
user = None
Clean up rate_limit() for deployments that opt out. If settings.RATE_LIMITING is False, short circuit rate limiting earlier in rate_limit(). This change particularly avoids inspect request.user and possibly spamming the error log for sites that don't care about rate limiting.
2016-07-09 20:25:31 +02:00
if not user:
pep8: Fix E502 violations
2016-12-03 18:07:49 +01:00
logging.error("Requested rate-limiting on %s but user is not authenticated!" %
lint: Fix E127 pep8 violations. Fix pep8: E127 continuation line over-indented for visual indent style issue.
2016-11-30 14:17:35 +01:00
func.__name__)
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
return func(request, *args, **kwargs)
Extracted client_is_exempt_from_rate_limiting().
2016-07-09 08:08:42 +02:00
# Rate-limiting data is stored in redis
# We also only support rate-limiting authenticated
# views right now.
# TODO(leo) - implement per-IP non-authed rate limiting
Rate limit jira and beanstalk API endpoints (imported from commit ea299df983d53ee3f917f3c7314e78e813fe95a2)
2013-06-06 20:08:02 +02:00
rate_limit_user(request, user, domain)
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
return func(request, *args, **kwargs)
Add a decorator for sending count information to statsd (imported from commit 5263e39d8c235ac56517f0a69a1b1337e6f8942a)
2013-04-16 22:52:32 +02:00
return wrapped_func
return wrapper
Add profiled decorator and a tool to show profiler results. The goal here is to make it easier to do ad hoc profiling on our codebase, particularly by running tests. (imported from commit 71da06feb3a369dec8dc4d8391f7f40e4c2d02ff)
2013-07-02 17:30:04 +02:00
mypy: Correct return_success_on_head_request typing. Also switch to python3 type annotations.
2017-10-29 22:36:43 +01:00
def return_success_on_head_request(view_func: Callable[..., HttpResponse]) -> Callable[..., HttpResponse]:
Fix trello integration by adding handling HEAD confirmation request. Previously, we rejected the HEAD requests that the trello integration uses to check if the server accepts the integration. Add decorator for returning 200 status code if request is HEAD. Fixes: #2311.
2016-11-15 17:20:22 +01:00
@wraps(view_func)
mypy: Correct return_success_on_head_request typing. Also switch to python3 type annotations.
2017-10-29 22:36:43 +01:00
def _wrapped_view_func(request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:
Fix trello integration by adding handling HEAD confirmation request. Previously, we rejected the HEAD requests that the trello integration uses to check if the server accepts the integration. Add decorator for returning 200 status code if request is HEAD. Fixes: #2311.
2016-11-15 17:20:22 +01:00
if request.method == 'HEAD':
return json_success()
return view_func(request, *args, **kwargs)
return _wrapped_view_func