Mirror
/
zulip
mirror of https://github.com/zulip/zulip.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
zulip/zerver/middleware.py

485 lines
22 KiB
Python
Raw Normal View History

python: Sort imports in easy files in zerver/.
2017-11-16 00:50:28 +01:00
import cProfile
import logging
import time
import traceback
zerver core: Remove unused imports. Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2019-02-02 23:53:55 +01:00
from typing import Any, AnyStr, Dict, \
exceptions: RateLimited shouldn't inherit from PermissionDenied. We will want to raise RateLimited in authenticate() in rate limiting code - Django's authenticate() mechanism catches PermissionDenied, which we don't want for RateLimited. We want RateLimited to propagate to our code that called the authenticate() function.
2019-08-01 18:48:41 +02:00
Iterable, List, MutableMapping, Optional
Enable absolute imports. See PEP 328[1] for details. This feature was introduced in Python 2.5 and will become mandatory in Python 3. [1]: http://www.python.org/dev/peps/pep-0328 (imported from commit 7444eeba8a08d5f91b94c7921848f2274979bd76)
2013-04-23 18:51:17 +02:00
Log time spent doing database queries when DEBUG=True. When DEBUG=False, Django doesn't log the data at all. We can and should add tracking of that at some point, but it requires patching Django; so for now just log the data when DEBUG=True. (imported from commit 2b9e6a4c68009733373724f38debe4e77313fdeb)
2013-02-11 23:33:47 +01:00
from django.conf import settings
sessions: Resync session middleware from Django upstream. Until we resolve https://github.com/zulip/zulip/issues/10832, we will need to maintain our own forked copy of Django's SessionMiddleware. We apparently let this get out of date. This fixes a few subtle bugs involving the user logout experience that were throwing occasional exceptions (e.g. the UpdateError fix you can see).
2018-11-14 23:48:53 +01:00
from django.contrib.sessions.backends.base import UpdateError
python: Sort imports in easy files in zerver/.
2017-11-16 00:50:28 +01:00
from django.contrib.sessions.middleware import SessionMiddleware
sessions: Resync session middleware from Django upstream. Until we resolve https://github.com/zulip/zulip/issues/10832, we will need to maintain our own forked copy of Django's SessionMiddleware. We apparently let this get out of date. This fixes a few subtle bugs involving the user logout experience that were throwing occasional exceptions (e.g. the UpdateError fix you can see).
2018-11-14 23:48:53 +01:00
from django.core.exceptions import DisallowedHost, SuspiciousOperation
python: Sort imports in easy files in zerver/.
2017-11-16 00:50:28 +01:00
from django.db import connection
from django.http import HttpRequest, HttpResponse, StreamingHttpResponse
zerver core: Remove unused imports. Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2019-02-02 23:53:55 +01:00
from django.shortcuts import render
python: Sort imports in easy files in zerver/.
2017-11-16 00:50:28 +01:00
from django.utils.cache import patch_vary_headers
Django 1.11: MIDDLEWARE_CLASSES setting is deprecated. Django provides MiddlewareMixin to upgrade old-style middlewares. See https://docs.djangoproject.com/en/1.11/topics/http/middleware/#upgrading-middleware
2017-05-18 11:56:03 +02:00
from django.utils.deprecation import MiddlewareMixin
python: Sort imports in easy files in zerver/.
2017-11-16 00:50:28 +01:00
from django.utils.http import cookie_date
from django.utils.translation import ugettext as _
from django.views.csrf import csrf_failure as html_csrf_failure
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
python: Sort imports in easy files in zerver/.
2017-11-16 00:50:28 +01:00
from zerver.lib.bugdown import get_bugdown_requests, get_bugdown_time
html_to_text: Extract code for html to plain text conversion.
2019-04-24 02:50:25 +02:00
from zerver.lib.cache import get_remote_cache_requests, get_remote_cache_time
debug: Add facility to dump tracemalloc snapshots. Originally this used signals, namely SIGRTMIN. But in prod, the signal handler never fired; I debugged fruitlessly for a while, and suspect uwsgi was foiling it in a mysterious way (which is kind of the only way uwsgi does anything.) So, we listen on a socket. Bit more code, and a bit trickier to invoke, but it works. This was developed for the investigation of memory-bloating on chat.zulip.org that led to a331b4f64 "Optimize query_all_subs_by_stream()". For usage instructions, see docstring.
2017-10-04 01:29:53 +02:00
from zerver.lib.debug import maybe_tracemalloc_listen
middleware: Fix logging of query counts in websockets requests. Apparently, we weren't resetting the query counters inside the websockets codebase, resulting in broken log results like this: SOCKET 403 2ms (db: 1ms/2q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 5ms (db: 2ms/3q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 3ms/4q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 3ms/5q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 4ms/6q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 5ms/7q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 5ms/8q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 3ms (db: 6ms/9q) /socket/auth [transport=websocket] (unknown via ?) The correct fix for this is to call reset_queries at the start of each endpoint within the websockets system. As it turns out, we're already calling record_request_start_data there, and in fact should be calling `reset_queries` in all code paths that use that function (the other code paths, in zerver/middleware.py, do it manually with connection.connection.queries = []). So we can clean up the code in a way that reduces risk for similar future issues and fix this logging bug with this simple refactor.
2018-11-01 00:19:48 +01:00
from zerver.lib.db import reset_queries
python: Sort imports in easy files in zerver/.
2017-11-16 00:50:28 +01:00
from zerver.lib.exceptions import ErrorCode, JsonableError, RateLimited
html_to_text: Extract code for html to plain text conversion.
2019-04-24 02:50:25 +02:00
from zerver.lib.html_to_text import get_content_description
python: Sort imports in easy files in zerver/.
2017-11-16 00:50:28 +01:00
from zerver.lib.queue import queue_json_publish
rate_limiter: Handle multiple types of rate limiting in middleware. As more types of rate limiting of requests are added, one request may end up having various limits applied to it - and the middleware needs to be able to handle that. We implement that through a set_response_headers function, which sets the X-RateLimit-* headers in a sensible way based on all the limits that were applied to the request.
2019-12-28 20:23:18 +01:00
from zerver.lib.rate_limiter import RateLimitResult, max_api_calls
JsonErrorHandler: Take advantage of the new JsonableError structured data.
2017-07-21 02:19:52 +02:00
from zerver.lib.response import json_error, json_response_from_error
subdomains: Extract zerver.lib.subdomains library. These never really belonged with the rest of zerver.lib.utils.py, and having a separate library makes it easier to enforce full test coverage.
2017-10-19 07:21:57 +02:00
from zerver.lib.subdomains import get_subdomain
from zerver.lib.utils import statsd
mypy: Rewrite some middleware annotations to use ViewFuncT.
2018-03-14 23:16:27 +01:00
from zerver.lib.types import ViewFuncT
subdomains: Fix some implicit uses of "" for the root subdomain. These are just instances that jumped out at me while working on the subdomains code, mostly while grepping for get_subdomain call sites. I haven't attempted a comprehensive search, and there are likely still others left.
2017-10-20 02:56:49 +02:00
from zerver.models import Realm, flush_per_request_caches, get_realm
Log all requests runserver already prints them to the console, but runfcgi doesn't. (imported from commit 3450e3fd65ef3990729c94e80dad4fc3c89f0e64)
2012-10-16 23:52:10 +02:00
Rename Django project to zproject. This includes a hack to preserve humbug/backends.py as a symlink, so that we don't need to regenerate all our old sessions. (imported from commit b7918988b31c71ec01bbdc270db7017d4069221d)
2013-08-06 22:51:47 +02:00
logger = logging.getLogger('zulip.requests')
Log all requests runserver already prints them to the console, but runfcgi doesn't. (imported from commit 3450e3fd65ef3990729c94e80dad4fc3c89f0e64)
2012-10-16 23:52:10 +02:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def record_request_stop_data(log_data: MutableMapping[str, Any]) -> None:
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
log_data['time_stopped'] = time.time()
s/memcached_time/remote_cache_time/g
2016-03-31 03:23:21 +02:00
log_data['remote_cache_time_stopped'] = get_remote_cache_time()
s/memcached_requests/remote_cache_requests/g
2016-03-31 03:24:05 +02:00
log_data['remote_cache_requests_stopped'] = get_remote_cache_requests()
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
log_data['bugdown_time_stopped'] = get_bugdown_time()
log_data['bugdown_requests_stopped'] = get_bugdown_requests()
Add setting to enable profiling of all requests. This is useful for the occasional case where we cannot figure out what is causing a particular problem, but it can be easily reproduced on staging. (imported from commit 8b51184a8b686814f2c6ff103ba355538463ceb0)
2013-11-18 18:55:19 +01:00
if settings.PROFILE_ALL_REQUESTS:
log_data["prof"].disable()
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
tornado: Rename async_request_{restart,stop} to mention timer. Previously, these timer accounting functions could be easily mistaken for referring to starting/stopping the request. By adding timer to the name, we make the code easier for the casual observer to read and understand.
2018-10-17 00:39:10 +02:00
def async_request_timer_stop(request: HttpRequest) -> None:
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
record_request_stop_data(request._log_data)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def record_request_restart_data(log_data: MutableMapping[str, Any]) -> None:
Add setting to enable profiling of all requests. This is useful for the occasional case where we cannot figure out what is causing a particular problem, but it can be easily reproduced on staging. (imported from commit 8b51184a8b686814f2c6ff103ba355538463ceb0)
2013-11-18 18:55:19 +01:00
if settings.PROFILE_ALL_REQUESTS:
log_data["prof"].enable()
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
log_data['time_restarted'] = time.time()
s/memcached_time/remote_cache_time/g
2016-03-31 03:23:21 +02:00
log_data['remote_cache_time_restarted'] = get_remote_cache_time()
s/memcached_requests/remote_cache_requests/g
2016-03-31 03:24:05 +02:00
log_data['remote_cache_requests_restarted'] = get_remote_cache_requests()
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
log_data['bugdown_time_restarted'] = get_bugdown_time()
log_data['bugdown_requests_restarted'] = get_bugdown_requests()
Use a function for stopping/restarting time logging for longpolling. (imported from commit 11b772deaa126fcc7e7605d467022b22d9e98cb0)
2013-04-23 19:36:50 +02:00
tornado: Rename async_request_{restart,stop} to mention timer. Previously, these timer accounting functions could be easily mistaken for referring to starting/stopping the request. By adding timer to the name, we make the code easier for the casual observer to read and understand.
2018-10-17 00:39:10 +02:00
def async_request_timer_restart(request: HttpRequest) -> None:
Finish event handlers when disconnecting from an event queue. This should help prevent timeouts from clients whose requests have been supplanted. (imported from commit fdb3a89c4ec02bb23d0fba50ea558d48cb786916)
2013-12-12 18:59:02 +01:00
if "time_restarted" in request._log_data:
# Don't destroy data when being called from
# finish_current_handler
return
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
record_request_restart_data(request._log_data)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def record_request_start_data(log_data: MutableMapping[str, Any]) -> None:
Add setting to enable profiling of all requests. This is useful for the occasional case where we cannot figure out what is causing a particular problem, but it can be easily reproduced on staging. (imported from commit 8b51184a8b686814f2c6ff103ba355538463ceb0)
2013-11-18 18:55:19 +01:00
if settings.PROFILE_ALL_REQUESTS:
log_data["prof"] = cProfile.Profile()
log_data["prof"].enable()
middleware: Fix logging of query counts in websockets requests. Apparently, we weren't resetting the query counters inside the websockets codebase, resulting in broken log results like this: SOCKET 403 2ms (db: 1ms/2q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 5ms (db: 2ms/3q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 3ms/4q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 3ms/5q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 4ms/6q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 5ms/7q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 2ms (db: 5ms/8q) /socket/auth [transport=websocket] (unknown via ?) SOCKET 403 3ms (db: 6ms/9q) /socket/auth [transport=websocket] (unknown via ?) The correct fix for this is to call reset_queries at the start of each endpoint within the websockets system. As it turns out, we're already calling record_request_start_data there, and in fact should be calling `reset_queries` in all code paths that use that function (the other code paths, in zerver/middleware.py, do it manually with connection.connection.queries = []). So we can clean up the code in a way that reduces risk for similar future issues and fix this logging bug with this simple refactor.
2018-11-01 00:19:48 +01:00
reset_queries()
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
log_data['time_started'] = time.time()
s/memcached_time/remote_cache_time/g
2016-03-31 03:23:21 +02:00
log_data['remote_cache_time_start'] = get_remote_cache_time()
s/memcached_requests/remote_cache_requests/g
2016-03-31 03:24:05 +02:00
log_data['remote_cache_requests_start'] = get_remote_cache_requests()
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
log_data['bugdown_time_start'] = get_bugdown_time()
log_data['bugdown_requests_start'] = get_bugdown_requests()
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def timedelta_ms(timedelta: float) -> float:
socket: Use our full logging infrastructure We also now separate out the times for the socket overhead, the request service time, and the queuing delays. (imported from commit e1683f7f28b968b86ebb701b0ac29b00ac6d67c3)
2013-11-08 23:11:37 +01:00
return timedelta * 1000
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def format_timedelta(timedelta: float) -> str:
socket: Use our full logging infrastructure We also now separate out the times for the socket overhead, the request service time, and the queuing delays. (imported from commit e1683f7f28b968b86ebb701b0ac29b00ac6d67c3)
2013-11-08 23:11:37 +01:00
if (timedelta >= 1):
lint: Fix code that evaded our lint checks for string % non-tuple. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-04-20 01:00:46 +02:00
return "%.1fs" % (timedelta,)
socket: Use our full logging infrastructure We also now separate out the times for the socket overhead, the request service time, and the queuing delays. (imported from commit e1683f7f28b968b86ebb701b0ac29b00ac6d67c3)
2013-11-08 23:11:37 +01:00
return "%.0fms" % (timedelta_ms(timedelta),)
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
zerver: Change use of typing.Text to str.
2018-05-11 01:39:17 +02:00
def is_slow_query(time_delta: float, path: str) -> bool:
Bump slow query threshold to 1.2s (imported from commit 8d97fc22d208274bc57b884828957dacf396348a)
2013-12-26 15:16:49 +01:00
if time_delta < 1.2:
Break up conditional in is_slow_query(). (imported from commit c7ca42965e917a0386069c915c0225cefc218c3e)
2013-12-26 15:13:00 +01:00
return False
is_exempt = \
urls: Move the report endpoints to be API-style routes.
2017-10-16 22:07:19 +02:00
path in ["/activity", "/json/report/error",
Break up conditional in is_slow_query(). (imported from commit c7ca42965e917a0386069c915c0225cefc218c3e)
2013-12-26 15:13:00 +01:00
"/api/v1/deployments/report_error"] \
or path.startswith("/realm_activity/") \
or path.startswith("/user_activity/")
if is_exempt:
Log internal queries if they are >= 5s. (imported from commit ee88fcd6292a177e02bfe5e5bca5480b0e474030)
2013-12-26 15:23:18 +01:00
return time_delta >= 5
Give higher threshold for webathena kerberos queries. These are mostly out of our control, so they are not very actionable. (imported from commit ef342ec1edbff0fa1a934413a7f19ed14817a502)
2013-12-26 15:20:59 +01:00
if 'webathena_kerberos' in path:
return time_delta >= 10
Break up conditional in is_slow_query(). (imported from commit c7ca42965e917a0386069c915c0225cefc218c3e)
2013-12-26 15:13:00 +01:00
return True
Extract middleware.is_slow_query() and add tests. (imported from commit 60902244a420800f558fdf2f1c38b4ed736c1286)
2013-12-26 15:01:46 +01:00
middleware: Avoid doing work for statsd when not enabled. This saves about 8% of the runtime of our total response middleware, or equivalently close to 2% of the total Tornado response time. Which is pretty significant given that we're not sure anyone is using statsd in production. It's also useful outside Tornado, but the effect is particularly significant because of how important Tornado performance is.
2019-02-28 02:46:00 +01:00
statsd_blacklisted_requests = [
'do_confirm', 'signup_send_confirm', 'new_realm_send_confirm,'
'eventslast_event_id', 'webreq.content', 'avatar', 'user_uploads',
'password.reset', 'static', 'json.bots', 'json.users', 'json.streams',
'accounts.unsubscribe', 'apple-touch-icon', 'emoji', 'json.bots',
'upload_file', 'realm_activity', 'user_activity'
]
zerver: Change use of typing.Text to str.
2018-05-11 01:39:17 +02:00
def write_log_line(log_data: MutableMapping[str, Any], path: str, method: str, remote_ip: str, email: str,
client_name: str, status_code: int=200, error_content: Optional[AnyStr]=None,
mypy: Use Python 3 type syntax in zerver/middleware.py.
2017-12-08 17:42:02 +01:00
error_content_iter: Optional[Iterable[AnyStr]]=None) -> None:
Fix write_log_line for real. (imported from commit cbb5c38b8e6c31822b28c478463978aa6cab33d4)
2015-08-22 23:38:01 +02:00
assert error_content is None or error_content_iter is None
Fix write_log_line breakage for websockets. (imported from commit 43bf24822329cf9729654ba58e9ffb0bff3403da)
2015-08-22 23:18:31 +02:00
if error_content is not None:
error_content_iter = (error_content,)
middleware: Avoid doing work for statsd when not enabled. This saves about 8% of the runtime of our total response middleware, or equivalently close to 2% of the total Tornado response time. Which is pretty significant given that we're not sure anyone is using statsd in production. It's also useful outside Tornado, but the effect is particularly significant because of how important Tornado performance is.
2019-02-28 02:46:00 +01:00
if settings.STATSD_HOST != '':
# For statsd timer name
if path == '/':
statsd_path = u'webreq'
else:
statsd_path = u"webreq.%s" % (path[1:].replace('/', '.'),)
# Remove non-ascii chars from path (there should be none, if there are it's
# because someone manually entered a nonexistent path), as UTF-8 chars make
# statsd sad when it sends the key name over the socket
statsd_path = statsd_path.encode('ascii', errors='ignore').decode("ascii")
# TODO: This could probably be optimized to use a regular expression rather than a loop.
suppress_statsd = any((blacklisted in statsd_path for blacklisted in statsd_blacklisted_requests))
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
else:
middleware: Avoid doing work for statsd when not enabled. This saves about 8% of the runtime of our total response middleware, or equivalently close to 2% of the total Tornado response time. Which is pretty significant given that we're not sure anyone is using statsd in production. It's also useful outside Tornado, but the effect is particularly significant because of how important Tornado performance is.
2019-02-28 02:46:00 +01:00
suppress_statsd = True
statsd_path = ''
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
time_delta = -1
# A time duration of -1 means the StartLogRequests middleware
# didn't run for some reason
optional_orig_delta = ""
if 'time_started' in log_data:
time_delta = time.time() - log_data['time_started']
if 'time_stopped' in log_data:
orig_time_delta = time_delta
time_delta = ((log_data['time_stopped'] - log_data['time_started']) +
(time.time() - log_data['time_restarted']))
optional_orig_delta = " (lp: %s)" % (format_timedelta(orig_time_delta),)
s/memcached_output/remote_cache_output/g
2016-03-31 03:28:24 +02:00
remote_cache_output = ""
s/memcached_time/remote_cache_time/g
2016-03-31 03:23:21 +02:00
if 'remote_cache_time_start' in log_data:
remote_cache_time_delta = get_remote_cache_time() - log_data['remote_cache_time_start']
s/memcached_count_delta/remote_cache_count_delta/g
2016-03-31 03:26:47 +02:00
remote_cache_count_delta = get_remote_cache_requests() - log_data['remote_cache_requests_start']
s/memcached_requests/remote_cache_requests/g
2016-03-31 03:24:05 +02:00
if 'remote_cache_requests_stopped' in log_data:
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
# (now - restarted) + (stopped - start) = (now - start) + (stopped - restarted)
s/memcached_time/remote_cache_time/g
2016-03-31 03:23:21 +02:00
remote_cache_time_delta += (log_data['remote_cache_time_stopped'] -
pep8: Fix many rule E128 violations. [Tweaked by tabbott to adjust some approaches used in wrapping]
2016-12-03 00:04:17 +01:00
log_data['remote_cache_time_restarted'])
s/memcached_count_delta/remote_cache_count_delta/g
2016-03-31 03:26:47 +02:00
remote_cache_count_delta += (log_data['remote_cache_requests_stopped'] -
pep8: Fix many rule E128 violations. [Tweaked by tabbott to adjust some approaches used in wrapping]
2016-12-03 00:04:17 +01:00
log_data['remote_cache_requests_restarted'])
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
s/memcached_time/remote_cache_time/g
2016-03-31 03:23:21 +02:00
if (remote_cache_time_delta > 0.005):
s/memcached_output/remote_cache_output/g
2016-03-31 03:28:24 +02:00
remote_cache_output = " (mem: %s/%s)" % (format_timedelta(remote_cache_time_delta),
remote_cache_count_delta)
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
if not suppress_statsd:
switch output stats memcached -> remote_cache
2016-03-31 03:33:30 +02:00
statsd.timing("%s.remote_cache.time" % (statsd_path,), timedelta_ms(remote_cache_time_delta))
statsd.incr("%s.remote_cache.querycount" % (statsd_path,), remote_cache_count_delta)
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
logging: Fix request processing time to not count initialization. Previously, we counted not just the time required to process a particular request, but also the time required to import+find the view function via urls.py. The latter is usually fast, but when a new Django thread starts up, it can take significant time, resulting in us flagging slow requests on each server restart and also when a new Django thread starts up on prod to handle requests. This change means that we no longer include that startup time as part of request processing time -- but we still log it in the case that it was more than 5ms, so that we can identify why a particular request was slower than expected if high startup times become a problem. We annotate the time in log lines as "+start" rather than just "start" to make clear that it's not counted in the total. (imported from commit c677682e23b26005060390d85d386234f4f463ad)
2013-11-18 19:34:37 +01:00
startup_output = ""
if 'startup_time_delta' in log_data and log_data["startup_time_delta"] > 0.005:
lint: Fix code that evaded our lint checks for string % non-tuple. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-04-20 01:00:46 +02:00
startup_output = " (+start: %s)" % (format_timedelta(log_data["startup_time_delta"]),)
logging: Fix request processing time to not count initialization. Previously, we counted not just the time required to process a particular request, but also the time required to import+find the view function via urls.py. The latter is usually fast, but when a new Django thread starts up, it can take significant time, resulting in us flagging slow requests on each server restart and also when a new Django thread starts up on prod to handle requests. This change means that we no longer include that startup time as part of request processing time -- but we still log it in the case that it was more than 5ms, so that we can identify why a particular request was slower than expected if high startup times become a problem. We annotate the time in log lines as "+start" rather than just "start" to make clear that it's not counted in the total. (imported from commit c677682e23b26005060390d85d386234f4f463ad)
2013-11-18 19:34:37 +01:00
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
bugdown_output = ""
if 'bugdown_time_start' in log_data:
bugdown_time_delta = get_bugdown_time() - log_data['bugdown_time_start']
bugdown_count_delta = get_bugdown_requests() - log_data['bugdown_requests_start']
if 'bugdown_requests_stopped' in log_data:
# (now - restarted) + (stopped - start) = (now - start) + (stopped - restarted)
bugdown_time_delta += (log_data['bugdown_time_stopped'] -
log_data['bugdown_time_restarted'])
bugdown_count_delta += (log_data['bugdown_requests_stopped'] -
log_data['bugdown_requests_restarted'])
if (bugdown_time_delta > 0.005):
bugdown_output = " (md: %s/%s)" % (format_timedelta(bugdown_time_delta),
bugdown_count_delta)
if not suppress_statsd:
statsd.timing("%s.markdown.time" % (statsd_path,), timedelta_ms(bugdown_time_delta))
statsd.incr("%s.markdown.count" % (statsd_path,), bugdown_count_delta)
# Get the amount of time spent doing database queries
db_time_output = ""
Do query time tracking at the psycopg2 level instead of the Django level This allows us to track the query time of SQLAlchemy and raw queries. (imported from commit 818a4ee41786ffc57b80d7ed1cfba075f29b6ee5)
2014-01-07 22:20:29 +01:00
queries = connection.connection.queries if connection.connection is not None else []
if len(queries) > 0:
query_time = sum(float(query.get('time', 0)) for query in queries)
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
db_time_output = " (db: %s/%sq)" % (format_timedelta(query_time),
Do query time tracking at the psycopg2 level instead of the Django level This allows us to track the query time of SQLAlchemy and raw queries. (imported from commit 818a4ee41786ffc57b80d7ed1cfba075f29b6ee5)
2014-01-07 22:20:29 +01:00
len(queries))
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
if not suppress_statsd:
# Log ms, db ms, and num queries to statsd
statsd.timing("%s.dbtime" % (statsd_path,), timedelta_ms(query_time))
Fix unnecessary whitespace between , and ).
2016-05-04 23:16:27 +02:00
statsd.incr("%s.dbq" % (statsd_path,), len(queries))
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
statsd.timing("%s.total" % (statsd_path,), timedelta_ms(time_delta))
if 'extra' in log_data:
extra_request_data = " %s" % (log_data['extra'],)
else:
extra_request_data = ""
logger_client = "(%s via %s)" % (email, client_name)
lint: Fix E127 pep8 violations. Fix pep8: E127 continuation line over-indented for visual indent style issue.
2016-11-30 14:17:35 +01:00
logger_timing = ('%5s%s%s%s%s%s %s' %
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
(format_timedelta(time_delta), optional_orig_delta,
s/memcached_output/remote_cache_output/g
2016-03-31 03:28:24 +02:00
remote_cache_output, bugdown_output,
lint: Fix E127 pep8 violations. Fix pep8: E127 continuation line over-indented for visual indent style issue.
2016-11-30 14:17:35 +01:00
db_time_output, startup_output, path))
logger_line = ('%-15s %-7s %3d %s%s %s' %
(remote_ip, method, status_code,
logger_timing, extra_request_data, logger_client))
Use logger.debug when logging 200/304 output on static assets.
2015-12-14 06:54:38 +01:00
if (status_code in [200, 304] and method == "GET" and path.startswith("/static")):
logger.debug(logger_line)
else:
logger.info(logger_line)
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
Extract middleware.is_slow_query() and add tests. (imported from commit 60902244a420800f558fdf2f1c38b4ed736c1286)
2013-12-26 15:01:46 +01:00
if (is_slow_query(time_delta, path)):
middleware: Change write_log_line to publish as a dict. We were seeing errors when pubishing typical events in the form of `Dict[str, Any]` as the expected type to be a `Union`. So we instead change the only non-dictionary call, to pass a dict instead of `str`.
2019-07-22 22:08:03 +02:00
queue_json_publish("slow_queries", dict(
query="%s (%s)" % (logger_line, email)))
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
Add setting to enable profiling of all requests. This is useful for the occasional case where we cannot figure out what is causing a particular problem, but it can be easily reproduced on staging. (imported from commit 8b51184a8b686814f2c6ff103ba355538463ceb0)
2013-11-18 18:55:19 +01:00
if settings.PROFILE_ALL_REQUESTS:
log_data["prof"].disable()
profile_path = "/tmp/profile.data.%s.%s" % (path.split("/")[-1], int(time_delta * 1000),)
log_data["prof"].dump_stats(profile_path)
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
# Log some additional data whenever we return certain 40x errors
if 400 <= status_code < 500 and status_code not in [401, 404, 405]:
mypy: Fix several Optional typing errors.
2017-02-11 05:26:24 +01:00
assert error_content_iter is not None
zerver/middleware.py: Handle binary data in errors. In write_log_line, error_content can be binary_type and error_content_iter can be a Sequence of binary_type. Handle this this in a python 3 compatible way. Also change annotations to reflect this fact.
2016-07-10 00:15:36 +02:00
error_content_list = list(error_content_iter)
write_log_line: Fix logging of 4xx error data. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-07-25 23:16:41 +02:00
if not error_content_list:
zerver/middleware.py: Handle binary data in errors. In write_log_line, error_content can be binary_type and error_content_iter can be a Sequence of binary_type. Handle this this in a python 3 compatible way. Also change annotations to reflect this fact.
2016-07-10 00:15:36 +02:00
error_data = u''
zerver: Change use of typing.Text to str.
2018-05-11 01:39:17 +02:00
elif isinstance(error_content_list[0], str):
zerver/middleware.py: Handle binary data in errors. In write_log_line, error_content can be binary_type and error_content_iter can be a Sequence of binary_type. Handle this this in a python 3 compatible way. Also change annotations to reflect this fact.
2016-07-10 00:15:36 +02:00
error_data = u''.join(error_content_list)
Remove usage of six.moves.binary_type.
2017-11-09 09:03:33 +01:00
elif isinstance(error_content_list[0], bytes):
zerver/middleware.py: Handle binary data in errors. In write_log_line, error_content can be binary_type and error_content_iter can be a Sequence of binary_type. Handle this this in a python 3 compatible way. Also change annotations to reflect this fact.
2016-07-10 00:15:36 +02:00
error_data = repr(b''.join(error_content_list))
write_log_line: Fix logging of 4xx error data. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-07-25 23:16:41 +02:00
if len(error_data) > 200:
error_data = u"[content more than 200 characters]"
zerver/middleware.py: Handle binary data in errors. In write_log_line, error_content can be binary_type and error_content_iter can be a Sequence of binary_type. Handle this this in a python 3 compatible way. Also change annotations to reflect this fact.
2016-07-10 00:15:36 +02:00
logger.info('status=%3d, data=%s, uid=%s' % (status_code, error_data, email))
Use a function for stopping/restarting time logging for longpolling. (imported from commit 11b772deaa126fcc7e7605d467022b22d9e98cb0)
2013-04-23 19:36:50 +02:00
Django 1.11: MIDDLEWARE_CLASSES setting is deprecated. Django provides MiddlewareMixin to upgrade old-style middlewares. See https://docs.djangoproject.com/en/1.11/topics/http/middleware/#upgrading-middleware
2017-05-18 11:56:03 +02:00
class LogRequests(MiddlewareMixin):
logging: Fix request processing time to not count initialization. Previously, we counted not just the time required to process a particular request, but also the time required to import+find the view function via urls.py. The latter is usually fast, but when a new Django thread starts up, it can take significant time, resulting in us flagging slow requests on each server restart and also when a new Django thread starts up on prod to handle requests. This change means that we no longer include that startup time as part of request processing time -- but we still log it in the case that it was more than 5ms, so that we can identify why a particular request was slower than expected if high startup times become a problem. We annotate the time in log lines as "+start" rather than just "start" to make clear that it's not counted in the total. (imported from commit c677682e23b26005060390d85d386234f4f463ad)
2013-11-18 19:34:37 +01:00
# We primarily are doing logging using the process_view hook, but
# for some views, process_view isn't run, so we call the start
# method here too
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def process_request(self, request: HttpRequest) -> None:
debug: Add facility to dump tracemalloc snapshots. Originally this used signals, namely SIGRTMIN. But in prod, the signal handler never fired; I debugged fruitlessly for a while, and suspect uwsgi was foiling it in a mysterious way (which is kind of the only way uwsgi does anything.) So, we listen on a socket. Bit more code, and a bit trickier to invoke, but it works. This was developed for the investigation of memory-bloating on chat.zulip.org that led to a331b4f64 "Optimize query_all_subs_by_stream()". For usage instructions, see docstring.
2017-10-04 01:29:53 +02:00
maybe_tracemalloc_listen()
Store logging data in a dict instead of individual attributes (imported from commit f7d76670428d5d8298c572a23cbfffc1d9695f23)
2013-11-08 20:18:02 +01:00
request._log_data = dict()
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
record_request_start_data(request._log_data)
Log how long requests take to process. (imported from commit 89915f859e4493ff04a34d198ac6df5541b743cc)
2012-11-14 21:00:26 +01:00
mypy: Rewrite some middleware annotations to use ViewFuncT.
2018-03-14 23:16:27 +01:00
def process_view(self, request: HttpRequest, view_func: ViewFuncT,
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
args: List[str], kwargs: Dict[str, Any]) -> None:
logging: Fix request processing time to not count initialization. Previously, we counted not just the time required to process a particular request, but also the time required to import+find the view function via urls.py. The latter is usually fast, but when a new Django thread starts up, it can take significant time, resulting in us flagging slow requests on each server restart and also when a new Django thread starts up on prod to handle requests. This change means that we no longer include that startup time as part of request processing time -- but we still log it in the case that it was more than 5ms, so that we can identify why a particular request was slower than expected if high startup times become a problem. We annotate the time in log lines as "+start" rather than just "start" to make clear that it's not counted in the total. (imported from commit c677682e23b26005060390d85d386234f4f463ad)
2013-11-18 19:34:37 +01:00
# process_request was already run; we save the initialization
# time (i.e. the time between receiving the request and
# figuring out which view function to call, which is primarily
# importing modules on the first start)
request._log_data["startup_time_delta"] = time.time() - request._log_data["time_started"]
# And then completely reset our tracking to only cover work
# done as part of this request
record_request_start_data(request._log_data)
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def process_response(self, request: HttpRequest,
response: StreamingHttpResponse) -> StreamingHttpResponse:
Log all requests runserver already prints them to the console, but runfcgi doesn't. (imported from commit 3450e3fd65ef3990729c94e80dad4fc3c89f0e64)
2012-10-16 23:52:10 +02:00
# The reverse proxy might have sent us the real external IP
remote_ip = request.META.get('HTTP_X_REAL_IP')
if remote_ip is None:
remote_ip = request.META['REMOTE_ADDR']
Add the user's client string to our Django logs. This should let us distinguish e.g. mobile from API bots. (imported from commit 192114a0f79bfa7fb918e8c026da63ef772c2449)
2013-03-15 18:57:58 +01:00
# Get the requestor's email address and client, if available.
Log requestor email address for non-error requests too. This should make it much easier to debug issues where a particular user is hosing our API, for example. (imported from commit cbea49fd1e11805cadf564bd9160d3d6bf7e0eca)
2013-02-11 23:15:34 +01:00
try:
email = request._email
except Exception:
email = "unauth"
Add the user's client string to our Django logs. This should let us distinguish e.g. mobile from API bots. (imported from commit 192114a0f79bfa7fb918e8c026da63ef772c2449)
2013-03-15 18:57:58 +01:00
try:
Make request._client a public member, dropping the '_'. (imported from commit 5fc7ab57157ceb40c8bca9b0c97a47d8fac6745b)
2013-03-26 19:40:28 +01:00
client = request.client.name
Add the user's client string to our Django logs. This should let us distinguish e.g. mobile from API bots. (imported from commit 192114a0f79bfa7fb918e8c026da63ef772c2449)
2013-03-15 18:57:58 +01:00
except Exception:
client = "?"
Log requestor email address for non-error requests too. This should make it much easier to debug issues where a particular user is hosing our API, for example. (imported from commit cbea49fd1e11805cadf564bd9160d3d6bf7e0eca)
2013-02-11 23:15:34 +01:00
Django 1.7 compatibility: handle both response.content and response.streaming_content (imported from commit faaaff96819731a334d52b7d715c8ddb7c0d4293)
2015-08-19 22:20:27 +02:00
if response.streaming:
content_iter = response.streaming_content
Fix write_log_line breakage for websockets. (imported from commit 43bf24822329cf9729654ba58e9ffb0bff3403da)
2015-08-22 23:18:31 +02:00
content = None
Django 1.7 compatibility: handle both response.content and response.streaming_content (imported from commit faaaff96819731a334d52b7d715c8ddb7c0d4293)
2015-08-19 22:20:27 +02:00
else:
Fix write_log_line breakage for websockets. (imported from commit 43bf24822329cf9729654ba58e9ffb0bff3403da)
2015-08-22 23:18:31 +02:00
content = response.content
Fix write_log_line for real. (imported from commit cbb5c38b8e6c31822b28c478463978aa6cab33d4)
2015-08-22 23:38:01 +02:00
content_iter = None
Django 1.7 compatibility: handle both response.content and response.streaming_content (imported from commit faaaff96819731a334d52b7d715c8ddb7c0d4293)
2015-08-19 22:20:27 +02:00
Make all the work of the logging middleware not depend on Request or Response objects (imported from commit ce13909d338230a931cb09405d54bb872b2ff0a6)
2013-11-08 21:40:44 +01:00
write_log_line(request._log_data, request.path, request.method,
Fix write_log_line breakage for websockets. (imported from commit 43bf24822329cf9729654ba58e9ffb0bff3403da)
2015-08-22 23:18:31 +02:00
remote_ip, email, client, status_code=response.status_code,
error_content=content, error_content_iter=content_iter)
Log all requests runserver already prints them to the console, but runfcgi doesn't. (imported from commit 3450e3fd65ef3990729c94e80dad4fc3c89f0e64)
2012-10-16 23:52:10 +02:00
return response
Move @has_request_variables error responses to middleware This will now allow us to use @has_request_variables on helper functions. (imported from commit 799d71477654eac7fd8192cfc5bb88b78053532d)
2012-12-19 20:19:46 +01:00
Django 1.11: MIDDLEWARE_CLASSES setting is deprecated. Django provides MiddlewareMixin to upgrade old-style middlewares. See https://docs.djangoproject.com/en/1.11/topics/http/middleware/#upgrading-middleware
2017-05-18 11:56:03 +02:00
class JsonErrorHandler(MiddlewareMixin):
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def process_exception(self, request: HttpRequest, exception: Exception) -> Optional[HttpResponse]:
JsonableError: Add types, and eliminate duck-typing. In order to benefit from the modern conveniences of type-checking, add concrete, non-Any types to the interface for JsonableError. Relatedly, there's no need at this point to duck-type things at the places where we receive a JsonableError and try to use it. Simplify those by using straightforward standard typing.
2017-07-20 00:19:42 +02:00
if isinstance(exception, JsonableError):
JsonErrorHandler: Take advantage of the new JsonableError structured data.
2017-07-21 02:19:52 +02:00
return json_response_from_error(exception)
Report json format 500 errors from all json format views. Previously, we only did this via rest_dispatch. (imported from commit b0edfdccea294378292b64677a64d5b01f936b08)
2013-12-17 22:50:49 +01:00
if request.error_format == "JSON":
errors: Include request info on error mails for JSON routes too. When our code raises an exception and Django converts it to a 500 response (in django.core.handlers.exception.handle_uncaught_exception), it attaches the request to the log record, and we use this in our AdminNotifyHandler to include data like the user and the URL path in the error email sent to admins. On this line, when our code raises an exception but we've decided (in `TagRequests`) to format any errors as JSON errors, we suppress the exception so we have to generate the log record ourselves. Attach the request here, just like Django does when we let it do the job. This still isn't an awesome solution, in that there are lots of other places where we call `logging.error` or `logging.exception` while inside a request; this just covers one of them. This is one of the most common, though, so it's a start.
2018-03-01 23:55:37 +01:00
logging.error(traceback.format_exc(), extra=dict(request=request))
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
return json_error(_("Internal server error"), status=500)
Move @has_request_variables error responses to middleware This will now allow us to use @has_request_variables on helper functions. (imported from commit 799d71477654eac7fd8192cfc5bb88b78053532d)
2012-12-19 20:19:46 +01:00
return None
Monkeypatch Django cursor to log query times even when DEBUG=False. I don't like monkeypatching in general, but this will give us logging of how much time is being spent in total on database queries on our staging and prod instances for each of the views we have -- which should help a lot with debugging performance problems. The code being patched is identical in Django 1.5, so I don't expect any issues upgrading in the near future. I may work on a patch to upstream Django to support this as well. (imported from commit 08624c7a30f1fd192a972973e0380dd6a131d84e)
2013-02-12 17:26:12 +01:00
Django 1.11: MIDDLEWARE_CLASSES setting is deprecated. Django provides MiddlewareMixin to upgrade old-style middlewares. See https://docs.djangoproject.com/en/1.11/topics/http/middleware/#upgrading-middleware
2017-05-18 11:56:03 +02:00
class TagRequests(MiddlewareMixin):
mypy: Rewrite some middleware annotations to use ViewFuncT.
2018-03-14 23:16:27 +01:00
def process_view(self, request: HttpRequest, view_func: ViewFuncT,
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
args: List[str], kwargs: Dict[str, Any]) -> None:
Return a nice JSON error when CSRF errors happen in JSON views. (imported from commit 916166c115f9b3ba0fdc93f8d917ff37ae22c2ae)
2013-12-17 22:18:13 +01:00
self.process_request(request)
pep8: Fix E301 pep8 violations. Fix "E301: expected (1 or 2) blank line" pep8 violations.
2016-11-29 07:22:02 +01:00
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def process_request(self, request: HttpRequest) -> None:
Return a nice JSON error when CSRF errors happen in JSON views. (imported from commit 916166c115f9b3ba0fdc93f8d917ff37ae22c2ae)
2013-12-17 22:18:13 +01:00
if request.path.startswith("/api/") or request.path.startswith("/json/"):
request.error_format = "JSON"
else:
request.error_format = "HTML"
middleware: Use a proper error code on CSRF failure. This allows us to reliably parse the error in code, rather than attempt to parse the error text. Because the error text gets translated into the user's language, this error-handling path wasn't functioning at all for users using Zulip in any of the seven non-English languages for which we had a translation for this string. Together with 709c3b50f which fixed a similar issue in a different error-handling path, this fixes #5598.
2017-07-25 03:30:13 +02:00
class CsrfFailureError(JsonableError):
http_status_code = 403
code = ErrorCode.CSRF_FAILED
data_fields = ['reason']
zerver: Change use of typing.Text to str.
2018-05-11 01:39:17 +02:00
def __init__(self, reason: str) -> None:
self.reason = reason # type: str
middleware: Use a proper error code on CSRF failure. This allows us to reliably parse the error in code, rather than attempt to parse the error text. Because the error text gets translated into the user's language, this error-handling path wasn't functioning at all for users using Zulip in any of the seven non-English languages for which we had a translation for this string. Together with 709c3b50f which fixed a similar issue in a different error-handling path, this fixes #5598.
2017-07-25 03:30:13 +02:00
@staticmethod
zerver: Change use of typing.Text to str.
2018-05-11 01:39:17 +02:00
def msg_format() -> str:
middleware: Use a proper error code on CSRF failure. This allows us to reliably parse the error in code, rather than attempt to parse the error text. Because the error text gets translated into the user's language, this error-handling path wasn't functioning at all for users using Zulip in any of the seven non-English languages for which we had a translation for this string. Together with 709c3b50f which fixed a similar issue in a different error-handling path, this fixes #5598.
2017-07-25 03:30:13 +02:00
return _("CSRF Error: {reason}")
zerver: Change use of typing.Text to str.
2018-05-11 01:39:17 +02:00
def csrf_failure(request: HttpRequest, reason: str="") -> HttpResponse:
Return a nice JSON error when CSRF errors happen in JSON views. (imported from commit 916166c115f9b3ba0fdc93f8d917ff37ae22c2ae)
2013-12-17 22:18:13 +01:00
if request.error_format == "JSON":
middleware: Use a proper error code on CSRF failure. This allows us to reliably parse the error in code, rather than attempt to parse the error text. Because the error text gets translated into the user's language, this error-handling path wasn't functioning at all for users using Zulip in any of the seven non-English languages for which we had a translation for this string. Together with 709c3b50f which fixed a similar issue in a different error-handling path, this fixes #5598.
2017-07-25 03:30:13 +02:00
return json_response_from_error(CsrfFailureError(reason))
Return a nice JSON error when CSRF errors happen in JSON views. (imported from commit 916166c115f9b3ba0fdc93f8d917ff37ae22c2ae)
2013-12-17 22:18:13 +01:00
else:
return html_csrf_failure(request, reason)
Django 1.11: MIDDLEWARE_CLASSES setting is deprecated. Django provides MiddlewareMixin to upgrade old-style middlewares. See https://docs.djangoproject.com/en/1.11/topics/http/middleware/#upgrading-middleware
2017-05-18 11:56:03 +02:00
class RateLimitMiddleware(MiddlewareMixin):
rate_limiter: Handle multiple types of rate limiting in middleware. As more types of rate limiting of requests are added, one request may end up having various limits applied to it - and the middleware needs to be able to handle that. We implement that through a set_response_headers function, which sets the X-RateLimit-* headers in a sensible way based on all the limits that were applied to the request.
2019-12-28 20:23:18 +01:00
def set_response_headers(self, response: HttpResponse,
rate_limit_results: List[RateLimitResult]) -> None:
# The limit on the action that was requested is the minimum of the limits that get applied:
limit = min([max_api_calls(result.entity) for result in rate_limit_results])
response['X-RateLimit-Limit'] = str(limit)
# Same principle applies to remaining api calls:
if all(result.remaining for result in rate_limit_results):
remaining_api_calls = min([result.remaining for result in rate_limit_results])
response['X-RateLimit-Remaining'] = str(remaining_api_calls)
else:
response['X-RateLimit-Remaining'] = str(0)
# The full reset time is the maximum of the reset times for the limits that get applied:
reset_time = time.time() + max([result.secs_to_freedom for result in rate_limit_results])
response['X-RateLimit-Reset'] = str(int(reset_time))
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def process_response(self, request: HttpRequest, response: HttpResponse) -> HttpResponse:
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
if not settings.RATE_LIMITING:
return response
# Add X-RateLimit-*** headers
rate_limiter: Create a general rate_limit_request_by_entity function.
2019-04-01 20:11:56 +02:00
if hasattr(request, '_ratelimit'):
rate_limiter: Handle multiple types of rate limiting in middleware. As more types of rate limiting of requests are added, one request may end up having various limits applied to it - and the middleware needs to be able to handle that. We implement that through a set_response_headers function, which sets the X-RateLimit-* headers in a sensible way based on all the limits that were applied to the request.
2019-12-28 20:23:18 +01:00
rate_limit_results = list(request._ratelimit.values())
self.set_response_headers(response, rate_limit_results)
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
return response
middleware: Fix exception typing. Mypy seems to have trouble understanding `Exception` inheritance here, so we create a `Union` for the only `Exception` we are looking for.
2019-07-26 23:57:18 +02:00
def process_exception(self, request: HttpRequest,
exceptions: RateLimited shouldn't inherit from PermissionDenied. We will want to raise RateLimited in authenticate() in rate limiting code - Django's authenticate() mechanism catches PermissionDenied, which we don't want for RateLimited. We want RateLimited to propagate to our code that called the authenticate() function.
2019-08-01 18:48:41 +02:00
exception: Exception) -> Optional[HttpResponse]:
Apply Python 3 futurize transform lib2to3.fixes.fix_idioms.
2015-11-01 17:10:16 +01:00
if isinstance(exception, RateLimited):
rate_limiter: Create a general rate_limit_request_by_entity function.
2019-04-01 20:11:56 +02:00
entity_type = str(exception) # entity type is passed to RateLimited when raising
rate_limit: Make retry-after data machine-readable. Fixes #4831.
2017-05-22 20:12:59 +02:00
resp = json_error(
_("API usage exceeded rate limit"),
rate_limiter: Handle multiple types of rate limiting in middleware. As more types of rate limiting of requests are added, one request may end up having various limits applied to it - and the middleware needs to be able to handle that. We implement that through a set_response_headers function, which sets the X-RateLimit-* headers in a sensible way based on all the limits that were applied to the request.
2019-12-28 20:23:18 +01:00
data={'retry-after': request._ratelimit[entity_type].secs_to_freedom},
rate_limit: Make retry-after data machine-readable. Fixes #4831.
2017-05-22 20:12:59 +02:00
status=429
)
rate_limiter: Handle multiple types of rate limiting in middleware. As more types of rate limiting of requests are added, one request may end up having various limits applied to it - and the middleware needs to be able to handle that. We implement that through a set_response_headers function, which sets the X-RateLimit-* headers in a sensible way based on all the limits that were applied to the request.
2019-12-28 20:23:18 +01:00
resp['Retry-After'] = request._ratelimit[entity_type].secs_to_freedom
Add a rate limiting system to our backend (imported from commit a1218618918b4dedc77307e2f277665e7dd8fa22)
2013-05-29 23:58:07 +02:00
return resp
mypy: Add None return path for RateLimitMiddleware.process_exception().
2017-08-02 17:21:46 +02:00
return None
Move flushing the display recipient cache to its own middleware (imported from commit 27a6935a5830ef986b18de169d66dd86d273d064)
2013-11-08 21:13:34 +01:00
Django 1.11: MIDDLEWARE_CLASSES setting is deprecated. Django provides MiddlewareMixin to upgrade old-style middlewares. See https://docs.djangoproject.com/en/1.11/topics/http/middleware/#upgrading-middleware
2017-05-18 11:56:03 +02:00
class FlushDisplayRecipientCache(MiddlewareMixin):
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def process_response(self, request: HttpRequest, response: HttpResponse) -> HttpResponse:
Improve names for per-request display recipient cache. It incorrectly advertises itself as per-process. (imported from commit faf7ca7374d020058e80249bb16a4c6afbcb3e44)
2013-12-18 23:00:14 +01:00
# We flush the per-request caches after every request, so they
# are not shared at all between requests.
flush_per_request_caches()
Move flushing the display recipient cache to its own middleware (imported from commit 27a6935a5830ef986b18de169d66dd86d273d064)
2013-11-08 21:13:34 +01:00
return response
Import default session middleware as start for custom session middleware. (imported from commit 76aae367ab6ea5c2a7b0d98368482a3cb312b217)
2015-01-16 05:59:20 +01:00
class SessionHostDomainMiddleware(SessionMiddleware):
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def process_response(self, request: HttpRequest, response: HttpResponse) -> HttpResponse:
middleware: Fix recursive DisallowedHost exceptions.
2017-01-30 05:17:48 +01:00
try:
request.get_host()
except DisallowedHost:
# If we get a DisallowedHost exception trying to access
# the host, (1) the request is failed anyway and so the
# below code will do nothing, and (2) the below will
# trigger a recursive exception, breaking things, so we
# just return here.
return response
subdomains: Hardcode REALMS_HAVE_SUBDOMAINS=True.
2017-10-02 08:32:09 +02:00
if (not request.path.startswith("/static/") and not request.path.startswith("/api/") and
not request.path.startswith("/json/")):
subdomain = get_subdomain(request)
subdomains: Fix some implicit uses of "" for the root subdomain. These are just instances that jumped out at me while working on the subdomains code, mostly while grepping for get_subdomain call sites. I haven't attempted a comprehensive search, and there are likely still others left.
2017-10-20 02:56:49 +02:00
if subdomain != Realm.SUBDOMAIN_FOR_ROOT_DOMAIN:
get_realm: raise DoesNotExist instead of returning None. This makes the implementation of `get_realm` consistent with its declared return type of `Realm` rather than `Optional[Realm]`. Fixes #12263. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-05-04 04:47:44 +02:00
try:
get_realm(subdomain)
except Realm.DoesNotExist:
auth: Use HTTP status 404 for invalid realms. Apparently, our invalid realm error page had HTTP status 200, which could be confusing and in particular broken our mobile app's error handling for this case.
2019-03-12 01:56:52 +01:00
return render(request, "zerver/invalid_realm.html", status=404)
Import default session middleware as start for custom session middleware. (imported from commit 76aae367ab6ea5c2a7b0d98368482a3cb312b217)
2015-01-16 05:59:20 +01:00
"""
If request.session was modified, or if the configuration is to save the
sessions: Resync session middleware from Django upstream. Until we resolve https://github.com/zulip/zulip/issues/10832, we will need to maintain our own forked copy of Django's SessionMiddleware. We apparently let this get out of date. This fixes a few subtle bugs involving the user logout experience that were throwing occasional exceptions (e.g. the UpdateError fix you can see).
2018-11-14 23:48:53 +01:00
session every time, save the changes and set a session cookie or delete
the session cookie if the session has been emptied.
Import default session middleware as start for custom session middleware. (imported from commit 76aae367ab6ea5c2a7b0d98368482a3cb312b217)
2015-01-16 05:59:20 +01:00
"""
try:
accessed = request.session.accessed
modified = request.session.modified
sessions: Resync session middleware from Django upstream. Until we resolve https://github.com/zulip/zulip/issues/10832, we will need to maintain our own forked copy of Django's SessionMiddleware. We apparently let this get out of date. This fixes a few subtle bugs involving the user logout experience that were throwing occasional exceptions (e.g. the UpdateError fix you can see).
2018-11-14 23:48:53 +01:00
empty = request.session.is_empty()
Import default session middleware as start for custom session middleware. (imported from commit 76aae367ab6ea5c2a7b0d98368482a3cb312b217)
2015-01-16 05:59:20 +01:00
except AttributeError:
pass
else:
sessions: Resync session middleware from Django upstream. Until we resolve https://github.com/zulip/zulip/issues/10832, we will need to maintain our own forked copy of Django's SessionMiddleware. We apparently let this get out of date. This fixes a few subtle bugs involving the user logout experience that were throwing occasional exceptions (e.g. the UpdateError fix you can see).
2018-11-14 23:48:53 +01:00
# First check if we need to delete this cookie.
# The session should be deleted only if the session is entirely empty
if settings.SESSION_COOKIE_NAME in request.COOKIES and empty:
response.delete_cookie(
settings.SESSION_COOKIE_NAME,
path=settings.SESSION_COOKIE_PATH,
domain=settings.SESSION_COOKIE_DOMAIN,
)
else:
if accessed:
patch_vary_headers(response, ('Cookie',))
if (modified or settings.SESSION_SAVE_EVERY_REQUEST) and not empty:
if request.session.get_expire_at_browser_close():
max_age = None
expires = None
else:
max_age = request.session.get_expiry_age()
expires_time = time.time() + max_age
expires = cookie_date(expires_time)
# Save the session data and refresh the client cookie.
# Skip session save for 500 responses, refs #3881.
if response.status_code != 500:
try:
request.session.save()
except UpdateError:
raise SuspiciousOperation(
"The request's session was deleted before the "
"request completed. The user may have logged "
"out in a concurrent request, for example."
)
host = request.get_host().split(':')[0]
# The subdomains feature overrides the
# SESSION_COOKIE_DOMAIN setting, since the setting
# is a fixed value and with subdomains enabled,
# the session cookie domain has to vary with the
# subdomain.
session_cookie_domain = host
response.set_cookie(
settings.SESSION_COOKIE_NAME,
request.session.session_key, max_age=max_age,
expires=expires, domain=session_cookie_domain,
path=settings.SESSION_COOKIE_PATH,
secure=settings.SESSION_COOKIE_SECURE or None,
httponly=settings.SESSION_COOKIE_HTTPONLY or None,
)
Import default session middleware as start for custom session middleware. (imported from commit 76aae367ab6ea5c2a7b0d98368482a3cb312b217)
2015-01-16 05:59:20 +01:00
return response
Add notifications on new logins to Zulip. This adds helpful email notifications for users who just logged into a Zulip server, as a security protection against accounts being hacked. Text tweaked by tabbott. Fixes #2182.
2017-01-30 23:19:38 +01:00
Django 1.11: MIDDLEWARE_CLASSES setting is deprecated. Django provides MiddlewareMixin to upgrade old-style middlewares. See https://docs.djangoproject.com/en/1.11/topics/http/middleware/#upgrading-middleware
2017-05-18 11:56:03 +02:00
class SetRemoteAddrFromForwardedFor(MiddlewareMixin):
Add notifications on new logins to Zulip. This adds helpful email notifications for users who just logged into a Zulip server, as a security protection against accounts being hacked. Text tweaked by tabbott. Fixes #2182.
2017-01-30 23:19:38 +01:00
"""
Middleware that sets REMOTE_ADDR based on the HTTP_X_FORWARDED_FOR.
This middleware replicates Django's former SetRemoteAddrFromForwardedFor middleware.
Because Zulip sits behind a NGINX reverse proxy, if the HTTP_X_FORWARDED_FOR
is set in the request, then it has properly been set by NGINX.
Therefore HTTP_X_FORWARDED_FOR's value is trusted.
"""
zerver: Use Python 3 syntax for typing. Tweaked by tabbott to fix some minor whitespace errors.
2017-11-27 07:33:05 +01:00
def process_request(self, request: HttpRequest) -> None:
Add notifications on new logins to Zulip. This adds helpful email notifications for users who just logged into a Zulip server, as a security protection against accounts being hacked. Text tweaked by tabbott. Fixes #2182.
2017-01-30 23:19:38 +01:00
try:
real_ip = request.META['HTTP_X_FORWARDED_FOR']
except KeyError:
return None
else:
# HTTP_X_FORWARDED_FOR can be a comma-separated list of IPs.
# For NGINX reverse proxy servers, the client's IP will be the first one.
real_ip = real_ip.split(",")[0].strip()
request.META['REMOTE_ADDR'] = real_ip
docs: Automatically construct OpenAPI metadata for help center. This is somewhat hacky, in that in order to do what we're doing, we need to parse the HTML of the rendered page to extract the first paragraph to include in the open graph description field. But BeautifulSoup does a good job of it. This carries a nontrivial performance penalty for loading these pages, but overall /help/ is a low-traffic site compared to the main app, so it doesn't matter much. (As a sidenote, it wouldn't be a bad idea to cache this stuff). There's lots of things we can improve in this, largely through editing the articles, but we can deal with that over time. Thanks to Rishi for writing all the tests.
2018-12-14 23:28:00 +01:00
middleware: Don't repreatedly regenerate open graph functions. This avoids parsing these functions on every request, which was adding roughly 350us to our per-request response times. The overall impact was more than 10% of basic Tornado response runtime.
2019-02-28 02:30:16 +01:00
def alter_content(request: HttpRequest, content: bytes) -> bytes:
first_paragraph_text = get_content_description(content, request)
return content.replace(request.placeholder_open_graph_description.encode("utf-8"),
html_to_text: Escape text when using as description.
2019-04-24 03:37:34 +02:00
first_paragraph_text.encode("utf-8"))
docs: Automatically construct OpenAPI metadata for help center. This is somewhat hacky, in that in order to do what we're doing, we need to parse the HTML of the rendered page to extract the first paragraph to include in the open graph description field. But BeautifulSoup does a good job of it. This carries a nontrivial performance penalty for loading these pages, but overall /help/ is a low-traffic site compared to the main app, so it doesn't matter much. (As a sidenote, it wouldn't be a bad idea to cache this stuff). There's lots of things we can improve in this, largely through editing the articles, but we can deal with that over time. Thanks to Rishi for writing all the tests.
2018-12-14 23:28:00 +01:00
middleware: Don't repreatedly regenerate open graph functions. This avoids parsing these functions on every request, which was adding roughly 350us to our per-request response times. The overall impact was more than 10% of basic Tornado response runtime.
2019-02-28 02:30:16 +01:00
class FinalizeOpenGraphDescription(MiddlewareMixin):
def process_response(self, request: HttpRequest,
response: StreamingHttpResponse) -> StreamingHttpResponse:
docs: Automatically construct OpenAPI metadata for help center. This is somewhat hacky, in that in order to do what we're doing, we need to parse the HTML of the rendered page to extract the first paragraph to include in the open graph description field. But BeautifulSoup does a good job of it. This carries a nontrivial performance penalty for loading these pages, but overall /help/ is a low-traffic site compared to the main app, so it doesn't matter much. (As a sidenote, it wouldn't be a bad idea to cache this stuff). There's lots of things we can improve in this, largely through editing the articles, but we can deal with that over time. Thanks to Rishi for writing all the tests.
2018-12-14 23:28:00 +01:00
if getattr(request, "placeholder_open_graph_description", None) is not None:
assert not response.streaming
middleware: Don't repreatedly regenerate open graph functions. This avoids parsing these functions on every request, which was adding roughly 350us to our per-request response times. The overall impact was more than 10% of basic Tornado response runtime.
2019-02-28 02:30:16 +01:00
response.content = alter_content(request, response.content)
docs: Automatically construct OpenAPI metadata for help center. This is somewhat hacky, in that in order to do what we're doing, we need to parse the HTML of the rendered page to extract the first paragraph to include in the open graph description field. But BeautifulSoup does a good job of it. This carries a nontrivial performance penalty for loading these pages, but overall /help/ is a low-traffic site compared to the main app, so it doesn't matter much. (As a sidenote, it wouldn't be a bad idea to cache this stuff). There's lots of things we can improve in this, largely through editing the articles, but we can deal with that over time. Thanks to Rishi for writing all the tests.
2018-12-14 23:28:00 +01:00
return response