1 # -*- coding: utf-8 -*-
8 import werkzeug.routing
11 from openerp.addons.base import ir
12 from openerp.addons.base.ir import ir_qweb
13 from openerp.addons.website.models.website import slug, url_for
14 from openerp.http import request
15 from openerp.osv import orm
17 logger = logging.getLogger(__name__)
19 class RequestUID(object):
20 def __init__(self, **kw):
21 self.__dict__.update(kw)
23 class ir_http(orm.AbstractModel):
28 def _get_converters(self):
30 super(ir_http, self)._get_converters(),
35 def _auth_method_public(self):
36 # TODO: select user_id from matching website
37 if not request.session.uid:
38 request.uid = self.pool['ir.model.data'].xmlid_to_res_id(request.cr, openerp.SUPERUSER_ID, 'base.public_user')
40 request.uid = request.session.uid
43 first_pass = not hasattr(request, 'website')
44 request.website = None
47 func, arguments = self._find_handler()
48 request.website_enabled = func.routing.get('website', False)
49 except werkzeug.exceptions.NotFound:
50 # either we have a language prefixed route, either a real 404
51 # in all cases, website processes them
52 request.website_enabled = True
54 if request.website_enabled:
56 self._authenticate(func.routing['auth'])
58 self._auth_method_public()
59 request.redirect = lambda url: werkzeug.utils.redirect(url_for(url))
60 request.website = request.registry['website'].get_current_website(request.cr, request.uid, context=request.context)
62 request.lang = request.website.default_lang_code
63 request.context['lang'] = request.lang
65 path = request.httprequest.path.split('/')
66 langs = [lg[0] for lg in request.website.get_languages()]
68 request.lang = request.context['lang'] = path.pop(1)
69 path = '/'.join(path) or '/'
70 return self.reroute(path)
71 return self._handle_exception(code=404)
72 return super(ir_http, self)._dispatch()
74 def reroute(self, path):
75 if not hasattr(request, 'rerouting'):
76 request.rerouting = [request.httprequest.path]
77 if path in request.rerouting:
78 raise Exception("Rerouting loop is forbidden")
79 request.rerouting.append(path)
80 if len(request.rerouting) > self.rerouting_limit:
81 raise Exception("Rerouting limit exceeded")
82 request.httprequest.environ['PATH_INFO'] = path
83 # void werkzeug cached_property. TODO: find a proper way to do this
84 for key in ('path', 'full_path', 'url', 'base_url'):
85 request.httprequest.__dict__.pop(key, None)
87 return self._dispatch()
89 def _postprocess_args(self, arguments, rule):
90 if not getattr(request, 'website_enabled', False):
91 return super(ir_http, self)._postprocess_args(arguments, rule)
93 for arg, val in arguments.items():
94 # Replace uid placeholder by the current request.uid
95 if isinstance(val, orm.browse_record) and isinstance(val._uid, RequestUID):
96 val._uid = request.uid
98 _, path = rule.build(arguments)
99 assert path is not None
101 return self._handle_exception(werkzeug.exceptions.NotFound())
103 if request.httprequest.method in ('GET', 'HEAD'):
104 generated_path = werkzeug.url_unquote_plus(path)
105 current_path = werkzeug.url_unquote_plus(request.httprequest.path)
106 if generated_path != current_path:
107 if request.lang != request.website.default_lang_code:
108 path = '/' + request.lang + path
109 return werkzeug.utils.redirect(path)
111 def _serve_attachment(self):
112 domain = [('type', '=', 'binary'), ('url', '=', request.httprequest.path)]
113 attach = self.pool['ir.attachment'].search_read(request.cr, openerp.SUPERUSER_ID, domain, ['__last_update', 'datas', 'mimetype'], context=request.context)
115 wdate = attach[0]['__last_update']
116 datas = attach[0]['datas']
117 response = werkzeug.wrappers.Response()
118 server_format = openerp.tools.misc.DEFAULT_SERVER_DATETIME_FORMAT
120 response.last_modified = datetime.datetime.strptime(wdate, server_format + '.%f')
122 # just in case we have a timestamp without microseconds
123 response.last_modified = datetime.datetime.strptime(wdate, server_format)
125 response.set_etag(hashlib.sha1(datas).hexdigest())
126 response.make_conditional(request.httprequest)
128 if response.status_code == 304:
131 response.mimetype = attach[0]['mimetype']
132 response.data = datas.decode('base64')
135 def _handle_exception(self, exception=None, code=500):
136 if isinstance(exception, werkzeug.exceptions.HTTPException) and hasattr(exception, 'response') and exception.response:
137 return exception.response
139 attach = self._serve_attachment()
143 if getattr(request, 'website_enabled', False) and request.website:
146 traceback=traceback.format_exc(exception),
149 code = getattr(exception, 'code', code)
150 if isinstance(exception, ir_qweb.QWebException):
151 values.update(qweb_exception=exception)
152 if isinstance(exception.qweb.get('cause'), openerp.exceptions.AccessError):
155 logger.error("500 Internal Server Error:\n\n%s", values['traceback'])
156 if 'qweb_exception' in values:
157 view = request.registry.get("ir.ui.view")
158 views = view._views_get(request.cr, request.uid, exception.qweb['template'], request.context)
159 to_reset = [v for v in views if v.model_data_id.noupdate is True]
160 values['views'] = to_reset
162 logger.warn("403 Forbidden:\n\n%s", values['traceback'])
165 status_message=werkzeug.http.HTTP_STATUS_CODES[code],
170 self._auth_method_public()
173 html = request.website._render('website.%s' % code, values)
175 html = request.website._render('website.http_error', values)
176 return werkzeug.wrappers.Response(html, status=code, content_type='text/html;charset=utf-8')
178 return super(ir_http, self)._handle_exception(exception)
180 class ModelConverter(ir.ir_http.ModelConverter):
181 def __init__(self, url_map, model=False, domain='[]'):
182 super(ModelConverter, self).__init__(url_map, model)
184 self.regex = r'(?:[A-Za-z0-9-_]+?-)?(\d+)(?=$|/)'
186 def to_url(self, value):
189 def to_python(self, value):
190 m = re.match(self.regex, value)
191 _uid = RequestUID(value=value, match=m, converter=self)
192 return request.registry[self.model].browse(
193 request.cr, _uid, int(m.group(1)), context=request.context)
195 def generate(self, cr, uid, query=None, args=None, context=None):
196 for record in request.registry[self.model].name_search(
197 cr, uid, name=query or '', args=eval( self.domain, (args or {}).copy()),
199 yield {'loc': record}
201 class PageConverter(werkzeug.routing.PathConverter):
202 """ Only point of this converter is to bundle pages enumeration logic """
203 def generate(self, cr, uid, query=None, args={}, context=None):
204 View = request.registry['ir.ui.view']
205 views = View.search_read(cr, uid, [['page', '=', True]],
206 fields=['xml_id','priority','write_date'], order='name', context=context)
208 xid = view['xml_id'].startswith('website.') and view['xml_id'][8:] or view['xml_id']
209 # the 'page/homepage' url is indexed as '/', avoid aving the same page referenced twice
210 # when we will have an url mapping mechanism, replace this by a rule: page/homepage --> /
211 if xid=='homepage': continue
212 if query and query.lower() not in xid.lower():
214 record = {'loc': xid}
215 if view['priority'] <> 16:
216 record['__priority'] = min(round(view['priority'] / 32.0,1), 1)
217 if view['write_date']:
218 record['__lastmod'] = view['write_date'][:10]