openerp/addons/base/ir/ir_http.py

   1 #----------------------------------------------------------
   2 # ir_http modular http routing
   3 #----------------------------------------------------------
   4 import logging
   5 import re
   6
   7 import werkzeug.exceptions
   8 import werkzeug.routing
   9
  10 import openerp
  11 from openerp import http
  12 from openerp.http import request
  13 from openerp.osv import osv, orm
  14
  15 _logger = logging.getLogger(__name__)
  16
  17
  18 # FIXME: replace by proxy on request.uid?
  19 _uid = object()
  20
  21 class ModelConverter(werkzeug.routing.BaseConverter):
  22
  23     def __init__(self, url_map, model=False):
  24         super(ModelConverter, self).__init__(url_map)
  25         self.model = model
  26         self.regex = '([0-9]+)'
  27
  28     def to_python(self, value):
  29         m = re.match(self.regex, value)
  30         return request.registry[self.model].browse(
  31             request.cr, _uid, int(m.group(1)), context=request.context)
  32
  33     def to_url(self, value):
  34         return value.id
  35
  36 class ModelsConverter(werkzeug.routing.BaseConverter):
  37
  38     def __init__(self, url_map, model=False):
  39         super(ModelsConverter, self).__init__(url_map)
  40         self.model = model
  41         # TODO add support for slug in the form [A-Za-z0-9-] bla-bla-89 -> id 89
  42         self.regex = '([0-9,]+)'
  43
  44     def to_python(self, value):
  45         # TODO:
  46         # - raise routing.ValidationError() if no browse record can be createdm
  47         # - support slug
  48         return request.registry[self.model].browse(request.cr, _uid, [int(i) for i in value.split(',')], context=request.context)
  49
  50     def to_url(self, value):
  51         return ",".join(i.id for i in value)
  52
  53 class ir_http(osv.AbstractModel):
  54     _name = 'ir.http'
  55
  56     _description = "HTTP routing"
  57
  58     def _get_converters(self):
  59         return {'model': ModelConverter, 'models': ModelsConverter}
  60
  61     def _find_handler(self):
  62         return self.routing_map().bind_to_environ(request.httprequest.environ).match()
  63
  64     def _auth_method_user(self):
  65         request.uid = request.session.uid
  66         if not request.uid:
  67             raise http.SessionExpiredException("Session expired")
  68
  69     def _auth_method_admin(self):
  70         if not request.db:
  71             raise http.SessionExpiredException("No valid database for request %s" % request.httprequest)
  72         request.uid = openerp.SUPERUSER_ID
  73
  74     def _auth_method_none(self):
  75         request.disable_db = True
  76         request.uid = None
  77
  78     def _authenticate(self, func, arguments):
  79         auth_method = getattr(func, "auth", "user")
  80         if request.session.uid:
  81             try:
  82                 request.session.check_security()
  83                 # what if error in security.check()
  84                 #   -> res_users.check()
  85                 #   -> res_users.check_credentials()
  86             except http.SessionExpiredException:
  87                 request.session.logout()
  88                 raise http.SessionExpiredException("Session expired for request %s" % request.httprequest)
  89         getattr(self, "_auth_method_%s" % auth_method)()
  90         return auth_method
  91
  92     def _handle_exception(self, exception):
  93         if isinstance(exception, openerp.exceptions.AccessError):
  94             fn = self._handle_403
  95         else:
  96             code = getattr(exception, 'code', 500)
  97             fn = getattr(self, '_handle_%s' % code)
  98         return fn(exception)
  99
 100     def _handle_404(self, exception):
 101         raise exception
 102
 103     def _handle_403(self, exception):
 104         raise exception
 105
 106     def _handle_500(self, exception):
 107         raise exception
 108
 109     def _dispatch(self):
 110         # locate the controller method
 111         try:
 112             func, arguments = self._find_handler()
 113         except werkzeug.exceptions.NotFound, e:
 114             return self._handle_404(e)
 115
 116         # check authentication level
 117         try:
 118             auth_method = self._authenticate(func, arguments)
 119         except werkzeug.exceptions.NotFound, e:
 120             return self._handle_403(e)
 121
 122         # post process arg to set uid on browse records
 123         for arg in arguments.itervalues():
 124             if isinstance(arg, orm.browse_record) and arg._uid is _uid:
 125                 arg._uid = request.uid
 126
 127         # set and execute handler
 128         try:
 129             request.set_handler(func, arguments, auth_method)
 130             result = request.dispatch()
 131             if isinstance(result, Exception):
 132                 raise result
 133         except Exception, e:
 134             return self._handle_exception(e)
 135
 136         return result
 137
 138     def routing_map(self):
 139         if not hasattr(self, '_routing_map'):
 140             _logger.info("Generating routing map")
 141             cr = request.cr
 142             m = request.registry.get('ir.module.module')
 143             ids = m.search(cr, openerp.SUPERUSER_ID, [('state', '=', 'installed'), ('name', '!=', 'web')], context=request.context)
 144             installed = set(x['name'] for x in m.read(cr, 1, ids, ['name'], context=request.context))
 145             mods = ['', "web"] + sorted(installed)
 146             self._routing_map = http.routing_map(mods, False, converters=self._get_converters())
 147
 148         return self._routing_map
 149
 150 # vim:et: