1 #----------------------------------------------------------
2 # ir_http modular http routing
3 #----------------------------------------------------------
6 import werkzeug.exceptions
7 import werkzeug.routing
10 from openerp import http
11 from openerp.http import request
12 from openerp.osv import osv
14 _logger = logging.getLogger(__name__)
16 class RequestUID(object):
19 class ModelConverter(werkzeug.routing.BaseConverter):
21 def __init__(self, url_map, model=False):
22 super(ModelConverter, self).__init__(url_map)
24 # TODO add support for slug in the form [A-Za-z0-9-] bla-bla-89 -> id 89
25 self.regex = '([0-9]+)'
27 def to_python(self, value):
29 # - raise routing.ValidationError() if no browse record can be createdm
31 return request.registry[self.model].browse(request.cr, RequestUID(), int(value), context=request.context)
33 def to_url(self, value):
36 class ModelsConverter(werkzeug.routing.BaseConverter):
38 def __init__(self, url_map, model=False):
39 super(ModelsConverter, self).__init__(url_map)
41 # TODO add support for slug in the form [A-Za-z0-9-] bla-bla-89 -> id 89
42 self.regex = '([0-9,]+)'
44 def to_python(self, value):
46 # - raise routing.ValidationError() if no browse record can be createdm
48 return request.registry[self.model].browse(request.cr, RequestUID(), [int(i) for i in value.split(',')], context=request.context)
50 def to_url(self, value):
51 return ",".join([i.id for i in value])
53 class ir_http(osv.AbstractModel):
56 _description = "HTTP routing"
58 def _get_converters(self):
59 return {'model': ModelConverter, 'models': ModelsConverter}
61 def _find_handler(self):
62 # TODO move to __init__(self, registry, cr)
63 if not hasattr(self, 'routing_map'):
64 _logger.info("Generating routing map")
66 m = request.registry.get('ir.module.module')
67 ids = m.search(cr, openerp.SUPERUSER_ID, [('state', '=', 'installed'), ('name', '!=', 'web')])
68 installed = set(x['name'] for x in m.read(cr, 1, ids, ['name']))
69 mods = ['', "web"] + sorted(installed)
70 self.routing_map = http.routing_map(mods, False, converters=self._get_converters())
72 # fallback to non-db handlers
73 path = request.httprequest.path
74 urls = self.routing_map.bind_to_environ(request.httprequest.environ)
76 return urls.match(path)
78 def _auth_method_user(self):
79 request.uid = request.session.uid
81 raise SessionExpiredException("Session expired")
83 def _auth_method_admin(self):
85 raise SessionExpiredException("No valid database for request %s" % request.httprequest)
86 request.uid = openerp.SUPERUSER_ID
88 def _auth_method_none(self):
89 request.disable_db = True
92 def _authenticate(self, func, arguments):
93 auth_method = getattr(func, "auth", "user")
94 if request.session.uid:
96 request.session.check_security()
97 except SessionExpiredException, e:
98 request.session.logout()
99 raise SessionExpiredException("Session expired for request %s" % request.httprequest)
100 getattr(self, "_auth_method_%s" % auth_method)()
103 def _handle_404(self, exception):
106 def _handle_403(self, exception):
109 def _handle_500(self, exception):
113 # locate the controller method
115 func, arguments = self._find_handler()
116 except werkzeug.exceptions.NotFound, e:
117 return self._handle_404(e)
119 # check authentication level
121 auth_method = self._authenticate(func, arguments)
122 except werkzeug.exceptions.NotFound, e:
123 return self._handle_403(e)
125 # post process arg to set uid on browse records
126 for arg in arguments:
127 if isinstance(arg, openerp.osv.orm.browse_record) and isinstance(arg._uid, RequestUID):
128 arg._uid = request.uid
130 # set and execute handler
132 request.set_handler(func, arguments, auth_method)
133 result = request.dispatch()
134 except werkzeug.exceptions.HTTPException, e:
135 fn = getattr(self, '_handle_%s' % (e.code,), None)
138 return self._handle_500(e)
140 return self._handle_500(e)