############################################################################## # # Copyright (c) 2001-2009 Zope Foundation and Contributors. # # This software is subject to the provisions of the Zope Public License, # Version 2.1 (ZPL). A copy of the ZPL should accompany this distribution. # THIS SOFTWARE IS PROVIDED "AS IS" AND ANY AND ALL EXPRESS OR IMPLIED # WARRANTIES ARE DISCLAIMED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED # WARRANTIES OF TITLE, MERCHANTABILITY, AGAINST INFRINGEMENT, AND FITNESS # FOR A PARTICULAR PURPOSE. # ############################################################################## """ CGI Response Output formatter """ from cgi import escape import os import re from string import maketrans from string import translate import struct import sys import types from urllib import quote import zlib from zope.event import notify from zExceptions import Redirect from zExceptions import Unauthorized from zExceptions.ExceptionFormatter import format_exception from ZPublisher import BadRequest from ZPublisher import InternalError from ZPublisher import NotFound from ZPublisher.BaseResponse import BaseResponse from ZPublisher.pubevents import PubBeforeStreaming nl2sp = maketrans('\n', ' ') # This may get overwritten during configuration default_encoding = 'iso-8859-15' # Enable APPEND_TRACEBACKS to make Zope append tracebacks like it used to, # but a better solution is to make standard_error_message display error_tb. APPEND_TRACEBACKS = 0 status_reasons = { 100: 'Continue', 101: 'Switching Protocols', 102: 'Processing', 200: 'OK', 201: 'Created', 202: 'Accepted', 203: 'Non-Authoritative Information', 204: 'No Content', 205: 'Reset Content', 206: 'Partial Content', 207: 'Multi-Status', 300: 'Multiple Choices', 301: 'Moved Permanently', 302: 'Moved Temporarily', 303: 'See Other', 304: 'Not Modified', 305: 'Use Proxy', 307: 'Temporary Redirect', 400: 'Bad Request', 401: 'Unauthorized', 402: 'Payment Required', 403: 'Forbidden', 404: 'Not Found', 405: 'Method Not Allowed', 406: 'Not Acceptable', 407: 'Proxy Authentication Required', 408: 'Request Time-out', 409: 'Conflict', 410: 'Gone', 411: 'Length Required', 412: 'Precondition Failed', 413: 'Request Entity Too Large', 414: 'Request-URI Too Large', 415: 'Unsupported Media Type', 416: 'Requested range not satisfiable', 417: 'Expectation Failed', 422: 'Unprocessable Entity', 423: 'Locked', 424: 'Failed Dependency', 500: 'Internal Server Error', 501: 'Not Implemented', 502: 'Bad Gateway', 503: 'Service Unavailable', 504: 'Gateway Time-out', 505: 'HTTP Version not supported', 507: 'Insufficient Storage', } status_codes = {} # Add mappings for builtin exceptions and # provide text -> error code lookups. for key, val in status_reasons.items(): status_codes[''.join(val.split(' ')).lower()] = key status_codes[val.lower()] = key status_codes[key] = key status_codes[str(key)] = key en = filter(lambda n: n[-5:] == 'Error', dir(__builtins__)) for name in en: status_codes[name.lower()] = 500 status_codes['nameerror'] = 503 status_codes['keyerror'] = 503 status_codes['redirect'] = 300 status_codes['resourcelockederror'] = 423 start_of_header_search = re.compile('(]*>)', re.IGNORECASE).search _gzip_header = ("\037\213" # magic "\010" # compression method "\000" # flags "\000\000\000\000" # time "\002" "\377") uncompressableMimeMajorTypes = ('image',) # these mime major types should # not be gzip content encoded # The environment variable DONT_GZIP_MAJOR_MIME_TYPES can be set to a list # of comma seperated mime major types which should also not be compressed otherTypes = os.environ.get('DONT_GZIP_MAJOR_MIME_TYPES','').lower() if otherTypes: uncompressableMimeMajorTypes += tuple(otherTypes.split(',')) _CRLF = re.compile(r'[\r\n]') def _scrubHeader(name, value): return ''.join(_CRLF.split(str(name))), ''.join(_CRLF.split(str(value))) class HTTPResponse(BaseResponse): """ An object representation of an HTTP response. The Response type encapsulates all possible responses to HTTP requests. Responses are normally created by the object publisher. A published object may recieve the response abject as an argument named 'RESPONSE'. A published object may also create it's own response object. Normally, published objects use response objects to: - Provide specific control over output headers, - Set cookies, or - Provide stream-oriented output. If stream oriented output is used, then the response object passed into the object must be used. """ #' body = '' base = '' realm = 'Zope' _error_format = 'text/html' _locked_status = 0 _locked_body = 0 # Indicate if setBody should content-compress output. # 0 - no compression # 1 - compress if accept-encoding ok # 2 - ignore accept-encoding (i.e. force) use_HTTP_content_compression = 0 def __init__(self, body='', status=200, headers=None, stdout=sys.stdout, stderr=sys.stderr, ): """ Create a new response using the given values. """ if headers is None: headers = {} self.headers = headers self.accumulated_headers = [] if status == 200: self.status = 200 self.errmsg = 'OK' else: self.setStatus(status) if body: self.setBody(body) self.cookies = {} self.stdout = stdout self.stderr = stderr def retry(self): """ Return a cloned response object to be used in a retry attempt. """ # This implementation is a bit lame, because it assumes that # only stdout stderr were passed to the constructor. OTOH, I # think that that's all that is ever passed. return self.__class__(stdout=self.stdout, stderr=self.stderr) def setStatus(self, status, reason=None, lock=None): """ Set the HTTP status code of the response o The argument may either be an integer or a string from the 'status_reasons' dict values: status messages will be converted to the correct integer value. """ if self._locked_status: # Don't change the response status. # It has already been determined. return if (isinstance(status, (type, types.ClassType)) and issubclass(status, Exception)): status = status.__name__ if isinstance(status, str): status = status.lower() if status in status_codes: status = status_codes[status] else: status = 500 self.status = status if reason is None: if status in status_reasons: reason = status_reasons[status] else: reason = 'Unknown' self.errmsg = reason # lock the status if we're told to if lock: self._locked_status = 1 def setCookie(self, name, value, quoted=True, **kw): """ Set an HTTP cookie. The response will include an HTTP header that sets a cookie on cookie-enabled browsers with a key "name" and value "value". This value overwrites any previously set value for the cookie in the Response object. """ name = str(name) value = str(value) cookies = self.cookies if name in cookies: cookie = cookies[name] else: cookie = cookies[name] = {} for k, v in kw.items(): cookie[k] = v cookie['value'] = value cookie['quoted'] = quoted def appendCookie(self, name, value): """ Set an HTTP cookie. Returns an HTTP header that sets a cookie on cookie-enabled browsers with a key "name" and value "value". If a value for the cookie has previously been set in the response object, the new value is appended to the old one separated by a colon. """ name = str(name) value = str(value) cookies = self.cookies if name in cookies: cookie = cookies[name] else: cookie = cookies[name] = {} if 'value' in cookie: cookie['value'] = '%s:%s' % (cookie['value'], value) else: cookie['value'] = value def expireCookie(self, name, **kw): """ Clear an HTTP cookie. The response will include an HTTP header that will remove the cookie corresponding to "name" on the client, if one exists. This is accomplished by sending a new cookie with an expiration date that has already passed. Note that some clients require a path to be specified - this path must exactly match the path given when creating the cookie. The path can be specified as a keyword argument. """ name = str(name) d = kw.copy() if 'value' in d: d.pop('value') d['max_age'] = 0 d['expires'] = 'Wed, 31-Dec-97 23:59:59 GMT' self.setCookie(name, value='deleted', **d) def getHeader(self, name, literal=0): """ Get a previously set header value. Return the value associated with a HTTP return header, or None if no such header has been set in the response yet. If the 'literal' flag is true, preserve the case of the header name; otherwise lower-case the header name before looking up the value. """ key = literal and name or name.lower() return self.headers.get(key, None) def setHeader(self, name, value, literal=0, scrubbed=False): """ Set an HTTP return header on the response. Replay any existing value set for the header. If the 'literal' flag is true, preserve the case of the header name; otherwise the header name will be lowercased. 'scrubbed' is for internal use, to indicate that another API has already removed any CRLF from the name and value. """ if not scrubbed: name, value = _scrubHeader(name, value) key = name.lower() # The following is crazy, given that we have APIs for cookies. # Special behavior will go away in Zope 2.13 if key == 'set-cookie': self.accumulated_headers.append((name, value)) else: name = literal and name or key self.headers[name] = value def appendHeader(self, name, value, delimiter=", "): """ Append a value to an HTTP return header. Set an HTTP return header "name" with value "value", appending it following a comma if there was a previous value set for the header. 'name' is always lowercased before use. """ name, value = _scrubHeader(name, value) name = name.lower() headers = self.headers if name in headers: h = headers[name] h = "%s%s%s" % (h, delimiter, value) else: h = value self.setHeader(name,h, scrubbed=True) def addHeader(self, name, value): """ Set a new HTTP return header with the given value, Retain any previously set headers with the same name. Note that this API appneds to the 'accumulated_headers' attribute; it does not update the 'headers' mapping. """ name, value = _scrubHeader(name, value) self.accumulated_headers.append((name, value)) __setitem__ = setHeader def setBase(self, base): """Set the base URL for the returned document. If base is None, set to the empty string. If base is not None, ensure that it has a trailing slach. """ if base is None: base = '' elif not base.endswith('/'): base = base + '/' self.base = str(base) def insertBase(self, base_re_search=re.compile('()',re.I).search ): # Only insert a base tag if content appears to be html. content_type = self.headers.get('content-type', '').split(';')[0] if content_type and (content_type != 'text/html'): return if self.base: body = self.body if body: match = start_of_header_search(body) if match is not None: index = match.start(0) + len(match.group(0)) ibase = base_re_search(body) if ibase is None: self.body = ('%s\n\n%s' % (body[:index], escape(self.base, 1), body[index:])) self.setHeader('content-length', len(self.body)) def isHTML(self, s): s = s.lstrip() # Note that the string can be big, so s.lower().startswith() is more # expensive than s[:n].lower(). if (s[:6].lower() == '' or s[:14].lower() == ' 0: return 1 return 0 def setBody(self, body, title='', is_error=0, bogus_str_search=re.compile(" [a-fA-F0-9]+>$").search, latin1_alias_match=re.compile( r'text/html(\s*;\s*charset=((latin)|(latin[-_]?1)|' r'(cp1252)|(cp819)|(csISOLatin1)|(IBM819)|(iso-ir-100)|' r'(iso[-_]8859[-_]1(:1987)?)))?$',re.I).match, lock=None ): """ Set the body of the response Sets the return body equal to the (string) argument "body". Also updates the "content-length" return header. If the body is already locked via a previous call, do nothing and return None. You can also specify a title, in which case the title and body will be wrapped up in html, head, title, and body tags. If the body is a 2-element tuple, then it will be treated as (title,body) If body is unicode, encode it. If body is not a string or unicode, but has an 'asHTML' method, use the result of that method as the body; otherwise, use the 'str' of body. If is_error is true, format the HTML as a Zope error message instead of a generic HTML page. Return 'self' (XXX as a true value?). """ # allow locking of the body in the same way as the status if self._locked_body: return elif lock: self._locked_body = 1 if not body: return self if isinstance(body, tuple) and len(body) == 2: title, body = body if not isinstance(body, str): if hasattr(body,'asHTML'): body = body.asHTML() if isinstance(body, unicode): body = self._encode_unicode(body) elif isinstance(body, str): pass else: try: body = str(body) except UnicodeError: body = self._encode_unicode(unicode(body)) l = len(body) if ((l < 200) and body[:1] == '<' and body.find('>') == l-1 and bogus_str_search(body) is not None): self.notFoundError(body[1:-1]) else: if title: title = str(title) if not is_error: self.body = self._html(title, body) else: self.body = self._error_html(title, body) else: self.body = body content_type = self.headers.get('content-type') # Some browsers interpret certain characters in Latin 1 as html # special characters. These cannot be removed by html_quote, # because this is not the case for all encodings. if (content_type == 'text/html' or content_type and latin1_alias_match(content_type) is not None): body = '<'.join(body.split('\213')) body = '>'.join(body.split('\233')) self.body = body if content_type is None: if self.isHTML(self.body): content_type = 'text/html; charset=%s' % default_encoding else: content_type = 'text/plain; charset=%s' % default_encoding self.setHeader('content-type', content_type) else: if (content_type.startswith('text/') and 'charset=' not in content_type): content_type = '%s; charset=%s' % (content_type, default_encoding) self.setHeader('content-type', content_type) self.setHeader('content-length', len(self.body)) self.insertBase() if self.use_HTTP_content_compression and \ self.headers.get('content-encoding', 'gzip') == 'gzip': # use HTTP content encoding to compress body contents unless # this response already has another type of content encoding if content_type.split('/')[0] not in uncompressableMimeMajorTypes: # only compress if not listed as uncompressable body = self.body startlen = len(body) co = zlib.compressobj(6,zlib.DEFLATED,-zlib.MAX_WBITS, zlib.DEF_MEM_LEVEL,0) chunks = [_gzip_header, co.compress(body), co.flush(), struct.pack("') # right end of the XML preamble body = ('' % encoding) + body[pos_right+2:] return body # Encode the Unicode data as requested ct = self.headers.get('content-type') if ct: match = charset_re.match(ct) if match: encoding = match.group(1) body = body.encode(encoding) body = fix_xml_preamble(body, encoding) return body else: if ct.startswith('text/') or ct.startswith('application/'): self.headers['content-type'] = '%s; charset=%s' % (ct, default_encoding) # Use the default character encoding body = body.encode(default_encoding, 'replace') body = fix_xml_preamble(body, default_encoding) return body # deprecated def quoteHTML(self, text): return escape(text, 1) def _traceback(self, t, v, tb, as_html=1): tb = format_exception(t, v, tb, as_html=as_html) return '\n'.join(tb) def _html(self,title,body): return ("\n" "\n%s\n\n" "\n%s\n\n" "\n" % (title,body)) def _error_html(self,title,body): # XXX could this try to use standard_error_message somehow? return ("""\

Site Error

An error was encountered while publishing this resource.

%s

%s""" %(title,body) + \ """

Troubleshooting Suggestions

  • The URL may be incorrect.
  • The parameters passed to this resource may be incorrect.
  • A resource that this resource relies on may be encountering an error.

For more detailed information about the error, please refer to the error log.

If the error persists please contact the site maintainer. Thank you for your patience.

""") def notFoundError(self,entry='Unknown'): self.setStatus(404) raise NotFound, self._error_html( "Resource not found", "Sorry, the requested resource does not exist." + "

Check the URL and try again.

" + "

Resource: %s

" % escape(entry)) forbiddenError = notFoundError # If a resource is forbidden, # why reveal that it exists? def debugError(self,entry): raise NotFound, self._error_html( "Debugging Notice", "Zope has encountered a problem publishing your object.

" "\n%s

" % entry) def badRequestError(self,name): self.setStatus(400) if re.match('^[A-Z_0-9]+$',name): raise InternalError, self._error_html( "Internal Error", "Sorry, an internal error occurred in this resource.") raise BadRequest, self._error_html( "Invalid request", "The parameter, %s, " % name + "was omitted from the request.

" + "Make sure to specify all required parameters, " + "and try the request again.

" ) def _unauthorized(self): realm = self.realm if realm: self.setHeader('WWW-Authenticate', 'basic realm="%s"' % realm, 1) def unauthorized(self): m = "You are not authorized to access this resource." if self.debug_mode: if self._auth: m = m + '\nUsername and password are not correct.' else: m = m + '\nNo Authorization header found.' raise Unauthorized, m def _setBCIHeaders(self, t, tb): try: # Try to capture exception info for bci calls et = translate(str(t), nl2sp) self.setHeader('bobo-exception-type', et) # As of Zope 2.6.2 / 2.7, we no longer try to pass along a # meaningful exception value. Now that there are good logging # facilities on the server side (and given that xml-rpc has # largely removed the need for this code at all), we just # refer the caller to the server error log. ev = 'See the server error log for details' self.setHeader('bobo-exception-value', ev) # Get the tb tail, which is the interesting part: while tb.tb_next is not None: tb = tb.tb_next el = str(tb.tb_lineno) ef = str(tb.tb_frame.f_code.co_filename) # Do not give out filesystem information. ef = ef.split(os.sep)[-1] self.setHeader('bobo-exception-file', ef) self.setHeader('bobo-exception-line', el) except: # Don't try so hard that we cause other problems ;) pass del tb def exception(self, fatal=0, info=None, absuri_match=re.compile(r'\w+://[\w\.]+').match, tag_search=re.compile('[a-zA-Z]>').search, abort=1 ): if isinstance(info, tuple) and len(info) == 3: t, v, tb = info else: t, v, tb = sys.exc_info() if issubclass(t, Unauthorized): self._unauthorized() self._setBCIHeaders(t, tb) self.setStatus(t) if self.status >= 300 and self.status < 400: if isinstance(v, str) and absuri_match(v) is not None: if self.status == 300: self.setStatus(302) self.setHeader('location', v) tb = None # just one path covered return self elif isinstance(v, Redirect): # death to string exceptions! if self.status == 300: self.setStatus(302) self.setHeader('location', v.args[0]) self.setBody('') tb = None return self else: try: l, b = v if (isinstance(l, str) and absuri_match(l) is not None): if self.status == 300: self.setStatus(302) self.setHeader('location', l) self.setBody(b) tb = None # one more patch covered return self except: pass # tb is not cleared in this case b = v if isinstance(b, Exception): try: try: b = str(b) except UnicodeEncodeError: b = self._encode_unicode(unicode(b)) except: b = '' % type(b).__name__ if fatal and t is SystemExit and v.code == 0: body = self.setBody( (str(t), 'Zope has exited normally.

' + self._traceback(t, v, tb) + '

'), is_error=1) else: try: match = tag_search(b) except TypeError: match = None if match is None: body = self.setBody( (str(t), 'Sorry, a site error occurred.

' + self._traceback(t, v, tb) + '

'), is_error=1) elif self.isHTML(b): # error is an HTML document, not just a snippet of html if APPEND_TRACEBACKS: body = self.setBody(b + self._traceback( t, '(see above)', tb), is_error=1) else: body = self.setBody(b, is_error=1) else: body = self.setBody( (str(t), b + self._traceback(t,'(see above)', tb, 0)), is_error=1) del tb return body _wrote = None def _cookie_list(self): cookie_list = [] for name, attrs in self.cookies.items(): # Note that as of May 98, IE4 ignores cookies with # quoted cookie attr values, so only the value part # of name=value pairs may be quoted. if attrs.get('quoted', True): cookie = '%s="%s"' % (name, quote(attrs['value'])) else: cookie = '%s=%s' % (name, quote(attrs['value'])) for name, v in attrs.items(): name = name.lower() if name == 'expires': cookie = '%s; Expires=%s' % (cookie,v) elif name == 'domain': cookie = '%s; Domain=%s' % (cookie,v) elif name == 'path': cookie = '%s; Path=%s' % (cookie,v) elif name == 'max_age': cookie = '%s; Max-Age=%s' % (cookie,v) elif name == 'comment': cookie = '%s; Comment=%s' % (cookie,v) elif name == 'secure' and v: cookie = '%s; Secure' % cookie # Some browsers recognize this cookie attribute # and block read/write access via JavaScript elif name == 'http_only' and v: cookie = '%s; HTTPOnly' % cookie # Some browsers recognize the SameSite cookie attribute # and do not send the cookie along with cross-site requests # providing some protection against CSRF attacks # https://tools.ietf.org/html/draft-west-first-party-cookies-07 elif name == 'same_site': cookie = '%s; SameSite=%s' % (cookie, v) cookie_list.append(('Set-Cookie', cookie)) # Should really check size of cookies here! return cookie_list def finalize(self): """ Set headers required by various parts of protocol. """ body = self.body if (not 'content-length' in self.headers and not 'transfer-encoding' in self.headers): self.setHeader('content-length', len(body)) return "%d %s" % (self.status, self.errmsg), self.listHeaders() def listHeaders(self): """ Return a list of (key, value) pairs for our headers. o Do appropriate case normalization. """ result = [ ('X-Powered-By', 'Zope (www.zope.org), Python (www.python.org)') ] for key, value in self.headers.items(): if key.lower() == key: # only change non-literal header names key = '-'.join([x.capitalize() for x in key.split('-')]) result.append((key, value)) result.extend(self._cookie_list()) result.extend(self.accumulated_headers) return result def __str__(self, html_search=re.compile('',re.I).search, ): if self._wrote: return '' # Streaming output was used. status, headers = self.finalize() body = self.body chunks = [] # status header must come first. chunks.append("Status: %s" % status) for key, value in headers: chunks.append("%s: %s" % (key, value)) # RFC 2616 mandates empty line between headers and payload chunks.append('') chunks.append(body) return '\r\n'.join(chunks) def write(self,data): """\ Return data as a stream HTML data may be returned using a stream-oriented interface. This allows the browser to display partial results while computation of a response to proceed. The published object should first set any output headers or cookies on the response object. Note that published objects must not generate any errors after beginning stream-oriented output. """ if not self._wrote: notify(PubBeforeStreaming(self)) self.outputBody() self._wrote = 1 self.stdout.flush() self.stdout.write(data)