1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
|
# Copyright (C) 2012-2014 Aleksey Lim
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
import logging
from os.path import join
from sugar_network import db
from sugar_network.model import FrontRoutes, load_bundle
from sugar_network.node import model
# pylint: disable-msg=W0611
from sugar_network.toolkit.router import route, postroute, ACL, File
from sugar_network.toolkit.router import Request, fallbackroute, preroute
from sugar_network.toolkit.spec import parse_requires, parse_version
from sugar_network.toolkit.bundle import Bundle
from sugar_network.toolkit.coroutine import this
from sugar_network.toolkit import http, coroutine, enforce
_logger = logging.getLogger('node.routes')
class NodeRoutes(db.Routes, FrontRoutes):
def __init__(self, guid, auth=None, **kwargs):
db.Routes.__init__(self, **kwargs)
FrontRoutes.__init__(self)
self._guid = guid
self._auth = auth
@property
def guid(self):
return self._guid
@preroute
def preroute(self, op):
request = this.request
if request.principal:
this.principal = request.principal
elif op.acl & ACL.AUTH:
this.principal = self._auth.logon(request)
else:
this.principal = None
if op.acl & ACL.AUTHOR and request.guid:
if not this.principal:
this.principal = self._auth.logon(request)
allowed = this.principal.admin
if not allowed:
if request.resource == 'user':
allowed = (this.principal == request.guid)
else:
doc = self.volume[request.resource].get(request.guid)
allowed = this.principal in doc['author']
enforce(allowed, http.Forbidden, 'Authors only')
if op.acl & ACL.SUPERUSER:
if not this.principal:
this.principal = self._auth.logon(request)
enforce(this.principal.admin, http.Forbidden, 'Superusers only')
@route('GET', cmd='whoami', mime_type='application/json')
def whoami(self):
roles = []
if this.principal and this.principal.admin:
roles.append('root')
return {'roles': roles,
'guid': this.principal,
'route': 'direct',
}
@route('GET', cmd='status', mime_type='application/json')
def status(self):
return {'guid': self.guid,
'seqno': {
'db': self.volume.seqno.value,
'releases': self.volume.releases_seqno.value,
},
}
@route('POST', ['user'], mime_type='application/json')
def register(self):
# To avoid authentication while registering new user
self.create()
@fallbackroute('GET', ['packages'])
def route_packages(self):
path = this.request.path
if path and path[-1] == 'updates':
result = []
last_modified = 0
for blob in self.volume.blobs.diff(
[[this.request.if_modified_since + 1, None]],
join(*path[:-1]), recursive=False):
if '.' in blob.name:
continue
result.append(blob.name)
last_modified = max(last_modified, blob.mtime)
this.response.content_type = 'application/json'
if last_modified:
this.response.last_modified = last_modified
return result
blob = self.volume.blobs.get(join(*path))
if isinstance(blob, File):
return blob
else:
this.response.content_type = 'application/json'
return [i.name for i in blob if '.' not in i.name]
@route('POST', ['context'], cmd='submit',
arguments={'initial': False},
mime_type='application/json', acl=ACL.AUTH)
def submit_release(self, initial):
blob = self.volume.blobs.post(
this.request.content_stream, this.request.content_type)
try:
context, release = load_bundle(blob, initial=initial)
except Exception:
self.volume.blobs.delete(blob.digest)
raise
this.call(method='POST', path=['context', context, 'releases'],
content_type='application/json', content=release)
return blob.digest
@route('GET', ['context', None], cmd='solve',
arguments={'requires': list, 'stability': list},
mime_type='application/json')
def solve(self):
solution = model.solve(self.volume, this.request.guid, **this.request)
enforce(solution is not None, 'Failed to solve')
return solution
@route('GET', ['context', None], cmd='resolve',
arguments={'requires': list, 'stability': list})
def resolve(self):
solution = self.solve()
return self.volume.blobs.get(solution[this.request.guid]['blob'])
this.principal = None
|