X-Git-Url: http://git.cascardo.info/?p=cascardo%2Fipsilon.git;a=blobdiff_plain;f=ipsilon%2Futil%2Fpage.py;h=e1cecb94dcc2847811eefa0db34d8403e8dfe2e6;hp=d2ccb510bed70b0cd17988bc49f27def20c11278;hb=cfe24fa3dc15d87f3ace944a2d62a0f4c5ee496c;hpb=0d5c4ff5229880b6eba12a4e7e5bfbab2f415caa diff --git a/ipsilon/util/page.py b/ipsilon/util/page.py index d2ccb51..e1cecb9 100644 --- a/ipsilon/util/page.py +++ b/ipsilon/util/page.py @@ -1,22 +1,7 @@ -# Copyright (C) 2013 Simo Sorce -# -# see file 'COPYING' for use and warranty information -# -# This program is free software; you can redistribute it and/or modify -# it under the terms of the GNU General Public License as published by -# the Free Software Foundation, either version 3 of the License, or -# (at your option) any later version. -# -# This program is distributed in the hope that it will be useful, -# but WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -# GNU General Public License for more details. -# -# You should have received a copy of the GNU General Public License -# along with this program. If not, see . +# Copyright (C) 2013 Ipsilon project Contributors, for license see COPYING import cherrypy -from ipsilon.util.log import Log +from ipsilon.util.endpoint import Endpoint from ipsilon.util.user import UserSession from ipsilon.util.trans import Transaction from urllib import unquote @@ -40,15 +25,15 @@ def admin_protect(fn): return check -class Page(Log): +class Page(Endpoint): def __init__(self, site, form=False): + super(Page, self).__init__(site) if 'template_env' not in site: raise ValueError('Missing template environment') self._site = site self.basepath = cherrypy.config.get('base.mount', "") self.user = None self._is_form_page = form - self.default_headers = dict() self.auth_protect = False def get_url(self): @@ -71,7 +56,6 @@ class Page(Log): return False def __call__(self, *args, **kwargs): - # pylint: disable=star-args cherrypy.response.headers.update(self.default_headers) self.user = UserSession().get_user() @@ -85,20 +69,20 @@ class Page(Log): return op(*args[1:], **kwargs) else: if self._is_form_page: - self._debug("method: %s" % cherrypy.request.method) + self.debug("method: %s" % cherrypy.request.method) op = getattr(self, cherrypy.request.method, None) if callable(op): # Basic CSRF protection if cherrypy.request.method != 'GET': url = self.get_url() if 'referer' not in cherrypy.request.headers: - self._debug("Missing referer in %s request to %s" - % (cherrypy.request.method, url)) + self.debug("Missing referer in %s request to %s" + % (cherrypy.request.method, url)) raise cherrypy.HTTPError(403) referer = cherrypy.request.headers['referer'] if not self._check_referer(referer, url): - self._debug("Wrong referer %s in request to %s" - % (referer, url)) + self.debug("Wrong referer %s in request to %s" + % (referer, url)) raise cherrypy.HTTPError(403) return op(*args, **kwargs) else: @@ -116,7 +100,6 @@ class Page(Log): return model def _template(self, *args, **kwargs): - # pylint: disable=star-args t = self._site['template_env'].get_template(args[0]) m = self._template_model() m.update(kwargs) @@ -137,9 +120,17 @@ class Page(Log): # Try with kwargs first tid = t.find_tid(kwargs) if not tid: - # If no TID yet See if we have it in a referer + # If no TID yet See if we have it in a referer or in the + # environment in the REDIRECT_URL + url = None if 'referer' in cherrypy.request.headers: - r = urlparse(unquote(cherrypy.request.headers['referer'])) + url = cherrypy.request.headers['referer'] + r = urlparse(unquote(url)) + if r.query: + tid = t.find_tid(parse_qs(r.query)) + if not tid and 'REQUEST_URI' in cherrypy.request.wsgi_environ: + url = cherrypy.request.wsgi_environ['REQUEST_URI'] + r = urlparse(unquote(url)) if r.query: tid = t.find_tid(parse_qs(r.query)) if not tid: