~ubuntu-branches/debian/sid/keystone/sid

Viewing changes to keystone/common/wsgi.py

Committer: Package Import Robot
Author(s): Thomas Goirand
Date: 2013-05-10 10:22:18 UTC
mfrom: (1.2.1) (26.1.4 experimental)
Revision ID: package-import@ubuntu.com-20130510102218-7hph1420gz5jsyr7

Tags: 2013.1.1-2

http://bugs.debian.org/707598

* Uploading to unstable.
* New upstream release:
- Fixes CVE-2013-2059: Keystone tokens not immediately invalidated when
user is deleted [OSSA 2013-011] (Closes: #707598).
* Also installs httpd/keystone.py.

files added:
.coveragerc

.mailmap

.pc/fixes-keystone-default-catalog.patch

.pc/fixes-keystone-default-catalog.patch/etc

.pc/fixes-keystone-default-catalog.patch/etc/default_catalog.templates

.pc/sql_conn.patch/etc/keystone.conf.sample

babel.cfg

debian/CHANGELOG

debian/debian_control_vars

debian/keystone.config.in

debian/keystone.lintian-overrides

debian/keystone.postinst.in

debian/keystone.upstart.in

debian/logging.conf

debian/patches/fixes-keystone-default-catalog.patch

debian/pydist-overrides

debian/tests

debian/tests/test_overrides.conf

debian/ubuntu_control_vars

doc/source/apache-httpd.rst

doc/source/external-auth.rst

doc/source/images/authComp.png

doc/source/images/graphs_authComp.png

doc/source/images/graphs_authCompDelegate.png

doc/source/middlewarearchitecture.rst

doc/source/static/header-line.gif

doc/source/static/header_bg.jpg

doc/source/static/nature.css

doc/source/static/openstack_logo.png

etc/keystone.conf.sample

examples

examples/pki

examples/pki/certs

examples/pki/certs/cacert.pem

examples/pki/certs/middleware.pem

examples/pki/certs/signing_cert.pem

examples/pki/certs/ssl_cert.pem

examples/pki/cms

examples/pki/cms/auth_token_revoked.json

examples/pki/cms/auth_token_revoked.pem

examples/pki/cms/auth_token_scoped.json

examples/pki/cms/auth_token_scoped.pem

examples/pki/cms/auth_token_unscoped.json

examples/pki/cms/auth_token_unscoped.pem

examples/pki/cms/revocation_list.json

examples/pki/cms/revocation_list.pem

examples/pki/gen_pki.sh

examples/pki/private

examples/pki/private/cakey.pem

examples/pki/private/signing_key.pem

examples/pki/private/ssl_key.pem

httpd

httpd/README

httpd/keystone.conf

httpd/keystone.py

keystone/auth

keystone/auth/__init__.py

keystone/auth/controllers.py

keystone/auth/core.py

keystone/auth/plugins

keystone/auth/plugins/__init__.py

keystone/auth/plugins/password.py

keystone/auth/plugins/token.py

keystone/auth/routers.py

keystone/auth/token_factory.py

keystone/catalog/controllers.py

keystone/catalog/routers.py

keystone/clean.py

keystone/common/cms.py

keystone/common/config.py

keystone/common/controller.py

keystone/common/dependency.py

keystone/common/models.py

keystone/common/openssl.py

keystone/common/router.py

keystone/common/sql/migrate_repo/versions/002_sqlite_downgrade.sql

keystone/common/sql/migrate_repo/versions/002_sqlite_upgrade.sql

keystone/common/sql/migrate_repo/versions/002_token_id_hash.py

keystone/common/sql/migrate_repo/versions/003_sqlite_upgrade.sql

keystone/common/sql/migrate_repo/versions/003_token_valid.py

keystone/common/sql/migrate_repo/versions/004_undo_token_id_hash.py

keystone/common/sql/migrate_repo/versions/005_set_utf8_character_set.py

keystone/common/sql/migrate_repo/versions/006_add_policy_table.py

keystone/common/sql/migrate_repo/versions/007_add_domain_tables.py

keystone/common/sql/migrate_repo/versions/008_create_default_domain.py

keystone/common/sql/migrate_repo/versions/009_normalize_identity.py

keystone/common/sql/migrate_repo/versions/010_normalize_identity_migration.py

keystone/common/sql/migrate_repo/versions/011_endpoints_v3.py

keystone/common/sql/migrate_repo/versions/012_populate_endpoint_type.py

keystone/common/sql/migrate_repo/versions/013_drop_legacy_endpoints.py

keystone/common/sql/migrate_repo/versions/014_add_group_tables.py

keystone/common/sql/migrate_repo/versions/015_tenant_to_project.py

keystone/common/sql/migrate_repo/versions/016_normalize_domain_ids.py

keystone/common/sql/migrate_repo/versions/017_membership_role.py

keystone/common/sql/migrate_repo/versions/018_add_trust_tables.py

keystone/common/sql/migrate_repo/versions/019_fixup_role.py

keystone/common/sql/migrate_repo/versions/020_migrate_metadata_table_roles.py

keystone/common/sql/migrate_repo/versions/021_add_trust_to_token.py

keystone/common/sql/migrate_repo/versions/022_move_legacy_endpoint_id.py

keystone/common/systemd.py

keystone/contrib/access

keystone/contrib/access/__init__.py

keystone/contrib/access/core.py

keystone/contrib/stats

keystone/contrib/stats/__init__.py

keystone/contrib/stats/backends

keystone/contrib/stats/backends/__init__.py

keystone/contrib/stats/backends/kvs.py

keystone/contrib/stats/core.py

keystone/contrib/user_crud

keystone/contrib/user_crud/__init__.py

keystone/contrib/user_crud/core.py

keystone/controllers.py

keystone/identity/controllers.py

keystone/identity/routers.py

keystone/locale

keystone/locale/ca

keystone/locale/ca/LC_MESSAGES

keystone/locale/ca/LC_MESSAGES/keystone.po

keystone/locale/hu

keystone/locale/hu/LC_MESSAGES

keystone/locale/hu/LC_MESSAGES/keystone.po

keystone/locale/ja

keystone/locale/ja/LC_MESSAGES

keystone/locale/ja/LC_MESSAGES/keystone.po

keystone/locale/keystone.pot

keystone/openstack/common/gettextutils.py

keystone/openstack/common/importutils.py

keystone/openstack/common/jsonutils.py

keystone/openstack/common/policy.py

keystone/openstack/common/timeutils.py

keystone/openstack/common/version.py

keystone/policy/backends/sql.py

keystone/policy/controllers.py

keystone/policy/routers.py

keystone/routers.py

keystone/token/controllers.py

keystone/token/routers.py

keystone/trust

keystone/trust/__init__.py

keystone/trust/backends

keystone/trust/backends/__init__.py

keystone/trust/backends/kvs.py

keystone/trust/backends/sql.py

keystone/trust/controllers.py

keystone/trust/core.py

keystone/trust/routers.py

tests/_test_import_auth_token.py

tests/backend_pam.conf

tests/backend_sql_disk.conf

tests/test_auth.py

tests/test_auth_plugin.conf

tests/test_auth_plugin.py

tests/test_backend_pam.py

tests/test_catalog.py

tests/test_cert_setup.py

tests/test_contrib_s3_core.py

tests/test_drivers.py

tests/test_injection.py

tests/test_ipv6.py

tests/test_setup.py

tests/test_singular_plural.py

tests/test_sizelimit.py

tests/test_sql_upgrade.py

tests/test_ssl.py

tests/test_url_middleware.py

tests/test_v3.py

tests/test_v3_auth.py

tests/test_v3_catalog.py

tests/test_v3_identity.py

tests/test_v3_policy.py

tests/test_v3_protection.py

tools/flakes.py

tools/install_venv_common.py

files removed:
.pc/CVE-2012-3542_Lack-of-authorization-for-adding-users-to-tenants.patch

.pc/CVE-2012-3542_Lack-of-authorization-for-adding-users-to-tenants.patch/keystone

.pc/CVE-2012-3542_Lack-of-authorization-for-adding-users-to-tenants.patch/keystone/identity

.pc/CVE-2012-3542_Lack-of-authorization-for-adding-users-to-tenants.patch/keystone/identity/core.py

.pc/CVE-2012-4413_Revoking-a-role-does-not-affect-existing-tokens.patch

.pc/CVE-2012-4413_Revoking-a-role-does-not-affect-existing-tokens.patch/keystone

.pc/CVE-2012-4413_Revoking-a-role-does-not-affect-existing-tokens.patch/keystone/identity

.pc/CVE-2012-4413_Revoking-a-role-does-not-affect-existing-tokens.patch/keystone/identity/core.py

.pc/CVE-2012-4413_Revoking-a-role-does-not-affect-existing-tokens.patch/keystone/token

.pc/CVE-2012-4413_Revoking-a-role-does-not-affect-existing-tokens.patch/keystone/token/core.py

.pc/CVE-2012-4413_Revoking-a-role-does-not-affect-existing-tokens.patch/tests

.pc/CVE-2012-4413_Revoking-a-role-does-not-affect-existing-tokens.patch/tests/test_keystoneclient.py

.pc/CVE-2012-4456-Some_actions_in_Keystone_admin_API_do_not_validate_token.patch

.pc/CVE-2012-4456-Some_actions_in_Keystone_admin_API_do_not_validate_token.patch/keystone

.pc/CVE-2012-4456-Some_actions_in_Keystone_admin_API_do_not_validate_token.patch/keystone/catalog

.pc/CVE-2012-4456-Some_actions_in_Keystone_admin_API_do_not_validate_token.patch/keystone/catalog/core.py

.pc/CVE-2012-4456-Some_actions_in_Keystone_admin_API_do_not_validate_token.patch/keystone/identity

.pc/CVE-2012-4456-Some_actions_in_Keystone_admin_API_do_not_validate_token.patch/keystone/identity/core.py

.pc/CVE-2012-4456-Some_actions_in_Keystone_admin_API_do_not_validate_token.patch/tests

.pc/CVE-2012-4456-Some_actions_in_Keystone_admin_API_do_not_validate_token.patch/tests/test_content_types.py

.pc/CVE-2012-4457-Raise_unauthorized_if_tenant_disabled.patch

.pc/CVE-2012-4457-Raise_unauthorized_if_tenant_disabled.patch/keystone

.pc/CVE-2012-4457-Raise_unauthorized_if_tenant_disabled.patch/keystone/service.py

.pc/CVE-2012-4457-Raise_unauthorized_if_tenant_disabled.patch/tests

.pc/CVE-2012-4457-Raise_unauthorized_if_tenant_disabled.patch/tests/test_keystoneclient.py

.pc/CVE-2013-0247_denial_of_service_through_invalid_token_requests.patch

.pc/CVE-2013-0247_denial_of_service_through_invalid_token_requests.patch/keystone

.pc/CVE-2013-0247_denial_of_service_through_invalid_token_requests.patch/keystone/config.py

.pc/CVE-2013-0247_denial_of_service_through_invalid_token_requests.patch/keystone/exception.py

.pc/CVE-2013-0247_denial_of_service_through_invalid_token_requests.patch/keystone/service.py

.pc/CVE-2013-0247_denial_of_service_through_invalid_token_requests.patch/tests

.pc/CVE-2013-0247_denial_of_service_through_invalid_token_requests.patch/tests/test_service.py

.pc/CVE-2013-0280_Information-leak-and-Denial-of-Service-using-XML-entities.patch

.pc/CVE-2013-0280_Information-leak-and-Denial-of-Service-using-XML-entities.patch/keystone

.pc/CVE-2013-0280_Information-leak-and-Denial-of-Service-using-XML-entities.patch/keystone/common

.pc/CVE-2013-0280_Information-leak-and-Denial-of-Service-using-XML-entities.patch/keystone/common/serializer.py

.pc/CVE-2013-0282_ensure-user-tenant-enabled-ec2.patch

.pc/CVE-2013-0282_ensure-user-tenant-enabled-ec2.patch/keystone

.pc/CVE-2013-0282_ensure-user-tenant-enabled-ec2.patch/keystone/contrib

.pc/CVE-2013-0282_ensure-user-tenant-enabled-ec2.patch/keystone/contrib/ec2

.pc/CVE-2013-0282_ensure-user-tenant-enabled-ec2.patch/keystone/contrib/ec2/core.py

.pc/default_catalog.patch

.pc/default_catalog.patch/etc

.pc/default_catalog.patch/etc/keystone.conf

.pc/ensures-User-is-member-of-tenant-in-ec2-validation.patch

.pc/ensures-User-is-member-of-tenant-in-ec2-validation.patch/keystone

.pc/ensures-User-is-member-of-tenant-in-ec2-validation.patch/keystone/contrib

.pc/ensures-User-is-member-of-tenant-in-ec2-validation.patch/keystone/contrib/ec2

.pc/ensures-User-is-member-of-tenant-in-ec2-validation.patch/keystone/contrib/ec2/core.py

.pc/logging.conf.patch

.pc/logging.conf.patch/etc

.pc/logging.conf.patch/etc/logging.conf.sample

.pc/pip-require_versions

.pc/pip-require_versions/tools

.pc/pip-require_versions/tools/pip-requires

.pc/sql_conn.patch/etc/keystone.conf

AUTHORS

debian/keystone.config

debian/keystone.postinst

debian/patches/CVE-2012-3542_Lack-of-authorization-for-adding-users-to-tenants.patch

debian/patches/CVE-2012-4413_Revoking-a-role-does-not-affect-existing-tokens.patch

debian/patches/CVE-2012-4456-Some_actions_in_Keystone_admin_API_do_not_validate_token.patch

debian/patches/CVE-2012-4457-Raise_unauthorized_if_tenant_disabled.patch

debian/patches/CVE-2013-0247_denial_of_service_through_invalid_token_requests.patch

debian/patches/CVE-2013-0280_Information-leak-and-Denial-of-Service-using-XML-entities.patch

debian/patches/CVE-2013-0282_ensure-user-tenant-enabled-ec2.patch

debian/patches/ensures-User-is-member-of-tenant-in-ec2-validation.patch

debian/patches/logging.conf.patch

debian/patches/pip-require_versions

doc/source/middleware_architecture.rst

doc/source/old

doc/source/old/backends.rst

doc/source/old/controllingservers.rst

doc/source/old/endpoints.rst

doc/source/old/extensions.rst

doc/source/old/migration.rst

doc/source/old/releases.rst

doc/source/old/services.rst

doc/source/old/ssl.rst

etc/keystone.conf

keystone/common/policy.py

keystone/identity/models.py

keystone/middleware/swift_auth.py

keystone/openstack/common/cfg.py

keystone/policy/backends/simple.py

run_tests.py

tests/policy.json

tests/test_auth_token_middleware.py

tests/test_authors.py

tests/test_service.py

tests/test_swift_auth_middleware.py

files modified:
.gitignore

.gitreview

.pc/applied-patches

HACKING.rst

MANIFEST.in

README.rst

bin/keystone-all

debian/changelog

debian/compat

debian/control

debian/copyright

debian/gbp.conf

debian/keystone.dirs

debian/keystone.logrotate

debian/keystone.manpages

debian/keystone.postrm

debian/keystone.prerm

debian/keystone.templates

debian/patches/default_catalog.patch

debian/patches/series

debian/patches/sql_conn.patch

debian/po/POTFILES.in

debian/po/cs.po

debian/po/da.po

debian/po/de.po

debian/po/es.po

debian/po/fr.po

debian/po/gl.po

debian/po/it.po

debian/po/nl.po

debian/po/pl.po

debian/po/pt.po

debian/po/pt_BR.po

debian/po/ru.po

debian/po/sk.po

debian/po/sv.po

debian/po/templates.pot

debian/po/zh_CN.po

debian/rules

debian/watch

doc/source/_theme/layout.html

doc/source/_theme/theme.conf

doc/source/api_curl_examples.rst

doc/source/architecture.rst

doc/source/community.rst

doc/source/conf.py

doc/source/configuration.rst

doc/source/configuringservices.rst

doc/source/developing.rst

doc/source/index.rst

doc/source/installing.rst

doc/source/man/keystone-all.rst

doc/source/man/keystone-manage.rst

doc/source/setup.rst

doc/source/static/tweaks.css

etc/default_catalog.templates

etc/logging.conf.sample

etc/policy.json

keystone/catalog/__init__.py

keystone/catalog/backends/kvs.py

keystone/catalog/backends/sql.py

keystone/catalog/backends/templated.py

keystone/catalog/core.py

keystone/cli.py

keystone/common/bufferedhttp.py

keystone/common/kvs.py

keystone/common/ldap/core.py

keystone/common/ldap/fakeldap.py

keystone/common/manager.py

keystone/common/serializer.py

keystone/common/sql/core.py

keystone/common/sql/legacy.py

keystone/common/sql/migrate_repo/versions/001_add_initial_tables.py

keystone/common/sql/migration.py

keystone/common/sql/nova.py

keystone/common/sql/util.py

keystone/common/utils.py

keystone/common/wsgi.py

keystone/config.py

keystone/contrib/admin_crud/core.py

keystone/contrib/ec2/backends/kvs.py

keystone/contrib/ec2/backends/sql.py

keystone/contrib/ec2/core.py

keystone/contrib/s3/core.py

keystone/exception.py

keystone/identity/__init__.py

keystone/identity/backends/kvs.py

keystone/identity/backends/ldap/core.py

keystone/identity/backends/pam.py

keystone/identity/backends/sql.py

keystone/identity/core.py

keystone/middleware/auth_token.py

keystone/middleware/core.py

keystone/middleware/ec2_token.py

keystone/middleware/s3_token.py

keystone/openstack/common/setup.py

keystone/policy/__init__.py

keystone/policy/backends/rules.py

keystone/policy/core.py

keystone/service.py

keystone/test.py

keystone/token/__init__.py

keystone/token/backends/kvs.py

keystone/token/backends/memcache.py

keystone/token/backends/sql.py

keystone/token/core.py

openstack-common.conf

run_tests.sh

setup.cfg

setup.py

tests/_ldap_livetest.py

tests/backend_ldap.conf

tests/backend_liveldap.conf

tests/backend_sql.conf

tests/default_catalog.templates

tests/default_fixtures.py

tests/legacy_essex.mysql

tests/legacy_essex.sqlite

tests/test_backend.py

tests/test_backend_kvs.py

tests/test_backend_ldap.py

tests/test_backend_memcache.py

tests/test_backend_sql.py

tests/test_backend_templated.py

tests/test_content_types.py

tests/test_exception.py

tests/test_import_legacy.py

tests/test_keystoneclient.py

tests/test_keystoneclient_sql.py

tests/test_middleware.py

tests/test_migrate_nova_auth.py

tests/test_overrides.conf

tests/test_policy.py

tests/test_s3_token_middleware.py

tests/test_serializer.py

tests/test_utils.py

tests/test_versions.py

tests/test_wsgi.py

tools/install_venv.py

tools/pip-requires

tools/sample_data.sh

tools/test-requires

tox.ini

Show diffs side-by-side

added added

removed removed

keystone/common/wsgi.py

"""Utility methods for working with WSGI servers."""

import json

import socket

import sys

import eventlet

import eventlet.wsgi

eventlet.patcher.monkey_patch(all=False, socket=True, time=True)

import routes

import routes.middleware

import webob

import ssl

import webob.dec

import webob.exc

from keystone import exception

from keystone.common import config

from keystone.common import logging

from keystone.common import utils

from keystone import exception

from keystone.openstack.common import importutils

from keystone.openstack.common import jsonutils

CONF = config.CONF

LOG = logging.getLogger(__name__)

# Environment variable used to pass the request context

CONTEXT_ENV = 'openstack.context'

# Environment variable used to pass the request params

PARAMS_ENV = 'openstack.params'

class WritableLogger(object):

"""A thin wrapper that responds to `write` and logs."""

self.pool = eventlet.GreenPool(threads)

self.socket_info = {}

self.greenthread = None

self.do_ssl = False

self.cert_required = False

def start(self, key=None, backlog=128):

"""Run a WSGI server with the given application."""

LOG.debug('Starting %(arg0)s on %(host)s:%(port)s' %

{'arg0': sys.argv[0],

'host': self.host,

'port': self.port})

socket = eventlet.listen((self.host, self.port), backlog=backlog)

self.greenthread = self.pool.spawn(self._run, self.application, socket)

LOG.debug(_('Starting %(arg0)s on %(host)s:%(port)s') %

{'arg0': sys.argv[0],

'host': self.host,

'port': self.port})

# TODO(dims): eventlet's green dns/socket module does not actually

# support IPv6 in getaddrinfo(). We need to get around this in the

# future or monitor upstream for a fix

info = socket.getaddrinfo(self.host,

self.port,

socket.AF_UNSPEC,

socket.SOCK_STREAM)[0]

_socket = eventlet.listen(info[-1],

family=info[0],

backlog=backlog)

if key:

self.socket_info[key] = socket.getsockname()

self.socket_info[key] = _socket.getsockname()

# SSL is enabled

if self.do_ssl:

if self.cert_required:

cert_reqs = ssl.CERT_REQUIRED

else:

cert_reqs = ssl.CERT_NONE

100

sslsocket = eventlet.wrap_ssl(_socket, certfile=self.certfile,

101

keyfile=self.keyfile,

102

server_side=True,

103

cert_reqs=cert_reqs,

104

ca_certs=self.ca_certs)

105

_socket = sslsocket

106

107

self.greenthread = self.pool.spawn(self._run,

108

self.application,

109

_socket)

110

111

def set_ssl(self, certfile, keyfile=None, ca_certs=None,

112

cert_required=True):

113

self.certfile = certfile

114

self.keyfile = keyfile

115

self.ca_certs = ca_certs

116

self.cert_required = cert_required

117

self.do_ssl = True

118

119

def kill(self):

120

if self.greenthread:

130

def _run(self, application, socket):

131

"""Start a WSGI server in a new green thread."""

132

log = logging.getLogger('eventlet.wsgi.server')

eventlet.wsgi.server(socket, application, custom_pool=self.pool,

log=WritableLogger(log))

133

try:

134

eventlet.wsgi.server(socket, application, custom_pool=self.pool,

135

log=WritableLogger(log))

136

except Exception:

137

LOG.exception(_('Server error'))

138

raise

139

140

141

class Request(webob.Request):

166

213

arg_dict = req.environ['wsgiorg.routing_args'][1]

167

214

action = arg_dict.pop('action')

168

215

del arg_dict['controller']

169

LOG.debug('arg_dict: %s', arg_dict)

216

LOG.debug(_('arg_dict: %s'), arg_dict)

170

217

171

218

# allow middleware up the stack to provide context & params

172

context = req.environ.get('openstack.context', {})

219

context = req.environ.get(CONTEXT_ENV, {})

173

220

context['query_string'] = dict(req.params.iteritems())

174

params = req.environ.get('openstack.params', {})

221

context['path'] = req.environ['PATH_INFO']

222

params = req.environ.get(PARAMS_ENV, {})

223

if 'REMOTE_USER' in req.environ:

224

context['REMOTE_USER'] = req.environ['REMOTE_USER']

225

elif context.get('REMOTE_USER', None) is not None:

226

del context['REMOTE_USER']

175

227

params.update(arg_dict)

176

228

177

229

# TODO(termie): do some basic normalization on methods

182

234

183

235

try:

184

236

result = method(context, **params)

237

except exception.Unauthorized as e:

238

LOG.warning(_("Authorization failed. %s from %s")

239

% (e, req.environ['REMOTE_ADDR']))

240

return render_exception(e)

185

241

except exception.Error as e:

186

242

LOG.warning(e)

187

243

return render_exception(e)

244

except TypeError as e:

245

logging.exception(e)

246

return render_exception(exception.ValidationError(e))

188

247

except Exception as e:

189

248

logging.exception(e)

190

249

return render_exception(exception.UnexpectedError(exception=e))

197

256

return result

198

257

elif isinstance(result, webob.exc.WSGIHTTPException):

199

258

return result

200

return render_response(body=result)

259

260

response_code = self._get_response_code(req)

261

return render_response(body=result, status=response_code)

262

263

def _get_response_code(self, req):

264

req_method = req.environ['REQUEST_METHOD']

265

controller = importutils.import_class('keystone.common.controller')

266

code = None

267

if isinstance(self, controller.V3Controller) and req_method == 'POST':

268

code = (201, 'Created')

269

return code

201

270

202

271

def _normalize_arg(self, arg):

203

272

return str(arg).replace(':', '_').replace('-', '_')

210

279

if not context['is_admin']:

211

280

try:

212

281

user_token_ref = self.token_api.get_token(

213

context=context, token_id=context['token_id'])

214

except exception.TokenNotFound:

215

raise exception.Unauthorized()

282

context=context, token_id=context['token_id'])

283

except exception.TokenNotFound as e:

284

raise exception.Unauthorized(e)

216

285

217

286

creds = user_token_ref['metadata'].copy()

218

287

335

404

"""Iterator that prints the contents of a wrapper string."""

336

405

LOG.debug('%s %s %s', ('*' * 20), 'RESPONSE BODY', ('*' * 20))

337

406

for part in app_iter:

338

#sys.stdout.write(part)

339

407

LOG.debug(part)

340

#sys.stdout.flush()

341

408

yield part

342

343

409

344

410

345

411

class Router(object):

369

435

mapper.connect(None, '/v1.0/{path_info:.*}', controller=BlogApp())

370

436

371

437

"""

438

# if we're only running in debug, bump routes' internal logging up a

439

# notch, as it's very spammy

440

if CONF.debug:

441

logging.getLogger('routes.middleware').setLevel(logging.INFO)

442

372

443

self.map = mapper

373

444

self._router = routes.middleware.RoutesMiddleware(self._dispatch,

374

445

self.map)

394

465

"""

395

466

match = req.environ['wsgiorg.routing_args'][1]

396

467

if not match:

397

return webob.exc.HTTPNotFound()

468

return render_exception(

469

exception.NotFound(_('The resource could not be found.')))

398

470

app = match['controller']

399

471

return app

400

472

470

542

return _factory

471

543

472

544

473

def render_response(body=None, status=(200, 'OK'), headers=None):

545

def render_response(body=None, status=None, headers=None):

474

546

"""Forms a WSGI response."""

475

resp = webob.Response()

476

resp.status = '%s %s' % status

477

resp.headerlist = headers or [('Content-Type', 'application/json'),

478

('Vary', 'X-Auth-Token')]

479

480

if body is not None:

481

resp.body = json.dumps(body, cls=utils.SmarterEncoder)

482

483

return resp

547

headers = headers or []

548

headers.append(('Vary', 'X-Auth-Token'))

549

550

if body is None:

551

body = ''

552

status = status or (204, 'No Content')

553

else:

554

body = jsonutils.dumps(body, cls=utils.SmarterEncoder)

555

headers.append(('Content-Type', 'application/json'))

556

status = status or (200, 'OK')

557

558

return webob.Response(body=body,

559

status='%s %s' % status,

560

headerlist=headers)

484

561

485

562

486

563

def render_exception(error):

487

564

"""Forms a WSGI response based on the current error."""

488

return render_response(status=(error.code, error.title), body={

489

'error': {

490

'code': error.code,

491

'title': error.title,

492

'message': str(error),

493

}

494

})

565

body = {'error': {

566

'code': error.code,

567

'title': error.title,

568

'message': str(error)

569

}}

570

if isinstance(error, exception.AuthPluginException):

571

body['error']['identity'] = error.authentication

572

return render_response(status=(error.code, error.title), body=body)

Older »