| blob | 2cf7c6596f17a290d08a392d08405e3599d24cfe |
1 #!/usr/bin/env python
2 #
3 # Copyright 2007 Google Inc.
4 #
5 # Licensed under the Apache License, Version 2.0 (the "License");
6 # you may not use this file except in compliance with the License.
7 # You may obtain a copy of the License at
8 #
9 # http://www.apache.org/licenses/LICENSE-2.0
10 #
11 # Unless required by applicable law or agreed to in writing, software
12 # distributed under the License is distributed on an "AS IS" BASIS,
13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
16 #
17 """Pure-Python application server for testing applications locally.
19 Given a port and the paths to a valid application directory (with an 'app.yaml'
20 file), the external library directory, and a relative URL to use for logins,
21 creates an HTTP server that can be used to test an application locally. Uses
22 stubs instead of actual APIs when SetupStubs() is called first.
24 Example:
25 root_path = '/path/to/application/directory'
26 login_url = '/login'
27 port = 8080
28 template_dir = '/path/to/appserver/templates'
29 server = dev_appserver.CreateServer(root_path, login_url, port, template_dir)
30 server.serve_forever()
31 """
36 import __builtin__
37 import BaseHTTPServer
38 import Cookie
39 import cStringIO
40 import cgi
41 import cgitb
46 pass
48 import dummy_thread
50 import errno
51 import httplib
52 import imp
53 import inspect
54 import itertools
55 import locale
56 import logging
57 import mimetools
58 import mimetypes
59 import os
60 import pickle
61 import pprint
62 import random
64 import re
65 import sre_compile
66 import sre_constants
67 import sre_parse
69 import mimetypes
70 import socket
71 import sys
72 import time
73 import traceback
74 import types
75 import urlparse
76 import urllib
78 import google
111 DEFAULT_ENV = {
115 }
133 """Base-class for exceptions in this module."""
136 """The supplied application configuration file is invalid."""
139 """Application configuration file not found."""
142 """Templates for the debugging console were not loaded."""
146 """Splits a relative URL into its path and query-string components.
148 Args:
149 relative_url: String containing the relative URL (often starting with '/')
150 to split. Should be properly escaped as www-form-urlencoded data.
152 Returns:
153 Tuple (script_name, query_string) where:
154 script_name: Relative URL of the script that was accessed.
155 query_string: String containing everything after the '?' character.
156 """
162 """Returns the full, original URL used to access the relative URL.
164 Args:
165 server_name: Name of the local host, or the value of the 'host' header
166 from the request.
167 server_port: Port on which the request was served (string or int).
168 relative_url: Relative URL that was accessed, including query string.
170 Returns:
171 String containing the original URL.
172 """
176 netloc = server_name
181 """Base-class for handling HTTP requests."""
184 relative_url,
185 path,
186 headers,
187 infile,
188 outfile,
190 """Dispatch and handle an HTTP request.
192 base_env_dict should contain at least these CGI variables:
193 REQUEST_METHOD, REMOTE_ADDR, SERVER_SOFTWARE, SERVER_NAME,
194 SERVER_PROTOCOL, SERVER_PORT
196 Args:
197 relative_url: String containing the URL accessed.
198 path: Local path of the resource that was matched; back-references will be
199 replaced by values matched in the relative_url. Path may be relative
200 or absolute, depending on the resource being served (e.g., static files
201 will have an absolute path; scripts will be relative).
202 headers: Instance of mimetools.Message with headers from the request.
203 infile: File-like object with input data from the request.
204 outfile: File-like object where output data should be written.
205 base_env_dict: Dictionary of CGI environment parameters if available.
206 Defaults to None.
208 Returns:
209 None if request handling is complete.
210 Tuple (path, headers, input_file) for an internal redirect:
211 path: Path of URL to redirect to.
212 headers: Headers to send to other dispatcher.
213 input_file: New input to send to new dispatcher.
214 """
218 """Process the end of an internal redirect.
220 This method is called after all subsequent dispatch requests have finished.
221 By default the output from the dispatched process is copied to the original.
223 This will not be called on dispatchers that do not return an internal
224 redirect.
226 Args:
227 dispatched_output: StringIO buffer containing the results from the
228 dispatched
229 """
234 """Matches an arbitrary URL using a list of URL patterns from an application.
236 Each URL pattern has an associated URLDispatcher instance and path to the
237 resource's location on disk. See AddURL for more details. The first pattern
238 that matches an inputted URL will have its associated values returned by
239 Match().
240 """
243 """Initializer."""
247 """Adds a URL pattern to the list of patterns.
249 If the supplied regex starts with a '^' or ends with a '$' an
250 InvalidAppConfigError exception will be raised. Start and end symbols
251 and implicitly added to all regexes, meaning we assume that all regexes
252 consume all input from a URL.
254 Args:
255 regex: String containing the regular expression pattern.
256 dispatcher: Instance of URLDispatcher that should handle requests that
257 match this regex.
258 path: Path on disk for the resource. May contain back-references like
259 r'\1', r'\2', etc, which will be replaced by the corresponding groups
260 matched by the regex if present.
261 requires_login: True if the user must be logged-in before accessing this
262 URL; False if anyone can access this URL.
263 admin_only: True if the user must be a logged-in administrator to
264 access the URL; False if anyone can access the URL.
265 """
283 relative_url,
285 """Matches a URL from a request against the list of URL patterns.
287 The supplied relative_url may include the query string (i.e., the '?'
288 character and everything following).
290 Args:
291 relative_url: Relative URL being accessed in a request.
293 Returns:
294 Tuple (dispatcher, matched_path, requires_login, admin_only), which are
295 the corresponding values passed to AddURL when the matching URL pattern
296 was added to this matcher. The matched_path will have back-references
297 replaced using values matched by the URL pattern. If no match was found,
298 dispatcher will be None.
299 """
313 """Retrieves the URLDispatcher objects that could be matched.
315 Should only be used in tests.
317 Returns:
318 A set of URLDispatcher objects.
319 """
324 """Dispatcher across multiple URLMatcher instances."""
327 login_url,
328 url_matchers,
331 """Initializer.
333 Args:
334 login_url: Relative URL which should be used for handling user logins.
335 url_matchers: Sequence of URLMatcher objects.
336 get_user_info, login_redirect: Used for dependency injection.
337 """
344 relative_url,
345 path,
346 headers,
347 infile,
348 outfile,
350 """Dispatches a request to the first matching dispatcher.
352 Matchers are checked in the order they were supplied to the constructor.
353 If no matcher matches, a 404 error will be written to the outfile. The
354 path variable supplied to this method is ignored.
355 """
362 continue
373 relative_url,
374 outfile)
379 'authorized to view this page.'
383 matched_path,
384 headers,
385 infile,
386 outfile,
395 new_headers,
396 new_input,
397 new_outfile,
402 return
407 'in application configuration.'
412 """Python Logging handler that displays the debugging console to users."""
422 @staticmethod
424 """Initializes the templates used to render the debugging console.
426 This method must be called before any ApplicationLoggingHandler instances
427 are created.
429 Args:
430 header: The header template that is printed first.
431 script: The script template that is printed after the logging messages.
432 middle: The middle element that's printed before the footer.
433 footer; The last element that's printed at the end of the document.
434 """
441 @staticmethod
443 """Returns True if InitializeTemplates has been called, False otherwise."""
447 """Initializer.
449 Args:
450 args, kwargs: See logging.Handler.
452 Raises:
453 TemplatesNotLoadedError exception if the InitializeTemplates method was
454 not called before creating this instance.
455 """
457 raise TemplatesNotLoadedError
464 """Called by the logging module each time the application logs a message.
466 Args:
467 record: logging.LogRecord instance corresponding to the newly logged
468 message.
469 """
473 """Prints an HTML debugging console to an output stream, if requested.
475 Args:
476 relative_url: Relative URL that was accessed, including the query string.
477 Used to determine if the parameter 'debug' was supplied, in which case
478 the console will be shown.
479 env: Dictionary containing CGI environment variables. Checks for the
480 HTTP_COOKIE entry to see if the accessing user has any logging-related
481 cookies set.
482 outfile: Output stream to which the console should be written if either
483 a debug parameter was supplied or a logging cookie is present.
484 """
489 return
500 """Prints a single logging record to an output stream.
502 Args:
503 record: logging.LogRecord instance to print.
504 outfile: Output stream to which the LogRecord should be printed.
505 """
521 relative_url,
522 headers,
525 """Sets up environment variables for a CGI.
527 Args:
528 cgi_path: Full file-system path to the CGI being executed.
529 relative_url: Relative URL used to access the CGI.
530 headers: Instance of mimetools.Message containing request headers.
531 split_url, get_user_info: Used for dependency injection.
533 Returns:
534 Dictionary containing CGI environment variables.
535 """
557 continue
561 return env
565 """Fake for methods/functions that are not implemented in the production
566 environment.
567 """
572 """Fake class for classes that are not implemented in the production
573 environment.
574 """
575 __init__ = NotImplementedFake
579 """Determines if the supplied module is related to encodings in any way.
581 Encodings-related modules cannot be reloaded, so they need to be treated
582 specially when sys.modules is modified in any way.
584 Args:
585 module_name: Absolute name of the module regardless of how it is imported
586 into the local namespace (e.g., foo.bar.baz).
588 Returns:
589 True if it's an encodings-related module; False otherwise.
590 """
593 return True
594 return False
598 """Clear all modules in a module dictionary except for those modules that
599 are in any way related to encodings.
601 Args:
602 module_dict: Dictionary in the form used by sys.modules.
603 """
610 """Fake version of os.urandom."""
614 return bytes
618 """Fake version of os.uname."""
623 """Fake version of os.unlink."""
631 """Fake version of os.readlink."""
636 """Fake version of os.access where only reads are supported."""
638 return False
640 return True
644 """Fake version of locale.setlocale that only supports the default."""
651 """Fake version of os.open."""
656 """Fake version of os.rename."""
661 """Fake version of os.utime."""
666 """Fake distutils.util.get_platform on OS/X. Pass-through otherwise."""
674 subdirectories,
676 """Determines if a filename is contained within one of a set of directories.
678 Args:
679 filename: Path of the file (relative or absolute).
680 subdirectories: Iterable collection of paths to subdirectories which the
681 given filename may be under.
682 normcase: Used for dependency injection.
684 Returns:
685 True if the supplied filename is in one of the given sub-directories or
686 its hierarchy of children. False otherwise.
687 """
692 return True
693 return False
713 ])
717 ])
721 """Determines if a module's name belongs to a set of prefix strings.
723 Args:
724 module_name: String containing the fully qualified module name.
725 prefix_set: Iterable set of module name prefixes to check against.
727 Returns:
728 True if the module_name belongs to the prefix set or is a submodule of
729 any of the modules specified in the prefix_set. Otherwise False.
730 """
733 return True
736 return True
738 return False
742 """Creates a module dictionary for the hardened part of the process.
744 Module dictionary will contain modules that should be shared between the
745 hardened and unhardened parts of the process.
747 Args:
748 module_dict: Module dictionary from which existing modules should be
749 pulled (usually sys.modules).
751 Returns:
752 A new module dictionary.
753 """
754 output_dict = {}
757 continue
761 continue
769 return output_dict
773 """Generate all valid filenames for the given file
775 Args:
776 p: Positional args are the folders to the file and finally the file
777 without a suffix.
779 Returns:
780 A list of strings representing the given path to a file with each valid
781 suffix for this python build.
782 """
788 """File sub-class that enforces the security restrictions of the production
789 environment.
790 """
801 ])
810 ])
817 ])
861 ]))
872 _availability_cache = {}
874 @staticmethod
876 """Configures which paths are allowed to be accessed.
878 Must be called at least once before any file objects are created in the
879 hardened environment.
881 Args:
882 root_path: Absolute path to the root of the application.
883 application_paths: List of additional paths that the application may
884 access, this must include the App Engine runtime but
885 not the Python library directories.
886 """
897 @staticmethod
899 """Configures access to files matching FakeFile._skip_files
901 Args:
902 allow_skipped_files: Boolean whether to allow access to skipped files
903 """
907 @staticmethod
909 """Sets which files in the application directory are to be ignored.
911 Must be called at least once before any file objects are created in the
912 hardened environment.
914 Must be called whenever the configuration was updated.
916 Args:
917 skip_files: Object with .match() method (e.g. compiled regexp).
918 """
922 @staticmethod
924 """Sets StaticFileConfigMatcher instance for checking if a file is static.
926 Must be called at least once before any file objects are created in the
927 hardened environment.
929 Must be called whenever the configuration was updated.
931 Args:
932 static_file_config_matcher: StaticFileConfigMatcher instance.
933 """
937 @staticmethod
939 """Determines if a file's path is accessible.
941 SetAllowedPaths(), SetSkippedFiles() and SetStaticFileConfigMatcher() must
942 be called before this method or else all file accesses will raise an error.
944 Args:
945 filename: Path of the file to check (relative or absolute). May be a
946 directory, in which case access for files inside that directory will
947 be checked.
948 normcase: Used for dependency injection.
950 Returns:
951 True if the file is accessible, False otherwise.
952 """
960 return result
962 @staticmethod
964 """Determines if a file's path is accessible.
966 This is an internal part of the IsFileAccessible implementation.
968 Args:
969 logical_filename: Absolute path of the file to check.
970 normcase: Used for dependency injection.
972 Returns:
973 True if the file is accessible, False otherwise.
974 """
975 logical_dirfakefile = logical_filename
986 logical_filename)
987 return False
991 logical_filename)
992 return False
995 return True
998 return True
1003 return True
1007 allowed_dirs,
1012 return True
1014 return False
1017 """Initializer. See file built-in documentation."""
1028 """Enforces access restrictions for functions that have a file or
1029 directory path as their first argument."""
1031 _original_os = os
1034 """Initializer.
1036 Args:
1037 original_func: Callable that takes as its first argument the path to a
1038 file or directory on disk; all subsequent arguments may be variable.
1039 """
1043 """Enforces access permissions for the function passed to the constructor.
1044 """
1052 """Determines the leaf submodule name of a full module name.
1054 Args:
1055 fullname: Fully qualified module name, e.g. 'foo.bar.baz'
1057 Returns:
1058 Submodule name, e.g. 'baz'. If the supplied module has no submodule (e.g.,
1059 'stuff'), the returned value will just be that module name ('stuff').
1060 """
1065 """Raised when a module could not be found.
1067 In contrast to when a module has been found, but cannot be loaded because of
1068 hardening restrictions.
1069 """
1073 """Decorator that logs the call stack of the HardenedModulesHook class as
1074 it executes, indenting logging messages based on the current stack depth.
1075 """
1077 args_to_show = []
1094 return decorate
1098 """Meta import hook that restricts the modules used by applications to match
1099 the production environment.
1101 Module controls supported:
1102 - Disallow native/extension modules from being loaded
1103 - Disallow built-in and/or Python-distributed modules from being loaded
1104 - Replace modules with completely empty modules
1105 - Override specific module attributes
1106 - Replace one module with another
1108 After creation, this object should be added to the front of the sys.meta_path
1109 list (which may need to be created). The sys.path_importer_cache dictionary
1110 should also be cleared, to prevent loading any non-restricted modules.
1112 See PEP302 for more info on how this works:
1113 http://www.python.org/dev/peps/pep-0302/
1114 """
1119 """Logs an import-related message to stderr, with indentation based on
1120 current call-stack depth.
1122 Args:
1123 message: Logging format string.
1124 args: Positional format parameters for the logging message.
1125 """
1130 _WHITE_LIST_C_MODULES = [
1209 ]
1211 __CRYPTO_CIPHER_ALLOWED_MODULES = [
1220 ]
1221 _WHITE_LIST_PARTIAL_MODULES = {
1237 'get_count'
1238 ],
1320 ],
1321 }
1323 _MODULE_OVERRIDES = {
1326 },
1342 },
1346 },
1347 }
1349 _ENABLED_FILE_TYPES = (
1354 )
1357 module_dict,
1362 """Initializer.
1364 Args:
1365 module_dict: Module dictionary to use for managing system modules.
1366 Should be sys.modules.
1367 imp_module, os_module, dummy_thread_module, pickle_module: References to
1368 modules that exist in the dev_appserver that must be used by this class
1369 in order to function, even if these modules have been unloaded from
1370 sys.modules.
1371 """
1379 @Trace
1381 """See PEP 302."""
1383 return self
1385 search_path = path
1393 current_module_fullname,
1394 search_path)
1400 current_module_fullname,
1401 search_path)
1406 return None
1408 return self
1411 """Check if the named module has a stub replacement."""
1415 return True
1416 return False
1419 """Import the stub module replacement for the specified module."""
1425 @Trace
1427 """Prunes and overrides restricted module attributes.
1429 Args:
1430 module: The module to prune. This should be a new module whose attributes
1431 reference back to the real module's __dict__ members.
1432 """
1442 @Trace
1444 submodule,
1445 submodule_fullname,
1446 search_path):
1447 """Locates a module while enforcing module import restrictions.
1449 Args:
1450 submodule: The short name of the submodule (i.e., the last section of
1451 the fullname; for 'foo.bar' this would be 'bar').
1452 submodule_fullname: The fully qualified name of the module to find (e.g.,
1453 'foo.bar').
1454 search_path: List of paths to search for to find this module. Should be
1455 None if the current sys.path should be used.
1457 Returns:
1458 Tuple (source_file, pathname, description) where:
1459 source_file: File-like object that contains the module; in the case
1460 of packages, this will be None, which implies to look at __init__.py.
1461 pathname: String containing the full path of the module on disk.
1462 description: Tuple returned by imp.find_module().
1463 However, in the case of an import using a path hook (e.g. a zipfile),
1464 source_file will be a PEP-302-style loader object, pathname will be None,
1465 and description will be a tuple filled with None values.
1467 Raises:
1468 ImportError exception if the requested module was found, but importing
1469 it is disallowed.
1471 CouldNotFindModuleError exception if the request module could not even
1472 be found for import.
1473 """
1481 return result
1483 break
1506 """Helper for FindModuleRestricted to find a module in a sys.path entry.
1508 Args:
1509 submodule:
1510 submodule_fullname:
1511 path_entry: A single sys.path entry, or None representing the builtins.
1513 Returns:
1514 Either None (if nothing was found), or a triple (source_file, path_name,
1515 description). See the doc string for FindModuleRestricted() for the
1516 meaning of the latter.
1517 """
1523 pass
1528 return result
1529 return None
1539 break
1541 pass
1548 pass
1554 return None
1556 @Trace
1558 submodule_fullname,
1559 source_file,
1560 pathname,
1561 description):
1562 """Loads a module while enforcing module import restrictions.
1564 As a byproduct, the new module will be added to the module dictionary.
1566 Args:
1567 submodule_fullname: The fully qualified name of the module to find (e.g.,
1568 'foo.bar').
1569 source_file: File-like object that contains the module's source code,
1570 or a PEP-302-style loader object.
1571 pathname: String containing the full path of the module on disk.
1572 description: Tuple returned by imp.find_module(), or (None, None, None)
1573 in case source_file is a PEP-302-style loader object.
1575 Returns:
1576 The new module.
1578 Raises:
1579 ImportError exception of the specified module could not be loaded for
1580 whatever reason.
1581 """
1588 source_file,
1589 pathname,
1590 description)
1594 raise
1600 @Trace
1602 submodule,
1603 submodule_fullname,
1604 search_path):
1605 """Finds and loads a module, loads it, and adds it to the module dictionary.
1607 Args:
1608 submodule: Name of the module to import (e.g., baz).
1609 submodule_fullname: Full name of the module to import (e.g., foo.bar.baz).
1610 search_path: Path to use for searching for this submodule. For top-level
1611 modules this should be None; otherwise it should be the __path__
1612 attribute from the parent package.
1614 Returns:
1615 A new module instance that has been inserted into the module dictionary
1616 supplied to __init__.
1618 Raises:
1619 ImportError exception if the module could not be loaded for whatever
1620 reason (e.g., missing, not allowed).
1621 """
1635 source_file, pathname, description = self.FindModuleRestricted(submodule, submodule_fullname, search_path)
1637 source_file,
1638 pathname,
1639 description)
1652 return module
1654 @Trace
1656 """Retrieves the parent package of a fully qualified module name.
1658 Args:
1659 fullname: Full name of the module whose parent should be retrieved (e.g.,
1660 foo.bar).
1662 Returns:
1663 Module instance for the parent or None if there is no parent module.
1665 Raise:
1666 ImportError exception if the module's parent could not be found.
1667 """
1675 return None
1677 @Trace
1679 """Determines the search path of a module's parent package.
1681 Args:
1682 fullname: Full name of the module to look up (e.g., foo.bar).
1684 Returns:
1685 Tuple (submodule, search_path) where:
1686 submodule: The last portion of the module name from fullname (e.g.,
1687 if fullname is foo.bar, then this is bar).
1688 search_path: List of paths that belong to the parent package's search
1689 path or None if there is no parent package.
1691 Raises:
1692 ImportError exception if the module or its parent could not be found.
1693 """
1701 @Trace
1703 """Determines the path on disk and the search path of a module or package.
1705 Args:
1706 fullname: Full name of the module to look up (e.g., foo.bar).
1708 Returns:
1709 Tuple (pathname, search_path, submodule) where:
1710 pathname: String containing the full path of the module on disk,
1711 or None if the module wasn't loaded from disk (e.g. from a zipfile).
1712 search_path: List of paths that belong to the found package's search
1713 path or None if found module is not a package.
1714 submodule: The relative name of the submodule that's being imported.
1715 """
1717 source_file, pathname, description = self.FindModuleRestricted(submodule, fullname, search_path)
1725 @Trace
1727 """See PEP 302."""
1739 @Trace
1741 """See PEP 302 extensions."""
1743 source_file, pathname, description = self.FindModuleRestricted(submodule, fullname, search_path)
1746 return True
1747 return False
1749 @Trace
1751 """See PEP 302 extensions."""
1754 return None
1761 @Trace
1763 """See PEP 302 extensions."""
1766 return None
1781 """Determines if a module has a main function that takes no arguments.
1783 This includes functions that have arguments with defaults that are all
1784 assigned, thus requiring no additional arguments in order to be called.
1786 Args:
1787 module: A types.ModuleType instance.
1789 Returns:
1790 True if the module has a valid, reusable main function; False otherwise.
1791 """
1795 return True
1797 return True
1798 return False
1802 """Determines the fully-qualified Python module name of a script on disk.
1804 Args:
1805 handler_path: CGI path stored in the application configuration (as a path
1806 like 'foo/bar/baz.py'). May contain $PYTHON_LIB references.
1808 Returns:
1809 String containing the corresponding module name (e.g., 'foo.bar.baz').
1810 """
1825 return module_fullname
1829 """Determines which __init__.py files are missing from a module's parent
1830 packages.
1832 Args:
1833 cgi_path: Absolute path of the CGI module file on disk.
1834 module_fullname: Fully qualified Python module name used to import the
1835 cgi_path module.
1837 Returns:
1838 List containing the paths to the missing __init__.py files.
1839 """
1840 missing_init_files = []
1845 module_base = cgi_path
1860 return missing_init_files
1864 cgi_path,
1865 import_hook,
1867 """Loads a target CGI script by importing it as a Python module.
1869 If the module for the target CGI script has already been loaded before,
1870 the new module will be loaded in its place using the same module object,
1871 possibly overwriting existing module attributes.
1873 Args:
1874 handler_path: CGI path stored in the application configuration (as a path
1875 like 'foo/bar/baz.py'). Should not have $PYTHON_LIB references.
1876 cgi_path: Absolute path to the CGI script file on disk.
1877 import_hook: Instance of HardenedModulesHook to use for module loading.
1878 module_dict: Used for dependency injection.
1880 Returns:
1881 Tuple (module_fullname, script_module, module_code) where:
1882 module_fullname: Fully qualified module name used to import the script.
1883 script_module: The ModuleType object corresponding to the module_fullname.
1884 If the module has not already been loaded, this will be an empty
1885 shell of a module.
1886 module_code: Code object (returned by compile built-in) corresponding
1887 to the cgi_path to run. If the script_module was previously loaded
1888 and has a main() function that can be reused, this will be None.
1889 """
1947 """Executes a CGI script by importing it as a new module; possibly reuses
1948 the module's main() function if it is defined and takes no arguments.
1950 Basic technique lifted from PEP 338 and Python2.5's runpy module. See:
1951 http://www.python.org/dev/peps/pep-0338/
1953 See the section entitled "Import Statements and the Main Module" to understand
1954 why a module named '__main__' cannot do relative imports. To get around this,
1955 the requested module's path could be added to sys.path on each request.
1957 Args:
1958 handler_path: CGI path stored in the application configuration (as a path
1959 like 'foo/bar/baz.py'). Should not have $PYTHON_LIB references.
1960 cgi_path: Absolute path to the CGI script file on disk.
1961 import_hook: Instance of HardenedModulesHook to use for module loading.
1963 Returns:
1964 True if the response code had an error status (e.g., 404), or False if it
1965 did not.
1967 Raises:
1968 Any kind of exception that could have been raised when loading the target
1969 module, running a target script, or executing the application code itself.
1970 """
2006 return error_response
2012 handler_path,
2013 cgi_path,
2014 env,
2015 infile,
2016 outfile,
2017 module_dict,
2019 """Executes Python file in this process as if it were a CGI.
2021 Does not return an HTTP response line. CGIs should output headers followed by
2022 the body content.
2024 The modules in sys.modules should be the same before and after the CGI is
2025 executed, with the specific exception of encodings-related modules, which
2026 cannot be reloaded and thus must always stay in sys.modules.
2028 Args:
2029 root_path: Path to the root of the application.
2030 handler_path: CGI path stored in the application configuration (as a path
2031 like 'foo/bar/baz.py'). May contain $PYTHON_LIB references.
2032 cgi_path: Absolute path to the CGI script file on disk.
2033 env: Dictionary of environment variables to use for the execution.
2034 infile: File-like object to read HTTP request input data from.
2035 outfile: FIle-like object to write HTTP response data to.
2036 module_dict: Dictionary in which application-loaded modules should be
2037 preserved between requests. This removes the need to reload modules that
2038 are reused between requests, significantly increasing load performance.
2039 This dictionary must be separate from the sys.modules dictionary.
2040 exec_script: Used for dependency injection.
2041 """
2086 raise
2113 """Dispatcher that executes Python CGI scripts."""
2116 module_dict,
2117 root_path,
2118 path_adjuster,
2122 """Initializer.
2124 Args:
2125 module_dict: Dictionary in which application-loaded modules should be
2126 preserved between requests. This dictionary must be separate from the
2127 sys.modules dictionary.
2128 path_adjuster: Instance of PathAdjuster to use for finding absolute
2129 paths of CGI files on disk.
2130 setup_env, exec_cgi, create_logging_handler: Used for dependency
2131 injection.
2132 """
2141 relative_url,
2142 path,
2143 headers,
2144 infile,
2145 outfile,
2147 """Dispatches the Python CGI."""
2152 env = {}
2158 path,
2159 cgi_path,
2160 env,
2161 infile,
2162 outfile,
2170 """Returns a string representation of this dispatcher."""
2175 """Dispatcher that executes local functions like they're CGIs.
2177 The contents of sys.modules will be preserved for local CGIs running this
2178 dispatcher, but module hardening will still occur for any new imports. Thus,
2179 be sure that any local CGIs have loaded all of their dependent modules
2180 _before_ they are executed.
2181 """
2184 """Initializer.
2186 Args:
2187 module_dict: Passed to CGIDispatcher.
2188 path_adjuster: Passed to CGIDispatcher.
2189 cgi_func: Callable function taking no parameters that should be
2190 executed in a CGI environment in the current process.
2191 """
2196 return False
2203 module_dict,
2205 path_adjuster,
2209 """Preserves sys.modules for CGIDispatcher.Dispatch."""
2214 """Returns a string representation of this dispatcher."""
2219 """Adjusts application file paths to paths relative to the application or
2220 external library directories."""
2223 """Initializer.
2225 Args:
2226 root_path: Path to the root of the application running on the server.
2227 """
2231 """Adjusts application file path to paths relative to the application or
2232 external library directories.
2234 Handler paths that start with $PYTHON_LIB will be converted to paths
2235 relative to the google directory.
2237 Args:
2238 path: File path that should be adjusted.
2240 Returns:
2241 The adjusted path.
2242 """
2249 return path
2253 """Keeps track of file/directory specific application configuration.
2255 Specifically:
2256 - Computes mime type based on URLMap and file extension.
2257 - Decides on cache expiration time based on URLMap and default expiration.
2259 To determine the mime type, we first see if there is any mime-type property
2260 on each URLMap entry. If non is specified, we use the mimetypes module to
2261 guess the mime type from the file path extension, and use
2262 application/octet-stream if we can't find the mimetype.
2263 """
2266 url_map_list,
2267 path_adjuster,
2268 default_expiration):
2269 """Initializer.
2271 Args:
2272 url_map_list: List of appinfo.URLMap objects.
2273 If empty or None, then we always use the mime type chosen by the
2274 mimetypes module.
2275 path_adjuster: PathAdjuster object used to adjust application file paths.
2276 default_expiration: String describing default expiration time for browser
2277 based caching of static files. If set to None this disallows any
2278 browser caching of static content.
2279 """
2291 continue
2317 """Tests if the given path points to a "static" file.
2319 Args:
2320 path: String containing the file's path relative to the app.
2322 Returns:
2323 Boolean, True if the file was configured to be static.
2324 """
2327 return True
2328 return False
2331 """Returns the mime type that we should use when serving the specified file.
2333 Args:
2334 path: String containing the file's path relative to the app.
2336 Returns:
2337 String containing the mime type to use. Will be 'application/octet-stream'
2338 if we have no idea what it should be.
2339 """
2344 return mime_type
2350 """Returns the cache expiration duration to be users for the given file.
2352 Args:
2353 path: String containing the file's path relative to the app.
2355 Returns:
2356 Integer number of seconds to be used for browser cache expiration time.
2357 """
2361 return expiration
2368 """Reads a file on disk, returning a corresponding HTTP status and data.
2370 Args:
2371 data_path: Path to the file on disk to read.
2372 openfile: Used for dependency injection.
2374 Returns:
2375 Tuple (status, data) where status is an HTTP response code, and data is
2376 the data read; will be an empty string if an error occurred or the
2377 file was empty.
2378 """
2400 """Dispatcher that reads data files from disk."""
2403 path_adjuster,
2404 static_file_config_matcher,
2406 """Initializer.
2408 Args:
2409 path_adjuster: Instance of PathAdjuster to use for finding absolute
2410 paths of data files on disk.
2411 static_file_config_matcher: StaticFileConfigMatcher object.
2412 read_data_file: Used for dependency injection.
2413 """
2419 relative_url,
2420 path,
2421 headers,
2422 infile,
2423 outfile,
2425 """Reads the file and returns the response status and data."""
2442 """Returns a string representation of this dispatcher."""
2449 ])
2453 """Ignore specific response headers.
2455 Certain response headers cannot be modified by an Application. For a
2456 complete list of these headers please see:
2458 http://code.google.com/appengine/docs/webapp/responseclass.html#Disallowed_HTTP_Response_Headers
2460 This rewriter simply removes those headers.
2461 """
2470 """Parse status header, if it exists.
2472 Handles the server-side 'status' header, which instructs the server to change
2473 the HTTP response code accordingly. Handles the 'location' header, which
2474 issues an HTTP 302 redirect to the client. Also corrects the 'content-length'
2475 header to reflect actual content length in case extra information has been
2476 appended to the response body.
2478 If the 'status' header supplied by the client is invalid, this method will
2479 set the response to a 500 with an error message as content.
2480 """
2484 response_status = status_value
2503 """Update the cache header."""
2510 """Rewrite the Content-Length header.
2512 Even though Content-Length is not a user modifiable header, App Engine
2513 sends a correct Content-Length to the user based on the actual response.
2514 """
2524 """Create the default response rewriter chain.
2526 A response rewriter is the a function that gets a final chance to change part
2527 of the dev_appservers response. A rewriter is not like a dispatcher in that
2528 it is called after every request has been handled by the dispatchers
2529 regardless of which dispatcher was used.
2531 The order in which rewriters are registered will be the order in which they
2532 are used to rewrite the response. Modifications from earlier rewriters
2533 are used as input to later rewriters.
2535 A response rewriter is a function that can rewrite the request in any way.
2536 Thefunction can returned modified values or the original values it was
2537 passed.
2539 A rewriter function has the following parameters and return values:
2541 Args:
2542 status_code: Status code of response from dev_appserver or previous
2543 rewriter.
2544 status_message: Text corresponding to status code.
2545 headers: mimetools.Message instance with parsed headers. NOTE: These
2546 headers can contain its own 'status' field, but the default
2547 dev_appserver implementation will remove this. Future rewriters
2548 should avoid re-introducing the status field and return new codes
2549 instead.
2550 body: File object containing the body of the response. This position of
2551 this file may not be at the start of the file. Any content before the
2552 files position is considered not to be part of the final body.
2554 Returns:
2555 status_code: Rewritten status code or original.
2556 status_message: Rewritter message or original.
2557 headers: Rewritten/modified headers or original.
2558 body: Rewritten/modified body or original.
2560 Returns:
2561 List of response rewriters.
2562 """
2564 ParseStatusRewriter,
2565 CacheRewriter,
2566 ContentLengthRewriter,
2567 ]
2571 """Allows final rewrite of dev_appserver response.
2573 This function receives the unparsed HTTP response from the application
2574 or internal handler, parses out the basic structure and feeds that structure
2575 in to a chain of response rewriters.
2577 It also makes sure the final HTTP headers are properly terminated.
2579 For more about response rewriters, please see documentation for
2580 CreateResponeRewritersChain.
2582 Args:
2583 response_file: File-like object containing the full HTTP response including
2584 the response code, all headers, and the request body.
2585 response_rewriters: A list of response rewriters. If none is provided it
2586 will create a new chain using CreateResponseRewritersChain.
2588 Returns:
2589 Tuple (status_code, status_message, header, body) where:
2590 status_code: Integer HTTP response status (e.g., 200, 302, 404, 500)
2591 status_message: String containing an informational message about the
2592 response code, possibly derived from the 'status' header, if supplied.
2593 header: String containing the HTTP headers of the response, without
2594 a trailing new-line (CRLF).
2595 body: String containing the body of the response.
2596 """
2606 status_code,
2607 status_message,
2608 headers,
2609 response_file)
2611 header_list = []
2622 """Manages loaded modules in the runtime.
2624 Responsible for monitoring and reporting about file modification times.
2625 Modules can be loaded from source or precompiled byte-code files. When a
2626 file has source code, the ModuleManager monitors the modification time of
2627 the source file even if the module itself is loaded from byte-code.
2628 """
2631 """Initializer.
2633 Args:
2634 modules: Dictionary containing monitored modules.
2635 """
2641 @staticmethod
2643 """Helper method to try to determine modules source file.
2645 Args:
2646 module: Module object to get file for.
2647 is_file: Function used to determine if a given path is a file.
2649 Returns:
2650 Path of the module's corresponding Python source file if it exists, or
2651 just the module's compiled Python file. If the module has an invalid
2652 __file__ attribute, None will be returned.
2653 """
2656 return None
2661 return source_file
2665 """Determines if any monitored files have been modified.
2667 Returns:
2668 True if one or more files have been modified, False otherwise.
2669 """
2672 continue
2677 return True
2680 return True
2682 return False
2685 """Records the current modification times of all monitored modules.
2686 """
2690 continue
2693 continue
2696 module_file)
2699 raise e
2702 """Clear modules so that when request is run they are reloaded."""
2709 """Clear template cache in webapp.template module.
2711 Attempts to load template module. Ignores failure. If module loads, the
2712 template cache is cleared.
2713 """
2720 login_url,
2723 """Creates a new BaseHTTPRequestHandler sub-class for use with the Python
2724 BaseHTTPServer module's HTTP server.
2726 Python's built-in HTTP server does not support passing context information
2727 along to instances of its request handlers. This function gets around that
2728 by creating a sub-class of the handler in a closure that has access to
2729 this context information.
2731 Args:
2732 root_path: Path to the root of the application running on the server.
2733 login_url: Relative URL which should be used for handling user logins.
2734 require_indexes: True if index.yaml is read-only gospel; default False.
2735 static_caching: True if browser caching of static files should be allowed.
2737 Returns:
2738 Sub-class of BaseHTTPRequestHandler.
2739 """
2750 """Dispatches URLs using patterns from a URLMatcher, which is created by
2751 loading an application's configuration file. Executes CGI scripts in the
2752 local process so the scripts can use mock versions of APIs.
2754 HTTP requests that correctly specify a user info cookie
2755 (dev_appserver_login.COOKIE_NAME) will have the 'USER_EMAIL' environment
2756 variable set accordingly. If the user is also an admin, the
2757 'USER_IS_ADMIN' variable will exist and be set to '1'. If the user is not
2758 logged in, 'USER_EMAIL' will be set to the empty string.
2760 On each request, raises an InvalidAppConfigError exception if the
2761 application configuration file in the directory specified by the root_path
2762 argument is invalid.
2763 """
2766 module_dict = application_module_dict
2769 config_cache = application_config_cache
2774 """Initializer.
2776 Args:
2777 args, kwargs: Positional and keyword arguments passed to the constructor
2778 of the super class.
2779 """
2783 """Returns server's version string used for Server HTTP header"""
2787 """Handle GET requests."""
2791 """Handles POST requests."""
2795 """Handle PUT requests."""
2799 """Handle HEAD requests."""
2803 """Handles OPTIONS requests."""
2807 """Handle DELETE requests."""
2811 """Handles TRACE requests."""
2815 """Handles any type of request and prints exceptions if they occur."""
2819 env_dict = {
2826 }
2833 return
2841 root_path,
2842 login_url)
2867 return
2874 infile,
2875 outfile,
2889 new_headers = []
2921 raise e
2924 raise e
2930 """Redirect error messages through the logging module."""
2934 """Redirect log messages through the logging module."""
2937 return DevAppServerRequestHandler
2941 """Reads app.yaml file and returns its app id and list of URLMap instances.
2943 Args:
2944 appinfo_path: String containing the path to the app.yaml file.
2945 parse_app_config: Used for dependency injection.
2947 Returns:
2948 AppInfoExternal instance.
2950 Raises:
2951 If the config file could not be read or the config does not contain any
2952 URLMap instances, this function will raise an InvalidAppConfigError
2953 exception.
2954 """
2967 url_map_list,
2968 module_dict,
2969 default_expiration,
2975 """Creates a URLMatcher instance from URLMap.
2977 Creates all of the correct URLDispatcher instances to handle the various
2978 content types in the application configuration.
2980 Args:
2981 root_path: Path to the root of the application running on the server.
2982 url_map_list: List of appinfo.URLMap objects to initialize this
2983 matcher with. Can be an empty list if you would like to add patterns
2984 manually.
2985 module_dict: Dictionary in which application-loaded modules should be
2986 preserved between requests. This dictionary must be separate from the
2987 sys.modules dictionary.
2988 default_expiration: String describing default expiration time for browser
2989 based caching of static files. If set to None this disallows any
2990 browser caching of static content.
2991 create_url_matcher, create_cgi_dispatcher, create_file_dispatcher,
2992 create_path_adjuster: Used for dependency injection.
2994 Returns:
2995 Instance of URLMatcher with the supplied URLMap objects properly loaded.
2996 """
3001 path_adjuster,
3002 default_expiration)
3004 static_file_config_matcher)
3014 dispatcher = cgi_dispatcher
3016 dispatcher = file_dispatcher
3036 dispatcher,
3037 path,
3040 return url_matcher
3044 """Cache used by LoadAppConfig.
3046 If given to LoadAppConfig instances of this class are used to cache contents
3047 of the app config (app.yaml or app.yml) and the Matcher created from it.
3049 Code outside LoadAppConfig should treat instances of this class as opaque
3050 objects and not access its members.
3051 """
3060 module_dict,
3065 """Creates a Matcher instance for an application configuration file.
3067 Raises an InvalidAppConfigError exception if there is anything wrong with
3068 the application configuration file.
3070 Args:
3071 root_path: Path to the root of the application to load.
3072 module_dict: Dictionary in which application-loaded modules should be
3073 preserved between requests. This dictionary must be separate from the
3074 sys.modules dictionary.
3075 cache: Instance of AppConfigCache or None.
3076 static_caching: True if browser caching of static files should be allowed.
3077 read_app_config, create_matcher: Used for dependency injection.
3079 Returns:
3080 tuple: (AppInfoExternal, URLMatcher)
3081 """
3107 module_dict,
3108 default_expiration)
3119 pass
3121 raise AppConfigNotFoundError
3125 """Reads cron.yaml file and returns a list of CronEntry instances.
3127 Args:
3128 croninfo_path: String containing the path to the cron.yaml file.
3129 parse_cron_config: Used for dependency injection.
3131 Returns:
3132 A CronInfoExternal object.
3134 Raises:
3135 If the config file is unreadable, empty or invalid, this function will
3136 raise an InvalidAppConfigError or a MalformedCronConfiguration exception.
3137 """
3150 """Sets up testing stubs of APIs.
3152 Args:
3153 app_id: Application ID being served.
3155 Keywords:
3156 login_url: Relative URL which should be used for handling user login/logout.
3157 datastore_path: Path to the file to store Datastore file stub data in.
3158 history_path: Path to the file to store Datastore history in.
3159 clear_datastore: If the datastore and history should be cleared on startup.
3160 smtp_host: SMTP host used for sending test mail.
3161 smtp_port: SMTP port.
3162 smtp_user: SMTP user.
3163 smtp_password: SMTP password.
3164 enable_sendmail: Whether to use sendmail as an alternative to SMTP.
3165 show_mail_body: Whether to log the body of emails.
3166 remove: Used for dependency injection.
3167 trusted: True if this app can access data belonging to other apps. This
3168 behavior is different from the real app server and should be left False
3169 except for advanced uses of dev_appserver.
3170 """
3220 smtp_port,
3221 smtp_user,
3222 smtp_password,
3249 root_path,
3250 login_url,
3254 """Creates a URLMatcher instance that handles internal URLs.
3256 Used to facilitate handling user login/logout, debugging, info about the
3257 currently running app, etc.
3259 Args:
3260 module_dict: Dictionary in the form used by sys.modules.
3261 root_path: Path to the root of the application.
3262 login_url: Relative URL which should be used for handling user login/logout.
3263 create_local_dispatcher: Used for dependency injection.
3265 Returns:
3266 Instance of URLMatcher with appropriate dispatchers.
3267 """
3274 login_dispatcher,
3281 path_adjuster)
3283 admin_dispatcher,
3284 DEVEL_CONSOLE_PATH,
3288 return url_matcher
3292 """Reads debugging console template files and initializes the console.
3294 Does nothing if templates have already been initialized.
3296 Args:
3297 template_dir: Path to the directory containing the templates files.
3299 Raises:
3300 OSError or IOError if any of the template files could not be read.
3301 """
3303 return
3312 raise
3318 login_url,
3319 port,
3320 template_dir,
3327 """Creates an new HTTPServer for an application.
3329 The sdk_dir argument must be specified for the directory storing all code for
3330 the SDK so as to allow for the sandboxing of module access to work for any
3331 and all SDK code. While typically this is where the 'google' package lives,
3332 it can be in another location because of API version support.
3334 Args:
3335 root_path: String containing the path to the root directory of the
3336 application where the app.yaml file is.
3337 login_url: Relative URL which should be used for handling user login/logout.
3338 port: Port to start the application server on.
3339 template_dir: Path to the directory in which the debug console templates
3340 are stored.
3341 serve_address: Address on which the server should serve.
3342 require_indexes: True if index.yaml is read-only gospel; default False.
3343 static_caching: True if browser caching of static files should be allowed.
3344 python_path_list: Used for dependency injection.
3345 sdk_dir: Directory where the SDK is stored.
3347 Returns:
3348 Instance of BaseHTTPServer.HTTPServer that's ready to start accepting.
3349 """
3355 template_dir])
3359 login_url,
3360 require_indexes,
3361 static_caching)