# -*- coding: utf-8 -*-
from __future__ import division
__copyright__ = """
Copyright (C) 2014 Andreas Kloeckner
Copyright (c) 2016 Polyconseil SAS. (the WSGI wrapping bits)
"""
__license__ = """
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in
all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
THE SOFTWARE.
"""
import six
from django.shortcuts import ( # noqa
render, get_object_or_404, redirect)
from django.contrib import messages
import django.forms as forms
from django.contrib.auth.decorators import login_required, permission_required
from django.core.exceptions import (PermissionDenied, SuspiciousOperation,
ObjectDoesNotExist)
from django.utils.translation import (
ugettext_lazy as _,
ugettext,
pgettext,
pgettext_lazy,
)
from django.views.decorators.csrf import csrf_exempt
from django_select2.forms import Select2Widget
from bootstrap3_datetime.widgets import DateTimePicker
from django.urls import reverse
from django.contrib.auth import get_user_model
from django.db import transaction
from relate.utils import StyledForm, StyledModelForm, string_concat
from crispy_forms.layout import Submit
from course.models import (
Course,
Participation,
ParticipationRole)
from course.utils import (
course_view, render_course_page,
get_course_specific_language_choices)
import paramiko
import paramiko.client
from dulwich.repo import Repo
import dulwich.client # noqa
from course.constants import (
participation_status,
participation_permission as pperm,
)
# {{{ for mypy
<<<<<<< HEAD
if False:
from django import http # noqa
from typing import Tuple, List, Text, Any, Dict, Union, Optional # noqa
from dulwich.client import GitClient # noqa
from dulwich.objects import Commit # noqa
=======
from django import http # noqa
from typing import cast, Tuple, List, Text, Any # noqa
from dulwich.client import GitClient # noqa
>>>>>>> 016ef1d1... Add a functioning git end point (with authentication), needs preview/update integration
# }}}
def _remove_prefix(prefix, s):
# type: (bytes, bytes) -> bytes
assert s.startswith(prefix)
return s[len(prefix):]
def transfer_remote_refs(repo, remote_refs):
# type: (Repo, Dict[bytes, Text]) -> None
valid_refs = []
if remote_refs is not None:
for ref, sha in six.iteritems(remote_refs):
if (ref.startswith(b"refs/heads/")
and not ref.startswith(b"refs/heads/origin/")):
new_ref = b"refs/remotes/origin/"+_remove_prefix(b"refs/heads/", ref)
valid_refs.append(new_ref)
repo[new_ref] = sha
for ref in repo.get_refs().keys():
if ref.startswith(b"refs/remotes/origin/") and ref not in valid_refs:
del repo[ref]
def get_dulwich_client_and_remote_path_from_course(course):
# type: (Course) -> Tuple[Union[dulwich.client.GitClient, dulwich.client.SSHGitClient], bytes] # noqa
ssh_kwargs = {}
if course.ssh_private_key:
from six import StringIO
key_file = StringIO(course.ssh_private_key)
ssh_kwargs["pkey"] = paramiko.RSAKey.from_private_key(key_file)
def get_dulwich_ssh_vendor():
from dulwich.contrib.paramiko_vendor import ParamikoSSHVendor
vendor = ParamikoSSHVendor(**ssh_kwargs)
return vendor
# writing to another module's global variable: gross!
dulwich.client.get_ssh_vendor = get_dulwich_ssh_vendor
from dulwich.client import get_transport_and_path
client, remote_path = get_transport_and_path(
course.git_source)
return client, remote_path
# {{{ new course setup
class CourseCreationForm(StyledModelForm):
class Meta:
model = Course
fields = (
"identifier",
"name",
"number",
"time_period",
"start_date",
"end_date",
"hidden", "listed",
"accepts_enrollment",
"git_source", "ssh_private_key", "course_root_path",
"course_file",
"events_file",
"enrollment_approval_required",
"preapproval_require_verified_inst_id",
"enrollment_required_email_suffix",
"from_email",
"notify_email",
"force_lang",
)
widgets = {
"start_date": DateTimePicker(options={"format": "YYYY-MM-DD"}),
"end_date": DateTimePicker(options={"format": "YYYY-MM-DD"}),
"force_lang": forms.Select(
choices=get_course_specific_language_choices()),
}
def __init__(self, *args, **kwargs):
# type: (*Any, **Any) -> None
super(CourseCreationForm, self).__init__(*args, **kwargs)
self.helper.add_input(
Submit("submit", _("Validate and create")))
@permission_required("course.add_course")
def set_up_new_course(request):
# type: (http.HttpRequest) -> http.HttpResponse
if request.method == "POST":
form = CourseCreationForm(request.POST)
if form.is_valid():
new_course = form.save(commit=False)
from course.content import get_course_repo_path
repo_path = get_course_repo_path(new_course)
try:
import os
os.makedirs(repo_path)
repo = None
try:
with transaction.atomic():
repo = Repo.init(repo_path)
client, remote_path = \
get_dulwich_client_and_remote_path_from_course(
new_course)
remote_refs = client.fetch(remote_path, repo)
if remote_refs is None:
raise RuntimeError(_("No refs found in remote repository"
" (i.e. no master branch, no HEAD). "
"This looks very much like a blank repository. "
"Please create course.yml in the remote "
"repository before creating your course."))
transfer_remote_refs(repo, remote_refs)
new_sha = repo[b"HEAD"] = remote_refs[b"HEAD"]
vrepo = repo
if new_course.course_root_path:
from course.content import SubdirRepoWrapper
vrepo = SubdirRepoWrapper(
vrepo, new_course.course_root_path)
from course.validation import validate_course_content
validate_course_content( # type: ignore
vrepo, new_course.course_file,
new_course.events_file, new_sha)
del vrepo
new_course.active_git_commit_sha = new_sha.decode()
new_course.save()
# {{{ set up a participation for the course creator
part = Participation()
part.user = request.user
part.course = new_course
part.status = participation_status.active
part.save()
part.roles.set([
# created by signal handler for course creation
ParticipationRole.objects.get(
course=new_course,
identifier="instructor")
])
# }}}
messages.add_message(request, messages.INFO,
_("Course content validated, creation "
"succeeded."))
except Exception as e:
# Don't coalesce this handler with the one below. We only want
# to delete the directory if we created it. Trust me.
# Make sure files opened for 'repo' above are actually closed.
if repo is not None: # noqa
repo.close() # noqa
from relate.utils import force_remove_path
try:
force_remove_path(repo_path)
except OSError:
messages.add_message(request, messages.WARNING,
ugettext("Failed to delete unused "
"repository directory '%s'.")
% repo_path)
# We don't raise the OSError thrown by force_remove_path
# This is to ensure correct error msg for PY2.
raise e
else:
assert repo is not None
repo.close()
except Exception as e:
from traceback import print_exc
print_exc()
messages.add_message(request, messages.ERROR,
string_concat(
_("Course creation failed"),
": %(err_type)s: %(err_str)s")
% {"err_type": type(e).__name__,
"err_str": str(e)})
else:
return redirect(
"relate-course_page",
new_course.identifier)
else:
form = CourseCreationForm()
return render(request, "generic-form.html", {
"form_description": _("Set up new course"),
"form": form
})
# }}}
# {{{ update
def is_parent_commit(repo, potential_parent, child, max_history_check_size=None):
# type: (Repo, Commit, Commit, Optional[int]) -> bool
queue = [repo[parent] for parent in child.parents]
while queue:
entry = queue.pop()
if entry == potential_parent:
return True
if max_history_check_size is not None:
max_history_check_size -= 1
if max_history_check_size == 0:
return False
queue.extend(repo[parent] for parent in entry.parents)
return False
ALLOWED_COURSE_REVISIOIN_COMMANDS = [
"fetch", "fetch_update", "update", "fetch_preview",
"preview", "end_preview"]
def run_course_update_command(
request, repo, content_repo, pctx, command, new_sha, may_update,
prevent_discarding_revisions):
if command not in ALLOWED_COURSE_REVISIOIN_COMMANDS:
raise RuntimeError(_("invalid command"))
if command.startswith("fetch"):
if command != "fetch":
command = command[6:]
client, remote_path = \
get_dulwich_client_and_remote_path_from_course(pctx.course)
remote_refs = client.fetch(remote_path, repo)
transfer_remote_refs(repo, remote_refs)
remote_head = remote_refs[b"HEAD"]
if (
prevent_discarding_revisions
and repo[b"HEAD"] != repo[remote_head]
):
if is_parent_commit(repo, repo[remote_head], repo[b"HEAD"],
max_history_check_size=20):
raise RuntimeError(_("fetch would discard commits, refusing"))
if not is_parent_commit(repo, repo[b"HEAD"], repo[remote_head],
max_history_check_size=20):
raise RuntimeError(_("internal git repo has more commits. Fetch, merge and push."))
repo[b"HEAD"] = remote_head
messages.add_message(request, messages.SUCCESS, _("Fetch successful."))
new_sha = remote_head
if command == "fetch":
return
if command == "end_preview":
pctx.participation.preview_git_commit_sha = None
pctx.participation.save()
messages.add_message(request, messages.INFO,
_("Preview ended."))
return
# {{{ validate
from course.validation import validate_course_content, ValidationError
try:
warnings = validate_course_content(
content_repo, pctx.course.course_file, pctx.course.events_file,
new_sha, course=pctx.course)
except ValidationError as e:
messages.add_message(request, messages.ERROR,
_("Course content did not validate successfully: '%s' "
"Update not applied.") % str(e))
return
else:
if not warnings:
messages.add_message(request, messages.SUCCESS,
_("Course content validated successfully."))
else:
messages.add_message(request, messages.WARNING,
string_concat(
_("Course content validated OK, with warnings: "),
"")
% ("".join(
"%(location)s: %(warningtext)s"
% {'location': w.location, 'warningtext': w.text}
for w in warnings)))
# }}}
if command == "preview":
messages.add_message(request, messages.INFO,
_("Preview activated."))
pctx.participation.preview_git_commit_sha = new_sha.decode()
pctx.participation.save()
elif command == "update" and may_update: # pragma: no branch
pctx.course.active_git_commit_sha = new_sha.decode()
pctx.course.save()
if pctx.participation.preview_git_commit_sha is not None:
pctx.participation.preview_git_commit_sha = None
pctx.participation.save()
messages.add_message(request, messages.INFO,
_("Preview ended."))
messages.add_message(request, messages.SUCCESS,
_("Update applied. "))
class GitUpdateForm(StyledForm):
def __init__(self, may_update, previewing, repo, *args, **kwargs):
super(GitUpdateForm, self).__init__(*args, **kwargs)
repo_refs = repo.get_refs()
commit_iter = repo.get_walker(list(repo_refs.values()))
def format_commit(commit):
return "%s - %s" % (
commit.id[:8].decode(),
"".join(
commit.message
.decode("utf-8", errors="replace")
.split("\n")
[:1]))
def format_sha(sha):
return format_commit(repo[sha])
self.fields["new_sha"] = forms.ChoiceField(
choices=([
(repo_refs[ref].decode(),
"[%s] %s" % (
ref.decode("utf-8", errors="replace"),
format_sha(repo_refs[ref])))
for ref in repo_refs
] + [
(entry.commit.id.decode(), format_commit(entry.commit))
for entry in commit_iter
]),
required=True,
widget=Select2Widget(),
label=pgettext_lazy(
"new git SHA for revision of course contents",
"New git SHA"))
self.fields["prevent_discarding_revisions"] = forms.BooleanField(
label=_("Prevent updating to a git revision "
"prior to the current one"),
initial=True, required=False)
def add_button(desc, label):
self.helper.add_input(Submit(desc, label))
if may_update:
add_button("fetch_update", _("Fetch and update"))
add_button("update", _("Update"))
if previewing:
add_button("end_preview", _("End preview"))
add_button("fetch_preview", _("Fetch and preview"))
add_button("preview", _("Preview"))
add_button("fetch", _("Fetch"))
def _get_commit_message_as_html(repo, commit_sha):
if six.PY2:
from cgi import escape
else:
from html import escape
if isinstance(commit_sha, six.text_type):
commit_sha = commit_sha.encode()
try:
commit = repo[commit_sha]
except KeyError:
return _("- not found -")
return escape(commit.message.strip().decode(errors="replace"))
@login_required
@course_view
def update_course(pctx):
if not (
pctx.has_permission(pperm.update_content)
or pctx.has_permission(pperm.preview_content)):
raise PermissionDenied()
course = pctx.course
request = pctx.request
content_repo = pctx.repo
from course.content import SubdirRepoWrapper
if isinstance(content_repo, SubdirRepoWrapper):
repo = content_repo.repo
else:
repo = content_repo
participation = pctx.participation
previewing = bool(participation is not None
and participation.preview_git_commit_sha)
may_update = pctx.has_permission(pperm.update_content)
response_form = None
form = None
if request.method == "POST":
form = GitUpdateForm(may_update, previewing, repo, request.POST,
request.FILES)
command = None
for cmd in ALLOWED_COURSE_REVISIOIN_COMMANDS:
if cmd in form.data:
command = cmd
break
if command is None:
raise SuspiciousOperation(_("invalid command"))
if form.is_valid():
new_sha = form.cleaned_data["new_sha"].encode()
try:
run_course_update_command(
request, repo, content_repo, pctx, command, new_sha,
may_update,
prevent_discarding_revisions=form.cleaned_data[
"prevent_discarding_revisions"])
except Exception as e:
import traceback
traceback.print_exc()
messages.add_message(pctx.request, messages.ERROR,
string_concat(
pgettext("Starting of Error message",
"Error"),
": %(err_type)s %(err_str)s")
% {"err_type": type(e).__name__,
"err_str": str(e)})
else:
response_form = form
if response_form is None:
previewing = bool(participation is not None
and participation.preview_git_commit_sha)
form = GitUpdateForm(may_update, previewing, repo,
{
"new_sha": repo.head().decode(),
"prevent_discarding_revisions": True,
})
from django.template.loader import render_to_string
form_text = render_to_string(
"course/git-sha-table.html", {
"participation": participation,
"is_previewing": previewing,
"course": course,
"repo": repo,
"current_git_head": repo.head().decode(),
<<<<<<< HEAD
=======
"git_url": request.build_absolute_uri(
reverse("relate-git_endpoint",
args=(course.identifier,""))),
"token_url": reverse("relate-manage_authentication_tokens",
args=(course.identifier,)),
>>>>>>> 72997a49... Working git endpoint with auth now
})
<<<<<<< HEAD
assert form is not None
=======
text_lines.append(
string_concat(
"| ",
ugettext("Direct git endpoint"),
" | "
"%(git_url)s",
" ",
'(',
ugettext("Manage access token"),
')',
" |
|---|
"
)
% {
"git_url": request.build_absolute_uri(
reverse("relate-git_endpoint",
args=(pctx.course.identifier,))),
"token_url": reverse("relate-manage_authentication_token"),
})
text_lines.append("")
>>>>>>> 016ef1d1... Add a functioning git end point (with authentication), needs preview/update integration
return render_course_page(pctx, "course/generic-course-form.html", {
"form": form,
"form_text": form_text,
"form_description": ugettext("Update Course Revision"),
})
# }}}
# {{{ git endpoint
# {{{ wsgi wrapping
# Nabbed from
# https://github.com/Polyconseil/django-viewsgi/blob/master/viewsgi.py
# (BSD-licensed)
def shift_path(environ, prefix):
assert environ['PATH_INFO'].startswith(prefix)
environ['SCRIPT_NAME'] += prefix
environ['PATH_INFO'] = environ['PATH_INFO'][len(prefix):]
def call_wsgi_app(application, request, prefix):
response = http.HttpResponse()
# request.environ and request.META are the same object, so changes
# to the headers by middlewares will be seen here.
environ = request.environ.copy()
#if len(args) > 0:
shift_path(environ, prefix)
if six.PY2:
# Django converts SCRIPT_NAME and PATH_INFO to unicode in WSGIRequest.
environ['SCRIPT_NAME'] = environ['SCRIPT_NAME'].encode('iso-8859-1')
environ['PATH_INFO'] = environ['PATH_INFO'].encode('iso-8859-1')
headers_set = []
headers_sent = []
def write(data):
if not headers_set:
raise AssertionError("write() called before start_response()")
if not headers_sent:
# Send headers before the first output.
for k, v in headers_set:
response[k] = v
headers_sent[:] = [True]
response.write(data)
# We could call response.flush() here, but is actually a no-op.
def start_response(status, headers, exc_info=None):
# Let Django handle all errors.
if exc_info:
raise exc_info[1].with_traceback(exc_info[2])
if headers_set:
raise AssertionError("start_response() called again "
"without exc_info")
response.status_code = int(status.split(' ', 1)[0])
headers_set[:] = headers
# Django provides no way to set the reason phrase (#12747).
return write
result = application(environ, start_response)
try:
for data in result:
if data:
write(data)
if not headers_sent:
write('')
finally:
if hasattr(result, 'close'):
result.close()
return response
# }}}
@csrf_exempt
def git_endpoint(request, course_identifier, git_path):
# type: (http.HttpRequest, Text, Text) -> http.HttpResponse
auth_value = request.META.get("HTTP_AUTHORIZATION")
def unauthorized_access():
realm = _("Relate direct git access")
response = http.HttpResponse(
_('Authorization Required'), content_type="text/plain")
response['WWW-Authenticate'] = 'Basic realm="%s"' % (realm)
response.status_code = 401
return response
user = None
<<<<<<< HEAD
<<<<<<< HEAD
if auth_value is not None:
auth_values = auth_value.split(" ")
if len(auth_values) == 2:
auth_method, auth_data = auth_values
if auth_method == "Basic":
from base64 import b64decode
auth_data = b64decode(auth_data.strip()).decode(
"utf-8", errors="replace")
auth_data_values = auth_data.split(':', 1)
if len(auth_data_values) == 2:
username, token = auth_data_values
try:
possible_user = get_user_model().objects.get(
username=username)
except ObjectDoesNotExist:
pass
else:
from django.contrib.auth.hashers import check_password
if check_password(
token, possible_user.git_auth_token_hash):
user = possible_user
=======
=======
user_token = None
>>>>>>> caaebf62... Fix permissions
if auth_value is None:
return unauthorized_access()
auth_values = auth_value.split(" ")
if len(auth_values) != 2:
return unauthorized_access()
auth_method, auth_data = auth_values
if auth_method == "Basic":
from base64 import b64decode
auth_data = b64decode(auth_data.strip()).decode(
"utf-8", errors="replace")
auth_data_values = auth_data.split(':', 1)
if len(auth_data_values) != 2:
return unauthorized_access()
username, token = auth_data_values
try:
possible_user = get_user_model().objects.get(
username=username)
except ObjectDoesNotExist:
return unauthorized_access()
token_values = token.split('_', 1)
if len(token_values) != 2:
return unauthorized_access()
try:
int(token_values[0])
except ValueError:
return unauthorized_access()
from django.utils.timezone import now
from django.db.models import Q
from django.contrib.auth.hashers import check_password
now_datetime = now()
tokens = AuthenticationToken.objects.filter(
user__username=username,
id=token_values[0],
participation__course__identifier=course_identifier,
).filter(
Q(revocation_time=None)
| Q(revocation_time__gt=now_datetime))
if tokens.count() != 1:
return unauthorized_access()
for user_token in tokens:
if check_password(token_values[1], user_token.token_hash):
user = possible_user
<<<<<<< HEAD
>>>>>>> 72997a49... Working git endpoint with auth now
=======
participation = user_token.participation
break
>>>>>>> caaebf62... Fix permissions
if user is None:
return unauthorized_access()
course = participation.course
if user_token.restrict_to_participation_role is not None:
check_permission = user_token.restrict_to_participation_role.has_permission
if course != user_token.restrict_to_participation_role.course:
return unauthorized_access()
else:
check_permission = participation.has_permission
if not (
check_permission(pperm.update_content)
or
check_permission(pperm.preview_content)):
return unauthorized_access()
from course.content import get_course_repo
repo = get_course_repo(course)
from course.content import SubdirRepoWrapper
if isinstance(repo, SubdirRepoWrapper):
true_repo = repo.repo
else:
true_repo = cast(dulwich.repo.Repo, repo)
base_path = reverse(git_endpoint, args=(course_identifier, ""))
assert base_path.endswith("/")
base_path = base_path[:-1]
import dulwich.web as dweb
backend = dweb.DictBackend({"/": true_repo})
app = dweb.make_wsgi_chain(backend)
return call_wsgi_app(app, request, base_path)
# }}}
# vim: foldmethod=marker