# -*- coding: utf-8 -*- import os from tracim_backend.views.frontend import FrontendController try: # Python 3.5+ from http import HTTPStatus except ImportError: from http import client as HTTPStatus from pyramid.config import Configurator from pyramid.authentication import BasicAuthAuthenticationPolicy from hapic.ext.pyramid import PyramidContext from pyramid.exceptions import NotFound from sqlalchemy.exc import OperationalError from tracim_backend.extensions import hapic from tracim_backend.config import CFG from tracim_backend.lib.utils.request import TracimRequest from tracim_backend.lib.utils.authentification import basic_auth_check_credentials from tracim_backend.lib.utils.authentification import BASIC_AUTH_WEBUI_REALM from tracim_backend.lib.utils.authorization import AcceptAllAuthorizationPolicy from tracim_backend.lib.utils.authorization import TRACIM_DEFAULT_PERM from tracim_backend.lib.utils.cors import add_cors_support from tracim_backend.lib.webdav import WebdavAppFactory from tracim_backend.views import BASE_API_V2 from tracim_backend.views.contents_api.html_document_controller import HTMLDocumentController # nopep8 from tracim_backend.views.contents_api.threads_controller import ThreadController from tracim_backend.views.core_api.session_controller import SessionController from tracim_backend.views.core_api.system_controller import SystemController from tracim_backend.views.core_api.user_controller import UserController from tracim_backend.views.core_api.workspace_controller import WorkspaceController from tracim_backend.views.contents_api.comment_controller import CommentController from tracim_backend.views.contents_api.file_controller import FileController from tracim_backend.views.errors import ErrorSchema from tracim_backend.exceptions import NotAuthenticated from tracim_backend.exceptions import UserNotActive from tracim_backend.exceptions import InvalidId from tracim_backend.exceptions import InsufficientUserProfile from tracim_backend.exceptions import InsufficientUserRoleInWorkspace from tracim_backend.exceptions import WorkspaceNotFoundInTracimRequest from tracim_backend.exceptions import UserNotFoundInTracimRequest from tracim_backend.exceptions import ContentNotFoundInTracimRequest from tracim_backend.exceptions import WorkspaceNotFound from tracim_backend.exceptions import ContentNotFound from tracim_backend.exceptions import UserDoesNotExist from tracim_backend.exceptions import AuthenticationFailed from tracim_backend.exceptions import ContentTypeNotAllowed def web(global_config, **local_settings): """ This function returns a Pyramid WSGI application. """ settings = global_config settings.update(local_settings) # set CFG object app_config = CFG(settings) app_config.configure_filedepot() settings['CFG'] = app_config configurator = Configurator(settings=settings, autocommit=True) # Add BasicAuthPolicy authn_policy = BasicAuthAuthenticationPolicy( basic_auth_check_credentials, realm=BASIC_AUTH_WEBUI_REALM, ) configurator.include(add_cors_support) # make sure to add this before other routes to intercept OPTIONS configurator.add_cors_preflight_handler() # Default authorization : Accept anything. configurator.set_authorization_policy(AcceptAllAuthorizationPolicy()) configurator.set_authentication_policy(authn_policy) # INFO - GM - 11-04-2018 - set default perm # setting default perm is needed to force authentification # mecanism in all views. configurator.set_default_permission(TRACIM_DEFAULT_PERM) # Override default request configurator.set_request_factory(TracimRequest) # Pyramids "plugin" include. configurator.include('pyramid_jinja2') # Add SqlAlchemy DB configurator.include('.models') # set Hapic context = PyramidContext( configurator=configurator, default_error_builder=ErrorSchema(), debug=app_config.DEBUG, ) hapic.set_context(context) # INFO - G.M - 2018-07-04 - global-context exceptions # Not found context.handle_exception(NotFound, HTTPStatus.NOT_FOUND) # Bad request context.handle_exception(WorkspaceNotFoundInTracimRequest, HTTPStatus.BAD_REQUEST) # nopep8 context.handle_exception(UserNotFoundInTracimRequest, HTTPStatus.BAD_REQUEST) # nopep8 context.handle_exception(ContentNotFoundInTracimRequest, HTTPStatus.BAD_REQUEST) # nopep8 context.handle_exception(WorkspaceNotFound, HTTPStatus.BAD_REQUEST) context.handle_exception(UserDoesNotExist, HTTPStatus.BAD_REQUEST) context.handle_exception(ContentNotFound, HTTPStatus.BAD_REQUEST) context.handle_exception(ContentTypeNotAllowed, HTTPStatus.BAD_REQUEST) context.handle_exception(InvalidId, HTTPStatus.BAD_REQUEST) # Auth exception context.handle_exception(NotAuthenticated, HTTPStatus.UNAUTHORIZED) context.handle_exception(UserNotActive, HTTPStatus.FORBIDDEN) context.handle_exception(AuthenticationFailed, HTTPStatus.FORBIDDEN) context.handle_exception(InsufficientUserRoleInWorkspace, HTTPStatus.FORBIDDEN) # nopep8 context.handle_exception(InsufficientUserProfile, HTTPStatus.FORBIDDEN) # Internal server error context.handle_exception(OperationalError, HTTPStatus.INTERNAL_SERVER_ERROR) context.handle_exception(Exception, HTTPStatus.INTERNAL_SERVER_ERROR) # Add controllers session_controller = SessionController() system_controller = SystemController() user_controller = UserController() workspace_controller = WorkspaceController() comment_controller = CommentController() html_document_controller = HTMLDocumentController() thread_controller = ThreadController() file_controller = FileController() configurator.include(session_controller.bind, route_prefix=BASE_API_V2) configurator.include(system_controller.bind, route_prefix=BASE_API_V2) configurator.include(user_controller.bind, route_prefix=BASE_API_V2) configurator.include(workspace_controller.bind, route_prefix=BASE_API_V2) configurator.include(comment_controller.bind, route_prefix=BASE_API_V2) configurator.include(html_document_controller.bind, route_prefix=BASE_API_V2) # nopep8 configurator.include(thread_controller.bind, route_prefix=BASE_API_V2) configurator.include(file_controller.bind, route_prefix=BASE_API_V2) if app_config.FRONTEND_SERVE: frontend_controller = FrontendController(app_config.FRONTEND_DIST_FOLDER_PATH) # nopep8 configurator.include(frontend_controller.bind) hapic.add_documentation_view( '/api/v2/doc', 'Tracim v2 API', 'API of Tracim v2', ) return configurator.make_wsgi_app() def webdav(global_config, **local_settings): settings = global_config settings.update(local_settings) app_factory = WebdavAppFactory( tracim_config_file_path=settings['__file__'], ) return app_factory.get_wsgi_app()