0001-misc-create-session-substitution-variables-from-quer.patch

Frédéric Péters, 17 août 2015 16:15

Voir les différences: en ligne côte à côte

Subject: [PATCH] misc: create session substitution variables from query string
 (#7858)

 tests/test_form_pages.py | 28 ++++++++++++++++++++++++++++
 wcs/qommon/sessions.py   | 31 +++++++++++++++++++++++++++++++
 wcs/root.py              |  1 +
 3 files changed, 60 insertions(+)

     import pytest
     import hashlib
     import os
     from wcs.qommon.ident.password_accounts import PasswordAccount
     from wcs.formdef import FormDef
-...
                 '0_structured': [
                     {'id': '1', 'more': 'foo', 'text': 'un'},
                     {'id': '3', 'more': 'baz', 'text': 'trois'}]}
     def test_form_page_query_string_prefill(pub):
         formdef = create_formdef()
         formdef.data_class().wipe()
         formdef.fields = [fields.StringField(id='0', label='string',
             prefill={'type': 'formula', 'value': 'session_var_foo'})]
         formdef.store()
         # check it's empty if it doesn't exist
         resp = get_app(pub).get('/test/')
         assert resp.forms[0]['f0'].value == ''
         # check it's not set if it's not whitelisted
         resp = get_app(pub).get('/?session_var_foo=hello')
         resp = resp.click('test')
         assert resp.forms[0]['f0'].value == ''
         # check it works
         open(os.path.join(pub.app_dir, 'site-options.cfg'), 'w').write('''[options]
     query_string_allowed_vars = foo,bar
     ''')
         resp = get_app(pub).get('/?session_var_foo=hello')
         resp = resp.click('test')
         assert resp.forms[0]['f0'].value == 'hello'
         os.unlink(os.path.join(pub.app_dir, 'site-options.cfg'))

         ident_idp_token = None
         tempfiles = None
         jsonp_display_values = None
         extra_variables = None
         username = None # only set on password authentication
-...
                 self.ident_idp_token or \
                 self.tempfiles or \
                 self.jsonp_display_values or \
                 self.extra_variables or \
                 CaptchaSession.has_info(self) or \
                 QuixoteSession.has_info(self)
         is_dirty = has_info
-...
             value.fp = open(filename)
             return value
         def add_extra_variable(self, key, value):
             if not self.extra_variables:
                 self.extra_variables = {}
             self.extra_variables[key] = value
         def start_request(self):
             # feed session with specific query string parameters
             request = get_request()
             if request.get_method() == 'GET' and request.form:
                 query_string_allowed_vars = get_publisher().get_site_option(
                         'query_string_allowed_vars') or ''
                 query_string_allowed_vars = [x.strip() for x in
                         query_string_allowed_vars.split(',')]
                 for k, v in request.form.items():
                     if k.startswith('session_var_'):
                         session_variable = str(k[len('session_var_'):])
                         if session_variable in query_string_allowed_vars:
                             self.add_extra_variable(session_variable, v)
                         del request.form[k]
             return QuixoteSession.start_request(self)
         def get_substitution_variables(self, prefix='session_var_'):
             d = {}
             if self.extra_variables:
                 for k, v in self.extra_variables.items():
                     d[prefix + k] = v
             return d
     class QommonSessionManager(QuixoteSessionManager):
         def start_request(self):

             if not hasattr(response, 'breadcrumb'):
                 response.breadcrumb = [ ('', _('Home')) ]
             get_publisher().substitutions.feed(get_session())
             get_publisher().substitutions.feed(get_request().user)
             get_publisher().substitutions.feed(NamedDataSource)
+    -

Projet

Général

Profil

Produits Entr'ouvert » w.c.s.

0001-misc-create-session-substitution-variables-from-quer.patch