Ticket #67: authkit-2.4-compat.patch
-
test/test.py
old new 98 98 setup_intercept = "403, 702", 99 99 ) 100 100 res = TestApp(app).get('/403', status=401) 101 assertEqual(res.header('content-type'), 'text/plain') 101 102 # I.E. text/plain; charset=utf8 would be acceptable 103 assert 'text/plain' in res.header('content-type'), ( 104 "Unexpected: %s" % res.header('content-type')) 105 102 106 # XXX Should this keep the original status code or not? 103 107 assertEqual(res.full_status, '401 Unauthorized') 104 108 assert 'This server could not verify that you are authorized' in res 105 109 106 110 res = TestApp(app).get('/702', status=401) 107 assertEqual(res.header('content-type'), 'text/plain') 111 assert 'text/plain' in res.header('content-type'), ( 112 "Unexpected: %s" % res.header('content-type')) 108 113 # XXX Should this keep the original status code or not? 109 114 assertEqual(res.full_status, '401 Unauthorized') 110 115 assert 'This server could not verify that you are authorized' in res 111 116 112 117 res = TestApp(app).get('/500', status=500) 113 assertEqual(res.header('content-type'), 'text/plain') 118 assert 'text/plain' in res.header('content-type'), ( 119 "Unexpected: %s" % res.header('content-type')) 114 120 assertEqual(res.full_status, '500 Error') 115 121 assert 'Error' in res 116 122 117 123 res = TestApp(app).get('/401', status=401) 118 assertEqual(res.header('content-type'), 'text/plain') 124 assert 'text/plain' in res.header('content-type'), ( 125 "Unexpected: %s" % res.header('content-type')) 119 126 assertEqual(res.full_status, '401 Unauth') 120 127 assert 'Not Authed' in res 121 128 122 129 def test_fail(): 123 130 for app in [basic_app, digest_app, config_app]: 124 131 res = TestApp(app).get('/private', status=401) 125 assertEqual(res.header('content-type'),'text/plain') 132 assert 'text/plain' in res.header('content-type'), ( 133 "Unexpected: %s" % res.header('content-type')) 126 134 assertEqual(res.full_status, '401 Unauthorized') 127 135 #raise Exception(res) 128 136 assert 'This server could not verify that you are' in res -
authkit/permissions.py
old new 27 27 import logging 28 28 log = logging.getLogger('authkit.permissions') 29 29 30 # will be True for Python 2.5+ 31 newstyle_exceptions = issubclass(Exception, object) 32 30 33 class AuthKitConfigError(Exception): 31 34 """ 32 35 Raised when there is a problem with the … … 171 174 172 175 def check(self, app, environ, start_response): 173 176 if 'REMOTE_USER' not in environ: 174 raise NotAuthenticatedError('Not Authenticated') 177 exc = NotAuthenticatedError('Not Authenticated') 178 if newstyle_exceptions: 179 raise exc 180 else: 181 raise exc.exception # see webob.exc for more details 175 182 elif self.accept_empty==False and not environ['REMOTE_USER']: 176 raise NotAuthorizedError('Not Authorized') 183 exc = NotAuthorizedError('Not Authorized') 184 if newstyle_exceptions: 185 raise exc 186 else: 187 raise exc.exception # ditto 177 188 return app(environ, start_response) 178 189 179 190 # -
authkit/authenticate/__init__.py
old new 45 45 from multi import MultiHandler, status_checker 46 46 from pkg_resources import iter_entry_points, load_entry_point 47 47 from paste.deploy.converters import asbool 48 from paste.httpexceptions import HTTPExceptionHandler49 48 49 import paste.httpexceptions 50 import webob.exc 51 50 52 from authkit.authorize import authorize_request 51 53 from authkit.permissions import RemoteUser, no_authkit_users_in_environ, \ 52 54 AuthKitConfigError … … 371 373 merged[key.replace('_','.')] = value 372 374 return merged 373 375 376 class HTTPExceptionHandler(object): 377 """ 378 catches exceptions and turns them into proper HTTP responses 379 380 Attributes: 381 382 ``warning_level`` 383 This attribute determines for what exceptions a stack 384 trace is kept for lower level reporting; by default, it 385 only keeps stack trace for 5xx, HTTPServerError exceptions. 386 To keep a stack trace for 4xx, HTTPClientError exceptions, 387 set this to 400. 388 389 This middleware catches any exceptions (which are subclasses of 390 ``HTTPException``) and turns them into proper HTTP responses. 391 Note if the headers have already been sent, the stack trace is 392 always maintained as this indicates a programming error. 393 394 Note that you must raise the exception before returning the 395 app_iter, and you cannot use this with generator apps that don't 396 raise an exception until after their app_iter is iterated over. 397 398 .. note:: 399 400 This originally came from paste.httpexceptions.HTTPExceptionHandler 401 and is patched with comments below for compatibility with 402 webob + Python 2.4 403 404 """ 405 406 def __init__(self, application, warning_level=None): 407 assert not warning_level or ( warning_level > 99 and 408 warning_level < 600) 409 self.warning_level = warning_level or 500 410 self.application = application 411 412 def __call__(self, environ, start_response): 413 414 # Note that catching the webob exception is for Python 2.4 support. 415 # In the brave new world of new-style exceptions (derived from object) 416 # multiple inheritance works like you'd expect: the NotAuthenticatedError 417 # is caught because it descends from the past and webob exceptions. 418 # In the old world (2.4-), the webob exception needs to be in the catch list 419 420 environ['paste.httpexceptions'] = self 421 environ.setdefault('paste.expected_exceptions', 422 []).extend([paste.httpexceptions.HTTPException, 423 webob.exc.HTTPException]) 424 try: 425 return self.application(environ, start_response) 426 except (paste.httpexceptions.HTTPException, 427 webob.exc.HTTPException), exc: 428 return exc(environ, start_response) 429 374 430 def middleware(app, app_conf=None, global_conf=None, prefix='authkit.', 375 431 handle_httpexception=True, middleware=None, **options): 376 432 """
