moulinette/yunohost.tac

# -*- mode: python -*-
import os
import sys
import gettext
import ldap
import yaml
import json
from twisted.python.log import ILogObserver, FileLogObserver, startLogging
from twisted.python.logfile import DailyLogFile
from twisted.web.server import Site
from twisted.internet import reactor
from twisted.application import internet,service
from txrestapi.resource import APIResource
from yunohost import YunoHostError, YunoHostLDAP, str_to_func, colorize, pretty_print_dict, display_error, validate, win, parse_dict

if not __debug__:
    import traceback

gettext.install('YunoHost')

action_dict = {}
api = APIResource()

def http_exec(request):
    global win

    request.setHeader('Access-Control-Allow-Origin', '*') # Allow cross-domain requests
    request.setHeader('Content-Type', 'application/json') # Return JSON anyway

    # Return OK to 'OPTIONS' xhr requests
    if request.method == 'OPTIONS':
        request.setResponseCode(200, 'OK')
        request.setHeader('Access-Control-Allow-Headers', 'Authorization')
        return ''
    
    # Simple HTTP auth
    else:
        authorized = request.getUser() == 'admin'
        if authorized:
            try: YunoHostLDAP(password=request.getPassword())
            except YunoHostError: authorized = False

        if not authorized:
            request.setResponseCode(401, 'Unauthorized')
            request.setHeader('Access-Control-Allow-Origin', '*')
            request.setHeader('www-authenticate', 'Basic realm="Restricted Area"')
            return 'Unauthorized'
    
    # Sanitize arguments        
    dict = action_dict[request.method+' '+request.path]
    if 'arguments' in dict: args = dict['arguments']
    else: args = {}
    for arg, params in args.items():
        sanitized_key = arg.replace('-', '_')
        if sanitized_key is not arg:
            args[sanitized_key] = args[arg]
            del args[arg]
            arg = sanitized_key
        if arg[0] == '_':
            if 'nargs' not in params:
                args[arg]['nargs'] = '*'
            if 'full' in params:
                new_key = params['full'][2:]
            else:
                new_key = arg[2:]
	    args[new_key] = args[arg]
            del args[arg]

    try:

        # Validate arguments
        validated_args = {}
        for key, value in request.args.items():
           if key in args:
               # Validate args
               if 'pattern' in args[key]:
                   validate(args[key]['pattern'], value)
               if 'nargs' not in args[key] or ('nargs' != '*' and 'nargs' != '+'):
                   value = value[0]
               if 'choices' in args[key] and value not in args[key]['choices']:
                   raise YunoHostError(22, _('Invalid argument') + ' ' + value)
               if 'action' in args[key] and args[key]['action'] == 'store_true':
                   yes = ['true', 'True', 'yes', 'Yes']
                   value = value in yes 
               validated_args[key] = value

        func = str_to_func(dict['function'])

        # Execute requested function
        with YunoHostLDAP(password=request.getPassword()):
            result = func(**validated_args)
        if result is None:
            result = {}
        if win:
            result['win'] = win
            win = []

        # Build response
        if request.method == 'POST':
            request.setResponseCode(201, 'Created')
        elif request.method == 'DELETE':
            request.setResponseCode(204, 'No Content')
        else:
            request.setResponseCode(200, 'OK')
         
    except YunoHostError, error:

        # Set response code with function's raised code
        server_errors = [1, 111, 169]
        client_errors = [13, 17, 22, 87, 122, 125, 167, 168]
        if error.code in client_errors:
            request.setResponseCode(400, 'Bad Request')
        else:
            request.setResponseCode(500, 'Internal Server Error')
            result = { 'error' : error.message }

    return json.dumps(result)


def main():
    global action_dict
    global api

    # Load & parse yaml file
    with open('action_map.yml') as f:
        action_map = yaml.load(f)

    del action_map['general_arguments']
    for category, category_params in action_map.items():
        for action, action_params in category_params['actions'].items():
            if 'help' not in action_params:
                action_params['help'] = ''
            if 'api' not in action_params:
                action_params['api'] = 'GET /'+ category +'/'+ action
            method, path = action_params['api'].split(' ')
            # Register route
            api.register(method, path, http_exec)
            api.register('OPTIONS', path, http_exec)
            action_dict[action_params['api']] = {
                'function': 'yunohost_'+ category +'.'+ category +'_'+ action,
                'help'    : action_params['help']
            }
            if 'arguments' in action_params: 
                action_dict[action_params['api']]['arguments'] = action_params['arguments']

                
    # Register only postinstall action if YunoHost isn't completely set up
    try:
        with open('/etc/yunohost/installed') as f: pass
    except IOError:
        api = APIResource()
        api.register('POST', '/postinstall', http_exec)
        api.register('OPTIONS', '/postinstall', http_exec)
        action_dict['POST /postinstall'] = {
            'function'  : 'yunohost_tools.tools_postinstall',
            'help'      : 'Execute post-install',
            'arguments' : action_map['tools']['postinstall']['arguments']
        }


if __name__ == '__main__':
    startLogging(open('/var/log/yunohost.log', 'a+')) # Log actions to API
    main()
    reactor.listenTCP(6767, Site(api, timeout=None))
    reactor.run()
else:
    application = service.Application("YunoHost API")
    logfile = DailyLogFile("yunohost.log", "/var/log")
    application.setComponent(ILogObserver, FileLogObserver(logfile).emit)
    main()
    internet.TCPServer(6767, Site(api, timeout=None)).setServiceParent(application)
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`# -- mode: python --`
			`import os`
			`import sys`
			`import gettext`
			`import ldap`
			`import yaml`
			`import json`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`from twisted.python.log import ILogObserver, FileLogObserver, startLogging`
			`from twisted.python.logfile import DailyLogFile`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`from twisted.web.server import Site`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`from twisted.internet import reactor`
			`from twisted.application import internet,service`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`from txrestapi.resource import APIResource`
			`from yunohost import YunoHostError, YunoHostLDAP, str_to_func, colorize, pretty_print_dict, display_error, validate, win, parse_dict`

			`if not __debug__:`
			`import traceback`

			`gettext.install('YunoHost')`

			`action_dict = {}`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`api = APIResource()`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00
			`def http_exec(request):`
			`global win`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00
			`request.setHeader('Access-Control-Allow-Origin', '*') # Allow cross-domain requests`
			`request.setHeader('Content-Type', 'application/json') # Return JSON anyway`

			`# Return OK to 'OPTIONS' xhr requests`
			`if request.method == 'OPTIONS':`
			`request.setResponseCode(200, 'OK')`
			`request.setHeader('Access-Control-Allow-Headers', 'Authorization')`
			`return ''`

			`# Simple HTTP auth`
			`else:`
			`authorized = request.getUser() == 'admin'`
Add HTTP auth password prompt 2013-06-30 13:57:23 +02:00			`if authorized:`
			`try: YunoHostLDAP(password=request.getPassword())`
			`except YunoHostError: authorized = False`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00
			`if not authorized:`
			`request.setResponseCode(401, 'Unauthorized')`
			`request.setHeader('Access-Control-Allow-Origin', '*')`
Add HTTP auth password prompt 2013-06-30 13:57:23 +02:00			`request.setHeader('www-authenticate', 'Basic realm="Restricted Area"')`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`return 'Unauthorized'`

			`# Sanitize arguments`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`dict = action_dict[request.method+' '+request.path]`
REST code and header fixes 2013-06-29 01:05:28 +02:00			`if 'arguments' in dict: args = dict['arguments']`
			`else: args = {}`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`for arg, params in args.items():`
			`sanitized_key = arg.replace('-', '_')`
			`if sanitized_key is not arg:`
			`args[sanitized_key] = args[arg]`
			`del args[arg]`
			`arg = sanitized_key`
			`if arg[0] == '_':`
			`if 'nargs' not in params:`
			`args[arg]['nargs'] = '*'`
			`if 'full' in params:`
			`new_key = params['full'][2:]`
			`else:`
			`new_key = arg[2:]`
			`args[new_key] = args[arg]`
			`del args[arg]`

			`try:`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00
			`# Validate arguments`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`validated_args = {}`
			`for key, value in request.args.items():`
			`if key in args:`
			`# Validate args`
bugfix 2013-06-30 14:11:30 +02:00			`if 'pattern' in args[key]:`
			`validate(args[key]['pattern'], value)`
			`if 'nargs' not in args[key] or ('nargs' != '*' and 'nargs' != '+'):`
			`value = value[0]`
			`if 'choices' in args[key] and value not in args[key]['choices']:`
			`raise YunoHostError(22, _('Invalid argument') + ' ' + value)`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`if 'action' in args[key] and args[key]['action'] == 'store_true':`
			`yes = ['true', 'True', 'yes', 'Yes']`
			`value = value in yes`
			`validated_args[key] = value`

			`func = str_to_func(dict['function'])`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00
			`# Execute requested function`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`with YunoHostLDAP(password=request.getPassword()):`
			`result = func(**validated_args)`
			`if result is None:`
			`result = {}`
			`if win:`
			`result['win'] = win`
			`win = []`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00
			`# Build response`
REST code and header fixes 2013-06-29 01:05:28 +02:00			`if request.method == 'POST':`
			`request.setResponseCode(201, 'Created')`
			`elif request.method == 'DELETE':`
			`request.setResponseCode(204, 'No Content')`
			`else:`
			`request.setResponseCode(200, 'OK')`

REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`except YunoHostError, error:`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00
			`# Set response code with function's raised code`
REST code and header fixes 2013-06-29 01:05:28 +02:00			`server_errors = [1, 111, 169]`
			`client_errors = [13, 17, 22, 87, 122, 125, 167, 168]`
			`if error.code in client_errors:`
			`request.setResponseCode(400, 'Bad Request')`
			`else:`
			`request.setResponseCode(500, 'Internal Server Error')`
			`result = { 'error' : error.message }`

REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`return json.dumps(result)`


			`def main():`
			`global action_dict`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`global api`

			`# Load & parse yaml file`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`with open('action_map.yml') as f:`
			`action_map = yaml.load(f)`

			`del action_map['general_arguments']`
			`for category, category_params in action_map.items():`
			`for action, action_params in category_params['actions'].items():`
			`if 'help' not in action_params:`
			`action_params['help'] = ''`
			`if 'api' not in action_params:`
			`action_params['api'] = 'GET /'+ category +'/'+ action`
			`method, path = action_params['api'].split(' ')`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`# Register route`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`api.register(method, path, http_exec)`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`api.register('OPTIONS', path, http_exec)`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`action_dict[action_params['api']] = {`
			`'function': 'yunohost_'+ category +'.'+ category +'_'+ action,`
			`'help' : action_params['help']`
			`}`
			`if 'arguments' in action_params:`
			`action_dict[action_params['api']]['arguments'] = action_params['arguments']`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00
REST API for moulinette :d 2013-06-28 19:58:13 +02:00
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`# Register only postinstall action if YunoHost isn't completely set up`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`try:`
			`with open('/etc/yunohost/installed') as f: pass`
			`except IOError:`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`api = APIResource()`
			`api.register('POST', '/postinstall', http_exec)`
			`api.register('OPTIONS', '/postinstall', http_exec)`
			`action_dict['POST /postinstall'] = {`
			`'function' : 'yunohost_tools.tools_postinstall',`
			`'help' : 'Execute post-install',`
			`'arguments' : action_map['tools']['postinstall']['arguments']`
			`}`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00

			`if __name__ == '__main__':`
Fixes 2013-06-30 13:30:23 +02:00			`startLogging(open('/var/log/yunohost.log', 'a+')) # Log actions to API`
REST API for moulinette :d 2013-06-28 19:58:13 +02:00			`main()`
Fixes 2013-06-30 13:30:23 +02:00			`reactor.listenTCP(6767, Site(api, timeout=None))`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`reactor.run()`
			`else:`
			`application = service.Application("YunoHost API")`
			`logfile = DailyLogFile("yunohost.log", "/var/log")`
			`application.setComponent(ILogObserver, FileLogObserver(logfile).emit)`
Fixes 2013-06-30 13:30:23 +02:00			`main()`
Cross-domain bugfix + Simplify and document 2013-06-30 13:25:17 +02:00			`internet.TCPServer(6767, Site(api, timeout=None)).setServiceParent(application)`