Blame - Lib/cgi.py - platform/external/python/cpython3

1996-03-06 07:20:06 +0000

[diff] [blame]

12

"""Support module for CGI (Common Gateway Interface) scripts.

Guido van Rossum

1c9daa8

1995-09-18 21:52:37 +0000

[diff] [blame]

13

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

14

This module defines a number of utilities for use by CGI scripts

15

written in Python.

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

16

"""

17

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

18

# History

19

# -------

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

20

#

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

21

# Michael McLay started this module. Steve Majewski changed the

22

# interface to SvFormContentDict and FormContentDict. The multipart

23

# parsing was inspired by code submitted by Andreas Paepcke. Guido van

24

# Rossum rewrote, reformatted and documented the module and is currently

25

# responsible for its maintenance.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

26

#

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

27

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

28

__version__ = "2.6"

Guido van Rossum

1996-03-09 03:16:04 +0000

[diff] [blame]

29

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Imports

# =======

Raymond Hettinger

2004-12-31 21:59:02 +0000

[diff] [blame]

34

from operator import attrgetter

Barry Warsaw

2008-06-12 02:38:51 +0000

[diff] [blame]

35

from io import StringIO

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

36

import sys

37

import os

Jeremy Hylton

1afc169

2008-06-18 20:49:58 +0000

[diff] [blame]

38

import urllib.parse

Barry Warsaw

2008-06-12 02:38:51 +0000

[diff] [blame]

39

import email.parser

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

40

from warnings import warn

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

41

Georg Brandl

49d1b4f

2008-05-11 21:42:51 +0000

[diff] [blame]

42

__all__ = ["MiniFieldStorage", "FieldStorage",

Guido van Rossum

a8423a9

2001-03-19 13:40:44 +0000

[diff] [blame]

43

"parse", "parse_qs", "parse_qsl", "parse_multipart",

44

"parse_header", "print_exception", "print_environ",

45

"print_form", "print_directory", "print_arguments",

46

"print_environ_usage", "escape"]

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

# Logging support

# ===============

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

51

logfile = "" # Filename to log to, if not empty

52

logfp = None # File object to log to, if not None

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

53

54

def initlog(*allargs):

55

"""Write a log message, if there is a log file.

56

57

Even though this function is called initlog(), you should always

58

use log(); log is a variable that is set either to initlog

59

(initially), to dolog (once the log file has been opened), or to

60

nolog (when logging is disabled).

61

62

The first argument is a format string; the remaining arguments (if

63

any) are arguments to the % operator, so e.g.

64

log("%s: %s", "a", "b")

65

will write "a: b" to the log file, followed by a newline.

66

67

If the global logfp is not None, it should be a file object to

68

which log data is written.

69

70

If the global logfp is None, the global logfile may be a string

71

giving a filename to open, in append mode. This file should be

72

world writable!!! If the file can't be opened, logging is

73

silently disabled (since there is no safe place where we could

74

send an error message).

"""

global logfp, log

if logfile and not logfp:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

79

try:

80

logfp = open(logfile, "a")

81

except IOError:

82

pass

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

83

if not logfp:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

84

log = nolog

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

85

else:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

86

log = dolog

Guido van Rossum

68468eb

2003-02-27 20:14:51 +0000

[diff] [blame]

87

log(*allargs)

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

88

89

def dolog(fmt, *args):

90

"""Write a log message to the log file. See initlog() for docs."""

91

logfp.write(fmt%args + "\n")

92

93

def nolog(*allargs):

94

"""Dummy function, assigned to log when logging is disabled."""

95

pass

96

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

97

log = initlog # The current logging function

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

98

99

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Parsing functions

# =================

Guido van Rossum

1997-05-13 19:03:23 +0000

[diff] [blame]

103

# Maximum input we will accept when REQUEST_METHOD is POST

104

# 0 ==> unlimited input

105

maxlen = 0

106

Guido van Rossum

1996-11-11 19:29:11 +0000

[diff] [blame]

107

def parse(fp=None, environ=os.environ, keep_blank_values=0, strict_parsing=0):

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

108

"""Parse a query in the environment or from a file (default stdin)

109

110

Arguments, all optional:

111

112

fp : file pointer; default: sys.stdin

113

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

114

environ : environment dictionary; default: os.environ

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

115

116

keep_blank_values: flag indicating whether blank values in

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

117

URL encoded forms should be treated as blank strings.

118

A true value indicates that blanks should be retained as

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

119

blank strings. The default false value indicates that

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

120

blank values are to be ignored and treated as if they were

121

not included.

Guido van Rossum

1996-11-11 19:29:11 +0000

[diff] [blame]

122

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

123

strict_parsing: flag indicating what to do with parsing errors.

124

If false (the default), errors are silently ignored.

125

If true, errors raise a ValueError exception.

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

126

"""

Raymond Hettinger

a144900

2002-05-31 23:54:44 +0000

[diff] [blame]

127

if fp is None:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

128

fp = sys.stdin

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

129

if not 'REQUEST_METHOD' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

130

environ['REQUEST_METHOD'] = 'GET' # For testing stand-alone

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

131

if environ['REQUEST_METHOD'] == 'POST':

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

132

ctype, pdict = parse_header(environ['CONTENT_TYPE'])

133

if ctype == 'multipart/form-data':

134

return parse_multipart(fp, pdict)

135

elif ctype == 'application/x-www-form-urlencoded':

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

136

clength = int(environ['CONTENT_LENGTH'])

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

137

if maxlen and clength > maxlen:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

138

raise ValueError('Maximum content length exceeded')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

139

qs = fp.read(clength)

140

else:

141

qs = '' # Unknown content-type

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

142

if 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

143

if qs: qs = qs + '&'

144

qs = qs + environ['QUERY_STRING']

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

145

elif sys.argv[1:]:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

146

if qs: qs = qs + '&'

147

qs = qs + sys.argv[1]

148

environ['QUERY_STRING'] = qs # XXX Shouldn't, really

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

149

elif 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

150

qs = environ['QUERY_STRING']

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

151

else:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if sys.argv[1:]:

qs = sys.argv[1]

else:

qs = ""

environ['QUERY_STRING'] = qs # XXX Shouldn't, really

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

157

return urllib.parse.parse_qs(qs, keep_blank_values, strict_parsing)

Guido van Rossum

e780877

1995-08-07 20:12:09 +0000

[diff] [blame]

158

159

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

160

# parse query string function called from urlparse,

161

# this is done in order to maintain backward compatiblity.

162

Guido van Rossum

1996-11-11 19:29:11 +0000

[diff] [blame]

163

def parse_qs(qs, keep_blank_values=0, strict_parsing=0):

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

164

"""Parse a query given as a string argument."""

165

warn("cgi.parse_qs is deprecated, use urllib.parse.parse_qs instead",

166

DeprecationWarning)

167

return urllib.parse.parse_qs(qs, keep_blank_values, strict_parsing)

Guido van Rossum

1946f0d

1999-06-04 17:54:39 +0000

[diff] [blame]

168

169

def parse_qsl(qs, keep_blank_values=0, strict_parsing=0):

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

170

"""Parse a query given as a string argument."""

Facundo Batista

a27244b

2008-09-09 02:43:19 +0000

[diff] [blame]

171

warn("cgi.parse_qsl is deprecated, use urllib.parse.parse_qsl instead",

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

172

DeprecationWarning)

173

return urllib.parse.parse_qsl(qs, keep_blank_values, strict_parsing)

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

174

Guido van Rossum

1996-03-09 03:16:04 +0000

[diff] [blame]

175

def parse_multipart(fp, pdict):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

176

"""Parse multipart input.

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

177

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

178

Arguments:

179

fp : input file

Johannes Gijsbers

c7fc10a

2005-01-08 13:56:36 +0000

[diff] [blame]

180

pdict: dictionary containing other parameters of content-type header

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

181

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

182

Returns a dictionary just like parse_qs(): keys are the field names, each

183

value is a list of values for that field. This is easy to use but not

184

much good if you are expecting megabytes to be uploaded -- in that case,

185

use the FieldStorage class instead which is much more flexible. Note

186

that content-type is the raw, unparsed contents of the content-type

Guido van Rossum

1996-03-09 03:16:04 +0000

[diff] [blame]

187

header.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

188

189

XXX This does not parse nested multipart parts -- use FieldStorage for

Guido van Rossum

1996-03-09 03:16:04 +0000

[diff] [blame]

190

that.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

191

192

XXX This should really be subsumed by FieldStorage altogether -- no

Guido van Rossum

1996-03-09 03:16:04 +0000

[diff] [blame]

193

point in having two implementations of the same parsing algorithm.

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

194

Also, FieldStorage protects itself better against certain DoS attacks

195

by limiting the size of the data read in one chunk. The API here

196

does not support that kind of protection. This also affects parse()

197

since it can call parse_multipart().

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

198

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

199

"""

Barry Warsaw

820c120

2008-06-12 04:06:45 +0000

[diff] [blame]

200

import http.client

201

Guido van Rossum

2001-07-25 21:00:19 +0000

[diff] [blame]

202

boundary = ""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

203

if 'boundary' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

204

boundary = pdict['boundary']

Guido van Rossum

2001-07-25 21:00:19 +0000

[diff] [blame]

205

if not valid_boundary(boundary):

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

206

raise ValueError('Invalid boundary in multipart form: %r'

Walter Dörwald

70a6b49

2004-02-12 17:35:32 +0000

[diff] [blame]

207

% (boundary,))

Tim Peters

ab9ba27

2001-08-09 21:40:30 +0000

[diff] [blame]

208

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

209

nextpart = "--" + boundary

210

lastpart = "--" + boundary + "--"

partdict = {}

terminator = ""

while terminator != lastpart:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

bytes = -1

data = None

if terminator:

# At start of next part. Read headers first.

Barry Warsaw

820c120

2008-06-12 04:06:45 +0000

[diff] [blame]

219

headers = http.client.parse_headers(fp)

220

clength = headers.get('content-length')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

221

if clength:

222

try:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

223

bytes = int(clength)

224

except ValueError:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

225

pass

226

if bytes > 0:

227

if maxlen and bytes > maxlen:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

228

raise ValueError('Maximum content length exceeded')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

229

data = fp.read(bytes)

230

else:

231

data = ""

232

# Read lines until end of part.

lines = []

while 1:

line = fp.readline()

if not line:

terminator = lastpart # End outer loop

238

break

239

if line[:2] == "--":

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

240

terminator = line.strip()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

241

if terminator in (nextpart, lastpart):

break

lines.append(line)

# Done with part.

if data is None:

continue

if bytes < 0:

if lines:

# Strip final line terminator

250

line = lines[-1]

251

if line[-2:] == "\r\n":

252

line = line[:-2]

253

elif line[-1:] == "\n":

254

line = line[:-1]

255

lines[-1] = line

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

256

data = "".join(lines)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

257

line = headers['content-disposition']

258

if not line:

259

continue

260

key, params = parse_header(line)

261

if key != 'form-data':

262

continue

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

263

if 'name' in params:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

264

name = params['name']

265

else:

266

continue

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

267

if name in partdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

268

partdict[name].append(data)

269

else:

270

partdict[name] = [data]

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

271

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

272

return partdict

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

273

274

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

275

def parse_header(line):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

276

"""Parse a Content-type like header.

277

278

Return the main content-type and a dictionary of options.

279

280

"""

Raymond Hettinger

f871d83

2004-12-31 21:59:02 +0000

[diff] [blame]

281

plist = [x.strip() for x in line.split(';')]

Raymond Hettinger

46ac8eb

2002-06-30 03:39:14 +0000

[diff] [blame]

282

key = plist.pop(0).lower()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

283

pdict = {}

284

for p in plist:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

285

i = p.find('=')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

286

if i >= 0:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

287

name = p[:i].strip().lower()

288

value = p[i+1:].strip()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

289

if len(value) >= 2 and value[0] == value[-1] == '"':

290

value = value[1:-1]

Johannes Gijsbers

9e15dd6

2004-08-14 15:39:34 +0000

[diff] [blame]

291

value = value.replace('\\\\', '\\').replace('\\"', '"')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

292

pdict[name] = value

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

293

return key, pdict

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

294

295

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

296

# Classes for field storage

297

# =========================

298

299

class MiniFieldStorage:

300

Guido van Rossum

1996-03-09 03:16:04 +0000

[diff] [blame]

301

"""Like FieldStorage, for use when no file uploads are possible."""

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

302

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

# Dummy attributes

filename = None

list = None

type = None

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

307

file = None

Guido van Rossum

4032c2c

1996-03-09 04:04:35 +0000

[diff] [blame]

308

type_options = {}

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

309

disposition = None

310

disposition_options = {}

311

headers = {}

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

312

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

313

def __init__(self, name, value):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

314

"""Constructor from field name and value."""

315

self.name = name

316

self.value = value

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

317

# self.file = StringIO(value)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

318

319

def __repr__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

320

"""Return printable representation."""

Walter Dörwald

70a6b49

2004-02-12 17:35:32 +0000

[diff] [blame]

321

return "MiniFieldStorage(%r, %r)" % (self.name, self.value)

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

class FieldStorage:

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

326

"""Store a sequence of fields, reading multipart/form-data.

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

327

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

328

This class provides naming, typing, files stored on disk, and

329

more. At the top level, it is accessible like a dictionary, whose

330

keys are the field names. (Note: None can occur as a field name.)

331

The items are either a Python list (if there's multiple values) or

332

another FieldStorage or MiniFieldStorage object. If it's a single

333

object, it has the following attributes:

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

334

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

335

name: the field name, if specified; otherwise None

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

336

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

337

filename: the filename, if specified; otherwise None; this is the

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

338

client side filename, *not* the file name on which it is

339

stored (that's a temporary file you don't deal with)

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

340

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

341

value: the value as a *string*; for file uploads, this

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

342

transparently reads the file every time you request the value

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

343

344

file: the file(-like) object from which you can read the data;

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

345

None if the data is stored a simple string

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

346

347

type: the content-type, or None if not specified

348

349

type_options: dictionary of options specified on the content-type

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

350

line

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

351

352

disposition: content-disposition, or None if not specified

353

354

disposition_options: dictionary of corresponding options

355

Barry Warsaw

2008-06-12 02:38:51 +0000

[diff] [blame]

356

headers: a dictionary(-like) object (sometimes email.message.Message or a

Armin Rigo

3a703b6

2005-09-19 09:11:04 +0000

[diff] [blame]

357

subclass thereof) containing *all* headers

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

358

359

The class is subclassable, mostly for the purpose of overriding

360

the make_file() method, which is called internally to come up with

361

a file open for reading and writing. This makes it possible to

362

override the default choice of storing all files in a temporary

363

directory and unlinking them as soon as they have been opened.

"""

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

367

def __init__(self, fp=None, headers=None, outerboundary="",

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

368

environ=os.environ, keep_blank_values=0, strict_parsing=0):

369

"""Constructor. Read multipart/* until last part.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

370

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

371

Arguments, all optional:

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

372

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

373

fp : file pointer; default: sys.stdin

Guido van Rossum

b1b4f94

1998-05-08 19:55:51 +0000

[diff] [blame]

374

(not used when the request method is GET)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

375

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

376

headers : header dictionary-like object; default:

377

taken from environ as per CGI spec

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

378

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

379

outerboundary : terminating multipart boundary

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

380

(for internal use only)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

381

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

382

environ : environment dictionary; default: os.environ

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

383

384

keep_blank_values: flag indicating whether blank values in

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

385

URL encoded forms should be treated as blank strings.

386

A true value indicates that blanks should be retained as

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

387

blank strings. The default false value indicates that

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

388

blank values are to be ignored and treated as if they were

389

not included.

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

390

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

391

strict_parsing: flag indicating what to do with parsing errors.

392

If false (the default), errors are silently ignored.

393

If true, errors raise a ValueError exception.

Guido van Rossum

1996-11-11 19:29:11 +0000

[diff] [blame]

394

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

395

"""

396

method = 'GET'

397

self.keep_blank_values = keep_blank_values

398

self.strict_parsing = strict_parsing

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

399

if 'REQUEST_METHOD' in environ:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

400

method = environ['REQUEST_METHOD'].upper()

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

401

self.qs_on_post = None

Guido van Rossum

0185283

1998-06-25 02:40:17 +0000

[diff] [blame]

402

if method == 'GET' or method == 'HEAD':

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

403

if 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

404

qs = environ['QUERY_STRING']

elif sys.argv[1:]:

qs = sys.argv[1]

else:

qs = ""

fp = StringIO(qs)

if headers is None:

headers = {'content-type':

412

"application/x-www-form-urlencoded"}

413

if headers is None:

Guido van Rossum

cff311a

1998-06-11 14:06:59 +0000

[diff] [blame]

414

headers = {}

415

if method == 'POST':

416

# Set default content-type for POST to what's traditional

417

headers['content-type'] = "application/x-www-form-urlencoded"

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

418

if 'CONTENT_TYPE' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

419

headers['content-type'] = environ['CONTENT_TYPE']

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

420

if 'QUERY_STRING' in environ:

421

self.qs_on_post = environ['QUERY_STRING']

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

422

if 'CONTENT_LENGTH' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

423

headers['content-length'] = environ['CONTENT_LENGTH']

424

self.fp = fp or sys.stdin

425

self.headers = headers

426

self.outerboundary = outerboundary

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

427

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

428

# Process content-disposition header

429

cdisp, pdict = "", {}

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

430

if 'content-disposition' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

431

cdisp, pdict = parse_header(self.headers['content-disposition'])

432

self.disposition = cdisp

433

self.disposition_options = pdict

434

self.name = None

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

435

if 'name' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

436

self.name = pdict['name']

437

self.filename = None

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

438

if 'filename' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

439

self.filename = pdict['filename']

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

440

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

441

# Process content-type header

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

442

#

443

# Honor any existing content-type header. But if there is no

444

# content-type header, use some sensible defaults. Assume

445

# outerboundary is "" at the outer level, but something non-false

446

# inside a multi-part. The default for an inner part is text/plain,

447

# but for an outer part it should be urlencoded. This should catch

448

# bogus clients which erroneously forget to include a content-type

449

# header.

450

#

451

# See below for what we do if there does exist a content-type header,

452

# but it happens to be something we don't understand.

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

453

if 'content-type' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

454

ctype, pdict = parse_header(self.headers['content-type'])

Guido van Rossum

ce900de

1999-06-02 18:44:22 +0000

[diff] [blame]

455

elif self.outerboundary or method != 'POST':

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

456

ctype, pdict = "text/plain", {}

457

else:

458

ctype, pdict = 'application/x-www-form-urlencoded', {}

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

459

self.type = ctype

460

self.type_options = pdict

461

self.innerboundary = ""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

462

if 'boundary' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

463

self.innerboundary = pdict['boundary']

464

clen = -1

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

465

if 'content-length' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

466

try:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

467

clen = int(self.headers['content-length'])

Skip Montanaro

db5d144

2002-03-23 05:50:17 +0000

[diff] [blame]

468

except ValueError:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

469

pass

470

if maxlen and clen > maxlen:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

471

raise ValueError('Maximum content length exceeded')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

472

self.length = clen

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

473

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

474

self.list = self.file = None

475

self.done = 0

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

476

if ctype == 'application/x-www-form-urlencoded':

477

self.read_urlencoded()

478

elif ctype[:10] == 'multipart/':

Guido van Rossum

f574500

1998-10-20 14:43:02 +0000

[diff] [blame]

479

self.read_multi(environ, keep_blank_values, strict_parsing)

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

480

else:

Guido van Rossum

60a3bd8

1999-06-11 18:26:09 +0000

[diff] [blame]

481

self.read_single()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

482

483

def __repr__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

484

"""Return a printable representation."""

Walter Dörwald

70a6b49

2004-02-12 17:35:32 +0000

[diff] [blame]

485

return "FieldStorage(%r, %r, %r)" % (

486

self.name, self.filename, self.value)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

487

Guido van Rossum

4061cbe

2002-09-11 18:20:34 +0000

[diff] [blame]

488

def __iter__(self):

489

return iter(self.keys())

490

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

491

def __getattr__(self, name):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

492

if name != 'value':

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

493

raise AttributeError(name)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

494

if self.file:

495

self.file.seek(0)

496

value = self.file.read()

497

self.file.seek(0)

498

elif self.list is not None:

value = self.list

else:

value = None

return value

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

503

504

def __getitem__(self, key):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

505

"""Dictionary style indexing."""

506

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

507

raise TypeError("not indexable")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

508

found = []

509

for item in self.list:

510

if item.name == key: found.append(item)

511

if not found:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

512

raise KeyError(key)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if len(found) == 1:

return found[0]

else:

return found

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

517

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

518

def getvalue(self, key, default=None):

519

"""Dictionary style get() method, including 'value' lookup."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

520

if key in self:

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

521

value = self[key]

522

if type(value) is type([]):

Guido van Rossum

c1f779c

2007-07-03 08:25:58 +0000

[diff] [blame]

523

return [x.value for x in value]

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

else:

return value.value

else:

return default

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

529

def getfirst(self, key, default=None):

530

""" Return the first value received."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

531

if key in self:

Guido van Rossum

1bfb388

2001-09-05 19:45:34 +0000

[diff] [blame]

532

value = self[key]

533

if type(value) is type([]):

534

return value[0].value

else:

return value.value

else:

return default

def getlist(self, key):

541

""" Return list of received values."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

542

if key in self:

Guido van Rossum

1bfb388

2001-09-05 19:45:34 +0000

[diff] [blame]

543

value = self[key]

544

if type(value) is type([]):

Guido van Rossum

c1f779c

2007-07-03 08:25:58 +0000

[diff] [blame]

545

return [x.value for x in value]

Guido van Rossum

1bfb388

2001-09-05 19:45:34 +0000

[diff] [blame]

else:

return [value.value]

else:

return []

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

551

def keys(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

552

"""Dictionary style keys() method."""

553

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

554

raise TypeError("not indexable")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

555

return list(set(item.name for item in self.list))

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

556

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

557

def __contains__(self, key):

558

"""Dictionary style __contains__ method."""

559

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

560

raise TypeError("not indexable")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

561

return any(item.name == key for item in self.list)

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

562

Guido van Rossum

88b85d4

1997-01-11 19:21:33 +0000

[diff] [blame]

563

def __len__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

564

"""Dictionary style len(x) support."""

565

return len(self.keys())

Guido van Rossum

88b85d4

1997-01-11 19:21:33 +0000

[diff] [blame]

566

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

567

def __nonzero__(self):

568

return bool(self.list)

569

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

570

def read_urlencoded(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

571

"""Internal: read data in query string format."""

572

qs = self.fp.read(self.length)

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

573

if self.qs_on_post:

574

qs += '&' + self.qs_on_post

Guido van Rossum

1946f0d

1999-06-04 17:54:39 +0000

[diff] [blame]

575

self.list = list = []

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

576

for key, value in urllib.parse.parse_qsl(qs, self.keep_blank_values,

577

self.strict_parsing):

Guido van Rossum

1946f0d

1999-06-04 17:54:39 +0000

[diff] [blame]

578

list.append(MiniFieldStorage(key, value))

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

579

self.skip_lines()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

580

Guido van Rossum

030d2ec

1998-12-09 22:16:46 +0000

[diff] [blame]

581

FieldStorageClass = None

582

Guido van Rossum

f574500

1998-10-20 14:43:02 +0000

[diff] [blame]

583

def read_multi(self, environ, keep_blank_values, strict_parsing):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

584

"""Internal: read a part that is itself multipart."""

Guido van Rossum

2001-07-25 21:00:19 +0000

[diff] [blame]

585

ib = self.innerboundary

586

if not valid_boundary(ib):

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

587

raise ValueError('Invalid boundary in multipart form: %r' % (ib,))

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

588

self.list = []

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

589

if self.qs_on_post:

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

590

for key, value in urllib.parse.parse_qsl(self.qs_on_post,

591

self.keep_blank_values, self.strict_parsing):

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

592

self.list.append(MiniFieldStorage(key, value))

593

FieldStorageClass = None

594

Guido van Rossum

030d2ec

1998-12-09 22:16:46 +0000

[diff] [blame]

595

klass = self.FieldStorageClass or self.__class__

Barry Warsaw

2008-06-12 02:38:51 +0000

[diff] [blame]

596

parser = email.parser.FeedParser()

597

# Create bogus content-type header for proper multipart parsing

598

parser.feed('Content-Type: %s; boundary=%s\r\n\r\n' % (self.type, ib))

599

parser.feed(self.fp.read())

600

full_msg = parser.close()

601

# Get subparts

602

msgs = full_msg.get_payload()

603

for msg in msgs:

604

fp = StringIO(msg.get_payload())

605

part = klass(fp, msg, ib, environ, keep_blank_values,

606

strict_parsing)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

607

self.list.append(part)

608

self.skip_lines()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

609

610

def read_single(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

611

"""Internal: read an atomic part."""

if self.length >= 0:

self.read_binary()

self.skip_lines()

else:

self.read_lines()

self.file.seek(0)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

618

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

619

bufsize = 8*1024 # I/O buffering size for copy to file

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

620

621

def read_binary(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

622

"""Internal: read binary data."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

623

self.file = self.make_file()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

todo = self.length

if todo >= 0:

while todo > 0:

data = self.fp.read(min(todo, self.bufsize))

if not data:

self.done = -1

break

self.file.write(data)

632

todo = todo - len(data)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

633

634

def read_lines(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

635

"""Internal: read lines until EOF or outerboundary."""

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

636

self.file = self.__file = StringIO()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

637

if self.outerboundary:

638

self.read_lines_to_outerboundary()

639

else:

640

self.read_lines_to_eof()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

641

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

642

def __write(self, line):

643

if self.__file is not None:

644

if self.__file.tell() + len(line) > 1000:

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

645

self.file = self.make_file()

646

data = self.__file.getvalue()

647

self.file.write(data)

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

648

self.__file = None

649

self.file.write(line)

650

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

651

def read_lines_to_eof(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

652

"""Internal: read lines until EOF."""

653

while 1:

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

654

line = self.fp.readline(1<<16)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

655

if not line:

656

self.done = -1

657

break

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

658

self.__write(line)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

659

660

def read_lines_to_outerboundary(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

661

"""Internal: read lines until outerboundary."""

662

next = "--" + self.outerboundary

663

last = next + "--"

664

delim = ""

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

665

last_line_lfend = True

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

666

while 1:

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

667

line = self.fp.readline(1<<16)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

668

if not line:

669

self.done = -1

670

break

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

671

if line[:2] == "--" and last_line_lfend:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

672

strippedline = line.strip()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

673

if strippedline == next:

674

break

675

if strippedline == last:

self.done = 1

break

odelim = delim

if line[-2:] == "\r\n":

680

delim = "\r\n"

681

line = line[:-2]

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

682

last_line_lfend = True

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

683

elif line[-1] == "\n":

684

delim = "\n"

685

line = line[:-1]

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

686

last_line_lfend = True

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

687

else:

688

delim = ""

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

689

last_line_lfend = False

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

690

self.__write(odelim + line)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

691

692

def skip_lines(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

693

"""Internal: skip lines until outer boundary if defined."""

694

if not self.outerboundary or self.done:

695

return

696

next = "--" + self.outerboundary

697

last = next + "--"

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

698

last_line_lfend = True

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

699

while 1:

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

700

line = self.fp.readline(1<<16)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

701

if not line:

702

self.done = -1

703

break

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

704

if line[:2] == "--" and last_line_lfend:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

705

strippedline = line.strip()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

706

if strippedline == next:

707

break

708

if strippedline == last:

709

self.done = 1

710

break

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

711

last_line_lfend = line.endswith('\n')

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

712

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

713

def make_file(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

714

"""Overridable: return a readable & writable file.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

715

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

716

The file will be used as follows:

717

- data is written to it

718

- seek(0)

719

- data is read from it

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

720

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

721

The file is always opened in text mode.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

722

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

723

This version opens a temporary file for reading and writing,

724

and immediately deletes (unlinks) it. The trick (on Unix!) is

725

that the file can still be used, but it can't be opened by

726

another process, and it will automatically be deleted when it

727

is closed or when the current process terminates.

Guido van Rossum

4032c2c

1996-03-09 04:04:35 +0000

[diff] [blame]

728

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

729

If you want a more permanent file, you derive a class which

730

overrides this method. If you want a visible temporary file

731

that is nevertheless automatically deleted when the script

732

terminates, try defining a __del__ method in a derived class

733

which unlinks the temporary files you have created.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

734

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

735

"""

736

import tempfile

Guido van Rossum

92bab81

2007-08-28 03:32:38 +0000

[diff] [blame]

737

return tempfile.TemporaryFile("w+", encoding="utf-8", newline="\n")

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

738

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

739

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

740

# Test/debug code

741

# ===============

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

742

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

743

def test(environ=os.environ):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

744

"""Robust test CGI script, usable as main program.

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

745

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

746

Write minimal HTTP headers and dump all information provided to

747

the script in HTML form.

748

749

"""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

750

print("Content-type: text/html")

751

print()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

752

sys.stderr = sys.stdout

753

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

754

form = FieldStorage() # Replace with other classes to test those

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

755

print_directory()

756

print_arguments()

Guido van Rossum

a3c6a8a

2000-09-19 04:11:46 +0000

[diff] [blame]

757

print_form(form)

758

print_environ(environ)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

759

print_environ_usage()

760

def f():

Georg Brandl

7cae87c

2006-09-06 06:51:57 +0000

[diff] [blame]

761

exec("testing print_exception() -- <I>italics?</I>")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

762

def g(f=f):

763

f()

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

764

print("<H3>What follows is a test, not an actual exception:</H3>")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

765

g()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

766

except:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

767

print_exception()

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

768

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

769

print("<H1>Second try with a small maxlen...</H1>")

Guido van Rossum

57d51f2

2000-09-16 21:16:01 +0000

[diff] [blame]

770

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

771

global maxlen

772

maxlen = 50

773

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

774

form = FieldStorage() # Replace with other classes to test those

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

775

print_directory()

776

print_arguments()

Guido van Rossum

a3c6a8a

2000-09-19 04:11:46 +0000

[diff] [blame]

777

print_form(form)

778

print_environ(environ)

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

779

except:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

780

print_exception()

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

781

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

782

def print_exception(type=None, value=None, tb=None, limit=None):

783

if type is None:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

784

type, value, tb = sys.exc_info()

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

785

import traceback

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

786

print()

787

print("<H3>Traceback (most recent call last):</H3>")

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

788

list = traceback.format_tb(tb, limit) + \

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

789

traceback.format_exception_only(type, value)

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

790

print("<PRE>%s<B>%s</B></PRE>" % (

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

791

escape("".join(list[:-1])),

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

792

escape(list[-1]),

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

793

))

Guido van Rossum

f15d159

1997-09-29 23:22:12 +0000

[diff] [blame]

794

del tb

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

795

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

796

def print_environ(environ=os.environ):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

797

"""Dump the shell environment as HTML."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

798

keys = sorted(environ.keys())

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

799

print()

800

print("<H3>Shell Environment:</H3>")

801

print("<DL>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

802

for key in keys:

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

803

print("<DT>", escape(key), "<DD>", escape(environ[key]))

804

print("</DL>")

805

print()

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

806

807

def print_form(form):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

808

"""Dump the contents of a form as HTML."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

809

keys = sorted(form.keys())

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

810

print()

811

print("<H3>Form Contents:</H3>")

Guido van Rossum

57d51f2

2000-09-16 21:16:01 +0000

[diff] [blame]

812

if not keys:

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

813

print("<P>No form fields.")

814

print("<DL>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

815

for key in keys:

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

816

print("<DT>" + escape(key) + ":", end=' ')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

817

value = form[key]

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

818

print("<i>" + escape(repr(type(value))) + "</i>")

819

print("<DD>" + escape(repr(value)))

820

print("</DL>")

821

print()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

822

823

def print_directory():

824

"""Dump the current directory as HTML."""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

825

print()

826

print("<H3>Current Working Directory:</H3>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

827

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

828

pwd = os.getcwd()

Guido van Rossum

b940e11

2007-01-10 16:19:56 +0000

[diff] [blame]

829

except os.error as msg:

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

830

print("os.error:", escape(str(msg)))

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

831

else:

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

832

print(escape(pwd))

833

print()

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

834

Guido van Rossum

a8738a5

1996-03-14 21:30:28 +0000

[diff] [blame]

835

def print_arguments():

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

836

print()

837

print("<H3>Command Line Arguments:</H3>")

838

print()

839

print(sys.argv)

840

print()

Guido van Rossum

a8738a5

1996-03-14 21:30:28 +0000

[diff] [blame]

841

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

842

def print_environ_usage():

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

843

"""Dump a list of environment variables used by CGI as HTML."""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

844

print("""

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

845

<H3>These environment variables could have been set:</H3>

846

<UL>

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

<LI>AUTH_TYPE

<LI>CONTENT_LENGTH

<LI>CONTENT_TYPE

<LI>DATE_GMT

<LI>DATE_LOCAL

<LI>DOCUMENT_NAME

<LI>DOCUMENT_ROOT

<LI>DOCUMENT_URI

<LI>GATEWAY_INTERFACE

<LI>LAST_MODIFIED

<LI>PATH

<LI>PATH_INFO

<LI>PATH_TRANSLATED

<LI>QUERY_STRING

<LI>REMOTE_ADDR

<LI>REMOTE_HOST

<LI>REMOTE_IDENT

<LI>REMOTE_USER

<LI>REQUEST_METHOD

<LI>SCRIPT_NAME

<LI>SERVER_NAME

<LI>SERVER_PORT

<LI>SERVER_PROTOCOL

<LI>SERVER_ROOT

<LI>SERVER_SOFTWARE

</UL>

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

873

In addition, HTTP headers sent by the server may be passed in the

874

environment as well. Here are some common variable names:

<UL>

<LI>HTTP_ACCEPT

<LI>HTTP_CONNECTION

<LI>HTTP_HOST

<LI>HTTP_PRAGMA

<LI>HTTP_REFERER

<LI>HTTP_USER_AGENT

</UL>

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

883

""")

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

884

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

885

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

886

# Utilities

887

# =========

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

888

Guido van Rossum

64c6620

1997-07-19 20:11:53 +0000

[diff] [blame]

889

def escape(s, quote=None):

Skip Montanaro

97b2fa2

2005-08-02 02:50:25 +0000

[diff] [blame]

890

'''Replace special characters "&", "<" and ">" to HTML-safe sequences.

891

If the optional flag quote is true, the quotation mark character (")

892

is also translated.'''

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

893

s = s.replace("&", "&") # Must be done first!

894

s = s.replace("<", "<")

895

s = s.replace(">", ">")

Guido van Rossum

64c6620

1997-07-19 20:11:53 +0000

[diff] [blame]

896

if quote:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

897

s = s.replace('"', """)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

898

return s

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

899

Guido van Rossum

2001-07-25 21:00:19 +0000

[diff] [blame]

900

def valid_boundary(s, _vb_pattern="^[ -~]{0,200}[!-~]$"):

901

import re

902

return re.match(_vb_pattern, s)

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

903

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Invoke mainline

# ===============

# Call test() when this file is run as a script (not imported as a module)

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

908

if __name__ == '__main__':

Guido van Rossum