def init_app(global_config, settings, prefix=None, dbhandler_factory = get_dbhandler):
""" initialize application
it is encouraged to execute the following method first if it is demeed necessary
before calling init_app():
set_initdb_func()
this function MUST be called AFTER doing multiprocessing forking/init
and each process needs to call this function independently
"""
# init dogpile.cache
authcache = dogpile.cache.make_region(
key_mangler = dogpile.cache.util.sha1_mangle_key)
cache = dogpile.cache.make_region(
key_mangler = dogpile.cache.util.sha1_mangle_key)
authcache.configure_from_config( settings, 'rhombus.authcache.' )
cache.configure_from_config( settings, 'dogpile.cache.' )
# init database
dbh = dbhandler_factory( settings )
auth_policy = AuthTktAuthenticationPolicy(
secret = settings['rhombus.authsecret'],
callback = lambda req, uid: req.user(),
hashalg = 'sha512' )
config = Configurator(settings = settings,
authentication_policy = auth_policy)
config.set_request_factory(RhoRequest)
config.add_request_method(userobj_factory(authcache), 'user', reify=True)
config.add_request_method(userobj_setter(authcache), 'set_user')
config.add_request_method(userobj_deleter(authcache), 'del_user')
config.add_subscriber( add_global, BeforeRender )
config.include( includeme, prefix )
return config
def main(global_config, **settings):
""" This function returns a Pyramid WSGI application.
"""
cache = dogpile.cache.make_region(
key_mangler=dogpile.cache.util.sha1_mangle_key)
tahrir_api.model.Person.avatar_url = make_avatar_method(cache)
tahrir_api.model.Person.email_md5 = property(
lambda self: hashlib.md5(self.email).hexdigest())
tahrir_api.model.Person.email_sha1 = property(
lambda self: hashlib.sha1(self.email).hexdigest())
identifier = settings.get('tahrir.openid_identifier')
tahrir_api.model.Person.openid_identifier =\
make_openid_identifier_property(identifier)
tahrir_api.model.Person.created_on_rel =\
make_relative_time_property('created_on')
tahrir_api.model.Assertion.created_on_rel =\
make_relative_time_property('created_on')
tahrir_api.model.Assertion.issued_on_rel =\
make_relative_time_property('issued_on')
session_cls = scoped_session(sessionmaker(
extension=ZopeTransactionExtension(),
bind=create_engine(settings['sqlalchemy.url']),
))
def get_db(request):
""" Database retrieval function to be added to the request for
calling anywhere.
"""
session = session_cls()
return TahrirDatabase(session=session, autocommit=False,
notification_callback=notifications.callback)
required_keys = [
'tahrir.pngs.uri',
'tahrir.admin',
'tahrir.title',
'tahrir.base_url',
]
# validate the config
for key in required_keys:
if key not in settings:
raise ValueError("%s required in settings." % key)
# Make data dir if it doesn't already exist.
settings['tahrir.pngs.uri'] = os.path.abspath(settings['tahrir.pngs.uri'])
if not os.path.exists(settings['tahrir.pngs.uri']):
os.makedirs(settings['tahrir.pngs.uri'])
# Load secret stuff from secret.ini.
try:
default_path = os.path.abspath("secret.ini")
secret_path = settings.get('secret_config_path', default_path)
# TODO: There is a better way to log this message than print.
print "Reading secrets from %r" % secret_path
parser = ConfigParser.ConfigParser()
parser.read(secret_path)
secret_config = dict(parser.items("tahrir"))
settings.update(secret_config)
except Exception as e:
# TODO: There is a better way to log this message than print.
print 'Failed to load secret.ini. Reason: %r' % str(e)
authn_policy = AuthTktAuthenticationPolicy(
secret=settings['authnsecret'],
callback=groupfinder, # groupfinder callback checks for admin privs
hashalg='sha512', # because md5 is deprecated
secure=asbool(settings['tahrir.secure_cookies']),
)
authz_policy = ACLAuthorizationPolicy()
session_factory = UnencryptedCookieSessionFactoryConfig(
settings['session.secret'])
# Configure our cache that we instantiated earlier.
cache.configure_from_config(settings, 'dogpile.cache.')
config = Configurator(
settings=settings,
root_factory=get_root,
session_factory=session_factory,
authentication_policy=authn_policy,
authorization_policy=authz_policy)
config.include('velruse.providers.openid')
config.add_openid_login(realm=settings.get('tahrir.openid_realm'))
config.add_request_method(get_db, 'db', reify=True)
config.add_static_view(
'static',
settings.get('tahrir.theme_name', 'tahrir') + ':static',
cache_max_age=3600,
)
config.add_static_view(
'pngs',
settings['tahrir.pngs.uri'],
cache_max_age=3600,
)
config.add_route('home', '/')
config.add_route('heartbeat', '/heartbeat')
# main admin endpoint
config.add_route('admin', '/admin')
# delegated admin endpoints
config.add_route('award', '/award')
config.add_route('invite', '/invite')
config.add_route('qrcode', '/qrcode')
config.add_route('badge', '/badge/{id}')
config.add_route('badge_json', '/badge/{id}/json')
config.add_route('badge_rss', '/badge/{id}/rss')
config.add_route('builder', '/builder')
config.add_route('about', '/about')
config.add_route('explore', '/explore')
config.add_route('explore_badges', '/explore/badges')
config.add_route('explore_badges_rss', '/explore/badges/rss')
config.add_route('leaderboard', '/leaderboard')
config.add_route('leaderboard_json', '/leaderboard/json')
config.add_route('rank_json', '/leaderboard/{id}/json')
config.add_route('tags', '/tags/{tags}/{match}')
config.add_route('user', '/user/{id}')
config.add_route('user_edit', '/user/{id}/edit')
config.add_route('user_json', '/user/{id}/json')
config.add_route('user_rss', '/user/{id}/rss')
config.add_route('user_foaf', '/user/{id}/foaf')
config.add_route('diff', '/diff/{id_a}/{id_b}')
config.add_route('report', '/report')
config.add_route('report_year', '/report/{year}')
config.add_route('report_year_month', '/report/{year}/{month}')
config.add_route('report_year_week',
'/report/{year}/week/{weeknumber}')
config.add_route('report_year_month_day',
'/report/{year}/{month}/{day}')
config.add_route('login', '/login')
config.add_route('logout', '/logout')
# Used to grab a "was awarded" html snippet asynchronously
config.add_route('assertion_widget', '/_w/assertion/{person}/{badge}')
config.scan()
return config.make_wsgi_app()
def main(global_config, **settings):
""" This function returns a Pyramid WSGI application.
"""
cache = dogpile.cache.make_region(
key_mangler=dogpile.cache.util.sha1_mangle_key)
tahrir_api.model.Person.avatar_url = make_avatar_method(cache)
tahrir_api.model.Person.email_md5 = property(
lambda self: hashlib.md5(self.email).hexdigest())
tahrir_api.model.Person.email_sha1 = property(
lambda self: hashlib.sha1(self.email).hexdigest())
identifier = settings.get('tahrir.openid_identifier')
tahrir_api.model.Person.openid_identifier =\
make_openid_identifier_property(identifier)
tahrir_api.model.Person.created_on_rel =\
make_relative_time_property('created_on')
tahrir_api.model.Assertion.created_on_rel =\
make_relative_time_property('created_on')
tahrir_api.model.Assertion.issued_on_rel =\
make_relative_time_property('issued_on')
session_cls = scoped_session(
sessionmaker(
extension=ZopeTransactionExtension(),
bind=create_engine(settings['sqlalchemy.url']),
))
def get_db(request):
""" Database retrieval function to be added to the request for
calling anywhere.
"""
session = session_cls()
return TahrirDatabase(session=session,
autocommit=False,
notification_callback=notifications.callback)
required_keys = [
'tahrir.pngs.uri',
'tahrir.admin',
'tahrir.title',
'tahrir.base_url',
]
# validate the config
for key in required_keys:
if key not in settings:
raise ValueError("%s required in settings." % key)
# Make data dir if it doesn't already exist.
settings['tahrir.pngs.uri'] = os.path.abspath(settings['tahrir.pngs.uri'])
if not os.path.exists(settings['tahrir.pngs.uri']):
os.makedirs(settings['tahrir.pngs.uri'])
# Load secret stuff from secret.ini.
try:
default_path = os.path.abspath("secret.ini")
secret_path = settings.get('secret_config_path', default_path)
# TODO: There is a better way to log this message than print.
print "Reading secrets from %r" % secret_path
parser = ConfigParser.ConfigParser()
parser.read(secret_path)
secret_config = dict(parser.items("tahrir"))
settings.update(secret_config)
except Exception as e:
# TODO: There is a better way to log this message than print.
print 'Failed to load secret.ini. Reason: %r' % str(e)
authn_policy = AuthTktAuthenticationPolicy(
secret=settings['authnsecret'],
callback=groupfinder, # groupfinder callback checks for admin privs
hashalg='sha512', # because md5 is deprecated
secure=asbool(settings['tahrir.secure_cookies']),
http_only=asbool(settings['tahrir.httponly_cookies']),
)
authz_policy = ACLAuthorizationPolicy()
session_factory = UnencryptedCookieSessionFactoryConfig(
secret=settings['session.secret'],
cookie_secure=asbool(settings['tahrir.secure_cookies']),
cookie_httponly=asbool(settings['tahrir.httponly_cookies']),
)
# Configure our cache that we instantiated earlier.
cache.configure_from_config(settings, 'dogpile.cache.')
config = Configurator(settings=settings,
root_factory=get_root,
session_factory=session_factory,
authentication_policy=authn_policy,
authorization_policy=authz_policy)
import tahrir.custom_openid
config.include('velruse.providers.openid')
tahrir.custom_openid.add_openid_login(
config,
realm=settings.get('tahrir.openid_realm'),
identity_provider=settings.get('tahrir.openid_identifier'),
)
config.include('pyramid_mako')
config.add_request_method(get_db, 'db', reify=True)
config.add_static_view(
'static',
settings.get('tahrir.theme_name', 'tahrir') + ':static',
cache_max_age=3600,
)
config.add_static_view(
'pngs',
settings['tahrir.pngs.uri'],
cache_max_age=3600,
)
config.add_route('home', '/')
config.add_route('heartbeat', '/heartbeat')
# main admin endpoint
config.add_route('admin', '/admin')
# delegated admin endpoints
config.add_route('award', '/award')
config.add_route('invite', '/invite')
config.add_route('add_tag', '/add_tag')
config.add_route('qrcode', '/qrcode')
config.add_route('badge', '/badge/{id}')
config.add_route('badge_full', '/badge/{id}/full')
config.add_route('badge_json', '/badge/{id}/json')
config.add_route('badge_rss', '/badge/{id}/rss')
config.add_route('badge_stl', '/badge/{id}/stl')
config.add_route('builder', '/builder')
config.add_route('about', '/about')
config.add_route('explore', '/explore')
config.add_route('explore_badges', '/explore/badges')
config.add_route('explore_badges_rss', '/explore/badges/rss')
config.add_route('leaderboard', '/leaderboard')
config.add_route('leaderboard_json', '/leaderboard/json')
config.add_route('rank_json', '/leaderboard/{id}/json')
config.add_route('tags', '/tags/{tags}/{match}')
config.add_route('user', '/user/{id}')
config.add_route('user_edit', '/user/{id}/edit')
config.add_route('user_json', '/user/{id}/json')
config.add_route('user_rss', '/user/{id}/rss')
config.add_route('user_foaf', '/user/{id}/foaf')
config.add_route('diff', '/diff/{id_a}/{id_b}')
config.add_route('report', '/report')
config.add_route('report_this_month', '/report/this/month')
config.add_route('report_year', '/report/{year}')
config.add_route('report_year_month', '/report/{year}/{month}')
config.add_route('report_year_week', '/report/{year}/week/{weeknumber}')
config.add_route('report_year_month_day', '/report/{year}/{month}/{day}')
config.add_route('award_from_csv', '/award_from_csv')
config.add_route('login', '/login')
config.add_route('logout', '/logout')
# Used to grab a "was awarded" html snippet asynchronously
config.add_route('assertion_widget', '/_w/assertion/{person}/{badge}')
config.scan()
return config.make_wsgi_app()
def main(global_config, **settings):
""" This function returns a Pyramid WSGI application.
"""
cache = dogpile.cache.make_region(key_mangler=dogpile.cache.util.sha1_mangle_key)
tahrir_api.model.Person.avatar_url = make_avatar_method(cache)
identifier = settings.get("tahrir.openid_identifier")
tahrir_api.model.Person.openid_identifier = make_openid_identifier_property(identifier)
tahrir_api.model.Person.created_on_rel = make_relative_time_property("created_on")
tahrir_api.model.Assertion.created_on_rel = make_relative_time_property("created_on")
tahrir_api.model.Assertion.issued_on_rel = make_relative_time_property("issued_on")
session_cls = scoped_session(
sessionmaker(extension=ZopeTransactionExtension(), bind=create_engine(settings["sqlalchemy.url"]))
)
def get_db(request):
""" Database retrieval function to be added to the request for
calling anywhere.
"""
session = session_cls()
return TahrirDatabase(session=session, autocommit=False)
required_keys = ["tahrir.pngs.uri", "tahrir.admin", "tahrir.title", "tahrir.base_url"]
# validate the config
for key in required_keys:
if key not in settings:
raise ValueError("%s required in settings." % key)
# Make data dir if it doesn't already exist.
settings["tahrir.pngs.uri"] = os.path.abspath(settings["tahrir.pngs.uri"])
if not os.path.exists(settings["tahrir.pngs.uri"]):
os.makedirs(settings["tahrir.pngs.uri"])
# Load secret stuff from secret.ini.
try:
default_path = os.path.abspath("secret.ini")
secret_path = settings.get("secret_config_path", default_path)
# TODO: There is a better way to log this message than print.
print "Reading secrets from %r" % secret_path
parser = ConfigParser.ConfigParser()
parser.read(secret_path)
secret_config = dict(parser.items("tahrir"))
settings.update(secret_config)
except Exception as e:
# TODO: There is a better way to log this message than print.
print "Failed to load secret.ini. Reason: %r" % str(e)
authn_policy = AuthTktAuthenticationPolicy(
secret=settings["authnsecret"],
callback=groupfinder, # groupfinder callback checks for admin privs
hashalg="sha512", # because md5 is deprecated
secure=asbool(settings["tahrir.secure_cookies"]),
)
authz_policy = ACLAuthorizationPolicy()
session_factory = UnencryptedCookieSessionFactoryConfig(settings["session.secret"])
# Configure our cache that we instantiated earlier.
cache.configure_from_config(settings, "dogpile.cache.")
config = Configurator(
settings=settings,
root_factory=get_root,
session_factory=session_factory,
authentication_policy=authn_policy,
authorization_policy=authz_policy,
)
config.include("velruse.providers.openid")
config.add_openid_login(realm=settings.get("tahrir.openid_realm"))
config.add_request_method(get_db, "db", reify=True)
config.add_static_view("static", settings.get("tahrir.static.uri", "static"), cache_max_age=3600)
config.add_static_view("pngs", settings["tahrir.pngs.uri"], cache_max_age=3600)
config.add_route("home", "/")
config.add_route("admin", "/admin")
config.add_route("qrcode", "/qrcode")
config.add_route("badge", "/badge/{id}")
config.add_route("badge_json", "/badge/{id}/json")
config.add_route("builder", "/builder")
config.add_route("explore", "/explore")
config.add_route("explore_badges", "/explore/badges")
config.add_route("leaderboard", "/leaderboard")
config.add_route("leaderboard_json", "/leaderboard/json")
config.add_route("rank_json", "/leaderboard/{id}/json")
config.add_route("tags", "/tags/{tags}/{match}")
config.add_route("user", "/user/{id}")
config.add_route("user_json", "/user/{id}/json")
config.add_route("login", "/login")
config.add_route("logout", "/logout")
# Used to grab a "was awarded" html snippet asynchronously
config.add_route("assertion_widget", "/_w/assertion/{person}/{badge}")
config.scan()
return config.make_wsgi_app()
