Mercurial > p > roundup > code


  
2082


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


     1 """This module defines a very basic store that's used by the CGI interface


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


     2 to store session and one-time-key information.


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


     3 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


     4 Yes, it's called "sessions" - because originally it only defined a session


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


     5 class. It's now also used for One Time Key handling too.


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


     6 """


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


     7 __docformat__ = 'restructuredtext'


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


     8 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


     9 import os, time


4585


033a550812fc
Fix another XSS with the "otk" parameter.

Ralf Schlatterbeck <rsc@runtux.com>
parents: 
4570
diff
changeset


    10 from cgi import escape


2082


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    11 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    12 class BasicDatabase:


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    13     ''' Provide a nice encapsulation of an RDBMS table.


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    14 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    15         Keys are id strings, values are automatically marshalled data.


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    16     '''


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    17     def __init__(self, db):


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    18         self.db = db


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    19         self.cursor = self.db.cursor


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    20 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    21     def clear(self):


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    22         self.cursor.execute('delete from %ss'%self.name)


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    23 


2169


12cd4fa91eb7
OTK generation was busted (thanks Stuart D. Gathman)

Richard Jones <richard@users.sourceforge.net>
parents: 
2082
diff
changeset


    24     def exists(self, infoid):


12cd4fa91eb7
OTK generation was busted (thanks Stuart D. Gathman)

Richard Jones <richard@users.sourceforge.net>
parents: 
2082
diff
changeset


    25         n = self.name


12cd4fa91eb7
OTK generation was busted (thanks Stuart D. Gathman)

Richard Jones <richard@users.sourceforge.net>
parents: 
2082
diff
changeset


    26         self.cursor.execute('select count(*) from %ss where %s_key=%s'%(n,


12cd4fa91eb7
OTK generation was busted (thanks Stuart D. Gathman)

Richard Jones <richard@users.sourceforge.net>
parents: 
2082
diff
changeset


    27             n, self.db.arg), (infoid,))


2244


ac4f295499a4
fixed journal marshalling in RDBMS backends [SF#943627]

Richard Jones <richard@users.sourceforge.net>
parents: 
2169
diff
changeset


    28         return int(self.cursor.fetchone()[0])


2169


12cd4fa91eb7
OTK generation was busted (thanks Stuart D. Gathman)

Richard Jones <richard@users.sourceforge.net>
parents: 
2082
diff
changeset


    29 


2082


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    30     _marker = []


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    31     def get(self, infoid, value, default=_marker):


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    32         n = self.name


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    33         self.cursor.execute('select %s_value from %ss where %s_key=%s'%(n,


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    34             n, n, self.db.arg), (infoid,))


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    35         res = self.cursor.fetchone()


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    36         if not res:


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    37             if default != self._marker:


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    38                 return default


4585


033a550812fc
Fix another XSS with the "otk" parameter.

Ralf Schlatterbeck <rsc@runtux.com>
parents: 
4570
diff
changeset


    39             raise KeyError('No such %s "%s"'%(self.name, escape(infoid)))


2082


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    40         values = eval(res[0])


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    41         return values.get(value, None)


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    42 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    43     def getall(self, infoid):


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    44         n = self.name


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    45         self.cursor.execute('select %s_value from %ss where %s_key=%s'%(n,


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    46             n, n, self.db.arg), (infoid,))


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    47         res = self.cursor.fetchone()


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    48         if not res:


4585


033a550812fc
Fix another XSS with the "otk" parameter.

Ralf Schlatterbeck <rsc@runtux.com>
parents: 
4570
diff
changeset


    49             raise KeyError('No such %s "%s"'%(self.name, escape (infoid)))


2082


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    50         return eval(res[0])


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    51 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    52     def set(self, infoid, **newvalues):


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    53         c = self.cursor


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    54         n = self.name


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    55         a = self.db.arg


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    56         c.execute('select %s_value from %ss where %s_key=%s'%(n, n, n, a),


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    57             (infoid,))


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    58         res = c.fetchone()


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    59         if res:


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    60             values = eval(res[0])


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    61         else:


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    62             values = {}


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    63         values.update(newvalues)


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    64 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    65         if res:


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    66             sql = 'update %ss set %s_value=%s where %s_key=%s'%(n, n,


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    67                 a, n, a)


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    68             args = (repr(values), infoid)


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    69         else:


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    70             sql = 'insert into %ss (%s_key, %s_time, %s_value) '\


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    71                 'values (%s, %s, %s)'%(n, n, n, n, a, a, a)


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    72             args = (infoid, time.time(), repr(values))


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    73         c.execute(sql, args)


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    74 


4390


936bd9bf732d
session API consistency

Richard Jones <richard@users.sourceforge.net>
parents: 
4362
diff
changeset


    75     def list(self):


936bd9bf732d
session API consistency

Richard Jones <richard@users.sourceforge.net>
parents: 
4362
diff
changeset


    76         c = self.cursor


936bd9bf732d
session API consistency

Richard Jones <richard@users.sourceforge.net>
parents: 
4362
diff
changeset


    77         n = self.name


936bd9bf732d
session API consistency

Richard Jones <richard@users.sourceforge.net>
parents: 
4362
diff
changeset


    78         c.execute('select %s_key from %ss'%(n, n))


936bd9bf732d
session API consistency

Richard Jones <richard@users.sourceforge.net>
parents: 
4362
diff
changeset


    79         return [res[0] for res in c.fetchall()]


936bd9bf732d
session API consistency

Richard Jones <richard@users.sourceforge.net>
parents: 
4362
diff
changeset


    80 


2082


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    81     def destroy(self, infoid):


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    82         self.cursor.execute('delete from %ss where %s_key=%s'%(self.name,


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    83             self.name, self.db.arg), (infoid,))


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    84 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    85     def updateTimestamp(self, infoid):


3848


7ad206564007
Use """ instead of ''' in comments, or emacs python-mode bails out.

Erik Forsberg <forsberg@users.sourceforge.net>
parents: 
3606
diff
changeset


    86         """ don't update every hit - once a minute should be OK """


3606


04dc3eef67b7
reduced frequency of session timestamp update

Richard Jones <richard@users.sourceforge.net>
parents: 
2244
diff
changeset


    87         now = time.time()


04dc3eef67b7
reduced frequency of session timestamp update

Richard Jones <richard@users.sourceforge.net>
parents: 
2244
diff
changeset


    88         self.cursor.execute('''update %ss set %s_time=%s where %s_key=%s


04dc3eef67b7
reduced frequency of session timestamp update

Richard Jones <richard@users.sourceforge.net>
parents: 
2244
diff
changeset


    89             and %s_time < %s'''%(self.name, self.name, self.db.arg,


04dc3eef67b7
reduced frequency of session timestamp update

Richard Jones <richard@users.sourceforge.net>
parents: 
2244
diff
changeset


    90             self.name, self.db.arg, self.name, self.db.arg),


04dc3eef67b7
reduced frequency of session timestamp update

Richard Jones <richard@users.sourceforge.net>
parents: 
2244
diff
changeset


    91             (now, infoid, now-60))


2082


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    92 


3989


0112e9e1d068
improvements to session management

Richard Jones <richard@users.sourceforge.net>
parents: 
3920
diff
changeset


    93     def clean(self):


0112e9e1d068
improvements to session management

Richard Jones <richard@users.sourceforge.net>
parents: 
3920
diff
changeset


    94         ''' Remove session records that haven't been used for a week. '''


0112e9e1d068
improvements to session management

Richard Jones <richard@users.sourceforge.net>
parents: 
3920
diff
changeset


    95         now = time.time()


0112e9e1d068
improvements to session management

Richard Jones <richard@users.sourceforge.net>
parents: 
3920
diff
changeset


    96         week = 60*60*24*7


0112e9e1d068
improvements to session management

Richard Jones <richard@users.sourceforge.net>
parents: 
3920
diff
changeset


    97         old = now - week


2082


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    98         self.cursor.execute('delete from %ss where %s_time < %s'%(self.name,


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


    99             self.name, self.db.arg), (old, ))


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


   100 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


   101 class Sessions(BasicDatabase):


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


   102     name = 'session'


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


   103 


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


   104 class OneTimeKeys(BasicDatabase):


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


   105     name = 'otk'


c091cacdc505
Finished implementation of session and one-time-key stores for RDBMS backends.

Richard Jones <richard@users.sourceforge.net>
parents: 
diff
changeset


   106 


3920


416606b09b27
fix vim modelines

Justus Pendleton <jpend@users.sourceforge.net>
parents: 
3918
diff
changeset


   107 # vim: set et sts=4 sw=4 :
author	Bernhard Reiter <bernhard@intevation.de>
date	Thu, 28 Mar 2013 00:10:34 +0100
parents	033a550812fc
children	bf13b28156f3
rev	line source
2082 c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	1 """This module defines a very basic store that's used by the CGI interface
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	2 to store session and one-time-key information.
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	3
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	4 Yes, it's called "sessions" - because originally it only defined a session
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	5 class. It's now also used for One Time Key handling too.
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	6 """
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	7 __docformat__ = 'restructuredtext'
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	8
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	9 import os, time
4585 033a550812fc Fix another XSS with the "otk" parameter. Ralf Schlatterbeck <rsc@runtux.com> parents: 4570 diff changeset	10 from cgi import escape
2082 c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	11
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	12 class BasicDatabase:
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	13 ''' Provide a nice encapsulation of an RDBMS table.
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	14
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	15 Keys are id strings, values are automatically marshalled data.
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	16 '''
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	17 def __init__(self, db):
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	18 self.db = db
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	19 self.cursor = self.db.cursor
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	20
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	21 def clear(self):
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	22 self.cursor.execute('delete from %ss'%self.name)
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	23
2169 12cd4fa91eb7 OTK generation was busted (thanks Stuart D. Gathman) Richard Jones <richard@users.sourceforge.net> parents: 2082 diff changeset	24 def exists(self, infoid):
12cd4fa91eb7 OTK generation was busted (thanks Stuart D. Gathman) Richard Jones <richard@users.sourceforge.net> parents: 2082 diff changeset	25 n = self.name
12cd4fa91eb7 OTK generation was busted (thanks Stuart D. Gathman) Richard Jones <richard@users.sourceforge.net> parents: 2082 diff changeset	26 self.cursor.execute('select count(*) from %ss where %s_key=%s'%(n,
12cd4fa91eb7 OTK generation was busted (thanks Stuart D. Gathman) Richard Jones <richard@users.sourceforge.net> parents: 2082 diff changeset	27 n, self.db.arg), (infoid,))
2244 ac4f295499a4 fixed journal marshalling in RDBMS backends [SF#943627] Richard Jones <richard@users.sourceforge.net> parents: 2169 diff changeset	28 return int(self.cursor.fetchone()[0])
2169 12cd4fa91eb7 OTK generation was busted (thanks Stuart D. Gathman) Richard Jones <richard@users.sourceforge.net> parents: 2082 diff changeset	29
2082 c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	30 _marker = []
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	31 def get(self, infoid, value, default=_marker):
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	32 n = self.name
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	33 self.cursor.execute('select %s_value from %ss where %s_key=%s'%(n,
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	34 n, n, self.db.arg), (infoid,))
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	35 res = self.cursor.fetchone()
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	36 if not res:
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	37 if default != self._marker:
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	38 return default
4585 033a550812fc Fix another XSS with the "otk" parameter. Ralf Schlatterbeck <rsc@runtux.com> parents: 4570 diff changeset	39 raise KeyError('No such %s "%s"'%(self.name, escape(infoid)))
2082 c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	40 values = eval(res[0])
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	41 return values.get(value, None)
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	42
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	43 def getall(self, infoid):
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	44 n = self.name
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	45 self.cursor.execute('select %s_value from %ss where %s_key=%s'%(n,
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	46 n, n, self.db.arg), (infoid,))
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	47 res = self.cursor.fetchone()
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	48 if not res:
4585 033a550812fc Fix another XSS with the "otk" parameter. Ralf Schlatterbeck <rsc@runtux.com> parents: 4570 diff changeset	49 raise KeyError('No such %s "%s"'%(self.name, escape (infoid)))
2082 c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	50 return eval(res[0])
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	51
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	52 def set(self, infoid, **newvalues):
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	53 c = self.cursor
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	54 n = self.name
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	55 a = self.db.arg
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	56 c.execute('select %s_value from %ss where %s_key=%s'%(n, n, n, a),
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	57 (infoid,))
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	58 res = c.fetchone()
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	59 if res:
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	60 values = eval(res[0])
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	61 else:
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	62 values = {}
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	63 values.update(newvalues)
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	64
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	65 if res:
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	66 sql = 'update %ss set %s_value=%s where %s_key=%s'%(n, n,
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	67 a, n, a)
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	68 args = (repr(values), infoid)
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	69 else:
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	70 sql = 'insert into %ss (%s_key, %s_time, %s_value) '\
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	71 'values (%s, %s, %s)'%(n, n, n, n, a, a, a)
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	72 args = (infoid, time.time(), repr(values))
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	73 c.execute(sql, args)
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	74
4390 936bd9bf732d session API consistency Richard Jones <richard@users.sourceforge.net> parents: 4362 diff changeset	75 def list(self):
936bd9bf732d session API consistency Richard Jones <richard@users.sourceforge.net> parents: 4362 diff changeset	76 c = self.cursor
936bd9bf732d session API consistency Richard Jones <richard@users.sourceforge.net> parents: 4362 diff changeset	77 n = self.name
936bd9bf732d session API consistency Richard Jones <richard@users.sourceforge.net> parents: 4362 diff changeset	78 c.execute('select %s_key from %ss'%(n, n))
936bd9bf732d session API consistency Richard Jones <richard@users.sourceforge.net> parents: 4362 diff changeset	79 return [res[0] for res in c.fetchall()]
936bd9bf732d session API consistency Richard Jones <richard@users.sourceforge.net> parents: 4362 diff changeset	80
2082 c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	81 def destroy(self, infoid):
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	82 self.cursor.execute('delete from %ss where %s_key=%s'%(self.name,
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	83 self.name, self.db.arg), (infoid,))
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	84
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	85 def updateTimestamp(self, infoid):
3848 7ad206564007 Use """ instead of ''' in comments, or emacs python-mode bails out. Erik Forsberg <forsberg@users.sourceforge.net> parents: 3606 diff changeset	86 """ don't update every hit - once a minute should be OK """
3606 04dc3eef67b7 reduced frequency of session timestamp update Richard Jones <richard@users.sourceforge.net> parents: 2244 diff changeset	87 now = time.time()
04dc3eef67b7 reduced frequency of session timestamp update Richard Jones <richard@users.sourceforge.net> parents: 2244 diff changeset	88 self.cursor.execute('''update %ss set %s_time=%s where %s_key=%s
04dc3eef67b7 reduced frequency of session timestamp update Richard Jones <richard@users.sourceforge.net> parents: 2244 diff changeset	89 and %s_time < %s'''%(self.name, self.name, self.db.arg,
04dc3eef67b7 reduced frequency of session timestamp update Richard Jones <richard@users.sourceforge.net> parents: 2244 diff changeset	90 self.name, self.db.arg, self.name, self.db.arg),
04dc3eef67b7 reduced frequency of session timestamp update Richard Jones <richard@users.sourceforge.net> parents: 2244 diff changeset	91 (now, infoid, now-60))
2082 c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	92
3989 0112e9e1d068 improvements to session management Richard Jones <richard@users.sourceforge.net> parents: 3920 diff changeset	93 def clean(self):
0112e9e1d068 improvements to session management Richard Jones <richard@users.sourceforge.net> parents: 3920 diff changeset	94 ''' Remove session records that haven't been used for a week. '''
0112e9e1d068 improvements to session management Richard Jones <richard@users.sourceforge.net> parents: 3920 diff changeset	95 now = time.time()
0112e9e1d068 improvements to session management Richard Jones <richard@users.sourceforge.net> parents: 3920 diff changeset	96 week = 606024*7
0112e9e1d068 improvements to session management Richard Jones <richard@users.sourceforge.net> parents: 3920 diff changeset	97 old = now - week
2082 c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	98 self.cursor.execute('delete from %ss where %s_time < %s'%(self.name,
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	99 self.name, self.db.arg), (old, ))
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	100
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	101 class Sessions(BasicDatabase):
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	102 name = 'session'
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	103
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	104 class OneTimeKeys(BasicDatabase):
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	105 name = 'otk'
c091cacdc505 Finished implementation of session and one-time-key stores for RDBMS backends. Richard Jones <richard@users.sourceforge.net> parents: diff changeset	106
3920 416606b09b27 fix vim modelines Justus Pendleton <jpend@users.sourceforge.net> parents: 3918 diff changeset	107 # vim: set et sts=4 sw=4 :