1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
|
from zope.interface import Attribute
from zope.interface import Interface
from zope.component.interfaces import IObjectEvent
class IRequestFactory(Interface):
""" A utility which generates a request object """
def __call__():
""" Return a request factory (a callable that accepts an
environ and returns an object implementing IRequest,
e.g. ``webob.Request``)"""
class IRequest(Interface):
""" Request type interface attached to all request objects """
class IPOSTRequest(IRequest):
""" Request type interface attached to POST requests"""
class IGETRequest(IRequest):
""" Request type interface attached to GET requests"""
class IPUTRequest(IRequest):
""" Request type interface attached to PUT requests"""
class IDELETERequest(IRequest):
""" Request type interface attached to DELETE requests"""
class IHEADRequest(IRequest):
""" Request type interface attached to HEAD requests"""
class IResponseFactory(Interface):
""" A utility which generates a response factory """
def __call__():
""" Return a response factory (e.g. a callable that returns an
object implementing IResponse, e.g. ``webob.Response``; it
should accept all the arguments that the webob.Response class
accepts)"""
class IResponse(Interface):
status = Attribute('WSGI status code of response')
headerlist = Attribute('List of response headers')
app_iter = Attribute('Iterable representing the response body')
class IView(Interface):
def __call__(context, request):
""" Must return an object that implements IResponse """
class IRootFactory(Interface):
def __call__(environ):
""" Return a root object """
class ITraverser(Interface):
def __call__(environ):
""" Return a dictionary with the keys ``root``, ``context``,
``view_name``, ``subpath``, ``traversed``, ``vroot``, and
``vroot_path``. These values are typically the result of an
object graph traversal. ``root`` is the physical root object,
``context`` will be a model object, ``view_name`` will be the
view name used (a Unicode name), ``subpath`` will be a
sequence of Unicode names that followed the view name but were
not traversed, ``traversed`` will be a sequence of Unicode
names that were traversed (including the virtual root path, if
any) or ``None`` if no traversal was performed,
``virtual_root`` will be a model object representing the
virtual root (or the physical root if traversal was not
performed), and ``virtual_root_path`` will be a sequence
representing the virtual root path (a sequence of Unicode
names) or None if traversal was not performed."""
class ITraverserFactory(Interface):
def __call__(context):
""" Return an object that implements ITraverser """
class ITemplateRenderer(Interface):
def implementation():
""" Return the object that the underlying templating system
uses to render the template; it is typically a callable that
accepts arbitrary keyword arguments and returns a string or
unicode object """
def __call__(**kw):
""" Call a the template implementation with the keywords
passed in as arguments and return the result (a string or
unicode object) """
class ITemplateRendererFactory(Interface):
def __call__(path, auto_reload=False):
""" Return an object that implements ``ITemplateRenderer`` """
class ISecurityPolicy(Interface):
""" A utility that provides a mechanism to check authorization
using authentication data """
def permits(context, request, permission):
""" Returns True if the combination of the authorization
information in the context and the authentication data in
the request allow the action implied by the permission """
def authenticated_userid(request):
""" Return the userid of the currently authenticated user or
None if there is no currently authenticated user """
def effective_principals(request):
""" Return the list of 'effective' principals for the request.
This must include the userid of the currently authenticated
user if a user is currently authenticated."""
def principals_allowed_by_permission(context, permission):
""" Return a sequence of principal identifiers allowed by the
``permission`` in the model implied by ``context``. This
method may not be supported by a given security policy
implementation, in which case, it should raise a
``NotImplementedError`` exception."""
class IViewPermission(Interface):
def __call__(security_policy):
""" Return True if the permission allows, return False if it denies. """
class IViewPermissionFactory(Interface):
def __call__(context, request):
""" Return an IViewPermission """
class IRouter(Interface):
"""WSGI application which routes requests to 'view' code based on
a view registry."""
registry = Attribute(
"""Component architecture registry local to this application.""")
class IRoutesContext(Interface):
""" A context (model instance) that is created as a result of URL
dispatching"""
class INewRequest(Interface):
""" An event type that is emitted whenever repoze.bfg begins to
process a new request """
request = Attribute('The request object')
class INewResponse(Interface):
""" An event type that is emitted whenever any repoze.bfg view
returns a response."""
response = Attribute('The response object')
class ISettings(Interface):
""" Runtime settings for repoze.bfg """
reload_templates = Attribute('Reload templates when they change')
class IWSGIApplicationCreatedEvent(IObjectEvent):
""" Event issued after the application has been created and
configured."""
app = Attribute(u"Published application")
# this interface, even if it becomes unused within BFG, is imported by
# other packages (such as repoze.bfg.traversalwrapper)
class ILocation(Interface):
"""Objects that have a structural location"""
__parent__ = Attribute("The parent in the location hierarchy")
__name__ = Attribute("The name within the parent")
class ILogger(Interface):
""" Interface representing a PEP 282 logger """
class IRoutesMapper(Interface):
""" Interface representing a Routes ``Mapper`` object """
class IContextNotFound(Interface):
""" Interface implemented by contexts generated by code which
cannot find a context during root finding or traversal """
class IForbiddenView(Interface):
""" A utility which returns an IResponse as the result of the
denial of a view invocation by a security policy."""
def __call__(context, request):
""" Return an object implementing IResponse (an object with
the status, headerlist, and app_iter attributes) as a result
of a view invocation denial by a security policy.
Note that the ``message`` key in the WSGI environ
(request.environ) provides information pertaining to the
reason for the view invocation denial. The ``context`` passed
to the forbidden app factory will be the context found by the
repoze.bfg router during traversal or url dispatch. The
``request`` will be the request object which caused the deny."""
class INotFoundView(Interface):
""" A utility which returns a NotFound response (an IResponse)
when a view cannot be located for a particular URL"""
def __call__(context, request):
""" Return a NotFound response. When the view is rendered,
a``message`` key in the WSGI environ provides information
pertaining to the reason for the notfound error."""
class INotFoundAppFactory(Interface):
""" A utility which returns a NotFound WSGI application factory.
Deprecated in repoze.bfg 0.9 in favor of INotFoundView"""
class IUnauthorizedAppFactory(Interface):
""" A utility which returns an Unauthorized WSGI application
factory. Deprecated in repoze.bfg 0.9 in favor of IForbiddenView"""
class IContextURL(Interface):
""" An adapter which deals with URLs related to a context.
"""
def virtual_root():
""" Return the virtual root related to a request and the
current context"""
def __call__():
""" Return a URL that points to the context """
class IRoutesContextFactory(Interface):
""" A marker interface used to look up the default routes context factory
"""
class IAuthenticationPolicy(Interface):
""" An object representing a BFG authentication policy. """
def authenticated_userid(request):
""" Return the authenticated userid or ``None`` if no
authenticated userid can be found. """
def effective_principals(request):
""" Return a sequence representing the effective principals
including the userid and any groups belonged to by the current
user, including 'system' groups such as Everyone and
Authenticated. """
def remember(request, principal, **kw):
""" Return a set of headers suitable for 'remembering' the
principal named ``principal`` when set in a response. An
individual authentication policy and its consumers can decide
on the composition and meaning of **kw. """
def forget(request):
""" Return a set of headers suitable for 'forgetting' the
current user on subsequent requests. """
class IAuthorizationPolicy(Interface):
""" A adapter on context """
def permits(context, principals, permission):
""" Return True if any of the principals is allowed the
permission in the current context, else return False """
def principals_allowed_by_permission(context, permission):
""" Return a set of principal identifiers allowed by the permission """
# VH_ROOT_KEY is an interface; its imported from other packages (e.g.
# traversalwrapper)
VH_ROOT_KEY = 'HTTP_X_VHM_ROOT'
|
