2012-10-22 02:12:59 +08:00
|
|
|
import datetime
|
2021-10-14 17:41:10 +08:00
|
|
|
import io
|
2014-02-15 01:28:51 +08:00
|
|
|
import json
|
2018-05-16 00:12:11 +08:00
|
|
|
import mimetypes
|
|
|
|
import os
|
2013-11-17 01:54:12 +08:00
|
|
|
import re
|
2013-09-07 02:47:08 +08:00
|
|
|
import sys
|
2014-02-15 01:28:51 +08:00
|
|
|
import time
|
2012-10-22 02:12:59 +08:00
|
|
|
from email.header import Header
|
2017-01-07 19:11:46 +08:00
|
|
|
from http.client import responses
|
2018-05-16 00:12:11 +08:00
|
|
|
from urllib.parse import quote, urlparse
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
from django.conf import settings
|
2015-01-28 20:35:27 +08:00
|
|
|
from django.core import signals, signing
|
2013-05-16 07:14:28 +08:00
|
|
|
from django.core.exceptions import DisallowedRedirect
|
2014-02-15 01:28:51 +08:00
|
|
|
from django.core.serializers.json import DjangoJSONEncoder
|
2012-10-22 02:12:59 +08:00
|
|
|
from django.http.cookie import SimpleCookie
|
2017-01-07 19:11:46 +08:00
|
|
|
from django.utils import timezone
|
2021-09-21 03:33:42 +08:00
|
|
|
from django.utils.datastructures import CaseInsensitiveMapping
|
2018-02-07 22:52:50 +08:00
|
|
|
from django.utils.encoding import iri_to_uri
|
2017-12-28 05:49:46 +08:00
|
|
|
from django.utils.http import http_date
|
2019-10-26 22:42:32 +08:00
|
|
|
from django.utils.regex_helper import _lazy_re_compile
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2019-10-26 22:42:32 +08:00
|
|
|
_charset_from_content_type_re = _lazy_re_compile(
|
|
|
|
r";\s*charset=(?P<charset>[^\s;]+)", re.I
|
|
|
|
)
|
2013-11-17 01:54:12 +08:00
|
|
|
|
|
|
|
|
2020-07-14 19:32:24 +08:00
|
|
|
class ResponseHeaders(CaseInsensitiveMapping):
|
|
|
|
def __init__(self, data):
|
|
|
|
"""
|
|
|
|
Populate the initial data using __setitem__ to ensure values are
|
|
|
|
correctly encoded.
|
|
|
|
"""
|
|
|
|
self._store = {}
|
2022-02-09 22:31:42 +08:00
|
|
|
if data:
|
|
|
|
for header, value in self._unpack_items(data):
|
|
|
|
self[header] = value
|
2020-07-14 19:32:24 +08:00
|
|
|
|
|
|
|
def _convert_to_charset(self, value, charset, mime_encode=False):
|
|
|
|
"""
|
|
|
|
Convert headers key/value to ascii/latin-1 native strings.
|
|
|
|
`charset` must be 'ascii' or 'latin-1'. If `mime_encode` is True and
|
|
|
|
`value` can't be represented in the given charset, apply MIME-encoding.
|
|
|
|
"""
|
|
|
|
try:
|
|
|
|
if isinstance(value, str):
|
|
|
|
# Ensure string is valid in given charset
|
|
|
|
value.encode(charset)
|
2022-02-10 00:01:03 +08:00
|
|
|
elif isinstance(value, bytes):
|
2020-07-14 19:32:24 +08:00
|
|
|
# Convert bytestring using given charset
|
|
|
|
value = value.decode(charset)
|
2022-02-10 00:01:03 +08:00
|
|
|
else:
|
|
|
|
value = str(value)
|
|
|
|
# Ensure string is valid in given charset.
|
|
|
|
value.encode(charset)
|
|
|
|
if "\n" in value or "\r" in value:
|
|
|
|
raise BadHeaderError(
|
|
|
|
f"Header values can't contain newlines (got {value!r})"
|
|
|
|
)
|
2020-07-14 19:32:24 +08:00
|
|
|
except UnicodeError as e:
|
2022-02-10 00:01:03 +08:00
|
|
|
# Encoding to a string of the specified charset failed, but we
|
|
|
|
# don't know what type that value was, or if it contains newlines,
|
|
|
|
# which we may need to check for before sending it to be
|
|
|
|
# encoded for multiple character sets.
|
|
|
|
if (isinstance(value, bytes) and (b"\n" in value or b"\r" in value)) or (
|
|
|
|
isinstance(value, str) and ("\n" in value or "\r" in value)
|
|
|
|
):
|
|
|
|
raise BadHeaderError(
|
|
|
|
f"Header values can't contain newlines (got {value!r})"
|
|
|
|
) from e
|
2020-07-14 19:32:24 +08:00
|
|
|
if mime_encode:
|
|
|
|
value = Header(value, "utf-8", maxlinelen=sys.maxsize).encode()
|
|
|
|
else:
|
|
|
|
e.reason += ", HTTP response headers must be in %s format" % charset
|
|
|
|
raise
|
|
|
|
return value
|
|
|
|
|
|
|
|
def __delitem__(self, key):
|
|
|
|
self.pop(key)
|
|
|
|
|
|
|
|
def __setitem__(self, key, value):
|
|
|
|
key = self._convert_to_charset(key, "ascii")
|
|
|
|
value = self._convert_to_charset(value, "latin-1", mime_encode=True)
|
|
|
|
self._store[key.lower()] = (key, value)
|
|
|
|
|
|
|
|
def pop(self, key, default=None):
|
|
|
|
return self._store.pop(key.lower(), default)
|
|
|
|
|
|
|
|
def setdefault(self, key, value):
|
|
|
|
if key not in self:
|
|
|
|
self[key] = value
|
|
|
|
|
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
class BadHeaderError(ValueError):
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
2017-01-07 19:11:46 +08:00
|
|
|
class HttpResponseBase:
|
2012-10-22 02:12:59 +08:00
|
|
|
"""
|
|
|
|
An HTTP response base class with dictionary-accessed headers.
|
|
|
|
|
|
|
|
This class doesn't handle content. It should not be used directly.
|
|
|
|
Use the HttpResponse and StreamingHttpResponse subclasses instead.
|
|
|
|
"""
|
|
|
|
|
|
|
|
status_code = 200
|
|
|
|
|
2020-09-15 18:43:37 +08:00
|
|
|
def __init__(
|
|
|
|
self, content_type=None, status=None, reason=None, charset=None, headers=None
|
|
|
|
):
|
2022-02-09 22:31:42 +08:00
|
|
|
self.headers = ResponseHeaders(headers)
|
2020-09-15 18:43:37 +08:00
|
|
|
self._charset = charset
|
2022-02-24 00:30:19 +08:00
|
|
|
if "Content-Type" not in self.headers:
|
|
|
|
if content_type is None:
|
|
|
|
content_type = f"text/html; charset={self.charset}"
|
|
|
|
self.headers["Content-Type"] = content_type
|
|
|
|
elif content_type:
|
2020-09-15 18:43:37 +08:00
|
|
|
raise ValueError(
|
|
|
|
"'headers' must not contain 'Content-Type' when the "
|
|
|
|
"'content_type' parameter is provided."
|
|
|
|
)
|
2020-02-07 19:55:59 +08:00
|
|
|
self._resource_closers = []
|
2012-12-30 22:19:22 +08:00
|
|
|
# This parameter is set by the handler. It's necessary to preserve the
|
|
|
|
# historical behavior of request_finished.
|
|
|
|
self._handler_class = None
|
2012-10-22 02:12:59 +08:00
|
|
|
self.cookies = SimpleCookie()
|
2014-04-14 23:58:59 +08:00
|
|
|
self.closed = False
|
2013-05-19 18:58:13 +08:00
|
|
|
if status is not None:
|
2016-08-28 08:21:37 +08:00
|
|
|
try:
|
|
|
|
self.status_code = int(status)
|
|
|
|
except (ValueError, TypeError):
|
|
|
|
raise TypeError("HTTP status code must be an integer.")
|
|
|
|
|
|
|
|
if not 100 <= self.status_code <= 599:
|
|
|
|
raise ValueError("HTTP status code must be an integer from 100 to 599.")
|
2015-01-13 06:45:09 +08:00
|
|
|
self._reason_phrase = reason
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2015-01-13 06:45:09 +08:00
|
|
|
@property
|
|
|
|
def reason_phrase(self):
|
|
|
|
if self._reason_phrase is not None:
|
|
|
|
return self._reason_phrase
|
|
|
|
# Leave self._reason_phrase unset in order to use the default
|
|
|
|
# reason phrase for status code.
|
|
|
|
return responses.get(self.status_code, "Unknown Status Code")
|
|
|
|
|
|
|
|
@reason_phrase.setter
|
|
|
|
def reason_phrase(self, value):
|
|
|
|
self._reason_phrase = value
|
|
|
|
|
2013-11-17 01:54:12 +08:00
|
|
|
@property
|
|
|
|
def charset(self):
|
|
|
|
if self._charset is not None:
|
|
|
|
return self._charset
|
2022-02-10 03:42:44 +08:00
|
|
|
# The Content-Type header may not yet be set, because the charset is
|
|
|
|
# being inserted *into* it.
|
|
|
|
if content_type := self.headers.get("Content-Type"):
|
|
|
|
if matched := _charset_from_content_type_re.search(content_type):
|
|
|
|
# Extract the charset and strip its double quotes.
|
|
|
|
# Note that having parsed it from the Content-Type, we don't
|
|
|
|
# store it back into the _charset for later intentionally, to
|
|
|
|
# allow for the Content-Type to be switched again later.
|
|
|
|
return matched["charset"].replace('"', "")
|
2013-11-17 01:54:12 +08:00
|
|
|
return settings.DEFAULT_CHARSET
|
|
|
|
|
|
|
|
@charset.setter
|
|
|
|
def charset(self, value):
|
|
|
|
self._charset = value
|
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
def serialize_headers(self):
|
|
|
|
"""HTTP headers as a bytestring."""
|
2021-08-02 15:24:48 +08:00
|
|
|
return b"\r\n".join(
|
|
|
|
[
|
|
|
|
key.encode("ascii") + b": " + value.encode("latin-1")
|
2020-07-14 19:32:24 +08:00
|
|
|
for key, value in self.headers.items()
|
2021-08-02 15:24:48 +08:00
|
|
|
]
|
|
|
|
)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2016-12-01 18:38:01 +08:00
|
|
|
__bytes__ = serialize_headers
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2016-12-27 12:29:31 +08:00
|
|
|
@property
|
|
|
|
def _content_type_for_repr(self):
|
2020-07-14 19:32:24 +08:00
|
|
|
return (
|
|
|
|
', "%s"' % self.headers["Content-Type"]
|
|
|
|
if "Content-Type" in self.headers
|
|
|
|
else ""
|
2022-02-04 03:24:19 +08:00
|
|
|
)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def __setitem__(self, header, value):
|
2020-07-14 19:32:24 +08:00
|
|
|
self.headers[header] = value
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def __delitem__(self, header):
|
2020-07-14 19:32:24 +08:00
|
|
|
del self.headers[header]
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def __getitem__(self, header):
|
2020-07-14 19:32:24 +08:00
|
|
|
return self.headers[header]
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def has_header(self, header):
|
|
|
|
"""Case-insensitive check for a header."""
|
2020-07-14 19:32:24 +08:00
|
|
|
return header in self.headers
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
__contains__ = has_header
|
|
|
|
|
|
|
|
def items(self):
|
2020-07-14 19:32:24 +08:00
|
|
|
return self.headers.items()
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def get(self, header, alternate=None):
|
2020-07-14 19:32:24 +08:00
|
|
|
return self.headers.get(header, alternate)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def set_cookie(
|
|
|
|
self,
|
|
|
|
key,
|
|
|
|
value="",
|
|
|
|
max_age=None,
|
|
|
|
expires=None,
|
|
|
|
path="/",
|
2018-04-14 08:58:31 +08:00
|
|
|
domain=None,
|
|
|
|
secure=False,
|
|
|
|
httponly=False,
|
|
|
|
samesite=None,
|
|
|
|
):
|
2012-10-22 02:12:59 +08:00
|
|
|
"""
|
2017-01-25 05:23:56 +08:00
|
|
|
Set a cookie.
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
``expires`` can be:
|
|
|
|
- a string in the correct format,
|
|
|
|
- a naive ``datetime.datetime`` object in UTC,
|
|
|
|
- an aware ``datetime.datetime`` object in any time zone.
|
2017-01-25 05:23:56 +08:00
|
|
|
If it is a ``datetime.datetime`` object then calculate ``max_age``.
|
2022-03-04 20:57:10 +08:00
|
|
|
|
|
|
|
``max_age`` can be:
|
|
|
|
- int/float specifying seconds,
|
|
|
|
- ``datetime.timedelta`` object.
|
2012-10-22 02:12:59 +08:00
|
|
|
"""
|
|
|
|
self.cookies[key] = value
|
|
|
|
if expires is not None:
|
|
|
|
if isinstance(expires, datetime.datetime):
|
2021-05-07 17:42:59 +08:00
|
|
|
if timezone.is_naive(expires):
|
2022-03-23 19:15:36 +08:00
|
|
|
expires = timezone.make_aware(expires, datetime.timezone.utc)
|
|
|
|
delta = expires - datetime.datetime.now(tz=datetime.timezone.utc)
|
2012-10-22 02:12:59 +08:00
|
|
|
# Add one second so the date matches exactly (a fraction of
|
|
|
|
# time gets lost between converting to a timedelta and
|
|
|
|
# then the date string).
|
|
|
|
delta = delta + datetime.timedelta(seconds=1)
|
|
|
|
# Just set max_age - the max_age logic will set expires.
|
|
|
|
expires = None
|
2022-03-04 21:05:07 +08:00
|
|
|
if max_age is not None:
|
|
|
|
raise ValueError("'expires' and 'max_age' can't be used together.")
|
2012-10-22 02:12:59 +08:00
|
|
|
max_age = max(0, delta.days * 86400 + delta.seconds)
|
|
|
|
else:
|
|
|
|
self.cookies[key]["expires"] = expires
|
2015-10-31 06:05:11 +08:00
|
|
|
else:
|
|
|
|
self.cookies[key]["expires"] = ""
|
2012-10-22 02:12:59 +08:00
|
|
|
if max_age is not None:
|
2022-03-04 20:57:10 +08:00
|
|
|
if isinstance(max_age, datetime.timedelta):
|
|
|
|
max_age = max_age.total_seconds()
|
2020-09-04 20:04:21 +08:00
|
|
|
self.cookies[key]["max-age"] = int(max_age)
|
2012-10-22 02:12:59 +08:00
|
|
|
# IE requires expires, so set it if hasn't been already.
|
|
|
|
if not expires:
|
2017-12-28 05:49:46 +08:00
|
|
|
self.cookies[key]["expires"] = http_date(time.time() + max_age)
|
2012-10-22 02:12:59 +08:00
|
|
|
if path is not None:
|
|
|
|
self.cookies[key]["path"] = path
|
|
|
|
if domain is not None:
|
|
|
|
self.cookies[key]["domain"] = domain
|
|
|
|
if secure:
|
|
|
|
self.cookies[key]["secure"] = True
|
|
|
|
if httponly:
|
|
|
|
self.cookies[key]["httponly"] = True
|
2018-04-14 08:58:31 +08:00
|
|
|
if samesite:
|
2019-10-09 19:42:55 +08:00
|
|
|
if samesite.lower() not in ("lax", "none", "strict"):
|
|
|
|
raise ValueError('samesite must be "lax", "none", or "strict".')
|
2018-04-14 08:58:31 +08:00
|
|
|
self.cookies[key]["samesite"] = samesite
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2014-12-11 06:25:05 +08:00
|
|
|
def setdefault(self, key, value):
|
2017-01-25 05:23:56 +08:00
|
|
|
"""Set a header unless it has already been set."""
|
2020-07-14 19:32:24 +08:00
|
|
|
self.headers.setdefault(key, value)
|
2014-12-11 06:25:05 +08:00
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
def set_signed_cookie(self, key, value, salt="", **kwargs):
|
|
|
|
value = signing.get_cookie_signer(salt=key + salt).sign(value)
|
|
|
|
return self.set_cookie(key, value, **kwargs)
|
|
|
|
|
2020-07-16 14:16:58 +08:00
|
|
|
def delete_cookie(self, key, path="/", domain=None, samesite=None):
|
|
|
|
# Browsers can ignore the Set-Cookie header if the cookie doesn't use
|
|
|
|
# the secure flag and:
|
|
|
|
# - the cookie name starts with "__Host-" or "__Secure-", or
|
|
|
|
# - the samesite is "none".
|
|
|
|
secure = key.startswith(("__Secure-", "__Host-")) or (
|
|
|
|
samesite and samesite.lower() == "none"
|
|
|
|
)
|
2018-01-05 01:53:35 +08:00
|
|
|
self.set_cookie(
|
|
|
|
key,
|
|
|
|
max_age=0,
|
|
|
|
path=path,
|
|
|
|
domain=domain,
|
|
|
|
secure=secure,
|
2020-07-16 14:16:58 +08:00
|
|
|
expires="Thu, 01 Jan 1970 00:00:00 GMT",
|
|
|
|
samesite=samesite,
|
2018-01-05 01:53:35 +08:00
|
|
|
)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
# Common methods used by subclasses
|
|
|
|
|
|
|
|
def make_bytes(self, value):
|
|
|
|
"""Turn a value into a bytestring encoded in the output charset."""
|
2012-10-25 05:41:45 +08:00
|
|
|
# Per PEP 3333, this response body must be bytes. To avoid returning
|
|
|
|
# an instance of a subclass, this function returns `bytes(value)`.
|
|
|
|
# This doesn't make a copy when `value` already contains bytes.
|
|
|
|
|
|
|
|
# Handle string types -- we can't rely on force_bytes here because:
|
2016-12-29 23:27:49 +08:00
|
|
|
# - Python attempts str conversion first
|
2012-10-25 05:41:45 +08:00
|
|
|
# - when self._charset != 'utf-8' it re-encodes the content
|
2019-03-27 12:40:10 +08:00
|
|
|
if isinstance(value, (bytes, memoryview)):
|
2012-10-25 05:41:45 +08:00
|
|
|
return bytes(value)
|
2016-12-29 23:27:49 +08:00
|
|
|
if isinstance(value, str):
|
2013-11-17 01:54:12 +08:00
|
|
|
return bytes(value.encode(self.charset))
|
2018-02-07 22:52:50 +08:00
|
|
|
# Handle non-string types.
|
|
|
|
return str(value).encode(self.charset)
|
2012-10-25 05:41:45 +08:00
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
# These methods partially implement the file-like object interface.
|
2018-09-23 09:30:38 +08:00
|
|
|
# See https://docs.python.org/library/io.html#io.IOBase
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
# The WSGI server must call this method upon completion of the request.
|
|
|
|
# See http://blog.dscpl.com.au/2012/10/obligations-for-calling-close-on.html
|
|
|
|
def close(self):
|
2020-02-07 19:55:59 +08:00
|
|
|
for closer in self._resource_closers:
|
2017-09-07 20:16:21 +08:00
|
|
|
try:
|
2020-02-07 19:55:59 +08:00
|
|
|
closer()
|
2017-09-07 20:16:21 +08:00
|
|
|
except Exception:
|
|
|
|
pass
|
2020-02-07 19:55:59 +08:00
|
|
|
# Free resources that were still referenced.
|
|
|
|
self._resource_closers.clear()
|
2014-04-14 23:58:59 +08:00
|
|
|
self.closed = True
|
2012-12-30 22:19:22 +08:00
|
|
|
signals.request_finished.send(sender=self._handler_class)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def write(self, content):
|
2019-01-28 23:01:35 +08:00
|
|
|
raise OSError("This %s instance is not writable" % self.__class__.__name__)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def flush(self):
|
|
|
|
pass
|
|
|
|
|
|
|
|
def tell(self):
|
2019-01-28 23:01:35 +08:00
|
|
|
raise OSError(
|
|
|
|
"This %s instance cannot tell its position" % self.__class__.__name__
|
|
|
|
)
|
2014-04-14 23:58:59 +08:00
|
|
|
|
|
|
|
# These methods partially implement a stream-like object interface.
|
|
|
|
# See https://docs.python.org/library/io.html#io.IOBase
|
|
|
|
|
2015-10-21 05:23:58 +08:00
|
|
|
def readable(self):
|
|
|
|
return False
|
|
|
|
|
|
|
|
def seekable(self):
|
|
|
|
return False
|
|
|
|
|
2014-04-14 23:58:59 +08:00
|
|
|
def writable(self):
|
|
|
|
return False
|
|
|
|
|
|
|
|
def writelines(self, lines):
|
2019-01-28 23:01:35 +08:00
|
|
|
raise OSError("This %s instance is not writable" % self.__class__.__name__)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
|
|
|
|
class HttpResponse(HttpResponseBase):
|
|
|
|
"""
|
|
|
|
An HTTP response class with a string as content.
|
|
|
|
|
2020-12-08 19:18:42 +08:00
|
|
|
This content can be read, appended to, or replaced.
|
2012-10-22 02:12:59 +08:00
|
|
|
"""
|
|
|
|
|
|
|
|
streaming = False
|
2022-06-17 00:04:13 +08:00
|
|
|
non_picklable_attrs = frozenset(
|
|
|
|
[
|
|
|
|
"resolver_match",
|
|
|
|
# Non-picklable attributes added by test clients.
|
|
|
|
"client",
|
|
|
|
"context",
|
|
|
|
"json",
|
|
|
|
"templates",
|
|
|
|
]
|
|
|
|
)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2013-08-25 00:08:05 +08:00
|
|
|
def __init__(self, content=b"", *args, **kwargs):
|
2017-01-21 21:13:44 +08:00
|
|
|
super().__init__(*args, **kwargs)
|
2012-10-22 02:12:59 +08:00
|
|
|
# Content is a bytestring. See the `content` property methods.
|
|
|
|
self.content = content
|
|
|
|
|
2022-06-17 00:04:13 +08:00
|
|
|
def __getstate__(self):
|
|
|
|
obj_dict = self.__dict__.copy()
|
|
|
|
for attr in self.non_picklable_attrs:
|
|
|
|
if attr in obj_dict:
|
|
|
|
del obj_dict[attr]
|
|
|
|
return obj_dict
|
|
|
|
|
2015-07-13 22:32:09 +08:00
|
|
|
def __repr__(self):
|
2016-12-27 12:29:31 +08:00
|
|
|
return "<%(cls)s status_code=%(status_code)d%(content_type)s>" % {
|
2015-07-13 22:32:09 +08:00
|
|
|
"cls": self.__class__.__name__,
|
|
|
|
"status_code": self.status_code,
|
2016-12-27 12:29:31 +08:00
|
|
|
"content_type": self._content_type_for_repr,
|
2015-07-13 22:32:09 +08:00
|
|
|
}
|
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
def serialize(self):
|
|
|
|
"""Full HTTP message, including headers, as a bytestring."""
|
|
|
|
return self.serialize_headers() + b"\r\n\r\n" + self.content
|
|
|
|
|
2016-12-01 18:38:01 +08:00
|
|
|
__bytes__ = serialize
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
@property
|
|
|
|
def content(self):
|
2013-11-24 00:03:43 +08:00
|
|
|
return b"".join(self._container)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
@content.setter
|
|
|
|
def content(self, value):
|
2013-11-24 00:03:43 +08:00
|
|
|
# Consume iterators upon assignment to allow repeated iteration.
|
2020-11-06 19:34:50 +08:00
|
|
|
if hasattr(value, "__iter__") and not isinstance(
|
|
|
|
value, (bytes, memoryview, str)
|
|
|
|
):
|
2015-11-12 03:17:32 +08:00
|
|
|
content = b"".join(self.make_bytes(chunk) for chunk in value)
|
2012-10-22 02:12:59 +08:00
|
|
|
if hasattr(value, "close"):
|
2017-09-07 20:16:21 +08:00
|
|
|
try:
|
2015-11-12 03:17:32 +08:00
|
|
|
value.close()
|
2017-09-07 20:16:21 +08:00
|
|
|
except Exception:
|
|
|
|
pass
|
2013-11-24 00:03:43 +08:00
|
|
|
else:
|
2015-11-12 03:17:32 +08:00
|
|
|
content = self.make_bytes(value)
|
2013-11-24 00:03:43 +08:00
|
|
|
# Create a list of properly encoded bytestrings to support write().
|
2015-11-12 03:17:32 +08:00
|
|
|
self._container = [content]
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def __iter__(self):
|
2013-11-24 00:03:43 +08:00
|
|
|
return iter(self._container)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def write(self, content):
|
2013-11-24 00:03:43 +08:00
|
|
|
self._container.append(self.make_bytes(content))
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
def tell(self):
|
2012-10-24 17:33:56 +08:00
|
|
|
return len(self.content)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2014-04-14 23:58:59 +08:00
|
|
|
def getvalue(self):
|
|
|
|
return self.content
|
|
|
|
|
|
|
|
def writable(self):
|
|
|
|
return True
|
|
|
|
|
|
|
|
def writelines(self, lines):
|
|
|
|
for line in lines:
|
|
|
|
self.write(line)
|
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
class StreamingHttpResponse(HttpResponseBase):
|
|
|
|
"""
|
|
|
|
A streaming HTTP response class with an iterator as content.
|
|
|
|
|
|
|
|
This should only be iterated once, when the response is streamed to the
|
|
|
|
client. However, it can be appended to or replaced with a new iterator
|
|
|
|
that wraps the original content (or yields entirely new content).
|
|
|
|
"""
|
|
|
|
|
|
|
|
streaming = True
|
|
|
|
|
|
|
|
def __init__(self, streaming_content=(), *args, **kwargs):
|
2017-01-21 21:13:44 +08:00
|
|
|
super().__init__(*args, **kwargs)
|
2012-10-22 02:12:59 +08:00
|
|
|
# `streaming_content` should be an iterable of bytestrings.
|
|
|
|
# See the `streaming_content` property methods.
|
|
|
|
self.streaming_content = streaming_content
|
|
|
|
|
2021-06-17 19:04:04 +08:00
|
|
|
def __repr__(self):
|
|
|
|
return "<%(cls)s status_code=%(status_code)d%(content_type)s>" % {
|
|
|
|
"cls": self.__class__.__qualname__,
|
|
|
|
"status_code": self.status_code,
|
|
|
|
"content_type": self._content_type_for_repr,
|
|
|
|
}
|
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
@property
|
|
|
|
def content(self):
|
2016-03-29 06:33:29 +08:00
|
|
|
raise AttributeError(
|
|
|
|
"This %s instance has no `content` attribute. Use "
|
|
|
|
"`streaming_content` instead." % self.__class__.__name__
|
|
|
|
)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
@property
|
|
|
|
def streaming_content(self):
|
2012-10-25 05:41:45 +08:00
|
|
|
return map(self.make_bytes, self._iterator)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
@streaming_content.setter
|
|
|
|
def streaming_content(self, value):
|
2015-01-04 01:06:24 +08:00
|
|
|
self._set_streaming_content(value)
|
|
|
|
|
|
|
|
def _set_streaming_content(self, value):
|
2012-10-22 02:12:59 +08:00
|
|
|
# Ensure we can never iterate on "value" more than once.
|
|
|
|
self._iterator = iter(value)
|
|
|
|
if hasattr(value, "close"):
|
2020-02-07 19:55:59 +08:00
|
|
|
self._resource_closers.append(value.close)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2013-11-24 00:03:43 +08:00
|
|
|
def __iter__(self):
|
|
|
|
return self.streaming_content
|
|
|
|
|
2014-04-14 23:58:59 +08:00
|
|
|
def getvalue(self):
|
|
|
|
return b"".join(self.streaming_content)
|
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2015-01-04 01:06:24 +08:00
|
|
|
class FileResponse(StreamingHttpResponse):
|
|
|
|
"""
|
|
|
|
A streaming HTTP response class optimized for files.
|
|
|
|
"""
|
2022-02-04 03:24:19 +08:00
|
|
|
|
2015-01-04 01:06:24 +08:00
|
|
|
block_size = 4096
|
|
|
|
|
2018-05-16 00:12:11 +08:00
|
|
|
def __init__(self, *args, as_attachment=False, filename="", **kwargs):
|
|
|
|
self.as_attachment = as_attachment
|
|
|
|
self.filename = filename
|
2021-10-15 13:29:55 +08:00
|
|
|
self._no_explicit_content_type = (
|
|
|
|
"content_type" not in kwargs or kwargs["content_type"] is None
|
2022-02-04 03:24:19 +08:00
|
|
|
)
|
2018-05-16 00:12:11 +08:00
|
|
|
super().__init__(*args, **kwargs)
|
|
|
|
|
2015-01-04 01:06:24 +08:00
|
|
|
def _set_streaming_content(self, value):
|
2018-05-16 00:12:11 +08:00
|
|
|
if not hasattr(value, "read"):
|
2015-01-04 01:06:24 +08:00
|
|
|
self.file_to_stream = None
|
2018-05-16 00:12:11 +08:00
|
|
|
return super()._set_streaming_content(value)
|
|
|
|
|
|
|
|
self.file_to_stream = filelike = value
|
|
|
|
if hasattr(filelike, "close"):
|
2020-02-07 19:55:59 +08:00
|
|
|
self._resource_closers.append(filelike.close)
|
2018-05-16 00:12:11 +08:00
|
|
|
value = iter(lambda: filelike.read(self.block_size), b"")
|
|
|
|
self.set_headers(filelike)
|
2017-01-21 21:13:44 +08:00
|
|
|
super()._set_streaming_content(value)
|
2015-01-04 01:06:24 +08:00
|
|
|
|
2018-05-16 00:12:11 +08:00
|
|
|
def set_headers(self, filelike):
|
|
|
|
"""
|
|
|
|
Set some common response headers (Content-Length, Content-Type, and
|
|
|
|
Content-Disposition) based on the `filelike` response content.
|
|
|
|
"""
|
2021-10-14 17:41:10 +08:00
|
|
|
filename = getattr(filelike, "name", "")
|
|
|
|
filename = filename if isinstance(filename, str) else ""
|
|
|
|
seekable = hasattr(filelike, "seek") and (
|
|
|
|
not hasattr(filelike, "seekable") or filelike.seekable()
|
2022-02-04 03:24:19 +08:00
|
|
|
)
|
2021-10-14 17:41:10 +08:00
|
|
|
if hasattr(filelike, "tell"):
|
|
|
|
if seekable:
|
|
|
|
initial_position = filelike.tell()
|
|
|
|
filelike.seek(0, io.SEEK_END)
|
|
|
|
self.headers["Content-Length"] = filelike.tell() - initial_position
|
|
|
|
filelike.seek(initial_position)
|
|
|
|
elif hasattr(filelike, "getbuffer"):
|
|
|
|
self.headers["Content-Length"] = (
|
|
|
|
filelike.getbuffer().nbytes - filelike.tell()
|
2022-02-04 03:24:19 +08:00
|
|
|
)
|
2021-10-14 17:41:10 +08:00
|
|
|
elif os.path.exists(filename):
|
|
|
|
self.headers["Content-Length"] = (
|
|
|
|
os.path.getsize(filename) - filelike.tell()
|
2022-02-04 03:24:19 +08:00
|
|
|
)
|
2021-10-14 17:41:10 +08:00
|
|
|
elif seekable:
|
|
|
|
self.headers["Content-Length"] = sum(
|
|
|
|
iter(lambda: len(filelike.read(self.block_size)), 0)
|
2022-02-04 03:24:19 +08:00
|
|
|
)
|
2021-10-14 17:41:10 +08:00
|
|
|
filelike.seek(-int(self.headers["Content-Length"]), io.SEEK_END)
|
|
|
|
|
|
|
|
filename = os.path.basename(self.filename or filename)
|
2021-10-15 13:29:55 +08:00
|
|
|
if self._no_explicit_content_type:
|
2018-05-16 00:12:11 +08:00
|
|
|
if filename:
|
|
|
|
content_type, encoding = mimetypes.guess_type(filename)
|
|
|
|
# Encoding isn't set to prevent browsers from automatically
|
|
|
|
# uncompressing files.
|
2021-10-14 17:41:10 +08:00
|
|
|
content_type = {
|
|
|
|
"bzip2": "application/x-bzip",
|
|
|
|
"gzip": "application/gzip",
|
|
|
|
"xz": "application/x-xz",
|
|
|
|
}.get(encoding, content_type)
|
2020-07-14 19:32:24 +08:00
|
|
|
self.headers["Content-Type"] = (
|
|
|
|
content_type or "application/octet-stream"
|
2022-02-04 03:24:19 +08:00
|
|
|
)
|
2018-05-16 00:12:11 +08:00
|
|
|
else:
|
2020-07-14 19:32:24 +08:00
|
|
|
self.headers["Content-Type"] = "application/octet-stream"
|
2018-05-16 00:12:11 +08:00
|
|
|
|
2019-05-17 18:07:27 +08:00
|
|
|
if filename:
|
|
|
|
disposition = "attachment" if self.as_attachment else "inline"
|
|
|
|
try:
|
|
|
|
filename.encode("ascii")
|
2022-07-20 18:14:45 +08:00
|
|
|
file_expr = 'filename="{}"'.format(
|
|
|
|
filename.replace("\\", "\\\\").replace('"', r"\"")
|
|
|
|
)
|
2019-05-17 18:07:27 +08:00
|
|
|
except UnicodeEncodeError:
|
|
|
|
file_expr = "filename*=utf-8''{}".format(quote(filename))
|
2020-07-14 19:32:24 +08:00
|
|
|
self.headers["Content-Disposition"] = "{}; {}".format(
|
|
|
|
disposition, file_expr
|
|
|
|
)
|
2019-05-17 18:07:27 +08:00
|
|
|
elif self.as_attachment:
|
2020-07-14 19:32:24 +08:00
|
|
|
self.headers["Content-Disposition"] = "attachment"
|
2018-05-16 00:12:11 +08:00
|
|
|
|
2015-01-04 01:06:24 +08:00
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
class HttpResponseRedirectBase(HttpResponse):
|
|
|
|
allowed_schemes = ["http", "https", "ftp"]
|
|
|
|
|
|
|
|
def __init__(self, redirect_to, *args, **kwargs):
|
2017-01-21 21:13:44 +08:00
|
|
|
super().__init__(*args, **kwargs)
|
2016-12-17 23:34:32 +08:00
|
|
|
self["Location"] = iri_to_uri(redirect_to)
|
2017-04-22 01:52:26 +08:00
|
|
|
parsed = urlparse(str(redirect_to))
|
2012-10-22 02:12:59 +08:00
|
|
|
if parsed.scheme and parsed.scheme not in self.allowed_schemes:
|
2013-05-16 07:14:28 +08:00
|
|
|
raise DisallowedRedirect(
|
|
|
|
"Unsafe redirect to URL with protocol '%s'" % parsed.scheme
|
|
|
|
)
|
2012-10-22 02:12:59 +08:00
|
|
|
|
2013-02-13 16:55:43 +08:00
|
|
|
url = property(lambda self: self["Location"])
|
|
|
|
|
2015-07-13 22:32:09 +08:00
|
|
|
def __repr__(self):
|
2016-12-27 12:29:31 +08:00
|
|
|
return (
|
|
|
|
'<%(cls)s status_code=%(status_code)d%(content_type)s, url="%(url)s">'
|
|
|
|
% {
|
2015-07-13 22:32:09 +08:00
|
|
|
"cls": self.__class__.__name__,
|
|
|
|
"status_code": self.status_code,
|
2016-12-27 12:29:31 +08:00
|
|
|
"content_type": self._content_type_for_repr,
|
2015-07-13 22:32:09 +08:00
|
|
|
"url": self.url,
|
|
|
|
}
|
2022-02-04 03:24:19 +08:00
|
|
|
)
|
2015-07-13 22:32:09 +08:00
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
class HttpResponseRedirect(HttpResponseRedirectBase):
|
|
|
|
status_code = 302
|
|
|
|
|
|
|
|
|
|
|
|
class HttpResponsePermanentRedirect(HttpResponseRedirectBase):
|
|
|
|
status_code = 301
|
|
|
|
|
|
|
|
|
|
|
|
class HttpResponseNotModified(HttpResponse):
|
|
|
|
status_code = 304
|
|
|
|
|
|
|
|
def __init__(self, *args, **kwargs):
|
2017-01-21 21:13:44 +08:00
|
|
|
super().__init__(*args, **kwargs)
|
2012-10-22 02:12:59 +08:00
|
|
|
del self["content-type"]
|
|
|
|
|
|
|
|
@HttpResponse.content.setter
|
|
|
|
def content(self, value):
|
|
|
|
if value:
|
|
|
|
raise AttributeError(
|
|
|
|
"You cannot set content to a 304 (Not Modified) response"
|
|
|
|
)
|
|
|
|
self._container = []
|
|
|
|
|
|
|
|
|
|
|
|
class HttpResponseBadRequest(HttpResponse):
|
|
|
|
status_code = 400
|
|
|
|
|
|
|
|
|
|
|
|
class HttpResponseNotFound(HttpResponse):
|
|
|
|
status_code = 404
|
|
|
|
|
|
|
|
|
|
|
|
class HttpResponseForbidden(HttpResponse):
|
|
|
|
status_code = 403
|
|
|
|
|
|
|
|
|
|
|
|
class HttpResponseNotAllowed(HttpResponse):
|
|
|
|
status_code = 405
|
|
|
|
|
|
|
|
def __init__(self, permitted_methods, *args, **kwargs):
|
2017-01-21 21:13:44 +08:00
|
|
|
super().__init__(*args, **kwargs)
|
2012-10-22 02:12:59 +08:00
|
|
|
self["Allow"] = ", ".join(permitted_methods)
|
|
|
|
|
2015-07-13 22:32:09 +08:00
|
|
|
def __repr__(self):
|
2016-12-27 12:29:31 +08:00
|
|
|
return "<%(cls)s [%(methods)s] status_code=%(status_code)d%(content_type)s>" % {
|
2015-07-13 22:32:09 +08:00
|
|
|
"cls": self.__class__.__name__,
|
|
|
|
"status_code": self.status_code,
|
2016-12-27 12:29:31 +08:00
|
|
|
"content_type": self._content_type_for_repr,
|
2015-07-13 22:32:09 +08:00
|
|
|
"methods": self["Allow"],
|
|
|
|
}
|
|
|
|
|
2012-10-22 02:12:59 +08:00
|
|
|
|
|
|
|
class HttpResponseGone(HttpResponse):
|
|
|
|
status_code = 410
|
|
|
|
|
|
|
|
|
|
|
|
class HttpResponseServerError(HttpResponse):
|
|
|
|
status_code = 500
|
|
|
|
|
|
|
|
|
|
|
|
class Http404(Exception):
|
|
|
|
pass
|
2014-02-15 01:28:51 +08:00
|
|
|
|
|
|
|
|
|
|
|
class JsonResponse(HttpResponse):
|
|
|
|
"""
|
|
|
|
An HTTP response class that consumes data to be serialized to JSON.
|
|
|
|
|
|
|
|
:param data: Data to be dumped into json. By default only ``dict`` objects
|
2021-04-30 02:29:08 +08:00
|
|
|
are allowed to be passed due to a security flaw before ECMAScript 5. See
|
2014-02-15 01:28:51 +08:00
|
|
|
the ``safe`` parameter for more information.
|
2017-11-07 11:11:39 +08:00
|
|
|
:param encoder: Should be a json encoder class. Defaults to
|
2014-02-15 01:28:51 +08:00
|
|
|
``django.core.serializers.json.DjangoJSONEncoder``.
|
|
|
|
:param safe: Controls if only ``dict`` objects may be serialized. Defaults
|
|
|
|
to ``True``.
|
2015-08-12 08:53:26 +08:00
|
|
|
:param json_dumps_params: A dictionary of kwargs passed to json.dumps().
|
2014-02-15 01:28:51 +08:00
|
|
|
"""
|
|
|
|
|
2015-08-12 08:53:26 +08:00
|
|
|
def __init__(
|
|
|
|
self,
|
|
|
|
data,
|
|
|
|
encoder=DjangoJSONEncoder,
|
|
|
|
safe=True,
|
|
|
|
json_dumps_params=None,
|
|
|
|
**kwargs,
|
|
|
|
):
|
2014-02-15 01:28:51 +08:00
|
|
|
if safe and not isinstance(data, dict):
|
2016-03-29 06:33:29 +08:00
|
|
|
raise TypeError(
|
|
|
|
"In order to allow non-dict objects to be serialized set the "
|
|
|
|
"safe parameter to False."
|
|
|
|
)
|
2015-08-12 08:53:26 +08:00
|
|
|
if json_dumps_params is None:
|
|
|
|
json_dumps_params = {}
|
2014-02-15 01:28:51 +08:00
|
|
|
kwargs.setdefault("content_type", "application/json")
|
2015-08-12 08:53:26 +08:00
|
|
|
data = json.dumps(data, cls=encoder, **json_dumps_params)
|
2017-01-21 21:13:44 +08:00
|
|
|
super().__init__(content=data, **kwargs)
|