|
Server : Apache System : Linux iad1-shared-b8-43 6.6.49-grsec-jammy+ #10 SMP Thu Sep 12 23:23:08 UTC 2024 x86_64 User : dh_edsupp ( 6597262) PHP Version : 8.2.26 Disable Function : NONE Directory : /lib/python3/dist-packages/trac/web/__pycache__/ |
Upload File : |
o
�����k�`-b����������������������@���s����d�dl�Z�d�dlmZmZmZmZ�d�dlmZmZm Z m
Z
m
Z
�d�dl
m
Z
mZmZmZmZ�d�dlmZmZmZmZmZmZ�d�dlmZ�d�dlm
Z
�d�dl
m
Z
m Z �d Z d
Z!d
Z"G�d
d
��d
e#�Z$G�dd��de$�Z%G�dd��de%�Z&G�dd��de�Z'ddd�Z(dS�)�����N)�AdminCommandError�IAdminCommandProvider�console_date_format�get_console_locale)� Component�ExtensionPoint� TracError�TracValueError�
implements)�as_bool�as_float�as_int�
hex_entropy�lazy)�get_datetime_format_hint�
format_date�
parse_date�time_now�
to_datetime�
to_timestamp)�
print_table)�_)�IRequestHandler�is_valid_default_handler�Q�i��v��
trac_sessionc�����������������������sT���e�Zd�Z��fdd�Z��fdd�Zddd�Zddd �Zdd
d
�Zd��fd
d
� Z���Z S�)�
SessionDictc��������������������s(���t���j|i�|���d|�_d|�_d�|�_d�S�)NFr���)�super�__init__�
authenticated�
last_visit�sid)�self�args�kwargs�� __class__���2/usr/lib/python3/dist-packages/trac/web/session.pyr
���/���s���
zSessionDict.__init__c��������������������s���t����|t|���d�S��N)r
����
__setitem__�str)r"����key�valuer%���r'���r(���r*���5���s���zSessionDict.__setitem__Nc�����������������C���s���||�vr|S�t�|�|�|�S�)a���Return the value as a boolean. Return `default` if
if an exception is raised while converting the value to a
boolean.
:param key: the name of the session attribute
:keyword default: the value to return if the parameter is not
specified or an exception occurs converting
the value to a boolean.
:since: 1.2
)r
���)r"���r,����defaultr'���r'���r(���r
���8���s���
zSessionDict.as_boolc�����������������C����
���||�vr|S�t�|�|�|||�S�)a��Return the value as an integer. Return `default` if
if an exception is raised while converting the value to an
integer.
:param key: the name of the session attribute
:keyword default: the value to return if the parameter does
not exist or an exception occurs converting
the value to an integer.
:keyword min: lower bound to which the value is limited
:keyword max: upper bound to which the value is limited
:since: 1.2
)r
����r"���r,���r.����min�maxr'���r'���r(���r
���H�������zSessionDict.as_intc�����������������C���r/���)a��Return the value as a float. Return `default` if
if an exception is raised while converting the value to a
float.
:param key: the name of the session attribute
:keyword default: the value to return if the parameter does
not exist or an exception occurs converting
the value to a float.
:keyword min: lower bound to which the value is limited
:keyword max: upper bound to which the value is limited
:since: 1.3.6
)r
���r0���r'���r'���r(���r
���Z���r3���zSessionDict.as_floatc��������������������sB���t�|�}|durt�|�}||kr|��|d��dS�t���||��dS�)z`Set a variable in the session, or remove it if it's equal to the
default value.
N)r+����popr
���r*���)r"���r,���r-���r.���r%���r'���r(����setl���s���
zSessionDict.setr)���)NNN)
�__name__�
__module__�
__qualname__r
���r*���r
���r
���r
���r5����
__classcell__r'���r'���r%���r(���r
���-���s����
r
���c�����������������������s.���e�Zd�Z��fdd�Zddd�Zdd��Z���ZS�) �DetachedSessionc��������������������s6���t�������||�_d|�_i�|�_|r|�j|dd��d�S�d�S�)NT�r ���)r
���r
����env�_new�_old�
get_session)r"���r<���r!���r%���r'���r(���r
���{���s���
�zDetachedSession.__init__Fc�������������� ���C���s����|�j�j�d|��|�j�j�M}||�_||�_|�����|d|t|�f�D�] \}d|�_t|p*d�|�_ |��
|d|t|�f���|��
��|�_
�nd|�_ d|�_i�|�_
W�d�����d�S�W�d�����d�S�1�s\w���Y��d�S�)Nz
Retrieving session for ID %rz~
SELECT last_visit FROM session
WHERE sid=%s AND authenticated=%s
Fr���z�
SELECT name, value FROM session_attribute
WHERE sid=%s and authenticated=%s
T)
r<����log�debug�db_queryr!���r ����clear�intr=���r ����update�copyr>���)r"���r!���r ����dbr ���r'���r'���r(���r?�������s*���
�
�
�"�zDetachedSession.get_sessionc�������������� ������s���t��j���t�t���}t�����}��s�js|sd�S�d}�jj��}�j}|rX|�_ d�_z
|d�j
�j ��f��W�n ��jj
j
yW����jj
�d�j
��|����Y�W�d�����d�S�w���rw|sr�j�d���d�ksr�j�d���d�krw�j�����j�kr�|s���s�|d�j
f��|d�j
��f��t������_z|�d���fd d
�|D����W�n ��jj
j
y�����jj
�d
�j
��|����Y�W�d�����d�S�w�d
}W�d�����n1�s�w���Y��|�rO|�j �tk�rQ|�_ �jj}|d
kr�||d��nd�}�jj�+}�jj
�d�j
��|d�j �j
��f��|�r
�jj
�d��|d|f��W�d�����n 1��s)w���Y��|�rS�jj�}|d|f��W�d�����d�S�1��sHw���Y��d�S�d�S�d�S�d�S�)NFz{INSERT INTO session (sid, last_visit, authenticated)
VALUES (%s,%s,%s)
zSession %s already exists�name�email�4DELETE FROM session WHERE sid=%s AND authenticated=0zlDELETE FROM session_attribute
WHERE sid=%s AND authenticated=%s
z�
INSERT INTO session_attribute
(sid,authenticated,name,value)
VALUES (%s,%s,%s,%s)
c��������������������s
���g�|�]
\}}�j���||f�qS�r'����r!���)�.0�k�v�r ���r"���r'���r(����
<listcomp>����s�����z(DetachedSession.save.<locals>.<listcomp>z)Attributes for session %s already updatedTr���r���zRefreshing session %szoUPDATE session SET last_visit=%s
WHERE sid=%s AND authenticated=%s
z Purging old, expired, sessions.a��DELETE FROM session_attribute
WHERE authenticated=0 AND sid IN (
SELECT sid FROM session
WHERE authenticated=0 AND last_visit < %s
)
z�
DELETE FROM session
WHERE authenticated=0 AND last_visit < %s
)rD���r ���r����list�itemsr>���r<����db_transactionr=���r ���r!����db_exc�IntegrityErrorr@����warning�rollback�get�
invalidate_known_users_cache�dict�
executemany�UPDATE_INTERVAL�anonymous_session_lifetime�inforA���)r"����nowrR����
session_savedrG����new�lifetime�mintimer'���rO���r(����save����s����
���
��
��
��.�
�8
���
�
�$��zDetachedSession.save�F)r6���r7���r8���r
���r?���rd���r9���r'���r'���r%���r(���r:���y���s����
r:���c�����������������������sT���e�Zd�ZdZ��fdd�Zefdd�Ze�d�Z d��fdd � Z
d
d
��Z
d
d
��Z
���Z
S�)�Sessionz/Basic session handling and per-session storage.c��������������������s����t����|d���||�_|js*t|jvr
td�|�_|�����d�S�|jt�j }|��
|��d�S�t|jv�r:|jt�j }|��
|��|�j
|j
dd��d�S�)N����Tr;���)
r
���r
����req�is_authenticated�
COOKIE_KEY�incookier���r!����
bake_cookier-���r?����promote_session�authname)r"���r<���rh���r!���r%���r'���r(���r
�����s���
zSession.__init__c�����������������C���sp���|�j�sJ�d��|�j�|�jjt<�|�jjpd|�jjt�d<�||�jjt�d<�|�jjr.d|�jjt�d<�d|�jjt�d<�d�S�)NzSession ID not set�/�path�expiresT�secure�httponly)r!���rh���� outcookierj���� base_pathr<����secure_cookies)r"���rq���r'���r'���r(���rl�����s���zSession.bake_cookiez[_A-Za-z0-9]+\ZFc��������������������sx���d}|s|�j��|�sttd���|�jr||�jkrd}t���||��|�jr.t��|�j�t kr.d}|s8|r:|��
���d�S�d�S�d�S�)NF� Session ID must be alphanumeric.T)
�
_valid_sid_re�matchr ���r���r!���r
���r?���r ���r���r\���rl���)r"���r!���r ����refresh_cookier%���r'���r(���r?���"��s���
�zSession.get_sessionc�����������������C���s����|�j�jrJ�d��|sJ�d��||�jkrd�S�|�j�|�s$ttd�td���|�jj�3}|d|f�r:t td|d�td���|�jj
�
d|�j|��|d ||�jf��|d
||�jf��W�d�����n1�s^w���Y��||�_|��
���d�S�)
Nz)Cannot change ID of authenticated sessionzSession ID cannot be emptyrw���zError renaming sessionz$SELECT sid FROM session WHERE sid=%szFSession '%(id)s' already exists. Please choose a different session ID.)�idz
Changing session ID %s to %sz:UPDATE session SET sid=%s WHERE sid=%s AND authenticated=0ziUPDATE session_attribute SET sid=%s
WHERE sid=%s and authenticated=0
)
rh���ri���r!���rx���ry���r ���r���r<���rS���r���r@���rA���rl���)r"����new_sidrG���r'���r'���r(����
change_sid2��s:���
�
�
�����
�
zSession.change_sidc�������������� ���C���s6��|�j�jsJ�d��|�jj�z}dd��|d||�j�jf�D��}t|�dkr.|d|f��|d|f��nQt|�dkrV|d �sU|�jj�d
||�j�j��|d
|�j�j|f��|d
|�j�j|f��n)z|d
|�j�jtt ���f��W�n�|�jj
j
y~���|�jj�
d|�j�j��|�
���Y�nw�W�d����n1�s�w���Y��d|�_||�_|��d ��dS�)z�Promotes an anonymous session to an authenticated session, if there
is no preexisting session data for that user name.
z(Cannot promote session of anonymous userc�����������������S���s���g�|�]\}|�qS�r'���r'���)rL���r ���r'���r'���r(���rP���S��s����z+Session.promote_session.<locals>.<listcomp>z8SELECT authenticated FROM session WHERE sid=%s OR sid=%s����rJ���zkDELETE FROM session_attribute
WHERE sid=%s AND authenticated=0
����r���zCPromoting anonymous session %s to authenticated session for user %sz�UPDATE session SET sid=%s, authenticated=1
WHERE sid=%s AND authenticated=0
zvUPDATE session_attribute SET sid=%s, authenticated=1
WHERE sid=%s
z|INSERT INTO session (sid, last_visit, authenticated)
VALUES (%s, %s, 1)
z+Authenticated session for %s already existsNF)rh���ri���r<���rS���rn����lenr@���rA���rD���r���rT���rU���rV���rW���r=���r!���rl���)r"���r!���rG����authenticated_flagsr'���r'���r(���rm���K��sT���
�
�
��
�
�
���
�
��
�&zSession.promote_sessionre���)r6���r7���r8����__doc__r
���� PURGE_AGErl����re�compilerx���r?���r}���rm���r9���r'���r'���r%���r(���rf�����s����
rf���c�������������������@���s����e�Zd�ZdZee��ee�Zdd��Z e
dd���Z
dd��Z
dd ��Z
d
d
��Zd
d
��Zdd��Zdd��Zdd��Zd
dd�Zdd��Zdd��Zdd
��ZdS�)
�
SessionAdminz2trac-admin command provider for session managementc�����������������c���s������t�t|�j��t�d�d�}ddd|�j|�jfV��dddd�|�jfV��d d
d
|�j|�jfV��d
d
d|�j|�j fV��ddd|�d�|�j
fV��d�S�)N�iso8601)�datetimer����z
session listz[sid[:0|1]] [...]a���List the name and email for the given sids
Specifying the sid 'anonymous' lists all unauthenticated
sessions, and 'authenticated' all authenticated sessions.
'*' lists all sessions, and is the default if no sids are
given.
An sid suffix ':0' operates on an unauthenticated session with
the given sid, and a suffix ':1' on an authenticated session
(the default).z
session addz<sid[:0|1]> [name] [email]a3��Create a session for the given sid
Populates the name and email attributes for the given session.
Adding a suffix ':0' to the sid makes the session
unauthenticated, and a suffix ':1' makes it authenticated (the
default if no suffix is specified).z
session setz0<name|email|default_handler> <sid[:0|1]> <value>z�Set the name or email attribute of the given sid
An sid suffix ':0' operates on an unauthenticated session with
the given sid, and a suffix ':1' on an authenticated session
(the default).zsession deletez<sid[:0|1]> [...]a2��Delete the session of the specified sid
An sid suffix ':0' operates on an unauthenticated session with
the given sid, and a suffix ':1' on an authenticated session
(the default). Specifying the sid 'anonymous' will delete all
anonymous sessions.z
session purgez<age>z�Purge anonymous sessions older than given age or date
Age may be specified as a relative time like "90 days ago", or
as a date in the "%(datetime)s" or "%(iso8601)s" (ISO 8601)
format.)
r���r���r<����_complete_list�_do_list�_do_add�
_complete_set�_do_set�_complete_delete�
_do_delete� _do_purge)r"����hintsr'���r'���r(����get_admin_commands���s4����
�
�
� � � �
�z SessionAdmin.get_admin_commandsc�����������������C���s���t�dd��|�jD���S�)Nc�����������������s���s �����|�]
}t�|�r|jjV��qd�S�r)���)r���r&���r6���)rL����handlerr'���r'���r(���� <genexpr>���s
������z7SessionAdmin._valid_default_handlers.<locals>.<genexpr>)�sorted�request_handlers�r"���r'���r'���r(����_valid_default_handlers���s����z$SessionAdmin._valid_default_handlersc�����������������C���s<���|��d�r
|d�d��dfS�|��d�r|d�d��dfS�|dfS�)Nz:0���r���z:1r���)�endswith)r"���r!���r'���r'���r(����
_split_sid���s
���
zSessionAdmin._split_sidc�����������������C���s���|�j��d�}dd��|D��S�)Nz&SELECT sid, authenticated FROM sessionc�����������������S���s
���g�|�]
\}}d�||f��qS�)z%s:%dr'���)rL���r!����authr'���r'���r(���rP������s���
�z*SessionAdmin._get_sids.<locals>.<listcomp>)r<���rB���)r"����rowsr'���r'���r(���� _get_sids���s���
zSessionAdmin._get_sidsc�����������
������#���s������d|v�pd|v�}d|v�pd|v�}��fdd�|D��}��j��d�}|D�]$\}}}}} }
|r.|r8|r2|s8||f|v�rF||tt|�t�|| |
fV��q"d�S�)N� anonymous�*r ���c��������������������s
���h�|�]
}|d�vr����|��qS�))r����r ���r����)r����)rL���r!���r����r'���r(���� <setcomp>���s
�����z)SessionAdmin._get_list.<locals>.<setcomp>a���
SELECT DISTINCT s.sid, s.authenticated, s.last_visit,
n.value, e.value, h.value
FROM session AS s
LEFT JOIN session_attribute AS n
ON (n.sid=s.sid AND n.authenticated=s.authenticated
AND n.name='name')
LEFT JOIN session_attribute AS e
ON (e.sid=s.sid AND e.authenticated=s.authenticated
AND e.name='email')
LEFT JOIN session_attribute AS h
ON (h.sid=s.sid AND h.authenticated=s.authenticated
AND h.name='default_handler')
ORDER BY s.sid, s.authenticated
)r<���rB���r���r���r���)
r"����sids�all_anon�all_authr����r!���r ���r ���rH���rI���r����r'���r����r(���� _get_list���s$����
�
����zSessionAdmin._get_listc�����������������C���s ���|�����g�d��}t|�t|��S�)N)r����r����r ����r����r5����r"���r#����all_sidsr'���r'���r(���r�������s���zSessionAdmin._complete_listc�����������������C���s,���t�|�dkr
ddgS�t�|�dkr|����S�d�S�)Nr���rH���rI���r~���)r����r����)r"���r#���r'���r'���r(���r�������s
���
�zSessionAdmin._complete_setc�����������������C���s
���|�����dg�}t|�t|��S�)Nr����r����r����r'���r'���r(���r�������s���z
SessionAdmin._complete_deletec�����������������G���sF���|sdg}t�d�t�d�t�d�t�d�t�d�t�d�f}t|��|�|��d�S�)Nr�����SID�Authz
Last Visit�Name�EmailzDefault Handler)r���r���r����)r"���r�����headersr'���r'���r(���r�������s
���
�zSessionAdmin._do_listNc�������������� ���C���s����|���|�\}}|�jj�9}z
|d||tt���f��W�n�ty(���ttd|d���w�|r3|d|||f��|r=|d|||f��W�d�����n1�sGw���Y��|�j����d�S�)Nz'INSERT INTO session VALUES (%s, %s, %s)z Session '%(sid)s' already existsrK���z6INSERT INTO session_attribute VALUES (%s,%s,'name',%s)z7INSERT INTO session_attribute VALUES (%s,%s,'email',%s)) r����r<���rS���rD���r���� Exceptionr���r���rY���)r"���r!���rH���rI���r ���rG���r'���r'���r(���r�������s,���
�
�����
�
zSessionAdmin._do_addc�����������������C���s����|dvr
t�td|d���|dkr |r ||�jvr t�td|d���|��|�\}}|�jj�*}|d||f�s:t�td|d ���|d
|||f��|rM|d
||||f��W�d�����n1�sWw���Y��|�j����d�S�)
N)rH���rI����default_handlerz
Invalid attribute '%(attr)s')�attrr����z!Invalid default_handler '%(val)s')�valzRSELECT sid FROM session
WHERE sid=%s AND authenticated=%szSession '%(sid)s' not foundrK���z}
DELETE FROM session_attribute
WHERE sid=%s AND authenticated=%s AND name=%s
z5INSERT INTO session_attribute VALUES (%s, %s, %s, %s))r���r���r����r����r<���rS���rY���)r"���r����r!���r����r ���rG���r'���r'���r(���r������s6�����
���
��
�
zSessionAdmin._do_setc�����������������G���s����|�j�j�/}|D�]$}|��|�\}}|dkr
|d��|d��q|d||f��|d||f��qW�d�����n1�s6w���Y��|�j�����d�S�)Nr����z)DELETE FROM session WHERE authenticated=0z3DELETE FROM session_attribute WHERE authenticated=0z
DELETE FROM session
WHERE sid=%s AND authenticated=%s
z�
DELETE FROM session_attribute
WHERE sid=%s AND authenticated=%s
)r<���rS���r����rY���)r"���r����rG���r!���r ���r'���r'���r(���r����'��s
���
���
�zSessionAdmin._do_deletec�����������������C���s^���t�|dt|�j�d�}|�jj�}t|�}|d|f��|d��W�d�����d�S�1�s(w���Y��d�S�)Nr����)�hint�localezm
DELETE FROM session
WHERE authenticated=0 AND last_visit<%s
a+��
DELETE FROM session_attribute
WHERE authenticated=0
AND NOT EXISTS (SELECT * FROM session AS s
WHERE s.sid=session_attribute.sid
AND s.authenticated=0)
)r���r���r<���rS���r���)r"����age�whenrG����tsr'���r'���r(���r����9��s����
�
"�zSessionAdmin._do_purge)NN)r6���r7���r8���r����r
���r���r���r���r����r����r���r����r����r����r����r����r����r����r����r����r����r����r����r'���r'���r'���r(���r����~��s$����5
r����c�����������������C���s.���|���d||rdnd|f�D�]}|d���S�|S�)Nzw
SELECT value FROM session_attribute
WHERE sid=%s AND authenticated=%s AND name=%s
r���r���)rB���)r<���r!���r ���rH���r.����rowr'���r'���r(����get_session_attributeK��s
����
r����r)���))r�����trac.admin.apir���r���r���r���� trac.corer���r���r���r ���r
���� trac.utilr
���r
���r
���r���r����trac.util.datefmtr���r���r���r���r���r����trac.util.textr����trac.util.translationr����
trac.web.apir���r���r\���r����rj���rZ���r
���r:���rf���r����r����r'���r'���r'���r(����<module>���s$���
L�
z�N