[irc/quakenet/qwebirc.git] / qwebirc / engines / ajaxengine.py

from twisted.web import resource, server, static, error as http_error
from twisted.names import client
from twisted.internet import reactor, error
from authgateengine import login_optional, getSessionData
import simplejson, md5, sys, os, time, config, qwebirc.config_options as config_options, traceback, socket
import qwebirc.ircclient as ircclient
from adminengine import AdminEngineAction
from qwebirc.util import HitCounter
import qwebirc.dns as qdns
Sessions = {}

def get_session_id():
  return md5.md5(os.urandom(16)).hexdigest()

class BufferOverflowException(Exception):
  pass

class AJAXException(Exception):
  pass
  
class IDGenerationException(Exception):
  pass

class PassthruException(Exception):
  pass
  
NOT_DONE_YET = None

def jsondump(fn):
  def decorator(*args, **kwargs):
    try:
      x = fn(*args, **kwargs)
      if x is None:
        return server.NOT_DONE_YET
      x = (True, x)
    except AJAXException, e:
      x = (False, e[0])
    except PassthruException, e:
      return str(e)
      
    return simplejson.dumps(x)
  return decorator

def cleanupSession(id):
  try:
    del Sessions[id]
  except KeyError:
    pass

class IRCSession:
  def __init__(self, id):
    self.id = id
    self.subscriptions = []
    self.buffer = []
    self.buflen = 0
    self.throttle = 0
    self.schedule = None
    self.closed = False
    self.cleanupschedule = None

  def subscribe(self, channel, notifier):
    timeout_entry = reactor.callLater(config.HTTP_AJAX_REQUEST_TIMEOUT, self.timeout, channel)
    def cancel_timeout(result):
      if channel in self.subscriptions:
        self.subscriptions.remove(channel)
      try:
        timeout_entry.cancel()
      except error.AlreadyCalled:
        pass
    notifier.addCallbacks(cancel_timeout, cancel_timeout)
    
    if len(self.subscriptions) >= config.MAXSUBSCRIPTIONS:
      self.subscriptions.pop(0).close()

    self.subscriptions.append(channel)
    self.flush()
      
  def timeout(self, channel):
    if self.schedule:
      return
      
    channel.write(simplejson.dumps([]))
    if channel in self.subscriptions:
      self.subscriptions.remove(channel)
      
  def flush(self, scheduled=False):
    if scheduled:
      self.schedule = None
      
    if not self.buffer or not self.subscriptions:
      return
        
    t = time.time()
    
    if t < self.throttle:
      if not self.schedule:
        self.schedule = reactor.callLater(self.throttle - t, self.flush, True)
      return
    else:
      # process the rest of the packet
      if not scheduled:
        if not self.schedule:
          self.schedule = reactor.callLater(0, self.flush, True)
        return
        
    self.throttle = t + config.UPDATE_FREQ

    encdata = simplejson.dumps(self.buffer)
    self.buffer = []
    self.buflen = 0

    newsubs = []
    for x in self.subscriptions:
      if x.write(encdata):
        newsubs.append(x)

    self.subscriptions = newsubs
    if self.closed and not self.subscriptions:
      cleanupSession(self.id)

  def event(self, data):
    newbuflen = self.buflen + len(data)
    if newbuflen > config.MAXBUFLEN:
      self.buffer = []
      self.client.error("Buffer overflow.")
      return

    self.buffer.append(data)
    self.buflen = newbuflen
    self.flush()
    
  def push(self, data):
    if not self.closed:
      self.client.write(data)

  def disconnect(self):
    # keep the session hanging around for a few seconds so the
    # client has a chance to see what the issue was
    self.closed = True

    reactor.callLater(5, cleanupSession, self.id)

# DANGER! Breach of encapsulation!
def connect_notice(line):
  return "c", "NOTICE", "", ("AUTH", "*** (qwebirc) %s" % line)

class Channel:
  def __init__(self, request):
    self.request = request
  
class SingleUseChannel(Channel):
  def write(self, data):
    self.request.write(data)
    self.request.finish()
    return False
    
  def close(self):
    self.request.finish()
    
class MultipleUseChannel(Channel):
  def write(self, data):
    self.request.write(data)
    return True

class AJAXEngine(resource.Resource):
  isLeaf = True
  
  def __init__(self, prefix):
    self.prefix = prefix
    self.__connect_hit = HitCounter()
    self.__total_hit = HitCounter()
    
  @jsondump
  def render_POST(self, request):
    path = request.path[len(self.prefix):]
    if path[0] == "/":
      handler = self.COMMANDS.get(path[1:])
      if handler is not None:
        return handler(self, request)
        
    raise PassthruException, http_error.NoResource().render(request)

  def newConnection(self, request):
    ticket = login_optional(request)
    
    _, ip, port = request.transport.getPeer()

    nick = request.args.get("nick")
    if not nick:
      raise AJAXException, "Nickname not supplied."
    nick = ircclient.irc_decode(nick[0])

    password = request.args.get("password")
    if password is not None:
      password = ircclient.irc_decode(password[0])
      
    for i in xrange(10):
      id = get_session_id()
      if not Sessions.get(id):
        break
    else:
      raise IDGenerationException()

    session = IRCSession(id)

    qticket = getSessionData(request).get("qticket")
    if qticket is None:
      perform = None
    else:
      service_mask = config.AUTH_SERVICE
      msg_mask = service_mask.split("!")[0] + "@" + service_mask.split("@", 1)[1]
      perform = ["PRIVMSG %s :TICKETAUTH %s" % (msg_mask, qticket)]

    ident, realname = config.IDENT, config.REALNAME
    if ident is config_options.IDENT_HEX or ident is None: # latter is legacy
      ident = socket.inet_aton(ip).encode("hex")
    elif ident is config_options.IDENT_NICKNAME:
      ident = nick

    self.__connect_hit()

    def proceed(hostname):
      kwargs = dict(nick=nick, ident=ident, ip=ip, realname=realname, perform=perform, hostname=hostname)
      if password is not None:
        kwargs["password"] = password
        
      client = ircclient.createIRC(session, **kwargs)
      session.client = client

    if not hasattr(config, "WEBIRC_MODE") or config.WEBIRC_MODE == "hmac":
      proceed(None)
    elif config.WEBIRC_MODE != "hmac":
      notice = lambda x: session.event(connect_notice(x))
      notice("Looking up your hostname...")
      def callback(hostname):
        notice("Found your hostname.")
        proceed(hostname)
      def errback(failure):
        notice("Couldn't look up your hostname!")
        proceed(ip)
      qdns.lookupAndVerifyPTR(ip, timeout=[config.DNS_TIMEOUT]).addCallbacks(callback, errback)

    Sessions[id] = session
    
    return id
  
  def getSession(self, request):
    bad_session_message = "Invalid session, this most likely means the server has restarted; close this dialog and then try refreshing the page."
    
    sessionid = request.args.get("s")
    if sessionid is None:
      raise AJAXException, bad_session_message
      
    session = Sessions.get(sessionid[0])
    if not session:
      raise AJAXException, bad_session_message
    return session
    
  def subscribe(self, request):
    request.channel.cancelTimeout()
    self.getSession(request).subscribe(SingleUseChannel(request), request.notifyFinish())
    return NOT_DONE_YET

  def push(self, request):
    command = request.args.get("c")
    if command is None:
      raise AJAXException, "No command specified."
    self.__total_hit()
    
    decoded = ircclient.irc_decode(command[0])
    
    session = self.getSession(request)

    if len(decoded) > config.MAXLINELEN:
      session.disconnect()
      raise AJAXException, "Line too long."

    try:
      session.push(decoded)
    except AttributeError: # occurs when we haven't noticed an error
      session.disconnect()
      raise AJAXException, "Connection closed by server; try reconnecting by reloading the page."
    except Exception, e: # catch all
      session.disconnect()        
      traceback.print_exc(file=sys.stderr)
      raise AJAXException, "Unknown error."
  
    return True
  
  def closeById(self, k):
    s = Sessions.get(k)
    if s is None:
      return
    s.client.client.error("Closed by admin interface")
    
  @property
  def adminEngine(self):
    return {
      "Sessions": [(str(v.client.client), AdminEngineAction("close", self.closeById, k)) for k, v in Sessions.iteritems() if not v.closed],
      "Connections": [(self.__connect_hit,)],
      "Total hits": [(self.__total_hit,)],
    }
    
  COMMANDS = dict(p=push, n=newConnection, s=subscribe)
Commit	Line	Data
99844c15	1	from twisted.web import resource, server, static, error as http_error
9e769c12	2	from twisted.names import client
265f5ce3	3	from twisted.internet import reactor, error
ace37679	4	from authgateengine import login_optional, getSessionData
930be88a	5	import simplejson, md5, sys, os, time, config, qwebirc.config_options as config_options, traceback, socket
85f01e3f CP	6	import qwebirc.ircclient as ircclient
	7	from adminengine import AdminEngineAction
	8	from qwebirc.util import HitCounter
28c4ad01	9	import qwebirc.dns as qdns
9e769c12 CP	10	Sessions = {}
	11
	12	def get_session_id():
4e4bbf26	13	return md5.md5(os.urandom(16)).hexdigest()
8dc46dfa CP	14
	15	class BufferOverflowException(Exception):
	16	pass
	17
f59585a7 CP	18	class AJAXException(Exception):
	19	pass
	20
4094890f CP	21	class IDGenerationException(Exception):
	22	pass
	23
99844c15 CP	24	class PassthruException(Exception):
	25	pass
	26
bdd008f9 CP	27	NOT_DONE_YET = None
bdd008f9 CP	28
9e769c12 CP	29	def jsondump(fn):
9e769c12 CP	30	def decorator(args, *kwargs):
f59585a7 CP	31	try:
f59585a7 CP	32	x = fn(args, *kwargs)
bdd008f9 CP	33	if x is None:
	34	return server.NOT_DONE_YET
	35	x = (True, x)
f59585a7	36	except AJAXException, e:
bdd008f9	37	x = (False, e[0])
99844c15 CP	38	except PassthruException, e:
99844c15 CP	39	return str(e)
f59585a7 CP	40
f59585a7 CP	41	return simplejson.dumps(x)
9e769c12 CP	42	return decorator
9e769c12 CP	43
8dc46dfa CP	44	def cleanupSession(id):
	45	try:
	46	del Sessions[id]
	47	except KeyError:
	48	pass
	49
9e769c12 CP	50	class IRCSession:
	51	def __init__(self, id):
	52	self.id = id
	53	self.subscriptions = []
	54	self.buffer = []
8932790b	55	self.buflen = 0
9e769c12 CP	56	self.throttle = 0
9e769c12 CP	57	self.schedule = None
8dc46dfa CP	58	self.closed = False
	59	self.cleanupschedule = None
	60
265f5ce3 CP	61	def subscribe(self, channel, notifier):
	62	timeout_entry = reactor.callLater(config.HTTP_AJAX_REQUEST_TIMEOUT, self.timeout, channel)
	63	def cancel_timeout(result):
	64	if channel in self.subscriptions:
	65	self.subscriptions.remove(channel)
	66	try:
	67	timeout_entry.cancel()
	68	except error.AlreadyCalled:
	69	pass
	70	notifier.addCallbacks(cancel_timeout, cancel_timeout)
	71
0df6faa6	72	if len(self.subscriptions) >= config.MAXSUBSCRIPTIONS:
4e221566	73	self.subscriptions.pop(0).close()
0df6faa6	74
9e769c12 CP	75	self.subscriptions.append(channel)
	76	self.flush()
	77
265f5ce3 CP	78	def timeout(self, channel):
	79	if self.schedule:
	80	return
	81
	82	channel.write(simplejson.dumps([]))
	83	if channel in self.subscriptions:
	84	self.subscriptions.remove(channel)
	85
9e769c12 CP	86	def flush(self, scheduled=False):
	87	if scheduled:
	88	self.schedule = None
	89
	90	if not self.buffer or not self.subscriptions:
	91	return
	92
	93	t = time.time()
	94
	95	if t < self.throttle:
	96	if not self.schedule:
	97	self.schedule = reactor.callLater(self.throttle - t, self.flush, True)
	98	return
	99	else:
	100	# process the rest of the packet
	101	if not scheduled:
	102	if not self.schedule:
	103	self.schedule = reactor.callLater(0, self.flush, True)
	104	return
	105
	106	self.throttle = t + config.UPDATE_FREQ
	107
	108	encdata = simplejson.dumps(self.buffer)
	109	self.buffer = []
8932790b CP	110	self.buflen = 0
8932790b CP	111
9e769c12 CP	112	newsubs = []
	113	for x in self.subscriptions:
	114	if x.write(encdata):
	115	newsubs.append(x)
	116
	117	self.subscriptions = newsubs
8dc46dfa CP	118	if self.closed and not self.subscriptions:
	119	cleanupSession(self.id)
	120
9e769c12	121	def event(self, data):
8932790b CP	122	newbuflen = self.buflen + len(data)
8932790b CP	123	if newbuflen > config.MAXBUFLEN:
8dc46dfa	124	self.buffer = []
99844c15	125	self.client.error("Buffer overflow.")
8dc46dfa CP	126	return
8dc46dfa CP	127
9e769c12	128	self.buffer.append(data)
8932790b	129	self.buflen = newbuflen
9e769c12 CP	130	self.flush()
	131
	132	def push(self, data):
8dc46dfa CP	133	if not self.closed:
	134	self.client.write(data)
	135
	136	def disconnect(self):
	137	# keep the session hanging around for a few seconds so the
	138	# client has a chance to see what the issue was
	139	self.closed = True
	140
	141	reactor.callLater(5, cleanupSession, self.id)
	142
28c4ad01 CP	143	# DANGER! Breach of encapsulation!
	144	def connect_notice(line):
	145	return "c", "NOTICE", "", ("AUTH", "*** (qwebirc) %s" % line)
	146
9e769c12 CP	147	class Channel:
	148	def __init__(self, request):
	149	self.request = request
	150
	151	class SingleUseChannel(Channel):
	152	def write(self, data):
	153	self.request.write(data)
	154	self.request.finish()
	155	return False
	156
4e221566 CP	157	def close(self):
	158	self.request.finish()
	159
9e769c12 CP	160	class MultipleUseChannel(Channel):
	161	def write(self, data):
	162	self.request.write(data)
	163	return True
	164
	165	class AJAXEngine(resource.Resource):
	166	isLeaf = True
	167
	168	def __init__(self, prefix):
	169	self.prefix = prefix
85f01e3f CP	170	self.__connect_hit = HitCounter()
	171	self.__total_hit = HitCounter()
	172
9e769c12	173	@jsondump
57ea572e	174	def render_POST(self, request):
9e769c12	175	path = request.path[len(self.prefix):]
f59585a7 CP	176	if path[0] == "/":
	177	handler = self.COMMANDS.get(path[1:])
	178	if handler is not None:
	179	return handler(self, request)
99844c15 CP	180
99844c15 CP	181	raise PassthruException, http_error.NoResource().render(request)
f59585a7	182
f59585a7	183	def newConnection(self, request):
f065bc69 CP	184	ticket = login_optional(request)
f065bc69 CP	185
f59585a7	186	_, ip, port = request.transport.getPeer()
9e769c12	187
c70a7ff6	188	nick = request.args.get("nick")
f59585a7	189	if not nick:
99844c15	190	raise AJAXException, "Nickname not supplied."
c70a7ff6	191	nick = ircclient.irc_decode(nick[0])
57ea572e	192
6ce70043	193	password = request.args.get("password")
2f74dea9 CP	194	if password is not None:
	195	password = ircclient.irc_decode(password[0])
	196
f59585a7 CP	197	for i in xrange(10):
	198	id = get_session_id()
	199	if not Sessions.get(id):
	200	break
	201	else:
	202	raise IDGenerationException()
9e769c12	203
f59585a7	204	session = IRCSession(id)
9e769c12	205
ace37679 CP	206	qticket = getSessionData(request).get("qticket")
	207	if qticket is None:
	208	perform = None
	209	else:
348574ee CP	210	service_mask = config.AUTH_SERVICE
	211	msg_mask = service_mask.split("!")[0] + "@" + service_mask.split("@", 1)[1]
	212	perform = ["PRIVMSG %s :TICKETAUTH %s" % (msg_mask, qticket)]
ace37679	213
b5c84380	214	ident, realname = config.IDENT, config.REALNAME
930be88a	215	if ident is config_options.IDENT_HEX or ident is None: # latter is legacy
b5c84380	216	ident = socket.inet_aton(ip).encode("hex")
930be88a CP	217	elif ident is config_options.IDENT_NICKNAME:
930be88a CP	218	ident = nick
b5c84380	219
85f01e3f	220	self.__connect_hit()
28c4ad01 CP	221
28c4ad01 CP	222	def proceed(hostname):
2f74dea9 CP	223	kwargs = dict(nick=nick, ident=ident, ip=ip, realname=realname, perform=perform, hostname=hostname)
	224	if password is not None:
	225	kwargs["password"] = password
	226
	227	client = ircclient.createIRC(session, **kwargs)
28c4ad01 CP	228	session.client = client
28c4ad01 CP	229
930be88a CP	230	if not hasattr(config, "WEBIRC_MODE") or config.WEBIRC_MODE == "hmac":
	231	proceed(None)
	232	elif config.WEBIRC_MODE != "hmac":
28c4ad01 CP	233	notice = lambda x: session.event(connect_notice(x))
	234	notice("Looking up your hostname...")
	235	def callback(hostname):
	236	notice("Found your hostname.")
	237	proceed(hostname)
	238	def errback(failure):
	239	notice("Couldn't look up your hostname!")
	240	proceed(ip)
	241	qdns.lookupAndVerifyPTR(ip, timeout=[config.DNS_TIMEOUT]).addCallbacks(callback, errback)
28c4ad01	242
f59585a7 CP	243	Sessions[id] = session
	244
	245	return id
	246
	247	def getSession(self, request):
71afd444 CP	248	bad_session_message = "Invalid session, this most likely means the server has restarted; close this dialog and then try refreshing the page."
71afd444 CP	249
f59585a7 CP	250	sessionid = request.args.get("s")
f59585a7 CP	251	if sessionid is None:
71afd444	252	raise AJAXException, bad_session_message
9e769c12	253
f59585a7 CP	254	session = Sessions.get(sessionid[0])
f59585a7 CP	255	if not session:
71afd444	256	raise AJAXException, bad_session_message
f59585a7	257	return session
8dc46dfa	258
f59585a7	259	def subscribe(self, request):
1d924d97	260	request.channel.cancelTimeout()
265f5ce3	261	self.getSession(request).subscribe(SingleUseChannel(request), request.notifyFinish())
bdd008f9	262	return NOT_DONE_YET
9e769c12	263
f59585a7 CP	264	def push(self, request):
	265	command = request.args.get("c")
	266	if command is None:
99844c15	267	raise AJAXException, "No command specified."
85f01e3f CP	268	self.__total_hit()
85f01e3f CP	269
c70a7ff6	270	decoded = ircclient.irc_decode(command[0])
f59585a7 CP	271
	272	session = self.getSession(request)
	273
f59585a7 CP	274	if len(decoded) > config.MAXLINELEN:
f59585a7 CP	275	session.disconnect()
99844c15	276	raise AJAXException, "Line too long."
f59585a7 CP	277
	278	try:
	279	session.push(decoded)
	280	except AttributeError: # occurs when we haven't noticed an error
	281	session.disconnect()
99844c15	282	raise AJAXException, "Connection closed by server; try reconnecting by reloading the page."
f59585a7 CP	283	except Exception, e: # catch all
	284	session.disconnect()
	285	traceback.print_exc(file=sys.stderr)
71afd444	286	raise AJAXException, "Unknown error."
f59585a7 CP	287
	288	return True
	289
85f01e3f CP	290	def closeById(self, k):
	291	s = Sessions.get(k)
	292	if s is None:
	293	return
	294	s.client.client.error("Closed by admin interface")
	295
	296	@property
	297	def adminEngine(self):
	298	return {
	299	"Sessions": [(str(v.client.client), AdminEngineAction("close", self.closeById, k)) for k, v in Sessions.iteritems() if not v.closed],
	300	"Connections": [(self.__connect_hit,)],
	301	"Total hits": [(self.__total_hit,)],
	302	}
	303
f59585a7	304	COMMANDS = dict(p=push, n=newConnection, s=subscribe)
b5c84380	305