2013-07-29 17:19:04 +00:00
|
|
|
from __future__ import unicode_literals
|
2011-10-13 21:34:56 +00:00
|
|
|
|
2014-02-14 17:28:51 +00:00
|
|
|
import datetime
|
|
|
|
import decimal
|
2015-03-24 12:33:56 +00:00
|
|
|
import logging
|
2009-03-31 17:10:06 +00:00
|
|
|
import sys
|
|
|
|
|
2013-08-04 09:01:01 +00:00
|
|
|
from django.core.exceptions import PermissionDenied, SuspiciousOperation
|
2010-12-21 17:18:41 +00:00
|
|
|
from django.core.urlresolvers import get_resolver
|
2015-03-13 22:40:14 +00:00
|
|
|
from django.http import Http404, HttpResponse, JsonResponse
|
2015-01-28 12:35:27 +00:00
|
|
|
from django.shortcuts import render, render_to_response
|
2014-11-22 16:52:12 +00:00
|
|
|
from django.template import TemplateDoesNotExist
|
2015-01-28 12:35:27 +00:00
|
|
|
from django.views.debug import (
|
|
|
|
SafeExceptionReporterFilter, technical_500_response,
|
|
|
|
)
|
|
|
|
from django.views.decorators.debug import (
|
|
|
|
sensitive_post_parameters, sensitive_variables,
|
|
|
|
)
|
2014-06-16 07:39:18 +00:00
|
|
|
from django.views.generic import View
|
|
|
|
|
2011-10-13 21:34:56 +00:00
|
|
|
from . import BrokenException, except_args
|
2012-06-04 00:33:09 +00:00
|
|
|
|
2007-09-17 14:48:33 +00:00
|
|
|
|
|
|
|
def index_page(request):
|
2007-09-19 13:26:56 +00:00
|
|
|
"""Dummy index page"""
|
2007-09-17 14:48:33 +00:00
|
|
|
return HttpResponse('<html><body>Dummy page</body></html>')
|
2008-07-18 19:45:00 +00:00
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2009-03-31 17:10:06 +00:00
|
|
|
def raises(request):
|
2011-01-13 13:47:03 +00:00
|
|
|
# Make sure that a callable that raises an exception in the stack frame's
|
|
|
|
# local vars won't hijack the technical 500 response. See:
|
|
|
|
# http://code.djangoproject.com/ticket/15025
|
|
|
|
def callable():
|
|
|
|
raise Exception
|
2009-03-31 17:10:06 +00:00
|
|
|
try:
|
|
|
|
raise Exception
|
|
|
|
except Exception:
|
|
|
|
return technical_500_response(request, *sys.exc_info())
|
2009-04-12 03:50:47 +00:00
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2012-10-20 12:50:44 +00:00
|
|
|
def raises500(request):
|
|
|
|
# We need to inspect the HTML generated by the fancy 500 debug view but
|
|
|
|
# the test client ignores it, so we send it explicitly.
|
|
|
|
try:
|
|
|
|
raise Exception
|
|
|
|
except Exception:
|
|
|
|
return technical_500_response(request, *sys.exc_info())
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2013-08-04 09:01:01 +00:00
|
|
|
def raises400(request):
|
|
|
|
raise SuspiciousOperation
|
2010-03-08 15:20:29 +00:00
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2011-08-12 14:15:31 +00:00
|
|
|
def raises403(request):
|
2015-04-21 19:54:00 +00:00
|
|
|
raise PermissionDenied("Insufficient Permissions")
|
2011-08-12 14:15:31 +00:00
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2013-08-04 09:01:01 +00:00
|
|
|
def raises404(request):
|
|
|
|
resolver = get_resolver(None)
|
2014-02-15 13:41:01 +00:00
|
|
|
resolver.resolve('/not-in-urls')
|
2013-08-04 09:01:01 +00:00
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2014-06-16 07:39:18 +00:00
|
|
|
def technical404(request):
|
|
|
|
raise Http404("Testing technical 404.")
|
|
|
|
|
|
|
|
|
|
|
|
class Http404View(View):
|
|
|
|
def get(self, request):
|
|
|
|
raise Http404("Testing class-based technical 404.")
|
|
|
|
|
|
|
|
|
2010-03-08 15:20:29 +00:00
|
|
|
def view_exception(request, n):
|
|
|
|
raise BrokenException(except_args[int(n)])
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2010-03-08 17:01:21 +00:00
|
|
|
def template_exception(request, n):
|
|
|
|
return render_to_response('debug/template_exception.html',
|
|
|
|
{'arg': except_args[int(n)]})
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2012-11-17 14:37:30 +00:00
|
|
|
def jsi18n(request):
|
|
|
|
return render_to_response('jsi18n.html')
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2014-02-23 14:10:31 +00:00
|
|
|
def jsi18n_multi_catalogs(request):
|
|
|
|
return render_to_response('jsi18n-multi-catalogs.html')
|
|
|
|
|
|
|
|
|
2013-02-24 15:41:10 +00:00
|
|
|
def raises_template_does_not_exist(request, path='i_dont_exist.html'):
|
2011-01-20 22:33:58 +00:00
|
|
|
# We need to inspect the HTML generated by the fancy 500 debug view but
|
|
|
|
# the test client ignores it, so we send it explicitly.
|
|
|
|
try:
|
2013-02-24 15:41:10 +00:00
|
|
|
return render_to_response(path)
|
2011-01-20 22:33:58 +00:00
|
|
|
except TemplateDoesNotExist:
|
|
|
|
return technical_500_response(request, *sys.exc_info())
|
2011-06-08 22:18:46 +00:00
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2013-09-06 20:50:18 +00:00
|
|
|
def render_no_template(request):
|
|
|
|
# If we do not specify a template, we need to make sure the debug
|
|
|
|
# view doesn't blow up.
|
|
|
|
return render(request, [], {})
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2011-06-08 22:18:46 +00:00
|
|
|
def send_log(request, exc_info):
|
2015-03-23 22:17:43 +00:00
|
|
|
logger = logging.getLogger('django')
|
2011-06-22 06:01:44 +00:00
|
|
|
# The default logging config has a logging filter to ensure admin emails are
|
|
|
|
# only sent with DEBUG=False, but since someone might choose to remove that
|
|
|
|
# filter, we still want to be able to test the behavior of error emails
|
|
|
|
# with DEBUG=True. So we need to remove the filter temporarily.
|
|
|
|
admin_email_handler = [
|
|
|
|
h for h in logger.handlers
|
|
|
|
if h.__class__.__name__ == "AdminEmailHandler"
|
2013-10-18 09:02:43 +00:00
|
|
|
][0]
|
2011-06-22 06:01:44 +00:00
|
|
|
orig_filters = admin_email_handler.filters
|
|
|
|
admin_email_handler.filters = []
|
2012-12-31 17:34:08 +00:00
|
|
|
admin_email_handler.include_html = True
|
2012-02-09 18:58:36 +00:00
|
|
|
logger.error('Internal Server Error: %s', request.path,
|
2011-06-08 22:18:46 +00:00
|
|
|
exc_info=exc_info,
|
|
|
|
extra={
|
|
|
|
'status_code': 500,
|
|
|
|
'request': request
|
|
|
|
}
|
|
|
|
)
|
2011-06-22 06:01:44 +00:00
|
|
|
admin_email_handler.filters = orig_filters
|
2011-06-08 22:18:46 +00:00
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2011-06-08 22:18:46 +00:00
|
|
|
def non_sensitive_view(request):
|
|
|
|
# Do not just use plain strings for the variables' values in the code
|
|
|
|
# so that the tests don't return false positives when the function's source
|
|
|
|
# is displayed in the exception report.
|
2013-10-19 12:31:38 +00:00
|
|
|
cooked_eggs = ''.join(['s', 'c', 'r', 'a', 'm', 'b', 'l', 'e', 'd']) # NOQA
|
|
|
|
sauce = ''.join(['w', 'o', 'r', 'c', 'e', 's', 't', 'e', 'r', 's', 'h', 'i', 'r', 'e']) # NOQA
|
2011-06-08 22:18:46 +00:00
|
|
|
try:
|
|
|
|
raise Exception
|
|
|
|
except Exception:
|
|
|
|
exc_info = sys.exc_info()
|
|
|
|
send_log(request, exc_info)
|
|
|
|
return technical_500_response(request, *exc_info)
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2011-06-08 22:18:46 +00:00
|
|
|
@sensitive_variables('sauce')
|
|
|
|
@sensitive_post_parameters('bacon-key', 'sausage-key')
|
|
|
|
def sensitive_view(request):
|
|
|
|
# Do not just use plain strings for the variables' values in the code
|
|
|
|
# so that the tests don't return false positives when the function's source
|
|
|
|
# is displayed in the exception report.
|
2013-10-19 12:31:38 +00:00
|
|
|
cooked_eggs = ''.join(['s', 'c', 'r', 'a', 'm', 'b', 'l', 'e', 'd']) # NOQA
|
|
|
|
sauce = ''.join(['w', 'o', 'r', 'c', 'e', 's', 't', 'e', 'r', 's', 'h', 'i', 'r', 'e']) # NOQA
|
2011-06-08 22:18:46 +00:00
|
|
|
try:
|
|
|
|
raise Exception
|
|
|
|
except Exception:
|
|
|
|
exc_info = sys.exc_info()
|
|
|
|
send_log(request, exc_info)
|
|
|
|
return technical_500_response(request, *exc_info)
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2011-06-08 22:18:46 +00:00
|
|
|
@sensitive_variables()
|
|
|
|
@sensitive_post_parameters()
|
|
|
|
def paranoid_view(request):
|
|
|
|
# Do not just use plain strings for the variables' values in the code
|
|
|
|
# so that the tests don't return false positives when the function's source
|
|
|
|
# is displayed in the exception report.
|
2013-10-19 12:31:38 +00:00
|
|
|
cooked_eggs = ''.join(['s', 'c', 'r', 'a', 'm', 'b', 'l', 'e', 'd']) # NOQA
|
|
|
|
sauce = ''.join(['w', 'o', 'r', 'c', 'e', 's', 't', 'e', 'r', 's', 'h', 'i', 'r', 'e']) # NOQA
|
2011-06-08 22:18:46 +00:00
|
|
|
try:
|
|
|
|
raise Exception
|
|
|
|
except Exception:
|
|
|
|
exc_info = sys.exc_info()
|
|
|
|
send_log(request, exc_info)
|
|
|
|
return technical_500_response(request, *exc_info)
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2012-12-31 17:34:08 +00:00
|
|
|
def sensitive_args_function_caller(request):
|
|
|
|
try:
|
|
|
|
sensitive_args_function(''.join(['w', 'o', 'r', 'c', 'e', 's', 't', 'e', 'r', 's', 'h', 'i', 'r', 'e']))
|
|
|
|
except Exception:
|
|
|
|
exc_info = sys.exc_info()
|
|
|
|
send_log(request, exc_info)
|
|
|
|
return technical_500_response(request, *exc_info)
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2012-12-31 17:34:08 +00:00
|
|
|
@sensitive_variables('sauce')
|
|
|
|
def sensitive_args_function(sauce):
|
|
|
|
# Do not just use plain strings for the variables' values in the code
|
|
|
|
# so that the tests don't return false positives when the function's source
|
|
|
|
# is displayed in the exception report.
|
2013-10-19 12:31:38 +00:00
|
|
|
cooked_eggs = ''.join(['s', 'c', 'r', 'a', 'm', 'b', 'l', 'e', 'd']) # NOQA
|
2012-12-31 17:34:08 +00:00
|
|
|
raise Exception
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2012-12-31 17:34:08 +00:00
|
|
|
def sensitive_kwargs_function_caller(request):
|
|
|
|
try:
|
|
|
|
sensitive_kwargs_function(''.join(['w', 'o', 'r', 'c', 'e', 's', 't', 'e', 'r', 's', 'h', 'i', 'r', 'e']))
|
|
|
|
except Exception:
|
|
|
|
exc_info = sys.exc_info()
|
|
|
|
send_log(request, exc_info)
|
|
|
|
return technical_500_response(request, *exc_info)
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2012-12-31 17:34:08 +00:00
|
|
|
@sensitive_variables('sauce')
|
|
|
|
def sensitive_kwargs_function(sauce=None):
|
|
|
|
# Do not just use plain strings for the variables' values in the code
|
|
|
|
# so that the tests don't return false positives when the function's source
|
|
|
|
# is displayed in the exception report.
|
2013-10-19 12:31:38 +00:00
|
|
|
cooked_eggs = ''.join(['s', 'c', 'r', 'a', 'm', 'b', 'l', 'e', 'd']) # NOQA
|
2012-12-31 17:34:08 +00:00
|
|
|
raise Exception
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2011-06-08 22:18:46 +00:00
|
|
|
class UnsafeExceptionReporterFilter(SafeExceptionReporterFilter):
|
|
|
|
"""
|
|
|
|
Ignores all the filtering done by its parent class.
|
|
|
|
"""
|
|
|
|
|
|
|
|
def get_post_parameters(self, request):
|
|
|
|
return request.POST
|
|
|
|
|
|
|
|
def get_traceback_frame_variables(self, request, tb_frame):
|
|
|
|
return tb_frame.f_locals.items()
|
|
|
|
|
|
|
|
|
|
|
|
@sensitive_variables()
|
|
|
|
@sensitive_post_parameters()
|
|
|
|
def custom_exception_reporter_filter_view(request):
|
|
|
|
# Do not just use plain strings for the variables' values in the code
|
|
|
|
# so that the tests don't return false positives when the function's source
|
|
|
|
# is displayed in the exception report.
|
2013-10-19 12:31:38 +00:00
|
|
|
cooked_eggs = ''.join(['s', 'c', 'r', 'a', 'm', 'b', 'l', 'e', 'd']) # NOQA
|
|
|
|
sauce = ''.join(['w', 'o', 'r', 'c', 'e', 's', 't', 'e', 'r', 's', 'h', 'i', 'r', 'e']) # NOQA
|
2011-06-08 22:18:46 +00:00
|
|
|
request.exception_reporter_filter = UnsafeExceptionReporterFilter()
|
|
|
|
try:
|
|
|
|
raise Exception
|
|
|
|
except Exception:
|
|
|
|
exc_info = sys.exc_info()
|
|
|
|
send_log(request, exc_info)
|
|
|
|
return technical_500_response(request, *exc_info)
|
2012-06-04 00:33:09 +00:00
|
|
|
|
|
|
|
|
|
|
|
class Klass(object):
|
|
|
|
|
|
|
|
@sensitive_variables('sauce')
|
|
|
|
def method(self, request):
|
|
|
|
# Do not just use plain strings for the variables' values in the code
|
|
|
|
# so that the tests don't return false positives when the function's
|
|
|
|
# source is displayed in the exception report.
|
2013-10-19 12:31:38 +00:00
|
|
|
cooked_eggs = ''.join(['s', 'c', 'r', 'a', 'm', 'b', 'l', 'e', 'd']) # NOQA
|
|
|
|
sauce = ''.join(['w', 'o', 'r', 'c', 'e', 's', 't', 'e', 'r', 's', 'h', 'i', 'r', 'e']) # NOQA
|
2012-06-04 00:33:09 +00:00
|
|
|
try:
|
|
|
|
raise Exception
|
|
|
|
except Exception:
|
|
|
|
exc_info = sys.exc_info()
|
|
|
|
send_log(request, exc_info)
|
|
|
|
return technical_500_response(request, *exc_info)
|
|
|
|
|
2013-11-02 21:34:05 +00:00
|
|
|
|
2012-06-04 00:33:09 +00:00
|
|
|
def sensitive_method_view(request):
|
2013-01-31 12:39:29 +00:00
|
|
|
return Klass().method(request)
|
2013-09-17 11:46:38 +00:00
|
|
|
|
|
|
|
|
|
|
|
@sensitive_variables('sauce')
|
|
|
|
@sensitive_post_parameters('bacon-key', 'sausage-key')
|
|
|
|
def multivalue_dict_key_error(request):
|
2013-10-19 12:31:38 +00:00
|
|
|
cooked_eggs = ''.join(['s', 'c', 'r', 'a', 'm', 'b', 'l', 'e', 'd']) # NOQA
|
|
|
|
sauce = ''.join(['w', 'o', 'r', 'c', 'e', 's', 't', 'e', 'r', 's', 'h', 'i', 'r', 'e']) # NOQA
|
2013-09-17 11:46:38 +00:00
|
|
|
try:
|
|
|
|
request.POST['bar']
|
|
|
|
except Exception:
|
|
|
|
exc_info = sys.exc_info()
|
|
|
|
send_log(request, exc_info)
|
|
|
|
return technical_500_response(request, *exc_info)
|
2014-02-14 17:28:51 +00:00
|
|
|
|
|
|
|
|
|
|
|
def json_response_view(request):
|
|
|
|
return JsonResponse({
|
|
|
|
'a': [1, 2, 3],
|
|
|
|
'foo': {'bar': 'baz'},
|
|
|
|
# Make sure datetime and Decimal objects would be serialized properly
|
|
|
|
'timestamp': datetime.datetime(2013, 5, 19, 20),
|
|
|
|
'value': decimal.Decimal('3.14'),
|
|
|
|
})
|