ape 1.0.0

data/lib/ape/samples/basic_entry.eruby

@@ -0,0 +1,16 @@
+<?xml version="1.0" ?>
+<entry xmlns="http://www.w3.org/2005/Atom">
+  <id><%= id %></id>
+  <title><%= title %></title>
+  <author><name>The Atom Protocol Exerciser</name></author>
+  <updated><%= now %></updated>
+  <link href='http://www.tbray.org/ape'/>
+  <summary type='html'><%= summary %></summary>
+  <content type='xhtml'><div xmlns='http://www.w3.org/1999/xhtml'>
+    <p>A test post from the &lt;APE&gt; at #{updated}</p>
+    <p>If you see this in an entry, it's probably a left-over from an
+    unsuccessful Ape run; feel free to delete it.</p>
+    </div>
+  </content>
+  <dc:subject xmlns:dc='<%=subject%>'>Simians</dc:subject>
+</entry>

data/lib/ape/samples/categories_schema.txt

@@ -0,0 +1,69 @@
+# -*- rnc -*-
+# RELAX NG Compact Syntax Grammar for the Atom Protocol
+
+namespace app = "http://www.w3.org/2007/app"
+namespace atom = "http://www.w3.org/2005/Atom"
+namespace xsd = "http://www.w3.org/2001/XMLSchema"
+namespace local = ""
+
+start = appCategories
+
+atomCommonAttributes =
+   attribute xml:base { atomURI }?,
+   attribute xml:lang { atomLanguageTag }?,
+   undefinedAttribute*
+
+undefinedAttribute =
+  attribute * - (xml:base | xml:lang | local:*) { text }
+
+atomURI = text
+
+atomLanguageTag = xsd:string {
+   pattern = "[A-Za-z]{1,8}(-[A-Za-z0-9]{1,8})*"
+}
+
+
+atomCategory =
+    element atom:category {
+       atomCommonAttributes,
+       attribute term { text },
+       attribute scheme { atomURI }?,
+       attribute label { text }?,
+       undefinedContent
+    }
+
+appInlineCategories =
+    element app:categories {
+        attribute fixed { "yes" | "no" }?,
+        attribute scheme { atomURI }?,
+        (atomCategory*)
+    }
+
+appOutOfLineCategories =
+    element app:categories {
+        attribute href { atomURI },
+        (empty)
+    }
+
+appCategories = appInlineCategories | appOutOfLineCategories
+
+
+# Extensibility
+
+undefinedContent = (text|anyForeignElement)*
+
+anyElement =
+   element * {
+      (attribute * { text }
+       | text
+       | anyElement)*
+   }
+
+anyForeignElement =
+    element * - atom:* {
+       (attribute * { text }
+        | text
+        | anyElement)*
+    }
+
+# EOF

data/lib/ape/samples/mini_entry.eruby

@@ -0,0 +1,8 @@
+<?xml version="1.0" ?>
+<entry xmlns="http://www.w3.org/2005/Atom">
+  <title>Entry Mini-1</title>
+  <author><name>EM</name></author>
+  <id><%= id %></id>
+  <updated><%= now %></updated>
+  <content>Content of Mini-1</content>
+</entry>

data/lib/ape/samples/service_schema.txt

@@ -0,0 +1,187 @@
+# -*- rnc -*-
+# RELAX NG Compact Syntax Grammar for the Atom Protocol
+
+namespace app = "http://www.w3.org/2007/app"
+namespace atom = "http://www.w3.org/2005/Atom"
+namespace xsd = "http://www.w3.org/2001/XMLSchema"
+namespace xhtml = "http://www.w3.org/1999/xhtml"
+namespace local = ""
+
+start = appService
+
+# common:attrs
+
+atomURI = text
+
+appCommonAttributes =
+   attribute xml:base { atomURI }?,
+   attribute xml:lang { atomLanguageTag  }?,
+   attribute xml:space {"default"|"preserved"}?,
+   undefinedAttribute*
+
+
+atomCommonAttributes = appCommonAttributes
+
+undefinedAttribute =
+  attribute * - (xml:base | xml:space  | xml:lang | local:*) { text }
+
+atomLanguageTag = xsd:string {
+   pattern = "([A-Za-z]{1,8}(-[A-Za-z0-9]{1,8})*)?"
+}
+
+atomDateConstruct =
+    appCommonAttributes,
+    xsd:dateTime
+
+# app:service
+
+appService =
+   element app:service {
+      appCommonAttributes,
+      ( appWorkspace+
+        & extensionElement* )
+   }
+
+# app:workspace
+
+appWorkspace =
+   element app:workspace {
+      appCommonAttributes,
+      ( atomTitle
+        & appCollection*
+        & extensionSansTitleElement* )
+   }
+
+atomTitle = element atom:title { atomTextConstruct }
+
+# app:collection
+
+appCollection =
+   element app:collection {
+      appCommonAttributes,
+      attribute href { atomURI  },
+      ( atomTitle
+        & appAccept*
+        & appCategories*
+        & extensionSansTitleElement* )
+   }
+
+# app:categories
+
+atomCategory =
+    element atom:category {
+       atomCommonAttributes,
+       attribute term { text },
+       attribute scheme { atomURI }?,
+       attribute label { text }?,
+       undefinedContent
+    }
+
+appInlineCategories =
+    element app:categories {
+        attribute fixed { "yes" | "no" }?,
+        attribute scheme { atomURI }?,
+        (atomCategory*,
+        undefinedContent)
+    }
+
+appOutOfLineCategories =
+    element app:categories {
+        attribute href { atomURI },
+        undefinedContent
+    }
+
+appCategories = appInlineCategories | appOutOfLineCategories
+
+
+# app:accept
+
+appAccept =
+   element app:accept {
+         appCommonAttributes,
+         ( text? )
+   }
+
+# Simple Extension
+
+simpleSansTitleExtensionElement =
+   element * - (app:*|atom:title) {
+      text
+   }
+
+simpleExtensionElement =
+   element * - (app:*) {
+      text
+   }
+
+
+# Structured Extension
+
+structuredSansTitleExtensionElement =
+   element * - (app:*|atom:title) {
+      (attribute * { text }+,
+         (text|anyElement)*)
+    | (attribute * { text }*,
+       (text?, anyElement+, (text|anyElement)*))
+   }
+
+structuredExtensionElement =
+   element * - (app:*) {
+      (attribute * { text }+,
+         (text|anyElement)*)
+    | (attribute * { text }*,
+       (text?, anyElement+, (text|anyElement)*))
+   }
+
+# Other Extensibility
+
+extensionSansTitleElement =
+ simpleSansTitleExtensionElement|structuredSansTitleExtensionElement
+
+
+extensionElement =
+   simpleExtensionElement | structuredExtensionElement
+
+undefinedContent = (text|anyForeignElement)*
+
+# Extensions
+
+anyElement =
+   element * {
+      (attribute * { text }
+       | text
+       | anyElement)*
+   }
+
+anyForeignElement =
+    element * - app:* {
+       (attribute * { text }
+        | text
+        | anyElement)*
+    }
+
+atomPlainTextConstruct =
+    atomCommonAttributes,
+    attribute type { "text" | "html" }?,
+    text
+
+atomXHTMLTextConstruct =
+    atomCommonAttributes,
+    attribute type { "xhtml" },
+    xhtmlDiv
+
+atomTextConstruct = atomPlainTextConstruct | atomXHTMLTextConstruct
+
+anyXHTML = element xhtml:* {
+    (attribute * { text }
+     | text
+     | anyXHTML)*
+}
+
+xhtmlDiv = element xhtml:div {
+  (attribute * { text }
+   | text
+   | anyXHTML)*
+}
+
+# EOF

data/lib/ape/samples/unclean_xhtml_entry.eruby

@@ -0,0 +1,21 @@
+<?xml version="1.0" ?>
+<entry xmlns="http://www.w3.org/2005/Atom">
+  <title>Unclean!</title>
+  <author><name>The Atom Protocol Exerciser</name></author>
+  <id><%= id %></id>
+  <updated><%= now %></updated>
+  <summary type='xhtml'>
+    <div xmlns='http://www.w3.org/1999/xhtml'>
+    <p>hey</p>
+    <script src='http://www.example.com/xxx' />
+    <script>alert('XXX')</script>
+    <p id='x1' background="javascript:alert('XSS')">Hey</p>
+    </div>
+  </summary>
+  <content type='xhtml'>
+    <div xmlns='http://www.w3.org/1999/xhtml'>
+    <p id='x2' style='...whatever...'>OK</p><object>No No No</object>
+    <a href='/no-problemo'>aah</a><a href='javascript:evil'>ouch</a>
+    </div>
+  </content>
+</entry>

data/lib/ape/server.rb

@@ -0,0 +1,32 @@
+require 'rubygems'
+require 'mongrel'
+require 'ape/handler'
+require 'ape/samples'
+
+module Ape
+  class Server
+    def self.run(options)      
+      Samples.home = options[:home]
+      
+      mongrel = Mongrel::Configurator.new(:host => options[:host], :port => options[:port]) do
+        log "=> Booting mongrel"
+        begin
+          log "=> The ape starting on http://#{options[:host]}:#{options[:port]}"
+          listener do
+            redirect '/', '/ape/index.html'
+            uri '/ape', :handler => Mongrel::DirHandler.new(File.dirname(__FILE__) + '/layout', true)
+            uri '/atompub/go', :handler => Handler.new    
+          end
+        rescue Errno::EADDRINUSE
+          log "ERROR: Address (#{options[:host]}:#{options[:port]}) is already in use"
+          exit 1
+        end
+        trap("INT") { stop }
+        trap("TERM") { stop }
+        log "=> Ctrl-C to shutdown"
+        run
+      end
+      mongrel.join
+    end
+  end
+end

data/lib/ape/service.rb

@@ -0,0 +1,12 @@
+#   Copyright © 2006 Sun Microsystems, Inc. All rights reserved
+#   Use is subject to license terms - see file "LICENSE"
+require 'rexml/xpath'
+
+module Ape
+  class Service
+    def Service.collections(service, uri)
+      nodes = REXML::XPath.match(service, '//app:collection', Names::XmlNamespaces)
+      nodes.collect { |n| Collection.new(n, uri) }
+    end
+  end
+end

data/lib/ape/validator.rb

@@ -0,0 +1,65 @@
+#   Copyright © 2006 Sun Microsystems, Inc. All rights reserved
+#   Use is subject to license terms - see file "LICENSE"
+
+if RUBY_PLATFORM =~ /java/
+  require 'java'
+  CompactSchemaReader = com.thaiopensource.validate.rng.CompactSchemaReader
+  ValidationDriver = com.thaiopensource.validate.ValidationDriver
+  StringReader = java.io.StringReader
+  StringWriter = java.io.StringWriter
+  InputSource = org.xml.sax.InputSource
+  ErrorHandlerImpl = com.thaiopensource.xml.sax.ErrorHandlerImpl
+  PropertyMapBuilder = com.thaiopensource.util.PropertyMapBuilder
+  ValidateProperty = com.thaiopensource.validate.ValidateProperty
+end
+
+module Ape
+class Validator
+
+  attr_reader :error
+
+  def Validator.validate(schema, text, name, ape)
+    # Can do this in JRuby, not native Ruby (sigh)
+    if RUBY_PLATFORM =~ /java/
+      rnc_validate(schema, text, name, ape)
+    else
+      true
+    end
+  end
+
+  def Validator.rnc_validate(schema, text, name, ape)
+    schemaError = StringWriter.new
+    schemaEH = ErrorHandlerImpl.new(schemaError)
+    properties = PropertyMapBuilder.new
+    properties.put(ValidateProperty::ERROR_HANDLER, schemaEH)
+    error = nil
+    driver = ValidationDriver.new(properties.toPropertyMap, CompactSchemaReader.getInstance)
+    if driver.loadSchema(InputSource.new(StringReader.new(schema)))
+      begin
+        if !driver.validate(InputSource.new(StringReader.new(text)))
+          error = schemaError.toString
+        end
+      rescue org.xml.sax.SAXParseException
+        error = $!.to_s.sub(/\n.*$/, '')
+      end
+    else
+      error = schemaError.toString
+    end
+
+    if !error
+      ape.good "#{name} passed schema validation."
+      true
+    else
+      # this kind of sucks, but I spent a looong time lost in a maze of twisty
+      #  little passages without being able to figure out how to
+      #  tell jing what name I'd like to call the InputSource
+      ape.error "#{name} failed schema validation:\n" + error.gsub('(unknown file):', 'Line ')
+      false
+    end
+
+  end
+
+end
+end
+
+

data/lib/ape/version.rb

@@ -0,0 +1,9 @@
+module Ape
+  module VERSION
+    MAJOR = 1
+    MINOR = 0
+    TINY  = 0
+
+    STRING = [MAJOR, MINOR, TINY].join('.')
+  end
+end

data/scripts/go.rb

@@ -0,0 +1,29 @@
+$:.unshift File.dirname(__FILE__) + '/../lib'
+require 'cgi'
+require 'html'
+require 'ape'
+
+debug = ENV['APE_DEBUG'] || false
+
+cgi = debug ? CGI.new('html4') : CGI.new 
+
+if !cgi['uri'] || (cgi['uri'] == '')
+  HTML.error "URI argument is required"
+end
+
+uri = cgi['uri']
+user = cgi['username']
+pass = cgi['password']
+
+ape = Ape::Ape.new({:crumbs => true, :output => 'html', :debug => debug})
+
+if user == ''
+  ape.check(uri)
+else
+  ape.check(uri, user, pass)
+end
+ape.report
+
+
+
+