opentox-server 0.0.1pre → 0.0.2pre

data/lib/authorization-helper.rb

@@ -0,0 +1,131 @@
+module OpenTox
+  # Base class for OpenTox services
+  class Application < Service
+
+    helpers do
+
+      # Login to get session for browser application(e.G.: ToxCreate)
+      #
+      # @param [String, String] username,password
+      # @return [String] subjectid from session or nil
+      def login(username, password)
+        logout
+        session[:subjectid] = OpenTox::Authorization.authenticate(username, password)
+        $logger.debug "ToxCreate login user #{username} with subjectid: " + session[:subjectid].to_s
+        if session[:subjectid] != nil
+          session[:username] = username
+          return session[:subjectid]
+        else
+          session[:username] = ""
+          return nil
+        end
+      end
+
+      # Logout to reset session
+      #
+      # @return [Boolean] true/false
+      def logout
+        if session[:subjectid] != nil
+          session[:subjectid] = nil
+          session[:username] = ""
+          return true
+        end
+        return false
+      end
+
+      # Checks session and valid subjectid token.
+      # @return [Boolean] true/false
+      def logged_in()
+        return true if !$aa[:uri]
+        if session[:subjectid] != nil
+          return OpenTox::Authorization.is_token_valid(session[:subjectid])
+        end
+        return false
+      end
+
+      # Authorization for a browser/webservice request
+      # webapplication: redirects with flash[:notice] if unauthorized
+      # webservice: raises error  if unauthorized
+      # @param [String]subjectid
+      def protected!(subjectid)
+        if env["session"]
+          unless authorized?(subjectid)
+            flash[:notice] = "You don't have access to this section: "
+            redirect back
+          end
+        elsif !env["session"] && subjectid
+          unless authorized?(subjectid)
+            $logger.debug "URI not authorized: clean: " + clean_uri("#{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']}").sub("http://","https://").to_s + " full: #{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']} with request: #{request.env['REQUEST_METHOD']}"
+            raise OpenTox::NotAuthorizedError.new "Not authorized"
+          end
+        else
+          raise OpenTox::NotAuthorizedError.new "Not authorized" unless authorized?(subjectid)
+        end
+      end
+
+      # Check Authorization for URI with method and subjectid.
+      # @param [String]subjectid
+      def authorized?(subjectid)
+        request_method = request.env['REQUEST_METHOD']
+        uri = clean_uri("#{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']}").sub("http://","https://")
+        request_method = "GET" if request_method == "POST" &&  uri =~ /\/model\/\d+\/?$/
+        return OpenTox::Authorization.authorized?(uri, request_method, subjectid)
+      end
+
+      # Cleans URI from querystring and file-extension. Sets port 80 to emptystring
+      # @param [String] uri
+      def clean_uri(uri)
+        uri = uri.sub(" ", "%20")          #dirty hacks => to fix
+        uri = uri[0,uri.index("InChI=")] if uri.index("InChI=")
+        out = URI.parse(uri)
+        out.path = out.path[0, out.path.length - (out.path.reverse.rindex(/\/{1}\d+\/{1}/))] if out.path.index(/\/{1}\d+\/{1}/)  #cuts after /id/ for a&a
+        out.path = out.path.split('.').first #cut extension
+        port = (out.scheme=="http" && out.port==80)||(out.scheme=="https" && out.port==443) ? "" : ":#{out.port.to_s}"
+        "#{out.scheme}://#{out.host}#{port}#{out.path.chomp("/")}" #"
+      end
+
+      # Unprotected uri for login
+      def login_request?
+        return env['REQUEST_URI'] =~ /\/login$/
+       end
+
+      # Check if URI returns code 200 //used in model/lazar.rb
+      # @param [String]URLString
+      # @return [Boolean] true/false
+      def uri_available?(urlStr)
+        url = URI.parse(urlStr)
+        subjectidstr = @subjectid ? "?subjectid=#{CGI.escape @subjectid}" : ""
+        http = Net::HTTP.new(url.host, url.port)
+        if url.is_a?(URI::HTTPS)
+          http.use_ssl = true
+          http.verify_mode = OpenSSL::SSL::VERIFY_NONE
+        end
+        return http.head("#{url.request_uri}#{subjectidstr}").code == "200"
+      end
+
+      # Get subjectid out of session, params or rack-environment and unescape it if necessary
+      # @return [String] subjectid
+      def get_subjectid
+        begin
+          subjectid = nil
+          subjectid = session[:subjectid] if session[:subjectid]
+          subjectid = params[:subjectid]  if params[:subjectid] and !subjectid
+          subjectid = request.env['HTTP_SUBJECTID'] if request.env['HTTP_SUBJECTID'] and !subjectid
+          # see http://rack.rubyforge.org/doc/SPEC.html
+          subjectid = CGI.unescape(subjectid) if subjectid.include?("%23")
+          @subjectid = subjectid
+        rescue
+          @subjectid = nil
+        end
+      end
+
+    end
+
+    before do
+      get_subjectid()
+      unless !$aa[:uri] or login_request? or $aa[:free_request].include?(env['REQUEST_METHOD'].to_sym)
+        protected!(@subjectid)
+      end
+    end
+  end
+end

data/lib/file-store.rb

@@ -0,0 +1,37 @@
+FileUtils.mkdir_p File.join(File.dirname(__FILE__),"private")
+
+module OpenTox
+
+  # Base class for OpenTox services
+  class FileStore < Service 
+
+    helpers do
+      def next_id
+        id = Dir["./private/*.nt"].collect{|f| File.basename(f,"nt").to_i}.sort.last
+        id = 0 if id.nil?
+        id + 1
+      end
+
+      def file id
+        File.join File.dirname(File.expand_path __FILE__), "private", "#{id.to_s}.nt"
+      end
+
+      def uri_list
+        Dir["./private/*.nt"].collect{|f| url_for File.basename(f,".nt")}.join("\n")
+      end
+    end
+
+    get '/?' do
+      uri_list
+    end
+
+    post '/?' do
+      File.open(file(next_id),"w+"){|f| f.puts request.env["rack.input"].read}
+    end
+
+    get '/:id/?' do
+      send_file file(params[:id])
+    end
+  end
+
+end

data/lib/opentox-server.rb

@@ -3,5 +3,8 @@ require 'rack'
 require 'rack/contrib'
 require 'sinatra'
 require 'sinatra/url_for'
+require 'roo'
 require File.join(File.dirname(__FILE__),"environment.rb")
 require File.join(File.dirname(__FILE__),"opentox.rb")
+require File.join(File.dirname(__FILE__),"file-store.rb")
+require File.join(File.dirname(__FILE__),"authorization-helper.rb")

data/lib/opentox.rb

@@ -2,9 +2,8 @@ require 'sinatra/base'
 require "sinatra/reloader"
 
 module OpenTox
+
   # Base class for OpenTox services
-  # Errors are formated according to acccept-header
-  # Non OpenTox::Errors (defined in error.rb) are handled as internal error (500), stacktrace is logged
   class Service < Sinatra::Base
 
     helpers Sinatra::UrlForHelper
@@ -17,39 +16,43 @@ module OpenTox
       register Sinatra::Reloader
     end
 
+    helpers do
+      def uri
+        params[:id] ? url_for("/#{params[:id]}", :full) : "#{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}"
+      end
+    end
+
+    before do
+      @accept = request.env['HTTP_ACCEPT']
+      response['Content-Type'] = @accept
+      # TODO: A+A
+    end
+
     error do
-      # TODO: set actor, calling OT::Error with uri parameter does not work
+      # TODO: convert to OpenTox::Error and set URI
       error = request.env['sinatra.error']
-      #error.report.actor = "#{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']}"
-      case request.env['HTTP_ACCEPT']
-      when 'application/rdf+xml'
-        content_type 'application/rdf+xml'
-      when /html/
-        content_type 'text/html'
-      when "text/n3"
-        content_type "text/n3"
-      else
-        content_type "text/turtle"
-      end
+      #error.uri = uri
       if error.respond_to? :report
-        case request.env['HTTP_ACCEPT']
+        # Errors are formated according to acccept-header
+        case @accept
         when 'application/rdf+xml'
           body = error.report.to_rdfxml
         when /html/
-          body = error.report.to_yaml
+          # TODO
+          # body = error.report.to_html
+          body = error.report.to_turtle
         when "text/n3"
           body = error.report.to_ntriples
         else
           body = error.report.to_turtle
         end
       else
-        content_type "text/plain"
+        response['Content-Type'] = "text/plain"
         body = error.message
         body += "\n#{error.backtrace}"
       end
-      code = error.http_code if error.respond_to? :http_code
-      code ||= 500
-      halt code, error.report.to_turtle
+      error.respond_to?(:http_code) ? code = error.http_code : code = 500
+      halt code, body
     end
   end
 end

data/opentox-server.gemspec

@@ -3,7 +3,7 @@ $:.push File.expand_path("../lib", __FILE__)
 
 Gem::Specification.new do |s|
   s.name        = "opentox-server"
-  s.version     = "0.0.1pre"
+  s.version     = "0.0.2pre"
   s.authors     = ["Christoph Helma, Martin Guetlein, Andreas Maunz, Micha Rautenberg, David Vorgrimmler"]
   s.email       = ["helma@in-silico.ch"]
   s.homepage    = "http://github.com/opentox/opentox-server"

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: opentox-server
 version: !ruby/object:Gem::Version
-  version: 0.0.1pre
+  version: 0.0.2pre
   prerelease: 5
 platform: ruby
 authors:
@@ -9,11 +9,11 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-03-09 00:00:00.000000000 Z
+date: 2012-04-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: opentox-client
-  requirement: &78527230 !ruby/object:Gem::Requirement
+  requirement: &84856440 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -21,10 +21,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *78527230
+  version_requirements: *84856440
 - !ruby/object:Gem::Dependency
   name: rack
-  requirement: &78526520 !ruby/object:Gem::Requirement
+  requirement: &84855790 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -32,10 +32,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *78526520
+  version_requirements: *84855790
 - !ruby/object:Gem::Dependency
   name: rack-contrib
-  requirement: &78525990 !ruby/object:Gem::Requirement
+  requirement: &84855290 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -43,10 +43,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *78525990
+  version_requirements: *84855290
 - !ruby/object:Gem::Dependency
   name: sinatra
-  requirement: &78525640 !ruby/object:Gem::Requirement
+  requirement: &84854680 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -54,10 +54,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *78525640
+  version_requirements: *84854680
 - !ruby/object:Gem::Dependency
   name: sinatra-contrib
-  requirement: &78525220 !ruby/object:Gem::Requirement
+  requirement: &84853820 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -65,10 +65,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *78525220
+  version_requirements: *84853820
 - !ruby/object:Gem::Dependency
   name: emk-sinatra-url-for
-  requirement: &78508690 !ruby/object:Gem::Requirement
+  requirement: &84852960 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -76,10 +76,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *78508690
+  version_requirements: *84852960
 - !ruby/object:Gem::Dependency
   name: roo
-  requirement: &78508460 !ruby/object:Gem::Requirement
+  requirement: &84851990 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -87,10 +87,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *78508460
+  version_requirements: *84851990
 - !ruby/object:Gem::Dependency
   name: unicorn
-  requirement: &78508120 !ruby/object:Gem::Requirement
+  requirement: &84851710 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -98,7 +98,7 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *78508120
+  version_requirements: *84851710
 description: Ruby library for opentox services
 email:
 - helma@in-silico.ch
@@ -111,7 +111,9 @@ files:
 - LICENSE
 - README
 - Rakefile
+- lib/authorization-helper.rb
 - lib/environment.rb
+- lib/file-store.rb
 - lib/opentox-server.rb
 - lib/opentox.rb
 - opentox-server.gemspec