PyPI - plain - Versions diffs - 0.68.0__py3-none-any.whl → 0.103.0__py3-none-any.whl - Mend

plain 0.68.0py3-none-any.whl → 0.103.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (192) hide show

plain/CHANGELOG.md +684 -1
plain/README.md +1 -1
plain/agents/.claude/rules/plain.md +88 -0
plain/agents/.claude/skills/plain-install/SKILL.md +26 -0
plain/agents/.claude/skills/plain-upgrade/SKILL.md +35 -0
plain/assets/compile.py +25 -12
plain/assets/finders.py +24 -17
plain/assets/fingerprints.py +10 -7
plain/assets/urls.py +1 -1
plain/assets/views.py +47 -33
plain/chores/README.md +25 -23
plain/chores/__init__.py +2 -1
plain/chores/core.py +27 -0
plain/chores/registry.py +23 -36
plain/cli/README.md +185 -16
plain/cli/__init__.py +2 -1
plain/cli/agent.py +234 -0
plain/cli/build.py +7 -8
plain/cli/changelog.py +11 -5
plain/cli/chores.py +32 -34
plain/cli/core.py +110 -26
plain/cli/docs.py +98 -21
plain/cli/formatting.py +40 -17
plain/cli/install.py +10 -54
plain/cli/{agent/llmdocs.py → llmdocs.py} +45 -26
plain/cli/output.py +6 -2
plain/cli/preflight.py +27 -75
plain/cli/print.py +4 -4
plain/cli/registry.py +96 -10
plain/cli/{agent/request.py → request.py} +67 -33
plain/cli/runtime.py +45 -0
plain/cli/scaffold.py +2 -7
plain/cli/server.py +153 -0
plain/cli/settings.py +53 -49
plain/cli/shell.py +15 -12
plain/cli/startup.py +9 -8
plain/cli/upgrade.py +17 -104
plain/cli/urls.py +12 -7
plain/cli/utils.py +3 -3
plain/csrf/README.md +65 -40
plain/csrf/middleware.py +53 -43
plain/debug.py +5 -2
plain/exceptions.py +22 -114
plain/forms/README.md +453 -24
plain/forms/__init__.py +55 -4
plain/forms/boundfield.py +15 -8
plain/forms/exceptions.py +1 -1
plain/forms/fields.py +346 -143
plain/forms/forms.py +75 -45
plain/http/README.md +356 -9
plain/http/__init__.py +41 -26
plain/http/cookie.py +15 -7
plain/http/exceptions.py +65 -0
plain/http/middleware.py +32 -0
plain/http/multipartparser.py +99 -88
plain/http/request.py +362 -250
plain/http/response.py +99 -197
plain/internal/__init__.py +8 -1
plain/internal/files/base.py +35 -19
plain/internal/files/locks.py +19 -11
plain/internal/files/move.py +8 -3
plain/internal/files/temp.py +25 -6
plain/internal/files/uploadedfile.py +47 -28
plain/internal/files/uploadhandler.py +64 -58
plain/internal/files/utils.py +24 -10
plain/internal/handlers/base.py +34 -23
plain/internal/handlers/exception.py +68 -65
plain/internal/handlers/wsgi.py +65 -54
plain/internal/middleware/headers.py +37 -11
plain/internal/middleware/hosts.py +11 -8
plain/internal/middleware/https.py +17 -7
plain/internal/middleware/slash.py +14 -9
plain/internal/reloader.py +77 -0
plain/json.py +2 -1
plain/logs/README.md +161 -62
plain/logs/__init__.py +1 -1
plain/logs/{loggers.py → app.py} +71 -67
plain/logs/configure.py +63 -14
plain/logs/debug.py +17 -6
plain/logs/filters.py +15 -0
plain/logs/formatters.py +7 -4
plain/packages/README.md +105 -23
plain/packages/config.py +15 -7
plain/packages/registry.py +27 -16
plain/paginator.py +31 -21
plain/preflight/README.md +209 -24
plain/preflight/__init__.py +1 -0
plain/preflight/checks.py +3 -1
plain/preflight/files.py +3 -1
plain/preflight/registry.py +26 -11
plain/preflight/results.py +15 -7
plain/preflight/security.py +15 -13
plain/preflight/settings.py +54 -0
plain/preflight/urls.py +4 -1
plain/runtime/README.md +115 -47
plain/runtime/__init__.py +10 -6
plain/runtime/global_settings.py +34 -25
plain/runtime/secret.py +20 -0
plain/runtime/user_settings.py +110 -38
plain/runtime/utils.py +1 -1
plain/server/LICENSE +35 -0
plain/server/README.md +155 -0
plain/server/__init__.py +9 -0
plain/server/app.py +52 -0
plain/server/arbiter.py +555 -0
plain/server/config.py +118 -0
plain/server/errors.py +31 -0
plain/server/glogging.py +292 -0
plain/server/http/__init__.py +12 -0
plain/server/http/body.py +283 -0
plain/server/http/errors.py +155 -0
plain/server/http/message.py +400 -0
plain/server/http/parser.py +70 -0
plain/server/http/unreader.py +88 -0
plain/server/http/wsgi.py +421 -0
plain/server/pidfile.py +92 -0
plain/server/sock.py +240 -0
plain/server/util.py +317 -0
plain/server/workers/__init__.py +6 -0
plain/server/workers/base.py +304 -0
plain/server/workers/sync.py +212 -0
plain/server/workers/thread.py +399 -0
plain/server/workers/workertmp.py +50 -0
plain/signals/README.md +170 -1
plain/signals/__init__.py +0 -1
plain/signals/dispatch/dispatcher.py +49 -27
plain/signing.py +131 -35
plain/templates/README.md +211 -20
plain/templates/jinja/__init__.py +13 -5
plain/templates/jinja/environments.py +5 -4
plain/templates/jinja/extensions.py +12 -5
plain/templates/jinja/filters.py +7 -2
plain/templates/jinja/globals.py +2 -2
plain/test/README.md +184 -22
plain/test/client.py +340 -222
plain/test/encoding.py +9 -6
plain/test/exceptions.py +7 -2
plain/urls/README.md +157 -73
plain/urls/converters.py +18 -15
plain/urls/exceptions.py +2 -2
plain/urls/patterns.py +38 -22
plain/urls/resolvers.py +35 -25
plain/urls/utils.py +5 -1
plain/utils/README.md +250 -3
plain/utils/cache.py +17 -11
plain/utils/crypto.py +21 -5
plain/utils/datastructures.py +89 -56
plain/utils/dateparse.py +9 -6
plain/utils/deconstruct.py +15 -7
plain/utils/decorators.py +5 -1
plain/utils/dotenv.py +373 -0
plain/utils/duration.py +8 -4
plain/utils/encoding.py +14 -7
plain/utils/functional.py +66 -49
plain/utils/hashable.py +5 -1
plain/utils/html.py +36 -22
plain/utils/http.py +16 -9
plain/utils/inspect.py +14 -6
plain/utils/ipv6.py +7 -3
plain/utils/itercompat.py +6 -1
plain/utils/module_loading.py +7 -3
plain/utils/regex_helper.py +37 -23
plain/utils/safestring.py +14 -6
plain/utils/text.py +41 -23
plain/utils/timezone.py +33 -22
plain/utils/tree.py +35 -19
plain/validators.py +94 -52
plain/views/README.md +156 -79
plain/views/__init__.py +0 -1
plain/views/base.py +25 -18
plain/views/errors.py +13 -5
plain/views/exceptions.py +4 -1
plain/views/forms.py +6 -6
plain/views/objects.py +52 -49
plain/views/redirect.py +18 -15
plain/views/templates.py +5 -3
plain/wsgi.py +3 -1
{plain-0.68.0.dist-info → plain-0.103.0.dist-info}/METADATA +4 -2
plain-0.103.0.dist-info/RECORD +198 -0
{plain-0.68.0.dist-info → plain-0.103.0.dist-info}/WHEEL +1 -1
plain-0.103.0.dist-info/entry_points.txt +2 -0
plain/AGENTS.md +0 -18
plain/cli/agent/__init__.py +0 -20
plain/cli/agent/docs.py +0 -80
plain/cli/agent/md.py +0 -87
plain/cli/agent/prompt.py +0 -45
plain/csrf/views.py +0 -31
plain/logs/utils.py +0 -46
plain/templates/AGENTS.md +0 -3
plain-0.68.0.dist-info/RECORD +0 -169
plain-0.68.0.dist-info/entry_points.txt +0 -5
{plain-0.68.0.dist-info → plain-0.103.0.dist-info}/licenses/LICENSE +0 -0

plain/signals/dispatch/dispatcher.py CHANGED Viewed

@@ -1,22 +1,29 @@
+from __future__ import annotations
 import logging
 import threading
 import weakref
+from collections.abc import Callable
+from typing import TYPE_CHECKING, Any
 from plain.utils.inspect import func_accepts_kwargs
-logger = logging.getLogger("plain.signals.dispatch")
+if TYPE_CHECKING:
+    from collections.abc import Sequence
+_logger = logging.getLogger("plain.signals.dispatch")
-def _make_id(target):
+def _make_id(target: Any) -> int | tuple[int, int]:
     if hasattr(target, "__func__"):
         return (id(target.__self__), id(target.__func__))
     return id(target)
-NONE_ID = _make_id(None)
+_NONE_ID = _make_id(None)
 # A marker for caching
-NO_RECEIVERS = object()
+_NO_RECEIVERS = object()
 class Signal:
@@ -29,7 +36,7 @@ class Signal:
             { receiverkey (id) : weakref(receiver) }
     """
-    def __init__(self, use_caching=False):
+    def __init__(self, use_caching: bool = False):
         """
         Create a new signal.
         """
@@ -44,7 +51,13 @@ class Signal:
         self.sender_receivers_cache = weakref.WeakKeyDictionary() if use_caching else {}
         self._dead_receivers = False
-    def connect(self, receiver, sender=None, weak=True, dispatch_uid=None):
+    def connect(
+        self,
+        receiver: Callable[..., Any],
+        sender: Any = None,
+        weak: bool = True,
+        dispatch_uid: Any = None,
+    ) -> None:
         """
         Connect receiver to sender for signal.
@@ -111,7 +124,12 @@ class Signal:
                 self.receivers.append((lookup_key, receiver))
             self.sender_receivers_cache.clear()
-    def disconnect(self, receiver=None, sender=None, dispatch_uid=None):
+    def disconnect(
+        self,
+        receiver: Callable[..., Any] | None = None,
+        sender: Any = None,
+        dispatch_uid: Any = None,
+    ) -> bool:
         """
         Disconnect receiver from sender for signal.
@@ -147,11 +165,11 @@ class Signal:
             self.sender_receivers_cache.clear()
         return disconnected
-    def has_listeners(self, sender=None):
+    def has_listeners(self, sender: Any = None) -> bool:
         sync_receivers = self._live_receivers(sender)
         return bool(sync_receivers)
-    def send(self, sender, **named):
+    def send(self, sender: Any, **named: Any) -> list[tuple[Callable[..., Any], Any]]:
         """
         Send signal from sender to all connected receivers.
@@ -175,7 +193,7 @@ class Signal:
         """
         if (
             not self.receivers
-            or self.sender_receivers_cache.get(sender) is NO_RECEIVERS
+            or self.sender_receivers_cache.get(sender) is _NO_RECEIVERS
         ):
             return []
         responses = []
@@ -185,15 +203,17 @@ class Signal:
             responses.append((receiver, response))
         return responses
-    def _log_robust_failure(self, receiver, err):
-        logger.error(
+    def _log_robust_failure(self, receiver: Callable[..., Any], err: Exception) -> None:
+        _logger.error(
             "Error calling %s in Signal.send_robust() (%s)",
-            receiver.__qualname__,
+            getattr(receiver, "__qualname__", repr(receiver)),
             err,
             exc_info=err,
         )
-    def send_robust(self, sender, **named):
+    def send_robust(
+        self, sender: Any, **named: Any
+    ) -> list[tuple[Callable[..., Any], Any]]:
         """
         Send signal from sender to all connected receivers catching errors.
@@ -218,7 +238,7 @@ class Signal:
         """
         if (
             not self.receivers
-            or self.sender_receivers_cache.get(sender) is NO_RECEIVERS
+            or self.sender_receivers_cache.get(sender) is _NO_RECEIVERS
         ):
             return []
@@ -236,7 +256,7 @@ class Signal:
                 responses.append((receiver, response))
         return responses
-    def _clear_dead_receivers(self):
+    def _clear_dead_receivers(self) -> None:
         # Note: caller is assumed to hold self.lock.
         if self._dead_receivers:
             self._dead_receivers = False
@@ -246,7 +266,7 @@ class Signal:
                 if not (isinstance(r[1], weakref.ReferenceType) and r[1]() is None)
             ]
-    def _live_receivers(self, sender):
+    def _live_receivers(self, sender: Any) -> list[Callable[..., Any]]:
         """
         Filter sequence of receivers to get resolved, live receivers.
@@ -256,9 +276,9 @@ class Signal:
         receivers = None
         if self.use_caching and not self._dead_receivers:
             receivers = self.sender_receivers_cache.get(sender)
-            # We could end up here with NO_RECEIVERS even if we do check this case in
+            # We could end up here with _NO_RECEIVERS even if we do check this case in
             # .send() prior to calling _live_receivers() due to concurrent .send() call.
-            if receivers is NO_RECEIVERS:
+            if receivers is _NO_RECEIVERS:
                 return []
         if receivers is None:
             with self.lock:
@@ -266,11 +286,11 @@ class Signal:
                 senderkey = _make_id(sender)
                 receivers = []
                 for (_receiverkey, r_senderkey), receiver in self.receivers:
-                    if r_senderkey == NONE_ID or r_senderkey == senderkey:
+                    if r_senderkey == _NONE_ID or r_senderkey == senderkey:
                         receivers.append(receiver)
                 if self.use_caching:
                     if not receivers:
-                        self.sender_receivers_cache[sender] = NO_RECEIVERS
+                        self.sender_receivers_cache[sender] = _NO_RECEIVERS
                     else:
                         # Note, we must cache the weakref versions.
                         self.sender_receivers_cache[sender] = receivers
@@ -285,7 +305,7 @@ class Signal:
                 non_weak_sync_receivers.append(receiver)
         return non_weak_sync_receivers
-    def _remove_receiver(self, receiver=None):
+    def _remove_receiver(self, receiver: Any = None) -> None:
         # Mark that the self.receivers list has dead weakrefs. If so, we will
         # clean those up in connect, disconnect and _live_receivers while
         # holding self.lock. Note that doing the cleanup here isn't a good
@@ -295,7 +315,9 @@ class Signal:
         self._dead_receivers = True
-def receiver(signal, **kwargs):
+def receiver(
+    signal: Signal | Sequence[Signal], **kwargs: Any
+) -> Callable[[Callable[..., Any]], Callable[..., Any]]:
     """
     A decorator for connecting receivers to signals. Used by passing in the
     signal (or list of signals) and keyword arguments to connect::
@@ -309,12 +331,12 @@ def receiver(signal, **kwargs):
             ...
     """
-    def _decorator(func):
-        if isinstance(signal, list | tuple):
+    def _decorator(func: Callable[..., Any]) -> Callable[..., Any]:
+        if isinstance(signal, Signal):
+            signal.connect(func, **kwargs)
+        else:
             for s in signal:
                 s.connect(func, **kwargs)
-        else:
-            signal.connect(func, **kwargs)
         return func
     return _decorator

plain/signing.py CHANGED Viewed

@@ -33,12 +33,15 @@ There are 65 url-safe characters: the 64 used by url-safe base64 and the ':'.
 These functions make use of all of them.
 """
+from __future__ import annotations
 import base64
 import datetime
 import hmac
 import json
 import time
 import zlib
+from typing import Any
 from plain.runtime import settings
 from plain.utils.crypto import salted_hmac
@@ -61,7 +64,7 @@ class SignatureExpired(BadSignature):
     pass
-def b62_encode(s):
+def b62_encode(s: int) -> str:
     if s == 0:
         return "0"
     sign = "-" if s < 0 else ""
@@ -73,7 +76,7 @@ def b62_encode(s):
     return sign + encoded
-def b62_decode(s):
+def b62_decode(s: str) -> int:
     if s == "0":
         return 0
     sign = 1
@@ -86,16 +89,16 @@ def b62_decode(s):
     return sign * decoded
-def b64_encode(s):
+def b64_encode(s: bytes) -> bytes:
     return base64.urlsafe_b64encode(s).strip(b"=")
-def b64_decode(s):
+def b64_decode(s: bytes) -> bytes:
     pad = b"=" * (-len(s) % 4)
     return base64.urlsafe_b64decode(s + pad)
-def base64_hmac(salt, value, key, algorithm="sha1"):
+def base64_hmac(salt: str, value: str, key: str, algorithm: str = "sha1") -> str:
     return b64_encode(
         salted_hmac(salt, value, key, algorithm=algorithm).digest()
     ).decode()
@@ -107,16 +110,20 @@ class JSONSerializer:
     signing.loads.
     """
-    def dumps(self, obj):
+    def dumps(self, obj: Any) -> bytes:
         return json.dumps(obj, separators=(",", ":")).encode("latin-1")
-    def loads(self, data):
+    def loads(self, data: bytes) -> Any:
         return json.loads(data.decode("latin-1"))
 def dumps(
-    obj, key=None, salt="plain.signing", serializer=JSONSerializer, compress=False
-):
+    obj: Any,
+    key: str | None = None,
+    salt: str = "plain.signing",
+    serializer: type[JSONSerializer] = JSONSerializer,
+    compress: bool = False,
+) -> str:
     """
     Return URL-safe, hmac signed base64 compressed JSON string. If key is
     None, use settings.SECRET_KEY instead. The hmac algorithm is the default
@@ -139,13 +146,13 @@ def dumps(
 def loads(
-    s,
-    key=None,
-    salt="plain.signing",
-    serializer=JSONSerializer,
-    max_age=None,
-    fallback_keys=None,
-):
+    s: str,
+    key: str | None = None,
+    salt: str = "plain.signing",
+    serializer: type[JSONSerializer] = JSONSerializer,
+    max_age: int | float | datetime.timedelta | None = None,
+    fallback_keys: list[str] | None = None,
+) -> Any:
     """
     Reverse of dumps(), raise BadSignature if signature fails.
@@ -164,12 +171,12 @@ class Signer:
     def __init__(
         self,
         *,
-        key=None,
-        sep=":",
-        salt=None,
-        algorithm="sha256",
-        fallback_keys=None,
-    ):
+        key: str | None = None,
+        sep: str = ":",
+        salt: str | None = None,
+        algorithm: str = "sha256",
+        fallback_keys: list[str] | None = None,
+    ) -> None:
         self.key = key or settings.SECRET_KEY
         self.fallback_keys = (
             fallback_keys
@@ -186,14 +193,14 @@ class Signer:
                 "only A-z0-9-_=)",
             )
-    def signature(self, value, key=None):
+    def signature(self, value: str, key: str | None = None) -> str:
         key = key or self.key
         return base64_hmac(self.salt + "signer", value, key, algorithm=self.algorithm)
-    def sign(self, value):
+    def sign(self, value: str) -> str:
         return f"{value}{self.sep}{self.signature(value)}"
-    def unsign(self, signed_value):
+    def unsign(self, signed_value: str) -> str:
         if self.sep not in signed_value:
             raise BadSignature(f'No "{self.sep}" found in value')
         value, sig = signed_value.rsplit(self.sep, 1)
@@ -204,7 +211,12 @@ class Signer:
                 return value
         raise BadSignature(f'Signature "{sig}" does not match')
-    def sign_object(self, obj, serializer=JSONSerializer, compress=False):
+    def sign_object(
+        self,
+        obj: Any,
+        serializer: type[JSONSerializer] = JSONSerializer,
+        compress: bool = False,
+    ) -> str:
         """
         Return URL-safe, hmac signed base64 compressed JSON string.
@@ -229,7 +241,12 @@ class Signer:
             base64d = "." + base64d
         return self.sign(base64d)
-    def unsign_object(self, signed_obj, serializer=JSONSerializer, **kwargs):
+    def unsign_object(
+        self,
+        signed_obj: str,
+        serializer: type[JSONSerializer] = JSONSerializer,
+        **kwargs: Any,
+    ) -> Any:
         # Signer.unsign() returns str but base64 and zlib compression operate
         # on bytes.
         base64d = self.unsign(signed_obj, **kwargs).encode()
@@ -243,27 +260,106 @@ class Signer:
         return serializer().loads(data)
-class TimestampSigner(Signer):
-    def timestamp(self):
+class TimestampSigner:
+    """A signer that includes a timestamp for max_age validation.
+    Uses composition rather than inheritance since the interface
+    intentionally differs from Signer (unsign accepts max_age parameter).
+    """
+    def __init__(
+        self,
+        *,
+        key: str | None = None,
+        sep: str = ":",
+        salt: str | None = None,
+        algorithm: str = "sha256",
+        fallback_keys: list[str] | None = None,
+    ) -> None:
+        # Compute default salt here to preserve backwards compatibility.
+        # When TimestampSigner inherited from Signer, the default salt was
+        # "plain.signing.TimestampSigner". Now that we use composition,
+        # we must set it explicitly rather than letting Signer compute its own.
+        if salt is None:
+            salt = f"{self.__class__.__module__}.{self.__class__.__name__}"
+        self._signer = Signer(
+            key=key,
+            sep=sep,
+            salt=salt,
+            algorithm=algorithm,
+            fallback_keys=fallback_keys,
+        )
+    @property
+    def sep(self) -> str:
+        return self._signer.sep
+    def timestamp(self) -> str:
         return b62_encode(int(time.time()))
-    def sign(self, value):
+    def sign(self, value: str) -> str:
         value = f"{value}{self.sep}{self.timestamp()}"
-        return super().sign(value)
+        return self._signer.sign(value)
-    def unsign(self, value, max_age=None):
+    def unsign(
+        self, value: str, max_age: int | float | datetime.timedelta | None = None
+    ) -> str:
         """
         Retrieve original value and check it wasn't signed more
         than max_age seconds ago.
         """
-        result = super().unsign(value)
+        result = self._signer.unsign(value)
         value, timestamp = result.rsplit(self.sep, 1)
-        timestamp = b62_decode(timestamp)
+        ts = b62_decode(timestamp)
         if max_age is not None:
             if isinstance(max_age, datetime.timedelta):
                 max_age = max_age.total_seconds()
             # Check timestamp is not older than max_age
-            age = time.time() - timestamp
+            age = time.time() - ts
             if age > max_age:
                 raise SignatureExpired(f"Signature age {age} > {max_age} seconds")
         return value
+    def sign_object(
+        self,
+        obj: Any,
+        serializer: type[JSONSerializer] = JSONSerializer,
+        compress: bool = False,
+    ) -> str:
+        """
+        Return URL-safe, hmac signed base64 compressed JSON string.
+        If compress is True (not the default), check if compressing using zlib
+        can save some space. Prepend a '.' to signify compression. This is
+        included in the signature, to protect against zip bombs.
+        The serializer is expected to return a bytestring.
+        """
+        data = serializer().dumps(obj)
+        is_compressed = False
+        if compress:
+            compressed = zlib.compress(data)
+            if len(compressed) < (len(data) - 1):
+                data = compressed
+                is_compressed = True
+        base64d = b64_encode(data).decode()
+        if is_compressed:
+            base64d = "." + base64d
+        return self.sign(base64d)
+    def unsign_object(
+        self,
+        signed_obj: str,
+        serializer: type[JSONSerializer] = JSONSerializer,
+        max_age: int | float | datetime.timedelta | None = None,
+    ) -> Any:
+        """Unsign and decode an object, optionally checking max_age."""
+        base64d = self.unsign(signed_obj, max_age=max_age).encode()
+        decompress = base64d[:1] == b"."
+        if decompress:
+            base64d = base64d[1:]
+        data = b64_decode(base64d)
+        if decompress:
+            data = zlib.decompress(data)
+        return serializer().loads(data)

plain 0.68.0__py3-none-any.whl → 0.103.0__py3-none-any.whl

plain 0.68.0py3-none-any.whl → 0.103.0py3-none-any.whl