paulmataruso/zulip
1
0
Fork 0
mirror of https://github.com/zulip/zulip.git synced 2025-11-13 10:26:28 +00:00
Code Issues Packages Projects Releases Wiki Activity

request: Support converter or json_validator with argument_type="body".

Browse Source 
Signed-off-by: Anders Kaseorg <anders@zulip.com>
This commit is contained in:
Anders Kaseorg
2021-12-14 20:30:39 -05:00
committed by Tim Abbott
parent 970f22380a
commit 04d772b582
3 changed files with 49 additions and 31 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
zerver/lib/request.py
View File

@@ -31,6 +31,7 @@ import zerver.tornado.handlers as handlers
from zerver.lib.exceptions import ErrorCode, InvalidJSONError, JsonableError from zerver.lib.exceptions import ErrorCode, InvalidJSONError, JsonableError
from zerver.lib.notes import BaseNotes from zerver.lib.notes import BaseNotes
from zerver.lib.types import Validator, ViewFuncT from zerver.lib.types import Validator, ViewFuncT
from zerver.lib.validator import check_anything
from zerver.models import Client, Realm from zerver.models import Client, Realm
@@ -168,6 +169,10 @@ class _REQ(Generic[ResultT]):
""" """
if argument_type == "body" and converter is None and json_validator is None:
# legacy behavior
json_validator = cast(Callable[[str, object], ResultT], check_anything)
self.post_var_name = whence self.post_var_name = whence
self.func_var_name: Optional[str] = None self.func_var_name: Optional[str] = None
self.converter = converter self.converter = converter
@@ -206,6 +211,7 @@ def REQ(
*, *,
converter: Callable[[str, str], ResultT], converter: Callable[[str, str], ResultT],
default: ResultT = ..., default: ResultT = ...,
argument_type: Optional[Literal["body"]] = ...,
intentionally_undocumented: bool = ..., intentionally_undocumented: bool = ...,
documentation_pending: bool = ..., documentation_pending: bool = ...,
aliases: Sequence[str] = ..., aliases: Sequence[str] = ...,
@@ -221,6 +227,7 @@ def REQ(
*, *,
default: ResultT = ..., default: ResultT = ...,
json_validator: Validator[ResultT], json_validator: Validator[ResultT],
argument_type: Optional[Literal["body"]] = ...,
intentionally_undocumented: bool = ..., intentionally_undocumented: bool = ...,
documentation_pending: bool = ..., documentation_pending: bool = ...,
aliases: Sequence[str] = ..., aliases: Sequence[str] = ...,
@@ -368,21 +375,21 @@ def has_request_variables(view_func: ViewFuncT) -> ViewFuncT:
continue continue
assert func_var_name is not None assert func_var_name is not None
post_var_name: Optional[str]
if param.argument_type == "body": if param.argument_type == "body":
post_var_name = "request"
try: try:
val = orjson.loads(request.body) val = request.body.decode(request.encoding or "utf-8")
except orjson.JSONDecodeError: except UnicodeDecodeError:
raise InvalidJSONError(_("Malformed JSON")) raise JsonableError(_("Malformed payload"))
kwargs[func_var_name] = val
continue
else: else:
# This is a view bug, not a user error, and thus should throw a 500. # This is a view bug, not a user error, and thus should throw a 500.
assert param.argument_type is None, "Invalid argument type" assert param.argument_type is None, "Invalid argument type"
post_var_names = [param.post_var_name] post_var_names = [param.post_var_name]
post_var_names += param.aliases post_var_names += param.aliases
post_var_name = None
post_var_name: Optional[str] = None
for req_var in post_var_names: for req_var in post_var_names:
assert req_var is not None assert req_var is not None
@@ -397,7 +404,6 @@ def has_request_variables(view_func: ViewFuncT) -> ViewFuncT:
# fails to recognize this for some reason. # fails to recognize this for some reason.
continue # nocoverage continue # nocoverage
if post_var_name is not None: if post_var_name is not None:
assert req_var is not None
raise RequestConfusingParmsError(post_var_name, req_var) raise RequestConfusingParmsError(post_var_name, req_var)
post_var_name = req_var post_var_name = req_var
@@ -422,6 +428,8 @@ def has_request_variables(view_func: ViewFuncT) -> ViewFuncT:
try: try:
val = orjson.loads(val) val = orjson.loads(val)
except orjson.JSONDecodeError: except orjson.JSONDecodeError:
if param.argument_type == "body":
raise InvalidJSONError(_("Malformed JSON"))
raise JsonableError(_('Argument "{}" is not valid JSON.').format(post_var_name)) raise JsonableError(_('Argument "{}" is not valid JSON.').format(post_var_name))
try: try:

4
zerver/lib/validator.py
View File

@@ -58,6 +58,10 @@ from zerver.lib.types import ProfileFieldData, Validator
ResultT = TypeVar("ResultT") ResultT = TypeVar("ResultT")
def check_anything(var_name: str, val: object) -> object:
return val
def check_string(var_name: str, val: object) -> str: def check_string(var_name: str, val: object) -> str:
if not isinstance(val, str): if not isinstance(val, str):
raise ValidationError(_("{var_name} is not a string").format(var_name=var_name)) raise ValidationError(_("{var_name} is not a string").format(var_name=var_name))

6
zerver/tests/test_decorators.py
View File

@@ -248,6 +248,12 @@ class DecoratorTestCase(ZulipTestCase):
) -> HttpResponse: ) -> HttpResponse:
return json_response(data={"payload": payload}) return json_response(data={"payload": payload})
request = HostRequestMock()
request.body = b"\xde\xad\xbe\xef"
with self.assertRaises(JsonableError) as cm:
get_payload(request)
self.assertEqual(str(cm.exception), "Malformed payload")
request = HostRequestMock() request = HostRequestMock()
request.body = b"notjson" request.body = b"notjson"
with self.assertRaises(JsonableError) as cm: with self.assertRaises(JsonableError) as cm: