summaryrefslogtreecommitdiff
path: root/server/src/leap
AgeCommit message (Collapse)Author
2017-05-01[refactor] unify path validationVictor Shyba
2017-05-01[feature] blobs path validationVictor Shyba
Check if user and blob_id are valid strings, then check if the resulting path is a subdirectory of blobs configured path. - Related: #8800
2017-04-26[bug] proper logging of _blobs resource errorsVictor Shyba
2017-04-26[feature] sanitize resource argumentsVictor Shyba
_validate will check if user_id and blob_id are letter, numbers, dashes and underscores. It is called on render_GET and render_POST, validating incoming arguments before handling on backend. - Resolves: #8832
2017-04-26[feature] use Twisted getProcessOutput on backendVictor Shyba
This makes process communication async during quota measurement, as specified on #8832 - Related: #8832
2017-04-04[bug] enable '/blobs/{uuid}' for GET on url_mapperVictor Shyba
2017-04-04[style] fix wrong identationVictor Shyba
2017-04-04[docs] improve docstrings and comments from reviewVictor Shyba
2017-04-04[feature] add blobs listingVictor Shyba
2017-04-04[feature] use 409 status code for existing blob idVictor Shyba
Raising was generating 500, which is a generic status code for server side errors. This commit adds proper status code of 409 while handling the error on client side by translating the code into a proper exception class.
2017-04-04[test] upload/download integration testVictor Shyba
2017-04-04[bug] create dirs before checking disk usageVictor Shyba
2017-04-04[refactor] quota and size configurable on constructorVictor Shyba
2017-04-04[refactor] pass configured blobs resource to server auth classdrebs
2017-04-04[bug] use postpath to get blobs user and id in serverdrebs
2017-04-04[feat] allow blobs urls in serverdrebs
2017-04-04[refactor] create blobs directory on server resource initializationdrebs
2017-04-04[doc] remove excessive signal doc from client apidrebs
2017-04-04[bug] return 0 quota if user's blob dir doesn't existdrebs
2017-04-04[feat] make blobs server path configurabledrebs
2017-04-04[feat] add log to blobs serverdrebs
2017-04-04[feat] improve blobs standalone testing optionsdrebs
2017-04-04[feature] send tag header from serverVictor Shyba
2017-04-04[bug] fix path and config on blobsVictor Shyba
2017-04-04[bug] fix resource parameterVictor Shyba
2017-04-04[style] pep8 fixesVictor Shyba
2017-04-04[bug] fix blobs putdrebs
2017-04-04[feature] implement basic fs quota per userKali Kaneko
this is simplistic, but adds a minimal protection against trivial DoS. the call to the ps command should be fast, but could use some profiling for the case of some ten of thousands files. - Resolves: #8778
2017-04-04[feature] close mvp loop with clientKali Kaneko
2017-04-04[feature] working naive implementation of the backendKali Kaneko
- Resolves: #8757, #8771, #8772
2017-03-17[refactor] Improve python3 compatibilityefkin
With this commit all tests on py34 tox environment are collected.
2017-02-27[style] move path config closer to blobs resource instantiationdrebs
2017-02-27[feat] add configurable blobs path in serverdrebs
- Resolves: #8777
2017-02-17[bug] reuse wsgi threadpoolKali Kaneko
it seems evident that the functions were thought to pass a threadpool along, but it finally wasn't properly passed and so there was a new threadpool created to handle every resource. I have removed the creation from the factory because I don't think it makes sense to create a threadpool on the fly, it's prone to errors. - Resolves: #8774
2017-02-17[refactor] create resources only onceKali Kaneko
it doesn't make sense to create the resources for every request, we can reuse the same resource and create it in the constructor. - Resolves: #8770
2017-02-15[style] pep8Victor Shyba
2017-02-15[tests] fix testsKali Kaneko
2017-02-15[docs] add a to-do about perfKali Kaneko
2017-02-15[feature] add robots.txtKali Kaneko
-Resolves: #6178
2017-02-15[feature] authenticate as anonymous if no token in headerKali Kaneko
and serve / banner and robots to anon users. instead of returning 401 for all cases, I treat the unauthenticated case as a special case, and switch the service tree apart. this allows to serve a different resource tree to unauthenticated users. the new URLs are registered with the mapper. I don't really like that dependency, could be handled by twisted alone, but meh. - Resolves: #8764
2017-02-15[feature] add version to the bannerKali Kaneko
2017-02-15[bug] add expected attribute to authentication wrapper in entrypointKali Kaneko
the authentication wrapper is goin to look for the _credentialFactories attribute. it will raise an exception if not found - Resolves: #8766
2017-02-13[bug] get a new server instance on each request to the tokens dbKali Kaneko
2017-02-12[refactor] update create-user-db script to use config refactorKali Kaneko
2017-02-10[bug] fix config handling after refactorKali Kaneko
2017-02-10[bug] revert loading from the wsgi entrypointKali Kaneko
2017-02-10[bug] effectively load the configuration for the appKali Kaneko
the code for passing the configuration to the couch initialization was never called. it seems the entrypoint module wasn't finally hooked as expected. I think this fixes the problem, but further review is needed here: either the entrypoint module is to be used, or it better is removed. in the first case, this workaround probably needs to be reverted.
2017-02-10[bug] fix import for the session moduleKali Kaneko
2017-02-09[refactor] parametrize blobs toggling in soledad server resourcedrebs
2017-02-09[refacor] make proper use of twisted web dyamic resources in serverdrebs