mirror of
https://github.com/LukeHagar/connexion.git
synced 2025-12-06 12:27:45 +00:00
44ea9336fe
- App and Api options must be provided through the "options" argument (``old_style_options`` have been removed). - You must specify a form content-type in 'consumes' in order to consume form data. - The `Operation` interface has been formalized in the `AbstractOperation` class. - The `Operation` class has been renamed to `Swagger2Operation`. - Array parameter deserialization now follows the Swagger 2.0 spec more closely. In situations when a query parameter is passed multiple times, and the collectionFormat is either csv or pipes, the right-most value will be used. For example, `?q=1,2,3&q=4,5,6` will result in `q = [4, 5, 6]`. The old behavior is available by setting the collectionFormat to `multi`, or by importing `decorators.uri_parsing.AlwaysMultiURIParser` and passing `parser_class=AlwaysMultiURIParser` to your Api. - The spec validator library has changed from `swagger-spec-validator` to `openapi-spec-validator`. - Errors that previously raised `SwaggerValidationError` now raise the `InvalidSpecification` exception. All spec validation errors should be wrapped with `InvalidSpecification`. - Support for nullable/x-nullable, readOnly and writeOnly/x-writeOnly has been added to the standard json schema validator. - Custom validators can now be specified on api level (instead of app level). - Added support for basic authentication and apikey authentication - If unsupported security requirements are defined or ``x-tokenInfoFunc``/``x-tokenInfoUrl`` is missing, connexion now denies requests instead of allowing access without security-check. - Accessing ``connexion.request.user`` / ``flask.request.user`` is no longer supported, use ``connexion.context['user']`` instead
271 lines
8.4 KiB
Python
271 lines
8.4 KiB
Python
import asyncio
|
|
import logging
|
|
import re
|
|
from urllib.parse import parse_qs
|
|
|
|
import jinja2
|
|
|
|
import aiohttp_jinja2
|
|
from aiohttp import web
|
|
from aiohttp.web_exceptions import HTTPNotFound
|
|
from connexion.apis.abstract import AbstractAPI
|
|
from connexion.exceptions import OAuthProblem
|
|
from connexion.handlers import AuthErrorHandler
|
|
from connexion.lifecycle import ConnexionRequest, ConnexionResponse
|
|
from connexion.utils import Jsonifier, is_json_mimetype
|
|
|
|
try:
|
|
import ujson as json
|
|
from functools import partial
|
|
json.dumps = partial(json.dumps, escape_forward_slashes=True)
|
|
|
|
except ImportError: # pragma: no cover
|
|
import json
|
|
|
|
logger = logging.getLogger('connexion.apis.aiohttp_api')
|
|
|
|
|
|
@web.middleware
|
|
@asyncio.coroutine
|
|
def oauth_problem_middleware(request, handler):
|
|
try:
|
|
response = yield from handler(request)
|
|
except OAuthProblem as oauth_error:
|
|
return web.Response(
|
|
status=oauth_error.code,
|
|
body=json.dumps(oauth_error.description).encode(),
|
|
content_type='application/problem+json'
|
|
)
|
|
return response
|
|
|
|
|
|
class AioHttpApi(AbstractAPI):
|
|
def __init__(self, *args, **kwargs):
|
|
self.subapp = web.Application(
|
|
debug=kwargs.get('debug', False),
|
|
middlewares=[oauth_problem_middleware]
|
|
)
|
|
AbstractAPI.__init__(self, *args, **kwargs)
|
|
|
|
aiohttp_jinja2.setup(
|
|
self.subapp,
|
|
loader=jinja2.FileSystemLoader(
|
|
str(self.options.openapi_console_ui_from_dir)
|
|
)
|
|
)
|
|
middlewares = self.options.as_dict().get('middlewares', [])
|
|
self.subapp.middlewares.extend(middlewares)
|
|
|
|
def _set_base_path(self, base_path):
|
|
AbstractAPI._set_base_path(self, base_path)
|
|
self._api_name = AioHttpApi.normalize_string(self.base_path)
|
|
|
|
@staticmethod
|
|
def normalize_string(string):
|
|
return re.sub(r'[^a-zA-Z0-9]', '_', string.strip('/'))
|
|
|
|
def add_openapi_json(self):
|
|
"""
|
|
Adds openapi json to {base_path}/openapi.json
|
|
(or {base_path}/swagger.json for swagger2)
|
|
"""
|
|
logger.debug('Adding spec json: %s/%s', self.base_path,
|
|
self.options.openapi_spec_path)
|
|
self.subapp.router.add_route(
|
|
'GET',
|
|
self.options.openapi_spec_path,
|
|
self._get_openapi_json
|
|
)
|
|
|
|
@asyncio.coroutine
|
|
def _get_openapi_json(self, req):
|
|
return web.Response(
|
|
status=200,
|
|
content_type='application/json',
|
|
body=self.jsonifier.dumps(self.specification.raw)
|
|
)
|
|
|
|
def add_swagger_ui(self):
|
|
"""
|
|
Adds swagger ui to {base_path}/ui/
|
|
"""
|
|
console_ui_path = self.options.openapi_console_ui_path.strip().rstrip('/')
|
|
logger.debug('Adding swagger-ui: %s%s/',
|
|
self.base_path,
|
|
console_ui_path)
|
|
|
|
for path in (
|
|
console_ui_path,
|
|
console_ui_path + '/',
|
|
console_ui_path + '/index.html',
|
|
):
|
|
self.subapp.router.add_route(
|
|
'GET',
|
|
path,
|
|
self._get_swagger_ui_home
|
|
)
|
|
|
|
self.subapp.router.add_static(
|
|
console_ui_path + '/',
|
|
path=str(self.options.openapi_console_ui_from_dir),
|
|
name='swagger_ui_static'
|
|
)
|
|
|
|
@aiohttp_jinja2.template('index.j2')
|
|
@asyncio.coroutine
|
|
def _get_swagger_ui_home(self, req):
|
|
return {'openapi_spec_url': (self.base_path +
|
|
self.options.openapi_spec_path)}
|
|
|
|
def add_auth_on_not_found(self, security, security_definitions):
|
|
"""
|
|
Adds a 404 error handler to authenticate and only expose the 404 status if the security validation pass.
|
|
"""
|
|
logger.debug('Adding path not found authentication')
|
|
not_found_error = AuthErrorHandler(
|
|
self, _HttpNotFoundError(),
|
|
security=security,
|
|
security_definitions=security_definitions
|
|
)
|
|
endpoint_name = "{}_not_found".format(self._api_name)
|
|
self.subapp.router.add_route(
|
|
'*',
|
|
'/{not_found_path}',
|
|
not_found_error.function,
|
|
name=endpoint_name
|
|
)
|
|
|
|
def _add_operation_internal(self, method, path, operation):
|
|
method = method.upper()
|
|
operation_id = operation.operation_id or path
|
|
|
|
logger.debug('... Adding %s -> %s', method, operation_id,
|
|
extra=vars(operation))
|
|
|
|
handler = operation.function
|
|
endpoint_name = '{}_{}_{}'.format(
|
|
self._api_name,
|
|
AioHttpApi.normalize_string(path),
|
|
method.lower()
|
|
)
|
|
self.subapp.router.add_route(
|
|
method, path, handler, name=endpoint_name
|
|
)
|
|
|
|
if not path.endswith('/'):
|
|
self.subapp.router.add_route(
|
|
method, path + '/', handler, name=endpoint_name + '_'
|
|
)
|
|
|
|
@classmethod
|
|
@asyncio.coroutine
|
|
def get_request(cls, req):
|
|
"""Convert aiohttp request to connexion
|
|
|
|
:param req: instance of aiohttp.web.Request
|
|
:return: connexion request instance
|
|
:rtype: ConnexionRequest
|
|
"""
|
|
url = str(req.url)
|
|
logger.debug('Getting data and status code',
|
|
extra={'has_body': req.has_body, 'url': url})
|
|
|
|
query = parse_qs(req.rel_url.query_string)
|
|
headers = {k.decode(): v.decode() for k, v in req.raw_headers}
|
|
body = None
|
|
if req.can_read_body:
|
|
body = yield from req.read()
|
|
|
|
return ConnexionRequest(url=url,
|
|
method=req.method.lower(),
|
|
path_params=dict(req.match_info),
|
|
query=query,
|
|
headers=headers,
|
|
body=body,
|
|
json_getter=lambda: cls.jsonifier.loads(body),
|
|
files={},
|
|
context=req)
|
|
|
|
@classmethod
|
|
@asyncio.coroutine
|
|
def get_response(cls, response, mimetype=None, request=None):
|
|
"""Get response.
|
|
This method is used in the lifecycle decorators
|
|
|
|
:rtype: aiohttp.web.Response
|
|
"""
|
|
while asyncio.iscoroutine(response):
|
|
response = yield from response
|
|
|
|
url = str(request.url) if request else ''
|
|
|
|
logger.debug('Getting data and status code',
|
|
extra={
|
|
'data': response,
|
|
'url': url
|
|
})
|
|
|
|
if isinstance(response, ConnexionResponse):
|
|
response = cls._get_aiohttp_response_from_connexion(response, mimetype)
|
|
|
|
logger.debug('Got data and status code (%d)',
|
|
response.status, extra={'data': response.body, 'url': url})
|
|
|
|
return response
|
|
|
|
@classmethod
|
|
def get_connexion_response(cls, response):
|
|
return ConnexionResponse(
|
|
status_code=response.status,
|
|
mimetype=response.content_type,
|
|
content_type=response.content_type,
|
|
headers=response.headers,
|
|
body=response.body
|
|
)
|
|
|
|
@classmethod
|
|
def _get_aiohttp_response_from_connexion(cls, response, mimetype):
|
|
content_type = response.content_type if response.content_type else \
|
|
response.mimetype if response.mimetype else mimetype
|
|
|
|
body = cls._cast_body(response.body, content_type)
|
|
|
|
return web.Response(
|
|
status=response.status_code,
|
|
content_type=content_type,
|
|
headers=response.headers,
|
|
body=body
|
|
)
|
|
|
|
@classmethod
|
|
def _cast_body(cls, body, content_type):
|
|
if not isinstance(body, bytes):
|
|
if is_json_mimetype(content_type):
|
|
return json.dumps(body).encode()
|
|
|
|
elif isinstance(body, str):
|
|
return body.encode()
|
|
|
|
else:
|
|
return str(body).encode()
|
|
else:
|
|
return body
|
|
|
|
@classmethod
|
|
def _set_jsonifier(cls):
|
|
cls.jsonifier = Jsonifier(json)
|
|
|
|
|
|
class _HttpNotFoundError(HTTPNotFound):
|
|
def __init__(self):
|
|
self.name = 'Not Found'
|
|
self.description = (
|
|
'The requested URL was not found on the server. '
|
|
'If you entered the URL manually please check your spelling and '
|
|
'try again.'
|
|
)
|
|
self.code = type(self).status_code
|
|
self.empty_body = True
|
|
|
|
HTTPNotFound.__init__(self, reason=self.name)
|