search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Whitespace normalization.
[python/dscho.git] / Lib / cgi.py
blob487b01e3f2ebb92e9ab90c82a5261a84763a1d0e
1 #! /usr/local/bin/python
2
3 # NOTE: the above "/usr/local/bin/python" is NOT a mistake. It is
4 # intentionally NOT "/usr/bin/env python". On many systems
5 # (e.g. Solaris), /usr/local/bin is not in $PATH as passed to CGI
6 # scripts, and /usr/local/bin is the default directory where Python is
7 # installed, so /usr/bin/env would be unable to find python. Granted,
8 # binary installations by Linux vendors often install Python in
9 # /usr/bin. So let those vendors patch cgi.py to match their choice
10 # of installation.
11
12 """Support module for CGI (Common Gateway Interface) scripts.
13
14 This module defines a number of utilities for use by CGI scripts
15 written in Python.
16 """
17
18 # XXX Perhaps there should be a slimmed version that doesn't contain
19 # all those backwards compatible and debugging classes and functions?
20
21 # History
22 # -------
23 #
24 # Michael McLay started this module. Steve Majewski changed the
25 # interface to SvFormContentDict and FormContentDict. The multipart
26 # parsing was inspired by code submitted by Andreas Paepcke. Guido van
27 # Rossum rewrote, reformatted and documented the module and is currently
28 # responsible for its maintenance.
29 #
30
31 __version__ = "2.6"
32
33
34 # Imports
35 # =======
36
37 import sys
38 import os
39 import urllib
40 import mimetools
41 import rfc822
42 import UserDict
43 from StringIO import StringIO
44
45 __all__ = ["MiniFieldStorage", "FieldStorage", "FormContentDict",
46 "SvFormContentDict", "InterpFormContentDict", "FormContent",
47 "parse", "parse_qs", "parse_qsl", "parse_multipart",
48 "parse_header", "print_exception", "print_environ",
49 "print_form", "print_directory", "print_arguments",
50 "print_environ_usage", "escape"]
51
52 # Logging support
53 # ===============
54
55 logfile = "" # Filename to log to, if not empty
56 logfp = None # File object to log to, if not None
57
58 def initlog(*allargs):
59 """Write a log message, if there is a log file.
60
61 Even though this function is called initlog(), you should always
62 use log(); log is a variable that is set either to initlog
63 (initially), to dolog (once the log file has been opened), or to
64 nolog (when logging is disabled).
65
66 The first argument is a format string; the remaining arguments (if
67 any) are arguments to the % operator, so e.g.
68 log("%s: %s", "a", "b")
69 will write "a: b" to the log file, followed by a newline.
70
71 If the global logfp is not None, it should be a file object to
72 which log data is written.
73
74 If the global logfp is None, the global logfile may be a string
75 giving a filename to open, in append mode. This file should be
76 world writable!!! If the file can't be opened, logging is
77 silently disabled (since there is no safe place where we could
78 send an error message).
79
80 """
81 global logfp, log
82 if logfile and not logfp:
83 try:
84 logfp = open(logfile, "a")
85 except IOError:
86 pass
87 if not logfp:
88 log = nolog
89 else:
90 log = dolog
91 log(*allargs)
92
93 def dolog(fmt, *args):
94 """Write a log message to the log file. See initlog() for docs."""
95 logfp.write(fmt%args + "\n")
96
97 def nolog(*allargs):
98 """Dummy function, assigned to log when logging is disabled."""
99 pass
100
101 log = initlog # The current logging function
102
103
104 # Parsing functions
105 # =================
106
107 # Maximum input we will accept when REQUEST_METHOD is POST
108 # 0 ==> unlimited input
109 maxlen = 0
110
111 def parse(fp=None, environ=os.environ, keep_blank_values=0, strict_parsing=0):
112 """Parse a query in the environment or from a file (default stdin)
113
114 Arguments, all optional:
115
116 fp : file pointer; default: sys.stdin
117
118 environ : environment dictionary; default: os.environ
119
120 keep_blank_values: flag indicating whether blank values in
121 URL encoded forms should be treated as blank strings.
122 A true value indicates that blanks should be retained as
123 blank strings. The default false value indicates that
124 blank values are to be ignored and treated as if they were
125 not included.
126
127 strict_parsing: flag indicating what to do with parsing errors.
128 If false (the default), errors are silently ignored.
129 If true, errors raise a ValueError exception.
130 """
131 if fp is None:
132 fp = sys.stdin
133 if not 'REQUEST_METHOD' in environ:
134 environ['REQUEST_METHOD'] = 'GET' # For testing stand-alone
135 if environ['REQUEST_METHOD'] == 'POST':
136 ctype, pdict = parse_header(environ['CONTENT_TYPE'])
137 if ctype == 'multipart/form-data':
138 return parse_multipart(fp, pdict)
139 elif ctype == 'application/x-www-form-urlencoded':
140 clength = int(environ['CONTENT_LENGTH'])
141 if maxlen and clength > maxlen:
142 raise ValueError, 'Maximum content length exceeded'
143 qs = fp.read(clength)
144 else:
145 qs = '' # Unknown content-type
146 if 'QUERY_STRING' in environ:
147 if qs: qs = qs + '&'
148 qs = qs + environ['QUERY_STRING']
149 elif sys.argv[1:]:
150 if qs: qs = qs + '&'
151 qs = qs + sys.argv[1]
152 environ['QUERY_STRING'] = qs # XXX Shouldn't, really
153 elif 'QUERY_STRING' in environ:
154 qs = environ['QUERY_STRING']
155 else:
156 if sys.argv[1:]:
157 qs = sys.argv[1]
158 else:
159 qs = ""
160 environ['QUERY_STRING'] = qs # XXX Shouldn't, really
161 return parse_qs(qs, keep_blank_values, strict_parsing)
162
163
164 def parse_qs(qs, keep_blank_values=0, strict_parsing=0):
165 """Parse a query given as a string argument.
166
167 Arguments:
168
169 qs: URL-encoded query string to be parsed
170
171 keep_blank_values: flag indicating whether blank values in
172 URL encoded queries should be treated as blank strings.
173 A true value indicates that blanks should be retained as
174 blank strings. The default false value indicates that
175 blank values are to be ignored and treated as if they were
176 not included.
177
178 strict_parsing: flag indicating what to do with parsing errors.
179 If false (the default), errors are silently ignored.
180 If true, errors raise a ValueError exception.
181 """
182 dict = {}
183 for name, value in parse_qsl(qs, keep_blank_values, strict_parsing):
184 if name in dict:
185 dict[name].append(value)
186 else:
187 dict[name] = [value]
188 return dict
189
190 def parse_qsl(qs, keep_blank_values=0, strict_parsing=0):
191 """Parse a query given as a string argument.
192
193 Arguments:
194
195 qs: URL-encoded query string to be parsed
196
197 keep_blank_values: flag indicating whether blank values in
198 URL encoded queries should be treated as blank strings. A
199 true value indicates that blanks should be retained as blank
200 strings. The default false value indicates that blank values
201 are to be ignored and treated as if they were not included.
202
203 strict_parsing: flag indicating what to do with parsing errors. If
204 false (the default), errors are silently ignored. If true,
205 errors raise a ValueError exception.
206
207 Returns a list, as G-d intended.
208 """
209 pairs = [s2 for s1 in qs.split('&') for s2 in s1.split(';')]
210 r = []
211 for name_value in pairs:
212 nv = name_value.split('=', 1)
213 if len(nv) != 2:
214 if strict_parsing:
215 raise ValueError, "bad query field: %r" % (name_value,)
216 # Handle case of a control-name with no equal sign
217 if keep_blank_values:
218 nv.append('')
219 else:
220 continue
221 if len(nv[1]) or keep_blank_values:
222 name = urllib.unquote(nv[0].replace('+', ' '))
223 value = urllib.unquote(nv[1].replace('+', ' '))
224 r.append((name, value))
225
226 return r
227
228
229 def parse_multipart(fp, pdict):
230 """Parse multipart input.
231
232 Arguments:
233 fp : input file
234 pdict: dictionary containing other parameters of conten-type header
235
236 Returns a dictionary just like parse_qs(): keys are the field names, each
237 value is a list of values for that field. This is easy to use but not
238 much good if you are expecting megabytes to be uploaded -- in that case,
239 use the FieldStorage class instead which is much more flexible. Note
240 that content-type is the raw, unparsed contents of the content-type
241 header.
242
243 XXX This does not parse nested multipart parts -- use FieldStorage for
244 that.
245
246 XXX This should really be subsumed by FieldStorage altogether -- no
247 point in having two implementations of the same parsing algorithm.
248
249 """
250 boundary = ""
251 if 'boundary' in pdict:
252 boundary = pdict['boundary']
253 if not valid_boundary(boundary):
254 raise ValueError, ('Invalid boundary in multipart form: %r'
255 % (boundary,))
256
257 nextpart = "--" + boundary
258 lastpart = "--" + boundary + "--"
259 partdict = {}
260 terminator = ""
261
262 while terminator != lastpart:
263 bytes = -1
264 data = None
265 if terminator:
266 # At start of next part. Read headers first.
267 headers = mimetools.Message(fp)
268 clength = headers.getheader('content-length')
269 if clength:
270 try:
271 bytes = int(clength)
272 except ValueError:
273 pass
274 if bytes > 0:
275 if maxlen and bytes > maxlen:
276 raise ValueError, 'Maximum content length exceeded'
277 data = fp.read(bytes)
278 else:
279 data = ""
280 # Read lines until end of part.
281 lines = []
282 while 1:
283 line = fp.readline()
284 if not line:
285 terminator = lastpart # End outer loop
286 break
287 if line[:2] == "--":
288 terminator = line.strip()
289 if terminator in (nextpart, lastpart):
290 break
291 lines.append(line)
292 # Done with part.
293 if data is None:
294 continue
295 if bytes < 0:
296 if lines:
297 # Strip final line terminator
298 line = lines[-1]
299 if line[-2:] == "\r\n":
300 line = line[:-2]
301 elif line[-1:] == "\n":
302 line = line[:-1]
303 lines[-1] = line
304 data = "".join(lines)
305 line = headers['content-disposition']
306 if not line:
307 continue
308 key, params = parse_header(line)
309 if key != 'form-data':
310 continue
311 if 'name' in params:
312 name = params['name']
313 else:
314 continue
315 if name in partdict:
316 partdict[name].append(data)
317 else:
318 partdict[name] = [data]
319
320 return partdict
321
322
323 def parse_header(line):
324 """Parse a Content-type like header.
325
326 Return the main content-type and a dictionary of options.
327
328 """
329 plist = map(lambda x: x.strip(), line.split(';'))
330 key = plist.pop(0).lower()
331 pdict = {}
332 for p in plist:
333 i = p.find('=')
334 if i >= 0:
335 name = p[:i].strip().lower()
336 value = p[i+1:].strip()
337 if len(value) >= 2 and value[0] == value[-1] == '"':
338 value = value[1:-1]
339 pdict[name] = value
340 return key, pdict
341
342
343 # Classes for field storage
344 # =========================
345
346 class MiniFieldStorage:
347
348 """Like FieldStorage, for use when no file uploads are possible."""
349
350 # Dummy attributes
351 filename = None
352 list = None
353 type = None
354 file = None
355 type_options = {}
356 disposition = None
357 disposition_options = {}
358 headers = {}
359
360 def __init__(self, name, value):
361 """Constructor from field name and value."""
362 self.name = name
363 self.value = value
364 # self.file = StringIO(value)
365
366 def __repr__(self):
367 """Return printable representation."""
368 return "MiniFieldStorage(%r, %r)" % (self.name, self.value)
369
370
371 class FieldStorage:
372
373 """Store a sequence of fields, reading multipart/form-data.
374
375 This class provides naming, typing, files stored on disk, and
376 more. At the top level, it is accessible like a dictionary, whose
377 keys are the field names. (Note: None can occur as a field name.)
378 The items are either a Python list (if there's multiple values) or
379 another FieldStorage or MiniFieldStorage object. If it's a single
380 object, it has the following attributes:
381
382 name: the field name, if specified; otherwise None
383
384 filename: the filename, if specified; otherwise None; this is the
385 client side filename, *not* the file name on which it is
386 stored (that's a temporary file you don't deal with)
387
388 value: the value as a *string*; for file uploads, this
389 transparently reads the file every time you request the value
390
391 file: the file(-like) object from which you can read the data;
392 None if the data is stored a simple string
393
394 type: the content-type, or None if not specified
395
396 type_options: dictionary of options specified on the content-type
397 line
398
399 disposition: content-disposition, or None if not specified
400
401 disposition_options: dictionary of corresponding options
402
403 headers: a dictionary(-like) object (sometimes rfc822.Message or a
404 subclass thereof) containing *all* headers
405
406 The class is subclassable, mostly for the purpose of overriding
407 the make_file() method, which is called internally to come up with
408 a file open for reading and writing. This makes it possible to
409 override the default choice of storing all files in a temporary
410 directory and unlinking them as soon as they have been opened.
411
412 """
413
414 def __init__(self, fp=None, headers=None, outerboundary="",
415 environ=os.environ, keep_blank_values=0, strict_parsing=0):
416 """Constructor. Read multipart/* until last part.
417
418 Arguments, all optional:
419
420 fp : file pointer; default: sys.stdin
421 (not used when the request method is GET)
422
423 headers : header dictionary-like object; default:
424 taken from environ as per CGI spec
425
426 outerboundary : terminating multipart boundary
427 (for internal use only)
428
429 environ : environment dictionary; default: os.environ
430
431 keep_blank_values: flag indicating whether blank values in
432 URL encoded forms should be treated as blank strings.
433 A true value indicates that blanks should be retained as
434 blank strings. The default false value indicates that
435 blank values are to be ignored and treated as if they were
436 not included.
437
438 strict_parsing: flag indicating what to do with parsing errors.
439 If false (the default), errors are silently ignored.
440 If true, errors raise a ValueError exception.
441
442 """
443 method = 'GET'
444 self.keep_blank_values = keep_blank_values
445 self.strict_parsing = strict_parsing
446 if 'REQUEST_METHOD' in environ:
447 method = environ['REQUEST_METHOD'].upper()
448 if method == 'GET' or method == 'HEAD':
449 if 'QUERY_STRING' in environ:
450 qs = environ['QUERY_STRING']
451 elif sys.argv[1:]:
452 qs = sys.argv[1]
453 else:
454 qs = ""
455 fp = StringIO(qs)
456 if headers is None:
457 headers = {'content-type':
458 "application/x-www-form-urlencoded"}
459 if headers is None:
460 headers = {}
461 if method == 'POST':
462 # Set default content-type for POST to what's traditional
463 headers['content-type'] = "application/x-www-form-urlencoded"
464 if 'CONTENT_TYPE' in environ:
465 headers['content-type'] = environ['CONTENT_TYPE']
466 if 'CONTENT_LENGTH' in environ:
467 headers['content-length'] = environ['CONTENT_LENGTH']
468 self.fp = fp or sys.stdin
469 self.headers = headers
470 self.outerboundary = outerboundary
471
472 # Process content-disposition header
473 cdisp, pdict = "", {}
474 if 'content-disposition' in self.headers:
475 cdisp, pdict = parse_header(self.headers['content-disposition'])
476 self.disposition = cdisp
477 self.disposition_options = pdict
478 self.name = None
479 if 'name' in pdict:
480 self.name = pdict['name']
481 self.filename = None
482 if 'filename' in pdict:
483 self.filename = pdict['filename']
484
485 # Process content-type header
486 #
487 # Honor any existing content-type header. But if there is no
488 # content-type header, use some sensible defaults. Assume
489 # outerboundary is "" at the outer level, but something non-false
490 # inside a multi-part. The default for an inner part is text/plain,
491 # but for an outer part it should be urlencoded. This should catch
492 # bogus clients which erroneously forget to include a content-type
493 # header.
494 #
495 # See below for what we do if there does exist a content-type header,
496 # but it happens to be something we don't understand.
497 if 'content-type' in self.headers:
498 ctype, pdict = parse_header(self.headers['content-type'])
499 elif self.outerboundary or method != 'POST':
500 ctype, pdict = "text/plain", {}
501 else:
502 ctype, pdict = 'application/x-www-form-urlencoded', {}
503 self.type = ctype
504 self.type_options = pdict
505 self.innerboundary = ""
506 if 'boundary' in pdict:
507 self.innerboundary = pdict['boundary']
508 clen = -1
509 if 'content-length' in self.headers:
510 try:
511 clen = int(self.headers['content-length'])
512 except ValueError:
513 pass
514 if maxlen and clen > maxlen:
515 raise ValueError, 'Maximum content length exceeded'
516 self.length = clen
517
518 self.list = self.file = None
519 self.done = 0
520 if ctype == 'application/x-www-form-urlencoded':
521 self.read_urlencoded()
522 elif ctype[:10] == 'multipart/':
523 self.read_multi(environ, keep_blank_values, strict_parsing)
524 else:
525 self.read_single()
526
527 def __repr__(self):
528 """Return a printable representation."""
529 return "FieldStorage(%r, %r, %r)" % (
530 self.name, self.filename, self.value)
531
532 def __iter__(self):
533 return iter(self.keys())
534
535 def __getattr__(self, name):
536 if name != 'value':
537 raise AttributeError, name
538 if self.file:
539 self.file.seek(0)
540 value = self.file.read()
541 self.file.seek(0)
542 elif self.list is not None:
543 value = self.list
544 else:
545 value = None
546 return value
547
548 def __getitem__(self, key):
549 """Dictionary style indexing."""
550 if self.list is None:
551 raise TypeError, "not indexable"
552 found = []
553 for item in self.list:
554 if item.name == key: found.append(item)
555 if not found:
556 raise KeyError, key
557 if len(found) == 1:
558 return found[0]
559 else:
560 return found
561
562 def getvalue(self, key, default=None):
563 """Dictionary style get() method, including 'value' lookup."""
564 if key in self:
565 value = self[key]
566 if type(value) is type([]):
567 return map(lambda v: v.value, value)
568 else:
569 return value.value
570 else:
571 return default
572
573 def getfirst(self, key, default=None):
574 """ Return the first value received."""
575 if key in self:
576 value = self[key]
577 if type(value) is type([]):
578 return value[0].value
579 else:
580 return value.value
581 else:
582 return default
583
584 def getlist(self, key):
585 """ Return list of received values."""
586 if key in self:
587 value = self[key]
588 if type(value) is type([]):
589 return map(lambda v: v.value, value)
590 else:
591 return [value.value]
592 else:
593 return []
594
595 def keys(self):
596 """Dictionary style keys() method."""
597 if self.list is None:
598 raise TypeError, "not indexable"
599 keys = []
600 for item in self.list:
601 if item.name not in keys: keys.append(item.name)
602 return keys
603
604 def has_key(self, key):
605 """Dictionary style has_key() method."""
606 if self.list is None:
607 raise TypeError, "not indexable"
608 for item in self.list:
609 if item.name == key: return True
610 return False
611
612 def __contains__(self, key):
613 """Dictionary style __contains__ method."""
614 if self.list is None:
615 raise TypeError, "not indexable"
616 for item in self.list:
617 if item.name == key: return True
618 return False
619
620 def __len__(self):
621 """Dictionary style len(x) support."""
622 return len(self.keys())
623
624 def read_urlencoded(self):
625 """Internal: read data in query string format."""
626 qs = self.fp.read(self.length)
627 self.list = list = []
628 for key, value in parse_qsl(qs, self.keep_blank_values,
629 self.strict_parsing):
630 list.append(MiniFieldStorage(key, value))
631 self.skip_lines()
632
633 FieldStorageClass = None
634
635 def read_multi(self, environ, keep_blank_values, strict_parsing):
636 """Internal: read a part that is itself multipart."""
637 ib = self.innerboundary
638 if not valid_boundary(ib):
639 raise ValueError, 'Invalid boundary in multipart form: %r' % (ib,)
640 self.list = []
641 klass = self.FieldStorageClass or self.__class__
642 part = klass(self.fp, {}, ib,
643 environ, keep_blank_values, strict_parsing)
644 # Throw first part away
645 while not part.done:
646 headers = rfc822.Message(self.fp)
647 part = klass(self.fp, headers, ib,
648 environ, keep_blank_values, strict_parsing)
649 self.list.append(part)
650 self.skip_lines()
651
652 def read_single(self):
653 """Internal: read an atomic part."""
654 if self.length >= 0:
655 self.read_binary()
656 self.skip_lines()
657 else:
658 self.read_lines()
659 self.file.seek(0)
660
661 bufsize = 8*1024 # I/O buffering size for copy to file
662
663 def read_binary(self):
664 """Internal: read binary data."""
665 self.file = self.make_file('b')
666 todo = self.length
667 if todo >= 0:
668 while todo > 0:
669 data = self.fp.read(min(todo, self.bufsize))
670 if not data:
671 self.done = -1
672 break
673 self.file.write(data)
674 todo = todo - len(data)
675
676 def read_lines(self):
677 """Internal: read lines until EOF or outerboundary."""
678 self.file = self.__file = StringIO()
679 if self.outerboundary:
680 self.read_lines_to_outerboundary()
681 else:
682 self.read_lines_to_eof()
683
684 def __write(self, line):
685 if self.__file is not None:
686 if self.__file.tell() + len(line) > 1000:
687 self.file = self.make_file('')
688 self.file.write(self.__file.getvalue())
689 self.__file = None
690 self.file.write(line)
691
692 def read_lines_to_eof(self):
693 """Internal: read lines until EOF."""
694 while 1:
695 line = self.fp.readline()
696 if not line:
697 self.done = -1
698 break
699 self.__write(line)
700
701 def read_lines_to_outerboundary(self):
702 """Internal: read lines until outerboundary."""
703 next = "--" + self.outerboundary
704 last = next + "--"
705 delim = ""
706 while 1:
707 line = self.fp.readline()
708 if not line:
709 self.done = -1
710 break
711 if line[:2] == "--":
712 strippedline = line.strip()
713 if strippedline == next:
714 break
715 if strippedline == last:
716 self.done = 1
717 break
718 odelim = delim
719 if line[-2:] == "\r\n":
720 delim = "\r\n"
721 line = line[:-2]
722 elif line[-1] == "\n":
723 delim = "\n"
724 line = line[:-1]
725 else:
726 delim = ""
727 self.__write(odelim + line)
728
729 def skip_lines(self):
730 """Internal: skip lines until outer boundary if defined."""
731 if not self.outerboundary or self.done:
732 return
733 next = "--" + self.outerboundary
734 last = next + "--"
735 while 1:
736 line = self.fp.readline()
737 if not line:
738 self.done = -1
739 break
740 if line[:2] == "--":
741 strippedline = line.strip()
742 if strippedline == next:
743 break
744 if strippedline == last:
745 self.done = 1
746 break
747
748 def make_file(self, binary=None):
749 """Overridable: return a readable & writable file.
750
751 The file will be used as follows:
752 - data is written to it
753 - seek(0)
754 - data is read from it
755
756 The 'binary' argument is unused -- the file is always opened
757 in binary mode.
758
759 This version opens a temporary file for reading and writing,
760 and immediately deletes (unlinks) it. The trick (on Unix!) is
761 that the file can still be used, but it can't be opened by
762 another process, and it will automatically be deleted when it
763 is closed or when the current process terminates.
764
765 If you want a more permanent file, you derive a class which
766 overrides this method. If you want a visible temporary file
767 that is nevertheless automatically deleted when the script
768 terminates, try defining a __del__ method in a derived class
769 which unlinks the temporary files you have created.
770
771 """
772 import tempfile
773 return tempfile.TemporaryFile("w+b")
774
775
776
777 # Backwards Compatibility Classes
778 # ===============================
779
780 class FormContentDict(UserDict.UserDict):
781 """Form content as dictionary with a list of values per field.
782
783 form = FormContentDict()
784
785 form[key] -> [value, value, ...]
786 key in form -> Boolean
787 form.keys() -> [key, key, ...]
788 form.values() -> [[val, val, ...], [val, val, ...], ...]
789 form.items() -> [(key, [val, val, ...]), (key, [val, val, ...]), ...]
790 form.dict == {key: [val, val, ...], ...}
791
792 """
793 def __init__(self, environ=os.environ):
794 self.dict = self.data = parse(environ=environ)
795 self.query_string = environ['QUERY_STRING']
796
797
798 class SvFormContentDict(FormContentDict):
799 """Form content as dictionary expecting a single value per field.
800
801 If you only expect a single value for each field, then form[key]
802 will return that single value. It will raise an IndexError if
803 that expectation is not true. If you expect a field to have
804 possible multiple values, than you can use form.getlist(key) to
805 get all of the values. values() and items() are a compromise:
806 they return single strings where there is a single value, and
807 lists of strings otherwise.
808
809 """
810 def __getitem__(self, key):
811 if len(self.dict[key]) > 1:
812 raise IndexError, 'expecting a single value'
813 return self.dict[key][0]
814 def getlist(self, key):
815 return self.dict[key]
816 def values(self):
817 result = []
818 for value in self.dict.values():
819 if len(value) == 1:
820 result.append(value[0])
821 else: result.append(value)
822 return result
823 def items(self):
824 result = []
825 for key, value in self.dict.items():
826 if len(value) == 1:
827 result.append((key, value[0]))
828 else: result.append((key, value))
829 return result
830
831
832 class InterpFormContentDict(SvFormContentDict):
833 """This class is present for backwards compatibility only."""
834 def __getitem__(self, key):
835 v = SvFormContentDict.__getitem__(self, key)
836 if v[0] in '0123456789+-.':
837 try: return int(v)
838 except ValueError:
839 try: return float(v)
840 except ValueError: pass
841 return v.strip()
842 def values(self):
843 result = []
844 for key in self.keys():
845 try:
846 result.append(self[key])
847 except IndexError:
848 result.append(self.dict[key])
849 return result
850 def items(self):
851 result = []
852 for key in self.keys():
853 try:
854 result.append((key, self[key]))
855 except IndexError:
856 result.append((key, self.dict[key]))
857 return result
858
859
860 class FormContent(FormContentDict):
861 """This class is present for backwards compatibility only."""
862 def values(self, key):
863 if key in self.dict :return self.dict[key]
864 else: return None
865 def indexed_value(self, key, location):
866 if key in self.dict:
867 if len(self.dict[key]) > location:
868 return self.dict[key][location]
869 else: return None
870 else: return None
871 def value(self, key):
872 if key in self.dict: return self.dict[key][0]
873 else: return None
874 def length(self, key):
875 return len(self.dict[key])
876 def stripped(self, key):
877 if key in self.dict: return self.dict[key][0].strip()
878 else: return None
879 def pars(self):
880 return self.dict
881
882
883 # Test/debug code
884 # ===============
885
886 def test(environ=os.environ):
887 """Robust test CGI script, usable as main program.
888
889 Write minimal HTTP headers and dump all information provided to
890 the script in HTML form.
891
892 """
893 print "Content-type: text/html"
894 print
895 sys.stderr = sys.stdout
896 try:
897 form = FieldStorage() # Replace with other classes to test those
898 print_directory()
899 print_arguments()
900 print_form(form)
901 print_environ(environ)
902 print_environ_usage()
903 def f():
904 exec "testing print_exception() -- <I>italics?</I>"
905 def g(f=f):
906 f()
907 print "<H3>What follows is a test, not an actual exception:</H3>"
908 g()
909 except:
910 print_exception()
911
912 print "<H1>Second try with a small maxlen...</H1>"
913
914 global maxlen
915 maxlen = 50
916 try:
917 form = FieldStorage() # Replace with other classes to test those
918 print_directory()
919 print_arguments()
920 print_form(form)
921 print_environ(environ)
922 except:
923 print_exception()
924
925 def print_exception(type=None, value=None, tb=None, limit=None):
926 if type is None:
927 type, value, tb = sys.exc_info()
928 import traceback
929 print
930 print "<H3>Traceback (most recent call last):</H3>"
931 list = traceback.format_tb(tb, limit) + \
932 traceback.format_exception_only(type, value)
933 print "<PRE>%s<B>%s</B></PRE>" % (
934 escape("".join(list[:-1])),
935 escape(list[-1]),
936 )
937 del tb
938
939 def print_environ(environ=os.environ):
940 """Dump the shell environment as HTML."""
941 keys = environ.keys()
942 keys.sort()
943 print
944 print "<H3>Shell Environment:</H3>"
945 print "<DL>"
946 for key in keys:
947 print "<DT>", escape(key), "<DD>", escape(environ[key])
948 print "</DL>"
949 print
950
951 def print_form(form):
952 """Dump the contents of a form as HTML."""
953 keys = form.keys()
954 keys.sort()
955 print
956 print "<H3>Form Contents:</H3>"
957 if not keys:
958 print "<P>No form fields."
959 print "<DL>"
960 for key in keys:
961 print "<DT>" + escape(key) + ":",
962 value = form[key]
963 print "<i>" + escape(repr(type(value))) + "</i>"
964 print "<DD>" + escape(repr(value))
965 print "</DL>"
966 print
967
968 def print_directory():
969 """Dump the current directory as HTML."""
970 print
971 print "<H3>Current Working Directory:</H3>"
972 try:
973 pwd = os.getcwd()
974 except os.error, msg:
975 print "os.error:", escape(str(msg))
976 else:
977 print escape(pwd)
978 print
979
980 def print_arguments():
981 print
982 print "<H3>Command Line Arguments:</H3>"
983 print
984 print sys.argv
985 print
986
987 def print_environ_usage():
988 """Dump a list of environment variables used by CGI as HTML."""
989 print """
990 <H3>These environment variables could have been set:</H3>
991 <UL>
992 <LI>AUTH_TYPE
993 <LI>CONTENT_LENGTH
994 <LI>CONTENT_TYPE
995 <LI>DATE_GMT
996 <LI>DATE_LOCAL
997 <LI>DOCUMENT_NAME
998 <LI>DOCUMENT_ROOT
999 <LI>DOCUMENT_URI
1000 <LI>GATEWAY_INTERFACE
1001 <LI>LAST_MODIFIED
1002 <LI>PATH
1003 <LI>PATH_INFO
1004 <LI>PATH_TRANSLATED
1005 <LI>QUERY_STRING
1006 <LI>REMOTE_ADDR
1007 <LI>REMOTE_HOST
1008 <LI>REMOTE_IDENT
1009 <LI>REMOTE_USER
1010 <LI>REQUEST_METHOD
1011 <LI>SCRIPT_NAME
1012 <LI>SERVER_NAME
1013 <LI>SERVER_PORT
1014 <LI>SERVER_PROTOCOL
1015 <LI>SERVER_ROOT
1016 <LI>SERVER_SOFTWARE
1017 </UL>
1018 In addition, HTTP headers sent by the server may be passed in the
1019 environment as well. Here are some common variable names:
1020 <UL>
1021 <LI>HTTP_ACCEPT
1022 <LI>HTTP_CONNECTION
1023 <LI>HTTP_HOST
1024 <LI>HTTP_PRAGMA
1025 <LI>HTTP_REFERER
1026 <LI>HTTP_USER_AGENT
1027 </UL>
1028 """
1029
1030
1031 # Utilities
1032 # =========
1033
1034 def escape(s, quote=None):
1035 """Replace special characters '&', '<' and '>' by SGML entities."""
1036 s = s.replace("&", "&amp;") # Must be done first!
1037 s = s.replace("<", "&lt;")
1038 s = s.replace(">", "&gt;")
1039 if quote:
1040 s = s.replace('"', "&quot;")
1041 return s
1042
1043 def valid_boundary(s, _vb_pattern="^[ -~]{0,200}[!-~]$"):
1044 import re
1045 return re.match(_vb_pattern, s)
1046
1047 # Invoke mainline
1048 # ===============
1049
1050 # Call test() when this file is run as a script (not imported as a module)
1051 if __name__ == '__main__':
1052 test()