api.py

# Copyright 2014, Ian Gulliver
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

import logging
import webapp2

from google.appengine.api import channel
from google.appengine.ext import db

from cosmopolite.lib import auth
from cosmopolite.lib import models
from cosmopolite.lib import security
from cosmopolite.lib import session
from cosmopolite.lib import utils

import config


def CreateChannel(google_user, client, client_address, instance_id, args):
  models.Instance.FindOrCreate(instance_id)

  token = channel.create_channel(
      client_id=instance_id,
      duration_minutes=config.CHANNEL_DURATION_SECONDS / 60)
  events = []
  if google_user:
    events.append({
      'event_type':  'login',
      'google_user': google_user.email(),
    })
  else:
    events.append({
      'event_type': 'logout',
    })

  return {
    'token': token,
    'events': events,
  }


def Pin(google_user, client, client_address, instance_id, args):
  instance = models.Instance.FromID(instance_id)
  if not instance or not instance.active:
    # Probably a race with the channel opening
    return {
      'result': 'retry',
    }

  subject = args['subject']
  message = args['message']
  sender_message_id = args['sender_message_id']

  try:
    pin = models.Subject.FindOrCreate(subject).Pin(
        message,
        models.Client.profile.get_value_for_datastore(client),
        sender_message_id,
        client_address,
        instance)
  except models.DuplicateMessage as e:
    logging.warning('Duplicate pin: %s', sender_message_id)
    return {
      'result': 'duplicate_message',
      'message': e.original,
    }
  except models.AccessDenied:
    logging.warning('Pin access denied')
    return {
      'result': 'access_denied',
    }

  return {
    'result': 'ok',
    'pin': pin,
  }


def SendMessage(google_user, client, client_address, instance_id, args):
  subject = args['subject']
  message = args['message']
  sender_message_id = args['sender_message_id']

  try:
    msg = models.Subject.FindOrCreate(subject).SendMessage(
        message,
        models.Client.profile.get_value_for_datastore(client),
        sender_message_id,
        client_address)
  except models.DuplicateMessage as e:
    logging.warning('Duplicate message: %s', sender_message_id)
    return {
      'result': 'duplicate_message',
      'message': e.original,
    }
  except models.AccessDenied:
    logging.warning('SendMessage access denied')
    return {
      'result': 'access_denied',
    }

  return {
    'result': 'ok',
    'message': msg,
  }


def Subscribe(google_user, client, client_address, instance_id, args):
  instance = models.Instance.FromID(instance_id)
  subject = models.Subject.FindOrCreate(args['subject'])
  messages = args.get('messages', 0)
  last_id = args.get('last_id', None)

  try:
    subject.VerifyReadable(models.Client.profile.get_value_for_datastore(client))
  except models.AccessDenied:
    logging.warning('Subscribe access denied')
    return {
      'result': 'access_denied',
    }


  if not instance or not instance.active:
    # Probably a race with the channel opening
    return {
      'result': 'retry',
      'events': subject.GetEvents(messages, last_id),
    }

  return {
    'result': 'ok',
    'events': models.Subscription.FindOrCreate(
        subject, client, instance, messages, last_id),
  }


def Unpin(google_user, client, client_address, instance_id, args):
  instance = models.Instance.FromID(instance_id)
  subject = args['subject']
  sender_message_id = args['sender_message_id']

  try:
    models.Subject.FindOrCreate(subject).Unpin(
        models.Client.profile.get_value_for_datastore(client),
        sender_message_id,
        instance.key())
  except models.AccessDenied:
    logging.warning('Pin access denied')
    return {
      'result': 'access_denied',
    }

  return {
    'result': 'ok',
  }


def Unsubscribe(google_user, client, client_address, instance_id, args):
  instance = models.Instance.FromID(instance_id)
  subject = models.Subject.FindOrCreate(args['subject'])
  models.Subscription.Remove(subject, instance)

  return {}


class APIWrapper(webapp2.RequestHandler):

  _COMMANDS = {
      'createChannel': CreateChannel,
      'pin': Pin,
      'sendMessage': SendMessage,
      'subscribe': Subscribe,
      'unpin': Unpin,
      'unsubscribe': Unsubscribe,
  }

  @utils.chaos_monkey
  @utils.expects_json
  @utils.returns_json
  @utils.local_namespace
  @security.google_user_xsrf_protection
  @security.weak_security_checks
  @session.session_required
  def post(self):
    profile_str = str(
        models.Client.profile.get_value_for_datastore(self.client))
    ret = {
        'status': 'ok',
        'profile': profile_str,
        'responses': [],
        'events': [],
    }
    for command in self.request_json['commands']:
      logging.info('Command: %s', command)
      callback = self._COMMANDS[command['command']]
      result = callback(
          self.verified_google_user,
          self.client,
          self.request.remote_addr,
          self.request_json['instance_id'],
          command.get('arguments', {}))
      # Magic: if result contains "events", haul them up a level so the
      # client can see them as a single stream.
      ret['events'].extend(result.pop('events', []))
      ret['responses'].append(result)
    return ret


app = webapp2.WSGIApplication([
  (config.URL_PREFIX + '/api', APIWrapper),
])
Initial snapshot. 2014-03-25 13:43:11 -07:00			`# Copyright 2014, Ian Gulliver`
			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`

Move onReady callback to after channel response from server, so we have a client_id before we start sending other RPCs. 2014-05-14 23:28:56 +03:00			`import logging`
Initial snapshot. 2014-03-25 13:43:11 -07:00			`import webapp2`

			`from google.appengine.api import channel`
			`from google.appengine.ext import db`

			`from cosmopolite.lib import auth`
			`from cosmopolite.lib import models`
			`from cosmopolite.lib import security`
			`from cosmopolite.lib import session`
			`from cosmopolite.lib import utils`

			`import config`


Record IP addresses for messages and pins to support later banning. 2014-06-08 22:04:53 -07:00			`def CreateChannel(google_user, client, client_address, instance_id, args):`
Make Instance actually stand alone. 2014-05-23 15:00:28 -07:00			`models.Instance.FindOrCreate(instance_id)`
Switch to using Instance key as the channel_id, since there seems to be an undocumented length limit. 2014-05-23 11:23:30 -07:00
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00			`token = channel.create_channel(`
Remove Instance from the Profile hierarchy to allow key_name queries. 2014-05-23 14:29:11 -07:00			`client_id=instance_id,`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00			`duration_minutes=config.CHANNEL_DURATION_SECONDS / 60)`
Remove SetValue/GetValue. Add debug console support for keeping track of streaming key values. 2014-05-11 19:34:42 +03:00			`events = []`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00			`if google_user:`
Make the structure that we pass over the channel or pseudo-channel called an "event". Make the string that we pass through pubsub called a "message". 2014-05-09 15:00:48 -07:00			`events.append({`
Generate the client_id on the client, so we don't need a round trip to get it before we can send arbitrary RPCs. This changes the Profile/Client relationship; we never needed to be transactional with them, so split them up entirely so we can reparent Clients. 2014-05-31 23:25:15 -07:00			`'event_type': 'login',`
			`'google_user': google_user.email(),`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00			`})`
			`else:`
Make the structure that we pass over the channel or pseudo-channel called an "event". Make the string that we pass through pubsub called a "message". 2014-05-09 15:00:48 -07:00			`events.append({`
			`'event_type': 'logout',`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00			`})`

			`return {`
			`'token': token,`
Make the structure that we pass over the channel or pseudo-channel called an "event". Make the string that we pass through pubsub called a "message". 2014-05-09 15:00:48 -07:00			`'events': events,`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00			`}`


Record IP addresses for messages and pins to support later banning. 2014-06-08 22:04:53 -07:00			`def Pin(google_user, client, client_address, instance_id, args):`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`instance = models.Instance.FromID(instance_id)`
Add app-local caching and stop using memcache; reduce overall datastore access. 2014-05-28 14:44:13 -07:00			`if not instance or not instance.active:`
			`# Probably a race with the channel opening`
			`return {`
			`'result': 'retry',`
			`}`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00
			`subject = args['subject']`
			`message = args['message']`
			`sender_message_id = args['sender_message_id']`

			`try:`
Return the new message for sendMessage and pin RPCs. Pass it through the sendMessage Promise callback. 2014-06-12 23:12:00 -07:00			`pin = models.Subject.FindOrCreate(subject).Pin(`
Generate the client_id on the client, so we don't need a round trip to get it before we can send arbitrary RPCs. This changes the Profile/Client relationship; we never needed to be transactional with them, so split them up entirely so we can reparent Clients. 2014-05-31 23:25:15 -07:00			`message,`
			`models.Client.profile.get_value_for_datastore(client),`
			`sender_message_id,`
Record IP addresses for messages and pins to support later banning. 2014-06-08 22:04:53 -07:00			`client_address,`
Generate the client_id on the client, so we don't need a round trip to get it before we can send arbitrary RPCs. This changes the Profile/Client relationship; we never needed to be transactional with them, so split them up entirely so we can reparent Clients. 2014-05-31 23:25:15 -07:00			`instance)`
Return the new message for sendMessage and pin RPCs. Pass it through the sendMessage Promise callback. 2014-06-12 23:12:00 -07:00			`except models.DuplicateMessage as e:`
Move exception logging to warn level, so real errors stick out. 2014-05-27 14:32:15 -07:00			`logging.warning('Duplicate pin: %s', sender_message_id)`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`return {`
			`'result': 'duplicate_message',`
Return the new message for sendMessage and pin RPCs. Pass it through the sendMessage Promise callback. 2014-06-12 23:12:00 -07:00			`'message': e.original,`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`}`
			`except models.AccessDenied:`
Move exception logging to warn level, so real errors stick out. 2014-05-27 14:32:15 -07:00			`logging.warning('Pin access denied')`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`return {`
			`'result': 'access_denied',`
			`}`

			`return {`
			`'result': 'ok',`
Return the new message for sendMessage and pin RPCs. Pass it through the sendMessage Promise callback. 2014-06-12 23:12:00 -07:00			`'pin': pin,`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`}`


Record IP addresses for messages and pins to support later banning. 2014-06-08 22:04:53 -07:00			`def SendMessage(google_user, client, client_address, instance_id, args):`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00			`subject = args['subject']`
			`message = args['message']`
Suppress duplicate messages from a client (e.g. when network failure causes retries for RPCs that actually went through). 2014-05-16 23:07:38 +03:00			`sender_message_id = args['sender_message_id']`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00
Suppress duplicate messages from a client (e.g. when network failure causes retries for RPCs that actually went through). 2014-05-16 23:07:38 +03:00			`try:`
Return the new message for sendMessage and pin RPCs. Pass it through the sendMessage Promise callback. 2014-06-12 23:12:00 -07:00			`msg = models.Subject.FindOrCreate(subject).SendMessage(`
Generate the client_id on the client, so we don't need a round trip to get it before we can send arbitrary RPCs. This changes the Profile/Client relationship; we never needed to be transactional with them, so split them up entirely so we can reparent Clients. 2014-05-31 23:25:15 -07:00			`message,`
			`models.Client.profile.get_value_for_datastore(client),`
Record IP addresses for messages and pins to support later banning. 2014-06-08 22:04:53 -07:00			`sender_message_id,`
			`client_address)`
Return the new message for sendMessage and pin RPCs. Pass it through the sendMessage Promise callback. 2014-06-12 23:12:00 -07:00			`except models.DuplicateMessage as e:`
Move exception logging to warn level, so real errors stick out. 2014-05-27 14:32:15 -07:00			`logging.warning('Duplicate message: %s', sender_message_id)`
Add real subject ACL support and tests. 2014-05-19 20:52:57 +03:00			`return {`
			`'result': 'duplicate_message',`
Return the new message for sendMessage and pin RPCs. Pass it through the sendMessage Promise callback. 2014-06-12 23:12:00 -07:00			`'message': e.original,`
Add real subject ACL support and tests. 2014-05-19 20:52:57 +03:00			`}`
			`except models.AccessDenied:`
Move exception logging to warn level, so real errors stick out. 2014-05-27 14:32:15 -07:00			`logging.warning('SendMessage access denied')`
Add real subject ACL support and tests. 2014-05-19 20:52:57 +03:00			`return {`
			`'result': 'access_denied',`
			`}`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00
Add real subject ACL support and tests. 2014-05-19 20:52:57 +03:00			`return {`
			`'result': 'ok',`
Return the new message for sendMessage and pin RPCs. Pass it through the sendMessage Promise callback. 2014-06-12 23:12:00 -07:00			`'message': msg,`
Add real subject ACL support and tests. 2014-05-19 20:52:57 +03:00			`}`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00

Record IP addresses for messages and pins to support later banning. 2014-06-08 22:04:53 -07:00			`def Subscribe(google_user, client, client_address, instance_id, args):`
Remove Instance from the Profile hierarchy to allow key_name queries. 2014-05-23 14:29:11 -07:00			`instance = models.Instance.FromID(instance_id)`
Allow subscribe to return events from a subject even when not creating a subscription 2014-06-01 21:14:58 -07:00			`subject = models.Subject.FindOrCreate(args['subject'])`
			`messages = args.get('messages', 0)`
			`last_id = args.get('last_id', None)`

Impose access controls for subscribe even without a channel open. 2014-06-02 21:53:51 -07:00			`try:`
			`subject.VerifyReadable(models.Client.profile.get_value_for_datastore(client))`
			`except models.AccessDenied:`
			`logging.warning('Subscribe access denied')`
			`return {`
			`'result': 'access_denied',`
			`}`


Remove Instance from the Profile hierarchy to allow key_name queries. 2014-05-23 14:29:11 -07:00			`if not instance or not instance.active:`
Per-RPC retry support, used when subscribe() can't find an active instance. 2014-05-23 15:32:31 -07:00			`# Probably a race with the channel opening`
			`return {`
			`'result': 'retry',`
Allow subscribe to return events from a subject even when not creating a subscription 2014-06-01 21:14:58 -07:00			`'events': subject.GetEvents(messages, last_id),`
Per-RPC retry support, used when subscribe() can't find an active instance. 2014-05-23 15:32:31 -07:00			`}`
Remove Instance from the Profile hierarchy to allow key_name queries. 2014-05-23 14:29:11 -07:00
Impose access controls for subscribe even without a channel open. 2014-06-02 21:53:51 -07:00			`return {`
			`'result': 'ok',`
			`'events': models.Subscription.FindOrCreate(`
			`subject, client, instance, messages, last_id),`
			`}`
Add real subject ACL support and tests. 2014-05-19 20:52:57 +03:00
Switch to a multi-request/response API to make batching possible. 2014-05-06 13:38:40 -07:00
Record IP addresses for messages and pins to support later banning. 2014-06-08 22:04:53 -07:00			`def Unpin(google_user, client, client_address, instance_id, args):`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`instance = models.Instance.FromID(instance_id)`
			`subject = args['subject']`
			`sender_message_id = args['sender_message_id']`

			`try:`
			`models.Subject.FindOrCreate(subject).Unpin(`
Generate the client_id on the client, so we don't need a round trip to get it before we can send arbitrary RPCs. This changes the Profile/Client relationship; we never needed to be transactional with them, so split them up entirely so we can reparent Clients. 2014-05-31 23:25:15 -07:00			`models.Client.profile.get_value_for_datastore(client),`
			`sender_message_id,`
			`instance.key())`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`except models.AccessDenied:`
Move exception logging to warn level, so real errors stick out. 2014-05-27 14:32:15 -07:00			`logging.warning('Pin access denied')`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`return {`
			`'result': 'access_denied',`
			`}`

			`return {`
			`'result': 'ok',`
			`}`


Record IP addresses for messages and pins to support later banning. 2014-06-08 22:04:53 -07:00			`def Unsubscribe(google_user, client, client_address, instance_id, args):`
Remove Instance from the Profile hierarchy to allow key_name queries. 2014-05-23 14:29:11 -07:00			`instance = models.Instance.FromID(instance_id)`
Checkpoint: working subscribe/unsubscribe and message transit, through the debug page 2014-05-10 15:47:33 +02:00			`subject = models.Subject.FindOrCreate(args['subject'])`
Add a third level construct under Profile and Client, Instance. This allows more than one connected object with the same client credentials. 2014-05-23 10:31:52 -07:00			`models.Subscription.Remove(subject, instance)`
Checkpoint: working subscribe/unsubscribe and message transit, through the debug page 2014-05-10 15:47:33 +02:00
			`return {}`


Switch to a multi-request/response API to make batching possible. 2014-05-06 13:38:40 -07:00			`class APIWrapper(webapp2.RequestHandler):`

			`_COMMANDS = {`
			`'createChannel': CreateChannel,`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`'pin': Pin,`
Add pubsub server API, without client API or UI yet. 2014-05-06 22:46:07 -07:00			`'sendMessage': SendMessage,`
			`'subscribe': Subscribe,`
Add support for ephemeral messages that are tied to an open channel, aka "pins". 2014-05-25 23:40:56 -07:00			`'unpin': Unpin,`
Checkpoint: working subscribe/unsubscribe and message transit, through the debug page 2014-05-10 15:47:33 +02:00			`'unsubscribe': Unsubscribe,`
Switch to a multi-request/response API to make batching possible. 2014-05-06 13:38:40 -07:00			`}`

Initial snapshot. 2014-03-25 13:43:11 -07:00			`@utils.chaos_monkey`
Switch to a multi-request/response API to make batching possible. 2014-05-06 13:38:40 -07:00			`@utils.expects_json`
Initial snapshot. 2014-03-25 13:43:11 -07:00			`@utils.returns_json`
			`@utils.local_namespace`
			`@security.google_user_xsrf_protection`
			`@security.weak_security_checks`
			`@session.session_required`
			`def post(self):`
Send profile with every RPC response. 2014-06-17 21:14:59 -07:00			`profile_str = str(`
			`models.Client.profile.get_value_for_datastore(self.client))`
Move message handling in RPC responses out of individual commands and to a general property of the response. 2014-05-06 13:47:57 -07:00			`ret = {`
			`'status': 'ok',`
Send profile with every RPC response. 2014-06-17 21:14:59 -07:00			`'profile': profile_str,`
Move message handling in RPC responses out of individual commands and to a general property of the response. 2014-05-06 13:47:57 -07:00			`'responses': [],`
Make the structure that we pass over the channel or pseudo-channel called an "event". Make the string that we pass through pubsub called a "message". 2014-05-09 15:00:48 -07:00			`'events': [],`
Move message handling in RPC responses out of individual commands and to a general property of the response. 2014-05-06 13:47:57 -07:00			`}`
Switch to a multi-request/response API to make batching possible. 2014-05-06 13:38:40 -07:00			`for command in self.request_json['commands']:`
Add server-side info logging. 2014-06-09 23:51:41 -07:00			`logging.info('Command: %s', command)`
Switch to a multi-request/response API to make batching possible. 2014-05-06 13:38:40 -07:00			`callback = self._COMMANDS[command['command']]`
Move message handling in RPC responses out of individual commands and to a general property of the response. 2014-05-06 13:47:57 -07:00			`result = callback(`
			`self.verified_google_user,`
			`self.client,`
Record IP addresses for messages and pins to support later banning. 2014-06-08 22:04:53 -07:00			`self.request.remote_addr,`
Add a third level construct under Profile and Client, Instance. This allows more than one connected object with the same client credentials. 2014-05-23 10:31:52 -07:00			`self.request_json['instance_id'],`
Move message handling in RPC responses out of individual commands and to a general property of the response. 2014-05-06 13:47:57 -07:00			`command.get('arguments', {}))`
Make the structure that we pass over the channel or pseudo-channel called an "event". Make the string that we pass through pubsub called a "message". 2014-05-09 15:00:48 -07:00			`# Magic: if result contains "events", haul them up a level so the`
Move message handling in RPC responses out of individual commands and to a general property of the response. 2014-05-06 13:47:57 -07:00			`# client can see them as a single stream.`
Make the structure that we pass over the channel or pseudo-channel called an "event". Make the string that we pass through pubsub called a "message". 2014-05-09 15:00:48 -07:00			`ret['events'].extend(result.pop('events', []))`
Move message handling in RPC responses out of individual commands and to a general property of the response. 2014-05-06 13:47:57 -07:00			`ret['responses'].append(result)`
Switch to a multi-request/response API to make batching possible. 2014-05-06 13:38:40 -07:00			`return ret`
Initial snapshot. 2014-03-25 13:43:11 -07:00

			`app = webapp2.WSGIApplication([`
Switch to a multi-request/response API to make batching possible. 2014-05-06 13:38:40 -07:00			`(config.URL_PREFIX + '/api', APIWrapper),`
Initial snapshot. 2014-03-25 13:43:11 -07:00			`])`