Files @ 8abbe3462fda
Branch filter:

Location: NPO-Accounting/experimental-accounting-api/accounting/decorators.py

8abbe3462fda 2.5 KiB text/x-python Show Annotation Show as Raw Download as Raw
Joar Wandborg
[tests] Check transactions for errors before being added

- Added support for Exception-specific HTTP response codes for
AccountinExceptions.
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
# Part of accounting-api project:
# https://gitorious.org/conservancy/accounting-api
# License: AGPLv3-or-later

from functools import wraps

from flask import jsonify, request

from accounting.exceptions import AccountingException


def jsonify_exceptions(func):
    '''
    Wraps a Flask endpoint and catches any AccountingException-based
    exceptions which are returned to the client as JSON.
    '''
    @wraps(func)
    def wrapper(*args, **kw):
        try:
            return func(*args, **kw)
        except AccountingException as exc:
            response = jsonify(error=exc)

            response.status_code = exc.http_code

            return response

    return wrapper


def cors(origin_callback=None):
    '''
    Flask endpoint decorator.

    Example:

    .. code-block:: python

        @app.route('/cors-endpoint', methods=['GET', 'OPTIONS'])
        @cors()
        def cors_endpoint():
            return jsonify(message='This is accessible via a cross-origin XHR')

        # Or if you want to control the domains this resource can be requested
        # from via CORS:
        domains = ['http://wandborg.se', 'http://sfconservancy.org']

        def restrict_domains(origin):
            return ' '.join(domains)

        @app.route('/restricted-cors-endpoint')
        @cors(restrict_domains)
        def restricted_cors_endpoint():
            return jsonify(
                message='This is accessible from %s' % ', '.join(domains))

    :param function origin_callback: A callback that takes one str() argument
        containing the ``Origin`` HTTP header from the :data:`request` object.
        This can be used to filter out which domains the resource can be
        requested via CORS from.
    '''
    if origin_callback is None:
        origin_callback = allow_all_origins

    def decorator(func):
        @wraps(func)
        def wrapper(*args, **kw):
            response = func(*args, **kw)
            cors_headers = {
                'Access-Control-Allow-Origin':
                    origin_callback(request.headers.get('Origin')) or '*',
                'Access-Control-Allow-Credentials': 'true',
                'Access-Control-Max-Age': 3600,
                'Access-Control-Allow-Methods': 'POST, GET, DELETE',
                'Access-Control-Allow-Headers':
                    'Accept, Content-Type, Connection, Cookie'
            }

            for key, val in cors_headers.items():
                response.headers[key] = val

            return response

        return wrapper

    return decorator


def allow_all_origins(origin):
    return origin
Server instance: kapok.sfconservancy.org-27523 This site is powered by Kallithea 0.6.3, which is © 2010–2020 by various authors & licensed under GPLv3. – SupportPrivacy Policy