Cleaned up some FIXMEs
This commit is contained in:
Michael Snoyman
parent
b460e9d477
commit
1c3e02a2cd
@ -17,7 +17,7 @@
|
|||||||
module Yesod.Definitions
|
module Yesod.Definitions
|
||||||
( Verb (..)
|
( Verb (..)
|
||||||
, Resource
|
, Resource
|
||||||
, Approot (..)
|
, Approot
|
||||||
, Language
|
, Language
|
||||||
, Location (..)
|
, Location (..)
|
||||||
, showLocation
|
, showLocation
|
||||||
@ -55,7 +55,7 @@ type Resource = [String]
|
|||||||
-- | An absolute URL to the base of this application. This can almost be done
|
-- | An absolute URL to the base of this application. This can almost be done
|
||||||
-- programatically, but due to ambiguities in different ways of doing URL
|
-- programatically, but due to ambiguities in different ways of doing URL
|
||||||
-- rewriting for (fast)cgi applications, it should be supplied by the user.
|
-- rewriting for (fast)cgi applications, it should be supplied by the user.
|
||||||
newtype Approot = Approot { unApproot :: String } -- FIXME make type syn?
|
type Approot = String
|
||||||
|
|
||||||
type Language = String
|
type Language = String
|
||||||
|
|
||||||
@ -66,6 +66,6 @@ data Location = AbsLoc String | RelLoc String
|
|||||||
-- | Display a 'Location' in absolute form.
|
-- | Display a 'Location' in absolute form.
|
||||||
showLocation :: Approot -> Location -> String
|
showLocation :: Approot -> Location -> String
|
||||||
showLocation _ (AbsLoc s) = s
|
showLocation _ (AbsLoc s) = s
|
||||||
showLocation (Approot ar) (RelLoc s) = ar ++ s
|
showLocation ar (RelLoc s) = ar ++ s
|
||||||
|
|
||||||
type PathInfo = [String]
|
type PathInfo = [String]
|
||||||
|
|||||||
@ -49,7 +49,7 @@ class YesodApproot a => YesodAuth a where
|
|||||||
getFullAuthRoot :: YesodAuth y => Handler y String
|
getFullAuthRoot :: YesodAuth y => Handler y String
|
||||||
getFullAuthRoot = do
|
getFullAuthRoot = do
|
||||||
y <- getYesod
|
y <- getYesod
|
||||||
let (Approot ar) = approot y
|
ar <- getApproot
|
||||||
return $ ar ++ authRoot y
|
return $ ar ++ authRoot y
|
||||||
|
|
||||||
data AuthResource =
|
data AuthResource =
|
||||||
@ -168,15 +168,14 @@ authCheck = do
|
|||||||
authLogout :: YesodAuth y => Handler y HtmlObject
|
authLogout :: YesodAuth y => Handler y HtmlObject
|
||||||
authLogout = do
|
authLogout = do
|
||||||
deleteCookie authCookieName
|
deleteCookie authCookieName
|
||||||
y <- getYesod
|
ar <- getApproot
|
||||||
let (Approot ar) = approot y
|
|
||||||
redirect ar
|
redirect ar
|
||||||
-- FIXME check the DEST information
|
-- FIXME check the DEST information
|
||||||
|
|
||||||
authIdentifier :: YesodAuth y => Handler y String
|
authIdentifier :: YesodAuth y => Handler y String
|
||||||
authIdentifier = do
|
authIdentifier = do
|
||||||
mi <- identifier
|
mi <- identifier
|
||||||
Approot ar <- getApproot
|
ar <- getApproot
|
||||||
case mi of
|
case mi of
|
||||||
Nothing -> do
|
Nothing -> do
|
||||||
rp <- requestPath
|
rp <- requestPath
|
||||||
|
|||||||
@ -25,19 +25,25 @@ module Yesod.Helpers.Static
|
|||||||
import qualified Data.ByteString.Lazy as B
|
import qualified Data.ByteString.Lazy as B
|
||||||
import System.Directory (doesFileExist)
|
import System.Directory (doesFileExist)
|
||||||
import Control.Applicative ((<$>))
|
import Control.Applicative ((<$>))
|
||||||
|
import Control.Monad
|
||||||
|
|
||||||
import Yesod
|
import Yesod
|
||||||
import Data.List (intercalate)
|
import Data.List (intercalate)
|
||||||
|
|
||||||
type FileLookup = FilePath -> IO (Maybe B.ByteString)
|
type FileLookup = FilePath -> IO (Maybe B.ByteString)
|
||||||
|
|
||||||
-- | A 'FileLookup' for files in a directory.
|
-- | A 'FileLookup' for files in a directory. Note that this function does not
|
||||||
|
-- check if the requested path does unsafe things, eg expose hidden files. You
|
||||||
|
-- should provide this checking elsewhere.
|
||||||
|
--
|
||||||
|
-- If you are just using this in combination with serveStatic, serveStatic
|
||||||
|
-- provides this checking.
|
||||||
fileLookupDir :: FilePath -> FileLookup
|
fileLookupDir :: FilePath -> FileLookup
|
||||||
fileLookupDir dir fp = do
|
fileLookupDir dir fp = do
|
||||||
let fp' = dir ++ '/' : fp -- FIXME incredibly insecure...
|
let fp' = dir ++ '/' : fp
|
||||||
exists <- doesFileExist fp'
|
exists <- doesFileExist fp'
|
||||||
if exists
|
if exists
|
||||||
then Just <$> B.readFile fp'
|
then Just <$> B.readFile fp' -- FIXME replace lazy I/O when possible
|
||||||
else return Nothing
|
else return Nothing
|
||||||
|
|
||||||
serveStatic :: FileLookup -> Verb -> [String]
|
serveStatic :: FileLookup -> Verb -> [String]
|
||||||
@ -47,11 +53,16 @@ serveStatic _ _ _ = notFound
|
|||||||
|
|
||||||
getStatic :: FileLookup -> [String] -> Handler y [(ContentType, Content)]
|
getStatic :: FileLookup -> [String] -> Handler y [(ContentType, Content)]
|
||||||
getStatic fl fp' = do
|
getStatic fl fp' = do
|
||||||
let fp = intercalate "/" fp' -- FIXME check for . or ..
|
when (any isUnsafe fp') $ notFound
|
||||||
|
let fp = intercalate "/" fp'
|
||||||
content <- liftIO $ fl fp
|
content <- liftIO $ fl fp
|
||||||
case content of
|
case content of
|
||||||
Nothing -> notFound
|
Nothing -> notFound
|
||||||
Just bs -> return [(mimeType $ ext fp, Content bs)]
|
Just bs -> return [(mimeType $ ext fp, Content bs)]
|
||||||
|
where
|
||||||
|
isUnsafe [] = True
|
||||||
|
isUnsafe ('.':_) = True
|
||||||
|
isUnsafe _ = False
|
||||||
|
|
||||||
mimeType :: String -> ContentType
|
mimeType :: String -> ContentType
|
||||||
mimeType "jpg" = TypeJpeg
|
mimeType "jpg" = TypeJpeg
|
||||||
|
|||||||
@ -244,7 +244,7 @@ checkRPNodes :: (MonadFailure OverlappingPatterns m,
|
|||||||
=> [RPNode]
|
=> [RPNode]
|
||||||
-> m [RPNode]
|
-> m [RPNode]
|
||||||
checkRPNodes nodes = do
|
checkRPNodes nodes = do
|
||||||
_ <- checkPatterns $ map (\(RPNode r _) -> cs r) nodes -- FIXME ugly
|
_ <- checkPatterns $ map (\(RPNode r _) -> cs r) nodes
|
||||||
mapM_ (\(RPNode _ v) -> checkVerbMap v) nodes
|
mapM_ (\(RPNode _ v) -> checkVerbMap v) nodes
|
||||||
return nodes
|
return nodes
|
||||||
where
|
where
|
||||||
|
|||||||
@ -1,6 +1,6 @@
|
|||||||
{-# LANGUAGE FlexibleInstances #-}
|
{-# LANGUAGE FlexibleInstances #-}
|
||||||
{-# LANGUAGE FlexibleContexts #-}
|
{-# LANGUAGE FlexibleContexts #-}
|
||||||
{-# LANGUAGE TypeSynonymInstances #-} -- FIXME remove
|
{-# LANGUAGE TypeSynonymInstances #-}
|
||||||
{-# LANGUAGE MultiParamTypeClasses #-}
|
{-# LANGUAGE MultiParamTypeClasses #-}
|
||||||
{-# LANGUAGE DeriveDataTypeable #-}
|
{-# LANGUAGE DeriveDataTypeable #-}
|
||||||
{-# LANGUAGE CPP #-}
|
{-# LANGUAGE CPP #-}
|
||||||
@ -97,7 +97,6 @@ toPair (DeleteCookie key) = return
|
|||||||
key ++ "=; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT")
|
key ++ "=; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT")
|
||||||
toPair (Header key value) = return (key, value)
|
toPair (Header key value) = return (key, value)
|
||||||
|
|
||||||
-- FIXME add test
|
|
||||||
responseToHackResponse :: [String] -- ^ language list
|
responseToHackResponse :: [String] -- ^ language list
|
||||||
-> Response -> IO Hack.Response
|
-> Response -> IO Hack.Response
|
||||||
responseToHackResponse _FIXMEls (Response sc hs ct c) = do
|
responseToHackResponse _FIXMEls (Response sc hs ct c) = do
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user