No OneTemporary
Actions

Size

24 KB

Referenced Files

None

Subscribers

None

View Options

	diff --git a/src/aphront/configuration/AphrontDefaultApplicationConfiguration.php b/src/aphront/configuration/AphrontDefaultApplicationConfiguration.php
	index c6a55ce773..0b296962f7 100644
	--- a/src/aphront/configuration/AphrontDefaultApplicationConfiguration.php
	+++ b/src/aphront/configuration/AphrontDefaultApplicationConfiguration.php
	@@ -1,393 +1,395 @@
	<?php

	/**
	* @group aphront
	*/
	class AphrontDefaultApplicationConfiguration
	extends AphrontApplicationConfiguration {

	public function __construct() {

	}

	public function getApplicationName() {
	return 'aphront-default';
	}

	public function getURIMap() {
	return $this->getResourceURIMapRules() + array(
	'/(?:(?P<filter>(?:jump))/)?' =>
	'PhabricatorDirectoryMainController',

	'/typeahead/' => array(
	'common/(?P<type>\w+)/'
	=> 'PhabricatorTypeaheadCommonDatasourceController',
	),

	'/oauthserver/' => array(
	'auth/' => 'PhabricatorOAuthServerAuthController',
	'test/' => 'PhabricatorOAuthServerTestController',
	'token/' => 'PhabricatorOAuthServerTokenController',
	'clientauthorization/' => array(
	'' => 'PhabricatorOAuthClientAuthorizationListController',
	'delete/(?P<phid>[^/]+)/' =>
	'PhabricatorOAuthClientAuthorizationDeleteController',
	'edit/(?P<phid>[^/]+)/' =>
	'PhabricatorOAuthClientAuthorizationEditController',
	),
	'client/' => array(
	'' => 'PhabricatorOAuthClientListController',
	'create/' => 'PhabricatorOAuthClientEditController',
	'delete/(?P<phid>[^/]+)/' => 'PhabricatorOAuthClientDeleteController',
	'edit/(?P<phid>[^/]+)/' => 'PhabricatorOAuthClientEditController',
	'view/(?P<phid>[^/]+)/' => 'PhabricatorOAuthClientViewController',
	),
	),

	'/~/' => array(
	'' => 'DarkConsoleController',
	'data/(?P<key>[^/]+)/' => 'DarkConsoleDataController',
	),

	'/status/' => 'PhabricatorStatusController',


	'/help/' => array(
	'keyboardshortcut/' => 'PhabricatorHelpKeyboardShortcutController',
	),

	'/notification/' => array(
	'(?:(?P<filter>all\|unread)/)?'
	=> 'PhabricatorNotificationListController',
	'panel/' => 'PhabricatorNotificationPanelController',
	'individual/' => 'PhabricatorNotificationIndividualController',
	'status/' => 'PhabricatorNotificationStatusController',
	'clear/' => 'PhabricatorNotificationClearController',
	),

	'/debug/' => 'PhabricatorDebugController',
	);
	}

	protected function getResourceURIMapRules() {
	return array(
	'/res/' => array(
	'(?:(?P<mtime>[0-9]+)T/)?'.
	'(?P<package>pkg/)?'.
	'(?P<hash>[a-f0-9]{8})/'.
	'(?P<path>.+\.(?:css\|js\|jpg\|png\|swf\|gif))'
	=> 'CelerityPhabricatorResourceController',
	),
	);
	}

	/**
	* @phutil-external-symbol class PhabricatorStartup
	*/
	public function buildRequest() {
	$parser = new PhutilQueryStringParser();
	$data = array();

	// If the request has "multipart/form-data" content, we can't use
	// PhutilQueryStringParser to parse it, and the raw data supposedly is not
	// available anyway (according to the PHP documentation, "php://input" is
	// not available for "multipart/form-data" requests). However, it is
	// available at least some of the time (see T3673), so double check that
	// we aren't trying to parse data we won't be able to parse correctly by
	// examining the Content-Type header.
	$content_type = idx($_SERVER, 'CONTENT_TYPE');
	$is_form_data = preg_match('@^multipart/form-data@i', $content_type);

	$raw_input = PhabricatorStartup::getRawInput();
	if (strlen($raw_input) && !$is_form_data) {
	$data += $parser->parseQueryString($raw_input);
	} else if ($_POST) {
	$data += $_POST;
	}

	$data += $parser->parseQueryString(idx($_SERVER, 'QUERY_STRING', ''));

	$request = new AphrontRequest($this->getHost(), $this->getPath());
	$request->setRequestData($data);
	$request->setApplicationConfiguration($this);

	return $request;
	}

	public function handleException(Exception $ex) {
	$request = $this->getRequest();

	// For Conduit requests, return a Conduit response.
	if ($request->isConduit()) {
	$response = new ConduitAPIResponse();
	$response->setErrorCode(get_class($ex));
	$response->setErrorInfo($ex->getMessage());

	return id(new AphrontJSONResponse())
	->setAddJSONShield(false)
	->setContent($response->toDictionary());
	}

	// For non-workflow requests, return a Ajax response.
	if ($request->isAjax() && !$request->isJavelinWorkflow()) {
	// Log these; they don't get shown on the client and can be difficult
	// to debug.
	phlog($ex);

	$response = new AphrontAjaxResponse();
	$response->setError(
	array(
	'code' => get_class($ex),
	'info' => $ex->getMessage(),
	));
	return $response;
	}

	$is_serious = PhabricatorEnv::getEnvConfig('phabricator.serious-business');

	$user = $request->getUser();
	if (!$user) {
	// If we hit an exception very early, we won't have a user.
	$user = new PhabricatorUser();
	}

	if ($ex instanceof PhabricatorPolicyException) {

	if (!$user->isLoggedIn()) {
	// If the user isn't logged in, just give them a login form. This is
	// probably a generally more useful response than a policy dialog that
	// they have to click through to get a login form.
	//
	// Possibly we should add a header here like "you need to login to see
	// the thing you are trying to look at".
	$login_controller = new PhabricatorAuthStartController($request);

	$auth_app_class = 'PhabricatorApplicationAuth';
	$auth_app = PhabricatorApplication::getByClass($auth_app_class);
	$login_controller->setCurrentApplication($auth_app);

	return $login_controller->processRequest();
	}

	$list = $ex->getMoreInfo();
	foreach ($list as $key => $item) {
	$list[$key] = phutil_tag('li', array(), $item);
	}
	if ($list) {
	$list = phutil_tag('ul', array(), $list);
	}

	$content = array(
	phutil_tag(
	'div',
	array(
	'class' => 'aphront-policy-rejection',
	),
	$ex->getRejection()),
	phutil_tag(
	'div',
	array(
	'class' => 'aphront-capability-details',
	),
	pht('Users with the "%s" capability:', $ex->getCapabilityName())),
	$list,
	);

	$dialog = new AphrontDialogView();
	$dialog
	->setTitle($ex->getTitle())
	->setClass('aphront-access-dialog')
	->setUser($user)
	->appendChild($content);

	if ($this->getRequest()->isAjax()) {
	$dialog->addCancelButton('/', 'Close');
	} else {
	$dialog->addCancelButton('/', $is_serious ? 'OK' : 'Away With Thee');
	}

	$response = new AphrontDialogResponse();
	$response->setDialog($dialog);
	return $response;
	}

	if ($ex instanceof AphrontUsageException) {
	$error = new AphrontErrorView();
	$error->setTitle($ex->getTitle());
	$error->appendChild($ex->getMessage());

	$view = new PhabricatorStandardPageView();
	$view->setRequest($this->getRequest());
	$view->appendChild($error);

	$response = new AphrontWebpageResponse();
	$response->setContent($view->render());
	+ $response->setHTTPResponseCode(500);

	return $response;
	}


	// Always log the unhandled exception.
	phlog($ex);

	$class = get_class($ex);
	$message = $ex->getMessage();

	if ($ex instanceof AphrontQuerySchemaException) {
	$message .=
	"\n\n".
	"NOTE: This usually indicates that the MySQL schema has not been ".
	"properly upgraded. Run 'bin/storage upgrade' to ensure your ".
	"schema is up to date.";
	}

	if (PhabricatorEnv::getEnvConfig('phabricator.developer-mode')) {
	$trace = $this->renderStackTrace($ex->getTrace(), $user);
	} else {
	$trace = null;
	}

	$content = hsprintf(
	'<div class="aphront-unhandled-exception">'.
	'<div class="exception-message">%s</div>'.
	'%s'.
	'</div>',
	$message,
	$trace);

	$dialog = new AphrontDialogView();
	$dialog
	->setTitle('Unhandled Exception ("'.$class.'")')
	->setClass('aphront-exception-dialog')
	->setUser($user)
	->appendChild($content);

	if ($this->getRequest()->isAjax()) {
	$dialog->addCancelButton('/', 'Close');
	}

	$response = new AphrontDialogResponse();
	$response->setDialog($dialog);
	+ $response->setHTTPResponseCode(500);

	return $response;
	}

	public function willSendResponse(AphrontResponse $response) {
	return $response;
	}

	public function build404Controller() {
	return array(new Phabricator404Controller($this->getRequest()), array());
	}

	public function buildRedirectController($uri) {
	return array(
	new PhabricatorRedirectController($this->getRequest()),
	array(
	'uri' => $uri,
	));
	}

	private function renderStackTrace($trace, PhabricatorUser $user) {

	$libraries = PhutilBootloader::getInstance()->getAllLibraries();

	// TODO: Make this configurable?
	$path = 'https://secure.phabricator.com/diffusion/%s/browse/master/src/';

	$callsigns = array(
	'arcanist' => 'ARC',
	'phutil' => 'PHU',
	'phabricator' => 'P',
	);

	$rows = array();
	$depth = count($trace);
	foreach ($trace as $part) {
	$lib = null;
	$file = idx($part, 'file');
	$relative = $file;
	foreach ($libraries as $library) {
	$root = phutil_get_library_root($library);
	if (Filesystem::isDescendant($file, $root)) {
	$lib = $library;
	$relative = Filesystem::readablePath($file, $root);
	break;
	}
	}

	$where = '';
	if (isset($part['class'])) {
	$where .= $part['class'].'::';
	}
	if (isset($part['function'])) {
	$where .= $part['function'].'()';
	}

	if ($file) {
	if (isset($callsigns[$lib])) {
	$attrs = array('title' => $file);
	try {
	$attrs['href'] = $user->loadEditorLink(
	'/src/'.$relative,
	$part['line'],
	$callsigns[$lib]);
	} catch (Exception $ex) {
	// The database can be inaccessible.
	}
	if (empty($attrs['href'])) {
	$attrs['href'] = sprintf($path, $callsigns[$lib]).
	str_replace(DIRECTORY_SEPARATOR, '/', $relative).
	'$'.$part['line'];
	$attrs['target'] = '_blank';
	}
	$file_name = phutil_tag(
	'a',
	$attrs,
	$relative);
	} else {
	$file_name = phutil_tag(
	'span',
	array(
	'title' => $file,
	),
	$relative);
	}
	$file_name = hsprintf('%s : %d', $file_name, $part['line']);
	} else {
	$file_name = phutil_tag('em', array(), '(Internal)');
	}


	$rows[] = array(
	$depth--,
	$lib,
	$file_name,
	$where,
	);
	}
	$table = new AphrontTableView($rows);
	$table->setHeaders(
	array(
	'Depth',
	'Library',
	'File',
	'Where',
	));
	$table->setColumnClasses(
	array(
	'n',
	'',
	'',
	'wide',
	));

	return hsprintf(
	'<div class="exception-trace">'.
	'<div class="exception-trace-header">Stack Trace</div>'.
	'%s'.
	'</div>',
	$table->render());
	}

	}
	diff --git a/src/applications/base/controller/PhabricatorController.php b/src/applications/base/controller/PhabricatorController.php
	index 149f40ee25..5449546b0a 100644
	--- a/src/applications/base/controller/PhabricatorController.php
	+++ b/src/applications/base/controller/PhabricatorController.php
	@@ -1,409 +1,410 @@
	<?php

	abstract class PhabricatorController extends AphrontController {

	private $handles;

	public function shouldRequireLogin() {
	return true;
	}

	public function shouldRequireAdmin() {
	return false;
	}

	public function shouldRequireEnabledUser() {
	return true;
	}

	public function shouldAllowPublic() {
	return false;
	}

	public function shouldRequireEmailVerification() {
	return PhabricatorUserEmail::isEmailVerificationRequired();
	}

	public function willBeginExecution() {

	$request = $this->getRequest();
	if ($request->getUser()) {
	// NOTE: Unit tests can set a user explicitly. Normal requests are not
	// permitted to do this.
	PhabricatorTestCase::assertExecutingUnitTests();
	$user = $request->getUser();
	} else {
	$user = new PhabricatorUser();

	$phusr = $request->getCookie('phusr');
	$phsid = $request->getCookie('phsid');

	if (strlen($phusr) && $phsid) {
	$info = queryfx_one(
	$user->establishConnection('r'),
	'SELECT u.* FROM %T u JOIN %T s ON u.phid = s.userPHID
	AND s.type LIKE %> AND s.sessionKey = %s',
	$user->getTableName(),
	'phabricator_session',
	'web-',
	PhabricatorHash::digest($phsid));
	if ($info) {
	$user->loadFromArray($info);
	}
	}

	$request->setUser($user);
	}

	$translation = $user->getTranslation();
	if ($translation &&
	$translation != PhabricatorEnv::getEnvConfig('translation.provider')) {
	$translation = newv($translation, array());
	PhutilTranslator::getInstance()
	->setLanguage($translation->getLanguage())
	->addTranslations($translation->getTranslations());
	}

	$preferences = $user->loadPreferences();
	if (PhabricatorEnv::getEnvConfig('darkconsole.enabled')) {
	$dark_console = PhabricatorUserPreferences::PREFERENCE_DARK_CONSOLE;
	if ($preferences->getPreference($dark_console) \|\|
	PhabricatorEnv::getEnvConfig('darkconsole.always-on')) {
	$console = new DarkConsoleCore();
	$request->getApplicationConfiguration()->setConsole($console);
	}
	}

	if ($user->getIsDisabled() && $this->shouldRequireEnabledUser()) {
	$disabled_user_controller = new PhabricatorDisabledUserController(
	$request);
	return $this->delegateToController($disabled_user_controller);
	}

	$event = new PhabricatorEvent(
	PhabricatorEventType::TYPE_CONTROLLER_CHECKREQUEST,
	array(
	'request' => $request,
	'controller' => $this,
	));
	$event->setUser($user);
	PhutilEventEngine::dispatchEvent($event);
	$checker_controller = $event->getValue('controller');
	if ($checker_controller != $this) {
	return $this->delegateToController($checker_controller);
	}

	if ($this->shouldRequireLogin()) {
	// This actually means we need either:
	// - a valid user, or a public controller; and
	// - permission to see the application.

	$auth_class = 'PhabricatorApplicationAuth';
	$auth_application = PhabricatorApplication::getByClass($auth_class);

	$allow_public = $this->shouldAllowPublic() &&
	PhabricatorEnv::getEnvConfig('policy.allow-public');

	// If this controller isn't public, and the user isn't logged in, require
	// login.
	if (!$allow_public && !$user->isLoggedIn()) {
	$login_controller = new PhabricatorAuthStartController($request);
	$this->setCurrentApplication($auth_application);
	return $this->delegateToController($login_controller);
	}

	if ($user->isLoggedIn()) {
	if ($this->shouldRequireEmailVerification()) {
	$email = $user->loadPrimaryEmail();
	if (!$email) {
	throw new Exception(
	"No primary email address associated with this account!");
	}
	if (!$email->getIsVerified()) {
	$controller = new PhabricatorMustVerifyEmailController($request);
	$this->setCurrentApplication($auth_application);
	return $this->delegateToController($controller);
	}
	}
	}

	// If the user doesn't have access to the application, don't let them use
	// any of its controllers. We query the application in order to generate
	// a policy exception if the viewer doesn't have permission.

	$application = $this->getCurrentApplication();
	if ($application) {
	id(new PhabricatorApplicationQuery())
	->setViewer($user)
	->withPHIDs(array($application->getPHID()))
	->executeOne();
	}
	}

	// NOTE: We do this last so that users get a login page instead of a 403
	// if they need to login.
	if ($this->shouldRequireAdmin() && !$user->getIsAdmin()) {
	return new Aphront403Response();
	}

	}

	public function buildStandardPageView() {
	$view = new PhabricatorStandardPageView();
	$view->setRequest($this->getRequest());
	$view->setController($this);
	return $view;
	}

	public function buildStandardPageResponse($view, array $data) {
	$page = $this->buildStandardPageView();
	$page->appendChild($view);
	$response = new AphrontWebpageResponse();
	$response->setContent($page->render());
	return $response;
	}

	public function getApplicationURI($path = '') {
	if (!$this->getCurrentApplication()) {
	throw new Exception("No application!");
	}
	return $this->getCurrentApplication()->getApplicationURI($path);
	}

	public function buildApplicationPage($view, array $options) {
	$page = $this->buildStandardPageView();

	$title = PhabricatorEnv::getEnvConfig('phabricator.serious-business') ?
	'Phabricator' :
	pht('Bacon Ice Cream for Breakfast');

	$application = $this->getCurrentApplication();
	$page->setTitle(idx($options, 'title', $title));
	if ($application) {
	$page->setApplicationName($application->getName());
	if ($application->getTitleGlyph()) {
	$page->setGlyph($application->getTitleGlyph());
	}
	}

	if (!($view instanceof AphrontSideNavFilterView)) {
	$nav = new AphrontSideNavFilterView();
	$nav->appendChild($view);
	$view = $nav;
	}

	$user = $this->getRequest()->getUser();
	$view->setUser($user);

	$page->appendChild($view);

	$object_phids = idx($options, 'pageObjects', array());
	if ($object_phids) {
	$page->appendPageObjects($object_phids);
	foreach ($object_phids as $object_phid) {
	PhabricatorFeedStoryNotification::updateObjectNotificationViews(
	$user,
	$object_phid);
	}
	}

	if (idx($options, 'device')) {
	$page->setDeviceReady(true);
	}

	$page->setShowChrome(idx($options, 'chrome', true));

	$application_menu = $this->buildApplicationMenu();
	if ($application_menu) {
	$page->setApplicationMenu($application_menu);
	}

	$response = new AphrontWebpageResponse();
	return $response->setContent($page->render());
	}

	public function didProcessRequest($response) {
	$request = $this->getRequest();
	$response->setRequest($request);

	$seen = array();
	while ($response instanceof AphrontProxyResponse) {

	$hash = spl_object_hash($response);
	if (isset($seen[$hash])) {
	$seen[] = get_class($response);
	throw new Exception(
	"Cycle while reducing proxy responses: ".
	implode(' -> ', $seen));
	}
	$seen[$hash] = get_class($response);

	$response = $response->reduceProxyResponse();
	}

	if ($response instanceof AphrontDialogResponse) {
	if (!$request->isAjax()) {
	$view = new PhabricatorStandardPageView();
	$view->setRequest($request);
	$view->setController($this);
	$view->appendChild(hsprintf(
	'<div style="padding: 2em 0;">%s</div>',
	$response->buildResponseString()));
	- $response = new AphrontWebpageResponse();
	- $response->setContent($view->render());
	- return $response;
	+ $page_response = new AphrontWebpageResponse();
	+ $page_response->setContent($view->render());
	+ $page_response->setHTTPResponseCode($response->getHTTPResponseCode());
	+ return $page_response;
	} else {
	$response->getDialog()->setIsStandalone(true);

	return id(new AphrontAjaxResponse())
	->setContent(array(
	'dialog' => $response->buildResponseString(),
	));
	}
	} else if ($response instanceof AphrontRedirectResponse) {
	if ($request->isAjax()) {
	return id(new AphrontAjaxResponse())
	->setContent(
	array(
	'redirect' => $response->getURI(),
	));
	}
	}
	return $response;
	}

	protected function getHandle($phid) {
	if (empty($this->handles[$phid])) {
	throw new Exception(
	"Attempting to access handle which wasn't loaded: {$phid}");
	}
	return $this->handles[$phid];
	}

	protected function loadHandles(array $phids) {
	$phids = array_filter($phids);
	$this->handles = $this->loadViewerHandles($phids);
	return $this;
	}

	protected function getLoadedHandles() {
	return $this->handles;
	}

	protected function loadViewerHandles(array $phids) {
	return id(new PhabricatorHandleQuery())
	->setViewer($this->getRequest()->getUser())
	->withPHIDs($phids)
	->execute();
	}


	/**
	* Render a list of links to handles, identified by PHIDs. The handles must
	* already be loaded.
	*
	* @param list<phid> List of PHIDs to render links to.
	* @param string Style, one of "\n" (to put each item on its own line)
	* or "," (to list items inline, separated by commas).
	* @return string Rendered list of handle links.
	*/
	protected function renderHandlesForPHIDs(array $phids, $style = "\n") {
	$style_map = array(
	"\n" => phutil_tag('br'),
	',' => ', ',
	);

	if (empty($style_map[$style])) {
	throw new Exception("Unknown handle list style '{$style}'!");
	}

	return implode_selected_handle_links($style_map[$style],
	$this->getLoadedHandles(),
	array_filter($phids));
	}

	protected function buildApplicationMenu() {
	return null;
	}

	protected function buildApplicationCrumbs() {

	$crumbs = array();

	$application = $this->getCurrentApplication();
	if ($application) {
	$sprite = $application->getIconName();
	if (!$sprite) {
	$sprite = 'application';
	}

	$crumbs[] = id(new PhabricatorCrumbView())
	->setHref($this->getApplicationURI())
	->setIcon($sprite);
	}

	$view = new PhabricatorCrumbsView();
	foreach ($crumbs as $crumb) {
	$view->addCrumb($crumb);
	}

	return $view;
	}

	protected function hasApplicationCapability($capability) {
	return PhabricatorPolicyFilter::hasCapability(
	$this->getRequest()->getUser(),
	$this->getCurrentApplication(),
	$capability);
	}

	protected function requireApplicationCapability($capability) {
	PhabricatorPolicyFilter::requireCapability(
	$this->getRequest()->getUser(),
	$this->getCurrentApplication(),
	$capability);
	}

	protected function explainApplicationCapability(
	$capability,
	$positive_message,
	$negative_message) {

	$can_act = $this->hasApplicationCapability($capability);
	if ($can_act) {
	$message = $positive_message;
	$icon_name = 'enable-grey';
	} else {
	$message = $negative_message;
	$icon_name = 'lock';
	}

	$icon = id(new PHUIIconView())
	->setSpriteSheet(PHUIIconView::SPRITE_ICONS)
	->setSpriteIcon($icon_name);

	require_celerity_resource('policy-css');

	$phid = $this->getCurrentApplication()->getPHID();
	$explain_uri = "/policy/explain/{$phid}/{$capability}/";

	$message = phutil_tag(
	'div',
	array(
	'class' => 'policy-capability-explanation',
	),
	array(
	$icon,
	javelin_tag(
	'a',
	array(
	'href' => $explain_uri,
	'sigil' => 'workflow',
	),
	$message),
	));

	return array($can_act, $message);
	}

	}

File Metadata

Mime Type: text/x-diff
Expires: Sat, Nov 15, 2:09 AM (16 h, 22 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 337550
Default Alt Text: (24 KB)

No OneTemporaryActions

View Options

File Metadata

Event Timeline

No OneTemporary
Actions