a lot of changes, hoo boy.

made the expiry check interval configurable (expire_every in config.yml)
fixed a bug where an expired paste could still be viewed for a short period after expiring in some situations
consolidated the paste fetching and parameter validation functions somewhat
fixed some bugs with expiry handling
hopefully haven't broken anything, changes are untested
This commit is contained in:
Matthew Connelly 2015-11-14 04:39:28 +00:00
parent 986ea029ee
commit e73864fcea
2 changed files with 164 additions and 157 deletions

View File

@ -7,6 +7,9 @@ locale: "en_GB"
logger: "console" logger: "console"
log: "debug" log: "debug"
# Time in seconds between each paste expiry check
expire_every: 600
template: "template_toolkit" template: "template_toolkit"
engines: engines:
template: template:
@ -24,144 +27,145 @@ plugins:
options: options:
sqlite_unicode: 1 sqlite_unicode: 1
# Comment out for production # Uncomment for debugging
show_errors: 1 #show_errors: 1
# Sets the expiration for posts # Sets the expiration for posts
# Options can be any combination of weeks, days, hours, minutes, seconds # Options can be any combination of weeks, days, hours, minutes, seconds
expiration: expiration:
weeks: 2 weeks: 2
# Languages supported by Pygments # Languages supported by Pygments
# TODO: perhaps swap this out with something in App::WerePaste::Util::PygmentsBridge so we can dynamically load supported languages
languages: languages:
- Programming languages: - Programming languages:
- ActionScript: - ActionScript:
- Ada: - Ada:
- ANTLR: - ANTLR:
- AppleScript: - AppleScript:
- Assembly: nasm - Assembly: nasm
- Asymptote: - Asymptote:
- Awk: - Awk:
- Bash: - Bash:
- Befunge: - Befunge:
- Boo: - Boo:
- BrainFuck: - BrainFuck:
- C: - C:
- C++: - C++:
- C#: - C#:
- Clojure: - Clojure:
- CoffeeScript: - CoffeeScript:
- ColdFusion: cfm - ColdFusion: cfm
- Common Lisp: - Common Lisp:
- Coq: - Coq:
- Cryptol: - Cryptol:
- Cython: - Cython:
- D: - D:
- Dart: - Dart:
- Delphi: - Delphi:
- Dylan: - Dylan:
- Erlang: - Erlang:
- Factor: - Factor:
- Fancy: - Fancy:
- Fortran: - Fortran:
- F#: - F#:
- GAP: - GAP:
- Gherkin: - Gherkin:
- GL shaders: - GL shaders:
- Groovy: - Groovy:
- Haskell: - Haskell:
- IDL: - IDL:
- Io: - Io:
- Java: - Java:
- JavaScript: - JavaScript:
- Lasso: - Lasso:
- LLVM: - LLVM:
- Logtalk: - Logtalk:
- Lua: - Lua:
- Matlab: - Matlab:
- MiniD: - MiniD:
- Modelica: - Modelica:
- Modula-2: - Modula-2:
- MuPad: - MuPad:
- Nemerle: - Nemerle:
- Nimrod: - Nimrod:
- Objective-C: - Objective-C:
- Objective-J: - Objective-J:
- Octave: - Octave:
- OCaml: - OCaml:
- PHP: - PHP:
- Perl: - Perl:
- PovRay: - PovRay:
- PostScript: - PostScript:
- PowerShell: - PowerShell:
- Prolog: - Prolog:
- Python: - Python:
- REBOL: - REBOL:
- Red: - Red:
- Redcode: - Redcode:
- Ruby: - Ruby:
- Rust: - Rust:
- R: - R:
- S: - S:
- S-Plus: - S-Plus:
- Scala: - Scala:
- Scheme: - Scheme:
- Scilab: - Scilab:
- Smalltalk: - Smalltalk:
- SNOBOL: - SNOBOL:
- Tcl: - Tcl:
- Vala: - Vala:
- Verilog: - Verilog:
- VHDL: - VHDL:
- Visual Basic.NET: vbnet - Visual Basic.NET: vbnet
- Visual FoxPro: foxpro - Visual FoxPro: foxpro
- XQuery: - XQuery:
- Zephir: - Zephir:
- Template Languages: - Template Languages:
- Cheetah: - Cheetah:
- Django: - Django:
- ERB: - ERB:
- Genshi: - Genshi:
- Jinja: - Jinja:
- JSP: - JSP:
- Mako: - Mako:
- Myghty: - Myghty:
- Smarty: - Smarty:
- Tea: - Tea:
- Configuration Markup: - Configuration Markup:
- ApacheConf: - ApacheConf:
- INI-style: ini - INI-style: ini
- Lighttpd: - Lighttpd:
- Nginx: - Nginx:
- Other Markups: - Other Markups:
- BBCode: - BBCode:
- CMake: - CMake:
- CSS: - CSS:
- Debian control file: control - Debian control file: control
- Diff: - Diff:
- DTD: - DTD:
- Gettext Catalogs: pot - Gettext Catalogs: pot
- Gnuplot: - Gnuplot:
- Groff: - Groff:
- HTML: - HTML:
- HTTP Session: http - HTTP Session: http
- IRC log (irssi-format): irc - IRC log (irssi-format): irc
- Makefile: - Makefile:
- MoinMoin/Trac wiki markup: moin - MoinMoin/Trac wiki markup: moin
- MySQL: - MySQL:
- POV-Ray Scenes: pov - POV-Ray Scenes: pov
- Ragel: - Ragel:
- Redcode: - Redcode:
- ReST: - ReST:
- SQL: - SQL:
- PostgreSQL: psql - PostgreSQL: psql
- SQLite: - SQLite:
- Squid Configuration: squid - Squid Configuration: squid
- TeX: - TeX:
- tcsh: - tcsh:
- VimScript: vim - VimScript: vim
- Windows Batch Script: bat - Windows Batch Script: bat
- XML: - XML:
- XSLT: - XSLT:
- YAML: - YAML:

View File

@ -12,7 +12,7 @@ use Data::UUID;
my $lastexpunge = 0; my $lastexpunge = 0;
sub DeploySchema { sub DeploySchema {
# need to find a way to handle this that doesn't shit errors everywhere # TODO: figure out how to ensure schema is deployed without producing "table already exists" errors when it is already deployed
eval {schema->deploy}; eval {schema->deploy};
} }
sub DateTimeToQueryable { sub DateTimeToQueryable {
@ -22,39 +22,47 @@ sub DateTimeToQueryable {
} }
sub ExpirationToDate { sub ExpirationToDate {
my $expire = shift; my $expire = shift;
$expire = $expire ? { split ':', $expire } : undef; $expire = $expire ? { split ':', $expire } : config->{default_expire};
return undef if $expire and $expire->{never}; return undef if $expire and $expire->{never};
return DateTimeToQueryable(%{ $expire || config->{default_expire} }); return DateTimeToQueryable(%{ $expire });
} }
sub GetUUID { sub GetUUID {
my $uuid = Data::UUID->new->create_str; my $uuid = Data::UUID->new->create_str;
$uuid =~ s/\-//g; $uuid =~ s/\-//g;
return lc $uuid; return lc $uuid;
} }
sub CheckExpired { sub CheckExpiry {
return unless time > ($lastexpunge+900); #expunge once every 15 mins return unless time > ($lastexpunge+config->{expire_every});
$lastexpunge = time; $lastexpunge = time;
schema->resultset('Paste')->search({ expiration => { '<' => DateTimeToQueryable() }})->delete_all; schema->resultset('Paste')->search({expiration => { '<' => DateTimeToQueryable() }})->delete_all;
} }
sub ValidateParams { sub ValidateParams {
my $params = shift; my $params = shift;
if($params->{id}) {
return undef unless lc($params->{id}) =~ /^[a-f0-9]*$/;
return 1;
}
return undef unless $params->{code}; return undef unless $params->{code};
#TODO: Allow all 'word' characters rather than just a-zA-Z0-9, expanded grammar
## Presently this is limited so people can't do anything nasty.
return undef unless $params->{title} =~ /^[a-zA-Z0-9\.\-_ @\(\)]{0,255}$/; return undef unless $params->{title} =~ /^[a-zA-Z0-9\.\-_ @\(\)]{0,255}$/;
return undef unless $params->{lang} =~ /^[a-z0-9\.\-\+# ]{0,40}$/; return undef unless $params->{lang} =~ /^[a-z0-9\.\-\+# ]{0,40}$/;
return undef unless $params->{expiration} =~ /^([a-z]+:[0-9]+)(:[a-z]+:[0-9]+)*$/ or not $params->{expiration}; return undef unless $params->{expiration} =~ /^([a-z]+:[0-9]+)(:[a-z]+:[0-9]+)*$/ or not $params->{expiration};
return 1; return 1;
} }
sub GetPaste { sub GetPaste {
my $id = shift; my $id = shift; $id = lc $id;
return schema->resultset('Paste')->single({ id => $id }) or return undef; return undef unless $id =~ /^[a-f0-9]*$/;
#This got a bit messy, required because otherwise there are scenarios where an expired paste may still be viewed
return schema->resultset('Paste')->single({
-and => [
{ id => $id },
-or => [
{ expiration => { '>=' => DateTimeToQueryable() }},
{ expiration => undef }
]
]}) or return undef;
} }
sub SubmitPaste { sub SubmitPaste {
my $params = shift; my $params = shift;
my ($lang,$html) = PygmentsHighlight(lang => $params->{lang}, code => $params->{code}); my ($lang,$html) = PygmentsHighlight(lang => $params->{lang}, code => $params->{code});
#TODO: maybe figure out a nicer way of doing this, presently the UUID namespace changes with every app start
my $id = GetUUID(); my $id = GetUUID();
my $result = schema->resultset('Paste')->create({ my $result = schema->resultset('Paste')->create({
id => $id, id => $id,
@ -66,31 +74,26 @@ sub SubmitPaste {
}) or return undef; }) or return undef;
return $id; return $id;
} }
sub ValidateAndGet {
my $params = shift;
ValidateParams($params) or return undef;
return GetPaste(lc $params->{id}) or return undef;
}
# Startup # Startup
DeploySchema(); DeploySchema();
# Hooks # Hooks
hook 'before' => sub { CheckExpired(); }; hook 'before' => sub { CheckExpiry(); };
# Routes # Routes
#get #get
get '/' => sub { template 'index.tt'; }; get '/' => sub { template 'index.tt'; };
get '/:id' => sub { my $paste=ValidateAndGet(scalar params('route')) or pass; template 'show.tt', { paste => $paste };}; get '/:id' => sub { my $paste=GetPaste(scalar params 'route') or pass; template 'show.tt', { paste => $paste }; };
get '/:id/copy' => sub { my $paste=ValidateAndGet(scalar params('route')) or pass; template 'index.tt', { paste => $paste }; }; get '/:id/copy' => sub { my $paste=GetPaste(scalar params 'route') or pass; template 'index.tt', { paste => $paste }; };
get '/:id/raw' => sub { my $paste=ValidateAndGet(scalar params('route')) or pass; content_type 'text/plain'; return $paste->code; }; get '/:id/raw' => sub { my $paste=GetPaste(scalar params 'route') or pass; content_type 'text/plain'; return $paste->code; };
#post #post
post '/' => sub { post '/' => sub {
my $p = params('body'); my $p = params 'body';
ValidateParams($p) or return send_error('Submitted paste is not valid. Check your post title and language, and try again.',400); ValidateParams($p) or return send_error('Submitted paste is not valid. Check your post title and language, and try again.', 400);
my $id = SubmitPaste($p) or return redirect '/503.html'; my $id = SubmitPaste($p) or return redirect '/503.html';
return redirect "/$id"; return redirect "/$id";
}; };
#default #default
any qr/.*/ => sub { return send_error('Page gone',404); }; any qr/.*/ => sub { return send_error('What you seek cannot be found here.', 404); };
1; 1;
__END__ __END__