view MoinMoin/server/__init__.py @ 988:65dc979761f0

whitespace only and style changes
author Thomas Waldmann <tw AT waldmann-edv DOT de>
date Tue, 18 Jul 2006 12:55:53 +0200
parents 77665d8e2254
children f37b49b6313d
line wrap: on
line source
# -*- coding: iso-8859-1 -*-
"""
    MoinMoin server package

    Supply common server utilities.

    @copyright: 2004 by Nir Soffer
    @license: GNU GPL, see COPYING for details.
"""

import os


def switchUID(uid, gid):
    """ Switch identity to safe user and group

    Does not support Windows, because the necessary calls are not available.
    TODO: can we use win32api calls to achieve the same effect on Windows?

    Raise RuntimeError if can't switch or trying to switch to root.
    """
    if uid == 0 or gid == 0:
        # We will not run as root. If you like to run a web
        # server as root, then hack this code.
        raise RuntimeError('will not run as root!')

    try:
        os.setgid(gid)
        os.setuid(uid)
    except (OSError, AttributeError):
        # Either we can't switch, or we are on windows, which does not have
        # those calls.
        raise RuntimeError("can't change uid/gid to %s/%s" %
                           (uid, gid))
    import sys
    sys.stderr.write("Running as uid/gid %d/%d\n" % (uid, gid))


class Config:
    """ Base class for server configuration

    When you create a server, you should run it with a Config
    instance. Sub class to define the default values.

    This class does all error checking needed for config values, and will
    raise a RuntimeError on any fatal error.
    """

    def __init__(self):
        """ Validate and post process configuration values

        Will raise RuntimeError for any wrong config value.
        """

        # Check that docs path is accessible
        self.docs = os.path.normpath(os.path.abspath(self.docs))
        if not os.access(self.docs, os.F_OK | os.R_OK | os.X_OK):
            raise RuntimeError("Can't access docs directory '%s'. Check docs "
                               "setting and permissions." % self.docs)

        # Don't check uid and gid on windows, those calls are not available.
        if os.name == 'nt':
            self.uid = self.gid = 0
            return

        # If serving privileged port, we must run as root to bind the port.
        # we will give up root privileges later
        if self.port < 1024 and os.getuid() != 0:
            raise RuntimeError('Must run as root to serve port number under 1024. '
                               'Run as root or change port setting.')

        # If we run as root to serve privileged port, we change user and group
        # to a safe setting. Get the uid and gid now, switch later.
        self.uid = os.getuid()
        self.gid = os.getgid()
        if self.uid == 0:
            import pwd, grp
            try:
                self.uid = pwd.getpwnam(self.user)[2]
            except KeyError:
                raise RuntimeError("Unknown user: '%s', check user setting" %
                                   self.user)
            try:
                self.gid = grp.getgrnam(self.group)[2]
            except KeyError:
                raise RuntimeError("Unknown group: '%s', check group setting" %
                                   self.group)