view MoinMoin/server/ @ 0:77665d8e2254

tag of nonpublic@localhost--archive/moin--enterprise--1.5--base-0 (automatically generated log message) imported from: moin--main--1.5--base-0
author Thomas Waldmann <>
date Thu, 22 Sep 2005 15:09:50 +0000
children 65dc979761f0
line wrap: on
line source

# -*- coding: iso-8859-1 -*-
    MoinMoin server package

    Supply common server utilities.

    @copyright: 2004 by Nir Soffer
    @license: GNU GPL, see COPYING for details.

# Imports
import os

def switchUID(uid, gid):
    """ Switch identity to safe user and group

    Does not support Windows, because the necessary calls are not available.
    TODO: can we use win32api calls to achieve the same effect on Windows?

    Raise RuntimeError if can't switch or trying to switch to root.
    if uid == 0 or gid == 0:
        # We will not run as root. If you like to run a web
        # server as root, then hack this code.
        raise RuntimeError('will not run as root!')

    except (OSError, AttributeError):
        # Either we can't switch, or we are on windows, which does not have
        # those calls.
        raise RuntimeError("can't change uid/gid to %s/%s" %
                           (uid, gid))
    import sys
    sys.stderr.write("Running as uid/gid %d/%d\n" % (uid, gid))

class Config:
    """ Base class for server configuration

    When you create a server, you should run it with a Config
    instance. Sub class to define the default values.

    This class does all error checking needed for config values, and will
    raise a RuntimeError on any fatal error.
    def __init__(self):
        """ Validate and post process configuration values

        Will raise RuntimeError for any wrong config value.
        # Check that docs path is accessible = os.path.normpath(os.path.abspath(
        if not os.access(, os.F_OK | os.R_OK | os.X_OK):
            raise RuntimeError("Can't access docs directory '%s'. Check docs "
                               "setting and permissions." %

        # Don't check uid and gid on windows, those calls are not available.
        if == 'nt':
            self.uid = self.gid = 0
        # If serving privileged port, we must run as root to bind the port.
        # we will give up root privileges later
        if self.port < 1024 and os.getuid() != 0:
            raise RuntimeError('Must run as root to serve port number under 1024. '
                               'Run as root or change port setting.')

        # If we run as root to serve privileged port, we change user and group
        # to a safe setting. Get the uid and gid now, switch later.
        self.uid = os.getuid()
        self.gid = os.getgid()
        if self.uid == 0:
            import pwd, grp
                self.uid = pwd.getpwnam(self.user)[2]
            except KeyError:
                raise RuntimeError("Unknown user: '%s', check user setting" %
                self.gid = grp.getgrnam([2]
            except KeyError:
                raise RuntimeError("Unknown group: '%s', check group setting" %