############################################################################## # # Copyright (c) 2002 Nexedi SARL and Contributors. All Rights Reserved. # Jean-Paul Smets-Solanes <jp@nexedi.com> # # WARNING: This program as such is intended to be used by professional # programmers who take the whole responsability of assessing all potential # consequences resulting from its eventual inadequacies and bugs # End users who are looking for a ready-to-use solution with commercial # garantees and support are strongly adviced to contract a Free Software # Service Company # # This program is Free Software; you can redistribute it and/or # modify it under the terms of the GNU General Public License # as published by the Free Software Foundation; either version 2 # of the License, or (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. # ############################################################################## import mimetypes import re from AccessControl import ClassSecurityInfo from Products.CMFCore.WorkflowCore import WorkflowMethod from Products.ERP5Type import Permissions, PropertySheet, Constraint, Interface from Products.ERP5Type.Cache import CachingMethod from Products.ERP5.Document.Document import Document from Products.ERP5.Document.Document import ConversionCacheMixin from Products.ERP5Type.Base import Base from Products.CMFDefault.File import File as CMFFile from zLOG import LOG from DateTime import DateTime mimetypes.init() rs=[] rs.append(re.compile('<HEAD>.*</HEAD>',re.DOTALL|re.MULTILINE|re.IGNORECASE)) rs.append(re.compile('<!DOCTYPE[^>]*>')) rs.append(re.compile('<.?(HTML|BODY)[^>]*>',re.DOTALL|re.MULTILINE|re.IGNORECASE)) def stripHtml(txt): # XXX-JPS to be moved to TextDocument for r in rs: txt=r.sub('',txt) return txt class File(Document, CMFFile, ConversionCacheMixin): """ A File can contain raw data which can be uploaded and downloaded. It is the root class of Image, OOoDocument (ERP5OOo product), etc. The main purpose of the File class is to handle efficiently large files. It uses Pdata from OFS.File for this purpose. File inherits from XMLObject and can be synchronized accross multiple sites. Subcontent: File can only contain role information. TODO: * make sure ZODB BLOBS are supported to prevent feeding the ZODB cache with unnecessary large data """ meta_type = 'ERP5 File' portal_type = 'File' add_permission = Permissions.AddPortalContent isPortalContent = 1 isRADContent = 1 # Declarative security security = ClassSecurityInfo() security.declareObjectProtected(Permissions.AccessContentsInformation) # Default global values content_type = '' # Required for WebDAV support (default value) # Default Properties property_sheets = ( PropertySheet.Base , PropertySheet.CategoryCore , PropertySheet.DublinCore , PropertySheet.Version , PropertySheet.Reference , PropertySheet.Document , PropertySheet.Data ) # Declarative interfaces #__implements__ = ( , ) ### Special edit method security.declarePrivate( '_edit' ) def _edit(self, **kw): """\ This is used to edit files """ if kw.has_key('file'): file = kw.get('file') precondition = kw.get('precondition') if self._isNotEmpty(file): self._setFile(file, precondition=precondition) del kw['file'] Base._edit(self, **kw) security.declareProtected( Permissions.ModifyPortalContent, 'edit' ) edit = WorkflowMethod( _edit ) security.declareProtected(Permissions.ModifyPortalContent, 'manage_upload') def manage_upload(self, file='', REQUEST=''): res = CMFFile.manage_upload(self, file, REQUEST) self.setSourceReference(file.filename) return res # Copy support needs to be implemented by ExtFile ################################ # Special management methods # ################################ def manage_afterClone(self, item): Base.manage_afterClone(self, item) CMFFile.manage_afterClone(self, item) def manage_afterAdd(self, item, container): Base.manage_afterAdd(self, item, container) CMFFile.manage_afterAdd(self, item, container) def manage_beforeDelete(self, item, container): CMFFile.manage_beforeDelete(self, item, container) def get_size(self): """ has to be overwritten here, otherwise WebDAV fails """ try: return len(self.data) except (AttributeError, TypeError): return 0 getcontentlength = get_size # File management virtual accessor security.declareProtected(Permissions.View, 'hasFile') def hasFile(self): """ Checks whether we have an initial file """ _marker = [] if getattr(self,'data', _marker) is not _marker: # XXX-JPS - use propertysheet accessors return getattr(self,'data') is not None return False def _setFile(self, data, precondition=None): self.clearConversionCache() CMFFile._edit(self, precondition=precondition, file=data) security.declareProtected(Permissions.ModifyPortalContent,'setFile') def setFile(self, data, precondition=None): self._setFile(data, precondition=precondition) self.reindexObject() security.declarePrivate('_unpackData') def _unpackData(self,data): """ Unpack Pdata into string """ if isinstance(data, str): return data else: data_list = [] while data is not None: data_list.append(data.data) data = data.next return ''.join(data_list) security.declareProtected(Permissions.ModifyPortalContent, 'guessMimeType') def guessMimeType(self, fname=''): """ get mime type from file name """ if fname == '': fname = self.getOriginalFilename() if fname: content_type,enc = mimetypes.guess_type(fname) if content_type is not None: self.content_type = content_type return content_type security.declareProtected(Permissions.ModifyPortalContent,'PUT') def PUT(self,REQUEST,RESPONSE): self.clearConversionCache() CMFFile.PUT(self,REQUEST,RESPONSE) self.discoverMetadata(fname=self.getId()) # DAV Support index_html = CMFFile.index_html # XXX-JPS - Here we have a security issue - ask seb what to do PUT = CMFFile.PUT # XXX-JPS - Here we have a security issue - ask seb what to do security.declareProtected('FTP access', 'manage_FTPget', 'manage_FTPstat', 'manage_FTPlist') manage_FTPget = CMFFile.manage_FTPget # XXX-JPS - Here we have a security issue - ask seb what to do manage_FTPlist = CMFFile.manage_FTPlist # XXX-JPS - Here we have a security issue - ask seb what to do manage_FTPstat = CMFFile.manage_FTPstat # XXX-JPS - Here we have a security issue - ask seb what to do # vim: syntax=python shiftwidth=2