datasette/datasette/app.py
import asynciofrom typing import Any, Dict, Iterable, List, Optional, Sequence, Tuple, Unionimport asgi_csrfimport collectionsimport dataclassesimport datetimeimport functoolsimport globimport hashlibimport httpximport importlib.metadataimport inspectfrom itsdangerous import BadSignatureimport jsonimport osimport reimport secretsimport sysimport threadingimport timeimport typesimport urllib.parsefrom concurrent import futuresfrom pathlib import Pathfrom markupsafe import Markup, escapefrom itsdangerous import URLSafeSerializerfrom jinja2 import (ChoiceLoader,Environment,FileSystemLoader,PrefixLoader,)from jinja2.environment import Templatefrom jinja2.exceptions import TemplateNotFoundfrom .views import Contextfrom .views.base import uregfrom .views.database import database_download, DatabaseView, TableCreateViewfrom .views.index import IndexViewfrom .views.special import (JsonDataView,PatternPortfolioView,AuthTokenView,ApiExplorerView,CreateTokenView,LogoutView,AllowDebugView,PermissionsDebugView,MessagesDebugView,)from .views.table import (TableInsertView,TableUpsertView,TableDropView,table_view,)from .views.row import RowView, RowDeleteView, RowUpdateViewfrom .renderer import json_rendererfrom .url_builder import Urlsfrom .database import Database, QueryInterruptedfrom .utils import (PrefixedUrlString,SPATIALITE_FUNCTIONS,StartupError,async_call_with_supported_arguments,await_me_maybe,call_with_supported_arguments,display_actor,escape_css_string,escape_sqlite,find_spatialite,format_bytes,module_from_path,parse_metadata,resolve_env_secrets,resolve_routes,fail_if_plugins_in_metadata,tilde_decode,to_css_class,urlsafe_components,row_sql_params_pks,)from .utils.asgi import (AsgiLifespan,Forbidden,NotFound,DatabaseNotFound,TableNotFound,RowNotFound,Request,Response,AsgiRunOnFirstRequest,asgi_static,asgi_send,asgi_send_file,asgi_send_redirect,)from .utils.internal_db import init_internal_db, populate_schema_tablesfrom .utils.sqlite import (sqlite3,using_pysqlite3,)from .tracer import AsgiTracerfrom .plugins import pm, DEFAULT_PLUGINS, get_pluginsfrom .version import __version__app_root = Path(__file__).parent.parent# https://github.com/simonw/datasette/issues/283#issuecomment-781591015SQLITE_LIMIT_ATTACHED = 10Setting = collections.namedtuple("Setting", ("name", "default", "help"))SETTINGS = (Setting("default_page_size", 100, "Default page size for the table view"),Setting("max_returned_rows",1000,"Maximum rows that can be returned from a table or custom query",),Setting("max_insert_rows",100,"Maximum rows that can be inserted at a time using the bulk insert API",),Setting("num_sql_threads",3,"Number of threads in the thread pool for executing SQLite queries",),Setting("sql_time_limit_ms", 1000, "Time limit for a SQL query in milliseconds"),Setting("default_facet_size", 30, "Number of values to return for requested facets"),Setting("facet_time_limit_ms", 200, "Time limit for calculating a requested facet"),Setting("facet_suggest_time_limit_ms",50,"Time limit for calculating a suggested facet",),Setting("allow_facet",True,"Allow users to specify columns to facet using ?_facet= parameter",),Setting("allow_download",True,"Allow users to download the original SQLite database files",),Setting("allow_signed_tokens",True,"Allow users to create and use signed API tokens",),Setting("default_allow_sql",True,"Allow anyone to run arbitrary SQL queries",),Setting("max_signed_tokens_ttl",0,"Maximum allowed expiry time for signed API tokens",),Setting("suggest_facets", True, "Calculate and display suggested facets"),Setting("default_cache_ttl",5,"Default HTTP cache TTL (used in Cache-Control: max-age= header)",),Setting("cache_size_kb", 0, "SQLite cache size in KB (0 == use SQLite default)"),Setting("allow_csv_stream",True,"Allow .csv?_stream=1 to download all rows (ignoring max_returned_rows)",),Setting("max_csv_mb",100,"Maximum size allowed for CSV export in MB - set 0 to disable this limit",),Setting("truncate_cells_html",2048,"Truncate cells longer than this in HTML table view - set 0 to disable",),Setting("force_https_urls",False,"Force URLs in API output to always use https:// protocol",),Setting("template_debug",False,"Allow display of template debug information with ?_context=1",),Setting("trace_debug",False,"Allow display of SQL trace debug information with ?_trace=1",),Setting("base_url", "/", "Datasette URLs should use this base path"),)_HASH_URLS_REMOVED = "The hash_urls setting has been removed, try the datasette-hashed-urls plugin instead"OBSOLETE_SETTINGS = {"hash_urls": _HASH_URLS_REMOVED,"default_cache_ttl_hashed": _HASH_URLS_REMOVED,}DEFAULT_SETTINGS = {option.name: option.default for option in SETTINGS}FAVICON_PATH = app_root / "datasette" / "static" / "favicon.png"DEFAULT_NOT_SET = object()async def favicon(request, send):await asgi_send_file(send,str(FAVICON_PATH),content_type="image/png",headers={"Cache-Control": "max-age=3600, immutable, public"},)ResolvedTable = collections.namedtuple("ResolvedTable", ("db", "table", "is_view"))ResolvedRow = collections.namedtuple("ResolvedRow", ("db", "table", "sql", "params", "pks", "pk_values", "row"))class Datasette:# Message constants:INFO = 1WARNING = 2ERROR = 3def __init__(self,files=None,immutables=None,cache_headers=True,cors=False,inspect_data=None,config=None,metadata=None,sqlite_extensions=None,template_dir=None,plugins_dir=None,static_mounts=None,memory=False,settings=None,secret=None,version_note=None,config_dir=None,pdb=False,crossdb=False,nolock=False,internal=None,):self._startup_invoked = Falseassert config_dir is None or isinstance(config_dir, Path), "config_dir= should be a pathlib.Path"self.config_dir = config_dirself.pdb = pdbself._secret = secret or secrets.token_hex(32)if files is not None and isinstance(files, str):raise ValueError("files= must be a list of paths, not a string")self.files = tuple(files or []) + tuple(immutables or [])if config_dir:db_files = []for ext in ("db", "sqlite", "sqlite3"):db_files.extend(config_dir.glob("*.{}".format(ext)))self.files += tuple(str(f) for f in db_files)if (config_dirand (config_dir / "inspect-data.json").exists()and not inspect_data):inspect_data = json.loads((config_dir / "inspect-data.json").read_text())if not immutables:immutable_filenames = [i["file"] for i in inspect_data.values()]immutables = [f for f in self.files if Path(f).name in immutable_filenames]self.inspect_data = inspect_dataself.immutables = set(immutables or [])self.databases = collections.OrderedDict()self.permissions = {} # .invoke_startup() will populate thistry:self._refresh_schemas_lock = asyncio.Lock()except RuntimeError as rex:# Workaround for intermittent test failure, see:# https://github.com/simonw/datasette/issues/1802if "There is no current event loop in thread" in str(rex):loop = asyncio.new_event_loop()asyncio.set_event_loop(loop)self._refresh_schemas_lock = asyncio.Lock()else:raiseself.crossdb = crossdbself.nolock = nolockif memory or crossdb or not self.files:self.add_database(Database(self, is_mutable=False, is_memory=True), name="_memory")for file in self.files:self.add_database(Database(self, file, is_mutable=file not in self.immutables))self.internal_db_created = Falseif internal is None:self._internal_database = Database(self, memory_name=secrets.token_hex())else:self._internal_database = Database(self, path=internal, mode="rwc")self._internal_database.name = "__INTERNAL__"self.cache_headers = cache_headersself.cors = corsconfig_files = []metadata_files = []if config_dir:metadata_files = [config_dir / filenamefor filename in ("metadata.json", "metadata.yaml", "metadata.yml")if (config_dir / filename).exists()]config_files = [config_dir / filenamefor filename in ("datasette.json", "datasette.yaml", "datasette.yml")if (config_dir / filename).exists()]if config_dir and metadata_files and not metadata:with metadata_files[0].open() as fp:metadata = fail_if_plugins_in_metadata(parse_metadata(fp.read()), metadata_files[0].name)if config_dir and config_files and not config:with config_files[0].open() as fp:config = parse_metadata(fp.read())self._metadata_local = fail_if_plugins_in_metadata(metadata or {})self.sqlite_extensions = []for extension in sqlite_extensions or []:# Resolve spatialite, if requestedif extension == "spatialite":# Could raise SpatialiteNotFoundself.sqlite_extensions.append(find_spatialite())else:self.sqlite_extensions.append(extension)if config_dir and (config_dir / "templates").is_dir() and not template_dir:template_dir = str((config_dir / "templates").resolve())self.template_dir = template_dirif config_dir and (config_dir / "plugins").is_dir() and not plugins_dir:plugins_dir = str((config_dir / "plugins").resolve())self.plugins_dir = plugins_dirif config_dir and (config_dir / "static").is_dir() and not static_mounts:static_mounts = [("static", str((config_dir / "static").resolve()))]self.static_mounts = static_mounts or []if config_dir and (config_dir / "datasette.json").exists() and not config:config = json.loads((config_dir / "datasette.json").read_text())config = config or {}config_settings = config.get("settings") or {}# validate "settings" keys in datasette.jsonfor key in config_settings:if key not in DEFAULT_SETTINGS:raise StartupError("Invalid setting '{}' in datasette.json".format(key))self.config = config# CLI settings should overwrite datasette.json settingsself._settings = dict(DEFAULT_SETTINGS, **(config_settings), **(settings or {}))self.renderers = {} # File extension -> (renderer, can_render) functionsself.version_note = version_noteif self.setting("num_sql_threads") == 0:self.executor = Noneelse:self.executor = futures.ThreadPoolExecutor(max_workers=self.setting("num_sql_threads"))self.max_returned_rows = self.setting("max_returned_rows")self.sql_time_limit_ms = self.setting("sql_time_limit_ms")self.page_size = self.setting("default_page_size")# Execute plugins in constructor, to ensure they are available# when the rest of `datasette inspect` executesif self.plugins_dir:for filepath in glob.glob(os.path.join(self.plugins_dir, "*.py")):if not os.path.isfile(filepath):continuemod = module_from_path(filepath, name=os.path.basename(filepath))try:pm.register(mod)except ValueError:# Plugin already registeredpass# Configure Jinjadefault_templates = str(app_root / "datasette" / "templates")template_paths = []if self.template_dir:template_paths.append(self.template_dir)plugin_template_paths = [plugin["templates_path"]for plugin in get_plugins()if plugin["templates_path"]]template_paths.extend(plugin_template_paths)template_paths.append(default_templates)template_loader = ChoiceLoader([FileSystemLoader(template_paths),# Support {% extends "default:table.html" %}:PrefixLoader({"default": FileSystemLoader(default_templates)}, delimiter=":"),])environment = Environment(loader=template_loader,autoescape=True,enable_async=True,# undefined=StrictUndefined,)environment.filters["escape_css_string"] = escape_css_stringenvironment.filters["quote_plus"] = urllib.parse.quote_plusself._jinja_env = environmentenvironment.filters["escape_sqlite"] = escape_sqliteenvironment.filters["to_css_class"] = to_css_classself._register_renderers()self._permission_checks = collections.deque(maxlen=200)self._root_token = secrets.token_hex(32)self.client = DatasetteClient(self)def get_jinja_environment(self, request: Request = None) -> Environment:environment = self._jinja_envif request:for environment in pm.hook.jinja2_environment_from_request(datasette=self, request=request, env=environment):passreturn environmentdef get_permission(self, name_or_abbr: str) -> "Permission":"""Returns a Permission object for the given name or abbreviation. Raises KeyError if not found."""if name_or_abbr in self.permissions:return self.permissions[name_or_abbr]# Try abbreviationfor permission in self.permissions.values():if permission.abbr == name_or_abbr:return permissionraise KeyError("No permission found with name or abbreviation {}".format(name_or_abbr))async def refresh_schemas(self):if self._refresh_schemas_lock.locked():returnasync with self._refresh_schemas_lock:await self._refresh_schemas()async def _refresh_schemas(self):internal_db = self.get_internal_database()if not self.internal_db_created:await init_internal_db(internal_db)self.internal_db_created = Truecurrent_schema_versions = {row["database_name"]: row["schema_version"]for row in await internal_db.execute("select database_name, schema_version from catalog_databases")}for database_name, db in self.databases.items():schema_version = (await db.execute("PRAGMA schema_version")).first()[0]# Compare schema versions to see if we should skip itif schema_version == current_schema_versions.get(database_name):continueplaceholders = "(?, ?, ?, ?)"values = [database_name, str(db.path), db.is_memory, schema_version]if db.path is None:placeholders = "(?, null, ?, ?)"values = [database_name, db.is_memory, schema_version]await internal_db.execute_write("""INSERT OR REPLACE INTO catalog_databases (database_name, path, is_memory, schema_version)VALUES {}""".format(placeholders),values,)await populate_schema_tables(internal_db, db)@propertydef urls(self):return Urls(self)async def invoke_startup(self):# This must be called for Datasette to be in a usable stateif self._startup_invoked:return# Register permissions, but watch out for duplicate name/abbrnames = {}abbrs = {}for hook in pm.hook.register_permissions(datasette=self):if hook:for p in hook:if p.name in names and p != names[p.name]:raise StartupError("Duplicate permission name: {}".format(p.name))if p.abbr and p.abbr in abbrs and p != abbrs[p.abbr]:raise StartupError("Duplicate permission abbr: {}".format(p.abbr))names[p.name] = pif p.abbr:abbrs[p.abbr] = pself.permissions[p.name] = pfor hook in pm.hook.prepare_jinja2_environment(env=self._jinja_env, datasette=self):await await_me_maybe(hook)for hook in pm.hook.startup(datasette=self):await await_me_maybe(hook)self._startup_invoked = Truedef sign(self, value, namespace="default"):return URLSafeSerializer(self._secret, namespace).dumps(value)def unsign(self, signed, namespace="default"):return URLSafeSerializer(self._secret, namespace).loads(signed)def create_token(self,actor_id: str,*,expires_after: Optional[int] = None,restrict_all: Optional[Iterable[str]] = None,restrict_database: Optional[Dict[str, Iterable[str]]] = None,restrict_resource: Optional[Dict[str, Dict[str, Iterable[str]]]] = None,):token = {"a": actor_id, "t": int(time.time())}if expires_after:token["d"] = expires_afterdef abbreviate_action(action):# rename to abbr if possiblepermission = self.permissions.get(action)if not permission:return actionreturn permission.abbr or actionif expires_after:token["d"] = expires_afterif restrict_all or restrict_database or restrict_resource:token["_r"] = {}if restrict_all:token["_r"]["a"] = [abbreviate_action(a) for a in restrict_all]if restrict_database:token["_r"]["d"] = {}for database, actions in restrict_database.items():token["_r"]["d"][database] = [abbreviate_action(a) for a in actions]if restrict_resource:token["_r"]["r"] = {}for database, resources in restrict_resource.items():for resource, actions in resources.items():token["_r"]["r"].setdefault(database, {})[resource] = [abbreviate_action(a) for a in actions]return "dstok_{}".format(self.sign(token, namespace="token"))def get_database(self, name=None, route=None):if route is not None:matches = [db for db in self.databases.values() if db.route == route]if not matches:raise KeyErrorreturn matches[0]if name is None:name = [key for key in self.databases.keys()][0]return self.databases[name]def add_database(self, db, name=None, route=None):new_databases = self.databases.copy()if name is None:# Pick a unique name for this databasesuggestion = db.suggest_name()name = suggestionelse:suggestion = namei = 2while name in self.databases:name = "{}_{}".format(suggestion, i)i += 1db.name = namedb.route = route or namenew_databases[name] = db# don't mutate! that causes race conditions with live importself.databases = new_databasesreturn dbdef add_memory_database(self, memory_name):return self.add_database(Database(self, memory_name=memory_name))def remove_database(self, name):new_databases = self.databases.copy()new_databases.pop(name)self.databases = new_databasesdef setting(self, key):return self._settings.get(key, None)def settings_dict(self):# Returns a fully resolved settings dictionary, useful for templatesreturn {option.name: self.setting(option.name) for option in SETTINGS}def _metadata_recursive_update(self, orig, updated):if not isinstance(orig, dict) or not isinstance(updated, dict):return origfor key, upd_value in updated.items():if isinstance(upd_value, dict) and isinstance(orig.get(key), dict):orig[key] = self._metadata_recursive_update(orig[key], upd_value)else:orig[key] = upd_valuereturn origdef metadata(self, key=None, database=None, table=None, fallback=True):"""Looks up metadata, cascading backwards from specified level.Returns None if metadata value is not found."""assert not (database is None and table is not None), "Cannot call metadata() with table= specified but not database="metadata = {}for hook_dbs in pm.hook.get_metadata(datasette=self, key=key, database=database, table=table):metadata = self._metadata_recursive_update(metadata, hook_dbs)# security precaution!! don't allow anything in the local config# to be overwritten. this is a temporary measure, not sure if this# is a good idea long term or maybe if it should just be a concern# of the plugin's implemtnationmetadata = self._metadata_recursive_update(metadata, self._metadata_local)databases = metadata.get("databases") or {}search_list = []if database is not None:search_list.append(databases.get(database) or {})if table is not None:table_metadata = ((databases.get(database) or {}).get("tables") or {}).get(table) or {}search_list.insert(0, table_metadata)search_list.append(metadata)if not fallback:# No fallback allowed, so just use the first one in the listsearch_list = search_list[:1]if key is not None:for item in search_list:if key in item:return item[key]return Noneelse:# Return the merged listm = {}for item in search_list:m.update(item)return m@propertydef _metadata(self):return self.metadata()def get_internal_database(self):return self._internal_databasedef plugin_config(self, plugin_name, database=None, table=None, fallback=True):"""Return config for plugin, falling back from specified database/table"""if database is None and table is None:config = self._plugin_config_top(plugin_name)else:config = self._plugin_config_nested(plugin_name, database, table, fallback)return resolve_env_secrets(config, os.environ)def _plugin_config_top(self, plugin_name):"""Returns any top-level plugin configuration for the specified plugin."""return ((self.config or {}).get("plugins") or {}).get(plugin_name)def _plugin_config_nested(self, plugin_name, database, table=None, fallback=True):"""Returns any database or table-level plugin configuration for the specified plugin."""db_config = ((self.config or {}).get("databases") or {}).get(database)# if there's no db-level configuration, then return early, falling back to top-level if neededif not db_config:return self._plugin_config_top(plugin_name) if fallback else Nonedb_plugin_config = (db_config.get("plugins") or {}).get(plugin_name)if table:table_plugin_config = (((db_config.get("tables") or {}).get(table) or {}).get("plugins") or {}).get(plugin_name)# fallback to db_config or top-level config, in that order, if neededif table_plugin_config is None and fallback:return db_plugin_config or self._plugin_config_top(plugin_name)return table_plugin_config# fallback to top-level if neededif db_plugin_config is None and fallback:self._plugin_config_top(plugin_name)return db_plugin_configdef app_css_hash(self):if not hasattr(self, "_app_css_hash"):with open(os.path.join(str(app_root), "datasette/static/app.css")) as fp:self._app_css_hash = hashlib.sha1(fp.read().encode("utf8")).hexdigest()[:6]return self._app_css_hashasync def get_canned_queries(self, database_name, actor):queries = (((self.config or {}).get("databases") or {}).get(database_name) or {}).get("queries") or {}for more_queries in pm.hook.canned_queries(datasette=self,database=database_name,actor=actor,):more_queries = await await_me_maybe(more_queries)queries.update(more_queries or {})# Fix any {"name": "select ..."} queries to be {"name": {"sql": "select ..."}}for key in queries:if not isinstance(queries[key], dict):queries[key] = {"sql": queries[key]}# Also make sure "name" is available:queries[key]["name"] = keyreturn queriesasync def get_canned_query(self, database_name, query_name, actor):queries = await self.get_canned_queries(database_name, actor)query = queries.get(query_name)if query:return querydef update_with_inherited_metadata(self, metadata):# Fills in source/license with defaults, if availablemetadata.update({"source": metadata.get("source") or self.metadata("source"),"source_url": metadata.get("source_url") or self.metadata("source_url"),"license": metadata.get("license") or self.metadata("license"),"license_url": metadata.get("license_url")or self.metadata("license_url"),"about": metadata.get("about") or self.metadata("about"),"about_url": metadata.get("about_url") or self.metadata("about_url"),})def _prepare_connection(self, conn, database):conn.row_factory = sqlite3.Rowconn.text_factory = lambda x: str(x, "utf-8", "replace")if self.sqlite_extensions:conn.enable_load_extension(True)for extension in self.sqlite_extensions:# "extension" is either a string path to the extension# or a 2-item tuple that specifies which entrypoint to load.if isinstance(extension, tuple):path, entrypoint = extensionconn.execute("SELECT load_extension(?, ?)", [path, entrypoint])else:conn.execute("SELECT load_extension(?)", [extension])if self.setting("cache_size_kb"):conn.execute(f"PRAGMA cache_size=-{self.setting('cache_size_kb')}")# pylint: disable=no-memberpm.hook.prepare_connection(conn=conn, database=database, datasette=self)# If self.crossdb and this is _memory, connect the first SQLITE_LIMIT_ATTACHED databasesif self.crossdb and database == "_memory":count = 0for db_name, db in self.databases.items():if count >= SQLITE_LIMIT_ATTACHED or db.is_memory:continuesql = 'ATTACH DATABASE "file:{path}?{qs}" AS [{name}];'.format(path=db.path,qs="mode=ro" if db.is_mutable else "immutable=1",name=db_name,)conn.execute(sql)count += 1def add_message(self, request, message, type=INFO):if not hasattr(request, "_messages"):request._messages = []request._messages_should_clear = Falserequest._messages.append((message, type))def _write_messages_to_response(self, request, response):if getattr(request, "_messages", None):# Set those messagesresponse.set_cookie("ds_messages", self.sign(request._messages, "messages"))elif getattr(request, "_messages_should_clear", False):response.set_cookie("ds_messages", "", expires=0, max_age=0)def _show_messages(self, request):if getattr(request, "_messages", None):request._messages_should_clear = Truemessages = request._messagesrequest._messages = []return messageselse:return []async def _crumb_items(self, request, table=None, database=None):crumbs = []actor = Noneif request:actor = request.actor# Top-level linkif await self.permission_allowed(actor=actor, action="view-instance"):crumbs.append({"href": self.urls.instance(), "label": "home"})# Database linkif database:if await self.permission_allowed(actor=actor,action="view-database",resource=database,):crumbs.append({"href": self.urls.database(database),"label": database,})# Table linkif table:assert database, "table= requires database="if await self.permission_allowed(actor=actor,action="view-table",resource=(database, table),):crumbs.append({"href": self.urls.table(database, table),"label": table,})return crumbsasync def actors_from_ids(self, actor_ids: Iterable[Union[str, int]]) -> Dict[Union[id, str], Dict]:result = pm.hook.actors_from_ids(datasette=self, actor_ids=actor_ids)if result is None:# Do the default thingreturn {actor_id: {"id": actor_id} for actor_id in actor_ids}result = await await_me_maybe(result)return resultasync def permission_allowed(self, actor, action, resource=None, default=DEFAULT_NOT_SET):"""Check permissions using the permissions_allowed plugin hook"""result = None# Use default from registered permission, if availableif default is DEFAULT_NOT_SET and action in self.permissions:default = self.permissions[action].defaultfor check in pm.hook.permission_allowed(datasette=self,actor=actor,action=action,resource=resource,):check = await await_me_maybe(check)if check is not None:result = checkused_default = Falseif result is None:result = defaultused_default = Trueself._permission_checks.append({"when": datetime.datetime.utcnow().isoformat(),"actor": actor,"action": action,"resource": resource,"used_default": used_default,"result": result,})return resultasync def ensure_permissions(self,actor: dict,permissions: Sequence[Union[Tuple[str, Union[str, Tuple[str, str]]], str]],):"""permissions is a list of (action, resource) tuples or 'action' stringsRaises datasette.Forbidden() if any of the checks fail"""assert actor is None or isinstance(actor, dict), "actor must be None or a dict"for permission in permissions:if isinstance(permission, str):action = permissionresource = Noneelif isinstance(permission, (tuple, list)) and len(permission) == 2:action, resource = permissionelse:assert (False), "permission should be string or tuple of two items: {}".format(repr(permission))ok = await self.permission_allowed(actor,action,resource=resource,default=None,)if ok is not None:if ok:returnelse:raise Forbidden(action)async def check_visibility(self,actor: dict,action: Optional[str] = None,resource: Optional[Union[str, Tuple[str, str]]] = None,permissions: Optional[Sequence[Union[Tuple[str, Union[str, Tuple[str, str]]], str]]] = None,):"""Returns (visible, private) - visible = can you see it, private = can others see it too"""if permissions:assert (not action and not resource), "Can't use action= or resource= with permissions="else:permissions = [(action, resource)]try:await self.ensure_permissions(actor, permissions)except Forbidden:return False, False# User can see it, but can the anonymous user see it?try:await self.ensure_permissions(None, permissions)except Forbidden:# It's visible but privatereturn True, True# It's visible to everyonereturn True, Falseasync def execute(self,db_name,sql,params=None,truncate=False,custom_time_limit=None,page_size=None,log_sql_errors=True,):return await self.databases[db_name].execute(sql,params=params,truncate=truncate,custom_time_limit=custom_time_limit,page_size=page_size,log_sql_errors=log_sql_errors,)async def expand_foreign_keys(self, actor, database, table, column, values):"""Returns dict mapping (column, value) -> label"""labeled_fks = {}db = self.databases[database]foreign_keys = await db.foreign_keys_for_table(table)# Find the foreign_key for this columntry:fk = [foreign_keyfor foreign_key in foreign_keysif foreign_key["column"] == column][0]except IndexError:return {}# Ensure user has permission to view the referenced tableother_table = fk["other_table"]other_column = fk["other_column"]visible, _ = await self.check_visibility(actor,permissions=[("view-table", (database, other_table)),("view-database", database),"view-instance",],)if not visible:return {}label_column = await db.label_column_for_table(other_table)if not label_column:return {(fk["column"], value): str(value) for value in values}labeled_fks = {}sql = """select {other_column}, {label_column}from {other_table}where {other_column} in ({placeholders})""".format(other_column=escape_sqlite(other_column),label_column=escape_sqlite(label_column),other_table=escape_sqlite(other_table),placeholders=", ".join(["?"] * len(set(values))),)try:results = await self.execute(database, sql, list(set(values)))except QueryInterrupted:passelse:for id, value in results:labeled_fks[(fk["column"], id)] = valuereturn labeled_fksdef absolute_url(self, request, path):url = urllib.parse.urljoin(request.url, path)if url.startswith("http://") and self.setting("force_https_urls"):url = "https://" + url[len("http://") :]return urldef _register_custom_units(self):"""Register any custom units defined in the metadata.json with Pint"""for unit in self.metadata("custom_units") or []:ureg.define(unit)def _connected_databases(self):return [{"name": d.name,"route": d.route,"path": d.path,"size": d.size,"is_mutable": d.is_mutable,"is_memory": d.is_memory,"hash": d.hash,}for name, d in self.databases.items()]def _versions(self):conn = sqlite3.connect(":memory:")self._prepare_connection(conn, "_memory")sqlite_version = conn.execute("select sqlite_version()").fetchone()[0]sqlite_extensions = {}for extension, testsql, hasversion in (("json1", "SELECT json('{}')", False),("spatialite", "SELECT spatialite_version()", True),):try:result = conn.execute(testsql)if hasversion:sqlite_extensions[extension] = result.fetchone()[0]else:sqlite_extensions[extension] = Noneexcept Exception:pass# More details on SpatiaLiteif "spatialite" in sqlite_extensions:spatialite_details = {}for fn in SPATIALITE_FUNCTIONS:try:result = conn.execute("select {}()".format(fn))spatialite_details[fn] = result.fetchone()[0]except Exception as e:spatialite_details[fn] = {"error": str(e)}sqlite_extensions["spatialite"] = spatialite_details# Figure out supported FTS versionsfts_versions = []for fts in ("FTS5", "FTS4", "FTS3"):try:conn.execute("CREATE VIRTUAL TABLE v{fts} USING {fts} (data)".format(fts=fts))fts_versions.append(fts)except sqlite3.OperationalError:continuedatasette_version = {"version": __version__}if self.version_note:datasette_version["note"] = self.version_notetry:# Optional import to avoid breaking Pyodide# https://github.com/simonw/datasette/issues/1733#issuecomment-1115268245import uvicornuvicorn_version = uvicorn.__version__except ImportError:uvicorn_version = Noneinfo = {"python": {"version": ".".join(map(str, sys.version_info[:3])),"full": sys.version,},"datasette": datasette_version,"asgi": "3.0","uvicorn": uvicorn_version,"sqlite": {"version": sqlite_version,"fts_versions": fts_versions,"extensions": sqlite_extensions,"compile_options": [r[0] for r in conn.execute("pragma compile_options;").fetchall()],},}if using_pysqlite3:for package in ("pysqlite3", "pysqlite3-binary"):try:info["pysqlite3"] = importlib.metadata.version(package)breakexcept importlib.metadata.PackageNotFoundError:passreturn infodef _plugins(self, request=None, all=False):ps = list(get_plugins())should_show_all = Falseif request is not None:should_show_all = request.args.get("all")else:should_show_all = allif not should_show_all:ps = [p for p in ps if p["name"] not in DEFAULT_PLUGINS]ps.sort(key=lambda p: p["name"])return [{"name": p["name"],"static": p["static_path"] is not None,"templates": p["templates_path"] is not None,"version": p.get("version"),"hooks": list(sorted(set(p["hooks"]))),}for p in ps]def _threads(self):if self.setting("num_sql_threads") == 0:return {"num_threads": 0, "threads": []}threads = list(threading.enumerate())d = {"num_threads": len(threads),"threads": [{"name": t.name, "ident": t.ident, "daemon": t.daemon} for t in threads],}tasks = asyncio.all_tasks()d.update({"num_tasks": len(tasks),"tasks": [_cleaner_task_str(t) for t in tasks],})return ddef _actor(self, request):return {"actor": request.actor}def table_metadata(self, database, table):"""Fetch table-specific metadata."""return ((self.metadata("databases") or {}).get(database, {}).get("tables", {}).get(table, {}))def _register_renderers(self):"""Register output renderers which output data in custom formats."""# Built-in renderersself.renderers["json"] = (json_renderer, lambda: True)# Hookshook_renderers = []# pylint: disable=no-memberfor hook in pm.hook.register_output_renderer(datasette=self):if type(hook) is list:hook_renderers += hookelse:hook_renderers.append(hook)for renderer in hook_renderers:self.renderers[renderer["extension"]] = (# It used to be called "callback" - remove this in Datasette 1.0renderer.get("render") or renderer["callback"],renderer.get("can_render") or (lambda: True),)async def render_template(self,templates: Union[List[str], str, Template],context: Optional[Union[Dict[str, Any], Context]] = None,request: Optional[Request] = None,view_name: Optional[str] = None,):if not self._startup_invoked:raise Exception("render_template() called before await ds.invoke_startup()")context = context or {}if isinstance(templates, Template):template = templateselse:if isinstance(templates, str):templates = [templates]template = self.get_jinja_environment(request).select_template(templates)if dataclasses.is_dataclass(context):context = dataclasses.asdict(context)body_scripts = []# pylint: disable=no-memberfor extra_script in pm.hook.extra_body_script(template=template.name,database=context.get("database"),table=context.get("table"),columns=context.get("columns"),view_name=view_name,request=request,datasette=self,):extra_script = await await_me_maybe(extra_script)if isinstance(extra_script, dict):script = extra_script["script"]module = bool(extra_script.get("module"))else:script = extra_scriptmodule = Falsebody_scripts.append({"script": Markup(script), "module": module})extra_template_vars = {}# pylint: disable=no-memberfor extra_vars in pm.hook.extra_template_vars(template=template.name,database=context.get("database"),table=context.get("table"),columns=context.get("columns"),view_name=view_name,request=request,datasette=self,):extra_vars = await await_me_maybe(extra_vars)assert isinstance(extra_vars, dict), "extra_vars is of type {}".format(type(extra_vars))extra_template_vars.update(extra_vars)async def menu_links():links = []for hook in pm.hook.menu_links(datasette=self,actor=request.actor if request else None,request=request or None,):extra_links = await await_me_maybe(hook)if extra_links:links.extend(extra_links)return linkstemplate_context = {**context,**{"request": request,"crumb_items": self._crumb_items,"urls": self.urls,"actor": request.actor if request else None,"menu_links": menu_links,"display_actor": display_actor,"show_logout": request is not Noneand "ds_actor" in request.cookiesand request.actor,"app_css_hash": self.app_css_hash(),"zip": zip,"body_scripts": body_scripts,"format_bytes": format_bytes,"show_messages": lambda: self._show_messages(request),"extra_css_urls": await self._asset_urls("extra_css_urls", template, context, request, view_name),"extra_js_urls": await self._asset_urls("extra_js_urls", template, context, request, view_name),"base_url": self.setting("base_url"),"csrftoken": request.scope["csrftoken"] if request else lambda: "","datasette_version": __version__,},**extra_template_vars,}if request and request.args.get("_context") and self.setting("template_debug"):return "<pre>{}</pre>".format(escape(json.dumps(template_context, default=repr, indent=4)))return await template.render_async(template_context)async def _asset_urls(self, key, template, context, request, view_name):# Flatten list-of-lists from plugins:seen_urls = set()collected = []for hook in getattr(pm.hook, key)(template=template.name,database=context.get("database"),table=context.get("table"),columns=context.get("columns"),view_name=view_name,request=request,datasette=self,):hook = await await_me_maybe(hook)collected.extend(hook)collected.extend((self.config or {}).get(key) or [])output = []for url_or_dict in collected:if isinstance(url_or_dict, dict):url = url_or_dict["url"]sri = url_or_dict.get("sri")module = bool(url_or_dict.get("module"))else:url = url_or_dictsri = Nonemodule = Falseif url in seen_urls:continueseen_urls.add(url)if url.startswith("/"):# Take base_url into account:url = self.urls.path(url)script = {"url": url}if sri:script["sri"] = sriif module:script["module"] = Trueoutput.append(script)return outputdef _routes(self):routes = []for routes_to_add in pm.hook.register_routes(datasette=self):for regex, view_fn in routes_to_add:routes.append((regex, wrap_view(view_fn, self)))def add_route(view, regex):routes.append((regex, view))add_route(IndexView.as_view(self), r"/(\.(?P<format>jsono?))?$")# TODO: /favicon.ico and /-/static/ deserve far-future cache expiresadd_route(favicon, "/favicon.ico")add_route(asgi_static(app_root / "datasette" / "static"), r"/-/static/(?P<path>.*)$")for path, dirname in self.static_mounts:add_route(asgi_static(dirname), r"/" + path + "/(?P<path>.*)$")# Mount any plugin static/ directoriesfor plugin in get_plugins():if plugin["static_path"]:add_route(asgi_static(plugin["static_path"]),f"/-/static-plugins/{plugin['name']}/(?P<path>.*)$",)# Support underscores in name in addition to hyphens, see https://github.com/simonw/datasette/issues/611add_route(asgi_static(plugin["static_path"]),"/-/static-plugins/{}/(?P<path>.*)$".format(plugin["name"].replace("-", "_")),)add_route(permanent_redirect("/_memory", forward_query_string=True, forward_rest=True),r"/:memory:(?P<rest>.*)$",)add_route(JsonDataView.as_view(self, "metadata.json", lambda: self.metadata()),r"/-/metadata(\.(?P<format>json))?$",)add_route(JsonDataView.as_view(self, "versions.json", self._versions),r"/-/versions(\.(?P<format>json))?$",)add_route(JsonDataView.as_view(self, "plugins.json", self._plugins, needs_request=True),r"/-/plugins(\.(?P<format>json))?$",)add_route(JsonDataView.as_view(self, "settings.json", lambda: self._settings),r"/-/settings(\.(?P<format>json))?$",)add_route(permanent_redirect("/-/settings.json"),r"/-/config.json",)add_route(permanent_redirect("/-/settings"),r"/-/config",)add_route(JsonDataView.as_view(self, "threads.json", self._threads),r"/-/threads(\.(?P<format>json))?$",)add_route(JsonDataView.as_view(self, "databases.json", self._connected_databases),r"/-/databases(\.(?P<format>json))?$",)add_route(JsonDataView.as_view(self, "actor.json", self._actor, needs_request=True, permission=None),r"/-/actor(\.(?P<format>json))?$",)add_route(AuthTokenView.as_view(self),r"/-/auth-token$",)add_route(CreateTokenView.as_view(self),r"/-/create-token$",)add_route(ApiExplorerView.as_view(self),r"/-/api$",)add_route(LogoutView.as_view(self),r"/-/logout$",)add_route(PermissionsDebugView.as_view(self),r"/-/permissions$",)add_route(MessagesDebugView.as_view(self),r"/-/messages$",)add_route(AllowDebugView.as_view(self),r"/-/allow-debug$",)add_route(wrap_view(PatternPortfolioView, self),r"/-/patterns$",)add_route(wrap_view(database_download, self),r"/(?P<database>[^\/\.]+)\.db$",)add_route(wrap_view(DatabaseView, self),r"/(?P<database>[^\/\.]+)(\.(?P<format>\w+))?$",)add_route(TableCreateView.as_view(self), r"/(?P<database>[^\/\.]+)/-/create$")add_route(wrap_view(table_view, self),r"/(?P<database>[^\/\.]+)/(?P<table>[^\/\.]+)(\.(?P<format>\w+))?$",)add_route(RowView.as_view(self),r"/(?P<database>[^\/\.]+)/(?P<table>[^/]+?)/(?P<pks>[^/]+?)(\.(?P<format>\w+))?$",)add_route(TableInsertView.as_view(self),r"/(?P<database>[^\/\.]+)/(?P<table>[^\/\.]+)/-/insert$",)add_route(TableUpsertView.as_view(self),r"/(?P<database>[^\/\.]+)/(?P<table>[^\/\.]+)/-/upsert$",)add_route(TableDropView.as_view(self),r"/(?P<database>[^\/\.]+)/(?P<table>[^\/\.]+)/-/drop$",)add_route(RowDeleteView.as_view(self),r"/(?P<database>[^\/\.]+)/(?P<table>[^/]+?)/(?P<pks>[^/]+?)/-/delete$",)add_route(RowUpdateView.as_view(self),r"/(?P<database>[^\/\.]+)/(?P<table>[^/]+?)/(?P<pks>[^/]+?)/-/update$",)return [# Compile any strings to regular expressions((re.compile(pattern) if isinstance(pattern, str) else pattern), view)for pattern, view in routes]async def resolve_database(self, request):database_route = tilde_decode(request.url_vars["database"])try:return self.get_database(route=database_route)except KeyError:raise DatabaseNotFound("Database not found: {}".format(database_route), database_route)async def resolve_table(self, request):db = await self.resolve_database(request)table_name = tilde_decode(request.url_vars["table"])# Table must existis_view = Falsetable_exists = await db.table_exists(table_name)if not table_exists:is_view = await db.view_exists(table_name)if not (table_exists or is_view):raise TableNotFound("Table not found: {}".format(table_name), db.name, table_name)return ResolvedTable(db, table_name, is_view)async def resolve_row(self, request):db, table_name, _ = await self.resolve_table(request)pk_values = urlsafe_components(request.url_vars["pks"])sql, params, pks = await row_sql_params_pks(db, table_name, pk_values)results = await db.execute(sql, params, truncate=True)row = results.first()if row is None:raise RowNotFound("Row not found: {}".format(pk_values), db.name, table_name, pk_values)return ResolvedRow(db, table_name, sql, params, pks, pk_values, results.first())def app(self):"""Returns an ASGI app function that serves the whole of Datasette"""routes = self._routes()self._register_custom_units()async def setup_db():# First time server starts up, calculate table counts for immutable databasesfor database in self.databases.values():if not database.is_mutable:await database.table_counts(limit=60 * 60 * 1000)asgi = asgi_csrf.asgi_csrf(DatasetteRouter(self, routes),signing_secret=self._secret,cookie_name="ds_csrftoken",skip_if_scope=lambda scope: any(pm.hook.skip_csrf(datasette=self, scope=scope)),)if self.setting("trace_debug"):asgi = AsgiTracer(asgi)asgi = AsgiLifespan(asgi)asgi = AsgiRunOnFirstRequest(asgi, on_startup=[setup_db, self.invoke_startup])for wrapper in pm.hook.asgi_wrapper(datasette=self):asgi = wrapper(asgi)return asgiclass DatasetteRouter:def __init__(self, datasette, routes):self.ds = datasetteself.routes = routes or []async def __call__(self, scope, receive, send):# Because we care about "foo/bar" v.s. "foo%2Fbar" we decode raw_path ourselvespath = scope["path"]raw_path = scope.get("raw_path")if raw_path:path = raw_path.decode("ascii")path = path.partition("?")[0]return await self.route_path(scope, receive, send, path)async def route_path(self, scope, receive, send, path):# Strip off base_url if present before routingbase_url = self.ds.setting("base_url")if base_url != "/" and path.startswith(base_url):path = "/" + path[len(base_url) :]scope = dict(scope, route_path=path)request = Request(scope, receive)# Populate request_messages if ds_messages cookie is presenttry:request._messages = self.ds.unsign(request.cookies.get("ds_messages", ""), "messages")except BadSignature:passscope_modifications = {}# Apply force_https_urls, if setif (self.ds.setting("force_https_urls")and scope["type"] == "http"and scope.get("scheme") != "https"):scope_modifications["scheme"] = "https"# Handle authenticationdefault_actor = scope.get("actor") or Noneactor = Nonefor actor in pm.hook.actor_from_request(datasette=self.ds, request=request):actor = await await_me_maybe(actor)if actor:breakscope_modifications["actor"] = actor or default_actorscope = dict(scope, **scope_modifications)match, view = resolve_routes(self.routes, path)if match is None:return await self.handle_404(request, send)new_scope = dict(scope, url_route={"kwargs": match.groupdict()})request.scope = new_scopetry:response = await view(request, send)if response:self.ds._write_messages_to_response(request, response)await response.asgi_send(send)returnexcept NotFound as exception:return await self.handle_404(request, send, exception)except Forbidden as exception:# Try the forbidden() plugin hookfor custom_response in pm.hook.forbidden(datasette=self.ds, request=request, message=exception.args[0]):custom_response = await await_me_maybe(custom_response)assert (custom_response), "Default forbidden() hook should have been called"return await custom_response.asgi_send(send)except Exception as exception:return await self.handle_exception(request, send, exception)async def handle_404(self, request, send, exception=None):# If path contains % encoding, redirect to tilde encodingif "%" in request.path:# Try the same path but with "%" replaced by "~"# and "~" replaced with "~7E"# and "." replaced with "~2E"new_path = (request.path.replace("~", "~7E").replace("%", "~").replace(".", "~2E"))if request.query_string:new_path += "?{}".format(request.query_string)await asgi_send_redirect(send, new_path)return# If URL has a trailing slash, redirect to URL without itpath = request.scope.get("raw_path", request.scope["path"].encode("utf8")).partition(b"?")[0]context = {}if path.endswith(b"/"):path = path.rstrip(b"/")if request.scope["query_string"]:path += b"?" + request.scope["query_string"]await asgi_send_redirect(send, path.decode("latin1"))else:# Is there a pages/* template matching this path?route_path = request.scope.get("route_path", request.scope["path"])# Jinja requires template names to use "/" even on Windowstemplate_name = "pages" + route_path + ".html"# Build a list of pages/blah/{name}.html matching expressionsenvironment = self.ds.get_jinja_environment(request)pattern_templates = [filepathfor filepath in environment.list_templates()if "{" in filepath and filepath.startswith("pages/")]page_routes = [(route_pattern_from_filepath(filepath[len("pages/") :]), filepath)for filepath in pattern_templates]try:template = environment.select_template([template_name])except TemplateNotFound:template = Noneif template is None:# Try for a pages/blah/{name}.html template matchfor regex, wildcard_template in page_routes:match = regex.match(route_path)if match is not None:context.update(match.groupdict())template = wildcard_templatebreakif template:headers = {}status = [200]def custom_header(name, value):headers[name] = valuereturn ""def custom_status(code):status[0] = codereturn ""def custom_redirect(location, code=302):status[0] = codeheaders["Location"] = locationreturn ""def raise_404(message=""):raise NotFoundExplicit(message)context.update({"custom_header": custom_header,"custom_status": custom_status,"custom_redirect": custom_redirect,"raise_404": raise_404,})try:body = await self.ds.render_template(template,context,request=request,view_name="page",)except NotFoundExplicit as e:await self.handle_exception(request, send, e)return# Pull content-type out into separate parametercontent_type = "text/html; charset=utf-8"matches = [k for k in headers if k.lower() == "content-type"]if matches:content_type = headers[matches[0]]await asgi_send(send,body,status=status[0],headers=headers,content_type=content_type,)else:await self.handle_exception(request, send, exception or NotFound("404"))async def handle_exception(self, request, send, exception):responses = []for hook in pm.hook.handle_exception(datasette=self.ds,request=request,exception=exception,):response = await await_me_maybe(hook)if response is not None:responses.append(response)assert responses, "Default exception handler should have returned something"# Even if there are multiple responses use just the first oneresponse = responses[0]await response.asgi_send(send)_cleaner_task_str_re = re.compile(r"\S*site-packages/")def _cleaner_task_str(task):s = str(task)# This has something like the following in it:# running at /Users/simonw/Dropbox/Development/datasette/venv-3.7.5/lib/python3.7/site-packages/uvicorn/main.py:361># Clean up everything up to and including site-packagesreturn _cleaner_task_str_re.sub("", s)def wrap_view(view_fn_or_class, datasette):is_function = isinstance(view_fn_or_class, types.FunctionType)if is_function:return wrap_view_function(view_fn_or_class, datasette)else:if not isinstance(view_fn_or_class, type):raise ValueError("view_fn_or_class must be a function or a class")return wrap_view_class(view_fn_or_class, datasette)def wrap_view_class(view_class, datasette):async def async_view_for_class(request, send):instance = view_class()if inspect.iscoroutinefunction(instance.__call__):return await async_call_with_supported_arguments(instance.__call__,scope=request.scope,receive=request.receive,send=send,request=request,datasette=datasette,)else:return call_with_supported_arguments(instance.__call__,scope=request.scope,receive=request.receive,send=send,request=request,datasette=datasette,)async_view_for_class.view_class = view_classreturn async_view_for_classdef wrap_view_function(view_fn, datasette):@functools.wraps(view_fn)async def async_view_fn(request, send):if inspect.iscoroutinefunction(view_fn):response = await async_call_with_supported_arguments(view_fn,scope=request.scope,receive=request.receive,send=send,request=request,datasette=datasette,)else:response = call_with_supported_arguments(view_fn,scope=request.scope,receive=request.receive,send=send,request=request,datasette=datasette,)if response is not None:return responsereturn async_view_fndef permanent_redirect(path, forward_query_string=False, forward_rest=False):return wrap_view(lambda request, send: Response.redirect(path+ (request.url_vars["rest"] if forward_rest else "")+ (("?" + request.query_string)if forward_query_string and request.query_stringelse ""),status=301,),datasette=None,)_curly_re = re.compile(r"({.*?})")def route_pattern_from_filepath(filepath):# Drop the ".html" suffixif filepath.endswith(".html"):filepath = filepath[: -len(".html")]re_bits = ["/"]for bit in _curly_re.split(filepath):if _curly_re.match(bit):re_bits.append(f"(?P<{bit[1:-1]}>[^/]*)")else:re_bits.append(re.escape(bit))return re.compile("^" + "".join(re_bits) + "$")class NotFoundExplicit(NotFound):passclass DatasetteClient:def __init__(self, ds):self.ds = dsself.app = ds.app()def actor_cookie(self, actor):# Utility method, mainly for testsreturn self.ds.sign({"a": actor}, "actor")def _fix(self, path, avoid_path_rewrites=False):if not isinstance(path, PrefixedUrlString) and not avoid_path_rewrites:path = self.ds.urls.path(path)if path.startswith("/"):path = f"http://localhost{path}"return pathasync def get(self, path, **kwargs):async with httpx.AsyncClient(app=self.app) as client:return await client.get(self._fix(path), **kwargs)async def options(self, path, **kwargs):async with httpx.AsyncClient(app=self.app) as client:return await client.options(self._fix(path), **kwargs)async def head(self, path, **kwargs):async with httpx.AsyncClient(app=self.app) as client:return await client.head(self._fix(path), **kwargs)async def post(self, path, **kwargs):async with httpx.AsyncClient(app=self.app) as client:return await client.post(self._fix(path), **kwargs)async def put(self, path, **kwargs):async with httpx.AsyncClient(app=self.app) as client:return await client.put(self._fix(path), **kwargs)async def patch(self, path, **kwargs):async with httpx.AsyncClient(app=self.app) as client:return await client.patch(self._fix(path), **kwargs)async def delete(self, path, **kwargs):async with httpx.AsyncClient(app=self.app) as client:return await client.delete(self._fix(path), **kwargs)async def request(self, method, path, **kwargs):avoid_path_rewrites = kwargs.pop("avoid_path_rewrites", None)async with httpx.AsyncClient(app=self.app) as client:return await client.request(method, self._fix(path, avoid_path_rewrites), **kwargs)