Spock-core-0.12.0.0: src/Web/Spock/Internal/CoreAction.hs
{-# LANGUAGE CPP #-}
{-# LANGUAGE OverloadedStrings #-}
{-# LANGUAGE RankNTypes #-}
{-# LANGUAGE DoAndIfThenElse #-}
module Web.Spock.Internal.CoreAction
( ActionT
, UploadedFile (..)
, request, header, rawHeader, cookie, cookies, body, jsonBody, jsonBody'
, reqMethod
, files, params, param, param', paramsGet, paramsPost
, setStatus, setHeader, redirect
, setRawMultiHeader, MultiHeader(..)
, CookieSettings(..), CookieEOL(..), defaultCookieSettings
, setCookie, deleteCookie
, jumpNext, middlewarePass, modifyVault, queryVault
, bytes, lazyBytes, text, html, file, json, stream, response
, requireBasicAuth, withBasicAuthData
, getContext, runInContext
, preferredFormat, ClientPreferredFormat(..)
, respondApp, respondMiddleware
)
where
import Web.Spock.Internal.Cookies
import Web.Spock.Internal.Util
import Web.Spock.Internal.Wire
import Control.Monad
#if MIN_VERSION_mtl(2,2,0)
import Control.Monad.Except
#else
import Control.Monad.Error
#endif
import Control.Monad.RWS.Strict (runRWST)
import Control.Monad.Reader
import Control.Monad.State hiding (get, put)
import Data.Maybe
import Data.Monoid
import Data.Time
import Network.HTTP.Types.Header (HeaderName, ResponseHeaders)
import Network.HTTP.Types.Status
import Prelude hiding (head)
import Web.HttpApiData
import qualified Control.Monad.State as ST
import qualified Data.Aeson as A
import qualified Data.ByteString as BS
import qualified Data.ByteString.Base64 as B64
import qualified Data.ByteString.Lazy as BSL
import qualified Data.CaseInsensitive as CI
import qualified Data.HashMap.Strict as HM
import qualified Data.Text as T
import qualified Data.Text.Encoding as T
import qualified Data.Vault.Lazy as V
import qualified Network.Wai as Wai
-- | Get the original Wai Request object
request :: MonadIO m => ActionCtxT ctx m Wai.Request
request = asks ri_request
{-# INLINE request #-}
-- | Read a header
header :: MonadIO m => T.Text -> ActionCtxT ctx m (Maybe T.Text)
header t =
liftM (fmap T.decodeUtf8) $ rawHeader (CI.mk (T.encodeUtf8 t))
{-# INLINE header #-}
-- | Read a header without converting it to text
rawHeader :: MonadIO m => HeaderName -> ActionCtxT ctx m (Maybe BS.ByteString)
rawHeader t =
liftM (lookup t . Wai.requestHeaders) request
{-# INLINE rawHeader #-}
-- | Tries to dected the preferred format of the response using the Accept header
preferredFormat :: MonadIO m => ActionCtxT ctx m ClientPreferredFormat
preferredFormat =
do mAccept <- header "accept"
case mAccept of
Nothing -> return PrefUnknown
Just t ->
return $ detectPreferredFormat t
{-# INLINE preferredFormat #-}
-- | Returns the current request method, e.g. 'GET'
reqMethod :: MonadIO m => ActionCtxT ctx m SpockMethod
reqMethod = asks ri_method
{-# INLINE reqMethod #-}
-- | Get the raw request body
body :: MonadIO m => ActionCtxT ctx m BS.ByteString
body =
do b <- asks ri_reqBody
liftIO $ loadCacheVar (rb_value b)
{-# INLINE body #-}
-- | Parse the request body as json
jsonBody :: (MonadIO m, A.FromJSON a) => ActionCtxT ctx m (Maybe a)
jsonBody =
do b <- body
return $ A.decodeStrict b
{-# INLINE jsonBody #-}
-- | Parse the request body as json and fails with 400 status code on error
jsonBody' :: (MonadIO m, A.FromJSON a) => ActionCtxT ctx m a
jsonBody' =
do b <- body
case A.eitherDecodeStrict' b of
Left err ->
do setStatus status400
text (T.pack $ "Failed to parse json: " ++ err)
Right val ->
return val
{-# INLINE jsonBody' #-}
-- | Get uploaded files
files :: MonadIO m => ActionCtxT ctx m (HM.HashMap T.Text UploadedFile)
files =
do b <- asks ri_reqBody
liftIO $ loadCacheVar (rb_files b)
{-# INLINE files #-}
-- | Get all request GET params
paramsGet :: MonadIO m => ActionCtxT ctx m [(T.Text, T.Text)]
paramsGet = asks ri_getParams
{-# INLINE paramsGet #-}
-- | Get all request POST params
paramsPost :: MonadIO m => ActionCtxT ctx m [(T.Text, T.Text)]
paramsPost =
do b <- asks ri_reqBody
liftIO $ loadCacheVar (rb_postParams b)
{-# INLINE paramsPost #-}
-- | Get all request (POST + GET) params
params :: MonadIO m => ActionCtxT ctx m [(T.Text, T.Text)]
params =
do g <- paramsGet
p <- paramsPost
return $ g ++ p
{-# INLINE params #-}
-- | Read a request param. Spock looks POST variables first and then in GET variables
param :: (FromHttpApiData p, MonadIO m) => T.Text -> ActionCtxT ctx m (Maybe p)
param k =
do qp <- params
return $ join $ fmap (either (const Nothing) Just . parseQueryParam) (lookup k qp)
{-# INLINE param #-}
-- | Like 'param', but outputs an error when a param is missing
param' :: (FromHttpApiData p, MonadIO m) => T.Text -> ActionCtxT ctx m p
param' k =
do mParam <- param k
case mParam of
Nothing ->
do setStatus status500
text (T.concat [ "Missing parameter ", k ])
Just val ->
return val
{-# INLINE param' #-}
-- | Set a response status
setStatus :: MonadIO m => Status -> ActionCtxT ctx m ()
setStatus s =
modify $ \rs -> rs { rs_status = s }
{-# INLINE setStatus #-}
-- | Set a response header. If the response header
-- is allowed to occur multiple times (as in RFC 2616), it will
-- be appended. Otherwise the previous value is overwritten.
-- See 'setMultiHeader'.
setHeader :: MonadIO m => T.Text -> T.Text -> ActionCtxT ctx m ()
setHeader k v = setRawHeader (CI.mk $ T.encodeUtf8 k) (T.encodeUtf8 v)
{-# INLINE setHeader #-}
setRawHeader :: MonadIO m => CI.CI BS.ByteString -> BS.ByteString -> ActionCtxT ctx m ()
setRawHeader k v =
case HM.lookup k multiHeaderMap of
Just mhk ->
setRawMultiHeader mhk v
Nothing ->
setRawHeaderUnsafe k v
-- | Set a response header that can occur multiple times. (eg: Cache-Control)
setMultiHeader :: MonadIO m => MultiHeader -> T.Text -> ActionCtxT ctx m ()
setMultiHeader k v = setRawMultiHeader k (T.encodeUtf8 v)
{-# INLINE setMultiHeader #-}
-- | Set a response header that can occur multiple times. (eg: Cache-Control)
setRawMultiHeader :: MonadIO m => MultiHeader -> BS.ByteString -> ActionCtxT ctx m ()
setRawMultiHeader k v =
modify $ \rs ->
rs
{ rs_multiResponseHeaders =
HM.insertWith (++) k [v] (rs_multiResponseHeaders rs)
}
-- | INTERNAL: Unsafely set a header (no checking if the header can occur multiple times)
setHeaderUnsafe :: MonadIO m => T.Text -> T.Text -> ActionCtxT ctx m ()
setHeaderUnsafe k v = setRawHeaderUnsafe (CI.mk $ T.encodeUtf8 k) (T.encodeUtf8 v)
{-# INLINE setHeaderUnsafe #-}
-- | INTERNAL: Unsafely set a header (no checking if the header can occur multiple times)
setRawHeaderUnsafe :: MonadIO m => CI.CI BS.ByteString -> BS.ByteString -> ActionCtxT ctx m ()
setRawHeaderUnsafe k v =
modify $ \rs ->
rs
{ rs_responseHeaders =
HM.insert k v (rs_responseHeaders rs)
}
-- | Abort the current action and jump the next one matching the route
jumpNext :: MonadIO m => ActionCtxT ctx m a
jumpNext = throwError ActionTryNext
{-# INLINE jumpNext #-}
-- | Redirect to a given url
redirect :: MonadIO m => T.Text -> ActionCtxT ctx m a
redirect = throwError . ActionRedirect
{-# INLINE redirect #-}
-- | Respond to the request by running an 'Wai.Application'. This is
-- usefull in combination with wildcard routes. This can not be used
-- in combination with other request consuming combinators
-- like 'jsonBody', 'body', 'paramsPost', ...
respondApp :: Monad m => Wai.Application -> ActionCtxT ctx m a
respondApp = throwError . ActionApplication . return
-- | Respond to the request by running a 'Wai.Middleware'. This is
-- usefull in combination with wildcard routes. This can not be used
-- in combination with other request consuming combinators
-- like 'jsonBody', 'body', 'paramsPost', ...
respondMiddleware :: Monad m => Wai.Middleware -> ActionCtxT ctx m a
respondMiddleware = throwError . ActionMiddleware . return
-- | If the Spock application is used as a middleware, you can use
-- this to pass request handling to the underlying application.
-- If Spock is not uses as a middleware, or there is no underlying application
-- this will result in 404 error.
middlewarePass :: MonadIO m => ActionCtxT ctx m a
middlewarePass = throwError ActionMiddlewarePass
{-# INLINE middlewarePass #-}
-- | Modify the vault (useful for sharing data between middleware and app)
modifyVault :: MonadIO m => (V.Vault -> V.Vault) -> ActionCtxT ctx m ()
modifyVault f =
do vaultIf <- asks ri_vaultIf
liftIO $ vi_modifyVault vaultIf f
{-# INLINE modifyVault #-}
-- | Query the vault
queryVault :: MonadIO m => V.Key a -> ActionCtxT ctx m (Maybe a)
queryVault k =
do vaultIf <- asks ri_vaultIf
liftIO $ vi_lookupKey vaultIf k
{-# INLINE queryVault #-}
-- | Use a custom 'Wai.Response' generator as response body.
response :: MonadIO m => (Status -> ResponseHeaders -> Wai.Response) -> ActionCtxT ctx m a
response val =
do modify $ \rs -> rs { rs_responseBody = ResponseBody val }
throwError ActionDone
{-# INLINE response #-}
-- | Send a 'ByteString' as response body. Provide your own "Content-Type"
bytes :: MonadIO m => BS.ByteString -> ActionCtxT ctx m a
bytes val =
lazyBytes $ BSL.fromStrict val
{-# INLINE bytes #-}
-- | Send a lazy 'ByteString' as response body. Provide your own "Content-Type"
lazyBytes :: MonadIO m => BSL.ByteString -> ActionCtxT ctx m a
lazyBytes val =
response $ \status headers -> Wai.responseLBS status headers val
{-# INLINE lazyBytes #-}
-- | Send text as a response body. Content-Type will be "text/plain"
text :: MonadIO m => T.Text -> ActionCtxT ctx m a
text val =
do setHeaderUnsafe "Content-Type" "text/plain; charset=utf-8"
bytes $ T.encodeUtf8 val
{-# INLINE text #-}
-- | Send a text as response body. Content-Type will be "text/html"
html :: MonadIO m => T.Text -> ActionCtxT ctx m a
html val =
do setHeaderUnsafe "Content-Type" "text/html; charset=utf-8"
bytes $ T.encodeUtf8 val
{-# INLINE html #-}
-- | Send a file as response
file :: MonadIO m => T.Text -> FilePath -> ActionCtxT ctx m a
file contentType filePath =
do setHeaderUnsafe "Content-Type" contentType
response $ \status headers -> Wai.responseFile status headers filePath Nothing
{-# INLINE file #-}
-- | Send json as response. Content-Type will be "application/json"
json :: (A.ToJSON a, MonadIO m) => a -> ActionCtxT ctx m b
json val =
do setHeaderUnsafe "Content-Type" "application/json; charset=utf-8"
lazyBytes $ A.encode val
{-# INLINE json #-}
-- | Use a 'Wai.StreamingBody' to generate a response.
stream :: MonadIO m => Wai.StreamingBody -> ActionCtxT ctx m a
stream val =
response $ \status headers -> Wai.responseStream status headers val
{-# INLINE stream #-}
-- | Convenience Basic authentification
-- provide a title for the prompt and a function to validate
-- user and password. Usage example:
--
-- > get ("auth" <//> var <//> var) $ \user pass ->
-- > let checker user' pass' =
-- > unless (user == user' && pass == pass') $
-- > do setStatus status401
-- > text "err"
-- > in requireBasicAuth "Foo" checker $ \() -> text "ok"
--
requireBasicAuth :: MonadIO m => T.Text -> (T.Text -> T.Text -> ActionCtxT ctx m b) -> (b -> ActionCtxT ctx m a) -> ActionCtxT ctx m a
requireBasicAuth realmTitle authFun cont =
withBasicAuthData $ \mAuthHeader ->
case mAuthHeader of
Nothing ->
authFailed Nothing
Just (user, pass) ->
authFun user pass >>= cont
where
authFailed mMore =
do setStatus status401
setMultiHeader MultiHeaderWWWAuth ("Basic realm=\"" <> realmTitle <> "\"")
text $ "Authentication required. " <> fromMaybe "" mMore
-- | "Lower level" basic authentification handeling. Does not set any headers that will promt
-- browser users, only looks for an "Authorization" header in the request and breaks it into
-- username and passwort component if present
withBasicAuthData :: MonadIO m => (Maybe (T.Text, T.Text) -> ActionCtxT ctx m a) -> ActionCtxT ctx m a
withBasicAuthData handler =
do mAuthHeader <- header "Authorization"
case mAuthHeader of
Nothing ->
handler Nothing
Just authHeader ->
let (_, rawValue) =
T.breakOn " " authHeader
(user, rawPass) =
(T.breakOn ":" . T.decodeUtf8 . B64.decodeLenient . T.encodeUtf8 . T.strip) rawValue
pass = T.drop 1 rawPass
in handler (Just (user, pass))
-- | Get the context of the current request
getContext :: MonadIO m => ActionCtxT ctx m ctx
getContext = asks ri_context
{-# INLINE getContext #-}
-- | Run an Action in a different context
runInContext :: MonadIO m => ctx' -> ActionCtxT ctx' m a -> ActionCtxT ctx m a
runInContext newCtx action =
do currentEnv <- ask
currentRespState <- ST.get
(r, newRespState, _) <-
lift $
do let env =
currentEnv
{ ri_context = newCtx
}
runRWST (runErrorT $ runActionCtxT action) env currentRespState
ST.put newRespState
case r of
Left interupt ->
throwError interupt
Right d -> return d
{-# INLINE runInContext #-}
-- | Set a cookie. The cookie value will be urlencoded.
setCookie :: MonadIO m => T.Text -> T.Text -> CookieSettings -> ActionCtxT ctx m ()
setCookie name value cs =
do now <- liftIO getCurrentTime
setRawMultiHeader MultiHeaderSetCookie $
generateCookieHeaderString name value cs now
{-# INLINE setCookie #-}
-- | Delete a cookie
deleteCookie :: MonadIO m => T.Text -> ActionCtxT ctx m ()
deleteCookie name =
setCookie name T.empty cs
where
cs = defaultCookieSettings { cs_EOL = CookieValidUntil epoch }
epoch = UTCTime (fromGregorian 1970 1 1) (secondsToDiffTime 0)
{-# INLINE deleteCookie #-}
-- | Read all cookies. The cookie value will already be urldecoded.
cookies :: MonadIO m => ActionCtxT ctx m [(T.Text, T.Text)]
cookies =
do req <- request
return $
maybe [] parseCookies $
lookup "cookie" (Wai.requestHeaders req)
{-# INLINE cookies #-}
-- | Read a cookie. The cookie value will already be urldecoded. Note that it is
-- more efficient to use 'cookies' if you need do access many cookies during a request
-- handler.
cookie :: MonadIO m => T.Text -> ActionCtxT ctx m (Maybe T.Text)
cookie name =
do allCookies <- cookies
return $ lookup name allCookies
{-# INLINE cookie #-}