summaryrefslogtreecommitdiffstats
path: root/testing/web-platform/tests/pending-beacon/resources/set_beacon.py
blob: 1c71f23e57849481b7deb204cb859ef25f6e4356 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
"""An HTTP request handler for WPT that handles /set_beacon.py requests."""

_BEACON_ID_KEY = b"uuid"
_BEACON_DATA_PATH = "beacon_data"
_BEACON_FORM_PAYLOAD_KEY = b"payload"
_BEACON_BODY_PAYLOAD_KEY = "payload="
_BEACON_EXPECT_ORIGIN_KEY = b"expectOrigin"
_BEACON_EXPECT_PREFLIGHT_KEY = b"expectPreflight"
_BEACON_EXPECT_CREDS_KEY = b"expectCredentials"


def main(request, response):
    """Stores the given beacon's data keyed by uuid in the server.

    For GET request, this handler assumes no data.
    For POST request, this handler extracts data from request body:
      - Content-Type=multipart/form-data: data keyed by 'payload'.
      - the entire request body.

    Multiple data can be added for the same uuid.

    The data is stored as UTF-8 format.
    """
    if _BEACON_ID_KEY not in request.GET:
        response.status = 400
        return "Must provide a UUID to store beacon data"
    uuid = request.GET.first(_BEACON_ID_KEY)

    expected_origin = request.GET.get(_BEACON_EXPECT_ORIGIN_KEY)
    if b"origin" in request.headers:
        origin = request.headers.get(b"origin")
        if expected_origin:
            assert origin == expected_origin, f"expected {expected_origin}, got {origin}"
        response.headers.set(b"Access-Control-Allow-Origin", origin)
    else:
        assert expected_origin is None, f"expected None, got {expected_origin}"

    # Handles preflight request first.
    if request.method == u"OPTIONS":
        assert request.GET.get(
            _BEACON_EXPECT_PREFLIGHT_KEY) == b"true", "Preflight not expected."

        # preflight must not have cookies.
        assert b"Cookie" not in request.headers

        requested_headers = request.headers.get(
            b"Access-Control-Request-Headers")
        assert b"content-type" in requested_headers, f"expected content-type, got {requested_headers}"
        response.headers.set(b"Access-Control-Allow-Headers", b"content-type")

        requested_method = request.headers.get(b"Access-Control-Request-Method")
        assert requested_method == b"POST", f"expected POST, got {requested_method}"
        response.headers.set(b"Access-Control-Allow-Methods", b"POST")

        return response

    expect_creds = request.GET.get(_BEACON_EXPECT_CREDS_KEY) == b"true"
    if expect_creds:
        assert b"Cookie" in request.headers
    else:
        assert b"Cookie" not in request.headers

    data = None
    if request.method == u"POST":
        if b"multipart/form-data" in request.headers.get(b"Content-Type", b""):
            if _BEACON_FORM_PAYLOAD_KEY in request.POST:
                data = request.POST.first(_BEACON_FORM_PAYLOAD_KEY).decode(
                    'utf-8')
        elif request.body:
            data = request.body.decode('utf-8')
            if data.startswith(_BEACON_BODY_PAYLOAD_KEY):
                data = data.split(_BEACON_BODY_PAYLOAD_KEY)[1]

    with request.server.stash.lock:
        saved_data = request.server.stash.take(key=uuid, path=_BEACON_DATA_PATH)
        if not saved_data:
            saved_data = [data]
        else:
            saved_data.append(data)
        request.server.stash.put(
            key=uuid, value=saved_data, path=_BEACON_DATA_PATH)

    response.status = 200