Skip to content

E
edx-platform
Switch branch/tag
Find file
Normal viewHistoryPermalink
sandboxing.py 1.58 KB
Newer Older
do some lamda magic to refactor out the whitelist checking code to be shared between LMS and CMS
bf3a7287
 
Chris Dodge committed
1 
import re
Reorder imports using isort (except lms and cms)
93235d11
 
Andy Armstrong committed
2
do some lamda magic to refactor out the whitelist checking code to be shared between LMS and CMS
bf3a7287
 
Chris Dodge committed
3 4 
from django.conf import settings
Importable python_lib.zip assets
616bbbab
 
Ned Batchelder committed
5 6 7 
# We'll make assets named this be importable by Python code in the sandbox.
PYTHON_LIB_ZIP = "python_lib.zip"
do some lamda magic to refactor out the whitelist checking code to be shared between LMS and CMS
bf3a7287
 
Chris Dodge committed
8 9 

def can_execute_unsafe_code(course_id):
actually, seems like we should be using double quotes for docstrings
b32c4aaa
 
Chris Dodge committed
10 
    """
add docstring to newly refactored method
bcbac3aa
 
Chris Dodge committed
11 12 13 14 15 16 17 
    Determine if this course is allowed to run unsafe code.

    For use from the ModuleStore.  Checks the `course_id` against a list of whitelisted
    regexes.

    Returns a boolean, true if the course can run outside the sandbox.
actually, seems like we should be using double quotes for docstrings
b32c4aaa
 
Chris Dodge committed
18 
    """
do some lamda magic to refactor out the whitelist checking code to be shared between LMS and CMS
bf3a7287
 
Chris Dodge committed
19 20 
    # To decide if we can run unsafe code, we check the course id against
    # a list of regexes configured on the server.
also add some defaulting to the querying of the settings where it defaults to an empty set
c3ad168b
 
Chris Dodge committed
21 22 
    # If this is not defined in the environment variables then default to the most restrictive, which
    # is 'no unsafe courses'
Compare stringified course_ids to regexes for courses allowed to execute unsafe code
6c46fb98
 
Julia Hansbrough committed
23 24 25 26 27 
    # TODO: This should be a database configuration, where we can mark individual courses as being
    # safe/unsafe. Someone in the future should switch us over to that rather than using regexes
    # in a settings file
    # To others using this: the code as-is is brittle and likely to be changed in the future,
    # as per the TODO, so please consider carefully before adding more values to COURSES_WITH_UNSAFE_CODE
also add some defaulting to the querying of the settings where it defaults to an empty set
c3ad168b
 
Chris Dodge committed
28 
    for regex in getattr(settings, 'COURSES_WITH_UNSAFE_CODE', []):
Merge release to master for 20150317 release.
243e2660
 
Brian Wilson committed
29 
        if re.match(regex, unicode(course_id)):
do some lamda magic to refactor out the whitelist checking code to be shared between LMS and CMS
bf3a7287
 
Chris Dodge committed
30 31 
            return True
    return False
Importable python_lib.zip assets
616bbbab
 
Ned Batchelder committed
32 33 34 35 36 37 38 39 40 41 


def get_python_lib_zip(contentstore, course_id):
    """Return the bytes of the python_lib.zip file, if any."""
    asset_key = course_id.make_asset_key("asset", PYTHON_LIB_ZIP)
    zip_lib = contentstore().find(asset_key, throw_on_not_found=False)
    if zip_lib is not None:
        return zip_lib.data
    else:
        return None