Huawei_Technology
/
mindspore-mindinsight
Not watched
1
0
Fork 0
Code
Releases 11 Wiki evaluate Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain HPC
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
Tree: 309fe331cc
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '309fe331cc'
${ noResults }
mindspore-mindinsight/mindinsight/backend/application.py

133 lines
4.5 kB
Raw Blame History 

  1. # Copyright 2019 Huawei Technologies Co., Ltd

  2. #

  3. # Licensed under the Apache License, Version 2.0 (the "License");

  4. # you may not use this file except in compliance with the License.

  5. # You may obtain a copy of the License at

  6. #

  7. # http://www.apache.org/licenses/LICENSE-2.0

  8. #

  9. # Unless required by applicable law or agreed to in writing, software

  10. # distributed under the License is distributed on an "AS IS" BASIS,

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. # See the License for the specific language governing permissions and

  13. # limitations under the License.

  14. # ============================================================================

  15. """Web application module."""

  16. import os

  17. from importlib import import_module

  18. from werkzeug.datastructures import Headers

  19. from werkzeug.exceptions import HTTPException

  20. 

  21. from flask import Flask

  22. from flask import request

  23. from flask import Response

  24. from flask_cors import CORS

  25. 

  26. from mindinsight.conf import settings

  27. from mindinsight.utils.hook import HookUtils

  28. from mindinsight.datavisual.common.log import logger

  29. from mindinsight.datavisual.common.exceptions import RequestMethodNotAllowed

  30. from mindinsight.datavisual.common import error_handler

  31. from mindinsight.datavisual.utils.tools import find_app_package

  32. from mindinsight.datavisual.utils.tools import get_img_mimetype

  33. from mindinsight.utils.exceptions import MindInsightException

  34. 

  35. 

  36. def get_security_headers():

  37.     """Get security headers."""

  38.     domain_white_list = []

  39.     for hook in HookUtils.instance().hooks():

  40.         domain_white_list += hook.register_secure_domains()

  41. 

  42.     content_security_policy = {

  43.         'img-src': ["'self'", 'data:'],

  44.         'style-src': ["'self'", "'unsafe-inline'"],

  45.         'frame-src': ["'self'"] + domain_white_list,

  46.         'frame-ancestors': ["'self'"] + domain_white_list,

  47.         'default-src': ["'self'"],

  48.         'script-src': ["'self'", "'unsafe-eval'"]

  49.     }

  50. 

  51.     headers = {

  52.         'X-Frame-Options': 'SAMEORIGIN',

  53.         'X-XSS-Protection': '1; mode=block',

  54.         'X-Content-Type-Options': 'nosniff',

  55.         'Access-Control-Allow-Methods': ', '.join(settings.SUPPORT_REQUEST_METHODS),

  56.         'Content-Security-Policy': '; '.join([

  57.             f"{k} {' '.join(v)}" for k, v in content_security_policy.items()

  58.         ]),

  59.         'X-Download-Options': 'noopen',

  60.         'Cache-Control': 'no-store',

  61.         'Pragma': 'no-cache'

  62.     }

  63. 

  64.     return list(headers.items())

  65. 

  66. 

  67. SECURITY_HEADERS = get_security_headers()

  68. 

  69. 

  70. class CustomResponse(Response):

  71.     """Define custom response."""

  72.     def __init__(self, response=None, **kwargs):

  73.         headers = kwargs.get("headers")

  74.         if isinstance(response, bytes):

  75.             mimetype = get_img_mimetype(response)

  76.             SECURITY_HEADERS.append(('Content-Type', mimetype))

  77.         if headers is None:

  78.             headers = Headers(SECURITY_HEADERS)

  79.         else:

  80.             for header in SECURITY_HEADERS:

  81.                 headers.add(*header)

  82.         kwargs['headers'] = headers

  83.         super(CustomResponse, self).__init__(response, **kwargs)

  84. 

  85. 

  86. def _init_app_module(app):

  87.     """

  88.     Init app module.

  89. 

  90.     Args:

  91.         app (Flask): An instance of Flask.

  92.     """

  93.     packages = find_app_package()

  94.     for package in packages:

  95.         try:

  96.             app_module = import_module(package)

  97.             app_module.init_module(app)

  98.         except AttributeError:

  99.             logger.debug('[%s].init_module not exists.', package)

  100. 

  101. 

  102. def before_request():

  103.     """A function to run before each request."""

  104.     if request.method not in settings.SUPPORT_REQUEST_METHODS:

  105.         raise RequestMethodNotAllowed()

  106. 

  107. 

  108. def create_app():

  109.     """Set flask APP config, and start the data manager."""

  110.     static_url_path = settings.URL_PATH_PREFIX + "/static"

  111.     static_folder_path = os.path.realpath(os.path.join(os.path.dirname(__file__), os.pardir, 'ui', 'dist', 'static'))

  112. 

  113.     app = Flask(__name__, static_url_path=static_url_path, static_folder=static_folder_path)

  114.     app.config['JSON_SORT_KEYS'] = False

  115. 

  116.     if settings.ENABLE_CORS:

  117.         CORS(app, supports_credentials=True)

  118. 

  119.     app.before_request(before_request)

  120. 

  121.     app.register_error_handler(HTTPException, error_handler.handle_http_exception_error)

  122.     app.register_error_handler(MindInsightException, error_handler.handle_mindinsight_error)

  123.     app.register_error_handler(Exception, error_handler.handle_unknown_error)

  124. 

  125.     app.response_class = CustomResponse

  126. 

  127.     _init_app_module(app)

  128. 

  129.     return app

  130. 

  131. 

  132. APP = create_app()