Github/stackdump
1
0
Fork 0
mirror of https://github.com/djohnlewis/stackdump synced 2025-04-04 16:53:27 +00:00
Code Issues Projects Releases Wiki Activity

Fixed bug where site_index.html was POSTing the query instead of using GET.

Browse Source 
Also fixed issue where errors when searching were not being propagated properly.
This commit is contained in:
Samuel Lai 2012-02-11 19:20:19 +11:00
parent 7363c666d8
commit 1638617c3e
2 changed files with 14 additions and 6 deletions
python/src/stackdump
app.py
templates
site_index.html

18
python/src/stackdump/app.py

@ -12,7 +12,7 @@ except ImportError:
# For Python >= 2.6 # For Python >= 2.6
import json import json
from bottle import route, run, static_file, debug, abort, request, redirect from bottle import route, run, static_file, debug, request, redirect, HTTPError
from jinja2 import Environment, PackageLoader from jinja2 import Environment, PackageLoader
from sqlobject import sqlhub, connectionForURI, AND, OR, IN, SQLObjectNotFound from sqlobject import sqlhub, connectionForURI, AND, OR, IN, SQLObjectNotFound
from pysolr import Solr from pysolr import Solr
@ -210,7 +210,7 @@ def site_index(site_key):
try: try:
context['site'] = Site.selectBy(key=site_key).getOne() context['site'] = Site.selectBy(key=site_key).getOne()
except SQLObjectNotFound: except SQLObjectNotFound:
abort(code=404, output='No site exists with the key %s.' % site_key) raise HTTPError(code=404, output='No site exists with the key %s.' % site_key)
return render_template('site_index.html', context) return render_template('site_index.html', context)
@ -223,7 +223,11 @@ def search():
context['site_root_path'] = '' context['site_root_path'] = ''
context['sites'] = Site.select() context['sites'] = Site.select()
context.update(perform_search()) search_context = perform_search()
if not search_context:
raise HTTPError(code=500, output='Invalid query attempted.')
context.update(search_context)
return render_template('results.html', context) return render_template('results.html', context)
@ -243,7 +247,11 @@ def site_search(site_key):
raise HTTPError(code=404, output='No site exists with the key %s.' % site_key) raise HTTPError(code=404, output='No site exists with the key %s.' % site_key)
# perform the search limited by this site # perform the search limited by this site
context.update(perform_search(site_key)) search_context = perform_search(site_key)
if not search_context:
raise HTTPError(code=500, output='Invalid query attempted.')
context.update(search_context)
return render_template('site_results.html', context) return render_template('site_results.html', context)
@ -478,7 +486,7 @@ def perform_search(site_key=None):
# TODO: scrub this first to avoid Solr injection attacks? # TODO: scrub this first to avoid Solr injection attacks?
query = request.GET.get('q') query = request.GET.get('q')
if not query: if not query:
redirect(settings.APP_URL_ROOT) return None
# this query string contains any special bits we add that we don't want # this query string contains any special bits we add that we don't want
# the user to see. # the user to see.
int_query = query int_query = query

2
python/src/stackdump/templates/site_index.html

@ -11,7 +11,7 @@
{{ site.name }} {{ site.name }}
<small class="tagline">{{ site.desc }}</small> <small class="tagline">{{ site.desc }}</small>
</h1> </h1>
<form id="search" method="post" action="{{ SETTINGS.APP_URL_ROOT }}{{ site_root_path }}search"> <form id="search" method="get" action="{{ SETTINGS.APP_URL_ROOT }}{{ site_root_path }}search">
<input type="text" class="xlarge" name="q" /> <input type="text" class="xlarge" name="q" />
<input type="submit" class="btn primary" value="Search" /> <input type="submit" class="btn primary" value="Search" />
</form> </form>