Skip to content


Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
branch: master
Fetching contributors…

Cannot retrieve contributors at this time

59 lines (48 sloc) 1.972 kb
from urlparse import urlparse
from httplib2 import Http
from pyramid.httpexceptions import (HTTPForbidden, HTTPBadRequest,
HTTPBadGateway, HTTPNotAcceptable)
from pyramid.response import Response
allowed_content_types = (
"application/xml", "text/xml",
"application/vnd.ogc.se_xml", # OGC Service Exception
"application/", # OGC Service Exception
"application/vnd.ogc.success+xml", # OGC Success (SLD Put)
"application/vnd.ogc.wms_xml", # WMS Capabilities
"application/vnd.ogc.context+xml", # WMC
"application/vnd.ogc.gml", # GML
"application/vnd.ogc.sld+xml", # SLD
"application/", # KML
allowed_hosts = (
# list allowed hosts here (no port limiting)
def ogcproxy(request):
url = request.params.get("url")
if url is None:
return HTTPBadRequest()
# check for full url
parsed_url = urlparse(url)
if not parsed_url.netloc or parsed_url.scheme not in ("http", "https"):
return HTTPBadRequest()
# forward request to target (without Host Header)
http = Http(disable_ssl_certificate_validation=True)
h = dict(request.headers)
h.pop("Host", h)
resp, content = http.request(url, method=request.method,
body=request.body, headers=h)
return HTTPBadGateway()
# check for allowed content types
if resp.has_key("content-type"):
ct = resp["content-type"]
if not ct.split(";")[0] in allowed_content_types:
# allow any content type from allowed hosts (any port)
if not parsed_url.netloc in allowed_hosts:
return HTTPForbidden()
return HTTPNotAcceptable()
response = Response(content, status=resp.status,
headers={"Content-Type": ct})
return response
Jump to Line
Something went wrong with that request. Please try again.