mathworks
diff --git a/‎README.md
Lines changed: 38 additions & 6 deletions b/‎README.md
Lines changed: 38 additions & 6 deletions
diff --git a/‎jupyter_matlab_proxy/app.py
Lines changed: 4 additions & 1 deletion b/‎jupyter_matlab_proxy/app.py
Lines changed: 4 additions & 1 deletion
diff --git a/‎jupyter_matlab_proxy/settings.py
Lines changed: 3 additions & 2 deletions b/‎jupyter_matlab_proxy/settings.py
Lines changed: 3 additions & 2 deletions
diff --git a/‎jupyter_matlab_proxy/util/custom_http_headers.py
Lines changed: 196 additions & 0 deletions b/‎jupyter_matlab_proxy/util/custom_http_headers.py
Lines changed: 196 additions & 0 deletions
@@ -95,16 +95,48 @@ To control the behavior of the MATLAB integration for Jupyter, you can optionall
 ```bash
 env APP_PORT=8888 jupyter notebook
 ```
+**MARKDOWN TABLE**
 
 These values are preset for you when you access the integration from the Jupyter console.
 | Name | Type | Example Value | Description |
-|------|------|-------|-------------|
-| **MLM_LICENSE_FILE** | string |  <br/>`"[email protected]"`| When you want to use either a license file or a network license manager to license MATLAB, specify this variable. For example, specify the location of the network license manager to be `123@hostname`.|
-| **LOG_LEVEL** | string | <br/> `"CRITICAL"` | Specify the Python log level to be one of the following `NOTSET`, `DEBUG`, `INFO`, `WARN`, `ERROR`, or `CRITICAL`. For more information on Python log levels, see [Logging Levels](https://docs.python.org/3/library/logging.html#logging-levels) .<br />The default value is `INFO`.|
-| **LOG_FILE** | string | <br/> `"/tmp/logs.txt"` | Specify the full path to the file where you want the logs to be written. | 
-| **BASE_URL** | string | <br/>`"/matlab"` | Set to control the base URL of the app. BASE_URL should start with `/` or be `empty`.|
-| **APP_PORT** | integer | <br/>`8080` | Specify the port for the HTTP server to listen on.  |
+| ---- | ---- | ------------- | ----------- |
+| **MLM_LICENSE_FILE** | string | `"[email protected]"` | When you want to use either a license file or a network license manager to license MATLAB, specify this variable.</br> For example, specify the location of the network license manager to be `123@hostname`|                                                                         
+| **LOG_LEVEL** | string | `"CRITICAL"` | Specify the Python log level to be one of the following `NOTSET`, `DEBUG`, `INFO`, `WARN`, `ERROR`, or `CRITICAL`. For more information on Python log levels, see [Logging Levels](https://docs.python.org/3/library/logging.html#logging-levels) .<br />The default value is `INFO`. |
+| **LOG_FILE** | string | `"/tmp/logs.txt"` | Specify the full path to the file where you want the logs to be written. |
+| **BASE_URL** | string | `"/matlab"` | Set to control the base URL of the app. BASE_URL should start with `/` or be `empty`. |
+| **APP_PORT** | integer | `8080` | Specify the port for the HTTP server to listen on. |
+| **CUSTOM_HTTP_HEADERS** | string  |`'{"Content-Security-Policy": "frame-ancestors *.example.com:*"}'`<br /> OR <br />`"/path/to/your/custom/http-headers.json"` |Specify valid HTTP headers as JSON data in a string format<br />OR <br /> Specify the full path to the JSON file containing (valid) HTTP headers. These headers would be injected into the HTTP response sent to the browser. </br> For  more information, see the CUSTOM_HTTP_HEADERS sub-section in the Advanced Usage section. |
+
 
 ## Feedback
 
 We encourage you to try this repository with your environment and provide feedback – the technical team is monitoring this repository. If you encounter a technical issue or have an enhancement request, send an email to `[email protected]`.
+
+
+## Advanced Usage
+
+#### CUSTOM_HTTP_HEADERS: 
+If the browser renders the MATLAB Integration for Jupyter with some other content, then web browsers could block the integration because of mismatch of `Content-Security-Policy` header in the response headers from the integration.
+
+To avoid this, providing custom HTTP headers allow browsers to load the content.
+
+For example:
+If this integration is rendered along with some other content on the domain `www.example.com`, sample `http-headers.json` file could be something like:
+
+```json
+{
+  "Content-Security-Policy": "frame-ancestors *.example.com:* https://www.example.com:*;"
+}
+```
+or if you are passing the custom http headers as a string in the environment variable. In bash shell, it could look like :
+
+```bash
+export CUSTOM_HTTP_HEADERS='{"Content-Security-Policy": "frame-ancestors *.example.com:* https://www.example.com:*;"}'
+```
+
+If you add the `frame-ancestors` directive, the browser does not block the content of this integration hosted on the domain `www.example.com`
+
+
+For more information about `Content-Security-Policy` header,  check Mozilla developer docs for [Content-Security-Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy)
+
+**NOTE**: Setting custom HTTP headers is an advanced manoeuver, only use this functionality if you are familiar with HTTP headers.
@@ -11,7 +11,6 @@
 from .app_state import AppState
 from .util import mw_logger
 from .util.exceptions import LicensingError
-
 import pkgutil
 import mimetypes
 
@@ -202,6 +201,7 @@ def make_static_route_table(app):
                         content_type = mimetypes.guess_type(name)[0]
 
                     headers = {"content-type": content_type}
+                    headers.update(app["settings"]["custom_http_headers"])
 
                     table[f"{base_url}{parent}/{name}"] = {
                         "mod": mod,
@@ -282,8 +282,11 @@ async def wsforward(ws_from, ws_to):
                     allow_redirects=False,
                     data=req_body,
                 ) as res:
+
                     headers = res.headers.copy()
                     body = await res.read()
+                    headers.update(req.app["settings"]["custom_http_headers"])
+
                     return web.Response(headers=headers, status=res.status, body=body)
             except Exception:
                 raise web.HTTPNotFound()
 
@@ -6,6 +6,7 @@
 import xml.etree.ElementTree as ET
 import uuid, socket
 import shutil
+from .util import custom_http_headers
 
 
 def get_matlab_path():
@@ -42,7 +43,6 @@ def get_dev_settings():
         tempfile.mkstemp(prefix="mrf_", dir=str(matlab_temp_dir))[1]
     )
     ws_env, ws_env_suffix = get_ws_env_settings()
-
     return {
         "matlab_path": Path(),
         "matlab_version": "R2020b",
@@ -68,6 +68,7 @@ def get_dev_settings():
         "mwa_api_endpoint": f"https://login{ws_env_suffix}.mathworks.com/authenticationws/service/v4",
         "mhlm_api_endpoint": f"https://licensing{ws_env_suffix}.mathworks.com/mls/service/v1/entitlement/list",
         "mwa_login": f"https://login{ws_env_suffix}.mathworks.com",
+        "custom_http_headers": custom_http_headers.get(),
     }
 
 
@@ -112,7 +113,6 @@ def get(dev=False):
         )
         matlab_path = get_matlab_path()
         ws_env, ws_env_suffix = get_ws_env_settings()
-
         return {
             "matlab_path": matlab_path,
             "matlab_version": get_matlab_version(matlab_path),
@@ -137,6 +137,7 @@ def get(dev=False):
             "mwa_api_endpoint": f"https://login{ws_env_suffix}.mathworks.com/authenticationws/service/v4",
             "mhlm_api_endpoint": f"https://licensing{ws_env_suffix}.mathworks.com/mls/service/v1/entitlement/list",
             "mwa_login": f"https://login{ws_env_suffix}.mathworks.com",
+            "custom_http_headers": custom_http_headers.get(),
         }
 
 
 
@@ -0,0 +1,196 @@
+# Copyright 2020-2021 The MathWorks, Inc.
+
+import os, json, sys
+from json.decoder import JSONDecodeError
+from . import mw_logger
+
+logger = mw_logger.get()
+
+
+def get():
+    """Returns a dict containing custom http headers to inject into responses from the
+    MATLAB Embedded Connector and to the static files in 'gui' folder.
+
+    Parses valid JSON data if provided as a string or in a JSON file.
+
+    Returns:
+        Dict: Representing custom headers.
+    """
+    env_var = __get_custom_header_env_var()
+    # custom_headers_path can contain valid JSON data as a string or a path to a file containing valid JSON
+    custom_headers_path = os.getenv(env_var)
+
+    # If the environment variable is not present
+    if custom_headers_path is None:
+        logger.info(
+            f"Environment variable {env_var} is not set, hence no custom HTTP headers are applied."
+        )
+        return dict()
+
+    logger.info(
+        f"Envinronment variable {env_var} is set and has the value: {custom_headers_path}"
+    )
+    is_file = os.path.isfile(custom_headers_path)
+
+    if is_file and __check_file_validity(custom_headers_path):
+        return __get_file_contents(custom_headers_path)
+
+    else:
+        exception_statement = __get_exception_statement()
+        try:
+            # Valid JSON data as a string
+            data = json.loads(custom_headers_path)
+            logger.info(
+                f"Successfully parsed HTTP headers from the environment variable {env_var}\nThe parsed HTTP headers are:\n{data}\n"
+            )
+            return data
+
+        except JSONDecodeError as json_decode_error:
+            # Invalid JSON data as a string.
+            print(
+                exception_statement.format(
+                    env_var=__get_custom_header_env_var(),
+                    env_var_value=custom_headers_path,
+                )
+            )
+            logger.error(
+                f"Failed with {type(json_decode_error).__name__} exception. Check the value in {env_var} environment variable for syntax errors."
+            )
+            sys.exit(1)
+
+        except Exception as e:
+            print(
+                exception_statement.format(
+                    env_var=__get_custom_header_env_var(),
+                    env_var_value=custom_headers_path,
+                )
+            )
+            logger.error(
+                f"Raised {type(e).__name__} exception when parsing JSON data in the environment variable {env_var}"
+            )
+            sys.exit(1)
+
+
+def __check_file_validity(custom_headers_path):
+    """Checks the file at custom_headers_path for the read access to the file for the current python process.
+
+    Args:
+        custom_headers_path (String): File path of custom headers.
+
+    Raises:
+        OSError: When the current python process doesn't have read access to the custom_headers_path
+    """
+    exception_statement = __get_exception_statement()
+    logger.debug(
+        f"The value in environment variable {__get_custom_header_env_var()} contains a path to a file."
+    )
+    try:
+        if not os.access(custom_headers_path, os.R_OK):
+            raise OSError
+
+        logger.debug(
+            f"Current python process has read access rights to the file at: {custom_headers_path}"
+        )
+        return True
+
+    except OSError as os_error:
+        print(
+            f"\n{type(os_error).__name__}: Permission denied. Cannot read file: {custom_headers_path}\n"
+            + exception_statement.format(
+                env_var=__get_custom_header_env_var(),
+                env_var_value=custom_headers_path,
+            )
+        )
+        logger.error(
+            f"{type(os_error).__name__}: Permission denied. For the current python process, check read access rights for the file: {custom_headers_path}."
+        )
+        sys.exit(1)
+
+    except Exception as e:
+        print(
+            f"\n{type(e).__name__} exception raised with error message: {e.args}\n"
+            + exception_statement.format(
+                env_var=__get_custom_header_env_var(),
+                env_var_value=custom_headers_path,
+            )
+        )
+        logger.error(
+            f"{type(e).__name__} exception raised when checking read access rights to the file at: {custom_headers_path}"
+        )
+        sys.exit(1)
+
+
+def __get_file_contents(custom_headers_path):
+    """Reads the file containing custom headers and returns a dict.
+    Raises JSONDecodeError if the JSON data in the file is not valid.
+
+    Args:
+        custom_headers_path (String): File path of custom headers.
+
+    Raises:
+        JSONDecodeError: when the contents of the file containing custom headers
+        does not have valid JSON data.
+
+    Returns:
+        Dict: Containing custom headers.
+    """
+
+    custom_headers = None
+    exception_statement = __get_exception_statement()
+    try:
+        with open(custom_headers_path, "r") as json_file:
+            custom_headers = json.load(json_file)
+            logger.info(
+                f"Successfully parsed HTTP headers present in the file: {custom_headers_path}"
+            )
+            logger.debug(f"The parsed HTTP headers are :\n{custom_headers}\n")
+            return custom_headers
+
+    except JSONDecodeError as json_decode_error:
+        print(
+            f"\n{type(json_decode_error).__name__} exception raised with error message: {json_decode_error.args[0]}\n"
+            + exception_statement.format(
+                env_var=__get_custom_header_env_var(),
+                env_var_value=custom_headers_path,
+            )
+        )
+        logger.error(
+            f"{type(json_decode_error).__name__}: Failed to parse JSON data in the file: {custom_headers_path}.\nCheck contents of the file for any syntax errors."
+        )
+        sys.exit(1)
+
+    except Exception as e:
+        print(
+            f"\nFailed with {type(e).__name__} exception with error message:\n{e.args}"
+            + exception_statement.format(
+                env_var=__get_custom_header_env_var(),
+                env_var_value=custom_headers_path,
+            )
+        )
+        logger.error(
+            f"Failed with {type(e).__name__}  when reading JSON data from the file: {custom_headers_path}"
+        )
+        sys.exit(1)
+
+
+def __get_custom_header_env_var():
+    """Returns the name of the environment variable which contains path
+    to the file containing custom headers.
+
+    Returns:
+        String: Environment variable containing path to the file containing custom headers.
+    """
+    return "CUSTOM_HTTP_HEADERS"
+
+
+def __get_exception_statement():
+    """Returns a generic exception statement pertaining to HTTP headers.
+
+    Returns:
+        String: Containing a generic exception statement to print to stdout.
+    """
+    exception_statement = """HTTP headers defined in the environment variable {env_var} are not valid.\n
+    The value in {env_var} is: {env_var_value}\n
+    Please provide either valid JSON data as a string or a path to a file with read access containing valid JSON data."""
+
+    return exception_statement