stackoom
  简体   繁体   中英

Python http.server - how to serve HTML from directory above cwd

 原文  2022-09-19 14:56:00       python/ http.server/ simplehttprequesthandler

Question

I've got a question that I could really use some guidance with. I am simply trying to serve HTML from a directory that is not the same directory as the server itself. Ideally, I'd like to move one level above the server's directory, and serve a file located there.

When I try that, I get a 404.

class Server(SimpleHTTPRequestHandler):

    def do_GET(self):
        ... some other stuff ...        
        elif self.path == "/manage":
            self.send_response(200)
            self.path = "/manage.html"
            return SimpleHTTPRequestHandler.do_GET(self)
        else:            
            f = self.send_head()
            if f:
                try:
                    self.copyfile(f, self.wfile)
                finally:
                    f.close()

^this code serves the file, if it's in the same directory as the server.

If I then move manage.html upward (where I'd like it to live), and try stuff like '../manage.html', or an absolute path, I get a 404.

Am I bumping into like, some built-in directory traversal mitigation? If so, is there a way I can disable it? All of this is local, security isn't really a problem. I could try a subdirectory, but if I start down that road, I'd have to rename & rearrange the entire directory structure, because the naming won't make sense.

Thanks in advance. (Python 3.10,2) 64-bit. Windows.

1 answers

solution1
 0  2022-09-19 15:15:52

This is a security feature. You wouldn't want users to be able to see all files of the web server, would you?

Starting with Python 3.7, the constructor of SimpleHTTPRequestHandler has a directory parameter (see docs: https://docs.python.org/3/library/http.server.html#http.server.SimpleHTTPRequestHandler ).

With that you can tell SimpleHTTPRequestHandler from where to server the files. You can either change that wherever you instantiate your server, ie Server(directory=...) or you can alter the init method of you Server class

class Server(SimpleHTTPRequestHandler):
    def __init__(self, *args, **kwargs):
        super().__init__(*args, directory=..., **kwargs)

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Python http.server: how open indexOtherName.html? polymer serve vs python -m http.server How to test running http.server in Python? Python 3 and http.server usage Python http.server CGI How to redirect http to https python http.server How do you use the http.server python module to run HTML+Javascript+CSS? How do you add a CSS style to a HTML file with a python http.server? How to get python 3 to display html and dynamic content when running http.server http.server (SimpleHTTPServer) serve file.html instead of dir (using cmd)
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM