Handling Form Input

Introduction

In “Streamlined Apps With HTML and JSON” we set up a basic site that could render HTML and read data. However, for most applications, you will need some way for users to input data; in other words: handling forms, both rendering them and posting them.

In order to handle HTML forms from the browser securely, we also have to implement some form of authenticated session along with them.

So let’s build on top of our food-list application by letting users submit a form that adds some foods to a list.

Our example here will be a very simple app, where you type in the name of a food and give it a star rating. To begin, it’ll be entirely anonymous.

If you want full, runnable examples, you can find them in the Klein repository on Github

Configuration and Setup

In order to provide a realistic example that actually stores state, we’ll also use Klein’s integrated database access system, and simple account/session storage with username and password authentication. However, there are documented interfaces between each of these layers (storage, sessions, accounts), and your application can supply its own account or session storage as your needs for authentication evolve. But before we get into authentication, let’s get a basic system for processing forms and storing data set up.

To configure our system we will set up a few things:

  • First, we will adapt the synchronous sqlite3 database driver to an asynchronous one.

  • Next, we will build a session procurer, which is what will retrieve our sessions from the configured database.

  • Then, we will set up a Requirer, which is how each of our routes will tell the authorization and forms systems what values our routes require to execute.

  • Finally, we will set up a prerequisite requirement, a thing that all routes in our application require, of an ISession. We hook this up to our Requirer using the requirer.prerequisite() decorator.

import sqlite3
from typing import Optional

from foodwiki_db import allAuthorizers

from twisted.internet.defer import Deferred, succeed
from twisted.web.iweb import IRequest

from klein import Requirer
from klein.interfaces import ISession
from klein.storage.dbxs.dbapi_async import adaptSynchronousDriver
from klein.storage.sql import SQLSessionProcurer


DB_FILE = "food-wiki.sqlite"

asyncDriver = adaptSynchronousDriver(
    (lambda: sqlite3.connect(DB_FILE)), sqlite3.paramstyle
)

sessions = SQLSessionProcurer(asyncDriver, allAuthorizers)
requirer = Requirer()


@requirer.prerequisite([ISession])
def procurer(request: IRequest) -> Deferred[ISession]:
    result: Optional[ISession] = ISession(request, None)
    if result is not None:
        # TODO: onValidationFailureFor results in one require nested inside
        # another, which invokes this prerequisite twice. this mistake should
        # not be easy to make
        return succeed(result)
    return sessions.procureSession(request)

We’ll also need some HTML templating set up to style our pages. Using what we learned about Plating, we’ll set up a basic page, use the fragment convenience decorator to make a widget for consistently displaying a food in the HTML UI.

from twisted.web.template import Tag, slot, tags

from klein import Plating


page = Plating(
    tags=tags.html(
        tags.head(
            tags.title("Food Ratings Example: ", slot("pageTitle")),
            slot("headExtras"),
        ),
        tags.body(
            tags.h1("Food Ratings Example: ", slot("pageTitle")),
            tags.div(slot(Plating.CONTENT)),
        ),
    ),
    defaults={"pageTitle": "", "headExtras": ""},
)


@page.fragment
def food(name: str, rating: str) -> Tag:
    return tags.div(
        tags.div("food:", name),
        tags.div("rating:", rating),
    )


def refresh(url: str) -> Tag:
    return tags.meta(content=f"0;URL='{url}'", **{"http-equiv": "refresh"})

Note

@Plating.fragment functions are invoked once at the time they are decorated, with each of their arguments being a slot object, not the type that it’s they’re declared to have; the only thing you should do in the body of these functions is construct a Tag object that serves as a fragment of your resulting template. This can be a little confusing at first, but it allows you to have a nice type-checked interface to ensure that you’re always passing the correct slots to them later.

Database Access with dbxs

You may have noticed that in the configuration above, we constructed our SQLSessionProcurer with a list of authorizers. An authorizer is a function that can look at a database and determine if a user is authorized to perform a task, so now we will implement the interaction with the database.

We will use Klein’s built-in lightweight asynchronous database access system, dbxs, allows you to keep your queries organized and construct simple classes from your query results, without bringing in the overhead of an ORM or query builder. If you know SQL and you know basic Python data structures, you allmost know how to use it already.

First let’s get started with a very basic schema; a ‘food’ with a name and a rating:

foodTable = """
CREATE TABLE food (
    name VARCHAR NOT NULL,
    rating INTEGER NOT NULL
)
"""

Next, a function to apply that schema, along with Klein’s own basic account & session schema with session and account tables:

from klein.storage.sql import applyBasicSchema, authorizerFor

async def applySchema(connectable: AsyncConnectable) -> None:
    await applyBasicSchema(connectable)
    async with transaction(connectable) as c:
        cur = await c.cursor()
        await cur.execute(foodTable)

Now, let’s define our basic data structure to correspond to that table:

@dataclass
class FoodRating:
    txn: AsyncConnection
    name: str
    rating: int

And now we will use dbxs to specify what queries we’re going to make against that schema.

from klein.storage.dbxs import accessor, many, query, statement

class RatingsDB(Protocol):
    @query(
        sql="select name, rating from food",
        load=many(FoodRating),
    )
    def allRatings(self) -> AsyncIterable[FoodRating]:
        ...

    @statement(sql="insert into food (name, rating) values ({name}, {rating})")
    async def addRating(self, name: str, rating: int) -> None:
        ...

Here, we have defined a typing.Protocol whowse methods are all awaitable or async iterables decorated with @query (for SQL expressions that we expect results for) or @statement for those which we expect to have side effects but not return values. We have one read operation, allRatings, that gives us all the ratings in the database, and addRating which adds a rating. All the argument types for these methods must be things you can pass to the database, and they are supplied to the query via the curly-braced format specifiers included in the SQL string, whose names match the parameters specified in your Python function arguments.

While @statement returns no values, @query needs to know how to interpret its query results, and it does this via its load argument. If you pass load=many(YourCallable), the decorated function must return an AsyncIterable of YourCallable’s return type. The callable itself takes an AsyncConnection as its first argument, and the columns of the query’s results as the rest of the arguments. Here, we know that select name, rating matches up with FoodRating’s dataclass arguments, name: str and rating: int.

If you have a query that you know should only ever return a single value, you can use load=one(YourType) and the return type should be Awaitable[YourType], or for one-or-zero results you can use load=maybe(YourType) which should return Awaitable[YourType | None].

These decorators provide information, but a Protocol is an abstract type; it can’t actually do anything on its own. We need to somehow transform an AsyncConnection into something that looks like this type and executes these queries, and for that we use accessor, which converts our RatingsDB protocol into a callable that takes an AsyncConnection and returns an instance of RatingsDB that can execute all those queries.

This system will help you out by performing a few basic checks. At type-check time, mypy will make sure that your return types correspond with the loader type (one, many, maybe) that you’ve specified. At import time, you will get an exception if the arguments specified in your function signatures are not used in your queries, or if the queries use arguments you didn’t provide. However, you will need to verify that the SQL itself is valid; we’ll cover that in a later section on testing.

Creating an Authorizer

Now that we’ve got a basic data-access layer in place, let’s put some access control in place. For this simple anonymous site, the access control is pretty lenient; everyone should bea uthorized to access these methods all the time. However, given that we’ll want to restrict that a bit in the future, we can’t use our new data-access RatingsDB Protocol directly, so we will declare a new class. For this example it will simply forward all the methods on:

@dataclass
class FoodRater:
    db: RatingsDB

    def allRatings(self) -> AsyncIterable[FoodRating]:
        return self.db.allRatings()

    async def rateFood(self, name: str, rating: int) -> None:
        return await self.db.addRating(name, rating)

But then we will also declare an authorizer for it, so that Klein knows how to determine if a user has access to it in a particular route that needs it:

@authorizerFor(FoodRater)
async def authorizeFoodRater(
    store: ISessionStore, conn: AsyncConnection, session: ISession
) -> Optional[FoodRater]:
    return FoodRater(accessRatings(conn))

SQL authorizers are passed a dbxs AsyncConnection, a session store, and the user’s current session. They can then do any queries necessary to determine if a user is authorized, and return None if they’re not, which is why we declare that we return an Optional[FoodRater], reserving the right that we may want to return None later. However, for the time being, we use accessRatings to convert our database connection into a RatingsDB, then pass it to our FoodRater so that all sessions have access to this functionality if they need it; no queries required just yet.

Finally, we can build the list of authorizers that we used in the configuration above:

allAuthorizers = [authorizeFoodRater.authorizer]

Now that everything is set up, let’s move on to our main application and declare some routes!

Handling Form Fields with Requirer

For this quick, anonymous version of the application, let’s first set up a route to rate foods, which will serve as our form.

@requirer.require(
    page.routed(
        app.route("/rate-food", methods=["POST"]),
        tags.h1("Rated Food: ", slot("name")),
    ),
    name=Field.text(),
    rating=Field.number(minimum=1, maximum=5, kind=int),
    foodRater=Authorization(FoodRater),
)
async def postHandler(name: str, rating: int, foodRater: FoodRater) -> dict:
    await foodRater.rateFood(name, rating)
    return {
        "name": name,
        "rating": "\N{BLACK STAR}" * rating,
        "pageTitle": "Food Rated",
        "headExtras": refresh("/"),
    }

As before, you can see we’ve wrapped the Plating.routed decorator around our klein app’s route method decorator, which takes care of templating and handling our return value as the mapping of slot names to slot values. However, we are now wrapping an additional decorator around the routed decorator: require.

As its first (positional) argument, Requirer.require takes a decorator, something that expects to receive a Twisted HTTP request object (or self, then, a request, if you’re using a Klein bound to an instance) as its first argument, as well as any additional arguments. So you can use Plating.routed or Klein.route here, depending on whether your application requires HTML templating or not.

Note

Requirer.require consumes the request that it is given, so you can’t access it any more. The idea here is that interacting with Request directly is a low-level way of expressing what values you require from the request, and Requirer is trying to provide a high-level way to get those requirements, where you’ve expressed the things you need and your route is not even invoked if they can’t be retrieved. If you need data from the request that is not exposed by Klein, you can implement your own IRequiredParameter to take the request and supply whatever value you require.

Next, it takes a set of keyword arguments. Each argument corresponds to an argument taken by the decorated function, and is an IRequiredParameter which describes what will be passed and how it will be fetched from either the request in the database.

In simpler terms, in code like this:

@requirer.require(..., something=SomeRequiredParameter())
def routeHandler(something: SomeRequiredParameterType):
    ...

What is happening is that routeHandler is saying to Klein, “I take a parameter called something, which SomeRequiredParameter knows how to supply”.

In our postHandler example above, require is given instructions to pass 3 relevant parameters to postHandler. Let’s look at the first two:

  1. name, which is text form field

  2. rating, which an integer form field with a value between 1 and 5

The first two values here are fairly simple; klein.Field declares that they’ll be extracted from a form POST in multipart/form-data or JSON formats, it will validate them, and then pass them along to postHandler as arguments assuming everything looks correct.

Using the authorizer we created with Authorization

The third requirement is foodRater, which is a request to authorize the current session to access a FoodRater object, using Authorization .

Remember that @authorizerFor(FoodRater) function that we wrote before? It pulls the ISession implementation from our ISession prerequisite, checks if the user is authorized for FoodRater, then passes the created object along to us. In other words, to use this route, an authorization for a food rater is required.

Finally, our implementation job is very simple here. We call the rateFood method on the FoodRater we have been passed, then format some outputs for our template, including a synthetic redirect to send the user back over to / to look at the rating list after the form post is processed.

Rendering an HTML form with Form.rendererFor

It might have seemed slightly odd to describe the handler for a form before we’ve even drawn the form itself, but the idea behind this is that you think first about what you want to do with the form, what values are required, and then the description of those values serves as the description of the form itself. So now that we have a function decorated with @requirer.require that takes some klein.Field parameters, we can get a renderable form out of it, to render on the front page.

@requirer.require(
    page.routed(
        app.route("/", methods=["GET"]),
        tags.div(
            tags.ul(tags.li(render="foods:list")(slot("item"))),
            tags.div(slot("rateFoodForm")),
        ),
    ),
    ratingForm=Form.rendererFor(postHandler, action="/rate-food"),
    foodRater=Authorization(FoodRater),
)
async def frontPage(foodRater: FoodRater, ratingForm: RenderableForm) -> dict:
    allRatings = []
    async for eachFood in foodRater.allRatings():
        allRatings.append(
            food(name=eachFood.name, rating="\N{BLACK STAR}" * eachFood.rating)
        )
    return {"foods": allRatings, "rateFoodForm": ratingForm}

In the GET route for /, we do not require any other Fields, but we still require the FoodRater authorization in order to use its allRatings method. Once again, we ask for it via an IRequiredParameter passed to require, by calling klein.Form.rendererFor(theRouteWithRequiredFields), which will pass along a RenderableForm object, that can be dropped into a slot in a Plating template.

Here, we also use the food fragment that we declared before in our template module, which allows us to embed more complex template fragments into a list-item slot.

Handling Validation Errors with Form.onValidationFailureFor

Next, we need to do something about validation failures. We don’t want our users to see a generic error message (or worse, a traceback) when something doesn’t validate, and we’d like Klein to be able to communicate the nature of the validation issue on a per-field basis. To do that, we use Form.onValidationFailureFor(theRouteWithRequiredFields). This decorator functions similarly to app.route, as it also handles a URL, although which URL it’s handling depends on the post-handling route it is wrapping.

@requirer.require(
    page.routed(
        Form.onValidationFailureFor(postHandler),
        [tags.h1("invalid form"), tags.div(slot("the-invalid-form"))],
    ),
    renderer=Form.rendererFor(postHandler, action="/?post=again"),
)
def validationFailed(values: FieldValues, renderer: RenderableForm) -> dict:
    renderer.prevalidationValues = values.prevalidationValues
    renderer.validationErrors = values.validationErrors
    return {"the-invalid-form": renderer}

This route defines a template and logic to use to render the form-validation failure on /rate-food. By using page.routed, we ensure that the template used is not a generic placeholder default for the form being handled, but contains all the relevant decorations for our page template.

Putting it all together

if __name__ == "__main__":
    from os.path import exists

    from foodwiki_config import DB_FILE, asyncDriver
    from foodwiki_db import applySchema

    from twisted.internet.defer import Deferred

    if not exists(DB_FILE):
        Deferred.fromCoroutine(applySchema(asyncDriver))

    app.run("localhost", 8080)

Finally, we ensure that the database schema is applied, and we start our server up using app.run as usual. You should be able to start up a server and see the example food-rating app there, post a form, try to post negative stars or more than five stars, see the validation either fail or succeed depending on those values, and see all the ratings you’ve put into the system.

Next up, we will cover a modified version of this application that shows you how to implement a signup form, a login form, and actually leverage the power of an Authorizer when authorization is not available to every unauthenticated user.