BackgroundProcessing is practically finished. However, I'd like you to test its security before. To do this, replace:

    def backgroundOutput(self, *args):
        raise NotImplementedError

with:

    def backgroundOutput(self, *args):
        print args

Now add 0background.py (print 1) to your site root and request BACKGROUND permission. You'll probably see [1] in ZeroNet console (args is a list).

Now try to do something (e.g. print eval("1")), restart ZeroNet to apply changes (to be fixed) and open console. You should see NameError: eval or something like that. Now try to escape the sandbox by using dir, etc. I hope you won't be able to hack the sandbox.

If you don't, I'll probably add update-without-restart feature and this PR can be merged.

Does anyone want to test this?

@krixano @imachug how this plugin works?

Reference: #1447.

This plugin allows sites to do some work in background, while the site is closed. For example, one could rebuild indexes (if you are using your own database, not SQLite), or, if your site uses my PeerMessage plugin, you could react to pings. If you need some example code, tell me, I'll post it.

I'm going to be testing this a little soon. Also, example code would be useful.

I'm wondering a few things:

• Does the plugin allow modifying the filesystem in and not in the zite's directory, or does it delete those codes so you can't try and escape the zite's directory?
• How would you call ZeroFrame commands from it?

Thank you for testing, @krixano! I'll post the example code and the answers to your question as updates to this comment right now.

You can use most of the default functions:

• help, copyright, credits and license doing nothing
• __package__ and __name__ equal to 0background
• __doc__ = "", __debug__ = False
• globals and locals functions
• reload raising an exception
• print, input and raw_input as a ways to interact with the plugin, not implemented yet -- i.e. they throw NotImplementedError
• getattr, which allows getting all attributes, except: __subclasses__ returning everything except function and other classes that can be used to escape the sandbox, __globals__ and func_globals simulating globals(), __code__ and func_code raising TypeError
• setattr, disallowing __subclasses__, __globals__ and __code__

Using ZeroFrame commands is supported:

import ZeroFrame
print ZeroFrame.cmd("siteInfo")

Or to receive commands, like setSiteInfo:

import ZeroFrame
def func(site_info):
    print site_info
ZeroFrame.on("setSiteInfo", func)

@krixano @imachug
Are you yet open to post The truth about ZeroNet on DevCenter?

I don't think so -- that site is outdated.

@DaniellMesquita What's your ID on ZeroNet?

@DaniellMesquita What's your ID on ZeroNet?

@daniell (zeroid.bit)

Thank you!

@shortcutme @HelloZeroNet Finally, this PR is ready to be merged!

@krixano @imachug @HelloZeroNet Are here also some issues? Can it be merged?

The only issue I can think of is a sandbox escape possibility - but I promise I've checked it several times. I'd like others to do it as well, though.

Does this also need Python 3 version?

py3 branch of the plugin repo contains the code for Python 3.