限制Pyramid上POST请求的最大大小

并不是直接回答您的问题。据我所知，您可以创建一个WSGI应用程序，如果请求体小于配置设置，它将加载请求，并将其传递给下一个WSGI层。如果超过了设置，您可以停止读取并直接返回错误。
但说实话，我真的不明白在pyramid中这样做的意义。例如，如果您在nginx、apache或其他服务器后面运行pyramid，您总是可以通过前端服务器限制请求的大小。
除非您想直接使用Waitress或Paster运行pyramid而没有任何代理，否则您应该在前端服务器中处理请求体大小，这比Python更有效率。
编辑：
我进行了一些研究，这并不是一个完整的答案，但以下是我想到的一些方法。据我所知，您必须读取environ ['wsgi_input']。这是一个类似文件的对象，从nginx或apache等服务器接收数据块。
您真正需要做的是读取该文件，直到达到最大长度。如果达到了最大长度，请引发错误；如果没有，请继续请求。
你可能想看一下这个答案。

你可以用多种方式来实现，这里有几个例子。一个是使用基于WebOb的WSGI中间件（在安装Pyramid时自动安装），另一个是使用Pyramid的event mechanism。

"""
restricting execution based on request body size
"""
from pyramid.config import Configurator
from pyramid.view import view_config
from pyramid.events import NewRequest, subscriber
from webob import Response, Request
from webob.exc import HTTPBadRequest
import unittest


def restrict_body_middleware(app, max_size=0):
    """
    this is straight wsgi middleware and in this case only depends on
    webob. this can be used with any wsgi compliant web
    framework(which is pretty much all of them)
    """
    def m(environ, start_response):
        r = Request(environ)
        if r.content_length <= max_size:
            return r.get_response(app)(environ, start_response)
        else:
            err_body = """
            request content_length(%s) exceeds
            the configured maximum content_length allowed(%s)
            """ % (r.content_length, max_size)
            res = HTTPBadRequest(err_body)
            return res(environ, start_response)

    return m


def new_request_restrict(event):
    """
    pyramid event handler called whenever there is a new request
    recieved

    http://docs.pylonsproject.org/projects/pyramid/en/1.2-branch/narr/events.html
    """
    request = event.request
    if request.content_length >= 0:
        raise HTTPBadRequest("too big")


@view_config()
def index(request):
    return Response("HI THERE")


def make_application():
    """
    make appplication with one view
    """
    config = Configurator()
    config.scan()
    return config.make_wsgi_app()


def make_application_with_event():
    """
    make application with one view and one event subsriber subscribed
    to NewRequest
    """
    config = Configurator()
    config.add_subscriber(new_request_restrict, NewRequest)
    return config.make_wsgi_app()


def make_application_with_middleware():
    """
    make application with one view wrapped in wsgi middleware
    """
    return restrict_body_middleware(make_application())



class TestWSGIApplication(unittest.TestCase):
    def testNoRestriction(self):
        app = make_application()
        request = Request.blank("/", body="i am a request with a body")
        self.assert_(request.content_length > 0, "content_length should be > 0")
        response = request.get_response(app)
        self.assert_(response.status_int == 200, "expected status code 200 got %s" % response.status_int)

    def testRestrictedByMiddleware(self):
        app = make_application_with_middleware()
        request = Request.blank("/", body="i am a request with a body")
        self.assert_(request.content_length > 0, "content_length should be > 0")
        response = request.get_response(app)
        self.assert_(response.status_int == 400, "expected status code 400 got %s" % response.status_int)

    def testRestrictedByEvent(self):
        app = make_application_with_event()
        request = Request.blank("/", body="i am a request with a body")
        self.assert_(request.content_length > 0, "content_length should be > 0")
        response = request.get_response(app)
        self.assert_(response.status_int == 400, "expected status code 400 got %s" % response.status_int)



if __name__ == "__main__":
    unittest.main()