nsupdate.info/nsupdate/context_processors.py

# -*- coding: utf-8 -*-
"""
context processors for injecting some settings into the template context and
also for keeping the IP addrs in the session fresh.
"""

import logging
logger = logging.getLogger(__name__)

import time

from .main.dnstools import put_ip_into_session
from .main.iptools import normalize_ip

from django.conf import settings

MAX_IP_AGE = 180  # seconds


def add_settings(request):
    context = {}
    context['WWW_HOST'] = settings.WWW_HOST
    context['WWW_IPV4_HOST'] = settings.WWW_IPV4_HOST
    context['WWW_IPV6_HOST'] = settings.WWW_IPV6_HOST
    context['SERVICE_CONTACT'] = settings.SERVICE_CONTACT  # about view
    context['WE_HAVE_TLS'] = settings.WE_HAVE_TLS
    context['COOKIE_SECURE'] = settings.SESSION_COOKIE_SECURE or settings.CSRF_COOKIE_SECURE
    return context


def update_ips(request):
    """
    Update the IPs in the session using REMOTE_ADDR.
    Check the session if there are stale IPs and if so, remove them.
    """
    # XXX is a context processor is the right place for this?
    s = request.session
    t_now = int(time.time())
    # update and keep fresh using info from the request we have anyway:
    ipaddr = normalize_ip(request.META['REMOTE_ADDR'])
    put_ip_into_session(s, ipaddr, max_age=MAX_IP_AGE / 2)
    # remove stale data to not show outdated IPs (e.g. after losing IPv6 connectivity):
    for key in ['ipv4', 'ipv6', ]:
        timestamp_key = "%s_timestamp" % key
        try:
            timestamp = s[timestamp_key]
        except KeyError:
            # should be always there, initialize it:
            put_ip_into_session(s, '', kind=key)
        else:
            try:
                stale = timestamp + MAX_IP_AGE < t_now
            except (ValueError, TypeError):
                # invalid timestamp in session
                put_ip_into_session(s, '', kind=key)
            else:
                if stale:
                    logger.debug("ts: %s now: %s - killing stale %s (was: %s)" % (timestamp, t_now, key, s[key]))
                    # kill the IP, it is not up-to-date any more
                    # note: it is used to fill form fields, so set it to empty string
                    put_ip_into_session(s, '', kind=key)
    if s.session_key is None:
        # if we have a new session (== not loaded from database / storage), we
        # MUST save it here to create its session_key as the base.html template
        # uses .session_key to build the URL for detectip:
        s.save()
    return {}
moved create_context to context_processor 2013-09-28 23:31:33 +02:00			`# -- coding: utf-8 --`
add/fix some module-level docstrings 2013-12-15 17:09:22 +01:00			`"""`
			`context processors for injecting some settings into the template context and`
			`also for keeping the IP addrs in the session fresh.`
			`"""`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00
stale ip handling: use logger, initialize timestamp in session if it is not there 2013-11-01 04:14:06 +01:00			`import logging`
			`logger = logging.getLogger(__name__)`

use json serializer for sessions, change timestamps' data type, more security docs json serializer can't serialize datetime (but integers), but is more safe than the pickle serializer. 2013-11-03 09:52:11 +01:00			`import time`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00
try to not write into session unless there is really a change or a refresh needed, reduce code duplication move code from HomeView to context processor 2013-11-14 02:11:44 +01:00			`from .main.dnstools import put_ip_into_session`
Handle IPv4-mapped IPv6 addresses Some reverse proxy configurations pass REMOTE_ADDR as a IPv4-mapped IPv6 address when listening on a IPv6 socket. This patch converts such a mapped address into a IPv4 address at all usages of REMOTE_ADDR. It handles both, the ::ffff:192.0.2.128 format as well as the deprecated ::192.0.2.128 format. 2014-09-29 06:16:52 +02:00			`from .main.iptools import normalize_ip`
try to not write into session unless there is really a change or a refresh needed, reduce code duplication move code from HomeView to context processor 2013-11-14 02:11:44 +01:00
moved create_context to context_processor 2013-09-28 23:31:33 +02:00			`from django.conf import settings`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00
			`MAX_IP_AGE = 180 # seconds`
moved create_context to context_processor 2013-09-28 23:31:33 +02:00
pep8 fixes 2013-09-29 01:21:44 +02:00
moved create_context to context_processor 2013-09-28 23:31:33 +02:00			`def add_settings(request):`
			`context = {}`
use the actual host names in the router config page 2013-10-07 20:02:00 +02:00			`context['WWW_HOST'] = settings.WWW_HOST`
moved create_context to context_processor 2013-09-28 23:31:33 +02:00			`context['WWW_IPV4_HOST'] = settings.WWW_IPV4_HOST`
			`context['WWW_IPV6_HOST'] = settings.WWW_IPV6_HOST`
remove help view, move project info to docs, make about view use settings help: there was only a link to the rtd documentation (now directly linked from a "Documentation" navbar entry) and some duplicate router configuration that was also shown (even with the correct values) when adding a host. the help page html was not valid due to the values inserted into the router configuration help. help/documentation policy: add static help to the docs, add dynamic help directly at the places (in the views) where needed 2013-11-03 00:02:02 +01:00			`context['SERVICE_CONTACT'] = settings.SERVICE_CONTACT # about view`
s/WE_HAVE_SSL/WE_HAVE_TLS/g SSL is the old/outdated name. Since 1999, it's called TLS. Changed the name of the configuration setting. 2014-05-30 01:18:50 +02:00			`context['WE_HAVE_TLS'] = settings.WE_HAVE_TLS`
warn if cookies are limited to the secure site, but user is using the insecure site 2013-11-03 10:55:49 +01:00			`context['COOKIE_SECURE'] = settings.SESSION_COOKIE_SECURE or settings.CSRF_COOKIE_SECURE`
moved create_context to context_processor 2013-09-28 23:31:33 +02:00			`return context`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00

try to not write into session unless there is really a change or a refresh needed, reduce code duplication move code from HomeView to context processor 2013-11-14 02:11:44 +01:00			`def update_ips(request):`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00			`"""`
try to not write into session unless there is really a change or a refresh needed, reduce code duplication move code from HomeView to context processor 2013-11-14 02:11:44 +01:00			`Update the IPs in the session using REMOTE_ADDR.`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00			`Check the session if there are stale IPs and if so, remove them.`
			`"""`
			`# XXX is a context processor is the right place for this?`
			`s = request.session`
use json serializer for sessions, change timestamps' data type, more security docs json serializer can't serialize datetime (but integers), but is more safe than the pickle serializer. 2013-11-03 09:52:11 +01:00			`t_now = int(time.time())`
try to not write into session unless there is really a change or a refresh needed, reduce code duplication move code from HomeView to context processor 2013-11-14 02:11:44 +01:00			`# update and keep fresh using info from the request we have anyway:`
Handle IPv4-mapped IPv6 addresses Some reverse proxy configurations pass REMOTE_ADDR as a IPv4-mapped IPv6 address when listening on a IPv6 socket. This patch converts such a mapped address into a IPv4 address at all usages of REMOTE_ADDR. It handles both, the ::ffff:192.0.2.128 format as well as the deprecated ::192.0.2.128 format. 2014-09-29 06:16:52 +02:00			`ipaddr = normalize_ip(request.META['REMOTE_ADDR'])`
try to not write into session unless there is really a change or a refresh needed, reduce code duplication move code from HomeView to context processor 2013-11-14 02:11:44 +01:00			`put_ip_into_session(s, ipaddr, max_age=MAX_IP_AGE / 2)`
			`# remove stale data to not show outdated IPs (e.g. after losing IPv6 connectivity):`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00			`for key in ['ipv4', 'ipv6', ]:`
			`timestamp_key = "%s_timestamp" % key`
			`try:`
			`timestamp = s[timestamp_key]`
			`except KeyError:`
stale ip handling: use logger, initialize timestamp in session if it is not there 2013-11-01 04:14:06 +01:00			`# should be always there, initialize it:`
try to not write into session unless there is really a change or a refresh needed, reduce code duplication move code from HomeView to context processor 2013-11-14 02:11:44 +01:00			`put_ip_into_session(s, '', kind=key)`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00			`else:`
			`try:`
use json serializer for sessions, change timestamps' data type, more security docs json serializer can't serialize datetime (but integers), but is more safe than the pickle serializer. 2013-11-03 09:52:11 +01:00			`stale = timestamp + MAX_IP_AGE < t_now`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00			`except (ValueError, TypeError):`
			`# invalid timestamp in session`
try to not write into session unless there is really a change or a refresh needed, reduce code duplication move code from HomeView to context processor 2013-11-14 02:11:44 +01:00			`put_ip_into_session(s, '', kind=key)`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00			`else:`
			`if stale:`
stale ip handling: use logger, initialize timestamp in session if it is not there 2013-11-01 04:14:06 +01:00			`logger.debug("ts: %s now: %s - killing stale %s (was: %s)" % (timestamp, t_now, key, s[key]))`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00			`# kill the IP, it is not up-to-date any more`
			`# note: it is used to fill form fields, so set it to empty string`
try to not write into session unless there is really a change or a refresh needed, reduce code duplication move code from HomeView to context processor 2013-11-14 02:11:44 +01:00			`put_ip_into_session(s, '', kind=key)`
catch case where .session_key was None, leading to an invalid /detectip/None url 2013-11-15 01:16:13 +01:00			`if s.session_key is None:`
			`# if we have a new session (== not loaded from database / storage), we`
			`# MUST save it here to create its session_key as the base.html template`
			`# uses .session_key to build the URL for detectip:`
			`s.save()`
remove stale IPs from session, so we don't show outdated information could happen if there once was a IPv6 connection, but now is not any more. it now kills infos older than 3 minutes from the session. it also shows the age of the infos now on the hosts overview view (but not on home view due to cosmetic reasons). optimization: only request the fake images for ipv4/v6 detection if we don't have a fresh IP already. added example settings for using detectip on (ip6-)localhost 2013-11-01 04:03:34 +01:00			`return {}`