nsupdate.info/nsupdate/main/views.py

# -*- coding: utf-8 -*-
from django.views.generic import TemplateView, CreateView
from django.views.generic.edit import UpdateView, DeleteView
from django.http import HttpResponseRedirect
from django.contrib.auth.decorators import login_required
from django.contrib import messages
from django.contrib.auth.hashers import make_password
from django.utils.decorators import method_decorator
from django.core.urlresolvers import reverse
from django.core.exceptions import PermissionDenied
import dns.inet

from main.forms import HostForm
from main.models import Host


class HomeView(TemplateView):
    template_name = "main/home.html"

    def get_context_data(self, *args, **kwargs):
        context = super(HomeView, self).get_context_data(*args, **kwargs)
        context['nav_home'] = True

        s = self.request.session
        ipaddr = self.request.META['REMOTE_ADDR']
        af = dns.inet.af_for_address(ipaddr)
        key = 'ipv4' if af == dns.inet.AF_INET else 'ipv6'
        s[key] = ipaddr
        s.save()

        return context


class OverviewView(CreateView):
    model = Host
    template_name = "main/overview.html"
    form_class = HostForm

    @method_decorator(login_required)
    def dispatch(self, *args, **kwargs):
        return super(OverviewView, self).dispatch(*args, **kwargs)

    def get_success_url(self):
        return reverse('overview')

    def form_valid(self, form):
        self.object = form.save(commit=False)
        self.object.created_by = self.request.user
        # see comment in HostView about the quick hasher:
        self.object.update_secret = make_password(
            self.object.update_secret,
            hasher='sha1'
        )
        self.object.save()
        messages.add_message(self.request, messages.SUCCESS, 'Host added.')
        return HttpResponseRedirect(self.get_success_url())

    def get_context_data(self, *args, **kwargs):
        context = super(OverviewView, self).get_context_data(*args, **kwargs)
        context['nav_overview'] = True
        context['hosts'] = Host.objects.filter(created_by=self.request.user)
        return context


class HostView(UpdateView):
    model = Host
    template_name = "main/host.html"
    form_class = HostForm

    @method_decorator(login_required)
    def dispatch(self, *args, **kwargs):
        return super(HostView, self).dispatch(*args, **kwargs)

    def get_success_url(self):
        return reverse('overview')

    def form_valid(self, form):
        self.object = form.save(commit=False)
        self.object.created_by = self.request.user
        # note: we use a quick hasher for the update_secret as expensive
        # more modern hashes might put too much load on the servers. also
        # many update clients might use http without ssl, so it is not too
        # secure anyway.
        self.object.update_secret = make_password(
            self.object.update_secret,
            hasher='sha1'
        )
        self.object.save()
        messages.add_message(self.request, messages.SUCCESS, 'Host updated.')
        return HttpResponseRedirect(self.get_success_url())

    def get_object(self, *args, **kwargs):
        obj = super(HostView, self).get_object(*args, **kwargs)
        if obj.created_by != self.request.user:
            raise PermissionDenied()  # or Http404
        return obj

    def get_context_data(self, *args, **kwargs):
        context = super(HostView, self).get_context_data(*args, **kwargs)
        context['nav_overview'] = True
        context['hosts'] = Host.objects.filter(created_by=self.request.user)
        return context


class DeleteHostView(DeleteView):
    model = Host
    template_name = "main/delete_host.html"
    form_class = HostForm

    @method_decorator(login_required)
    def dispatch(self, *args, **kwargs):
        return super(DeleteHostView, self).dispatch(*args, **kwargs)

    def get_object(self, *args, **kwargs):
        obj = super(DeleteHostView, self).get_object(*args, **kwargs)
        if obj.created_by != self.request.user:
            raise PermissionDenied()  # or Http404
        return obj

    def get_success_url(self):
        return reverse('overview')

    def get_context_data(self, *args, **kwargs):
        context = super(DeleteHostView, self).get_context_data(*args, **kwargs)
        context['nav_overview'] = True
        context['hosts'] = Host.objects.filter(created_by=self.request.user)
        return context
improved nav 2013-09-28 12:06:26 +02:00			`# -- coding: utf-8 --`
overview as class based view 2013-09-28 22:46:53 +02:00			`from django.views.generic import TemplateView, CreateView`
changed the host edit into a classbased view. added host delete 2013-09-28 23:45:46 +02:00			`from django.views.generic.edit import UpdateView, DeleteView`
pep8 and so on 2013-09-29 16:03:56 +02:00			`from django.http import HttpResponseRedirect`
added @login_requeired for the overview form 2013-09-28 21:38:02 +02:00			`from django.contrib.auth.decorators import login_required`
messages 2013-09-28 23:03:34 +02:00			`from django.contrib import messages`
store update_secret as salted sha1 (use crypto code from django), fix bug: we also need to catch NoAnswer, not just NXDOMAIN. NoAnswer == there is a record, but not of the type (A or AAAA) we requested. NXDOMAIN == there is no record at all. 2013-09-29 00:34:26 +02:00			`from django.contrib.auth.hashers import make_password`
overview as class based view 2013-09-28 22:46:53 +02:00			`from django.utils.decorators import method_decorator`
			`from django.core.urlresolvers import reverse`
pep8 and so on 2013-09-29 16:03:56 +02:00			`from django.core.exceptions import PermissionDenied`
fixed different width in templates 2013-09-29 00:28:31 +02:00			`import dns.inet`
overview as class based view 2013-09-28 22:46:53 +02:00
better imports 2013-09-28 22:20:19 +02:00			`from main.forms import HostForm`
			`from main.models import Host`
improved nav 2013-09-28 12:06:26 +02:00
added host view. with broken edit. will be changed to classbased views 2013-09-28 22:17:24 +02:00
improved nav 2013-09-28 12:06:26 +02:00			`class HomeView(TemplateView):`
made home template and added admin link to nav 2013-09-29 14:08:22 +02:00			`template_name = "main/home.html"`
improved nav 2013-09-28 12:06:26 +02:00
			`def get_context_data(self, args, *kwargs):`
			`context = super(HomeView, self).get_context_data(args, *kwargs)`
			`context['nav_home'] = True`
removed proxy user, because solution was not working. Made id session based. please work now :'( 2013-09-29 14:33:24 +02:00
			`s = self.request.session`
fixed different width in templates 2013-09-29 00:28:31 +02:00			`ipaddr = self.request.META['REMOTE_ADDR']`
			`af = dns.inet.af_for_address(ipaddr)`
			`key = 'ipv4' if af == dns.inet.AF_INET else 'ipv6'`
removed proxy user, because solution was not working. Made id session based. please work now :'( 2013-09-29 14:33:24 +02:00			`s[key] = ipaddr`
forgot to save session 2013-09-29 15:17:41 +02:00			`s.save()`
pep8 fixes 2013-09-29 15:37:58 +02:00
improved nav 2013-09-28 12:06:26 +02:00			`return context`
added URL and simple view to get the user IP in a json format {'ip': '127.0.0.1'} 2013-09-28 13:04:21 +02:00
added host view. with broken edit. will be changed to classbased views 2013-09-28 22:17:24 +02:00
overview as class based view 2013-09-28 22:46:53 +02:00			`class OverviewView(CreateView):`
			`model = Host`
			`template_name = "main/overview.html"`
			`form_class = HostForm`
profile and password change. 2013-09-28 16:46:33 +02:00
overview as class based view 2013-09-28 22:46:53 +02:00			`@method_decorator(login_required)`
			`def dispatch(self, args, *kwargs):`
			`return super(OverviewView, self).dispatch(args, *kwargs)`

			`def get_success_url(self):`
			`return reverse('overview')`

			`def form_valid(self, form):`
			`self.object = form.save(commit=False)`
			`self.object.created_by = self.request.user`
remove resolved TODO, the update_secret is hashed using django's "sha1" hasher (salted sha1) 2013-09-29 15:12:24 +02:00			`# see comment in HostView about the quick hasher:`
pep8 and so on 2013-09-29 16:03:56 +02:00			`self.object.update_secret = make_password(`
			`self.object.update_secret,`
			`hasher='sha1'`
			`)`
overview as class based view 2013-09-28 22:46:53 +02:00			`self.object.save()`
messages 2013-09-28 23:03:34 +02:00			`messages.add_message(self.request, messages.SUCCESS, 'Host added.')`
overview as class based view 2013-09-28 22:46:53 +02:00			`return HttpResponseRedirect(self.get_success_url())`

			`def get_context_data(self, args, *kwargs):`
			`context = super(OverviewView, self).get_context_data(args, *kwargs)`
			`context['nav_overview'] = True`
			`context['hosts'] = Host.objects.filter(created_by=self.request.user)`
			`return context`
profile and password change. 2013-09-28 16:46:33 +02:00
pep8 fixes 2013-09-29 01:21:44 +02:00
changed the host edit into a classbased view. added host delete 2013-09-28 23:45:46 +02:00			`class HostView(UpdateView):`
			`model = Host`
			`template_name = "main/host.html"`
			`form_class = HostForm`
added user check if he is allowed to edit a host 2013-09-28 23:54:37 +02:00
changed the host edit into a classbased view. added host delete 2013-09-28 23:45:46 +02:00			`@method_decorator(login_required)`
			`def dispatch(self, args, *kwargs):`
			`return super(HostView, self).dispatch(args, *kwargs)`
pep8 fixes 2013-09-29 01:21:44 +02:00
changed the host edit into a classbased view. added host delete 2013-09-28 23:45:46 +02:00			`def get_success_url(self):`
			`return reverse('overview')`

			`def form_valid(self, form):`
			`self.object = form.save(commit=False)`
			`self.object.created_by = self.request.user`
remove resolved TODO, the update_secret is hashed using django's "sha1" hasher (salted sha1) 2013-09-29 15:12:24 +02:00			`# note: we use a quick hasher for the update_secret as expensive`
			`# more modern hashes might put too much load on the servers. also`
			`# many update clients might use http without ssl, so it is not too`
			`# secure anyway.`
pep8 and so on 2013-09-29 16:03:56 +02:00			`self.object.update_secret = make_password(`
			`self.object.update_secret,`
			`hasher='sha1'`
			`)`
changed the host edit into a classbased view. added host delete 2013-09-28 23:45:46 +02:00			`self.object.save()`
			`messages.add_message(self.request, messages.SUCCESS, 'Host updated.')`
			`return HttpResponseRedirect(self.get_success_url())`

added user check if he is allowed to edit a host 2013-09-28 23:54:37 +02:00			`def get_object(self, args, *kwargs):`
			`obj = super(HostView, self).get_object(args, *kwargs)`
			`if obj.created_by != self.request.user:`
pep8 fixes 2013-09-29 01:21:44 +02:00			`raise PermissionDenied() # or Http404`
added user check if he is allowed to edit a host 2013-09-28 23:54:37 +02:00			`return obj`

changed the host edit into a classbased view. added host delete 2013-09-28 23:45:46 +02:00			`def get_context_data(self, args, *kwargs):`
			`context = super(HostView, self).get_context_data(args, *kwargs)`
			`context['nav_overview'] = True`
			`context['hosts'] = Host.objects.filter(created_by=self.request.user)`
			`return context`

pep8 fixes 2013-09-29 01:21:44 +02:00
changed the host edit into a classbased view. added host delete 2013-09-28 23:45:46 +02:00			`class DeleteHostView(DeleteView):`
			`model = Host`
			`template_name = "main/delete_host.html"`
			`form_class = HostForm`
added user check if he is allowed to edit a host 2013-09-28 23:54:37 +02:00
changed the host edit into a classbased view. added host delete 2013-09-28 23:45:46 +02:00			`@method_decorator(login_required)`
			`def dispatch(self, args, *kwargs):`
			`return super(DeleteHostView, self).dispatch(args, *kwargs)`
pep8 fixes 2013-09-29 01:21:44 +02:00
added user check if he is allowed to edit a host 2013-09-28 23:54:37 +02:00			`def get_object(self, args, *kwargs):`
			`obj = super(DeleteHostView, self).get_object(args, *kwargs)`
			`if obj.created_by != self.request.user:`
pep8 fixes 2013-09-29 01:21:44 +02:00			`raise PermissionDenied() # or Http404`
added user check if he is allowed to edit a host 2013-09-28 23:54:37 +02:00			`return obj`

changed the host edit into a classbased view. added host delete 2013-09-28 23:45:46 +02:00			`def get_success_url(self):`
			`return reverse('overview')`

			`def get_context_data(self, args, *kwargs):`
			`context = super(DeleteHostView, self).get_context_data(args, *kwargs)`
			`context['nav_overview'] = True`
			`context['hosts'] = Host.objects.filter(created_by=self.request.user)`
			`return context`