# -*- coding: utf-8 -*- from datetime import timedelta from django.db.models import Q from django.views.generic import View, TemplateView, CreateView from django.views.generic.edit import UpdateView, DeleteView from django.http import HttpResponse, HttpResponseRedirect from django.contrib.auth.decorators import login_required from django.contrib.auth.models import User from django.contrib import messages from django.utils.decorators import method_decorator from django.core.urlresolvers import reverse from django.core.exceptions import PermissionDenied from django.utils.timezone import now import dnstools from .forms import CreateHostForm, EditHostForm, CreateDomainForm, EditDomainForm from .models import Host, Domain class GenerateSecretView(UpdateView): model = Host template_name = "main/generate_secret.html" @method_decorator(login_required) def dispatch(self, *args, **kwargs): return super(GenerateSecretView, self).dispatch(*args, **kwargs) def get_object(self, *args, **kwargs): obj = super(GenerateSecretView, self).get_object(*args, **kwargs) if obj.created_by != self.request.user: raise PermissionDenied() # or Http404 return obj def get_context_data(self, *args, **kwargs): context = super(GenerateSecretView, self).get_context_data(*args, **kwargs) context['nav_overview'] = True # generate secret, store it hashed and return the plain secret for the context context['update_secret'] = self.object.generate_secret() context['hosts'] = Host.objects.filter(created_by=self.request.user) messages.add_message(self.request, messages.SUCCESS, 'Host secret created.') return context class GenerateNSSecretView(UpdateView): model = Domain template_name = "main/generate_ns_secret.html" @method_decorator(login_required) def dispatch(self, *args, **kwargs): return super(GenerateNSSecretView, self).dispatch(*args, **kwargs) def get_object(self, *args, **kwargs): obj = super(GenerateNSSecretView, self).get_object(*args, **kwargs) if obj.created_by != self.request.user: raise PermissionDenied() # or Http404 return obj def get_context_data(self, *args, **kwargs): context = super(GenerateNSSecretView, self).get_context_data(*args, **kwargs) context['nav_domain_overview'] = True context['shared_secret'] = self.object.generate_ns_secret() context['domains'] = Domain.objects.filter(created_by=self.request.user) messages.add_message(self.request, messages.SUCCESS, 'Nameserver shared secret created.') return context class AboutView(TemplateView): template_name = "main/about.html" def get_context_data(self, *args, **kwargs): context = super(AboutView, self).get_context_data(*args, **kwargs) context['nav_about'] = True return context class HomeView(TemplateView): template_name = "main/home.html" def get_context_data(self, *args, **kwargs): context = super(HomeView, self).get_context_data(*args, **kwargs) context['nav_home'] = True ipaddr = self.request.META['REMOTE_ADDR'] key = dnstools.check_ip(ipaddr) s = self.request.session s[key] = ipaddr s.save() return context class StatusView(TemplateView): template_name = "main/status.html" def get_context_data(self, *args, **kwargs): context = super( StatusView, self).get_context_data(*args, **kwargs) context['nav_status'] = True context['domains_total'] = Domain.objects.count() context['domains_unavailable'] = Domain.objects.filter(available=False).count() context['domains_public'] = Domain.objects.filter(public=True).count() context['hosts_total'] = Host.objects.count() t_now = now() before_2d = t_now - timedelta(hours=48) before_2w = t_now - timedelta(days=14) before_2m = t_now - timedelta(days=61) before_2y = t_now - timedelta(days=730) context['hosts_ipv4_2d'] = Host.objects.filter(last_update_ipv4__gt=before_2d).count() context['hosts_ipv6_2d'] = Host.objects.filter(last_update_ipv6__gt=before_2d).count() context['hosts_ipv4_ssl_2d'] = Host.objects.filter(last_update_ipv4__gt=before_2d, ssl_update_ipv4=True).count() context['hosts_ipv6_ssl_2d'] = Host.objects.filter(last_update_ipv6__gt=before_2d, ssl_update_ipv6=True).count() context['hosts_ipv4_2w'] = Host.objects.filter(last_update_ipv4__gt=before_2w).count() context['hosts_ipv6_2w'] = Host.objects.filter(last_update_ipv6__gt=before_2w).count() context['hosts_ipv4_ssl_2w'] = Host.objects.filter(last_update_ipv4__gt=before_2w, ssl_update_ipv4=True).count() context['hosts_ipv6_ssl_2w'] = Host.objects.filter(last_update_ipv6__gt=before_2w, ssl_update_ipv6=True).count() context['hosts_ipv4_2m'] = Host.objects.filter(last_update_ipv4__gt=before_2m).count() context['hosts_ipv6_2m'] = Host.objects.filter(last_update_ipv6__gt=before_2m).count() context['hosts_ipv4_ssl_2m'] = Host.objects.filter(last_update_ipv4__gt=before_2m, ssl_update_ipv4=True).count() context['hosts_ipv6_ssl_2m'] = Host.objects.filter(last_update_ipv6__gt=before_2m, ssl_update_ipv6=True).count() context['hosts_ipv4_2y'] = Host.objects.filter(last_update_ipv4__gt=before_2y).count() context['hosts_ipv6_2y'] = Host.objects.filter(last_update_ipv6__gt=before_2y).count() context['hosts_ipv4_ssl_2y'] = Host.objects.filter(last_update_ipv4__gt=before_2y, ssl_update_ipv4=True).count() context['hosts_ipv6_ssl_2y'] = Host.objects.filter(last_update_ipv6__gt=before_2y, ssl_update_ipv6=True).count() context['users_total'] = User.objects.count() context['users_active'] = User.objects.filter(is_active=True).count() context['users_created_2d'] = User.objects.filter(date_joined__gt=before_2d).count() context['users_loggedin_2d'] = User.objects.filter(last_login__gt=before_2d).count() context['users_created_2w'] = User.objects.filter(date_joined__gt=before_2w).count() context['users_loggedin_2w'] = User.objects.filter(last_login__gt=before_2w).count() context['users_created_2m'] = User.objects.filter(date_joined__gt=before_2m).count() context['users_loggedin_2m'] = User.objects.filter(last_login__gt=before_2m).count() context['users_created_2y'] = User.objects.filter(date_joined__gt=before_2y).count() context['users_loggedin_2y'] = User.objects.filter(last_login__gt=before_2y).count() return context class OverviewView(CreateView): model = Host template_name = "main/overview.html" form_class = CreateHostForm @method_decorator(login_required) def dispatch(self, *args, **kwargs): return super(OverviewView, self).dispatch(*args, **kwargs) def get_success_url(self): return reverse('generate_secret_view', args=(self.object.pk,)) def get_form(self, form_class): form = super(OverviewView, self).get_form(form_class) form.fields['domain'].queryset = Domain.objects.filter( Q(created_by=self.request.user) | Q(public=True)) return form def form_valid(self, form): self.object = form.save(commit=False) try: dnstools.add(self.object.get_fqdn(), self.request.META['REMOTE_ADDR'], origin=self.object.domain.domain) except dnstools.Timeout: success, level, msg = False, messages.ERROR, 'Timeout - communicating to name server failed.' except dnstools.NameServerNotAvailable: success, level, msg = False, messages.ERROR, 'Name server unavailable.' else: self.object.created_by = self.request.user self.object.save() success, level, msg = True, messages.SUCCESS, 'Host added.' messages.add_message(self.request, level, msg) url = self.get_success_url() if success else reverse('overview') return HttpResponseRedirect(url) def get_context_data(self, *args, **kwargs): context = super(OverviewView, self).get_context_data(*args, **kwargs) context['nav_overview'] = True context['hosts'] = Host.objects.filter(created_by=self.request.user) return context class HostView(UpdateView): model = Host template_name = "main/host.html" form_class = EditHostForm @method_decorator(login_required) def dispatch(self, *args, **kwargs): return super(HostView, self).dispatch(*args, **kwargs) def get_success_url(self): return reverse('overview') def form_valid(self, form): self.object = form.save(commit=False) self.object.save() messages.add_message(self.request, messages.SUCCESS, 'Host updated.') return HttpResponseRedirect(self.get_success_url()) def get_object(self, *args, **kwargs): obj = super(HostView, self).get_object(*args, **kwargs) if obj.created_by != self.request.user: raise PermissionDenied() # or Http404 return obj def get_context_data(self, *args, **kwargs): context = super(HostView, self).get_context_data(*args, **kwargs) context['nav_overview'] = True context['remote_addr'] = self.request.META['REMOTE_ADDR'] context['hosts'] = Host.objects.filter(created_by=self.request.user) return context class DeleteHostView(DeleteView): model = Host template_name = "main/delete_object.html" @method_decorator(login_required) def dispatch(self, *args, **kwargs): return super(DeleteHostView, self).dispatch(*args, **kwargs) def get_object(self, *args, **kwargs): obj = super(DeleteHostView, self).get_object(*args, **kwargs) if obj.created_by != self.request.user: raise PermissionDenied() # or Http404 return obj def get_success_url(self): return reverse('overview') def get_context_data(self, *args, **kwargs): context = super(DeleteHostView, self).get_context_data(*args, **kwargs) context['nav_overview'] = True context['hosts'] = Host.objects.filter(created_by=self.request.user) return context class DomainOverwievView(CreateView): model = Domain template_name = "main/domain_overview.html" form_class = CreateDomainForm @method_decorator(login_required) def dispatch(self, *args, **kwargs): return super(DomainOverwievView, self).dispatch(*args, **kwargs) def get_success_url(self): return reverse('domain_overview') def form_valid(self, form): self.object = form.save(commit=False) self.object.created_by = self.request.user self.object.save() messages.add_message(self.request, messages.SUCCESS, 'Domain added.') return HttpResponseRedirect(self.get_success_url()) def get_context_data(self, *args, **kwargs): context = super( DomainOverwievView, self).get_context_data(*args, **kwargs) context['nav_domain_overview'] = True context['your_domains'] = Domain.objects.filter( created_by=self.request.user) context['public_domains'] = Domain.objects.filter( public=True).exclude(created_by=self.request.user) return context class DomainView(UpdateView): model = Domain template_name = "main/domain.html" form_class = EditDomainForm @method_decorator(login_required) def dispatch(self, *args, **kwargs): return super(DomainView, self).dispatch(*args, **kwargs) def get_success_url(self): return reverse('domain_overview') def form_valid(self, form): self.object = form.save(commit=False) self.object.save() messages.add_message(self.request, messages.SUCCESS, 'Domain updated.') return HttpResponseRedirect(self.get_success_url()) def get_object(self, *args, **kwargs): obj = super(DomainView, self).get_object(*args, **kwargs) if obj.created_by != self.request.user: raise PermissionDenied() # or Http404 return obj def get_context_data(self, *args, **kwargs): context = super(DomainView, self).get_context_data(*args, **kwargs) context['nav_domain_overview'] = True context['domains'] = Domain.objects.filter(created_by=self.request.user) return context class DeleteDomainView(DeleteView): model = Domain template_name = "main/delete_object.html" @method_decorator(login_required) def dispatch(self, *args, **kwargs): return super(DeleteDomainView, self).dispatch(*args, **kwargs) def get_object(self, *args, **kwargs): obj = super(DeleteDomainView, self).get_object(*args, **kwargs) if obj.created_by != self.request.user: raise PermissionDenied() # or Http404 return obj def get_success_url(self): return reverse('domain_overview') def get_context_data(self, *args, **kwargs): context = super(DeleteDomainView, self).get_context_data(*args, **kwargs) context['nav_domain_overview'] = True context['domains'] = Domain.objects.filter(created_by=self.request.user) return context class RobotsTxtView(View): """ Dynamically serve robots.txt content. If you like, you can optimize this by statically serving this by your web server. :param request: django request object :return: HttpResponse object """ def get(self, request): content = """\ User-agent: * Crawl-delay: 10 Disallow: /account/ Disallow: /accounts/ Disallow: /login/ Disallow: /admin/ Disallow: /myip/ Disallow: /nic/update/ Disallow: /overview/ Disallow: /domain_overview/ Disallow: /host/ Disallow: /domain/ Disallow: /status/ Disallow: /ajax_get_ips/ """ return HttpResponse(content, content_type="text/plain") def csrf_failure_view(request, reason): """ Django's CSRF middleware's builtin view doesn't tell the user that he needs to have cookies enabled. :param request: django request object :return: HttpResponse object """ if reason == "CSRF cookie not set.": content = """\ This site needs cookies (for CSRF protection, for keeping your session after login). Please enable cookies in your browser (or otherwise make sure the CSRF cookie can be set). """ % dict(reason=reason) status = 200 else: content = """\ %(reason)s CSRF verification failure. Either you are trying to access this site in 'unusual' ways (then please stop doing that), or you found an issue in the code (then please file an issue for this and tell how you got here). """ % dict(reason=reason) status = 403 return HttpResponse(content, status=status, content_type="text/plain")