c8d6c6605b
there was only a link to the rtd documentation (now directly linked from a "Documentation" navbar entry) and some duplicate router configuration that was also shown (even with the correct values) when adding a host. the help page html was not valid due to the values inserted into the router configuration help. help/documentation policy: add static help to the docs, add dynamic help directly at the places (in the views) where needed
330 lines
11 KiB
Python
330 lines
11 KiB
Python
# -*- coding: utf-8 -*-
|
|
|
|
from django.db.models import Q
|
|
from django.views.generic import TemplateView, CreateView
|
|
from django.views.generic.edit import UpdateView, DeleteView
|
|
from django.http import HttpResponse, HttpResponseRedirect
|
|
from django.contrib.auth.decorators import login_required
|
|
from django.contrib import messages
|
|
from django.utils.decorators import method_decorator
|
|
from django.core.urlresolvers import reverse
|
|
from django.core.exceptions import PermissionDenied
|
|
|
|
import dnstools
|
|
|
|
from .forms import CreateHostForm, EditHostForm, CreateDomainForm, EditDomainForm
|
|
from .models import Host, Domain
|
|
|
|
|
|
class GenerateSecretView(UpdateView):
|
|
model = Host
|
|
template_name = "main/generate_secret.html"
|
|
|
|
@method_decorator(login_required)
|
|
def dispatch(self, *args, **kwargs):
|
|
return super(GenerateSecretView, self).dispatch(*args, **kwargs)
|
|
|
|
def get_object(self, *args, **kwargs):
|
|
obj = super(GenerateSecretView, self).get_object(*args, **kwargs)
|
|
if obj.created_by != self.request.user:
|
|
raise PermissionDenied() # or Http404
|
|
return obj
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(GenerateSecretView, self).get_context_data(*args, **kwargs)
|
|
context['nav_overview'] = True
|
|
# generate secret, store it hashed and return the plain secret for the context
|
|
context['update_secret'] = self.object.generate_secret()
|
|
context['hosts'] = Host.objects.filter(created_by=self.request.user)
|
|
messages.add_message(self.request, messages.SUCCESS, 'Host secret created.')
|
|
return context
|
|
|
|
|
|
class GenerateNSSecretView(UpdateView):
|
|
model = Domain
|
|
template_name = "main/generate_ns_secret.html"
|
|
|
|
@method_decorator(login_required)
|
|
def dispatch(self, *args, **kwargs):
|
|
return super(GenerateNSSecretView, self).dispatch(*args, **kwargs)
|
|
|
|
def get_object(self, *args, **kwargs):
|
|
obj = super(GenerateNSSecretView, self).get_object(*args, **kwargs)
|
|
if obj.created_by != self.request.user:
|
|
raise PermissionDenied() # or Http404
|
|
return obj
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(GenerateNSSecretView, self).get_context_data(*args, **kwargs)
|
|
context['nav_domain_overview'] = True
|
|
context['shared_secret'] = self.object.generate_ns_secret()
|
|
context['domains'] = Domain.objects.filter(created_by=self.request.user)
|
|
messages.add_message(self.request, messages.SUCCESS, 'Nameserver shared secret created.')
|
|
return context
|
|
|
|
|
|
class AboutView(TemplateView):
|
|
template_name = "main/about.html"
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(AboutView, self).get_context_data(*args, **kwargs)
|
|
context['nav_about'] = True
|
|
return context
|
|
|
|
|
|
class HomeView(TemplateView):
|
|
template_name = "main/home.html"
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(HomeView, self).get_context_data(*args, **kwargs)
|
|
context['nav_home'] = True
|
|
ipaddr = self.request.META['REMOTE_ADDR']
|
|
key = dnstools.check_ip(ipaddr)
|
|
s = self.request.session
|
|
s[key] = ipaddr
|
|
s.save()
|
|
return context
|
|
|
|
|
|
class ScreenshotsView(TemplateView):
|
|
template_name = "main/screenshots.html"
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(ScreenshotsView, self).get_context_data(*args, **kwargs)
|
|
context['nav_about'] = True
|
|
return context
|
|
|
|
|
|
class OverviewView(CreateView):
|
|
model = Host
|
|
template_name = "main/overview.html"
|
|
form_class = CreateHostForm
|
|
|
|
@method_decorator(login_required)
|
|
def dispatch(self, *args, **kwargs):
|
|
return super(OverviewView, self).dispatch(*args, **kwargs)
|
|
|
|
def get_success_url(self):
|
|
return reverse('generate_secret_view', args=(self.object.pk,))
|
|
|
|
def get_form(self, form_class):
|
|
form = super(OverviewView, self).get_form(form_class)
|
|
form.fields['domain'].queryset = Domain.objects.filter(
|
|
Q(created_by=self.request.user) | Q(public=True))
|
|
return form
|
|
|
|
def form_valid(self, form):
|
|
self.object = form.save(commit=False)
|
|
try:
|
|
dnstools.add(self.object.get_fqdn(), self.request.META['REMOTE_ADDR'], origin=self.object.domain.domain)
|
|
except dnstools.Timeout:
|
|
# XXX should be ERROR, but ERROR is white on web ui!?
|
|
success, level, msg = False, messages.WARNING, 'Timeout - communicating to name server failed.'
|
|
except dnstools.NameServerNotAvailable:
|
|
# XXX should be ERROR, but ERROR is white on web ui!?
|
|
success, level, msg = False, messages.WARNING, 'Name server unavailable.'
|
|
else:
|
|
self.object.created_by = self.request.user
|
|
self.object.save()
|
|
success, level, msg = True, messages.SUCCESS, 'Host added.'
|
|
messages.add_message(self.request, level, msg)
|
|
url = self.get_success_url() if success else reverse('overview')
|
|
return HttpResponseRedirect(url)
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(OverviewView, self).get_context_data(*args, **kwargs)
|
|
context['nav_overview'] = True
|
|
context['hosts'] = Host.objects.filter(created_by=self.request.user)
|
|
return context
|
|
|
|
|
|
class HostView(UpdateView):
|
|
model = Host
|
|
template_name = "main/host.html"
|
|
form_class = EditHostForm
|
|
|
|
@method_decorator(login_required)
|
|
def dispatch(self, *args, **kwargs):
|
|
return super(HostView, self).dispatch(*args, **kwargs)
|
|
|
|
def get_success_url(self):
|
|
return reverse('overview')
|
|
|
|
def form_valid(self, form):
|
|
self.object = form.save(commit=False)
|
|
self.object.save()
|
|
messages.add_message(self.request, messages.SUCCESS, 'Host updated.')
|
|
return HttpResponseRedirect(self.get_success_url())
|
|
|
|
def get_object(self, *args, **kwargs):
|
|
obj = super(HostView, self).get_object(*args, **kwargs)
|
|
if obj.created_by != self.request.user:
|
|
raise PermissionDenied() # or Http404
|
|
return obj
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(HostView, self).get_context_data(*args, **kwargs)
|
|
context['nav_overview'] = True
|
|
context['remote_addr'] = self.request.META['REMOTE_ADDR']
|
|
context['hosts'] = Host.objects.filter(created_by=self.request.user)
|
|
return context
|
|
|
|
|
|
class DeleteHostView(DeleteView):
|
|
model = Host
|
|
template_name = "main/delete_object.html"
|
|
|
|
@method_decorator(login_required)
|
|
def dispatch(self, *args, **kwargs):
|
|
return super(DeleteHostView, self).dispatch(*args, **kwargs)
|
|
|
|
def get_object(self, *args, **kwargs):
|
|
obj = super(DeleteHostView, self).get_object(*args, **kwargs)
|
|
if obj.created_by != self.request.user:
|
|
raise PermissionDenied() # or Http404
|
|
return obj
|
|
|
|
def get_success_url(self):
|
|
return reverse('overview')
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(DeleteHostView, self).get_context_data(*args, **kwargs)
|
|
context['nav_overview'] = True
|
|
context['hosts'] = Host.objects.filter(created_by=self.request.user)
|
|
return context
|
|
|
|
|
|
class DomainOverwievView(CreateView):
|
|
model = Domain
|
|
template_name = "main/domain_overview.html"
|
|
form_class = CreateDomainForm
|
|
|
|
@method_decorator(login_required)
|
|
def dispatch(self, *args, **kwargs):
|
|
return super(DomainOverwievView, self).dispatch(*args, **kwargs)
|
|
|
|
def get_success_url(self):
|
|
return reverse('domain_overview')
|
|
|
|
def form_valid(self, form):
|
|
self.object = form.save(commit=False)
|
|
self.object.created_by = self.request.user
|
|
self.object.save()
|
|
messages.add_message(self.request, messages.SUCCESS, 'Domain added.')
|
|
return HttpResponseRedirect(self.get_success_url())
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(
|
|
DomainOverwievView, self).get_context_data(*args, **kwargs)
|
|
context['nav_domain_overview'] = True
|
|
context['domains'] = Domain.objects.filter(
|
|
created_by=self.request.user)
|
|
return context
|
|
|
|
|
|
class DomainView(UpdateView):
|
|
model = Domain
|
|
template_name = "main/domain.html"
|
|
form_class = EditDomainForm
|
|
|
|
@method_decorator(login_required)
|
|
def dispatch(self, *args, **kwargs):
|
|
return super(DomainView, self).dispatch(*args, **kwargs)
|
|
|
|
def get_success_url(self):
|
|
return reverse('domain_overview')
|
|
|
|
def form_valid(self, form):
|
|
self.object = form.save(commit=False)
|
|
self.object.save()
|
|
messages.add_message(self.request, messages.SUCCESS, 'Domain updated.')
|
|
return HttpResponseRedirect(self.get_success_url())
|
|
|
|
def get_object(self, *args, **kwargs):
|
|
obj = super(DomainView, self).get_object(*args, **kwargs)
|
|
if obj.created_by != self.request.user:
|
|
raise PermissionDenied() # or Http404
|
|
return obj
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(DomainView, self).get_context_data(*args, **kwargs)
|
|
context['nav_domain_overview'] = True
|
|
context['domains'] = Domain.objects.filter(created_by=self.request.user)
|
|
return context
|
|
|
|
|
|
class DeleteDomainView(DeleteView):
|
|
model = Domain
|
|
template_name = "main/delete_object.html"
|
|
|
|
@method_decorator(login_required)
|
|
def dispatch(self, *args, **kwargs):
|
|
return super(DeleteDomainView, self).dispatch(*args, **kwargs)
|
|
|
|
def get_object(self, *args, **kwargs):
|
|
obj = super(DeleteDomainView, self).get_object(*args, **kwargs)
|
|
if obj.created_by != self.request.user:
|
|
raise PermissionDenied() # or Http404
|
|
return obj
|
|
|
|
def get_success_url(self):
|
|
return reverse('domain_overview')
|
|
|
|
def get_context_data(self, *args, **kwargs):
|
|
context = super(DeleteDomainView, self).get_context_data(*args, **kwargs)
|
|
context['nav_domain_overview'] = True
|
|
context['domains'] = Domain.objects.filter(created_by=self.request.user)
|
|
return context
|
|
|
|
|
|
def RobotsTxtView(request):
|
|
"""
|
|
Dynamically serve robots.txt content.
|
|
If you like, you can optimize this by statically serving this by your web server.
|
|
|
|
:param request: django request object
|
|
:return: HttpResponse object
|
|
"""
|
|
content = """\
|
|
User-agent: *
|
|
Crawl-delay: 10
|
|
Disallow: /account/
|
|
Disallow: /accounts/
|
|
Disallow: /login/
|
|
Disallow: /admin/
|
|
Disallow: /myip/
|
|
Disallow: /nic/update/
|
|
Disallow: /overview/
|
|
Disallow: /domain_overview/
|
|
Disallow: /host/
|
|
Disallow: /domain/
|
|
"""
|
|
return HttpResponse(content, content_type="text/plain")
|
|
|
|
|
|
def CsrfFailureView(request, reason):
|
|
"""
|
|
Django's CSRF middleware's builtin view doesn't tell the user that he needs to have cookies enabled.
|
|
|
|
:param request: django request object
|
|
:return: HttpResponse object
|
|
"""
|
|
if reason == "CSRF cookie not set.":
|
|
content = """\
|
|
This site needs cookies (for CSRF protection, for keeping your session after login).
|
|
|
|
Please enable cookies in your browser (or otherwise make sure the CSRF cookie can be set).
|
|
""" % dict(reason=reason)
|
|
status = 200
|
|
else:
|
|
content = """\
|
|
%(reason)s
|
|
|
|
CSRF verification failure.
|
|
|
|
Either you are trying to access this site in 'unusual' ways (then please stop doing that), or
|
|
you found an issue in the code (then please file an issue for this and tell how you got here).
|
|
""" % dict(reason=reason)
|
|
status = 403
|
|
return HttpResponse(content, status=status, content_type="text/plain")
|