code.grnet.gr Git - flowspy/blob - flowspec/views.py

   1 # Create your views here.
   2 import urllib2
   3 import re
   4 import socket
   5 import json
   6 from django import forms
   7 from django.views.decorators.csrf import csrf_exempt
   8 from django.core import urlresolvers
   9 from django.core import serializers
  10 from django.contrib.auth.decorators import login_required
  11 from django.http import HttpResponseRedirect, HttpResponseForbidden, HttpResponse
  12 from django.shortcuts import get_object_or_404, render_to_response
  13 from django.core.context_processors import request
  14 from django.template.context import RequestContext
  15 from django.template.loader import get_template
  16 from django.utils import simplejson
  17 from django.core.urlresolvers import reverse
  18 from django.contrib import messages
  19 from flowspy.accounts.models import *
  20
  21 from django.contrib.auth import authenticate, login
  22
  23 from django.forms.models import model_to_dict
  24
  25 from flowspy.flowspec.forms import *
  26 from flowspy.flowspec.models import *
  27
  28 from copy import deepcopy
  29 from flowspy.utils.decorators import shib_required
  30 import datetime
  31
  32 from django.views.decorators.cache import never_cache
  33 from django.conf import settings
  34
  35
  36 def days_offset(): return datetime.date.today() + datetime.timedelta(days = settings.EXPIRATION_DAYS_OFFSET)
  37
  38 @login_required
  39 def user_routes(request):
  40     user_routes = Route.objects.filter(applier=request.user)
  41     return render_to_response('user_routes.html', {'routes': user_routes},
  42                               context_instance=RequestContext(request))
  43
  44 @login_required
  45 @never_cache
  46 def group_routes(request):
  47     group_routes = []
  48     peer = request.user.get_profile().peer
  49     if peer:
  50        peer_members = UserProfile.objects.filter(peer=peer)
  51        users = [prof.user for prof in peer_members]
  52        group_routes = Route.objects.filter(applier__in=users)
  53     return render_to_response('user_routes.html', {'routes': group_routes},
  54                               context_instance=RequestContext(request))
  55
  56
  57 @login_required
  58 @never_cache
  59 def add_route(request):
  60     applier = request.user.pk
  61     applier_peer_networks = request.user.get_profile().peer.networks.all()
  62     if not applier_peer_networks:
  63          messages.add_message(request, messages.WARNING,
  64                              "Insufficient rights on administrative networks. Cannot add route. Contact your administrator")
  65          return HttpResponseRedirect(reverse("group-routes"))
  66     if request.method == "GET":
  67         form = RouteForm()
  68         return render_to_response('apply.html', {'form': form, 'applier': applier},
  69                                   context_instance=RequestContext(request))
  70
  71     else:
  72         form = RouteForm(request.POST)
  73         if form.is_valid():
  74             route=form.save(commit=False)
  75             route.applier = request.user
  76             route.expires = days_offset()
  77             route.status = "PENDING"
  78             route.save()
  79             form.save_m2m()
  80             route.commit_add()
  81             return HttpResponseRedirect(reverse("group-routes"))
  82         else:
  83             return render_to_response('apply.html', {'form': form, 'applier':applier},
  84                                       context_instance=RequestContext(request))
  85
  86 @login_required
  87 @never_cache
  88 def add_then(request):
  89     applier = request.user.pk
  90     if request.method == "GET":
  91         form = RouteForm()
  92         return render_to_response('apply.html', {'form': form, 'applier': applier},
  93                                   context_instance=RequestContext(request))
  94
  95     else:
  96         form = RouteForm(request.POST)
  97         if form.is_valid():
  98             route=form.save(commit=False)
  99             route.applier = request.user
 100             route.expires = days_offset()
 101             route.save()
 102             form.save_m2m()
 103             route.commit_add()
 104             return HttpResponseRedirect(reverse("group-routes"))
 105         else:
 106             return render_to_response('apply.html', {'form': form, 'applier':applier},
 107                                       context_instance=RequestContext(request))
 108
 109 @login_required
 110 @never_cache
 111 def edit_route(request, route_slug):
 112     applier = request.user.pk
 113     applier_peer = request.user.get_profile().peer
 114     route_edit = get_object_or_404(Route, name=route_slug)
 115     route_edit_applier_peer = route_edit.applier.get_profile().peer
 116     if applier_peer != route_edit_applier_peer:
 117         messages.add_message(request, messages.WARNING,
 118                              "Insufficient rights to edit route %s" %(route_slug))
 119         return HttpResponseRedirect(reverse("group-routes"))
 120     route_original = deepcopy(route_edit)
 121     if request.POST:
 122         form = RouteForm(request.POST, instance = route_edit)
 123         if form.is_valid():
 124             route=form.save(commit=False)
 125             route.name = route_original.name
 126             route.applier = request.user
 127             route.expires = route_original.expires
 128             route.status = "PENDING"
 129             route.save()
 130             form.save_m2m()
 131             route.commit_edit()
 132             return HttpResponseRedirect(reverse("group-routes"))
 133         else:
 134             return render_to_response('apply.html', {'form': form, 'edit':True, 'applier': applier},
 135                                       context_instance=RequestContext(request))
 136     else:
 137         dictionary = model_to_dict(route_edit, fields=[], exclude=[])
 138         #form = RouteForm(instance=route_edit)
 139         form = RouteForm(dictionary)
 140         return render_to_response('apply.html', {'form': form, 'edit':True, 'applier': applier},
 141                                   context_instance=RequestContext(request))
 142
 143 @login_required
 144 @never_cache
 145 def delete_route(request, route_slug):
 146     if request.is_ajax():
 147         route = get_object_or_404(Route, name=route_slug)
 148         applier_peer = route.applier.get_profile().peer
 149         requester_peer = request.user.get_profile().peer
 150         if applier_peer == requester_peer:
 151             route.status = "PENDING"
 152             route.commit_delete()
 153         html = "<html><body>Done</body></html>"
 154         return HttpResponse(html)
 155     else:
 156         return HttpResponseRedirect(reverse("group-routes"))
 157
 158 @login_required
 159 @never_cache
 160 def user_profile(request):
 161     user = request.user
 162     peer = request.user.get_profile().peer
 163
 164     return render_to_response('profile.html', {'user': user, 'peer':peer},
 165                                   context_instance=RequestContext(request))
 166
 167 @never_cache
 168 def user_login(request):
 169     try:
 170         error_username = None
 171         error_orgname = None
 172         error_affiliation = None
 173         error = ''
 174         username = request.META['HTTP_EPPN']
 175         if not username:
 176             error_username = True
 177         firstname = request.META['HTTP_SHIB_INETORGPERSON_GIVENNAME']
 178         lastname = request.META['HTTP_SHIB_PERSON_SURNAME']
 179         mail = request.META['HTTP_SHIB_INETORGPERSON_MAIL']
 180         organization = request.META['HTTP_SHIB_HOMEORGANIZATION']
 181         affiliation = request.META['HTTP_SHIB_EP_ENTITLEMENT']
 182         match = re.compile(settings.SHIB_AUTH_AFFILIATION)
 183         has_affiliation = match.search(affiliation)
 184         if not has_affiliation:
 185             error_affiliation = True
 186         if not organization:
 187             error_orgname = True
 188         if error_username:
 189             error = "Your idP should release the HTTP_EPPN attribute towards this service\n"
 190         if error_orgname:
 191             error = error + "Your idP should release the HTTP_SHIB_HOMEORGANIZATION attribute towards this service\n"
 192         if error_affiliation:
 193             error = error + "Your idP should release an appropriate HTTP_SHIB_EP_ENTITLEMENT attribute towards this service"
 194         if error_username or error_orgname or error_affiliation:
 195             return render_to_response('error.html', {'error': error,},
 196                                   context_instance=RequestContext(request))
 197         user = authenticate(username=username, firstname=firstname, lastname=lastname, mail=mail, organization=organization, affiliation)
 198         if user is not None:
 199             login(request, user)
 200             return HttpResponseRedirect(reverse("group-routes"))
 201                 # Redirect to a success page.
 202                 # Return a 'disabled account' error message
 203         else:
 204             error = "Something went wrong during user authentication. Contact your administrator"
 205             return render_to_response('error.html', {'error': error,},
 206                                   context_instance=RequestContext(request))
 207     except Exception as e:
 208         error = "Invalid login procedure"
 209         return render_to_response('error.html', {'error': error,},
 210                                   context_instance=RequestContext(request))
 211         # Return an 'invalid login' error message.
 212 #    return HttpResponseRedirect(reverse("user-routes"))
 213
 214 @login_required
 215 @never_cache
 216 def add_rate_limit(request):
 217     if request.method == "GET":
 218         form = ThenPlainForm()
 219         return render_to_response('add_rate_limit.html', {'form': form,},
 220                                   context_instance=RequestContext(request))
 221
 222     else:
 223         form = ThenPlainForm(request.POST)
 224         if form.is_valid():
 225             then=form.save(commit=False)
 226             then.action_value = "%sk"%then.action_value
 227             then.save()
 228             response_data = {}
 229             response_data['pk'] = "%s" %then.pk
 230             response_data['value'] = "%s:%s" %(then.action, then.action_value)
 231             return HttpResponse(simplejson.dumps(response_data), mimetype='application/json')
 232         else:
 233             return render_to_response('add_rate_limit.html', {'form': form,},
 234                                       context_instance=RequestContext(request))
 235
 236 @login_required
 237 @never_cache
 238 def add_port(request):
 239     if request.method == "GET":
 240         form = PortPlainForm()
 241         return render_to_response('add_port.html', {'form': form,},
 242                                   context_instance=RequestContext(request))
 243
 244     else:
 245         form = PortPlainForm(request.POST)
 246         if form.is_valid():
 247             port=form.save()
 248             response_data = {}
 249             response_data['value'] = "%s" %port.pk
 250             response_data['text'] = "%s" %port.port
 251             return HttpResponse(simplejson.dumps(response_data), mimetype='application/json')
 252         else:
 253             return render_to_response('add_port.html', {'form': form,},
 254                                       context_instance=RequestContext(request))
 255
 256 @login_required
 257 @never_cache
 258 def user_logout(request):
 259     return HttpResponseRedirect(settings.SHIB_LOGOUT_URL)
 260
 261
 262 def load_jscript(request, file):
 263     return render_to_response('%s.js' % file, context_instance=RequestContext(request), mimetype="text/javascript")