1 # Create your views here.
6 from django import forms
7 from django.views.decorators.csrf import csrf_exempt
8 from django.core import urlresolvers
9 from django.core import serializers
10 from django.contrib.auth.decorators import login_required
11 from django.http import HttpResponseRedirect, HttpResponseForbidden, HttpResponse
12 from django.shortcuts import get_object_or_404, render_to_response
13 from django.core.context_processors import request
14 from django.template.context import RequestContext
15 from django.template.loader import get_template
16 from django.utils import simplejson
17 from django.core.urlresolvers import reverse
18 from django.contrib import messages
19 from flowspy.accounts.models import *
21 from django.contrib.auth import authenticate, login
23 from django.forms.models import model_to_dict
25 from flowspy.flowspec.forms import *
26 from flowspy.flowspec.models import *
28 from copy import deepcopy
29 from flowspy.utils.decorators import shib_required
32 from django.views.decorators.cache import never_cache
33 from django.conf import settings
36 def days_offset(): return datetime.date.today() + datetime.timedelta(days = settings.EXPIRATION_DAYS_OFFSET)
39 def user_routes(request):
40 user_routes = Route.objects.filter(applier=request.user)
41 return render_to_response('user_routes.html', {'routes': user_routes},
42 context_instance=RequestContext(request))
46 def group_routes(request):
48 peer = request.user.get_profile().peer
50 peer_members = UserProfile.objects.filter(peer=peer)
51 users = [prof.user for prof in peer_members]
52 group_routes = Route.objects.filter(applier__in=users)
53 return render_to_response('user_routes.html', {'routes': group_routes},
54 context_instance=RequestContext(request))
59 def add_route(request):
60 applier = request.user.pk
61 applier_peer_networks = request.user.get_profile().peer.networks.all()
62 if not applier_peer_networks:
63 messages.add_message(request, messages.WARNING,
64 "Insufficient rights on administrative networks. Cannot add route. Contact your administrator")
65 return HttpResponseRedirect(reverse("group-routes"))
66 if request.method == "GET":
68 return render_to_response('apply.html', {'form': form, 'applier': applier},
69 context_instance=RequestContext(request))
72 form = RouteForm(request.POST)
74 route=form.save(commit=False)
75 route.applier = request.user
76 route.expires = days_offset()
77 route.status = "PENDING"
81 return HttpResponseRedirect(reverse("group-routes"))
83 return render_to_response('apply.html', {'form': form, 'applier':applier},
84 context_instance=RequestContext(request))
88 def add_then(request):
89 applier = request.user.pk
90 if request.method == "GET":
92 return render_to_response('apply.html', {'form': form, 'applier': applier},
93 context_instance=RequestContext(request))
96 form = RouteForm(request.POST)
98 route=form.save(commit=False)
99 route.applier = request.user
100 route.expires = days_offset()
104 return HttpResponseRedirect(reverse("group-routes"))
106 return render_to_response('apply.html', {'form': form, 'applier':applier},
107 context_instance=RequestContext(request))
111 def edit_route(request, route_slug):
112 applier = request.user.pk
113 applier_peer = request.user.get_profile().peer
114 route_edit = get_object_or_404(Route, name=route_slug)
115 route_edit_applier_peer = route_edit.applier.get_profile().peer
116 if applier_peer != route_edit_applier_peer:
117 messages.add_message(request, messages.WARNING,
118 "Insufficient rights to edit route %s" %(route_slug))
119 return HttpResponseRedirect(reverse("group-routes"))
120 route_original = deepcopy(route_edit)
122 form = RouteForm(request.POST, instance = route_edit)
124 route=form.save(commit=False)
125 route.name = route_original.name
126 route.applier = request.user
127 route.expires = route_original.expires
128 route.status = "PENDING"
132 return HttpResponseRedirect(reverse("group-routes"))
134 return render_to_response('apply.html', {'form': form, 'edit':True, 'applier': applier},
135 context_instance=RequestContext(request))
137 dictionary = model_to_dict(route_edit, fields=[], exclude=[])
138 #form = RouteForm(instance=route_edit)
139 form = RouteForm(dictionary)
140 return render_to_response('apply.html', {'form': form, 'edit':True, 'applier': applier},
141 context_instance=RequestContext(request))
145 def delete_route(request, route_slug):
146 if request.is_ajax():
147 route = get_object_or_404(Route, name=route_slug)
148 applier_peer = route.applier.get_profile().peer
149 requester_peer = request.user.get_profile().peer
150 if applier_peer == requester_peer:
151 route.status = "PENDING"
152 route.commit_delete()
153 html = "<html><body>Done</body></html>"
154 return HttpResponse(html)
156 return HttpResponseRedirect(reverse("group-routes"))
160 def user_profile(request):
162 peer = request.user.get_profile().peer
164 return render_to_response('profile.html', {'user': user, 'peer':peer},
165 context_instance=RequestContext(request))
168 def user_login(request):
170 error_username = None
172 error_affiliation = None
174 username = request.META['HTTP_EPPN']
176 error_username = True
177 firstname = request.META['HTTP_SHIB_INETORGPERSON_GIVENNAME']
178 lastname = request.META['HTTP_SHIB_PERSON_SURNAME']
179 mail = request.META['HTTP_SHIB_INETORGPERSON_MAIL']
180 organization = request.META['HTTP_SHIB_HOMEORGANIZATION']
181 affiliation = request.META['HTTP_SHIB_EP_ENTITLEMENT']
182 match = re.compile(settings.SHIB_AUTH_AFFILIATION)
183 has_affiliation = match.search(affiliation)
184 if not has_affiliation:
185 error_affiliation = True
189 error = "Your idP should release the HTTP_EPPN attribute towards this service\n"
191 error = error + "Your idP should release the HTTP_SHIB_HOMEORGANIZATION attribute towards this service\n"
192 if error_affiliation:
193 error = error + "Your idP should release an appropriate HTTP_SHIB_EP_ENTITLEMENT attribute towards this service"
194 if error_username or error_orgname or error_affiliation:
195 return render_to_response('error.html', {'error': error,},
196 context_instance=RequestContext(request))
197 user = authenticate(username=username, firstname=firstname, lastname=lastname, mail=mail, organization=organization, affiliation)
200 return HttpResponseRedirect(reverse("group-routes"))
201 # Redirect to a success page.
202 # Return a 'disabled account' error message
204 error = "Something went wrong during user authentication. Contact your administrator"
205 return render_to_response('error.html', {'error': error,},
206 context_instance=RequestContext(request))
207 except Exception as e:
208 error = "Invalid login procedure"
209 return render_to_response('error.html', {'error': error,},
210 context_instance=RequestContext(request))
211 # Return an 'invalid login' error message.
212 # return HttpResponseRedirect(reverse("user-routes"))
216 def add_rate_limit(request):
217 if request.method == "GET":
218 form = ThenPlainForm()
219 return render_to_response('add_rate_limit.html', {'form': form,},
220 context_instance=RequestContext(request))
223 form = ThenPlainForm(request.POST)
225 then=form.save(commit=False)
226 then.action_value = "%sk"%then.action_value
229 response_data['pk'] = "%s" %then.pk
230 response_data['value'] = "%s:%s" %(then.action, then.action_value)
231 return HttpResponse(simplejson.dumps(response_data), mimetype='application/json')
233 return render_to_response('add_rate_limit.html', {'form': form,},
234 context_instance=RequestContext(request))
238 def add_port(request):
239 if request.method == "GET":
240 form = PortPlainForm()
241 return render_to_response('add_port.html', {'form': form,},
242 context_instance=RequestContext(request))
245 form = PortPlainForm(request.POST)
249 response_data['value'] = "%s" %port.pk
250 response_data['text'] = "%s" %port.port
251 return HttpResponse(simplejson.dumps(response_data), mimetype='application/json')
253 return render_to_response('add_port.html', {'form': form,},
254 context_instance=RequestContext(request))
258 def user_logout(request):
259 return HttpResponseRedirect(settings.SHIB_LOGOUT_URL)
262 def load_jscript(request, file):
263 return render_to_response('%s.js' % file, context_instance=RequestContext(request), mimetype="text/javascript")