We use cookies to ensure you get the best experience on our website
Domů Procházet Nápověda
Registrovat se Přihlásit se
0ct0pu5
/
desec-stack
1
0
Rozštěpit 0
Soubory Úkoly 0 Pull Requesty 0 Wiki
Strom: 671ca12b96
Větve Značky
desec-stack
/
api
/
desecapi
/
models
/
tokens.py

tokens.py 7.6 KB
Historie Surový

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191 
  1. from __future__ import annotations
    2. 

  2. 

  3. import ipaddress
    4. 

  4. import secrets
    5. 

  5. import uuid
    6. 

  6. from datetime import timedelta
    7. 

  7. 

  8. import pgtrigger
    9. 

  9. import rest_framework.authtoken.models
    10. 

  10. from django.contrib.auth.hashers import make_password
    11. 

  11. from django.contrib.postgres.fields import ArrayField
    12. 

  12. from django.core import validators
    13. 

  13. from django.core.exceptions import ValidationError
    14. 

  14. from django.db import models, transaction
    15. 

  15. from django.db.models import F, Q
    16. 

  16. from django.utils import timezone
    17. 

  17. from django_prometheus.models import ExportModelOperationsMixin
    18. 

  18. from netfields import CidrAddressField, NetManager
    19. 

  19. 

  20. 

  21. class Token(ExportModelOperationsMixin("Token"), rest_framework.authtoken.models.Token):
    22. 

  22.     @staticmethod
    23. 

  23.     def _allowed_subnets_default():
    24. 

  24.         return [ipaddress.IPv4Network("0.0.0.0/0"), ipaddress.IPv6Network("::/0")]
    25. 

  25. 

  26.     _validators = [
    27. 

  27.         validators.MinValueValidator(timedelta(0)),
    28. 

  28.         validators.MaxValueValidator(timedelta(days=365 * 1000)),
    29. 

  29.     ]
    30. 

  30. 

  31.     id = models.UUIDField(primary_key=True, default=uuid.uuid4, editable=False)
    32. 

  32.     key = models.CharField("Key", max_length=128, db_index=True, unique=True)
    33. 

  33.     user = models.ForeignKey("User", on_delete=models.CASCADE)
    34. 

  34.     name = models.CharField("Name", blank=True, max_length=64)
    35. 

  35.     last_used = models.DateTimeField(null=True, blank=True)
    36. 

  36.     perm_manage_tokens = models.BooleanField(default=False)
    37. 

  37.     allowed_subnets = ArrayField(
    38. 

  38.         CidrAddressField(), default=_allowed_subnets_default.__func__
    39. 

  39.     )
    40. 

  40.     max_age = models.DurationField(null=True, default=None, validators=_validators)
    41. 

  41.     max_unused_period = models.DurationField(
    42. 

  42.         null=True, default=None, validators=_validators
    43. 

  43.     )
    44. 

  44.     domain_policies = models.ManyToManyField("Domain", through="TokenDomainPolicy")
    45. 

  45. 

  46.     plain = None
    47. 

  47.     objects = NetManager()
    48. 

  48. 

  49.     class Meta:
    50. 

  50.         constraints = [
    51. 

  51.             models.UniqueConstraint(fields=["id", "user"], name="unique_id_user")
    52. 

  52.         ]
    53. 

  53. 

  54.     @property
    55. 

  55.     def is_valid(self):
    56. 

  56.         now = timezone.now()
    57. 

  57. 

  58.         # Check max age
    59. 

  59.         try:
    60. 

  60.             if self.created + self.max_age < now:
    61. 

  61.                 return False
    62. 

  62.         except TypeError:
    63. 

  63.             pass
    64. 

  64. 

  65.         # Check regular usage requirement
    66. 

  66.         try:
    67. 

  67.             if (self.last_used or self.created) + self.max_unused_period < now:
    68. 

  68.                 return False
    69. 

  69.         except TypeError:
    70. 

  70.             pass
    71. 

  71. 

  72.         return True
    73. 

  73. 

  74.     def generate_key(self):
    75. 

  75.         self.plain = secrets.token_urlsafe(21)
    76. 

  76.         self.key = Token.make_hash(self.plain)
    77. 

  77.         return self.key
    78. 

  78. 

  79.     @staticmethod
    80. 

  80.     def make_hash(plain):
    81. 

  81.         return make_password(plain, salt="static", hasher="pbkdf2_sha256_iter1")
    82. 

  82. 

  83.     def get_policy(self, *, domain=None):
    84. 

  84.         order_by = F("domain").asc(
    85. 

  85.             nulls_last=True
    86. 

  86.         )  # default Postgres sorting, but: explicit is better than implicit
    87. 

  87.         return (
    88. 

  88.             self.tokendomainpolicy_set.filter(Q(domain=domain) | Q(domain__isnull=True))
    89. 

  89.             .order_by(order_by)
    90. 

  90.             .first()
    91. 

  91.         )
    92. 

  92. 

  93.     @transaction.atomic
    94. 

  94.     def delete(self):
    95. 

  95.         # This is needed because Model.delete() emulates cascade delete via django.db.models.deletion.Collector.delete()
    96. 

  96.         # which deletes related objects in pk order.  However, the default policy has to be deleted last.
    97. 

  97.         # Perhaps this will change with https://code.djangoproject.com/ticket/21961
    98. 

  98.         self.tokendomainpolicy_set.filter(domain__isnull=False).delete()
    99. 

  99.         self.tokendomainpolicy_set.filter(domain__isnull=True).delete()
    100. 

  100.         return super().delete()
    101. 

  101. 

  102. 

  103. @pgtrigger.register(
    104. 

  104.     # Ensure that token_user is consistent with token
    105. 

  105.     pgtrigger.Trigger(
    106. 

  106.         name="token_user",
    107. 

  107.         operation=pgtrigger.Update | pgtrigger.Insert,
    108. 

  108.         when=pgtrigger.Before,
    109. 

  109.         func="NEW.token_user_id = (SELECT user_id FROM desecapi_token WHERE id = NEW.token_id); RETURN NEW;",
    110. 

  110.     ),
    111. 

  111.     # Ensure that if there is *any* domain policy for a given token, there is always one with domain=None.
    112. 

  112.     pgtrigger.Trigger(
    113. 

  113.         name="default_policy_on_insert",
    114. 

  114.         operation=pgtrigger.Insert,
    115. 

  115.         when=pgtrigger.Before,
    116. 

  116.         # Trigger `condition` arguments (corresponding to WHEN clause) don't support subqueries, so we use `func`
    117. 

  117.         func="IF (NEW.domain_id IS NOT NULL and NOT EXISTS(SELECT * FROM desecapi_tokendomainpolicy WHERE domain_id IS NULL AND token_id = NEW.token_id)) THEN "
    118. 

  118.         "  RAISE EXCEPTION 'Cannot insert non-default policy into % table when default policy is not present', TG_TABLE_NAME; "
    119. 

  119.         "END IF; RETURN NEW;",
    120. 

  120.     ),
    121. 

  121.     pgtrigger.Protect(
    122. 

  122.         name="default_policy_on_update",
    123. 

  123.         operation=pgtrigger.Update,
    124. 

  124.         when=pgtrigger.Before,
    125. 

  125.         condition=pgtrigger.Q(old__domain__isnull=True, new__domain__isnull=False),
    126. 

  126.     ),
    127. 

  127.     # Ideally, a deferred trigger (https://github.com/Opus10/django-pgtrigger/issues/14). Available in 3.4.0.
    128. 

  128.     pgtrigger.Trigger(
    129. 

  129.         name="default_policy_on_delete",
    130. 

  130.         operation=pgtrigger.Delete,
    131. 

  131.         when=pgtrigger.Before,
    132. 

  132.         # Trigger `condition` arguments (corresponding to WHEN clause) don't support subqueries, so we use `func`
    133. 

  133.         func="IF (OLD.domain_id IS NULL and EXISTS(SELECT * FROM desecapi_tokendomainpolicy WHERE domain_id IS NOT NULL AND token_id = OLD.token_id)) THEN "
    134. 

  134.         "  RAISE EXCEPTION 'Cannot delete default policy from % table when non-default policy is present', TG_TABLE_NAME; "
    135. 

  135.         "END IF; RETURN OLD;",
    136. 

  136.     ),
    137. 

  137. )
    138. 

  138. class TokenDomainPolicy(ExportModelOperationsMixin("TokenDomainPolicy"), models.Model):
    139. 

  139.     token = models.ForeignKey(Token, on_delete=models.CASCADE)
    140. 

  140.     domain = models.ForeignKey("Domain", on_delete=models.CASCADE, null=True)
    141. 

  141.     perm_dyndns = models.BooleanField(default=False)
    142. 

  142.     perm_rrsets = models.BooleanField(default=False)
    143. 

  143.     # Token user, filled via trigger. Used by compound FK constraints to tie domain.owner to token.user (see migration).
    144. 

  144.     token_user = models.ForeignKey(
    145. 

  145.         "User", on_delete=models.CASCADE, db_constraint=False, related_name="+"
    146. 

  146.     )
    147. 

  147. 

  148.     class Meta:
    149. 

  149.         constraints = [
    150. 

  150.             models.UniqueConstraint(fields=["token", "domain"], name="unique_entry"),
    151. 

  151.             models.UniqueConstraint(
    152. 

  152.                 fields=["token"],
    153. 

  153.                 condition=Q(domain__isnull=True),
    154. 

  154.                 name="unique_entry_null_domain",
    155. 

  155.             ),
    156. 

  156.         ]
    157. 

  157. 

  158.     def clean(self):
    159. 

  159.         default_policy = self.token.get_policy(domain=None)
    160. 

  160.         if self.pk:  # update
    161. 

  161.             # Can't change policy's default status ("domain NULLness") to maintain policy precedence
    162. 

  162.             if (self.domain is None) != (self.pk == default_policy.pk):
    163. 

  163.                 raise ValidationError(
    164. 

  164.                     {
    165. 

  165.                         "domain": "Policy precedence: Cannot disable default policy when others exist."
    166. 

  166.                     }
    167. 

  167.                 )
    168. 

  168.         else:  # create
    169. 

  169.             # Can't violate policy precedence (default policy has to be first)
    170. 

  170.             if (self.domain is not None) and (default_policy is None):
    171. 

  171.                 raise ValidationError(
    172. 

  172.                     {
    173. 

  173.                         "domain": "Policy precedence: The first policy must be the default policy."
    174. 

  174.                     }
    175. 

  175.                 )
    176. 

  176. 

  177.     def delete(self):
    178. 

  178.         # Can't delete default policy when others exist
    179. 

  179.         if (self.domain is None) and self.token.tokendomainpolicy_set.exclude(
    180. 

  180.             domain__isnull=True
    181. 

  181.         ).exists():
    182. 

  182.             raise ValidationError(
    183. 

  183.                 {
    184. 

  184.                     "domain": "Policy precedence: Can't delete default policy when there exist others."
    185. 

  185.                 }
    186. 

  186.             )
    187. 

  187.         return super().delete()
    188. 

  188. 

  189.     def save(self, *args, **kwargs):
    190. 

  190.         self.clean()
    191. 

  191.         super().save(*args, **kwargs)
    192.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5