2024-02-07 02:26:49 +01:00
|
|
|
# Copyright (C) 2018-2024 by BDE ENS Paris-Saclay
|
2020-02-24 18:18:44 +01:00
|
|
|
# SPDX-License-Identifier: GPL-3.0-or-later
|
|
|
|
|
|
2020-02-26 23:34:27 +01:00
|
|
|
from django.contrib.contenttypes.models import ContentType
|
2020-03-11 00:41:37 +01:00
|
|
|
from rest_framework.renderers import JSONRenderer
|
|
|
|
|
from rest_framework.serializers import ModelSerializer
|
2020-03-10 01:04:00 +01:00
|
|
|
from note.models import NoteUser, Alias
|
2021-06-15 14:40:32 +02:00
|
|
|
from note_kfet.middlewares import get_current_request
|
2020-03-20 02:14:43 +01:00
|
|
|
|
2020-02-24 18:18:44 +01:00
|
|
|
from .models import Changelog
|
|
|
|
|
|
2020-03-20 02:20:13 +01:00
|
|
|
import getpass
|
|
|
|
|
|
2020-02-24 18:18:44 +01:00
|
|
|
|
2020-03-10 01:04:00 +01:00
|
|
|
# Ces modèles ne nécessitent pas de logs
|
2020-02-24 18:18:44 +01:00
|
|
|
EXCLUDED = [
|
2020-03-07 22:28:59 +01:00
|
|
|
'admin.logentry',
|
|
|
|
|
'authtoken.token',
|
2020-03-11 15:13:34 +01:00
|
|
|
'cas_server.proxygrantingticket',
|
|
|
|
|
'cas_server.proxyticket',
|
|
|
|
|
'cas_server.serviceticket',
|
2020-03-07 22:28:59 +01:00
|
|
|
'cas_server.user',
|
|
|
|
|
'cas_server.userattributes',
|
|
|
|
|
'contenttypes.contenttype',
|
2020-03-11 17:20:16 +01:00
|
|
|
'logs.changelog', # Never remove this line
|
2020-08-06 08:53:47 +02:00
|
|
|
'mailer.dontsendentry',
|
|
|
|
|
'mailer.message',
|
|
|
|
|
'mailer.messagelog',
|
2020-03-07 22:28:59 +01:00
|
|
|
'migrations.migration',
|
2020-03-11 17:20:16 +01:00
|
|
|
'note.note' # We only store the subclasses
|
2020-03-11 00:41:37 +01:00
|
|
|
'note.transaction',
|
2020-03-07 22:28:59 +01:00
|
|
|
'sessions.session',
|
|
|
|
|
]
|
2020-02-24 18:18:44 +01:00
|
|
|
|
2020-02-27 16:25:18 +01:00
|
|
|
|
|
|
|
|
def pre_save_object(sender, instance, **kwargs):
|
2020-03-10 01:04:00 +01:00
|
|
|
"""
|
2020-03-11 17:54:54 +01:00
|
|
|
Before a model get saved, we get the previous instance that is currently in the database
|
2020-03-10 01:04:00 +01:00
|
|
|
"""
|
2020-02-27 16:25:18 +01:00
|
|
|
qs = sender.objects.filter(pk=instance.pk).all()
|
|
|
|
|
if qs.exists():
|
|
|
|
|
instance._previous = qs.get()
|
|
|
|
|
else:
|
|
|
|
|
instance._previous = None
|
|
|
|
|
|
|
|
|
|
|
2020-02-24 18:18:44 +01:00
|
|
|
def save_object(sender, instance, **kwargs):
|
2020-03-10 01:04:00 +01:00
|
|
|
"""
|
2020-03-11 17:54:54 +01:00
|
|
|
Each time a model is saved, an entry in the table `Changelog` is added in the database
|
|
|
|
|
in order to store each modification made
|
2020-03-10 01:04:00 +01:00
|
|
|
"""
|
2020-02-27 15:30:16 +01:00
|
|
|
# noinspection PyProtectedMember
|
2020-09-07 14:52:37 +02:00
|
|
|
if instance._meta.label_lower in EXCLUDED or hasattr(instance, "_no_signal"):
|
2020-04-01 03:42:19 +02:00
|
|
|
return
|
|
|
|
|
|
2020-03-10 01:04:00 +01:00
|
|
|
# noinspection PyProtectedMember
|
2020-03-10 00:01:40 +01:00
|
|
|
previous = instance._previous
|
2020-02-27 13:34:38 +01:00
|
|
|
|
2022-08-29 13:19:19 +02:00
|
|
|
# Si un⋅e utilisateur⋅rice est connecté⋅e, on récupère l'utilisateur⋅rice courant⋅e ainsi que son adresse IP
|
2021-06-15 14:40:32 +02:00
|
|
|
request = get_current_request()
|
2020-03-07 16:45:45 +01:00
|
|
|
|
2021-06-15 14:40:32 +02:00
|
|
|
if request is None:
|
2020-03-10 01:04:00 +01:00
|
|
|
# Si la modification n'a pas été faite via le client Web, on suppose que c'est du à `manage.py`
|
|
|
|
|
# On récupère alors l'utilisateur·trice connecté·e à la VM, et on récupère la note associée
|
2022-08-29 13:19:19 +02:00
|
|
|
# IMPORTANT : l'utilisateur⋅rice dans la VM doit être un des alias note du respo info
|
2020-03-10 01:04:00 +01:00
|
|
|
ip = "127.0.0.1"
|
|
|
|
|
username = Alias.normalize(getpass.getuser())
|
2020-03-11 00:41:37 +01:00
|
|
|
note = NoteUser.objects.filter(alias__normalized_name=username)
|
2020-03-11 16:10:26 +01:00
|
|
|
# if not note.exists():
|
|
|
|
|
# print("WARNING: A model attempted to be saved in the DB, but the actor is unknown: " + username)
|
|
|
|
|
# else:
|
|
|
|
|
if note.exists():
|
2020-03-10 01:04:00 +01:00
|
|
|
user = note.get().user
|
2021-06-15 14:40:32 +02:00
|
|
|
else:
|
|
|
|
|
user = None
|
|
|
|
|
else:
|
|
|
|
|
user = request.user
|
|
|
|
|
if 'HTTP_X_REAL_IP' in request.META:
|
|
|
|
|
ip = request.META.get('HTTP_X_REAL_IP')
|
|
|
|
|
elif 'HTTP_X_FORWARDED_FOR' in request.META:
|
|
|
|
|
ip = request.META.get('HTTP_X_FORWARDED_FOR').split(', ')[0]
|
|
|
|
|
else:
|
|
|
|
|
ip = request.META.get('REMOTE_ADDR')
|
|
|
|
|
|
|
|
|
|
if not user.is_authenticated:
|
2021-06-15 15:50:36 +02:00
|
|
|
# For registration and OAuth2 purposes
|
2021-06-15 14:40:32 +02:00
|
|
|
user = None
|
2020-03-10 01:04:00 +01:00
|
|
|
|
2020-03-11 10:08:28 +01:00
|
|
|
# noinspection PyProtectedMember
|
2021-06-15 14:40:32 +02:00
|
|
|
if request is not None and instance._meta.label_lower == "auth.user" and previous:
|
2020-03-10 01:04:00 +01:00
|
|
|
# On n'enregistre pas les connexions
|
2020-02-27 16:25:18 +01:00
|
|
|
if instance.last_login != previous.last_login:
|
2020-02-27 15:53:06 +01:00
|
|
|
return
|
|
|
|
|
|
2020-08-13 17:08:15 +02:00
|
|
|
changed_fields = '__all__'
|
2020-08-13 17:04:10 +02:00
|
|
|
if previous:
|
|
|
|
|
# On ne garde que les champs modifiés
|
|
|
|
|
changed_fields = []
|
|
|
|
|
for field in instance._meta.fields:
|
2020-08-15 22:54:16 +02:00
|
|
|
if field.name.endswith("_ptr"):
|
|
|
|
|
# A field ending with _ptr is a OneToOneRel with a subclass, e.g. NoteClub.note_ptr -> Note
|
|
|
|
|
continue
|
2020-08-13 17:04:10 +02:00
|
|
|
if getattr(instance, field.name) != getattr(previous, field.name):
|
|
|
|
|
changed_fields.append(field.name)
|
|
|
|
|
|
|
|
|
|
if len(changed_fields) == 0:
|
|
|
|
|
# Pas de log s'il n'y a pas de modification
|
|
|
|
|
return
|
|
|
|
|
|
|
|
|
|
# On crée notre propre sérialiseur JSON pour pouvoir sauvegarder les modèles avec uniquement les champs modifiés
|
2020-03-11 00:41:37 +01:00
|
|
|
class CustomSerializer(ModelSerializer):
|
|
|
|
|
class Meta:
|
|
|
|
|
model = instance.__class__
|
2020-08-13 17:04:10 +02:00
|
|
|
fields = changed_fields
|
2020-03-11 00:41:37 +01:00
|
|
|
|
2020-09-07 01:06:22 +02:00
|
|
|
previous_json = JSONRenderer().render(CustomSerializer(previous).data).decode("UTF-8") if previous else ""
|
2020-03-11 10:08:28 +01:00
|
|
|
instance_json = JSONRenderer().render(CustomSerializer(instance).data).decode("UTF-8")
|
2020-02-27 15:53:06 +01:00
|
|
|
|
2020-02-24 18:18:44 +01:00
|
|
|
Changelog.objects.create(user=user,
|
2020-02-27 14:47:34 +01:00
|
|
|
ip=ip,
|
|
|
|
|
model=ContentType.objects.get_for_model(instance),
|
|
|
|
|
instance_pk=instance.pk,
|
|
|
|
|
previous=previous_json,
|
|
|
|
|
data=instance_json,
|
2020-02-27 16:25:18 +01:00
|
|
|
action=("edit" if previous else "create")
|
2020-02-27 14:47:34 +01:00
|
|
|
).save()
|
2020-02-24 18:18:44 +01:00
|
|
|
|
2020-02-27 13:34:38 +01:00
|
|
|
|
2020-02-24 18:18:44 +01:00
|
|
|
def delete_object(sender, instance, **kwargs):
|
2020-03-10 01:04:00 +01:00
|
|
|
"""
|
2020-03-11 17:54:54 +01:00
|
|
|
Each time a model is deleted, an entry in the table `Changelog` is added in the database
|
2020-03-10 01:04:00 +01:00
|
|
|
"""
|
2020-02-27 15:30:16 +01:00
|
|
|
# noinspection PyProtectedMember
|
2020-09-07 14:52:37 +02:00
|
|
|
if instance._meta.label_lower in EXCLUDED or hasattr(instance, "_no_signal"):
|
2020-04-01 03:42:19 +02:00
|
|
|
return
|
|
|
|
|
|
2022-08-29 13:19:19 +02:00
|
|
|
# Si un⋅e utilisateur⋅rice est connecté⋅e, on récupère l'utilisateur⋅rice courant⋅e ainsi que son adresse IP
|
2021-06-15 14:40:32 +02:00
|
|
|
request = get_current_request()
|
2020-02-27 13:34:38 +01:00
|
|
|
|
2021-06-15 14:40:32 +02:00
|
|
|
if request is None:
|
2020-03-11 16:10:26 +01:00
|
|
|
# Si la modification n'a pas été faite via le client Web, on suppose que c'est du à `manage.py`
|
|
|
|
|
# On récupère alors l'utilisateur·trice connecté·e à la VM, et on récupère la note associée
|
2022-08-29 13:19:19 +02:00
|
|
|
# IMPORTANT : l'utilisateur⋅rice dans la VM doit être un des alias note du respo info
|
2020-03-11 16:10:26 +01:00
|
|
|
ip = "127.0.0.1"
|
|
|
|
|
username = Alias.normalize(getpass.getuser())
|
|
|
|
|
note = NoteUser.objects.filter(alias__normalized_name=username)
|
|
|
|
|
# if not note.exists():
|
|
|
|
|
# print("WARNING: A model attempted to be saved in the DB, but the actor is unknown: " + username)
|
|
|
|
|
# else:
|
|
|
|
|
if note.exists():
|
|
|
|
|
user = note.get().user
|
2021-06-15 14:40:32 +02:00
|
|
|
else:
|
|
|
|
|
user = None
|
|
|
|
|
else:
|
|
|
|
|
user = request.user
|
|
|
|
|
if 'HTTP_X_REAL_IP' in request.META:
|
|
|
|
|
ip = request.META.get('HTTP_X_REAL_IP')
|
|
|
|
|
elif 'HTTP_X_FORWARDED_FOR' in request.META:
|
|
|
|
|
ip = request.META.get('HTTP_X_FORWARDED_FOR').split(', ')[0]
|
|
|
|
|
else:
|
|
|
|
|
ip = request.META.get('REMOTE_ADDR')
|
2020-03-11 16:10:26 +01:00
|
|
|
|
2021-06-15 15:50:36 +02:00
|
|
|
if not user.is_authenticated:
|
|
|
|
|
# For registration and OAuth2 purposes
|
|
|
|
|
user = None
|
|
|
|
|
|
2020-03-11 00:41:37 +01:00
|
|
|
# On crée notre propre sérialiseur JSON pour pouvoir sauvegarder les modèles
|
|
|
|
|
class CustomSerializer(ModelSerializer):
|
|
|
|
|
class Meta:
|
|
|
|
|
model = instance.__class__
|
|
|
|
|
fields = '__all__'
|
|
|
|
|
|
2020-03-11 10:08:28 +01:00
|
|
|
instance_json = JSONRenderer().render(CustomSerializer(instance).data).decode("UTF-8")
|
2020-03-11 00:41:37 +01:00
|
|
|
|
2020-02-24 18:18:44 +01:00
|
|
|
Changelog.objects.create(user=user,
|
2020-02-27 14:47:34 +01:00
|
|
|
ip=ip,
|
|
|
|
|
model=ContentType.objects.get_for_model(instance),
|
|
|
|
|
instance_pk=instance.pk,
|
|
|
|
|
previous=instance_json,
|
2020-09-07 01:06:22 +02:00
|
|
|
data="",
|
2020-02-27 14:47:34 +01:00
|
|
|
action="delete"
|
|
|
|
|
).save()
|
