Use a middleware rather than inspect the stack to get current user and IP

2025-06-21 18:08:21 +02:00 · 2020-03-10 00:01:40 +01:00
parent fffd674c44
commit 20e2d41563
3 changed files with 65 additions and 41 deletions
--- a/apps/logs/signals.py
+++ b/apps/logs/signals.py
@ -1,48 +1,15 @@
 # Copyright (C) 2018-2020 by BDE ENS Paris-Saclay
 # SPDX-License-Identifier: GPL-3.0-or-later

-import inspect
-
 from django.contrib.contenttypes.models import ContentType
 from django.core import serializers
 from django.db.models.signals import pre_save, post_save, post_delete
 from django.dispatch import receiver

+from .middlewares import get_current_authenticated_user, get_current_ip
 from .models import Changelog


-def get_request_in_signal(sender):
-    req = None
-    for entry in reversed(inspect.stack()):
-        try:
-            req = entry[0].f_locals['request']
-            # Check if there is a user
-            # noinspection PyStatementEffect
-            req.user
-            break
-        except:
-            pass
-
-    if not req:
-        print("WARNING: Attempt to save " + str(sender) + " with no user")
-
-    return req
-
-
-def get_user_and_ip(sender):
-    req = get_request_in_signal(sender)
-    try:
-        user = req.user
-        if 'HTTP_X_FORWARDED_FOR' in req.META:
-            ip = req.META.get('HTTP_X_FORWARDED_FOR')
-        else:
-            ip = req.META.get('REMOTE_ADDR')
-    except:
-        user = None
-        ip = None
-    return user, ip
-
-
 EXCLUDED = [
    'admin.logentry',
    'authtoken.token',
@ -75,13 +42,11 @@ def save_object(sender, instance, **kwargs):
    if instance._meta.label_lower in EXCLUDED:
        return

+    print("LOGGING SOMETHING")
+
    previous = instance._previous

-    user, ip = get_user_and_ip(sender)
-
-    from django.contrib.auth.models import AnonymousUser
-    if isinstance(user, AnonymousUser):
-        user = None
+    user, ip = get_current_authenticated_user(), get_current_ip()

    if user is not None and instance._meta.label_lower == "auth.user" and previous:
        # Don't save last login modifications
@ -111,7 +76,7 @@ def delete_object(sender, instance, **kwargs):
    if instance._meta.label_lower in EXCLUDED:
        return

-    user, ip = get_user_and_ip(sender)
+    user, ip = get_current_authenticated_user(), get_current_ip()

    instance_json = serializers.serialize('json', [instance, ])[1:-1]
    Changelog.objects.create(user=user,