1
0
mirror of https://gitlab.com/animath/si/plateforme.git synced 2024-11-26 14:07:08 +00:00
plateforme-tfjm2/tfjm/middlewares.py

119 lines
3.9 KiB
Python
Raw Normal View History

2020-04-30 17:12:15 +00:00
from django.conf import settings
2020-05-04 19:02:57 +00:00
from django.contrib.auth.models import AnonymousUser
2020-04-30 17:12:15 +00:00
from threading import local
from django.contrib.sessions.backends.db import SessionStore
2020-05-04 19:02:57 +00:00
from member.models import TFJMUser
from tournament.models import Pool
2020-05-04 19:02:57 +00:00
2020-04-30 17:12:15 +00:00
USER_ATTR_NAME = getattr(settings, 'LOCAL_USER_ATTR_NAME', '_current_user')
SESSION_ATTR_NAME = getattr(settings, 'LOCAL_SESSION_ATTR_NAME', '_current_session')
IP_ATTR_NAME = getattr(settings, 'LOCAL_IP_ATTR_NAME', '_current_ip')
_thread_locals = local()
def _set_current_user_and_ip(user=None, session=None, ip=None):
setattr(_thread_locals, USER_ATTR_NAME, user)
setattr(_thread_locals, SESSION_ATTR_NAME, session)
setattr(_thread_locals, IP_ATTR_NAME, ip)
2020-05-04 19:02:57 +00:00
def get_current_user() -> TFJMUser:
2020-04-30 17:12:15 +00:00
return getattr(_thread_locals, USER_ATTR_NAME, None)
def get_current_session() -> SessionStore:
return getattr(_thread_locals, SESSION_ATTR_NAME, None)
def get_current_ip() -> str:
return getattr(_thread_locals, IP_ATTR_NAME, None)
def get_current_authenticated_user():
current_user = get_current_user()
if isinstance(current_user, AnonymousUser):
return None
return current_user
class SessionMiddleware(object):
"""
This middleware get the current user with his or her IP address on each request.
"""
def __init__(self, get_response):
self.get_response = get_response
def __call__(self, request):
2020-05-04 19:02:57 +00:00
if "_fake_user_id" in request.session:
request.user = TFJMUser.objects.get(pk=request.session["_fake_user_id"])
2020-04-30 17:12:15 +00:00
user = request.user
if 'HTTP_X_FORWARDED_FOR' in request.META:
ip = request.META.get('HTTP_X_FORWARDED_FOR')
else:
ip = request.META.get('REMOTE_ADDR')
_set_current_user_and_ip(user, request.session, ip)
response = self.get_response(request)
_set_current_user_and_ip(None, None, None)
return response
2020-05-25 16:27:07 +00:00
class ExtraAccessMiddleware(object):
"""
This middleware allows some non authenticated people to access to pool data.
"""
def __init__(self, get_response):
self.get_response = get_response
def __call__(self, request):
if "extra_access_token" in request.GET:
request.session["extra_access_token"] = request.GET["extra_access_token"]
if request.user.is_authenticated:
pool = Pool.objects.filter(extra_access_token=request.GET["extra_access_token"])
if pool.exists():
pool = pool.get()
pool.juries.add(request.user)
pool.save()
2020-05-25 16:27:07 +00:00
else:
request.session.setdefault("extra_access_token", "")
return self.get_response(request)
2020-04-30 17:12:15 +00:00
class TurbolinksMiddleware(object):
"""
Send the `Turbolinks-Location` header in response to a visit that was redirected,
and Turbolinks will replace the browser's topmost history entry.
"""
def __init__(self, get_response):
self.get_response = get_response
def __call__(self, request):
response = self.get_response(request)
is_turbolinks = request.META.get('HTTP_TURBOLINKS_REFERRER')
is_response_redirect = response.has_header('Location')
if is_turbolinks:
if is_response_redirect:
location = response['Location']
prev_location = request.session.pop('_turbolinks_redirect_to', None)
if prev_location is not None:
# relative subsequent redirect
if location.startswith('.'):
location = prev_location.split('?')[0] + location
request.session['_turbolinks_redirect_to'] = location
else:
if request.session.get('_turbolinks_redirect_to'):
location = request.session.pop('_turbolinks_redirect_to')
response['Turbolinks-Location'] = location
return response