KumiSystems/vpnmanager
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
vpnmanager/manager/views.py

536 lines
19 KiB
Python
Raw Normal View History

Stuff.
2018-11-25 21:02:16 +00:00
from django.shortcuts import render, get_object_or_404, redirect
Check in working hosts file generator
2018-11-25 15:05:26 +00:00
from django.http import HttpResponse
Add user management
2019-01-13 12:55:53 +00:00
from django.contrib.auth.forms import AuthenticationForm, PasswordChangeForm, AdminPasswordChangeForm
Stuff.
2018-11-25 21:02:16 +00:00
from django.db.models import Q
from django.views.decorators.csrf import csrf_exempt
from django.utils import timezone
Implement config generator and other things
2018-11-28 21:35:57 +00:00
from django.core.files import File
from django.db.models.fields.files import FieldFile
Add user management
2019-01-13 12:55:53 +00:00
from django.contrib.auth.models import User
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
from django.contrib.auth.decorators import login_required, user_passes_test
Start implement user status logging
2019-01-31 19:58:08 +00:00
from django.db.models.signals import post_save
from django.dispatch import receiver
from django.conf import settings
Show page title in window title
2019-02-02 11:57:15 +00:00
from django.contrib.auth.forms import PasswordResetForm
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
from django.urls import reverse
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
Start implement user status logging
2019-01-31 19:58:08 +00:00
from .models import Device, Organization, Network, Model, Wifi, UserStatus
Implement device logging
2019-01-18 12:50:41 +00:00
from .signals import *
Implement network adding form
2019-02-02 14:31:25 +00:00
from .forms import *
Improve heartbeat handling
2019-02-02 08:18:57 +00:00
from .device import makewificonfig, heartbeathandler
Move firmware generation to tasks
2019-02-03 15:15:28 +00:00
from .tasks import mkfirmware
Check in working hosts file generator
2018-11-25 15:05:26 +00:00
Implement config generator and other things
2018-11-28 21:35:57 +00:00
from distutils.dir_util import copy_tree
Implement queue
2019-02-07 20:52:59 +00:00
from celery.exceptions import TimeoutError
Implement config generator and other things
2018-11-28 21:35:57 +00:00
import glob
import sys
import subprocess
Fixes and improvements
2018-11-26 19:55:09 +00:00
import os
import socket
Implement config generator and other things
2018-11-28 21:35:57 +00:00
import tempfile
import crypt
import tarfile
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
import datetime
Work with Unix timestamps rather than strings for time calculations
2019-01-13 16:56:00 +00:00
import time
Show page title in window title
2019-02-02 11:57:15 +00:00
import uuid
Fixes and improvements
2018-11-26 19:55:09 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
def is_superuser(user):
return user.is_superuser
def is_staff(user):
return user.is_staff
@login_required
Check in working hosts file generator
2018-11-25 15:05:26 +00:00
def index(request):
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("devices"))
Stuff.
2018-11-25 21:02:16 +00:00
@csrf_exempt
def heartbeat(request):
device = get_object_or_404(Device, secret=request.POST.get("secret", ""))
All the things we did today
2018-12-01 17:56:29 +00:00
ip = request.POST.get("ip", "")
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
Improve heartbeat handling
2019-02-02 08:18:57 +00:00
return HttpResponse(heartbeathandler(device, ip))
Add WiFi management
2018-12-28 09:43:57 +00:00
@csrf_exempt
def wireless(request):
device = get_object_or_404(Device, secret=request.POST.get("secret", ""))
Improve heartbeat handling
2019-02-02 08:18:57 +00:00
device.wireless = timezone.now()
device.save()
Add WiFi management
2018-12-28 09:43:57 +00:00
return HttpResponse(makewificonfig(device))
Fixes and improvements
2018-11-26 19:55:09 +00:00
@csrf_exempt
Stuff.
2018-11-25 21:02:16 +00:00
def hosts(request):
device = get_object_or_404(Device, secret=request.POST.get("secret", ""))
Implement device logging
2019-01-18 12:50:41 +00:00
sigRebootDevice(device.serial, None, False)
Make more AJAXy
2018-11-28 15:38:35 +00:00
device.reboot = False
device.save()
Check in working hosts file generator
2018-11-25 15:05:26 +00:00
return render(request, "manager/hosts", {"device": device})
Stuff.
2018-11-25 21:02:16 +00:00
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
@csrf_exempt
def update(request):
FWDIR = "/opt/vpnmanager/images/"
device = get_object_or_404(Device, secret=request.POST.get("secret", ""))
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
Implement queue
2019-02-07 20:52:59 +00:00
try:
if not mkfirmware.delay(device, FWDIR).get(timeout=300):
return HttpResponse(status=503)
except TimeoutError:
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
return HttpResponse(status=503)
Implement device logging
2019-01-18 12:50:41 +00:00
sigUpdateDevice(device.serial, None, False)
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
device.update = False
device.save()
with open("%s/%s.bin" % (FWDIR, device.id), "rb") as download:
response = HttpResponse(download.read(), content_type="application/octet-stream")
response['Content-Disposition'] = 'inline; filename=%s.bin' % device.serial
return response
Fixes and improvements
2018-11-26 19:55:09 +00:00
def ping(request, device_id):
if request.user.is_authenticated:
Improve No-VPN device display in frontend, improve build env
2019-02-11 14:09:56 +00:00
try:
device = Device.objects.get(id=device_id, organization__in=request.user.organization_set.all())
except:
device = None
Make more AJAXy
2018-11-28 15:38:35 +00:00
Improve No-VPN device display in frontend, improve build env
2019-02-11 14:09:56 +00:00
ajax = '{\n "status": '
Fixes and improvements
2018-11-26 19:55:09 +00:00
if not device:
Make more AJAXy
2018-11-28 15:38:35 +00:00
ajax += "-1"
Fixes and improvements
2018-11-26 19:55:09 +00:00
Make more AJAXy
2018-11-28 15:38:35 +00:00
else:
try:
Improve No-VPN device display in frontend, improve build env
2019-02-11 14:09:56 +00:00
if device.curip:
socket.inet_aton(device.curip)
Implement yellow orbs
2019-01-13 17:12:09 +00:00
except Exception as e:
Make more AJAXy
2018-11-28 15:38:35 +00:00
ajax += "-3"
Improve No-VPN device display in frontend, improve build env
2019-02-11 14:09:56 +00:00
else:
try:
ajax += str(1 if (device.curip and not os.WEXITSTATUS(os.system("ping -c1 -w1 " + device.curip + " > /dev/null 2>&1"))) else 2 if (True if not device.lasttime else (timezone.now() - device.lasttime).total_seconds() > 120) and (timezone.now() - device.lastbeat).total_seconds() < 60 else 0)
except:
ajax += "-4"
else:
ajax += ',\n "serial": "%s"' % device.serial
ajax += ',\n "name": "%s"' % device.name if device.name else ""
ajax += ',\n "ip": "%s"' % device.curip if device.curip else ""
ajax += ',\n "time": "%s"' % (None if not device.lasttime else str(int(time.mktime(timezone.make_naive(device.lasttime, timezone.get_current_timezone()).timetuple())) * 1000))
ajax += ',\n "lastbeat": "%s"' % (None if not device.lastbeat else str(int(time.mktime(timezone.make_naive(device.lastbeat, timezone.get_current_timezone()).timetuple())) * 1000))
ajax += ',\n "reboot": %i' % (1 if device.reboot else 0)
ajax += ',\n "update": %i' % (1 if device.update else 0)
ajax += ',\n "network": {'
ajax += '\n "intip": "%s"' % device.network.intip
ajax += ',\n "extip": "%s"' % device.network.extip
ajax += ',\n "name": "%s"' % (device.network.name if device.network.name else "")
ajax += '\n }'
Fixes and improvements
2018-11-26 19:55:09 +00:00
else:
Make more AJAXy
2018-11-28 15:38:35 +00:00
ajax += "-2"
Fixes and improvements
2018-11-26 19:55:09 +00:00
Make more AJAXy
2018-11-28 15:38:35 +00:00
ajax += "\n}"
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
return HttpResponse(ajax, content_type="application/json")
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@login_required
Stuff.
2018-11-25 21:02:16 +00:00
def devices(request):
Set user variable in template tag
2019-02-01 14:38:37 +00:00
return render(request, "manager/index.html", {"title": "Device Administration"})
Stuff.
2018-11-25 21:02:16 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@login_required
Stuff.
2018-11-25 21:02:16 +00:00
def editdevice(request, device_id):
Implement organization overview/creation/deletion in frontend for superusers
2019-02-03 09:51:02 +00:00
device = get_object_or_404(Device, id=device_id, organization__in=request.user.organization_set.all())
Condense code
2019-02-02 15:08:20 +00:00
subnets = Network.objects.filter(organization=device.organization)
wifis = Wifi.objects.filter(organization=device.organization)
Make things prettier
2019-01-05 15:08:19 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
if request.POST.get("subnet", ""):
Condense code
2019-02-02 15:08:20 +00:00
subnet = Network.objects.get(intip=request.POST.get("subnet", device.network.intip if device.network else "No VPN"))
Stuff.
2018-11-25 21:02:16 +00:00
Fix device editing
2019-02-07 15:11:32 +00:00
if subnet in subnets:
Implement device logging
2019-01-18 12:50:41 +00:00
newname = request.POST.get("name", "")
Condense code
2019-02-02 15:08:20 +00:00
if newname != device.name:
Fix device editing
2019-02-07 15:11:32 +00:00
sigRenameDevice(device.serial, request.user.username, device.name, newname)
Condense code
2019-02-02 15:08:20 +00:00
device.name = newname
Implement device logging
2019-01-18 12:50:41 +00:00
Condense code
2019-02-02 15:08:20 +00:00
if subnet != device.network:
sigNetDevice(device.serial, request.user.username, str(device.network), str(subnet))
device.network = subnet
Implement device logging
2019-01-18 12:50:41 +00:00
newreboot = True if request.POST.get("reboot", "0") == "True" else False
Condense code
2019-02-02 15:08:20 +00:00
if newreboot != device.reboot:
sigRebootDevice(device.serial, request.user.username, newreboot)
device.reboot = newreboot
Implement device logging
2019-01-18 12:50:41 +00:00
newupdate = True if request.POST.get("update", "0") == "True" else False
Condense code
2019-02-02 15:08:20 +00:00
if newupdate != device.update:
sigUpdateDevice(device.serial, request.user.username, newupdate)
device.update = newupdate
Implement device logging
2019-01-18 12:50:41 +00:00
newwifis = set(request.POST.getlist("wifi", []))
Condense code
2019-02-02 15:08:20 +00:00
oldwifis = set(device.wifi.all())
Implement device logging
2019-01-18 12:50:41 +00:00
if newwifis != oldwifis:
Condense code
2019-02-02 15:08:20 +00:00
sigWifiDevice(device.serial, request.user.username, oldwifis, newwifis)
device.wifi.set(newwifis)
Implement device logging
2019-01-18 12:50:41 +00:00
Condense code
2019-02-02 15:08:20 +00:00
device.changed = timezone.now()
device.save()
Stuff.
2018-11-25 21:02:16 +00:00
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("devices"))
Stuff.
2018-11-25 21:02:16 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
return render(request, "manager/edit.html",
{
"title": "Edit Device",
Condense code
2019-02-02 15:08:20 +00:00
"device": device,
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
"subnets": subnets,
"wifis": wifis,
Condense code
2019-02-02 15:08:20 +00:00
"curfis": Wifi.objects.filter(device=device)
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
}
)
Implement config generator and other things
2018-11-28 21:35:57 +00:00
Show page title in window title
2019-02-02 11:57:15 +00:00
@user_passes_test(is_superuser)
def makeuser(request):
if request.POST.get("username", ""):
user = User.objects.create_user(
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
username=request.POST.get("username", ""),
Show page title in window title
2019-02-02 11:57:15 +00:00
password=str(uuid.uuid4().hex),
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
first_name=request.POST.get("firstname", ""),
last_name=request.POST.get("lastname", ""),
is_staff=request.POST.get("staff", "0") == "True",
is_superuser=request.POST.get("superuser", "0") == "True",
email=request.POST.get("email", "")
Show page title in window title
2019-02-02 11:57:15 +00:00
)
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
user.organization_set.set(set(request.POST.getlist("orga", [])))
Show page title in window title
2019-02-02 11:57:15 +00:00
form = PasswordResetForm({"email": user.email})
if form.is_valid():
form.save(
request=request,
use_https=True,
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
email_template_name='registration/add_user.html')
Show page title in window title
2019-02-02 11:57:15 +00:00
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("users"))
Show page title in window title
2019-02-02 11:57:15 +00:00
else:
return render(request, "manager/adduser.html", {"title": "Add User"})
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@login_required
Add user management
2019-01-13 12:55:53 +00:00
def edituser(request, user_id):
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
if request.user.is_staff or request.user.id == user_id:
Show page title in window title
2019-02-02 11:57:15 +00:00
orgas = request.user.organization_set.all()
Allow a user not assigned to an orga to edit themselves
2019-02-10 19:08:09 +00:00
user = request.user if request.user.id == user_id else User.objects.distinct().get(id=user_id, organization__in=orgas)
Add user management
2019-01-13 12:55:53 +00:00
if not user:
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("users"))
Add user management
2019-01-13 12:55:53 +00:00
if request.POST.get("form", ""):
Add rudimentary logging functions
2019-01-19 09:51:17 +00:00
newfirst = request.POST.get("firstname", "")
newlast = request.POST.get("lastname", "")
Show page title in window title
2019-02-02 11:57:15 +00:00
if newlast != user.last_name or newfirst != user.first_name:
sigRenameUser(user.username, request.user.username, "%s %s" % (user.first_name, user.last_name), "%s %s" % (newfirst, newlast))
user.first_name = request.POST.get("firstname", "")
user.last_name = request.POST.get("lastname", "")
Prevent privilege escalation
2019-01-17 08:52:38 +00:00
if request.user.is_staff or request.user.is_superuser:
Add rudimentary logging functions
2019-01-19 09:51:17 +00:00
newstaff = request.POST.get("staff", "0") == "True"
Show page title in window title
2019-02-02 11:57:15 +00:00
if newstaff != user.is_staff:
sigStaffUser(user.username, request.user.username, newstaff)
user.is_staff = newstaff
Prevent privilege escalation
2019-01-17 08:52:38 +00:00
if request.user.is_superuser:
Add rudimentary logging functions
2019-01-19 09:51:17 +00:00
newsuper = request.POST.get("superuser", "0") == "True"
Show page title in window title
2019-02-02 11:57:15 +00:00
if newsuper != user.is_superuser:
sigSuperUser(user.username, request.user.username, newsuper)
user.is_superuser = newsuper
Add rudimentary logging functions
2019-01-19 09:51:17 +00:00
Implement organization selection in user management
2019-02-02 10:03:33 +00:00
neworgas = set(request.POST.getlist("orga", []))
Show page title in window title
2019-02-02 11:57:15 +00:00
oldorgas = set(user.organization_set.all())
Implement organization selection in user management
2019-02-02 10:03:33 +00:00
if neworgas != oldorgas:
Show page title in window title
2019-02-02 11:57:15 +00:00
sigOrgaUser(user.username, request.user.username, oldorgas, neworgas)
user.organization_set.set(neworgas)
Implement organization selection in user management
2019-02-02 10:03:33 +00:00
Add rudimentary logging functions
2019-01-19 09:51:17 +00:00
newmail = request.POST.get("email", "")
Show page title in window title
2019-02-02 11:57:15 +00:00
if newmail != user.email:
sigMailUser(user.username, request.user.username, user.email, newmail)
user.email = newmail
Prevent privilege escalation
2019-01-17 08:52:38 +00:00
Show page title in window title
2019-02-02 11:57:15 +00:00
user.save()
Add user management
2019-01-13 12:55:53 +00:00
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("users"))
Add user management
2019-01-13 12:55:53 +00:00
return render(request, "manager/edituser.html",
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
{
"title": "Edit User",
Show page title in window title
2019-02-02 11:57:15 +00:00
"auser": user
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
}
)
Add user management
2019-01-13 12:55:53 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
else:
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("two_factor:login", kwargs={'next': request.path}))
Add user management
2019-01-13 12:55:53 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@login_required
Add WiFi management
2018-12-28 09:43:57 +00:00
def editwifi(request, wifi_id):
wifi = None
for organization in Organization.objects.filter(users=request.user):
wifi = wifi or Wifi.objects.filter(id=wifi_id, organization=organization)
if not wifi:
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("wifi"))
Add WiFi management
2018-12-28 09:43:57 +00:00
if request.POST.get("serial", ""):
Add rudimentary logging functions
2019-01-19 09:51:17 +00:00
newserial = request.POST.get("serial", "")
if newserial != wifi[0].serial:
sigRenameWifi(wifi[0].serial, request.user.username, wifi[0].serial, newserial)
wifi[0].serial = newserial
newssid = request.POST.get("ssid", "")
if newssid != wifi[0].ssid:
sigSSIDWifi(wifi[0].serial, request.user.username, wifi[0].ssid, newssid)
wifi[0].ssid = newssid
newkey = request.POST.get("key", "")
if newkey != wifi[0].key:
sigKeyWifi(wifi[0].serial, request.user.username, wifi[0].key, newkey)
wifi[0].key = newkey
Add WiFi management
2018-12-28 09:43:57 +00:00
wifi[0].save()
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("wifi"))
Add WiFi management
2018-12-28 09:43:57 +00:00
return render(request, "manager/editwifi.html",
{
"title": "Edit WiFi",
"wifi": wifi[0]
}
)
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@user_passes_test(is_superuser)
Implement config generator and other things
2018-11-28 21:35:57 +00:00
def getconfig(request, device_id):
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
FWDIR = "/opt/vpnmanager/images/"
Implement config generator and other things
2018-11-28 21:35:57 +00:00
device = get_object_or_404(Device, id=device_id)
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
if not mkfirmware.delay(device, FWDIR).get(timeout=300):
Change status code
2019-02-11 15:45:41 +00:00
return HttpResponse(status=503)
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
Implement device logging
2019-01-18 12:50:41 +00:00
sigUpdateDevice(device.serial, None, False)
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
device.update = False
device.save()
Implement config generator and other things
2018-11-28 21:35:57 +00:00
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
with open("%s/%s.bin" % (FWDIR, device.id), "rb") as download:
All the things we did today
2018-12-01 17:56:29 +00:00
response = HttpResponse(download.read(), content_type="application/octet-stream")
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
response['Content-Disposition'] = 'inline; filename=%s.bin' % device.serial
All the things we did today
2018-12-01 17:56:29 +00:00
return response
Implement config generator and other things
2018-11-28 21:35:57 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@login_required
Implement config generator and other things
2018-11-28 21:35:57 +00:00
def rebootdevice(request, device_id):
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
device = get_object_or_404(Device, id=device_id, organization__in=request.user.organization_set.all())
Implement config generator and other things
2018-11-28 21:35:57 +00:00
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
if not device.reboot:
sigRebootDevice(device.serial, request.user.username, True)
device.reboot = True
device.save()
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("devices"))
Implement config generator and other things
2018-11-28 21:35:57 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@user_passes_test(is_staff)
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
def updatedevice(request, device_id):
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
device = get_object_or_404(Device, id=device_id, organization__in=request.user.organization_set.all())
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
if not device.update:
sigUpdateDevice(device.serial, request.user.username, True)
device.update = True
device.save()
Implement LED status indicators for v4, store generated firmware images for faster retrieval
2018-12-25 23:25:53 +00:00
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("devices"))
Implement config generator and other things
2018-11-28 21:35:57 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@user_passes_test(is_superuser)
Implement config generator and other things
2018-11-28 21:35:57 +00:00
def deletedevice(request, device_id):
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
CADIR = "/etc/openvpn/ca/"
BEFORE = os.getcwd()
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
device = get_object_or_404(Device, id=device_id)
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
os.chdir(CADIR)
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
subprocess.call(CADIR + "/revoke " + device.serial, shell=True)
os.system("rm " + CADIR + "/keys/" + device.serial + ".{crt,csr,key}")
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
os.chdir(BEFORE)
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
device.delete()
Implement config generator and other things
2018-11-28 21:35:57 +00:00
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("devices"))
Implement config generator and other things
2018-11-28 21:35:57 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@user_passes_test(is_staff)
Delete WiFi from UI, fix #2
2019-01-06 18:15:13 +00:00
def deletewifi(request, wifi_id):
Add delete user function in frontend
2019-02-02 12:31:05 +00:00
wifi = get_object_or_404(Wifi, id=wifi_id, organization__in=request.user.organization_set.all())
wifi.delete()
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("wifi"))
Delete WiFi from UI, fix #2
2019-01-06 18:15:13 +00:00
Add delete user function in frontend
2019-02-02 12:31:05 +00:00
@user_passes_test(is_superuser)
def deleteuser(request, user_id):
user = get_object_or_404(User, id=user_id)
user.delete()
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("users"))
Add delete user function in frontend
2019-02-02 12:31:05 +00:00
Add network adding form
2019-02-02 15:01:18 +00:00
@user_passes_test(is_superuser)
def deletenetwork(request, network_id):
network = get_object_or_404(Network, id=network_id)
network.delete()
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("networks"))
Add network adding form
2019-02-02 15:01:18 +00:00
Implement organization overview/creation/deletion in frontend for superusers
2019-02-03 09:51:02 +00:00
@user_passes_test(is_superuser)
def deleteorga(request, orga_id):
orga = get_object_or_404(Organization, id=orga_id)
orga.delete()
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("organizations"))
Implement organization overview/creation/deletion in frontend for superusers
2019-02-03 09:51:02 +00:00
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@user_passes_test(is_staff)
Add WiFi management
2018-12-28 09:43:57 +00:00
def makewifi(request):
wifi_serial = request.POST.get("serial", "")
wifi_ssid = request.POST.get("ssid", "")
wifi_key = request.POST.get("key", "")
wifi_organization = request.POST.get("organization", "")
Reduce code redundancy
2019-02-01 20:28:37 +00:00
if not (wifi_serial and wifi_organization):
Add WiFi management
2018-12-28 09:43:57 +00:00
return render(request, "manager/addwifi.html",
{
Reduce code redundancy
2019-02-01 20:28:37 +00:00
"title": "Add WiFi"
Add WiFi management
2018-12-28 09:43:57 +00:00
}
)
Make device view more simple
2019-02-01 14:28:56 +00:00
wifi = Wifi.objects.create(
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
serial = wifi_serial,
ssid = wifi_ssid,
key = wifi_key,
organization = Organization.objects.filter(id=wifi_organization)[0]
)
Add WiFi management
2018-12-28 09:43:57 +00:00
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("wifi"))
Add WiFi management
2018-12-28 09:43:57 +00:00
Implement network adding form
2019-02-02 14:31:25 +00:00
@user_passes_test(is_superuser)
def makenetwork(request):
if request.method == "POST":
Fix call to NetworkForm, fixing #9
2019-02-19 14:08:43 +00:00
form = NetworkForm(request.user, request.POST)
Implement network adding form
2019-02-02 14:31:25 +00:00
if form.is_valid():
data = form.cleaned_data
network = Network.objects.create(name=data["name"], intip=data["intip"], extip=data["extip"])
network.organization.set(data["orgas"])
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("networks"))
Implement network adding form
2019-02-02 14:31:25 +00:00
else:
Limit organizations visible to superusers, fixing #10
2019-02-13 19:10:36 +00:00
form = NetworkForm(request.user)
Implement network adding form
2019-02-02 14:31:25 +00:00
return render(request, "manager/form.html", { "title": "Add Network", "form": form })
Remember user's orga display selection
2019-02-19 14:42:13 +00:00
@login_required
def setactiveorga(request, orga_id):
request.user.userstatus.orga = get_object_or_404(Organization, id=orga_id, users=request.user)
request.user.userstatus.save()
return HttpResponse("")
Implement organization overview/creation/deletion in frontend for superusers
2019-02-03 09:51:02 +00:00
@user_passes_test(is_superuser)
def makeorganization(request):
if request.method == "POST":
form = OrgaForm(request.POST)
if form.is_valid():
data = form.cleaned_data
orga = Organization.objects.create(name=data["name"], userlimit=data["users"])
request.user.organization_set.add(orga)
Make 'No VPN' undeletable and add it to every new orga
2019-02-19 13:53:03 +00:00
Network.objects.get(intip="No VPN").organization.add(orga)
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("organizations"))
Implement organization overview/creation/deletion in frontend for superusers
2019-02-03 09:51:02 +00:00
else:
form = OrgaForm()
return render(request, "manager/form.html", { "title": "Add Organization", "form": form })
Implement organization editing
2019-02-03 10:35:52 +00:00
@user_passes_test(is_superuser)
def editorganization(request, orga_id):
orga = get_object_or_404(Organization, id=orga_id)
if request.method == "POST":
form = OrgaForm(request.POST)
if form.is_valid():
data = form.cleaned_data
orga.name = data["name"]
orga.userlimit = data["users"]
orga.save()
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("organizations"))
Implement organization editing
2019-02-03 10:35:52 +00:00
else:
form = OrgaForm(initial={ "name": orga.name, "users": orga.userlimit })
return render(request, "manager/form.html", { "title": "Change Organization", "form": form })
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
@user_passes_test(is_superuser)
Implement config generator and other things
2018-11-28 21:35:57 +00:00
def makedevice(request):
CADIR = "/etc/openvpn/ca/"
CONFIGDIR = "/etc/openvpn/client-configs/"
BEFORE = os.getcwd()
device_serial = request.POST.get("serial", "")
device_name = request.POST.get("name", "")
device_organization = request.POST.get("organization", "")
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
device_model = request.POST.get("model", "")
Implement config generator and other things
2018-11-28 21:35:57 +00:00
if not device_serial:
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
orga = Organization.objects.all()
models = Model.objects.all()
return render(request, "manager/add.html",
Implement config generator and other things
2018-11-28 21:35:57 +00:00
{
"title": "Add Device",
"organizations": orga,
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
"models": models
Implement config generator and other things
2018-11-28 21:35:57 +00:00
}
)
Fix indentation
2019-02-01 14:30:46 +00:00
if glob.glob(CADIR + "/keys/" + device_serial + "*"):
return HttpResponse("This key already exists.")
Implement config generator and other things
2018-11-28 21:35:57 +00:00
os.chdir(CADIR)
if subprocess.call(CADIR + "/generate-key " + device_serial, shell=True):
Use decorators for permission checks
2019-01-17 08:19:26 +00:00
os.chdir(BEFORE)
return HttpResponse("Something went wrong trying to generate the key.")
Implement config generator and other things
2018-11-28 21:35:57 +00:00
if glob.glob(CONFIGDIR + "/files/" + device_serial + "*"):
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
os.chdir(BEFORE)
Implement config generator and other things
2018-11-28 21:35:57 +00:00
return HttpResponse("This configuration file already exists.")
os.chdir(CONFIGDIR)
if subprocess.call(CONFIGDIR + "/make_config " + device_serial, shell=True):
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
os.chdir(BEFORE)
Implement config generator and other things
2018-11-28 21:35:57 +00:00
return HttpResponse("Something went wrong trying to generate the config file.")
os.chdir(BEFORE)
device = Device.objects.create(
serial=device_serial,
name=device_name,
Lots of improvements and fixes, getting VPN360 v4 to work
2018-12-15 11:35:00 +00:00
model=Model.objects.filter(id=device_model)[0],
All the things we did today
2018-12-01 17:56:29 +00:00
network=Network.objects.filter(intip="No VPN")[0],
Implement config generator and other things
2018-11-28 21:35:57 +00:00
organization=Organization.objects.filter(id=device_organization)[0],
Fix device creation
2019-02-02 15:35:14 +00:00
vpnconfig = open(CONFIGDIR + "/files/" + device_serial + ".ovpn").read(),
changed = timezone.now()
Implement config generator and other things
2018-11-28 21:35:57 +00:00
)
Implement reverse lookups, fixing #15, some code beautification/simplification
2019-02-15 10:52:56 +00:00
return redirect(reverse("devices"))
Start implement user status logging
2019-01-31 19:58:08 +00:00
@receiver(post_save, sender=settings.AUTH_USER_MODEL)
def createUserStatus(sender, instance, created, **kwargs):
if created:
UserStatus.objects.create(user=instance)
@receiver(post_save, sender=settings.AUTH_USER_MODEL)
def saveUserStatus(sender, instance, **kwargs):
Fix login for existing user
2019-02-01 08:27:34 +00:00
try:
instance.userstatus.save()
except:
UserStatus.objects.create(user=instance)
Start implement user status logging
2019-01-31 19:58:08 +00:00
Reference in a new issue Copy permalink