This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
authentik/passbook/admin/views/policies.py

130 lines
4 KiB
Python
Raw Normal View History

2019-02-16 09:24:31 +00:00
"""passbook Policy administration"""
from typing import Any, Dict
2019-02-16 09:24:31 +00:00
from django.contrib import messages
from django.contrib.auth.mixins import LoginRequiredMixin
2019-12-31 11:51:16 +00:00
from django.contrib.auth.mixins import (
PermissionRequiredMixin as DjangoPermissionRequiredMixin,
)
2019-02-16 09:24:31 +00:00
from django.contrib.messages.views import SuccessMessageMixin
from django.db.models import QuerySet
from django.http import HttpResponse
2019-02-16 09:24:31 +00:00
from django.urls import reverse_lazy
2020-09-11 21:21:11 +00:00
from django.utils.translation import gettext as _
from django.views.generic import FormView
2019-02-16 09:24:31 +00:00
from django.views.generic.detail import DetailView
from guardian.mixins import PermissionListMixin, PermissionRequiredMixin
2019-02-16 09:24:31 +00:00
from passbook.admin.forms.policies import PolicyTestForm
from passbook.admin.views.utils import (
BackSuccessUrlMixin,
DeleteMessageView,
InheritanceCreateView,
InheritanceListView,
InheritanceUpdateView,
SearchListMixin,
UserPaginateListMixin,
)
from passbook.policies.models import Policy, PolicyBinding
from passbook.policies.process import PolicyProcess, PolicyRequest
2019-02-16 09:24:31 +00:00
class PolicyListView(
LoginRequiredMixin,
PermissionListMixin,
UserPaginateListMixin,
SearchListMixin,
InheritanceListView,
):
2019-02-16 10:13:00 +00:00
"""Show list of all policies"""
2019-02-16 09:24:31 +00:00
model = Policy
permission_required = "passbook_policies.view_policy"
ordering = "name"
2019-12-31 11:51:16 +00:00
template_name = "administration/policy/list.html"
search_fields = ["name"]
2019-02-16 09:24:31 +00:00
2019-12-31 11:51:16 +00:00
class PolicyCreateView(
SuccessMessageMixin,
BackSuccessUrlMixin,
2019-12-31 11:51:16 +00:00
LoginRequiredMixin,
DjangoPermissionRequiredMixin,
InheritanceCreateView,
2019-12-31 11:51:16 +00:00
):
2019-02-16 09:24:31 +00:00
"""Create new Policy"""
model = Policy
permission_required = "passbook_policies.add_policy"
2019-12-31 11:51:16 +00:00
template_name = "generic/create.html"
success_url = reverse_lazy("passbook_admin:policies")
success_message = _("Successfully created Policy")
2019-02-16 09:24:31 +00:00
2019-12-31 11:51:16 +00:00
class PolicyUpdateView(
SuccessMessageMixin,
BackSuccessUrlMixin,
LoginRequiredMixin,
PermissionRequiredMixin,
InheritanceUpdateView,
2019-12-31 11:51:16 +00:00
):
2019-02-16 09:24:31 +00:00
"""Update policy"""
model = Policy
permission_required = "passbook_policies.change_policy"
2019-12-31 11:51:16 +00:00
template_name = "generic/update.html"
success_url = reverse_lazy("passbook_admin:policies")
success_message = _("Successfully updated Policy")
2019-02-16 09:24:31 +00:00
2020-02-18 20:35:21 +00:00
class PolicyDeleteView(LoginRequiredMixin, PermissionRequiredMixin, DeleteMessageView):
2019-02-16 09:24:31 +00:00
"""Delete policy"""
model = Policy
permission_required = "passbook_policies.delete_policy"
2019-12-31 11:51:16 +00:00
template_name = "generic/delete.html"
success_url = reverse_lazy("passbook_admin:policies")
success_message = _("Successfully deleted Policy")
2019-02-16 09:24:31 +00:00
class PolicyTestView(LoginRequiredMixin, DetailView, PermissionRequiredMixin, FormView):
2019-02-16 09:24:31 +00:00
"""View to test policy(s)"""
model = Policy
form_class = PolicyTestForm
permission_required = "passbook_policies.view_policy"
2019-12-31 11:51:16 +00:00
template_name = "administration/policy/test.html"
2019-02-16 09:24:31 +00:00
object = None
def get_object(self, queryset=None) -> QuerySet:
2019-12-31 11:51:16 +00:00
return (
Policy.objects.filter(pk=self.kwargs.get("pk")).select_subclasses().first()
)
2019-02-16 09:24:31 +00:00
def get_context_data(self, **kwargs: Any) -> Dict[str, Any]:
2019-12-31 11:51:16 +00:00
kwargs["policy"] = self.get_object()
2019-02-16 09:24:31 +00:00
return super().get_context_data(**kwargs)
def post(self, *args, **kwargs) -> HttpResponse:
2019-02-16 09:24:31 +00:00
self.object = self.get_object()
return super().post(*args, **kwargs)
def form_valid(self, form: PolicyTestForm) -> HttpResponse:
2019-02-16 09:24:31 +00:00
policy = self.get_object()
2019-12-31 11:51:16 +00:00
user = form.cleaned_data.get("user")
p_request = PolicyRequest(user)
p_request.http_request = self.request
p_request.context = form.cleaned_data
proc = PolicyProcess(PolicyBinding(policy=policy), p_request, None)
result = proc.execute()
if result.passing:
2019-12-31 11:51:16 +00:00
messages.success(self.request, _("User successfully passed policy."))
2019-02-16 09:24:31 +00:00
else:
messages.error(self.request, _("User didn't pass policy."))
return self.render_to_response(self.get_context_data(form=form, result=result))