openwebrx-clone/owrx/controllers/admin.py

44 lines
1.4 KiB
Python
Raw Normal View History

from .template import WebpageController
2020-02-23 20:52:13 +00:00
from .session import SessionStorage
2020-04-01 19:39:53 +00:00
from owrx.config import Config
2021-02-08 16:09:22 +00:00
from owrx.users import UserList
2020-04-25 23:54:48 +00:00
from urllib import parse
import logging
logger = logging.getLogger(__name__)
2020-02-23 18:23:18 +00:00
class Authentication(object):
def isAuthenticated(self, request):
2021-02-08 16:09:22 +00:00
if "owrx-session" not in request.cookies:
return False
session = SessionStorage.getSharedInstance().getSession(request.cookies["owrx-session"].value)
if session is None:
return False
if "user" not in session:
return False
userList = UserList.getSharedInstance()
try:
user = userList[session["user"]]
return user.is_enabled()
except KeyError:
return False
2020-02-23 18:23:18 +00:00
class AdminController(WebpageController):
2020-02-23 18:23:18 +00:00
def __init__(self, handler, request, options):
self.authentication = Authentication()
super().__init__(handler, request, options)
def handle_request(self):
2020-04-01 19:39:53 +00:00
config = Config.get()
2020-04-25 18:55:33 +00:00
if "webadmin_enabled" not in config or not config["webadmin_enabled"]:
2020-04-01 19:39:53 +00:00
self.send_response("Web Admin is disabled", code=403)
return
2020-02-23 18:23:18 +00:00
if self.authentication.isAuthenticated(self.request):
super().handle_request()
else:
2020-04-25 23:54:48 +00:00
target = "/login?{0}".format(parse.urlencode({"ref": self.request.path}))
self.send_redirect(target)