# this program; see the file COPYING. If not, write to the Free Software
# Foundation, 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
-from django.conf import settings
-from django.contrib.sites.models import Site, RequestSite
-from django.contrib import messages
-from django.views.generic import View
-from django.views.generic.base import TemplateView
-from django.shortcuts import render
-from django.template.loader import render_to_string
-from django.core.mail import send_mail
-from django.utils.decorators import method_decorator
-from django.contrib.auth.decorators import login_required
-
-from plugins.lists.simplelist import SimpleList
-from plugins.hazelnut import Hazelnut
-from plugins.pres_view import PresView
-from portal.event import Event
import json
-from portal import signals
-from portal.forms import SliceRequestForm, ContactForm
-from portal.util import RegistrationView, ActivationView
-from portal.models import PendingUser, PendingSlice
-from portal.actions import authority_get_pi_emails, get_request_by_authority, manifold_add_user, manifold_update_user
-from manifold.manifoldapi import execute_query
-from manifold.core.query import Query
-from unfold.page import Page
-from myslice.viewutils import topmenu_items, the_user
-from django.http import HttpResponseRedirect, HttpResponse
-
-from M2Crypto import Rand, RSA, BIO
-import os, re
-
-#class for my_account
-class AccountView(TemplateView):
- template_name = "my_account.html"
-
- #This view requires login
- @method_decorator(login_required)
- def dispatch(self, *args, **kwargs):
- return super(AccountView, self).dispatch(*args, **kwargs)
+from django.http import HttpResponseRedirect, HttpResponse
+from django.views.generic.base import TemplateView
+from django.shortcuts import render
+from django.template.loader import render_to_string
+from ui.topmenu import topmenu_items, the_user
- def get_context_data(self, **kwargs):
- #page = Page(self.request)
-
- user_query = Query().get('local:user').select('config','email')
- user_details = execute_query(self.request, user_query)
-
- # not always found in user_details...
- config={}
- for user_detail in user_details:
- #email = user_detail['email']
- if user_detail['config']:
- config = json.loads(user_detail['config'])
-
- platform_query = Query().get('local:platform').select('platform_id','platform')
- account_query = Query().get('local:account').select('user_id','platform_id','auth_type','config')
- platform_details = execute_query(self.request, platform_query)
- account_details = execute_query(self.request, account_query)
-
- # initial assignment needed for users having no account
- platform_name = ''
- account_type = ''
- account_usr_hrn = ''
- account_pub_key = ''
- platform_name_list = []
- account_type_list = []
- usr_hrn_list = []
- pub_key_list = []
- for account_detail in account_details:
- for platform_detail in platform_details:
- if platform_detail['platform_id'] == account_detail['platform_id']:
- platform_name = platform_detail['platform']
- account_type = account_detail['auth_type']
- account_config = json.loads(account_detail['config'])
- # a bit more pythonic
- account_usr_hrn = account_config.get('user_hrn','N/A')
- account_pub_key = account_config.get('user_public_key','N/A')
-
- platform_name_list.append(platform_name)
- account_type_list.append(account_type)
- usr_hrn_list.append(account_usr_hrn)
- pub_key_list.append(account_pub_key)
-
- # combining 4 lists into 1 [to render in the template]
- lst = [{'platform_name': t[0], 'account_type': t[1], 'usr_hrn':t[2], 'usr_pubkey':t[3]} for t in zip(platform_name_list, account_type_list, usr_hrn_list, pub_key_list)]
- #print "test"
- #print lst
-
- context = super(AccountView, self).get_context_data(**kwargs)
- context['data'] = lst
- context['person'] = self.request.user
- context ['firstname'] = config.get('firstname',"?")
- context ['lastname'] = config.get('lastname',"?")
- context ['fullname'] = context['firstname'] +' '+ context['lastname']
- context ['authority'] = config.get('authority',"Unknown Authority")
- #context['users'] = userlist.render(self.request)
-
- # XXX This is repeated in all pages
- # more general variables expected in the template
- context['title'] = 'Platforms connected to MySlice'
- # the menu items on the top
- context['topmenu_items'] = topmenu_items('My Account', self.request)
- # so we can sho who is logged
- context['username'] = the_user(self.request)
-# context ['firstname'] = config['firstname']
- #context.update(page.prelude_env())
- return context
-
-@login_required
-#my_acc form value processing
-def account_process(request):
- user_query = Query().get('local:user').select('password','config')
- user_details = execute_query(request, user_query)
-
- if 'submit_name' in request.POST:
- edited_first_name = request.POST['fname']
- edited_last_name = request.POST['lname']
-
- config={}
- for user_config in user_details:
- #email = user_detail['email']
- if user_config['config']:
- config = json.loads(user_config['config'])
- config['firstname'] = edited_first_name
- config['lastname'] = edited_last_name
- config['authority'] = config.get('authority','Unknown Authority')
- updated_config = json.dumps(config)
-
- # updating config local:user in manifold
- user_params = { 'config': updated_config}
- manifold_update_user(request,user_params)
- # this will be depricated, we will show the success msg in same page
- return HttpResponse('Sucess: First Name and Last Name Updated!')
- elif 'submit_pass' in request.POST:
- edited_password = request.POST['password']
-
- for user_pass in user_details:
- user_pass['password'] = edited_password
- #updating password in local:user
- user_params = { 'password': user_pass['password']}
- manifold_update_user(request,user_params)
-
- return HttpResponse('Success: Password Changed!!')
- elif 'generate' in request.POST:
- # Generate public and private keys using SFA Library
- from sfa.trust.certificate import Keypair
- k = Keypair(create=True)
- public_key = k.get_pubkey_string()
- private_key = k.as_pem()
- private_key = ''.join(private_key.split())
- public_key = "ssh-rsa " + public_key
- # Saving to DB
- keypair = '{"user_public_key":"'+ public_key + '", "user_private_key":"'+ private_key + '"}'
-# keypair = re.sub("\r", "", keypair)
-# keypair = re.sub("\n", "\\n", keypair)
-# #keypair = keypair.rstrip('\r\n')
-# keypair = ''.join(keypair.split())
- get_user.keypair = keypair
- get_user.save()
- return HttpResponse('Success: New Keypair Generated! %s' % keypair)
-
- elif 'upload_key' in request.POST:
- up_file = request.FILES['pubkey']
- file_content = up_file.read()
- file_name = up_file.name
- file_extension = os.path.splitext(file_name)[1]
- allowed_extension = ['.pub','.txt']
- if file_extension in allowed_extension and re.search(r'ssh-rsa',file_content):
- file_content = '{"user_public_key":"'+ file_content +'"}'
- file_content = re.sub("\r", "", file_content)
- file_content = re.sub("\n", "\\n",file_content)
- file_content = ''.join(file_content.split())
- get_user.keypair = file_content
- get_user.save()
- return HttpResponse('Success: Publickey uploaded! Old records overwritten')
- else:
- return HttpResponse('Please upload a valid RSA public key [.txt or .pub].')
-
- else:
- message = 'You submitted an empty form.'
- return HttpResponse(message)
-
-def register_4m_f4f(request):
- errors = []
-
- authorities_query = Query.get('authority').filter_by('authority_hrn', 'included', ['ple.inria', 'ple.upmc']).select('name', 'authority_hrn')
- #authorities_query = Query.get('authority').select('authority_hrn')
- authorities = execute_query(request, authorities_query)
-
- if request.method == 'POST':
- # We shall use a form here
-
- #get_email = PendingUser.objects.get(email)
- reg_fname = request.POST.get('firstname', '')
- reg_lname = request.POST.get('lastname', '')
- #reg_aff = request.POST.get('affiliation','')
- reg_auth = request.POST.get('authority_hrn', '')
- reg_email = request.POST.get('email','').lower()
-
- #POST value validation
- if (re.search(r'^[\w+\s.@+-]+$', reg_fname)==None):
- errors.append('First Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
- #return HttpResponse("Only Letters, Numbers, - and _ allowd in First Name")
- #return render(request, 'register_4m_f4f.html')
- if (re.search(r'^[\w+\s.@+-]+$', reg_lname) == None):
- errors.append('Last Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
- #return HttpResponse("Only Letters, Numbers, - and _ is allowed in Last name")
- #return render(request, 'register_4m_f4f.html')
-# if (re.search(r'^[\w+\s.@+-]+$', reg_aff) == None):
-# errors.append('Affiliation may contain only letters, numbers, spaces and @/./+/-/_ characters.')
- #return HttpResponse("Only Letters, Numbers and _ is allowed in Affiliation")
- #return render(request, 'register_4m_f4f.html')
- # XXX validate authority hrn !!
- if PendingUser.objects.filter(email__iexact=reg_email):
- errors.append('Email already registered.Please provide a new email address.')
- #return HttpResponse("Email Already exists")
- #return render(request, 'register_4m_f4f.html')
- if 'generate' in request.POST['question']:
- # Generate public and private keys using SFA Library
- from sfa.trust.certificate import Keypair
- k = Keypair(create=True)
- public_key = k.get_pubkey_string()
- private_key = k.as_pem()
- private_key = ''.join(private_key.split())
- public_key = "ssh-rsa " + public_key
- # Saving to DB
- keypair = '{"user_public_key":"'+ public_key + '", "user_private_key":"'+ private_key + '"}'
-# keypair = re.sub("\r", "", keypair)
-# keypair = re.sub("\n", "\\n", keypair)
-# #keypair = keypair.rstrip('\r\n')
-# keypair = ''.join(keypair.split())
- else:
- up_file = request.FILES['user_public_key']
- file_content = up_file.read()
- file_name = up_file.name
- file_extension = os.path.splitext(file_name)[1]
- allowed_extension = ['.pub','.txt']
- if file_extension in allowed_extension and re.search(r'ssh-rsa',file_content):
- keypair = '{"user_public_key":"'+ file_content +'"}'
- keypair = re.sub("\r", "", keypair)
- keypair = re.sub("\n", "\\n",keypair)
- keypair = ''.join(keypair.split())
- else:
- errors.append('Please upload a valid RSA public key [.txt or .pub].')
-
- #b = PendingUser(first_name=reg_fname, last_name=reg_lname, affiliation=reg_aff,
- # email=reg_email, password=request.POST['password'], keypair=keypair)
- #b.save()
- if not errors:
- b = PendingUser(
- first_name=reg_fname,
- last_name=reg_lname,
- #affiliation=reg_aff,
- authority_hrn=reg_auth,
- email=reg_email,
- password=request.POST['password'],
- keypair=keypair
- )
- b.save()
-
- # Send email
- ctx = {
- first_name : reg_fname,
- last_name : reg_lname,
- #affiliation : reg_aff,
- authority_hrn: reg_auth,
- email : reg_email,
- keypair : keypair,
- cc_myself : True # form.cleaned_data['cc_myself']
- }
+from portal.event import Event
+# presview is put in observation for now
+#from plugins.pres_view import PresView
+from plugins.raw import Raw
- recipients = authority_get_pi_emails(authority_hrn)
- if ctx['cc_myself']:
- recipients.append(ctx['email'])
-
- msg = render_to_string('user_request_email.txt', ctx)
- send_mail("Onelab New User request submitted", msg, email, recipients)
-
- return render(request, 'user_register_complete.html')
-
- return render(request, 'register_4m_f4f.html',{
- 'topmenu_items': topmenu_items('Register', request),
- 'errors': errors,
- 'firstname': request.POST.get('firstname', ''),
- 'lastname': request.POST.get('lastname', ''),
- #'affiliation': request.POST.get('affiliation', ''),
- 'authority_hrn': request.POST.get('authority_hrn', ''),
- 'email': request.POST.get('email', ''),
- 'password': request.POST.get('password', ''),
- 'authorities': authorities
- })
-
-
-# view for contact form
-def contact(request):
- if request.method == 'POST': # If the form has been submitted...
- form = ContactForm(request.POST) # A form bound to the POST data
- if form.is_valid(): # All validation rules pass
- # Process the data in form.cleaned_data
- first_name = form.cleaned_data['first_name']
- last_name = form.cleaned_data['last_name']
- affiliation = form.cleaned_data['affiliation']
- subject = form.cleaned_data['subject']
- message = form.cleaned_data['message']
- email = form.cleaned_data['email'] # email of the sender
- cc_myself = form.cleaned_data['cc_myself']
-
- #recipients = authority_get_pi_emails(authority_hrn)
- recipients = ['yasin.upmc@gmail.com']
- if cc_myself:
- recipients.append(email)
-
- from django.core.mail import send_mail
- send_mail("Onelab user submitted a query ", [first_name,last_name,affiliation,subject,message], email, recipients)
- return render(request,'contact_sent.html') # Redirect after POST
- else:
- form = ContactForm() # An unbound form
-
- return render(request, 'contact.html', {
- 'form': form,
- 'topmenu_items': topmenu_items('Contact Us', request),
- 'username': the_user (request)
-
- })
-
-@login_required
-def slice_request(request):
- errors = []
-
- authorities_query = Query.get('authority').filter_by('authority_hrn', 'included', ['ple.inria', 'ple.upmc']).select('name', 'authority_hrn')
- #authorities_query = Query.get('authority').select('authority_hrn')
- authorities = execute_query(request, authorities_query)
-
- authority_hrn_tuple = []
- for authority in authorities:
- authority_hrn_tuple.append((authority['authority_hrn'], authority['name']))
- authority_hrn_initial = {'authority_hrn': authority_hrn_tuple}
-
- # request.POST or None ?
- if request.method == 'POST':
- # The form has been submitted
- form = SliceRequestForm(request.POST, initial=authority_hrn_initial)
-
- if form.is_valid():
- slice_name = form.cleaned_data['slice_name']
- authority_hrn = form.cleaned_data['authority_hrn']
- number_of_nodes = form.cleaned_data['number_of_nodes']
- type_of_nodes = form.cleaned_data['type_of_nodes']
- purpose = form.cleaned_data['purpose']
-
- s = PendingSlice(
- slice_name = slice_name,
- authority_hrn = authority_hrn,
- number_of_nodes = number_of_nodes,
- type_of_nodes = type_of_nodes,
- purpose = purpose
- )
- s.save()
-
- # All validation rules pass; process data in form.cleaned_data
- # slice_name, number_of_nodes, type_of_nodes, purpose
- email = form.cleaned_data['email'] # email of the sender
- cc_myself = form.cleaned_data['cc_myself']
-
- # The recipients are the PI of the authority
- recipients = authority_get_pi_emails(authority_hrn)
- #recipients = ['yasin.upmc@gmail.com','jordan.auge@lip6.fr']
- if cc_myself:
- recipients.append(email)
- msg = render_to_string('slice_request_email.txt', form.cleaned_data)
- send_mail("Onelab New Slice request form submitted", msg, email, recipients)
-
- return render(request,'slicereq_recvd.html') # Redirect after POST
- else:
- form = SliceRequestForm(initial=authority_hrn_initial)
-
-# template_env = {}
-# template_env['form'] = form
-# template_env['topmenu_items'] = topmenu_items('Request a slice', request)
-# template_env['unfold1_main'] = render(request, 'slice_request_.html', {
-# 'form': form,
-# })
-# from django.shortcuts import render_to_response
-# from django.template import RequestContext
-# return render_to_response ('view-unfold1.html',template_env,
-# context_instance=RequestContext(request))
-
- return render(request, 'slice_request.html', {
- 'form': form,
- 'topmenu_items': topmenu_items('Request a slice', request),
- 'username': the_user (request)
- })
+# these seem totally unused for now
+#from portal.util import RegistrationView, ActivationView
+from portal.models import PendingUser, PendingSlice
+from portal.actions import get_request_by_authority
+from manifold.manifoldapi import execute_query
+from manifold.core.query import Query
+from unfold.page import Page
+# NOTE
+# initially all the portal views were defined in this single file
+# all the other ones have now migrated into separate classes/files for more convenience
+# I'm leaving these ones here for now as I could not exactly figure what the purpose was
+# (i.e. what the correct name should be, as presviewview was a bit cryptic)
class PresViewView(TemplateView):
template_name = "view-unfold1.html"
page = Page(self.request)
- pres_view = PresView(page = page)
+# pres_view = PresView(page = page)
+ pres_view = Raw(page = page,html="<h1>PresView needs to be integrated</h1>")
context = super(PresViewView, self).get_context_data(**kwargs)
all_authorities.append(auth)
platform_ids.append(sfa_platform['platform_id'])
+ print "W: Hardcoding platform myslice"
+ # There has been a tweak on how new platforms are referencing a
+ # so-called 'myslice' platform for storing authentication tokens.
+ # XXX This has to be removed in final versions.
+ myslice_platforms_query = Query().get('local:platform').filter_by('platform', '==', 'myslice').select('platform_id')
+ myslice_platforms = execute_query(self.request, myslice_platforms_query)
+ if myslice_platforms:
+ myslice_platform, = myslice_platforms
+ platform_ids.append(myslice_platform['platform_id'])
+
# We can check on which the user has authoritity credentials = PI rights
credential_authorities = set()
credential_authorities_expired = set()
# User account on these registries
- user_accounts_query = Query.get('local:account').filter_by('user_id', '==', user_id).filter_by('platform_id', 'included', platform_ids).select('config')
+ user_accounts_query = Query.get('local:account').filter_by('user_id', '==', user_id).filter_by('platform_id', 'included', platform_ids).select('auth_type', 'config')
user_accounts = execute_query(self.request, user_accounts_query)
#print "=" * 80
#print user_accounts
#print "=" * 80
for user_account in user_accounts:
+
+ print "USER ACCOUNT", user_account
+ if user_account['auth_type'] == 'reference':
+ continue # we hardcoded the myslice platform...
+
config = json.loads(user_account['config'])
creds = []
+ print "CONFIG KEYS", config.keys()
if 'authority_credentials' in config:
+ print "***", config['authority_credentials'].keys()
for authority_hrn, credential in config['authority_credentials'].items():
#if credential is not expired:
credential_authorities.add(authority_hrn)
#else
# credential_authorities_expired.add(authority_hrn)
if 'delegated_authority_credentials' in config:
+ print "***", config['delegated_authority_credentials'].keys()
for authority_hrn, credential in config['delegated_authority_credentials'].items():
#if credential is not expired:
credential_authorities.add(authority_hrn)
# more general variables expected in the template
context['title'] = 'Test view that combines various plugins'
# the menu items on the top
- context['topmenu_items'] = topmenu_items('Dashboard', self.request)
+ context['topmenu_items'] = topmenu_items('Validation', self.request)
# so we can sho who is logged
context['username'] = the_user(self.request)
git://git.onelab.eu / myslice.git / blobdiff