diff options
Diffstat (limited to 'portal-gui/rpki/myrpki')
| -rw-r--r-- | portal-gui/rpki/myrpki/__init__.py | 0 | ||||
| -rw-r--r-- | portal-gui/rpki/myrpki/forms.py | 8 | ||||
| -rw-r--r-- | portal-gui/rpki/myrpki/models.py | 68 | ||||
| -rw-r--r-- | portal-gui/rpki/myrpki/views.py | 56 |
4 files changed, 132 insertions, 0 deletions
diff --git a/portal-gui/rpki/myrpki/__init__.py b/portal-gui/rpki/myrpki/__init__.py new file mode 100644 index 00000000..e69de29b --- /dev/null +++ b/portal-gui/rpki/myrpki/__init__.py diff --git a/portal-gui/rpki/myrpki/forms.py b/portal-gui/rpki/myrpki/forms.py new file mode 100644 index 00000000..fda6faaa --- /dev/null +++ b/portal-gui/rpki/myrpki/forms.py @@ -0,0 +1,8 @@ +from django import forms +from myrpki import models + +# TODO: Point the cert.conf to the handle from the session +class CertForm( forms.ModelForm ): + class Meta: + model = models.Cert + diff --git a/portal-gui/rpki/myrpki/models.py b/portal-gui/rpki/myrpki/models.py new file mode 100644 index 00000000..3a923ab3 --- /dev/null +++ b/portal-gui/rpki/myrpki/models.py @@ -0,0 +1,68 @@ +from django.db import models +from django.contrib.auth.models import Group + +# TO DO: +# URL: text? +class HandleField( models.CharField ): + def __init__( self, **kwargs ): + models.CharField.__init__( self, max_length=255, **kwargs ) + +class IPAddressField( models.CharField ): + def __init__( self, **kwargs ): + models.CharField.__init__( self, max_length=40, **kwargs ) + +class Cert( models.Model ): + conf = models.ForeignKey( 'Conf' ) + name = models.CharField( unique=True, max_length=255 ) + data = models.TextField() + def __unicode__( self ): + return self.name + +class Conf( models.Model ): + handle = HandleField( unique=True, db_index=True ) + repository_bpki_cert = models.ForeignKey( Cert, + related_name='conf_bpki_cert' ) + my_bpki_ta = models.ForeignKey( Cert, related_name='conf_my_ta' ) + repository_handle = HandleField() + owner = models.OneToOneField( Group ) + +class Child( models.Model ): + conf = models.ForeignKey( Conf ) + handle = HandleField() + validity = models.DateTimeField() + bpki_cert = models.ForeignKey( Cert ) + +class Prefix( models.Model ): + child = models.ForeignKey( Child ) + lo = IPAddressField() + hi = IPAddressField() + +class Asn( models.Model ): + child = models.ForeignKey( Child ) + min = models.IntegerField() + max = models.IntegerField() + +class Parent( models.Model ): + conf = models.ForeignKey( Conf ) + handle = HandleField( unique=True ) + service_uri = models.URLField( verify_exists=False ) + cms_bpki_cert = models.ForeignKey( Cert, related_name='parent_cms' ) + https_bpki_cert = models.ForeignKey( Cert, related_name='parent_https' ) + my_handle = HandleField() + sia_base = models.URLField( verify_exists=False ) + +# This table is really owned by the publication server. +#class PubClient( models.Model ): +# handle = models.CharField( unique=True, max_length=255 ) +# bpki_cert = models.ForeignKey( Cert ) +# sia_base = models.URLField( verify_exists=False ) + +class Roa( models.Model ): + conf = models.ForeignKey( Conf ) + prefix = IPAddressField() + len = models.IntegerField() + max_len = models.IntegerField() + asn = models.IntegerField() + active = models.BooleanField() + comments = models.TextField() + group = models.CharField( max_length=40 ) diff --git a/portal-gui/rpki/myrpki/views.py b/portal-gui/rpki/myrpki/views.py new file mode 100644 index 00000000..cd24ff73 --- /dev/null +++ b/portal-gui/rpki/myrpki/views.py @@ -0,0 +1,56 @@ +from django.views.generic.create_update import create_object, update_object, + delete_object +from django.views.generic.list_detail import object_detail +from django.contrib.auth.decorators import login_required +from django.shortcuts import get_object_or_404, render_to_response +import models +import forms + + +# For each type of object, we have a detail view, a create view and +# an update view. We heavily leverage the generic views, only +# adding our own idea of authorization. + +def handle( request ): + '''If the session has a handle, return the config. If the user only has + one config that he can access, return that one; else return None.''' + if 'handle' in request.session: + return Conf.objects.get( handle=request.session[ 'handle' ] ) + conf = Conf.objects.all().filter( owner__in=request.user.groups ) + if conf.count() == 1: + return conf[ 0 ] + return None + +def choose_handle( request ): + '''The logged-in user can access multiple (or no) handles. + Ask them to pick which one(s) they want to access.''' + raise NotImplementedError + +@login_required +def dashboard( request ): + '''The user's dashboard. If the handle is not specified, + see what the user has access to based on his groups. If + multiple, give him a selector and store the result in the + session.''' + handle = handle( request ) + if handle is None: + return choose_handle( request ) + # ... pick out data for the dashboard and return it + return render_to_response( 'myrpki/dashboard.html', context={ 'conf': handle } ) + +@login_required +def cert_add( request ): + return create_object( request, form_class=forms.CertForm ) + +@login_required +def cert_edit( request, id ): + cert = get_object_or_404( models.Cert, pk=id ) + # make sure it is owned by the current handle + return update_object( request, form_class=forms.CertForm, object_id=id ) + +@login_required +def cert_delete( request, id ): + cert = get_object_or_404( models.Cert, pk=id ) + # make sure it is owned by the current handle + return delete_object( request, model=models.Cert, object_id=id, + post_delete_redirect='/dashboard/' ) |