mybuddy/babybuddy/middleware.py

from os import getenv
from time import time

import pytz
from urllib.parse import urlunsplit, urlsplit

from django.conf import settings
from django.utils import timezone, translation
from django.contrib.auth.middleware import RemoteUserMiddleware
from django.http import HttpRequest

class UserLanguageMiddleware:
    """
    Customizes settings based on user language setting.
    """

    def __init__(self, get_response):
        self.get_response = get_response

    def __call__(self, request):
        user = request.user
        if hasattr(user, "settings") and user.settings.language:
            language = user.settings.language
        elif request.LANGUAGE_CODE:
            language = request.LANGUAGE_CODE
        else:
            language = settings.LANGUAGE_CODE

        if language:
            # Set the language before generating the response.
            translation.activate(language)

        response = self.get_response(request)

        # Deactivate the translation before the response is sent so it not
        # reused in other threads.
        translation.deactivate()

        return response


class UserTimezoneMiddleware:
    """
    Sets the timezone based on a user specific setting. This middleware must run after
    `django.contrib.auth.middleware.AuthenticationMiddleware` because it uses the
    request.user object.
    """

    def __init__(self, get_response):
        self.get_response = get_response

    def __call__(self, request):
        user = request.user
        if hasattr(user, "settings") and user.settings.timezone:
            try:
                timezone.activate(pytz.timezone(user.settings.timezone))
            except pytz.UnknownTimeZoneError:
                pass
        return self.get_response(request)


class RollingSessionMiddleware:
    """
    Periodically resets the session expiry for existing sessions.
    """

    def __init__(self, get_response):
        self.get_response = get_response

    def __call__(self, request):
        if request.session.keys():
            session_refresh = request.session.get("session_refresh")
            if session_refresh:
                try:
                    delta = int(time()) - session_refresh
                except (ValueError, TypeError):
                    delta = settings.ROLLING_SESSION_REFRESH + 1
                if delta > settings.ROLLING_SESSION_REFRESH:
                    request.session["session_refresh"] = int(time())
                    request.session.set_expiry(settings.SESSION_COOKIE_AGE)
            else:
                request.session["session_refresh"] = int(time())
        return self.get_response(request)


class CustomRemoteUser(RemoteUserMiddleware):
    """
    Middleware used for remote authentication when `REVERSE_PROXY_AUTH` is True.
    """

    header = getenv("PROXY_HEADER", "HTTP_REMOTE_USER")


class HomeAssistant:
    def __init__(self, get_response):
        self.get_response = get_response
        self.use_x_ingress_path_rewrite = settings.HOME_ASSISTANT_USE_X_INGRESS_PATH

    def __call__(self, request: HttpRequest):
        def wrap_x_ingress_path(org_func):
            if request.headers.get("HTTP_X_HASS_SOURCE") != "core.ingress":
                return org_func
            x_ingress_path = request.headers.get("HTTP_X_INGRESS_PATH")
            if x_ingress_path is None:
                return org_func

            def wrapper(*args, **kwargs):
                url = org_func(*args, **kwargs)

                url_parts = urlsplit(url)
                url = urlunsplit(
                    url_parts._replace(path=x_ingress_path + url_parts.path)
                )

                return url
            return wrapper

        if self.use_x_ingress_path_rewrite:
            request.build_absolute_uri = wrap_x_ingress_path(
                request.build_absolute_uri
            )

        return self.get_response(request)
Add forward auth by way of remote user * Add forward auth related settings * Document forward auth settings * Rearrange code to match preference * Adjust forward auth configuration * Add tests for reverse proxy auth Closes #517 Co-authored-by: Christopher C. Wells <git-2022@chris-wells.net> 2022-09-18 21:00:41 +00:00			`from os import getenv`
			`from time import time`
Adds rolling session refresh middleware (#130) 2020-05-17 06:57:00 +00:00
Persist user timezone setting with middleware 2020-02-14 20:35:02 +00:00			`import pytz`
Add middleware and setting for x-ingress-path interpretation 2023-06-04 13:26:17 +00:00			`from urllib.parse import urlunsplit, urlsplit`
Persist user timezone setting with middleware 2020-02-14 20:35:02 +00:00
Adds rolling session refresh middleware (#130) 2020-05-17 06:57:00 +00:00			`from django.conf import settings`
Activate and deactivate user language in middleware Fixes #346 2021-11-28 19:02:23 +00:00			`from django.utils import timezone, translation`
Add forward auth by way of remote user * Add forward auth related settings * Document forward auth settings * Rearrange code to match preference * Adjust forward auth configuration * Add tests for reverse proxy auth Closes #517 Co-authored-by: Christopher C. Wells <git-2022@chris-wells.net> 2022-09-18 21:00:41 +00:00			`from django.contrib.auth.middleware import RemoteUserMiddleware`
Add middleware and setting for x-ingress-path interpretation 2023-06-04 13:26:17 +00:00			`from django.http import HttpRequest`
Handle format customization in middelware (#332) This is done to allow for format difference between `en-US` (`en`) and `en-GB` that are not well supported by Django's format handling. 2021-11-12 18:13:08 +00:00
			`class UserLanguageMiddleware:`
			`"""`
			`Customizes settings based on user language setting.`
			`"""`
Format code with black 2022-02-10 00:00:30 +00:00
Handle format customization in middelware (#332) This is done to allow for format difference between `en-US` (`en`) and `en-GB` that are not well supported by Django's format handling. 2021-11-12 18:13:08 +00:00			`def __init__(self, get_response):`
			`self.get_response = get_response`

			`def __call__(self, request):`
			`user = request.user`
Format code with black 2022-02-10 00:00:30 +00:00			`if hasattr(user, "settings") and user.settings.language:`
Use request language code when available (#346) Enables translation on the login page. 2021-11-28 19:18:00 +00:00			`language = user.settings.language`
			`elif request.LANGUAGE_CODE:`
			`language = request.LANGUAGE_CODE`
			`else:`
			`language = settings.LANGUAGE_CODE`

			`if language:`
			`# Set the language before generating the response.`
			`translation.activate(language)`

Activate and deactivate user language in middleware Fixes #346 2021-11-28 19:02:23 +00:00			`response = self.get_response(request)`

			`# Deactivate the translation before the response is sent so it not`
			`# reused in other threads.`
			`translation.deactivate()`

			`return response`
Persist user timezone setting with middleware 2020-02-14 20:35:02 +00:00

			`class UserTimezoneMiddleware:`
			`"""`
Remove deprecated `TIME_ZONE` environment variable configuration Closes #301 2022-06-11 21:27:52 +00:00			`Sets the timezone based on a user specific setting. This middleware must run after`
			`django.contrib.auth.middleware.AuthenticationMiddleware` because it uses the
			`request.user object.`
Persist user timezone setting with middleware 2020-02-14 20:35:02 +00:00			`"""`
Format code with black 2022-02-10 00:00:30 +00:00
Persist user timezone setting with middleware 2020-02-14 20:35:02 +00:00			`def __init__(self, get_response):`
			`self.get_response = get_response`

			`def __call__(self, request):`
Fix linting issues 2021-10-17 21:45:53 +00:00			`user = request.user`
Format code with black 2022-02-10 00:00:30 +00:00			`if hasattr(user, "settings") and user.settings.timezone:`
Persist user timezone setting with middleware 2020-02-14 20:35:02 +00:00			`try:`
Fix linting issues 2021-10-17 21:45:53 +00:00			`timezone.activate(pytz.timezone(user.settings.timezone))`
Persist user timezone setting with middleware 2020-02-14 20:35:02 +00:00			`except pytz.UnknownTimeZoneError:`
			`pass`
			`return self.get_response(request)`
Adds rolling session refresh middleware (#130) 2020-05-17 06:57:00 +00:00
The rest of the middleware commit 2020-05-17 10:11:08 +00:00
Adds rolling session refresh middleware (#130) 2020-05-17 06:57:00 +00:00			`class RollingSessionMiddleware:`
			`"""`
Only add sessions refresh data to existing sessions Prior to change session were created for _every_ request (including API requests). 2021-08-05 13:34:08 +00:00			`Periodically resets the session expiry for existing sessions.`
Adds rolling session refresh middleware (#130) 2020-05-17 06:57:00 +00:00			`"""`
Format code with black 2022-02-10 00:00:30 +00:00
Adds rolling session refresh middleware (#130) 2020-05-17 06:57:00 +00:00			`def __init__(self, get_response):`
			`self.get_response = get_response`

			`def __call__(self, request):`
Only add sessions refresh data to existing sessions Prior to change session were created for _every_ request (including API requests). 2021-08-05 13:34:08 +00:00			`if request.session.keys():`
Format code with black 2022-02-10 00:00:30 +00:00			`session_refresh = request.session.get("session_refresh")`
Only add sessions refresh data to existing sessions Prior to change session were created for _every_ request (including API requests). 2021-08-05 13:34:08 +00:00			`if session_refresh:`
			`try:`
Add forward auth by way of remote user * Add forward auth related settings * Document forward auth settings * Rearrange code to match preference * Adjust forward auth configuration * Add tests for reverse proxy auth Closes #517 Co-authored-by: Christopher C. Wells <git-2022@chris-wells.net> 2022-09-18 21:00:41 +00:00			`delta = int(time()) - session_refresh`
Only add sessions refresh data to existing sessions Prior to change session were created for _every_ request (including API requests). 2021-08-05 13:34:08 +00:00			`except (ValueError, TypeError):`
			`delta = settings.ROLLING_SESSION_REFRESH + 1`
			`if delta > settings.ROLLING_SESSION_REFRESH:`
Add forward auth by way of remote user * Add forward auth related settings * Document forward auth settings * Rearrange code to match preference * Adjust forward auth configuration * Add tests for reverse proxy auth Closes #517 Co-authored-by: Christopher C. Wells <git-2022@chris-wells.net> 2022-09-18 21:00:41 +00:00			`request.session["session_refresh"] = int(time())`
Only add sessions refresh data to existing sessions Prior to change session were created for _every_ request (including API requests). 2021-08-05 13:34:08 +00:00			`request.session.set_expiry(settings.SESSION_COOKIE_AGE)`
			`else:`
Add forward auth by way of remote user * Add forward auth related settings * Document forward auth settings * Rearrange code to match preference * Adjust forward auth configuration * Add tests for reverse proxy auth Closes #517 Co-authored-by: Christopher C. Wells <git-2022@chris-wells.net> 2022-09-18 21:00:41 +00:00			`request.session["session_refresh"] = int(time())`
Adds rolling session refresh middleware (#130) 2020-05-17 06:57:00 +00:00			`return self.get_response(request)`
Add forward auth by way of remote user * Add forward auth related settings * Document forward auth settings * Rearrange code to match preference * Adjust forward auth configuration * Add tests for reverse proxy auth Closes #517 Co-authored-by: Christopher C. Wells <git-2022@chris-wells.net> 2022-09-18 21:00:41 +00:00

			`class CustomRemoteUser(RemoteUserMiddleware):`
			`"""`
			Middleware used for remote authentication when `REVERSE_PROXY_AUTH` is True.
			`"""`

			`header = getenv("PROXY_HEADER", "HTTP_REMOTE_USER")`
Add middleware and setting for x-ingress-path interpretation 2023-06-04 13:26:17 +00:00

			`class HomeAssistant:`
			`def __init__(self, get_response):`
			`self.get_response = get_response`
			`self.use_x_ingress_path_rewrite = settings.HOME_ASSISTANT_USE_X_INGRESS_PATH`

			`def __call__(self, request: HttpRequest):`
			`def wrap_x_ingress_path(org_func):`
			`if request.headers.get("HTTP_X_HASS_SOURCE") != "core.ingress":`
			`return org_func`
			`x_ingress_path = request.headers.get("HTTP_X_INGRESS_PATH")`
			`if x_ingress_path is None:`
			`return org_func`

			`def wrapper(args, *kwargs):`
			`url = org_func(args, *kwargs)`

			`url_parts = urlsplit(url)`
			`url = urlunsplit(`
			`url_parts._replace(path=x_ingress_path + url_parts.path)`
			`)`

			`return url`
			`return wrapper`

			`if self.use_x_ingress_path_rewrite:`
			`request.build_absolute_uri = wrap_x_ingress_path(`
			`request.build_absolute_uri`
			`)`

			`return self.get_response(request)`