mirror of
https://github.com/freedombox/FreedomBox.git
synced 2026-01-28 08:03:36 +00:00
89aefc00cf
Signed-off-by: James Valleroy <jvalleroy@mailbox.org> [sunil: i18n for yes, no, N/A strings, avoid changing an i18ned string] Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org> Reviewed-by: Sunil Mohan Adapa <sunil@medhas.org>
93 lines
3.1 KiB
Python
93 lines
3.1 KiB
Python
#
|
|
# This file is part of FreedomBox.
|
|
#
|
|
# This program is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU Affero General Public License as
|
|
# published by the Free Software Foundation, either version 3 of the
|
|
# License, or (at your option) any later version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU Affero General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU Affero General Public License
|
|
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
#
|
|
"""
|
|
Views for security module
|
|
"""
|
|
|
|
from django.contrib import messages
|
|
from django.template.response import TemplateResponse
|
|
from django.utils.translation import ugettext as _
|
|
|
|
from plinth import action_utils, actions
|
|
from plinth.modules import security
|
|
|
|
from .forms import SecurityForm
|
|
|
|
|
|
def index(request):
|
|
"""Serve the security configuration form"""
|
|
status = get_status(request)
|
|
|
|
form = None
|
|
|
|
if request.method == 'POST':
|
|
form = SecurityForm(request.POST, initial=status, prefix='security')
|
|
if form.is_valid():
|
|
_apply_changes(request, status, form.cleaned_data)
|
|
status = get_status(request)
|
|
form = SecurityForm(initial=status, prefix='security')
|
|
else:
|
|
form = SecurityForm(initial=status, prefix='security')
|
|
|
|
return TemplateResponse(request, 'security.html', {
|
|
'name': _('Security'),
|
|
'manual_page': security.manual_page,
|
|
'form': form,
|
|
})
|
|
|
|
|
|
def get_status(request):
|
|
"""Return the current status"""
|
|
return {
|
|
'restricted_access': security.get_restricted_access_enabled(),
|
|
'fail2ban_enabled': action_utils.service_is_enabled('fail2ban')
|
|
}
|
|
|
|
|
|
def _apply_changes(request, old_status, new_status):
|
|
"""Apply the form changes"""
|
|
if old_status['restricted_access'] != new_status['restricted_access']:
|
|
try:
|
|
security.set_restricted_access(new_status['restricted_access'])
|
|
except Exception as exception:
|
|
messages.error(
|
|
request,
|
|
_('Error setting restricted access: {exception}').format(
|
|
exception=exception))
|
|
else:
|
|
messages.success(request, _('Updated security configuration'))
|
|
|
|
if old_status['fail2ban_enabled'] != new_status['fail2ban_enabled']:
|
|
if new_status['fail2ban_enabled']:
|
|
actions.superuser_run('service', ['enable', 'fail2ban'])
|
|
else:
|
|
actions.superuser_run('service', ['disable', 'fail2ban'])
|
|
|
|
|
|
def report(request):
|
|
"""Serve the security report page"""
|
|
apps_report = security.get_apps_report()
|
|
return TemplateResponse(
|
|
request, 'security_report.html', {
|
|
'title':
|
|
_('Security Report'),
|
|
'freedombox_report':
|
|
apps_report.pop('freedombox'),
|
|
'apps_report':
|
|
sorted(apps_report.values(), key=lambda app: app['name']),
|
|
})
|