Skip to content

feat: add reverse sorting #32

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 40 commits into from
Closed

feat: add reverse sorting #32

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
40 commits
Select commit Hold shift + click to select a range
2796367
CFbot integration
JelteF Jan 12, 2025
8e33e1e
Integrate previous CFbot links with new code
JelteF Jan 12, 2025
6a96e78
Make CFbot add a history item when patch needs rebase
JelteF Jan 12, 2025
a9f9a19
Add a basic editorconfig file
JelteF Jan 12, 2025
df8c7a3
Add ID column to commitfest page
JelteF Jan 12, 2025
199bc75
Make sorting a toggle
JelteF Jan 13, 2025
057dad4
Allow sorting by name
JelteF Jan 13, 2025
7e10ee3
Allow sorting using the header of the closed patches too
JelteF Jan 13, 2025
d54c83a
Update readme with correct django version
JelteF Jan 13, 2025
013eeb1
Make /patch/{id} the URL for a patch
JelteF Jan 12, 2025
f660a47
Adjust direction of dropdowns at the bottom of the page (#4)
polkerty Jan 20, 2025
4e86587
Add dummy data for development (#5)
polkerty Jan 26, 2025
028f655
Do not display "scheduled" CFBot tasks as failed (#9)
JelteF Jan 31, 2025
9dfa825
Support local cfbot integration development with dummy data (#8)
JelteF Jan 31, 2025
57361ad
Implement cache busting for our own static files (#23)
JelteF Jan 31, 2025
bdc8643
Add patch stats (#22)
JelteF Jan 31, 2025
40c9e12
Fix cirrus CI urls on patch page
JelteF Feb 1, 2025
f93ddbb
Fix searching by Message-ID
JelteF Feb 1, 2025
96758a1
Implement github action to deploy to test environment
mhagander Feb 7, 2025
81fd380
Add experimental workflow for transferdb
mhagander Feb 7, 2025
d176d74
Default author to self when adding a new patch (#26)
JelteF Feb 8, 2025
fdd23d5
Fix problems reported by "ruff check" (#1)
JelteF Dec 10, 2024
18b7268
Add ruff Github action (#1)
JelteF Dec 10, 2024
b12457e
Add Makefile for linting and formatting (#1)
JelteF Dec 10, 2024
41f9554
Ignore W503, for pycodestyle (#1)
JelteF Dec 21, 2024
cbc7288
Use ruff in pre-commit hook (#1)
JelteF Dec 21, 2024
28a52fd
Don't mix tab and spaces indentation in pre-commit hook (#1)
JelteF Dec 21, 2024
47cce9b
Add ruff config (#1)
JelteF Dec 21, 2024
fb9c23f
Run "ruff format" to do initial formatting (#1)
JelteF Feb 10, 2025
207679e
Run "ruff check --fix" to sort imports (#1)
JelteF Feb 10, 2025
ac70e3d
Make deploy workflow run on prod branch as well
mhagander Feb 14, 2025
ec2033f
Add biome formatting for js and css (#29)
JelteF Feb 15, 2025
305d384
Format files using biome (#29)
JelteF Feb 15, 2025
3d63e9f
Fix biome lints using --fix --unsafe (#29)
JelteF Feb 15, 2025
d070301
Add codeformatting info to readme
JelteF Feb 15, 2025
4a32308
Add some more contributing info to the README
JelteF Feb 15, 2025
becd119
Fix link in README
JelteF Feb 15, 2025
9858f5f
README: Clarify that credentials are for HTTP auth
JelteF Feb 15, 2025
f1329ab
Autofill new patch description based on selected thread (#30)
JelteF Feb 15, 2025
59c1836
feature: added reverse sorting
destrex271 Feb 16, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Run "ruff format" to do initial formatting (#1)
  • Loading branch information
@JelteF
JelteF committed Feb 10, 2025
commit fb9c23fb3c99be0a958c81c2d1fa6365646f2e77
221 changes: 130 additions & 91 deletions pgcommitfest/auth.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -66,24 +66,32 @@ def authenticate(self, username=None, password=None):
# Two regular django views to interact with the login system
####


# Handle login requests by sending them off to the main site
def login(request):
if 'next' in request.GET:
if "next" in request.GET:
# Put together an url-encoded dict of parameters we're getting back,
# including a small nonce at the beginning to make sure it doesn't
# encrypt the same way every time.
s = "t=%s&%s" % (int(time.time()), urlencode({'r': request.GET['next']}))
s = "t=%s&%s" % (int(time.time()), urlencode({"r": request.GET["next"]}))
# Now encrypt it
r = Random.new()
iv = r.read(16)
encryptor = AES.new(SHA.new(settings.SECRET_KEY.encode('ascii')).digest()[:16], AES.MODE_CBC, iv)
cipher = encryptor.encrypt(s.encode('ascii') + b' ' * (16 - (len(s) % 16))) # pad to 16 bytes

return HttpResponseRedirect("%s?d=%s$%s" % (
settings.PGAUTH_REDIRECT,
base64.b64encode(iv, b"-_").decode('utf8'),
base64.b64encode(cipher, b"-_").decode('utf8'),
))
encryptor = AES.new(
SHA.new(settings.SECRET_KEY.encode("ascii")).digest()[:16], AES.MODE_CBC, iv
)
cipher = encryptor.encrypt(
s.encode("ascii") + b" " * (16 - (len(s) % 16))
) # pad to 16 bytes

return HttpResponseRedirect(
"%s?d=%s$%s"
% (
settings.PGAUTH_REDIRECT,
base64.b64encode(iv, b"-_").decode("utf8"),
base64.b64encode(cipher, b"-_").decode("utf8"),
)
)
else:
return HttpResponseRedirect(settings.PGAUTH_REDIRECT)

Expand All @@ -99,21 +107,27 @@ def logout(request):
# Receive an authentication response from the main website and try
# to log the user in.
def auth_receive(request):
if 's' in request.GET and request.GET['s'] == "logout":
if "s" in request.GET and request.GET["s"] == "logout":
# This was a logout request
return HttpResponseRedirect('/')
return HttpResponseRedirect("/")

if 'i' not in request.GET:
if "i" not in request.GET:
return HttpResponse("Missing IV in url!", status=400)
if 'd' not in request.GET:
if "d" not in request.GET:
return HttpResponse("Missing data in url!", status=400)

# Set up an AES object and decrypt the data we received
try:
decryptor = AES.new(base64.b64decode(settings.PGAUTH_KEY),
AES.MODE_CBC,
base64.b64decode(str(request.GET['i']), "-_"))
s = decryptor.decrypt(base64.b64decode(str(request.GET['d']), "-_")).rstrip(b' ').decode('utf8')
decryptor = AES.new(
base64.b64decode(settings.PGAUTH_KEY),
AES.MODE_CBC,
base64.b64decode(str(request.GET["i"]), "-_"),
)
s = (
decryptor.decrypt(base64.b64decode(str(request.GET["d"]), "-_"))
.rstrip(b" ")
.decode("utf8")
)
except UnicodeDecodeError:
return HttpResponse("Badly encoded data found", 400)
except Exception:
Expand All @@ -126,23 +140,23 @@ def auth_receive(request):
return HttpResponse("Invalid encrypted data received.", status=400)

# Check the timestamp in the authentication
if (int(data['t'][0]) < time.time() - 10):
if int(data["t"][0]) < time.time() - 10:
return HttpResponse("Authentication token too old.", status=400)

# Update the user record (if any)
try:
user = User.objects.get(username=data['u'][0])
user = User.objects.get(username=data["u"][0])
# User found, let's see if any important fields have changed
changed = []
if user.first_name != data['f'][0]:
user.first_name = data['f'][0]
changed.append('first_name')
if user.last_name != data['l'][0]:
user.last_name = data['l'][0]
changed.append('last_name')
if user.email != data['e'][0]:
user.email = data['e'][0]
changed.append('email')
if user.first_name != data["f"][0]:
user.first_name = data["f"][0]
changed.append("first_name")
if user.last_name != data["l"][0]:
user.last_name = data["l"][0]
changed.append("last_name")
if user.email != data["e"][0]:
user.email = data["e"][0]
changed.append("email")
if changed:
user.save(update_fields=changed)
except User.DoesNotExist:
Expand All @@ -152,8 +166,9 @@ def auth_receive(request):
# the database with a different userid. Instead of trying to
# somehow fix that live, give a proper error message and
# have somebody look at it manually.
if User.objects.filter(email=data['e'][0]).exists():
return HttpResponse("""A user with email %s already exists, but with
if User.objects.filter(email=data["e"][0]).exists():
return HttpResponse(
"""A user with email %s already exists, but with
a different username than %s.

This is almost certainly caused by some legacy data in our database.
Expand All @@ -162,26 +177,30 @@ def auth_receive(request):
for you.

We apologize for the inconvenience.
""" % (data['e'][0], data['u'][0]), content_type='text/plain')

if getattr(settings, 'PGAUTH_CREATEUSER_CALLBACK', None):
res = getattr(settings, 'PGAUTH_CREATEUSER_CALLBACK')(
data['u'][0],
data['e'][0],
['f'][0],
data['l'][0],
"""
% (data["e"][0], data["u"][0]),
content_type="text/plain",
)

if getattr(settings, "PGAUTH_CREATEUSER_CALLBACK", None):
res = getattr(settings, "PGAUTH_CREATEUSER_CALLBACK")(
data["u"][0],
data["e"][0],
["f"][0],
data["l"][0],
)
# If anything is returned, we'll return that as our result.
# If None is returned, it means go ahead and create the user.
if res:
return res

user = User(username=data['u'][0],
first_name=data['f'][0],
last_name=data['l'][0],
email=data['e'][0],
password='setbypluginnotasha1',
)
user = User(
username=data["u"][0],
first_name=data["f"][0],
last_name=data["l"][0],
email=data["e"][0],
password="setbypluginnotasha1",
)
user.save()

auth_user_created_from_upstream.send(sender=auth_receive, user=user)
Expand All @@ -193,47 +212,53 @@ def auth_receive(request):
django_login(request, user)

# Signal that we have information about this user
auth_user_data_received.send(sender=auth_receive, user=user, userdata={
'secondaryemails': data['se'][0].split(',') if 'se' in data else []
})
auth_user_data_received.send(
sender=auth_receive,
user=user,
userdata={"secondaryemails": data["se"][0].split(",") if "se" in data else []},
)

# Finally, check of we have a data package that tells us where to
# redirect the user.
if 'd' in data:
(ivs, datas) = data['d'][0].split('$')
decryptor = AES.new(SHA.new(settings.SECRET_KEY.encode('ascii')).digest()[:16],
AES.MODE_CBC,
base64.b64decode(ivs, b"-_"))
s = decryptor.decrypt(base64.b64decode(datas, "-_")).rstrip(b' ').decode('utf8')
if "d" in data:
(ivs, datas) = data["d"][0].split("$")
decryptor = AES.new(
SHA.new(settings.SECRET_KEY.encode("ascii")).digest()[:16],
AES.MODE_CBC,
base64.b64decode(ivs, b"-_"),
)
s = decryptor.decrypt(base64.b64decode(datas, "-_")).rstrip(b" ").decode("utf8")
try:
rdata = parse_qs(s, strict_parsing=True)
except ValueError:
return HttpResponse("Invalid encrypted data received.", status=400)
if 'r' in rdata:
if "r" in rdata:
# Redirect address
return HttpResponseRedirect(rdata['r'][0])
return HttpResponseRedirect(rdata["r"][0])
# No redirect specified, see if we have it in our settings
if hasattr(settings, 'PGAUTH_REDIRECT_SUCCESS'):
if hasattr(settings, "PGAUTH_REDIRECT_SUCCESS"):
return HttpResponseRedirect(settings.PGAUTH_REDIRECT_SUCCESS)
return HttpResponse("Authentication successful, but don't know where to redirect!", status=500)
return HttpResponse(
"Authentication successful, but don't know where to redirect!", status=500
)


# Receive API calls from upstream, such as push changes to users
@csrf_exempt
def auth_api(request):
if 'X-pgauth-sig' not in request.headers:
if "X-pgauth-sig" not in request.headers:
return HttpResponse("Missing signature header!", status=400)

try:
sig = base64.b64decode(request.headers['X-pgauth-sig'])
sig = base64.b64decode(request.headers["X-pgauth-sig"])
except Exception:
return HttpResponse("Invalid signature header!", status=400)

try:
h = hmac.digest(
base64.b64decode(settings.PGAUTH_KEY),
msg=request.body,
digest='sha512',
digest="sha512",
)
if not hmac.compare_digest(h, sig):
return HttpResponse("Invalid signature!", status=401)
Expand Down Expand Up @@ -261,26 +286,38 @@ def _conditionally_update_record(rectype, recordkey, structkey, fieldmap, struct
return None

# Process the received structure
if pushstruct.get('type', None) == 'update':
if pushstruct.get("type", None) == "update":
# Process updates!
with transaction.atomic():
for u in pushstruct.get('users', []):
for u in pushstruct.get("users", []):
user = _conditionally_update_record(
User,
'username', 'username',
"username",
"username",
{
'firstname': 'first_name',
'lastname': 'last_name',
'email': 'email',
"firstname": "first_name",
"lastname": "last_name",
"email": "email",
},
u,
)

# Signal that we have information about this user (only if it exists)
if user:
auth_user_data_received.send(sender=auth_api, user=user, userdata={
k: u[k] for k in u.keys() if k not in ['firstname', 'lastname', 'email', ]
})
auth_user_data_received.send(
sender=auth_api,
user=user,
userdata={
k: u[k]
for k in u.keys()
if k
not in [
"firstname",
"lastname",
"email",
]
},
)

return HttpResponse("OK", status=200)

Expand All @@ -297,24 +334,24 @@ def user_search(searchterm=None, userid=None):
# 10 seconds is already quite long.
socket.setdefaulttimeout(10)
if userid:
q = {'u': userid}
q = {"u": userid}
else:
q = {'s': searchterm}
q = {"s": searchterm}

r = requests.get(
'{0}search/'.format(settings.PGAUTH_REDIRECT),
"{0}search/".format(settings.PGAUTH_REDIRECT),
params=q,
)
if r.status_code != 200:
return []

(ivs, datas) = r.text.encode('utf8').split(b'&')
(ivs, datas) = r.text.encode("utf8").split(b"&")

# Decryption time
decryptor = AES.new(base64.b64decode(settings.PGAUTH_KEY),
AES.MODE_CBC,
base64.b64decode(ivs, "-_"))
s = decryptor.decrypt(base64.b64decode(datas, "-_")).rstrip(b' ').decode('utf8')
decryptor = AES.new(
base64.b64decode(settings.PGAUTH_KEY), AES.MODE_CBC, base64.b64decode(ivs, "-_")
)
s = decryptor.decrypt(base64.b64decode(datas, "-_")).rstrip(b" ").decode("utf8")
j = json.loads(s)

return j
Expand All @@ -324,22 +361,24 @@ def user_search(searchterm=None, userid=None):
def subscribe_to_user_changes(userid):
socket.setdefaulttimeout(10)

body = json.dumps({
'u': userid,
})
body = json.dumps(
{
"u": userid,
}
)

h = hmac.digest(
base64.b64decode(settings.PGAUTH_KEY),
msg=bytes(body, 'utf-8'),
digest='sha512',
msg=bytes(body, "utf-8"),
digest="sha512",
)

# Ignore the result code, just post it
requests.post(
'{0}subscribe/'.format(settings.PGAUTH_REDIRECT),
"{0}subscribe/".format(settings.PGAUTH_REDIRECT),
data=body,
headers={
'X-pgauth-sig': base64.b64encode(h),
"X-pgauth-sig": base64.b64encode(h),
},
)

Expand All @@ -359,15 +398,15 @@ def user_import(uid):

u = u[0]

if User.objects.filter(username=u['u']).exists():
if User.objects.filter(username=u["u"]).exists():
raise Exception("User already exists")

u = User(
username=u['u'],
first_name=u['f'],
last_name=u['l'],
email=u['e'],
password='setbypluginnotsha1',
username=u["u"],
first_name=u["f"],
last_name=u["l"],
email=u["e"],
password="setbypluginnotsha1",
)
u.save()

Expand Down
Loading