| Server IP : 192.158.238.246 / Your IP : 18.216.1.197 Web Server : LiteSpeed System : Linux uniform.iwebfusion.net 4.18.0-553.27.1.lve.1.el8.x86_64 #1 SMP Wed Nov 20 15:58:00 UTC 2024 x86_64 User : jenniferflocom ( 1321) PHP Version : 8.1.32 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /opt/alt/python37/lib/python3.7/site-packages/paste/auth/__pycache__/ |
Upload File : |
B
����a�N�������������������@���s.���d�Z�ddlmZ�G�dd��de�Zd dd�ZdS�)
z-
Grant roles and logins based on IP address.
�����)�ip4c���������������@���s2���e�Zd�ZdZd
dd�Zdd��Zdd��Zd d
��Zd
S�)
�GrantIPMiddlewarea��
On each request, ``ip_map`` is checked against ``REMOTE_ADDR``
and logins and roles are assigned based on that.
``ip_map`` is a map of {ip_mask: (username, roles)}. Either
``username`` or ``roles`` may be None. Roles may also be prefixed
with ``-``, like ``'-system'`` meaning that role should be
revoked. ``'__remove__'`` for a username will remove the username.
If ``clobber_username`` is true (default) then any user
specification will override the current value of ``REMOTE_USER``.
``'__remove__'`` will always clobber the username.
``ip_mask`` is something that `paste.util.ip4:IP4Range
<class-paste.util.ip4.IP4Range.html>`_ can parse. Simple IP
addresses, IP/mask, ip<->ip ranges, and hostnames are allowed.
Tc���������� ���C���sR���||�_�g�|�_x:|���D�].\}}|�j�t�|�|��|d�|d��f��qW�||�_d�S�)Nr�������)�app�ip_map�items�appendr���ZIP4Range�_convert_user_role�clobber_username)�selfr���r���r
����key�value��r����C/opt/alt/python37/lib/python3.7/site-packages/paste/auth/grantip.py�__init__
���s
����
zGrantIPMiddleware.__init__c�������������C���s ���|rt�|t�r|�d�}||fS�)N�,)�
isinstance�
basestring�split)r
����username�rolesr���r���r���r ���$���s����
z$GrantIPMiddleware._convert_user_rolec������� ������C���s����t��|d�d�}d}g�}xV|�jD�]L\}\}}||kr |rB|�|��|dkrPd}q |r |�d�rd|�jr ||d<�q W�|r�d|kr�|d=�|r�|��||��|��||�S�)NZ
REMOTE_ADDRFZ
__remove__TZ
REMOTE_USER)r���Zip2intr����extend�getr
����
_set_rolesr���) r
����environZstart_response�addrZ
remove_userZ add_roles�ranger���r���r���r���r����__call__)���s$����
zGrantIPMiddleware.__call__c�������������C���s����|��dd��d�}td�|�}g�}x<|D�]4}|�d�rH|�|dd�����q&||kr&|�|��q&W�x
|D�]}||krd|�|��qdW�d�|�|d<�d�S�)NZREMOTE_USER_TOKENS��r����-r���)r���r����filter�
startswithr����remove�join)r
���r���r���Z cur_rolesZ
remove_roles�roler���r���r���r���=���s����
z
GrantIPMiddleware._set_rolesN)T)�__name__�
__module__�
__qualname__�__doc__r���r ���r
���r���r���r���r���r���r������s
���
r���Fc�������
������K���s|���ddl�m}�||�}i�}xV|���D�]J\}}d|krD|�dd�\}} n|}d} |dkrXd}| dkrdd} |||<�q"W�t|�||�S�)a���
Grant roles or usernames based on IP addresses.
Config looks like this::
[filter:grant]
use = egg:Paste#grantip
clobber_username = true
# Give localhost system role (no username):
127.0.0.1 = -:system
# Give everyone in 192.168.0.* editor role:
192.168.0.0/24 = -:editor
# Give one IP the username joe:
192.168.0.7 = joe
# And one IP is should not be logged in:
192.168.0.10 = __remove__:-editor
r���)�asbool�:r���r
���r ���)Zpaste.deploy.convertersr)���r���r���r���)
r���Z
global_confr
����kwr)���r���r
���r
���r���r$���r���r���r����
make_grantipN���s
����
r,���N)F)r(���Z
paste.utilr����objectr���r,���r���r���r���r����<module>���s���
F