def ws_receive(message): from awx.main.access import consumer_access user = message.user raw_data = message.content['text'] data = json.loads(raw_data) if 'groups' in data: discard_groups(message) groups = data['groups'] current_groups = set(message.channel_session.pop('groups') if 'groups' in message.channel_session else []) for group_name,v in groups.items(): if type(v) is list: for oid in v: name = '{}-{}'.format(group_name, oid) access_cls = consumer_access(group_name) if access_cls is not None: user_access = access_cls(user) if not user_access.get_queryset().filter(pk=oid).exists(): message.reply_channel.send({"text": json.dumps( {"error": "access denied to channel {0} for resource id {1}".format(group_name, oid)})}) continue current_groups.add(name) Group(name).add(message.reply_channel) else: current_groups.add(group_name) Group(group_name).add(message.reply_channel) message.channel_session['groups'] = list(current_groups)
async def receive_json(self, data): from awx.main.access import consumer_access user = self.scope['user'] xrftoken = data.get('xrftoken') if (not xrftoken or XRF_KEY not in self.scope["session"] or xrftoken != self.scope["session"][XRF_KEY]): logger.error( f"access denied to channel, XRF mismatch for {user.username}") await self.send_json({"error": "access denied to channel"}) return if 'groups' in data: groups = data['groups'] new_groups = set() current_groups = set(self.scope['session'].pop('groups') if 'groups' in self.scope['session'] else []) for group_name, v in groups.items(): if type(v) is list: for oid in v: name = '{}-{}'.format(group_name, oid) access_cls = consumer_access(group_name) if access_cls is not None: user_access = access_cls(user) if not await self.user_can_see_object_id( user_access, oid): await self.send_json({ "error": "access denied to channel {0} for resource id {1}" .format(group_name, oid) }) continue new_groups.add(name) else: await self.send_json({"error": "access denied to channel"}) logger.error(f"groups must be a list, not {groups}") return old_groups = current_groups - new_groups for group_name in old_groups: await self.channel_layer.group_discard( group_name, self.channel_name, ) new_groups_exclusive = new_groups - current_groups for group_name in new_groups_exclusive: await self.channel_layer.group_add(group_name, self.channel_name) logger.debug( f"Channel {self.channel_name} left groups {old_groups} and joined {new_groups_exclusive}" ) self.scope['session']['groups'] = new_groups await self.send_json({ "groups_current": list(new_groups), "groups_left": list(old_groups), "groups_joined": list(new_groups_exclusive) })
def ws_receive(message): from awx.main.access import consumer_access channel_layer_settings = channel_layers.configs[ message.channel_layer.alias] max_retries = channel_layer_settings.get( 'RECEIVE_MAX_RETRY', settings.CHANNEL_LAYER_RECEIVE_MAX_RETRY) user_id = message.channel_session.get('user_id', None) if user_id is None: retries = message.content.get('connect_retries', 0) + 1 message.content['connect_retries'] = retries message.reply_channel.send( {"text": json.dumps({"error": "no valid user"})}) retries_left = max_retries - retries if retries_left > 0: message.channel_layer.send(message.channel.name, message.content) else: logger.error("No valid user found for websocket.") return None user = User.objects.get(pk=user_id) raw_data = message.content['text'] data = json.loads(raw_data) if 'groups' in data: discard_groups(message) groups = data['groups'] current_groups = set( message.channel_session.pop('groups') if 'groups' in message.channel_session else []) for group_name, v in groups.items(): if type(v) is list: for oid in v: name = '{}-{}'.format(group_name, oid) access_cls = consumer_access(group_name) if access_cls is not None: user_access = access_cls(user) if not user_access.get_queryset().filter( pk=oid).exists(): message.reply_channel.send({ "text": json.dumps({ "error": "access denied to channel {0} for resource id {1}" .format(group_name, oid) }) }) continue current_groups.add(name) Group(name).add(message.reply_channel) else: current_groups.add(group_name) Group(group_name).add(message.reply_channel) message.channel_session['groups'] = list(current_groups)