def generate(self, password=None,
passkey=None, random=False, autoexpire=False):
"""Generate a new set of keys.
Store only the encrypted version
"""
if password is None and passkey is None and random is False:
raise Exception(
'KeyError',
'Invalid call to generate() - Must include a password, passkey, or Random')
if random is True:
password = TavernUtils.randstr(100)
ret = password
else:
ret = None
super().generate(autoexpire=autoexpire)
if self.passkey is None and passkey is not None:
self.passkey = passkey
if self.passkey is None and password is not None:
self.passkey = self.get_passkey(password=password)
self.lock(passkey=self.passkey)
return ret
def generate(self,
password=None,
passkey=None,
random=False,
autoexpire=False):
"""Generate a new set of keys.
Store only the encrypted version
"""
if password is None and passkey is None and random is False:
raise Exception(
'KeyError',
'Invalid call to generate() - Must include a password, passkey, or Random'
)
if random is True:
password = TavernUtils.randstr(100)
ret = password
else:
ret = None
super().generate(autoexpire=autoexpire)
if self.passkey is None and passkey is not None:
self.passkey = passkey
if self.passkey is None and password is not None:
self.passkey = self.get_passkey(password=password)
self.lock(passkey=self.passkey)
return ret
def encrypt_file(self, newfile):
"""Encrypt a string, to the gpg key of the specified recipient)"""
# In order for this to work, we need to temporarily import B's key into A's keyring.
# We then do the encryptions, and immediately remove it.
recipient = Key(pub=encrypt_to)
recipient._format_keys()
self.gpg.import_keys(recipient.pubkey)
tmpfilename = "tmp/gpgfiles/" + TavernUtils.longtime(
) + TavernUtils.randstr(50, printable=True)
self.gpg.encrypt_file(stream=oldfile,
recipients=[recipient.fingerprint],
always_trust=True,
armor=True,
output=tmpfilename)
self.gpg.delete_keys(recipient.fingerprint)
return tmpfilename
def encrypt_file(self, newfile):
"""Encrypt a string, to the gpg key of the specified recipient)"""
# In order for this to work, we need to temporarily import B's key into A's keyring.
# We then do the encryptions, and immediately remove it.
recipient = Key(pub=encrypt_to)
recipient._format_keys()
self.gpg.import_keys(recipient.pubkey)
tmpfilename = "tmp/gpgfiles/" + TavernUtils.longtime(
) + TavernUtils.randstr(50, printable=True)
self.gpg.encrypt_file(
stream=oldfile,
recipients=[recipient.fingerprint],
always_trust=True,
armor=True,
output=tmpfilename)
self.gpg.delete_keys(recipient.fingerprint)
return tmpfilename
def updateconfig(self):
# Create a string/immutable version of ServerSettings that we can
# compare against later to see if anything changed.
tmpsettings = str(self.settings)
if not 'hostname' in self.settings:
self.settings['hostname'] = platform.node()
if not 'web_url' in self.settings:
self.settings['web_url'] = None
if not 'downloadsurl' in self.settings:
self.settings['downloadsurl'] = '/binaries/'
# The Canonical URL is specified so that Google won't detect duplicate
# content for every Tavern server, and penalize.
if not 'canonical_url' in self.settings:
self.settings['canonical_url'] = "https://tavern.is"
if not 'logfile' in self.settings:
self.settings[
'logfile'] = "logs/" + self.settings['hostname'] + '.log'
if not 'loglevel' in self.settings:
self.settings['loglevel'] = "INFO"
if not 'mongo-hostname' in self.settings:
self.settings['mongo-hostname'] = 'localhost'
if not 'mongo-port' in self.settings:
self.settings['mongo-port'] = 27017
if not 'postgres-hostname' in self.settings:
self.settings['postgres-hostname'] = 'localhost'
if not 'postgres-user' in self.settings:
self.settings['postgres-user'] = getpass.getuser()
if not 'postgres-hostname' in self.settings:
self.settings['postgres-hostname'] = "localhost"
if not 'postgres-port' in self.settings:
self.settings['postgres-port'] = 5432
if not 'dbname' in self.settings:
self.settings['dbname'] = 'Tavern'
if not 'bin-mongo-hostname' in self.settings:
self.settings['bin-mongo-hostname'] = 'localhost'
if not 'bin-mongo-port' in self.settings:
self.settings['bin-mongo-port'] = 27017
if not 'bin-mongo-db' in self.settings:
self.settings['bin-mongo-db'] = 'Tavern_Binaries'
if not 'sessions-db-hostname' in self.settings:
self.settings['sessions-db-hostname'] = 'localhost'
if not 'sessions-db-port' in self.settings:
self.settings['sessions-db-port'] = 27017
if not 'sessions-db-name' in self.settings:
self.settings['sessions-db-name'] = 'Tavern_Sessions'
if not 'cache' in self.settings:
self.settings['cache'] = {}
if not 'user-trust' in self.settings['cache']:
self.settings['cache']['user-trust'] = {}
self.settings['cache']['user-trust']['seconds'] = 300
self.settings['cache']['user-trust']['size'] = 10000
if not 'message-ratings' in self.settings['cache']:
self.settings['cache']['message-ratings'] = {}
self.settings['cache']['message-ratings']['seconds'] = 300
self.settings['cache']['message-ratings']['size'] = 10000
if not 'avatarcache' in self.settings['cache']:
self.settings['cache']['avatarcache'] = {}
self.settings['cache']['avatarcache']['size'] = 100000
self.settings['cache']['avatarcache']['seconds'] = None
if not 'embedded' in self.settings['cache']:
self.settings['cache']['embedded'] = {}
self.settings['cache']['embedded']['size'] = 1000
self.settings['cache']['embedded']['seconds'] = 3601
if not 'user-note' in self.settings['cache']:
self.settings['cache']['user-note'] = {}
self.settings['cache']['user-note']['size'] = 10000
self.settings['cache']['user-note']['seconds'] = 60
if not 'subjects-in-topic' in self.settings['cache']:
self.settings['cache']['subjects-in-topic'] = {}
self.settings['cache']['subjects-in-topic']['size'] = 1000
self.settings['cache']['subjects-in-topic']['seconds'] = 1
if not 'toptopics' in self.settings['cache']:
self.settings['cache']['toptopics'] = {}
self.settings['cache']['toptopics']['size'] = 1
self.settings['cache']['toptopics']['seconds'] = 3602
# Settings related to the Web View
if not 'templates' in self.settings['cache']:
self.settings['cache']['templates'] = {}
self.settings['cache']['templates']['size'] = 1000
self.settings['cache']['templates']['seconds'] = 5
if not 'getpagelemenent' in self.settings['cache']:
self.settings['cache']['getpagelemenent'] = {}
self.settings['cache']['getpagelemenent']['size'] = 1000
self.settings['cache']['getpagelemenent']['seconds'] = 20
if not 'message-page' in self.settings['cache']:
self.settings['cache']['message-page'] = {}
self.settings['cache']['message-page']['size'] = 1000
self.settings['cache']['message-page']['seconds'] = 1
if not 'topic-page' in self.settings['cache']:
self.settings['cache']['topic-page'] = {}
self.settings['cache']['topic-page']['size'] = 1000
self.settings['cache']['topic-page']['seconds'] = 1
if not 'uasparser' in self.settings['cache']:
self.settings['cache']['uasparser'] = {}
self.settings['cache']['uasparser']['size'] = 1000
self.settings['cache']['uasparser']['seconds'] = 36001
if not 'topiccount' in self.settings['cache']:
self.settings['cache']['topiccount'] = {}
self.settings['cache']['topiccount']['size'] = 1000
self.settings['cache']['topiccount']['seconds'] = 10
if not 'receiveEnvelope' in self.settings['cache']:
self.settings['cache']['receiveEnvelope'] = {}
self.settings['cache']['receiveEnvelope']['size'] = 10000
self.settings['cache']['receiveEnvelope']['seconds'] = 1000
if not 'getUsersPosts' in self.settings['cache']:
self.settings['cache']['getUsersPosts'] = {}
self.settings['cache']['getUsersPosts']['size'] = 10000
self.settings['cache']['getUsersPosts']['seconds'] = 2
if not 'sorttopic' in self.settings['cache']:
self.settings['cache']['sorttopic'] = {}
self.settings['cache']['sorttopic']['size'] = 1000000
self.settings['cache']['sorttopic']['seconds'] = 10000000000
if not 'formatText' in self.settings['cache']:
self.settings['cache']['formatText'] = {}
self.settings['cache']['formatText']['size'] = 1000
self.settings['cache']['formatText']['seconds'] = 10000000000
if not 'error_envelope' in self.settings['cache']:
self.settings['cache']['error_envelope'] = {}
self.settings['cache']['error_envelope']['size'] = 20
self.settings['cache']['error_envelope']['seconds'] = 10000000000
if not 'KeyGenerator' in self.settings:
self.settings['KeyGenerator'] = {}
if not 'num_pregens' in self.settings['KeyGenerator']:
self.settings['KeyGenerator']['num_pregens'] = 5
if not 'workers' in self.settings['KeyGenerator']:
self.settings['KeyGenerator']['workers'] = 1
if not 'keys' in self.settings:
self.settings['keys'] = {}
if not 'keysize' in self.settings['keys']:
self.settings['keys']['keysize'] = 3072
if not 'upload-dir' in self.settings:
self.settings['upload-dir'] = '../nginx/uploads'
if not 'mark-origin' in self.settings:
self.settings['mark-origin'] = False
if not 'mark-seen' in self.settings:
self.settings['mark-seen'] = False
if not 'max-upload-preview-size' in self.settings:
self.settings['max-upload-preview-size'] = 10485760
if not 'cookie-encryption' in self.settings:
self.settings['cookie-encryption'] = TavernUtils.randstr(255)
if not 'serverkey-password' in self.settings:
self.settings['serverkey-password'] = TavernUtils.randstr(255)
if not 'embedserver' in self.settings:
self.settings['embedserver'] = 'http://embed.is'
if not 'maxembeddedurls' in self.settings:
self.settings['maxembeddedurls'] = 10
if not 'mongo-connections' in self.settings:
self.settings['mongo-connections'] = 10
if not 'dbtype' in self.settings:
self.settings['dbtype'] = 'mongo'
if not 'proof-of-work-difficulty' in self.settings:
self.settings['proof-of-work-difficulty'] = 19
# Report back on if there were any changes.
if str(self.settings) == tmpsettings:
return False
else:
return True
def updateconfig(self):
# Create a string/immutable version of ServerSettings that we can
# compare against later to see if anything changed.
tmpsettings = str(self.settings)
if not 'hostname' in self.settings:
self.settings['hostname'] = platform.node()
if not 'web_url' in self.settings:
self.settings['web_url'] = None
if not 'downloadsurl' in self.settings:
self.settings['downloadsurl'] = '/binaries/'
# The Canonical URL is specified so that Google won't detect duplicate
# content for every Tavern server, and penalize.
if not 'canonical_url' in self.settings:
self.settings['canonical_url'] = "https://tavern.is"
if not 'logfile' in self.settings:
self.settings[
'logfile'] = "logs/" + self.settings['hostname'] + '.log'
if not 'loglevel' in self.settings:
self.settings[
'loglevel'] = "INFO"
if not 'mongo-hostname' in self.settings:
self.settings['mongo-hostname'] = 'localhost'
if not 'mongo-port' in self.settings:
self.settings['mongo-port'] = 27017
if not 'postgres-hostname' in self.settings:
self.settings['postgres-hostname'] = 'localhost'
if not 'postgres-user' in self.settings:
self.settings['postgres-user'] = getpass.getuser()
if not 'postgres-hostname' in self.settings:
self.settings['postgres-hostname'] = "localhost"
if not 'postgres-port' in self.settings:
self.settings['postgres-port'] = 5432
if not 'dbname' in self.settings:
self.settings['dbname'] = 'Tavern'
if not 'bin-mongo-hostname' in self.settings:
self.settings['bin-mongo-hostname'] = 'localhost'
if not 'bin-mongo-port' in self.settings:
self.settings['bin-mongo-port'] = 27017
if not 'bin-mongo-db' in self.settings:
self.settings['bin-mongo-db'] = 'Tavern_Binaries'
if not 'sessions-db-hostname' in self.settings:
self.settings['sessions-db-hostname'] = 'localhost'
if not 'sessions-db-port' in self.settings:
self.settings['sessions-db-port'] = 27017
if not 'sessions-db-name' in self.settings:
self.settings['sessions-db-name'] = 'Tavern_Sessions'
if not 'cache' in self.settings:
self.settings['cache'] = {}
if not 'user-trust' in self.settings['cache']:
self.settings['cache']['user-trust'] = {}
self.settings['cache']['user-trust']['seconds'] = 300
self.settings['cache']['user-trust']['size'] = 10000
if not 'message-ratings' in self.settings['cache']:
self.settings['cache']['message-ratings'] = {}
self.settings['cache']['message-ratings']['seconds'] = 300
self.settings['cache']['message-ratings']['size'] = 10000
if not 'avatarcache' in self.settings['cache']:
self.settings['cache']['avatarcache'] = {}
self.settings['cache']['avatarcache']['size'] = 100000
self.settings['cache']['avatarcache']['seconds'] = None
if not 'embedded' in self.settings['cache']:
self.settings['cache']['embedded'] = {}
self.settings['cache']['embedded']['size'] = 1000
self.settings['cache']['embedded']['seconds'] = 3601
if not 'user-note' in self.settings['cache']:
self.settings['cache']['user-note'] = {}
self.settings['cache']['user-note']['size'] = 10000
self.settings['cache']['user-note']['seconds'] = 60
if not 'subjects-in-topic' in self.settings['cache']:
self.settings['cache']['subjects-in-topic'] = {}
self.settings['cache']['subjects-in-topic']['size'] = 1000
self.settings['cache']['subjects-in-topic']['seconds'] = 1
if not 'toptopics' in self.settings['cache']:
self.settings['cache']['toptopics'] = {}
self.settings['cache']['toptopics']['size'] = 1
self.settings['cache']['toptopics']['seconds'] = 3602
# Settings related to the Web View
if not 'templates' in self.settings['cache']:
self.settings['cache']['templates'] = {}
self.settings['cache']['templates']['size'] = 1000
self.settings['cache']['templates']['seconds'] = 5
if not 'getpagelemenent' in self.settings['cache']:
self.settings['cache']['getpagelemenent'] = {}
self.settings['cache']['getpagelemenent']['size'] = 1000
self.settings['cache']['getpagelemenent']['seconds'] = 20
if not 'message-page' in self.settings['cache']:
self.settings['cache']['message-page'] = {}
self.settings['cache']['message-page']['size'] = 1000
self.settings['cache']['message-page']['seconds'] = 1
if not 'topic-page' in self.settings['cache']:
self.settings['cache']['topic-page'] = {}
self.settings['cache']['topic-page']['size'] = 1000
self.settings['cache']['topic-page']['seconds'] = 1
if not 'uasparser' in self.settings['cache']:
self.settings['cache']['uasparser'] = {}
self.settings['cache']['uasparser']['size'] = 1000
self.settings['cache']['uasparser']['seconds'] = 36001
if not 'topiccount' in self.settings['cache']:
self.settings['cache']['topiccount'] = {}
self.settings['cache']['topiccount']['size'] = 1000
self.settings['cache']['topiccount']['seconds'] = 10
if not 'receiveEnvelope' in self.settings['cache']:
self.settings['cache']['receiveEnvelope'] = {}
self.settings['cache']['receiveEnvelope']['size'] = 10000
self.settings['cache']['receiveEnvelope']['seconds'] = 1000
if not 'getUsersPosts' in self.settings['cache']:
self.settings['cache']['getUsersPosts'] = {}
self.settings['cache']['getUsersPosts']['size'] = 10000
self.settings['cache']['getUsersPosts']['seconds'] = 2
if not 'sorttopic' in self.settings['cache']:
self.settings['cache']['sorttopic'] = {}
self.settings['cache']['sorttopic']['size'] = 1000000
self.settings['cache']['sorttopic']['seconds'] = 10000000000
if not 'formatText' in self.settings['cache']:
self.settings['cache']['formatText'] = {}
self.settings['cache']['formatText']['size'] = 1000
self.settings['cache']['formatText']['seconds'] = 10000000000
if not 'error_envelope' in self.settings['cache']:
self.settings['cache']['error_envelope'] = {}
self.settings['cache']['error_envelope']['size'] = 20
self.settings['cache']['error_envelope']['seconds'] = 10000000000
if not 'KeyGenerator' in self.settings:
self.settings['KeyGenerator'] = {}
if not 'num_pregens' in self.settings['KeyGenerator']:
self.settings['KeyGenerator']['num_pregens'] = 5
if not 'workers' in self.settings['KeyGenerator']:
self.settings['KeyGenerator']['workers'] = 1
if not 'keys' in self.settings:
self.settings['keys'] = {}
if not 'keysize' in self.settings['keys']:
self.settings['keys']['keysize'] = 3072
if not 'upload-dir' in self.settings:
self.settings['upload-dir'] = '../nginx/uploads'
if not 'mark-origin' in self.settings:
self.settings['mark-origin'] = False
if not 'mark-seen' in self.settings:
self.settings['mark-seen'] = False
if not 'max-upload-preview-size' in self.settings:
self.settings['max-upload-preview-size'] = 10485760
if not 'cookie-encryption' in self.settings:
self.settings['cookie-encryption'] = TavernUtils.randstr(255)
if not 'serverkey-password' in self.settings:
self.settings[
'serverkey-password'] = TavernUtils.randstr(255)
if not 'embedserver' in self.settings:
self.settings['embedserver'] = 'http://embed.is'
if not 'maxembeddedurls' in self.settings:
self.settings['maxembeddedurls'] = 10
if not 'mongo-connections' in self.settings:
self.settings['mongo-connections'] = 10
if not 'dbtype' in self.settings:
self.settings['dbtype'] = 'mongo'
if not 'proof-of-work-difficulty' in self.settings:
self.settings['proof-of-work-difficulty'] = 19
# Report back on if there were any changes.
if str(self.settings) == tmpsettings:
return False
else:
return True
def decrypt_file(self, tmpfile):
tmpfilename = "tmp/gpgfiles/" + TavernUtils.longtime(
) + TavernUtils.randstr(50, printable=True)
self.gpg.decrypt_file(tmpfile, output=tmpfilename)
return tmpfilename
def decrypt_file(self, tmpfile):
tmpfilename = "tmp/gpgfiles/" + TavernUtils.longtime(
) + TavernUtils.randstr(50, printable=True)
self.gpg.decrypt_file(tmpfile, output=tmpfilename)
return tmpfilename
