def __init__(self, req):
SharedHandler.__init__(self, req)
# Initialize variables
self.componentType = 'proxy.broker'
self.cachedClientInfo = None # headers - session token
self.authChannels = None
self.clientServerId = None
self.rhnParentXMLRPC = None
self.authToken = None
self.fullRequestURL = None
hostname = ''
# should *always* exist and be my ip address
my_ip_addr = req.headers_in['SERVER_ADDR']
if req.headers_in.has_key('Host'):
# the client has provided a host header
try:
# When a client with python 2.4 (RHEL 5) uses SSL
# the host header is in the 'hostname:port' form
# (In python 2.6 RFE #1472176 changed this and 'hostname'
# is used). We need to use the 'hostname' part in any case
# or we create bogus 'hostname:port' DNS queries
host_header = req.headers_in['Host'].split(':')[0]
if host_header != my_ip_addr and \
socket.gethostbyname(host_header) == my_ip_addr:
# if host header is valid (i.e. not just an /etc/hosts
# entry on the client or the hostname of some other
# machine (say a load balancer)) then use it
hostname = host_header
except (socket.gaierror, socket.error, socket.herror,
socket.timeout):
# hostname probably didn't exist, fine
pass
if not hostname:
# okay, that didn't work, let's do a reverse dns lookup on my
# ip address
try:
hostname = socket.gethostbyaddr(my_ip_addr)[0]
except (socket.gaierror, socket.error, socket.herror,
socket.timeout):
# unknown host, we don't have a hostname?
pass
if not hostname:
# this shouldn't happen
# socket.gethostname is a punt. Shouldn't need to do it.
hostname = socket.gethostname()
log_debug(
-1, 'WARNING: no hostname in the incoming headers; '
'punting: %s' % hostname)
hostname = parseUrl(hostname)[1].split(':')[0]
self.proxyAuth = proxy.rhnProxyAuth.get_proxy_auth(hostname)
self._initConnectionVariables(req)
def __init__(self, req):
SharedHandler.__init__(self, req)
# Initialize variables
self.componentType = 'proxy.broker'
self.cachedClientInfo = None # headers - session token
self.authChannels = None
self.clientServerId = None
self.rhnParentXMLRPC = None
hostname = ''
# should *always* exist and be my ip address
my_ip_addr = req.headers_in['SERVER_ADDR']
if req.headers_in.has_key('Host'):
# the client has provided a host header
try:
# When a client with python 2.4 (RHEL 5) uses SSL
# the host header is in the 'hostname:port' form
# (In python 2.6 RFE #1472176 changed this and 'hostname'
# is used). We need to use the 'hostname' part in any case
# or we create bogus 'hostname:port' DNS queries
host_header = req.headers_in['Host'].split(':')[0]
if socket.gethostbyname(host_header) == my_ip_addr:
# if host header is valid (i.e. not just an /etc/hosts
# entry on the client or the hostname of some other
# machine (say a load balancer)) then use it
hostname = host_header
except (socket.gaierror, socket.error,
socket.herror, socket.timeout):
# hostname probably didn't exist, fine
pass
if not hostname:
# okay, that didn't work, let's do a reverse dns lookup on my
# ip address
try:
hostname = socket.gethostbyaddr(my_ip_addr)[0]
except (socket.gaierror, socket.error,
socket.herror, socket.timeout):
# unknown host, we don't have a hostname?
pass
if not hostname:
# this shouldn't happen
# socket.gethostname is a punt. Shouldn't need to do it.
hostname = socket.gethostname()
log_debug(-1, 'WARNING: no hostname in the incoming headers; '
'punting: %s' % hostname)
hostname = parseUrl(hostname)[1].split(':')[0]
self.proxyAuth = proxy.rhnProxyAuth.get_proxy_auth(hostname)
self._initConnectionVariables(req)
def __init__(self, req):
SharedHandler.__init__(self, req)
# Initialize variables
self.componentType = 'proxy.broker'
self.cachedClientInfo = None # headers - session token
self.authChannels = None
self.clientServerId = None
self.rhnParentXMLRPC = None
hostname = ''
# should *always* exist and be my ip address
my_ip_addr = req.headers_in['SERVER_ADDR']
if req.headers_in.has_key('Host'):
# the client has provided a host header
try:
if socket.gethostbyname(req.headers_in['Host']) == my_ip_addr:
# if host header is valid (i.e. not just an /etc/hosts
# entry on the client or the hostname of some other
# machine (say a load balancer)) then use it
hostname = req.headers_in['Host']
except (socket.gaierror, socket.error,
socket.herror, socket.timeout):
# hostname probably didn't exist, fine
pass
if not hostname:
# okay, that didn't work, let's do a reverse dns lookup on my
# ip address
try:
hostname = socket.gethostbyaddr(my_ip_addr)[0]
except (socket.gaierror, socket.error,
socket.herror, socket.timeout):
# unknown host, we don't have a hostname?
pass
if not hostname:
# this shouldn't happen
# socket.gethostname is a punt. Shouldn't need to do it.
hostname = socket.gethostname()
log_debug(-1, 'WARNING: no hostname in the incoming headers; '
'punting: %s' % hostname)
hostname = parseUrl(hostname)[1].split(':')[0]
self.proxyAuth = proxy.rhnProxyAuth.get_proxy_auth(hostname)
self._initConnectionVariables(req)
def __init__(self, req):
SharedHandler.__init__(self, req)
# Initialize variables
self.componentType = 'proxy.broker'
self.cachedClientInfo = None # headers - session token
self.authChannels = None
self.clientServerId = None
hostname = ''
if req.headers_in.has_key('Host'):
hostname = req.headers_in['Host'] or ''
if not hostname:
# this shouldn't happen
# socket.gethostname is a punt. Shouldn't need to do it.
hostname = socket.gethostname()
log_debug(-1, 'WARNING: no hostname in the incoming headers; '
'punting: %s' % hostname)
hostname = string.split(parseUrl(hostname)[1], ':')[0]
self.proxyAuth = proxy.rhnProxyAuth.get_proxy_auth(hostname)
self._initConnectionVariables(req)
def _prepHandler(self):
""" prep handler and check PROXY_AUTH's expiration. """
SharedHandler._prepHandler(self)
def __init__(self, req):
SharedHandler.__init__(self, req)
self.componentType = 'proxy.redirect'
self._initConnectionVariables(req)
self.rhnParentXMLRPC = None
def _handleServerResponse(self, status):
""" Here, we'll override the default behavior for handling server responses
so that we can adequately handle 302's.
We will follow redirects unless it is redirect to (re)login page. In which
case we change protocol to https and return redirect to user.
"""
# In case of a 302, redirect the original request to the location
# specified in the response.
if status == apache.HTTP_MOVED_TEMPORARILY or \
status == apache.HTTP_MOVED_PERMANENTLY:
log_debug(1, "Received redirect response: ", status)
# if we redirected to ssl version of login page, send redirect directly to user
headers = self.responseContext.getHeaders()
if headers is not None:
for headerKey in list(headers.keys()):
if headerKey == 'location':
location = self._get_header(headerKey)
login = re.compile(
r'https?://.*(/rhn/manager/login\?.*)')
m = login.match(location[0])
if m:
# pull server name out of "t:o:k:e:n:hostname1,t:o:k:e:n:hostname2,..."
proxy_auth = self.req.headers_in[
'X-RHN-Proxy-Auth']
last_auth = proxy_auth.split(',')[-1]
server_name = last_auth.split(':')[-1]
log_debug(
1, "Redirecting to SSL version of login page")
rhnLib.setHeaderValue(
self.req.headers_out, 'Location',
"https://%s%s" % (server_name, m.group(1)))
return apache.HTTP_MOVED_PERMANENTLY
redirectStatus = self.__redirectToNextLocation()
# At this point, we've either:
#
# (a) successfully redirected to the 3rd party
# (b) been told to redirect somewhere else from the 3rd party
# (c) run out of retry attempts
#
# We'll keep redirecting until we've received HTTP_OK or an error.
while redirectStatus == apache.HTTP_MOVED_PERMANENTLY or \
redirectStatus == apache.HTTP_MOVED_TEMPORARILY:
# We've been told to redirect again. We'll pass a special
# argument to ensure that if we end up back at the server, we
# won't be redirected again.
log_debug(1, "Redirected again! Code=", redirectStatus)
redirectStatus = self.__redirectToNextLocation(True)
if (redirectStatus != apache.HTTP_OK) and (
redirectStatus != apache.HTTP_PARTIAL_CONTENT):
# We must have run out of retry attempts. Fail over to Hosted
# to perform the request.
log_debug(
1, "Redirection failed; retries exhausted. "
"Failing over. Code=", redirectStatus)
redirectStatus = self.__redirectFailover()
return SharedHandler._handleServerResponse(self, redirectStatus)
else:
# Otherwise, revert to default behavior.
return SharedHandler._handleServerResponse(self, status)
def _prepHandler(self):
""" prep handler and check PROXY_AUTH's expiration. """
SharedHandler._prepHandler(self)
def __init__(self, req):
SharedHandler.__init__(self, req)
self.componentType = 'proxy.redirect'
self._initConnectionVariables(req)
self.rhnParentXMLRPC = None
def _handleServerResponse(self, status):
""" Here, we'll override the default behavior for handling server responses
so that we can adequately handle 302's.
We will follow redirects unless it is redirect to (re)login page. In which
case we change protocol to https and return redirect to user.
"""
# In case of a 302, redirect the original request to the location
# specified in the response.
if status == apache.HTTP_MOVED_TEMPORARILY or \
status == apache.HTTP_MOVED_PERMANENTLY:
log_debug(1, "Received redirect response: ", status)
# if we redirected to ssl version of login page, send redirect directly to user
headers = self.responseContext.getHeaders()
if headers is not None:
for headerKey in headers.keys():
if headerKey == 'location':
location = self._get_header(headerKey)
relogin = re.compile(r'https?://.*(/rhn/(Re)?Login.do\?.*)')
m = relogin.match(location[0])
if m:
# pull server name out of "t:o:k:e:n:hostname1,t:o:k:e:n:hostname2,..."
proxy_auth = self.req.headers_in['X-RHN-Proxy-Auth']
last_auth = proxy_auth.split(',')[-1]
server_name = last_auth.split(':')[-1]
log_debug(1, "Redirecting to SSL version of login page")
rhnLib.setHeaderValue(self.req.headers_out, 'Location',
"https://%s%s" % (server_name, m.group(1)))
return apache.HTTP_MOVED_PERMANENTLY
redirectStatus = self.__redirectToNextLocation()
# At this point, we've either:
#
# (a) successfully redirected to the 3rd party
# (b) been told to redirect somewhere else from the 3rd party
# (c) run out of retry attempts
#
# We'll keep redirecting until we've received HTTP_OK or an error.
while redirectStatus == apache.HTTP_MOVED_PERMANENTLY or \
redirectStatus == apache.HTTP_MOVED_TEMPORARILY:
# We've been told to redirect again. We'll pass a special
# argument to ensure that if we end up back at the server, we
# won't be redirected again.
log_debug(1, "Redirected again! Code=", redirectStatus)
redirectStatus = self.__redirectToNextLocation(True)
if (redirectStatus != apache.HTTP_OK) and (redirectStatus != apache.HTTP_PARTIAL_CONTENT):
# We must have run out of retry attempts. Fail over to Hosted
# to perform the request.
log_debug(1, "Redirection failed; retries exhausted. "
"Failing over. Code=",
redirectStatus)
redirectStatus = self.__redirectFailover()
return SharedHandler._handleServerResponse(self, redirectStatus)
else:
# Otherwise, revert to default behavior.
return SharedHandler._handleServerResponse(self, status)
