1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
|
from datetime import datetime
import json
from operator import attrgetter
from django.conf import settings
from django.contrib.auth.models import User
from django.db.models import Count, Q
from django.http import HttpResponse
from django.shortcuts import get_object_or_404, render
from django.views.decorators.cache import cache_control, cache_page
from devel.models import MasterKey, PGPSignature, StaffGroup
from main.models import Arch, Repo, Donor
from mirrors.models import MirrorUrl
from news.models import News
from releng.models import Release
from .utils import get_recent_updates
@cache_control(max_age=307)
def index(request):
if request.user.is_authenticated():
def updates():
return get_recent_updates(testing=True, staging=True)
else:
def updates():
return get_recent_updates()
context = {
'news_updates': News.objects.order_by('-postdate', '-id')[:15],
'pkg_updates': updates,
'staff_groups': StaffGroup.objects.all(),
}
return render(request, 'public/index.html', context)
@cache_control(max_age=307)
def people(request, slug):
group = get_object_or_404(StaffGroup, slug=slug)
users = User.objects.filter(groups=group.group).order_by(
'first_name', 'last_name').select_related('userprofile')
context = {'group': group, 'users': users}
return render(request, 'public/userlist.html', context)
@cache_control(max_age=307)
def donate(request):
context = {
'donors': Donor.objects.filter(visible=True).order_by('name'),
}
return render(request, 'public/donate.html', context)
def _mirror_urls():
'''In order to ensure this is lazily evaluated since we can't do
sorting at the database level, make it a callable.'''
urls = MirrorUrl.objects.select_related('mirror').filter(
active=True, protocol__default=True,
mirror__public=True, mirror__active=True, mirror__isos=True)
sort_by = attrgetter('country.name', 'mirror.name')
return sorted(urls, key=sort_by)
@cache_control(max_age=307)
def download(request):
try:
release = Release.objects.filter(available=True).latest()
except Release.DoesNotExist:
release = None
context = {
'release': release,
'releng_iso_url': settings.ISO_LIST_URL,
'releng_pxeboot_url': settings.PXEBOOT_URL,
'mirror_urls': _mirror_urls,
}
return render(request, 'public/download.html', context)
@cache_control(max_age=307)
def feeds(request):
repos = Repo.objects.all()
if not request.user.is_authenticated():
repos = repos.filter(staging=False)
context = {
'arches': Arch.objects.all(),
'repos': repos,
}
return render(request, 'public/feeds.html', context)
@cache_control(max_age=307)
def keys(request):
users = User.objects.filter(is_active=True).select_related(
'userprofile__pgp_key').order_by('first_name', 'last_name')
user_key_ids = frozenset(user.userprofile.pgp_key[-16:] for user in users
if user.userprofile.pgp_key)
not_expired = Q(expires__gt=datetime.utcnow) | Q(expires__isnull=True)
master_keys = MasterKey.objects.select_related('owner', 'revoker',
'owner__userprofile', 'revoker__userprofile').filter(
revoked__isnull=True)
sig_counts = PGPSignature.objects.filter(not_expired, revoked__isnull=True,
signee__in=user_key_ids).order_by().values_list('signer').annotate(
Count('signer'))
sig_counts = {key_id[-16:]: ct for key_id, ct in sig_counts}
for key in master_keys:
key.signature_count = sig_counts.get(key.pgp_key[-16:], 0)
# frozenset because we are going to do lots of __contains__ lookups
signatures = frozenset(PGPSignature.objects.filter(
not_expired, revoked__isnull=True).values_list('signer', 'signee'))
restrict = Q(signer__in=user_key_ids) & Q(signee__in=user_key_ids)
cross_signatures = PGPSignature.objects.filter(restrict,
not_expired, revoked__isnull=True).order_by('created')
context = {
'keys': master_keys,
'active_users': users,
'signatures': signatures,
'cross_signatures': cross_signatures,
}
return render(request, 'public/keys.html', context)
@cache_page(1789)
def keys_json(request):
node_list = []
users = User.objects.filter(is_active=True).select_related('userprofile')
node_list.extend({
'name': dev.get_full_name(),
'key': dev.userprofile.pgp_key,
'group': 'dev'
} for dev in users.filter(groups__name='Developers'))
node_list.extend({
'name': tu.get_full_name(),
'key': tu.userprofile.pgp_key,
'group': 'tu'
} for tu in users.filter(groups__name='Trusted Users').exclude(
groups__name='Developers'))
master_keys = MasterKey.objects.select_related('owner').filter(
revoked__isnull=True)
node_list.extend({
'name': 'Master Key (%s)' % key.owner.get_full_name(),
'key': key.pgp_key,
'group': 'master'
} for key in master_keys)
node_list.append({
'name': 'CA Cert Signing Authority',
'key': 'A31D4F81EF4EBD07B456FA04D2BB0D0165D0FD58',
'group': 'cacert',
})
not_expired = Q(expires__gt=datetime.utcnow) | Q(expires__isnull=True)
signatures = PGPSignature.objects.filter(not_expired, revoked__isnull=True)
edge_list = [{ 'signee': sig.signee, 'signer': sig.signer }
for sig in signatures]
data = { 'nodes': node_list, 'edges': edge_list }
to_json = json.dumps(data, ensure_ascii=False)
return HttpResponse(to_json, content_type='application/json')
# vim: set ts=4 sw=4 et:
|
