Mirrors/wireguard_webadmin
1
0
Fork 0
mirror of https://github.com/eduardogsilva/wireguard_webadmin.git synced 2026-03-15 13:36:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
10187372f366fd9cb7bb7cab7a5fd484dffe498c
wireguard_webadmin/app_gateway/views.py

421 lines
16 KiB
Python
Raw Normal View History

add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
from django.contrib import messages
from django.contrib.auth.decorators import login_required
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
from django.db.models import ProtectedError
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
from django.shortcuts import render, get_object_or_404, redirect
from django.urls import reverse
from django.utils.translation import gettext as _
from app_gateway.forms import (
ApplicationForm, ApplicationHostForm, AccessPolicyForm,
ApplicationPolicyForm, ApplicationRouteForm
)
from app_gateway.models import (
Application, ApplicationHost, AccessPolicy, ApplicationPolicy, ApplicationRoute
)
from user_manager.models import UserAcl
@login_required
def view_app_gateway_list(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=20).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
applications = Application.objects.all().order_by('name')
hosts = ApplicationHost.objects.all().order_by('hostname')
access_policies = AccessPolicy.objects.all().order_by('name')
app_policies = ApplicationPolicy.objects.all().order_by('application__name')
tab = request.GET.get('tab', 'applications')
context = {
'applications': applications,
'hosts': hosts,
'access_policies': access_policies,
'app_policies': app_policies,
'active_tab': tab,
}
return render(request, 'app_gateway/app_gateway_list.html', context)
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
@login_required
def view_application_details(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=20).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
application_uuid = request.GET.get('uuid')
application = get_object_or_404(Application, uuid=application_uuid)
hosts = application.hosts.all().order_by('hostname')
routes = application.routes.all().order_by('order', 'path_prefix')
context = {
'application': application,
'hosts': hosts,
'routes': routes,
'page_title': _('Application Details'),
}
return render(request, 'app_gateway/application_details.html', context)
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
@login_required
def view_manage_application(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
application_uuid = request.GET.get('uuid')
if application_uuid:
application = get_object_or_404(Application, uuid=application_uuid)
title = _('Edit Application')
else:
application = None
title = _('Create Application')
cancel_url = reverse('app_gateway_list') + '?tab=applications'
form = ApplicationForm(request.POST or None, instance=application, cancel_url=cancel_url)
if form.is_valid():
form.save()
messages.success(request, _('Application saved successfully.'))
return redirect(cancel_url)
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
form_description = {
'size': 'col-lg-6',
'content': _('''
<h5>Application</h5>
<p>Define the main details of the application you want to expose through the gateway.</p>
<ul>
<li><strong>Name</strong>: A unique internal identifier for this application (e.g., "wiki", "crm"). Contains only letters, numbers, hyphens, or underscores.</li>
<li><strong>Display Name</strong>: A friendly, human-readable name for display purposes.</li>
<li><strong>Upstream</strong>: The destination URL where requests will be forwarded (e.g., <code>http://10.188.18.27:3000</code>). Must start with <code>http://</code> or <code>https://</code>.</li>
</ul>
''')
}
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
context = {
'form': form,
'title': title,
'page_title': title,
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
'form_description': form_description,
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
}
return render(request, 'generic_form.html', context)
@login_required
def view_delete_application(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
application = get_object_or_404(Application, uuid=request.GET.get('uuid'))
cancel_url = reverse('app_gateway_list') + '?tab=applications'
if request.method == 'POST':
application.delete()
messages.success(request, _('Application deleted successfully.'))
return redirect(cancel_url)
context = {
'application': application,
'title': _('Delete Application'),
'cancel_url': cancel_url,
'text': _('Are you sure you want to delete the application "%(name)s"?') % {'name': application.display_name}
}
return render(request, 'generic_delete_confirmation.html', context)
@login_required
def view_manage_application_host(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
application_host_uuid = request.GET.get('uuid')
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application_uuid = request.GET.get('application_uuid')
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
if application_host_uuid:
application_host = get_object_or_404(ApplicationHost, uuid=application_host_uuid)
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application = application_host.application
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
title = _('Edit Application Host')
else:
application_host = None
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application = get_object_or_404(Application, uuid=application_uuid)
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
title = _('Add Application Host')
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
cancel_url = reverse('view_application') + f'?uuid={application.uuid}#hosts'
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
form = ApplicationHostForm(request.POST or None, instance=application_host, cancel_url=cancel_url)
if form.is_valid():
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
host = form.save(commit=False)
host.application = application
host.save()
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
messages.success(request, _('Application Host saved successfully.'))
return redirect(cancel_url)
context = {
'form': form,
'title': title,
'page_title': title,
}
return render(request, 'generic_form.html', context)
@login_required
def view_delete_application_host(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
application_host = get_object_or_404(ApplicationHost, uuid=request.GET.get('uuid'))
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application = application_host.application
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
cancel_url = reverse('view_application') + f'?uuid={application.uuid}#hosts'
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
if request.method == 'POST':
application_host.delete()
messages.success(request, _('Application Host deleted successfully.'))
return redirect(cancel_url)
context = {
'application_host': application_host,
'title': _('Delete Application Host'),
'cancel_url': cancel_url,
'text': _('Are you sure you want to delete the host "%(hostname)s"?') % {'hostname': application_host.hostname}
}
return render(request, 'generic_delete_confirmation.html', context)
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
@login_required
def view_select_policy_type(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
context = {
'page_title': _('Select Access Policy Type'),
}
return render(request, 'app_gateway/access_policy_type_select.html', context)
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
@login_required
def view_manage_access_policy(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
access_policy_uuid = request.GET.get('uuid')
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
policy_type = request.GET.get('policy_type')
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
if access_policy_uuid:
access_policy = get_object_or_404(AccessPolicy, uuid=access_policy_uuid)
title = _('Edit Access Policy')
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
policy_type = access_policy.policy_type
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
else:
access_policy = None
title = _('Create Access Policy')
cancel_url = reverse('app_gateway_list') + '?tab=policies'
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
form = AccessPolicyForm(request.POST or None, instance=access_policy, cancel_url=cancel_url, policy_type=policy_type)
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
if form.is_valid():
form.save()
messages.success(request, _('Access Policy saved successfully.'))
return redirect(cancel_url)
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
if policy_type == 'public':
form_description = {
'size': 'col-lg-6',
'content': _('''
<h5>Public Policy</h5>
<p>A Public policy allows access to the application without requiring any authentication.</p>
''')
}
elif policy_type == 'deny':
form_description = {
'size': 'col-lg-6',
'content': _('''
<h5>Deny Policy</h5>
<p>A Deny policy blocks all access to the matched routes.</p>
''')
}
else:
form_description = {
'size': 'col-lg-6',
'content': _('''
<h5>Protected Policy</h5>
<p>A Protected policy requires users to authenticate before accessing the application.</p>
<ul>
<li><strong>Allowed Groups</strong>: Limits access to specific user groups. Note: Using groups requires selecting an Authentication Method of type "Local Password".</li>
<li><strong>Authentication Methods</strong>: Specify which methods users can use to authenticate (e.g., Local Password, TOTP, OIDC).</li>
</ul>
''')
}
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
context = {
'form': form,
'title': title,
'page_title': title,
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
'form_description': form_description,
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
}
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
return render(request, 'generic_form.html', context)
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
@login_required
def view_delete_access_policy(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
access_policy = get_object_or_404(AccessPolicy, uuid=request.GET.get('uuid'))
cancel_url = reverse('app_gateway_list') + '?tab=policies'
if request.method == 'POST':
add policy type selection for access policies
2026-03-13 20:12:29 -03:00
try:
access_policy.delete()
messages.success(request, _('Access Policy deleted successfully.'))
except ProtectedError:
messages.error(request, _('Cannot delete this Access Policy because it is currently in use by an Application Route or Application Default Policy.'))
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
return redirect(cancel_url)
context = {
'access_policy': access_policy,
'title': _('Delete Access Policy'),
'cancel_url': cancel_url,
'text': _('Are you sure you want to delete the access policy "%(name)s"?') % {'name': access_policy.name}
}
return render(request, 'generic_delete_confirmation.html', context)
@login_required
def view_manage_application_policy(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
application_policy_uuid = request.GET.get('uuid')
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application_uuid = request.GET.get('application_uuid')
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
if application_policy_uuid:
application_policy = get_object_or_404(ApplicationPolicy, uuid=application_policy_uuid)
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application = application_policy.application
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
title = _('Edit Application Default Policy')
else:
application_policy = None
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application = get_object_or_404(Application, uuid=application_uuid)
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
title = _('Set Application Default Policy')
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
cancel_url = reverse('view_application') + f'?uuid={application.uuid}'
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
form = ApplicationPolicyForm(request.POST or None, instance=application_policy, cancel_url=cancel_url)
if form.is_valid():
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
policy_config = form.save(commit=False)
policy_config.application = application
policy_config.save()
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
messages.success(request, _('Application Default Policy saved successfully.'))
return redirect(cancel_url)
context = {
'form': form,
'title': title,
'page_title': title,
}
return render(request, 'generic_form.html', context)
@login_required
def view_delete_application_policy(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
application_policy = get_object_or_404(ApplicationPolicy, uuid=request.GET.get('uuid'))
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application = application_policy.application
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
cancel_url = reverse('view_application') + f'?uuid={application.uuid}'
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
if request.method == 'POST':
application_policy.delete()
messages.success(request, _('Application Default Policy deleted successfully.'))
return redirect(cancel_url)
context = {
'application_policy': application_policy,
'title': _('Delete Application Default Policy'),
'cancel_url': cancel_url,
'text': _('Are you sure you want to remove the default policy for "%(name)s"?') % {
'name': application_policy.application.display_name
}
}
return render(request, 'generic_delete_confirmation.html', context)
@login_required
def view_manage_application_route(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
application_route_uuid = request.GET.get('uuid')
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application_uuid = request.GET.get('application_uuid')
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
if application_route_uuid:
application_route = get_object_or_404(ApplicationRoute, uuid=application_route_uuid)
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application = application_route.application
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
title = _('Edit Application Route')
else:
application_route = None
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application = get_object_or_404(Application, uuid=application_uuid)
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
title = _('Add Application Route')
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
cancel_url = reverse('view_application') + f'?uuid={application.uuid}#routes'
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
form = ApplicationRouteForm(request.POST or None, instance=application_route, cancel_url=cancel_url)
if form.is_valid():
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
route = form.save(commit=False)
route.application = application
route.save()
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
messages.success(request, _('Application Route saved successfully.'))
return redirect(cancel_url)
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
form_description = {
'size': 'col-lg-6',
'content': _('''
<h5>Application Route</h5>
<p>A Route defines a path prefix within this Application that requires a specific Access Policy.</p>
<ul>
<li><strong>Route Name</strong>: An internal identifier for this route (e.g., "public_api", "admin_area"). Used for reference and exports.</li>
<li><strong>Path Prefix</strong>: The URL path that triggers this route (e.g., <code>/api/</code> or <code>/admin/</code>). Use <code>/</code> to match all remaining paths.</li>
<li><strong>Policy</strong>: The Access Policy that will be enforced when a user accesses this path.</li>
<li><strong>Order</strong>: Determines the priority of this route when evaluating the request. Lower numbers are evaluated first. If multiple routes match a path, the one with the lowest order wins.</li>
</ul>
''')
}
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
context = {
'form': form,
'title': title,
'page_title': title,
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
'form_description': form_description,
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
}
return render(request, 'generic_form.html', context)
@login_required
def view_delete_application_route(request):
if not UserAcl.objects.filter(user=request.user).filter(user_level__gte=50).exists():
return render(request, 'access_denied.html', {'page_title': _('Access Denied')})
application_route = get_object_or_404(ApplicationRoute, uuid=request.GET.get('uuid'))
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
application = application_route.application
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
add application details view and update related forms; improve layout
2026-03-12 18:41:21 -03:00
cancel_url = reverse('view_application') + f'?uuid={application.uuid}#routes'
add app_gateway management views and templates
2026-03-12 14:15:14 -03:00
if request.method == 'POST':
application_route.delete()
messages.success(request, _('Application Route deleted successfully.'))
return redirect(cancel_url)
context = {
'application_route': application_route,
'title': _('Delete Application Route'),
'cancel_url': cancel_url,
'text': _('Are you sure you want to delete the route "%(name)s" (%(path)s)?') % {
'name': application_route.name,
'path': application_route.path_prefix
}
}
return render(request, 'generic_delete_confirmation.html', context)
Reference in New Issue Copy Permalink