Added reverse proxy support to IP lookup/ban/unban.
This commit is contained in:
Marat Fayzullin
parent
e40a80e68c
commit
75eae8ed0e
|
|
@ -1,6 +1,7 @@
|
||||||
from owrx.config import Config
|
from owrx.config import Config
|
||||||
from owrx.color import ColorCache
|
from owrx.color import ColorCache
|
||||||
from datetime import datetime, timedelta
|
from datetime import datetime, timedelta
|
||||||
|
from ipaddress import ip_address
|
||||||
import threading
|
import threading
|
||||||
import re
|
import re
|
||||||
|
|
||||||
|
|
@ -44,7 +45,7 @@ class ClientRegistry(object):
|
||||||
|
|
||||||
def addClient(self, client):
|
def addClient(self, client):
|
||||||
pm = Config.get()
|
pm = Config.get()
|
||||||
if self.isIpBanned(client.conn.getIp()):
|
if self.isBanned(client.conn.handler):
|
||||||
raise BannedClientException()
|
raise BannedClientException()
|
||||||
elif len(self.clients) >= pm["max_clients"]:
|
elif len(self.clients) >= pm["max_clients"]:
|
||||||
raise TooManyClientsException()
|
raise TooManyClientsException()
|
||||||
|
|
@ -94,13 +95,23 @@ class ClientRegistry(object):
|
||||||
for c in self.clients:
|
for c in self.clients:
|
||||||
c.write_chat_message(name, text, color)
|
c.write_chat_message(name, text, color)
|
||||||
|
|
||||||
|
# Get client IP address from the handler.
|
||||||
|
def getIp(self, handler):
|
||||||
|
ip = handler.client_address[0]
|
||||||
|
# If address private and there is X-Forwarded-For header...
|
||||||
|
if ip_address(ip).is_private and hasattr(handler, "headers"):
|
||||||
|
if "x-forwarded-for" in handler.headers:
|
||||||
|
ip = handler.headers['x-forwarded-for'].split(',')[0]
|
||||||
|
# Done
|
||||||
|
return ip
|
||||||
|
|
||||||
# List all active and banned clients.
|
# List all active and banned clients.
|
||||||
def listAll(self):
|
def listAll(self):
|
||||||
result = []
|
result = []
|
||||||
for c in self.clients:
|
for c in self.clients:
|
||||||
result.append({
|
result.append({
|
||||||
"ts" : c.conn.getStartTime(),
|
"ts" : c.conn.startTime,
|
||||||
"ip" : c.conn.getIp(),
|
"ip" : self.getIp(c.conn.handler),
|
||||||
"sdr" : c.sdr.getName(),
|
"sdr" : c.sdr.getName(),
|
||||||
"band" : c.sdr.getProfileName(),
|
"band" : c.sdr.getProfileName(),
|
||||||
"ban" : False
|
"ban" : False
|
||||||
|
|
@ -120,7 +131,7 @@ class ClientRegistry(object):
|
||||||
self.bans[ip] = datetime.now() + timedelta(minutes=minutes)
|
self.bans[ip] = datetime.now() + timedelta(minutes=minutes)
|
||||||
banned = []
|
banned = []
|
||||||
for c in self.clients:
|
for c in self.clients:
|
||||||
if ip == c.conn.getIp():
|
if ip == self.getIp(c.conn.handler):
|
||||||
banned.append(c)
|
banned.append(c)
|
||||||
for c in banned:
|
for c in banned:
|
||||||
try:
|
try:
|
||||||
|
|
@ -134,7 +145,8 @@ class ClientRegistry(object):
|
||||||
del self.bans[ip]
|
del self.bans[ip]
|
||||||
|
|
||||||
# Check if given IP is banned at the moment.
|
# Check if given IP is banned at the moment.
|
||||||
def isIpBanned(self, ip: str):
|
def isBanned(self, handler):
|
||||||
|
ip = self.getIp(handler)
|
||||||
return ip in self.bans and datetime.now() < self.bans[ip]
|
return ip in self.bans and datetime.now() < self.bans[ip]
|
||||||
|
|
||||||
# Delete all expired bans.
|
# Delete all expired bans.
|
||||||
|
|
|
||||||
|
|
@ -298,9 +298,3 @@ class WebSocketConnection(object):
|
||||||
def sendPong(self):
|
def sendPong(self):
|
||||||
header = self.get_header(0, OPCODE_PONG)
|
header = self.get_header(0, OPCODE_PONG)
|
||||||
self._sendBytes(header)
|
self._sendBytes(header)
|
||||||
|
|
||||||
def getIp(self):
|
|
||||||
return self.handler.client_address[0]
|
|
||||||
|
|
||||||
def getStartTime(self):
|
|
||||||
return self.startTime
|
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue