OCA
/
server-tools
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2185 Commits
13 Branches
0 Tags
45 MiB
Tree: 4bacb94121
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '4bacb94121'
${ noResults }
server-tools/auth_brute_force/migrations/10.0.2.0.0/pre-migrate.py

56 lines
1.7 KiB
Raw Normal View History

[REF] auth_brute_force: Cover all auth entrypoints (#1219) To fix https://github.com/OCA/server-tools/issues/1125 I needed to refactor the addon. To whitelist IPs now you use a config parameter, which renders res.banned.remote model unneeded. The fix is affected by https://github.com/odoo/odoo/issues/24183 and will not work until it gets fixed upstream due to the technical limitations implied.
7 years ago
[FIX] auth_brute_force: Don't execute migration script on install
6 years ago
[FIX] auth_brute_force: Don't error on migrations Migrating from v9 will fail as that version doesn't have the 10.0.1.0.0 data structure
6 years ago
[FIX] auth_brute_force: flake8
6 years ago
[REF] auth_brute_force: Cover all auth entrypoints (#1219) To fix https://github.com/OCA/server-tools/issues/1125 I needed to refactor the addon. To whitelist IPs now you use a config parameter, which renders res.banned.remote model unneeded. The fix is affected by https://github.com/odoo/odoo/issues/24183 and will not work until it gets fixed upstream due to the technical limitations implied.
7 years ago
  1. # -*- coding: utf-8 -*-
  2. # Copyright 2018 Tecnativa - Jairo Llopis
  3. # License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
  5. from psycopg2 import IntegrityError
  8. def migrate(cr, version):
  9. if not version:
  10. return
  11. # Don't act when coming from version 9
  12. cr.execute("SELECT 1 FROM pg_class WHERE relname = 'res_banned_remote'")
  13. if not cr.fetchone():
  14. return
  15. # Fix typo across DB
  16. cr.execute(
  17. """ UPDATE res_authentication_attempt
  18. SET result = 'successful'
  19. WHERE result = 'successfull'""",
  20. )
  21. # Store whitelist IPs in new format
  22. cr.execute(
  23. """ SELECT remote
  24. FROM res_banned_remote
  25. WHERE active IS FALSE""",
  26. )
  27. remotes = {record[0] for record in cr.fetchall()}
  28. try:
  29. with cr.savepoint():
  30. cr.execute(
  31. "INSERT INTO ir_config_parameter (key, value) VALUES (%s, %s)",
  32. (
  33. "auth_brute_force.whitelist_remotes",
  34. ",".join(remotes),
  35. ),
  36. )
  37. except IntegrityError:
  38. # Parameter already exists
  39. cr.execute(
  40. "SELECT value FROM ir_config_parameter WHERE key = %s",
  41. ("auth_brute_force.whitelist_remotes",)
  42. )
  43. current = set(cr.fetchall()[0][0].split(","))
  44. cr.execute(
  45. "UPDATE ir_config_parameter SET value = %s WHERE key = %s",
  46. (",".join(current | remotes),
  47. "auth_brute_force.whitelist_remotes"),
  48. )
  49. # Update the configured IP limit parameter
  50. cr.execute(
  51. "UPDATE ir_config_parameter SET key = %s WHERE key = %s",
  52. (
  53. "auth_brute_force.whitelist_remotes",
  54. "auth_brute_force.max_by_ip",
  55. )
  56. )