OCA
/
server-tools
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2009 Commits
13 Branches
0 Tags
45 MiB
Tree: 6c6e022ef9
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '6c6e022ef9'
${ noResults }
server-tools/auth_brute_force/migrations/10.0.2.0.0/pre-migrate.py

52 lines
1.6 KiB
Raw Normal View History

[REF] auth_brute_force: Cover all auth entrypoints (#1219) To fix https://github.com/OCA/server-tools/issues/1125 I needed to refactor the addon. To whitelist IPs now you use a config parameter, which renders res.banned.remote model unneeded. The fix is affected by https://github.com/odoo/odoo/issues/24183 and will not work until it gets fixed upstream due to the technical limitations implied.
7 years ago
[FIX] auth_brute_force: Don't execute migration script on install
6 years ago
[REF] auth_brute_force: Cover all auth entrypoints (#1219) To fix https://github.com/OCA/server-tools/issues/1125 I needed to refactor the addon. To whitelist IPs now you use a config parameter, which renders res.banned.remote model unneeded. The fix is affected by https://github.com/odoo/odoo/issues/24183 and will not work until it gets fixed upstream due to the technical limitations implied.
7 years ago
  1. # -*- coding: utf-8 -*-
  2. # Copyright 2018 Tecnativa - Jairo Llopis
  3. # License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
  5. from psycopg2 import IntegrityError
  8. def migrate(cr, version):
  9. if not version:
  10. return
  11. # Fix typo across DB
  12. cr.execute(
  13. """ UPDATE res_authentication_attempt
  14. SET result = 'successful'
  15. WHERE result = 'successfull'""",
  16. )
  17. # Store whitelist IPs in new format
  18. cr.execute(
  19. """ SELECT remote
  20. FROM res_banned_remote
  21. WHERE active IS FALSE""",
  22. )
  23. remotes = {record[0] for record in cr.fetchall()}
  24. try:
  25. with cr.savepoint():
  26. cr.execute(
  27. "INSERT INTO ir_config_parameter (key, value) VALUES (%s, %s)",
  28. (
  29. "auth_brute_force.whitelist_remotes",
  30. ",".join(remotes),
  31. ),
  32. )
  33. except IntegrityError:
  34. # Parameter already exists
  35. cr.execute(
  36. "SELECT value FROM ir_config_parameter WHERE key = %s",
  37. ("auth_brute_force.whitelist_remotes",)
  38. )
  39. current = set(cr.fetchall()[0][0].split(","))
  40. cr.execute(
  41. "UPDATE ir_config_parameter SET value = %s WHERE key = %s",
  42. (",".join(current | remotes),
  43. "auth_brute_force.whitelist_remotes"),
  44. )
  45. # Update the configured IP limit parameter
  46. cr.execute(
  47. "UPDATE ir_config_parameter SET key = %s WHERE key = %s",
  48. (
  49. "auth_brute_force.whitelist_remotes",
  50. "auth_brute_force.max_by_ip",
  51. )
  52. )