OCA
/
server-tools
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1928 Commits
13 Branches
0 Tags
45 MiB
Tree: 786fb922de
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '786fb922de'
${ noResults }
server-tools/auth_brute_force/migrations/10.0.2.0.0/pre-migrate.py

50 lines
1.5 KiB
Raw Normal View History

[REF] auth_brute_force: Cover all auth entrypoints (#1219) To fix https://github.com/OCA/server-tools/issues/1125 I needed to refactor the addon. To whitelist IPs now you use a config parameter, which renders res.banned.remote model unneeded. The fix is affected by https://github.com/odoo/odoo/issues/24183 and will not work until it gets fixed upstream due to the technical limitations implied.
7 years ago
  1. # -*- coding: utf-8 -*-
  2. # Copyright 2018 Tecnativa - Jairo Llopis
  3. # License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
  5. from psycopg2 import IntegrityError
  8. def migrate(cr, version):
  9. # Fix typo across DB
  10. cr.execute(
  11. """ UPDATE res_authentication_attempt
  12. SET result = 'successful'
  13. WHERE result = 'successfull'""",
  14. )
  15. # Store whitelist IPs in new format
  16. cr.execute(
  17. """ SELECT remote
  18. FROM res_banned_remote
  19. WHERE active IS FALSE""",
  20. )
  21. remotes = {record[0] for record in cr.fetchall()}
  22. try:
  23. with cr.savepoint():
  24. cr.execute(
  25. "INSERT INTO ir_config_parameter (key, value) VALUES (%s, %s)",
  26. (
  27. "auth_brute_force.whitelist_remotes",
  28. ",".join(remotes),
  29. ),
  30. )
  31. except IntegrityError:
  32. # Parameter already exists
  33. cr.execute(
  34. "SELECT value FROM ir_config_parameter WHERE key = %s",
  35. ("auth_brute_force.whitelist_remotes",)
  36. )
  37. current = set(cr.fetchall()[0][0].split(","))
  38. cr.execute(
  39. "UPDATE ir_config_parameter SET value = %s WHERE key = %s",
  40. (",".join(current | remotes),
  41. "auth_brute_force.whitelist_remotes"),
  42. )
  43. # Update the configured IP limit parameter
  44. cr.execute(
  45. "UPDATE ir_config_parameter SET key = %s WHERE key = %s",
  46. (
  47. "auth_brute_force.whitelist_remotes",
  48. "auth_brute_force.max_by_ip",
  49. )
  50. )