OCA
/
server-tools
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
722 Commits
13 Branches
0 Tags
45 MiB
Tree: 987e1be5ef
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '987e1be5ef'
${ noResults }
server-tools/auth_brute_force/models/res_banned_remote.py

83 lines
3.1 KiB
Raw Normal View History

[ADD] new module 'auth_track_and_prevent_brut_force' ;
9 years ago
[IMP] module name
9 years ago
[ADD] new module 'auth_track_and_prevent_brut_force' ;
9 years ago
  1. # -*- encoding: utf-8 -*-
  2. ##############################################################################
  3. #
  4. # Tracks Authentication Attempts and Prevents Brute-force Attacks module
  5. # Copyright (C) 2015-Today GRAP (http://www.grap.coop)
  6. # @author Sylvain LE GAL (https://twitter.com/legalsylvain)
  7. #
  8. # This program is free software: you can redistribute it and/or modify
  9. # it under the terms of the GNU Affero General Public License as
  10. # published by the Free Software Foundation, either version 3 of the
  11. # License, or (at your option) any later version.
  12. #
  13. # This program is distributed in the hope that it will be useful,
  14. # but WITHOUT ANY WARRANTY; without even the implied warranty of
  15. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  16. # GNU Affero General Public License for more details.
  17. #
  18. # You should have received a copy of the GNU Affero General Public License
  19. # along with this program. If not, see <http://www.gnu.org/licenses/>.
  20. #
  21. ##############################################################################
  23. import urllib
  24. import json
  26. from openerp import models, fields, api
  27. from openerp.tools.translate import _
  30. class ResBannedRemote(models.Model):
  31. _name = 'res.banned.remote'
  33. _GEOLOCALISATION_URL = "http://ip-api.com/json/{}"
  35. # Default Section
  36. def _default_ban_date(self):
  37. return fields.Datetime.now()
  39. # Column Section
  40. name = fields.Char(
  41. string='Name', compute='_compute_remote_description',
  42. store=True, multi='remote_description', required=True)
  44. description = fields.Text(
  45. string='Description', compute='_compute_remote_description',
  46. store=True, multi='remote_description')
  48. ban_date = fields.Datetime(
  49. string='Ban Date', required=True, default=_default_ban_date)
  51. remote = fields.Char(string='Remote ID', required=True)
  53. active = fields.Boolean(
  54. string='Active', help="Uncheck this box to unban the remote",
  55. default=True)
  57. attempt_ids = fields.Many2many(
  58. comodel_name='res.authentication.attempt', string='Attempts',
  59. compute='_compute_attempt_ids')
  61. # Compute Section
  62. @api.multi
  63. @api.depends('remote')
  64. def _compute_remote_description(self):
  65. for item in self:
  66. url = self._GEOLOCALISATION_URL.format(item.remote)
  67. res = json.loads(urllib.urlopen(url).read())
  68. item.description = ''
  69. for k, v in res.iteritems():
  70. item.description += '%s : %s\n' % (k, v)
  71. if res.get('status', False) == 'success':
  72. item.name = _("%s %s - %s %s (ISP: %s)" % (
  73. res.get('country', ''), res.get('regionName', ''),
  74. res.get('zip', ''), res.get('city'),
  75. res.get('isp', '')))
  76. else:
  77. item.name = _('Unidentified Call from %s' % (item.remote))
  79. @api.multi
  80. def _compute_attempt_ids(self):
  81. for item in self:
  82. attempt_obj = self.env['res.authentication.attempt']
  83. item.attempt_ids = attempt_obj.search_last_failed(item.remote).ids