import base64, md5, random, sys import cPickle as pickle from django.core import meta from django.utils.translation import gettext_lazy as _ class Site(meta.Model): domain = meta.CharField(_('domain name'), maxlength=100) name = meta.CharField(_('display name'), maxlength=50) class META: verbose_name = _('site') verbose_name_plural = _('sites') db_table = 'sites' ordering = ('domain',) admin = meta.Admin( list_display = ('domain', 'name'), search_fields = ('domain', 'name'), ) def __repr__(self): return self.domain def _module_get_current(): "Returns the current site, according to the SITE_ID constant." from django.conf.settings import SITE_ID return get_object(pk=SITE_ID) class Package(meta.Model): label = meta.CharField(_('label'), maxlength=20, primary_key=True) name = meta.CharField(_('name'), maxlength=30, unique=True) class META: verbose_name = _('package') verbose_name_plural = _('packages') db_table = 'packages' ordering = ('name',) def __repr__(self): return self.name class ContentType(meta.Model): name = meta.CharField(_('name'), maxlength=100) package = meta.ForeignKey(Package, db_column='package') python_module_name = meta.CharField(_('python module name'), maxlength=50) class META: verbose_name = _('content type') verbose_name_plural = _('content types') db_table = 'content_types' ordering = ('package', 'name') unique_together = (('package', 'python_module_name'),) def __repr__(self): return "%s | %s" % (self.package_id, self.name) def get_model_module(self): "Returns the Python model module for accessing this type of content." return __import__('django.models.%s.%s' % (self.package_id, self.python_module_name), '', '', ['']) def get_object_for_this_type(self, **kwargs): """ Returns an object of this type for the keyword arguments given. Basically, this is a proxy around this object_type's get_object() model method. The ObjectNotExist exception, if thrown, will not be caught, so code that calls this method should catch it. """ return self.get_model_module().get_object(**kwargs) class Session(meta.Model): session_key = meta.CharField(_('session key'), maxlength=40, primary_key=True) session_data = meta.TextField(_('session data')) expire_date = meta.DateTimeField(_('expire date')) class META: verbose_name = _('session') verbose_name_plural = _('sessions') module_constants = { 'base64': base64, 'md5': md5, 'pickle': pickle, 'random': random, 'sys': sys, } def get_decoded(self): from django.conf.settings import SECRET_KEY encoded_data = base64.decodestring(self.session_data) pickled, tamper_check = encoded_data[:-32], encoded_data[-32:] if md5.new(pickled + SECRET_KEY).hexdigest() != tamper_check: from django.core.exceptions import SuspiciousOperation raise SuspiciousOperation, "User tampered with session cookie." try: return pickle.loads(pickled) # Unpickling can cause a variety of exceptions. If something happens, # just return an empty dictionary (an empty session). except: return {} def _module_encode(session_dict): "Returns the given session dictionary pickled and encoded as a string." from django.conf.settings import SECRET_KEY pickled = pickle.dumps(session_dict) pickled_md5 = md5.new(pickled + SECRET_KEY).hexdigest() return base64.encodestring(pickled + pickled_md5) def _module_get_new_session_key(): "Returns session key that isn't being used." from django.conf.settings import SECRET_KEY # The random module is seeded when this Apache child is created. # Use person_id and SECRET_KEY as added salt. while 1: session_key = md5.new(str(random.randint(0, sys.maxint - 1)) + str(random.randint(0, sys.maxint - 1)) + SECRET_KEY).hexdigest() try: get_object(session_key__exact=session_key) except SessionDoesNotExist: break return session_key def _module_save(session_key, session_dict, expire_date): s = Session(session_key, encode(session_dict), expire_date) if session_dict: s.save() else: s.delete() # Clear sessions with no data. return s