libervia-pubsub: sat_pubsub/backend.py comparison

comparison sat_pubsub/backend.py @ 237:6596730685e8

added creator check support

author	Goffi <goffi@goffi.org>
date	Thu, 17 May 2012 13:15:11 +0200
parents	65bc75603539
children	70c8bb90d75f

comparison

equal deleted inserted replaced

-:65bc75603539
+:6596730685e8
 #!/usr/bin/python
 #-*- coding: utf-8 -*-
+#
 """
 Copyright (c) 2003-2011 Ralph Meijer
 Copyright (c) 2012 Jérôme Poisson
 from twisted.application import service
 from twisted.python import components, log
 from twisted.internet import defer, reactor
 from twisted.words.protocols.jabber.error import StanzaError
+from twisted.words.protocols.jabber.jid import JID
 from twisted.words.xish import utility
 from wokkel import disco
 from wokkel.iwokkel import IPubSubResource
 from wokkel.pubsub import PubSubResource, PubSubError
 return self.storage.getSubscriptions(entity)
 def supportsAutoCreate(self):
 return True
+def supportsCreatorCheck(self):
+return True
 def supportsInstantNodes(self):
 return True
 def createNode(self, nodeIdentifier, requestor):
 if not nodeIdentifier:
 nodeIdentifier = 'generic/%s' % uuid.uuid4()
+if self.supportsCreatorCheck():
+try:
+nodeIdentifierJID = JID(nodeIdentifier)
+except InvalidFormat:
+is_user_jid = False
+else:
+is_user_jid = bool(nodeIdentifierJID.user)
+if is_user_jid and nodeIdentifierJID.userhost() != requestor.userhost():
+#we have an user jid node, but not created by the owner of this jid
+print "Wrong creator"
+raise error.Forbidden()
 nodeType = 'leaf'
 config = self.storage.getDefaultConfiguration(nodeType)
 config['pubsub#node_type'] = nodeType
 self.backend = backend
 self.hideNodes = False
 self.backend.registerNotifier(self._notify)
 self.backend.registerPreDelete(self._preDelete)
+if self.backend.supportsCreatorCheck():
+self.features.append("creator-jid-check")  #SàT custom feature: Check that a node (which correspond to
+#                    a jid in this server) is created by the right jid
 if self.backend.supportsAutoCreate():
 self.features.append("auto-create")
 if self.backend.supportsInstantNodes():

Mercurial > libervia-pubsub

comparison sat_pubsub/backend.py @ 237:6596730685e8