netbox-community-netbox/netbox/secrets/views.py

import base64

from django.contrib import messages
from django.contrib.auth.decorators import permission_required
from django.contrib.auth.mixins import PermissionRequiredMixin
from django.db.models import Count
from django.shortcuts import get_object_or_404, redirect, render
from django.urls import reverse
from django.views.generic import View

from dcim.models import Device
from utilities.views import (
    BulkDeleteView, BulkEditView, BulkImportView, ObjectDeleteView, ObjectEditView, ObjectListView,
)
from . import filters, forms, tables
from .decorators import userkey_required
from .models import SecretRole, Secret, SessionKey


def get_session_key(request):
    """
    Extract and decode the session key sent with a request. Returns None if no session key was provided.
    """
    session_key = request.COOKIES.get('session_key', None)
    if session_key is not None:
        return base64.b64decode(session_key)
    return session_key


#
# Secret roles
#

class SecretRoleListView(PermissionRequiredMixin, ObjectListView):
    permission_required = 'secrets.view_secretrole'
    queryset = SecretRole.objects.annotate(secret_count=Count('secrets'))
    table = tables.SecretRoleTable
    template_name = 'secrets/secretrole_list.html'


class SecretRoleCreateView(PermissionRequiredMixin, ObjectEditView):
    permission_required = 'secrets.add_secretrole'
    model = SecretRole
    model_form = forms.SecretRoleForm
    default_return_url = 'secrets:secretrole_list'


class SecretRoleEditView(SecretRoleCreateView):
    permission_required = 'secrets.change_secretrole'


class SecretRoleBulkImportView(PermissionRequiredMixin, BulkImportView):
    permission_required = 'secrets.add_secretrole'
    model_form = forms.SecretRoleCSVForm
    table = tables.SecretRoleTable
    default_return_url = 'secrets:secretrole_list'


class SecretRoleBulkDeleteView(PermissionRequiredMixin, BulkDeleteView):
    permission_required = 'secrets.delete_secretrole'
    queryset = SecretRole.objects.annotate(secret_count=Count('secrets'))
    table = tables.SecretRoleTable
    default_return_url = 'secrets:secretrole_list'


#
# Secrets
#

class SecretListView(PermissionRequiredMixin, ObjectListView):
    permission_required = 'secrets.view_secret'
    queryset = Secret.objects.prefetch_related('role', 'device')
    filter = filters.SecretFilter
    filter_form = forms.SecretFilterForm
    table = tables.SecretTable
    template_name = 'secrets/secret_list.html'


class SecretView(PermissionRequiredMixin, View):
    permission_required = 'secrets.view_secret'

    def get(self, request, pk):

        secret = get_object_or_404(Secret, pk=pk)

        return render(request, 'secrets/secret.html', {
            'secret': secret,
        })


@permission_required('secrets.add_secret')
@userkey_required()
def secret_add(request, pk):

    # Retrieve device
    device = get_object_or_404(Device, pk=pk)

    secret = Secret(device=device)
    session_key = get_session_key(request)

    if request.method == 'POST':
        form = forms.SecretForm(request.POST, instance=secret)
        if form.is_valid():

            # We need a valid session key in order to create a Secret
            if session_key is None:
                form.add_error(None, "No session key was provided with the request. Unable to encrypt secret data.")

            # Create and encrypt the new Secret
            else:
                master_key = None
                try:
                    sk = SessionKey.objects.get(userkey__user=request.user)
                    master_key = sk.get_master_key(session_key)
                except SessionKey.DoesNotExist:
                    form.add_error(None, "No session key found for this user.")

                if master_key is not None:
                    secret = form.save(commit=False)
                    secret.plaintext = str(form.cleaned_data['plaintext'])
                    secret.encrypt(master_key)
                    secret.save()
                    form.save_m2m()

                    messages.success(request, "Added new secret: {}.".format(secret))
                    if '_addanother' in request.POST:
                        return redirect('dcim:device_addsecret', pk=device.pk)
                    else:
                        return redirect('secrets:secret', pk=secret.pk)

    else:
        form = forms.SecretForm(instance=secret)

    return render(request, 'secrets/secret_edit.html', {
        'secret': secret,
        'form': form,
        'return_url': device.get_absolute_url(),
    })


@permission_required('secrets.change_secret')
@userkey_required()
def secret_edit(request, pk):

    secret = get_object_or_404(Secret, pk=pk)
    session_key = get_session_key(request)

    if request.method == 'POST':
        form = forms.SecretForm(request.POST, instance=secret)
        if form.is_valid():

            # Re-encrypt the Secret if a plaintext and session key have been provided.
            if form.cleaned_data['plaintext'] and session_key is not None:

                # Retrieve the master key using the provided session key
                master_key = None
                try:
                    sk = SessionKey.objects.get(userkey__user=request.user)
                    master_key = sk.get_master_key(session_key)
                except SessionKey.DoesNotExist:
                    form.add_error(None, "No session key found for this user.")

                # Create and encrypt the new Secret
                if master_key is not None:
                    secret = form.save(commit=False)
                    secret.plaintext = form.cleaned_data['plaintext']
                    secret.encrypt(master_key)
                    secret.save()
                    messages.success(request, "Modified secret {}.".format(secret))
                    return redirect('secrets:secret', pk=secret.pk)
                else:
                    form.add_error(None, "Invalid session key. Unable to encrypt secret data.")

            # We can't save the plaintext without a session key.
            elif form.cleaned_data['plaintext']:
                form.add_error(None, "No session key was provided with the request. Unable to encrypt secret data.")

            # If no new plaintext was specified, a session key is not needed.
            else:
                secret = form.save()
                messages.success(request, "Modified secret {}.".format(secret))
                return redirect('secrets:secret', pk=secret.pk)

    else:
        form = forms.SecretForm(instance=secret)

    return render(request, 'secrets/secret_edit.html', {
        'secret': secret,
        'form': form,
        'return_url': reverse('secrets:secret', kwargs={'pk': secret.pk}),
    })


class SecretDeleteView(PermissionRequiredMixin, ObjectDeleteView):
    permission_required = 'secrets.delete_secret'
    model = Secret
    default_return_url = 'secrets:secret_list'


class SecretBulkImportView(BulkImportView):
    permission_required = 'secrets.add_secret'
    model_form = forms.SecretCSVForm
    table = tables.SecretTable
    template_name = 'secrets/secret_import.html'
    default_return_url = 'secrets:secret_list'
    widget_attrs = {'class': 'requires-session-key'}

    master_key = None

    def _save_obj(self, obj_form):
        """
        Encrypt each object before saving it to the database.
        """
        obj = obj_form.save(commit=False)
        obj.encrypt(self.master_key)
        obj.save()
        return obj

    def post(self, request):

        # Grab the session key from cookies.
        session_key = request.COOKIES.get('session_key')
        if session_key:

            # Attempt to derive the master key using the provided session key.
            try:
                sk = SessionKey.objects.get(userkey__user=request.user)
                self.master_key = sk.get_master_key(base64.b64decode(session_key))
            except SessionKey.DoesNotExist:
                messages.error(request, "No session key found for this user.")

            if self.master_key is not None:
                return super().post(request)
            else:
                messages.error(request, "Invalid private key! Unable to encrypt secret data.")

        else:
            messages.error(request, "No session key was provided with the request. Unable to encrypt secret data.")

        return render(request, self.template_name, {
            'form': self._import_form(request.POST),
            'fields': self.model_form().fields,
            'obj_type': self.model_form._meta.model._meta.verbose_name,
            'return_url': self.get_return_url(request),
        })


class SecretBulkEditView(PermissionRequiredMixin, BulkEditView):
    permission_required = 'secrets.change_secret'
    queryset = Secret.objects.prefetch_related('role', 'device')
    filter = filters.SecretFilter
    table = tables.SecretTable
    form = forms.SecretBulkEditForm
    default_return_url = 'secrets:secret_list'


class SecretBulkDeleteView(PermissionRequiredMixin, BulkDeleteView):
    permission_required = 'secrets.delete_secret'
    queryset = Secret.objects.prefetch_related('role', 'device')
    filter = filters.SecretFilter
    table = tables.SecretTable
    default_return_url = 'secrets:secret_list'
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`import base64`

Initial push to public repo 2016-03-01 11:23:03 -05:00			`from django.contrib import messages`
Cleanup from earlier work on caching 2019-04-22 14:49:31 -04:00			`from django.contrib.auth.decorators import permission_required`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`from django.contrib.auth.mixins import PermissionRequiredMixin`
Added CBVs for SecretRoles 2016-05-16 12:07:12 -04:00			`from django.db.models import Count`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`from django.shortcuts import get_object_or_404, redirect, render`
Resolved RemovedInDjango20Warning deprecation warnings 2017-04-05 14:40:25 -04:00			`from django.urls import reverse`
Converted all object views to class-based views 2017-05-18 17:00:57 -04:00			`from django.views.generic import View`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Changed Secret parent from a GenericForeignKey to ForeignKey(Device) 2016-03-21 11:42:42 -04:00			`from dcim.models import Device`
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`from utilities.views import (`
Renamed new import view to BulkImportView 2017-06-05 15:53:41 -04:00			`BulkDeleteView, BulkEditView, BulkImportView, ObjectDeleteView, ObjectEditView, ObjectListView,`
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`)`
Code cleanup 2016-05-18 16:35:35 -04:00			`from . import filters, forms, tables`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`from .decorators import userkey_required`
Fixes #1049: Prompt user if missing session key when adding/editing a secret 2017-04-06 13:55:40 -04:00			`from .models import SecretRole, Secret, SessionKey`


			`def get_session_key(request):`
			`"""`
			`Extract and decode the session key sent with a request. Returns None if no session key was provided.`
			`"""`
			`session_key = request.COOKIES.get('session_key', None)`
			`if session_key is not None:`
			`return base64.b64decode(session_key)`
			`return session_key`
Added CBVs for SecretRoles 2016-05-16 12:07:12 -04:00

			`#`
			`# Secret roles`
			`#`

Enforce view permissions for UI views 2019-04-11 17:27:38 -04:00			`class SecretRoleListView(PermissionRequiredMixin, ObjectListView):`
			`permission_required = 'secrets.view_secretrole'`
Added CBVs for SecretRoles 2016-05-16 12:07:12 -04:00			`queryset = SecretRole.objects.annotate(secret_count=Count('secrets'))`
Code cleanup 2016-05-18 16:35:35 -04:00			`table = tables.SecretRoleTable`
Added CBVs for SecretRoles 2016-05-16 12:07:12 -04:00			`template_name = 'secrets/secretrole_list.html'`


Fixes #1263: Differentiate add and edit permissions for objects 2017-06-13 16:41:57 -04:00			`class SecretRoleCreateView(PermissionRequiredMixin, ObjectEditView):`
			`permission_required = 'secrets.add_secretrole'`
Added CBVs for SecretRoles 2016-05-16 12:07:12 -04:00			`model = SecretRole`
Renamed `form_class` attribute to `model_form` for consistency 2017-09-12 13:54:44 -04:00			`model_form = forms.SecretRoleForm`
Closes #1851: Standardize usage of GetReturnURLMixin 2018-07-02 11:54:41 -04:00			`default_return_url = 'secrets:secretrole_list'`
Added CBVs for SecretRoles 2016-05-16 12:07:12 -04:00

Fixes #1263: Differentiate add and edit permissions for objects 2017-06-13 16:41:57 -04:00			`class SecretRoleEditView(SecretRoleCreateView):`
			`permission_required = 'secrets.change_secretrole'`


Added bulk import view for secret roles 2017-10-09 15:56:17 -04:00			`class SecretRoleBulkImportView(PermissionRequiredMixin, BulkImportView):`
			`permission_required = 'secrets.add_secretrole'`
			`model_form = forms.SecretRoleCSVForm`
			`table = tables.SecretRoleTable`
			`default_return_url = 'secrets:secretrole_list'`


Added CBVs for SecretRoles 2016-05-16 12:07:12 -04:00			`class SecretRoleBulkDeleteView(PermissionRequiredMixin, BulkDeleteView):`
			`permission_required = 'secrets.delete_secretrole'`
Optimized performance when editing/deleting objects in bulk 2017-07-13 17:39:28 -04:00			`queryset = SecretRole.objects.annotate(secret_count=Count('secrets'))`
			`table = tables.SecretRoleTable`
Standardized naming of return_url for all object views 2017-01-23 14:07:26 -05:00			`default_return_url = 'secrets:secretrole_list'`
Initial push to public repo 2016-03-01 11:23:03 -05:00

			`#`
			`# Secrets`
			`#`

Enforce view permissions for UI views 2019-04-11 17:27:38 -04:00			`class SecretListView(PermissionRequiredMixin, ObjectListView):`
			`permission_required = 'secrets.view_secret'`
fixes #3428 - caching invalidation issues Mitgate invalidation issues by using prefetch_related instead of select_related. Also use invalidated_update instead of just update. 2019-08-19 01:53:39 -04:00			`queryset = Secret.objects.prefetch_related('role', 'device')`
Code cleanup 2016-05-18 16:35:35 -04:00			`filter = filters.SecretFilter`
			`filter_form = forms.SecretFilterForm`
			`table = tables.SecretTable`
Converted secrets object lists to ObjectListView 2016-03-04 11:33:15 -05:00			`template_name = 'secrets/secret_list.html'`
Initial push to public repo 2016-03-01 11:23:03 -05:00

Enforce view permissions for UI views 2019-04-11 17:27:38 -04:00			`class SecretView(PermissionRequiredMixin, View):`
			`permission_required = 'secrets.view_secret'`
Converted all object views to class-based views 2017-05-18 17:00:57 -04:00
			`def get(self, request, pk):`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Converted all object views to class-based views 2017-05-18 17:00:57 -04:00			`secret = get_object_or_404(Secret, pk=pk)`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Converted all object views to class-based views 2017-05-18 17:00:57 -04:00			`return render(request, 'secrets/secret.html', {`
			`'secret': secret,`
			`})`
Initial push to public repo 2016-03-01 11:23:03 -05:00

			`@permission_required('secrets.add_secret')`
			`@userkey_required()`
Changed Secret parent from a GenericForeignKey to ForeignKey(Device) 2016-03-21 11:42:42 -04:00			`def secret_add(request, pk):`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Changed Secret parent from a GenericForeignKey to ForeignKey(Device) 2016-03-21 11:42:42 -04:00			`# Retrieve device`
			`device = get_object_or_404(Device, pk=pk)`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Changed Secret parent from a GenericForeignKey to ForeignKey(Device) 2016-03-21 11:42:42 -04:00			`secret = Secret(device=device)`
Fixes #1049: Prompt user if missing session key when adding/editing a secret 2017-04-06 13:55:40 -04:00			`session_key = get_session_key(request)`
Initial push to public repo 2016-03-01 11:23:03 -05:00
			`if request.method == 'POST':`
Code cleanup 2016-05-18 16:35:35 -04:00			`form = forms.SecretForm(request.POST, instance=secret)`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`if form.is_valid():`

Finished work on secrets views; removed path from cookie assignment 2017-03-21 15:30:36 -04:00			`# We need a valid session key in order to create a Secret`
			`if session_key is None:`
			`form.add_error(None, "No session key was provided with the request. Unable to encrypt secret data.")`
Initial push to public repo 2016-03-01 11:23:03 -05:00
			`# Create and encrypt the new Secret`
			`else:`
Finished work on secrets views; removed path from cookie assignment 2017-03-21 15:30:36 -04:00			`master_key = None`
			`try:`
			`sk = SessionKey.objects.get(userkey__user=request.user)`
			`master_key = sk.get_master_key(session_key)`
			`except SessionKey.DoesNotExist:`
			`form.add_error(None, "No session key found for this user.")`

			`if master_key is not None:`
			`secret = form.save(commit=False)`
			`secret.plaintext = str(form.cleaned_data['plaintext'])`
			`secret.encrypt(master_key)`
			`secret.save()`
Fixes #3032: Save assigned tags when creating a new secret 2019-04-02 11:42:49 -04:00			`form.save_m2m()`

Import unicode_literals 2017-05-24 11:33:11 -04:00			`messages.success(request, "Added new secret: {}.".format(secret))`
Finished work on secrets views; removed path from cookie assignment 2017-03-21 15:30:36 -04:00			`if '_addanother' in request.POST:`
			`return redirect('dcim:device_addsecret', pk=device.pk)`
			`else:`
			`return redirect('secrets:secret', pk=secret.pk)`
Initial push to public repo 2016-03-01 11:23:03 -05:00
			`else:`
Code cleanup 2016-05-18 16:35:35 -04:00			`form = forms.SecretForm(instance=secret)`
Initial push to public repo 2016-03-01 11:23:03 -05:00
			`return render(request, 'secrets/secret_edit.html', {`
			`'secret': secret,`
			`'form': form,`
Standardized naming of return_url for all object views 2017-01-23 14:07:26 -05:00			`'return_url': device.get_absolute_url(),`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`})`


			`@permission_required('secrets.change_secret')`
			`@userkey_required()`
			`def secret_edit(request, pk):`

			`secret = get_object_or_404(Secret, pk=pk)`
Fixes #1049: Prompt user if missing session key when adding/editing a secret 2017-04-06 13:55:40 -04:00			`session_key = get_session_key(request)`
Initial push to public repo 2016-03-01 11:23:03 -05:00
			`if request.method == 'POST':`
Code cleanup 2016-05-18 16:35:35 -04:00			`form = forms.SecretForm(request.POST, instance=secret)`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`if form.is_valid():`

Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`# Re-encrypt the Secret if a plaintext and session key have been provided.`
			`if form.cleaned_data['plaintext'] and session_key is not None:`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`# Retrieve the master key using the provided session key`
			`master_key = None`
			`try:`
Finished work on secrets views; removed path from cookie assignment 2017-03-21 15:30:36 -04:00			`sk = SessionKey.objects.get(userkey__user=request.user)`
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`master_key = sk.get_master_key(session_key)`
			`except SessionKey.DoesNotExist:`
			`form.add_error(None, "No session key found for this user.")`
Initial push to public repo 2016-03-01 11:23:03 -05:00
			`# Create and encrypt the new Secret`
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`if master_key is not None:`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`secret = form.save(commit=False)`
Fixes #1741: Fixed Unicode support for secret plaintexts 2017-11-29 15:16:11 -05:00			`secret.plaintext = form.cleaned_data['plaintext']`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`secret.encrypt(master_key)`
			`secret.save()`
Import unicode_literals 2017-05-24 11:33:11 -04:00			`messages.success(request, "Modified secret {}.".format(secret))`
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`return redirect('secrets:secret', pk=secret.pk)`
			`else:`
			`form.add_error(None, "Invalid session key. Unable to encrypt secret data.")`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`# We can't save the plaintext without a session key.`
			`elif form.cleaned_data['plaintext']:`
			`form.add_error(None, "No session key was provided with the request. Unable to encrypt secret data.")`

			`# If no new plaintext was specified, a session key is not needed.`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`else:`
			`secret = form.save()`
Import unicode_literals 2017-05-24 11:33:11 -04:00			`messages.success(request, "Modified secret {}.".format(secret))`
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`return redirect('secrets:secret', pk=secret.pk)`
Initial push to public repo 2016-03-01 11:23:03 -05:00
			`else:`
Code cleanup 2016-05-18 16:35:35 -04:00			`form = forms.SecretForm(instance=secret)`
Initial push to public repo 2016-03-01 11:23:03 -05:00
			`return render(request, 'secrets/secret_edit.html', {`
			`'secret': secret,`
			`'form': form,`
Standardized naming of return_url for all object views 2017-01-23 14:07:26 -05:00			`'return_url': reverse('secrets:secret', kwargs={'pk': secret.pk}),`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`})`


Converted all delete CBVs to use utilities/obj_delete.html 2016-05-12 15:46:02 -04:00			`class SecretDeleteView(PermissionRequiredMixin, ObjectDeleteView):`
			`permission_required = 'secrets.delete_secret'`
			`model = Secret`
Standardized the use of return_url for ObjectDeleteView 2017-01-18 13:30:19 -05:00			`default_return_url = 'secrets:secret_list'`
Initial push to public repo 2016-03-01 11:23:03 -05:00

Renamed new import view to BulkImportView 2017-06-05 15:53:41 -04:00			`class SecretBulkImportView(BulkImportView):`
Enforce view permissions for UI views 2019-04-11 17:27:38 -04:00			`permission_required = 'secrets.add_secret'`
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`model_form = forms.SecretCSVForm`
			`table = tables.SecretTable`
Fixes #1567: Prompt user for session key when importing secrets 2017-10-10 13:22:40 -04:00			`template_name = 'secrets/secret_import.html'`
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`default_return_url = 'secrets:secret_list'`
Fixes #1567: Prompt user for session key when importing secrets 2017-10-10 13:22:40 -04:00			`widget_attrs = {'class': 'requires-session-key'}`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`master_key = None`
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`def _save_obj(self, obj_form):`
			`"""`
			`Encrypt each object before saving it to the database.`
			`"""`
			`obj = obj_form.save(commit=False)`
			`obj.encrypt(self.master_key)`
			`obj.save()`
			`return obj`
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`def post(self, request):`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`# Grab the session key from cookies.`
			`session_key = request.COOKIES.get('session_key')`
			`if session_key:`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`# Attempt to derive the master key using the provided session key.`
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`try:`
Finished work on secrets views; removed path from cookie assignment 2017-03-21 15:30:36 -04:00			`sk = SessionKey.objects.get(userkey__user=request.user)`
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`self.master_key = sk.get_master_key(base64.b64decode(session_key))`
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00			`except SessionKey.DoesNotExist:`
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`messages.error(request, "No session key found for this user.")`
Adapted the web UI to work with the new secrets API 2017-02-03 16:14:42 -05:00
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`if self.master_key is not None:`
Closes #2614: Simplify calls of super() for Python 3 2018-11-27 10:52:24 -05:00			`return super().post(request)`
Initial push to public repo 2016-03-01 11:23:03 -05:00			`else:`
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`messages.error(request, "Invalid private key! Unable to encrypt secret data.")`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`else:`
			`messages.error(request, "No session key was provided with the request. Unable to encrypt secret data.")`
Initial push to public repo 2016-03-01 11:23:03 -05:00
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`return render(request, self.template_name, {`
			`'form': self._import_form(request.POST),`
			`'fields': self.model_form().fields,`
			`'obj_type': self.model_form._meta.model._meta.verbose_name,`
Closes #1851: Standardize usage of GetReturnURLMixin 2018-07-02 11:54:41 -04:00			`'return_url': self.get_return_url(request),`
Converted secrets import view to new scheme 2017-06-02 17:23:41 -04:00			`})`
Initial push to public repo 2016-03-01 11:23:03 -05:00

			`class SecretBulkEditView(PermissionRequiredMixin, BulkEditView):`
			`permission_required = 'secrets.change_secret'`
fixes #3428 - caching invalidation issues Mitgate invalidation issues by using prefetch_related instead of select_related. Also use invalidated_update instead of just update. 2019-08-19 01:53:39 -04:00			`queryset = Secret.objects.prefetch_related('role', 'device')`
Re-implemented method for bulk editing/deleting all objects within a filtered queryset 2017-01-20 16:42:11 -05:00			`filter = filters.SecretFilter`
Closes #838: Display details of all objects being edited/deleted in bulk 2017-07-13 16:31:47 -04:00			`table = tables.SecretTable`
Code cleanup 2016-05-18 16:35:35 -04:00			`form = forms.SecretBulkEditForm`
Standardized naming of return_url for all object views 2017-01-23 14:07:26 -05:00			`default_return_url = 'secrets:secret_list'`
Initial push to public repo 2016-03-01 11:23:03 -05:00

			`class SecretBulkDeleteView(PermissionRequiredMixin, BulkDeleteView):`
			`permission_required = 'secrets.delete_secret'`
fixes #3428 - caching invalidation issues Mitgate invalidation issues by using prefetch_related instead of select_related. Also use invalidated_update instead of just update. 2019-08-19 01:53:39 -04:00			`queryset = Secret.objects.prefetch_related('role', 'device')`
Re-implemented method for bulk editing/deleting all objects within a filtered queryset 2017-01-20 16:42:11 -05:00			`filter = filters.SecretFilter`
Optimized performance when editing/deleting objects in bulk 2017-07-13 17:39:28 -04:00			`table = tables.SecretTable`
Standardized naming of return_url for all object views 2017-01-23 14:07:26 -05:00			`default_return_url = 'secrets:secret_list'`