HEX
Server: LiteSpeed
System: Linux CentOS-79-64-minimal 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User: vishn3436 (5293)
PHP: 8.0.15
Disabled: NONE
$ pwd: /scripts/script-server/src/utils/
Upload Files
File: //scripts/script-server/src/utils/audit_utils.py
import base64
import logging
import socket
import sys

from utils.collection_utils import get_first_existing
from utils.tornado_utils import get_proxied_ip

HOSTNAME = 'hostname'
IP = 'ip'
PROXIED_USERNAME = 'proxied_username'
PROXIED_IP = 'proxied_ip'
PROXIED_HOSTNAME = 'proxied_hostname'
AUTH_USERNAME = 'auth_username'

LOGGER = logging.getLogger('script_server.audit_utils')


def get_all_audit_names(request_handler):
    result = {}

    auth_username = request_handler.application.identification.identify_for_audit(request_handler)
    if auth_username:
        result[AUTH_USERNAME] = auth_username

    basic_auth_username = find_basic_auth_username(request_handler)
    if basic_auth_username:
        result[PROXIED_USERNAME] = basic_auth_username

    proxied_ip = get_proxied_ip(request_handler)
    if proxied_ip:
        result[PROXIED_IP] = proxied_ip

        proxied_hostname = _resolve_hostname(proxied_ip)
        if proxied_hostname:
            result[PROXIED_HOSTNAME] = proxied_hostname

    remote_ip = request_handler.request.remote_ip
    result[IP] = remote_ip

    hostname = _resolve_hostname(remote_ip)
    if hostname:
        result[HOSTNAME] = hostname

    return result


def _resolve_hostname(ip):
    try:
        (hostname, _, _) = socket.gethostbyaddr(ip)
        return hostname
    except:
        LOGGER.warning('Could not get hostname for ' + ip)
        return None


def get_audit_name(all_audit_names):
    audit_types = [AUTH_USERNAME, PROXIED_USERNAME, PROXIED_HOSTNAME, PROXIED_IP, HOSTNAME, IP]

    for name_type in audit_types:
        name = all_audit_names.get(name_type)

        if name:
            return name

    return None


def get_audit_name_from_request(request_handler):
    audit_names = get_all_audit_names(request_handler)

    return get_audit_name(audit_names)


def find_basic_auth_username(request_handler):
    auth_header = request_handler.request.headers.get('Authorization')
    if (auth_header is None) or (not auth_header.lower().startswith('basic ')):
        return None

    encoding = sys.getdefaultencoding()
    credential_bytes = base64.b64decode(auth_header[6:])
    credentials = credential_bytes.decode(encoding)
    username = credentials.split(':')[0]

    return username


def get_audit_username(all_audit_names):
    return get_first_existing(all_audit_names, AUTH_USERNAME, PROXIED_USERNAME)
@ Telegram