Make a squash

2022-01-03 11:33:02 +01:00 · 2022-01-03 11:33:02 +01:00 · 113992f95b
commit 113992f95b
21 changed files with 3339 additions and 0 deletions
--- a/web/init.py
+++ b/web/init.py
@ -0,0 +1,69 @@
+import os
+
+import flask
+import flask_ldap3_login
+import flask_login
+
+def create_app(test_config=None):
+    app = flask.Flask(__name__)
+    app.config['DEBUG'] = True
+    app.config['SECRET_KEY'] = 'KagjQoUSTtjYC3GQPpfBHcpMJvZg5R1L'
+
+#    try:
+#        os.makedirs(app.instance_path)
+#    except OSError:
+#        pass
+
+    from . import db
+    db.init_app(app)
+
+    from . import auth
+    app.register_blueprint(auth.blueprint)
+
+    from . import config
+    app.register_blueprint(config.blueprint)
+
+    from . import dnat
+    app.register_blueprint(dnat.blueprint)
+
+    from . import vpn
+    app.register_blueprint(vpn.blueprint)
+
+    from . import system
+    system.init_app(app)
+
+    settings = db.load('settings')
+    app.config['LDAP_USE_SSL'] = True
+    app.config['LDAP_HOST'] = settings.get('ldap_host', '')
+    app.config['LDAP_PORT'] = int(settings.get('ldap_port', '636'))
+    app.config['LDAP_BASE_DN'] = settings.get('ldap_base_dn', '')
+    app.config['LDAP_USER_DN'] = settings.get('ldap_user_dn', '')
+    app.config['LDAP_BIND_USER_DN'] = settings.get('ldap_user', '')
+    app.config['LDAP_BIND_USER_PASSWORD'] = settings.get('ldap_pass', '')
+    app.config['LDAP_USER_LOGIN_ATTR'] = settings.get('ldap_login_attr', 'userPrincipalName')
+    app.config['LDAP_USER_SEARCH_SCOPE'] = 'SUBTREE'
+
+    login_manager = flask_login.LoginManager(app)
+    ldap_manager = flask_ldap3_login.LDAP3LoginManager(app)
+    users = {}
+
+    @login_manager.user_loader
+    def load_user(id):
+        return users.get(id)
+
+    @ldap_manager.save_user
+    def save_user(dn, username, data, memberships):
+        user = auth.User(dn, username, data)
+        users[dn] = user
+        return user
+
+    @login_manager.unauthorized_handler
+    def unauth_handler():
+        return flask.redirect(flask.url_for('auth.login', next=flask.request.endpoint))
+
+    @app.route('/')
+    @flask_login.login_required
+    def home():
+        return flask.render_template('index.html')
+
+    return app