]j='dZddlZddlZddlmZddlmZddlZddl m Z ddl m Z ddl mZddlmZdd lmZdd lmZdd lmZdd lmZdd lmZddlmZddlmZej>e Z!dZ"GddeZ#GddeZ$GddeZ%GddeZ&GddeZ'GddeZ(GddZ)Gdd eZ*Gd!d"eZ+Gd#d$e Z,y)%zThis file and its contents are licensed under the Apache License 2.0. Please see the included NOTICE for copyright information and LICENSE for a copy of the license. N) timedelta)uuid4) ContextLog) CSPMiddleware)settings)logout)MiddlewareNotUsed) BaseHandler)HttpResponsePermanentRedirect)CommonMiddleware)MiddlewareMixin)escape_leading_slashes) SAFE_METHODScDtjrfd}d|_|SS)z#Enable csrf for specified view funcc|g|i|SN)requestargskwargsfuncs F/root/env/lib/python3.12/site-packages/label_studio/core/middleware.pywrapperz$enforce_csrf_checks..wrappers1$1&1 1F)rUSE_ENFORCE_CSRF_CHECKS_dont_enforce_csrf_checks)rrs` renforce_csrf_checksrs''' 2-2) rceZdZdZy) DisableCSRFct|drt|d|jy|jj drt|ddyt|ddy)NrrFT)hasattrsetattrrGETget)selfrcallbackrrs r process_viewzDisableCSRF.process_view(sK 88 9 G8(:\:\ ] [[__2 3 G8% @ G8$ ?rN__name__ __module__ __qualname__r'rrrrr&s@rrc eZdZy)HttpSmartRedirectResponseN)r)r*r+rrrr-r-1srr-c<eZdZdZeZfdZdZfdZdZ xZ S)*CommonMiddlewareAppendSlashWithoutRedirectaThis class converts HttpSmartRedirectResponse to the common response of Django view, without redirect. This is necessary to match status_codes for urls like /url?q=1 and /url/?q=1. If you don't use it, you will have 302 code always on pages without slash. cdt|_tj}|jdz|j j z}tjDcgc] }||k7s | c}t_|jj|t_tt|*|i|ycc}w)N.) r handlerr MIDDLEWAREr* __class__r)load_middlewaresuperr/__init__)r%rroldnameir4s rr7z3CommonMiddlewareAppendSlashWithoutRedirect.__init__>s"} !!$t~~'>'>>*2*=*=KQdqK $$&! 8$H$YRXY Ls  B-$B-c@|jd}t|}|S)zsReturn the full path of the request with a trailing slash appended without Exception in Debug mode T)force_append_slash) get_full_pathr)r%rnew_paths rget_full_path_with_slashzCCommonMiddlewareAppendSlashWithoutRedirect.get_full_path_with_slashLs&((D(A)(3rctt| ||}tj|_t |tr|jjdsLtjr&|jttjdn |j}|dz|_|j|_ |jj|}|S)N/)r6r/process_responser EDITOR_KEYMAP editor_keymap isinstancer-pathendswithFORCE_SCRIPT_NAMElen path_infor2 get_response)r%rresponserFr4s rrBz;CommonMiddlewareAppendSlashWithoutRedirect.process_responseUsCT[\cemn ( 6 6 h 9 :<<((-JRJdJdw||C(B(B$C$EFjqjvjv#cz ' G ||009Hrc<|jjdsyy)zX Override the original method to keep global APPEND_SLASH setting false rATF)rJrGr%rs rshould_redirect_with_slashzECommonMiddlewareAppendSlashWithoutRedirect.should_redirect_with_slashes  ))#.r) r)r*r+__doc__r-response_redirect_classr7r?rBrO __classcell__r4s@rr/r/5s% 8 Z rr/ceZdZdZy)SetSessionUIDMiddlewarecbd|jvr!tt|jd<yy)Nuid)sessionstrrrNs rprocess_requestz'SetSessionUIDMiddleware.process_requestos'  '%(\GOOE " (rN)r)r*r+rZrrrrUrUns2rrUceZdZdZdZdZy)ContextLogMiddlewarec0||_t|_yr)rKrlogr%rKs rr7zContextLogMiddleware.__init__us(<rcPd} tj|j}d|vr%t |d|j j |j|}|j j||||S# |jjd}n#YnxYwYxYw)Nzutf-8 server_id)rrLbody) jsonloadsrbdecoder"r^_get_server_idrKsend)r%rrbrLs r__call__zContextLogMiddleware.__call__ys ::gll+D g % G[$((*A*A*C D$$W-  gt D  ||**73 s#A==B%BB%B B%cXd|vr&t|d|jjyy)Nra)r"r^rfrNs rrZz$ContextLogMiddleware.process_requests( g % G[$((*A*A*C D &rN)r)r*r+r7rhrZrrrr\r\ts $Err\ceZdZdZdZdZy)DatabaseIsLockedRetryMiddlewarez\Workaround for sqlite performance issues we wait and retry request if database is lockedchtjtjk7r t||_yr)r DJANGO_DBDJANGO_DB_SQLITEr rKr_s rr7z(DatabaseIsLockedRetryMiddleware.__init__s'   !:!: :#% %(rcN|j|}d}d}d}|jdk(r~t|drrd|jvrd|dkr_t j ||j|}|dz }||z}|jdk(r t|drd|jvr|dkr_|S)Nrg?icontentsdatabase-is-locked-error)rK status_coder!rqtimesleep)r%rrLretries_number sleep_timebackoffs rrhz(DatabaseIsLockedRetryMiddleware.__call__s$$W-   C '),+x/?/??# JJz "((1H a N ' !J  C '),+x/?/??# rNr)r*r+rPr7rhrrrrkrks7) rrkceZdZdZdZdZy)XApiKeySupportMiddlewarezMiddleware that adds support for the X-Api-Key header, by having its value supersede anything that's set in the Authorization header.c||_yr)rKr_s rr7z!XApiKeySupportMiddleware.__init__s (rcd|jvr,d|jd|jd<|jd=|j|S)NHTTP_X_API_KEYzToken HTTP_AUTHORIZATION)METArKrNs rrhz!XApiKeySupportMiddleware.__call__sM w|| +39',,GW:X9Y1ZGLL- . -.  ))rNryrrrr{r{s8)*rr{ceZdZdZy)UpdateLastActivityMiddlewarect|drE|jtvr2|jjr|jj yyyy)Nuser)r!methodrris_authenticatedupdate_last_activity)r%r view_func view_args view_kwargss rr'z)UpdateLastActivityMiddleware.process_viewsB 7F #l(J||,, 113-)K #rNr(rrrrrs4rrceZdZdZgZddZy)"InactivitySessionTimeoutMiddleWarezVLog the user out if they have been logged in for too long or inactive for too longNct|drl|jjsRt|drF|jjr0t|dr |j st|dr |j rytj}d|jvr|jdnd}|jj}|rt|jjj}t|jjj}||z |kDrtjd||z d d t j"d t%|n_t j&}||z t j"kDr9tjd||z d d t j"d t%||j(D]p}t+|t,r|t-|j.k(ryd |vs2t-|j.j1d }t3|dk(se|d |dvspy|jj5|jj7ddr|ydy)NrXris_scimis_jwt last_loginr)minutesz#Request is too far from last login z.0fz > z; logoutquery?rpkeep_me_logged_inT)r!rXis_emptyrrrrrtactive_organizationrsession_timeout_policymax_session_age total_secondsmax_time_between_activityloggerinforMAX_SESSION_AGErMAX_TIME_BETWEEN_ACTIVITYNOT_USER_ACTIVITY_PATHSrErYrJsplitrI set_expiryr$) r%r current_timer active_orgorg_max_session_agerrFpartss rrZz2InactivitySessionTimeoutMiddleWare.process_requests+'')7F+<<00Wi (W__*w~~ yy{ 6Bgoo6UW__\2[\ \\55 "+J4U4U4e4e"f"t"t"v (1"99SS)mo &z)-@@ 9,:STW9XX[\d\t\t[uu}~w)1(J(J %z)X-E-EE 9,:STW9XX[\d\t\t[uu}~w00 D$$W5F5F1G)GDG--.44S9u:?tG}a'@   ""@S@STgim@n#<vtuvr)returnN)r)r*r+rPrrZrrrrrs !/wrrc"eZdZdZfdZxZS)HumanSignalCspMiddlewarez Extend CSPMiddleware to support switching report-only CSP to regular CSP. For use with core.decorators.override_report_only_csp. ct|||}t|ddr'|jdx}r||d<|d=t |d|S)N_override_report_only_cspFz#Content-Security-Policy-Report-OnlyzContent-Security-Policy)r6rBgetattrr$delattr)r%rrL csp_policyr4s rrBz)HumanSignalCspMiddleware.process_responsesZ7+GX> 88% @%\\*OPPzP6@23BC H9 :r)r)r*r+rPrBrRrSs@rrrs rr)-rPloggingrtdatetimeruuidrujsonrccore.utils.contextlogrcsp.middlewarer django.confrdjango.contrib.authrdjango.core.exceptionsr django.core.handlers.baser django.httpr django.middleware.commonr django.utils.deprecationr django.utils.httprrest_framework.permissionsr getLoggerr)rrrr-r/rUr\rkr{rrrrrrrs ,( &4155443   8 $ @/@ = 61A6r2.2 E+E8&66 * *4#346w)96wr}r