from conntrackt.models import *

from django.contrib import admin

admin.site.register(Project)

admin.site.register(Location)

admin.site.register(Entity)

admin.site.register(Interface)

admin.site.register(Communication)

from django.core.exceptions import ValidationError

class Project(models.Model):

    name = models.CharField(max_length = 100)

    description = models.TextField(blank = True)

    def __unicode__(self):

        return self.name

class Location(models.Model):

    name = models.CharField(max_length = 100)

    description = models.TextField(blank = True)

    def __unicode__(self):

        return self.name

class Entity(models.Model):

    name = models.CharField(max_length = 100)

    description = models.TextField(blank = True)

    project = models.ForeignKey(Project)

    location = models.ForeignKey(Location)

    class Meta:

        verbose_name_plural = 'entities'

    def __unicode__(self):

        return "%s (%s - %s)" % (self.name, self.project, self.location)

class Interface(models.Model):

    name = models.CharField(max_length = 100)

    description = models.TextField(blank = True)

    entity = models.ForeignKey(Entity)

    address = models.IPAddressField()

    netmask = models.IPAddressField(default='255.255.255.255')

    def __unicode__(self):

        return "%s (%s = %s/%s)" % (self.entity.name, self.name, self.address, self.netmask)

class Communication(models.Model):

    source = models.ForeignKey(Interface, related_name = 'source_set')

    destination = models.ForeignKey(Interface, related_name = 'destination_set')

    protocol = models.CharField(max_length = 10)

    port = models.IntegerField(default = 0)

    description = models.TextField(blank = True)

    def __unicode__(self):

        return "%s (%s/%s) -> %s (%s/%s)" % (self.source.entity.name, self.source.address, self.source.netmask,

                                             self.destination.entity.name, self.destination.address, self.destination.netmask)

    def clean(self):

        if self.source == self.destination:

            raise ValidationError('Source and destination must differ.')

        if self.protocol.lower() not in ('udp', 'tcp', 'icmp'):

            raise ValidationError('%s is not a supported protocol.' % self.protocol)

# This was taken from https://github.com/ldiqual/django-linestripper/

from django.conf import settings

from django.template.loaders import app_directories

import re

# To be set in settings.py

STRIPPER_TAG = getattr(settings, 'STRIPPER_TAG', '__STRIPPER_TAG__')

STRIPPER_CLEAR_LINE = getattr(settings, 'STRIPPER_CLEAR_LINE', False)

STRIPPER_ENABLED =  getattr(settings, 'STRIPPER_ENABLED', True)

STRIPPER_ALLOWED_CONTENT_TYPES = getattr(settings, 'STRIPPER_ALLOWED_CONTENT_TYPES', (

	'text',

	'xml'

))

# Finders

FIND_BLANK_LINE = r'\n(\s*)\n'

FIND_START_BLANK_LINE = r'^(\s*)\n'

FIND_TAG = STRIPPER_TAG

# Replacers

REPLACE_WITH_TAG = '\n'+ STRIPPER_TAG +'\n' if STRIPPER_CLEAR_LINE else r'\n\1'+ STRIPPER_TAG +'\n'

REPLACE_START_WITH_TAG = STRIPPER_TAG +'\n' if STRIPPER_CLEAR_LINE else r'\n\1'+ STRIPPER_TAG +'\n'

# Deleters

DELETE_BLANK_LINE = '\n'

DELETE_START_BLANK_LINE = ''

DELETE_TAG = ''

'''

This is called AFTER the template generation.

It suppresses blank lines and deletes STRIPPER_TAG

'''

class StripperMiddleware(object):

	def process_response(self, request, response):

		if not STRIPPER_ENABLED:

			return response

		# Checks if the content type is allowed

		allowed = False

		for type in STRIPPER_ALLOWED_CONTENT_TYPES:

			if type in response['Content-Type']:

				allowed = True

				break

		# If the content type is not allowed, untag and return

		if not allowed:

			response.content = response.content.replace(STRIPPER_TAG, DELETE_TAG)

			return response

		# Suppress a blank line at the beginning of the document

		response.content = re.sub(FIND_START_BLANK_LINE, DELETE_START_BLANK_LINE, response.content)

		# Suppress blank lines

		response.content = re.sub(FIND_BLANK_LINE, DELETE_BLANK_LINE, response.content)

		# Delete STRIPPER_TAG

		# response.content = re.sub(FIND_TAG, DELETE_TAG, response.content)

		response.content = response.content.replace(STRIPPER_TAG, DELETE_TAG)

		return response

'''

This is called BEFORE the template generation.

It adds STRIPPER_TAG to blank lines so they aren't removed in the middleware

'''

class Loader(app_directories.Loader):

    is_usable = True

    def process_content(self, content):

    	if not STRIPPER_ENABLED:

			return content

        content = re.sub(FIND_BLANK_LINE, REPLACE_WITH_TAG, content)

        content = re.sub(FIND_START_BLANK_LINE, REPLACE_WITH_TAG, content)

        return content

    def load_template(self, template_name, template_dirs=None):

        source, origin = self.load_template_source(template_name, template_dirs)

        if not STRIPPER_ENABLED:

			return source, origin

        return self.process_content(source), origin

{% for interface in entity.interface_set.all %}{% for communication in interface.destination_set.all %}

{% ifchanged communication.description %}

{% if communication.description %}

# {{communication.description}}

{% endif %}

{% endifchanged %}

iptables -A INPUT -s {{communication.source.address}}/{{communication.source.netmask}} -p {{communication.protocol|lower}} -m {{communication.protocol|lower}} --dport {{communication.port}} -j ACCEPT

{% endfor %}

{% endfor %}

{% load conntrackt %}

Select your project:

{% if projects %}

  {% for project in projects %}

<ul class="unstyled">

  <li>{% html_link 'project' project.name project.id "btn btn-link" %}</li>

</ul>

  {% endfor %}

{% endif %}

{% extends "conntrackt/template.html" %}

{% load conntrackt %}

{% block content %}

<h1>{{project.name}}</h1>

{% if project.entity_set %}

<ul class="unstyled">

{% for entity in project.entity_set.all %}

  <li>{% html_link 'entity_iptables' entity.name entity.id "btn btn-link" %}</li>

{% endfor %}

</ul>

{% endif %}

{% endblock %}

              <li class="{% active_link 'admin' %}"><a href="{% url admin:index %}"><i class="icon-wrench icon-white"></i> Administration</a></li>

from conntrackt.views import IndexView, IptablesView

from conntrackt.models import Project

from django.views.generic import DetailView

    'conntrackt.views',

    url(r'^project/(?P<pk>\d+)/$', DetailView.as_view(model = Project),

        name = 'project'),

    url(r'^entity/(?P<pk>\d+)/iptables/$', IptablesView.as_view(), name="entity_iptables"),

from django.views.generic import TemplateView, DetailView

from conntrackt.models import Project, Entity

    def get_context_data(self, **kwargs):

        context = super(IndexView, self).get_context_data(**kwargs)

        context['projects'] = Project.objects.all().order_by('name')

        return context

class IptablesView(DetailView):

    model = Entity

    template_name = 'conntrackt/entity_iptables.html'

    def render_to_response(self, context, **kwargs):

        return super(IptablesView, self).render_to_response(context,

                                                            content_type='text/plain', **kwargs)

    'conntrackt.stripper.Loader',

    'conntrackt.stripper.StripperMiddleware'