almet/umap
1
0
Fork 0
mirror of https://github.com/umap-project/umap.git synced 2025-04-29 20:02:36 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
umap/umap/urls.py
Alexis Métaireau f255c3c8a5 feat(websockets): Authenticate with signed tokens. 
Authentication is now done using a signed token provided by the Django
server, sent by the JS client and checked by the WebSocket server.

The token contains a `permissions` key that's checked to ensure the user
has access to the map "room", where events will be shared by the peers.
2024-06-07 18:21:30 +02:00

212 lines
6.8 KiB
Python
Raw Blame History

from django.conf import settings
from django.conf.urls.i18n import i18n_patterns
from django.conf.urls.static import static
from django.contrib import admin
from django.contrib.auth import views as auth_views
from django.contrib.auth.decorators import login_required
from django.contrib.staticfiles.storage import staticfiles_storage
from django.contrib.staticfiles.urls import staticfiles_urlpatterns
from django.urls import include, path, re_path
from django.views.decorators.cache import cache_control, cache_page, never_cache
from django.views.decorators.csrf import ensure_csrf_cookie
from django.views.generic.base import RedirectView
from . import views
from .decorators import (
can_edit_map,
can_view_map,
login_required_if_not_anonymous_allowed,
)
from .utils import decorated_patterns
admin.autodiscover()
urlpatterns = [
re_path(r"^admin/", admin.site.urls),
re_path("", include("social_django.urls", namespace="social")),
re_path(r"^m/(?P<pk>\d+)/$", views.MapShortUrl.as_view(), name="map_short_url"),
re_path(r"^ajax-proxy/$", cache_page(180)(views.ajax_proxy), name="ajax-proxy"),
re_path(
r"^change-password/",
auth_views.PasswordChangeView.as_view(),
{"template_name": "umap/password_change.html"},
name="password_change",
),
re_path(
r"^change-password-done/",
auth_views.PasswordChangeDoneView.as_view(),
{"template_name": "umap/password_change_done.html"},
name="password_change_done",
),
re_path(r"^i18n/", include("django.conf.urls.i18n")),
re_path(r"^agnocomplete/", include("agnocomplete.urls")),
re_path(r"^map/oembed/", views.MapOEmbed.as_view(), name="map_oembed"),
re_path(
r"^map/(?P<map_id>\d+)/download/",
can_view_map(views.MapDownload.as_view()),
name="map_download",
),
]
i18n_urls = [
re_path(r"^login/$", auth_views.LoginView.as_view(), name="login"),
re_path(
r"^login/popup/end/$", views.LoginPopupEnd.as_view(), name="login_popup_end"
),
re_path(r"^logout/$", views.logout, name="logout"),
re_path(
r"^map/(?P<map_id>\d+)/geojson/$",
views.MapViewGeoJSON.as_view(),
name="map_geojson",
),
re_path(
r"^map/anonymous-edit/(?P<signature>.+)$",
views.MapAnonymousEditUrl.as_view(),
name="map_anonymous_edit_url",
),
re_path(
r"^pictogram/json/$",
views.PictogramJSONList.as_view(),
name="pictogram_list_json",
),
]
i18n_urls += decorated_patterns(
[can_view_map, cache_control(must_revalidate=True)],
path(
"datalayer/<int:map_id>/<uuid:pk>/",
views.DataLayerView.as_view(),
name="datalayer_view",
),
path(
"datalayer/<int:map_id>/<uuid:pk>/versions/",
views.DataLayerVersions.as_view(),
name="datalayer_versions",
),
path(
"datalayer/<int:map_id>/<uuid:pk>/<str:name>",
views.DataLayerVersion.as_view(),
name="datalayer_version",
),
)
i18n_urls += decorated_patterns(
[can_view_map, ensure_csrf_cookie],
re_path(
r"^map/(?P<slug>[-_\w]+)_(?P<map_id>\d+)$", views.MapView.as_view(), name="map"
),
)
i18n_urls += decorated_patterns(
[ensure_csrf_cookie],
re_path(r"^map/$", views.MapPreview.as_view(), name="map_preview"),
re_path(r"^map/new/$", views.MapNew.as_view(), name="map_new"),
)
i18n_urls += decorated_patterns(
[login_required_if_not_anonymous_allowed, never_cache],
re_path(r"^map/create/$", views.MapCreate.as_view(), name="map_create"),
)
i18n_urls += decorated_patterns(
[login_required],
re_path(
r"^map/(?P<map_id>[\d]+)/star/$",
views.ToggleMapStarStatus.as_view(),
name="map_star",
),
re_path(r"^me$", views.user_dashboard, name="user_dashboard"),
re_path(r"^me/profile$", views.user_profile, name="user_profile"),
re_path(r"^me/download$", views.user_download, name="user_download"),
)
map_urls = [
re_path(
r"^map/(?P<map_id>[\d]+)/update/settings/$",
views.MapUpdate.as_view(),
name="map_update",
),
re_path(
r"^map/(?P<map_id>[\d]+)/update/permissions/$",
views.UpdateMapPermissions.as_view(),
name="map_update_permissions",
),
re_path(
r"^map/(?P<map_id>[\d]+)/update/owner/$",
views.AttachAnonymousMap.as_view(),
name="map_attach_owner",
),
re_path(
r"^map/(?P<map_id>[\d]+)/update/delete/$",
views.MapDelete.as_view(),
name="map_delete",
),
re_path(
r"^map/(?P<map_id>[\d]+)/update/clone/$",
views.MapClone.as_view(),
name="map_clone",
),
re_path(
r"^map/(?P<map_id>[\d]+)/datalayer/create/$",
views.DataLayerCreate.as_view(),
name="datalayer_create",
),
path(
"map/<int:map_id>/datalayer/delete/<uuid:pk>/",
views.DataLayerDelete.as_view(),
name="datalayer_delete",
),
path(
"map/<int:map_id>/datalayer/permissions/<uuid:pk>/",
views.UpdateDataLayerPermissions.as_view(),
name="datalayer_permissions",
),
path(
"map/<int:map_id>/ws-token/",
views.get_websocket_auth_token,
name="map_websocket_auth_token",
),
]
if settings.DEFAULT_FROM_EMAIL:
map_urls.append(
re_path(
r"^map/(?P<map_id>[\d]+)/send-edit-link/$",
views.SendEditLink.as_view(),
name="map_send_edit_link",
)
)
datalayer_urls = [
path(
"map/<int:map_id>/datalayer/update/<uuid:pk>/",
views.DataLayerUpdate.as_view(),
name="datalayer_update",
),
]
i18n_urls += decorated_patterns([can_edit_map, never_cache], *map_urls)
i18n_urls += decorated_patterns([never_cache], *datalayer_urls)
urlpatterns += i18n_patterns(
re_path(r"^$", views.home, name="home"),
re_path(
r"^showcase/$", cache_page(24 * 60 * 60)(views.showcase), name="maps_showcase"
),
re_path(r"^search/$", views.search, name="search"),
re_path(r"^about/$", views.about, name="about"),
re_path(r"^user/(?P<identifier>.+)/stars/$", views.user_stars, name="user_stars"),
re_path(r"^user/(?P<identifier>.+)/$", views.user_maps, name="user_maps"),
re_path(r"", include(i18n_urls)),
)
urlpatterns += (
path("stats/", cache_page(60 * 60)(views.stats), name="stats"),
path(
"favicon.ico",
cache_control(max_age=60 * 60 * 24, immutable=True, public=True)(
RedirectView.as_view(
url=staticfiles_storage.url("umap/favicons/favicon.ico")
)
),
),
path(
"manifest.webmanifest",
cache_control(max_age=60 * 60 * 24, immutable=True, public=True)(
views.webmanifest
),
),
)
if settings.DEBUG and settings.MEDIA_ROOT:
urlpatterns += static(settings.MEDIA_URL, document_root=settings.MEDIA_ROOT)
urlpatterns += staticfiles_urlpatterns()
Reference in a new issue View git blame Copy permalink