Prevent normal users to type URLs in its browser address bar.

Please note that for this feature to work, erp5_html_style/logged_in must not redirect to response['came_from']. git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@3442 20353a03-c40f-0410-a6d1-a30d3c3de9de

Prevent normal users to type URLs in its browser address bar.
Please note that for this feature to work, erp5_html_style/logged_in must not redirect to response['came_from']. git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@3442 20353a03-c40f-0410-a6d1-a30d3c3de9de
bcbd2d44 · Alexandre Boeglin · f2c9b3e3 · bcbd2d44
Commit bcbd2d44 authored Jul 11, 2005 by Alexandre Boeglin
Hide whitespace changes
Inline Side-by-side

Showing with 59 additions and 0 deletions

product/ERP5Type/ZopePatch.py product/ERP5Type/ZopePatch.py +59 -0

No files found.
--- a/product/ERP5Type/ZopePatch.py
+++ b/product/ERP5Type/ZopePatch.py
@@ -1849,3 +1849,62 @@ def reindexObject(self, idxs=[], *args, **kw):

 CMFCatalogAware.reindexObject = reindexObject

+
+##########################################
+# ZPublisher should drop requests without a good http referer
+
+from ZPublisher.BaseRequest import BaseRequest
+
+BaseRequest.erp5_old_traverse = BaseRequest.traverse
+
+import AccessControl
+
+def erp5_new_traverse(request, path, response=None, validated_hook=None):
+
+  if response is None: response=request.response
+  object = BaseRequest.erp5_old_traverse(request, path, response=response, validated_hook=validated_hook)
+  http_url = request.get('ACTUAL_URL', '').strip()
+  http_referer = request.get('HTTP_REFERER', '').strip()
+
+  security_manager = AccessControl.getSecurityManager()
+  user = security_manager.getUser()
+  user_roles = user.getRolesInContext(object)
+
+  # Manager can do anything
+  if 'Manager' in user_roles:
+    return object
+
+  # are we within a portal ?
+  try:
+    context = getattr(object, 'im_self', None)
+    if context is not None:
+      try:
+        portal_url = context.getPortalObject().absolute_url()
+      except:
+        portal_url = object.getPortalObject().absolute_url()
+    else :
+      portal_url = object.getPortalObject().absolute_url()
+  except:
+    pass
+  else:
+    if http_referer != '':
+      # if HTTP_REFERER is set, user can acces the object if referer is ok
+      if http_referer.startswith(portal_url):
+        return object
+      else:
+        LOG('HTTP_REFERER_CHECK : BAD REFERER !', 0, 'request : "%s", referer : "%s"' % (http_url, referer))
+        response.unauthorized()
+    else:
+      # no HTTP_REFERER, we only allow to reach portal_url
+      for i in ('/', '/index_html', '/login_form', '/view'):
+        if http_url.endswith(i):
+          http_url = http_url[:-len(i)]
+          break
+      if len(http_url) == 0 or not portal_url.startswith(http_url):
+        LOG('HTTP_REFERER_CHECK : NO REFERER !', 0, 'request : "%s"' % http_url)
+        response.unauthorized()
+
+  return object
+
+BaseRequest.traverse = erp5_new_traverse
+