Context Navigation

-                      r5e7b56
+                      r09370c
 from MaKaC.common.timezoneUtils import nowutc
 import MaKaC.common.info as info
+import struct, socket
+# TOREMOVE
 def ACLfiltered(iter, requestIP, aw=None):
+    def _inIPList(iplist, ip):
+        for rule in iplist:
+            if '/' in rule:
+                # it's a netmask (CIDR), check if ip belongs to it
+                # ipv4-specific, non-endian-safe check!
+                ipaddr = struct.unpack('L', socket.inet_aton(ip))[0]
+                netaddr, bits = rule.split('/')
+                netmask = struct.unpack('L', socket.inet_aton(netaddr))[0] & ((2L << int(bits) - 1) - 1)
+                if ipaddr & netmask == netmask:
+                    return True
+            else:
+                if ip in iplist:
+                    return True
+        return False
     acl = Config.getInstance().getExportACL().iteritems()
     blIds = list(categ for (categ, iplist) in acl if (requestIP not in iplist))
+    blIds = list(categ for (categ, iplist) in acl if (not _inIPList(iplist, requestIP)))
     for conf in iter:

indico/htdocs/scripts/export.py

-                      rfcbd84
+                      r09370c
   minfo = info.HelperMaKaCInfo.getMaKaCInfoInstance()
   hostIP = req.get_remote_host()
+  hostIP = req.get_remote_ip()
   if minfo.useProxy():
       # if we're behind a proxy, use X-Forwarded-For
+      xff = req.headers_in.get("X-Forwarded-For", hostIP).split(", ")[-1]
+      hostIP = socket.gethostbyname(xff)
+      hostIP = req.headers_in.get("X-Forwarded-For", hostIP).split(", ")[-1]
   if minfo.getRoomBookingModuleActive():

Note: See TracChangeset for help on using the changeset viewer.