Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
169b82261aaeb152a8428811f1bee2e0d879e00a
edx-platform/openedx/core/djangoapps/xblock/utils.py
Feanil Patel 9cf2f9f298 Run 2to3 -f future . -w 
This will remove imports from __future__ that are no longer needed.

https://docs.python.org/3.5/library/2to3.html#2to3fixer-future
2019-12-30 10:35:30 -05:00

101 lines
4.8 KiB
Python
Raw Blame History

"""
Useful helper methods related to the XBlock runtime
"""
import hashlib
import hmac
import math
import time
from uuid import uuid4
import crum
from django.conf import settings
from six import text_type
def get_secure_token_for_xblock_handler(user_id, block_key_str, time_idx=0):
"""
Get a secure token (one-way hash) used to authenticate XBlock handler
requests. This token replaces both the session ID cookie (or OAuth
bearer token) and the CSRF token for such requests.
The token is specific to one user and one XBlock usage ID, though may
be used for any handler. It expires and is only valid for 2-4 days (our
current best guess at a reasonable trade off between "what if the user left
their browser open overnight and tried to continue the next day" which
should work vs. "for security, tokens should not last too long")
We use this token because XBlocks may sometimes be sandboxed (run in a
client-side JavaScript environment with no access to cookies) and
because the XBlock python and JavaScript handler_url APIs do not provide
any way of authenticating the handler requests, other than assuming
cookies are present or including this sort of secure token in the
handler URL.
For security, we need these tokens to have an expiration date. So: the
hash incorporates the current time, rounded to the lowest TOKEN_PERIOD
value. When checking this, you should check both time_idx=0 and
time_idx=-1 in case we just recently moved from one time period to
another (i.e. at the stroke of midnight UTC or similar). The effect of
this is that each token is valid for 2-4 days.
(Alternatively, we could make each token expire after exactly X days, but
that requires storing the expiration date of each token on the server side,
making the implementation needlessly complex. The "time window" approach we
are using here also has the advantage that throughout a typical day, the
token each user gets for a given XBlock doesn't change, which makes
debugging and reasoning about the system simpler.)
"""
TOKEN_PERIOD = 24 * 60 * 60 * 2 # These URLs are valid for 2-4 days
time_token = math.floor(time.time() / TOKEN_PERIOD)
time_token += TOKEN_PERIOD * time_idx
check_string = text_type(time_token) + ':' + text_type(user_id) + ':' + block_key_str
secure_key = hmac.new(settings.SECRET_KEY.encode('utf-8'), check_string.encode('utf-8'), hashlib.sha256).hexdigest()
return secure_key[:20]
def validate_secure_token_for_xblock_handler(user_id, block_key_str, token):
"""
Returns True if the specified handler authentication token is valid for the
given XBlock ID and user ID. Otherwise returns false.
See get_secure_token_for_xblock_handler
"""
token = token.encode('utf-8') # This line isn't needed after python 3, nor the .encode('utf-8') below
token_expected = get_secure_token_for_xblock_handler(user_id, block_key_str).encode('utf-8')
prev_token_expected = get_secure_token_for_xblock_handler(user_id, block_key_str, -1).encode('utf-8')
result1 = hmac.compare_digest(token, token_expected)
result2 = hmac.compare_digest(token, prev_token_expected)
# All computations happen above this line so this function always takes a
# constant time to produce its answer (security best practice).
return bool(result1 or result2)
def get_xblock_id_for_anonymous_user(user):
"""
Get a unique string that identifies the current anonymous (not logged in)
user. (This is different than the "anonymous user ID", which is an
anonymized identifier for a logged in user.)
Note that this ID is a string, not an int. It is guaranteed to be in a
unique namespace that won't collide with "normal" user IDs, even when
they are converted to a string.
"""
if not user or not user.is_anonymous:
raise TypeError("get_xblock_id_for_anonymous_user() is only for anonymous (not logged in) users.")
if hasattr(user, 'xblock_id_for_anonymous_user'):
# If code elsewhere (like the xblock_handler API endpoint) has stored
# the key on the AnonymousUser object, just return that - it supersedes
# everything else:
return user.xblock_id_for_anonymous_user
# We use the session to track (and create if needed) a unique ID for this anonymous user:
current_request = crum.get_current_request()
if current_request and current_request.session:
# Make sure we have a key for this user:
if "xblock_id_for_anonymous_user" not in current_request.session:
new_id = "anon{}".format(uuid4().hex[:20])
current_request.session["xblock_id_for_anonymous_user"] = new_id
return current_request.session["xblock_id_for_anonymous_user"]
else:
raise RuntimeError("Cannot get a user ID for an anonymous user outside of an HTTP request context.")
Reference in New Issue View Git Blame Copy Permalink