Django snippets: Middleware to prevent access to the admin when user ip not in INTERNAL

from django.conf import settings
from django.core.urlresolvers import reverse, NoReverseMatch
from django.http import Http404

class InternalUseOnlyMiddleware(object):
    """
    Middleware to prevent access to the admin if the user IP
    isn't in the INTERNAL_IPS setting.
    """
    def process_request(self, request):
        try:
            admin_index = reverse('admin:index')
        except NoReverseMatch:
            return
        if not request.path.startswith(admin_index):
            return
        remote_addr = request.META.get(
            'HTTP_X_REAL_IP', request.META.get('REMOTE_ADDR', None))
        if not remote_addr in settings.INTERNAL_IPS and not settings.DEBUG:
            raise Http404

More like this

Firebug Lite Middleware by jfw 4 years, 7 months ago
another request logging middleware with request time and extra info by yoav 1 year, 5 months ago
Internal view decorator by gsakkis 2 years, 10 months ago
Include entire networks in INTERNAL_IPS setting by pmclanahan 4 years, 2 months ago
Debug SQL Query in Template by dario.agliottone 1 year ago

This middleware will prevent access to the admin if the users IP isn't in the INTERNAL_IPS setting, by comparing the request path with the reversed index URL of the default admin site, ultimately raising a 404 (unless DEBUG = True).

Author:: jezdez
Posted:: July 5, 2010
Language:: Python
Django Version:: 1.2
Tags:: middleware admin
Score:: 2 (after 2 ratings)

Django snippets

Middleware to prevent access to the admin when user ip not in INTERNAL_IPS

More like this

Tools

Comments

Snippets

About