Inicio Explorar Ayuda
Registro Iniciar sesión
oscarleiva
/
energylink
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Explorar el Código

dashfolders: security for png rendering

Daniel Lee hace 8 años
padre
659a59107e
commit
f68d2816ab
Se han modificado 3 ficheros con 9 adiciones y 3 borrados
Unificar vista Mostrar estadísticas de diff
  1. 2 0
      pkg/api/render.go
  2. 4 1
      pkg/components/renderer/renderer.go
  3. 3 2
      pkg/middleware/render_auth.go

+ 2 - 0
pkg/api/render.go
Ver fichero 

@@ -18,6 +18,8 @@ func RenderToPng(c *middleware.Context) {
 
 		Width:    queryReader.Get("width", "800"),
 
 		Width:    queryReader.Get("width", "800"),
 
 		Height:   queryReader.Get("height", "400"),
 
 		Height:   queryReader.Get("height", "400"),
 
 		OrgId:    c.OrgId,
 
 		OrgId:    c.OrgId,
 
+		UserId:   c.UserId,
 
+		OrgRole:  c.OrgRole,
 
 		Timeout:  queryReader.Get("timeout", "30"),
 
 		Timeout:  queryReader.Get("timeout", "30"),
 
 		Timezone: queryReader.Get("tz", ""),
 
 		Timezone: queryReader.Get("tz", ""),
 
 	}
 
 	}

+ 4 - 1
pkg/components/renderer/renderer.go
Ver fichero 

@@ -15,6 +15,7 @@ import (
 
 
 
 	"github.com/grafana/grafana/pkg/log"
 
 	"github.com/grafana/grafana/pkg/log"
 
 	"github.com/grafana/grafana/pkg/middleware"
 
 	"github.com/grafana/grafana/pkg/middleware"
 
+	"github.com/grafana/grafana/pkg/models"
 
 	"github.com/grafana/grafana/pkg/setting"
 
 	"github.com/grafana/grafana/pkg/setting"
 
 	"github.com/grafana/grafana/pkg/util"
 
 	"github.com/grafana/grafana/pkg/util"
 
 )
 
 )
 
@@ -25,6 +26,8 @@ type RenderOpts struct {
 
 	Height   string
 
 	Height   string
 
 	Timeout  string
 
 	Timeout  string
 
 	OrgId    int64
 
 	OrgId    int64
 
+	UserId   int64
 
+	OrgRole  models.RoleType
 
 	Timezone string
 
 	Timezone string
 
 }
 
 }
 
 
 
@@ -72,7 +75,7 @@ func RenderToPng(params *RenderOpts) (string, error) {
 
 	pngPath, _ := filepath.Abs(filepath.Join(setting.ImagesDir, util.GetRandomString(20)))
 
 	pngPath, _ := filepath.Abs(filepath.Join(setting.ImagesDir, util.GetRandomString(20)))
 
 	pngPath = pngPath + ".png"
 
 	pngPath = pngPath + ".png"
 
 
 
-	renderKey := middleware.AddRenderAuthKey(params.OrgId)
 
+	renderKey := middleware.AddRenderAuthKey(params.OrgId, params.UserId, params.OrgRole)
 
 	defer middleware.RemoveRenderAuthKey(renderKey)
 
 	defer middleware.RemoveRenderAuthKey(renderKey)
 
 
 
 	cmdArgs := []string{
 
 	cmdArgs := []string{

+ 3 - 2
pkg/middleware/render_auth.go
Ver fichero 

@@ -33,14 +33,15 @@ func initContextWithRenderAuth(ctx *Context) bool {
 
 
 
 type renderContextFunc func(key string) (string, error)
 
 type renderContextFunc func(key string) (string, error)
 
 
 
-func AddRenderAuthKey(orgId int64) string {
 
+func AddRenderAuthKey(orgId int64, userId int64, orgRole m.RoleType) string {
 
 	renderKeysLock.Lock()
 
 	renderKeysLock.Lock()
 
 
 
 	key := util.GetRandomString(32)
 
 	key := util.GetRandomString(32)
 
 
 
 	renderKeys[key] = &m.SignedInUser{
 
 	renderKeys[key] = &m.SignedInUser{
 
 		OrgId:   orgId,
 
 		OrgId:   orgId,
 
-		OrgRole: m.ROLE_VIEWER,
 
+		OrgRole: orgRole,
 
+		UserId:  userId,
 
 	}
 
 	}
 
 
 
 	renderKeysLock.Unlock()
 
 	renderKeysLock.Unlock()