mirrors/Radicale
1
0
Fork 0
mirror of https://github.com/Kozea/Radicale.git synced 2025-04-04 21:57:43 +03:00
Code Issues Projects Releases Packages Wiki Activity

only display warning if not started as wsgi

Browse source
This commit is contained in:
Peter Bieringer 2025-03-14 21:33:36 +01:00
parent 820691ca53
commit 69f85a0bdf
1 changed files with 16 additions and 13 deletions
Download patch file Download diff file Expand all files Collapse all files

29
radicale/auth/__init__.py
View file

@ -30,9 +30,10 @@ Take a look at the class ``BaseAuth`` if you want to implement your own.
""" """
import hashlib import hashlib
import os
import threading import threading
import time import time
from typing import Sequence, Set, Tuple, Union, final from typing import List, Sequence, Set, Tuple, Union, final
from radicale import config, types, utils from radicale import config, types, utils
from radicale.log import logger from radicale.log import logger
@ -71,18 +72,20 @@ def load(configuration: "config.Configuration") -> "BaseAuth":
elif _type == "denyall": elif _type == "denyall":
logger.warning("All user authentication is blocked by: '[auth] type=denyall'") logger.warning("All user authentication is blocked by: '[auth] type=denyall'")
elif _type in INSECURE_IF_NO_LOOPBACK_TYPES: elif _type in INSECURE_IF_NO_LOOPBACK_TYPES:
hosts: List[Tuple[str, int]] = configuration.get("server", "hosts") sgi = os.environ.get('SERVER_GATEWAY_INTERFACE') or None
localhost_only = True if not sgi:
address_lo = [] hosts: List[Tuple[str, int]] = configuration.get("server", "hosts")
address = [] localhost_only = True
for address_port in hosts: address_lo = []
if address_port[0] in [ "localhost", "localhost6", "127.0.0.1", "::1" ]: address = []
address_lo.append(utils.format_address(address_port)) for address_port in hosts:
else: if address_port[0] in ["localhost", "localhost6", "127.0.0.1", "::1"]:
address.append(utils.format_address(address_port)) address_lo.append(utils.format_address(address_port))
localhost_only = False else:
if localhost_only is False: address.append(utils.format_address(address_port))
logger.warning("User authentication '[auth] type=%s' is selected but server is not only listen on loopback address (potentially INSECURE): %s", _type, " ".join(address)) localhost_only = False
if localhost_only is False:
logger.warning("User authentication '[auth] type=%s' is selected but server is not only listen on loopback address (potentially INSECURE): %s", _type, " ".join(address))
return utils.load_plugin(INTERNAL_TYPES, "auth", "Auth", BaseAuth, return utils.load_plugin(INTERNAL_TYPES, "auth", "Auth", BaseAuth,
configuration) configuration)