2020-12-05 21:08:42 +00:00
|
|
|
"""authentik core tasks"""
|
2020-10-23 16:32:28 +00:00
|
|
|
from datetime import datetime
|
|
|
|
from io import StringIO
|
2021-04-07 14:16:17 +00:00
|
|
|
from os import environ
|
2020-10-23 16:32:28 +00:00
|
|
|
|
|
|
|
from boto3.exceptions import Boto3Error
|
|
|
|
from botocore.exceptions import BotoCoreError, ClientError
|
2020-10-26 18:07:08 +00:00
|
|
|
from dbbackup.db.exceptions import CommandConnectorError
|
2020-10-23 16:32:28 +00:00
|
|
|
from django.contrib.humanize.templatetags.humanize import naturaltime
|
|
|
|
from django.core import management
|
2020-09-15 10:53:02 +00:00
|
|
|
from django.utils.timezone import now
|
2021-04-07 14:16:17 +00:00
|
|
|
from kubernetes.config.incluster_config import SERVICE_HOST_ENV_NAME
|
2021-01-01 14:39:43 +00:00
|
|
|
from structlog.stdlib import get_logger
|
2019-02-26 13:07:47 +00:00
|
|
|
|
2020-12-05 21:08:42 +00:00
|
|
|
from authentik.core.models import ExpiringModel
|
2021-01-18 08:34:48 +00:00
|
|
|
from authentik.events.monitored_tasks import MonitoredTask, TaskResult, TaskResultStatus
|
2021-04-07 13:29:45 +00:00
|
|
|
from authentik.lib.config import CONFIG
|
2020-12-05 21:08:42 +00:00
|
|
|
from authentik.root.celery import CELERY_APP
|
2019-02-26 13:07:47 +00:00
|
|
|
|
2019-10-04 08:08:53 +00:00
|
|
|
LOGGER = get_logger()
|
2019-02-26 13:07:47 +00:00
|
|
|
|
2019-12-31 11:51:16 +00:00
|
|
|
|
2020-10-16 09:28:54 +00:00
|
|
|
@CELERY_APP.task(bind=True, base=MonitoredTask)
|
|
|
|
def clean_expired_models(self: MonitoredTask):
|
2020-07-20 08:57:12 +00:00
|
|
|
"""Remove expired objects"""
|
2020-10-16 09:28:54 +00:00
|
|
|
messages = []
|
2020-07-20 08:57:12 +00:00
|
|
|
for cls in ExpiringModel.__subclasses__():
|
|
|
|
cls: ExpiringModel
|
2021-07-14 19:47:32 +00:00
|
|
|
objects = (
|
2021-08-03 15:45:16 +00:00
|
|
|
cls.objects.all().exclude(expiring=False).exclude(expiring=True, expires__gt=now())
|
2020-09-15 10:53:02 +00:00
|
|
|
)
|
2021-07-14 19:47:32 +00:00
|
|
|
for obj in objects:
|
|
|
|
obj.expire_action()
|
|
|
|
amount = objects.count()
|
|
|
|
LOGGER.debug("Expired models", model=cls, amount=amount)
|
|
|
|
messages.append(f"Expired {amount} {cls._meta.verbose_name_plural}")
|
2020-10-16 09:28:54 +00:00
|
|
|
self.set_status(TaskResult(TaskResultStatus.SUCCESSFUL, messages))
|
2020-10-23 16:32:28 +00:00
|
|
|
|
|
|
|
|
|
|
|
@CELERY_APP.task(bind=True, base=MonitoredTask)
|
|
|
|
def backup_database(self: MonitoredTask): # pragma: no cover
|
|
|
|
"""Database backup"""
|
2020-11-03 21:53:24 +00:00
|
|
|
self.result_timeout_hours = 25
|
2021-04-07 14:16:17 +00:00
|
|
|
if SERVICE_HOST_ENV_NAME in environ and not CONFIG.y("postgresql.s3_backup"):
|
2021-04-07 13:29:45 +00:00
|
|
|
LOGGER.info("Running in k8s and s3 backups are not configured, skipping")
|
|
|
|
self.set_status(
|
|
|
|
TaskResult(
|
|
|
|
TaskResultStatus.WARNING,
|
|
|
|
[
|
|
|
|
(
|
|
|
|
"Skipping backup as authentik is running in Kubernetes "
|
|
|
|
"without S3 backups configured."
|
|
|
|
),
|
|
|
|
],
|
|
|
|
)
|
|
|
|
)
|
|
|
|
return
|
2020-10-23 16:32:28 +00:00
|
|
|
try:
|
|
|
|
start = datetime.now()
|
|
|
|
out = StringIO()
|
|
|
|
management.call_command("dbbackup", quiet=True, stdout=out)
|
|
|
|
self.set_status(
|
|
|
|
TaskResult(
|
|
|
|
TaskResultStatus.SUCCESSFUL,
|
|
|
|
[
|
2021-03-03 19:11:55 +00:00
|
|
|
f"Successfully finished database backup {naturaltime(start)} {out.getvalue()}",
|
2020-10-23 16:32:28 +00:00
|
|
|
],
|
|
|
|
)
|
|
|
|
)
|
|
|
|
LOGGER.info("Successfully backed up database.")
|
2020-10-26 18:07:08 +00:00
|
|
|
except (
|
|
|
|
IOError,
|
|
|
|
BotoCoreError,
|
|
|
|
ClientError,
|
|
|
|
Boto3Error,
|
|
|
|
PermissionError,
|
|
|
|
CommandConnectorError,
|
2021-05-13 15:56:49 +00:00
|
|
|
ValueError,
|
2020-10-26 18:07:08 +00:00
|
|
|
) as exc:
|
2020-10-23 16:32:28 +00:00
|
|
|
self.set_status(TaskResult(TaskResultStatus.ERROR).with_error(exc))
|