django-csp/csp/contrib/rate_limiting.py

from __future__ import annotations

import random
from typing import TYPE_CHECKING

from django.conf import settings

from csp.middleware import CSPMiddleware, PolicyParts

if TYPE_CHECKING:
    from django.http import HttpRequest, HttpResponseBase


class RateLimitedCSPMiddleware(CSPMiddleware):
    """A CSP middleware that rate-limits the number of violation reports sent
    to report-uri by excluding it from some requests."""

    def get_policy_parts(self, request: HttpRequest, response: HttpResponseBase, report_only: bool = False) -> PolicyParts:
        policy_parts = super().get_policy_parts(request, response, report_only)

        csp_setting_name = "CONTENT_SECURITY_POLICY_REPORT_ONLY" if report_only else "CONTENT_SECURITY_POLICY"
        policy = getattr(settings, csp_setting_name, None)
        if policy is None:
            return policy_parts

        # `random.random` returns a value in the range [0.0, 1.0) so all values will be < 100.0.
        remove_report = random.random() * 100 >= policy.get("REPORT_PERCENTAGE", 100)
        if remove_report:
            if policy_parts.replace is None:
                policy_parts.replace = {
                    "report-uri": None,
                    "report-to": None,
                }
            else:
                policy_parts.replace.update(
                    {
                        "report-uri": None,
                        "report-to": None,
                    }
                )

        return policy_parts
Add type hints, fix mypy issues (#198) (#228) * Add basepython entries for pypy. This fixes running tox locally. * Fix the cpython version mapping in [gh-actions]. The github action tests for cpython versions are running against the latest Django, instead of the set of possible Django versions. * Add mypy for type checking * Handle case where config is None * Use getattr, setattr for dynamic attribute access - mypy complains when reading or setting a attribute that is not defined on the class, such as HttpRequest.csp_nonce. This updates the code to use getattr and setattr to access these dynamically added attributes and for Django settings. * Use tuples where requested - Both startswith() and parser.parse_statements take a tuple rather than a list. * Add type hints * Refactor ScriptTestBase - Althought the code `template.render(context)` looked similar, mypy complained that Django's Template could not take a dict. Rather than switch on types, refactor `make_context` and `make_template` into `render`, which hides the typing details between Django templates and extension templates like Jinja2. * Fix Sphinx doc generation without setuptools * Add `pip install -e ".[dev]"` * Update docs for typing, etc. * Add PEP 561 py.typed file * Bump Django dependency to 4.2+ * Replace `HttpResponse` type with `HttpResponseBase` * Update CHANGES file --------- Co-authored-by: Rob Hudson <robhudson@mozilla.com> 2024-07-01 20:16:09 +03:00			`from __future__ import annotations`
Expand the ruff config to include import sorting and others. (#234) * Update and move ruff config to pyproject.toml * Bump pre-commit versions * Run pyproject-fmt * Run updated ruff config on all files * Add `.python-version` to gitignore for pyenv + tox * Add pyupgrade to ruff and fix errors * Update CHANGELOG.md 2024-07-01 23:49:27 +03:00
Report percentage (#97) * Add CSP_REPORT_PERCENTAGE option * Move report-uri throttling to csp.contrib * Remove old code * Remove old code 2018-04-06 16:47:28 +03:00			`import random`
Expand the ruff config to include import sorting and others. (#234) * Update and move ruff config to pyproject.toml * Bump pre-commit versions * Run pyproject-fmt * Run updated ruff config on all files * Add `.python-version` to gitignore for pyenv + tox * Add pyupgrade to ruff and fix errors * Update CHANGELOG.md 2024-07-01 23:49:27 +03:00			`from typing import TYPE_CHECKING`
Report percentage (#97) * Add CSP_REPORT_PERCENTAGE option * Move report-uri throttling to csp.contrib * Remove old code * Remove old code 2018-04-06 16:47:28 +03:00
			`from django.conf import settings`

refactor(middleware): Refactor internals of CSPMiddleware so that it's easier to extend existing logic without copy/pasting it into subclass 2024-07-10 14:26:32 +03:00			`from csp.middleware import CSPMiddleware, PolicyParts`
Report percentage (#97) * Add CSP_REPORT_PERCENTAGE option * Move report-uri throttling to csp.contrib * Remove old code * Remove old code 2018-04-06 16:47:28 +03:00
Add type hints, fix mypy issues (#198) (#228) * Add basepython entries for pypy. This fixes running tox locally. * Fix the cpython version mapping in [gh-actions]. The github action tests for cpython versions are running against the latest Django, instead of the set of possible Django versions. * Add mypy for type checking * Handle case where config is None * Use getattr, setattr for dynamic attribute access - mypy complains when reading or setting a attribute that is not defined on the class, such as HttpRequest.csp_nonce. This updates the code to use getattr and setattr to access these dynamically added attributes and for Django settings. * Use tuples where requested - Both startswith() and parser.parse_statements take a tuple rather than a list. * Add type hints * Refactor ScriptTestBase - Althought the code `template.render(context)` looked similar, mypy complained that Django's Template could not take a dict. Rather than switch on types, refactor `make_context` and `make_template` into `render`, which hides the typing details between Django templates and extension templates like Jinja2. * Fix Sphinx doc generation without setuptools * Add `pip install -e ".[dev]"` * Update docs for typing, etc. * Add PEP 561 py.typed file * Bump Django dependency to 4.2+ * Replace `HttpResponse` type with `HttpResponseBase` * Update CHANGES file --------- Co-authored-by: Rob Hudson <robhudson@mozilla.com> 2024-07-01 20:16:09 +03:00			`if TYPE_CHECKING:`
			`from django.http import HttpRequest, HttpResponseBase`

Report percentage (#97) * Add CSP_REPORT_PERCENTAGE option * Move report-uri throttling to csp.contrib * Remove old code * Remove old code 2018-04-06 16:47:28 +03:00
			`class RateLimitedCSPMiddleware(CSPMiddleware):`
			`"""A CSP middleware that rate-limits the number of violation reports sent`
			`to report-uri by excluding it from some requests."""`

refactor(middleware): Refactor internals of CSPMiddleware so that it's easier to extend existing logic without copy/pasting it into subclass 2024-07-10 14:26:32 +03:00			`def get_policy_parts(self, request: HttpRequest, response: HttpResponseBase, report_only: bool = False) -> PolicyParts:`
			`policy_parts = super().get_policy_parts(request, response, report_only)`
Fixes #36: Move to dictionary based settings This is a backwards incompatible change. Also fixes #139, #191 2024-05-01 22:58:56 +03:00
refactor(middleware): Refactor internals of CSPMiddleware so that it's easier to extend existing logic without copy/pasting it into subclass 2024-07-10 14:26:32 +03:00			`csp_setting_name = "CONTENT_SECURITY_POLICY_REPORT_ONLY" if report_only else "CONTENT_SECURITY_POLICY"`
			`policy = getattr(settings, csp_setting_name, None)`
Fixes #36: Move to dictionary based settings This is a backwards incompatible change. Also fixes #139, #191 2024-05-01 22:58:56 +03:00			`if policy is None:`
refactor(middleware): Refactor internals of CSPMiddleware so that it's easier to extend existing logic without copy/pasting it into subclass 2024-07-10 14:26:32 +03:00			`return policy_parts`
Fixes #36: Move to dictionary based settings This is a backwards incompatible change. Also fixes #139, #191 2024-05-01 22:58:56 +03:00
Fix #230: Make REPORT_PERCENTAGE a float 2024-09-11 03:41:44 +03:00			# `random.random` returns a value in the range [0.0, 1.0) so all values will be < 100.0.
			`remove_report = random.random() * 100 >= policy.get("REPORT_PERCENTAGE", 100)`
Fix #231: report percentage of 100% should always report This also updates the RateLimited CSPMiddleware to remove both `report-uri` and `report-to` directives based on report percentage. 2024-07-10 01:57:41 +03:00			`if remove_report:`
refactor(middleware): Refactor internals of CSPMiddleware so that it's easier to extend existing logic without copy/pasting it into subclass 2024-07-10 14:26:32 +03:00			`if policy_parts.replace is None:`
			`policy_parts.replace = {`
Fix #231: report percentage of 100% should always report This also updates the RateLimited CSPMiddleware to remove both `report-uri` and `report-to` directives based on report percentage. 2024-07-10 01:57:41 +03:00			`"report-uri": None,`
			`"report-to": None,`
			`}`
refactor(middleware): Refactor internals of CSPMiddleware so that it's easier to extend existing logic without copy/pasting it into subclass 2024-07-10 14:26:32 +03:00			`else:`
			`policy_parts.replace.update(`
			`{`
			`"report-uri": None,`
			`"report-to": None,`
			`}`
			`)`

			`return policy_parts`