etesync-server/django_etesync/models.py

# Copyright © 2017 Tom Hacohen
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU Affero General Public License as
# published by the Free Software Foundation, version 3.
#
# This library is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.

from pathlib import Path

from django.db import models
from django.conf import settings
from django.core.validators import RegexValidator
from django.utils.functional import cached_property


Base64Url256BitValidator = RegexValidator(regex=r'^[a-zA-Z0-9\-_]{43}$', message='Expected a 256bit base64url.')
UidValidator = RegexValidator(regex=r'[a-zA-Z0-9]', message='Not a valid UID')


class Collection(models.Model):
    uid = models.CharField(db_index=True, blank=False, null=False,
                           max_length=44, validators=[UidValidator])
    version = models.PositiveSmallIntegerField()
    owner = models.ForeignKey(settings.AUTH_USER_MODEL, on_delete=models.CASCADE)

    class Meta:
        unique_together = ('uid', 'owner')

    def __str__(self):
        return self.uid

    @cached_property
    def main_item(self):
        return self.items.get(uid=None)

    @cached_property
    def content(self):
        return self.main_item.content

    @cached_property
    def stoken(self):
        return self.main_item.stoken

    @cached_property
    def cstoken(self):
        last_revision = CollectionItemRevision.objects.filter(item__collection=self).last()
        if last_revision is None:
            # FIXME: what is the etag for None? Though if we use the revision for collection it should be shared anyway.
            return None

        return last_revision.uid


class CollectionItem(models.Model):
    uid = models.CharField(db_index=True, blank=False, null=True,
                           max_length=44, validators=[UidValidator])
    collection = models.ForeignKey(Collection, related_name='items', on_delete=models.CASCADE)
    version = models.PositiveSmallIntegerField()
    encryptionKey = models.BinaryField(editable=True, blank=False, null=True)

    class Meta:
        unique_together = ('uid', 'collection')

    def __str__(self):
        return '{} {}'.format(self.uid, self.collection.uid)

    @cached_property
    def content(self):
        return self.revisions.get(current=True)

    @cached_property
    def stoken(self):
        return self.content.uid


def chunk_directory_path(instance, filename):
    item = instance.item
    col = item.collection
    user_id = col.owner.id
    item_uid = item.uid or 'main'
    return Path('user_{}'.format(user_id), col.uid, item_uid, instance.uid)


class CollectionItemChunk(models.Model):
    uid = models.CharField(db_index=True, blank=False, null=False,
                           max_length=44, validators=[Base64Url256BitValidator])
    item = models.ForeignKey(CollectionItem, related_name='chunks', on_delete=models.CASCADE)
    chunkFile = models.FileField(upload_to=chunk_directory_path, max_length=150, unique=True)

    def __str__(self):
        return self.uid


class CollectionItemRevision(models.Model):
    uid = models.CharField(db_index=True, unique=True, blank=False, null=False,
                           max_length=44, validators=[Base64Url256BitValidator])
    item = models.ForeignKey(CollectionItem, related_name='revisions', on_delete=models.CASCADE)
    meta = models.BinaryField(editable=True, blank=False, null=False)
    current = models.BooleanField(db_index=True, default=True, null=True)
    deleted = models.BooleanField(default=False)

    class Meta:
        unique_together = ('item', 'current')

    def __str__(self):
        return '{} {} current={}'.format(self.uid, self.item.uid, self.current)


class RevisionChunkRelation(models.Model):
    chunk = models.ForeignKey(CollectionItemChunk, related_name='revisions_relation', on_delete=models.CASCADE)
    revision = models.ForeignKey(CollectionItemRevision, related_name='chunks_relation', on_delete=models.CASCADE)

    class Meta:
        ordering = ('id', )


class AccessLevels(models.TextChoices):
    ADMIN = 'adm'
    READ_WRITE = 'rw'
    READ_ONLY = 'ro'


class CollectionMember(models.Model):
    collection = models.ForeignKey(Collection, related_name='members', on_delete=models.CASCADE)
    user = models.ForeignKey(settings.AUTH_USER_MODEL, on_delete=models.CASCADE)
    encryptionKey = models.BinaryField(editable=True, blank=False, null=False)
    accessLevel = models.CharField(
        max_length=3,
        choices=AccessLevels.choices,
        default=AccessLevels.READ_ONLY,
    )

    class Meta:
        unique_together = ('user', 'collection')

    def __str__(self):
        return '{} {}'.format(self.collection.uid, self.user)


class CollectionInvitation(models.Model):
    uid = models.CharField(db_index=True, blank=False, null=False,
                           max_length=44, validators=[Base64Url256BitValidator])
    version = models.PositiveSmallIntegerField(default=1)
    fromMember = models.ForeignKey(CollectionMember, on_delete=models.CASCADE)
    # FIXME: make sure to delete all invitations for the same collection once one is accepted
    # Make sure to not allow invitations if already a member

    user = models.ForeignKey(settings.AUTH_USER_MODEL, related_name='incoming_invitations', on_delete=models.CASCADE)
    signedEncryptionKey = models.BinaryField(editable=False, blank=False, null=False)
    accessLevel = models.CharField(
        max_length=3,
        choices=AccessLevels.choices,
        default=AccessLevels.READ_ONLY,
    )

    class Meta:
        unique_together = ('user', 'fromMember')

    def __str__(self):
        return '{} {}'.format(self.fromMember.collection.uid, self.user)

    @cached_property
    def collection(self):
        return self.fromMember.collection


class UserInfo(models.Model):
    owner = models.OneToOneField(settings.AUTH_USER_MODEL, on_delete=models.CASCADE, primary_key=True)
    version = models.PositiveSmallIntegerField(default=1)
    loginPubkey = models.BinaryField(editable=True, blank=False, null=False)
    pubkey = models.BinaryField(editable=True, blank=False, null=False)
    encryptedSeckey = models.BinaryField(editable=True, blank=False, null=False)
    salt = models.BinaryField(editable=True, blank=False, null=False)

    def __str__(self):
        return "UserInfo<{}>".format(self.owner)
Create the django_etesync app. 2020-02-19 18:53:43 +00:00			`# Copyright © 2017 Tom Hacohen`
			`#`
			`# This program is free software: you can redistribute it and/or modify`
			`# it under the terms of the GNU Affero General Public License as`
			`# published by the Free Software Foundation, version 3.`
			`#`
			`# This library is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with this program. If not, see <http://www.gnu.org/licenses/>.`

Merge item snapshot and item to be one model. 2020-02-20 10:02:59 +00:00			`from pathlib import Path`

Create new django project. 2020-02-19 12:55:56 +00:00			`from django.db import models`
Create the django_etesync app. 2020-02-19 18:53:43 +00:00			`from django.conf import settings`
			`from django.core.validators import RegexValidator`
			`from django.utils.functional import cached_property`


We use base64url without padding. 2020-03-17 15:10:53 +00:00			`Base64Url256BitValidator = RegexValidator(regex=r'^[a-zA-Z0-9\-_]{43}$', message='Expected a 256bit base64url.')`
Uids: change uids to be much shorter and base62 for non-chunks. 2020-03-10 14:40:42 +00:00			`UidValidator = RegexValidator(regex=r'[a-zA-Z0-9]', message='Not a valid UID')`
Create the django_etesync app. 2020-02-19 18:53:43 +00:00

			`class Collection(models.Model):`
			`uid = models.CharField(db_index=True, blank=False, null=False,`
			`max_length=44, validators=[UidValidator])`
			`version = models.PositiveSmallIntegerField()`
			`owner = models.ForeignKey(settings.AUTH_USER_MODEL, on_delete=models.CASCADE)`

			`class Meta:`
			`unique_together = ('uid', 'owner')`

			`def __str__(self):`
			`return self.uid`

Collection remove the redundant mainItem model attr. 2020-04-16 08:28:49 +00:00			`@cached_property`
			`def main_item(self):`
			`return self.items.get(uid=None)`

Collection: add content support. 2020-03-12 19:02:27 +00:00			`@cached_property`
			`def content(self):`
Collection remove the redundant mainItem model attr. 2020-04-16 08:28:49 +00:00			`return self.main_item.content`
Collection: add content support. 2020-03-12 19:02:27 +00:00
Collection: move stoken to the model. 2020-04-16 13:33:16 +00:00			`@cached_property`
			`def stoken(self):`
Collection: fix stoken and add cstoken for the collection token. 2020-05-19 12:33:10 +00:00			`return self.main_item.stoken`

			`@cached_property`
			`def cstoken(self):`
Collection: move stoken to the model. 2020-04-16 13:33:16 +00:00			`last_revision = CollectionItemRevision.objects.filter(item__collection=self).last()`
			`if last_revision is None:`
			`# FIXME: what is the etag for None? Though if we use the revision for collection it should be shared anyway.`
			`return None`

			`return last_revision.uid`

More progress. 2020-02-20 11:56:16 +00:00
Create the django_etesync app. 2020-02-19 18:53:43 +00:00			`class CollectionItem(models.Model):`
Collection: add content support. 2020-03-12 19:02:27 +00:00			`uid = models.CharField(db_index=True, blank=False, null=True,`
Create the django_etesync app. 2020-02-19 18:53:43 +00:00			`max_length=44, validators=[UidValidator])`
Merge item snapshot and item to be one model. 2020-02-20 10:02:59 +00:00			`collection = models.ForeignKey(Collection, related_name='items', on_delete=models.CASCADE)`
CollectionItem: move version and encryption key to the item itself. 2020-03-10 15:49:23 +00:00			`version = models.PositiveSmallIntegerField()`
Collection: add content support. 2020-03-12 19:02:27 +00:00			`encryptionKey = models.BinaryField(editable=True, blank=False, null=True)`
Create the django_etesync app. 2020-02-19 18:53:43 +00:00
			`class Meta:`
			`unique_together = ('uid', 'collection')`

			`def __str__(self):`
Collection: add content support. 2020-03-12 19:02:27 +00:00			`return '{} {}'.format(self.uid, self.collection.uid)`
Create the django_etesync app. 2020-02-19 18:53:43 +00:00
More progress. 2020-02-20 11:56:16 +00:00			`@cached_property`
			`def content(self):`
Rename Snapshot to Revision 2020-02-20 20:41:39 +00:00			`return self.revisions.get(current=True)`
Create the django_etesync app. 2020-02-19 18:53:43 +00:00
Collection items: add a transaction endpoint. 2020-04-19 14:32:40 +00:00			`@cached_property`
			`def stoken(self):`
			`return self.content.uid`

Create the django_etesync app. 2020-02-19 18:53:43 +00:00
More progress - support chunk uploading. 2020-02-20 12:42:35 +00:00			`def chunk_directory_path(instance, filename):`
			`item = instance.item`
			`col = item.collection`
			`user_id = col.owner.id`
Chunk: fix for a collection's main item. 2020-04-15 13:52:36 +00:00			`item_uid = item.uid or 'main'`
			`return Path('user_{}'.format(user_id), col.uid, item_uid, instance.uid)`
More progress - support chunk uploading. 2020-02-20 12:42:35 +00:00

Create the django_etesync app. 2020-02-19 18:53:43 +00:00			`class CollectionItemChunk(models.Model):`
			`uid = models.CharField(db_index=True, blank=False, null=False,`
Uids: change uids to be much shorter and base62 for non-chunks. 2020-03-10 14:40:42 +00:00			`max_length=44, validators=[Base64Url256BitValidator])`
More progress. 2020-02-20 11:56:16 +00:00			`item = models.ForeignKey(CollectionItem, related_name='chunks', on_delete=models.CASCADE)`
Make sure we don't upload the same file twice. 2020-02-20 12:48:19 +00:00			`chunkFile = models.FileField(upload_to=chunk_directory_path, max_length=150, unique=True)`
Create the django_etesync app. 2020-02-19 18:53:43 +00:00
			`def __str__(self):`
			`return self.uid`
More progress. 2020-02-20 11:56:16 +00:00

Rename Snapshot to Revision 2020-02-20 20:41:39 +00:00			`class CollectionItemRevision(models.Model):`
Revision: add a proper uid for revisions (which we also use for sync tag). 2020-03-12 13:52:36 +00:00			`uid = models.CharField(db_index=True, unique=True, blank=False, null=False,`
Revision uid is now the hmac. 2020-03-17 15:13:47 +00:00			`max_length=44, validators=[Base64Url256BitValidator])`
Rename Snapshot to Revision 2020-02-20 20:41:39 +00:00			`item = models.ForeignKey(CollectionItem, related_name='revisions', on_delete=models.CASCADE)`
Make meta not-null. 2020-03-17 20:10:33 +00:00			`meta = models.BinaryField(editable=True, blank=False, null=False)`
Collection Item Revision: dissalow blank for the current field. 2020-02-26 18:04:26 +00:00			`current = models.BooleanField(db_index=True, default=True, null=True)`
Collection item: rename isDeletion to deleted 2020-02-26 14:55:47 +00:00			`deleted = models.BooleanField(default=False)`
More progress. 2020-02-20 11:56:16 +00:00
			`class Meta:`
			`unique_together = ('item', 'current')`

			`def __str__(self):`
Revision: add a proper uid for revisions (which we also use for sync tag). 2020-03-12 13:52:36 +00:00			`return '{} {} current={}'.format(self.uid, self.item.uid, self.current)`
Collection: implement collection membership. 2020-02-26 18:38:07 +00:00

Change how we handle chunk ordering (and relation). 2020-04-15 14:35:51 +00:00			`class RevisionChunkRelation(models.Model):`
			`chunk = models.ForeignKey(CollectionItemChunk, related_name='revisions_relation', on_delete=models.CASCADE)`
			`revision = models.ForeignKey(CollectionItemRevision, related_name='chunks_relation', on_delete=models.CASCADE)`

			`class Meta:`
			`ordering = ('id', )`


Add a viewset to control collection membership. 2020-05-20 10:48:46 +00:00			`class AccessLevels(models.TextChoices):`
			`ADMIN = 'adm'`
			`READ_WRITE = 'rw'`
			`READ_ONLY = 'ro'`

Collection: implement collection membership. 2020-02-26 18:38:07 +00:00
Add a viewset to control collection membership. 2020-05-20 10:48:46 +00:00			`class CollectionMember(models.Model):`
Collection: implement collection membership. 2020-02-26 18:38:07 +00:00			`collection = models.ForeignKey(Collection, related_name='members', on_delete=models.CASCADE)`
			`user = models.ForeignKey(settings.AUTH_USER_MODEL, on_delete=models.CASCADE)`
			`encryptionKey = models.BinaryField(editable=True, blank=False, null=False)`
			`accessLevel = models.CharField(`
			`max_length=3,`
			`choices=AccessLevels.choices,`
			`default=AccessLevels.READ_ONLY,`
			`)`

			`class Meta:`
			`unique_together = ('user', 'collection')`

			`def __str__(self):`
			`return '{} {}'.format(self.collection.uid, self.user)`
Implement a ZKPP login flow. 2020-05-14 10:43:49 +00:00

Collection invitation: implement creating and manipulating collections invitations. 2020-05-20 11:30:09 +00:00			`class CollectionInvitation(models.Model):`
			`uid = models.CharField(db_index=True, blank=False, null=False,`
			`max_length=44, validators=[Base64Url256BitValidator])`
			`version = models.PositiveSmallIntegerField(default=1)`
			`fromMember = models.ForeignKey(CollectionMember, on_delete=models.CASCADE)`
			`# FIXME: make sure to delete all invitations for the same collection once one is accepted`
Incoming invitations: implement incoming invitations and accepting them 2020-05-20 12:15:24 +00:00			`# Make sure to not allow invitations if already a member`
Collection invitation: implement creating and manipulating collections invitations. 2020-05-20 11:30:09 +00:00
			`user = models.ForeignKey(settings.AUTH_USER_MODEL, related_name='incoming_invitations', on_delete=models.CASCADE)`
			`signedEncryptionKey = models.BinaryField(editable=False, blank=False, null=False)`
			`accessLevel = models.CharField(`
			`max_length=3,`
			`choices=AccessLevels.choices,`
			`default=AccessLevels.READ_ONLY,`
			`)`

			`class Meta:`
			`unique_together = ('user', 'fromMember')`

			`def __str__(self):`
			`return '{} {}'.format(self.fromMember.collection.uid, self.user)`

Incoming invitations: implement incoming invitations and accepting them 2020-05-20 12:15:24 +00:00			`@cached_property`
			`def collection(self):`
			`return self.fromMember.collection`

Collection invitation: implement creating and manipulating collections invitations. 2020-05-20 11:30:09 +00:00
Implement a ZKPP login flow. 2020-05-14 10:43:49 +00:00			`class UserInfo(models.Model):`
			`owner = models.OneToOneField(settings.AUTH_USER_MODEL, on_delete=models.CASCADE, primary_key=True)`
			`version = models.PositiveSmallIntegerField(default=1)`
Rename pubkey to loginPubkey because we'll soon have another pubkey. This breaks sharing because we no longer have a normal pubkey. This will be fixed in the next commit. 2020-05-26 10:23:45 +00:00			`loginPubkey = models.BinaryField(editable=True, blank=False, null=False)`
Add a separate pubkey/privatekey for sharing. It's separated from the login one so that encryption key and identity can be rotated separately. 2020-05-26 10:44:40 +00:00			`pubkey = models.BinaryField(editable=True, blank=False, null=False)`
			`encryptedSeckey = models.BinaryField(editable=True, blank=False, null=False)`
Implement a ZKPP login flow. 2020-05-14 10:43:49 +00:00			`salt = models.BinaryField(editable=True, blank=False, null=False)`

			`def __str__(self):`
			`return "UserInfo<{}>".format(self.owner)`