tcms/core/middleware.py
# pylint: disable=no-self-use, too-few-public-methods
from django.conf import settings
from django.contrib.sites.models import Site
from django.db.utils import OperationalError, ProgrammingError
from django.http import HttpResponseRedirect
from django.urls import reverse
from django.utils.deprecation import MiddlewareMixin
class CheckDBStructureExistsMiddleware(MiddlewareMixin):
def process_request(self, request):
if request.path == "/init-db/":
return None
try:
Site.objects.get(pk=settings.SITE_ID)
except (OperationalError, ProgrammingError):
# Redirect to Setup view
return HttpResponseRedirect(reverse("init-db"))
return None
class ExtraHeadersMiddleware(MiddlewareMixin):
"""
This is enabled only during testing and development. The actual headers
are configured in `etc/nginx.conf`!
"""
def process_response(self, request, response):
if settings.DEBUG:
response.headers["Content-Security-Policy"] = (
"script-src 'self' cdn.crowdin.com plausible.io;"
)
if request.path.find("/uploads/") > -1:
response.headers["Content-Type"] = "text/plain"
return response