pulumi-django-azure 1.0.28__py3-none-any.whl → 1.0.59__py3-none-any.whl

pulumi_django_azure/__init__.py

@@ -1,2 +0,0 @@
-from . import settings  # noqa: F401
-from .django_deployment import DjangoDeployment, HostDefinition  # noqa: F401

pulumi_django_azure/azure_helper.py

@@ -4,21 +4,22 @@ import logging
 import os
 import time
 from dataclasses import dataclass
+from enum import Enum
 from subprocess import check_output
 
 from azure.identity import DefaultAzureCredential
 from azure.mgmt.resource import SubscriptionClient
 from azure.mgmt.resource.subscriptions.models import Subscription
 
-_redis_token_cache = None
-_database_token_cache = None
-
 logger = logging.getLogger("pulumi_django_azure.azure_helper")
 
 
 # Azure credentials
 AZURE_CREDENTIAL = DefaultAzureCredential()
 
+# Buffer for token expiration (5 minutes)
+TOKEN_EXPIRATION_BUFFER = 300
+
 # Get the local IP addresses of the machine (only when runnig on Azure)
 if os.environ.get("IS_AZURE_ENVIRONMENT"):
     LOCAL_IP_ADDRESSES = check_output(["hostname", "--all-ip-addresses"]).decode("utf-8").strip().split(" ")
@@ -26,30 +27,42 @@ else:
     LOCAL_IP_ADDRESSES = []
 
 
-def get_db_password() -> str:
+class TokenType(Enum):
+    DATABASE = "https://ossrdbms-aad.database.windows.net/.default"
+    REDIS = "https://redis.azure.com/.default"
+
+
+def _get_azure_token(type: TokenType) -> str:
     """
-    Get a valid password for the database.
+    Get a valid token for the given scope.
     """
-    global _database_token_cache
-    _database_token_cache = AZURE_CREDENTIAL.get_token("https://ossrdbms-aad.database.windows.net/.default")
+    global AZURE_CREDENTIAL
 
-    logger.debug("New database token: %s", _database_token_cache)
+    token = AZURE_CREDENTIAL.get_token(type.value)
 
-    return _database_token_cache.token
+    if token.expires_on < time.time() + TOKEN_EXPIRATION_BUFFER:
+        # We received an expired or nearly expired token from the API. Force a new token by creating a new instance of the credential.
+        logger.debug(
+            "Received an expired or nearly expired %s token (current time: %s, token expiration: %s)."
+            "Creating a new instance of the credential.",
+            type.name,
+            time.time(),
+            token.expires_on,
+        )
 
+        AZURE_CREDENTIAL = DefaultAzureCredential()
+        token = AZURE_CREDENTIAL.get_token(type.value)
 
-def db_token_will_expire(treshold=300) -> bool:
-    """
-    Check if the database token will expire in the next treshold seconds.
-    """
-    # If the token is not cached, we consider it expired (so a new one will be fetched)
-    if _database_token_cache is None:
-        return True
+        logger.debug("New %s token (try 2): %s", type.name, token)
 
-    logger.debug("Database token expires on: %s", _database_token_cache.expires_on)
+    return token.token
 
-    # If the token is cached, check if it will expire in the next treshold seconds
-    return _database_token_cache.expires_on - time.time() < treshold
+
+def get_db_password() -> str:
+    """
+    Get a valid password for the database.
+    """
+    return _get_azure_token(TokenType.DATABASE)
 
 
 @dataclass
@@ -62,28 +75,9 @@ def get_redis_credentials() -> RedisCredentials:
     """
     Get valid credentials for the Redis cache.
     """
-    global _redis_token_cache
-    _redis_token_cache = AZURE_CREDENTIAL.get_token("https://redis.azure.com/.default")
-
-    t = _redis_token_cache.token
-
-    logger.debug("New Redis token: %s", _redis_token_cache)
-
-    return RedisCredentials(_extract_username_from_token(t), t)
-
-
-def redis_token_will_expire(treshold=300) -> bool:
-    """
-    Check if the Redis token will expire in the next treshold seconds.
-    """
-    # If the token is not cached, we consider it expired (so a new one will be fetched)
-    if _redis_token_cache is None:
-        return True
-
-    logger.debug("Redis token expires on: %s", _redis_token_cache.expires_on)
+    token = _get_azure_token(TokenType.REDIS)
 
-    # If the token is cached, check if it will expire in the next treshold seconds
-    return _redis_token_cache.expires_on - time.time() < treshold
+    return RedisCredentials(_extract_username_from_token(token), token)
 
 
 def get_subscription() -> Subscription:

pulumi_django_azure/context_processors.py

@@ -0,0 +1,42 @@
+import hashlib
+import json
+import os
+from datetime import datetime
+
+from django.conf import settings
+
+_build_info_cache = None
+
+
+def add_build_info(request):
+    if settings.DEBUG:
+        # Generate SHA-1 hash from current timestamp
+        timestamp = str(datetime.now().timestamp()).encode("utf-8")
+        dev_hash = hashlib.sha1(timestamp).hexdigest()
+        return {
+            "build_info": {
+                "commit": dev_hash,
+                "date": datetime.now(),
+            }
+        }
+
+    global _build_info_cache
+
+    if _build_info_cache is None:
+        path = settings.BASE_DIR / "build-info.json"
+
+        if os.path.exists(path):
+            with open(path) as f:
+                build_info = json.load(f)
+
+                _build_info_cache = {
+                    "build_info": {
+                        "commit": build_info["commit"],
+                        "date": datetime.fromisoformat(build_info["date"]),
+                    }
+                }
+        else:
+            # No build info available
+            _build_info_cache = {}
+
+    return _build_info_cache