[Fixes #14245] Management command to clear GWC cache

[nrjadkry]

Fixes #14245

Checklist

Reviewing is a process done by project maintainers, mostly on a volunteer basis. We try to keep the overhead as small as possible and appreciate if you help us to do so by completing the following items. Feel free to ask in a comment if you have troubles with any of them.

For all pull requests:

• Confirm you have read the contribution guidelines
• You have sent a Contribution Licence Agreement (CLA) as necessary (not required for small changes, e.g., fixing typos in the documentation)
• Make sure the first PR targets the master branch, eventual backports will be managed later. This can be ignored if the PR is fixing an issue that only happens in a specific branch, but not in newer ones.

The following are required only for core and extension modules (they are welcomed, but not required, for contrib modules):

• There is a ticket in https://github.com/GeoNode/geonode/issues describing the issue/improvement/feature (a notable exemption is, changes not visible to end-users)
• The issue connected to the PR must have Labels and Milestone assigned
• PR for bug fixes and small new features are presented as a single commit
• PR title must be in the form "[Fixes #<issue_number>] Title of the PR"
• New unit tests have been added covering the changes, unless there is an explanation on why the tests are not necessary/implemented

Submitting the PR does not require you to check all items, but by the time it gets merged, they should be either satisfied or inapplicable.

[gemini-code-assist]

Code Review

This pull request introduces a new Django management command gwc with a truncate subcommand to clear GeoWebCache (GWC) for specific layers or all layers. The implementation includes the command structure, the core truncation logic, and unit tests. A significant security vulnerability was identified in the truncate_layers function, where unescaped layer names could lead to XML injection. It is recommended to refactor this function to escape user input and improve error handling for failed API requests.

[gemini-code-assist]

The truncate_layers function calls _invalidate_geowebcache_dataset, which has two issues:

1. XML Injection Vulnerability: It constructs XML via f-string without escaping user-provided layer names. This could allow a malicious layer name to alter the request and perform unintended actions, like truncating all caches.

2. Insufficient Error Handling: It logs failed requests (non-200 status) at the debug level and doesn't raise an exception. This means failures will not be clearly reported.

To address this, I suggest rewriting truncate_layers to handle the API call directly. This allows for proper XML escaping and better error reporting, making the command more secure and reliable.

Note: This change will require updating the mock path in test_truncate_layer_calls_api in geonode/geoserver/tests/test_gwc.py.

from xml.sax.saxutils import escape

from geonode.geoserver.helpers import ogc_server_settings, _user, http_client

logger = setup_logger()


def truncate_layers(layer_names):
    """Truncates one or more specified layers in GWC."""
    logger.info(f"Truncating layers in GWC: {', '.join(layer_names)}")

    url = f"{ogc_server_settings.LOCATION}gwc/rest/masstruncate"
    headers = {"Content-Type": "text/xml"}

    for layer_name in layer_names:
        try:
            logger.info(f"Truncating layer: {layer_name}")
            body = f"<truncateLayer><layerName>{escape(layer_name)}</layerName></truncateLayer>"
            req, content = http_client.post(url, data=body, headers=headers, user=_user)
            if req.status_code != 200:
                logger.error(f"Error {req.status_code} invalidating cache for layer {layer_name}: {content}")
        except Exception as e:
            logger.error(f"Error invalidating cache for layer {layer_name}: {e}")

[codecov]

Codecov Report

❌ Patch coverage is 88.29787% with 11 lines in your changes missing coverage. Please review.
✅ Project coverage is 44.05%. Comparing base (91c4ec5) to head (010cdbe).
⚠️ Report is 3 commits behind head on master.

❗ There is a different number of reports uploaded between BASE (91c4ec5) and HEAD (010cdbe). Click for more details.

HEAD has 2 uploads less than BASE

Flag	BASE (91c4ec5)	HEAD (010cdbe)
	7	5

Additional details and impacted files

@@             Coverage Diff             @@
##           master   #14246       +/-   ##
===========================================
- Coverage   74.92%   44.05%   -30.88%     
===========================================
  Files         975      978        +3     
  Lines       59902    59996       +94     
  Branches     8157     8170       +13     
===========================================
- Hits        44884    26429    -18455     
- Misses      13194    32270    +19076     
+ Partials     1824     1297      -527     

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.