From 6b56c43a3aeea404471eb33bfe86e52ef5ec3919 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 8 Aug 2019 13:03:03 +0800
Subject: [PATCH 1/3] =?UTF-8?q?[Update]=20=E6=8E=A7=E5=88=B6=E6=98=AF?=
 =?UTF-8?q?=E5=90=A6=E6=98=BE=E7=A4=BA=E6=9C=AA=E5=88=86=E7=BB=84=E8=8A=82?=
 =?UTF-8?q?=E7=82=B9?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/authentication/utils.py         |  2 +-
 apps/jumpserver/conf.py              |  1 +
 apps/jumpserver/settings.py          |  2 ++
 apps/perms/utils/asset_permission.py | 15 +++++++++++++++
 config_example.yml                   |  4 ++++
 5 files changed, 23 insertions(+), 1 deletion(-)

diff --git a/apps/authentication/utils.py b/apps/authentication/utils.py
index baf2fff31..d070c594c 100644
--- a/apps/authentication/utils.py
+++ b/apps/authentication/utils.py
@@ -7,7 +7,7 @@ from common.utils import get_ip_city, validate_ip
 def write_login_log(*args, **kwargs):
     from audits.models import UserLoginLog
     default_city = _("Unknown")
-    ip = kwargs.get('ip', '')
+    ip = kwargs.get('ip') or ''
     if not (ip and validate_ip(ip)):
         ip = ip[:15]
         city = default_city
diff --git a/apps/jumpserver/conf.py b/apps/jumpserver/conf.py
index a6ef66413..4f3c3992a 100644
--- a/apps/jumpserver/conf.py
+++ b/apps/jumpserver/conf.py
@@ -379,6 +379,7 @@ defaults = {
     'ASSETS_PERM_CACHE_TIME': 3600*24,
     'SECURITY_MFA_VERIFY_TTL': 3600,
     'ASSETS_PERM_CACHE_ENABLE': False,
+    'PERM_SINGLE_ASSET_TO_UNGROUP_NODE': False,
 }
 
 
diff --git a/apps/jumpserver/settings.py b/apps/jumpserver/settings.py
index ba2fd7884..6e726d938 100644
--- a/apps/jumpserver/settings.py
+++ b/apps/jumpserver/settings.py
@@ -615,3 +615,5 @@ ASSETS_PERM_CACHE_TIME = CONFIG.ASSETS_PERM_CACHE_TIME
 
 # Asset user auth external backend, default AuthBook backend
 BACKEND_ASSET_USER_AUTH_VAULT = False
+
+PERM_SINGLE_ASSET_TO_UNGROUP_NODE = CONFIG.PERM_SINGLE_ASSET_TO_UNGROUP_NODE
diff --git a/apps/perms/utils/asset_permission.py b/apps/perms/utils/asset_permission.py
index 9e5230894..e0070b5d9 100644
--- a/apps/perms/utils/asset_permission.py
+++ b/apps/perms/utils/asset_permission.py
@@ -180,6 +180,19 @@ class GenerateTree:
             assets.append({"id": asset_id, "system_users": system_users})
         return assets
 
+    def set_ungrouped_assets_nodes_if_need(self):
+        if settings.PERM_SINGLE_ASSET_TO_UNGROUP_NODE:
+            return
+        ungrouped_assets_ids = self.nodes[self.ungrouped_key]["assets"]
+        for asset_id in ungrouped_assets_ids:
+            in_nodes = self.all_assets_nodes_keys.get(asset_id, [])
+            for node_key in in_nodes:
+                parents_keys = self.node_util.get_nodes_parents_keys_by_key(node_key, with_self=False)
+                for parent_key in parents_keys:
+                    n = self.nodes[parent_key]
+                self.nodes[node_key]["assets"].add(asset_id)
+        self.nodes.pop(self.ungrouped_key, None)
+
     @timeit
     def get_nodes_with_assets(self):
         """
@@ -198,6 +211,7 @@ class GenerateTree:
         """
         if self._nodes_with_assets:
             return self._nodes_with_assets
+        self.set_ungrouped_assets_nodes_if_need()
         util = PermAssetsAmountUtil()
         nodes_with_assets_amount = util.compute_nodes_assets_amount(self.nodes)
         nodes = []
@@ -219,6 +233,7 @@ class GenerateTree:
         return nodes
 
     def get_nodes(self):
+        self.set_ungrouped_assets_nodes_if_need()
         nodes = list(self.nodes.keys())
         if not nodes:
             nodes.append(const.EMPTY_NODE_KEY)
diff --git a/config_example.yml b/config_example.yml
index 54706ca9f..0a80ab816 100644
--- a/config_example.yml
+++ b/config_example.yml
@@ -76,3 +76,7 @@ REDIS_PORT: 6379
 # OTP/MFA 配置
 # OTP_VALID_WINDOW: 0
 # OTP_ISSUER_NAME: Jumpserver
+
+# Perm show single asset to ungrouped node
+# 是否把未授权节点资产放入到 未分组 节点中
+# PERM_SINGLE_ASSET_TO_UNGROUP_NODE: false

From 53a5c538578c62bd2638af4514b1fc4234b90a76 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 8 Aug 2019 14:24:37 +0800
Subject: [PATCH 2/3] =?UTF-8?q?[Update]=20=E6=B7=BB=E5=8A=A0=E8=AE=BF?=
 =?UTF-8?q?=E9=97=AE=E6=95=B0=E9=87=8F?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 README.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.md b/README.md
index fd94280c8..2da3b3d22 100644
--- a/README.md
+++ b/README.md
@@ -1,5 +1,7 @@
 ## Jumpserver 多云环境下更好用的堡垒机
 
+![Total visitor](https://visitor-count-badge.herokuapp.com/total.svg?repo_id=jumpserver)
+![Visitors in today](https://visitor-count-badge.herokuapp.com/today.svg?repo_id=jumpserver)
 [![Python3](https://img.shields.io/badge/python-3.6-green.svg?style=plastic)](https://www.python.org/)
 [![Django](https://img.shields.io/badge/django-2.1-brightgreen.svg?style=plastic)](https://www.djangoproject.com/)
 [![Ansible](https://img.shields.io/badge/ansible-2.4.2.0-blue.svg?style=plastic)](https://www.ansible.com/)

From 0ee5d3b79f4c1a81febca8d5fa289e227b590ef0 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 8 Aug 2019 14:26:01 +0800
Subject: [PATCH 3/3] [Update] Add to english readme

---
 README_EN.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README_EN.md b/README_EN.md
index b861e873b..b7c3f8cc8 100644
--- a/README_EN.md
+++ b/README_EN.md
@@ -1,5 +1,7 @@
 ## Jumpserver 
 
+![Total visitor](https://visitor-count-badge.herokuapp.com/total.svg?repo_id=jumpserver)
+![Visitors in today](https://visitor-count-badge.herokuapp.com/today.svg?repo_id=jumpserver)
 [![Python3](https://img.shields.io/badge/python-3.6-green.svg?style=plastic)](https://www.python.org/)
 [![Django](https://img.shields.io/badge/django-2.1-brightgreen.svg?style=plastic)](https://www.djangoproject.com/)
 [![Ansible](https://img.shields.io/badge/ansible-2.4.2.0-blue.svg?style=plastic)](https://www.ansible.com/)