github/jumpserver
1
0
Fork 0
mirror of https://github.com/jumpserver/jumpserver.git synced 2025-09-24 04:50:30 +00:00
Code Issues Projects Releases Wiki Activity

fix: AK/SK remained valid after the user expired.

Browse Source
This commit is contained in:
Bai
2025-09-16 12:20:57 +08:00
committed by 老广
parent 93906dff0a
commit b15f663c87
2 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
apps/authentication/backends/drf.py
View File

@@ -136,7 +136,7 @@ class SignatureAuthentication(signature.SignatureAuthentication):
# example implementation: # example implementation:
try: try:
key = AccessKey.objects.get(id=key_id) key = AccessKey.objects.get(id=key_id)
if not key.is_active: if not key.is_valid:
return None, None return None, None
user, secret = key.user, str(key.secret) user, secret = key.user, str(key.secret)
after_authenticate_update_date(user, key) after_authenticate_update_date(user, key)

4
apps/authentication/models/access_key.py
View File

@@ -25,6 +25,10 @@ class AccessKey(models.Model):
date_last_used = models.DateTimeField(null=True, blank=True, verbose_name=_('Date last used')) date_last_used = models.DateTimeField(null=True, blank=True, verbose_name=_('Date last used'))
date_created = models.DateTimeField(auto_now_add=True) date_created = models.DateTimeField(auto_now_add=True)
@property
def is_valid(self):
return self.is_active and self.user.is_valid
def get_id(self): def get_id(self):
return str(self.id) return str(self.id)