feat: 为rdp 添加一个api

2025-10-22 00:09:14 +00:00 · 2021-02-23 14:37:42 +08:00
parent 9be3cbb936
commit bb9790a50f
12 changed files with 290 additions and 91 deletions
--- a/apps/perms/utils/application/permission.py
+++ b/apps/perms/utils/application/permission.py
@@ -7,8 +7,14 @@ logger = get_logger(__file__)


 def get_application_system_users_id(user, application):
-    queryset = ApplicationPermission.objects\
-        .filter(Q(users=user) | Q(user_groups__users=user), Q(applications=application))\
-        .valid()\
-        .values_list('system_users', flat=True)
+    queryset = ApplicationPermission.objects.valid()\
+        .filter(
+            Q(users=user) | Q(user_groups__users=user),
+            Q(applications=application)
+        ).values_list('system_users', flat=True)
    return queryset
+
+
+def has_application_system_permission(user, application, system_user):
+    system_users_id = get_application_system_users_id(user, application)
+    return system_user.id in system_users_id
--- a/apps/perms/utils/asset/permission.py
+++ b/apps/perms/utils/asset/permission.py
@@ -4,7 +4,7 @@ from django.db.models import Q

 from common.utils import get_logger
 from perms.models import AssetPermission
-from perms.hands import Asset, User, UserGroup
+from perms.hands import Asset, User, UserGroup, SystemUser
 from perms.models.base import BasePermissionQuerySet

 logger = get_logger(__file__)
@@ -19,10 +19,8 @@ def get_asset_system_users_id_with_actions(asset_perm_queryset: BasePermissionQu
        ancestor_keys = node.get_ancestor_keys(with_self=True)
        node_keys.update(ancestor_keys)

-    queryset = AssetPermission.objects.filter(id__in=asset_perms_id).filter(
-        Q(assets=asset) |
-        Q(nodes__key__in=node_keys)
-    )
+    queryset = AssetPermission.objects.filter(id__in=asset_perms_id)\
+        .filter(Q(assets=asset) | Q(nodes__key__in=node_keys))

    asset_protocols = asset.protocols_as_dict.keys()
    values = queryset.filter(
@@ -44,8 +42,14 @@ def get_asset_system_users_id_with_actions_by_user(user: User, asset: Asset):
    return get_asset_system_users_id_with_actions(queryset, asset)


+def has_asset_system_permission(user: User, asset: Asset, system_user: SystemUser):
+    systemuser_actions_mapper = get_asset_system_users_id_with_actions_by_user(user, asset)
+    actions = systemuser_actions_mapper.get(system_user.id, [])
+    if actions:
+        return True
+    return False
+
+
 def get_asset_system_users_id_with_actions_by_group(group: UserGroup, asset: Asset):
-    queryset = AssetPermission.objects.filter(
-        user_groups=group
-    ).valid()
+    queryset = AssetPermission.objects.filter(user_groups=group).valid()
    return get_asset_system_users_id_with_actions(queryset, asset)