mirror of
https://github.com/jumpserver/jumpserver.git
synced 2025-05-09 00:26:49 +00:00
3f4141ca0b
* perf: change i18n
* perf: pam
* perf: change translate
* perf: add check account
* perf: add date field
* perf: add account filter
* perf: remove some js
* perf: add account status action
* perf: update pam
* perf: 修改 discover account
* perf: update filter
* perf: update gathered account
* perf: 修改账号同步
* perf: squash migrations
* perf: update pam
* perf: change i18n
* perf: update account risk
* perf: 更新风险发现
* perf: remove css
* perf: Admin connection token
* perf: Add a switch to check connectivity after changing the password, and add a custom ssh command for push tasks
* perf: Modify account migration files
* perf: update pam
* perf: remove to check account dir
* perf: Admin connection token
* perf: update check account
* perf: 优化发送结果
* perf: update pam
* perf: update bulk update create
* perf: prepaire using thread timer for bulk_create_decorator
* perf: update bulk create decorator
* perf: 优化 playbook manager
* perf: 优化收集账号的报表
* perf: Update poetry
* perf: Update Dockerfile with new base image tag
* fix: Account migrate 0012 file
* perf: 修改备份
* perf: update pam
* fix: Expand resource_type filter to include raw type
* feat: PAM Service (#14552)
* feat: PAM Service
* perf: import package name
---------
Co-authored-by: jiangweidong <1053570670@qq.com>
* perf: Change secret dashboard (#14551)
Co-authored-by: feng <1304903146@qq.com>
* perf: update migrations
* perf: 修改支持 pam
* perf: Change secret record table dashboard
* perf: update status
* fix: Automation send report
* perf: Change secret report
* feat: windows accounts gather
* perf: update change status
* perf: Account backup
* perf: Account backup report
* perf: Account migrate
* perf: update service to application
* perf: update migrations
* perf: update logo
* feat: oracle accounts gather (#14571)
* feat: oracle accounts gather
* feat: sqlserver accounts gather
* feat: postgresql accounts gather
* feat: mysql accounts gather
---------
Co-authored-by: wangruidong <940853815@qq.com>
* feat: mongodb accounts gather
* perf: Change secret
* perf: Migrate
* perf: Merge conflicting migration files
* perf: Change secret
* perf: Automation filter org
* perf: Account push
* perf: Random secret string
* perf: Enhance SQL query and update risk handling in accounts
* perf: Ticket filter assignee_id
* perf: 修改 account remote
* perf: 修改一些 adhoc 任务
* perf: Change secret
* perf: Remove push account extra api
* perf: update status
* perf: The entire organization can view activity log
* fix: risk field check
* perf: add account details api
* perf: add demo mode
* perf: Delete gather_account
* perf: Perfect solution to account version problem
* perf: Update status action to handle multiple accounts
* perf: Add GatherAccountDetailField and update serializers
* perf: Display account history in combination with password change records
* perf: Lina translate
* fix: Update mysql_filter to handle nested user info
* perf: Admin connection token validate_permission account
* perf: copy move account
* perf: account filter risk
* perf: account risk filter
* perf: Copy move account failed message
* fix: gather account sync account to asset
* perf: Pam dashboard
* perf: Account dashboard total accounts
* perf: Pam dashboard
* perf: Change secret filter account secret_reset
* perf: 修改 risk filter
* perf: pam translate
* feat: Check for leaked duplicate passwords. (#14711)
* feat: Check for leaked duplicate passwords.
* perf: Use SQLite instead of txt as leak password database
---------
Co-authored-by: jiangweidong <1053570670@qq.com>
Co-authored-by: 老广 <ibuler@qq.com>
* perf: merge with remote
* perf: Add risk change_password_add handle
* perf: Pam dashboard
* perf: check account manager import
* perf: 重构扫描
* perf: 修改 db
* perf: Gather account manager
* perf: update change db lib
* perf: dashboard
* perf: Account gather
* perf: 修改 asset get queryset
* perf: automation report
* perf: Pam account
* perf: Pam dashboard api
* perf: risk add account
* perf: 修改 risk check
* perf: Risk account
* perf: update risk add reopen action
* perf: add pylintrc
* Revert "perf: automation report"
This reverts commit 22aee54207.
* perf: check account engine
* perf: Perf: Optimism Gather Report Style
* Perf: Remove unuser actions
* Perf: Perf push account
* perf: perf gather account
* perf: Automation report
* perf: Push account recorder
* perf: Push account record
* perf: Pam dashboard
* perf: perf
* perf: update intergration
* perf: integrations application detail add account tab page
* feat: Custom change password supports configuration of interactive items
* perf: Go and Python demo code
* perf: Custom secret change
* perf: add user filter
* perf: translate
* perf: Add demo code docs
* perf: update some i18n
* perf: update some i18n
* perf: Add Java, Node, Go, and cURL demo code
* perf: Translate
* perf: Change secret translate
* perf: Translate
* perf: update some i18n
* perf: translate
* perf: Ansible playbook
* perf: update some choice
* perf: update some choice
* perf: update account serializer remote unused code
* perf: conflict
* perf: update import
---------
Co-authored-by: ibuler <ibuler@qq.com>
Co-authored-by: feng <1304903146@qq.com>
Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
Co-authored-by: wangruidong <940853815@qq.com>
Co-authored-by: jiangweidong <1053570670@qq.com>
Co-authored-by: feng626 <57284900+feng626@users.noreply.github.com>
Co-authored-by: zhaojisen <1301338853@qq.com>
223 lines
14 KiB
Python
223 lines
14 KiB
Python
# Generated by Django 4.1.13 on 2024-05-09 03:16
|
|
|
|
import uuid
|
|
|
|
import simple_history.models
|
|
from django.db import migrations, models
|
|
|
|
import common.db.encoder
|
|
import common.db.fields
|
|
|
|
|
|
class Migration(migrations.Migration):
|
|
initial = True
|
|
|
|
dependencies = [
|
|
]
|
|
|
|
operations = [
|
|
migrations.CreateModel(
|
|
name='Account',
|
|
fields=[
|
|
('created_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Created by')),
|
|
('updated_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Updated by')),
|
|
('date_created', models.DateTimeField(auto_now_add=True, null=True, verbose_name='Date created')),
|
|
('date_updated', models.DateTimeField(auto_now=True, verbose_name='Date updated')),
|
|
('comment', models.TextField(blank=True, default='', verbose_name='Comment')),
|
|
('id', models.UUIDField(default=uuid.uuid4, primary_key=True, serialize=False)),
|
|
('org_id',
|
|
models.CharField(blank=True, db_index=True, default='', max_length=36, verbose_name='Organization')),
|
|
('connectivity',
|
|
models.CharField(choices=[('-', 'Unknown'), ('ok', 'OK'), ('err', 'Error')], default='-',
|
|
max_length=16, verbose_name='Connectivity')),
|
|
('date_verified', models.DateTimeField(null=True, verbose_name='Date verified')),
|
|
('_secret', common.db.fields.EncryptTextField(blank=True, null=True, verbose_name='Secret')),
|
|
('name', models.CharField(max_length=128, verbose_name='Name')),
|
|
('username', models.CharField(blank=True, db_index=True, max_length=128, verbose_name='Username')),
|
|
('secret_type', models.CharField(
|
|
choices=[('password', 'Password'), ('ssh_key', 'SSH key'), ('access_key', 'Access key'),
|
|
('token', 'Token'), ('api_key', 'API key')], default='password', max_length=16,
|
|
verbose_name='Secret type')),
|
|
('privileged', models.BooleanField(default=False, verbose_name='Privileged')),
|
|
('is_active', models.BooleanField(default=True, verbose_name='Is active')),
|
|
('version', models.IntegerField(default=0, verbose_name='Version')),
|
|
('source', models.CharField(default='local', max_length=30, verbose_name='Source')),
|
|
('source_id', models.CharField(blank=True, max_length=128, null=True, verbose_name='Source ID')),
|
|
],
|
|
options={
|
|
'verbose_name': 'Account',
|
|
'permissions': [('view_accountsecret', 'Can view asset account secret'),
|
|
('view_historyaccount', 'Can view asset history account'),
|
|
('view_historyaccountsecret', 'Can view asset history account secret'),
|
|
('verify_account', 'Can verify account'), ('push_account', 'Can push account'),
|
|
('remove_account', 'Can remove account')],
|
|
},
|
|
),
|
|
migrations.CreateModel(
|
|
name='AccountBackupAutomation',
|
|
fields=[
|
|
('created_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Created by')),
|
|
('updated_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Updated by')),
|
|
('date_created', models.DateTimeField(auto_now_add=True, null=True, verbose_name='Date created')),
|
|
('date_updated', models.DateTimeField(auto_now=True, verbose_name='Date updated')),
|
|
('comment', models.TextField(blank=True, default='', verbose_name='Comment')),
|
|
('id', models.UUIDField(default=uuid.uuid4, primary_key=True, serialize=False)),
|
|
('org_id',
|
|
models.CharField(blank=True, db_index=True, default='', max_length=36, verbose_name='Organization')),
|
|
('name', models.CharField(max_length=128, verbose_name='Name')),
|
|
('is_periodic', models.BooleanField(default=False, verbose_name='Periodic run')),
|
|
('interval', models.IntegerField(blank=True, default=24, null=True, verbose_name='Interval')),
|
|
('crontab', models.CharField(blank=True, max_length=128, null=True, verbose_name='Crontab')),
|
|
('types', models.JSONField(default=list)),
|
|
('backup_type',
|
|
models.CharField(choices=[('email', 'Email'), ('object_storage', 'SFTP')], default='email',
|
|
max_length=128, verbose_name='Backup type')),
|
|
('is_password_divided_by_email', models.BooleanField(default=True, verbose_name='Password divided')),
|
|
('is_password_divided_by_obj_storage',
|
|
models.BooleanField(default=True, verbose_name='Password divided')),
|
|
('zip_encrypt_password', common.db.fields.EncryptCharField(blank=True, max_length=4096, null=True,
|
|
verbose_name='Zip encrypt password')),
|
|
],
|
|
options={
|
|
'verbose_name': 'Account backup plan',
|
|
'ordering': ['name'],
|
|
},
|
|
),
|
|
migrations.CreateModel(
|
|
name='AccountBackupExecution',
|
|
fields=[
|
|
('org_id',
|
|
models.CharField(blank=True, db_index=True, default='', max_length=36, verbose_name='Organization')),
|
|
('id', models.UUIDField(default=uuid.uuid4, primary_key=True, serialize=False)),
|
|
('date_start', models.DateTimeField(auto_now_add=True, verbose_name='Date start')),
|
|
('timedelta', models.FloatField(default=0.0, null=True, verbose_name='Time')),
|
|
('snapshot',
|
|
models.JSONField(blank=True, default=dict, encoder=common.db.encoder.ModelJSONFieldEncoder, null=True,
|
|
verbose_name='Account backup snapshot')),
|
|
('trigger', models.CharField(choices=[('manual', 'Manual'), ('timing', 'Timing')],
|
|
default='manual', max_length=128, verbose_name='Trigger mode')),
|
|
('reason', models.CharField(blank=True, max_length=1024, null=True, verbose_name='Reason')),
|
|
('is_success', models.BooleanField(default=False, verbose_name='Is success')),
|
|
],
|
|
options={
|
|
'verbose_name': 'Account backup execution',
|
|
'ordering': ('-date_start',),
|
|
},
|
|
),
|
|
migrations.CreateModel(
|
|
name='AccountTemplate',
|
|
fields=[
|
|
('created_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Created by')),
|
|
('updated_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Updated by')),
|
|
('date_created', models.DateTimeField(auto_now_add=True, null=True, verbose_name='Date created')),
|
|
('date_updated', models.DateTimeField(auto_now=True, verbose_name='Date updated')),
|
|
('comment', models.TextField(blank=True, default='', verbose_name='Comment')),
|
|
('id', models.UUIDField(default=uuid.uuid4, primary_key=True, serialize=False)),
|
|
('org_id',
|
|
models.CharField(blank=True, db_index=True, default='', max_length=36, verbose_name='Organization')),
|
|
('_secret', common.db.fields.EncryptTextField(blank=True, null=True, verbose_name='Secret')),
|
|
('secret_strategy',
|
|
models.CharField(choices=[('specific', 'Specific secret'), ('random', 'Random generate')],
|
|
default='specific', max_length=16, verbose_name='Secret strategy')),
|
|
('password_rules', models.JSONField(default=dict, verbose_name='Password rules')),
|
|
('name', models.CharField(max_length=128, verbose_name='Name')),
|
|
('username', models.CharField(blank=True, db_index=True, max_length=128, verbose_name='Username')),
|
|
('secret_type', models.CharField(
|
|
choices=[('password', 'Password'), ('ssh_key', 'SSH key'), ('access_key', 'Access key'),
|
|
('token', 'Token'), ('api_key', 'API key')], default='password', max_length=16,
|
|
verbose_name='Secret type')),
|
|
('privileged', models.BooleanField(default=False, verbose_name='Privileged')),
|
|
('is_active', models.BooleanField(default=True, verbose_name='Is active')),
|
|
('auto_push', models.BooleanField(default=False, verbose_name='Auto push')),
|
|
('push_params', models.JSONField(default=dict, verbose_name='Push params')),
|
|
],
|
|
options={
|
|
'verbose_name': 'Account template',
|
|
'permissions': [('view_accounttemplatesecret', 'Can view asset account template secret')],
|
|
},
|
|
),
|
|
migrations.CreateModel(
|
|
name='ChangeSecretRecord',
|
|
fields=[
|
|
('created_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Created by')),
|
|
('updated_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Updated by')),
|
|
('date_created', models.DateTimeField(auto_now_add=True, null=True, verbose_name='Date created')),
|
|
('date_updated', models.DateTimeField(auto_now=True, verbose_name='Date updated')),
|
|
('comment', models.TextField(blank=True, default='', verbose_name='Comment')),
|
|
('id', models.UUIDField(default=uuid.uuid4, primary_key=True, serialize=False)),
|
|
('old_secret', common.db.fields.EncryptTextField(blank=True, null=True, verbose_name='Old secret')),
|
|
('new_secret', common.db.fields.EncryptTextField(blank=True, null=True, verbose_name='New secret')),
|
|
('date_started', models.DateTimeField(blank=True, null=True, verbose_name='Date started')),
|
|
('date_finished', models.DateTimeField(blank=True, null=True, verbose_name='Date finished')),
|
|
('status', models.CharField(default='pending', max_length=16, verbose_name='Status')),
|
|
('error', models.TextField(blank=True, null=True, verbose_name='Error')),
|
|
],
|
|
options={
|
|
'verbose_name': 'Change secret record',
|
|
'ordering': ('-date_created',),
|
|
},
|
|
),
|
|
migrations.CreateModel(
|
|
name='GatheredAccount',
|
|
fields=[
|
|
('created_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Created by')),
|
|
('updated_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Updated by')),
|
|
('date_created', models.DateTimeField(auto_now_add=True, null=True, verbose_name='Date created')),
|
|
('date_updated', models.DateTimeField(auto_now=True, verbose_name='Date updated')),
|
|
('comment', models.TextField(blank=True, default='', verbose_name='Comment')),
|
|
('id', models.UUIDField(default=uuid.uuid4, primary_key=True, serialize=False)),
|
|
('org_id',
|
|
models.CharField(blank=True, db_index=True, default='', max_length=36, verbose_name='Organization')),
|
|
('present', models.BooleanField(default=True, verbose_name='Remote present')),
|
|
('date_last_login', models.DateTimeField(null=True, verbose_name='Date login')),
|
|
('username', models.CharField(blank=True, db_index=True, max_length=32, verbose_name='Username')),
|
|
('address_last_login', models.CharField(default='', max_length=39, verbose_name='Address login')),
|
|
],
|
|
options={
|
|
'verbose_name': 'Gather asset accounts',
|
|
'ordering': ['asset'],
|
|
},
|
|
),
|
|
migrations.CreateModel(
|
|
name='HistoricalAccount',
|
|
fields=[
|
|
('id', models.UUIDField(db_index=True, default=uuid.uuid4)),
|
|
('_secret', common.db.fields.EncryptTextField(blank=True, null=True, verbose_name='Secret')),
|
|
('secret_type', models.CharField(
|
|
choices=[('password', 'Password'), ('ssh_key', 'SSH key'), ('access_key', 'Access key'),
|
|
('token', 'Token'), ('api_key', 'API key')], default='password', max_length=16,
|
|
verbose_name='Secret type')),
|
|
('version', models.IntegerField(default=0, verbose_name='Version')),
|
|
('history_id', models.AutoField(primary_key=True, serialize=False)),
|
|
('history_date', models.DateTimeField(db_index=True)),
|
|
('history_change_reason', models.CharField(max_length=100, null=True)),
|
|
('history_type',
|
|
models.CharField(choices=[('+', 'Created'), ('~', 'Changed'), ('-', 'Deleted')], max_length=1)),
|
|
],
|
|
options={
|
|
'verbose_name': 'historical Account',
|
|
'verbose_name_plural': 'historical Accounts',
|
|
'ordering': ('-history_date', '-history_id'),
|
|
'get_latest_by': ('history_date', 'history_id'),
|
|
},
|
|
bases=(simple_history.models.HistoricalChanges, models.Model),
|
|
),
|
|
migrations.CreateModel(
|
|
name='VirtualAccount',
|
|
fields=[
|
|
('created_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Created by')),
|
|
('updated_by', models.CharField(blank=True, max_length=128, null=True, verbose_name='Updated by')),
|
|
('date_created', models.DateTimeField(auto_now_add=True, null=True, verbose_name='Date created')),
|
|
('date_updated', models.DateTimeField(auto_now=True, verbose_name='Date updated')),
|
|
('id', models.UUIDField(default=uuid.uuid4, primary_key=True, serialize=False)),
|
|
('org_id',
|
|
models.CharField(blank=True, db_index=True, default='', max_length=36, verbose_name='Organization')),
|
|
('alias', models.CharField(
|
|
choices=[('@INPUT', 'Manual input'), ('@USER', 'Dynamic user'), ('@ANON', 'Anonymous account'),
|
|
('@SPEC', 'Specified account')], max_length=128, verbose_name='Alias')),
|
|
('secret_from_login', models.BooleanField(default=None, null=True, verbose_name='Secret from login')),
|
|
],
|
|
options={'verbose_name': 'Virtual account'},
|
|
),
|
|
]
|