mirror of
https://github.com/jumpserver/jumpserver.git
synced 2025-09-27 15:54:14 +00:00
ec8dca90d6
* perf: 整合系统用户和管理用户 * stash stash perf: 优化系统用户和资产的表结构 * perf: 添加信号 * perf: 添加算法 * perf: 去掉 asset user backends * perf: 整理系统用户api * perfF: 暂存一下 * stash * perf: 暂存一下 * perf: 暂存 * xxx * perf: ... * stash it * xxx * xxx * xxx * xxx * xxx * stash it * 修改Protocols * perf: 修改创建authbook信号 * perf: 添加auth info * .stash * perf: 基本完成 * perf: 修复完成 * perf: 修复更改的id * perf: 修复迁移过去数量不对的问题 * perf: 修改systemuser * fix: 修复批量编辑近期的问题 * fix: 修复authbook加载的问题 * xxx Co-authored-by: ibuler <ibuler@qq.com>
61 lines
2.2 KiB
Python
61 lines
2.2 KiB
Python
# -*- coding: utf-8 -*-
|
|
#
|
|
|
|
from django.utils.translation import ugettext as _
|
|
from rest_framework import serializers
|
|
|
|
from common.utils import ssh_pubkey_gen, validate_ssh_private_key
|
|
|
|
|
|
class AuthSerializer(serializers.ModelSerializer):
|
|
password = serializers.CharField(required=False, allow_blank=True, allow_null=True, max_length=1024)
|
|
private_key = serializers.CharField(required=False, allow_blank=True, allow_null=True, max_length=4096)
|
|
|
|
def gen_keys(self, private_key=None, password=None):
|
|
if private_key is None:
|
|
return None, None
|
|
public_key = ssh_pubkey_gen(private_key=private_key, password=password)
|
|
return private_key, public_key
|
|
|
|
def save(self, **kwargs):
|
|
password = self.validated_data.pop('password', None) or None
|
|
private_key = self.validated_data.pop('private_key', None) or None
|
|
self.instance = super().save(**kwargs)
|
|
if password or private_key:
|
|
private_key, public_key = self.gen_keys(private_key, password)
|
|
self.instance.set_auth(password=password, private_key=private_key,
|
|
public_key=public_key)
|
|
return self.instance
|
|
|
|
|
|
class AuthSerializerMixin:
|
|
def validate_password(self, password):
|
|
return password
|
|
|
|
def validate_private_key(self, private_key):
|
|
if not private_key:
|
|
return
|
|
password = self.initial_data.get("password")
|
|
valid = validate_ssh_private_key(private_key, password)
|
|
if not valid:
|
|
raise serializers.ValidationError(_("private key invalid"))
|
|
return private_key
|
|
|
|
def validate_public_key(self, public_key):
|
|
return public_key
|
|
|
|
@staticmethod
|
|
def clean_auth_fields(validated_data):
|
|
for field in ('password', 'private_key', 'public_key'):
|
|
value = validated_data.get(field)
|
|
if not value:
|
|
validated_data.pop(field, None)
|
|
|
|
def create(self, validated_data):
|
|
self.clean_auth_fields(validated_data)
|
|
return super().create(validated_data)
|
|
|
|
def update(self, instance, validated_data):
|
|
self.clean_auth_fields(validated_data)
|
|
return super().update(instance, validated_data)
|