mirror of
https://github.com/jumpserver/jumpserver.git
synced 2025-09-05 01:11:57 +00:00
1fd2e782f8
* [Update] 暂存,优化解决不了问题 * [Update] 待续(小白) * [Update] 修改asset user * [Update] 计划再次更改 * [Update] 修改asset user * [Update] 暂存与喜爱 * [Update] Add id in * [Update] 阶段性完成ops task该做 * [Update] 修改asset user api * [Update] 修改asset user 任务,查看认证等 * [Update] 基本完成asset user改造 * [Update] dynamic user only allow 1 * [Update] 修改asset user task * [Update] 修改node admin user task api * [Update] remove file header license * [Update] 添加sftp root * [Update] 暂存 * [Update] 暂存 * [Update] 修改翻译 * [Update] 修改系统用户改为同名后,用户名改为空 * [Update] 基本完成CAS调研 * [Update] 支持cas server * [Update] 支持cas server * [Update] 添加requirements * [Update] 为方便调试添加mysql ipython到包中 * [Update] 添加huaweiyun翻译 * [Update] 增加下载session 录像 * [Update] 只有第一次通知replay离线的使用方法 * [Update] 暂存一下 * [Bugfix] 获取系统用户信息报错 * [Bugfix] 修改system user info * [Update] 改成清理10天git status * [Update] 修改celery日志保留时间 * [Update]修复部分pip包依赖的版本不兼容问题 (#3672) * [Update] 修复用户更新页面会清空用户public_key的问题 * Fix broken dependencies Co-authored-by: BaiJiangJie <32935519+BaiJiangJie@users.noreply.github.com> * [Update] 修改获取系统用户auth info * [Update] Remove log * [Bugfix] 修复sftp home设置的bug * [Update] 授权的系统用户添加sftp root * [Update] 修改系统用户关联的用户 * [Update] 修改placeholder * [Update] 优化获取授权的系统用户 * [Update] 修改tasks * [Update] tree service update * [Update] 暂存 * [Update] 基本完成用户授权树和资产树改造 * [Update] Dashbaord perf * [update] Add huawei cloud sdk requirements * [Updte] 优化dashboard页面 * [Update] system user auth info 添加id * [Update] 修改系统用户serializer * [Update] 优化api * [Update] LDAP Test Util (#3720) * [Update] LDAPTestUtil 1 * [Update] LDAPTestUtil 2 * [Update] LDAPTestUtil 3 * [Update] LDAPTestUtil 4 * [Update] LDAPTestUtil 5 * [Update] LDAPTestUtil 6 * [Update] LDAPTestUtil 7 * [Update] session 已添加is success,并且添加display serializer * [Bugfix] 修复无法删除空节点的bug * [Update] 命令记录分组织显示 * [Update] Session is_success 添加迁移文件 * [Update] 批量命令添加org_id * [Update] 修复一些文案,修改不绑定MFA,不能ssh登录 * [Update] 修改replay api, 返回session信息 * [Update] 解决无效es导致访问命令记录页面失败的问题 * [Update] 拆分profile view * [Update] 修改一个翻译 * [Update] 修改aysnc api框架 * [Update] 命令列表添加risk level * [Update] 完成录像打包下载 * [Update] 更改登陆otp页面 * [Update] 修改command 存储redis_level * [Update] 修改翻译 * [Update] 修改系统用户的用户列表字段 * [Update] 使用新logo和统一Jumpserver为JumpServer * [Update] 优化cloud task * [Update] 统一period task * [Update] 统一period form serializer字段 * [Update] 修改period task * [Update] 修改资产网关信息 * [Update] 用户授权资产树资产信息添加domain * [Update] 修改翻译 * [Update] 测试可连接性 * 1.5.7 bai (#3764) * [Update] 修复index页面Bug;修复测试资产用户可连接性问题; * [Update] 修改测试资产用户可连接 * [Bugfix] 修复backends问题 * [Update] 修改marksafe依赖版本 * [Update] 修改测试资产用户可连接性 * [Update] 修改检测服务器性能时获取percent值 * [Update] 更新依赖boto3=1.12.14 Co-authored-by: Yanzhe Lee <lee.yanzhe@yanzhe.org> Co-authored-by: BaiJiangJie <32935519+BaiJiangJie@users.noreply.github.com> Co-authored-by: Bai <bugatti_it@163.com>
153 lines
4.5 KiB
Python
153 lines
4.5 KiB
Python
# -*- coding: utf-8 -*-
|
|
#
|
|
from django import forms
|
|
from django.utils.translation import gettext_lazy as _
|
|
from captcha.fields import CaptchaField
|
|
|
|
from common.utils import validate_ssh_public_key
|
|
from ..models import User
|
|
|
|
|
|
__all__ = [
|
|
'UserProfileForm', 'UserMFAForm', 'UserFirstLoginFinishForm',
|
|
'UserPasswordForm', 'UserPublicKeyForm', 'FileForm',
|
|
'UserTokenResetPasswordForm', 'UserForgotPasswordForm',
|
|
]
|
|
|
|
|
|
class UserProfileForm(forms.ModelForm):
|
|
username = forms.CharField(disabled=True, label=_("Username"))
|
|
name = forms.CharField(disabled=True, label=_("Name"))
|
|
email = forms.CharField(disabled=True)
|
|
|
|
class Meta:
|
|
model = User
|
|
fields = [
|
|
'username', 'name', 'email',
|
|
'wechat', 'phone',
|
|
]
|
|
|
|
|
|
UserProfileForm.verbose_name = _("Profile")
|
|
|
|
|
|
class UserMFAForm(forms.ModelForm):
|
|
|
|
mfa_description = _(
|
|
'When enabled, '
|
|
'you will enter the MFA binding process the next time you log in. '
|
|
'you can also directly bind in '
|
|
'"personal information -> quick modification -> change MFA Settings"!'
|
|
)
|
|
|
|
class Meta:
|
|
model = User
|
|
fields = ['mfa_level']
|
|
widgets = {'mfa_level': forms.RadioSelect()}
|
|
help_texts = {
|
|
'mfa_level': _('* Enable MFA to make the account more secure.'),
|
|
}
|
|
|
|
|
|
UserMFAForm.verbose_name = _("MFA")
|
|
|
|
|
|
class UserFirstLoginFinishForm(forms.Form):
|
|
finish_description = _(
|
|
'In order to protect you and your company, '
|
|
'please keep your account, '
|
|
'password and key sensitive information properly. '
|
|
'(for example: setting complex password, enabling MFA)'
|
|
)
|
|
|
|
|
|
UserFirstLoginFinishForm.verbose_name = _("Finish")
|
|
|
|
|
|
class UserTokenResetPasswordForm(forms.Form):
|
|
new_password = forms.CharField(
|
|
min_length=5, max_length=128,
|
|
widget=forms.PasswordInput,
|
|
label=_("New password")
|
|
)
|
|
confirm_password = forms.CharField(
|
|
min_length=5, max_length=128,
|
|
widget=forms.PasswordInput,
|
|
label=_("Confirm password")
|
|
)
|
|
|
|
def clean_confirm_password(self):
|
|
new_password = self.cleaned_data['new_password']
|
|
confirm_password = self.cleaned_data['confirm_password']
|
|
|
|
if new_password != confirm_password:
|
|
raise forms.ValidationError(_('Password does not match'))
|
|
return confirm_password
|
|
|
|
|
|
class UserForgotPasswordForm(forms.Form):
|
|
email = forms.EmailField(label=_("Email"))
|
|
captcha = CaptchaField(label=_("Captcha"))
|
|
|
|
|
|
class UserPasswordForm(UserTokenResetPasswordForm):
|
|
old_password = forms.CharField(
|
|
max_length=128, widget=forms.PasswordInput,
|
|
label=_("Old password")
|
|
)
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
self.instance = kwargs.pop('instance')
|
|
super().__init__(*args, **kwargs)
|
|
|
|
def clean_old_password(self):
|
|
old_password = self.cleaned_data['old_password']
|
|
if not self.instance.check_password(old_password):
|
|
raise forms.ValidationError(_('Old password error'))
|
|
return old_password
|
|
|
|
def save(self):
|
|
password = self.cleaned_data['new_password']
|
|
self.instance.reset_password(new_password=password)
|
|
return self.instance
|
|
|
|
|
|
class UserPublicKeyForm(forms.Form):
|
|
pubkey_description = _('Automatically configure and download the SSH key')
|
|
public_key = forms.CharField(
|
|
label=_('ssh public key'), max_length=5000, required=False,
|
|
widget=forms.Textarea(attrs={'placeholder': _('ssh-rsa AAAA...')}),
|
|
help_text=_('Paste your id_rsa.pub here.')
|
|
)
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
if 'instance' in kwargs:
|
|
self.instance = kwargs.pop('instance')
|
|
else:
|
|
self.instance = None
|
|
super().__init__(*args, **kwargs)
|
|
|
|
def clean_public_key(self):
|
|
public_key = self.cleaned_data['public_key']
|
|
if self.instance.public_key and public_key == self.instance.public_key:
|
|
msg = _('Public key should not be the same as your old one.')
|
|
raise forms.ValidationError(msg)
|
|
|
|
if public_key and not validate_ssh_public_key(public_key):
|
|
raise forms.ValidationError(_('Not a valid ssh public key'))
|
|
return public_key
|
|
|
|
def save(self):
|
|
public_key = self.cleaned_data['public_key']
|
|
if public_key:
|
|
self.instance.public_key = public_key
|
|
self.instance.save()
|
|
return self.instance
|
|
|
|
|
|
UserPublicKeyForm.verbose_name = _("Public key")
|
|
|
|
|
|
class FileForm(forms.Form):
|
|
file = forms.FileField()
|