mirror of
https://github.com/jumpserver/jumpserver.git
synced 2025-06-01 11:25:22 +00:00
2029e9f8df
* feat:重构操作日志模块 * feat: 改密计划增加操作日志记录 * feat: 支持操作日志接入ES,且接口limit支持自定义限制大小 * feat:翻译 * feat: 生成迁移文件 * feat: 优化迁移文件 * feat: 优化多对多日志记录 * feat: 命令存储ES部分和日志存储ES部分代码优化 * feat: 优化敏感字段脱敏 Co-authored-by: Jiangjie.Bai <bugatti_it@163.com>
157 lines
4.9 KiB
Python
157 lines
4.9 KiB
Python
from typing import Callable
|
||
|
||
from django.utils.translation import ugettext_lazy as _
|
||
from django.conf import settings
|
||
from django.template.loader import render_to_string
|
||
|
||
from users.models import User
|
||
from common.utils import get_logger, reverse
|
||
from notifications.notifications import SystemMessage
|
||
from terminal.models import Session, Command
|
||
from notifications.models import SystemMsgSubscription
|
||
from notifications.backends import BACKEND
|
||
from common.utils import lazyproperty
|
||
from common.utils.timezone import local_now_display
|
||
|
||
|
||
logger = get_logger(__name__)
|
||
|
||
__all__ = ('CommandAlertMessage', 'CommandExecutionAlert')
|
||
|
||
CATEGORY = 'terminal'
|
||
CATEGORY_LABEL = _('Sessions')
|
||
|
||
|
||
class CommandAlertMixin:
|
||
command: dict
|
||
_get_message: Callable
|
||
message_type_label: str
|
||
|
||
@lazyproperty
|
||
def subject(self):
|
||
_input = self.command['input']
|
||
if isinstance(_input, str):
|
||
_input = _input.replace('\r\n', ' ').replace('\r', ' ').replace('\n', ' ')
|
||
|
||
subject = self.message_type_label + "%(cmd)s" % {
|
||
'cmd': _input
|
||
}
|
||
return subject
|
||
|
||
@classmethod
|
||
def post_insert_to_db(cls, subscription: SystemMsgSubscription):
|
||
"""
|
||
兼容操作,试图用 `settings.SECURITY_INSECURE_COMMAND_EMAIL_RECEIVER` 的邮件地址
|
||
assets_systemuser_assets找到用户,把用户设置为默认接收者
|
||
"""
|
||
from settings.models import Setting
|
||
db_setting = Setting.objects.filter(
|
||
name='SECURITY_INSECURE_COMMAND_EMAIL_RECEIVER'
|
||
).first()
|
||
if db_setting:
|
||
emails = db_setting.value
|
||
else:
|
||
emails = settings.SECURITY_INSECURE_COMMAND_EMAIL_RECEIVER
|
||
emails = emails.split(',')
|
||
emails = [email.strip().strip('"') for email in emails]
|
||
|
||
users = User.objects.filter(email__in=emails)
|
||
if users:
|
||
subscription.users.add(*users)
|
||
subscription.receive_backends = [BACKEND.EMAIL]
|
||
subscription.save()
|
||
|
||
|
||
class CommandAlertMessage(CommandAlertMixin, SystemMessage):
|
||
category = CATEGORY
|
||
category_label = CATEGORY_LABEL
|
||
message_type_label = _('Danger command alert')
|
||
|
||
def __init__(self, command):
|
||
self.command = command
|
||
|
||
def __str__(self):
|
||
return str(self.message_type_label)
|
||
|
||
@classmethod
|
||
def gen_test_msg(cls):
|
||
command = Command.objects.first().to_dict()
|
||
command['session'] = Session.objects.first().id
|
||
return cls(command)
|
||
|
||
def get_html_msg(self) -> dict:
|
||
command = self.command
|
||
session_detail_url = reverse(
|
||
'api-terminal:session-detail', kwargs={'pk': command['session']},
|
||
external=True, api_to_ui=True
|
||
) + '?oid={}'.format(self.command['org_id'])
|
||
session_detail_url = session_detail_url.replace(
|
||
'/terminal/sessions/', '/audit/sessions/sessions/'
|
||
)
|
||
level = Command.get_risk_level_str(command['risk_level'])
|
||
items = {
|
||
_("Asset"): command['asset'],
|
||
_("User"): command['user'],
|
||
_("Level"): level,
|
||
_("Date"): local_now_display(),
|
||
}
|
||
context = {
|
||
'items': items,
|
||
'session_url': session_detail_url,
|
||
"command": command['input'],
|
||
}
|
||
message = render_to_string('terminal/_msg_command_alert.html', context)
|
||
return {
|
||
'subject': self.subject,
|
||
'message': message
|
||
}
|
||
|
||
|
||
class CommandExecutionAlert(CommandAlertMixin, SystemMessage):
|
||
category = CATEGORY
|
||
category_label = CATEGORY_LABEL
|
||
message_type_label = _('Batch danger command alert')
|
||
|
||
def __init__(self, command):
|
||
self.command = command
|
||
|
||
@classmethod
|
||
def gen_test_msg(cls):
|
||
from assets.models import Asset
|
||
from users.models import User
|
||
cmd = {
|
||
'input': 'ifconfig eth0',
|
||
'assets': Asset.objects.all()[:10],
|
||
'user': str(User.objects.first()),
|
||
'risk_level': 5,
|
||
}
|
||
return cls(cmd)
|
||
|
||
def get_html_msg(self) -> dict:
|
||
command = self.command
|
||
assets_with_url = []
|
||
for asset in command['assets']:
|
||
url = reverse(
|
||
'assets:asset-detail', kwargs={'pk': asset.id},
|
||
api_to_ui=True, external=True, is_console=True
|
||
) + '?oid={}'.format(asset.org_id)
|
||
assets_with_url.append([asset, url])
|
||
|
||
level = Command.get_risk_level_str(command['risk_level'])
|
||
items = {
|
||
_("User"): command['user'],
|
||
_("Level"): level,
|
||
_("Date"): local_now_display(),
|
||
}
|
||
|
||
context = {
|
||
'items': items,
|
||
'assets_with_url': assets_with_url,
|
||
'command': command['input'],
|
||
}
|
||
message = render_to_string('terminal/_msg_command_execute_alert.html', context)
|
||
return {
|
||
'subject': self.subject,
|
||
'message': message
|
||
}
|