mirror of
https://github.com/jumpserver/jumpserver.git
synced 2026-04-07 12:53:18 +00:00
d5451a482a
* [Update] 添加org * [Update] 修改url * [Update] 完成基本框架 * [Update] 修改一些逻辑 * [Update] 修改用户view * [Update] 修改资产 * [Update] 修改asset api * [Update] 修改协议小问题 * [Update] stash it * [Update] 修改约束 * [Update] 修改外键为org_id * [Update] 删掉Premiddleware * [Update] 修改Node * [Update] 修改get_current_org 为 proxy对象 current_org * [Bugfix] 解决Node.root() 死循环,移动AdminRequired到permission中 (#1571) * [Update] 修改permission (#1574) * Tmp org (#1579) * [Update] 添加org api, 升级到django 2.0 * [Update] fix some bug * [Update] 修改一些bug * [Update] 添加授权规则org (#1580) * [Update] 修复创建授权规则,显示org_name不是有效UUID的bug * [Update] 更新org之间隔离授权规则,解决QuerySet与Manager问题;修复创建用户,显示org_name不是有效UUID之bug; * Tmp org (#1583) * [Update] 修改一些内容 * [Update] 修改datatable 支持process * [Bugfix] 修复asset queryset 没有valid方法的bug * [Update] 在线/历史/命令model添加org;修复命令记录保存org失败bug (#1584) * [Update] 修复创建授权规则,显示org_name不是有效UUID的bug * [Update] 更新org之间隔离授权规则,解决QuerySet与Manager问题;修复创建用户,显示org_name不是有效UUID之bug; * [Update] 在线/历史/命令model添加org * [Bugfix] 修复命令记录,保存org不成功bug * [Update] Org功能修改 * [Bugfix] 修复merge带来的问题 * [Update] org admin显示资产详情右侧选项卡;修复资产授权添加用户,会显示其他org用户的bug (#1594) * [Bugfix] 修复资产授权添加用户,显示其他org的用户bug * [Update] org admin 显示资产详情右侧选项卡 * Tmp org (#1596) * [Update] 修改index view * [Update] 修改nav * [Update] 修改profile * [Bugfix] 修复org下普通用户打开web终端看不到已被授权的资产和节点bug * [Update] 修改get_all_assets * [Bugfix] 修复节点前面有个空目录 * [Bugfix] 修复merge引起的bug * [Update] Add init * [Update] Node get_all_assets 过滤游离资产,条件nodes_key=None -> nodes=None * [Update] 恢复原来的api地址 * [Update] 修改api * [Bugfix] 修复org下用户查看我的资产不显示已授权节点/资产的bug * [Bugfix] Fix perm name unique * [Bugfix] 修复校验失败api * [Update] Merge with org * [Merge] 修改一下bug * [Update] 暂时修改一些url * [Update] 修改url 为django 2.0 path * [Update] 优化datatable 和显示组织优化 * [Update] 升级url * [Bugfix] 修复coco启动失败(load_config_from_server)、硬件刷新,测试连接,str 没有 decode(… (#1613) * [Bugfix] 修复coco启动失败(load_config_from_server)、硬件刷新,测试连接,str 没有 decode() method的bug * [Bugfix] (task任务系统)修复资产连接性测试、硬件刷新和系统用户连接性测试失败等bug * [Bugfix] 修复一些bug * [Bugfix] 修复一些bug * [Update] 更新org下普通用户的资产详情 (#1619) * [Update] 更新org下普通用户查看资产详情,只显示数据 * [Update] 优化org下普通用户查看资产详情前端代码 * [Update] 创建/更新用户的role选项;密码强度提示信息中英文; (#1623) * [Update] 修改 超级管理员/组织管理员 在 创建/更新 用户时role的选项 问题 * [Update] 用户密码强度提示信息支持中英文 * [Update] 修改token返回 * [Update] Asset返回org name * [Update] 修改支持xpack * [Update] 修改url * [Bugfix] 修复不登录就能查看资产的bug * [Update] 用户修改 * [Bugfix] ... * [Bugfix] 修复跳转错误的问题 * [Update] xpack/orgs组织添加删除功能-js; 修复Label继承Org后bug; (#1644) * [Update] 更新xpack下orgs的翻译信息 * [Update] 更新model Label,继承OrgModelMixin; * [Update] xpack/orgs组织添加删除功能-js; 修复Label继承Org后bug; * [Bugfix] 修复小bug * [Update] 优化一些api * [Update] 优化用户资产页面 * [Update] 更新 xpack/orgs 删除功能:限制在当前org下删除当前org (#1645) * [Update] 修改版本号
156 lines
5.4 KiB
Python
156 lines
5.4 KiB
Python
# ~*~ coding: utf-8 ~*~
|
|
|
|
from __future__ import unicode_literals, absolute_import
|
|
|
|
from django.utils.translation import ugettext as _
|
|
from django.views.generic import ListView, CreateView, UpdateView, DetailView, TemplateView
|
|
from django.views.generic.edit import DeleteView, SingleObjectMixin
|
|
from django.urls import reverse_lazy
|
|
from django.conf import settings
|
|
|
|
from common.permissions import AdminUserRequiredMixin
|
|
from orgs.utils import current_org
|
|
from .hands import Node, Asset, SystemUser, User, UserGroup
|
|
from .models import AssetPermission
|
|
from .forms import AssetPermissionForm
|
|
|
|
|
|
class AssetPermissionListView(AdminUserRequiredMixin, TemplateView):
|
|
template_name = 'perms/asset_permission_list.html'
|
|
|
|
def get_context_data(self, **kwargs):
|
|
context = {
|
|
'app': _('Perms'),
|
|
'action': _('Asset permission list'),
|
|
}
|
|
kwargs.update(context)
|
|
return super().get_context_data(**kwargs)
|
|
|
|
|
|
class AssetPermissionCreateView(AdminUserRequiredMixin, CreateView):
|
|
model = AssetPermission
|
|
form_class = AssetPermissionForm
|
|
template_name = 'perms/asset_permission_create_update.html'
|
|
success_url = reverse_lazy('perms:asset-permission-list')
|
|
|
|
def get_form(self, form_class=None):
|
|
form = super().get_form(form_class=form_class)
|
|
nodes_id = self.request.GET.get("nodes")
|
|
assets_id = self.request.GET.get("assets")
|
|
|
|
if nodes_id:
|
|
nodes_id = nodes_id.split(",")
|
|
nodes = Node.objects.filter(id__in=nodes_id).exclude(id=Node.root().id)
|
|
form['nodes'].initial = nodes
|
|
if assets_id:
|
|
assets_id = assets_id.split(",")
|
|
assets = Asset.objects.filter(id__in=assets_id)
|
|
form['assets'].initial = assets
|
|
return form
|
|
|
|
def get_context_data(self, **kwargs):
|
|
context = {
|
|
'app': _('Perms'),
|
|
'action': _('Create asset permission'),
|
|
}
|
|
kwargs.update(context)
|
|
return super().get_context_data(**kwargs)
|
|
|
|
|
|
class AssetPermissionUpdateView(AdminUserRequiredMixin, UpdateView):
|
|
model = AssetPermission
|
|
form_class = AssetPermissionForm
|
|
template_name = 'perms/asset_permission_create_update.html'
|
|
success_url = reverse_lazy("perms:asset-permission-list")
|
|
|
|
def get_context_data(self, **kwargs):
|
|
context = {
|
|
'app': _('Perms'),
|
|
'action': _('Update asset permission')
|
|
}
|
|
kwargs.update(context)
|
|
return super().get_context_data(**kwargs)
|
|
|
|
|
|
class AssetPermissionDetailView(AdminUserRequiredMixin, DetailView):
|
|
model = AssetPermission
|
|
form_class = AssetPermissionForm
|
|
template_name = 'perms/asset_permission_detail.html'
|
|
success_url = reverse_lazy("perms:asset-permission-list")
|
|
|
|
def get_context_data(self, **kwargs):
|
|
context = {
|
|
'app': _('Perms'),
|
|
'action': _('Update asset permission'),
|
|
'system_users_remain': SystemUser.objects.exclude(
|
|
granted_by_permissions=self.object
|
|
),
|
|
}
|
|
kwargs.update(context)
|
|
return super().get_context_data(**kwargs)
|
|
|
|
|
|
class AssetPermissionDeleteView(AdminUserRequiredMixin, DeleteView):
|
|
model = AssetPermission
|
|
template_name = 'delete_confirm.html'
|
|
success_url = reverse_lazy('perms:asset-permission-list')
|
|
|
|
|
|
class AssetPermissionUserView(AdminUserRequiredMixin,
|
|
SingleObjectMixin,
|
|
ListView):
|
|
template_name = 'perms/asset_permission_user.html'
|
|
context_object_name = 'asset_permission'
|
|
paginate_by = settings.CONFIG.DISPLAY_PER_PAGE
|
|
object = None
|
|
|
|
def get(self, request, *args, **kwargs):
|
|
self.object = self.get_object(queryset=AssetPermission.objects.all())
|
|
return super().get(request, *args, **kwargs)
|
|
|
|
def get_queryset(self):
|
|
queryset = list(self.object.get_all_users())
|
|
return queryset
|
|
|
|
def get_context_data(self, **kwargs):
|
|
|
|
context = {
|
|
'app': _('Perms'),
|
|
'action': _('Asset permission user list'),
|
|
'users_remain': current_org.get_org_users().exclude(
|
|
asset_permissions=self.object
|
|
),
|
|
'user_groups_remain': UserGroup.objects.exclude(
|
|
asset_permissions=self.object
|
|
)
|
|
}
|
|
kwargs.update(context)
|
|
return super().get_context_data(**kwargs)
|
|
|
|
|
|
class AssetPermissionAssetView(AdminUserRequiredMixin,
|
|
SingleObjectMixin,
|
|
ListView):
|
|
template_name = 'perms/asset_permission_asset.html'
|
|
context_object_name = 'asset_permission'
|
|
paginate_by = settings.CONFIG.DISPLAY_PER_PAGE
|
|
object = None
|
|
|
|
def get(self, request, *args, **kwargs):
|
|
self.object = self.get_object(queryset = AssetPermission.objects.all())
|
|
return super().get(request, *args, **kwargs)
|
|
|
|
def get_queryset(self):
|
|
queryset = list(self.object.get_all_assets())
|
|
return queryset
|
|
|
|
def get_context_data(self, **kwargs):
|
|
assets_granted = self.get_queryset()
|
|
context = {
|
|
'app': _('Perms'),
|
|
'action': _('Asset permission asset list'),
|
|
'assets_remain': Asset.objects.exclude(id__in=[a.id for a in assets_granted]),
|
|
'nodes_remain': Node.objects.exclude(granted_by_permissions=self.object),
|
|
}
|
|
kwargs.update(context)
|
|
return super().get_context_data(**kwargs) |