mirror of
https://github.com/jumpserver/jumpserver.git
synced 2026-04-09 13:53:20 +00:00
164f48e131
* [Update] 统一url地址 * [Update] 修改api * [Update] 使用规范的签名 * [Update] 修改url * [Update] 修改swagger * [Update] 添加serializer class避免报错 * [Update] 修改token * [Update] 支持api key * [Update] 支持生成api key * [Update] 修改api重定向 * [Update] 修改翻译 * [Update] 添加说明文档 * [Update] 修复浏览器关闭后session不失效的问题 * [Update] 修改一些内容 * [Update] 修改 jms脚本 * [Update] 修改重定向 * [Update] 修改搜索trim * [Update] 修改搜索trim * [Update] 添加sys log * [Bugfix] 修改登陆错误 * [Update] 优化User操作private_token的接口 (#3091) * [Update] 优化User操作private_token的接口 * [Update] 优化User操作private_token的接口 2 * [Bugfix] 解决授权了一个节点,当移动节点后,被移动的节点下的资产会放到未分组节点下的问题 * [Update] 升级jquery * [Update] 默认使用page * [Update] 修改使用Orgmodel view set * [Update] 支持 nv的硬盘 https://github.com/jumpserver/jumpserver/issues/1804 * [UPdate] 解决命令执行宽度问题 * [Update] 优化节点 * [Update] 修改nodes过多时创建比较麻烦 * [Update] 修改导入 * [Update] 节点获取更新 * [Update] 修改nodes * [Update] nodes显示full value * [Update] 统一使用nodes select2 函数 * [Update] 修改磁盘大小小数 * [Update] 修改 Node service * [Update] 优化授权节点 * [Update] 修改 node permission * [Update] 修改asset permission * [Stash] * [Update] 修改node assets api * [Update] 修改tree service,支持资产数量 * [Update] 修改暂时完成 * [Update] 修改一些bug
143 lines
4.9 KiB
Python
143 lines
4.9 KiB
Python
# -*- coding: utf-8 -*-
|
|
#
|
|
from django.utils.translation import ugettext_lazy as _
|
|
|
|
from rest_framework import serializers
|
|
|
|
from common.utils import validate_ssh_public_key
|
|
from common.mixins import BulkSerializerMixin
|
|
from common.fields import StringManyToManyField
|
|
from common.serializers import AdaptedBulkListSerializer
|
|
from orgs.mixins.serializers import BulkOrgResourceModelSerializer
|
|
from ..models import User, UserGroup
|
|
|
|
|
|
__all__ = [
|
|
'UserSerializer', 'UserPKUpdateSerializer', 'UserUpdateGroupSerializer',
|
|
'UserGroupSerializer', 'UserGroupListSerializer',
|
|
'UserGroupUpdateMemberSerializer', 'ChangeUserPasswordSerializer',
|
|
'ResetOTPSerializer',
|
|
]
|
|
|
|
|
|
class UserSerializer(BulkSerializerMixin, serializers.ModelSerializer):
|
|
|
|
class Meta:
|
|
model = User
|
|
list_serializer_class = AdaptedBulkListSerializer
|
|
fields = [
|
|
'id', 'name', 'username', 'password', 'email', 'public_key',
|
|
'groups', 'groups_display',
|
|
'role', 'role_display', 'wechat', 'phone', 'otp_level',
|
|
'comment', 'source', 'source_display', 'is_valid', 'is_expired',
|
|
'is_active', 'created_by', 'is_first_login',
|
|
'date_password_last_updated', 'date_expired', 'avatar_url',
|
|
]
|
|
extra_kwargs = {
|
|
'password': {'write_only': True, 'required': False, 'allow_null': True, 'allow_blank': True},
|
|
'public_key': {'write_only': True},
|
|
'groups_display': {'label': _('Groups name')},
|
|
'source_display': {'label': _('Source name')},
|
|
'is_first_login': {'label': _('Is first login'), 'read_only': True},
|
|
'role_display': {'label': _('Role name')},
|
|
'is_valid': {'label': _('Is valid')},
|
|
'is_expired': {'label': _('Is expired')},
|
|
'avatar_url': {'label': _('Avatar url')},
|
|
'created_by': {'read_only': True, 'allow_blank': True},
|
|
'source': {'read_only': True},
|
|
}
|
|
|
|
def validate_role(self, value):
|
|
request = self.context.get('request')
|
|
if not request.user.is_superuser and value != User.ROLE_USER:
|
|
role_display = dict(User.ROLE_CHOICES)[User.ROLE_USER]
|
|
msg = _("Role limit to {}".format(role_display))
|
|
raise serializers.ValidationError(msg)
|
|
return value
|
|
|
|
def validate_password(self, password):
|
|
from ..utils import check_password_rules
|
|
password_strategy = self.initial_data.get('password_strategy')
|
|
if password_strategy == '0':
|
|
return
|
|
if password_strategy is None and not password:
|
|
return
|
|
if not check_password_rules(password):
|
|
msg = _('Password does not match security rules')
|
|
raise serializers.ValidationError(msg)
|
|
return password
|
|
|
|
@staticmethod
|
|
def change_password_to_raw(validated_data):
|
|
password = validated_data.pop('password', None)
|
|
if password:
|
|
validated_data['password_raw'] = password
|
|
return validated_data
|
|
|
|
def create(self, validated_data):
|
|
validated_data = self.change_password_to_raw(validated_data)
|
|
return super().create(validated_data)
|
|
|
|
def update(self, instance, validated_data):
|
|
validated_data = self.change_password_to_raw(validated_data)
|
|
return super().update(instance, validated_data)
|
|
|
|
|
|
class UserPKUpdateSerializer(serializers.ModelSerializer):
|
|
class Meta:
|
|
model = User
|
|
fields = ['id', 'public_key']
|
|
|
|
@staticmethod
|
|
def validate_public_key(value):
|
|
if not validate_ssh_public_key(value):
|
|
raise serializers.ValidationError(_('Not a valid ssh public key'))
|
|
return value
|
|
|
|
|
|
class UserUpdateGroupSerializer(serializers.ModelSerializer):
|
|
groups = serializers.PrimaryKeyRelatedField(many=True, queryset=UserGroup.objects.all())
|
|
|
|
class Meta:
|
|
model = User
|
|
fields = ['id', 'groups']
|
|
|
|
|
|
class UserGroupSerializer(BulkOrgResourceModelSerializer):
|
|
users = serializers.PrimaryKeyRelatedField(
|
|
required=False, many=True, queryset=User.objects.all(), label=_('User')
|
|
)
|
|
|
|
class Meta:
|
|
model = UserGroup
|
|
list_serializer_class = AdaptedBulkListSerializer
|
|
fields = [
|
|
'id', 'name', 'users', 'comment', 'date_created',
|
|
'created_by',
|
|
]
|
|
extra_kwargs = {
|
|
'created_by': {'label': _('Created by'), 'read_only': True}
|
|
}
|
|
|
|
|
|
class UserGroupListSerializer(UserGroupSerializer):
|
|
users = StringManyToManyField(many=True, read_only=True)
|
|
|
|
|
|
class UserGroupUpdateMemberSerializer(serializers.ModelSerializer):
|
|
users = serializers.PrimaryKeyRelatedField(many=True, queryset=User.objects.all())
|
|
|
|
class Meta:
|
|
model = UserGroup
|
|
fields = ['id', 'users']
|
|
|
|
|
|
class ChangeUserPasswordSerializer(serializers.ModelSerializer):
|
|
|
|
class Meta:
|
|
model = User
|
|
fields = ['password']
|
|
|
|
|
|
class ResetOTPSerializer(serializers.Serializer):
|
|
msg = serializers.CharField(read_only=True) |