mirror of
https://github.com/jumpserver/jumpserver.git
synced 2025-10-22 00:09:14 +00:00
f235e20153
* [Feature] 1. perms actions - 添加 Action Model * [Feature] 2. perms actions - 添加 Action API * [Feature] 3. perms actions - 授权规则: 添加actions字段 * [Feature] 4. perms actions - 授权规则创建页面: 设置 actions 默认 all * [Feature] 5. perms actions - 资产授权工具: 动态给system_user设置actions属性; 修改授权相关的API-serializer类: 添加actions字段值 * [Feature] 6. perms actions - 更新API(用户使用系统用户连接资产时权限校验): 添加actions校验 * [Feature] 7. perms actions - 迁移文件中为已经存在的perms添加默认的action * [Feature] 8. perms actions - 创建授权规则时设置默认action(如果actions字段值为空) * [Feature] 9. check actions - 修改校验用户资产权限API逻辑(添加actions校验) * [Feature] 10. check actions - 修改注释 * [Feature] 11. check actions - 添加API: 获取用户指定资产和系统用户被授权的actions * [Feature] 12. check actions - 添加翻译信息
88 lines
2.3 KiB
Python
88 lines
2.3 KiB
Python
from rest_framework import serializers
|
||
|
||
from ..models import SystemUser, Asset
|
||
from .base import AuthSerializer
|
||
|
||
|
||
class SystemUserSerializer(serializers.ModelSerializer):
|
||
"""
|
||
系统用户
|
||
"""
|
||
unreachable_amount = serializers.SerializerMethodField()
|
||
reachable_amount = serializers.SerializerMethodField()
|
||
unreachable_assets = serializers.SerializerMethodField()
|
||
reachable_assets = serializers.SerializerMethodField()
|
||
assets_amount = serializers.SerializerMethodField()
|
||
|
||
class Meta:
|
||
model = SystemUser
|
||
exclude = ('_password', '_private_key', '_public_key')
|
||
|
||
def get_field_names(self, declared_fields, info):
|
||
fields = super(SystemUserSerializer, self).get_field_names(declared_fields, info)
|
||
fields.extend([
|
||
'login_mode_display',
|
||
])
|
||
return fields
|
||
|
||
@staticmethod
|
||
def get_unreachable_assets(obj):
|
||
return obj.assets_unreachable
|
||
|
||
@staticmethod
|
||
def get_reachable_assets(obj):
|
||
return obj.assets_reachable
|
||
|
||
def get_unreachable_amount(self, obj):
|
||
return len(self.get_unreachable_assets(obj))
|
||
|
||
def get_reachable_amount(self, obj):
|
||
return len(self.get_reachable_assets(obj))
|
||
|
||
@staticmethod
|
||
def get_assets_amount(obj):
|
||
return len(obj.get_related_assets())
|
||
|
||
|
||
class SystemUserAuthSerializer(AuthSerializer):
|
||
"""
|
||
系统用户认证信息
|
||
"""
|
||
|
||
class Meta:
|
||
model = SystemUser
|
||
fields = [
|
||
"id", "name", "username", "protocol",
|
||
"login_mode", "password", "private_key",
|
||
]
|
||
|
||
|
||
class AssetSystemUserSerializer(serializers.ModelSerializer):
|
||
"""
|
||
查看授权的资产系统用户的数据结构,这个和AssetSerializer不同,字段少
|
||
"""
|
||
actions = serializers.SerializerMethodField()
|
||
|
||
class Meta:
|
||
model = SystemUser
|
||
fields = (
|
||
'id', 'name', 'username', 'priority',
|
||
'protocol', 'comment', 'login_mode', 'actions',
|
||
)
|
||
|
||
@staticmethod
|
||
def get_actions(obj):
|
||
return [action.name for action in obj.actions]
|
||
|
||
|
||
class SystemUserSimpleSerializer(serializers.ModelSerializer):
|
||
"""
|
||
系统用户最基本信息的数据结构
|
||
"""
|
||
class Meta:
|
||
model = SystemUser
|
||
fields = ('id', 'name', 'username')
|
||
|
||
|
||
|