jumpserver/apps/assets/api.py

# ~*~ coding: utf-8 ~*~

from rest_framework import serializers
from rest_framework import viewsets, serializers, generics
from rest_framework.response import Response
from rest_framework.views import APIView
from rest_framework_bulk import BulkListSerializer, BulkSerializerMixin, ListBulkCreateUpdateDestroyAPIView

from common.mixins import BulkDeleteApiMixin
from common.utils import get_object_or_none, signer
from .hands import IsSuperUserOrTerminalUser, IsSuperUser
from .models import AssetGroup, Asset, IDC, SystemUser
from .serializers import AssetBulkUpdateSerializer


class AssetGroupSerializer(serializers.ModelSerializer):
    class Meta:
        model = AssetGroup


class AssetSerializer(serializers.ModelSerializer):
    class Meta:
        model = Asset
        # fields = ('id', 'title', 'code', 'linenos', 'language', 'style')


class IDCSerializer(serializers.ModelSerializer):
    class Meta:
        model = IDC
        # fields = ('id', 'title', 'code', 'linenos', 'language', 'style')


class AssetGroupViewSet(viewsets.ModelViewSet):
    """ API endpoint that allows AssetGroup to be viewed or edited.

    some other comment

    """
    queryset = AssetGroup.objects.all()
    serializer_class = AssetGroupSerializer


class AssetViewSet(viewsets.ModelViewSet):
    """
    API endpoint that allows Asset to be viewed or edited.
    """
    queryset = Asset.objects.all()
    serializer_class = AssetSerializer


class IDCViewSet(viewsets.ReadOnlyModelViewSet):
    """
    API endpoint that allows IDC to be viewed or edited.
    """
    queryset = IDC.objects.all()
    serializer_class = IDCSerializer
    permission_classes = (IsSuperUser,)


class AssetListUpdateApi(BulkDeleteApiMixin, ListBulkCreateUpdateDestroyAPIView):
    queryset = Asset.objects.all()
    serializer_class = AssetBulkUpdateSerializer
    permission_classes = (IsSuperUser,)


class SystemUserAuthApi(APIView):
    permission_classes = (IsSuperUserOrTerminalUser,)

    def get(self, request, *args, **kwargs):
        system_user_id = request.query_params.get('system_user_id', -1)
        system_user_username = request.query_params.get('system_user_username', '')

        system_user = get_object_or_none(SystemUser, id=system_user_id, username=system_user_username)

        if system_user:
            if system_user.password:
                password = signer.sign(system_user.password)
            else:
                password = signer.sign('')

            if system_user.private_key:
                private_key = signer.sign(system_user.private_key)
            else:
                private_key = signer.sign(None)

            response = {
                'id': system_user.id,
                'password': password,
                'private_key': private_key,
            }

            return Response(response)
        else:
            return Response({'msg': 'error system user id or username'}, status=401)
添加 utils和api样例文件 2016-08-09 09:27:37 +00:00			`# ~~ coding: utf-8 ~~`
Add user perm model and form 2016-09-11 01:50:42 +00:00
add asset add 2016-09-03 11:05:50 +00:00			`from rest_framework import serializers`
Update signer 2016-11-01 09:21:16 +00:00			`from rest_framework import viewsets, serializers, generics`
Add token 2016-11-01 11:31:35 +00:00			`from rest_framework.response import Response`
Update signer 2016-11-01 09:21:16 +00:00			`from rest_framework.views import APIView`
			`from rest_framework_bulk import BulkListSerializer, BulkSerializerMixin, ListBulkCreateUpdateDestroyAPIView`

asset:add assets_bulk 2016-10-21 13:14:49 +00:00			`from common.mixins import BulkDeleteApiMixin`
Add token 2016-11-01 11:31:35 +00:00			`from common.utils import get_object_or_none, signer`
			`from .hands import IsSuperUserOrTerminalUser, IsSuperUser`
			`from .models import AssetGroup, Asset, IDC, SystemUser`
Update signer 2016-11-01 09:21:16 +00:00			`from .serializers import AssetBulkUpdateSerializer`


add asset add 2016-09-03 11:05:50 +00:00			`class AssetGroupSerializer(serializers.ModelSerializer):`
			`class Meta:`
			`model = AssetGroup`
Add user perm model and form 2016-09-11 01:50:42 +00:00
add asset add 2016-09-03 11:05:50 +00:00
			`class AssetSerializer(serializers.ModelSerializer):`
			`class Meta:`
			`model = Asset`
Add user perm model and form 2016-09-11 01:50:42 +00:00			`# fields = ('id', 'title', 'code', 'linenos', 'language', 'style')`

add asset add 2016-09-03 11:05:50 +00:00
			`class IDCSerializer(serializers.ModelSerializer):`
			`class Meta:`
			`model = IDC`
Add user perm model and form 2016-09-11 01:50:42 +00:00			`# fields = ('id', 'title', 'code', 'linenos', 'language', 'style')`
add asset amdin\|sys user model 2016-09-04 09:43:03 +00:00

add asset add 2016-09-03 11:05:50 +00:00			`class AssetGroupViewSet(viewsets.ModelViewSet):`
Add user perm model and form 2016-09-11 01:50:42 +00:00			`""" API endpoint that allows AssetGroup to be viewed or edited.`

			`some other comment`

add asset add 2016-09-03 11:05:50 +00:00			`"""`
			`queryset = AssetGroup.objects.all()`
			`serializer_class = AssetGroupSerializer`

add asset amdin\|sys user model 2016-09-04 09:43:03 +00:00
add asset add 2016-09-03 11:05:50 +00:00			`class AssetViewSet(viewsets.ModelViewSet):`
			`"""`
			`API endpoint that allows Asset to be viewed or edited.`
			`"""`
			`queryset = Asset.objects.all()`
			`serializer_class = AssetSerializer`

add asset amdin\|sys user model 2016-09-04 09:43:03 +00:00
update assets-group 2016-09-22 10:31:04 +00:00			`class IDCViewSet(viewsets.ReadOnlyModelViewSet):`
add asset add 2016-09-03 11:05:50 +00:00			`"""`
			`API endpoint that allows IDC to be viewed or edited.`
			`"""`
			`queryset = IDC.objects.all()`
update assets-group 2016-09-22 10:31:04 +00:00			`serializer_class = IDCSerializer`
Add token 2016-11-01 11:31:35 +00:00			`permission_classes = (IsSuperUser,)`
update assets-group 2016-09-22 10:31:04 +00:00
Update signer 2016-11-01 09:21:16 +00:00
asset:add assets_bulk 2016-10-21 13:14:49 +00:00			`class AssetListUpdateApi(BulkDeleteApiMixin, ListBulkCreateUpdateDestroyAPIView):`
			`queryset = Asset.objects.all()`
Update signer 2016-11-01 09:21:16 +00:00			`serializer_class = AssetBulkUpdateSerializer`
Add token 2016-11-01 11:31:35 +00:00			`permission_classes = (IsSuperUser,)`
Update signer 2016-11-01 09:21:16 +00:00

Add token 2016-11-01 11:31:35 +00:00			`class SystemUserAuthApi(APIView):`
			`permission_classes = (IsSuperUserOrTerminalUser,)`

Update signer 2016-11-01 09:21:16 +00:00			`def get(self, request, args, *kwargs):`
Add token 2016-11-01 11:31:35 +00:00			`system_user_id = request.query_params.get('system_user_id', -1)`
			`system_user_username = request.query_params.get('system_user_username', '')`
Update signer 2016-11-01 09:21:16 +00:00
Add token 2016-11-01 11:31:35 +00:00			`system_user = get_object_or_none(SystemUser, id=system_user_id, username=system_user_username)`
Update signer 2016-11-01 09:21:16 +00:00
			`if system_user:`
Finish some bug 2016-11-02 11:44:11 +00:00			`if system_user.password:`
			`password = signer.sign(system_user.password)`
			`else:`
			`password = signer.sign('')`

			`if system_user.private_key:`
			`private_key = signer.sign(system_user.private_key)`
			`else:`
			`private_key = signer.sign(None)`
Add token 2016-11-01 11:31:35 +00:00
			`response = {`
			`'id': system_user.id,`
			`'password': password,`
			`'private_key': private_key,`
			`}`

			`return Response(response)`
			`else:`
			`return Response({'msg': 'error system user id or username'}, status=401)`
Update signer 2016-11-01 09:21:16 +00:00