jumpserver/apps/authentication/api/auth.py

# -*- coding: utf-8 -*-
#
import uuid

from django.core.cache import cache
from django.shortcuts import get_object_or_404
from rest_framework.permissions import AllowAny
from rest_framework.response import Response
from rest_framework.views import APIView

from common.utils import get_logger
from common.permissions import IsOrgAdminOrAppUser
from orgs.mixins.api import RootOrgViewMixin
from users.models import User
from assets.models import Asset, SystemUser

logger = get_logger(__name__)
__all__ = [
    'UserConnectionTokenApi',
]


class UserConnectionTokenApi(RootOrgViewMixin, APIView):
    permission_classes = (IsOrgAdminOrAppUser,)

    def post(self, request):
        user_id = request.data.get('user', '')
        asset_id = request.data.get('asset', '')
        system_user_id = request.data.get('system_user', '')
        token = str(uuid.uuid4())
        user = get_object_or_404(User, id=user_id)
        asset = get_object_or_404(Asset, id=asset_id)
        system_user = get_object_or_404(SystemUser, id=system_user_id)
        value = {
            'user': user_id,
            'username': user.username,
            'asset': asset_id,
            'hostname': asset.hostname,
            'system_user': system_user_id,
            'system_user_name': system_user.name
        }
        cache.set(token, value, timeout=20)
        return Response({"token": token}, status=201)

    def get(self, request):
        token = request.query_params.get('token')
        user_only = request.query_params.get('user-only', None)
        value = cache.get(token, None)

        if not value:
            return Response('', status=404)

        if not user_only:
            return Response(value)
        else:
            return Response({'user': value['user']})

    def get_permissions(self):
        if self.request.query_params.get('user-only', None):
            self.permission_classes = (AllowAny,)
        return super().get_permissions()
[Update] users认证逻辑迁移到authentication中 2019-02-27 12:55:28 +00:00			`# -- coding: utf-8 --`
			`#`
			`import uuid`

			`from django.core.cache import cache`
			`from django.shortcuts import get_object_or_404`
			`from rest_framework.permissions import AllowAny`
			`from rest_framework.response import Response`
			`from rest_framework.views import APIView`

[Update] 基本完成登录逻辑 2019-11-05 10:46:29 +00:00			`from common.utils import get_logger`
			`from common.permissions import IsOrgAdminOrAppUser`
Dev beta (#3048) * [Update] 统一url地址 * [Update] 修改api * [Update] 使用规范的签名 * [Update] 修改url * [Update] 修改swagger * [Update] 添加serializer class避免报错 * [Update] 修改token * [Update] 支持api key * [Update] 支持生成api key * [Update] 修改api重定向 * [Update] 修改翻译 * [Update] 添加说明文档 * [Update] 修复浏览器关闭后session不失效的问题 * [Update] 修改一些内容 * [Update] 修改 jms脚本 * [Update] 修改重定向 * [Update] 修改搜索trim * [Update] 修改搜索trim * [Update] 添加sys log * [Bugfix] 修改登陆错误 * [Update] 优化User操作private_token的接口 (#3091) * [Update] 优化User操作private_token的接口 * [Update] 优化User操作private_token的接口 2 * [Bugfix] 解决授权了一个节点，当移动节点后，被移动的节点下的资产会放到未分组节点下的问题 * [Update] 升级jquery * [Update] 默认使用page * [Update] 修改使用Orgmodel view set * [Update] 支持 nv的硬盘 https://github.com/jumpserver/jumpserver/issues/1804 * [UPdate] 解决命令执行宽度问题 * [Update] 优化节点 * [Update] 修改nodes过多时创建比较麻烦 * [Update] 修改导入 * [Update] 节点获取更新 * [Update] 修改nodes * [Update] nodes显示full value * [Update] 统一使用nodes select2 函数 * [Update] 修改磁盘大小小数 * [Update] 修改 Node service * [Update] 优化授权节点 * [Update] 修改 node permission * [Update] 修改asset permission * [Stash] * [Update] 修改node assets api * [Update] 修改tree service，支持资产数量 * [Update] 修改暂时完成 * [Update] 修改一些bug 2019-08-21 12:27:21 +00:00			`from orgs.mixins.api import RootOrgViewMixin`
[Update] 移动model 2019-02-28 09:58:53 +00:00			`from users.models import User`
[Update] 修改authentication backends 2019-02-28 07:12:45 +00:00			`from assets.models import Asset, SystemUser`
[Update] users认证逻辑迁移到authentication中 2019-02-27 12:55:28 +00:00
			`logger = get_logger(__name__)`
[Update] 修改authentication目录结构 2019-02-28 03:58:48 +00:00			`__all__ = [`
[Update] 基本完成登录逻辑 2019-11-05 10:46:29 +00:00			`'UserConnectionTokenApi',`
[Update] 修改authentication目录结构 2019-02-28 03:58:48 +00:00			`]`
[Update] users认证逻辑迁移到authentication中 2019-02-27 12:55:28 +00:00

			`class UserConnectionTokenApi(RootOrgViewMixin, APIView):`
			`permission_classes = (IsOrgAdminOrAppUser,)`

			`def post(self, request):`
			`user_id = request.data.get('user', '')`
			`asset_id = request.data.get('asset', '')`
			`system_user_id = request.data.get('system_user', '')`
			`token = str(uuid.uuid4())`
			`user = get_object_or_404(User, id=user_id)`
			`asset = get_object_or_404(Asset, id=asset_id)`
			`system_user = get_object_or_404(SystemUser, id=system_user_id)`
			`value = {`
			`'user': user_id,`
			`'username': user.username,`
			`'asset': asset_id,`
			`'hostname': asset.hostname,`
			`'system_user': system_user_id,`
			`'system_user_name': system_user.name`
			`}`
			`cache.set(token, value, timeout=20)`
			`return Response({"token": token}, status=201)`

			`def get(self, request):`
			`token = request.query_params.get('token')`
			`user_only = request.query_params.get('user-only', None)`
			`value = cache.get(token, None)`

			`if not value:`
			`return Response('', status=404)`

			`if not user_only:`
			`return Response(value)`
			`else:`
			`return Response({'user': value['user']})`

			`def get_permissions(self):`
			`if self.request.query_params.get('user-only', None):`
			`self.permission_classes = (AllowAny,)`
			`return super().get_permissions()`



[Bugfix] 修复用户认证序列类获取 request 的问题 2019-09-16 09:59:21 +00:00