jumpserver/apps/assets/api.py

# ~*~ coding: utf-8 ~*~

from rest_framework import viewsets, generics, mixins
from rest_framework.response import Response
from rest_framework.views import APIView
from rest_framework_bulk import BulkListSerializer, BulkSerializerMixin, ListBulkCreateUpdateDestroyAPIView
from django.shortcuts import get_object_or_404

from common.mixins import IDInFilterMixin
from common.utils import get_object_or_none, signer
from .hands import IsSuperUserOrAppUser, IsSuperUser
from .models import AssetGroup, Asset, IDC, SystemUser, AdminUser
from . import serializers


class AssetViewSet(IDInFilterMixin, viewsets.ModelViewSet):
    """API endpoint that allows Asset to be viewed or edited."""
    queryset = Asset.objects.all()
    serializer_class = serializers.AssetSerializer
    filter_fields = ('id', 'ip', 'hostname')
    permission_classes = (IsSuperUserOrAppUser,)

    def get_queryset(self):
        queryset = super(AssetViewSet, self).get_queryset()
        idc_id = self.request.query_params.get('idc_id', '')
        asset_group_id = self.request.query_params.get('asset_group_id', '')
        if idc_id:
            queryset = queryset.filter(idc__id=idc_id)

        if asset_group_id:
            queryset = queryset.filter(groups__id=asset_group_id)
        return queryset


class AssetGroupViewSet(viewsets.ModelViewSet):
    """ API endpoint that allows AssetGroup to be viewed or edited.
        some other comment
    """
    queryset = AssetGroup.objects.all()
    serializer_class = serializers.AssetGroupSerializer


class AssetUpdateGroupApi(generics.RetrieveUpdateAPIView):
    queryset = Asset.objects.all()
    serializer_class = serializers.AssetUpdateGroupSerializer
    permission_classes = (IsSuperUser,)


class IDCViewSet(viewsets.ModelViewSet):
    """API endpoint that allows IDC to be viewed or edited."""
    queryset = IDC.objects.all()
    serializer_class = serializers.IDCSerializer
    permission_classes = (IsSuperUser,)


class AdminUserViewSet(viewsets.ModelViewSet):
    queryset = AdminUser.objects.all()
    serializer_class = serializers.AdminUserSerializer
    permission_classes = (IsSuperUser,)


class SystemUserViewSet(viewsets.ModelViewSet):
    queryset = SystemUser.objects.all()
    serializer_class = serializers.SystemUserSerializer
    permission_classes = (IsSuperUser,)


class SystemUserUpdateApi(generics.RetrieveUpdateAPIView):
    queryset = Asset.objects.all()
    serializer_class = serializers.AssetUpdateSystemUserSerializer
    permission_classes = (IsSuperUser,)


# class IDCAssetsApi(generics.ListAPIView):
#     model = IDC
#     serializer_class = serializers.AssetSerializer
#
#     def get(self, request, *args, **kwargs):
#         filter_kwargs = {self.lookup_field: self.kwargs[self.lookup_field]}
#         self.object = get_object_or_404(self.model, **filter_kwargs)
#         return super(IDCAssetsApi, self).get(request, *args, **kwargs)
#
#     def get_queryset(self):
#         return self.object.assets.all()


class AssetListUpdateApi(IDInFilterMixin, ListBulkCreateUpdateDestroyAPIView):
    queryset = Asset.objects.all()
    serializer_class = serializers.AssetSerializer
    permission_classes = (IsSuperUser,)


class SystemUserAuthApi(APIView):
    permission_classes = (IsSuperUserOrAppUser,)

    def get(self, request, *args, **kwargs):
        system_user_id = request.query_params.get('system_user_id', -1)
        system_user_username = request.query_params.get('system_user_username', '')

        system_user = get_object_or_none(SystemUser, id=system_user_id, username=system_user_username)

        if system_user:
            if system_user.password:
                password = signer.sign(system_user.password)
            else:
                password = signer.sign('')

            if system_user.private_key:
                private_key = signer.sign(system_user.private_key)
            else:
                private_key = signer.sign(None)

            response = {
                'id': system_user.id,
                'password': password,
                'private_key': private_key,
            }

            return Response(response)
        else:
            return Response({'msg': 'error system user id or username'}, status=401)
添加 utils和api样例文件 8 years ago			`# ~~ coding: utf-8 ~~`
Add user perm model and form 8 years ago
Stash 8 years ago			`from rest_framework import viewsets, generics, mixins`
Add token 8 years ago			`from rest_framework.response import Response`
Update signer 8 years ago			`from rest_framework.views import APIView`
			`from rest_framework_bulk import BulkListSerializer, BulkSerializerMixin, ListBulkCreateUpdateDestroyAPIView`
Stash 8 years ago			`from django.shortcuts import get_object_or_404`
Update signer 8 years ago
Base finish user 8 years ago			`from common.mixins import IDInFilterMixin`
Add token 8 years ago			`from common.utils import get_object_or_none, signer`
Finish access key auth 8 years ago			`from .hands import IsSuperUserOrAppUser, IsSuperUser`
Stash 8 years ago			`from .models import AssetGroup, Asset, IDC, SystemUser, AdminUser`
			`from . import serializers`
add asset amdin\|sys user model 8 years ago

Base finish user 8 years ago			`class AssetViewSet(IDInFilterMixin, viewsets.ModelViewSet):`
asset:add assets_bulk_update 8 years ago			`"""API endpoint that allows Asset to be viewed or edited."""`
add asset add 8 years ago			`queryset = Asset.objects.all()`
Stash 8 years ago			`serializer_class = serializers.AssetSerializer`
to Commpany 8 years ago			`filter_fields = ('id', 'ip', 'hostname')`
Finish access key auth 8 years ago			`permission_classes = (IsSuperUserOrAppUser,)`
add asset add 8 years ago
Finish system user list 8 years ago			`def get_queryset(self):`
			`queryset = super(AssetViewSet, self).get_queryset()`
Update asset 8 years ago			`idc_id = self.request.query_params.get('idc_id', '')`
			`asset_group_id = self.request.query_params.get('asset_group_id', '')`
			`if idc_id:`
			`queryset = queryset.filter(idc__id=idc_id)`

			`if asset_group_id:`
			`queryset = queryset.filter(groups__id=asset_group_id)`
Finish system user list 8 years ago			`return queryset`

add asset amdin\|sys user model 8 years ago
Update perm api 8 years ago			`class AssetGroupViewSet(viewsets.ModelViewSet):`
			`""" API endpoint that allows AssetGroup to be viewed or edited.`
			`some other comment`
			`"""`
			`queryset = AssetGroup.objects.all()`
			`serializer_class = serializers.AssetGroupSerializer`

Add black line 8 years ago
add asset tool 8 years ago			`class AssetUpdateGroupApi(generics.RetrieveUpdateAPIView):`
			`queryset = Asset.objects.all()`
			`serializer_class = serializers.AssetUpdateGroupSerializer`
			`permission_classes = (IsSuperUser,)`
Update perm api 8 years ago
Add black line 8 years ago
Stash 8 years ago			`class IDCViewSet(viewsets.ModelViewSet):`
asset:add assets_bulk_update 8 years ago			`"""API endpoint that allows IDC to be viewed or edited."""`
add asset add 8 years ago			`queryset = IDC.objects.all()`
Stash 8 years ago			`serializer_class = serializers.IDCSerializer`
Add token 8 years ago			`permission_classes = (IsSuperUser,)`
update assets-group 8 years ago
Add black line 8 years ago
Stash 8 years ago			`class AdminUserViewSet(viewsets.ModelViewSet):`
			`queryset = AdminUser.objects.all()`
			`serializer_class = serializers.AdminUserSerializer`
			`permission_classes = (IsSuperUser,)`

Add black line 8 years ago
Stash 8 years ago			`class SystemUserViewSet(viewsets.ModelViewSet):`
			`queryset = SystemUser.objects.all()`
			`serializer_class = serializers.SystemUserSerializer`
			`permission_classes = (IsSuperUser,)`

Add black line 8 years ago
add asset tool 8 years ago			`class SystemUserUpdateApi(generics.RetrieveUpdateAPIView):`
			`queryset = Asset.objects.all()`
			`serializer_class = serializers.AssetUpdateSystemUserSerializer`
			`permission_classes = (IsSuperUser,)`

Stash 8 years ago
Finish system user list 8 years ago			`# class IDCAssetsApi(generics.ListAPIView):`
			`# model = IDC`
			`# serializer_class = serializers.AssetSerializer`
			`#`
			`# def get(self, request, args, *kwargs):`
			`# filter_kwargs = {self.lookup_field: self.kwargs[self.lookup_field]}`
			`# self.object = get_object_or_404(self.model, **filter_kwargs)`
			`# return super(IDCAssetsApi, self).get(request, args, *kwargs)`
			`#`
			`# def get_queryset(self):`
			`# return self.object.assets.all()`
Stash 8 years ago
asset:add assets_bulk_update 8 years ago
Base finish user 8 years ago			`class AssetListUpdateApi(IDInFilterMixin, ListBulkCreateUpdateDestroyAPIView):`
asset:add assets_bulk 8 years ago			`queryset = Asset.objects.all()`
Update perm api 8 years ago			`serializer_class = serializers.AssetSerializer`
Add token 8 years ago			`permission_classes = (IsSuperUser,)`
Update signer 8 years ago

Add token 8 years ago			`class SystemUserAuthApi(APIView):`
Finish access key auth 8 years ago			`permission_classes = (IsSuperUserOrAppUser,)`
Add token 8 years ago
Update signer 8 years ago			`def get(self, request, args, *kwargs):`
Add token 8 years ago			`system_user_id = request.query_params.get('system_user_id', -1)`
			`system_user_username = request.query_params.get('system_user_username', '')`
Update signer 8 years ago
Add token 8 years ago			`system_user = get_object_or_none(SystemUser, id=system_user_id, username=system_user_username)`
Update signer 8 years ago
			`if system_user:`
Finish some bug 8 years ago			`if system_user.password:`
			`password = signer.sign(system_user.password)`
			`else:`
			`password = signer.sign('')`

			`if system_user.private_key:`
			`private_key = signer.sign(system_user.private_key)`
			`else:`
			`private_key = signer.sign(None)`
Add token 8 years ago
			`response = {`
			`'id': system_user.id,`
			`'password': password,`
			`'private_key': private_key,`
			`}`

			`return Response(response)`
			`else:`
			`return Response({'msg': 'error system user id or username'}, status=401)`
asset:add assets_bulk_update 8 years ago