jumpserver/jperm/perm_api.py

# coding: utf-8


from jumpserver.api import *
import uuid
import re

from jumpserver.models import Setting
from jperm.models import PermRole
from jperm.models import PermRule


def get_object_list(model, id_list):
    """根据id列表获取对象列表"""
    object_list = []
    for object_id in id_list:
        if object_id:
            object_list.extend(model.objects.filter(id=int(object_id)))

    return object_list


def get_role_info(role_id, type="all"):
    """
    获取role对应的一些信息
    :return: 返回值 均为对象列表
    """
    # 获取role对应的授权规则
    role_obj = PermRole.objects.get(id=role_id)
    rules_obj = role_obj.perm_rule.all()
    # 获取role 对应的用户 和 用户组
    # 获取role 对应的主机 和主机组
    users_obj = []
    assets_obj = []
    user_groups_obj = []
    group_users_obj = []
    asset_groups_obj = []
    group_assets_obj = []
    for rule in rules_obj:
        for user in rule.user.all():
            users_obj.append(user)
        for asset in rule.asset.all():
            assets_obj.append(asset)
        for user_group in rule.user_group.all():
            user_groups_obj.append(user_group)
            for user in user_group.user_set.all():
                group_users_obj.append(user)
        for asset_group in rule.asset_group.all():
            asset_groups_obj.append(asset_group)
            for asset in asset_group.asset_set.all():
                group_assets_obj.append(asset)

    calc_users = set(users_obj) | set(group_users_obj)
    calc_assets = set(assets_obj) | set(group_assets_obj)

    if type == "all":
        return {"rules": rules_obj,
                "users": list(calc_users),
                "user_groups": user_groups_obj,
                "assets": list(calc_assets),
                "asset_groups": asset_groups_obj,
                }
    elif type == "rule":
        return rules_obj
    elif type == "user":
        return calc_users
    elif type == "user_group":
        return user_groups_obj
    elif type == "asset":
        return calc_assets
    elif type == "asset_group":
        return asset_groups_obj
    else:
        return u"不支持的查询"


if __name__ == "__main__":
    print get_role_info(1)
shouquanxiugai 2015-10-04 13:50:29 +00:00			`# coding: utf-8`

1. rule operations list add delete edit info page compeleted 2. rule operations list add delete edit info page compeleted 2015-11-14 13:13:02 +00:00
shouquanxiugai 2015-10-04 13:50:29 +00:00			`from jumpserver.api import *`
			`import uuid`
			`import re`

修改settings 2015-10-05 15:48:03 +00:00			`from jumpserver.models import Setting`
1. rule operations list add delete edit info page compeleted 2. rule operations list add delete edit info page compeleted 2015-11-14 13:13:02 +00:00			`from jperm.models import PermRole`
定义Command前 2015-11-20 10:42:44 +00:00			`from jperm.models import PermRule`
1. rule operations list add delete edit info page compeleted 2. rule operations list add delete edit info page compeleted 2015-11-14 13:13:02 +00:00
shouquanxiugai 2015-10-04 13:50:29 +00:00
			`def get_object_list(model, id_list):`
添加组授权 2015-10-06 10:51:49 +00:00			`"""根据id列表获取对象列表"""`
shouquanxiugai 2015-10-04 13:50:29 +00:00			`object_list = []`
			`for object_id in id_list:`
			`if object_id:`
			`object_list.extend(model.objects.filter(id=int(object_id)))`

			`return object_list`


1. rule operations list add delete edit info page compeleted 2. rule operations list add delete edit info page compeleted 2015-11-14 13:13:02 +00:00			`def get_role_info(role_id, type="all"):`
			`"""`
			`获取role对应的一些信息`
			`:return: 返回值均为对象列表`
			`"""`
			`# 获取role对应的授权规则`
			`role_obj = PermRole.objects.get(id=role_id)`
			`rules_obj = role_obj.perm_rule.all()`
			`# 获取role 对应的用户和用户组`
			`# 获取role 对应的主机和主机组`
			`users_obj = []`
			`assets_obj = []`
			`user_groups_obj = []`
			`group_users_obj = []`
			`asset_groups_obj = []`
			`group_assets_obj = []`
			`for rule in rules_obj:`
			`for user in rule.user.all():`
			`users_obj.append(user)`
			`for asset in rule.asset.all():`
			`assets_obj.append(asset)`
			`for user_group in rule.user_group.all():`
			`user_groups_obj.append(user_group)`
			`for user in user_group.user_set.all():`
			`group_users_obj.append(user)`
			`for asset_group in rule.asset_group.all():`
			`asset_groups_obj.append(asset_group)`
			`for asset in asset_group.asset_set.all():`
			`group_assets_obj.append(asset)`

			`calc_users = set(users_obj) \| set(group_users_obj)`
			`calc_assets = set(assets_obj) \| set(group_assets_obj)`

			`if type == "all":`
			`return {"rules": rules_obj,`
			`"users": list(calc_users),`
			`"user_groups": user_groups_obj,`
			`"assets": list(calc_assets),`
			`"asset_groups": asset_groups_obj,`
			`}`
			`elif type == "rule":`
			`return rules_obj`
			`elif type == "user":`
			`return calc_users`
			`elif type == "user_group":`
			`return user_groups_obj`
			`elif type == "asset":`
			`return calc_assets`
			`elif type == "asset_group":`
			`return asset_groups_obj`
			`else:`
			`return u"不支持的查询"`
perm edit 2015-10-19 15:40:16 +00:00

1. rule operations list add delete edit info page compeleted 2. rule operations list add delete edit info page compeleted 2015-11-14 13:13:02 +00:00			`if __name__ == "__main__":`
			`print get_role_info(1)`
perm edit 2015-10-19 15:40:16 +00:00

修改使用新表结构 2015-10-06 15:47:53 +00:00