jumpserver/apps/tickets/views/approve.py

# -*- coding: utf-8 -*-
#

from __future__ import unicode_literals
from django.views.generic.base import TemplateView
from django.shortcuts import redirect, reverse
from django.core.cache import cache
from django.utils.translation import ugettext as _

from orgs.utils import tmp_to_root_org
from tickets.models import (
    Ticket, ApplyAssetTicket,
    ApplyLoginTicket, ApplyLoginAssetTicket, ApplyCommandTicket
)
from tickets.const import TicketType
from tickets.errors import AlreadyClosed
from common.utils import get_logger, FlashMessageUtil

logger = get_logger(__name__)

__all__ = ['TicketDirectApproveView']


class TicketDirectApproveView(TemplateView):
    template_name = 'tickets/approve_check_password.html'
    redirect_field_name = 'next'

    TICKET_SUB_MODEL_MAP = {
        TicketType.apply_asset: ApplyAssetTicket,
        TicketType.login_confirm: ApplyLoginTicket,
        TicketType.login_asset_confirm: ApplyLoginAssetTicket,
        TicketType.command_confirm: ApplyCommandTicket,
    }

    @property
    def message_data(self):
        return {
            'title': _('Ticket approval'),
            'error': _("This ticket does not exist, "
                       "the process has ended, or this link has expired"),
            'redirect_url': self.login_url,
            'auto_redirect': False
        }

    @property
    def login_url(self):
        return reverse('authentication:login') + '?admin=1'

    def redirect_message_response(self, **kwargs):
        message_data = self.message_data
        for key, value in kwargs.items():
            if isinstance(value, str):
                message_data[key] = value
        if message_data.get('message'):
            message_data.pop('error')
        redirect_url = FlashMessageUtil.gen_message_url(message_data)
        return redirect(redirect_url)

    @staticmethod
    def clear(token):
        cache.delete(token)

    def get_context_data(self, **kwargs):
        # 放入工单信息
        token = kwargs.get('token')
        content = cache.get(token, {}).get('content', [])
        if self.request.user.is_authenticated:
            prompt_msg = _('Click the button below to approve or reject')
        else:
            prompt_msg = _('After successful authentication, this ticket can be approved directly')
        kwargs.update({
            'content': content, 'prompt_msg': prompt_msg,
            'login_url': '%s&next=%s' % (
                self.login_url,
                reverse('tickets:direct-approve', kwargs={'token': token})
            ),
        })
        return super().get_context_data(**kwargs)

    def get(self, request, *args, **kwargs):
        token = kwargs.get('token')
        ticket_info = cache.get(token)
        if not ticket_info:
            return self.redirect_message_response(redirect_url=self.login_url)
        return super().get(request, *args, **kwargs)

    def post(self, request, **kwargs):
        user = request.user
        token = kwargs.get('token')
        action = request.POST.get('action')
        if action not in ['approve', 'reject']:
            msg = _('Illegal approval action')
            return self.redirect_message_response(error=str(msg))

        ticket_info = cache.get(token)
        if not ticket_info:
            return self.redirect_message_response(redirect_url=self.login_url)
        try:
            ticket_id = ticket_info.get('ticket_id')
            with tmp_to_root_org():
                ticket = Ticket.all().get(id=ticket_id)
                ticket_sub_model = self.TICKET_SUB_MODEL_MAP[ticket.type]
                ticket = ticket_sub_model.objects.get(id=ticket_id)
            if not ticket.has_current_assignee(user):
                raise Exception(_("This user is not authorized to approve this ticket"))
            getattr(ticket, action)(user)
        except AlreadyClosed as e:
            self.clear(token)
            return self.redirect_message_response(error=str(e), redirect_url=self.login_url)
        except Exception as e:
            return self.redirect_message_response(error=str(e), redirect_url=self.login_url)

        self.clear(token)
        return self.redirect_message_response(message=_("Success"), redirect_url=self.login_url)
feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`# -- coding: utf-8 --`
			`#`

			`from __future__ import unicode_literals`
			`from django.views.generic.base import TemplateView`
			`from django.shortcuts import redirect, reverse`
			`from django.core.cache import cache`
			`from django.utils.translation import ugettext as _`

fix: 解决一些工单已知问题 (#8501) Co-authored-by: feng626 <1304903146@qq.com> 2 years ago			`from orgs.utils import tmp_to_root_org`
			`from tickets.models import (`
perf: 删除一部分 system user 2 years ago			`Ticket, ApplyAssetTicket,`
fix: 解决一些工单已知问题 (#8501) Co-authored-by: feng626 <1304903146@qq.com> 2 years ago			`ApplyLoginTicket, ApplyLoginAssetTicket, ApplyCommandTicket`
			`)`
			`from tickets.const import TicketType`
feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`from tickets.errors import AlreadyClosed`
			`from common.utils import get_logger, FlashMessageUtil`

			`logger = get_logger(__name__)`
fix: 解决一些工单已知问题 (#8501) Co-authored-by: feng626 <1304903146@qq.com> 2 years ago
feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`__all__ = ['TicketDirectApproveView']`


			`class TicketDirectApproveView(TemplateView):`
			`template_name = 'tickets/approve_check_password.html'`
			`redirect_field_name = 'next'`

fix: 解决一些工单已知问题 (#8501) Co-authored-by: feng626 <1304903146@qq.com> 2 years ago			`TICKET_SUB_MODEL_MAP = {`
			`TicketType.apply_asset: ApplyAssetTicket,`
			`TicketType.login_confirm: ApplyLoginTicket,`
			`TicketType.login_asset_confirm: ApplyLoginAssetTicket,`
			`TicketType.command_confirm: ApplyCommandTicket,`
			`}`

feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`@property`
			`def message_data(self):`
			`return {`
perf: 企业微信、钉钉工单审批增加拒绝功能 (#8208) * perf: 工单直接审批增加拒绝功能 * feat: 翻译 * perf: 修改动作名词 * perf: 修改翻译 3 years ago			`'title': _('Ticket approval'),`
feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`'error': _("This ticket does not exist, "`
			`"the process has ended, or this link has expired"),`
			`'redirect_url': self.login_url,`
			`'auto_redirect': False`
			`}`

			`@property`
			`def login_url(self):`
			`return reverse('authentication:login') + '?admin=1'`

			`def redirect_message_response(self, **kwargs):`
			`message_data = self.message_data`
			`for key, value in kwargs.items():`
			`if isinstance(value, str):`
			`message_data[key] = value`
			`if message_data.get('message'):`
			`message_data.pop('error')`
			`redirect_url = FlashMessageUtil.gen_message_url(message_data)`
			`return redirect(redirect_url)`

			`@staticmethod`
			`def clear(token):`
			`cache.delete(token)`

			`def get_context_data(self, **kwargs):`
			`# 放入工单信息`
			`token = kwargs.get('token')`
perf: 重构 ticket (#8281) * perf: 重构 ticket * perf: 优化 tickets * perf: 暂存 * perf: 建立 ticket model * perf: 暂存一下 * perf: 修改 tickets * perf: 修改 import * perf: 修改model * perf: 暂存一波 * perf: 修改... * del process_map field * 工单重构 * 资产应用对接前端 * perf: 修改 ticket * fix: bug * 修改迁移文件 * 添加其他api * 去掉process_map * perf: 优化去掉 signal * perf: 修改这里 * 修改一点 * perf: 修改工单 * perf: 修改状态 * perf: 修改工单流转 * step 状态切换 * perf: 修改 ticket open * perf: 修改流程 * perf: stash it * 改又改 * stash it * perf: stash * stash * migrate * perf migrate * 调整一下 * 修复bug * 修改一点 * 修改一点 * 优化一波 * perf: ticket migrations Co-authored-by: ibuler <ibuler@qq.com> Co-authored-by: feng626 <1304903146@qq.com> 2 years ago			`content = cache.get(token, {}).get('content', [])`
feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`if self.request.user.is_authenticated:`
perf: 企业微信、钉钉工单审批增加拒绝功能 (#8208) * perf: 工单直接审批增加拒绝功能 * feat: 翻译 * perf: 修改动作名词 * perf: 修改翻译 3 years ago			`prompt_msg = _('Click the button below to approve or reject')`
feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`else:`
			`prompt_msg = _('After successful authentication, this ticket can be approved directly')`
			`kwargs.update({`
perf: 重构 ticket (#8281) * perf: 重构 ticket * perf: 优化 tickets * perf: 暂存 * perf: 建立 ticket model * perf: 暂存一下 * perf: 修改 tickets * perf: 修改 import * perf: 修改model * perf: 暂存一波 * perf: 修改... * del process_map field * 工单重构 * 资产应用对接前端 * perf: 修改 ticket * fix: bug * 修改迁移文件 * 添加其他api * 去掉process_map * perf: 优化去掉 signal * perf: 修改这里 * 修改一点 * perf: 修改工单 * perf: 修改状态 * perf: 修改工单流转 * step 状态切换 * perf: 修改 ticket open * perf: 修改流程 * perf: stash it * 改又改 * stash it * perf: stash * stash * migrate * perf migrate * 调整一下 * 修复bug * 修改一点 * 修改一点 * 优化一波 * perf: ticket migrations Co-authored-by: ibuler <ibuler@qq.com> Co-authored-by: feng626 <1304903146@qq.com> 2 years ago			`'content': content, 'prompt_msg': prompt_msg,`
feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`'login_url': '%s&next=%s' % (`
			`self.login_url,`
			`reverse('tickets:direct-approve', kwargs={'token': token})`
			`),`
			`})`
			`return super().get_context_data(**kwargs)`

			`def get(self, request, args, *kwargs):`
			`token = kwargs.get('token')`
			`ticket_info = cache.get(token)`
			`if not ticket_info:`
			`return self.redirect_message_response(redirect_url=self.login_url)`
			`return super().get(request, args, *kwargs)`

			`def post(self, request, **kwargs):`
			`user = request.user`
			`token = kwargs.get('token')`
perf: 企业微信、钉钉工单审批增加拒绝功能 (#8208) * perf: 工单直接审批增加拒绝功能 * feat: 翻译 * perf: 修改动作名词 * perf: 修改翻译 3 years ago			`action = request.POST.get('action')`
			`if action not in ['approve', 'reject']:`
			`msg = _('Illegal approval action')`
			`return self.redirect_message_response(error=str(msg))`

feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`ticket_info = cache.get(token)`
			`if not ticket_info:`
			`return self.redirect_message_response(redirect_url=self.login_url)`
			`try:`
			`ticket_id = ticket_info.get('ticket_id')`
fix: 解决一些工单已知问题 (#8501) Co-authored-by: feng626 <1304903146@qq.com> 2 years ago			`with tmp_to_root_org():`
			`ticket = Ticket.all().get(id=ticket_id)`
			`ticket_sub_model = self.TICKET_SUB_MODEL_MAP[ticket.type]`
			`ticket = ticket_sub_model.objects.get(id=ticket_id)`
feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`if not ticket.has_current_assignee(user):`
			`raise Exception(_("This user is not authorized to approve this ticket"))`
perf: 企业微信、钉钉工单审批增加拒绝功能 (#8208) * perf: 工单直接审批增加拒绝功能 * feat: 翻译 * perf: 修改动作名词 * perf: 修改翻译 3 years ago			`getattr(ticket, action)(user)`
feat: 支持企业微信、钉钉直接审批工单 (#8115) 3 years ago			`except AlreadyClosed as e:`
			`self.clear(token)`
			`return self.redirect_message_response(error=str(e), redirect_url=self.login_url)`
			`except Exception as e:`
			`return self.redirect_message_response(error=str(e), redirect_url=self.login_url)`

			`self.clear(token)`
			`return self.redirect_message_response(message=_("Success"), redirect_url=self.login_url)`