2015-01-25 14:20:07 +00:00
# coding:utf-8
2015-02-09 11:02:25 +00:00
from django.db.models import Q
2015-03-17 05:56:43 +00:00
from django.template import RequestContext
2016-03-25 14:19:31 +00:00
from django.shortcuts import render_to_response, render
2015-04-15 10:47:02 +00:00
from jumpserver.api import *
2015-12-19 09:26:34 +00:00
from jperm.perm_api import user_have_perm
2015-04-18 05:51:47 +00:00
from django.http import HttpResponseNotFound
2016-03-29 12:56:19 +00:00
from jlog.log_api import renderJSON
2015-01-25 14:20:07 +00:00
2016-03-27 03:11:50 +00:00
from jlog.models import Log, ExecLog, FileLog, TermLog
2016-03-23 08:36:55 +00:00
from jumpserver.settings import LOG_DIR
import zipfile
import json
2016-03-23 10:25:18 +00:00
import pyte
2015-01-25 14:20:07 +00:00
2015-02-01 15:00:23 +00:00
2015-12-19 09:26:34 +00:00
def log_list(request, offset):
""" 显示日志 """
header_title, path1 = u'审计', u'操作审计'
date_seven_day = request.GET.get('start', '')
date_now_str = request.GET.get('end', '')
username_list = request.GET.getlist('username', [])
host_list = request.GET.getlist('host', [])
cmd = request.GET.get('cmd', '')
if offset == 'online':
keyword = request.GET.get('keyword', '')
posts = Log.objects.filter(is_finished=False).order_by('-start_time')
2015-03-19 10:32:10 +00:00
if keyword:
2015-12-19 09:26:34 +00:00
posts = posts.filter(Q(user__icontains=keyword) | Q(host__icontains=keyword) |
2016-03-25 09:36:12 +00:00
2015-03-19 10:32:10 +00:00
2015-12-19 09:26:34 +00:00
elif offset == 'exec':
posts = ExecLog.objects.all().order_by('-id')
keyword = request.GET.get('keyword', '')
2015-03-19 10:32:10 +00:00
if keyword:
2016-03-23 08:36:55 +00:00
posts = posts.filter(Q(user__icontains=keyword) | Q(host__icontains=keyword) | Q(cmd__icontains=keyword))
2015-12-19 09:26:34 +00:00
elif offset == 'file':
posts = FileLog.objects.all().order_by('-id')
keyword = request.GET.get('keyword', '')
2015-03-26 10:42:52 +00:00
if keyword:
2016-03-23 08:36:55 +00:00
posts = posts.filter(
Q(user__icontains=keyword) | Q(host__icontains=keyword) | Q(filename__icontains=keyword))
2015-12-19 09:26:34 +00:00
posts = Log.objects.filter(is_finished=True).order_by('-start_time')
username_all = set([log.user for log in Log.objects.all()])
ip_all = set([log.host for log in Log.objects.all()])
2015-04-16 11:03:02 +00:00
2015-12-19 09:26:34 +00:00
if date_seven_day and date_now_str:
datetime_start = datetime.datetime.strptime(date_seven_day + ' 00:00:01', '%m/%d/%Y %H:%M:%S')
datetime_end = datetime.datetime.strptime(date_now_str + ' 23:59:59', '%m/%d/%Y %H:%M:%S')
posts = posts.filter(start_time__gte=datetime_start).filter(start_time__lte=datetime_end)
2015-03-19 10:32:10 +00:00
2015-12-19 09:26:34 +00:00
if username_list:
posts = posts.filter(user__in=username_list)
if host_list:
posts = posts.filter(host__in=host_list)
if cmd:
log_id_list = set([log.log_id for log in TtyLog.objects.filter(cmd__contains=cmd)])
posts = posts.filter(id__in=log_id_list)
if not date_seven_day:
date_now = datetime.datetime.now()
date_now_str = date_now.strftime('%m/%d/%Y')
date_seven_day = (date_now + datetime.timedelta(days=-7)).strftime('%m/%d/%Y')
2015-02-09 11:02:25 +00:00
2015-04-11 04:52:00 +00:00
contact_list, p, contacts, page_range, current_page, show_first, show_end = pages(posts, request)
2015-03-19 10:32:10 +00:00
2015-12-19 09:26:34 +00:00
session_id = request.session.session_key
2015-04-11 04:52:00 +00:00
return render_to_response('jlog/log_%s.html' % offset, locals(), context_instance=RequestContext(request))
2015-01-25 14:20:07 +00:00
2015-12-19 09:26:34 +00:00
def log_detail(request):
return my_render('jlog/exec_detail.html', locals(), request)
2015-04-15 10:47:02 +00:00
def log_kill(request):
2015-04-16 11:03:02 +00:00
""" 杀掉connect进程 """
2015-04-15 10:47:02 +00:00
pid = request.GET.get('id', '')
log = Log.objects.filter(pid=pid)
if log:
2015-04-21 06:45:38 +00:00
log = log[0]
2015-06-09 01:49:31 +00:00
os.kill(int(pid), 9)
except OSError:
2015-04-16 06:32:48 +00:00
Log.objects.filter(pid=pid).update(is_finished=1, end_time=datetime.datetime.now())
return render_to_response('jlog/log_offline.html', locals(), context_instance=RequestContext(request))
2015-04-18 05:51:47 +00:00
return HttpResponseNotFound(u'没有此进程!')
2015-02-09 11:02:25 +00:00
2015-12-19 09:26:34 +00:00
2015-02-09 11:02:25 +00:00
def log_history(request):
2015-04-16 11:03:02 +00:00
""" 命令历史记录 """
2015-04-15 10:47:02 +00:00
log_id = request.GET.get('id', 0)
2015-12-19 09:26:34 +00:00
log = Log.objects.filter(id=log_id)
2015-04-15 10:47:02 +00:00
if log:
2015-04-21 06:45:38 +00:00
log = log[0]
2015-12-19 09:26:34 +00:00
tty_logs = log.ttylog_set.all()
if tty_logs:
content = ''
for tty_log in tty_logs:
content += '%s: %s\n' % (tty_log.datetime.strftime('%Y-%m-%d %H:%M:%S'), tty_log.cmd)
return HttpResponse(content)
2015-04-15 10:47:02 +00:00
2015-12-19 09:26:34 +00:00
return HttpResponse('无日志记录!')
2015-04-15 10:47:02 +00:00
2015-12-19 09:26:34 +00:00
2016-03-25 14:19:31 +00:00
# @require_role('admin')
# def log_record(request):
# log_id = request.GET.get('id', 0)
# log = Log.objects.filter(id=int(log_id))
# if log:
# log = log[0]
# log_file = log.log_path + '.log'
# log_time = log.log_path + '.time'
# if os.path.isfile(log_file) and os.path.isfile(log_time):
# content = renderTemplate(log_file, log_time)
# return HttpResponse(content)
# else:
# return HttpResponse('无日志记录!')
2015-12-19 09:26:34 +00:00
def log_record(request):
2016-03-25 14:19:31 +00:00
Author: liuzheng712@gmail.com
if request.method == "GET":
return render(request, 'jlog/record.html')
elif request.method == "POST":
log_id = request.REQUEST.get('id', None)
if log_id:
2016-03-25 15:52:48 +00:00
TermL = TermLogRecorder(request.user)
2016-03-27 03:11:50 +00:00
log = Log.objects.get(id=int(log_id))
2016-03-29 12:56:19 +00:00
if len(log.filename) == 0:
log_file = log.log_path + '.log'
log_time = log.log_path + '.time'
if os.path.isfile(log_file) and os.path.isfile(log_time):
content = renderJSON(log_file, log_time)
return HttpResponse(content)
return HttpResponse(TermL.load_full_log(filename=log.filename))
2015-04-15 10:47:02 +00:00
2016-03-25 14:19:31 +00:00
return HttpResponse("ERROR")
return HttpResponse("ERROR METHOD!")
2015-02-09 11:02:25 +00:00
2015-12-19 09:26:34 +00:00
def log_detail(request, offset):
log_id = request.GET.get('id')
if offset == 'exec':
log = get_object(ExecLog, id=log_id)
assets_hostname = log.host.split(' ')
result = eval(str(log.result))
except (SyntaxError, NameError):
result = {}
return my_render('jlog/exec_detail.html', locals(), request)
elif offset == 'file':
log = get_object(FileLog, id=log_id)
assets_hostname = log.host.split(' ')
file_list = log.filename.split(' ')
result = eval(str(log.result))
except (SyntaxError, NameError):
result = {}
return my_render('jlog/file_detail.html', locals(), request)
2016-03-23 08:36:55 +00:00
class TermLogRecorder(object):
2016-03-23 10:25:18 +00:00
Author: liuzheng <liuzheng712@gmail>
This class is use for record the terminal output log.
self.commands is pure commands list, it will have empty item '' because in vi/vim model , I made it log noting.
self.CMD is the command with timestamp, like this {'1458723794.88': u'ls', '1458723799.82': u'tree'}.
self.log is the all output with delta time log.
self.vim_pattern is the regexp for check vi/vim/fg model.
2016-03-23 14:38:02 +00:00
recorder = TermLogRecorder(user=UserObject) # or recorder = TermLogRecorder(uid=UserID)
2016-03-23 10:25:18 +00:00
recoder.save() # save all log into database
2016-03-23 14:38:02 +00:00
# The following methods all have `user`,`uid`,args. Same as __init__
2016-03-23 10:25:18 +00:00
list = recoder.list() # will give a object about this user's all log info
recoder.load_full_log(filemane) # will get full log
recoder.load_history(filename) # will only get the command history list
2016-03-23 14:38:02 +00:00
recoder.share_to(filename,user=UserObject) # or recoder.share_to(filename,uid=UserID). will share this commands to someone
recoder.unshare_to(filename,user=UserObject) # or recoder.unshare_to(filename,uid=UserID). will unshare this commands to someone
2016-03-27 03:11:50 +00:00
recoder.setid(id) # registered this term with an id, for monitor
2016-03-23 10:25:18 +00:00
2016-03-27 03:11:50 +00:00
loglist = dict()
2016-03-23 10:25:18 +00:00
2016-03-23 14:38:02 +00:00
def __init__(self, user=None, uid=None):
2016-03-23 08:36:55 +00:00
self.log = {}
2016-03-27 03:11:50 +00:00
self.id = 0
2016-03-23 14:38:02 +00:00
if isinstance(user, User):
self.user = user
elif uid:
self.user = User.objects.get(id=uid)
self.user = None
2016-03-23 08:36:55 +00:00
self.recoderStartTime = time.time()
2016-03-24 09:17:47 +00:00
self.recoder = False
2016-03-23 10:25:18 +00:00
self.commands = []
self._lists = None
self.file = None
2016-03-27 14:00:00 +00:00
self.filename = None
2016-03-23 10:25:18 +00:00
self._data = None
2016-03-23 08:36:55 +00:00
self.vim_pattern = re.compile(r'\W?vi[m]?\s.* | \W?fg\s.*', re.X)
self._in_vim = False
self.CMD = {}
def __init_screen_stream(self):
2016-03-23 10:26:23 +00:00
Initializing the virtual screen and the character stream
2016-03-23 08:36:55 +00:00
self._stream = pyte.ByteStream()
self._screen = pyte.Screen(80, 24)
def _command(self):
for i in self._screen.display:
if i.strip().__len__() > 0:
2016-03-23 10:25:18 +00:00
2016-03-23 09:05:02 +00:00
if not i.strip() == '':
2016-03-23 10:25:18 +00:00
self.CMD[str(time.time())] = self.commands[-1]
2016-03-23 08:36:55 +00:00
2016-03-27 03:11:50 +00:00
def setid(self, id):
2016-03-27 04:17:02 +00:00
self.id = id
2016-03-27 14:29:39 +00:00
TermLogRecorder.loglist[str(id)] = [self]
2016-03-27 03:11:50 +00:00
2016-03-23 08:36:55 +00:00
def write(self, msg):
if self.recoder and (not self._in_vim):
2016-03-23 10:25:18 +00:00
if self.commands.__len__() == 0:
2016-03-23 08:36:55 +00:00
2016-03-23 10:25:18 +00:00
elif not self.vim_pattern.search(self.commands[-1]):
2016-03-23 08:36:55 +00:00
self._in_vim = True
if self._in_vim:
if re.compile(r'\[\?1049', re.X).search(msg.decode('utf-8', 'replace')):
self._in_vim = False
2016-03-23 10:25:18 +00:00
2016-03-23 08:36:55 +00:00
2016-03-27 03:11:50 +00:00
2016-03-23 09:07:57 +00:00
# print "<<<<<<<<<<<<<<<<"
2016-03-23 10:25:18 +00:00
# print self.commands
2016-03-23 09:07:57 +00:00
# print self.CMD
# print ">>>>>>>>>>>>>>>>"
2016-03-23 08:36:55 +00:00
self.log[str(time.time() - self.recoderStartTime)] = msg.decode('utf-8', 'replace')
def save(self, path=LOG_DIR):
date = datetime.datetime.now().strftime('%Y%m%d')
filename = str(uuid.uuid4())
2016-03-27 03:11:50 +00:00
self.filename = filename
2016-03-23 08:36:55 +00:00
filepath = os.path.join(path, 'tty', date, filename + '.zip')
2016-03-23 14:38:02 +00:00
if not os.path.isdir(os.path.join(path, 'tty', date)):
os.makedirs(os.path.join(path, 'tty', date), mode=0777)
2016-03-23 08:36:55 +00:00
while os.path.isfile(filepath):
filename = str(uuid.uuid4())
filepath = os.path.join(path, 'tty', date, filename + '.zip')
password = str(uuid.uuid4())
zf = zipfile.ZipFile(filepath, 'w', zipfile.ZIP_DEFLATED)
zf.writestr(filename, json.dumps(self.log))
2016-03-25 15:52:48 +00:00
record = TermLog.objects.create(logPath=filepath, logPWD=password, filename=filename,
2016-03-23 08:36:55 +00:00
history=json.dumps(self.CMD), timestamp=int(self.recoderStartTime))
2016-03-23 14:38:02 +00:00
if self.user:
2016-03-25 15:52:48 +00:00
2016-03-23 08:36:55 +00:00
2016-03-25 15:52:48 +00:00
record = TermLog.objects.create(logPath='locale', logPWD=password, log=json.dumps(self.log),
2016-03-23 08:36:55 +00:00
filename=filename, history=json.dumps(self.CMD),
2016-03-23 14:38:02 +00:00
if self.user:
2016-03-25 15:52:48 +00:00
2016-03-28 15:04:30 +00:00
del TermLogRecorder.loglist[str(self.id)]
except KeyError:
2016-03-23 08:36:55 +00:00
2016-03-23 14:38:02 +00:00
def list(self, user=None, uid=None):
2016-03-23 10:25:18 +00:00
tmp = []
2016-03-23 14:38:02 +00:00
if isinstance(user, User):
user = user
elif uid:
user = User.objects.get(id=uid)
user = self.user
if user:
2016-03-25 15:52:48 +00:00
self._lists = TermLog.objects.filter(user=user.id)
2016-03-23 14:38:02 +00:00
for i in self._lists.all():
{'filename': i.filename, 'locale': i.logPath == 'locale', 'nick': i.nick, 'timestamp': i.timestamp,
'date': i.datetimestamp})
2016-03-23 10:25:18 +00:00
return tmp
2016-03-23 14:38:02 +00:00
def load_full_log(self, filename, user=None, uid=None):
if isinstance(user, User):
user = user
elif uid:
user = User.objects.get(id=uid)
user = self.user
if user:
if self._lists:
self.file = self._lists.get(filename=filename)
2016-03-29 09:20:05 +00:00
self.file = TermLog.objects.get(filename=filename)
2016-03-23 14:38:02 +00:00
if self.file.logPath == 'locale':
return self.file.log
zf = zipfile.ZipFile(self.file.logPath, 'r', zipfile.ZIP_DEFLATED)
self._data = zf.read(zf.namelist()[0])
return self._data
except KeyError:
return 'ERROR: Did not find %s file' % filename
return 'ERROR User(None)'
def load_history(self, filename, user=None, uid=None):
if isinstance(user, User):
user = user
elif uid:
user = User.objects.get(id=uid)
2016-03-23 10:25:18 +00:00
2016-03-23 14:38:02 +00:00
user = self.user
if user:
if self._lists:
self.file = self._lists.get(filename=filename)
2016-03-29 09:16:26 +00:00
self.file = TermLog.objects.get(filename=filename)
2016-03-23 14:38:02 +00:00
return self.file.history
return 'ERROR User(None)'
def share_to(self, filename, user=None, uid=None):
if isinstance(user, User):
user = user
elif uid:
user = User.objects.get(id=uid)
2016-03-23 08:36:55 +00:00
2016-03-23 14:38:02 +00:00
if user:
2016-03-25 15:52:48 +00:00
2016-03-23 14:38:02 +00:00
return True
return False
def unshare_to(self, filename, user=None, uid=None):
if isinstance(user, User):
user = user
elif uid:
user = User.objects.get(id=uid)
2016-03-23 10:25:18 +00:00
2016-03-23 14:38:02 +00:00
if user:
2016-03-25 15:52:48 +00:00
2016-03-23 14:38:02 +00:00
return True
return False