jumpserver/apps/assets/api/admin_user.py

# ~*~ coding: utf-8 ~*~
# Copyright (C) 2014-2018 Beijing DuiZhan Technology Co.,Ltd. All Rights Reserved.
#
# Licensed under the GNU General Public License v2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#    http://www.gnu.org/licenses/gpl-2.0.html
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

from django.db import transaction
from rest_framework import generics
from rest_framework.response import Response
from rest_framework_bulk import BulkModelViewSet

from common.mixins import IDInFilterMixin
from common.utils import get_logger
from ..hands import IsOrgAdmin
from ..models import AdminUser, Asset
from .. import serializers
from ..tasks import test_admin_user_connectability_manual


logger = get_logger(__file__)
__all__ = [
    'AdminUserViewSet', 'ReplaceNodesAdminUserApi',
    'AdminUserTestConnectiveApi', 'AdminUserAuthApi',
]


class AdminUserViewSet(IDInFilterMixin, BulkModelViewSet):
    """
    Admin user api set, for add,delete,update,list,retrieve resource
    """
    queryset = AdminUser.objects.all()
    serializer_class = serializers.AdminUserSerializer
    permission_classes = (IsOrgAdmin,)


class AdminUserAuthApi(generics.UpdateAPIView):
    queryset = AdminUser.objects.all()
    serializer_class = serializers.AdminUserAuthSerializer
    permission_classes = (IsOrgAdmin,)


class ReplaceNodesAdminUserApi(generics.UpdateAPIView):
    queryset = AdminUser.objects.all()
    serializer_class = serializers.ReplaceNodeAdminUserSerializer
    permission_classes = (IsOrgAdmin,)

    def update(self, request, *args, **kwargs):
        admin_user = self.get_object()
        serializer = self.serializer_class(data=request.data)
        if serializer.is_valid():
            nodes = serializer.validated_data['nodes']
            assets = []
            for node in nodes:
                assets.extend([asset.id for asset in node.get_all_assets()])

            with transaction.atomic():
                Asset.objects.filter(id__in=assets).update(admin_user=admin_user)

            return Response({"msg": "ok"})
        else:
            return Response({'error': serializer.errors}, status=400)


class AdminUserTestConnectiveApi(generics.RetrieveAPIView):
    """
    Test asset admin user connectivity
    """
    queryset = AdminUser.objects.all()
    permission_classes = (IsOrgAdmin,)

    def retrieve(self, request, *args, **kwargs):
        admin_user = self.get_object()
        task = test_admin_user_connectability_manual.delay(admin_user)
        return Response({"task": task.id})
[Update] 拆分asset api module 7 years ago			`# ~~ coding: utf-8 ~~`
			`# Copyright (C) 2014-2018 Beijing DuiZhan Technology Co.,Ltd. All Rights Reserved.`
			`#`
			`# Licensed under the GNU General Public License v2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.gnu.org/licenses/gpl-2.0.html`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`

[Update] 完成树形改造 7 years ago			`from django.db import transaction`
[Update] 拆分asset api module 7 years ago			`from rest_framework import generics`
			`from rest_framework.response import Response`
			`from rest_framework_bulk import BulkModelViewSet`

			`from common.mixins import IDInFilterMixin`
			`from common.utils import get_logger`
[Update] 修改permission (#1574) 6 years ago			`from ..hands import IsOrgAdmin`
[Update] 完成树形改造 7 years ago			`from ..models import AdminUser, Asset`
[Update] 拆分asset api module 7 years ago			`from .. import serializers`
			`from ..tasks import test_admin_user_connectability_manual`


			`logger = get_logger(__file__)`
			`__all__ = [`
[Update] 添加设置认证api和创建用户时可以不选择组 7 years ago			`'AdminUserViewSet', 'ReplaceNodesAdminUserApi',`
			`'AdminUserTestConnectiveApi', 'AdminUserAuthApi',`
[Update] 拆分asset api module 7 years ago			`]`


			`class AdminUserViewSet(IDInFilterMixin, BulkModelViewSet):`
			`"""`
			`Admin user api set, for add,delete,update,list,retrieve resource`
			`"""`
[Update] 修改用户view 6 years ago			`queryset = AdminUser.objects.all()`
[Update] 拆分asset api module 7 years ago			`serializer_class = serializers.AdminUserSerializer`
[Update] 修改permission (#1574) 6 years ago			`permission_classes = (IsOrgAdmin,)`
[Update] 拆分asset api module 7 years ago

[Update] 添加设置认证api和创建用户时可以不选择组 7 years ago			`class AdminUserAuthApi(generics.UpdateAPIView):`
[Update] 修改用户view 6 years ago			`queryset = AdminUser.objects.all()`
[Update] 添加设置认证api和创建用户时可以不选择组 7 years ago			`serializer_class = serializers.AdminUserAuthSerializer`
[Update] 修改permission (#1574) 6 years ago			`permission_classes = (IsOrgAdmin,)`
[Update] 添加设置认证api和创建用户时可以不选择组 7 years ago

[Update] 完成树形改造 7 years ago			`class ReplaceNodesAdminUserApi(generics.UpdateAPIView):`
[Update] 修改用户view 6 years ago			`queryset = AdminUser.objects.all()`
[Update] 完成树形改造 7 years ago			`serializer_class = serializers.ReplaceNodeAdminUserSerializer`
[Update] 修改permission (#1574) 6 years ago			`permission_classes = (IsOrgAdmin,)`
[Update] 拆分asset api module 7 years ago
			`def update(self, request, args, *kwargs):`
			`admin_user = self.get_object()`
			`serializer = self.serializer_class(data=request.data)`
			`if serializer.is_valid():`
[Update] 完成树形改造 7 years ago			`nodes = serializer.validated_data['nodes']`
			`assets = []`
			`for node in nodes:`
			`assets.extend([asset.id for asset in node.get_all_assets()])`

			`with transaction.atomic():`
			`Asset.objects.filter(id__in=assets).update(admin_user=admin_user)`

[Update] 拆分asset api module 7 years ago			`return Response({"msg": "ok"})`
			`else:`
			`return Response({'error': serializer.errors}, status=400)`


			`class AdminUserTestConnectiveApi(generics.RetrieveAPIView):`
			`"""`
			`Test asset admin user connectivity`
			`"""`
[Update] 修改用户view 6 years ago			`queryset = AdminUser.objects.all()`
[Update] 修改permission (#1574) 6 years ago			`permission_classes = (IsOrgAdmin,)`
[Update] 拆分asset api module 7 years ago
			`def retrieve(self, request, args, *kwargs):`
			`admin_user = self.get_object()`
[Update] 资产，系统用户，管理用户等支持查看日志 7 years ago			`task = test_admin_user_connectability_manual.delay(admin_user)`
			`return Response({"task": task.id})`