jumpserver/apps/perms/api.py

# ~*~ coding: utf-8 ~*~
# 

from rest_framework.views import APIView, Response
from rest_framework.generics import ListCreateAPIView
from rest_framework import viewsets
from users.backends import IsValidUser, IsSuperUser
from .utils import get_user_granted_assets, get_user_granted_asset_groups
from .models import AssetPermission
from . import serializers


class AssetPermissionViewSet(viewsets.ModelViewSet):
    queryset = AssetPermission.objects.all()
    serializer_class = serializers.AssetPermissionSerializer
    permission_classes = (IsSuperUser,)

    def get_queryset(self):
        queryset = super(AssetPermissionViewSet, self).get_queryset()
        user_id = self.request.query_params.get('user', '')
        if user_id:
            queryset = queryset.filter(users__id=user_id)

        return queryset


class UserAssetsApi(APIView):
    permission_classes = (IsValidUser,)

    def get(self, request, *args, **kwargs):
        assets_json = []
        user = request.user

        if user:
            assets = get_user_granted_assets(user)

            for asset, system_users in assets.items():
                assets_json.append({
                    'id': asset.id,
                    'hostname': asset.hostname,
                    'ip': asset.ip,
                    'port': asset.port,
                    'system_users': [
                        {
                            'id': system_user.id,
                            'name': system_user.name,
                            'username': system_user.username,
                        } for system_user in system_users
                    ],
                    'comment': asset.comment
                })

        return Response(assets_json, status=200)


class UserAssetsGroupsApi(APIView):
    permission_classes = (IsValidUser,)

    def get(self, request, *args, **kwargs):
        asset_groups = {}
        user = request.user

        if user:
            assets = get_user_granted_assets(user)
            for asset in assets:
                for asset_group in asset.groups.all():
                    if asset_group.id in asset_groups:
                        asset_groups[asset_group.id]['asset_num'] += 1
                    else:
                        asset_groups[asset_group.id] = {
                            'id': asset_group.id,
                            'name': asset_group.name,
                            'comment': asset_group.comment,
                            'asset_num': 1
                        }

        asset_groups_json = asset_groups.values()
        return Response(asset_groups_json, status=200)


class UserAssetsGroupAssetsApi(APIView):
    permission_classes = (IsValidUser,)

    def get(self, request, *args, **kwargs):
        # asset_group_id = request.query_params.get('asset_group_id', -1)
        asset_group_id = kwargs.get('pk', -1)
        # asset_group_name = request.query_params.get('asset_group_name', '')
        user = request.user
        assets_json = []

        if user:
            assets = get_user_granted_assets(user)
            for asset, system_users in assets.items():
                for asset_group in asset.groups.all():
                    if str(asset_group.id) == asset_group_id: # and asset_group.name == asset_group_name:
                        assets_json.append({
                            'id': asset.id,
                            'hostname': asset.hostname,
                            'ip': asset.ip,
                            'port': asset.port,
                            'system_users': [
                                {
                                    'id': system_user.id,
                                    'name': system_user.name,
                                    'username': system_user.username,
                                } for system_user in system_users
                                ],
                            'comment': asset.comment
                        })
        return Response(assets_json, status=200)
添加 utils和api样例文件 2016-08-09 09:27:37 +00:00			`# ~~ coding: utf-8 ~~`
			`#`

Update api 2016-10-19 11:30:55 +00:00			`from rest_framework.views import APIView, Response`
stash it 2016-11-04 10:33:16 +00:00			`from rest_framework.generics import ListCreateAPIView`
Update perm api 2016-11-09 16:18:57 +00:00			`from rest_framework import viewsets`
stash it 2016-11-04 10:33:16 +00:00			`from users.backends import IsValidUser, IsSuperUser`
Update api 2016-10-19 11:30:55 +00:00			`from .utils import get_user_granted_assets, get_user_granted_asset_groups`
stash it 2016-11-04 10:33:16 +00:00			`from .models import AssetPermission`
			`from . import serializers`


Update perm api 2016-11-09 16:18:57 +00:00			`class AssetPermissionViewSet(viewsets.ModelViewSet):`
stash it 2016-11-04 10:33:16 +00:00			`queryset = AssetPermission.objects.all()`
			`serializer_class = serializers.AssetPermissionSerializer`
			`permission_classes = (IsSuperUser,)`
Update api 2016-10-19 11:30:55 +00:00
Update perm api 2016-11-09 16:18:57 +00:00			`def get_queryset(self):`
			`queryset = super(AssetPermissionViewSet, self).get_queryset()`
			`user_id = self.request.query_params.get('user', '')`
			`if user_id:`
			`queryset = queryset.filter(users__id=user_id)`

			`return queryset`

Update api 2016-10-19 11:30:55 +00:00
Update perm api 2016-11-05 15:34:45 +00:00			`class UserAssetsApi(APIView):`
Update api 2016-10-19 11:30:55 +00:00			`permission_classes = (IsValidUser,)`

			`def get(self, request, args, *kwargs):`
			`assets_json = []`
			`user = request.user`

			`if user:`
			`assets = get_user_granted_assets(user)`

			`for asset, system_users in assets.items():`
			`assets_json.append({`
			`'id': asset.id,`
			`'hostname': asset.hostname,`
			`'ip': asset.ip,`
			`'port': asset.port,`
Add command list 2016-10-26 11:10:14 +00:00			`'system_users': [`
			`{`
			`'id': system_user.id,`
			`'name': system_user.name,`
			`'username': system_user.username,`
			`} for system_user in system_users`
			`],`
Update api 2016-10-19 11:30:55 +00:00			`'comment': asset.comment`
			`})`

			`return Response(assets_json, status=200)`

stash it 2016-11-04 10:33:16 +00:00
Update perm api 2016-11-05 15:34:45 +00:00			`class UserAssetsGroupsApi(APIView):`
stash it 2016-11-04 10:33:16 +00:00			`permission_classes = (IsValidUser,)`

			`def get(self, request, args, *kwargs):`
			`asset_groups = {}`
			`user = request.user`

			`if user:`
			`assets = get_user_granted_assets(user)`
			`for asset in assets:`
			`for asset_group in asset.groups.all():`
			`if asset_group.id in asset_groups:`
			`asset_groups[asset_group.id]['asset_num'] += 1`
			`else:`
			`asset_groups[asset_group.id] = {`
			`'id': asset_group.id,`
			`'name': asset_group.name,`
Update perm api 2016-11-05 15:34:45 +00:00			`'comment': asset_group.comment,`
stash it 2016-11-04 10:33:16 +00:00			`'asset_num': 1`
			`}`

			`asset_groups_json = asset_groups.values()`
Update perm api 2016-11-05 15:34:45 +00:00			`return Response(asset_groups_json, status=200)`


			`class UserAssetsGroupAssetsApi(APIView):`
			`permission_classes = (IsValidUser,)`

			`def get(self, request, args, *kwargs):`
			`# asset_group_id = request.query_params.get('asset_group_id', -1)`
			`asset_group_id = kwargs.get('pk', -1)`
			`# asset_group_name = request.query_params.get('asset_group_name', '')`
			`user = request.user`
			`assets_json = []`

			`if user:`
			`assets = get_user_granted_assets(user)`
			`for asset, system_users in assets.items():`
			`for asset_group in asset.groups.all():`
			`if str(asset_group.id) == asset_group_id: # and asset_group.name == asset_group_name:`
			`assets_json.append({`
			`'id': asset.id,`
			`'hostname': asset.hostname,`
			`'ip': asset.ip,`
			`'port': asset.port,`
			`'system_users': [`
			`{`
			`'id': system_user.id,`
			`'name': system_user.name,`
			`'username': system_user.username,`
			`} for system_user in system_users`
			`],`
			`'comment': asset.comment`
			`})`
			`return Response(assets_json, status=200)`