jumpserver/apps/users/models.py

# ~*~ coding: utf-8 ~*~

from __future__ import unicode_literals

import datetime
from django.contrib.auth.hashers import make_password
from django.utils import timezone
from django.db import models
from django.contrib.auth.models import AbstractUser, Permission


class Role(models.Model):
    name = models.CharField('name', max_length=80, unique=True)
    permissions = models.ManyToManyField(
        Permission,
        verbose_name='permissions',
        blank=True,
    )
    date_added = models.DateTimeField(auto_now_add=True)
    created_by = models.CharField(max_length=100)
    comment = models.CharField(max_length=80, blank=True)

    def __unicode__(self):
        return self.name

    class Meta:
        db_table = 'role'

    @classmethod
    def initial(cls):
        roles = {
            'Administrator': {'permissions': Permission.objects.all(), 'comment': '管理员'},
            'User': {'permissions': [], 'comment': '用户'},
            'Auditor': {'permissions': Permission.objects.filter(content_type__app_label='audits'),
                        'comment': '审计员'},
        }

        for role_name, props in roles.items():
            if not cls.objects.filter(name=role_name):
                role = cls.objects.create(name=role_name, comment=props.get('comment', ''), created_by='System')
                if props.get('permissions'):
                    role.permissions = props.get('permissions')


class UserGroup(models.Model):
    name = models.CharField(max_length=100, unique=True, verbose_name='组名称')
    comment = models.TextField(blank=True, verbose_name='描述')
    date_added = models.DateTimeField(auto_now_add=True)
    created_by = models.CharField(max_length=100)

    def __unicode__(self):
        return self.name

    class Meta:
        db_table = 'usergroup'

    @classmethod
    def initial(cls):
        group_or_create = cls.objects.get_or_create(name='All', comment='Default user group for all user',
                                                    created_by='System')
        return group_or_create[0]

    @classmethod
    def generate_fake(cls, count=100):
        from random import seed, randint, choice
        import forgery_py
        from django.db import IntegrityError

        seed()
        for i in range(count):
            group = cls(name=forgery_py.name.full_name(),
                        comment=forgery_py.lorem_ipsum.sentence(),
                        created_by=choice(User.objects.all()).username
                    )
            try:
                group.save()
            except IntegrityError:
                print('Error continue')
                continue


def date_expired_default():
    return timezone.now() + timezone.timedelta(days=365 * 70)


class User(AbstractUser):
    username = models.CharField(max_length=20, unique=True, verbose_name='用户名')
    name = models.CharField(max_length=20, blank=True, verbose_name='姓名')
    email = models.EmailField(max_length=30, unique=True, verbose_name='邮件')
    groups = models.ManyToManyField(UserGroup, verbose_name='用户组')
    avatar = models.ImageField(upload_to="avatar", verbose_name='头像')
    wechat = models.CharField(max_length=30, blank=True, verbose_name='微信')
    phone = models.CharField(max_length=20, blank=True, verbose_name='手机号')
    enable_otp = models.BooleanField(default=False, verbose_name='启用二次验证')
    secret_key_otp = models.CharField(max_length=16, blank=True)
    role = models.ForeignKey(Role, on_delete=models.PROTECT, verbose_name='角色')
    private_key = models.CharField(max_length=5000, blank=True, verbose_name='ssh私钥')  # ssh key max length 4096 bit
    public_key = models.CharField(max_length=1000, blank=True, verbose_name='公钥')
    comment = models.TextField(max_length=200, blank=True, verbose_name='描述')
    date_expired = models.DateTimeField(default=date_expired_default, verbose_name='有效期')
    created_by = models.CharField(max_length=30, default='')

    @property
    def password_raw(self):
        raise AttributeError('Password raw is not readable attribute')

    #: Use this attr to set user object password, example
    #: user = User(username='example', password_raw='password', ...)
    #: It's equal:
    #: user = User(username='example', ...)
    #: user.set_password('password')
    @password_raw.setter
    def password_raw(self, raw_password):
        self.set_password(raw_password)

    def is_expired(self):
        if self.date_expired > timezone.now():
            return False
        else:
            return True

    def save(self, *args, **kwargs):
        # If user not set name, it's default equal username
        if not self.name:
            self.name = self.username
        super(User, self).save(args, **kwargs)

        # Set user default group 'All'
        group = UserGroup.initial()
        self.groups.add(group)

    class Meta:
        db_table = 'user'

    #: Use this method
    @classmethod
    def initial(cls):
        user = cls(username='admin',
                   email='admin@jumpserver.org',
                   name='Administrator',
                   password_raw='admin',
                   role=Role.objects.get(name='Administrator'),
                   comment='Administrator is the super user of system',
                   created_by='System')
        user.save()
        user.groups.add(UserGroup.initial())

    @classmethod
    def generate_fake(cls, count=100):
        from random import seed, choice
        import forgery_py
        from django.db import IntegrityError

        seed()
        for i in range(count):
            user = cls(username=forgery_py.internet.user_name(True),
                       email=forgery_py.internet.email_address(),
                       name=forgery_py.name.full_name(),
                       password=make_password(forgery_py.lorem_ipsum.word()),
                       role=choice(Role.objects.all()),
                       wechat=forgery_py.internet.user_name(True),
                       comment=forgery_py.lorem_ipsum.sentence(),
                       created_by=choice(cls.objects.all()).username,
                    )
            try:
                user.save()
            except IntegrityError:
                print('Duplicate Error, continue ...')
                continue
            user.groups.add(choice(UserGroup.objects.all()))
            user.save()


def init_all_models():
    for model in (Role, UserGroup, User):
        if hasattr(model, 'initial'):
            model.initial()


def generate_fake():
    for model in (Role, UserGroup, User):
        if hasattr(model, 'generate_fake'):
            model.generate_fake()
modify some issues 2016-08-13 16:40:21 +00:00			`# ~~ coding: utf-8 ~~`

Init project structure 2016-08-08 16:43:11 +00:00			`from __future__ import unicode_literals`

Add user list view 2016-08-14 09:21:04 +00:00			`import datetime`
Add init data file 2016-08-20 17:16:30 +00:00			`from django.contrib.auth.hashers import make_password`
Add UserGroup some View 2016-08-18 17:39:08 +00:00			`from django.utils import timezone`
Init project structure 2016-08-08 16:43:11 +00:00			`from django.db import models`
Add user list view 2016-08-14 09:21:04 +00:00			`from django.contrib.auth.models import AbstractUser, Permission`
Init project structure 2016-08-08 16:43:11 +00:00
添加 user 表结构，简单思考 2016-08-09 17:30:19 +00:00
Add init data file 2016-08-20 17:16:30 +00:00			`class Role(models.Model):`
			`name = models.CharField('name', max_length=80, unique=True)`
			`permissions = models.ManyToManyField(`
			`Permission,`
			`verbose_name='permissions',`
			`blank=True,`
			`)`
			`date_added = models.DateTimeField(auto_now_add=True)`
			`created_by = models.CharField(max_length=100)`
添加 user 表结构，简单思考 2016-08-09 17:30:19 +00:00			`comment = models.CharField(max_length=80, blank=True)`

modify some issues 2016-08-13 16:40:21 +00:00			`def __unicode__(self):`
			`return self.name`
添加 user 表结构，简单思考 2016-08-09 17:30:19 +00:00
modify some issues 2016-08-13 16:40:21 +00:00			`class Meta:`
			`db_table = 'role'`

Add user list view 2016-08-14 09:21:04 +00:00			`@classmethod`
Add test case 2016-08-22 11:53:01 +00:00			`def initial(cls):`
Add user list view 2016-08-14 09:21:04 +00:00			`roles = {`
			`'Administrator': {'permissions': Permission.objects.all(), 'comment': '管理员'},`
			`'User': {'permissions': [], 'comment': '用户'},`
			`'Auditor': {'permissions': Permission.objects.filter(content_type__app_label='audits'),`
			`'comment': '审计员'},`
			`}`

			`for role_name, props in roles.items():`
Add init data file 2016-08-20 17:16:30 +00:00			`if not cls.objects.filter(name=role_name):`
			`role = cls.objects.create(name=role_name, comment=props.get('comment', ''), created_by='System')`
			`if props.get('permissions'):`
			`role.permissions = props.get('permissions')`
Add user list view 2016-08-14 09:21:04 +00:00
modify some issues 2016-08-13 16:40:21 +00:00
			`class UserGroup(models.Model):`
Add user list view 2016-08-14 09:21:04 +00:00			`name = models.CharField(max_length=100, unique=True, verbose_name='组名称')`
			`comment = models.TextField(blank=True, verbose_name='描述')`
modify some issues 2016-08-13 16:40:21 +00:00			`date_added = models.DateTimeField(auto_now_add=True)`
			`created_by = models.CharField(max_length=100)`
添加 user 表结构，简单思考 2016-08-09 17:30:19 +00:00
modify some issues 2016-08-13 16:40:21 +00:00			`def __unicode__(self):`
			`return self.name`

			`class Meta:`
			`db_table = 'usergroup'`

Add common app common app used as write public api or templatetags modify user list view and user edit view 2016-08-15 16:09:48 +00:00			`@classmethod`
Add test case 2016-08-22 11:53:01 +00:00			`def initial(cls):`
			`group_or_create = cls.objects.get_or_create(name='All', comment='Default user group for all user',`
			`created_by='System')`
			`return group_or_create[0]`
Add common app common app used as write public api or templatetags modify user list view and user edit view 2016-08-15 16:09:48 +00:00
Add UserGroup some View 2016-08-18 17:39:08 +00:00			`@classmethod`
			`def generate_fake(cls, count=100):`
			`from random import seed, randint, choice`
			`import forgery_py`
			`from django.db import IntegrityError`

			`seed()`
			`for i in range(count):`
			`group = cls(name=forgery_py.name.full_name(),`
			`comment=forgery_py.lorem_ipsum.sentence(),`
			`created_by=choice(User.objects.all()).username`
			`)`
			`try:`
			`group.save()`
			`except IntegrityError:`
			`print('Error continue')`
			`continue`

modify some issues 2016-08-13 16:40:21 +00:00
Add init data file 2016-08-20 17:16:30 +00:00			`def date_expired_default():`
			`return timezone.now() + timezone.timedelta(days=365 * 70)`


modify some issues 2016-08-13 16:40:21 +00:00			`class User(AbstractUser):`
Useradd group change 2016-08-19 16:42:50 +00:00			`username = models.CharField(max_length=20, unique=True, verbose_name='用户名')`
Add test case 2016-08-22 11:53:01 +00:00			`name = models.CharField(max_length=20, blank=True, verbose_name='姓名')`
Update user edit 2016-08-21 14:37:55 +00:00			`email = models.EmailField(max_length=30, unique=True, verbose_name='邮件')`
			`groups = models.ManyToManyField(UserGroup, verbose_name='用户组')`
update user update view 2016-08-17 14:17:16 +00:00			`avatar = models.ImageField(upload_to="avatar", verbose_name='头像')`
Add user list view 2016-08-14 09:21:04 +00:00			`wechat = models.CharField(max_length=30, blank=True, verbose_name='微信')`
			`phone = models.CharField(max_length=20, blank=True, verbose_name='手机号')`
Add init data file 2016-08-20 17:16:30 +00:00			`enable_otp = models.BooleanField(default=False, verbose_name='启用二次验证')`
			`secret_key_otp = models.CharField(max_length=16, blank=True)`
Add user list view 2016-08-14 09:21:04 +00:00			`role = models.ForeignKey(Role, on_delete=models.PROTECT, verbose_name='角色')`
			`private_key = models.CharField(max_length=5000, blank=True, verbose_name='ssh私钥') # ssh key max length 4096 bit`
			`public_key = models.CharField(max_length=1000, blank=True, verbose_name='公钥')`
Add common app common app used as write public api or templatetags modify user list view and user edit view 2016-08-15 16:09:48 +00:00			`comment = models.TextField(max_length=200, blank=True, verbose_name='描述')`
Add init data file 2016-08-20 17:16:30 +00:00			`date_expired = models.DateTimeField(default=date_expired_default, verbose_name='有效期')`
Add user list view 2016-08-14 09:21:04 +00:00			`created_by = models.CharField(max_length=30, default='')`
添加 user 表结构，简单思考 2016-08-09 17:30:19 +00:00
Add test case 2016-08-22 11:53:01 +00:00			`@property`
			`def password_raw(self):`
			`raise AttributeError('Password raw is not readable attribute')`

			`#: Use this attr to set user object password, example`
			`#: user = User(username='example', password_raw='password', ...)`
			`#: It's equal:`
			`#: user = User(username='example', ...)`
			`#: user.set_password('password')`
			`@password_raw.setter`
			`def password_raw(self, raw_password):`
			`self.set_password(raw_password)`
Add UserGroup some View 2016-08-18 17:39:08 +00:00
Add init data file 2016-08-20 17:16:30 +00:00			`def is_expired(self):`
			`if self.date_expired > timezone.now():`
			`return False`
			`else:`
			`return True`

Add test case 2016-08-22 11:53:01 +00:00			`def save(self, args, *kwargs):`
			`# If user not set name, it's default equal username`
			`if not self.name:`
			`self.name = self.username`
			`super(User, self).save(args, **kwargs)`

			`# Set user default group 'All'`
			`group = UserGroup.initial()`
			`self.groups.add(group)`

			`class Meta:`
			`db_table = 'user'`

			`#: Use this method`
Add init data file 2016-08-20 17:16:30 +00:00			`@classmethod`
Add test case 2016-08-22 11:53:01 +00:00			`def initial(cls):`
Add init data file 2016-08-20 17:16:30 +00:00			`user = cls(username='admin',`
			`email='admin@jumpserver.org',`
			`name='Administrator',`
Add test case 2016-08-22 11:53:01 +00:00			`password_raw='admin',`
Add init data file 2016-08-20 17:16:30 +00:00			`role=Role.objects.get(name='Administrator'),`
			`comment='Administrator is the super user of system',`
			`created_by='System')`
			`user.save()`
Add test case 2016-08-22 11:53:01 +00:00			`user.groups.add(UserGroup.initial())`
Add init data file 2016-08-20 17:16:30 +00:00
Add UserGroup some View 2016-08-18 17:39:08 +00:00			`@classmethod`
			`def generate_fake(cls, count=100):`
Add init data file 2016-08-20 17:16:30 +00:00			`from random import seed, choice`
Add UserGroup some View 2016-08-18 17:39:08 +00:00			`import forgery_py`
			`from django.db import IntegrityError`

			`seed()`
			`for i in range(count):`
			`user = cls(username=forgery_py.internet.user_name(True),`
			`email=forgery_py.internet.email_address(),`
			`name=forgery_py.name.full_name(),`
			`password=make_password(forgery_py.lorem_ipsum.word()),`
			`role=choice(Role.objects.all()),`
			`wechat=forgery_py.internet.user_name(True),`
			`comment=forgery_py.lorem_ipsum.sentence(),`
			`created_by=choice(cls.objects.all()).username,`
			`)`
			`try:`
			`user.save()`
			`except IntegrityError:`
Add test case 2016-08-22 11:53:01 +00:00			`print('Duplicate Error, continue ...')`
Add UserGroup some View 2016-08-18 17:39:08 +00:00			`continue`
			`user.groups.add(choice(UserGroup.objects.all()))`
			`user.save()`


Add init data file 2016-08-20 17:16:30 +00:00			`def init_all_models():`
			`for model in (Role, UserGroup, User):`
Add test case 2016-08-22 11:53:01 +00:00			`if hasattr(model, 'initial'):`
			`model.initial()`
Add UserGroup some View 2016-08-18 17:39:08 +00:00

Add init data file 2016-08-20 17:16:30 +00:00			`def generate_fake():`
			`for model in (Role, UserGroup, User):`
			`if hasattr(model, 'generate_fake'):`
			`model.generate_fake()`