feat: 账号历史信息 (#8500)

* feat: 账号历史信息

* del app

Co-authored-by: feng626 <1304903146@qq.com>
pull/8531/head
fit2bot 2022-07-04 18:54:47 +08:00 committed by GitHub
parent 8ebcb4b73a
commit 0aad0b7279
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
13 changed files with 161 additions and 7 deletions

View File

@ -1,6 +1,5 @@
# coding: utf-8 # coding: utf-8
# #
from django.shortcuts import get_object_or_404
from orgs.mixins.api import OrgBulkModelViewSet from orgs.mixins.api import OrgBulkModelViewSet
from rest_framework.decorators import action from rest_framework.decorators import action
from rest_framework.response import Response from rest_framework.response import Response

View File

@ -0,0 +1,22 @@
# Generated by Django 3.1.14 on 2022-06-29 10:26
from django.db import migrations, models
class Migration(migrations.Migration):
dependencies = [
('applications', '0020_auto_20220316_2028'),
]
operations = [
migrations.AlterModelOptions(
name='historicalaccount',
options={'get_latest_by': ('history_date', 'history_id'), 'ordering': ('-history_date', '-history_id'), 'verbose_name': 'historical Application account', 'verbose_name_plural': 'historical Application accounts'},
),
migrations.AlterField(
model_name='historicalaccount',
name='history_date',
field=models.DateTimeField(db_index=True),
),
]

View File

@ -11,3 +11,4 @@ from .cmd_filter import *
from .gathered_user import * from .gathered_user import *
from .favorite_asset import * from .favorite_asset import *
from .account_backup import * from .account_backup import *
from .account_history import *

View File

@ -0,0 +1,46 @@
from django.db.models import F
from assets.api.accounts import (
AccountFilterSet, AccountViewSet, AccountSecretsViewSet
)
from common.mixins import RecordViewLogMixin
from .. import serializers
from ..models import AuthBook
__all__ = ['AccountHistoryViewSet', 'AccountHistorySecretsViewSet']
class AccountHistoryFilterSet(AccountFilterSet):
class Meta:
model = AuthBook.history.model
fields = AccountFilterSet.Meta.fields
class AccountHistoryViewSet(AccountViewSet):
model = AuthBook.history.model
filterset_class = AccountHistoryFilterSet
serializer_classes = {
'default': serializers.AccountHistorySerializer,
}
rbac_perms = {
'list': 'assets.view_assethistoryaccount',
'retrieve': 'assets.view_assethistoryaccount',
}
http_method_names = ['get', 'options']
def get_queryset(self):
queryset = AuthBook.get_queryset(is_history_model=True)
return queryset
class AccountHistorySecretsViewSet(RecordViewLogMixin, AccountHistoryViewSet):
serializer_classes = {
'default': serializers.AccountHistorySecretSerializer
}
http_method_names = ['get']
permission_classes = AccountSecretsViewSet.permission_classes
rbac_perms = {
'list': 'assets.view_assethistoryaccountsecret',
'retrieve': 'assets.view_assethistoryaccountsecret',
}

View File

@ -15,7 +15,7 @@ from ..tasks.account_connectivity import test_accounts_connectivity_manual
from ..models import AuthBook, Node from ..models import AuthBook, Node
from .. import serializers from .. import serializers
__all__ = ['AccountViewSet', 'AccountSecretsViewSet', 'AccountTaskCreateAPI'] __all__ = ['AccountFilterSet', 'AccountViewSet', 'AccountSecretsViewSet', 'AccountTaskCreateAPI']
class AccountFilterSet(BaseFilterSet): class AccountFilterSet(BaseFilterSet):

View File

@ -0,0 +1,26 @@
# Generated by Django 3.1.14 on 2022-06-29 10:26
from django.db import migrations, models
class Migration(migrations.Migration):
dependencies = [
('assets', '0090_auto_20220412_1145'),
]
operations = [
migrations.AlterModelOptions(
name='authbook',
options={'permissions': [('test_authbook', 'Can test asset account connectivity'), ('view_assetaccountsecret', 'Can view asset account secret'), ('change_assetaccountsecret', 'Can change asset account secret'), ('view_assethistoryaccount', 'Can view asset history account'), ('view_assethistoryaccountsecret', 'Can view asset history account secret')], 'verbose_name': 'AuthBook'},
),
migrations.AlterModelOptions(
name='historicalauthbook',
options={'get_latest_by': ('history_date', 'history_id'), 'ordering': ('-history_date', '-history_id'), 'verbose_name': 'historical AuthBook', 'verbose_name_plural': 'historical AuthBooks'},
),
migrations.AlterField(
model_name='historicalauthbook',
name='history_date',
field=models.DateTimeField(db_index=True),
),
]

View File

@ -29,7 +29,9 @@ class AuthBook(BaseUser, AbsConnectivity):
permissions = [ permissions = [
('test_authbook', _('Can test asset account connectivity')), ('test_authbook', _('Can test asset account connectivity')),
('view_assetaccountsecret', _('Can view asset account secret')), ('view_assetaccountsecret', _('Can view asset account secret')),
('change_assetaccountsecret', _('Can change asset account secret')) ('change_assetaccountsecret', _('Can change asset account secret')),
('view_assethistoryaccount', _('Can view asset history account')),
('view_assethistoryaccountsecret', _('Can view asset history account secret')),
] ]
def __init__(self, *args, **kwargs): def __init__(self, *args, **kwargs):
@ -123,8 +125,9 @@ class AuthBook(BaseUser, AbsConnectivity):
logger.debug('Update asset admin user: {} {}'.format(self.asset, self.systemuser)) logger.debug('Update asset admin user: {} {}'.format(self.asset, self.systemuser))
@classmethod @classmethod
def get_queryset(cls): def get_queryset(cls, is_history_model=False):
queryset = cls.objects.all() \ model = cls.history.model if is_history_model else cls
queryset = model.objects.all() \
.annotate(ip=F('asset__ip')) \ .annotate(ip=F('asset__ip')) \
.annotate(hostname=F('asset__hostname')) \ .annotate(hostname=F('asset__hostname')) \
.annotate(platform=F('asset__platform__name')) \ .annotate(platform=F('asset__platform__name')) \

View File

@ -11,4 +11,5 @@ from .cmd_filter import *
from .gathered_user import * from .gathered_user import *
from .favorite_asset import * from .favorite_asset import *
from .account import * from .account import *
from .account_history import *
from .backup import * from .backup import *

View File

@ -0,0 +1,38 @@
from rest_framework import serializers
from django.utils.translation import ugettext_lazy as _
from assets.models import AuthBook
from common.drf.serializers import SecretReadableMixin
from .account import AccountSerializer, AccountSecretSerializer
class AccountHistorySerializer(AccountSerializer):
systemuser_display = serializers.SerializerMethodField(label=_('System user display'))
class Meta:
model = AuthBook.history.model
fields = AccountSerializer.Meta.fields_mini + \
AccountSerializer.Meta.fields_write_only + \
AccountSerializer.Meta.fields_fk + \
['history_id', 'date_created', 'date_updated']
read_only_fields = fields
ref_name = 'AccountHistorySerializer'
@staticmethod
def get_systemuser_display(instance):
if not instance.systemuser:
return ''
return str(instance.systemuser)
def get_field_names(self, declared_fields, info):
fields = super().get_field_names(declared_fields, info)
fields = list(set(fields) - {'org_name'})
return fields
def to_representation(self, instance):
return super(AccountSerializer, self).to_representation(instance)
class AccountHistorySecretSerializer(SecretReadableMixin, AccountHistorySerializer):
class Meta(AccountHistorySerializer.Meta):
extra_kwargs = AccountSecretSerializer.Meta.extra_kwargs

View File

@ -13,6 +13,8 @@ router = BulkRouter()
router.register(r'assets', api.AssetViewSet, 'asset') router.register(r'assets', api.AssetViewSet, 'asset')
router.register(r'accounts', api.AccountViewSet, 'account') router.register(r'accounts', api.AccountViewSet, 'account')
router.register(r'account-secrets', api.AccountSecretsViewSet, 'account-secret') router.register(r'account-secrets', api.AccountSecretsViewSet, 'account-secret')
router.register(r'accounts-history', api.AccountHistoryViewSet, 'account-history')
router.register(r'account-history-secrets', api.AccountHistorySecretsViewSet, 'account-history-secret')
router.register(r'platforms', api.AssetPlatformViewSet, 'platform') router.register(r'platforms', api.AssetPlatformViewSet, 'platform')
router.register(r'system-users', api.SystemUserViewSet, 'system-user') router.register(r'system-users', api.SystemUserViewSet, 'system-user')
router.register(r'admin-users', api.AdminUserViewSet, 'admin-user') router.register(r'admin-users', api.AdminUserViewSet, 'admin-user')

View File

@ -657,6 +657,14 @@ msgstr "資産アカウントの秘密を表示できます"
msgid "Can change asset account secret" msgid "Can change asset account secret"
msgstr "資産口座の秘密を変更できます" msgstr "資産口座の秘密を変更できます"
#: assets/models/authbook.py:33
msgid "Can view asset history account"
msgstr "資産履歴アカウントを表示できます"
#: assets/models/authbook.py:34
msgid "Can view asset history account secret"
msgstr "資産履歴アカウントパスワードを表示できます"
#: assets/models/backup.py:30 perms/models/base.py:54 #: assets/models/backup.py:30 perms/models/base.py:54
#: settings/serializers/terminal.py:12 #: settings/serializers/terminal.py:12
msgid "All" msgid "All"
@ -1074,6 +1082,7 @@ msgstr ""
"定してください暗号化パスワード" "定してください暗号化パスワード"
#: assets/serializers/account.py:36 assets/serializers/account.py:87 #: assets/serializers/account.py:36 assets/serializers/account.py:87
#: assets/serializers/account_history.py:10
msgid "System user display" msgid "System user display"
msgstr "システムユーザー表示" msgstr "システムユーザー表示"

View File

@ -652,6 +652,14 @@ msgstr "可以查看资产账号密码"
msgid "Can change asset account secret" msgid "Can change asset account secret"
msgstr "可以更改资产账号密码" msgstr "可以更改资产账号密码"
#: assets/models/authbook.py:33
msgid "Can view asset history account"
msgstr "可以查看资产历史账号"
#: assets/models/authbook.py:34
msgid "Can view asset history account secret"
msgstr "可以查看资产历史账号密码"
#: assets/models/backup.py:30 perms/models/base.py:54 #: assets/models/backup.py:30 perms/models/base.py:54
#: settings/serializers/terminal.py:12 #: settings/serializers/terminal.py:12
msgid "All" msgid "All"
@ -1066,6 +1074,7 @@ msgstr ""
"置加密密码" "置加密密码"
#: assets/serializers/account.py:36 assets/serializers/account.py:87 #: assets/serializers/account.py:36 assets/serializers/account.py:87
#: assets/serializers/account_history.py:10
msgid "System user display" msgid "System user display"
msgstr "系统用户名称" msgstr "系统用户名称"

View File

@ -2,8 +2,6 @@
# #
from rest_framework.viewsets import ModelViewSet, GenericViewSet from rest_framework.viewsets import ModelViewSet, GenericViewSet
from rest_framework_bulk import BulkModelViewSet from rest_framework_bulk import BulkModelViewSet
from rest_framework.exceptions import MethodNotAllowed
from django.utils.translation import ugettext_lazy as _
from common.mixins import CommonApiMixin, RelationMixin from common.mixins import CommonApiMixin, RelationMixin
from orgs.utils import current_org from orgs.utils import current_org