fix(assets): 修复动态系统用户推送的bug

2020-11-13 20:03:57 +08:00 · 2020-11-13 20:03:57 +08:00 · 5c3f92cd09
parent 2529ef2211
commit 5c3f92cd09
3 changed files with 13 additions and 4 deletions
--- a/apps/assets/models/base.py
+++ b/apps/assets/models/base.py
@ -158,9 +158,11 @@ class AuthMixin:
        if update_fields:
            self.save(update_fields=update_fields)

-    def has_special_auth(self, asset=None):
+    def has_special_auth(self, asset=None, username=None):
        from .authbook import AuthBook
-        queryset = AuthBook.objects.filter(username=self.username)
+        if username is None:
+            username = self.username
+        queryset = AuthBook.objects.filter(username=username)
        if asset:
            queryset = queryset.filter(asset=asset)
        return queryset.exists()
--- a/apps/assets/models/user.py
+++ b/apps/assets/models/user.py
@ -160,6 +160,11 @@ class SystemUser(BaseUser):
    def is_need_test_asset_connective(self):
        return self.protocol not in [self.PROTOCOL_MYSQL]

+    def has_special_auth(self, asset=None, username=None):
+        if username is None and self.username_same_with_user:
+            raise TypeError('System user is dynamic, username should be pass')
+        return super().has_special_auth(asset=asset, username=username)
+
    @property
    def can_perm_to_asset(self):
        return self.protocol not in [self.PROTOCOL_MYSQL]
--- a/apps/assets/tasks/push_system_user.py
+++ b/apps/assets/tasks/push_system_user.py
@ -132,6 +132,7 @@ def get_push_windows_system_user_tasks(system_user, username=None):

    tasks = []
    if not password:
+        logger.error("Error: no password found")
        return tasks
    task = {
        'name': 'Add user {}'.format(username),
@ -207,14 +208,15 @@ def push_system_user_util(system_user, assets, task_name, username=None):
        print(_("Start push system user for platform: [{}]").format(platform))
        print(_("Hosts count: {}").format(len(_hosts)))

-        if not system_user.has_special_auth():
+        # 如果没有特殊密码设置，就不需要单独推送某台机器了
+        if not system_user.has_special_auth(username=username):
            logger.debug("System user not has special auth")
            tasks = get_push_system_user_tasks(system_user, platform, username=username)
            run_task(tasks, _hosts)
            continue

        for _host in _hosts:
-            system_user.load_asset_special_auth(_host)
+            system_user.load_asset_special_auth(_host, username=username)
            tasks = get_push_system_user_tasks(system_user, platform, username=username)
            run_task(tasks, [_host])