github
/
jumpserver
mirror of https://github.com/jumpserver/jumpserver
1
0
Fork 0
Code Issues Releases Wiki Activity
Browse Source

feat: 增加rdp 云端唤醒 api

pull/6535/head^2
feng626 3 years ago committed by Jiangjie.Bai
parent
962f1c0310
commit
8611f765a3
1 changed files with 28 additions and 18 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 46
      apps/authentication/api/connection_token.py

46
apps/authentication/api/connection_token.py
Unescape View File

@ -1,6 +1,7 @@
# -*- coding: utf-8 -*- # -*- coding: utf-8 -*-
# #
import urllib.parse import urllib.parse
import base64
from django.conf import settings from django.conf import settings
from django.core.cache import cache from django.core.cache import cache
@ -52,7 +53,7 @@ class UserConnectionTokenViewSet(RootOrgViewMixin, SerializerMixin, GenericViewS
raise PermissionDenied(error) raise PermissionDenied(error)
return True return True
def create_token(self, user, asset, application, system_user, ttl=5*60): def create_token(self, user, asset, application, system_user, ttl=5 * 60):
if not self.request.user.is_superuser and user != self.request.user: if not self.request.user.is_superuser and user != self.request.user:
raise PermissionDenied('Only super user can create user token') raise PermissionDenied('Only super user can create user token')
self.check_resource_permission(user, asset, application, system_user) self.check_resource_permission(user, asset, application, system_user)
@ -81,19 +82,7 @@ class UserConnectionTokenViewSet(RootOrgViewMixin, SerializerMixin, GenericViewS
cache.set(key, value, timeout=ttl) cache.set(key, value, timeout=ttl)
return token return token
def create(self, request, *args, **kwargs): def create_rdp_file(self):
serializer = self.get_serializer(data=request.data)
serializer.is_valid(raise_exception=True)
asset = serializer.validated_data.get('asset')
application = serializer.validated_data.get('application')
system_user = serializer.validated_data['system_user']
user = serializer.validated_data.get('user')
token = self.create_token(user, asset, application, system_user)
return Response({"token": token}, status=201)
@action(methods=['POST', 'GET'], detail=False, url_path='rdp/file', permission_classes=[IsValidUser])
def get_rdp_file(self, request, *args, **kwargs):
options = { options = {
'full address:s': '', 'full address:s': '',
'username:s': '', 'username:s': '',
@ -137,7 +126,7 @@ class UserConnectionTokenViewSet(RootOrgViewMixin, SerializerMixin, GenericViewS
system_user = serializer.validated_data['system_user'] system_user = serializer.validated_data['system_user']
height = serializer.validated_data.get('height') height = serializer.validated_data.get('height')
width = serializer.validated_data.get('width') width = serializer.validated_data.get('width')
user = request.user user = self.request.user
token = self.create_token(user, asset, application, system_user) token = self.create_token(user, asset, application, system_user)
address = settings.TERMINAL_RDP_ADDR address = settings.TERMINAL_RDP_ADDR
@ -152,21 +141,42 @@ class UserConnectionTokenViewSet(RootOrgViewMixin, SerializerMixin, GenericViewS
options['desktopheight:i'] = height options['desktopheight:i'] = height
else: else:
options['smart sizing:i'] = '1' options['smart sizing:i'] = '1'
data = '' content = ''
for k, v in options.items(): for k, v in options.items():
data += f'{k}:{v}\n' content += f'{k}:{v}\n'
if asset: if asset:
name = asset.hostname name = asset.hostname
elif application: elif application:
name = application.name name = application.name
else: else:
name = '*' name = '*'
return name, content
def create(self, request, *args, **kwargs):
serializer = self.get_serializer(data=request.data)
serializer.is_valid(raise_exception=True)
asset = serializer.validated_data.get('asset')
application = serializer.validated_data.get('application')
system_user = serializer.validated_data['system_user']
user = serializer.validated_data.get('user')
token = self.create_token(user, asset, application, system_user)
return Response({"token": token}, status=201)
@action(methods=['POST', 'GET'], detail=False, url_path='rdp/file', permission_classes=[IsValidUser])
def get_rdp_file(self, request, *args, **kwargs):
name, data = self.create_rdp_file()
response = HttpResponse(data, content_type='application/octet-stream') response = HttpResponse(data, content_type='application/octet-stream')
filename = "{}-{}-jumpserver.rdp".format(user.username, name) filename = "{}-{}-jumpserver.rdp".format(self.request.user.username, name)
filename = urllib.parse.quote(filename) filename = urllib.parse.quote(filename)
response['Content-Disposition'] = 'attachment; filename*=UTF-8\'\'%s' % filename response['Content-Disposition'] = 'attachment; filename*=UTF-8\'\'%s' % filename
return response return response
@action(methods=['POST', 'GET'], detail=False, url_path='rdp/rouse', permission_classes=[IsValidUser])
def get_rdp_rouse(self, request, *args, **kwargs):
_, data = self.create_rdp_file()
return Response(data=dict(data=base64.b64encode(data.encode())))
@staticmethod @staticmethod
def _get_application_secret_detail(application): def _get_application_secret_detail(application):
from perms.models import Action from perms.models import Action

Write Preview
Loading…
Cancel
Save