github
/
jumpserver
mirror of https://github.com/jumpserver/jumpserver
1
0
Fork 0
Code Issues Releases Wiki Activity

feat: 增加rdp 云端唤醒 api

pull/6535/head^2
feng626 2021-07-27 13:35:25 +08:00 committed by Jiangjie.Bai
parent 962f1c0310
commit 8611f765a3
1 changed files with 28 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

46
apps/authentication/api/connection_token.py
View File

@ -1,6 +1,7 @@
# -*- coding: utf-8 -*- # -*- coding: utf-8 -*-
# #
import urllib.parse import urllib.parse
import base64
from django.conf import settings from django.conf import settings
from django.core.cache import cache from django.core.cache import cache
@ -52,7 +53,7 @@ class UserConnectionTokenViewSet(RootOrgViewMixin, SerializerMixin, GenericViewS
raise PermissionDenied(error) raise PermissionDenied(error)
return True return True
def create_token(self, user, asset, application, system_user, ttl=5*60): def create_token(self, user, asset, application, system_user, ttl=5 * 60):
if not self.request.user.is_superuser and user != self.request.user: if not self.request.user.is_superuser and user != self.request.user:
raise PermissionDenied('Only super user can create user token') raise PermissionDenied('Only super user can create user token')
self.check_resource_permission(user, asset, application, system_user) self.check_resource_permission(user, asset, application, system_user)
@ -81,19 +82,7 @@ class UserConnectionTokenViewSet(RootOrgViewMixin, SerializerMixin, GenericViewS
cache.set(key, value, timeout=ttl) cache.set(key, value, timeout=ttl)
return token return token
def create(self, request, *args, **kwargs): def create_rdp_file(self):
serializer = self.get_serializer(data=request.data)
serializer.is_valid(raise_exception=True)
asset = serializer.validated_data.get('asset')
application = serializer.validated_data.get('application')
system_user = serializer.validated_data['system_user']
user = serializer.validated_data.get('user')
token = self.create_token(user, asset, application, system_user)
return Response({"token": token}, status=201)
@action(methods=['POST', 'GET'], detail=False, url_path='rdp/file', permission_classes=[IsValidUser])
def get_rdp_file(self, request, *args, **kwargs):
options = { options = {
'full address:s': '', 'full address:s': '',
'username:s': '', 'username:s': '',
@ -137,7 +126,7 @@ class UserConnectionTokenViewSet(RootOrgViewMixin, SerializerMixin, GenericViewS
system_user = serializer.validated_data['system_user'] system_user = serializer.validated_data['system_user']
height = serializer.validated_data.get('height') height = serializer.validated_data.get('height')
width = serializer.validated_data.get('width') width = serializer.validated_data.get('width')
user = request.user user = self.request.user
token = self.create_token(user, asset, application, system_user) token = self.create_token(user, asset, application, system_user)
address = settings.TERMINAL_RDP_ADDR address = settings.TERMINAL_RDP_ADDR
@ -152,21 +141,42 @@ class UserConnectionTokenViewSet(RootOrgViewMixin, SerializerMixin, GenericViewS
options['desktopheight:i'] = height options['desktopheight:i'] = height
else: else:
options['smart sizing:i'] = '1' options['smart sizing:i'] = '1'
data = '' content = ''
for k, v in options.items(): for k, v in options.items():
data += f'{k}:{v}\n' content += f'{k}:{v}\n'
if asset: if asset:
name = asset.hostname name = asset.hostname
elif application: elif application:
name = application.name name = application.name
else: else:
name = '*' name = '*'
return name, content
def create(self, request, *args, **kwargs):
serializer = self.get_serializer(data=request.data)
serializer.is_valid(raise_exception=True)
asset = serializer.validated_data.get('asset')
application = serializer.validated_data.get('application')
system_user = serializer.validated_data['system_user']
user = serializer.validated_data.get('user')
token = self.create_token(user, asset, application, system_user)
return Response({"token": token}, status=201)
@action(methods=['POST', 'GET'], detail=False, url_path='rdp/file', permission_classes=[IsValidUser])
def get_rdp_file(self, request, *args, **kwargs):
name, data = self.create_rdp_file()
response = HttpResponse(data, content_type='application/octet-stream') response = HttpResponse(data, content_type='application/octet-stream')
filename = "{}-{}-jumpserver.rdp".format(user.username, name) filename = "{}-{}-jumpserver.rdp".format(self.request.user.username, name)
filename = urllib.parse.quote(filename) filename = urllib.parse.quote(filename)
response['Content-Disposition'] = 'attachment; filename*=UTF-8\'\'%s' % filename response['Content-Disposition'] = 'attachment; filename*=UTF-8\'\'%s' % filename
return response return response
@action(methods=['POST', 'GET'], detail=False, url_path='rdp/rouse', permission_classes=[IsValidUser])
def get_rdp_rouse(self, request, *args, **kwargs):
_, data = self.create_rdp_file()
return Response(data=dict(data=base64.b64encode(data.encode())))
@staticmethod @staticmethod
def _get_application_secret_detail(application): def _get_application_secret_detail(application):
from perms.models import Action from perms.models import Action