Merge pull request #10741 from jumpserver/pr@dev@fix_acl_migrate_not_work

perf: 修复 acl 迁移后无法使用
pull/10749/head
老广 2023-06-15 18:32:34 +08:00 committed by GitHub
commit b31a08ed8d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 7 additions and 7 deletions

View File

@ -328,13 +328,13 @@ class RelatedManager:
q = Q() q = Q()
if isinstance(val, str): if isinstance(val, str):
val = [val] val = [val]
if ['*'] in val:
return Q()
for ip in val: for ip in val:
if not ip: if not ip:
continue continue
try: try:
if ip == '*': if '/' in ip:
return Q()
elif '/' in ip:
network = ipaddress.ip_network(ip) network = ipaddress.ip_network(ip)
ips = network.hosts() ips = network.hosts()
q |= Q(**{"{}__in".format(name): ips}) q |= Q(**{"{}__in".format(name): ips})
@ -378,7 +378,7 @@ class RelatedManager:
if match == 'ip_in': if match == 'ip_in':
q = cls.get_ip_in_q(name, val) q = cls.get_ip_in_q(name, val)
elif match in ("exact", "contains", "startswith", "endswith", "gte", "lte", "gt", "lt"): elif match in ("contains", "startswith", "endswith", "gte", "lte", "gt", "lt"):
lookup = "{}__{}".format(name, match) lookup = "{}__{}".format(name, match)
q = Q(**{lookup: val}) q = Q(**{lookup: val})
elif match == 'regex': elif match == 'regex':
@ -470,9 +470,9 @@ class JSONManyToManyDescriptor:
continue continue
if rule_match == 'in': if rule_match == 'in':
res &= value in rule_value res &= value in rule_value or '*' in rule_value
elif rule_match == 'exact': elif rule_match == 'exact':
res &= value == rule_value res &= value == rule_value or rule_value == '*'
elif rule_match == 'contains': elif rule_match == 'contains':
res &= rule_value in value res &= rule_value in value
elif rule_match == 'startswith': elif rule_match == 'startswith':
@ -499,7 +499,7 @@ class JSONManyToManyDescriptor:
elif rule['match'] == 'ip_in': elif rule['match'] == 'ip_in':
if isinstance(rule_value, str): if isinstance(rule_value, str):
rule_value = [rule_value] rule_value = [rule_value]
res &= contains_ip(value, rule_value) res &= '*' in rule_value or contains_ip(value, rule_value)
elif rule['match'] == 'm2m': elif rule['match'] == 'm2m':
if isinstance(value, Manager): if isinstance(value, Manager):
value = value.values_list('id', flat=True) value = value.values_list('id', flat=True)