github
/
jumpserver
mirror of https://github.com/jumpserver/jumpserver
1
0
Fork 0
Code Issues Releases Wiki Activity

fix(users): 替换旧有角色常量

pull/4283/head
xinwen 2020-07-28 17:53:01 +08:00 committed by 老广
parent de3865fa1d
commit b331730422
10 changed files with 49 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
apps/ops/utils.py
View File

@ -69,7 +69,7 @@ def send_server_performance_mail(path, usage, usages):
from users.models import User from users.models import User
subject = _("Disk used more than 80%: {} => {}").format(path, usage.percent) subject = _("Disk used more than 80%: {} => {}").format(path, usage.percent)
message = subject message = subject
admins = User.objects.filter(role=User.ROLE_ADMIN) admins = User.objects.filter(role=User.ROLE.ADMIN)
recipient_list = [u.email for u in admins if u.email] recipient_list = [u.email for u in admins if u.email]
logger.info(subject) logger.info(subject)
send_mail_async(subject, message, recipient_list, html_message=message) send_mail_async(subject, message, recipient_list, html_message=message)

18
apps/orgs/migrations/0007_auto_20200728_1805.py Normal file
View File

@ -0,0 +1,18 @@
# Generated by Django 2.2.10 on 2020-07-28 10:05
from django.db import migrations, models
class Migration(migrations.Migration):
dependencies = [
('orgs', '0006_auto_20200721_1937'),
]
operations = [
migrations.AlterField(
model_name='organizationmember',
name='role',
field=models.CharField(choices=[('Admin', 'Organization administrator'), ('User', 'User'), ('Auditor', 'Organization auditor')], default='User', max_length=16, verbose_name='Role'),
),
]

2
apps/terminal/utils.py
View File

@ -20,7 +20,7 @@ def get_session_asset_list():
def get_session_user_list(): def get_session_user_list():
return User.objects.exclude(role=User.ROLE_APP).values_list('username', flat=True) return User.objects.exclude(role=User.ROLE.APP).values_list('username', flat=True)
def get_session_system_user_list(): def get_session_system_user_list():

2
apps/tickets/api/request_asset_perm.py
View File

@ -48,7 +48,7 @@ class RequestAssetPermTicketViewSet(JMSModelViewSet):
org_mapper = {} org_mapper = {}
UserTuple = namedtuple('UserTuple', ('id', 'name', 'username')) UserTuple = namedtuple('UserTuple', ('id', 'name', 'username'))
user = request.user user = request.user
superusers = User.objects.filter(role=User.ROLE_ADMIN) superusers = User.objects.filter(role=User.ROLE.ADMIN)
admins_with_org = User.objects.filter(related_admin_orgs__users=user).annotate( admins_with_org = User.objects.filter(related_admin_orgs__users=user).annotate(
org_id=F('related_admin_orgs__id'), org_name=F('related_admin_orgs__name') org_id=F('related_admin_orgs__id'), org_name=F('related_admin_orgs__name')

2
apps/tickets/serializers/request_asset_perm.py
View File

@ -58,7 +58,7 @@ class RequestAssetPermTicketSerializer(serializers.ModelSerializer):
def validate_assignees(self, assignees): def validate_assignees(self, assignees):
user = self.context['request'].user user = self.context['request'].user
count = User.objects.filter(Q(related_admin_orgs__users=user) | Q(role=User.ROLE_ADMIN)).filter( count = User.objects.filter(Q(related_admin_orgs__users=user) | Q(role=User.ROLE.ADMIN)).filter(
id__in=[assignee.id for assignee in assignees]).distinct().count() id__in=[assignee.id for assignee in assignees]).distinct().count()
if count != len(assignees): if count != len(assignees):

2
apps/users/filters.py
View File

@ -12,7 +12,7 @@ class OrgRoleUserFilterBackend(filters.BaseFilterBackend):
return queryset return queryset
if org_role == 'admins': if org_role == 'admins':
return queryset & (current_org.admins | User.objects.filter(role=User.ROLE_ADMIN)) return queryset & (current_org.admins | User.objects.filter(role=User.ROLE.ADMIN))
elif org_role == 'auditors': elif org_role == 'auditors':
return queryset & current_org.auditors return queryset & current_org.auditors
elif org_role == 'users': elif org_role == 'users':

10
apps/users/forms/user.py
View File

@ -60,9 +60,9 @@ class UserCreateUpdateFormMixin(OrgModelForm):
roles = [] roles = []
# Super admin user # Super admin user
if self.request.user.is_superuser: if self.request.user.is_superuser:
roles.append((User.ROLE_ADMIN, dict(User.ROLE_CHOICES).get(User.ROLE_ADMIN))) roles.append((User.ROLE.ADMIN, User.ROLE.ADMIN.label))
roles.append((User.ROLE_USER, dict(User.ROLE_CHOICES).get(User.ROLE_USER))) roles.append((User.ROLE.USER, User.ROLE.USER.label))
roles.append((User.ROLE_AUDITOR, dict(User.ROLE_CHOICES).get(User.ROLE_AUDITOR))) roles.append((User.ROLE.AUDITOR, User.ROLE.AUDITOR.label))
# Org admin user # Org admin user
else: else:
@ -70,10 +70,10 @@ class UserCreateUpdateFormMixin(OrgModelForm):
# Update # Update
if user: if user:
role = kwargs.get('instance').role role = kwargs.get('instance').role
roles.append((role, dict(User.ROLE_CHOICES).get(role))) roles.append((role, User.ROLE[role]))
# Create # Create
else: else:
roles.append((User.ROLE_USER, dict(User.ROLE_CHOICES).get(User.ROLE_USER))) roles.append((User.ROLE.USER, User.ROLE.USER.label))
field = self.fields['role'] field = self.fields['role']
field.choices = set(roles) field.choices = set(roles)

18
apps/users/migrations/0028_auto_20200728_1805.py Normal file
View File

@ -0,0 +1,18 @@
# Generated by Django 2.2.10 on 2020-07-28 10:05
from django.db import migrations, models
class Migration(migrations.Migration):
dependencies = [
('users', '0027_auto_20200616_1503'),
]
operations = [
migrations.AlterField(
model_name='user',
name='role',
field=models.CharField(blank=True, choices=[('Admin', 'Super administrator'), ('User', 'User'), ('Auditor', 'Super auditor'), ('App', 'Application')], default='User', max_length=10, verbose_name='Role'),
),
]

2
apps/users/serializers_v2/user.py
View File

@ -39,7 +39,7 @@ class ServiceAccountSerializer(serializers.ModelSerializer):
def save(self, **kwargs): def save(self, **kwargs):
self.validated_data['email'] = self.get_email() self.validated_data['email'] = self.get_email()
self.validated_data['username'] = self.get_username() self.validated_data['username'] = self.get_username()
self.validated_data['role'] = User.ROLE_APP self.validated_data['role'] = User.ROLE.APP
return super().save(**kwargs) return super().save(**kwargs)
def create(self, validated_data): def create(self, validated_data):

4
apps/users/tasks.py
View File

@ -22,7 +22,7 @@ logger = get_logger(__file__)
@shared_task @shared_task
def check_password_expired(): def check_password_expired():
users = User.objects.filter(source=User.SOURCE_LOCAL).exclude(role=User.ROLE_APP) users = User.objects.filter(source=User.SOURCE_LOCAL).exclude(role=User.ROLE.APP)
for user in users: for user in users:
if not user.is_valid: if not user.is_valid:
continue continue
@ -49,7 +49,7 @@ def check_password_expired_periodic():
@shared_task @shared_task
def check_user_expired(): def check_user_expired():
users = User.objects.exclude(role=User.ROLE_APP) users = User.objects.exclude(role=User.ROLE.APP)
for user in users: for user in users:
if not user.is_valid: if not user.is_valid:
continue continue