+
+
+
+
+
+
+
-{% block table_container %}
-
-
-
-
+
+
+
+
+
+
+
+
+
+
-
-
+
{% include 'assets/_asset_import_modal.html' %}
+{% include 'assets/_asset_list_modal.html' %}
{% endblock %}
{% block custom_foot_js %}
-
-
-{% endblock %}
+
+{% endblock %}
\ No newline at end of file
diff --git a/apps/assets/templates/assets/asset_update.html b/apps/assets/templates/assets/asset_update.html
index 702df8cc9..515780f55 100644
--- a/apps/assets/templates/assets/asset_update.html
+++ b/apps/assets/templates/assets/asset_update.html
@@ -22,7 +22,6 @@
{% bootstrap_field form.hostname layout="horizontal" %}
{% bootstrap_field form.ip layout="horizontal" %}
{% bootstrap_field form.port layout="horizontal" %}
- {% bootstrap_field form.cluster layout="horizontal" %}
{% bootstrap_field form.public_ip layout="horizontal" %}
diff --git a/apps/assets/templates/assets/tree.html b/apps/assets/templates/assets/tree.html
deleted file mode 100644
index b6c33965a..000000000
--- a/apps/assets/templates/assets/tree.html
+++ /dev/null
@@ -1,537 +0,0 @@
-{% extends 'base.html' %}
-{% load static %}
-{% load i18n %}
-
-{% block custom_head_css_js %}
-
-
-
-
-
-{% endblock %}
-
-{% block content %}
-
-
-
-
-{% include 'assets/_asset_import_modal.html' %}
-{% include 'assets/_asset_list_modal.html' %}
-{% endblock %}
-
-{% block custom_foot_js %}
-
-
-{% endblock %}
\ No newline at end of file
diff --git a/apps/assets/views/cluster.py b/apps/assets/views/__cluster.py
similarity index 100%
rename from apps/assets/views/cluster.py
rename to apps/assets/views/__cluster.py
diff --git a/apps/assets/views/group.py b/apps/assets/views/__group.py
similarity index 100%
rename from apps/assets/views/group.py
rename to apps/assets/views/__group.py
diff --git a/apps/assets/views/__init__.py b/apps/assets/views/__init__.py
index 3da4b6750..488d04262 100644
--- a/apps/assets/views/__init__.py
+++ b/apps/assets/views/__init__.py
@@ -5,4 +5,4 @@ from .asset import *
from .system_user import *
from .admin_user import *
from .label import *
-from .tree import *
+from .node import *
diff --git a/apps/assets/views/asset.py b/apps/assets/views/asset.py
index ba26591f0..b14282f74 100644
--- a/apps/assets/views/asset.py
+++ b/apps/assets/views/asset.py
@@ -41,7 +41,7 @@ logger = get_logger(__file__)
class AssetListView(AdminUserRequiredMixin, TemplateView):
- template_name = 'assets/tree.html'
+ template_name = 'assets/asset_list.html'
def get_context_data(self, **kwargs):
context = {
diff --git a/apps/assets/views/tree.py b/apps/assets/views/node.py
similarity index 100%
rename from apps/assets/views/tree.py
rename to apps/assets/views/node.py
diff --git a/apps/perms/api.py b/apps/perms/api.py
index 0ae5b4e9e..958ee6838 100644
--- a/apps/perms/api.py
+++ b/apps/perms/api.py
@@ -10,7 +10,7 @@ from users.permissions import IsValidUser, IsSuperUser, IsSuperUserOrAppUser
from .utils import NodePermissionUtil
from .models import NodePermission
from .hands import AssetGrantedSerializer, User, UserGroup, Asset, \
- NodeGrantedSerializer, SystemUser
+ NodeGrantedSerializer, SystemUser, NodeSerializer
from . import serializers
@@ -30,8 +30,10 @@ class AssetPermissionViewSet(viewsets.ModelViewSet):
def get_queryset(self):
queryset = super().get_queryset()
node_id = self.request.query_params.get('node_id')
+
if node_id:
queryset = queryset.filter(node__id=node_id)
+
return queryset
@@ -62,6 +64,20 @@ class UserGrantedAssetsApi(ListAPIView):
return super().get_permissions()
+class UserGrantedNodesApi(ListAPIView):
+ permission_classes = (IsSuperUser,)
+ serializer_class = NodeSerializer
+
+ def get_queryset(self):
+ user_id = self.kwargs.get('pk', '')
+ if user_id:
+ user = get_object_or_404(User, id=user_id)
+ else:
+ user = self.request.user
+ nodes = NodePermissionUtil.get_user_nodes(user)
+ return nodes.keys()
+
+
class UserGrantedNodesWithAssetsApi(ListAPIView):
"""
授权用户的资产组,注:这里的资产组并非是授权列表中授权的,
@@ -134,7 +150,22 @@ class UserGroupGrantedAssetsApi(ListAPIView):
return queryset
-class UserGroupGrantedNodeApi(ListAPIView):
+class UserGroupGrantedNodesApi(ListAPIView):
+ permission_classes = (IsSuperUser,)
+ serializer_class = NodeSerializer
+
+ def get_queryset(self):
+ group_id = self.kwargs.get('pk', '')
+ queryset = []
+
+ if group_id:
+ group = get_object_or_404(UserGroup, id=group_id)
+ nodes = NodePermissionUtil.get_user_group_nodes(group)
+ queryset = nodes.keys()
+ return queryset
+
+
+class UserGroupGrantedNodesWithAssetsApi(ListAPIView):
permission_classes = (IsSuperUser,)
serializer_class = NodeGrantedSerializer
diff --git a/apps/perms/hands.py b/apps/perms/hands.py
index 42bb90cef..22f290069 100644
--- a/apps/perms/hands.py
+++ b/apps/perms/hands.py
@@ -4,7 +4,7 @@
from users.utils import AdminUserRequiredMixin
from users.models import User, UserGroup
from assets.models import Asset, AssetGroup, SystemUser, Node
-from assets.serializers import AssetGrantedSerializer, NodeGrantedSerializer
+from assets.serializers import AssetGrantedSerializer, NodeGrantedSerializer, NodeSerializer
diff --git a/apps/perms/urls/api_urls.py b/apps/perms/urls/api_urls.py
index 3c7870fa5..78c869b2e 100644
--- a/apps/perms/urls/api_urls.py
+++ b/apps/perms/urls/api_urls.py
@@ -11,12 +11,17 @@ router.register('v1/asset-permissions', api.AssetPermissionViewSet, 'asset-permi
urlpatterns = [
# 查询某个用户授权的资产和资产组
- url(r'^v1/user/(?P
[0-9a-zA-Z\-]{36})?/?assets/$', api.UserGrantedAssetsApi.as_view(), name='user-assets'),
- url(r'^v1/user/(?P[0-9a-zA-Z\-]{36})?/?nodes/$', api.UserGrantedNodesWithAssetsApi.as_view(), name='user-nodes'),
+ url(r'^v1/user/(?P[0-9a-zA-Z\-]{36})/assets/$', api.UserGrantedAssetsApi.as_view(), name='user-assets'),
+ url(r'^v1/user/assets/$', api.UserGrantedAssetsApi.as_view(), name='my-assets'),
+ url(r'^v1/user/(?P[0-9a-zA-Z\-]{36})/nodes/$', api.UserGrantedNodesApi.as_view(), name='user-nodes'),
+ url(r'^v1/user/nodes/$', api.UserGrantedNodesApi.as_view(), name='my-nodes'),
+ url(r'^v1/user/(?P[0-9a-zA-Z\-]{36})/nodes-assets/$', api.UserGrantedNodesWithAssetsApi.as_view(), name='user-nodes-assets'),
+ url(r'^v1/user/nodes-assets/$', api.UserGrantedNodesWithAssetsApi.as_view(), name='my-nodes-assets'),
# 查询某个用户组授权的资产和资产组
url(r'^v1/user-group/(?P[0-9a-zA-Z\-]{36})/assets/$', api.UserGroupGrantedAssetsApi.as_view(), name='user-group-assets'),
- url(r'^v1/user-group/(?P[0-9a-zA-Z\-]{36})/nodes/$', api.UserGroupGrantedNodeApi.as_view(), name='user-group-asset-groups'),
+ url(r'^v1/user-group/(?P[0-9a-zA-Z\-]{36})/nodes/$', api.UserGroupGrantedNodesApi.as_view(), name='user-group-nodes'),
+ url(r'^v1/user-group/(?P[0-9a-zA-Z\-]{36})/nodes-assets/$', api.UserGroupGrantedNodesWithAssetsApi.as_view(), name='user-group-nodes-assets'),
# 验证用户是否有某个资产和系统用户的权限
url(r'v1/asset-permission/user/validate/$', api.ValidateUserAssetPermissionView.as_view(), name='validate-user-asset-permission'),
diff --git a/apps/perms/views.py b/apps/perms/views.py
index 2b691459b..33447db7b 100644
--- a/apps/perms/views.py
+++ b/apps/perms/views.py
@@ -3,15 +3,12 @@
from __future__ import unicode_literals, absolute_import
from django.utils.translation import ugettext as _
-from django.conf import settings
from django.views.generic import ListView, CreateView, UpdateView
from django.views.generic.edit import DeleteView
from django.urls import reverse_lazy
-from django.views.generic.detail import DetailView, SingleObjectMixin
from common.utils import get_object_or_none
-from .hands import AdminUserRequiredMixin, User, UserGroup, SystemUser, \
- Asset, AssetGroup, Node
+from .hands import AdminUserRequiredMixin, Node
from .models import AssetPermission, NodePermission
from .forms import AssetPermissionForm
@@ -74,85 +71,9 @@ class AssetPermissionUpdateView(AdminUserRequiredMixin, UpdateView):
return super().get_context_data(**kwargs)
-# class AssetPermissionDetailView(AdminUserRequiredMixin, DetailView):
-# template_name = 'perms/asset_permission_detail.html'
-# context_object_name = 'asset_permission'
-# model = AssetPermission
-#
-# def get_context_data(self, **kwargs):
-# context = {
-# 'app': _('Perms'),
-# 'action': _('Asset permission detail'),
-# 'system_users_remain': [
-# system_user for system_user in SystemUser.objects.all()
-# if system_user not in self.object.system_users.all()],
-# 'system_users': self.object.system_users.all(),
-# }
-# kwargs.update(context)
-# return super().get_context_data(**kwargs)
-
-
class AssetPermissionDeleteView(AdminUserRequiredMixin, DeleteView):
model = AssetPermission
template_name = 'delete_confirm.html'
success_url = reverse_lazy('perms:asset-permission-list')
-# class AssetPermissionUserView(AdminUserRequiredMixin,
-# SingleObjectMixin,
-# ListView):
-# template_name = 'perms/asset_permission_user.html'
-# context_object_name = 'asset_permission'
-# paginate_by = settings.DISPLAY_PER_PAGE
-# object = None
-#
-# def get(self, request, *args, **kwargs):
-# self.object = self.get_object(queryset=AssetPermission.objects.all())
-# return super().get(request, *args, **kwargs)
-#
-# def get_queryset(self):
-# queryset = self.object.get_granted_users()
-# return queryset
-#
-# def get_context_data(self, **kwargs):
-# users_granted = self.get_queryset()
-# groups_granted = self.object.user_groups.all()
-# context = {
-# 'app': _('Perms'),
-# 'action': _('Asset permission user list'),
-# 'users_remain': User.objects.exclude(id__in=[user.id for user in users_granted]),
-# 'user_groups': self.object.user_groups.all(),
-# 'user_groups_remain': UserGroup.objects.exclude(id__in=[group.id for group in groups_granted])
-# }
-# kwargs.update(context)
-# return super().get_context_data(**kwargs)
-
-
-# class AssetPermissionAssetView(AdminUserRequiredMixin,
-# SingleObjectMixin,
-# ListView):
-# template_name = 'perms/asset_permission_asset.html'
-# context_object_name = 'asset_permission'
-# paginate_by = settings.DISPLAY_PER_PAGE
-# object = None
-#
-# def get(self, request, *args, **kwargs):
-# self.object = self.get_object(queryset=AssetPermission.objects.all())
-# return super().get(request, *args, **kwargs)
-#
-# def get_queryset(self):
-# queryset = self.object.get_granted_assets()
-# return queryset
-#
-# def get_context_data(self, **kwargs):
-# assets_granted = self.get_queryset()
-# groups_granted = self.object.asset_groups.all()
-# context = {
-# 'app': _('Perms'),
-# 'action': _('Asset permission asset list'),
-# 'assets_remain': Asset.objects.exclude(id__in=[asset.id for asset in assets_granted]),
-# 'asset_groups': self.object.asset_groups.all(),
-# 'asset_groups_remain': AssetGroup.objects.exclude(id__in=[group.id for group in groups_granted])
-# }
-# kwargs.update(context)
-# return super().get_context_data(**kwargs)
diff --git a/apps/users/templates/users/user_granted_asset.html b/apps/users/templates/users/user_granted_asset.html
index 8bcbdc8a9..92f355d9f 100644
--- a/apps/users/templates/users/user_granted_asset.html
+++ b/apps/users/templates/users/user_granted_asset.html
@@ -4,8 +4,8 @@
{% load i18n %}
{% block custom_head_css_js %}
-
-
+
+
{% endblock %}
{% block content %}
@@ -15,77 +15,41 @@
-
-
-
-
{% trans 'Assets granted of ' %} {{ user.name }}
-
-
-
-
-
-
- | {% trans 'Hostname' %} |
- {% trans 'IP' %} |
- {% trans 'System user' %} |
-
-
-
-
-
-
-
+
-
-
-
-
{% trans 'Asset groups granted of ' %} {{ user.name }}
-
-
-
-
-
-
- | {% trans 'Name' %} |
- {% trans 'Asset' %} |
-
-
-
-
-
-
+
+
@@ -96,42 +60,114 @@
{% endblock %}
{% block custom_foot_js %}
-
+ zNodes = data;
+ $.fn.zTree.init($("#assetTree"), setting, zNodes);
+ zTree = $.fn.zTree.getZTreeObj("assetTree");
+ rMenu = $("#rMenu");
+ selectQueryNode();
+ });
+}
+
+$(document).ready(function () {
+ initTree();
+});
+
{% endblock %}
diff --git a/apps/users/templates/users/user_group_detail.html b/apps/users/templates/users/user_group_detail.html
index bb10398a5..c0d99876f 100644
--- a/apps/users/templates/users/user_group_detail.html
+++ b/apps/users/templates/users/user_group_detail.html
@@ -21,9 +21,9 @@
{% trans 'User group detail' %}
-{#
#}
-{# {% trans 'Asset granted' %}#}
-{# #}
+
+ {% trans 'Asset granted' %}
+
{% trans 'Update' %}
diff --git a/apps/users/templates/users/user_group_granted_asset.html b/apps/users/templates/users/user_group_granted_asset.html
index 7944101f2..ecb742ef1 100644
--- a/apps/users/templates/users/user_group_granted_asset.html
+++ b/apps/users/templates/users/user_group_granted_asset.html
@@ -4,8 +4,8 @@
{% load i18n %}
{% block custom_head_css_js %}
-
-
+
+
{% endblock %}
{% block content %}
@@ -15,81 +15,41 @@
-
-
-
-
{% trans 'Assets granted of ' %} {{ user_group.name }}
-
-
-
-
-
-
- |
- {% trans 'Hostname' %} |
- {% trans 'IP' %} |
- {% trans 'Port' %} |
- {% trans 'System user' %} |
- {% trans 'Valid' %} |
-
-
-
-
-
-
-
+
-
-
-
-
{% trans 'Asset groups granted of ' %} {{ user_group.name }}
-
-
-
-
-
-
- |
- {% trans 'Name' %} |
- {% trans 'Asset' %} |
-
-
-
-
-
-
+
+
@@ -100,54 +60,114 @@
{% endblock %}
{% block custom_foot_js %}
-
+ zNodes = data;
+ $.fn.zTree.init($("#assetTree"), setting, zNodes);
+ zTree = $.fn.zTree.getZTreeObj("assetTree");
+ rMenu = $("#rMenu");
+ selectQueryNode();
+ });
+}
+
+$(document).ready(function () {
+ initTree();
+});
+
{% endblock %}
diff --git a/apps/users/views/group.py b/apps/users/views/group.py
index 4b11e7901..fb279b582 100644
--- a/apps/users/views/group.py
+++ b/apps/users/views/group.py
@@ -88,10 +88,7 @@ class UserGroupGrantedAssetView(AdminUserRequiredMixin, DetailView):
model = UserGroup
template_name = 'users/user_group_granted_asset.html'
context_object_name = 'user_group'
-
- def get(self, request, *args, **kwargs):
- self.object = self.get_object(queryset=self.model.objects.all())
- return super().get(request, *args, **kwargs)
+ object = None
def get_context_data(self, **kwargs):
context = {
diff --git a/apps/users/views/user.py b/apps/users/views/user.py
index 9110e2887..c95680f65 100644
--- a/apps/users/views/user.py
+++ b/apps/users/views/user.py
@@ -295,10 +295,6 @@ class UserGrantedAssetView(AdminUserRequiredMixin, DetailView):
template_name = 'users/user_granted_asset.html'
object = None
- def get(self, request, *args, **kwargs):
- self.object = self.get_object(queryset=User.objects.all())
- return super().get(request, *args, **kwargs)
-
def get_context_data(self, **kwargs):
context = {
'app': _('Users'),