mirror of https://github.com/jumpserver/jumpserver
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
174 lines
6.6 KiB
174 lines
6.6 KiB
import uuid
|
|
|
|
from django.utils import timezone
|
|
from django.utils.translation import gettext_lazy as _
|
|
from rest_framework import serializers
|
|
|
|
from assets.const import Protocol
|
|
from common.serializers.fields import EncryptedField
|
|
from common.utils import date_expired_default
|
|
|
|
__all__ = [
|
|
'AnnouncementSettingSerializer', 'OpsSettingSerializer', 'VaultSettingSerializer',
|
|
'HashicorpKVSerializer', 'AzureKVSerializer', 'TicketSettingSerializer',
|
|
'ChatAISettingSerializer', 'VirtualAppSerializer',
|
|
]
|
|
|
|
|
|
class AnnouncementSerializer(serializers.Serializer):
|
|
ID = serializers.CharField(required=False, allow_blank=True, allow_null=True)
|
|
SUBJECT = serializers.CharField(required=True, max_length=1024, label=_("Subject"))
|
|
CONTENT = serializers.CharField(label=_("Content"))
|
|
LINK = serializers.URLField(
|
|
required=False, allow_null=True, allow_blank=True,
|
|
label=_("More Link"), default='',
|
|
)
|
|
DATE_START = serializers.DateTimeField(default=timezone.now, label=_("Date start"))
|
|
DATE_END = serializers.DateTimeField(default=date_expired_default, label=_("Date end"))
|
|
|
|
def to_representation(self, instance):
|
|
defaults = {'ID': '', 'SUBJECT': '', 'CONTENT': '', 'LINK': '', 'ENABLED': False}
|
|
data = {**defaults, **instance}
|
|
return super().to_representation(data)
|
|
|
|
def to_internal_value(self, data):
|
|
data['ID'] = str(uuid.uuid4())
|
|
return super().to_internal_value(data)
|
|
|
|
|
|
class AnnouncementSettingSerializer(serializers.Serializer):
|
|
PREFIX_TITLE = _('Announcement')
|
|
|
|
ANNOUNCEMENT_ENABLED = serializers.BooleanField(label=_('Announcement'), default=True)
|
|
ANNOUNCEMENT = AnnouncementSerializer(label=_("Announcement"))
|
|
|
|
|
|
class BaseVaultSettingSerializer(serializers.Serializer):
|
|
|
|
def validate(self, data):
|
|
from accounts.signal_handlers import vault_pub_sub
|
|
data = super().validate(data)
|
|
vault_pub_sub.publish('vault')
|
|
return data
|
|
|
|
|
|
class VaultSettingSerializer(BaseVaultSettingSerializer, serializers.Serializer):
|
|
PREFIX_TITLE = _('Vault')
|
|
|
|
VAULT_ENABLED = serializers.BooleanField(
|
|
required=False, label=_('Vault'), read_only=True
|
|
)
|
|
VAULT_BACKEND = serializers.CharField(
|
|
max_length=16, required=False, label=_('Vault provider'), read_only=True
|
|
)
|
|
HISTORY_ACCOUNT_CLEAN_LIMIT = serializers.IntegerField(
|
|
default=999, max_value=999, min_value=1,
|
|
required=False, label=_('Record limit'),
|
|
help_text=_(
|
|
'If the specific value is less than 999 (default), '
|
|
'the system will automatically perform a task every night: '
|
|
'check and delete historical accounts that exceed the predetermined number. '
|
|
'If the value reaches or exceeds 999 (default), '
|
|
'no historical account deletion will be performed'
|
|
)
|
|
)
|
|
|
|
|
|
class HashicorpKVSerializer(BaseVaultSettingSerializer, serializers.Serializer):
|
|
PREFIX_TITLE = _('HCP Vault')
|
|
VAULT_HCP_HOST = serializers.CharField(
|
|
max_length=256, allow_blank=True, required=False, label=_('Host')
|
|
)
|
|
VAULT_HCP_TOKEN = EncryptedField(
|
|
max_length=256, allow_blank=True, required=False, label=_('Token'), default=''
|
|
)
|
|
VAULT_HCP_MOUNT_POINT = serializers.CharField(
|
|
max_length=256, allow_blank=True, required=False, label=_('Mount Point')
|
|
)
|
|
|
|
|
|
class AzureKVSerializer(BaseVaultSettingSerializer, serializers.Serializer):
|
|
PREFIX_TITLE = _('Azure Key Vault')
|
|
VAULT_AZURE_HOST = serializers.CharField(
|
|
max_length=256, allow_blank=True, required=False, label=_('Host')
|
|
)
|
|
VAULT_AZURE_CLIENT_ID = serializers.CharField(
|
|
max_length=128, allow_blank=True, required=False, label=_('Client ID')
|
|
)
|
|
VAULT_AZURE_CLIENT_SECRET = EncryptedField(
|
|
max_length=4096, allow_blank=True, required=False, label=_('Client Secret'), default=''
|
|
)
|
|
VAULT_AZURE_TENANT_ID = serializers.CharField(
|
|
max_length=128, allow_blank=True, required=False, label=_('Tenant ID')
|
|
)
|
|
|
|
|
|
class ChatAISettingSerializer(serializers.Serializer):
|
|
PREFIX_TITLE = _('Chat AI')
|
|
API_MODEL = Protocol.gpt_protocols()[Protocol.chatgpt]['setting']['api_mode']
|
|
GPT_MODEL_CHOICES = API_MODEL['choices']
|
|
GPT_MODEL_DEFAULT = API_MODEL['default']
|
|
|
|
CHAT_AI_ENABLED = serializers.BooleanField(
|
|
required=False, label=_('Chat AI')
|
|
)
|
|
GPT_BASE_URL = serializers.CharField(
|
|
allow_blank=True, required=False, label=_('GPT Base URL'),
|
|
help_text=_('The base URL of the GPT service. For example: https://api.openai.com/v1')
|
|
)
|
|
GPT_API_KEY = EncryptedField(
|
|
allow_blank=True, required=False, label=_('API Key'),
|
|
)
|
|
GPT_PROXY = serializers.CharField(
|
|
allow_blank=True, required=False, label=_('Proxy'),
|
|
help_text=_('The proxy server address of the GPT service. For example: http://ip:port')
|
|
)
|
|
GPT_MODEL = serializers.ChoiceField(
|
|
default=GPT_MODEL_DEFAULT, choices=GPT_MODEL_CHOICES, label=_("GPT Model"), required=False,
|
|
)
|
|
|
|
|
|
class TicketSettingSerializer(serializers.Serializer):
|
|
PREFIX_TITLE = _('Ticket')
|
|
|
|
TICKETS_ENABLED = serializers.BooleanField(required=False, default=True, label=_("Ticket"))
|
|
TICKETS_DIRECT_APPROVE = serializers.BooleanField(
|
|
required=False, default=False, label=_("Approval without login"),
|
|
help_text=_('Allow direct approval ticket without login')
|
|
)
|
|
TICKET_AUTHORIZE_DEFAULT_TIME = serializers.IntegerField(
|
|
min_value=1, max_value=999999, required=False,
|
|
label=_("Period"),
|
|
help_text=_("The default authorization time period when applying for assets via a ticket")
|
|
)
|
|
TICKET_AUTHORIZE_DEFAULT_TIME_UNIT = serializers.ChoiceField(
|
|
choices=[('day', _("day")), ('hour', _("hour"))],
|
|
label=_("Unit"), required=False, help_text=_("The unit of period")
|
|
)
|
|
|
|
|
|
class OpsSettingSerializer(serializers.Serializer):
|
|
PREFIX_TITLE = _('Feature')
|
|
|
|
SECURITY_COMMAND_EXECUTION = serializers.BooleanField(
|
|
required=False, label=_('Adhoc'),
|
|
help_text=_('Allow users to execute batch commands in the Workbench - Job Center - Adhoc')
|
|
)
|
|
SECURITY_COMMAND_BLACKLIST = serializers.ListField(
|
|
child=serializers.CharField(max_length=1024, ),
|
|
label=_('Command blacklist'),
|
|
help_text=_("Command blacklist in Adhoc")
|
|
)
|
|
|
|
|
|
class VirtualAppSerializer(serializers.Serializer):
|
|
PREFIX_TITLE = _('Virtual app')
|
|
|
|
VIRTUAL_APP_ENABLED = serializers.BooleanField(
|
|
required=False, label=_('Virtual App'),
|
|
help_text=_(
|
|
'Virtual applications, you can use the Linux operating system as an application server '
|
|
'in remote applications.'
|
|
)
|
|
)
|