mirror of https://github.com/jumpserver/jumpserver
114 lines
3.7 KiB
Python
114 lines
3.7 KiB
Python
# ~*~ coding: utf-8 ~*~
|
|
|
|
from __future__ import absolute_import, unicode_literals
|
|
from django import forms
|
|
from django.utils.translation import ugettext_lazy as _
|
|
|
|
from orgs.mixins.forms import OrgModelForm
|
|
from orgs.utils import current_org
|
|
from assets.models import Asset, Node
|
|
from ..models import AssetPermission, Action
|
|
|
|
__all__ = [
|
|
'AssetPermissionForm',
|
|
]
|
|
|
|
|
|
class ActionField(forms.MultipleChoiceField):
|
|
def __init__(self, *args, **kwargs):
|
|
kwargs['choices'] = Action.CHOICES
|
|
kwargs['initial'] = Action.ALL
|
|
kwargs['label'] = _("Action")
|
|
kwargs['widget'] = forms.CheckboxSelectMultiple()
|
|
super().__init__(*args, **kwargs)
|
|
|
|
def to_python(self, value):
|
|
value = super().to_python(value)
|
|
return Action.choices_to_value(value)
|
|
|
|
def prepare_value(self, value):
|
|
if value is None:
|
|
return value
|
|
value = Action.value_to_choices(value)
|
|
return value
|
|
|
|
|
|
class AssetPermissionForm(OrgModelForm):
|
|
actions = ActionField()
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
super().__init__(*args, **kwargs)
|
|
users_field = self.fields.get('users')
|
|
users_field.queryset = current_org.get_org_members(exclude=('Auditor',))
|
|
|
|
if self.data:
|
|
return
|
|
# 前端渲染优化, 防止过多资产
|
|
assets_field = self.fields['assets']
|
|
nodes_field = self.fields['nodes']
|
|
if self.instance:
|
|
assets_field.queryset = self.instance.assets.all()
|
|
nodes_field.queryset = self.instance.nodes.all()
|
|
else:
|
|
assets_field.queryset = Asset.objects.none()
|
|
nodes_field.queryset = Node.objects.none()
|
|
|
|
def set_nodes_initial(self, nodes):
|
|
field = self.fields['nodes']
|
|
field.choices = [(n.id, n.full_value) for n in nodes]
|
|
field.initial = nodes
|
|
|
|
def set_assets_initial(self, assets):
|
|
field = self.fields['assets']
|
|
field.choices = [(a.id, a.hostname) for a in assets]
|
|
field.initial = assets
|
|
|
|
class Meta:
|
|
model = AssetPermission
|
|
exclude = (
|
|
'id', 'date_created', 'created_by', 'org_id'
|
|
)
|
|
widgets = {
|
|
'users': forms.SelectMultiple(
|
|
attrs={'class': 'select2', 'data-placeholder': _("User")}
|
|
),
|
|
'user_groups': forms.SelectMultiple(
|
|
attrs={'class': 'select2', 'data-placeholder': _("User group")}
|
|
),
|
|
'assets': forms.SelectMultiple(
|
|
attrs={'class': 'select2', 'data-placeholder': _("Asset")}
|
|
),
|
|
'nodes': forms.SelectMultiple(
|
|
attrs={'class': 'nodes-select2', 'data-placeholder': _("Node")}
|
|
),
|
|
'system_users': forms.SelectMultiple(
|
|
attrs={'class': 'select2', 'data-placeholder': _('System user')}
|
|
),
|
|
}
|
|
labels = {
|
|
'nodes': _("Node"),
|
|
}
|
|
help_texts = {
|
|
'actions': _('Tips: The RDP protocol does not support separate '
|
|
'controls for uploading or downloading files')
|
|
}
|
|
|
|
def clean_user_groups(self):
|
|
users = self.cleaned_data.get('users')
|
|
user_groups = self.cleaned_data.get('user_groups')
|
|
|
|
if not users and not user_groups:
|
|
raise forms.ValidationError(
|
|
_("User or group at least one required"))
|
|
return self.cleaned_data["user_groups"]
|
|
|
|
def clean_asset_groups(self):
|
|
assets = self.cleaned_data.get('assets')
|
|
asset_groups = self.cleaned_data.get('asset_groups')
|
|
|
|
if not assets and not asset_groups:
|
|
raise forms.ValidationError(
|
|
_("Asset or group at least one required"))
|
|
|
|
return self.cleaned_data["asset_groups"]
|