jumpserver/apps/terminal/api/applet/host.py

125 lines
5.4 KiB
Python

import uuid
from django.db import transaction
from rest_framework import status
from rest_framework import viewsets
from rest_framework.decorators import action
from rest_framework.response import Response
from common.api import JMSBulkModelViewSet
from common.permissions import IsServiceAccount
from orgs.utils import tmp_to_builtin_org
from terminal.models import AppletHost, AppletHostDeployment
from terminal.serializers import (
AppletHostSerializer, AppletHostDeploymentSerializer,
AppletHostStartupSerializer, AppletSetupSerializer
)
from terminal.tasks import (
run_applet_host_deployment,
run_applet_host_deployment_install_applet,
run_applet_host_deployment_uninstall_applet
)
__all__ = ['AppletHostViewSet', 'AppletHostDeploymentViewSet']
class AppletHostViewSet(JMSBulkModelViewSet):
serializer_class = AppletHostSerializer
queryset = AppletHost.objects.all()
search_fields = ['asset_ptr__name', 'asset_ptr__address', ]
rbac_perms = {
'generate_accounts': 'terminal.change_applethost',
}
def dispatch(self, request, *args, **kwargs):
with tmp_to_builtin_org(system=1):
return super().dispatch(request, *args, **kwargs)
def get_permissions(self):
if self.action == 'startup':
return [IsServiceAccount()]
return super().get_permissions()
@action(methods=['post'], detail=True, serializer_class=AppletHostStartupSerializer)
def startup(self, request, *args, **kwargs):
instance = self.get_object()
serializer = self.get_serializer(data=request.data)
serializer.is_valid(raise_exception=True)
instance.check_terminal_binding(request)
return Response({'msg': 'ok'})
@action(methods=['put'], detail=True, url_path='generate-accounts')
def generate_accounts(self, request, *args, **kwargs):
instance = self.get_object()
instance.generate_accounts()
return Response({'msg': 'ok'})
class AppletHostDeploymentViewSet(viewsets.ModelViewSet):
serializer_class = AppletHostDeploymentSerializer
queryset = AppletHostDeployment.objects.all()
filterset_fields = ['host', ]
rbac_perms = (
('applets', 'terminal.view_AppletHostDeployment'),
('uninstall', 'terminal.change_applethost'),
)
@staticmethod
def start_deploy(instance, install_applets):
task = run_applet_host_deployment.apply_async((instance.id, install_applets,),
task_id=str(instance.id))
def create(self, request, *args, **kwargs):
serializer = self.get_serializer(data=request.data)
serializer.is_valid(raise_exception=True)
validated_data = serializer.validated_data
install_applets = validated_data.pop('install_applets', True)
instance = serializer.save()
instance.save_task(instance.id)
transaction.on_commit(lambda: self.start_deploy(instance, install_applets))
return Response({'task': str(instance.id)}, status=201)
@action(methods=['post'], detail=False)
def applets(self, request, *args, **kwargs):
hosts = request.data.get('hosts', [])
applet_id = request.data.get('applet_id', '')
model = self.get_queryset().model
hosts_qs = AppletHost.objects.filter(id__in=hosts)
if not hosts_qs.exists():
return Response(status=status.HTTP_404_NOT_FOUND)
objs = [model(host=host) for host in hosts_qs]
applet_host_deployments = model.objects.bulk_create(objs)
applet_host_deployment_ids = [str(obj.id) for obj in applet_host_deployments]
task_id = str(uuid.uuid4())
model.objects.filter(id__in=applet_host_deployment_ids).update(task=task_id)
transaction.on_commit(lambda: self.start_install_applet(applet_host_deployment_ids, applet_id, task_id))
return Response({'task': task_id}, status=201)
@action(methods=['post'], detail=False)
def uninstall(self, request, *args, **kwargs):
serializer = AppletSetupSerializer(data=request.data)
serializer.is_valid(raise_exception=True)
validated_data = serializer.validated_data
hosts = validated_data.pop('hosts', [])
applet_id = validated_data.pop('applet_id', '')
hosts_qs = AppletHost.objects.filter(id__in=hosts)
if not hosts_qs.exists():
return Response(status=status.HTTP_404_NOT_FOUND)
task_id = str(uuid.uuid4())
objs = [AppletHostDeployment(host=host, task=task_id) for host in hosts_qs]
applet_host_deployments = AppletHostDeployment.objects.bulk_create(objs)
applet_host_deployment_ids = [str(obj.id) for obj in applet_host_deployments]
transaction.on_commit(lambda: self.start_uninstall_applet(applet_host_deployment_ids, applet_id, task_id))
return Response({'task': task_id}, status=201)
@staticmethod
def start_install_applet(applet_host_deployment_ids, applet_id, task_id):
run_applet_host_deployment_install_applet.apply_async((applet_host_deployment_ids, applet_id),
task_id=str(task_id))
@staticmethod
def start_uninstall_applet(applet_host_deployment_ids, applet_id, task_id):
run_applet_host_deployment_uninstall_applet.apply_async((applet_host_deployment_ids, applet_id),
task_id=str(task_id))