mirror of https://github.com/jumpserver/jumpserver
82 lines
2.7 KiB
Python
82 lines
2.7 KiB
Python
# -*- coding: utf-8 -*-
|
|
#
|
|
|
|
from rest_framework import mixins
|
|
|
|
from accounts import serializers
|
|
from accounts.const import AutomationTypes
|
|
from accounts.models import ChangeSecretAutomation, ChangeSecretRecord, AutomationExecution
|
|
from common.utils import get_object_or_none
|
|
from orgs.mixins.api import OrgBulkModelViewSet, OrgGenericViewSet
|
|
from .base import (
|
|
AutomationAssetsListApi, AutomationRemoveAssetApi, AutomationAddAssetApi,
|
|
AutomationNodeAddRemoveApi, AutomationExecutionViewSet
|
|
)
|
|
|
|
__all__ = [
|
|
'ChangeSecretAutomationViewSet', 'ChangeSecretRecordViewSet',
|
|
'ChangSecretExecutionViewSet', 'ChangSecretAssetsListApi',
|
|
'ChangSecretRemoveAssetApi', 'ChangSecretAddAssetApi',
|
|
'ChangSecretNodeAddRemoveApi'
|
|
]
|
|
|
|
|
|
class ChangeSecretAutomationViewSet(OrgBulkModelViewSet):
|
|
model = ChangeSecretAutomation
|
|
filter_fields = ('name', 'secret_type', 'secret_strategy')
|
|
search_fields = filter_fields
|
|
serializer_class = serializers.ChangeSecretAutomationSerializer
|
|
|
|
|
|
class ChangeSecretRecordViewSet(mixins.ListModelMixin, OrgGenericViewSet):
|
|
serializer_class = serializers.ChangeSecretRecordSerializer
|
|
filter_fields = ['asset', 'execution_id']
|
|
search_fields = ['asset__hostname']
|
|
|
|
def get_queryset(self):
|
|
return ChangeSecretRecord.objects.filter(
|
|
execution__automation__type=AutomationTypes.change_secret
|
|
)
|
|
|
|
def filter_queryset(self, queryset):
|
|
queryset = super().filter_queryset(queryset)
|
|
eid = self.request.query_params.get('execution_id')
|
|
execution = get_object_or_none(AutomationExecution, pk=eid)
|
|
if execution:
|
|
queryset = queryset.filter(execution=execution)
|
|
return queryset
|
|
|
|
|
|
class ChangSecretExecutionViewSet(AutomationExecutionViewSet):
|
|
rbac_perms = (
|
|
("list", "accounts.view_changesecretexecution"),
|
|
("retrieve", "accounts.view_changesecretexecution"),
|
|
("create", "accounts.add_changesecretexecution"),
|
|
)
|
|
|
|
tp = AutomationTypes.change_secret
|
|
|
|
def get_queryset(self):
|
|
queryset = super().get_queryset()
|
|
queryset = queryset.filter(automation__type=self.tp)
|
|
return queryset
|
|
|
|
|
|
class ChangSecretAssetsListApi(AutomationAssetsListApi):
|
|
model = ChangeSecretAutomation
|
|
|
|
|
|
class ChangSecretRemoveAssetApi(AutomationRemoveAssetApi):
|
|
model = ChangeSecretAutomation
|
|
serializer_class = serializers.ChangeSecretUpdateAssetSerializer
|
|
|
|
|
|
class ChangSecretAddAssetApi(AutomationAddAssetApi):
|
|
model = ChangeSecretAutomation
|
|
serializer_class = serializers.ChangeSecretUpdateAssetSerializer
|
|
|
|
|
|
class ChangSecretNodeAddRemoveApi(AutomationNodeAddRemoveApi):
|
|
model = ChangeSecretAutomation
|
|
serializer_class = serializers.ChangeSecretUpdateNodeSerializer
|