|
|
# coding:utf-8
|
|
|
from django import forms
|
|
|
from django.utils.translation import gettext_lazy as _
|
|
|
|
|
|
from .models import IDC, Asset, AssetGroup, AdminUser, SystemUser
|
|
|
from common.utils import validate_ssh_private_key, ssh_pubkey_gen, ssh_key_gen, get_logger
|
|
|
|
|
|
|
|
|
logger = get_logger(__file__)
|
|
|
|
|
|
|
|
|
class AssetCreateForm(forms.ModelForm):
|
|
|
def clean_admin_user(self):
|
|
|
if not self.cleaned_data['admin_user']:
|
|
|
raise forms.ValidationError(_('Select admin user'))
|
|
|
return self.cleaned_data['admin_user']
|
|
|
|
|
|
class Meta:
|
|
|
model = Asset
|
|
|
fields = [
|
|
|
'hostname', 'ip', 'public_ip', 'port', 'type', 'comment', 'admin_user',
|
|
|
'idc', 'groups', 'status', 'env', 'is_active'
|
|
|
]
|
|
|
widgets = {
|
|
|
'groups': forms.SelectMultiple(attrs={'class': 'select2',
|
|
|
'data-placeholder': _('Select asset groups')}),
|
|
|
'admin_user': forms.Select(attrs={'class': 'select2', 'data-placeholder': _('Select asset admin user')}),
|
|
|
}
|
|
|
help_texts = {
|
|
|
'hostname': '* required',
|
|
|
'ip': '* required',
|
|
|
'system_users': _('System user will be granted for user to login assets (using ansible create automatic)'),
|
|
|
'admin_user': _('Admin user should be exist on asset already, And have sudo ALL permission'),
|
|
|
}
|
|
|
|
|
|
|
|
|
class AssetUpdateForm(AssetCreateForm):
|
|
|
class Meta:
|
|
|
model = Asset
|
|
|
fields = [
|
|
|
'hostname', 'ip', 'port', 'groups', 'admin_user', 'idc', 'is_active',
|
|
|
'type', 'env', 'status', 'public_ip', 'remote_card_ip', 'cabinet_no',
|
|
|
'cabinet_pos', 'number', 'comment'
|
|
|
]
|
|
|
widgets = {
|
|
|
'groups': forms.SelectMultiple(attrs={'class': 'select2',
|
|
|
'data-placeholder': _('Select asset groups')}),
|
|
|
'admin_user': forms.Select(attrs={'class': 'select2', 'data-placeholder': _('Select asset admin user')}),
|
|
|
}
|
|
|
help_texts = {
|
|
|
'hostname': '* required',
|
|
|
'ip': '* required',
|
|
|
'system_users': _('System user will be granted for user to login assets (using ansible create automatic)'),
|
|
|
'admin_user': _('Admin user should be exist on asset already, And have sudo ALL permission'),
|
|
|
}
|
|
|
|
|
|
|
|
|
class AssetGroupForm(forms.ModelForm):
|
|
|
# See AdminUserForm comment same it
|
|
|
assets = forms.ModelMultipleChoiceField(
|
|
|
queryset=Asset.objects.all(),
|
|
|
label=_('Asset'),
|
|
|
required=False,
|
|
|
widget=forms.SelectMultiple(
|
|
|
attrs={'class': 'select2', 'data-placeholder': _('Select assets')})
|
|
|
)
|
|
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
|
if kwargs.get('instance', None):
|
|
|
initial = kwargs.get('initial', {})
|
|
|
initial['assets'] = kwargs['instance'].assets.all()
|
|
|
super(AssetGroupForm, self).__init__(*args, **kwargs)
|
|
|
|
|
|
def _save_m2m(self):
|
|
|
super(AssetGroupForm, self)._save_m2m()
|
|
|
assets = self.cleaned_data['assets']
|
|
|
self.instance.assets.clear()
|
|
|
self.instance.assets.add(*tuple(assets))
|
|
|
|
|
|
class Meta:
|
|
|
model = AssetGroup
|
|
|
fields = [
|
|
|
"name", "comment", "system_users",
|
|
|
]
|
|
|
widgets = {
|
|
|
'name': forms.TextInput(attrs={}),
|
|
|
'system_users': forms.SelectMultiple(attrs={'class': 'select2-system-user', 'data-placeholder': _('Select asset system user')}),
|
|
|
|
|
|
}
|
|
|
help_texts = {
|
|
|
'name': '* required',
|
|
|
}
|
|
|
|
|
|
|
|
|
class IDCForm(forms.ModelForm):
|
|
|
# See AdminUserForm comment same it
|
|
|
assets = forms.ModelMultipleChoiceField(queryset=Asset.objects.all(),
|
|
|
label=_('Asset'),
|
|
|
required=False,
|
|
|
widget=forms.SelectMultiple(
|
|
|
attrs={'class': 'select2', 'data-placeholder': _('Select assets')})
|
|
|
)
|
|
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
|
if kwargs.get('instance'):
|
|
|
initial = kwargs.get('initial', {})
|
|
|
initial['assets'] = kwargs['instance'].assets.all()
|
|
|
super(IDCForm, self).__init__(*args, **kwargs)
|
|
|
|
|
|
def _save_m2m(self):
|
|
|
super(IDCForm, self)._save_m2m()
|
|
|
assets = self.cleaned_data['assets']
|
|
|
self.instance.assets.clear()
|
|
|
self.instance.assets.add(*tuple(assets))
|
|
|
|
|
|
class Meta:
|
|
|
model = IDC
|
|
|
fields = ['name', "bandwidth", "operator", 'contact',
|
|
|
'phone', 'address', 'intranet', 'extranet', 'comment']
|
|
|
widgets = {
|
|
|
'name': forms.TextInput(attrs={'placeholder': _('Name')}),
|
|
|
'intranet': forms.Textarea(
|
|
|
attrs={'placeholder': 'IP段之间用逗号隔开,如:192.168.1.0/24,192.168.1.0/24'}),
|
|
|
'extranet': forms.Textarea(
|
|
|
attrs={'placeholder': 'IP段之间用逗号隔开,如:201.1.32.1/24,202.2.32.1/24'})
|
|
|
}
|
|
|
help_texts = {
|
|
|
'name': '* required'
|
|
|
}
|
|
|
|
|
|
|
|
|
class AdminUserForm(forms.ModelForm):
|
|
|
# Admin user assets define, let user select, save it in form not in view
|
|
|
assets = forms.ModelMultipleChoiceField(
|
|
|
queryset=Asset.objects.all(),
|
|
|
label=_('Asset'),
|
|
|
required=False,
|
|
|
widget=forms.SelectMultiple(
|
|
|
attrs={'class': 'select2', 'data-placeholder': _('Select assets')})
|
|
|
)
|
|
|
# Form field name can not start with `_`, so redefine it,
|
|
|
password = forms.CharField(
|
|
|
widget=forms.PasswordInput, max_length=100,
|
|
|
min_length=8, strip=True, required=False,
|
|
|
help_text=_('If also set private key, use that first'),
|
|
|
)
|
|
|
# Need use upload private key file except paste private key content
|
|
|
private_key_file = forms.FileField(required=False)
|
|
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
|
# When update a admin user instance, initial it
|
|
|
if kwargs.get('instance'):
|
|
|
initial = kwargs.get('initial', {})
|
|
|
initial['assets'] = kwargs['instance'].assets.all()
|
|
|
super(AdminUserForm, self).__init__(*args, **kwargs)
|
|
|
|
|
|
def _save_m2m(self):
|
|
|
# Save assets relation with admin user
|
|
|
super(AdminUserForm, self)._save_m2m()
|
|
|
assets = self.cleaned_data['assets']
|
|
|
self.instance.assets.clear()
|
|
|
self.instance.assets.add(*tuple(assets))
|
|
|
|
|
|
def save(self, commit=True):
|
|
|
# Because we define custom field, so we need rewrite :method: `save`
|
|
|
admin_user = super(AdminUserForm, self).save(commit=commit)
|
|
|
password = self.cleaned_data['password']
|
|
|
private_key = self.cleaned_data['private_key_file']
|
|
|
|
|
|
if password:
|
|
|
admin_user.password = password
|
|
|
if private_key:
|
|
|
public_key = ssh_pubkey_gen(private_key)
|
|
|
admin_user.private_key = private_key
|
|
|
admin_user.public_key = public_key
|
|
|
admin_user.save()
|
|
|
return admin_user
|
|
|
|
|
|
def clean_private_key_file(self):
|
|
|
private_key_file = self.cleaned_data['private_key_file']
|
|
|
if private_key_file:
|
|
|
private_key = private_key_file.read()
|
|
|
if not validate_ssh_private_key(private_key):
|
|
|
raise forms.ValidationError(_('Invalid private key'))
|
|
|
return private_key
|
|
|
return private_key_file
|
|
|
|
|
|
def clean(self):
|
|
|
password = self.cleaned_data['password']
|
|
|
private_key_file = self.cleaned_data.get('private_key_file', '')
|
|
|
|
|
|
if not self.instance and not (password or private_key_file):
|
|
|
raise forms.ValidationError(
|
|
|
_('Password and private key file must be input one'))
|
|
|
|
|
|
class Meta:
|
|
|
model = AdminUser
|
|
|
fields = ['name', 'username', 'password',
|
|
|
'private_key_file', 'comment']
|
|
|
widgets = {
|
|
|
'name': forms.TextInput(attrs={'placeholder': _('Name')}),
|
|
|
'username': forms.TextInput(attrs={'placeholder': _('Username')}),
|
|
|
}
|
|
|
help_texts = {
|
|
|
'name': '* required',
|
|
|
'username': '* required',
|
|
|
}
|
|
|
|
|
|
|
|
|
class SystemUserForm(forms.ModelForm):
|
|
|
# Admin user assets define, let user select, save it in form not in view
|
|
|
auto_generate_key = forms.BooleanField(initial=True, required=False)
|
|
|
# Form field name can not start with `_`, so redefine it,
|
|
|
password = forms.CharField(widget=forms.PasswordInput, required=False,
|
|
|
max_length=100, min_length=8, strip=True)
|
|
|
# Need use upload private key file except paste private key content
|
|
|
private_key_file = forms.FileField(required=False)
|
|
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
|
super(SystemUserForm, self).__init__(*args, **kwargs)
|
|
|
|
|
|
def save(self, commit=True):
|
|
|
# Because we define custom field, so we need rewrite :method: `save`
|
|
|
system_user = super(SystemUserForm, self).save(commit=commit)
|
|
|
password = self.cleaned_data['password']
|
|
|
private_key_file = self.cleaned_data.get('private_key_file')
|
|
|
|
|
|
if system_user.auth_method == 'P':
|
|
|
if password:
|
|
|
system_user.password = password
|
|
|
elif system_user.auth_method == 'K':
|
|
|
if self.cleaned_data['auto_generate_key']:
|
|
|
private_key, public_key = ssh_key_gen(username=system_user.name)
|
|
|
logger.info('Generate private key and public key')
|
|
|
else:
|
|
|
private_key = private_key_file.read().strip()
|
|
|
public_key = ssh_pubkey_gen(private_key=private_key)
|
|
|
system_user.private_key = private_key
|
|
|
system_user.public_key = public_key
|
|
|
system_user.save()
|
|
|
return self.instance
|
|
|
|
|
|
def clean_private_key_file(self):
|
|
|
if self.data['auth_method'] == 'K' and \
|
|
|
not self.cleaned_data['auto_generate_key']:
|
|
|
if not self.cleaned_data['private_key_file']:
|
|
|
raise forms.ValidationError(_('Private key required'))
|
|
|
else:
|
|
|
key_string = self.cleaned_data['private_key_file'].read()
|
|
|
self.cleaned_data['private_key_file'].seek(0)
|
|
|
if not validate_ssh_private_key(key_string):
|
|
|
raise forms.ValidationError(_('Private key invalid'))
|
|
|
return self.cleaned_data['private_key_file']
|
|
|
|
|
|
def clean_password(self):
|
|
|
if self.data['auth_method'] == 'P':
|
|
|
if not self.cleaned_data.get('password'):
|
|
|
raise forms.ValidationError(_('Password required'))
|
|
|
return self.cleaned_data['password']
|
|
|
|
|
|
class Meta:
|
|
|
model = SystemUser
|
|
|
fields = [
|
|
|
'name', 'username', 'protocol', 'auto_generate_key', 'password',
|
|
|
'private_key_file', 'auth_method', 'auto_push', 'sudo',
|
|
|
'comment', 'shell'
|
|
|
]
|
|
|
widgets = {
|
|
|
'name': forms.TextInput(attrs={'placeholder': _('Name')}),
|
|
|
'username': forms.TextInput(attrs={'placeholder': _('Username')}),
|
|
|
}
|
|
|
help_texts = {
|
|
|
'name': '* required',
|
|
|
'username': '* required',
|
|
|
'auto_push': 'Auto push system user to asset',
|
|
|
}
|
|
|
|
|
|
|
|
|
class FileForm(forms.Form):
|
|
|
file = forms.FileField()
|