Unverified Commit 2a30204c authored by 老广's avatar 老广 Committed by GitHub

Merge pull request #1401 from jumpserver/dev

Dev
parents 99c4875d 30afcecf
...@@ -11,10 +11,48 @@ from .hands import Node ...@@ -11,10 +11,48 @@ from .hands import Node
logger = get_logger(__file__) logger = get_logger(__file__)
class Tree:
def __init__(self):
self.__all_nodes = list(Node.objects.all().prefetch_related('assets'))
self.__node_asset_map = defaultdict(set)
self.nodes = defaultdict(dict)
self.root = Node.root()
self.init_node_asset_map()
def init_node_asset_map(self):
for node in self.__all_nodes:
assets = node.get_assets().values_list('id', flat=True)
for asset in assets:
self.__node_asset_map[str(asset)].add(node)
def add_asset(self, asset, system_users):
nodes = self.__node_asset_map.get(str(asset.id), [])
self.add_nodes(nodes)
for node in nodes:
self.nodes[node][asset].update(system_users)
def add_node(self, node):
if node in self.nodes:
return
else:
self.nodes[node] = defaultdict(set)
if node.key == self.root.key:
return
parent_key = ':'.join(node.key.split(':')[:-1])
for n in self.__all_nodes:
if n.key == parent_key:
self.add_node(n)
break
def add_nodes(self, nodes):
for node in nodes:
self.add_node(node)
def get_user_permissions(user, include_group=True): def get_user_permissions(user, include_group=True):
if include_group: if include_group:
groups = user.groups.all() groups = user.groups.all()
arg = Q(users=user) | Q(user_groups=groups) arg = Q(users=user) | Q(user_groups__in=groups)
else: else:
arg = Q(users=user) arg = Q(users=user)
return AssetPermission.objects.all().valid().filter(arg) return AssetPermission.objects.all().valid().filter(arg)
...@@ -29,7 +67,7 @@ def get_user_group_permissions(user_group): ...@@ -29,7 +67,7 @@ def get_user_group_permissions(user_group):
def get_asset_permissions(asset, include_node=True): def get_asset_permissions(asset, include_node=True):
if include_node: if include_node:
nodes = asset.get_all_nodes(flat=True) nodes = asset.get_all_nodes(flat=True)
arg = Q(assets=asset) | Q(nodes=nodes) arg = Q(assets=asset) | Q(nodes__in=nodes)
else: else:
arg = Q(assets=asset) arg = Q(assets=asset)
return AssetPermission.objects.all().valid().filter(arg) return AssetPermission.objects.all().valid().filter(arg)
...@@ -57,6 +95,7 @@ class AssetPermissionUtil: ...@@ -57,6 +95,7 @@ class AssetPermissionUtil:
def __init__(self, obj): def __init__(self, obj):
self.object = obj self.object = obj
self._permissions = None self._permissions = None
self._assets = None
@property @property
def permissions(self): def permissions(self):
...@@ -93,6 +132,8 @@ class AssetPermissionUtil: ...@@ -93,6 +132,8 @@ class AssetPermissionUtil:
return assets return assets
def get_assets(self): def get_assets(self):
if self._assets:
return self._assets
assets = self.get_assets_direct() assets = self.get_assets_direct()
nodes = self.get_nodes_direct() nodes = self.get_nodes_direct()
for node, system_users in nodes.items(): for node, system_users in nodes.items():
...@@ -101,7 +142,8 @@ class AssetPermissionUtil: ...@@ -101,7 +142,8 @@ class AssetPermissionUtil:
if isinstance(asset, Node): if isinstance(asset, Node):
print(_assets) print(_assets)
assets[asset].update(system_users) assets[asset].update(system_users)
return assets self._assets = assets
return self._assets
def get_nodes_with_assets(self): def get_nodes_with_assets(self):
""" """
...@@ -110,14 +152,9 @@ class AssetPermissionUtil: ...@@ -110,14 +152,9 @@ class AssetPermissionUtil:
:return: :return:
""" """
assets = self.get_assets() assets = self.get_assets()
nodes = defaultdict(dict) tree = Tree()
for asset, system_users in assets.items(): for asset, system_users in assets.items():
_nodes = asset.nodes.all() tree.add_asset(asset, system_users)
for node in _nodes: return tree.nodes
if asset in nodes[node]:
nodes[node][asset].update(system_users)
else:
nodes[node][asset] = system_users
return nodes
<div class="footer fixed"> <div class="footer fixed">
<div class="pull-right"> <div class="pull-right">
Version <strong>1.3.1-{% include '_build.html' %}</strong> GPLv2. Version <strong>1.3.1-{% include '_build.html' %}</strong> GPLv2.
<img style="display: none" src="http://www.jumpserver.org/img/evaluate_avatar1.jpg"> <!--<img style="display: none" src="http://www.jumpserver.org/img/evaluate_avatar1.jpg">-->
</div> </div>
<div> <div>
<strong>Copyright</strong> 北京堆栈科技有限公司 &copy; 2014-2018 <strong>Copyright</strong> 北京堆栈科技有限公司 &copy; 2014-2018
......
...@@ -4,12 +4,10 @@ import uuid ...@@ -4,12 +4,10 @@ import uuid
from django.db import models, IntegrityError from django.db import models, IntegrityError
from django.utils.translation import ugettext_lazy as _ from django.utils.translation import ugettext_lazy as _
from common.mixins import NoDeleteModelMixin
__all__ = ['UserGroup'] __all__ = ['UserGroup']
class UserGroup(NoDeleteModelMixin): class UserGroup(models.Model):
id = models.UUIDField(default=uuid.uuid4, primary_key=True) id = models.UUIDField(default=uuid.uuid4, primary_key=True)
name = models.CharField(max_length=128, unique=True, verbose_name=_('Name')) name = models.CharField(max_length=128, unique=True, verbose_name=_('Name'))
comment = models.TextField(blank=True, verbose_name=_('Comment')) comment = models.TextField(blank=True, verbose_name=_('Comment'))
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment