Skip to content

J
jumpserver
Commit 3c12c339 authored by 八千流's avatar 八千流 Committed by BaiJiangJie
Browse files
Options

[Update] 修改当仅是当前组织审计员时,隐藏终断会话按钮 (#3275) 

* [Update] 修改会话列表中终断按钮,批量终断,SessionViewSet 的权限控制
parent 118fc8c4
Hide whitespace changes
Inline Side-by-side
Showing with 8 additions and 3 deletions
apps/terminal/api/session.py
View file @ 3c12c339
...@@ -26,7 +26,7 @@ logger = get_logger(__name__) ...@@ -26,7 +26,7 @@ logger = get_logger(__name__)
class SessionViewSet(OrgBulkModelViewSet): class SessionViewSet(OrgBulkModelViewSet):
queryset = Session.objects.all() queryset = Session.objects.all()
serializer_class = serializers.SessionSerializer serializer_class = serializers.SessionSerializer
permission_classes = (IsOrgAdminOrAppUser | IsOrgAuditor, ) permission_classes = (IsOrgAdminOrAppUser, )
filter_fields = [ filter_fields = [
"user", "asset", "system_user", "remote_addr", "user", "asset", "system_user", "remote_addr",
"protocol", "terminal", "is_finished", "protocol", "terminal", "is_finished",
...@@ -53,6 +53,11 @@ class SessionViewSet(OrgBulkModelViewSet): ...@@ -53,6 +53,11 @@ class SessionViewSet(OrgBulkModelViewSet):
serializer.validated_data["system_user"] = _system_user.name serializer.validated_data["system_user"] = _system_user.name
return super().perform_create(serializer) return super().perform_create(serializer)
def get_permissions(self):
if self.request.method.lower() in ['get']:
self.permission_classes = (IsOrgAdminOrAppUser | IsOrgAuditor, )
return super().get_permissions()
class SessionReplayViewSet(viewsets.ViewSet): class SessionReplayViewSet(viewsets.ViewSet):
serializer_class = serializers.ReplaySerializer serializer_class = serializers.ReplaySerializer
......
apps/terminal/templates/terminal/session_list.html
View file @ 3c12c339
...@@ -41,7 +41,7 @@ ...@@ -41,7 +41,7 @@
</table> </table>
<div id="actions" class="hide"> <div id="actions" class="hide">
{% if type == "online" %} {% if type == "online" and request.user.can_admin_current_org %}
<div class="input-group"> <div class="input-group">
<select class="form-control m-b" style="width: auto" id="slct_bulk_update"> <select class="form-control m-b" style="width: auto" id="slct_bulk_update">
<option value="terminate">{% trans 'Terminate selected' %}</option> <option value="terminate">{% trans 'Terminate selected' %}</option>
...@@ -140,7 +140,7 @@ function initTable() { ...@@ -140,7 +140,7 @@ function initTable() {
replayBtn = replayBtn.replace("disabled", "") replayBtn = replayBtn.replace("disabled", "")
} }
var termBtn = '<a class="btn btn-xs btn-danger btn-term" disabled value="sessionID" terminal="terminalID" >{% trans "Terminate" %}</a>'; var termBtn = '<a class="btn btn-xs btn-danger btn-term" disabled value="sessionID" terminal="terminalID" >{% trans "Terminate" %}</a>';
if ("{{ request.user.is_org_admin }}" === "True") { if ("{{ request.user.can_admin_current_org }}" === "True") {
termBtn = termBtn.replace("disabled", "") termBtn = termBtn.replace("disabled", "")
.replace("sessionID", cellData) .replace("sessionID", cellData)
.replace("terminalID", rowData.terminal) .replace("terminalID", rowData.terminal)
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment