Bugfix perm asset not active (#1273)

* [Bugfix] 修复资产禁用了还可以登录的bug

Bugfix perm asset not active (#1273)
* [Bugfix] 修复资产禁用了还可以登录的bug
55096f9a · 老广 · GitHub · 494cd760 · 55096f9a · 55096f9a
Unverified Commit 55096f9a authored Apr 27, 2018 by 老广 Committed by GitHub Apr 27, 2018
6 changed files
--- a/apps/assets/models/asset.py
+++ b/apps/assets/models/asset.py
@@ -4,7 +4,6 @@

 import uuid
 import logging
-import random

 from django.db import models
 from django.utils.translation import ugettext_lazy as _
@@ -35,6 +34,19 @@ def default_node():
        return None


+class AssetQuerySet(models.QuerySet):
+    def active(self):
+        return self.filter(is_active=True)
+
+    def valid(self):
+        return self.active()
+
+
+class AssetManager(models.Manager):
+    def get_queryset(self):
+        return AssetQuerySet(self.model, using=self._db)
+
+
 class Asset(models.Model):
    # Important
    PLATFORM_CHOICES = (
@@ -83,6 +95,8 @@ class Asset(models.Model):
    date_created = models.DateTimeField(auto_now_add=True, null=True, blank=True, verbose_name=_('Date created'))
    comment = models.TextField(max_length=128, default='', blank=True, verbose_name=_('Comment'))

+    objects = AssetManager()
+
    def __str__(self):
        return '{0.hostname}({0.ip})'.format(self)


--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -63,8 +63,8 @@ class Node(models.Model):
        assets = Asset.objects.filter(nodes__id=self.id)
        return assets

-    def get_active_assets(self):
-        return self.get_assets().filter(is_active=True)
+    def get_valid_assets(self):
+        return self.get_assets().valid()

    def get_all_assets(self):
        from .asset import Asset
@@ -78,8 +78,8 @@ class Node(models.Model):
    def has_assets(self):
        return self.get_all_assets()

-    def get_all_active_assets(self):
-        return self.get_all_assets().filter(is_active=True)
+    def get_all_valid_assets(self):
+        return self.get_all_assets().valid()

    def is_root(self):
        return self.key == '0'

--- a/apps/i18n/zh/LC_MESSAGES/django.mo
+++ b/apps/i18n/zh/LC_MESSAGES/django.mo
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
--- a/apps/perms/models.py
+++ b/apps/perms/models.py
@@ -7,13 +7,23 @@ from django.utils import timezone
 from common.utils import date_expired_default, set_or_append_attr_bulk


-class ValidManager(models.Manager):
-    def get_queryset(self):
-        return super().get_queryset().filter(is_active=True) \
-            .filter(date_start__lt=timezone.now())\
+class AssetPermissionQuerySet(models.QuerySet):
+    def active(self):
+        return self.filter(is_active=True)
+
+    def valid(self):
+        return self.active().filter(date_start__lt=timezone.now())\
            .filter(date_expired__gt=timezone.now())


+class AssetPermissionManager(models.Manager):
+    def get_queryset(self):
+        return AssetPermissionQuerySet(self.model, using=self._db)
+
+    def valid(self):
+        return self.get_queryset().valid()
+
+
 class AssetPermission(models.Model):
    id = models.UUIDField(default=uuid.uuid4, primary_key=True)
    name = models.CharField(max_length=128, unique=True, verbose_name=_('Name'))
@@ -29,8 +39,7 @@ class AssetPermission(models.Model):
    date_created = models.DateTimeField(auto_now_add=True, verbose_name=_('Date created'))
    comment = models.TextField(verbose_name=_('Comment'), blank=True)

-    objects = models.Manager()
-    valid = ValidManager()
+    objects = AssetPermissionManager()

    def __str__(self):
        return self.name

--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -16,23 +16,23 @@ class AssetPermissionUtil:

    @staticmethod
    def get_user_permissions(user):
-        return AssetPermission.valid.all().filter(users=user)
+        return AssetPermission.objects.all().valid().filter(users=user)

    @staticmethod
    def get_user_group_permissions(user_group):
-        return AssetPermission.valid.all().filter(user_groups=user_group)
+        return AssetPermission.objects.all().valid().filter(user_groups=user_group)

    @staticmethod
    def get_asset_permissions(asset):
-        return AssetPermission.valid.all().filter(assets=asset)
+        return AssetPermission.objects.all().valid().filter(assets=asset)

    @staticmethod
    def get_node_permissions(node):
-        return AssetPermission.valid.all().filter(nodes=node)
+        return AssetPermission.objects.all().valid().filter(nodes=node)

    @staticmethod
    def get_system_user_permissions(system_user):
-        return AssetPermission.objects.all().filter(system_users=system_user)
+        return AssetPermission.objects.valid().all().filter(system_users=system_user)

    @classmethod
    def get_user_group_nodes(cls, group):
@@ -51,7 +51,7 @@ class AssetPermissionUtil:
        assets = defaultdict(set)
        permissions = cls.get_user_group_permissions(group)
        for perm in permissions:
-            _assets = perm.assets.all()
+            _assets = perm.assets.all().valid()
            _system_users = perm.system_users.all()
            set_or_append_attr_bulk(_assets, 'permission', perm.id)
            for asset in _assets:
@@ -63,7 +63,7 @@ class AssetPermissionUtil:
        assets = defaultdict(set)
        nodes = cls.get_user_group_nodes(group)
        for node, _system_users in nodes.items():
-            _assets = node.get_all_assets()
+            _assets = node.get_all_valid_assets()
            set_or_append_attr_bulk(_assets, 'inherit_node', node.id)
            set_or_append_attr_bulk(_assets, 'permission', getattr(node, 'permission', None))
            for asset in _assets:
@@ -103,7 +103,7 @@ class AssetPermissionUtil:
        assets = defaultdict(set)
        permissions = list(cls.get_user_permissions(user))
        for perm in permissions:
-            _assets = perm.assets.all()
+            _assets = perm.assets.all().valid()
            _system_users = perm.system_users.all()
            set_or_append_attr_bulk(_assets, 'permission', perm.id)
            for asset in _assets:
@@ -127,7 +127,7 @@ class AssetPermissionUtil:
        assets = defaultdict(set)
        nodes = cls.get_user_nodes_direct(user)
        for node, _system_users in nodes.items():
-            _assets = node.get_all_assets()
+            _assets = node.get_all_valid_assets()
            set_or_append_attr_bulk(_assets, 'inherit_node', node.id)
            set_or_append_attr_bulk(_assets, 'permission', getattr(node, 'permission', None))
            for asset in _assets:
@@ -180,10 +180,10 @@ class AssetPermissionUtil:
        assets = set()
        permissions = cls.get_system_user_permissions(system_user)
        for perm in permissions:
-            assets.update(set(perm.assets.all()))
+            assets.update(set(perm.assets.all().valid()))
            nodes = perm.nodes.all()
            for node in nodes:
-                assets.update(set(node.get_all_assets()))
+                assets.update(set(node.get_all_valid_assets()))
        return assets

    @classmethod
@@ -243,7 +243,7 @@ class NodePermissionUtil:
        nodes_with_assets = dict()
        for node, system_users in nodes.items():
            nodes_with_assets[node] = {
-                'assets': node.get_active_assets(),
+                'assets': node.get_valid_assets(),
                'system_users': system_users
            }
        return nodes_with_assets
@@ -274,7 +274,7 @@ class NodePermissionUtil:
        nodes_with_assets = dict()
        for node, system_users in nodes.items():
            nodes_with_assets[node] = {
-                'assets': node.get_active_assets(),
+                'assets': node.get_valid_assets(),
                'system_users': system_users
            }
        return nodes_with_assets