Merge pull request #3429 from jumpserver/dev_auth_info

[Update] 修改获取系统用户-资产-认证信息API，添加 NeedMFAVerify 权限类

Merge pull request #3429 from jumpserver/dev_auth_info
[Update] 修改获取系统用户-资产-认证信息API，添加 NeedMFAVerify 权限类
6067dbcf · BaiJiangJie · GitHub · 200ca65d · 4057064b · 6067dbcf
Unverified Commit 6067dbcf authored Nov 12, 2019 by BaiJiangJie Committed by GitHub Nov 12, 2019
Hide whitespace changes
Inline Side-by-side

Showing with 7 additions and 1 deletion

system_user.py apps/assets/api/system_user.py +7 -1

No files found.
--- a/apps/assets/api/system_user.py
+++ b/apps/assets/api/system_user.py
@@ -14,11 +14,12 @@
 # limitations under the License.
 from django.shortcuts import get_object_or_404
+from django.conf import settings
 from rest_framework.response import Response
 from common.serializers import CeleryTaskSerializer
 from common.utils import get_logger
-from common.permissions import IsOrgAdmin, IsOrgAdminOrAppUser
+from common.permissions import IsOrgAdmin, IsOrgAdminOrAppUser, NeedMFAVerify
 from orgs.mixins.api import OrgBulkModelViewSet
 from orgs.mixins import generics
 from ..models import SystemUser, Asset
@@ -72,6 +73,11 @@ class SystemUserAssetAuthInfoApi(generics.RetrieveAPIView):
    permission_classes = (IsOrgAdminOrAppUser,)
    serializer_class = serializers.SystemUserAuthSerializer
+    def get_permissions(self):
+        if settings.CONFIG.SECURITY_VIEW_AUTH_NEED_MFA:
+            self.permission_classes = (IsOrgAdminOrAppUser, NeedMFAVerify)
+        return super().get_permissions()
    def get_object(self):
        instance = super().get_object()
        aid = self.kwargs.get('aid')