def stop_accounting(self,req,nas):
_key = '%s_%s'%(nas.ip_addr,req.get_acctsessionid())
service.incr_stat(service.STAT_ACCT_STOP)
online = service.rmv_online(_key)
ticket = req.get_ticket()
if online is None:
sessiontime = req.get_acctsessiontime()
_stoptime = datetime.datetime.now()
_starttime = _stoptime + datetime.timedelta(seconds=-sessiontime)
ticket['acctstarttime'] = _starttime.strftime( "%Y-%m-%d %H:%M:%S")
ticket['acctstoptime'] = _stoptime.strftime( "%Y-%m-%d %H:%M:%S")
ticket['startsource'] = STATUS_TYPE_STOP
ticket['stopsource'] = STATUS_TYPE_STOP
ticket['nodeid'] = nas.id
else:
ticket['nodeid'] = online['user'].node_id
ticket['acctstarttime'] = online['acctstarttime']
ticket['acctstoptime'] = datetime.datetime.now().strftime( "%Y-%m-%d %H:%M:%S")
ticket['startsource'] = online['startsource']
ticket['stopsource'] = STATUS_TYPE_STOP
ticket['framedipaddr'] = online['framedipaddr']
if radiuslog.isEnabledFor(DEBUG):
radiuslog.info('[Acct] User[%s],Nas[%s] billing stop'%(req.get_username(),nas.ip_addr))
user = service.get_user(req.get_username())
if not user:
ticketlog.info(json.dumps(ticket))
return
product = service.get_product(user.product_id)
if product.policy == 0:
sessiontime = round(req.get_acctsessiontime()/60,0)
usedfee = round(sessiontime/60*product.fee_price,0)
remaind = round(sessiontime%60,0)
if remaind > 0 :
usedfee = usedfee + round(remaind*product.fee_price/60,0);
balance = user.balance - usedfee
balance = balance < 0 and 0 or balance
service.update_user_balance(user.user_name,balance)
ticket['actualfee'] = usedfee
ticket['acctfee'] = usedfee
ticket['isdeduct'] = 1
ticketlog.info("ticket:%s"%json.dumps(ticket))
else :
ticket['actualfee'] = 0
ticket['acctfee'] = 0
ticket['isdeduct'] = 0
ticketlog.info("ticket:%s"%json.dumps(ticket))
def process(self, req):
attr_keys = req.keys()
if is_debug():
radiuslog.info("::Received an authentication request")
radiuslog.info("Attributes: ")
for attr in attr_keys:
radiuslog.info("%s: %s" % (attr, req[attr]))
nasaddr = req.get_nasaddr()
macaddr = req.get_macaddr()
nas = service.get_nas(nasaddr)
# check roster
if service.in_black_roster(macaddr):
return self.send_reject(req, nas, 'user in black roster')
vlanid, vlanid2 = req.get_vlanids()
username1 = req.get_username()
domain = None
username2 = username1
if "@" in username1:
username2 = username1[:username1.index("@")]
req["User-Name"] = username2
domain = username1[username1.index("@") + 1:]
if not service.user_exists(username2):
return self.send_reject(req, nas, 'user not exists')
user = service.get_user(username2)
if user.status != 1:
return self.send_reject(req, nas, 'Invalid user status')
if domain and domain not in user.domain_code:
return self.send_reject(req, nas, 'user domain does not match')
if nasaddr not in service.get_nas_ips(user.node_id):
return self.send_reject(req, nas, 'node does not match')
if not utils.is_valid_date(user.auth_begin_date, user.auth_end_date):
return self.send_reject(req, nas,
'user is not effective or expired')
userpwd = utils.decrypt(user.password)
if not req.is_valid_pwd(userpwd):
return self.send_reject(req, nas, 'user password does not match')
uproduct = service.get_product(user.product_id)
if not uproduct:
return self.send_reject(req, nas, 'user product does not match')
if uproduct.policy == service.POLICY_TIMING and user.time_length <= 0:
return self.send_reject(req, nas,
'user does not have the time length')
if not self.verify_macaddr(user, macaddr):
return self.send_reject(req, nas, 'user macaddr bind not match')
valid_vlanid = self.verify_vlan(user, vlanid, vlanid2)
if valid_vlanid == 1:
return self.send_reject(req, nas, 'user vlanid does not match')
elif valid_vlanid == 2:
return self.send_reject(req, nas, 'user vlanid2 does not match')
if user.concur_number > 0:
if user.concur_number <= service.get_online_num(user.user_name):
return self.send_reject(req, nas, 'user concur_number control')
return self.send_accept(
req, nas,
**dict(ipaddr=user.ip_addr,
bandcode=uproduct.bandwidth_code,
input_max_limit=str(uproduct.input_max_limit),
output_max_limit=str(uproduct.output_max_limit),
input_rate_code=uproduct.input_rate_code,
output_rate_code=uproduct.output_rate_code,
domain_code=user.domain_code))
def get_product(category):
found_products = service.get_product(category)
return jsonify({"product": found_products}), 200
def process(self,req):
attr_keys = req.keys()
if is_debug():
radiuslog.info("::Received an authentication request")
radiuslog.info("Attributes: ")
for attr in attr_keys:
radiuslog.info( "%s: %s" % (attr, req[attr]))
nasaddr = req.get_nasaddr()
macaddr = req.get_macaddr()
nas = service.get_nas(nasaddr)
# check roster
if service.in_black_roster(macaddr):
return self.send_reject(req,nas,'user in black roster')
vlanid,vlanid2 = req.get_vlanids()
username1 = req.get_username()
domain = None
username2 = username1
if "@" in username1:
username2 = username1[:username1.index("@")]
req["User-Name"] = username2
domain = username1[username1.index("@")+1:]
if not service.user_exists(username2):
return self.send_reject(req,nas,'user not exists')
user = service.get_user(username2)
if user.status != 1:
return self.send_reject(req,nas,'Invalid user status')
if domain and domain not in user.domain_code:
return self.send_reject(req,nas,'user domain does not match')
if nasaddr not in service.get_nas_ips(user.node_id):
return self.send_reject(req,nas,'node does not match')
if not utils.is_valid_date(user.auth_begin_date,user.auth_end_date):
return self.send_reject(req,nas,'user is not effective or expired')
userpwd = utils.decrypt(user.password)
if not req.is_valid_pwd(userpwd):
return self.send_reject(req,nas,'user password does not match')
uproduct = service.get_product(user.product_id)
if not uproduct:
return self.send_reject(req,nas,'user product does not match')
if uproduct.policy == service.POLICY_TIMING and user.time_length <= 0:
return self.send_reject(req,nas,'user does not have the time length')
if not self.verify_macaddr(user,macaddr):
return self.send_reject(req,nas,'user macaddr bind not match')
valid_vlanid = self.verify_vlan(user,vlanid,vlanid2)
if valid_vlanid == 1:
return self.send_reject(req,nas,'user vlanid does not match')
elif valid_vlanid == 2:
return self.send_reject(req,nas,'user vlanid2 does not match')
if user.concur_number > 0:
if user.concur_number <= service.get_online_num(user.user_name):
return self.send_reject(req,nas,'user concur_number control')
return self.send_accept(req,nas,**dict(ipaddr=user.ip_addr,
bandcode=uproduct.bandwidth_code,
input_max_limit=str(uproduct.input_max_limit),
output_max_limit=str(uproduct.output_max_limit),
input_rate_code=uproduct.input_rate_code,
output_rate_code=uproduct.output_rate_code,
domain_code=user.domain_code))
