def process(self, msgid, message): self.syslog.info("accept auth message @ %s : %r" % (self.listen, utils.safeunicode(message))) @self.cache.cache("get_account_by_username", expire=600) def get_account_by_username(username): return self.db.query(models.TrAccount).filter_by(account_number=username).first() @self.cache.cache("get_product_by_id", expire=600) def get_product_by_id(product_id): return self.db.query(models.TrProduct).filter_by(id=product_id).first() try: req_msg = apibase.parse_request(self.secret, message) if "username" not in req_msg: raise ValueError("username is empty") except Exception as err: resp = apibase.make_response(self.secret, code=1, msg=utils.safestr(err.message)) self.agent.reply(msgid, resp) return try: username = req_msg["username"] account = get_account_by_username(username) if not account: apibase.make_response( self.secret, code=1, msg=u"user {0} not exists".format(utils.safeunicode(username)) ) self.agent.reply(msgid, resp) return passwd = self.app.aes.decrypt(account.password) product = get_product_by_id(account.product_id) result = dict( code=0, msg="success", username=username, passwd=passwd, input_rate=product.input_max_limit, output_rate=product.output_max_limit, attrs={"Session-Timeout": 86400, "Acct-Interim-Interval": 300}, ) resp = apibase.make_response(self.secret, **result) self.agent.reply(msgid, resp) self.syslog.info("send auth response %r" % (utils.safeunicode(resp))) except Exception as err: self.syslog.error(u"api authorize error %s" % utils.safeunicode(err.message)) resp = apibase.make_response(self.secret, code=1, msg=utils.safestr(err.message)) return self.agent.reply(msgid, resp)
def parse_request(self): try: # import pdb;pdb.set_trace() msg_src = self.request.body if self.settings.debug: self.syslog.debug(u"[api debug] :: (%s) request body : %s" % ( self.request.path, utils.safeunicode(msg_src))) req_msg = json.loads(msg_src) except Exception as err: self.syslog.error(u"api authorize parse error, %s" % utils.safeunicode(traceback.format_exc())) raise ValueError(u"parse params error") if not self.check_sign(req_msg): raise ValueError(u"message sign error") return req_msg
def register(self): conn = self.db() try: node = conn.query(models.TrRadAgent).filter_by( endpoint=self.listen, protocol='zeromq', radius_type='acctounting' ).first() if not node: node = models.TrRadAgent() node.radius_type = 'acctounting' node.protocol = 'zeromq' node.endpoint = self.listen node.create_time = utils.get_currtime() node.last_check = utils.get_currtime() conn.add(node) conn.commit() else: node.last_check = utils.get_currtime() conn.commit() except Exception as err: self.syslog.error(u"register acctounting agent error %s" % utils.safeunicode(err.message)) finally: conn.close() reactor.callLater(10.0, self.register, )
def post(self): form = product_forms.product_add_form() if not form.validates(source=self.get_params()): return self.render("product_form.html", form=form) product = models.TrProduct() product.product_name = form.d.product_name product.product_policy = form.d.product_policy product.product_status = form.d.product_status product.fee_months = int(form.d.get("fee_months", 0)) product.fee_times = utils.hour2sec(form.d.get("fee_times", 0)) product.fee_flows = utils.mb2kb(form.d.get("fee_flows", 0)) product.bind_mac = form.d.bind_mac product.bind_vlan = form.d.bind_vlan product.concur_number = form.d.concur_number product.fee_price = utils.yuan2fen(form.d.fee_price) product.fee_period = '' #form.d.fee_period or '' product.input_max_limit = utils.mbps2bps(form.d.input_max_limit) product.output_max_limit = utils.mbps2bps(form.d.output_max_limit) _datetime = datetime.datetime.now().strftime("%Y-%m-%d %H:%M:%S") product.create_time = _datetime product.update_time = _datetime self.db.add(product) self.add_oplog(u'新增资费信息:%s' % utils.safeunicode(product.product_name)) self.db.commit() self.redirect("/admin/product", permanent=False)
def post(self): @self.cache.cache('get_account_by_username',expire=600) def get_account_by_username(username): return self.db.query(models.TrAccount).filter_by(account_number=username).first() @self.cache.cache('get_product_by_id',expire=600) def get_product_by_id(product_id): return self.db.query(models.TrProduct).filter_by(id=product_id).first() try: req_msg = self.parse_request() if 'username' not in req_msg: raise ValueError('username is empty') except Exception as err: self.render_result(msg=utils.safeunicode(err.message)) return try: username = req_msg['username'] account = get_account_by_username(username) if not account: self.render_result(code=1, msg=u'user {0} not exists'.format(utils.safeunicode(username))) return passwd = self.aes.decrypt(account.password) product = get_product_by_id(account.product_id) result = dict( code=0, msg='success', username=username, passwd=passwd, input_rate=product.input_max_limit, output_rate=product.output_max_limit, attrs={ "Session-Timeout" : 86400, "Acct-Interim-Interval": 300 } ) self.render_result(**result) except Exception as err: self.syslog.error(u"api authorize error %s" % safeunicode(err)) self.render_result(code=1, msg=u"api error")
def get(self): operator_id = self.get_argument("operator_id") opr = self.db.query(models.TrOperator).get(operator_id) self.db.query(models.TrOperatorRule).filter_by(operator_name=opr.operator_name).delete() self.db.query(models.TrOperator).filter_by(id=operator_id).delete() self.add_oplog(u'删除操作员%s信息' % utils.safeunicode(opr.operator_name)) self.db.commit() self.redirect("/admin/operator",permanent=False)
def post(self): nodes = [(n.node_name, n.node_desc) for n in self.db.query(models.TrNode)] products = [(p.id,p.product_name) for p in self.db.query(models.TrProduct)] form = operator_form.operator_update_form(nodes,products) if not form.validates(source=self.get_params()): rules = self.db.query(models.TrOperatorRule.rule_path).filter_by(operator_name=form.d.operator_name) rules = [r[0] for r in rules] return self.render("base_form.html", form=form,rules=rules) operator = self.db.query(models.TrOperator).get(form.d.id) if form.d.operator_pass: operator.operator_pass = md5(form.d.operator_pass.encode()).hexdigest() operator.operator_desc = form.d.operator_desc operator.operator_status = form.d.operator_status self.db.query(models.TrOperatorNodes).filter_by(operator_name=operator.operator_name).delete() for node in self.get_arguments("operator_nodes"): onode = models.TrOperatorNodes() onode.operator_name = form.d.operator_name onode.node_name = node self.db.add(onode) self.db.query(models.TrOperatorProducts).filter_by(operator_name=operator.operator_name).delete() for product_id in self.get_arguments("operator_products"): oproduct = models.TrOperatorProducts() oproduct.operator_name = form.d.operator_name oproduct.product_id = product_id self.db.add(oproduct) self.add_oplog(u'修改操作员%s信息' % utils.safeunicode(operator.operator_name)) # update rules self.db.query(models.TrOperatorRule).filter_by(operator_name=operator.operator_name).delete() for path in self.get_arguments("rule_item"): item = permit.get_route(path) if not item: continue rule = models.TrOperatorRule() rule.operator_name = operator.operator_name rule.rule_name = item['name'] rule.rule_path = item['path'] rule.rule_category = item['category'] self.db.add(rule) permit.unbind_opr(operator.operator_name) self.db.commit() for rule in self.db.query(models.TrOperatorRule).filter_by(operator_name=operator.operator_name): permit.bind_opr(rule.operator_name, rule.rule_path) self.redirect("/admin/operator",permanent=False)
def post(self): @self.cache.cache('get_bas_by_addr',expire=60) def get_bas_by_addr(nasaddr): return self.db.query(models.TrBas).filter_by(ip_addr=nasaddr).first() try: req_msg = self.parse_request() if 'nasaddr' not in req_msg: raise ValueError(u"nasaddr is empty") except Exception as err: self.render_result(code=1, msg=utils.safeunicode(err.message)) return try: nasaddr = req_msg['nasaddr'] nas = get_bas_by_addr(nasaddr) if not nas: self.render_result(code=1, msg=u'nas {0} not exists'.format(nasaddr)) return api_addr = "{0}://{1}".format(self.request.protocol, self.request.host) result = { 'code' : 0, 'msg' : 'ok', 'ipaddr' : nasaddr, 'secret' : nas.bas_secret, 'vendor_id' : nas.vendor_id, 'coa_port' : int(nas.coa_port or 3799), 'nonce' : str(int(time.time())), } self.render_result(**result) except Exception as err: self.syslog.error(u"api fetch nas error, %s" % utils.safeunicode(traceback.format_exc())) self.render_result(code=1, msg=u"api error")
def post(self): try: req_msg = self.parse_request() except Exception as err: self.render_result(code=1, msg=utils.safeunicode(err.message)) return try: auth_agents = self.db.query(models.TrRadAgent).filter_by( protocol='zeromq', radius_type='authorize' ) acct_agents = self.db.query(models.TrRadAgent).filter_by( protocol='zeromq', radius_type='acctounting' ) radius_agent_protocol = self.get_param_value('radius_agent_protocol', 'http') api_addr = "{0}://{1}".format(self.request.protocol, self.request.host) result = { 'code' : 0, 'msg' : 'ok', 'api_auth_url' : "{0}/api/authorize".format(api_addr), 'api_acct_url' : "{0}/api/acctounting".format(api_addr), 'protocol' : radius_agent_protocol, 'auth_endpoints': ",".join([ a.endpoint for a in auth_agents]), 'acct_endpoints': ",".join([ a.endpoint for a in acct_agents]), 'nonce' : str(int(time.time())), } self.render_result(**result) except Exception as err: self.syslog.error(u"api fetch radagent error, %s" % utils.safeunicode(traceback.format_exc())) self.render_result(code=1, msg=u"api error")
def post(self): account_number = self.get_argument("account_number") account = self.db.query(models.TrAccount).get(account_number) user = self.query_account(account_number) form = account_forms.account_cancel_form() if account.status != 1: return self.render("account_form.html", user=user, form=form, msg=u"无效用户状态") if not form.validates(source=self.get_params()): return self.render("account_form.html", user=user, form=form) accept_log = models.TrAcceptLog() accept_log.accept_type = 'cancel' accept_log.accept_source = 'console' accept_log.account_number = form.d.account_number accept_log.accept_time = utils.get_currtime() accept_log.operator_name = self.current_user.username accept_log.accept_desc = u"用户销户退费%s(元);%s" % ( form.d.fee_value, utils.safeunicode(form.d.operate_desc)) self.db.add(accept_log) self.db.flush() self.db.refresh(accept_log) old_expire_date = account.expire_date order = models.TrCustomerOrder() order.order_id = utils.gen_order_id() order.customer_id = user.customer_id order.product_id = user.product_id order.account_number = form.d.account_number order.order_fee = 0 order.actual_fee = -utils.yuan2fen(form.d.fee_value) order.pay_status = 1 order.order_source = 'console' order.accept_id = accept_log.id order.create_time = utils.get_currtime() order.order_desc = accept_log.accept_desc self.db.add(order) account.status = 3 self.db.commit() onlines = self.db.query(models.TrOnline).filter_by(account_number=account_number) for _online in onlines: pass self.redirect(self.detail_url_fmt(account_number))
def post(self): try: req_msg = self.parse_request() if 'username' not in req_msg: raise ValueError('username is empty') except Exception as err: self.render_json(code=1, msg=utils.safeunicode(err)) return try: username = req_msg['username'] result = dict( code=0, msg=u'success', username=username ) sign = self.mksign(result.values()) result['sign'] = sign self.render_json(**result) except Exception as err: self.syslog.error(u"api authorize error %s" % safeunicode(err)) self.render_json(code=1, msg=u"api error")
def render_result(self, **result): if 'code' not in result: result["code"] = 0 if 'nonce' not in result: result['nonce' ] = str(int(time.time())) result['sign'] = self.mksign(result.values()) resp = json.dumps(result, ensure_ascii=False) if self.settings.debug: self.syslog.debug("[api debug] :: %s response body: %s" % (self.request.path, utils.safeunicode(resp))) self.write(resp)
def render_json(self, **template_vars): if not template_vars.has_key("code"): template_vars["code"] = 0 resp = json.dumps(template_vars, ensure_ascii=False) if self.settings.debug: self.syslog.debug("[api debug] :: %s response body: %s" % (self.request.path, utils.safeunicode(resp))) self.write(resp)
def post(self): nodes = [(n.id, n.node_desc) for n in self.get_opr_nodes()] products = [(n.id, n.product_name) for n in self.get_opr_products()] iform = customer_forms.customer_import_form(nodes, products) node_id = self.get_argument('node_id') product_id = self.get_argument('product_id') f = self.request.files['import_file'][0] impctx = utils.safeunicode(f['body']) lines = impctx.split("\n") _num = 0 impusers = [] for line in lines: _num += 1 line = line.strip() if not line or u"用户姓名" in line: continue attr_array = line.split(",") if len(attr_array) < 11: return self.render("customer_import_form.html", form=iform, msg=u"line %s error: length must 11 " % _num) vform = customer_forms.customer_import_vform() if not vform.validates(dict( realname=attr_array[0], idcard=attr_array[1], mobile=attr_array[2], address=attr_array[3], account_number=attr_array[4], password=attr_array[5], begin_date=attr_array[6], expire_date=attr_array[7], balance=attr_array[8], time_length=utils.hour2sec(attr_array[9]), flow_length=utils.mb2kb(attr_array[10]))): return self.render("customer_import_form.html", form=iform, msg=u"line %s error: %s" % (_num, vform.errors)) impusers.append(vform) _unums = 0 for form in impusers: try: customer = models.TrCustomer() customer.node_id = node_id customer.realname = form.d.realname customer.idcard = form.d.idcard customer.customer_name = form.d.account_number customer.password = md5(form.d.password.encode()).hexdigest() customer.sex = '1' customer.age = '0' customer.email = '' customer.mobile = form.d.mobile customer.address = form.d.address customer.create_time = form.d.begin_date + ' 00:00:00' customer.update_time = utils.get_currtime() customer.email_active = 0 customer.mobile_active = 0 customer.active_code = utils.get_uuid() self.db.add(customer) self.db.flush() self.db.refresh(customer) accept_log = models.TrAcceptLog() accept_log.accept_type = 'open' accept_log.accept_source = 'console' _desc = u"用户导入账号:%s" % form.d.account_number accept_log.accept_desc = _desc accept_log.account_number = form.d.account_number accept_log.accept_time = customer.update_time accept_log.operator_name = self.current_user.username self.db.add(accept_log) self.db.flush() self.db.refresh(accept_log) order_fee = 0 actual_fee = 0 balance = 0 time_length = 0 flow_length = 0 expire_date = form.d.expire_date product = self.db.query(models.TrProduct).get(product_id) # 买断时长 if product.product_policy == BOTimes: time_length = int(form.d.time_length) # 买断流量 elif product.product_policy == BOFlows: flow_length = int(form.d.flow_length) # 预付费时长,预付费流量 elif product.product_policy in (PPTimes, PPFlow): balance = utils.yuan2fen(form.d.balance) expire_date = MAX_EXPIRE_DATE order = models.TrCustomerOrder() order.order_id = utils.gen_order_id() order.customer_id = customer.customer_id order.product_id = product.id order.account_number = form.d.account_number order.order_fee = order_fee order.actual_fee = actual_fee order.pay_status = 1 order.accept_id = accept_log.id order.order_source = 'console' order.create_time = customer.update_time order.order_desc = u"用户导入开户" self.db.add(order) account = models.TrAccount() account.account_number = form.d.account_number account.customer_id = customer.customer_id account.product_id = order.product_id account.install_address = customer.address account.ip_address = '' account.mac_addr = '' account.password = self.aes.encrypt(form.d.password) account.status = 1 account.balance = balance account.time_length = time_length account.flow_length = flow_length account.expire_date = expire_date account.user_concur_number = product.concur_number account.bind_mac = product.bind_mac account.bind_vlan = product.bind_vlan account.vlan_id = 0 account.vlan_id2 = 0 account.create_time = customer.create_time account.update_time = customer.update_time self.db.add(account) _unums += 1 except Exception as e: return self.render("customer_import_form.html", form=iform, msg=u"error : %s" % str(e)) self.add_oplog(u"导入开户,用户数:%s" % _unums) self.db.commit() self.redirect("/admin/customer")
def post(self): account_number = self.get_argument("account_number") products = [(n.id, n.product_name) for n in self.get_opr_products()] form = account_forms.account_change_form(products=products) account = self.db.query(models.TrAccount).get(account_number) user = self.query_account(account_number) if account.status not in (1, 4): return self.render("account_change_form.html", user=user, form=form, msg=u"无效用户状态") if not form.validates(source=self.get_params()): return self.render("account_change_form.html", user=user, form=form) product = self.db.query(models.TrProduct).get(form.d.product_id) accept_log = models.TrAcceptLog() accept_log.accept_type = 'change' accept_log.accept_source = 'console' accept_log.account_number = form.d.account_number accept_log.accept_time = utils.get_currtime() accept_log.operator_name = self.current_user.username accept_log.accept_desc = u"用户资费变更为:%s;%s" % ( product.product_name, utils.safeunicode(form.d.operate_desc)) self.db.add(accept_log) self.db.flush() self.db.refresh(accept_log) old_exoire_date = account.expire_date account.product_id = product.id # (PPMonth,PPTimes,BOMonth,BOTimes,PPFlow,BOFlows) if product.product_policy in (PPMonth, BOMonth): account.expire_date = form.d.expire_date account.balance = 0 account.time_length = 0 account.flow_length = 0 elif product.product_policy in (PPTimes, PPFlow): account.expire_date = MAX_EXPIRE_DATE account.balance = utils.yuan2fen(form.d.balance) account.time_length = 0 account.flow_length = 0 elif product.product_policy == BOTimes: account.expire_date = MAX_EXPIRE_DATE account.balance = 0 account.time_length = utils.hour2sec(form.d.time_length) account.flow_length = 0 elif product.product_policy == BOFlows: account.expire_date = MAX_EXPIRE_DATE account.balance = 0 account.time_length = 0 account.flow_length = utils.mb2kb(form.d.flow_length) order = models.TrCustomerOrder() order.order_id = utils.gen_order_id() order.customer_id = account.customer_id order.product_id = account.product_id order.account_number = account.account_number order.order_fee = 0 order.actual_fee = utils.yuan2fen(form.d.add_value) - utils.yuan2fen(form.d.back_value) order.pay_status = 1 order.accept_id = accept_log.id order.order_source = 'console' order.create_time = utils.get_currtime() order.order_desc = u"用户变更资费,变更前到期:%s,变更后到期:%s" % ( old_exoire_date, account.expire_date) self.db.add(order) self.add_oplog(accept_log.accept_desc) self.db.commit() self.redirect(self.detail_url_fmt(account_number))