def process(self, msgid, message):
self.syslog.info("accept auth message @ %s : %r" % (self.listen, utils.safeunicode(message)))
@self.cache.cache("get_account_by_username", expire=600)
def get_account_by_username(username):
return self.db.query(models.TrAccount).filter_by(account_number=username).first()
@self.cache.cache("get_product_by_id", expire=600)
def get_product_by_id(product_id):
return self.db.query(models.TrProduct).filter_by(id=product_id).first()
try:
req_msg = apibase.parse_request(self.secret, message)
if "username" not in req_msg:
raise ValueError("username is empty")
except Exception as err:
resp = apibase.make_response(self.secret, code=1, msg=utils.safestr(err.message))
self.agent.reply(msgid, resp)
return
try:
username = req_msg["username"]
account = get_account_by_username(username)
if not account:
apibase.make_response(
self.secret, code=1, msg=u"user {0} not exists".format(utils.safeunicode(username))
)
self.agent.reply(msgid, resp)
return
passwd = self.app.aes.decrypt(account.password)
product = get_product_by_id(account.product_id)
result = dict(
code=0,
msg="success",
username=username,
passwd=passwd,
input_rate=product.input_max_limit,
output_rate=product.output_max_limit,
attrs={"Session-Timeout": 86400, "Acct-Interim-Interval": 300},
)
resp = apibase.make_response(self.secret, **result)
self.agent.reply(msgid, resp)
self.syslog.info("send auth response %r" % (utils.safeunicode(resp)))
except Exception as err:
self.syslog.error(u"api authorize error %s" % utils.safeunicode(err.message))
resp = apibase.make_response(self.secret, code=1, msg=utils.safestr(err.message))
return self.agent.reply(msgid, resp)
def parse_request(self):
try:
# import pdb;pdb.set_trace()
msg_src = self.request.body
if self.settings.debug:
self.syslog.debug(u"[api debug] :: (%s) request body : %s" % (
self.request.path, utils.safeunicode(msg_src)))
req_msg = json.loads(msg_src)
except Exception as err:
self.syslog.error(u"api authorize parse error, %s" % utils.safeunicode(traceback.format_exc()))
raise ValueError(u"parse params error")
if not self.check_sign(req_msg):
raise ValueError(u"message sign error")
return req_msg
def register(self):
conn = self.db()
try:
node = conn.query(models.TrRadAgent).filter_by(
endpoint=self.listen,
protocol='zeromq',
radius_type='acctounting'
).first()
if not node:
node = models.TrRadAgent()
node.radius_type = 'acctounting'
node.protocol = 'zeromq'
node.endpoint = self.listen
node.create_time = utils.get_currtime()
node.last_check = utils.get_currtime()
conn.add(node)
conn.commit()
else:
node.last_check = utils.get_currtime()
conn.commit()
except Exception as err:
self.syslog.error(u"register acctounting agent error %s" % utils.safeunicode(err.message))
finally:
conn.close()
reactor.callLater(10.0, self.register, )
def post(self):
form = product_forms.product_add_form()
if not form.validates(source=self.get_params()):
return self.render("product_form.html", form=form)
product = models.TrProduct()
product.product_name = form.d.product_name
product.product_policy = form.d.product_policy
product.product_status = form.d.product_status
product.fee_months = int(form.d.get("fee_months", 0))
product.fee_times = utils.hour2sec(form.d.get("fee_times", 0))
product.fee_flows = utils.mb2kb(form.d.get("fee_flows", 0))
product.bind_mac = form.d.bind_mac
product.bind_vlan = form.d.bind_vlan
product.concur_number = form.d.concur_number
product.fee_price = utils.yuan2fen(form.d.fee_price)
product.fee_period = '' #form.d.fee_period or ''
product.input_max_limit = utils.mbps2bps(form.d.input_max_limit)
product.output_max_limit = utils.mbps2bps(form.d.output_max_limit)
_datetime = datetime.datetime.now().strftime("%Y-%m-%d %H:%M:%S")
product.create_time = _datetime
product.update_time = _datetime
self.db.add(product)
self.add_oplog(u'新增资费信息:%s' % utils.safeunicode(product.product_name))
self.db.commit()
self.redirect("/admin/product", permanent=False)
def post(self):
@self.cache.cache('get_account_by_username',expire=600)
def get_account_by_username(username):
return self.db.query(models.TrAccount).filter_by(account_number=username).first()
@self.cache.cache('get_product_by_id',expire=600)
def get_product_by_id(product_id):
return self.db.query(models.TrProduct).filter_by(id=product_id).first()
try:
req_msg = self.parse_request()
if 'username' not in req_msg:
raise ValueError('username is empty')
except Exception as err:
self.render_result(msg=utils.safeunicode(err.message))
return
try:
username = req_msg['username']
account = get_account_by_username(username)
if not account:
self.render_result(code=1, msg=u'user {0} not exists'.format(utils.safeunicode(username)))
return
passwd = self.aes.decrypt(account.password)
product = get_product_by_id(account.product_id)
result = dict(
code=0,
msg='success',
username=username,
passwd=passwd,
input_rate=product.input_max_limit,
output_rate=product.output_max_limit,
attrs={
"Session-Timeout" : 86400,
"Acct-Interim-Interval": 300
}
)
self.render_result(**result)
except Exception as err:
self.syslog.error(u"api authorize error %s" % safeunicode(err))
self.render_result(code=1, msg=u"api error")
def get(self):
operator_id = self.get_argument("operator_id")
opr = self.db.query(models.TrOperator).get(operator_id)
self.db.query(models.TrOperatorRule).filter_by(operator_name=opr.operator_name).delete()
self.db.query(models.TrOperator).filter_by(id=operator_id).delete()
self.add_oplog(u'删除操作员%s信息' % utils.safeunicode(opr.operator_name))
self.db.commit()
self.redirect("/admin/operator",permanent=False)
def post(self):
nodes = [(n.node_name, n.node_desc) for n in self.db.query(models.TrNode)]
products = [(p.id,p.product_name) for p in self.db.query(models.TrProduct)]
form = operator_form.operator_update_form(nodes,products)
if not form.validates(source=self.get_params()):
rules = self.db.query(models.TrOperatorRule.rule_path).filter_by(operator_name=form.d.operator_name)
rules = [r[0] for r in rules]
return self.render("base_form.html", form=form,rules=rules)
operator = self.db.query(models.TrOperator).get(form.d.id)
if form.d.operator_pass:
operator.operator_pass = md5(form.d.operator_pass.encode()).hexdigest()
operator.operator_desc = form.d.operator_desc
operator.operator_status = form.d.operator_status
self.db.query(models.TrOperatorNodes).filter_by(operator_name=operator.operator_name).delete()
for node in self.get_arguments("operator_nodes"):
onode = models.TrOperatorNodes()
onode.operator_name = form.d.operator_name
onode.node_name = node
self.db.add(onode)
self.db.query(models.TrOperatorProducts).filter_by(operator_name=operator.operator_name).delete()
for product_id in self.get_arguments("operator_products"):
oproduct = models.TrOperatorProducts()
oproduct.operator_name = form.d.operator_name
oproduct.product_id = product_id
self.db.add(oproduct)
self.add_oplog(u'修改操作员%s信息' % utils.safeunicode(operator.operator_name))
# update rules
self.db.query(models.TrOperatorRule).filter_by(operator_name=operator.operator_name).delete()
for path in self.get_arguments("rule_item"):
item = permit.get_route(path)
if not item: continue
rule = models.TrOperatorRule()
rule.operator_name = operator.operator_name
rule.rule_name = item['name']
rule.rule_path = item['path']
rule.rule_category = item['category']
self.db.add(rule)
permit.unbind_opr(operator.operator_name)
self.db.commit()
for rule in self.db.query(models.TrOperatorRule).filter_by(operator_name=operator.operator_name):
permit.bind_opr(rule.operator_name, rule.rule_path)
self.redirect("/admin/operator",permanent=False)
def post(self):
@self.cache.cache('get_bas_by_addr',expire=60)
def get_bas_by_addr(nasaddr):
return self.db.query(models.TrBas).filter_by(ip_addr=nasaddr).first()
try:
req_msg = self.parse_request()
if 'nasaddr' not in req_msg:
raise ValueError(u"nasaddr is empty")
except Exception as err:
self.render_result(code=1, msg=utils.safeunicode(err.message))
return
try:
nasaddr = req_msg['nasaddr']
nas = get_bas_by_addr(nasaddr)
if not nas:
self.render_result(code=1, msg=u'nas {0} not exists'.format(nasaddr))
return
api_addr = "{0}://{1}".format(self.request.protocol, self.request.host)
result = {
'code' : 0,
'msg' : 'ok',
'ipaddr' : nasaddr,
'secret' : nas.bas_secret,
'vendor_id' : nas.vendor_id,
'coa_port' : int(nas.coa_port or 3799),
'nonce' : str(int(time.time())),
}
self.render_result(**result)
except Exception as err:
self.syslog.error(u"api fetch nas error, %s" % utils.safeunicode(traceback.format_exc()))
self.render_result(code=1, msg=u"api error")
def post(self):
try:
req_msg = self.parse_request()
except Exception as err:
self.render_result(code=1, msg=utils.safeunicode(err.message))
return
try:
auth_agents = self.db.query(models.TrRadAgent).filter_by(
protocol='zeromq',
radius_type='authorize'
)
acct_agents = self.db.query(models.TrRadAgent).filter_by(
protocol='zeromq',
radius_type='acctounting'
)
radius_agent_protocol = self.get_param_value('radius_agent_protocol', 'http')
api_addr = "{0}://{1}".format(self.request.protocol, self.request.host)
result = {
'code' : 0,
'msg' : 'ok',
'api_auth_url' : "{0}/api/authorize".format(api_addr),
'api_acct_url' : "{0}/api/acctounting".format(api_addr),
'protocol' : radius_agent_protocol,
'auth_endpoints': ",".join([ a.endpoint for a in auth_agents]),
'acct_endpoints': ",".join([ a.endpoint for a in acct_agents]),
'nonce' : str(int(time.time())),
}
self.render_result(**result)
except Exception as err:
self.syslog.error(u"api fetch radagent error, %s" % utils.safeunicode(traceback.format_exc()))
self.render_result(code=1, msg=u"api error")
def post(self):
account_number = self.get_argument("account_number")
account = self.db.query(models.TrAccount).get(account_number)
user = self.query_account(account_number)
form = account_forms.account_cancel_form()
if account.status != 1:
return self.render("account_form.html", user=user, form=form, msg=u"无效用户状态")
if not form.validates(source=self.get_params()):
return self.render("account_form.html", user=user, form=form)
accept_log = models.TrAcceptLog()
accept_log.accept_type = 'cancel'
accept_log.accept_source = 'console'
accept_log.account_number = form.d.account_number
accept_log.accept_time = utils.get_currtime()
accept_log.operator_name = self.current_user.username
accept_log.accept_desc = u"用户销户退费%s(元);%s" % (
form.d.fee_value, utils.safeunicode(form.d.operate_desc))
self.db.add(accept_log)
self.db.flush()
self.db.refresh(accept_log)
old_expire_date = account.expire_date
order = models.TrCustomerOrder()
order.order_id = utils.gen_order_id()
order.customer_id = user.customer_id
order.product_id = user.product_id
order.account_number = form.d.account_number
order.order_fee = 0
order.actual_fee = -utils.yuan2fen(form.d.fee_value)
order.pay_status = 1
order.order_source = 'console'
order.accept_id = accept_log.id
order.create_time = utils.get_currtime()
order.order_desc = accept_log.accept_desc
self.db.add(order)
account.status = 3
self.db.commit()
onlines = self.db.query(models.TrOnline).filter_by(account_number=account_number)
for _online in onlines:
pass
self.redirect(self.detail_url_fmt(account_number))
def post(self):
try:
req_msg = self.parse_request()
if 'username' not in req_msg:
raise ValueError('username is empty')
except Exception as err:
self.render_json(code=1, msg=utils.safeunicode(err))
return
try:
username = req_msg['username']
result = dict(
code=0,
msg=u'success',
username=username
)
sign = self.mksign(result.values())
result['sign'] = sign
self.render_json(**result)
except Exception as err:
self.syslog.error(u"api authorize error %s" % safeunicode(err))
self.render_json(code=1, msg=u"api error")
def render_result(self, **result):
if 'code' not in result:
result["code"] = 0
if 'nonce' not in result:
result['nonce' ] = str(int(time.time()))
result['sign'] = self.mksign(result.values())
resp = json.dumps(result, ensure_ascii=False)
if self.settings.debug:
self.syslog.debug("[api debug] :: %s response body: %s" % (self.request.path, utils.safeunicode(resp)))
self.write(resp)
def render_json(self, **template_vars):
if not template_vars.has_key("code"):
template_vars["code"] = 0
resp = json.dumps(template_vars, ensure_ascii=False)
if self.settings.debug:
self.syslog.debug("[api debug] :: %s response body: %s" % (self.request.path, utils.safeunicode(resp)))
self.write(resp)
def post(self):
nodes = [(n.id, n.node_desc) for n in self.get_opr_nodes()]
products = [(n.id, n.product_name) for n in self.get_opr_products()]
iform = customer_forms.customer_import_form(nodes, products)
node_id = self.get_argument('node_id')
product_id = self.get_argument('product_id')
f = self.request.files['import_file'][0]
impctx = utils.safeunicode(f['body'])
lines = impctx.split("\n")
_num = 0
impusers = []
for line in lines:
_num += 1
line = line.strip()
if not line or u"用户姓名" in line: continue
attr_array = line.split(",")
if len(attr_array) < 11:
return self.render("customer_import_form.html", form=iform, msg=u"line %s error: length must 11 " % _num)
vform = customer_forms.customer_import_vform()
if not vform.validates(dict(
realname=attr_array[0],
idcard=attr_array[1],
mobile=attr_array[2],
address=attr_array[3],
account_number=attr_array[4],
password=attr_array[5],
begin_date=attr_array[6],
expire_date=attr_array[7],
balance=attr_array[8],
time_length=utils.hour2sec(attr_array[9]),
flow_length=utils.mb2kb(attr_array[10]))):
return self.render("customer_import_form.html", form=iform, msg=u"line %s error: %s" % (_num, vform.errors))
impusers.append(vform)
_unums = 0
for form in impusers:
try:
customer = models.TrCustomer()
customer.node_id = node_id
customer.realname = form.d.realname
customer.idcard = form.d.idcard
customer.customer_name = form.d.account_number
customer.password = md5(form.d.password.encode()).hexdigest()
customer.sex = '1'
customer.age = '0'
customer.email = ''
customer.mobile = form.d.mobile
customer.address = form.d.address
customer.create_time = form.d.begin_date + ' 00:00:00'
customer.update_time = utils.get_currtime()
customer.email_active = 0
customer.mobile_active = 0
customer.active_code = utils.get_uuid()
self.db.add(customer)
self.db.flush()
self.db.refresh(customer)
accept_log = models.TrAcceptLog()
accept_log.accept_type = 'open'
accept_log.accept_source = 'console'
_desc = u"用户导入账号:%s" % form.d.account_number
accept_log.accept_desc = _desc
accept_log.account_number = form.d.account_number
accept_log.accept_time = customer.update_time
accept_log.operator_name = self.current_user.username
self.db.add(accept_log)
self.db.flush()
self.db.refresh(accept_log)
order_fee = 0
actual_fee = 0
balance = 0
time_length = 0
flow_length = 0
expire_date = form.d.expire_date
product = self.db.query(models.TrProduct).get(product_id)
# 买断时长
if product.product_policy == BOTimes:
time_length = int(form.d.time_length)
# 买断流量
elif product.product_policy == BOFlows:
flow_length = int(form.d.flow_length)
# 预付费时长,预付费流量
elif product.product_policy in (PPTimes, PPFlow):
balance = utils.yuan2fen(form.d.balance)
expire_date = MAX_EXPIRE_DATE
order = models.TrCustomerOrder()
order.order_id = utils.gen_order_id()
order.customer_id = customer.customer_id
order.product_id = product.id
order.account_number = form.d.account_number
order.order_fee = order_fee
order.actual_fee = actual_fee
order.pay_status = 1
order.accept_id = accept_log.id
order.order_source = 'console'
order.create_time = customer.update_time
order.order_desc = u"用户导入开户"
self.db.add(order)
account = models.TrAccount()
account.account_number = form.d.account_number
account.customer_id = customer.customer_id
account.product_id = order.product_id
account.install_address = customer.address
account.ip_address = ''
account.mac_addr = ''
account.password = self.aes.encrypt(form.d.password)
account.status = 1
account.balance = balance
account.time_length = time_length
account.flow_length = flow_length
account.expire_date = expire_date
account.user_concur_number = product.concur_number
account.bind_mac = product.bind_mac
account.bind_vlan = product.bind_vlan
account.vlan_id = 0
account.vlan_id2 = 0
account.create_time = customer.create_time
account.update_time = customer.update_time
self.db.add(account)
_unums += 1
except Exception as e:
return self.render("customer_import_form.html", form=iform, msg=u"error : %s" % str(e))
self.add_oplog(u"导入开户,用户数:%s" % _unums)
self.db.commit()
self.redirect("/admin/customer")
def post(self):
account_number = self.get_argument("account_number")
products = [(n.id, n.product_name) for n in self.get_opr_products()]
form = account_forms.account_change_form(products=products)
account = self.db.query(models.TrAccount).get(account_number)
user = self.query_account(account_number)
if account.status not in (1, 4):
return self.render("account_change_form.html", user=user, form=form, msg=u"无效用户状态")
if not form.validates(source=self.get_params()):
return self.render("account_change_form.html", user=user, form=form)
product = self.db.query(models.TrProduct).get(form.d.product_id)
accept_log = models.TrAcceptLog()
accept_log.accept_type = 'change'
accept_log.accept_source = 'console'
accept_log.account_number = form.d.account_number
accept_log.accept_time = utils.get_currtime()
accept_log.operator_name = self.current_user.username
accept_log.accept_desc = u"用户资费变更为:%s;%s" % (
product.product_name, utils.safeunicode(form.d.operate_desc))
self.db.add(accept_log)
self.db.flush()
self.db.refresh(accept_log)
old_exoire_date = account.expire_date
account.product_id = product.id
# (PPMonth,PPTimes,BOMonth,BOTimes,PPFlow,BOFlows)
if product.product_policy in (PPMonth, BOMonth):
account.expire_date = form.d.expire_date
account.balance = 0
account.time_length = 0
account.flow_length = 0
elif product.product_policy in (PPTimes, PPFlow):
account.expire_date = MAX_EXPIRE_DATE
account.balance = utils.yuan2fen(form.d.balance)
account.time_length = 0
account.flow_length = 0
elif product.product_policy == BOTimes:
account.expire_date = MAX_EXPIRE_DATE
account.balance = 0
account.time_length = utils.hour2sec(form.d.time_length)
account.flow_length = 0
elif product.product_policy == BOFlows:
account.expire_date = MAX_EXPIRE_DATE
account.balance = 0
account.time_length = 0
account.flow_length = utils.mb2kb(form.d.flow_length)
order = models.TrCustomerOrder()
order.order_id = utils.gen_order_id()
order.customer_id = account.customer_id
order.product_id = account.product_id
order.account_number = account.account_number
order.order_fee = 0
order.actual_fee = utils.yuan2fen(form.d.add_value) - utils.yuan2fen(form.d.back_value)
order.pay_status = 1
order.accept_id = accept_log.id
order.order_source = 'console'
order.create_time = utils.get_currtime()
order.order_desc = u"用户变更资费,变更前到期:%s,变更后到期:%s" % (
old_exoire_date, account.expire_date)
self.db.add(order)
self.add_oplog(accept_log.accept_desc)
self.db.commit()
self.redirect(self.detail_url_fmt(account_number))
