示例#1
0
文件: role.py 项目: 17865135532/cms
class Role(BaseModel, CreationMixin, UpdationMixin):
    __tablename__ = "sys_role"
    __table_args__ = ({'comment': "角色表"})

    role_id = db.Column(db.Integer,
                        primary_key=True,
                        autoincrement=True,
                        comment='角色id')
    role_name = db.Column(db.String(20),
                          nullable=False,
                          unique=True,
                          comment='角色名称')
    role_description = db.Column(db.String(50), comment='角色描述')
    role_state = db.Column(db.String(10),
                           nullable=False,
                           default=ResourceState.active.value,
                           comment='角色状态')

    users = db.relationship('User',
                            backref='role',
                            primaryjoin='foreign(User.role_id)==Role.role_id')
    role_permissions = db.relationship(
        'RolePermission',
        backref='role',
        primaryjoin='foreign(RolePermission.role_id)==Role.role_id')

    def __str__(self):
        return self.role_name
示例#2
0
class OperationLogMixin(CreationMixin):
    log_id = db.Column(db.Integer, autoincrement=True, primary_key=True, comment='日志流水号')
    role_and_situations = []

    @declared_attr
    def user_name(cls):
        return db.Column(db.String(20), comment='用户名称')

    @declared_attr
    def operation(cls):
        return db.Column(db.String(10), nullable=False, default=constants.Operation.create.value, comment='操作')

    @declared_attr
    def object_type(cls):
        return db.Column(db.String(20), comment='操作对象类型')

    @declared_attr
    def object_id(cls):
        return db.Column(db.String(20), comment='操作对象id')

    @declared_attr
    def info(cls):
        return db.Column(db.String(50), comment='信息')

    @declared_attr
    def user_ip(cls):
        return db.Column(db.String(20), comment='用户ip')

    def __str__(self):
        s = f'{self.user_name} {self.operation} {self.object_type}({self.object_id})'
        if self.info:
            s += f':{self.info}'
        return s
示例#3
0
class RolePermission(BaseModel, CreationMixin, UpdationMixin):
    __tablename__ = "dat_role_permission"
    __table_args__ = ({'comment': '角色权限配置表'})

    role_permission_id = db.Column(db.Integer,
                                   primary_key=True,
                                   autoincrement=True,
                                   comment='角色权限配置id')
    role_id = db.Column(db.Integer, nullable=False, comment='角色id')
    resource_permission_id = db.Column(db.Integer,
                                       nullable=False,
                                       comment='权限id')
    role_permission_state = db.Column(db.Boolean,
                                      nullable=False,
                                      default=True,
                                      comment='是否允许')

    def __str__(self):
        return f'< Role {self.role} - Resource Permission {self.resource_permission} - {self.role_permission_state}>'
示例#4
0
class ResourcePermission(BaseModel, CreationMixin, UpdationMixin):
    __tablename__ = "dat_resource_permission"
    __table_args__ = ({'comment': '资源权限配置表'})

    resource_permission_id = db.Column(db.Integer,
                                       primary_key=True,
                                       autoincrement=True,
                                       comment='资源权限配置id')
    resource_id = db.Column(db.Integer, nullable=False, comment='资源id')
    permission_id = db.Column(db.Integer, nullable=False, comment='权限id')

    role_permissions = db.relationship(
        'RolePermission',
        backref='resource_permission',
        primaryjoin=
        'foreign(RolePermission.resource_permission_id)==ResourcePermission.resource_permission_id'
    )

    def __str__(self):
        return f'< Role {self.resource} - Permission {self.permission} >'
示例#5
0
class Permission(BaseModel, CreationMixin, UpdationMixin):
    __tablename__ = "sys_permission"
    __table_args__ = ({'comment': "权限表"})

    permission_id = db.Column(db.Integer,
                              primary_key=True,
                              autoincrement=True,
                              comment='权限id')
    permission_name = db.Column(db.String(20),
                                nullable=False,
                                unique=True,
                                comment='权限名称')
    permission_description = db.Column(db.String(50), comment='权限描述')

    resource_permissions = db.relationship(
        'ResourcePermission',
        backref='permission',
        primaryjoin=
        'foreign(ResourcePermission.permission_id)==Permission.permission_id')

    def __str__(self):
        return self.permission_name
示例#6
0
class ResourceModel(BaseModel, CreationMixin, UpdationMixin):
    __tablename__ = "sys_resource"
    __table_args__ = ({'comment': "资源表"})

    resource_id = db.Column(db.Integer,
                            primary_key=True,
                            autoincrement=True,
                            comment='资源id')
    resource_name = db.Column(db.String(30),
                              nullable=False,
                              unique=True,
                              comment='资源名称')
    resource_description = db.Column(db.String(50), comment='资源描述')

    resource_permissions = db.relationship(
        'ResourcePermission',
        backref='resource',
        primaryjoin=
        'foreign(ResourcePermission.resource_id)==ResourceModel.resource_id')

    def __str__(self):
        return self.resource_name
示例#7
0
 def user_ip(cls):
     return db.Column(db.String(20), comment='用户ip')
示例#8
0
 def user_name(cls):
     return db.Column(db.String(20), comment='用户名称')
示例#9
0
 def updated_by(cls):
     return db.Column(db.Integer, index=True, comment='更新人')
示例#10
0
 def operation(cls):
     return db.Column(db.String(10), nullable=False, default=constants.Operation.create.value, comment='操作')
示例#11
0
 def created_by(cls):
     return db.Column(db.Integer, index=True, comment='创建人')
示例#12
0
class UpdationMixin:
    updated_at = db.Column(db.DateTime(timezone=True), onupdate=func.now(), index=True, comment='更新日期')

    @declared_attr
    def updated_by(cls):
        return db.Column(db.Integer, index=True, comment='更新人')
示例#13
0
class CreationMixin:
    created_at = db.Column(db.DateTime(timezone=True), server_default=func.now(), index=True, comment='创建日期')

    @declared_attr
    def created_by(cls):
        return db.Column(db.Integer, index=True, comment='创建人')
示例#14
0
文件: user.py 项目: 17865135532/cms
class User(BaseModel, CreationMixin, UpdationMixin, UserMixin):
    __tablename__ = "sys_user"
    __table_args__ = {'comment': '用户表'}

    user_id = db.Column(db.Integer,
                        primary_key=True,
                        autoincrement=True,
                        comment="用户id")
    user_name = db.Column(db.String(20), nullable=False, comment="用户名")
    password = db.Column(db.String(100), nullable=False, comment="用户密码(加密)")
    email = db.Column(db.String(50),
                      unique=True,
                      nullable=False,
                      comment="邮箱地址")
    telephone = db.Column(db.String(20),
                          unique=True,
                          nullable=False,
                          comment="电话号码")
    address = db.Column(db.String(50), nullable=False, comment="联系地址")
    contact_person = db.Column(db.String(20), nullable=False, comment="联系人")
    ip = db.Column(db.String(20), nullable=False, comment="注册时的ip")
    user_state = db.Column(db.String(20),
                           nullable=False,
                           default=constants.UserState.active.value,
                           comment="用户状态")
    api_key = db.Column(db.String(32),
                        nullable=False,
                        index=True,
                        comment="接口id")
    secret_key = db.Column(db.String(256), nullable=False, comment="接口密钥(加密)")
    api_state = db.Column(db.String(10),
                          nullable=False,
                          default=constants.ResourceState.active.value,
                          comment="接口状态")
    role_id = db.Column(db.Integer, nullable=False, comment="用户角色")

    create_user = db.relationship(
        "User",
        remote_side=[user_id],
        primaryjoin='foreign(User.created_by)==User.user_id',
        post_update=True)
    update_user = db.relationship(
        "User",
        remote_side=[user_id],
        primaryjoin='foreign(User.updated_by)==User.user_id',
        post_update=True)
    created_roles = db.relationship(
        'Role',
        backref='create_user',
        primaryjoin='foreign(Role.created_by)==User.user_id')
    updated_roles = db.relationship(
        'Role',
        backref='update_user',
        primaryjoin='foreign(Role.updated_by)==User.user_id')
    created_demos = db.relationship(
        'Demo',
        backref='create_user',
        primaryjoin='foreign(Demo.created_by)==User.user_id')
    updated_demos = db.relationship(
        'Demo',
        backref='update_user',
        primaryjoin='foreign(Demo.updated_by)==User.user_id')

    @property
    def pwd(self):
        raise AttributeError('password is not a readable attribute')

    @pwd.setter
    def pwd(self, value):
        self.password = generate_password_hash(value)

    def verify_pwd(self, password):
        role_and_situation = get_role_and_situation()
        tables_mapping = {
            role_and_situation: m
            for m in [
                UserOperationLog, ApiOperationLog, AdminOperationLog,
                AdminApiOperationLog
            ] for role_and_situation in m.role_and_situations
        }
        try:
            op = constants.Operation.login.value
            role = role_and_situation.get('role')
            situation = role_and_situation.get('situation')
            log_model = tables_mapping[(role, situation)]
            log_model(user_name=self.user_name,
                      operation=op,
                      object_type=self.__table_args__.get("comment")
                      or self.__tablename__,
                      object_id=self.user_id,
                      user_ip=request.remote_addr,
                      created_by=self.user_id).save(user=self)
        except Exception as e:
            logger.error('', exc_info=e)
        return check_password_hash(self.password, password)

    def gen_token(self):
        return create_token({'user_id': self.user_id})

    @property
    def sk(self):
        try:
            return rsa_decrypt(self.secret_key).decode()
        except ValueError as e:
            logger.warning(f'secret_key invalid, {e}: {self.pk_id}:')

    @sk.setter
    def sk(self, value):
        self.secret_key = rsa_encrypt(value)

    @property
    def api_active(self):
        return self.api_state == constants.ResourceState.active.value

    # For Admin
    def get_id(self):
        return self.user_id

    @property
    def is_active(self):
        return self.user_state == constants.ResourceState.active.value

    def has_role(self, role_name):
        return self.role.role_name == role_name

    def __str__(self):
        return self.user_name
示例#15
0
 def info(cls):
     return db.Column(db.String(50), comment='信息')
示例#16
0
 def object_id(cls):
     return db.Column(db.String(20), comment='操作对象id')
示例#17
0
 def object_type(cls):
     return db.Column(db.String(20), comment='操作对象类型')