def download(request): user = request.user assets = get_group_user_perm(user).get('asset').keys() asset_select = [] if request.method == 'POST': remote_ip = request.META.get('REMOTE_ADDR') asset_ids = request.POST.getlist('asset_ids', '') file_path = request.POST.get('file_path') date_now = datetime.datetime.now().strftime("%Y%m%d%H%M%S") upload_dir = get_tmp_dir() for asset_id in asset_ids: asset_select.append(get_object(Asset, id=asset_id)) if not set(asset_select).issubset(set(assets)): illegal_asset = set(asset_select).issubset(set(assets)) return HttpResponse(u'没有权限的服务器 %s' % ','.join([asset.name for asset in illegal_asset])) res = gen_resource({'user': user, 'asset': asset_select}) runner = MyRunner(res) runner.run('fetch', module_args='src=%s dest=%s' % (file_path, upload_dir), pattern='*') FileLog(user=request.user.username, host=' '.join([asset.name for asset in asset_select]), filename=file_path, type='download', remote_ip=remote_ip, result=runner.results).save() logger.debug(runner.results) os.chdir('/tmp') tmp_dir_name = os.path.basename(upload_dir) tar_file = '%s.tar.gz' % upload_dir bash('tar czf %s %s' % (tar_file, tmp_dir_name)) f = open(tar_file) data = f.read() f.close() response = HttpResponse(data, content_type='application/octet-stream') response['Content-Disposition'] = 'attachment; filename=%s' % os.path.basename(tar_file) return response return render_to_response('download.html', locals(), context_instance=RequestContext(request))
def user_perm_asset_num(user_id): user = get_object(User, id=user_id) if user: user_perm_info = get_group_user_perm(user) return len(user_perm_info.get('asset').keys()) else: return 0
def print_asset_group(self): """ 打印用户授权的资产组 """ user_asset_group_all = get_group_user_perm(self.user).get('asset_group', []) color_print('[%-3s] %-20s %s' % ('ID', '组名', '备注'), 'title') for asset_group in user_asset_group_all: print '[%-3s] %-15s %s' % (asset_group.id, asset_group.name, asset_group.comment) print
def download(self): while True: if not self.user_perm: self.user_perm = get_group_user_perm(self.user) try: print "进入批量下载模式" print "请输入主机名或ansible支持的pattern, 多个主机:分隔,q退出" pattern = raw_input("\033[1;32mPattern>:\033[0m ").strip() if pattern == 'q': break else: assets = self.user_perm.get('asset').keys() res = gen_resource({'user': self.user, 'asset': assets}, perm=self.user_perm) runner = MyRunner(res) asset_name_str = '' print "匹配主机:\n" for inv in runner.inventory.get_hosts(pattern=pattern): asset_name_str += '%s ' % inv.name print ' %s' % inv.name if not asset_name_str: color_print('没有匹配主机') continue print while True: tmp_dir = get_tmp_dir() logger.debug('Download tmp dir: %s' % tmp_dir) print "请输入文件路径(不支持目录)" file_path = raw_input("\033[1;32mPath>:\033[0m ").strip() if file_path == 'q': break if not file_path: color_print("文件路径为空") continue runner.run('fetch', module_args='src=%s dest=%s' % (file_path, tmp_dir), pattern=pattern) ret = runner.results FileLog(user=self.user.name, host=asset_name_str, filename=file_path, type='download', remote_ip=remote_ip, result=ret).save() logger.debug('Download file result: %s' % ret) os.chdir('/tmp') tmp_dir_name = os.path.basename(tmp_dir) if not os.listdir(tmp_dir): color_print('下载全部失败') continue bash('tar czf %s.tar.gz %s && sz %s.tar.gz' % (tmp_dir, tmp_dir_name, tmp_dir)) if ret.get('failed'): error = '文件名称: %s \n下载失败: [ %s ] \n下载成功 [ %s ]' % \ ('%s.tar.gz' % tmp_dir_name, ', '.join(ret.get('failed').keys()), ', '.join(ret.get('ok').keys())) color_print(error) else: msg = '文件名称: %s \n下载成功 [ %s ]' % ('%s.tar.gz' % tmp_dir_name, ', '.join(ret.get('ok').keys())) color_print(msg, 'green') print except IndexError: pass
def user_list(request): if request.method == 'GET': # user_role = {'SU': u'超级管理员', 'GA': u'组管理员', 'CU': u'普通用户'} header_title, path1, path2 = u'查看用户', u'用户管理', u'用户列表' group_all = UserGroup.objects.all() user_role = {'SU': u'超级管理员', 'CU': u'普通用户'} return my_render('userManage/user_list.html', locals(), request) else: try: page_length = int(request.POST.get('length', '5')) total_length = User.objects.all().count() keyword = request.POST.get("search") rest = { "iTotalRecords": 0, # 本次加载记录数量 "iTotalDisplayRecords": total_length, # 总记录数量 "aaData": [] } page_start = int(request.POST.get('start', '0')) page_end = page_start + page_length page_data = User.objects.all()[page_start:page_end] rest['iTotalRecords'] = len(page_data) data = [] for item in page_data: res = {} # 获取所有的组名 if item.group.all().count() > 2: group_names = ' '.join( [gitem.name for gitem in item.group.all()[0:3]]) + '...' else: group_names = ' '.join(gitem.name for gitem in item.group.all()) # 获取用户角色 if item.role == 'SU': user_role = u'超级用户' elif item.role == 'CU': user_role = u'普通用户' else: user_role = u'组管理员' # 获取用户所拥有的主机数 user_perm_info = get_group_user_perm(item) asset_numbers = len(user_perm_info.get('asset').keys()) res['id'] = item.id res['username'] = item.username res['groups'] = group_names res['role'] = user_role res['assets'] = asset_numbers res['is_active'] = u'是' if item.is_active else u'否' data.append(res) rest['aaData'] = data return HttpResponse(json.dumps(rest), content_type='application/json') except Exception as e: logger.error(e.message)
def upload(self): while True: if not self.user_perm: self.user_perm = get_group_user_perm(self.user) try: print "进入批量上传模式" print "请输入主机名或ansible支持的pattern, 多个主机:分隔 q退出" pattern = raw_input("\033[1;32mPattern>:\033[0m ").strip() if pattern == 'q': break else: assets = self.user_perm.get('asset').keys() res = gen_resource({'user': self.user, 'asset': assets}, perm=self.user_perm) runner = MyRunner(res) asset_name_str = '' print "匹配主机:" for inv in runner.inventory.get_hosts(pattern=pattern): print inv.name asset_name_str += '%s ' % inv.name if not asset_name_str: color_print('没有匹配主机') continue tmp_dir = get_tmp_dir() logger.debug('Upload tmp dir: %s' % tmp_dir) os.chdir(tmp_dir) bash('rz') filename_str = ' '.join(os.listdir(tmp_dir)) if not filename_str: color_print("上传文件为空") continue logger.debug('上传文件: %s' % filename_str) runner = MyRunner(res) runner.run('copy', module_args='src=%s dest=%s directory_mode' % (tmp_dir, '/tmp'), pattern=pattern) ret = runner.results FileLog(user=self.user.name, host=asset_name_str, filename=filename_str, remote_ip=remote_ip, type='upload', result=ret).save() logger.debug('Upload file: %s' % ret) if ret.get('failed'): error = '上传目录: %s \n上传失败: [ %s ] \n上传成功 [ %s ]' % (tmp_dir, ', '.join(ret.get('failed').keys()), ', '.join(ret.get('ok').keys())) color_print(error) else: msg = '上传目录: %s \n传送成功 [ %s ]' % (tmp_dir, ', '.join(ret.get('ok').keys())) color_print(msg, 'green') print except IndexError: pass
def user_list(request): if request.method == 'GET': # user_role = {'SU': u'超级管理员', 'GA': u'组管理员', 'CU': u'普通用户'} header_title, path1, path2 = u'查看用户', u'用户管理', u'用户列表' group_all = UserGroup.objects.all() user_role = {'SU': u'超级管理员', 'CU': u'普通用户'} return my_render('userManage/user_list.html', locals(), request) else: try: page_length = int(request.POST.get('length', '5')) total_length = User.objects.all().count() keyword = request.POST.get("search") rest = { "iTotalRecords": 0, # 本次加载记录数量 "iTotalDisplayRecords": total_length, # 总记录数量 "aaData": []} page_start = int(request.POST.get('start', '0')) page_end = page_start + page_length page_data = User.objects.all()[page_start:page_end] rest['iTotalRecords'] = len(page_data) data = [] for item in page_data: res = {} # 获取所有的组名 if item.group.all().count()>2: group_names = ' '.join([gitem.name for gitem in item.group.all()[0:3]]) + '...' else: group_names = ' '.join(gitem.name for gitem in item.group.all()) # 获取用户角色 if item.role == 'SU': user_role = u'超级用户' elif item.role == 'CU': user_role = u'普通用户' else: user_role = u'组管理员' # 获取用户所拥有的主机数 user_perm_info = get_group_user_perm(item) asset_numbers = len(user_perm_info.get('asset').keys()) res['id'] = item.id res['username'] = item.username res['groups'] = group_names res['role'] = user_role res['assets'] = asset_numbers res['is_active'] = u'是' if item.is_active else u'否' data.append(res) rest['aaData'] = data return HttpResponse(json.dumps(rest), content_type='application/json') except Exception as e: logger.error(e.message)
def user_detail(request): header_title, path1, path2 = u'用户详情', u'用户管理', u'用户详情' if request.session.get('role_id') == 0: user_id = request.user.id else: user_id = request.GET.get('id', '') user = get_object(User, id=user_id) if not user: return HttpResponseRedirect(reverse('user_list')) user_perm_info = get_group_user_perm(user) role_assets = user_perm_info.get('role') user_log_ten = Log.objects.filter(user=user.username).order_by('id')[0:10] user_log_last = Log.objects.filter(user=user.username).order_by('id')[0:50] user_log_last_num = len(user_log_last) return my_render('userManage/user_detail.html', locals(), request)
def upload(request): user = request.user assets = get_group_user_perm(user).get('asset').keys() asset_select = [] if request.method == 'POST': remote_ip = request.META.get('REMOTE_ADDR') asset_ids = request.POST.getlist('asset_ids', '') upload_files = request.FILES.getlist('file[]', None) date_now = datetime.datetime.now().strftime("%Y%m%d%H%M%S") upload_dir = get_tmp_dir() for asset_id in asset_ids: asset_select.append(get_object(Asset, id=asset_id)) if not set(asset_select).issubset(set(assets)): illegal_asset = set(asset_select).issubset(set(assets)) return HttpResponse('没有权限的服务器 %s' % ','.join([asset.name for asset in illegal_asset])) for upload_file in upload_files: file_path = '%s/%s' % (upload_dir, upload_file.name) with open(file_path, 'w') as f: for chunk in upload_file.chunks(): f.write(chunk) res = gen_resource({'user': user, 'asset': asset_select}) runner = MyRunner(res) runner.run('copy', module_args='src=%s dest=%s directory_mode' % (upload_dir, '/tmp'), pattern='*') ret = runner.results logger.debug(ret) FileLog(user=request.user.username, host=' '.join([asset.name for asset in asset_select]), filename=' '.join([f.name for f in upload_files]), type='upload', remote_ip=remote_ip, result=ret).save() if ret.get('failed'): error = u'上传目录: %s <br> 上传失败: [ %s ] <br>上传成功 [ %s ]' % (upload_dir, ','.join(ret.get('failed').keys()), ','.join(ret.get('ok').keys())) return HttpResponse(error, status=500) msg = u'上传目录: %s <br> 传送成功 [ %s ]' % (upload_dir, ', '.join(ret.get('ok').keys())) return HttpResponse(msg) return my_render('upload.html', locals(), request)
def search(self, str_r=''): gid_pattern = re.compile(r'^g\d+$') # 获取用户授权的所有主机信息 if not self.user_perm: self.user_perm = get_group_user_perm(self.user) user_asset_all = self.user_perm.get('asset').keys() # 搜索结果保存 user_asset_search = [] if str_r: # 资产组组id匹配 if gid_pattern.match(str_r): gid = int(str_r.lstrip('g')) # 获取资产组包含的资产 asset_group = get_object(AssetGroup, id=gid) if asset_group: user_asset_search = asset_group.asset_set.all() else: color_print('没有该资产组或没有权限') return else: # 匹配 ip, hostname, 备注 for asset in user_asset_all: if str_r in asset.ip or str_r in str(asset.name) or str_r in str(asset.comment): user_asset_search.append(asset) else: # 如果没有输入就展现所有 user_asset_search = user_asset_all self.search_result = dict(zip(range(len(user_asset_search)), user_asset_search)) color_print('[%-3s] %-12s %-15s %-5s %-10s %s' % ('ID', '主机名', 'IP', '端口', '系统用户', '备注'), 'title') for index, asset in self.search_result.items(): # 获取该资产信息 asset_info = get_asset_info(asset) # 获取该资产包含的角色 role = [str(role.name) for role in self.user_perm.get('asset').get(asset).get('role')] print '[%-3s] %-15s %-15s %-5s %-10s %s' % (index, asset.hostname, asset.ip, asset_info.get('port'), role, asset.comment) print
def asset_list(request): """ asset list view """ if request.method == 'GET': header_title, path1, path2 = u'查看资产', u'资产管理', u'查看资产' username = request.user.username user_perm = request.session['role_id'] # 获取modal中所需的数据 proxys = Proxy.objects.all() proxy_profiles = gen_proxy_profiles(proxys) asset_status = ASSET_STATUS asset_type = ASSET_TYPE power_type = POWER_TYPE idc_all = IDC.objects.all() group_all = AssetGroup.objects.all() if user_perm != 0: asset_find = Asset.objects.all() else: asset_id_all = [] user = get_object(User, username=username) asset_perm = get_group_user_perm(user) if user else {'asset': ''} user_asset_perm = asset_perm['asset'].keys() for asset in user_asset_perm: asset_id_all.append(asset.id) asset_find = Asset.objects.filter(pk__in=asset_id_all) asset_group_all = list(asset_perm['asset_group']) if user_perm != 0: return my_render('assetManage/asset_list.html', locals(), request) else: return my_render('assetManage/asset_cu_list.html', locals(), request) else: try: page_length = int(request.POST.get('length', '5')) total_length = Asset.objects.all().count() keyword = request.POST.get("search") rest = { "iTotalRecords": 0, # 本次加载记录数量 "iTotalDisplayRecords": total_length, # 总记录数量 "aaData": []} page_start = int(request.POST.get('start', '0')) page_end = page_start + page_length page_data = Asset.objects.all()[page_start:page_end] rest['iTotalRecords'] = len(page_data) data = [] for item in page_data: res = {} ip_address = ' '.join([nt.ip_address for nt in item.networking.all()]) group_names = get_group_names(item.group.all()) cpu_core = item.cpu.split('* ')[1] if item.cpu and '*' in item.cpu else '' memory_info = item.memory + 'G' if item.memory else '' disk_info = get_disk_info(item.disk) res['id'] = item.id res['name'] = item.name res['ip'] = ip_address res['idc'] = item.idc.name if item.idc else '' res['groups'] = group_names res['proxy'] = item.proxy.proxy_name if item.proxy else '' res['system_type'] = item.system_type res['cpu'] = cpu_core res['memory'] = memory_info res['disk'] = str(disk_info)+'G' if disk_info else '' data.append(res) rest['aaData'] = data return HttpResponse(json.dumps(rest), content_type='application/json') except Exception as e: logger.error(e.message)
def exec_cmd(self): """ 批量执行命令 """ while True: if not self.user_perm: self.user_perm = get_group_user_perm(self.user) roles = self.user_perm.get('role').keys() if len(roles) > 1: # 授权角色数大于1 color_print('[%-2s] %-15s' % ('ID', '系统用户'), 'info') role_check = dict(zip(range(len(roles)), roles)) for i, r in role_check.items(): print '[%-2s] %-15s' % (i, r.name) print print "请输入运行命令所关联系统用户的ID, q退出" try: role_id = raw_input("\033[1;32mRole>:\033[0m ").strip() if role_id == 'q': break except (IndexError, ValueError): color_print('错误输入') else: role = role_check[int(role_id)] elif len(roles) == 1: # 授权角色数为1 role = roles[0] else: color_print('当前用户未被授予角色,无法执行任何操作,如有疑问请联系管理员。') return assets = list(self.user_perm.get('role', {}).get(role).get('asset')) # 获取该用户,角色授权主机 print "授权包含该系统用户的所有主机" for asset in assets: print ' %s' % asset.name print print "请输入主机名或ansible支持的pattern, 多个主机:分隔, q退出" pattern = raw_input("\033[1;32mPattern>:\033[0m ").strip() if pattern == 'q': break else: res = gen_resource({'user': self.user, 'asset': assets, 'role': role}, perm=self.user_perm) runner = MyRunner(res) asset_name_str = '' print "匹配主机:" for inv in runner.inventory.get_hosts(pattern=pattern): print ' %s' % inv.name asset_name_str += '%s ' % inv.name print while True: print "请输入执行的命令, 按q退出" command = raw_input("\033[1;32mCmds>:\033[0m ").strip() if command == 'q': break elif not command: color_print('命令不能为空...') continue runner.run('shell', command, pattern=pattern) ExecLog(host=asset_name_str, user=self.user.username, cmd=command, remote_ip=remote_ip, result=runner.results).save() for k, v in runner.results.items(): if k == 'ok': for host, output in v.items(): color_print("%s => %s" % (host, 'Ok'), 'green') print output print else: for host, output in v.items(): color_print("%s => %s" % (host, k), 'red') color_print(output, 'red') print print "~o~ Task finished ~o~" print