Domů Procházet Nápověda
Přihlásit se
tum
/
soc
Sledovat 1
Oblíbit 0
Rozštěpit 0
Zdrojový kód Úkoly 0 Požadavky na natažení 0 Revize 16 Vydání 0 Wiki

Bez popisu

Strom: 1028963fde
Větve Značky
soc
/
iris-web
/
source
/
app
/
blueprints
/
pages
/
manage
/
manage_users...

manage_users.py 5.4KB
Historie Surový

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138 
  1. #  IRIS Source Code
    2. 

  2. #  Copyright (C) 2021 - Airbus CyberSecurity (SAS)
    3. 

  3. #  ir@cyberactionlab.net
    4. 

  4. #
    5. 

  5. #  This program is free software; you can redistribute it and/or
    6. 

  6. #  modify it under the terms of the GNU Lesser General Public
    7. 

  7. #  License as published by the Free Software Foundation; either
    8. 

  8. #  version 3 of the License, or (at your option) any later version.
    9. 

  9. #
    10. 

  10. #  This program is distributed in the hope that it will be useful,
    11. 

  11. #  but WITHOUT ANY WARRANTY; without even the implied warranty of
    12. 

  12. #  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    13. 

  13. #  Lesser General Public License for more details.
    14. 

  14. #
    15. 

  15. #  You should have received a copy of the GNU Lesser General Public License
    16. 

  16. #  along with this program; if not, write to the Free Software Foundation,
    17. 

  17. #  Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
    18. 

  18. 

  19. from flask import Blueprint
    20. 

  20. from flask import redirect
    21. 

  21. from flask import render_template
    22. 

  22. from flask import url_for
    23. 

  23. from flask_login import current_user
    24. 

  24. 

  25. from app.datamgmt.client.client_db import get_client_list
    26. 

  26. from app.datamgmt.manage.manage_cases_db import list_cases_dict
    27. 

  27. from app.datamgmt.manage.manage_groups_db import get_groups_list
    28. 

  28. from app.datamgmt.manage.manage_srv_settings_db import get_srv_settings
    29. 

  29. from app.datamgmt.manage.manage_users_db import get_user_details
    30. 

  30. from app.datamgmt.manage.manage_users_db import get_user_effective_permissions
    31. 

  31. from app.forms import AddUserForm
    32. 

  32. from app.iris_engine.access_control.utils import ac_get_all_access_level
    33. 

  33. from app.iris_engine.access_control.utils import ac_current_user_has_permission
    34. 

  34. from app.models.authorization import Permissions
    35. 

  35. from app.blueprints.access_controls import ac_requires
    36. 

  36. from app.blueprints.responses import response_error
    37. 

  37. 

  38. manage_users_blueprint = Blueprint('manage_users', __name__, template_folder='templates')
    39. 

  39. 

  40. 

  41. @manage_users_blueprint.route('/manage/users/add/modal', methods=['GET'])
    42. 

  42. @ac_requires(Permissions.server_administrator, no_cid_required=True)
    43. 

  43. def add_user_modal(caseid, url_redir):
    44. 

  44.     if url_redir:
    45. 

  45.         return redirect(url_for('manage_users.add_user', cid=caseid))
    46. 

  46. 

  47.     user = None
    48. 

  48.     form = AddUserForm()
    49. 

  49. 

  50.     server_settings = get_srv_settings()
    51. 

  51. 

  52.     return render_template("modal_add_user.html", form=form, user=user, server_settings=server_settings)
    53. 

  53. 

  54. 

  55. @manage_users_blueprint.route('/manage/users/<int:cur_id>/modal', methods=['GET'])
    56. 

  56. @ac_requires(Permissions.server_administrator, no_cid_required=True)
    57. 

  57. def view_user_modal(cur_id, caseid, url_redir):
    58. 

  58.     if url_redir:
    59. 

  59.         return redirect(url_for('manage_users.add_user', cid=caseid))
    60. 

  60. 

  61.     form = AddUserForm()
    62. 

  62.     user = get_user_details(cur_id, include_api_key=True)
    63. 

  63. 

  64.     if not user:
    65. 

  65.         return response_error("Invalid user ID")
    66. 

  66. 

  67.     permissions = get_user_effective_permissions(cur_id)
    68. 

  68. 

  69.     form.user_login.render_kw = {'value': user.get('user_login')}
    70. 

  70.     form.user_name.render_kw = {'value': user.get('user_name')}
    71. 

  71.     form.user_email.render_kw = {'value': user.get('user_email')}
    72. 

  72.     form.user_is_service_account.render_kw = {'checked': user.get('user_is_service_account')}
    73. 

  73. 

  74.     server_settings = get_srv_settings()
    75. 

  75. 

  76.     return render_template("modal_add_user.html", form=form, user=user, server_settings=server_settings,
    77. 

  77.                            permissions=permissions)
    78. 

  78. 

  79. 

  80. @manage_users_blueprint.route('/manage/users/<int:cur_id>/groups/modal', methods=['GET'])
    81. 

  81. @ac_requires(Permissions.server_administrator, no_cid_required=True)
    82. 

  82. def manage_user_group_modal(cur_id, caseid, url_redir):
    83. 

  83.     if url_redir:
    84. 

  84.         return redirect(url_for('manage_users.add_user', cid=caseid))
    85. 

  85. 

  86.     user = get_user_details(cur_id)
    87. 

  87.     if not user:
    88. 

  88.         return response_error("Invalid user ID")
    89. 

  89. 

  90.     groups = get_groups_list()
    91. 

  91. 

  92.     return render_template("modal_manage_user_groups.html", groups=groups, user=user)
    93. 

  93. 

  94. 

  95. @manage_users_blueprint.route('/manage/users/<int:cur_id>/customers/modal', methods=['GET'])
    96. 

  96. @ac_requires(Permissions.server_administrator, no_cid_required=True)
    97. 

  97. def manage_user_customers_modal(cur_id, caseid, url_redir):
    98. 

  98.     if url_redir:
    99. 

  99.         return redirect(url_for('manage_users.add_user', cid=caseid))
    100. 

  100. 

  101.     user = get_user_details(cur_id)
    102. 

  102.     if not user:
    103. 

  103.         return response_error("Invalid user ID")
    104. 

  104. 

  105.     user_is_server_administrator = ac_current_user_has_permission(Permissions.server_administrator)
    106. 

  106.     groups = get_client_list(current_user_id=current_user.id,
    107. 

  107.                              is_server_administrator=user_is_server_administrator)
    108. 

  108. 

  109.     return render_template("modal_manage_user_customers.html", groups=groups, user=user)
    110. 

  110. 

  111. 

  112. @manage_users_blueprint.route('/manage/users/<int:cur_id>/cases-access/modal', methods=['GET'])
    113. 

  113. @ac_requires(Permissions.server_administrator, no_cid_required=True)
    114. 

  114. def manage_user_cac_modal(cur_id, caseid, url_redir):
    115. 

  115. 

  116.     if url_redir:
    117. 

  117.         return redirect(url_for('manage_users.add_user', cid=caseid))
    118. 

  118. 

  119.     user = get_user_details(cur_id)
    120. 

  120.     if not user:
    121. 

  121.         return response_error("Invalid user ID")
    122. 

  122. 

  123.     cases_list = list_cases_dict(current_user.id)
    124. 

  124. 

  125.     user_cases_access = [case.get('case_id') for case in user.get('user_cases_access')]
    126. 

  126.     outer_cases_list = []
    127. 

  127.     for case in cases_list:
    128. 

  128.         if case.get('case_id') not in user_cases_access:
    129. 

  129.             outer_cases_list.append({
    130. 

  130.                 "case_id": case.get('case_id'),
    131. 

  131.                 "case_name": case.get('case_name')
    132. 

  132.             })
    133. 

  133. 

  134.     access_levels = ac_get_all_access_level()
    135. 

  135. 

  136.     return render_template("modal_add_user_cac.html", user=user, outer_cases=outer_cases_list,
    137. 

  137.                            access_levels=access_levels)
    138. 

  138.