添加自动安装脚本，方便快速部署上线。

调整部分代码，之前scheme是写死的https，考虑可能会有使用http，所以改成从request.scheme中取。
添加uwsgi启动脚本

resetpwd/utils/ad.py

@@ -3,6 +3,10 @@ from pwdselfservice.local_settings import *
 
 
 def __ad_connect():
+    """
+    AD连接器
+    :return:
+    """
     username = str(AD_LOGIN_USER).lower()
     server = Server(host=AD_HOST, use_ssl=True, port=636, get_info='ALL')
     try:
@@ -22,7 +26,9 @@ def ad_ensure_user_by_sam(username):
     base_dn = BASE_DN
     condition = '(&(objectclass=person)(mail=' + username + '))'
     attributes = ['sAMAccountName']
-    return conn.search(base_dn, condition, attributes=attributes)
+    result = conn.search(base_dn, condition, attributes=attributes)
+    conn.unbind()
+    return result
 
 
 def ad_ensure_user_by_mail(user_mail_addr):
@@ -35,10 +41,17 @@ def ad_ensure_user_by_mail(user_mail_addr):
     base_dn = BASE_DN
     condition = '(&(objectclass=person)(mail=' + user_mail_addr + '))'
     attributes = ['mail']
-    return conn.search(base_dn, condition, attributes=attributes)
+    result = conn.search(base_dn, condition, attributes=attributes)
+    conn.unbind()
+    return result
 
 
 def ad_get_user_displayname_by_mail(user_mail_addr):
+    """
+    通过mail查询某个用户的显示名
+    :param user_mail_addr:
+    :return: user_displayname
+    """
     conn = __ad_connect()
     conn.search(BASE_DN, '(&(objectclass=person)(mail=' + user_mail_addr + '))', attributes=[
         'displayName'])
@@ -48,22 +61,39 @@ def ad_get_user_displayname_by_mail(user_mail_addr):
 
 
 def ad_get_user_dn_by_mail(user_mail_addr):
+    """
+    通过mail查询某个用户的完整DN
+    :param user_mail_addr:
+    :return: DN
+    """
     conn = __ad_connect()
     conn.search(BASE_DN,
                 '(&(objectclass=person)(mail=' + user_mail_addr + '))', attributes=['distinguishedName'])
     user_dn = conn.entries[0]['distinguishedName']
+    conn.unbind()
     return user_dn
 
 
 def ad_get_user_status_by_mail(user_mail_addr):
+    """
+    通过mail查询某个用户的账号状态
+    :param user_mail_addr:
+    :return: user_account_control code
+    """
     conn = __ad_connect()
     conn.search(BASE_DN,
                 '(&(objectclass=person)(mail=' + user_mail_addr + '))', attributes=['userAccountControl'])
     user_account_control = conn.entries[0]['userAccountControl']
+    conn.unbind()
     return user_account_control
 
 
 def ad_unlock_user_by_mail(user_mail_addr):
+    """
+    通过mail解锁某个用户
+    :param user_mail_addr:
+    :return:
+    """
     conn = __ad_connect()
     user_dn = ad_get_user_dn_by_mail(user_mail_addr)
     result = conn.extend.microsoft.unlock_account(user="%s" % user_dn)
@@ -72,6 +102,11 @@ def ad_unlock_user_by_mail(user_mail_addr):
 
 
 def ad_reset_user_pwd_by_mail(user_mail_addr, new_password):
+    """
+    通过mail重置某个用户的密码
+    :param user_mail_addr:
+    :return:
+    """
     conn = __ad_connect()
     user_dn = ad_get_user_dn_by_mail(user_mail_addr)
     result = conn.extend.microsoft.modify_password(user="%s" % user_dn, new_password="%s" % new_password)
@@ -80,6 +115,11 @@ def ad_reset_user_pwd_by_mail(user_mail_addr, new_password):
 
 
 def ad_modify_user_pwd_by_mail(user_mail_addr, old_password, new_password):
+    """
+    通过mail修改某个用户的密码
+    :param user_mail_addr:
+    :return:
+    """
     conn = __ad_connect()
     user_dn = ad_get_user_dn_by_mail(user_mail_addr)
     result = conn.extend.microsoft.modify_password(user="%s" % user_dn, new_password="%s" % new_password,
@@ -89,10 +129,15 @@ def ad_modify_user_pwd_by_mail(user_mail_addr, old_password, new_password):
 
 
 def ad_get_user_locked_status_by_mail(user_mail_addr):
+    """
+    通过mail获取某个用户账号是否被锁定
+    :param user_mail_addr:
+    :return: 如果结果是1601-01-01说明账号未锁定，返回0
+    """
     conn = __ad_connect()
     conn.search(BASE_DN, '(&(objectclass=person)(mail=' + user_mail_addr + '))', attributes=['lockoutTime'])
     locked_status = conn.entries[0]['lockoutTime']
-    print(locked_status)
+    conn.unbind()
     if '1601-01-01' in str(locked_status):
         return 0
     else:

resetpwd/utils/dingding.py

@@ -4,6 +4,10 @@ from pwdselfservice.local_settings import *
 
 
 def ding_get_access_token():
+    """
+    获取钉钉access token
+    :return:
+    """
     resp = requests.get(
         url=DING_URL + "/gettoken",
         params=dict(appid=DING_SELF_APP_ID, appsecret=DING_SELF_APP_SECRET)
@@ -16,6 +20,10 @@ def ding_get_access_token():
 
 
 def ding_get_persistent_code(code, token):
+    """
+    获取钉钉当前用户的unionid
+    :return:
+    """
     resp = requests.post(
         url="%s/get_persistent_code?access_token=%s" % (DING_URL, token),
         json=dict(tmp_auth_code=code),
@@ -28,11 +36,20 @@ def ding_get_persistent_code(code, token):
 
 
 def ding_client_connect():
+    """
+    钉钉连接器
+    :return:
+    """
     client = AppKeyClient(corp_id=DING_CORP_ID, app_key=DING_APP_KEY, app_secret=DING_APP_SECRET)
     return client
 
 
 def ding_get_dept_user_list_detail(dept_id, offset, size):
+    """
+    获取部门中的用户列表详细清单
+    :param code:
+    :return:
+    """
     client = ding_client_connect()
     result = client.user.list(department_id=dept_id, offset=offset, size=size)
     return result

resetpwd/utils/pwdcheck.py

@@ -4,12 +4,12 @@ from django.contrib import messages
 from dingtalk import *
 from resetpwd.models import *
 from .crypto import Crypto
-from .ad import ad_get_user_locked_status_by_mail, ad_unlock_user_by_mail, ad_reset_user_pwd_by_mail, \
+from resetpwd.utils.ad import ad_get_user_locked_status_by_mail, ad_unlock_user_by_mail, ad_reset_user_pwd_by_mail, \
     ad_get_user_status_by_mail, ad_ensure_user_by_mail, ad_modify_user_pwd_by_mail
 from .dingding import ding_get_userinfo_detail, ding_get_userid_by_unionid, ding_get_userinfo_by_code, \
     ding_get_persistent_code, ding_get_access_token
 from pwdselfservice.local_settings import *
-from .form import *
+from resetpwd.form import *
 
 
 class CustomPasswortValidator(object):