7x31
/
cmdb
mirror of https://github.com/veops/cmdb.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

catch abort exception when getting relation views

This commit is contained in:
pycook 2019-12-13 09:59:38 +08:00
parent 13e9a0b7bd
commit ccf1d1c09a
4 changed files with 30 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
api/commands/click_cmdb.py
View File

@ -6,7 +6,6 @@ import json
import click import click
from flask import current_app from flask import current_app
from flask.cli import with_appcontext from flask.cli import with_appcontext
from werkzeug.exceptions import BadRequest
import api.lib.cmdb.ci import api.lib.cmdb.ci
from api.extensions import db from api.extensions import db
@ -17,6 +16,7 @@ from api.lib.cmdb.const import REDIS_PREFIX_CI_RELATION
from api.lib.cmdb.const import ResourceTypeEnum from api.lib.cmdb.const import ResourceTypeEnum
from api.lib.cmdb.const import RoleEnum from api.lib.cmdb.const import RoleEnum
from api.lib.cmdb.const import ValueTypeEnum from api.lib.cmdb.const import ValueTypeEnum
from api.lib.exception import AbortException
from api.lib.perm.acl.acl import ACLManager from api.lib.perm.acl.acl import ACLManager
from api.lib.perm.acl.cache import AppCache from api.lib.perm.acl.cache import AppCache
from api.lib.perm.acl.resource import ResourceCRUD from api.lib.perm.acl.resource import ResourceCRUD
@ -96,17 +96,17 @@ def init_acl():
for resource_type in ResourceTypeEnum.all(): for resource_type in ResourceTypeEnum.all():
try: try:
ResourceTypeCRUD.add(app_id, resource_type, '', PermEnum.all()) ResourceTypeCRUD.add(app_id, resource_type, '', PermEnum.all())
except BadRequest: except AbortException:
pass pass
# 2. add role # 2. add role
try: try:
RoleCRUD.add_role(RoleEnum.CONFIG, app_id, True) RoleCRUD.add_role(RoleEnum.CONFIG, app_id, True)
except BadRequest: except AbortException:
pass pass
try: try:
RoleCRUD.add_role(RoleEnum.CMDB_READ_ALL, app_id, False) RoleCRUD.add_role(RoleEnum.CMDB_READ_ALL, app_id, False)
except BadRequest: except AbortException:
pass pass
# 3. add resource and grant # 3. add resource and grant
@ -115,7 +115,7 @@ def init_acl():
for ci_type in ci_types: for ci_type in ci_types:
try: try:
ResourceCRUD.add(ci_type.name, type_id, app_id) ResourceCRUD.add(ci_type.name, type_id, app_id)
except BadRequest: except AbortException:
pass pass
ACLManager().grant_resource_to_role(ci_type.name, ACLManager().grant_resource_to_role(ci_type.name,
@ -128,7 +128,7 @@ def init_acl():
for view in relation_views: for view in relation_views:
try: try:
ResourceCRUD.add(view.name, type_id, app_id) ResourceCRUD.add(view.name, type_id, app_id)
except BadRequest: except AbortException:
pass pass
ACLManager().grant_resource_to_role(view.name, ACLManager().grant_resource_to_role(view.name,

20
api/lib/cmdb/preference.py
View File

@ -15,13 +15,14 @@ from api.lib.cmdb.attribute import AttributeManager
from api.lib.cmdb.cache import AttributeCache from api.lib.cmdb.cache import AttributeCache
from api.lib.cmdb.cache import CITypeAttributeCache from api.lib.cmdb.cache import CITypeAttributeCache
from api.lib.cmdb.cache import CITypeCache from api.lib.cmdb.cache import CITypeCache
from api.lib.cmdb.const import ResourceTypeEnum, RoleEnum, PermEnum
from api.lib.exception import AbortException
from api.lib.perm.acl.acl import ACLManager
from api.models.cmdb import CITypeAttribute from api.models.cmdb import CITypeAttribute
from api.models.cmdb import CITypeRelation from api.models.cmdb import CITypeRelation
from api.models.cmdb import PreferenceRelationView from api.models.cmdb import PreferenceRelationView
from api.models.cmdb import PreferenceShowAttributes from api.models.cmdb import PreferenceShowAttributes
from api.models.cmdb import PreferenceTreeView from api.models.cmdb import PreferenceTreeView
from api.lib.perm.acl.acl import ACLManager
from api.lib.cmdb.const import ResourceTypeEnum, RoleEnum, PermEnum
class PreferenceManager(object): class PreferenceManager(object):
@ -118,11 +119,19 @@ class PreferenceManager(object):
@staticmethod @staticmethod
def get_relation_view(): def get_relation_view():
views = PreferenceRelationView.get_by(to_dict=True) _views = PreferenceRelationView.get_by(to_dict=True)
views = []
if current_app.config.get("USE_ACL"): if current_app.config.get("USE_ACL"):
views = [i for i in views if ACLManager().has_permission(i.get('name'), for i in _views:
try:
if ACLManager().has_permission(i.get('name'),
ResourceTypeEnum.RELATION_VIEW, ResourceTypeEnum.RELATION_VIEW,
PermEnum.READ)] PermEnum.READ):
views.append(i)
except AbortException:
pass
else:
views = _views
view2cr_ids = dict() view2cr_ids = dict()
result = dict() result = dict()
@ -175,6 +184,7 @@ class PreferenceManager(object):
return abort(400, "Node must be selected") return abort(400, "Node must be selected")
existed = PreferenceRelationView.get_by(name=name, to_dict=False, first=True) existed = PreferenceRelationView.get_by(name=name, to_dict=False, first=True)
current_app.logger.debug(existed)
if existed is None: if existed is None:
PreferenceRelationView.create(name=name, cr_ids=json.dumps(cr_ids)) PreferenceRelationView.create(name=name, cr_ids=json.dumps(cr_ids))

6
api/lib/exception.py
View File

@ -1,5 +1,11 @@
# -*- coding:utf-8 -*- # -*- coding:utf-8 -*-
from werkzeug.exceptions import NotFound, Forbidden, BadRequest
class CommitException(Exception): class CommitException(Exception):
pass pass
AbortException = (NotFound, Forbidden, BadRequest)

3
api/lib/perm/acl/cache.py
View File

@ -1,6 +1,7 @@
# -*- coding:utf-8 -*- # -*- coding:utf-8 -*-
from api.extensions import cache from api.extensions import cache
from api.extensions import db
from api.models.acl import App from api.models.acl import App
from api.models.acl import Permission from api.models.acl import Permission
from api.models.acl import Role from api.models.acl import Role
@ -139,7 +140,7 @@ class RoleRelationCache(object):
@classmethod @classmethod
def rebuild(cls, rid): def rebuild(cls, rid):
cls.clean(rid) cls.clean(rid)
db.session.close()
cls.get_parent_ids(rid) cls.get_parent_ids(rid)
cls.get_child_ids(rid) cls.get_child_ids(rid)
cls.get_resources(rid) cls.get_resources(rid)