mirror of
https://github.com/veops/oneterm.git
synced 2025-10-05 15:27:01 +08:00
182 lines
4.6 KiB
Go
182 lines
4.6 KiB
Go
package controller
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
"strings"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/samber/lo"
|
|
"github.com/spf13/cast"
|
|
"go.uber.org/zap"
|
|
|
|
"github.com/veops/oneterm/acl"
|
|
"github.com/veops/oneterm/conf"
|
|
mysql "github.com/veops/oneterm/db"
|
|
"github.com/veops/oneterm/logger"
|
|
"github.com/veops/oneterm/model"
|
|
"github.com/veops/oneterm/schedule"
|
|
)
|
|
|
|
var (
|
|
assetPostHooks = []postHook[*model.Asset]{assetPostHookCount, assetPostHookAuth}
|
|
)
|
|
|
|
// CreateAsset godoc
|
|
//
|
|
// @Tags asset
|
|
// @Param asset body model.Asset true "asset"
|
|
// @Success 200 {object} HttpResponse
|
|
// @Router /asset [post]
|
|
func (c *Controller) CreateAsset(ctx *gin.Context) {
|
|
asset := &model.Asset{}
|
|
doCreate(ctx, true, asset, conf.RESOURCE_ASSET)
|
|
schedule.CheckUpdate(asset.Id)
|
|
}
|
|
|
|
// DeleteAsset godoc
|
|
//
|
|
// @Tags asset
|
|
// @Param id path int true "asset id"
|
|
// @Success 200 {object} HttpResponse
|
|
// @Router /asset/:id [delete]
|
|
func (c *Controller) DeleteAsset(ctx *gin.Context) {
|
|
doDelete(ctx, true, &model.Asset{})
|
|
}
|
|
|
|
// UpdateAsset godoc
|
|
//
|
|
// @Tags asset
|
|
// @Param id path int true "asset id"
|
|
// @Param asset body model.Asset true "asset"
|
|
// @Success 200 {object} HttpResponse
|
|
// @Router /asset/:id [put]
|
|
func (c *Controller) UpdateAsset(ctx *gin.Context) {
|
|
doUpdate(ctx, true, &model.Asset{})
|
|
schedule.CheckUpdate(cast.ToInt(ctx.Param("id")))
|
|
}
|
|
|
|
// GetAssets godoc
|
|
//
|
|
// @Tags asset
|
|
// @Param page_index query int true "page_index"
|
|
// @Param page_size query int true "page_size"
|
|
// @Param search query string false "name or ip"
|
|
// @Param id query int false "asset id"
|
|
// @Param ids query string false "asset ids"
|
|
// @Param parent_id query int false "asset's parent id"
|
|
// @Param name query string false "asset name"
|
|
// @Param ip query string false "asset ip"
|
|
// @Param info query bool false "is info mode"
|
|
// @Success 200 {object} HttpResponse{data=ListData{list=[]model.Asset}}
|
|
// @Router /asset [get]
|
|
func (c *Controller) GetAssets(ctx *gin.Context) {
|
|
currentUser, _ := acl.GetSessionFromCtx(ctx)
|
|
info := cast.ToBool(ctx.Query("info"))
|
|
|
|
db := mysql.DB.Model(&model.Asset{})
|
|
db = filterEqual(ctx, db, "id")
|
|
db = filterLike(ctx, db, "name", "ip")
|
|
db = filterSearch(ctx, db, "name", "ip")
|
|
if q, ok := ctx.GetQuery("ids"); ok {
|
|
db = db.Where("id IN ?", lo.Map(strings.Split(q, ","), func(s string, _ int) int { return cast.ToInt(s) }))
|
|
}
|
|
if q, ok := ctx.GetQuery("parent_id"); ok {
|
|
parentIds, err := handleParentId(cast.ToInt(q))
|
|
if err != nil {
|
|
logger.L().Error("parent id found failed", zap.Error(err))
|
|
return
|
|
}
|
|
db = db.Where("parent_id IN ?", parentIds)
|
|
}
|
|
|
|
if info && !acl.IsAdmin(currentUser) {
|
|
//rs := make([]*acl.Resource, 0)
|
|
authorizationResourceIds, err := GetAutorizationResourceIds(ctx)
|
|
if err != nil {
|
|
handleRemoteErr(ctx, err)
|
|
return
|
|
}
|
|
ids := make([]int, 0)
|
|
if err = mysql.DB.
|
|
Model(&model.Authorization{}).
|
|
Where("resource_id IN ?", authorizationResourceIds).
|
|
Distinct().
|
|
Pluck("asset_id", &ids).
|
|
Error; err != nil {
|
|
ctx.AbortWithError(http.StatusInternalServerError, &ApiError{Code: ErrInternal, Data: map[string]any{"err": err}})
|
|
return
|
|
}
|
|
|
|
db = db.Where("id IN ?", ids)
|
|
}
|
|
|
|
db = db.Order("name")
|
|
|
|
doGet(ctx, !info, db, acl.GetResourceTypeName(conf.RESOURCE_AUTHORIZATION), assetPostHooks...)
|
|
}
|
|
|
|
func assetPostHookCount(ctx *gin.Context, data []*model.Asset) {
|
|
nodes := make([]*model.NodeIdPidName, 0)
|
|
if err := mysql.DB.
|
|
Model(nodes).
|
|
Find(&nodes).
|
|
Error; err != nil {
|
|
logger.L().Error("asset posthookfailed", zap.Error(err))
|
|
return
|
|
}
|
|
g := make(map[int][]model.Pair[int, string])
|
|
for _, n := range nodes {
|
|
g[n.ParentId] = append(g[n.ParentId], model.Pair[int, string]{First: n.Id, Second: n.Name})
|
|
}
|
|
m := make(map[int]string)
|
|
var dfs func(int, string)
|
|
dfs = func(x int, s string) {
|
|
m[x] = s
|
|
for _, node := range g[x] {
|
|
dfs(node.First, fmt.Sprintf("%s/%s", s, node.Second))
|
|
}
|
|
}
|
|
dfs(0, "")
|
|
|
|
for _, d := range data {
|
|
d.NodeChain = m[d.ParentId]
|
|
}
|
|
}
|
|
|
|
func assetPostHookAuth(ctx *gin.Context, data []*model.Asset) {
|
|
currentUser, _ := acl.GetSessionFromCtx(ctx)
|
|
if acl.IsAdmin(currentUser) {
|
|
return
|
|
}
|
|
for _, a := range data {
|
|
for k, v := range a.Authorization {
|
|
if lo.Contains(v, currentUser.GetRid()) {
|
|
continue
|
|
}
|
|
delete(a.Authorization, k)
|
|
}
|
|
}
|
|
}
|
|
|
|
func handleParentId(parentId int) (pids []int, err error) {
|
|
nodes := make([]*model.NodeIdPid, 0)
|
|
if err = mysql.DB.Model(&model.Node{}).Find(&nodes).Error; err != nil {
|
|
return
|
|
}
|
|
g := make(map[int][]int)
|
|
for _, n := range nodes {
|
|
g[n.ParentId] = append(g[n.ParentId], n.Id)
|
|
}
|
|
var dfs func(int)
|
|
dfs = func(x int) {
|
|
pids = append(pids, x)
|
|
for _, y := range g[x] {
|
|
dfs(y)
|
|
}
|
|
}
|
|
dfs(parentId)
|
|
|
|
return
|
|
}
|