Added admin application

- Manage users - Manage groups - Manage logs
2025-07-31 12:41:08 +00:00 · 2020-05-27 18:24:06 +06:00 · 2020-05-27 18:24:06 +06:00 · fec59b1dd7
commit fec59b1dd7
parent 713d565a2d
37 changed files with 1106 additions and 517 deletions
--- a/accounts/urls.py
+++ b/accounts/urls.py
@ -5,6 +5,6 @@ from . import views
 urlpatterns = [
    path('login/', auth_views.LoginView.as_view(template_name='login.html'), name='login'),
    path('logout/', auth_views.LogoutView.as_view(template_name='logout.html'), name='logout'),
-    path('profile/', views.profile, name='profile'), path('', views.accounts, name='accounts'),
+    path('profile/', views.profile, name='profile'),
    path('profile/<int:user_id>/', views.account, name='account'),
 ]
--- a/accounts/views.py
+++ b/accounts/views.py
@ -1,13 +1,14 @@
-
-from django.shortcuts import render
+from django.core.validators import ValidationError
 from django.http import HttpResponseRedirect
+from django.shortcuts import render
 from django.urls import reverse
 from django.utils.translation import ugettext_lazy as _
-from django.core.validators import ValidationError
-from instances.models import Instance
-from accounts.models import *
-from appsettings.models import AppSettings
+
 from accounts.forms import UserAddForm
+from accounts.models import *
+from admin.decorators import superuser_only
+from appsettings.models import AppSettings
+from instances.models import Instance

 import sass
 import os
@ -19,7 +20,7 @@ def profile(request):
    """

    error_messages = []
-    user = User.objects.get(id=request.user.id)
+    # user = User.objects.get(id=request.user.id)
    publickeys = UserSSHKey.objects.filter(user_id=request.user.id)
    show_profile_edit_password = AppSettings.objects.get(key="SHOW_PROFILE_EDIT_PASSWORD").value

@ -29,7 +30,7 @@ def profile(request):
            email = request.POST.get('email', '')
            user.first_name = username
            user.email = email
-            user.save()
+            request.user.save()
            return HttpResponseRedirect(request.get_full_path())
        if 'oldpasswd' in request.POST:
            oldpasswd = request.POST.get('oldpasswd', '')
@ -39,11 +40,11 @@ def profile(request):
                error_messages.append("Passwords didn't enter")
            if password1 and password2 and password1 != password2:
                error_messages.append("Passwords don't match")
-            if not user.check_password(oldpasswd):
+            if not request.user.check_password(oldpasswd):
                error_messages.append("Old password is wrong!")
            if not error_messages:
-                user.set_password(password1)
-                user.save()
+                request.user.set_password(password1)
+                request.user.save()
                return HttpResponseRedirect(request.get_full_path())
        if 'keyname' in request.POST:
            keyname = request.POST.get('keyname', '')
@ -69,87 +70,7 @@ def profile(request):
            return HttpResponseRedirect(request.get_full_path())
    return render(request, 'profile.html', locals())

-
-def accounts(request):
-    """
-    :param request:
-    :return:
-    """
-    if not request.user.is_superuser:
-        return HttpResponseRedirect(reverse('index'))
-
-    error_messages = []
-    users = User.objects.all().order_by('username')
-    appsettings = AppSettings.objects.all()
-    allow_empty_password = appsettings.get(key="ALLOW_EMPTY_PASSWORD").value
-
-    if request.method == 'POST':
-        if 'create' in request.POST:
-            form = UserAddForm(request.POST)
-            if form.is_valid():
-                data = form.cleaned_data
-            else:
-                for msg_err in form.errors.values():
-                    error_messages.append(msg_err.as_text())
-            if not error_messages:
-                new_user = User.objects.create_user(data['name'], None, data['password'])
-                new_user.save()
-                UserAttributes.configure_user(new_user)
-                return HttpResponseRedirect(request.get_full_path())
-        if 'edit' in request.POST:
-            CHECKBOX_MAPPING = {'on': True, 'off': False, }
-
-            user_id = request.POST.get('user_id', '')
-            user_pass = request.POST.get('user_pass', '')
-            user_edit = User.objects.get(id=user_id)
-
-            if user_pass != '': user_edit.set_password(user_pass)
-            user_edit.is_staff = CHECKBOX_MAPPING.get(request.POST.get('user_is_staff', 'off'))
-            user_edit.is_superuser = CHECKBOX_MAPPING.get(request.POST.get('user_is_superuser', 'off'))
-            user_edit.save()
-
-            UserAttributes.create_missing_userattributes(user_edit)
-            user_edit.userattributes.can_clone_instances = CHECKBOX_MAPPING.get(request.POST.get('userattributes_can_clone_instances', 'off'))
-            user_edit.userattributes.max_instances = request.POST.get('userattributes_max_instances', 0)
-            user_edit.userattributes.max_cpus = request.POST.get('userattributes_max_cpus', 0)
-            user_edit.userattributes.max_memory = request.POST.get('userattributes_max_memory', 0)
-            user_edit.userattributes.max_disk_size = request.POST.get('userattributes_max_disk_size', 0)
-
-            try:
-                user_edit.userattributes.clean_fields()
-            except ValidationError as exc:
-                error_messages.append(exc)
-            else:
-                user_edit.userattributes.save()
-                return HttpResponseRedirect(request.get_full_path())
-        if 'block' in request.POST:
-            user_id = request.POST.get('user_id', '')
-            user_block = User.objects.get(id=user_id)
-            user_block.is_active = False
-            user_block.save()
-            return HttpResponseRedirect(request.get_full_path())
-        if 'unblock' in request.POST:
-            user_id = request.POST.get('user_id', '')
-            user_unblock = User.objects.get(id=user_id)
-            user_unblock.is_active = True
-            user_unblock.save()
-            return HttpResponseRedirect(request.get_full_path())
-        if 'delete' in request.POST:
-            user_id = request.POST.get('user_id', '')
-            try:
-                del_user_inst = UserInstance.objects.filter(user_id=user_id)
-                del_user_inst.delete()
-            finally:
-                user_delete = User.objects.get(id=user_id)
-                user_delete.delete()
-            return HttpResponseRedirect(request.get_full_path())
-
-    accounts_template_file = 'accounts.html'
-    if appsettings.get(key="VIEW_ACCOUNTS_STYLE").value == "list":
-        accounts_template_file = 'accounts-list.html'
-    return render(request, accounts_template_file, locals())
-
-
+@superuser_only
 def account(request, user_id):
    """
    :param request:
@ -157,9 +78,6 @@ def account(request, user_id):
    :return:
    """

-    if not request.user.is_superuser:
-        return HttpResponseRedirect(reverse('index'))
-
    error_messages = []
    user = User.objects.get(id=user_id)
    user_insts = UserInstance.objects.filter(user_id=user_id)
@ -190,7 +108,7 @@ def account(request, user_id):
                check_inst = UserInstance.objects.filter(instance_id=int(inst_id), user_id=int(user_id))
            else:
                check_inst = UserInstance.objects.filter(instance_id=int(inst_id))
-            
+
            if check_inst:
                msg = _("Instance already added")
                error_messages.append(msg)