mirror/peeringdb-peeringdb
1
0
Fork 0
mirror of https://github.com/peeringdb/peeringdb.git synced 2024-05-11 05:55:09 +00:00
Code Releases Activity
Files
5dc36b024adcfe1432cd0b7d62395de5550e8ca9
peeringdb-peeringdb/peeringdb_server/admin.py

1372 lines
43 KiB
Python
Raw Normal View History

initial commit of code
2018-11-08 19:45:21 +00:00
import datetime
import time
import json
import ipaddress
import forms
from operator import or_
from django.conf.urls import url
from django.shortcuts import redirect, Http404
from django.contrib.contenttypes.models import ContentType
from django.contrib import admin
from django.contrib.auth import forms
from django.contrib.admin import helpers
from django.contrib.admin.actions import delete_selected
from django.contrib.admin.views.main import ChangeList
from django import forms as baseForms
from django.core import urlresolvers
from django.core.exceptions import ValidationError
from django.conf import settings
from django.template import loader
from django.template.response import TemplateResponse
from django.db.models import Q
from django.db.models.functions import Concat
from django_namespace_perms.admin import UserPermissionInline, UserPermissionInlineAdd, UserAdmin
import reversion
from reversion.admin import VersionAdmin
import peeringdb_server.admin_commandline_tools as acltools
from peeringdb_server.views import (JsonResponse, HttpResponseForbidden)
from peeringdb_server.models import (
REFTAG_MAP, QUEUE_ENABLED, COMMANDLINE_TOOLS, OrganizationMerge,
OrganizationMergeEntity, Sponsorship, Partnership,
UserOrgAffiliationRequest, VerificationQueueItem, Organization, Facility,
InternetExchange, Network, InternetExchangeFacility, IXLan,
IXLanIXFMemberImportLog, IXLanIXFMemberImportLogEntry, IXLanPrefix,
NetworkContact, NetworkFacility, NetworkIXLan, User, CommandLineTool, UTC,
DeskProTicket)
from peeringdb_server.mail import mail_users_entity_merge
from peeringdb_server.inet import RdapLookup, RdapException
delete_selected.short_description = u'HARD DELETE - Proceed with caution'
from django.utils.translation import ugettext_lazy as _
#def _(x):
# return x
class StatusFilter(admin.SimpleListFilter):
"""
A listing filter that by default will only show entities
with status="ok"
"""
title = _("Status")
parameter_name = "status"
dflt = "ok"
def lookups(self, request, model_admin):
return [("ok", "ok"), ("pending", "pending"), ("deleted", "deleted"),
("all", "all")]
def choices(self, cl):
for lookup, title in self.lookup_choices:
yield {
'selected': self.value() == lookup,
'query_string': cl.get_query_string({
self.parameter_name: lookup
}, []),
'display': title
}
def queryset(self, request, queryset):
if self.value() is None:
return queryset.filter(**{self.parameter_name: self.dflt})
elif self.value() == "all":
return queryset.all()
return queryset.filter(**{self.parameter_name: self.value()})
def fk_handleref_filter(form, field, tag=None):
"""
This filters foreign key dropdowns that hold handleref objects
to only contain undeleted objects and the object the instance is currently
set to
"""
if tag is None:
tag = field
if tag in REFTAG_MAP and form.instance:
model = REFTAG_MAP.get(tag)
qset = model.handleref.filter(
Q(status="ok") | Q(id=getattr(form.instance, "%s_id" % field)))
try:
qset = qset.order_by("name")
except Exception:
pass
form.fields[field].queryset = qset
###############################################################################
@reversion.create_revision()
def merge_organizations(targets, target, request):
"""
Merge organizations specified in targets into organization specified
in target
Arguments:
targets <QuerySet|list> iterable of Organization instances
target <Organization> merge organizations with this organization
"""
if request.user:
reversion.set_user(request.user)
# preare stats
ix_moved = 0
fac_moved = 0
net_moved = 0
user_moved = 0
org_merged = 0
for org in targets:
if org == target:
raise ValueError(
_("Target org cannot be in selected organizations list"))
for org in targets:
merge = OrganizationMerge.objects.create(from_org=org, to_org=target)
source_admins = []
# move entities
for ix in org.ix_set.all():
ix.org = target
ix.save()
merge.log_entity(ix)
ix_moved += 1
for net in org.net_set.all():
net.org = target
net.save()
merge.log_entity(net)
net_moved += 1
for fac in org.fac_set.all():
fac.org = target
fac.save()
merge.log_entity(fac)
fac_moved += 1
# move users
for user in org.usergroup.user_set.all():
target.usergroup.user_set.add(user)
org.usergroup.user_set.remove(user)
merge.log_entity(user, note="usergroup")
user_moved += 1
for user in org.admin_usergroup.user_set.all():
target.usergroup.user_set.add(user)
org.admin_usergroup.user_set.remove(user)
merge.log_entity(user, note="admin_usergroup")
user_moved += 1
source_admins.append(user)
# mark deleted
org.delete()
org_merged += 1
mail_users_entity_merge(source_admins,
target.admin_usergroup.user_set.all(), org,
target)
return {
"ix": ix_moved,
"fac": fac_moved,
"net": net_moved,
"user": user_moved,
"org": org_merged
}
###############################################################################
class StatusForm(baseForms.ModelForm):
status = baseForms.ChoiceField(choices=[("ok",
"ok"), ("pending",
"pending"), ("deleted",
"deleted")])
def __init__(self, *args, **kwargs):
super(StatusForm, self).__init__(*args, **kwargs)
if "instance" in kwargs and kwargs.get("instance"):
inst = kwargs.get("instance")
if inst.status == "ok":
self.fields["status"].choices = [("ok", "ok")]
elif inst.status == "pending":
self.fields["status"].choices = [("ok", "ok"), ("pending",
"pending")]
elif inst.status == "deleted":
self.fields["status"].choices = [("ok", "ok"), ("deleted",
"deleted")]
class ModelAdminWithUrlActions(admin.ModelAdmin):
def make_redirect(self, obj, action):
opts = obj.model._meta
return redirect("admin:%s_%s_changelist" % (opts.app_label,
opts.model_name))
def actions_view(self, request, object_id, action, **kwargs):
"""
this view allows us to call any actions we define in this model admin
to be called via an admin view placed at <model_name>/<id>/<action>/<action_name>
"""
if not request.user.is_superuser:
return HttpResponseForbidden(request)
obj = self.get_queryset(request).filter(pk=object_id)
if obj.exists():
redir = self.make_redirect(obj, action)
action = self.get_action(action)
if action:
action[0](self, request, obj)
return redir
# return redirect("admin:%s_%s_changelist" % (opts.app_label, opts.model_name))
return redirect(
"admin:%s_%s_changelist" % (obj.model._meta.app_label,
obj.model._meta.model_name))
def get_urls(self):
"""
add the actions view as a subview of this model's admin views
"""
info = self.model._meta.app_label, self.model._meta.model_name
urls = [
url(r'^(\d+)/action/([\w]+)/$',
self.admin_site.admin_view(self.actions_view),
name="%s_%s_actions" % info),
] + super(ModelAdminWithUrlActions, self).get_urls()
return urls
@reversion.create_revision()
def rollback(modeladmin, request, queryset):
if request.user:
reversion.set_user(request.user)
for row in queryset:
row.rollback()
rollback.short_description = _("ROLLBACK")
@reversion.create_revision()
def soft_delete(modeladmin, request, queryset):
if request.user:
reversion.set_user(request.user)
for row in queryset:
row.delete()
soft_delete.short_description = _("SOFT DELETE")
class SanitizedAdmin(object):
def get_readonly_fields(self, request, obj=None):
return ("version", ) + tuple(
super(SanitizedAdmin, self).get_readonly_fields(request, obj=obj))
class SoftDeleteAdmin(SanitizedAdmin, VersionAdmin, admin.ModelAdmin):
"""
Soft delete admin
"""
actions = [soft_delete]
def has_delete_permission(self, request, obj=None):
return False
@reversion.create_revision()
def save_formset(self, request, form, formset, change):
if request.user:
reversion.set_user(request.user)
super(SoftDeleteAdmin, self).save_formset(request, form, formset,
change)
class ModelAdminWithVQCtrl(object):
"""
Extend from this model admin if you want to add verification queue
approve | deny controls to the top of its form
"""
def get_fieldsets(self, request, obj=None):
"""
we override get_fieldsets so we can attach the vq controls
to the top of the existing fieldset - whethers it's manually or automatically
defined
"""
fieldsets = tuple(
super(ModelAdminWithVQCtrl, self).get_fieldsets(request, obj=obj))
# on automatically defined fieldsets it will insert the controls
# somewhere towards the bottom, we dont want that - so we look for it and
# remove it
for k, s in fieldsets:
if 'verification_queue' in s["fields"]:
s["fields"].remove("verification_queue")
# attach controls to top of fieldset
fieldsets = ((None, {
'classes': ('wide,'),
'fields': ('verification_queue', )
}), ) + fieldsets
return fieldsets
def get_readonly_fields(self, request, obj=None):
"""
make the modeladmin aware that "verification_queue" is a valid
readonly field
"""
return ("verification_queue", ) + tuple(
super(ModelAdminWithVQCtrl, self).get_readonly_fields(
request, obj=obj))
def verification_queue(self, obj):
"""
This renders the controls or a status message
"""
if getattr(settings, "VERIFICATION_QUEUE_DISABLED", False):
return _("Verification Queue is currently disabled")
if self.model not in QUEUE_ENABLED:
return _(
"Verification Queue is currently disabled for this object type"
)
vq = VerificationQueueItem.objects.filter(
content_type=ContentType.objects.get_for_model(type(obj)),
object_id=obj.id).first()
if vq:
return (
u'<a class="grp-button" href="{}">{}</a> &nbsp; &nbsp; <a class="grp-button grp-delete-link" href="{}">{}</a>'
).format(vq.approve_admin_url, _('APPROVE'), vq.deny_admin_url,
_('DENY'))
return _("APPROVED")
verification_queue.allow_tags = True
class IXLanPrefixInline(SanitizedAdmin, admin.TabularInline):
model = IXLanPrefix
extra = 0
form = StatusForm
class IXLanInline(SanitizedAdmin, admin.StackedInline):
model = IXLan
extra = 0
form = StatusForm
exclude = ["arp_sponge"]
readonly_fields = ["ixf_import_attempt_info", "prefixes"]
def ixf_import_attempt_info(self, obj):
if obj.ixf_import_attempt:
return "<pre>{}</pre>".format(obj.ixf_import_attempt.info)
return ""
ixf_import_attempt_info.allow_tags = True
def prefixes(self, obj):
return ", ".join(
[str(ixpfx.prefix) for ixpfx in obj.ixpfx_set_active_or_pending])
class InternetExchangeFacilityInline(SanitizedAdmin, admin.TabularInline):
model = InternetExchangeFacility
extra = 0
raw_id_fields = ("ix", "facility")
form = StatusForm
class NetworkContactInline(SanitizedAdmin, admin.TabularInline):
model = NetworkContact
extra = 0
form = StatusForm
class NetworkFacilityInline(SanitizedAdmin, admin.TabularInline):
model = NetworkFacility
extra = 0
raw_id_fields = (
"facility",
"network",
)
form = StatusForm
class NetworkIXLanValidationMixin(object):
"""
For issue #70
Makes sure netixlans cannot be saved if they have a duplicate ip address
This should ideally be done in mysql, however we need to clear out the other
duplicates first, so we validate on the django side for now
"""
def clean_ipaddr4(self):
ipaddr4 = self.cleaned_data["ipaddr4"]
instance = self.instance
if NetworkIXLan.objects.filter(
ipaddr4=ipaddr4,
status="ok").exclude(id=getattr(instance, "id", 0)).exists():
raise ValidationError(_("Ipaddress already exists elsewhere"))
return ipaddr4
def clean_ipaddr6(self):
ipaddr6 = self.cleaned_data["ipaddr6"]
instance = self.instance
if NetworkIXLan.objects.filter(
ipaddr6=ipaddr6,
status="ok").exclude(id=getattr(instance, "id", 0)).exists():
raise ValidationError(_("Ipaddress already exists elsewhere"))
return ipaddr6
class NetworkIXLanForm(NetworkIXLanValidationMixin, StatusForm):
pass
class NetworkInternetExchangeInline(SanitizedAdmin, admin.TabularInline):
model = NetworkIXLan
extra = 0
raw_id_fields = ("ixlan", "network")
form = NetworkIXLanForm
class UserOrgAffiliationRequestInlineForm(baseForms.ModelForm):
def clean(self):
super(UserOrgAffiliationRequestInlineForm, self).clean()
try:
rdap_valid = RdapLookup().get_asn(
self.cleaned_data.get("asn")).emails
except RdapException as exc:
raise ValidationError({"asn": str(exc)})
class UserOrgAffiliationRequestInline(admin.TabularInline):
model = UserOrgAffiliationRequest
extra = 0
form = UserOrgAffiliationRequestInlineForm
verbose_name_plural = _(
"User is looking to be affiliated to these Organizations")
def formfield_for_foreignkey(self, db_field, request, **kwargs):
if db_field.name == "org":
kwargs["queryset"] = Organization.handleref.filter(
status="ok").order_by("name")
return super(
UserOrgAffiliationRequestInline, self).formfield_for_foreignkey(
db_field, request, **kwargs)
class InternetExchangeAdminForm(StatusForm):
def __init__(self, *args, **kwargs):
super(InternetExchangeAdminForm, self).__init__(*args, **kwargs)
fk_handleref_filter(self, "org")
class InternetExchangeAdmin(ModelAdminWithVQCtrl, SoftDeleteAdmin):
list_display = ('name', 'name_long', 'city', 'country', 'status',
'created', 'updated')
ordering = ('-created', )
list_filter = (StatusFilter, )
search_fields = ('name', )
readonly_fields = ('id', 'nsp_namespace', "ixf_import_history")
inlines = (InternetExchangeFacilityInline, IXLanInline)
form = InternetExchangeAdminForm
def ixf_import_history(self, obj):
return (u'<a href="{}?q={}">{}</a>').format(
urlresolvers.reverse(
"admin:peeringdb_server_ixlanixfmemberimportlog_changelist"),
obj.id, _('IXF Import History'))
ixf_import_history.allow_tags = True
class IXLanAdminForm(StatusForm):
def __init__(self, *args, **kwargs):
super(IXLanAdminForm, self).__init__(*args, **kwargs)
fk_handleref_filter(self, "ix")
class IXLanAdmin(SoftDeleteAdmin):
list_display = ('ix', 'name', 'descr', 'status')
search_fields = ('name', )
list_filter = (StatusFilter, )
readonly_fields = ('id', )
inlines = (IXLanPrefixInline, NetworkInternetExchangeInline)
form = IXLanAdminForm
class IXLanIXFMemberImportLogEntryInline(admin.TabularInline):
model = IXLanIXFMemberImportLogEntry
fields = ("netixlan", "ipv4", "ipv6", "asn", "changes", "rollback_status")
readonly_fields = ("netixlan", "ipv4", "ipv6", "asn", "changes",
"rollback_status")
raw_id_fields = ("netixlan", )
extra = 0
def has_delete_permission(self, request, obj=None):
return False
def has_add_permission(self, request, obj=None):
return False
def ipv4(self, obj):
return obj.netixlan.ipaddr4 or ""
def ipv6(self, obj):
return obj.netixlan.ipaddr6 or ""
def asn(self, obj):
return obj.netixlan.asn
def changes(self, obj):
vb = obj.version_before
va = obj.version_after
if not vb:
return _("Initial creation of netixlan")
rv = {}
for k, v in va.field_dict.items():
if k in ["created", "updated", "version"]:
continue
v2 = vb.field_dict.get(k)
if v != v2:
if isinstance(v, ipaddress.IPv4Address) or isinstance(
v, ipaddress.IPv6Address):
rv[k] = str(v)
else:
rv[k] = v
return json.dumps(rv)
def rollback_status(self, obj):
rs = obj.rollback_status()
text = ""
color = ""
if rs == 0:
text = _("CAN BE ROLLED BACK")
color = "#e5f3d6"
elif rs == 1:
text = (u'{}<br><small>{}</small>').format(
_("CANNOT BE ROLLED BACK"), _("Has been changed since"))
color = "#f3ded6"
elif rs == 2:
text = (u'{}<br><small>{}</small>').format(
_("CANNOT BE ROLLED BACK"),
_("Netixlan with conflicting ipaddress now exists elsewhere"))
color = "#f3ded6"
elif rs == -1:
text = _("HAS BEEN ROLLED BACK")
color = "#d6f0f3"
return '<div style="background-color:{}">{}</div>'.format(color, text)
rollback_status.allow_tags = True
class IXLanIXFMemberImportLogAdmin(admin.ModelAdmin):
search_fields = ("ixlan__ix__id", )
list_display = ("id", "ix", "ixlan_name", "source", "created", "changes")
readonly_fields = ("ix", "ixlan_name", "source", "changes")
inlines = (IXLanIXFMemberImportLogEntryInline, )
actions = [rollback]
def has_delete_permission(self, request, obj=None):
return False
def changes(self, obj):
return obj.entries.count()
def ix(self, obj):
return '<a href="{}">{} (ID: {})</a>'.format(
urlresolvers.reverse(
"admin:peeringdb_server_internetexchange_change",
args=(obj.ixlan.ix.id, )), obj.ixlan.ix.name, obj.ixlan.ix.id)
ix.allow_tags = True
def ixlan_name(self, obj):
return '<a href="{}">{} (ID: {})</a>'.format(
urlresolvers.reverse("admin:peeringdb_server_ixlan_change",
args=(obj.ixlan.id, )), obj.ixlan.name or "",
obj.ixlan.id)
ixlan_name.allow_tags = True
def source(self, obj):
return obj.ixlan.ixf_ixp_member_list_url
class SponsorshipAdminForm(baseForms.ModelForm):
def __init__(self, *args, **kwargs):
super(SponsorshipAdminForm, self).__init__(*args, **kwargs)
fk_handleref_filter(self, "org")
class SponsorshipAdmin(admin.ModelAdmin):
list_display = ('org_name', 'start_date', 'end_date', 'level', 'status')
readonly_fields = ('status', 'org_name', 'notify_date')
form = SponsorshipAdminForm
def org_name(self, obj):
if not obj.org:
return ""
return obj.org.name
org_name.admin_order_field = "org__name"
org_name.short_description = _("Organization")
def status(self, obj):
now = datetime.datetime.now().replace(tzinfo=UTC())
if not obj.start_date or not obj.end_date:
return _("Not Set")
if obj.start_date <= now and obj.end_date >= now:
if not obj.logo:
return _("Logo Missing")
return _("Active")
elif now > obj.end_date:
return _("Over")
else:
return _("Waiting")
status.allow_tags = True
class PartnershipAdminForm(baseForms.ModelForm):
def __init__(self, *args, **kwargs):
super(PartnershipAdminForm, self).__init__(*args, **kwargs)
fk_handleref_filter(self, "org")
class PartnershipAdmin(admin.ModelAdmin):
list_display = ('org_name', 'level', 'status')
readonly_fields = ('status', 'org_name')
form = PartnershipAdminForm
def org_name(self, obj):
if not obj.org:
return ""
return obj.org.name
org_name.admin_order_field = "org__name"
org_name.short_description = "Organization"
def status(self, obj):
if not obj.logo:
return _("Logo Missing")
return _("Active")
status.allow_tags = True
class OrganizationAdmin(ModelAdminWithVQCtrl, SoftDeleteAdmin):
list_display = ('handle', 'name', 'status', 'created', 'updated')
ordering = ('-created', )
search_fields = ('name', )
list_filter = (StatusFilter, )
readonly_fields = ('id', 'nsp_namespace')
form = StatusForm
def get_urls(self):
urls = super(OrganizationAdmin, self).get_urls()
my_urls = [
url(r'^org-merge-tool/merge$', self.org_merge_tool_merge_action),
url(r'^org-merge-tool/$', self.org_merge_tool_view),
]
return my_urls + urls
def org_merge_tool_merge_action(self, request):
if not request.user.is_superuser:
return HttpResponseForbidden(request)
try:
orgs = Organization.objects.filter(
id__in=request.GET.get("ids").split(","))
except ValueError:
return JsonResponse({
"error": _("Malformed organization ids")
}, status=400)
try:
org = Organization.objects.get(id=request.GET.get("id"))
except Organization.DoesNotExist:
return JsonResponse({
"error": _("Merge target organization does not exist")
}, status=400)
rv = merge_organizations(orgs, org, request)
return JsonResponse(rv)
def org_merge_tool_view(self, request):
if not request.user.is_superuser:
return redirect("admin:login")
context = dict(
self.admin_site.each_context(request),
undo_url=urlresolvers.reverse(
"admin:peeringdb_server_organizationmerge_changelist"),
title=_("Organization Merging Tool"))
return TemplateResponse(request, "admin/org_merge_tool.html", context)
# inlines = (InternetExchangeFacilityInline,NetworkFacilityInline,)
admin.site.register(Organization, OrganizationAdmin)
class OrganizationMergeEntities(admin.TabularInline):
model = OrganizationMergeEntity
extra = 0
readonly_fields = ("content_type", "object_id", "note")
def has_delete_permission(self, request, obj=None):
return False
class OrganizationMergeLog(ModelAdminWithUrlActions):
list_display = ('id', 'from_org', 'to_org', 'created')
search_fields = ('from_org__name', 'to_org__name')
readonly_fields = ('from_org', 'to_org', 'undo_merge')
inlines = (OrganizationMergeEntities, )
def undo_merge(self, obj):
return (
u'<a class="grp-button grp-delete-link" href="action/undo">{}</a>'
).format(_('Undo merge'))
undo_merge.allow_tags = True
@reversion.create_revision()
def undo(modeladmin, request, queryset):
if request.user:
reversion.set_user(request.user)
for each in queryset:
each.undo()
undo.short_description = _("Undo merge")
actions = [undo]
def has_delete_permission(self, request, obj=None):
return False
class FacilityAdminForm(StatusForm):
def __init__(self, *args, **kwargs):
super(FacilityAdminForm, self).__init__(*args, **kwargs)
fk_handleref_filter(self, "org")
class FacilityAdmin(ModelAdminWithVQCtrl, SoftDeleteAdmin):
list_display = ('name', 'org', 'city', 'country', 'status', 'created',
'updated')
ordering = ('-created', )
list_filter = (StatusFilter, )
search_fields = ('name', )
readonly_fields = ('id', 'nsp_namespace')
form = FacilityAdminForm
inlines = (
InternetExchangeFacilityInline,
NetworkFacilityInline,
)
class NetworkAdminForm(StatusForm):
def __init__(self, *args, **kwargs):
super(NetworkAdminForm, self).__init__(*args, **kwargs)
fk_handleref_filter(self, "org")
class NetworkAdmin(ModelAdminWithVQCtrl, SoftDeleteAdmin):
list_display = ('name', 'asn', 'aka', 'status', 'created', 'updated')
ordering = ('-created', )
list_filter = (StatusFilter, )
search_fields = ('name', 'asn')
readonly_fields = ('id', 'nsp_namespace')
form = NetworkAdminForm
inlines = (
NetworkContactInline,
NetworkFacilityInline,
NetworkInternetExchangeInline,
)
class VerificationQueueAdmin(ModelAdminWithUrlActions):
list_display = ('content_type', 'item', 'created', 'view', 'extra')
filter_fields = ('content_type', )
readonly_fields = ('created', 'view', 'extra')
search_fields = ('item', )
def get_search_results(self, request, queryset, search_term):
#queryset, use_distinct = super(VerificationQueueAdmin, self).get_search_results(request, queryset, search_term)
if not search_term or search_term == '':
return queryset, False
use_distinct = True
myset = VerificationQueueItem.objects.none()
for model in QUEUE_ENABLED:
if model == User:
qrs = model.objects.filter(username__icontains=search_term)
else:
qrs = model.objects.filter(name__icontains=search_term)
content_type = ContentType.objects.get_for_model(model)
for instance in list(qrs):
vq = VerificationQueueItem.objects.filter(
content_type=content_type, object_id=instance.id)
myset |= (queryset & vq)
return myset, use_distinct
def make_redirect(self, obj, action):
if action == "vq_approve":
opts = type(obj.first().item)._meta
return redirect(
urlresolvers.reverse("admin:%s_%s_change" % (opts.app_label,
opts.model_name),
args=(obj.first().item.id, )))
opts = obj.model._meta
return redirect("admin:%s_%s_changelist" % (opts.app_label,
opts.model_name))
def vq_approve(self, request, queryset):
for each in queryset:
each.approve()
vq_approve.short_description = _("APPROVE selected items")
def vq_deny(modeladmin, request, queryset):
for each in queryset:
each.deny()
vq_deny.short_description = _("DENY and delete selected items")
actions = [vq_approve, vq_deny]
def view(self, obj):
return (u'<a href="{}">{}</a>').format(obj.item_admin_url, _('View'))
view.allow_tags = True
def extra(self, obj):
if hasattr(obj.item,
"org") and obj.item.org.id == settings.SUGGEST_ENTITY_ORG:
return "Suggestion"
return ""
class UserOrgAffiliationRequestAdmin(ModelAdminWithUrlActions):
list_display = ('user', 'asn', 'org', 'created', 'status')
search_fields = ('user', 'asn')
readonly_fields = ('created', )
def approve_and_notify(self, request, queryset):
for each in queryset:
each.approve()
each.notify_ownership_approved()
self.message_user(
request,
_("Affiliation request was approved and the user was notified."))
approve_and_notify.short_description = _("Approve and notify User")
def approve(self, request, queryset):
for each in queryset:
each.approve()
approve.short_description = _("Approve")
def deny(self, request, queryset):
for each in queryset:
each.deny()
deny.short_description = _("Deny")
def has_delete_permission(self, request, obj=None):
return False
actions = [approve_and_notify, approve, deny]
# need to do this for add via django admin to use the right model
class UserCreationForm(forms.UserCreationForm):
def clean_username(self):
username = self.cleaned_data["username"]
try:
User._default_manager.get(username=username)
except User.DoesNotExist:
return username
raise ValidationError(self.error_messages["duplicate_username"])
class Meta(forms.UserCreationForm.Meta):
model = User
fields = ('username', 'password', 'email')
class UserAdmin(ModelAdminWithVQCtrl, UserAdmin):
inlines = (UserOrgAffiliationRequestInline, )
readonly_fields = ('email_status', 'organizations', 'view_permissions',
'change_password')
list_display = ('username', 'email', 'first_name', 'last_name',
'email_status', 'status')
add_form = UserCreationForm
add_fieldsets = ((None, {
'classes': ('wide', ),
'fields': ('username', 'password1', 'password2', 'email')
}), )
fieldsets = ((None, {
'classes': ('wide', ),
'fields': ('email_status', 'change_password')
}), ) + UserAdmin.fieldsets + ((None, {
'classes': ('wide', ),
'fields': ('organizations', )
}), )
# we want to get rid of user permissions and group editor as that
# will be displayed on a separate page, for performance reasons
for name, grp in fieldsets:
grp["fields"] = tuple([
fld for fld in grp["fields"]
if fld not in [
"groups", "user_permissions", "is_staff", "is_active",
"is_superuser"
]
])
if name == "Permissions":
grp["fields"] += ('view_permissions', )
def version(self, obj):
"""
Users are not versioned, but ModelAdminWithVQCtrl defines
a readonly field called "version", for sake of completion
return a 0 version here
"""
return 0
def change_password(self, obj):
return (u'<a href="{}">{}</a>').format(
urlresolvers.reverse("admin:auth_user_password_change",
args=(obj.id, )), _('Change Password'))
change_password.allow_tags = True
def view_permissions(self, obj):
url = urlresolvers.reverse(
"admin:%s_%s_change" % (UserPermission._meta.app_label,
UserPermission._meta.model_name),
args=(obj.id, ))
return (u'<a href="{}">{}</a>').format(url, _('Edit Permissions'))
view_permissions.allow_tags = True
def email_status(self, obj):
if obj.email_confirmed:
return (u'<span style="color:darkgreen">{}</span>').format(
_("VERIFIED"))
else:
return (u'<span style="color:darkred">{}</span>').format(
_("UNVERIFIED"))
email_status.allow_tags = True
def organizations(self, obj):
return loader.get_template('admin/user-organizations.html').render({
'organizations': obj.organizations,
'user': obj
}).replace("\n", "")
organizations.allow_tags = True
class UserPermission(User):
class Meta:
proxy = True
verbose_name = _("User Permission")
verbose_name_plural = _("User Permissions")
class UserPermissionAdmin(UserAdmin):
search_fields = ('username', )
inlines = (UserOrgAffiliationRequestInline, UserPermissionInline,
UserPermissionInlineAdd)
fieldsets = ((None, {
'fields': ('user', 'is_active', 'is_staff', 'is_superuser', 'groups',
'user_permissions'),
'classes': ('wide', )
}), )
readonly_fields = ('user', )
def get_form(self, request, obj=None, **kwargs):
# we want to remove the password field from the form
# since we dont send it and dont want to run clean for it
form = super(UserPermissionAdmin, self).get_form(
request, obj, **kwargs)
del form.base_fields['password']
return form
def user(self, obj):
url = urlresolvers.reverse(
"admin:%s_%s_change" % (User._meta.app_label,
User._meta.model_name), args=(obj.id, ))
return '<a href="%s">%s</a>' % (url, obj.username)
user.allow_tags = True
def clean_password(self):
pass
class DuplicateIPNetworkIXLan(NetworkIXLan):
"""
Issue #96, #92
Interface to streamline manual cleanup of duplicate netixlan ips
Can be removed after #92 is fully completed
"""
class Meta(object):
proxy = True
verbose_name = _("Duplicate IP")
verbose_name_plural = _("Duplicate IPs")
class DuplicateIPResultList(list):
def set_qs(self, qs):
self.qs = qs
def filter(self, **kwargs):
return self.qs.filter(**kwargs)
def _clone(self):
return self
class DuplicateIPChangeList(ChangeList):
"""
Issue #96, #92
Interface to streamline manual clean up of duplicate netixlan ips
Can be removed after #92 is fully completed
"""
def get_queryset(self, request):
ip4s = {}
ip6s = {}
qs = super(DuplicateIPChangeList, self).get_queryset(request)
sort_keys = qs.query.order_by
if "pk" in sort_keys:
sort_keys.remove("pk")
if "-pk" in sort_keys:
sort_keys.remove("-pk")
def sorters(item):
v = []
for key in sort_keys:
if key[0] == "-":
key = key[1:]
v.insert(0, -getattr(item, key))
else:
v.insert(0, getattr(item, key))
return v
qs = NetworkIXLan.objects.filter(status="ok")
t = time.time()
for netixlan in qs:
if netixlan.ipaddr4:
ip4 = str(netixlan.ipaddr4)
if ip4 not in ip4s:
ip4s[ip4] = [netixlan]
else:
ip4s[ip4].append(netixlan)
if netixlan.ipaddr6:
ip6 = str(netixlan.ipaddr6)
if ip6 not in ip6s:
ip6s[ip6] = [netixlan]
else:
ip6s[ip6].append(netixlan)
collisions = []
for ip, netixlans in ip4s.items():
if len(netixlans) > 1:
for netixlan in netixlans:
netixlan.ip_dupe = 4
netixlan.exchange = int(netixlan.ixlan.ix_id)
netixlan.ip_sorter = int(netixlan.ipaddr4)
netixlan.dt_sorter = int(netixlan.updated.strftime('%s'))
collisions.append(netixlan)
for ip, netixlans in ip6s.items():
if len(netixlans) > 1:
for netixlan in netixlans:
netixlan.ip_dupe = 6
netixlan.exchange = int(netixlan.ixlan.ix_id)
netixlan.ip_sorter = int(netixlan.ipaddr6)
netixlan.dt_sorter = int(netixlan.updated.strftime('%s'))
collisions.append(netixlan)
if sort_keys != ["pk"] and sort_keys != ["-pk"]:
collisions = sorted(collisions, key=sorters)
collisions = DuplicateIPResultList(collisions)
collisions.set_qs(qs)
return collisions
class DuplicateIPAdmin(SoftDeleteAdmin):
"""
Issue #96, #92
Interface to streamline manual clean up of duplicate netixlan ips
Can be removed after #92 is fully completed
"""
list_display = ('id_ro', 'ip', 'asn', 'ix', 'net', 'updated_ro',
'status_ro')
readonly_fields = ('id_ro', 'ip', 'net', 'ix', 'asn', 'updated_ro',
'status_ro')
form = NetworkIXLanForm
list_per_page = 1000
fieldsets = ((None, {
'classes': ('wide', ),
'fields': ('status', 'asn', 'ipaddr4', 'ipaddr6', 'ix', 'net',
'updated')
}), )
def get_changelist(self, request):
return DuplicateIPChangeList
def id_ro(self, obj):
return obj.id
id_ro.admin_order_field = "id"
id_ro.short_description = "Id"
def status_ro(self, obj):
return obj.status
status_ro.admin_order_field = None
status_ro.short_description = _("Status")
def updated_ro(self, obj):
return obj.updated
updated_ro.admin_order_field = "dt_sorter"
updated_ro.short_description = _("Updated")
def ip(self, obj):
if obj.ip_dupe == 4:
return obj.ipaddr4
elif obj.ip_dupe == 6:
return obj.ipaddr6
ip.admin_order_field = "ip_sorter"
def net(self, obj):
return '<a href="/net/%d">%d</a>' % (obj.network_id, obj.network_id)
net.allow_tags = True
net.admin_order_field = "network_id"
def ix(self, obj):
return '<a href="/ix/%d">%d</a>' % (obj.ixlan.ix.id, obj.ixlan.ix.id)
ix.allow_tags = True
ix.admin_order_field = "exchange"
def changelist_view(self, request, extra_context=None):
extra_context = {'title': 'Duplicate IPs'}
return super(DuplicateIPAdmin, self).changelist_view(
request, extra_context=extra_context)
def has_add_permission(self, request):
return False
## COMMANDLINE TOOL ADMIN
class CommandLineToolPrepareForm(baseForms.Form):
"""
Form that allows user to select which commandline tool
to run
"""
tool = baseForms.ChoiceField(choices=COMMANDLINE_TOOLS)
class CommandLineToolAdmin(admin.ModelAdmin):
"""
View that lets staff users run peeringdb command line tools
"""
list_display = ("tool", "description", "user", "created")
readonly_fields = ("tool", "description", "arguments", "result", "user",
"created")
def has_delete_permission(self, request, obj=None):
return False
def get_urls(self):
urls = super(CommandLineToolAdmin, self).get_urls()
my_urls = [
url(r'^prepare/$', self.prepare_command_view,
name="peeringdb_server_commandlinetool_prepare"),
url(r'^preview/$', self.preview_command_view,
name="peeringdb_server_commandlinetool_preview"),
url(r'^run/$', self.run_command_view,
name="peeringdb_server_commandlinetool_run"),
]
return my_urls + urls
def prepare_command_view(self, request):
"""
This view has the user select which command they want to run and
with which arguments.
"""
if not request.user.is_superuser:
return redirect("admin:login")
context = dict(self.admin_site.each_context(request))
title = "Commandline Tools"
action = "prepare"
if request.method == "POST":
form = CommandLineToolPrepareForm(request.POST, request.FILES)
if form.is_valid():
action = "preview"
tool = acltools.get_tool(request.POST.get("tool"), form)
context.update(tool=tool)
title = tool.name
form = tool.form
else:
form = CommandLineToolPrepareForm()
context.update({
"adminform": helpers.AdminForm(
form, list([(None, {
'fields': form.base_fields
})]), self.get_prepopulated_fields(request)),
"action": action,
"app_label": self.model._meta.app_label,
"opts": self.model._meta,
"title": title
})
return TemplateResponse(
request,
"admin/peeringdb_server/commandlinetool/prepare_command.html",
context)
def preview_command_view(self, request):
"""
This view has the user preview the result of running the command
"""
if not request.user.is_superuser:
return redirect("admin:login")
context = dict(self.admin_site.each_context(request))
if request.method == "POST":
tool = acltools.get_tool_from_data(request.POST)
context.update(tool=tool)
if tool.form_instance.is_valid():
action = "run"
tool.run(request.user, commit=False)
form = tool.form_instance
else:
raise Exception(_("Only POST requests allowed."))
context.update({
"adminform": helpers.AdminForm(
form, list([(None, {
'fields': form.base_fields
})]), self.get_prepopulated_fields(request)),
"action": action,
"app_label": self.model._meta.app_label,
"opts": self.model._meta,
"title": _("{} (Preview)").format(tool.name)
})
return TemplateResponse(
request,
"admin/peeringdb_server/commandlinetool/preview_command.html",
context)
def run_command_view(self, request):
"""
This view has the user running the command and commiting changes
to the database.
"""
if not request.user.is_superuser:
return redirect("admin:login")
context = dict(self.admin_site.each_context(request))
if request.method == "POST":
tool = acltools.get_tool_from_data(request.POST)
context.update(tool=tool)
if tool.form_instance.is_valid():
tool.run(request.user, commit=True)
form = tool.form_instance
else:
raise Exception(_("Only POST requests allowed."))
context.update({
"adminform": helpers.AdminForm(
form, list([(None, {
'fields': form.base_fields
})]), self.get_prepopulated_fields(request)),
"action": "run",
"app_label": self.model._meta.app_label,
"opts": self.model._meta,
"title": tool.name
})
return TemplateResponse(
request, "admin/peeringdb_server/commandlinetool/run_command.html",
context)
class DeskProTicketAdmin(admin.ModelAdmin):
list_display = ("id", "subject", "user", "created", "published")
readonly_fields = ("user", )
admin.site.register(Facility, FacilityAdmin)
admin.site.register(InternetExchange, InternetExchangeAdmin)
admin.site.register(IXLan, IXLanAdmin)
admin.site.register(Network, NetworkAdmin)
admin.site.register(User, UserAdmin)
admin.site.register(VerificationQueueItem, VerificationQueueAdmin)
admin.site.register(Sponsorship, SponsorshipAdmin)
admin.site.register(Partnership, PartnershipAdmin)
admin.site.register(OrganizationMerge, OrganizationMergeLog)
admin.site.register(UserPermission, UserPermissionAdmin)
admin.site.register(DuplicateIPNetworkIXLan, DuplicateIPAdmin)
admin.site.register(IXLanIXFMemberImportLog, IXLanIXFMemberImportLogAdmin)
admin.site.register(CommandLineTool, CommandLineToolAdmin)
admin.site.register(UserOrgAffiliationRequest, UserOrgAffiliationRequestAdmin)
admin.site.register(DeskProTicket, DeskProTicketAdmin)
Copy Permalink