2 from django.db import models
3 from core.models import PlCoreBase
4 from core.models import Tag
5 from django.contrib.contenttypes import generic
6 from geoposition.fields import GeopositionField
7 from core.acl import AccessControlList
9 class Site(PlCoreBase):
11 A logical grouping of Nodes that are co-located at the same geographic location, which also typically corresponds to the Nodes' location in the physical network.
13 name = models.CharField(max_length=200, help_text="Name for this Site")
14 site_url = models.URLField(null=True, blank=True, max_length=512, help_text="Site's Home URL Page")
15 enabled = models.BooleanField(default=True, help_text="Status for this Site")
16 location = GeopositionField()
17 longitude = models.FloatField(null=True, blank=True)
18 latitude = models.FloatField(null=True, blank=True)
19 login_base = models.CharField(max_length=50, unique=True, help_text="Prefix for Slices associated with this Site")
20 is_public = models.BooleanField(default=True, help_text="Indicates the visibility of this site to other members")
21 abbreviated_name = models.CharField(max_length=80)
23 #deployments = models.ManyToManyField('Deployment', blank=True, related_name='sites')
24 deployments = models.ManyToManyField('Deployment', through='SiteDeployments', blank=True)
25 tags = generic.GenericRelation(Tag)
27 def __unicode__(self): return u'%s' % (self.name)
29 def can_update(self, user):
34 site_privs = SitePrivilege.objects.filter(user=user, site=self)
35 for site_priv in site_privs:
36 if site_priv.role.role == 'pi':
41 def select_by_user(user):
43 qs = Site.objects.all()
45 site_ids = [sp.site.id for sp in SitePrivilege.objects.filter(user=user)]
46 site_ids.append(user.site.id)
47 qs = Site.objects.filter(id__in=site_ids)
51 class SiteRole(PlCoreBase):
53 ROLE_CHOICES = (('admin','Admin'),('pi','PI'),('tech','Tech'),('billing','Billing'))
54 role = models.CharField(choices=ROLE_CHOICES, unique=True, max_length=30)
56 def __unicode__(self): return u'%s' % (self.role)
58 class SitePrivilege(PlCoreBase):
60 user = models.ForeignKey('User', related_name='site_privileges')
61 site = models.ForeignKey('Site', related_name='site_privileges')
62 role = models.ForeignKey('SiteRole')
64 def __unicode__(self): return u'%s %s %s' % (self.site, self.user, self.role)
66 def save(self, *args, **kwds):
67 super(SitePrivilege, self).save(*args, **kwds)
69 def delete(self, *args, **kwds):
70 super(SitePrivilege, self).delete(*args, **kwds)
72 def can_update(self, user):
73 return self.site.can_update(user)
76 def select_by_user(user):
78 qs = SitePrivilege.objects.all()
80 sp_ids = [sp.id for sp in SitePrivilege.objects.filter(user=user)]
81 qs = SitePrivilege.objects.filter(id__in=sp_ids)
84 class Deployment(PlCoreBase):
85 name = models.CharField(max_length=200, unique=True, help_text="Name of the Deployment")
87 # smbaker: the default of 'allow all' is intended for evolutions of existing
88 # deployments. When new deployments are created via the GUI, they are
89 # given a default of 'allow site <site_of_creator>'
90 accessControl = models.TextField(max_length=200, blank=False, null=False, default="allow all",
91 help_text="Access control list that specifies which sites/users may use nodes in this deployment")
94 return AccessControlList(self.accessControl)
96 def test_acl(self, slice=None, user=None):
100 potential_users.append(user)
103 potential_users.append(slice.creator)
104 for priv in slice.slice_privileges.all():
105 if priv.user not in potential_users:
106 potential_users.append(priv.user)
109 for user in potential_users:
110 if acl.test(user) == "allow":
115 def select_by_acl(self, user):
118 for deployment in Deployment.objects.all():
120 result.append(deployment)
123 def __unicode__(self): return u'%s' % (self.name)
126 def select_by_user(user):
127 return Deployment.objects.all()
129 class DeploymentRole(PlCoreBase):
131 ROLE_CHOICES = (('admin','Admin'),)
132 role = models.CharField(choices=ROLE_CHOICES, unique=True, max_length=30)
134 def __unicode__(self): return u'%s' % (self.role)
136 class DeploymentPrivilege(PlCoreBase):
138 user = models.ForeignKey('User', related_name='deployment_privileges')
139 deployment = models.ForeignKey('Deployment', related_name='deployment_privileges')
140 role = models.ForeignKey('DeploymentRole')
142 def __unicode__(self): return u'%s %s %s' % (self.deployment, self.user, self.role)
144 def can_update(self, user):
149 dprivs = DeploymentPrivilege.objects.filter(user=user)
151 if dpriv.role.role == 'admin':
156 def select_by_user(user):
158 qs = DeploymentPrivilege.objects.all()
160 dpriv_ids = [dp.id for dp in DeploymentPrivilege.objects.filter(user=user)]
161 qs = DeploymentPrivilege.objects.filter(id__in=dpriv_ids)
164 class SiteDeployments(PlCoreBase):
165 site = models.ForeignKey(Site)
166 deployment = models.ForeignKey(Deployment)
167 tenant_id = models.CharField(null=True, blank=True, max_length=200, help_text="Keystone tenant id")
170 def select_by_user(user):
171 return SiteDeployments.objects.all()
174 # db_table = 'core_site_deployments'
175 # #auto_created = Site