2 from django.db import models
3 from core.models import PlCoreBase,PlCoreBaseManager,PlCoreBaseDeletionManager
4 from core.models import Tag
5 from django.contrib.contenttypes import generic
6 from geoposition.fields import GeopositionField
7 from core.acl import AccessControlList
9 class DeploymentDeletionManager(PlCoreBaseDeletionManager):
10 def get_queryset(self):
11 parent=super(DeploymentDeletionManager, self)
12 if hasattr(parent, "get_queryset"):
13 return parent.get_queryset().filter(Q(backend_type=config.observer_backend_type)|Q(backend_type=None))
15 return parent.get_queryset().filter(Q(backend_type=config.observer_backend_type)|Q(backend_type=None))
17 # deprecated in django 1.7 in favor of get_queryset().
18 def get_query_set(self):
19 return self.get_queryset()
21 class DeploymentLinkManager(PlCoreBaseManager):
22 def get_queryset(self):
23 parent=super(DeploymentLinkManager, self)
24 if hasattr(parent, "get_queryset"):
25 return parent.get_queryset().filter(Q(deployment__backend_type=config.observer_backend_type)|Q(backend_type=None))
27 return parent.get_queryset().filter(Q(deployment__backend_type=config.observer_backend_type)|Q(backend_type=None))
29 # deprecated in django 1.7 in favor of get_queryset().
30 def get_query_set(self):
31 return self.get_queryset()
34 class DeploymentManager(PlCoreBaseManager):
35 def get_queryset(self):
36 parent=super(DeploymentManager, self)
37 if hasattr(parent, "get_queryset"):
38 return parent.get_queryset().filter(Q(backend_type=config.observer_backend_type)|Q(backend_type=None))
40 return parent.get_queryset().filter(Q(backend_type=config.observer_backend_type)|Q(backend_type=None))
42 # deprecated in django 1.7 in favor of get_queryset().
43 def get_query_set(self):
44 return self.get_queryset()
46 class Site(PlCoreBase):
48 A logical grouping of Nodes that are co-located at the same geographic location, which also typically corresponds to the Nodes' location in the physical network.
50 name = models.CharField(max_length=200, help_text="Name for this Site")
51 site_url = models.URLField(null=True, blank=True, max_length=512, help_text="Site's Home URL Page")
52 enabled = models.BooleanField(default=True, help_text="Status for this Site")
53 location = GeopositionField()
54 longitude = models.FloatField(null=True, blank=True)
55 latitude = models.FloatField(null=True, blank=True)
56 login_base = models.CharField(max_length=50, unique=True, help_text="Prefix for Slices associated with this Site")
57 is_public = models.BooleanField(default=True, help_text="Indicates the visibility of this site to other members")
58 abbreviated_name = models.CharField(max_length=80)
60 #deployments = models.ManyToManyField('Deployment', blank=True, related_name='sites')
61 deployments = models.ManyToManyField('Deployment', through='SiteDeployments', blank=True, help_text="Select which sites are allowed to host nodes in this deployment", related_name='sites')
62 tags = generic.GenericRelation(Tag)
64 def __unicode__(self): return u'%s' % (self.name)
66 def can_update(self, user):
71 site_privs = SitePrivilege.objects.filter(user=user, site=self)
72 for site_priv in site_privs:
73 if site_priv.role.role == 'pi':
78 def select_by_user(user):
80 qs = Site.objects.all()
82 site_ids = [sp.site.id for sp in SitePrivilege.objects.filter(user=user)]
83 site_ids.append(user.site.id)
84 qs = Site.objects.filter(id__in=site_ids)
88 class SiteRole(PlCoreBase):
90 ROLE_CHOICES = (('admin','Admin'),('pi','PI'),('tech','Tech'),('billing','Billing'))
91 role = models.CharField(choices=ROLE_CHOICES, unique=True, max_length=30)
93 def __unicode__(self): return u'%s' % (self.role)
95 class SitePrivilege(PlCoreBase):
97 user = models.ForeignKey('User', related_name='site_privileges')
98 site = models.ForeignKey('Site', related_name='site_privileges')
99 role = models.ForeignKey('SiteRole')
101 def __unicode__(self): return u'%s %s %s' % (self.site, self.user, self.role)
103 def save(self, *args, **kwds):
104 super(SitePrivilege, self).save(*args, **kwds)
106 def delete(self, *args, **kwds):
107 super(SitePrivilege, self).delete(*args, **kwds)
109 def can_update(self, user):
110 return self.site.can_update(user)
113 def select_by_user(user):
115 qs = SitePrivilege.objects.all()
117 sp_ids = [sp.id for sp in SitePrivilege.objects.filter(user=user)]
118 qs = SitePrivilege.objects.filter(id__in=sp_ids)
121 class Deployment(PlCoreBase):
122 name = models.CharField(max_length=200, unique=True, help_text="Name of the Deployment")
123 admin_user = models.CharField(max_length=200, null=True, blank=True, help_text="Username of an admin user at this deployment")
124 admin_password = models.CharField(max_length=200, null=True, blank=True, help_text="Password of theadmin user at this deployment")
\r
125 admin_tenant = models.CharField(max_length=200, null=True, blank=True, help_text="Name of the tenant the admin user belongs to")
\r
126 auth_url = models.CharField(max_length=200, null=True, blank=True, help_text="Auth url for the deployment")
127 backend_type = models.CharField(max_length=200, null=True, blank=True, help_text="Type of deployment, e.g. EC2, OpenStack, or OpenStack version")
129 # smbaker: the default of 'allow all' is intended for evolutions of existing
130 # deployments. When new deployments are created via the GUI, they are
131 # given a default of 'allow site <site_of_creator>'
132 accessControl = models.TextField(max_length=200, blank=False, null=False, default="allow all",
133 help_text="Access control list that specifies which sites/users may use nodes in this deployment")
136 return AccessControlList(self.accessControl)
138 def test_acl(self, slice=None, user=None):
142 potential_users.append(user)
145 potential_users.append(slice.creator)
146 for priv in slice.slice_privileges.all():
147 if priv.user not in potential_users:
148 potential_users.append(priv.user)
151 for user in potential_users:
152 if acl.test(user) == "allow":
158 def select_by_acl(user):
160 for deployment in Deployment.objects.all():
161 acl = deployment.get_acl()
162 if acl.test(user) == "allow":
163 ids.append(deployment.id)
165 return Deployment.objects.filter(id__in=ids)
167 def __unicode__(self): return u'%s' % (self.name)
170 def select_by_user(user):
171 return Deployment.objects.all()
173 class DeploymentRole(PlCoreBase):
175 ROLE_CHOICES = (('admin','Admin'),)
176 role = models.CharField(choices=ROLE_CHOICES, unique=True, max_length=30)
178 def __unicode__(self): return u'%s' % (self.role)
180 class DeploymentPrivilege(PlCoreBase):
182 user = models.ForeignKey('User', related_name='deployment_privileges')
183 deployment = models.ForeignKey('Deployment', related_name='deployment_privileges')
184 role = models.ForeignKey('DeploymentRole')
186 def __unicode__(self): return u'%s %s %s' % (self.deployment, self.user, self.role)
188 def can_update(self, user):
193 dprivs = DeploymentPrivilege.objects.filter(user=user)
195 if dpriv.role.role == 'admin':
200 def select_by_user(user):
202 qs = DeploymentPrivilege.objects.all()
204 dpriv_ids = [dp.id for dp in DeploymentPrivilege.objects.filter(user=user)]
205 qs = DeploymentPrivilege.objects.filter(id__in=dpriv_ids)
208 class SiteDeployments(PlCoreBase):
209 site = models.ForeignKey(Site)
210 deployment = models.ForeignKey(Deployment)
211 tenant_id = models.CharField(null=True, blank=True, max_length=200, help_text="Keystone tenant id")
214 def select_by_user(user):
215 return SiteDeployments.objects.all()
218 # db_table = 'core_site_deployments'
219 # #auto_created = Site