git://git.onelab.eu / plstackapi.git / blob
? search:


282368f2b5c69b02994840bf5ea137be40fd0daa
[plstackapi.git] / planetstack / core / models / site.py
1 import os
2 from django.db import models
3 from core.models import PlCoreBase,PlCoreBaseManager,PlCoreBaseDeletionManager
4 from core.models import Tag
5 from django.contrib.contenttypes import generic
6 from geoposition.fields import GeopositionField
7 from core.acl import AccessControlList
8
9 class DeploymentDeletionManager(PlCoreBaseDeletionManager):
10     def get_queryset(self):
11         parent=super(DeploymentDeletionManager, self)
12         if hasattr(parent, "get_queryset"):
13             return parent.get_queryset().filter(Q(backend_type=config.observer_backend_type)|Q(backend_type=None))
14         else:
15             return parent.get_queryset().filter(Q(backend_type=config.observer_backend_type)|Q(backend_type=None))
16
17     # deprecated in django 1.7 in favor of get_queryset().
18     def get_query_set(self):
19         return self.get_queryset()
20
21 class DeploymentLinkManager(PlCoreBaseManager):
22     def get_queryset(self):
23         parent=super(DeploymentLinkManager, self)
24         if hasattr(parent, "get_queryset"):
25             return parent.get_queryset().filter(Q(deployment__backend_type=config.observer_backend_type)|Q(backend_type=None))
26         else:
27             return parent.get_queryset().filter(Q(deployment__backend_type=config.observer_backend_type)|Q(backend_type=None))
28
29     # deprecated in django 1.7 in favor of get_queryset().
30     def get_query_set(self):
31         return self.get_queryset()
32
33
34 class DeploymentManager(PlCoreBaseManager):
35     def get_queryset(self):
36         parent=super(DeploymentManager, self)
37         if hasattr(parent, "get_queryset"):
38             return parent.get_queryset().filter(Q(backend_type=config.observer_backend_type)|Q(backend_type=None))
39         else:
40             return parent.get_queryset().filter(Q(backend_type=config.observer_backend_type)|Q(backend_type=None))
41
42     # deprecated in django 1.7 in favor of get_queryset().
43     def get_query_set(self):
44         return self.get_queryset()
45
46 class Site(PlCoreBase):
47     """
48         A logical grouping of Nodes that are co-located at the same geographic location, which also typically corresponds to the Nodes' location in the physical network.
49     """
50     name = models.CharField(max_length=200, help_text="Name for this Site")
51     site_url = models.URLField(null=True, blank=True, max_length=512, help_text="Site's Home URL Page")
52     enabled = models.BooleanField(default=True, help_text="Status for this Site")
53     location = GeopositionField()
54     longitude = models.FloatField(null=True, blank=True)
55     latitude = models.FloatField(null=True, blank=True)
56     login_base = models.CharField(max_length=50, unique=True, help_text="Prefix for Slices associated with this Site")
57     is_public = models.BooleanField(default=True, help_text="Indicates the visibility of this site to other members")
58     abbreviated_name = models.CharField(max_length=80)
59
60     #deployments = models.ManyToManyField('Deployment', blank=True, related_name='sites')
61     deployments = models.ManyToManyField('Deployment', through='SiteDeployments', blank=True, help_text="Select which sites are allowed to host nodes in this deployment", related_name='sites')
62     tags = generic.GenericRelation(Tag)
63
64     def __unicode__(self):  return u'%s' % (self.name)
65
66     def can_update(self, user):
67         if user.is_readonly:
68             return False
69         if user.is_admin:
70             return True
71         site_privs = SitePrivilege.objects.filter(user=user, site=self)
72         for site_priv in site_privs:
73             if site_priv.role.role == 'pi':
74                 return True
75         return False 
76
77     @staticmethod
78     def select_by_user(user):
79         if user.is_admin:
80             qs = Site.objects.all()
81         else:
82             site_ids = [sp.site.id for sp in SitePrivilege.objects.filter(user=user)]
83             site_ids.append(user.site.id)
84             qs = Site.objects.filter(id__in=site_ids)
85         return qs
86
87
88 class SiteRole(PlCoreBase):
89
90     ROLE_CHOICES = (('admin','Admin'),('pi','PI'),('tech','Tech'),('billing','Billing'))
91     role = models.CharField(choices=ROLE_CHOICES, unique=True, max_length=30)
92
93     def __unicode__(self):  return u'%s' % (self.role)
94
95 class SitePrivilege(PlCoreBase):
96
97     user = models.ForeignKey('User', related_name='site_privileges')
98     site = models.ForeignKey('Site', related_name='site_privileges')
99     role = models.ForeignKey('SiteRole')
100
101     def __unicode__(self):  return u'%s %s %s' % (self.site, self.user, self.role)
102
103     def save(self, *args, **kwds):
104         super(SitePrivilege, self).save(*args, **kwds)
105
106     def delete(self, *args, **kwds):
107         super(SitePrivilege, self).delete(*args, **kwds)
108
109     def can_update(self, user):
110         return self.site.can_update(user)
111
112     @staticmethod
113     def select_by_user(user):
114         if user.is_admin:
115             qs = SitePrivilege.objects.all()
116         else:
117             sp_ids = [sp.id for sp in SitePrivilege.objects.filter(user=user)]
118             qs = SitePrivilege.objects.filter(id__in=sp_ids)
119         return qs
120
121 class Deployment(PlCoreBase):
122     name = models.CharField(max_length=200, unique=True, help_text="Name of the Deployment")
123     admin_user = models.CharField(max_length=200, null=True, blank=True, help_text="Username of an admin user at this deployment")
124     admin_password = models.CharField(max_length=200, null=True, blank=True, help_text="Password of theadmin user at this deployment")\r
125     admin_tenant = models.CharField(max_length=200, null=True, blank=True, help_text="Name of the tenant the admin user belongs to")\r
126     auth_url = models.CharField(max_length=200, null=True, blank=True, help_text="Auth url for the deployment")
127     backend_type = models.CharField(max_length=200, null=True, blank=True, help_text="Type of deployment, e.g. EC2, OpenStack, or OpenStack version")
128
129     # smbaker: the default of 'allow all' is intended for evolutions of existing
130     #    deployments. When new deployments are created via the GUI, they are
131     #    given a default of 'allow site <site_of_creator>'
132     accessControl = models.TextField(max_length=200, blank=False, null=False, default="allow all",
133                                      help_text="Access control list that specifies which sites/users may use nodes in this deployment")
134
135     def get_acl(self):
136         return AccessControlList(self.accessControl)
137
138     def test_acl(self, slice=None, user=None):
139         potential_users=[]
140
141         if user:
142             potential_users.append(user)
143
144         if slice:
145             potential_users.append(slice.creator)
146             for priv in slice.slice_privileges.all():
147                 if priv.user not in potential_users:
148                     potential_users.append(priv.user)
149
150         acl = self.get_acl()
151         for user in potential_users:
152             if acl.test(user) == "allow":
153                 return True
154
155         return False
156
157     @staticmethod
158     def select_by_acl(user):
159         ids = []
160         for deployment in Deployment.objects.all():
161             acl = deployment.get_acl()
162             if acl.test(user) == "allow":
163                 ids.append(deployment.id)
164
165         return Deployment.objects.filter(id__in=ids)
166
167     def __unicode__(self):  return u'%s' % (self.name)
168
169     @staticmethod
170     def select_by_user(user):
171         return Deployment.objects.all()
172
173 class DeploymentRole(PlCoreBase):
174
175     ROLE_CHOICES = (('admin','Admin'),)
176     role = models.CharField(choices=ROLE_CHOICES, unique=True, max_length=30)
177
178     def __unicode__(self):  return u'%s' % (self.role)
179
180 class DeploymentPrivilege(PlCoreBase):
181
182     user = models.ForeignKey('User', related_name='deployment_privileges')
183     deployment = models.ForeignKey('Deployment', related_name='deployment_privileges')
184     role = models.ForeignKey('DeploymentRole')
185
186     def __unicode__(self):  return u'%s %s %s' % (self.deployment, self.user, self.role)
187
188     def can_update(self, user):
189         if user.is_readonly:
190             return False
191         if user.is_admin:
192             return True
193         dprivs = DeploymentPrivilege.objects.filter(user=user)
194         for dpriv in dprivs:
195             if dpriv.role.role == 'admin':
196                 return True
197         return False
198
199     @staticmethod
200     def select_by_user(user):
201         if user.is_admin:
202             qs = DeploymentPrivilege.objects.all()
203         else:
204             dpriv_ids = [dp.id for dp in DeploymentPrivilege.objects.filter(user=user)]
205             qs = DeploymentPrivilege.objects.filter(id__in=dpriv_ids)
206         return qs 
207
208 class SiteDeployments(PlCoreBase):
209     site = models.ForeignKey(Site)
210     deployment = models.ForeignKey(Deployment)
211     tenant_id = models.CharField(null=True, blank=True, max_length=200, help_text="Keystone tenant id")    
212
213     @staticmethod
214     def select_by_user(user):
215         return SiteDeployments.objects.all()
216
217     #class Meta:
218     #    db_table = 'core_site_deployments'
219     #    #auto_created = Site
220
plstackapi