修复无法识别roles_path问题

pythonzm · pythonzm · commit 57cee58b414c · 2019-04-16T17:16:43.000+08:00
diff --git a/Ops/__pycache__/routing.cpython-36.opt-1.pyc b/Ops/__pycache__/routing.cpython-36.opt-1.pyc
diff --git a/Ops/__pycache__/settings.cpython-36.opt-1.pyc b/Ops/__pycache__/settings.cpython-36.opt-1.pyc
diff --git a/Ops/celery.py b/Ops/celery.py
@@ -17,7 +17,7 @@
 # set the default Django settings module for the 'celery' program.
 os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'Ops.settings')
 
-app = Celery('Ops', broker='amqp://rabbitmq:rabbitmq@localhost:5672/myvhost')
+app = Celery('Ops', broker='redis://127.0.0.1:6379/0')
 
 app.conf.task_queues = (
     Queue('default', Exchange('default', type='direct'), routing_key='default'),
diff --git a/Ops/routing.py b/Ops/routing.py
@@ -31,8 +31,8 @@
             path(r'ws/deploy/', DeployConsumer),
             path(r'ws/ans_module_log/', AnsModuleConsumer),
             path(r'ws/ans_playbook_log/', AnsPlaybookConsumer),
-            re_path(r'ws/fortssh/([0-9]+)/([0-9]+)/(?P<group_name>.*)/', FortConsumer),
-            re_path(r'ws/webssh/([0-9]+)/(?P<group_name>.*)/', SSHConsumer),
+            re_path(r'ws/fortssh/([0-9]+)/([0-9]+)/', FortConsumer),
+            re_path(r'ws/webssh/([0-9]+)/', SSHConsumer),
             re_path(r'ws/fort_guacamole/([0-9]+)/([0-9]+)/(?P<group_name>.*)/', GuacamoleConsumer),
             re_path(r'ws/admin_guacamole/([0-9]+)/(?P<group_name>.*)/', AdminGuacamole),
         ]),
diff --git a/Ops/settings.py b/Ops/settings.py
@@ -35,7 +35,7 @@
         # This example app uses the Redis channel layer implementation channels_redis
         "BACKEND": "channels_redis.core.RedisChannelLayer",
         "CONFIG": {
-            "hosts": [('10.1.19.10', 6379)],
+            "hosts": [('127.0.0.1', 6379)],
         },
     },
 }
@@ -56,13 +56,13 @@
 }
 
 # 执行ansible命令使用的redis信息
-REDIS_HOST = '10.1.19.10'
+REDIS_HOST = '127.0.0.1'
 REDIS_PORT = 6379
 REDIS_DB = 2
 REDIS_PASSWORD = None
 
 # mongodb配置信息
-MONGODB_HOST = '10.1.19.10'
+MONGODB_HOST = '127.0.0.1'
 MONGODB_PORT = 27017
 COMMANDS_DB = 'commands'
 
@@ -152,9 +152,9 @@
     'default': {
         'ENGINE': 'django.db.backends.mysql',
         'NAME': 'ops',
-        'USER': 'root',
-        'PASSWORD': 'Aa123456!',
-        'HOST': '10.1.19.10'
+        'USER': 'ops',
+        'PASSWORD': '123456',
+        'HOST': '127.0.0.1'
     }
 }
 
@@ -208,21 +208,22 @@
 
 # zabbix配置
 ZABBIX_INFO = {
-    'api_url': 'http://10.1.19.10/zabbix/api_jsonrpc.php',
-    'graph_url': 'http://10.1.19.10/zabbix/chart2.php',
-    'login_url': 'http://10.1.19.10/zabbix/index.php',
+    'api_url': 'http://127.0.0.1/zabbix/api_jsonrpc.php',
+    'graph_url': 'http://127.0.0.1/zabbix/chart2.php',
+    'login_url': 'http://127.0.0.1/zabbix/index.php',
     'username': 'admin',
     'password': '123456'
 }
 
-ANSIBLE_ROLE_PATH = os.path.join(MEDIA_ROOT, 'roles')
+# ANSIBLE_ROLE_PATH = os.path.join(MEDIA_ROOT, 'roles')
+ANSIBLE_ROLE_PATH = '/usr/share/ansible/roles'
 
-GUACD_HOST = '10.1.19.10'
+GUACD_HOST = '127.0.0.1'
 GUACD_PORT = 4822
 
 # email配置
 EMAIL_HOST = 'smtp.163.com'
 EMAIL_PORT = 25
-EMAIL_HOST_USER = 'XXXXXXXXXXX'
-EMAIL_HOST_PASSWORD = 'XXXXXXXXXXXXXXXX'
+EMAIL_HOST_USER = 'XXXXXXXXXXXX'
+EMAIL_HOST_PASSWORD = 'XXXXXXXXXXX'
 DEFAULT_FROM_EMAIL = EMAIL_HOST_USER
diff --git a/assets/utils/webssh.py b/assets/utils/webssh.py
@@ -20,26 +20,23 @@ def __init__(self, chan):
         self.start_time = time.time()
         self.current_time = time.strftime(settings.TIME_FORMAT)
         self.stdout = []
-        self.read_lock = threading.RLock()
 
     def stop(self):
         self._stop_event.set()
 
     def run(self):
-        with self.read_lock:
-            while not self._stop_event.is_set():
-                time.sleep(0.1)
-                try:
-                    data = self.chan.chan.recv(1024)
-                    if data:
-                        str_data = bytes.decode(data)
-                        self.chan.send(str_data)
-                        self.stdout.append([time.time() - self.start_time, 'o', str_data])
-                except timeout:
-                    break
-            self.chan.send('\n由于长时间没有操作，连接已断开!')
-            self.stdout.append([time.time() - self.start_time, 'o', '\n由于长时间没有操作，连接已断开!'])
-            self.chan.close()
+        while not self._stop_event.is_set() or not self.chan.chan.exit_status_ready():
+            time.sleep(0.1)
+            try:
+                data = self.chan.chan.recv(1024)
+                if data:
+                    str_data = bytes.decode(data)
+                    self.chan.send(str_data)
+                    self.stdout.append([time.time() - self.start_time, 'o', str_data])
+            except timeout:
+                self.chan.send('\n由于长时间没有操作，连接已断开!', close=True)
+                self.stdout.append([time.time() - self.start_time, 'o', '\n由于长时间没有操作，连接已断开!'])
+                break
 
     def record(self):
         record_path = os.path.join(settings.MEDIA_ROOT, 'admin_ssh_records', self.chan.scope['user'].username,
@@ -88,7 +85,6 @@ class SSHConsumer(WebsocketConsumer):
     def __init__(self, *args, **kwargs):
         super(SSHConsumer, self).__init__(*args, **kwargs)
         self.ssh = paramiko.SSHClient()
-        self.group_name = self.scope['url_route']['kwargs']['group_name']
         self.server = ServerAssets.objects.select_related('assets').get(id=self.scope['path'].split('/')[3])
         self.host_ip = self.server.assets.asset_management_ip
         self.width = 150
@@ -98,7 +94,10 @@ def __init__(self, *args, **kwargs):
         self.chan = None
 
     def connect(self):
-        self.accept()
+        if self.scope["user"].is_anonymous:
+            self.close(code=1007)
+        else:
+            self.accept()
 
         username = self.server.username
         try:
@@ -122,6 +121,6 @@ def receive(self, text_data=None, bytes_data=None):
     def disconnect(self, close_code):
         try:
             self.t1.record()
+            self.t1.stop()
         finally:
             self.ssh.close()
-            self.t1.stop()
diff --git a/fort/views.py b/fort/views.py
@@ -94,11 +94,11 @@ def terminal(request, server_id, fort_user_id):
             fort_users = gen_fort_users(request.user)
 
             if fort_user_obj in fort_users:
-                group_name = str(uuid.uuid4())
                 remote_ip = request.META.get('REMOTE_ADDR')
                 if fort_user_obj.fort_server.server_protocol == 'ssh':
                     return render(request, 'fort/terminal.html', locals())
                 else:
+                    group_name = str(uuid.uuid4())
                     return render(request, 'fort/guacamole.html', locals())
             else:
                 return HttpResponseForbidden('<h1>403！您无权连接此主机！</h1>')
diff --git a/logs/all.log b/logs/all.log
@@ -1,10 +1,6 @@
-INFO 2019-04-01 16:36:27 _log Connected (version 2.0, client OpenSSH_7.4)
-INFO 2019-04-01 16:36:27 _log Authentication (publickey) successful!
-INFO 2019-04-01 16:36:27 _log [chan 2] Opened sftp connection (server version 3)
-INFO 2019-04-01 16:36:28 _log [chan 3] Opened sftp connection (server version 3)
-INFO 2019-04-01 16:36:28 _log [chan 3] sftp session closed.
-INFO 2019-04-01 17:20:53 _log Connected (version 2.0, client OpenSSH_7.4)
-INFO 2019-04-01 17:20:53 _log Authentication (publickey) successful!
-INFO 2019-04-01 17:20:54 _log [chan 2] Opened sftp connection (server version 3)
-INFO 2019-04-01 17:20:54 _log [chan 3] Opened sftp connection (server version 3)
-INFO 2019-04-01 17:20:54 _log [chan 3] sftp session closed.
+INFO 2019-04-16 16:56:07 _log Connected (version 2.0, client OpenSSH_7.4)
+INFO 2019-04-16 16:56:07 _log Authentication (publickey) failed.
+INFO 2019-04-16 16:56:07 _log Authentication (password) successful!
+INFO 2019-04-16 17:13:54 _log Connected (version 2.0, client OpenSSH_5.3)
+INFO 2019-04-16 17:13:55 _log Authentication (publickey) failed.
+INFO 2019-04-16 17:13:55 _log Authentication (password) successful!
diff --git a/logs/ansible.log b/logs/ansible.log
@@ -1 +1,116 @@
-ERROR 2019-03-06 15:17:34 run_playbook 执行/testops/Ops/media/playbook/2018/12/18/test.yml失败，原因: __init__() missing 1 required positional argument: 'sock'
+ERROR 2019-04-15 14:24:53 run_playbook 执行/testops/Ops/media/playbook/2019/4/15/install_nginx.yml失败，原因: the role 'nginx' was not found in /testops/Ops/media/playbook/2019/4/15/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/testops/Ops/media/playbook/2019/4/15
+
+The error appears to have been in '/testops/Ops/media/playbook/2019/4/15/install_nginx.yml': line 6, column 7, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+  roles:
+    - nginx
+      ^ here
+
+ERROR 2019-04-15 14:25:14 run_playbook 执行/testops/Ops/media/playbook/2019/4/15/install_nginx.yml失败，原因: the role 'nginx' was not found in /testops/Ops/media/playbook/2019/4/15/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/testops/Ops/media/playbook/2019/4/15
+
+The error appears to have been in '/testops/Ops/media/playbook/2019/4/15/install_nginx.yml': line 6, column 7, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+  roles:
+    - nginx
+      ^ here
+
+ERROR 2019-04-15 14:27:10 run_playbook 执行/testops/Ops/media/playbook/2019/4/15/install_nginx.yml失败，原因: the role 'nginx' was not found in /testops/Ops/media/playbook/2019/4/15/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/testops/Ops/media/playbook/2019/4/15
+
+The error appears to have been in '/testops/Ops/media/playbook/2019/4/15/install_nginx.yml': line 6, column 7, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+  roles:
+    - nginx
+      ^ here
+
+ERROR 2019-04-15 14:28:39 run_playbook 执行/testops/Ops/media/playbook/2019/4/15/install_nginx.yml失败，原因: the role 'nginx' was not found in /testops/Ops/media/playbook/2019/4/15/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/testops/Ops/media/playbook/2019/4/15
+
+The error appears to have been in '/testops/Ops/media/playbook/2019/4/15/install_nginx.yml': line 7, column 7, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+  roles:
+    - nginx
+      ^ here
+
+ERROR 2019-04-15 14:33:49 run_playbook 执行/testops/Ops/media/playbook/2019/4/15/install_nginx.yml失败，原因: the role 'nginx' was not found in /testops/Ops/media/playbook/2019/4/15/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/testops/Ops/media/playbook/2019/4/15
+
+The error appears to have been in '/testops/Ops/media/playbook/2019/4/15/install_nginx.yml': line 7, column 7, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+  roles:
+    - nginx
+      ^ here
+
+ERROR 2019-04-15 14:44:59 run_playbook 执行/testops/Ops/media/playbook/2019/4/15/install_nginx.yml失败，原因: the role 'nginx' was not found in /testops/Ops/media/playbook/2019/4/15/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/testops/Ops/media/playbook/2019/4/15
+
+The error appears to have been in '/testops/Ops/media/playbook/2019/4/15/install_nginx.yml': line 6, column 7, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+  roles:
+    - nginx
+      ^ here
+
+ERROR 2019-04-15 14:49:27 run_playbook 执行/testops/Ops/media/playbook/2019/4/15/install_nginx.yml失败，原因: the role 'nginx' was not found in /testops/Ops/media/playbook/2019/4/15/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/testops/Ops/media/playbook/2019/4/15
+
+The error appears to have been in '/testops/Ops/media/playbook/2019/4/15/install_nginx.yml': line 6, column 7, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+  roles:
+    - nginx
+      ^ here
+
+ERROR 2019-04-15 14:55:32 run_playbook 执行/testops/Ops/media/playbook/2018/12/18/tomcat.yml失败，原因: the role 'tomcat' was not found in /testops/Ops/media/playbook/2018/12/18/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/testops/Ops/media/playbook/2018/12/18
+
+The error appears to have been in '/testops/Ops/media/playbook/2018/12/18/tomcat.yml': line 7, column 7, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+  roles:
+    - tomcat
+      ^ here
+
+ERROR 2019-04-15 15:02:03 run_playbook 执行/testops/Ops/media/playbook/2019/4/15/install_nginx.yml失败，原因: the role 'nginx' was not found in /testops/Ops/media/playbook/2019/4/15/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/testops/Ops/media/playbook/2019/4/15
+
+The error appears to have been in '/testops/Ops/media/playbook/2019/4/15/install_nginx.yml': line 6, column 7, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+  roles:
+    - nginx
+      ^ here
+
+ERROR 2019-04-15 17:47:08 run_playbook 执行/testops/Ops/media/playbook/2019/4/15/install_nginx.yml失败，原因: Syntax Error while loading YAML.
+
+
+The error appears to have been in '/usr/share/ansible/roles/nginx/defaults/main.yml': line 68, column 3, but may
+be elsewhere in the file depending on the exact syntax problem.
+
+The offending line appears to be:
+
+nginx_upstreams: []
+  - name: myapp1
+  ^ here
+
+exception type: <class 'yaml.parser.ParserError'>
+exception: while parsing a block mapping
+  in "<unicode string>", line 3, column 1
+did not find expected key
+  in "<unicode string>", line 68, column 3
diff --git a/task/utils/ansible_api_v2.py b/task/utils/ansible_api_v2.py
@@ -44,7 +44,7 @@ def v2_runner_on_unreachable(self, result):
         else:
             data = '<code style="color: #FF0000">\n{host} | unreachable >> \n{stdout}\n</code>'.format(
                 host=result._host.name,
-                stdout=json.dumps(result._result, indent=4))
+                stdout=json.dumps(result._result, indent=4, ensure_ascii=False))
         if self.sock:
             self.sock.send(data)
         self.module_results.append(data)
@@ -53,19 +53,19 @@ def v2_runner_on_ok(self, result, *args, **kwargs):
         if 'rc' in result._result and 'stdout' in result._result:
             data = '<code style="color: #008000">\n{host} | success | rc={rc} >> \n{stdout}\n</code>'.format(
                 host=result._host.name, rc=result._result.get('rc'),
-                stdout=result._result.get('stdout'))
+                stdout=result._result.get('stdout').encode().decode('utf-8'))
         elif 'results' in result._result and 'rc' in result._result:
             data = '<code style="color: #008000">\n{host} | success | rc={rc} >> \n{stdout}\n</code>'.format(
                 host=result._host.name, rc=result._result.get('rc'),
-                stdout=result._result.get('results')[0])
+                stdout=result._result.get('results')[0].encode().decode('utf-8'))
         elif 'module_stdout' in result._result and 'rc' in result._result:
             data = '<code style="color: #008000">\n{host} | success | rc={rc} >> \n{stdout}\n</code>'.format(
                 host=result._host.name, rc=result._result.get('rc'),
                 stdout=result._result.get('module_stdout').encode().decode('utf-8'))
         else:
             data = '<code style="color: #008000">\n{host} | success >> \n{stdout}\n</code>'.format(
                 host=result._host.name,
-                stdout=json.dumps(result._result, indent=4))
+                stdout=json.dumps(result._result, indent=4, ensure_ascii=False))
         if self.sock:
             self.sock.send(data)
         self.module_results.append(data)
@@ -84,7 +84,7 @@ def v2_runner_on_failed(self, result, *args, **kwargs):
         else:
             data = '<code style="color: #FF0000">\n{host} | failed >> \n{stdout}\n</code>'.format(
                 host=result._host.name,
-                stdout=json.dumps(result._result, indent=4))
+                stdout=json.dumps(result._result, indent=4, ensure_ascii=False))
         if self.sock:
             self.sock.send(data)
         self.module_results.append(data)
diff --git a/templates/assets/ssh_terminal.html b/templates/assets/ssh_terminal.html
@@ -68,7 +68,7 @@
 <script src="{% static 'jquery-confirm/dist/jquery-confirm.min.js' %}"></script>
 <script>
     let ws_scheme = window.location.protocol === "https:" ? "wss" : "ws";
-    let socket = new WebSocket(ws_scheme + '://' + window.location.host + '/ws/webssh/{{ pk }}/{{ group_name }}/?' + '{{ remote_ip }}');
+    let socket = new WebSocket(ws_scheme + '://' + window.location.host + '/ws/webssh/{{ pk }}/?' + '{{ remote_ip }}');
     socket.onopen = function () {
         $("#terms").css("height", document.documentElement.clientHeight - 50);
         const term = new Terminal({
diff --git a/templates/fort/terminal.html b/templates/fort/terminal.html
@@ -67,7 +67,7 @@
 <script>
 
     let ws_scheme = window.location.protocol === "https:" ? "wss" : "ws";
-    let socket = new WebSocket(ws_scheme + '://' + window.location.host + '/ws/fortssh/{{ server_id }}/{{ fort_user_id }}/{{ group_name }}/?' + '{{ remote_ip }}');
+    let socket = new WebSocket(ws_scheme + '://' + window.location.host + '/ws/fortssh/{{ server_id }}/{{ fort_user_id }}/?' + '{{ remote_ip }}');
 
     socket.onopen = function () {
         $("#terms").css("height", document.documentElement.clientHeight - 50);
@@ -170,4 +170,4 @@
     });
 </script>
 
-</html>
+</html>
