ok
Direktori : /opt/imunify360/venv/lib/python3.11/site-packages/imav/migrations/ |
Current File : //opt/imunify360/venv/lib/python3.11/site-packages/imav/migrations/008_subscription_permissions.py |
""" This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see <https://www.gnu.org/licenses/>. Copyright © 2019 Cloud Linux Software Inc. This software is also available under ImunifyAV commercial license, see <https://www.imunify360.com/legal/eula> """ import logging from peewee import Model, SqliteDatabase from defence360agent.feature_management.constants import FULL from imav.migration_utils.other import skip_for_im360 from imav.migration_utils.revisium import ( find_revisium_db, get_all_domains, get_permission_status, ) logger = logging.getLogger(__name__) CLEANUP_ALLOWED_PERM_NAME = "ra_cleanup_allowed" ra = SqliteDatabase(None) class db: FeatureManagementPermissions: Model @classmethod def init(cls, migrator): cls.FeatureManagementPermissions = migrator.orm[ "feature_management_permissions" ] def get_imav_permission_map() -> dict: """ {"user123": False, "user345": True, ..} """ user_imav_cleanup_perm = {} try: all_domains = get_all_domains() except Exception as e: logger.warning("Failed to get Plesk domains: %r", e) return user_imav_cleanup_perm for domain_info in all_domains.values(): if (owner := domain_info.get("owner")) is None: # skip a domain without an owner because it's an alias # and doesn't have its own files continue try: imav_cleanup_allowed = get_permission_status( domain_info["id"], CLEANUP_ALLOWED_PERM_NAME ) except Exception as e: logger.warning( "Failed to get permission status for domain: %s Error: %s", str(domain_info["name"]), str(e), ) continue user_imav_cleanup_perm[owner] = imav_cleanup_allowed return user_imav_cleanup_perm @skip_for_im360 def migrate(migrator, database, fake=False, **kwargs): if fake: return revisium_db_path = find_revisium_db() if revisium_db_path is None: logger.info("No legacy ImunifyAV database found. Skipping...") return try: imav_permission_map = get_imav_permission_map() except Exception as e: logger.warning( "Cannot obtain permissions map for migration, Error: %s", str(e), ) return if not imav_permission_map: logger.info("No users to migrate AV cleanup permissions") return db.init(migrator) for username, status in imav_permission_map.items(): try: feature_perms, _ = db.FeatureManagementPermissions.get_or_create( user=username ) if status: feature_perms.av = FULL feature_perms.save() except Exception as e: logger.warning( "Failed to update feature permissions for user: %s, Error: %s", username, str(e), ) continue @skip_for_im360 def rollback(migrator, database, fake=False, **kwargs): pass