python--第二十四天总结

CMDB介绍

CMDB --Configuration Management Database 配置管理数据库, CMDB存储与管理企业IT架构中设备的各种配置信息，它与所有服务支持和服务交付流程都紧密相联，支持这些流程的运转、发挥配置信息的价值，同时依赖于相关流程保证数据的准确性。

在实际的项目中，CMDB常常被认为是构建其它ITIL流程的基础而优先考虑，ITIL项目的成败与是否成功建立CMDB有非常大的关系。

70%～80%的IT相关问题与环境的变更有着直接的关系。实施变更管理的难点和重点并不是工具，而是流程。即通过一个自动化的、可重复的流程管理变更，使得当变更发生的时候，有一个标准化的流程去执行，能够预测到这个变更对整个系统管理产生的影响，并对这些影响进行评估和控制。而变更管理流程自动化的实现关键就是CMDB。

CMDB工具中至少包含这几种关键的功能：整合、调和、同步、映射和可视化。

整合是指能够充分利用来自其他数据源的信息，对CMDB中包含的记录源属性进行存取，将多个数据源合并至一个视图中，生成连同来自CMDB和其他数据源信息在内的报告；
调和能力是指通过对来自每个数据源的匹配字段进行对比，保证CMDB中的记录在多个数据源中没有重复现象，维持CMDB中每个配置项目数据源的完整性；自动调整流程使得初始实施、数据库管理员的手动运作和现场维护支持工作降至最低；
同步指确保CMDB中的信息能够反映联合数据源的更新情况，在联合数据源更新频率的基础上确定CMDB更新日程，按照经过批准的变更来更新 CMDB，找出未被批准的变更；
应用映射与可视化，说明应用间的关系并反应应用和其他组件之间的依存关系，了解变更造成的影响并帮助诊断问题。

CMDB 资产管理部分实现

需求

•存储所有IT资产信息
•数据可手动添加
•硬件信息可自动收集
•硬件信息可自动变更
•可对其它系统灵活开放API
•API接口安全认证

立业之本：定义表结构

各种硬件都能存
资产变更有纪录
资产ID永不变
资产要有状态机

重中之重：接口设计好

可对内外灵活开放接口
接口定义要标准化
一定要提供排错依据
数据返回要标准
要能增删改查
所有异常要抓住
接口安全要注意

CMDB资产数据自动汇报及更新流程图

https://www.processon.com/view/link/571b4b2ce4b049474cc87feb

自定义用户认证

https://docs.djangoproject.com/en/1.9/topics/auth/customizing/#django.contrib.auth.models.PermissionsMixin.has_perms

user_models.py

#!/usr/bin/env python

#_*_ coding:utf-8 _*_

from django.db import models

from django.contrib.auth.models import (

    BaseUserManager, AbstractBaseUser

)

class UserProfileManager(BaseUserManager):

    def create_user(self, email, name, password=None):

        """

        Creates and saves a User with the given email, date of

        birth and password.

        """

        if not email:

            raise ValueError('Users must have an email address')

        user = self.model(

            email=self.normalize_email(email),

            name=name,

        )

        user.set_password(password)

        user.save(using=self._db)

        return user

    def create_superuser(self, email, name, password):

        """

        Creates and saves a superuser with the given email, date of

        birth and password.

        """

        user = self.create_user(email,

            password=password,

            name=name

        )

        user.is_admin = True

        user.save(using=self._db)

        return user

class UserProfile(AbstractBaseUser):

    email = models.EmailField(

        verbose_name='email address',

        max_length=255,

        unique=True,

    )

    name = models.CharField(u'名字',max_length=32)

    is_active = models.BooleanField(default=True)

    is_admin = models.BooleanField(default=False)

    objects = UserProfileManager()

    USERNAME_FIELD = 'email'

    REQUIRED_FIELDS = ['name']

    def get_full_name(self):

        # The user is identified by their email address

        return self.email

    def get_short_name(self):

        # The user is identified by their email address

        return self.email

    def __str__(self):              # __unicode__ on Python 2

        return self.email

    def has_perm(self, perm, obj=None):

        "Does the user have a specific permission?"

        # Simplest possible answer: Yes, always

        return True

    def has_module_perms(self, app_label):

        "Does the user have permissions to view the app `app_label`?"

        # Simplest possible answer: Yes, always

        return True

    @property

    def is_staff(self):

        "Is the user a member of staff?"

        # Simplest possible answer: All admins are staff

        return self.is_admin

    class Meta:

        verbose_name = u'用户信息'

        verbose_name_plural = u"用户信息"

    def __unicode__(self):

        return self.name

----------------------------------

user_admin_models.py

#!/usr/bin/env python

#_*_ coding:utf-8 _*_

from django import forms

from django.contrib import admin

from django.contrib.auth.models import Group

from django.contrib.auth.admin import UserAdmin as BaseUserAdmin

from django.contrib.auth.forms import ReadOnlyPasswordHashField

from assets.user_models import UserProfile

class UserCreationForm(forms.ModelForm):

    """A form for creating new users. Includes all the required

    fields, plus a repeated password."""

    password1 = forms.CharField(label='Password', widget=forms.PasswordInput)

    password2 = forms.CharField(label='Password confirmation', widget=forms.PasswordInput)

    class Meta:

        model = UserProfile

        fields = ('email', 'name')

    def clean_password2(self):

        # Check that the two password entries match

        password1 = self.cleaned_data.get("password1")

        password2 = self.cleaned_data.get("password2")

        if password1 and password2 and password1 != password2:

            raise forms.ValidationError("Passwords don't match")

        return password2

    def save(self, commit=True):

        # Save the provided password in hashed format

        user = super(UserCreationForm, self).save(commit=False)

        user.set_password(self.cleaned_data["password1"])

        if commit:

            user.save()

        return user

class UserChangeForm(forms.ModelForm):

    """A form for updating users. Includes all the fields on

    the user, but replaces the password field with admin's

    password hash display field.

    """

    password = ReadOnlyPasswordHashField()

    class Meta:

        model = UserProfile

        fields = ('email', 'password', 'name', 'is_active', 'is_admin')

    def clean_password(self):

        # Regardless of what the user provides, return the initial value.

        # This is done here, rather than on the field, because the

        # field does not have access to the initial value

        return self.initial["password"]

class UserAdmin(BaseUserAdmin):

    # The forms to add and change user instances

    form = UserChangeForm

    add_form = UserCreationForm

    # The fields to be used in displaying the User model.

    # These override the definitions on the base UserAdmin

    # that reference specific fields on auth.User.

    list_display = ('email', 'name', 'is_admin')

    list_filter = ('is_admin',)

    fieldsets = (

        (None, {'fields': ('email', 'password')}),

        ('Personal info', {'fields': ('name',)}),

        ('Permissions', {'fields': ('is_admin',)}),

    )

    # add_fieldsets is not a standard ModelAdmin attribute. UserAdmin

    # overrides get_fieldsets to use this attribute when creating a user.

    add_fieldsets = (

        (None, {

            'classes': ('wide',),

            'fields': ('email', 'name', 'password1', 'password2')}

        ),

    )

    search_fields = ('email',)

    ordering = ('email',)

    filter_horizontal = ()

浅谈Restful API

理解RESTful架构 :http://www.ruanyifeng.com/blog/2011/09/restful

RESTful API 设计指南:http://www.ruanyifeng.com/blog/2014/05/restful_api.html　　

如何实现安全的WEB API 接口认证？

MadKing开源CMDB源码

https://github.com/triaquae/MadKing