Revision 611f5bff
Added by Amos Benari over 11 years ago
- ID 611f5bff49c1f06ae9ad0dd42b7566df9a02af2f
| app/models/host.rb | ||
|---|---|---|
|
belongs_to :sp_subnet, :class_name => "Subnet"
|
||
|
belongs_to :compute_resource
|
||
|
belongs_to :image
|
||
|
|
||
|
belongs_to :location
|
||
|
belongs_to :organization
|
||
|
|
||
|
has_one :token, :dependent => :destroy, :conditions => Proc.new {"expires >= '#{Time.now.utc.to_s(:db)}'"}
|
||
|
|
||
|
has_many :lookup_values, :finder_sql => Proc.new { normalize_hostname; %Q{ SELECT lookup_values.* FROM lookup_values WHERE (lookup_values.match = 'fqdn=#{fqdn}') } }, :dependent => :destroy
|
||
| ... | ... | |
|
include HostCommon
|
||
|
|
||
|
class Jail < ::Safemode::Jail
|
||
|
allow :name, :diskLayout, :puppetmaster, :puppet_ca_server, :operatingsystem, :os, :environment, :ptable, :hostgroup, :url_for_boot,
|
||
|
:params, :info, :hostgroup, :compute_resource, :domain, :ip, :mac, :shortname, :architecture, :model, :certname, :capabilities,
|
||
|
:provider, :subnet, :token
|
||
|
allow :name, :diskLayout, :puppetmaster, :puppet_ca_server, :operatingsystem, :os, :environment, :ptable, :hostgroup, :location,
|
||
|
:organization, :url_for_boot, :params, :info, :hostgroup, :compute_resource, :domain, :ip, :mac, :shortname, :architecture,
|
||
|
:model, :certname, :capabilities, :provider, :subnet, :token
|
||
|
end
|
||
|
|
||
|
attr_reader :cached_host_params
|
||
|
|
||
|
default_scope lambda {
|
||
|
org = Organization.current
|
||
|
loc = Location.current
|
||
|
conditions = {}
|
||
|
conditions[:organization_id] = org.id if org
|
||
|
conditions[:location_id] = loc.id if loc
|
||
|
where(conditions)
|
||
|
}
|
||
|
|
||
|
scope :recent, lambda { |*args| {:conditions => ["last_report > ?", (args.first || (Setting[:puppet_interval] + 5).minutes.ago)]} }
|
||
|
scope :out_of_sync, lambda { |*args| {:conditions => ["last_report < ? and enabled != ?", (args.first || (Setting[:puppet_interval] + 5).minutes.ago), false]} }
|
||
|
|
||
| ... | ... | |
|
domain_conditions = sanitize_sql_for_conditions([" (hosts.domain_id in (?))",dms = (user.domains).map(&:id)])
|
||
|
compute_resource_conditions = sanitize_sql_for_conditions([" (hosts.compute_resource_id in (?))",(crs = user.compute_resources).map(&:id)])
|
||
|
hostgroup_conditions = sanitize_sql_for_conditions([" (hosts.hostgroup_id in (?))",(hgs = user.hostgroups).map(&:id)])
|
||
|
organization_conditions = sanitize_sql_for_conditions([" (hosts.organization_id in (?))",orgs = (user.organizations).map(&:id)])
|
||
|
location_conditions = sanitize_sql_for_conditions([" (hosts.location_id in (?))",locs = (user.locations).map(&:id)])
|
||
|
|
||
|
fact_conditions = ""
|
||
|
for user_fact in (ufs = user.user_facts)
|
||
| ... | ... | |
|
(conditions = (user.compute_resources_andor == "and") ? "(#{conditions}) and #{compute_resource_conditions} " : "#{conditions} or #{compute_resource_conditions} ") unless crs.empty?
|
||
|
(conditions = (user.hostgroups_andor == "and") ? "(#{conditions}) and #{hostgroup_conditions} " : "#{conditions} or #{hostgroup_conditions} ") unless hgs.empty?
|
||
|
(conditions = (user.facts_andor == "and") ? "(#{conditions}) and #{fact_conditions} " : "#{conditions} or #{fact_conditions} ") unless ufs.empty?
|
||
|
(conditions = (user.organizations_andor == "and") ? "(#{conditions}) and #{organization_conditions} " : "#{conditions} or #{organization_conditions} ") unless orgs.empty?
|
||
|
(conditions = (user.locations_andor == "and") ? "(#{conditions}) and #{location_conditions} " : "#{conditions} or #{location_conditions} ") unless locs.empty?
|
||
|
conditions.sub!(/\s*\(\)\s*/, "")
|
||
|
conditions.sub!(/^(?:\(\))?\s?(?:and|or)\s*/, "")
|
||
|
conditions.sub!(/\(\s*(?:or|and)\s*\(/, "((")
|
||
Also available in: Unified diff
Add organization and location to foreman.
This feature allows foreman to provide multi location, multi tenant and
multi organizations capablities.
the idea is that resources within foreman (e.g. hosts, subnets, users,
environments etc) can belong to one or more locations and organization,
effectivily hidding resources from users.
Organization may contain multiple locations, and Locations can belong
to multiple Organization, this is an extermily flexiable design,
however, it is up to the user to allocate the resources across the
organizations and locations.
When creating new hosts, the resources that can be consumed are only
resources in which exists in both the currently used organization and location.
fixes #1578
fixes #1593