shaba/awx
1
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2024-11-01 16:51:11 +03:00
Code Releases Activity

Initial Database Configuration bootstrap

Browse Source 
* Settings manifest, mapping internal settings to what can be used in
  the database along with type information etc.
* Initial Database model
* Helper object that overlays database settings on django settings
This commit is contained in:
Matthew Jones 2015-12-07 09:49:13 -05:00
parent 7bff586c4d
commit fdcda43de6
3 changed files with 224 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
awx/main/conf.py Normal file
View File

@ -0,0 +1,40 @@
# Copyright (c) 2015 Ansible, Inc..
# All Rights Reserved.
import json
from django.conf import settings as django_settings
from awx.main.models.configuration import TowerSettings
class TowerSettings(object):
def __getattr__(self, key):
ts = TowerSettings.objects.filter(key=name)
if not ts.exists:
return getattr(django_settings, key)
ts = ts[0]
if ts.value_type == 'json':
converted_type = json.loads(ts.value)
elif ts.value_type == 'password':
converted_type = ts.value
elif ts.value_type == 'list':
converted_type = [x.strip() for x in a.split(',')]
else:
t = getattr(__builtin__, ts.value_type)
converted_type = t(ts.value)
return converted_type
def create(key, value):
settings_manifest = django_settings.TOWER_SETTINGS_MANIFEST
if key not in settings_manifest:
raise AttributeError("Tower Setting with key '{0}' does not exist".format(key))
settings_entry = settings_manifest[key]
setting_actual = TowerSettings.objects.filter(key=key)
if not settings_actual.exists():
settings_actual = TowerSettings(key=key,
description=settings_entry['description'],
category=settings_entry['category'],
value=value,
value_type=settings_entry['type'])
else:
settings_actual['value'] = value
settings_actual.save()

42
awx/main/models/configuration.py Normal file
View File

@ -0,0 +1,42 @@
# Copyright (c) 2015 Ansible, Inc.
# All Rights Reserved.
# Python
# Django
from django.conf import settings
from django.db import models
# Tower
from awx.main.models.base import CreatedModifiedModel
class TowerSettings(CreatedModifiedModel):
SETTINGS_TYPE_CHOICES = [
('string', "String"),
('int', 'Integer'),
('float', 'Decimal'),
('json', 'JSON'),
('password', 'Password'),
('list', 'List')
]
key = models.CharField(
max_length=255,
unique=True
)
description = models.TextField()
category = models.CharField(max_length=128)
value = models.TextField()
value_type = models.CharField(
max_length=12,
choices=SETTINGS_TYPE_CHOICES
)
user = models.ForeignKey(
'auth.User',
related_name='settings',
default=None,
null=True,
editable=False,
)

142
awx/settings/defaults.py
View File

@ -681,6 +681,148 @@ FACT_CACHE_PORT = 6564
ORG_ADMINS_CAN_SEE_ALL_USERS = True ORG_ADMINS_CAN_SEE_ALL_USERS = True
TOWER_SETTINGS_MANIFEST = {
"PROJECTS_ROOT": {
"name": "Projects Root Directory",
"description": "Directory to store synced projects in and to look for manual projects",
"default": PROJECTS_ROOT,
"type": "string",
"category": "jobs",
},
"JOBOUTPUT_ROOT": {
"name": "Job Standard Output Directory",
"description": "Directory to store job standard output files",
"default": JOBOUTPUT_ROOT,
"type": "string",
"category": "jobs",
},
"SCHEDULE_MAX_JOBS": {
"name": "Maximum Scheduled Jobs",
"description": "Maximum number of the same job template that can be waiting to run when launching from a schedule before no more are created",
"default": SCHEDULE_MAX_JOBS,
"type": "int",
"category": "jobs",
},
"STDOUT_MAX_BYTES_DISPLAY": {
"name": "Standard Output Maximum Display Size",
"description": "Maximum Size of Standard Output in bytes to display before requiring the output be downloaded",
"default": STDOUT_MAX_BYTES_DISPLAY,
"type": "int",
"category": "jobs",
},
"AUTH_TOKEN_EXPIRATION": {
"name": "Idle Time Force Log Out",
"description": "Number of seconds that a user is inactive before they will need to login again",
"type": "int",
"default": AUTH_TOKEN_EXPIRATION,
"category": "authentication",
},
"AUTH_TOKEN_PER_USER": {
"name": "Maximum number of simultaneous logins",
"description": "Maximum number of simultaneous logins a user may have. To disable enter -1",
"type": "int",
"default": AUTH_TOKEN_PER_USER,
"category": "authentication",
},
"AUTH_BASIC_ENABLED": {
"name": "Enable HTTP Basic Auth",
"description": "Enable HTTP Basic Auth for the API Browser",
"default": AUTH_BASIC_ENABLED,
"type": "bool"
"category": "authentication",
},
"AUTH_LDAP_SERVER_URI": {
"name": "LDAP Server URI",
"description": "URI Location of the LDAP Server",
"default": AUTH_LDAP_SERVER_URI,
"type": "string",
"category": "authentication",
},
"RADIUS_SERVER": {
"name": "Radius Server Host",
"description": "Host to communicate with for Radius Authentication",
"default": RADIUS_SERVER,
"type": "string",
"category": "authentication",
},
"RADIUS_PORT": {
"name": "Radius Server Port",
"description": "Port on the Radius host for Radius Authentication"s,
"default": RADIUS_PORT,
"type": "string",
"category": "authentication",
},
"RADIUS_SECRET": {
"name": "Radius Server Secret",
"description": "Secret used when negotiating with the Radius server",
"default": RADIUS_SECRET,
"type": "string",
"category": "authentication",
},
"AWX_PROOT_ENABLED": {
"name": "Enable PRoot for Job Execution",
"description": "Isolates an Ansible job from protected parts of the Tower system to prevent exposing sensitive information",
"default": AWX_PROOT_ENABLED,
"type": "bool",
"category": "jobs",
},
"AWX_PROOT_HIDE_PATHS": {
"name": "Paths to hide from PRoot jobs",
"description": "Extra paths to hide from PRoot isolated processes",
"default": AWX_PROOT_HIDE_PATHS,
"type": "list",
"category": "jobs",
},
"AWX_PROOT_SHOW_PATHS": {
"name": "Paths to expose to PRoot jobs",
"description": "Explicit whitelist of paths to expose to PRoot jobs",
"default": AWX_PROOT_SHOW_PATHS,
"type": "list",
"category": "jobs",
},
"AWX_PROOT_BASE_PATH": {
"name": "Base PRoot execution path",
"description": "The location that PRoot will create its temporary working directory",
"default": AWX_PROOT_BASE_PATH,
"type": "string",
"category": "jobs",
},
"AWX_ANSIBLE_CALLBACK_PLUGINS": {
"name": "Ansible Callback Plugins",
"description": "Extra Callback Plugins to be used when running jobs",
"default": AWX_ANSIBLE_CALLBACK_PLUGINS,
"type": "string",
"category": "jobs",
},
"PENDO_TRACKING_STATE": {
"name": "Analytics Tracking State",
"description": "Enable or Disable Analytics Tracking",
"default": PENDO_TRACKING_STATE,
"type": "string",
"category": "ui",
},
"AD_HOC_COMMANDS": {
"name": "Ansible Modules Allowed for Ad Hoc Jobs",
"description": "A colon-seperated whitelist of modules allowed to be used by ad-hoc jobs",
"default": AD_HOC_COMMANDS,
"type": "list",
"category": "jobs",
},
"ACTIVITY_STREAM_ENABLED": {
"name": "Enable Activity Stream",
"description": "Enable capturing activity for the Tower activity stream",
"default": ACTIVITY_STREAM_ENABLED,
"type": "bool",
"category": "system",
},
"ORG_ADMINS_CAN_SEE_ALL_USERS": {
"name": "All Users Visible to Organization Admins",
"description": "Controls whether any Organization Admin can view all users, even those not associated with their Organization",
"default": ORG_ADMINS_CAN_SEE_ALL_USERS,
"type": "bool",
"category": "system",
},
}
# Logging configuration. # Logging configuration.
LOGGING = { LOGGING = {
'version': 1, 'version': 1,