mnl/VM-Operator
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages 4 Wiki Activity Actions

Extend accessibility check.

Browse source
This commit is contained in:
Michael Lipp 2025-03-04 09:00:13 +01:00
parent dfe3038463
commit 28b1903acc
4 changed files with 30 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

30
org.jdrupes.vmoperator.common/src/org/jdrupes/vmoperator/common/VmDefinition.java
View file

@ -377,10 +377,34 @@ public class VmDefinition extends K8sDynamicModel {
* @param permissions the permissions * @param permissions the permissions
* @return true, if successful * @return true, if successful
*/ */
@SuppressWarnings("PMD.SimplifyBooleanReturns")
public boolean consoleAccessible(String user, Set<Permission> permissions) { public boolean consoleAccessible(String user, Set<Permission> permissions) {
return !conditionStatus("ConsoleConnected").orElse(true) // If user has takeConsole permission, console is always accessible
|| consoleUser().map(cu -> cu.equals(user)).orElse(true) if (permissions.contains(VmDefinition.Permission.TAKE_CONSOLE)) {
|| permissions.contains(VmDefinition.Permission.TAKE_CONSOLE); return true;
}
// Check if an automatic login is requested. If so, allow access only
// if the log in has been established
var wantedLogIn = DataPath.<String> get(spec(), "vm", "display",
"loggedInUser").orElse(null);
if (wantedLogIn != null
&& !wantedLogIn.equals(status().get(Status.LOGGED_IN_USER))) {
return false;
}
// If the console is not in use, allow access
if (!conditionStatus("ConsoleConnected").orElse(true)) {
return true;
}
// If the console is in use by the user, allow access
if (consoleUser().map(cu -> cu.equals(user)).orElse(true)) {
return true;
}
// Else deny access
return false;
} }
/** /**

2
org.jdrupes.vmoperator.vmaccess/resources/org/jdrupes/vmoperator/vmaccess/l10n.properties
View file

@ -5,5 +5,5 @@ okayLabel = Apply and Close
confirmResetTitle = Confirm reset confirmResetTitle = Confirm reset
confirmResetMsg = Resetting the VM may cause loss of data. \ confirmResetMsg = Resetting the VM may cause loss of data. \
Please confirm to continue. Please confirm to continue.
consoleTakenNotification = Console access is locked by another user. consoleInaccessibleNotification = Console is not ready or in use.
poolEmptyNotification = No VM available. Please consult your administrator. poolEmptyNotification = No VM available. Please consult your administrator.

2
org.jdrupes.vmoperator.vmaccess/resources/org/jdrupes/vmoperator/vmaccess/l10n_de.properties
View file

@ -11,7 +11,7 @@ Open\ console = Konsole anzeigen
confirmResetTitle = Zurücksetzen bestätigen confirmResetTitle = Zurücksetzen bestätigen
confirmResetMsg = Zurücksetzen der VM kann zu Datenverlust führen. \ confirmResetMsg = Zurücksetzen der VM kann zu Datenverlust führen. \
Bitte bestätigen um fortzufahren. Bitte bestätigen um fortzufahren.
consoleTakenNotification = Die Konsole wird von einem anderen Benutzer verwendet. consoleInaccessibleNotification = Die Konsole ist nicht bereit oder belegt.
poolEmptyNotification = Keine VM verfügbar. Wenden Sie sich bitte an den \ poolEmptyNotification = Keine VM verfügbar. Wenden Sie sich bitte an den \
Systemadministrator. Systemadministrator.

2
org.jdrupes.vmoperator.vmaccess/src/org/jdrupes/vmoperator/vmaccess/VmAccess.java
View file

@ -804,7 +804,7 @@ public class VmAccess extends FreeMarkerConlet<VmAccess.ResourceModel> {
.map(ConsoleUser::getName).orElse(""); .map(ConsoleUser::getName).orElse("");
if (!vmDef.consoleAccessible(user, perms)) { if (!vmDef.consoleAccessible(user, perms)) {
channel.respond(new DisplayNotification( channel.respond(new DisplayNotification(
resourceBundle.getString("consoleTakenNotification"), resourceBundle.getString("consoleInaccessibleNotification"),
Map.of("autoClose", 5_000, "type", "Warning"))); Map.of("autoClose", 5_000, "type", "Warning")));
return; return;
} }