42d1420f9c
[Phase 0 Reset]
- 清除舊版 app/、alembic/versions/、雜亂測試腳本
- 新 requirements.txt (移除 caldav/redis/keycloak-lib,加入 apscheduler/croniter/docker/paramiko/ping3/dnspython)
[Phase 1 資料庫]
- 9 張資料表 SQLAlchemy Models:tenants / accounts / schedules / schedule_logs /
tenant_schedule_results / account_schedule_results / servers / server_status_logs / system_status_logs
- Alembic migration 001_create_all_tables (已套用到 10.1.0.20:5433/virtual_mis)
- seed.py:schedules 初始 3 筆 / servers 初始 4 筆
[Phase 2 CRUD API]
- GET/POST/PUT/DELETE: /api/v1/tenants / accounts / servers / schedules
- /api/v1/system-status
- 帳號編碼自動產生 (prefix + seq_no 4碼左補0)
- 燈號 (lights) 從最新排程結果取得
[Phase 3 Watchdog]
- APScheduler interval 3分鐘,原子 UPDATE status=Going 防重複執行
- 手動觸發 API: POST /api/v1/schedules/{id}/run
[Phase 4 Service Clients]
- KeycloakClient:vmis-admin realm,REST API (不用 python-keycloak)
- MailClient:Docker Mailserver @ 10.1.0.254:8080,含 MX DNS 驗證
- DockerClient:docker-py 本機 + paramiko SSH 遠端 compose
- NextcloudClient:OCS API user/quota
- SystemChecker:功能驗證 (traefik routers>0 / keycloak token / SMTP EHLO / DB SELECT 1 / ping)
[TDD]
- 37 tests / 37 passed (2.11s)
- SQLite in-memory + StaticPool,無需外部 DB
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
82 lines
2.6 KiB
Python
82 lines
2.6 KiB
Python
"""
|
|
MailClient — 呼叫 Docker Mailserver Admin API (http://10.1.0.254:8080)
|
|
管理 mail domain 和 mailbox 的建立/查詢。
|
|
建立 domain 前必須驗證 MX DNS 設定(對 active 租戶)。
|
|
"""
|
|
import logging
|
|
from typing import Optional
|
|
import httpx
|
|
import dns.resolver
|
|
|
|
from app.core.config import settings
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
TIMEOUT = 10.0
|
|
|
|
|
|
class MailClient:
|
|
def __init__(self):
|
|
self._base = settings.MAIL_ADMIN_API_URL.rstrip("/")
|
|
self._headers = {"X-API-Key": settings.MAIL_ADMIN_API_KEY}
|
|
|
|
def check_mx_dns(self, domain: str) -> bool:
|
|
"""驗證 domain 的 MX record 是否指向正確的 mail server"""
|
|
try:
|
|
answers = dns.resolver.resolve(domain, "MX")
|
|
for rdata in answers:
|
|
if settings.MAIL_MX_HOST in str(rdata.exchange).rstrip("."):
|
|
return True
|
|
return False
|
|
except Exception as e:
|
|
logger.warning(f"MX DNS check failed for {domain}: {e}")
|
|
return False
|
|
|
|
def domain_exists(self, domain: str) -> bool:
|
|
try:
|
|
resp = httpx.get(
|
|
f"{self._base}/api/v1/domains/{domain}",
|
|
headers=self._headers,
|
|
timeout=TIMEOUT,
|
|
)
|
|
return resp.status_code == 200
|
|
except Exception:
|
|
return False
|
|
|
|
def create_domain(self, domain: str) -> bool:
|
|
try:
|
|
resp = httpx.post(
|
|
f"{self._base}/api/v1/domains",
|
|
json={"domain": domain},
|
|
headers=self._headers,
|
|
timeout=TIMEOUT,
|
|
)
|
|
return resp.status_code in (200, 201, 204)
|
|
except Exception as e:
|
|
logger.error(f"create_domain({domain}) failed: {e}")
|
|
return False
|
|
|
|
def mailbox_exists(self, email: str) -> bool:
|
|
try:
|
|
resp = httpx.get(
|
|
f"{self._base}/api/v1/mailboxes/{email}",
|
|
headers=self._headers,
|
|
timeout=TIMEOUT,
|
|
)
|
|
return resp.status_code == 200
|
|
except Exception:
|
|
return False
|
|
|
|
def create_mailbox(self, email: str, password: Optional[str], quota_gb: int = 20) -> bool:
|
|
try:
|
|
resp = httpx.post(
|
|
f"{self._base}/api/v1/mailboxes",
|
|
json={"email": email, "password": password or "", "quota": quota_gb},
|
|
headers=self._headers,
|
|
timeout=TIMEOUT,
|
|
)
|
|
return resp.status_code in (200, 201, 204)
|
|
except Exception as e:
|
|
logger.error(f"create_mailbox({email}) failed: {e}")
|
|
return False
|