##// END OF EJS Templates
deps: bumped pycryptodome==3.21.0 for security issue
deps: bumped pycryptodome==3.21.0 for security issue

File last commit:

r5619:c9e499e7 default
r5640:acc4336c default
Show More
server_api.py
463 lines | 13.4 KiB | text/x-python | PythonLexer
core: updated copyright to 2024
r5608 # Copyright (C) 2011-2024 RhodeCode GmbH
project: added all source files and assets
r1 #
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU Affero General Public License, version 3
# (only), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU Affero General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#
# This program is dual-licensed. If you wish to learn more about the
# RhodeCode Enterprise Edition, including its added features, Support services,
# and proprietary license terms, please see https://rhodecode.com/licenses/
import logging
api: add get_method API call....
r1417 import itertools
API: added basic upload api for the file storage
r3437
api: add get_method API call....
r1417 from rhodecode.api import (
jsonrpc_method, JSONRPCError, JSONRPCForbidden, find_methods)
project: added all source files and assets
r1
from rhodecode.api.utils import (
Optional, OAttr, has_superadmin_permission, get_user_or_error)
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 from rhodecode.lib.utils import get_rhodecode_repo_store_path
user-sessions: added an API call to cleanup sessions.
r1367 from rhodecode.lib import system_info
from rhodecode.lib import user_sessions
api: added store_exception_api for remote exception storage....
r3317 from rhodecode.lib import exc_tracking
from rhodecode.lib.ext_json import json
api: cleanup sessions enforce older_then must be a valid INT.
r1407 from rhodecode.lib.utils2 import safe_int
project: added all source files and assets
r1 from rhodecode.model.db import UserIpMap
from rhodecode.model.scm import ScmModel
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619
project: added all source files and assets
r1
log = logging.getLogger(__name__)
@jsonrpc_method()
def get_server_info(request, apiuser):
"""
Returns the |RCE| server information.
This includes the running version of |RCE| and all installed
packages. This command takes the following options:
:param apiuser: This is filled automatically from the |authtoken|.
:type apiuser: AuthUser
Example output:
.. code-block:: bash
id : <id_given_in_input>
result : {
'modules': [<module name>,...]
'py_version': <python version>,
'platform': <platform type>,
'rhodecode_version': <rhodecode version>
}
error : null
"""
if not has_superadmin_permission(apiuser):
raise JSONRPCForbidden()
api: add backward compatible info required for rhodecode-index.
r1156 server_info = ScmModel().get_server_info(request.environ)
# rhodecode-index requires those
server_info['index_storage'] = server_info['search']['value']['location']
server_info['storage'] = server_info['storage']['value']['path']
return server_info
project: added all source files and assets
r1
@jsonrpc_method()
ssh: embedded ssh support...
r2043 def get_repo_store(request, apiuser):
"""
Returns the |RCE| repository storage information.
:param apiuser: This is filled automatically from the |authtoken|.
:type apiuser: AuthUser
Example output:
.. code-block:: bash
id : <id_given_in_input>
result : {
'modules': [<module name>,...]
'py_version': <python version>,
'platform': <platform type>,
'rhodecode_version': <rhodecode version>
}
error : null
"""
if not has_superadmin_permission(apiuser):
raise JSONRPCForbidden()
feat(repo_path-config): moved main storage location path into ini file. Fixes: RCCE-61
r5356 path = get_rhodecode_repo_store_path()
ssh: embedded ssh support...
r2043 return {"path": path}
@jsonrpc_method()
project: added all source files and assets
r1 def get_ip(request, apiuser, userid=Optional(OAttr('apiuser'))):
"""
Displays the IP Address as seen from the |RCE| server.
* This command displays the IP Address, as well as all the defined IP
addresses for the specified user. If the ``userid`` is not set, the
data returned is for the user calling the method.
This command can only be run using an |authtoken| with admin rights to
the specified repository.
This command takes the following options:
:param apiuser: This is filled automatically from |authtoken|.
:type apiuser: AuthUser
:param userid: Sets the userid for which associated IP Address data
is returned.
:type userid: Optional(str or int)
Example output:
.. code-block:: bash
id : <id_given_in_input>
result : {
"server_ip_addr": "<ip_from_clien>",
"user_ips": [
{
"ip_addr": "<ip_with_mask>",
"ip_range": ["<start_ip>", "<end_ip>"],
},
...
]
}
"""
if not has_superadmin_permission(apiuser):
raise JSONRPCForbidden()
userid = Optional.extract(userid, evaluate_locals=locals())
userid = getattr(userid, 'user_id', userid)
user = get_user_or_error(userid)
ips = UserIpMap.query().filter(UserIpMap.user == user).all()
return {
'server_ip_addr': request.rpc_ip_addr,
'user_ips': ips
}
@jsonrpc_method()
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 def rescan_repos(request, apiuser):
project: added all source files and assets
r1 """
Triggers a rescan of the specified repositories.
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 It returns list of added repositories, and errors during scan.
project: added all source files and assets
r1
This command can only be run using an |authtoken| with admin rights to
the specified repository.
This command takes the following options:
:param apiuser: This is filled automatically from the |authtoken|.
:type apiuser: AuthUser
Example output:
.. code-block:: bash
id : <id_given_in_input>
result : {
'added': [<added repository name>,...]
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 'errors': [<error_list>,...]
project: added all source files and assets
r1 }
error : null
Example error output:
.. code-block:: bash
id : <id_given_in_input>
result : null
error : {
'Error occurred during rescan repositories action'
}
"""
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 from rhodecode.lib.utils import repo2db_mapper # re-import for testing patches
project: added all source files and assets
r1 if not has_superadmin_permission(apiuser):
raise JSONRPCForbidden()
try:
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 added, errors = repo2db_mapper(ScmModel().repo_scan(), force_hooks_rebuild=True)
return {'added': added, 'errors': errors}
project: added all source files and assets
r1 except Exception:
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 log.exception('Failed to run repo rescan')
project: added all source files and assets
r1 raise JSONRPCError(
'Error occurred during rescan repositories action'
)
core: avoid using rhodecode.test packages inside main packages as tests are removed during build which can cause some problems in some edge case calls
r5618 @jsonrpc_method()
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 def cleanup_repos(request, apiuser):
core: avoid using rhodecode.test packages inside main packages as tests are removed during build which can cause some problems in some edge case calls
r5618 """
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 Triggers a cleanup of non-existing repositories or repository groups in filesystem.
core: avoid using rhodecode.test packages inside main packages as tests are removed during build which can cause some problems in some edge case calls
r5618
This command can only be run using an |authtoken| with admin rights to
the specified repository.
This command takes the following options:
:param apiuser: This is filled automatically from the |authtoken|.
:type apiuser: AuthUser
Example output:
.. code-block:: bash
id : <id_given_in_input>
result : {
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 'removed': [<removed repository name or repository group name>,...]
'errors': [<error list of failures to remove>,...]
core: avoid using rhodecode.test packages inside main packages as tests are removed during build which can cause some problems in some edge case calls
r5618 }
error : null
Example error output:
.. code-block:: bash
id : <id_given_in_input>
result : null
error : {
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 'Error occurred during repo storage cleanup action'
core: avoid using rhodecode.test packages inside main packages as tests are removed during build which can cause some problems in some edge case calls
r5618 }
"""
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 from rhodecode.lib.utils import repo2db_cleanup # re-import for testing patches
core: avoid using rhodecode.test packages inside main packages as tests are removed during build which can cause some problems in some edge case calls
r5618 if not has_superadmin_permission(apiuser):
raise JSONRPCForbidden()
try:
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 removed, errors = repo2db_cleanup()
return {'removed': removed, 'errors': errors}
core: avoid using rhodecode.test packages inside main packages as tests are removed during build which can cause some problems in some edge case calls
r5618 except Exception:
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 log.exception('Failed to run repo storage cleanup')
core: avoid using rhodecode.test packages inside main packages as tests are removed during build which can cause some problems in some edge case calls
r5618 raise JSONRPCError(
feat(remap and rescan): added more relient remap and removal option, and also split the logic to either add or cleanup
r5619 'Error occurred during repo storage cleanup action'
core: avoid using rhodecode.test packages inside main packages as tests are removed during build which can cause some problems in some edge case calls
r5618 )
user-sessions: added an API call to cleanup sessions.
r1367
@jsonrpc_method()
def cleanup_sessions(request, apiuser, older_then=Optional(60)):
"""
Triggers a session cleanup action.
If the ``older_then`` option is set, only sessions that hasn't been
accessed in the given number of days will be removed.
This command can only be run using an |authtoken| with admin rights to
the specified repository.
This command takes the following options:
:param apiuser: This is filled automatically from the |authtoken|.
:type apiuser: AuthUser
:param older_then: Deletes session that hasn't been accessed
in given number of days.
:type older_then: Optional(int)
Example output:
.. code-block:: bash
id : <id_given_in_input>
result: {
"backend": "<type of backend>",
"sessions_removed": <number_of_removed_sessions>
}
error : null
Example error output:
.. code-block:: bash
id : <id_given_in_input>
result : null
error : {
'Error occurred during session cleanup'
}
"""
if not has_superadmin_permission(apiuser):
raise JSONRPCForbidden()
api: cleanup sessions enforce older_then must be a valid INT.
r1407 older_then = safe_int(Optional.extract(older_then)) or 60
user-sessions: added an API call to cleanup sessions.
r1367 older_than_seconds = 60 * 60 * 24 * older_then
config = system_info.rhodecode_config().get_value()['value']['config']
session_model = user_sessions.get_session_handler(
config.get('beaker.session.type', 'memory'))(config)
backend = session_model.SESSION_TYPE
try:
cleaned = session_model.clean_sessions(
older_than_seconds=older_than_seconds)
return {'sessions_removed': cleaned, 'backend': backend}
except user_sessions.CleanupCommand as msg:
exceptions: skip extracting exception by deprecated .message attribute
r5104 return {'cleanup_command': str(msg), 'backend': backend}
user-sessions: added an API call to cleanup sessions.
r1367 except Exception as e:
log.exception('Failed session cleanup')
raise JSONRPCError(
'Error occurred during session cleanup'
)
api: add get_method API call....
r1417
@jsonrpc_method()
def get_method(request, apiuser, pattern=Optional('*')):
"""
Returns list of all available API methods. By default match pattern
os "*" but any other pattern can be specified. eg *comment* will return
all methods with comment inside them. If just single method is matched
returned data will also include method specification
This command can only be run using an |authtoken| with admin rights to
the specified repository.
This command takes the following options:
:param apiuser: This is filled automatically from the |authtoken|.
:type apiuser: AuthUser
:param pattern: pattern to match method names against
api: added store_exception_api for remote exception storage....
r3317 :type pattern: Optional("*")
api: add get_method API call....
r1417
Example output:
.. code-block:: bash
id : <id_given_in_input>
"result": [
"changeset_comment",
"comment_pull_request",
"comment_commit"
]
error : null
.. code-block:: bash
id : <id_given_in_input>
"result": [
"comment_commit",
{
"apiuser": "<RequiredType>",
"comment_type": "<Optional:u'note'>",
"commit_id": "<RequiredType>",
"message": "<RequiredType>",
"repoid": "<RequiredType>",
"request": "<RequiredType>",
"resolves_comment_id": "<Optional:None>",
"status": "<Optional:None>",
"userid": "<Optional:<OptionalAttr:apiuser>>"
}
]
error : null
"""
fix(mailing): patch repozesendmail to properly use CRLF for newlines. Fixes RFC5322 Issues with mailing
r5511 from rhodecode.config import patches
inspect = patches.inspect_getargspec()
core: fixed cython compat inspect that caused some API calls to not work correctly.
r4184
api: add get_method API call....
r1417 if not has_superadmin_permission(apiuser):
raise JSONRPCForbidden()
pattern = Optional.extract(pattern)
matches = find_methods(request.registry.jsonrpc_methods, pattern)
args_desc = []
api: code fixes / cleanups for python3
r5047 matches_keys = list(matches.keys())
if len(matches_keys) == 1:
func = matches[matches_keys[0]]
api: add get_method API call....
r1417
argspec = inspect.getargspec(func)
arglist = argspec[0]
api: fixes and changes to always return content type in API...
r5001 defaults = list(map(repr, argspec[3] or []))
api: add get_method API call....
r1417
default_empty = '<RequiredType>'
# kw arguments required by this method
python3: fixed various code issues...
r4973 func_kwargs = dict(itertools.zip_longest(
api: add get_method API call....
r1417 reversed(arglist), reversed(defaults), fillvalue=default_empty))
args_desc.append(func_kwargs)
api: code fixes / cleanups for python3
r5047 return matches_keys + args_desc
api: added store_exception_api for remote exception storage....
r3317
@jsonrpc_method()
def store_exception(request, apiuser, exc_data_json, prefix=Optional('rhodecode')):
"""
Stores sent exception inside the built-in exception tracker in |RCE| server.
This command can only be run using an |authtoken| with admin rights to
the specified repository.
This command takes the following options:
:param apiuser: This is filled automatically from the |authtoken|.
:type apiuser: AuthUser
:param exc_data_json: JSON data with exception e.g
{"exc_traceback": "Value `1` is not allowed", "exc_type_name": "ValueError"}
:type exc_data_json: JSON data
:param prefix: prefix for error type, e.g 'rhodecode', 'vcsserver', 'rhodecode-tools'
:type prefix: Optional("rhodecode")
Example output:
.. code-block:: bash
id : <id_given_in_input>
"result": {
"exc_id": 139718459226384,
"exc_url": "http://localhost:8080/_admin/settings/exceptions/139718459226384"
}
error : null
"""
if not has_superadmin_permission(apiuser):
raise JSONRPCForbidden()
prefix = Optional.extract(prefix)
exc_id = exc_tracking.generate_id()
try:
exc_data = json.loads(exc_data_json)
except Exception:
log.error('Failed to parse JSON: %r', exc_data_json)
raise JSONRPCError('Failed to parse JSON data from exc_data_json field. '
'Please make sure it contains a valid JSON.')
try:
exc_traceback = exc_data['exc_traceback']
exc_type_name = exc_data['exc_type_name']
exc-tracking: fixed API calls with new exceptions store engine
r5147 exc_value = ''
api: added store_exception_api for remote exception storage....
r3317 except KeyError as err:
exc-tracking: fixed API calls with new exceptions store engine
r5147 raise JSONRPCError(
f'Missing exc_traceback, or exc_type_name '
f'in exc_data_json field. Missing: {err}')
class ExcType:
__name__ = exc_type_name
exc_info = (ExcType(), exc_value, exc_traceback)
api: added store_exception_api for remote exception storage....
r3317
exc_tracking._store_exception(
exc-tracking: fixed API calls with new exceptions store engine
r5147 exc_id=exc_id, exc_info=exc_info, prefix=prefix)
api: added store_exception_api for remote exception storage....
r3317
exc_url = request.route_url(
'admin_settings_exception_tracker_show', exception_id=exc_id)
return {'exc_id': exc_id, 'exc_url': exc_url}