rhodecode-enterprise-ce Commit - r1150:081f50ab

api: refactor auth helpers to reflect the action they do....

marcink -

r1150:081f50ab default

parent child

rhodecode/api/tests/test_utils.py

0 +2 -2

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import pytest
             from mock import Mock, patch
             from rhodecode.api import utils
             from rhodecode.api import JSONRPCError
             from rhodecode.lib.vcs.exceptions import RepositoryError
             class TestGetCommitOrError(object):
                 def setup(self):
                     self.commit_hash = 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa10'
                 @pytest.mark.parametrize("ref", ['ref', '12345', 'a:b:c:d', 'branch:name'])
                 def test_ref_cannot_be_parsed(self, ref):
                     repo = Mock()
                     with pytest.raises(JSONRPCError) as excinfo:
                         utils.get_commit_or_error(ref, repo)
                     expected_message = (
                         'Ref `{ref}` given in a wrong format. Please check the API'
                         ' documentation for more details'.format(ref=ref)
                     )
                     assert excinfo.value.message == expected_message
                 def test_success_with_hash_specified(self):
                     repo = Mock()
                     ref_type = 'branch'
                     ref = '{}:master:{}'.format(ref_type, self.commit_hash)
                     with patch('rhodecode.api.utils.get_commit_from_ref_name') as get_commit:
                         result = utils.get_commit_or_error(ref, repo)
                         get_commit.assert_called_once_with(
                             repo, self.commit_hash)
                         assert result == get_commit()
                 def test_raises_an_error_when_commit_not_found(self):
                     repo = Mock()
                     ref = 'branch:master:{}'.format(self.commit_hash)
                     with patch('rhodecode.api.utils.get_commit_from_ref_name') as get_commit:
                         get_commit.side_effect = RepositoryError('Commit not found')
                         with pytest.raises(JSONRPCError) as excinfo:
                             utils.get_commit_or_error(ref, repo)
                         expected_message = 'Ref `{}` does not exist'.format(ref)
                         assert excinfo.value.message == expected_message
             class TestResolveRefOrError(object):
                 def setup(self):
                     self.commit_hash = 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa10'
                 def test_success_with_no_hash_specified(self):
                     repo = Mock()
                     ref_type = 'branch'
                     ref_name = 'master'
                     ref = '{}:{}'.format(ref_type, ref_name)
                     with patch('rhodecode.api.utils._get_ref_hash') \
                             as _get_ref_hash:
                         _get_ref_hash.return_value = self.commit_hash
                         result = utils.resolve_ref_or_error(ref, repo)
                         _get_ref_hash.assert_called_once_with(repo, ref_type, ref_name)
                         assert result == '{}:{}'.format(ref, self.commit_hash)
                 def test_non_supported_refs(self):
                     repo = Mock()
                     ref = 'ancestor:ref'
                     with pytest.raises(JSONRPCError) as excinfo:
                         utils.resolve_ref_or_error(ref, repo)
                     expected_message = 'The specified ancestor `ref` does not exist'
                     assert excinfo.value.message == expected_message
                 def test_branch_is_not_found(self):
                     repo = Mock()
                     ref = 'branch:non-existing-one'
                     with patch('rhodecode.api.utils._get_ref_hash')\
                             as _get_ref_hash:
                         _get_ref_hash.side_effect = KeyError()
                         with pytest.raises(JSONRPCError) as excinfo:
                             utils.resolve_ref_or_error(ref, repo)
                     expected_message = (
                         'The specified branch `non-existing-one` does not exist')
                     assert excinfo.value.message == expected_message
                 def test_bookmark_is_not_found(self):
                     repo = Mock()
                     ref = 'bookmark:non-existing-one'
                     with patch('rhodecode.api.utils._get_ref_hash')\
                             as _get_ref_hash:
                         _get_ref_hash.side_effect = KeyError()
                         with pytest.raises(JSONRPCError) as excinfo:
                             utils.resolve_ref_or_error(ref, repo)
                     expected_message = (
                         'The specified bookmark `non-existing-one` does not exist')
                     assert excinfo.value.message == expected_message
                 @pytest.mark.parametrize("ref", ['ref', '12345', 'a:b:c:d'])
                 def test_ref_cannot_be_parsed(self, ref):
                     repo = Mock()
                     with pytest.raises(JSONRPCError) as excinfo:
                         utils.resolve_ref_or_error(ref, repo)
                     expected_message = (
                         'Ref `{ref}` given in a wrong format. Please check the API'
                         ' documentation for more details'.format(ref=ref)
                     )
                     assert excinfo.value.message == expected_message
             class TestGetRefHash(object):
                 def setup(self):
                     self.commit_hash = 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa10'
                     self.bookmark_name = 'test-bookmark'
                 @pytest.mark.parametrize("alias, branch_name", [
                     ("git", "master"),
                     ("hg", "default")
                 ])
                 def test_returns_hash_by_branch_name(self, alias, branch_name):
                     with patch('rhodecode.model.db.Repository') as repo:
                         repo.scm_instance().alias = alias
                         repo.scm_instance().branches = {branch_name: self.commit_hash}
                         result_hash = utils._get_ref_hash(repo, 'branch', branch_name)
                         assert result_hash == self.commit_hash
                 @pytest.mark.parametrize("alias, branch_name", [
                     ("git", "master"),
                     ("hg", "default")
                 ])
                 def test_raises_error_when_branch_is_not_found(self, alias, branch_name):
                     with patch('rhodecode.model.db.Repository') as repo:
                         repo.scm_instance().alias = alias
                         repo.scm_instance().branches = {}
                         with pytest.raises(KeyError):
                             utils._get_ref_hash(repo, 'branch', branch_name)
                 def test_returns_hash_when_bookmark_is_specified_for_hg(self):
                     with patch('rhodecode.model.db.Repository') as repo:
                         repo.scm_instance().alias = 'hg'
                         repo.scm_instance().bookmarks = {
                             self.bookmark_name: self.commit_hash}
                         result_hash = utils._get_ref_hash(
                             repo, 'bookmark', self.bookmark_name)
                         assert result_hash == self.commit_hash
                 def test_raises_error_when_bookmark_is_not_found_in_hg_repo(self):
                     with patch('rhodecode.model.db.Repository') as repo:
                         repo.scm_instance().alias = 'hg'
                         repo.scm_instance().bookmarks = {}
                         with pytest.raises(KeyError):
                             utils._get_ref_hash(repo, 'bookmark', self.bookmark_name)
                 def test_raises_error_when_bookmark_is_specified_for_git(self):
                     with patch('rhodecode.model.db.Repository') as repo:
                         repo.scm_instance().alias = 'git'
                         repo.scm_instance().bookmarks = {
                             self.bookmark_name: self.commit_hash}
                         with pytest.raises(ValueError):
                             utils._get_ref_hash(repo, 'bookmark', self.bookmark_name)
             class TestUserByNameOrError(object):
                 def test_user_found_by_id(self):
                     fake_user = Mock(id=123)
                     patcher = patch('rhodecode.model.user.UserModel.get_user')
                     with patcher as get_user:
                         get_user.return_value = fake_user
                         result = utils.get_user_or_error('123')
                         assert result == fake_user
                 def test_user_found_by_name(self):
                     fake_user = Mock(id=123)
                     patcher = patch('rhodecode.model.user.UserModel.get_by_username')
                     with patcher as get_by_username:
                         get_by_username.return_value = fake_user
                         result = utils.get_user_or_error('test')
                         assert result == fake_user
                 def test_user_not_found_by_id(self):
                     patcher = patch('rhodecode.model.user.UserModel.get_user')
                     with patcher as get_user:
                         get_user.return_value = None
                         with pytest.raises(JSONRPCError) as excinfo:
                             utils.get_user_or_error('123')
                     expected_message = 'user `123` does not exist'
                     assert excinfo.value.message == expected_message
                 def test_user_not_found_by_name(self):
                     patcher = patch('rhodecode.model.user.UserModel.get_by_username')
                     with patcher as get_by_username:
                         get_by_username.return_value = None
                         with pytest.raises(JSONRPCError) as excinfo:
                             utils.get_user_or_error('test')
                     expected_message = 'user `test` does not exist'
                     assert excinfo.value.message == expected_message
             class TestGetCommitDict:
                 @pytest.mark.parametrize('filename, expected', [
                     (b'sp\xc3\xa4cial', u'sp\xe4cial'),
                     (b'sp\xa4cial', u'sp\ufffdcial'),
                 ])
                 def test_decodes_filenames_to_unicode(self, filename, expected):
                     result = utils._get_commit_dict(filename=filename, op='A')
                     assert result['filename'] == expected
             class TestRepoAccess(object):
                 def setup_method(self, method):
                     self.admin_perm_patch = patch(
                         'rhodecode.api.utils.HasPermissionAnyApi')
                     self.repo_perm_patch = patch(
                         'rhodecode.api.utils.HasRepoPermissionAnyApi')
                 def test_has_superadmin_permission_checks_for_admin(self):
                     admin_mock = Mock()
                     with self.admin_perm_patch as amock:
                         amock.return_value = admin_mock
                         assert utils.has_superadmin_permission('fake_user')
                         amock.assert_called_once_with('hg.admin')
                     admin_mock.assert_called_once_with(user='fake_user')
                 def test_has_repo_permissions_checks_for_repo_access(self):
                     repo_mock = Mock()
                     fake_repo = Mock()
                     with self.repo_perm_patch as rmock:
                         rmock.return_value = repo_mock
-                        assert utils.has_repo_permissions(
+                        assert utils.validate_repo_permissions(
                             'fake_user', 'fake_repo_id', fake_repo,
                             ['perm1', 'perm2'])
                         rmock.assert_called_once_with(*['perm1', 'perm2'])
                     repo_mock.assert_called_once_with(
                         user='fake_user', repo_name=fake_repo.repo_name)
                 def test_has_repo_permissions_raises_not_found(self):
                     repo_mock = Mock(return_value=False)
                     fake_repo = Mock()
                     with self.repo_perm_patch as rmock:
                         rmock.return_value = repo_mock
                         with pytest.raises(JSONRPCError) as excinfo:
-                            utils.has_repo_permissions(
+                            utils.validate_repo_permissions(
                                 'fake_user', 'fake_repo_id', fake_repo, 'perms')
                             assert 'fake_repo_id' in excinfo

rhodecode/api/utils.py

0 +2 -2

             # -*- coding: utf-8 -*-
             # Copyright (C) 2014-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             JSON RPC utils
             """
             import collections
             import logging
             from rhodecode.api.exc import JSONRPCError
             from rhodecode.lib.auth import HasPermissionAnyApi, HasRepoPermissionAnyApi, \
                 HasRepoGroupPermissionAnyApi
             from rhodecode.lib.utils import safe_unicode
             from rhodecode.controllers.utils import get_commit_from_ref_name
             from rhodecode.lib.vcs.exceptions import RepositoryError
             log = logging.getLogger(__name__)
             class OAttr(object):
                 """
                 Special Option that defines other attribute, and can default to them
                 Example::
                     def test(apiuser, userid=Optional(OAttr('apiuser')):
                         user = Optional.extract(userid, evaluate_locals=local())
                         #if we pass in userid, we get it, else it will default to apiuser
                         #attribute
                 """
                 def __init__(self, attr_name):
                     self.attr_name = attr_name
                 def __repr__(self):
                     return '<OptionalAttr:%s>' % self.attr_name
                 def __call__(self):
                     return self
             class Optional(object):
                 """
                 Defines an optional parameter::
                     param = param.getval() if isinstance(param, Optional) else param
                     param = param() if isinstance(param, Optional) else param
                 is equivalent of::
                     param = Optional.extract(param)
                 """
                 def __init__(self, type_):
                     self.type_ = type_
                 def __repr__(self):
                     return '<Optional:%s>' % self.type_.__repr__()
                 def __call__(self):
                     return self.getval()
                 def getval(self, evaluate_locals=None):
                     """
                     returns value from this Optional instance
                     """
                     if isinstance(self.type_, OAttr):
                         param_name = self.type_.attr_name
                         if evaluate_locals:
                             return evaluate_locals[param_name]
                         # use params name
                         return param_name
                     return self.type_
                 @classmethod
                 def extract(cls, val, evaluate_locals=None):
                     """
                     Extracts value from Optional() instance
                     :param val:
                     :return: original value if it's not Optional instance else
                         value of instance
                     """
                     if isinstance(val, cls):
                         return val.getval(evaluate_locals)
                     return val
             def parse_args(cli_args, key_prefix=''):
                 from rhodecode.lib.utils2 import (escape_split)
                 kwargs = collections.defaultdict(dict)
                 for el in escape_split(cli_args, ','):
                     kv = escape_split(el, '=', 1)
                     if len(kv) == 2:
                         k, v = kv
                         kwargs[key_prefix + k] = v
                 return kwargs
             def get_origin(obj):
                 """
                 Get origin of permission from object.
                 :param obj:
                 """
                 origin = 'permission'
                 if getattr(obj, 'owner_row', '') and getattr(obj, 'admin_row', ''):
                     # admin and owner case, maybe we should use dual string ?
                     origin = 'owner'
                 elif getattr(obj, 'owner_row', ''):
                     origin = 'owner'
                 elif getattr(obj, 'admin_row', ''):
                     origin = 'super-admin'
                 return origin
             def store_update(updates, attr, name):
                 """
                 Stores param in updates dict if it's not instance of Optional
                 allows easy updates of passed in params
                 """
                 if not isinstance(attr, Optional):
                     updates[name] = attr
             def has_superadmin_permission(apiuser):
                 """
                 Return True if apiuser is admin or return False
                 :param apiuser:
                 """
                 if HasPermissionAnyApi('hg.admin')(user=apiuser):
                     return True
                 return False
-            def has_repo_permissions(apiuser, repoid, repo, perms):
+            def validate_repo_permissions(apiuser, repoid, repo, perms):
                 """
                 Raise JsonRPCError if apiuser is not authorized or return True
                 :param apiuser:
                 :param repoid:
                 :param repo:
                 :param perms:
                 """
                 if not HasRepoPermissionAnyApi(*perms)(
                         user=apiuser, repo_name=repo.repo_name):
                     raise JSONRPCError(
                         'repository `%s` does not exist' % repoid)
                 return True
             def validate_repo_group_permissions(apiuser, repogroupid, repo_group, perms):
                 """
                 Raise JsonRPCError if apiuser is not authorized or return True
                 :param apiuser:
                 :param repogroupid: just the id of repository group
                 :param repo_group: instance of repo_group
                 :param perms:
                 """
                 if not HasRepoGroupPermissionAnyApi(*perms)(
                         user=apiuser, group_name=repo_group.group_name):
                     raise JSONRPCError(
                         'repository group `%s` does not exist' % repogroupid)
                 return True
-            def has_set_owner_permissions(apiuser, owner):
+            def validate_set_owner_permissions(apiuser, owner):
                 if isinstance(owner, Optional):
                     owner = get_user_or_error(apiuser.user_id)
                 else:
                     if has_superadmin_permission(apiuser):
                         owner = get_user_or_error(owner)
                     else:
                         # forbid setting owner for non-admins
                         raise JSONRPCError(
                             'Only RhodeCode super-admin can specify `owner` param')
                 return owner
             def get_user_or_error(userid):
                 """
                 Get user by id or name or return JsonRPCError if not found
                 :param userid:
                 """
                 from rhodecode.model.user import UserModel
                 user_model = UserModel()
                 try:
                     user = user_model.get_user(int(userid))
                 except ValueError:
                     user = user_model.get_by_username(userid)
                 if user is None:
                     raise JSONRPCError("user `%s` does not exist" % (userid,))
                 return user
             def get_repo_or_error(repoid):
                 """
                 Get repo by id or name or return JsonRPCError if not found
                 :param repoid:
                 """
                 from rhodecode.model.repo import RepoModel
                 repo = RepoModel().get_repo(repoid)
                 if repo is None:
                     raise JSONRPCError('repository `%s` does not exist' % (repoid,))
                 return repo
             def get_repo_group_or_error(repogroupid):
                 """
                 Get repo group by id or name or return JsonRPCError if not found
                 :param repogroupid:
                 """
                 from rhodecode.model.repo_group import RepoGroupModel
                 repo_group = RepoGroupModel()._get_repo_group(repogroupid)
                 if repo_group is None:
                     raise JSONRPCError(
                         'repository group `%s` does not exist' % (repogroupid,))
                 return repo_group
             def get_user_group_or_error(usergroupid):
                 """
                 Get user group by id or name or return JsonRPCError if not found
                 :param usergroupid:
                 """
                 from rhodecode.model.user_group import UserGroupModel
                 user_group = UserGroupModel().get_group(usergroupid)
                 if user_group is None:
                     raise JSONRPCError('user group `%s` does not exist' % (usergroupid,))
                 return user_group
             def get_perm_or_error(permid, prefix=None):
                 """
                 Get permission by id or name or return JsonRPCError if not found
                 :param permid:
                 """
                 from rhodecode.model.permission import PermissionModel
                 perm = PermissionModel.cls.get_by_key(permid)
                 if perm is None:
                     raise JSONRPCError('permission `%s` does not exist' % (permid,))
                 if prefix:
                     if not perm.permission_name.startswith(prefix):
                         raise JSONRPCError('permission `%s` is invalid, '
                                            'should start with %s' % (permid, prefix))
                 return perm
             def get_gist_or_error(gistid):
                 """
                 Get gist by id or gist_access_id or return JsonRPCError if not found
                 :param gistid:
                 """
                 from rhodecode.model.gist import GistModel
                 gist = GistModel.cls.get_by_access_id(gistid)
                 if gist is None:
                     raise JSONRPCError('gist `%s` does not exist' % (gistid,))
                 return gist
             def get_pull_request_or_error(pullrequestid):
                 """
                 Get pull request by id or return JsonRPCError if not found
                 :param pullrequestid:
                 """
                 from rhodecode.model.pull_request import PullRequestModel
                 try:
                     pull_request = PullRequestModel().get(int(pullrequestid))
                 except ValueError:
                     raise JSONRPCError('pullrequestid must be an integer')
                 if not pull_request:
                     raise JSONRPCError('pull request `%s` does not exist' % (
                         pullrequestid,))
                 return pull_request
             def build_commit_data(commit, detail_level):
                 parsed_diff = []
                 if detail_level == 'extended':
                     for f in commit.added:
                         parsed_diff.append(_get_commit_dict(filename=f.path, op='A'))
                     for f in commit.changed:
                         parsed_diff.append(_get_commit_dict(filename=f.path, op='M'))
                     for f in commit.removed:
                         parsed_diff.append(_get_commit_dict(filename=f.path, op='D'))
                 elif detail_level == 'full':
                     from rhodecode.lib.diffs import DiffProcessor
                     diff_processor = DiffProcessor(commit.diff())
                     for dp in diff_processor.prepare():
                         del dp['stats']['ops']
                         _stats = dp['stats']
                         parsed_diff.append(_get_commit_dict(
                             filename=dp['filename'], op=dp['operation'],
                             new_revision=dp['new_revision'],
                             old_revision=dp['old_revision'],
                             raw_diff=dp['raw_diff'], stats=_stats))
                 return parsed_diff
             def get_commit_or_error(ref, repo):
                 try:
                     ref_type, _, ref_hash = ref.split(':')
                 except ValueError:
                     raise JSONRPCError(
                         'Ref `{ref}` given in a wrong format. Please check the API'
                         ' documentation for more details'.format(ref=ref))
                 try:
                     # TODO: dan: refactor this to use repo.scm_instance().get_commit()
                     # once get_commit supports ref_types
                     return get_commit_from_ref_name(repo, ref_hash)
                 except RepositoryError:
                     raise JSONRPCError('Ref `{ref}` does not exist'.format(ref=ref))
             def resolve_ref_or_error(ref, repo):
                 def _parse_ref(type_, name, hash_=None):
                     return type_, name, hash_
                 try:
                     ref_type, ref_name, ref_hash = _parse_ref(*ref.split(':'))
                 except TypeError:
                     raise JSONRPCError(
                         'Ref `{ref}` given in a wrong format. Please check the API'
                         ' documentation for more details'.format(ref=ref))
                 try:
                     ref_hash = ref_hash or _get_ref_hash(repo, ref_type, ref_name)
                 except (KeyError, ValueError):
                     raise JSONRPCError(
                         'The specified {type} `{name}` does not exist'.format(
                             type=ref_type, name=ref_name))
                 return ':'.join([ref_type, ref_name, ref_hash])
             def _get_commit_dict(
                     filename, op, new_revision=None, old_revision=None,
                     raw_diff=None, stats=None):
                 if stats is None:
                     stats = {
                         "added": None,
                         "binary": None,
                         "deleted": None
                     }
                 return {
                     "filename": safe_unicode(filename),
                     "op": op,
                     # extra details
                     "new_revision": new_revision,
                     "old_revision": old_revision,
                     "raw_diff": raw_diff,
                     "stats": stats
                 }
             # TODO: mikhail: Think about moving this function to some library
             def _get_ref_hash(repo, type_, name):
                 vcs_repo = repo.scm_instance()
                 if type_ == 'branch' and vcs_repo.alias in ('hg', 'git'):
                     return vcs_repo.branches[name]
                 elif type_ == 'bookmark' and vcs_repo.alias == 'hg':
                     return vcs_repo.bookmarks[name]
                 else:
                     raise ValueError()

rhodecode/api/views/pull_request_api.py

0 +3 -3

             # -*- coding: utf-8 -*-
             # Copyright (C) 2011-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import logging
             from rhodecode.api import jsonrpc_method, JSONRPCError
             from rhodecode.api.utils import (
                 has_superadmin_permission, Optional, OAttr, get_repo_or_error,
                 get_pull_request_or_error, get_commit_or_error, get_user_or_error,
-                has_repo_permissions, resolve_ref_or_error)
+                validate_repo_permissions, resolve_ref_or_error)
             from rhodecode.lib.auth import (HasRepoPermissionAnyApi)
             from rhodecode.lib.base import vcs_operation_context
             from rhodecode.lib.utils2 import str2bool
             from rhodecode.model.changeset_status import ChangesetStatusModel
             from rhodecode.model.comment import ChangesetCommentsModel
             from rhodecode.model.db import Session, ChangesetStatus
             from rhodecode.model.pull_request import PullRequestModel
             from rhodecode.model.settings import SettingsModel
             log = logging.getLogger(__name__)
             @jsonrpc_method()
             def get_pull_request(request, apiuser, repoid, pullrequestid):
                 """
                 Get a pull request based on the given ID.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: Repository name or repository ID from where the pull
                     request was opened.
                 :type repoid: str or int
                 :param pullrequestid: ID of the requested pull request.
                 :type pullrequestid: int
                 Example output:
                 .. code-block:: bash
                   "id": <id_given_in_input>,
                   "result":
                     {
                         "pull_request_id":   "<pull_request_id>",
                         "url":               "<url>",
                         "title":             "<title>",
                         "description":       "<description>",
                         "status" :           "<status>",
                         "created_on":        "<date_time_created>",
                         "updated_on":        "<date_time_updated>",
                         "commit_ids":        [
                                                  ...
                                                  "<commit_id>",
                                                  "<commit_id>",
                                                  ...
                                              ],
                         "review_status":    "<review_status>",
                         "mergeable":         {
                                                  "status":  "<bool>",
                                                  "message": "<message>",
                                              },
                         "source":            {
                                                  "clone_url":     "<clone_url>",
                                                  "repository":    "<repository_name>",
                                                  "reference":
                                                  {
                                                      "name":      "<name>",
                                                      "type":      "<type>",
                                                      "commit_id": "<commit_id>",
                                                  }
                                              },
                         "target":            {
                                                  "clone_url":   "<clone_url>",
                                                  "repository":    "<repository_name>",
                                                  "reference":
                                                  {
                                                      "name":      "<name>",
                                                      "type":      "<type>",
                                                      "commit_id": "<commit_id>",
                                                  }
                                              },
                         "merge":             {
                                                  "clone_url":   "<clone_url>",
                                                  "reference":
                                                  {
                                                      "name":      "<name>",
                                                      "type":      "<type>",
                                                      "commit_id": "<commit_id>",
                                                  }
                                              },
                        "author":             <user_obj>,
                        "reviewers":          [
                                                  ...
                                                  {
                                                     "user":          "<user_obj>",
                                                     "review_status": "<review_status>",
                                                  }
                                                  ...
                                              ]
                     },
                    "error": null
                 """
                 get_repo_or_error(repoid)
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_read(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError('repository `%s` does not exist' % (repoid,))
                 data = pull_request.get_api_data()
                 return data
             @jsonrpc_method()
             def get_pull_requests(request, apiuser, repoid, status=Optional('new')):
                 """
                 Get all pull requests from the repository specified in `repoid`.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: Repository name or repository ID.
                 :type repoid: str or int
                 :param status: Only return pull requests with the specified status.
                     Valid options are.
                     * ``new`` (default)
                     * ``open``
                     * ``closed``
                 :type status: str
                 Example output:
                 .. code-block:: bash
                   "id": <id_given_in_input>,
                   "result":
                     [
                         ...
                         {
                             "pull_request_id":   "<pull_request_id>",
                             "url":               "<url>",
                             "title" :            "<title>",
                             "description":       "<description>",
                             "status":            "<status>",
                             "created_on":        "<date_time_created>",
                             "updated_on":        "<date_time_updated>",
                             "commit_ids":        [
                                                      ...
                                                      "<commit_id>",
                                                      "<commit_id>",
                                                      ...
                                                  ],
                             "review_status":    "<review_status>",
                             "mergeable":         {
                                                     "status":      "<bool>",
                                                     "message:      "<message>",
                                                  },
                             "source":            {
                                                      "clone_url":     "<clone_url>",
                                                      "reference":
                                                      {
                                                          "name":      "<name>",
                                                          "type":      "<type>",
                                                          "commit_id": "<commit_id>",
                                                      }
                                                  },
                             "target":            {
                                                      "clone_url":   "<clone_url>",
                                                      "reference":
                                                      {
                                                          "name":      "<name>",
                                                          "type":      "<type>",
                                                          "commit_id": "<commit_id>",
                                                      }
                                                  },
                             "merge":             {
                                                      "clone_url":   "<clone_url>",
                                                      "reference":
                                                      {
                                                          "name":      "<name>",
                                                          "type":      "<type>",
                                                          "commit_id": "<commit_id>",
                                                      }
                                                  },
                            "author":             <user_obj>,
                            "reviewers":          [
                                                      ...
                                                      {
                                                         "user":          "<user_obj>",
                                                         "review_status": "<review_status>",
                                                      }
                                                      ...
                                                  ]
                         }
                         ...
                     ],
                   "error": null
                 """
                 repo = get_repo_or_error(repoid)
                 if not has_superadmin_permission(apiuser):
                     _perms = (
                         'repository.admin', 'repository.write', 'repository.read',)
-                    has_repo_permissions(apiuser, repoid, repo, _perms)
+                    validate_repo_permissions(apiuser, repoid, repo, _perms)
                 status = Optional.extract(status)
                 pull_requests = PullRequestModel().get_all(repo, statuses=[status])
                 data = [pr.get_api_data() for pr in pull_requests]
                 return data
             @jsonrpc_method()
             def merge_pull_request(request, apiuser, repoid, pullrequestid,
                                    userid=Optional(OAttr('apiuser'))):
                 """
                 Merge the pull request specified by `pullrequestid` into its target
                 repository.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: The Repository name or repository ID of the
                     target repository to which the |pr| is to be merged.
                 :type repoid: str or int
                 :param pullrequestid: ID of the pull request which shall be merged.
                 :type pullrequestid: int
                 :param userid: Merge the pull request as this user.
                 :type userid: Optional(str or int)
                 Example output:
                 .. code-block:: bash
                   "id": <id_given_in_input>,
                   "result":
                     {
                         "executed":         "<bool>",
                         "failure_reason":   "<int>",
                         "merge_commit_id":  "<merge_commit_id>",
                         "possible":         "<bool>",
                         "merge_ref":        {
                                                 "commit_id": "<commit_id>",
                                                 "type":      "<type>",
                                                 "name":      "<name>"
                                             }
                     },
                   "error": null
                 """
                 repo = get_repo_or_error(repoid)
                 if not isinstance(userid, Optional):
                     if (has_superadmin_permission(apiuser) or
                             HasRepoPermissionAnyApi('repository.admin')(
                                 user=apiuser, repo_name=repo.repo_name)):
                         apiuser = get_user_or_error(userid)
                     else:
                         raise JSONRPCError('userid is not the same as your user')
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_merge(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError('repository `%s` does not exist' % (repoid,))
                 if pull_request.is_closed():
                     raise JSONRPCError(
                         'pull request `%s` merge failed, pull request is closed' % (
                             pullrequestid,))
                 target_repo = pull_request.target_repo
                 extras = vcs_operation_context(
                     request.environ, repo_name=target_repo.repo_name,
                     username=apiuser.username, action='push',
                     scm=target_repo.repo_type)
                 merge_response = PullRequestModel().merge(
                     pull_request, apiuser, extras=extras)
                 if merge_response.executed:
                     PullRequestModel().close_pull_request(
                         pull_request.pull_request_id, apiuser)
                     Session().commit()
                 # In previous versions the merge response directly contained the merge
                 # commit id. It is now contained in the merge reference object. To be
                 # backwards compatible we have to extract it again.
                 merge_response = merge_response._asdict()
                 merge_response['merge_commit_id'] = merge_response['merge_ref'].commit_id
                 return merge_response
             @jsonrpc_method()
             def close_pull_request(request, apiuser, repoid, pullrequestid,
                                    userid=Optional(OAttr('apiuser'))):
                 """
                 Close the pull request specified by `pullrequestid`.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: Repository name or repository ID to which the pull
                     request belongs.
                 :type repoid: str or int
                 :param pullrequestid: ID of the pull request to be closed.
                 :type pullrequestid: int
                 :param userid: Close the pull request as this user.
                 :type userid: Optional(str or int)
                 Example output:
                 .. code-block:: bash
                   "id": <id_given_in_input>,
                   "result":
                     {
                         "pull_request_id":  "<int>",
                         "closed":           "<bool>"
                     },
                   "error": null
                 """
                 repo = get_repo_or_error(repoid)
                 if not isinstance(userid, Optional):
                     if (has_superadmin_permission(apiuser) or
                             HasRepoPermissionAnyApi('repository.admin')(
                                 user=apiuser, repo_name=repo.repo_name)):
                         apiuser = get_user_or_error(userid)
                     else:
                         raise JSONRPCError('userid is not the same as your user')
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_update(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError(
                         'pull request `%s` close failed, no permission to close.' % (
                             pullrequestid,))
                 if pull_request.is_closed():
                     raise JSONRPCError(
                         'pull request `%s` is already closed' % (pullrequestid,))
                 PullRequestModel().close_pull_request(
                     pull_request.pull_request_id, apiuser)
                 Session().commit()
                 data = {
                     'pull_request_id': pull_request.pull_request_id,
                     'closed': True,
                 }
                 return data
             @jsonrpc_method()
             def comment_pull_request(request, apiuser, repoid, pullrequestid,
                                      message=Optional(None), status=Optional(None),
                                      userid=Optional(OAttr('apiuser'))):
                 """
                 Comment on the pull request specified with the `pullrequestid`,
                 in the |repo| specified by the `repoid`, and optionally change the
                 review status.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: The repository name or repository ID.
                 :type repoid: str or int
                 :param pullrequestid: The pull request ID.
                 :type pullrequestid: int
                 :param message: The text content of the comment.
                 :type message: str
                 :param status: (**Optional**) Set the approval status of the pull
                     request. Valid options are:
                     * not_reviewed
                     * approved
                     * rejected
                     * under_review
                 :type status: str
                 :param userid: Comment on the pull request as this user
                 :type userid: Optional(str or int)
                 Example output:
                 .. code-block:: bash
                   id : <id_given_in_input>
                   result :
                     {
                         "pull_request_id":  "<Integer>",
                         "comment_id":       "<Integer>"
                     }
                   error :  null
                 """
                 repo = get_repo_or_error(repoid)
                 if not isinstance(userid, Optional):
                     if (has_superadmin_permission(apiuser) or
                             HasRepoPermissionAnyApi('repository.admin')(
                                 user=apiuser, repo_name=repo.repo_name)):
                         apiuser = get_user_or_error(userid)
                     else:
                         raise JSONRPCError('userid is not the same as your user')
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_read(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError('repository `%s` does not exist' % (repoid,))
                 message = Optional.extract(message)
                 status = Optional.extract(status)
                 if not message and not status:
                     raise JSONRPCError('message and status parameter missing')
                 if (status not in (st[0] for st in ChangesetStatus.STATUSES) and
                         status is not None):
                     raise JSONRPCError('unknown comment status`%s`' % status)
                 allowed_to_change_status = PullRequestModel().check_user_change_status(
                     pull_request, apiuser)
                 text = message
                 if status and allowed_to_change_status:
                     st_message = (('Status change %(transition_icon)s %(status)s')
                                   % {'transition_icon': '>',
                                      'status': ChangesetStatus.get_status_lbl(status)})
                     text = message or st_message
                 rc_config = SettingsModel().get_all_settings()
                 renderer = rc_config.get('rhodecode_markup_renderer', 'rst')
                 comment = ChangesetCommentsModel().create(
                     text=text,
                     repo=pull_request.target_repo.repo_id,
                     user=apiuser.user_id,
                     pull_request=pull_request.pull_request_id,
                     f_path=None,
                     line_no=None,
                     status_change=(ChangesetStatus.get_status_lbl(status)
                                    if status and allowed_to_change_status else None),
                     status_change_type=(status
                                         if status and allowed_to_change_status else None),
                     closing_pr=False,
                     renderer=renderer
                 )
                 if allowed_to_change_status and status:
                     ChangesetStatusModel().set_status(
                         pull_request.target_repo.repo_id,
                         status,
                         apiuser.user_id,
                         comment,
                         pull_request=pull_request.pull_request_id
                     )
                     Session().flush()
                 Session().commit()
                 data = {
                     'pull_request_id': pull_request.pull_request_id,
                     'comment_id': comment.comment_id,
                     'status': status
                 }
                 return data
             @jsonrpc_method()
             def create_pull_request(
                     request, apiuser, source_repo, target_repo, source_ref, target_ref,
                     title, description=Optional(''), reviewers=Optional(None)):
                 """
                 Creates a new pull request.
                 Accepts refs in the following formats:
                     * branch:<branch_name>:<sha>
                     * branch:<branch_name>
                     * bookmark:<bookmark_name>:<sha> (Mercurial only)
                     * bookmark:<bookmark_name> (Mercurial only)
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param source_repo: Set the source repository name.
                 :type source_repo: str
                 :param target_repo: Set the target repository name.
                 :type target_repo: str
                 :param source_ref: Set the source ref name.
                 :type source_ref: str
                 :param target_ref: Set the target ref name.
                 :type target_ref: str
                 :param title: Set the pull request title.
                 :type title: str
                 :param description: Set the pull request description.
                 :type description: Optional(str)
                 :param reviewers: Set the new pull request reviewers list.
                 :type reviewers: Optional(list)
                     Accepts username strings or objects of the format:
                     {
                         'username': 'nick', 'reasons': ['original author']
                     }
                 """
                 source = get_repo_or_error(source_repo)
                 target = get_repo_or_error(target_repo)
                 if not has_superadmin_permission(apiuser):
                     _perms = ('repository.admin', 'repository.write', 'repository.read',)
-                    has_repo_permissions(apiuser, source_repo, source, _perms)
+                    validate_repo_permissions(apiuser, source_repo, source, _perms)
                 full_source_ref = resolve_ref_or_error(source_ref, source)
                 full_target_ref = resolve_ref_or_error(target_ref, target)
                 source_commit = get_commit_or_error(full_source_ref, source)
                 target_commit = get_commit_or_error(full_target_ref, target)
                 source_scm = source.scm_instance()
                 target_scm = target.scm_instance()
                 commit_ranges = target_scm.compare(
                     target_commit.raw_id, source_commit.raw_id, source_scm,
                     merge=True, pre_load=[])
                 ancestor = target_scm.get_common_ancestor(
                     target_commit.raw_id, source_commit.raw_id, source_scm)
                 if not commit_ranges:
                     raise JSONRPCError('no commits found')
                 if not ancestor:
                     raise JSONRPCError('no common ancestor found')
                 reviewer_objects = Optional.extract(reviewers) or []
                 if not isinstance(reviewer_objects, list):
                     raise JSONRPCError('reviewers should be specified as a list')
                 reviewers_reasons = []
                 for reviewer_object in reviewer_objects:
                     reviewer_reasons = []
                     if isinstance(reviewer_object, (basestring, int)):
                         reviewer_username = reviewer_object
                     else:
                         reviewer_username = reviewer_object['username']
                         reviewer_reasons = reviewer_object.get('reasons', [])
                     user = get_user_or_error(reviewer_username)
                     reviewers_reasons.append((user.user_id, reviewer_reasons))
                 pull_request_model = PullRequestModel()
                 pull_request = pull_request_model.create(
                     created_by=apiuser.user_id,
                     source_repo=source_repo,
                     source_ref=full_source_ref,
                     target_repo=target_repo,
                     target_ref=full_target_ref,
                     revisions=reversed(
                         [commit.raw_id for commit in reversed(commit_ranges)]),
                     reviewers=reviewers_reasons,
                     title=title,
                     description=Optional.extract(description)
                 )
                 Session().commit()
                 data = {
                     'msg': 'Created new pull request `{}`'.format(title),
                     'pull_request_id': pull_request.pull_request_id,
                 }
                 return data
             @jsonrpc_method()
             def update_pull_request(
                     request, apiuser, repoid, pullrequestid, title=Optional(''),
                     description=Optional(''), reviewers=Optional(None),
                     update_commits=Optional(None), close_pull_request=Optional(None)):
                 """
                 Updates a pull request.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: The repository name or repository ID.
                 :type repoid: str or int
                 :param pullrequestid: The pull request ID.
                 :type pullrequestid: int
                 :param title: Set the pull request title.
                 :type title: str
                 :param description: Update pull request description.
                 :type description: Optional(str)
                 :param reviewers: Update pull request reviewers list with new value.
                 :type reviewers: Optional(list)
                 :param update_commits: Trigger update of commits for this pull request
                 :type: update_commits: Optional(bool)
                 :param close_pull_request: Close this pull request with rejected state
                 :type: close_pull_request: Optional(bool)
                 Example output:
                 .. code-block:: bash
                   id : <id_given_in_input>
                   result :
                     {
                         "msg": "Updated pull request `63`",
                         "pull_request": <pull_request_object>,
                         "updated_reviewers": {
                           "added": [
                             "username"
                           ],
                           "removed": []
                         },
                         "updated_commits": {
                           "added": [
                             "<sha1_hash>"
                           ],
                           "common": [
                             "<sha1_hash>",
                             "<sha1_hash>",
                           ],
                           "removed": []
                         }
                     }
                   error :  null
                 """
                 repo = get_repo_or_error(repoid)
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_update(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError(
                         'pull request `%s` update failed, no permission to update.' % (
                             pullrequestid,))
                 if pull_request.is_closed():
                     raise JSONRPCError(
                         'pull request `%s` update failed, pull request is closed' % (
                             pullrequestid,))
                 reviewer_objects = Optional.extract(reviewers) or []
                 if not isinstance(reviewer_objects, list):
                     raise JSONRPCError('reviewers should be specified as a list')
                 reviewers_reasons = []
                 reviewer_ids = set()
                 for reviewer_object in reviewer_objects:
                     reviewer_reasons = []
                     if isinstance(reviewer_object, (int, basestring)):
                         reviewer_username = reviewer_object
                     else:
                         reviewer_username = reviewer_object['username']
                         reviewer_reasons = reviewer_object.get('reasons', [])
                     user = get_user_or_error(reviewer_username)
                     reviewer_ids.add(user.user_id)
                     reviewers_reasons.append((user.user_id, reviewer_reasons))
                 title = Optional.extract(title)
                 description = Optional.extract(description)
                 if title or description:
                     PullRequestModel().edit(
                         pull_request, title or pull_request.title,
                         description or pull_request.description)
                     Session().commit()
                 commit_changes = {"added": [], "common": [], "removed": []}
                 if str2bool(Optional.extract(update_commits)):
                     if PullRequestModel().has_valid_update_type(pull_request):
                         update_response = PullRequestModel().update_commits(
                             pull_request)
                         commit_changes = update_response.changes or commit_changes
                     Session().commit()
                 reviewers_changes = {"added": [], "removed": []}
                 if reviewer_ids:
                     added_reviewers, removed_reviewers = \
                         PullRequestModel().update_reviewers(pull_request, reviewers_reasons)
                     reviewers_changes['added'] = sorted(
                         [get_user_or_error(n).username for n in added_reviewers])
                     reviewers_changes['removed'] = sorted(
                         [get_user_or_error(n).username for n in removed_reviewers])
                     Session().commit()
                 if str2bool(Optional.extract(close_pull_request)):
                     PullRequestModel().close_pull_request_with_comment(
                         pull_request, apiuser, repo)
                     Session().commit()
                 data = {
                     'msg': 'Updated pull request `{}`'.format(
                         pull_request.pull_request_id),
                     'pull_request': pull_request.get_api_data(),
                     'updated_commits': commit_changes,
                     'updated_reviewers': reviewers_changes
                 }
                 return data

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages