##// END OF EJS Templates
rhodecode-enterprise-ce
RSS
pyramid-views: always register auth_user for via the base view....
marcink -
r1533:1f655951 default
parent child Browse files
Show More
Show file before | Show file after | Hide comments
@@ -1,64 +1,66 b''
1 # -*- coding: utf-8 -*-
1 # -*- coding: utf-8 -*-
2
2
3 # Copyright (C) 2016-2017 RhodeCode GmbH
3 # Copyright (C) 2016-2017 RhodeCode GmbH
4 #
4 #
5 # This program is free software: you can redistribute it and/or modify
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU Affero General Public License, version 3
6 # it under the terms of the GNU Affero General Public License, version 3
7 # (only), as published by the Free Software Foundation.
7 # (only), as published by the Free Software Foundation.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU Affero General Public License
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 #
16 #
17 # This program is dual-licensed. If you wish to learn more about the
17 # This program is dual-licensed. If you wish to learn more about the
18 # RhodeCode Enterprise Edition, including its added features, Support services,
18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20
20
21 import logging
21 import logging
22 from pylons import tmpl_context as c
22 from pylons import tmpl_context as c
23
23
24 from rhodecode.lib.utils2 import StrictAttributeDict
24 from rhodecode.lib.utils2 import StrictAttributeDict
25
25
26 log = logging.getLogger(__name__)
26 log = logging.getLogger(__name__)
27
27
28
28
29 ADMIN_PREFIX = '/_admin'
29 ADMIN_PREFIX = '/_admin'
30 STATIC_FILE_PREFIX = '/_static'
30 STATIC_FILE_PREFIX = '/_static'
31
31
32
32
33 class TemplateArgs(StrictAttributeDict):
33 class TemplateArgs(StrictAttributeDict):
34 pass
34 pass
35
35
36
36
37 class BaseAppView(object):
37 class BaseAppView(object):
38
38
39 def __init__(self, context, request):
39 def __init__(self, context, request):
40 self.request = request
40 self.request = request
41 self.context = context
41 self.context = context
42 self.session = request.session
42 self.session = request.session
43 self._rhodecode_user = request.user
43 self._rhodecode_user = request.user
44
44
45 def _get_local_tmpl_context(self):
45 def _get_local_tmpl_context(self):
46 return TemplateArgs()
46 c = TemplateArgs()
47 c.auth_user = self.request.user
48 return c
47
49
48 def _register_global_c(self, tmpl_args):
50 def _register_global_c(self, tmpl_args):
49 """
51 """
50 Registers attributes to pylons global `c`
52 Registers attributes to pylons global `c`
51 """
53 """
52 # TODO(marcink): remove once pyramid migration is finished
54 # TODO(marcink): remove once pyramid migration is finished
53 for k, v in tmpl_args.items():
55 for k, v in tmpl_args.items():
54 setattr(c, k, v)
56 setattr(c, k, v)
55
57
56 def _get_template_context(self, tmpl_args):
58 def _get_template_context(self, tmpl_args):
57
59
58 self._register_global_c(tmpl_args)
60 self._register_global_c(tmpl_args)
59
61
60 return {
62 return {
61 'defaults': {},
63 'defaults': {},
62 'errors': {},
64 'errors': {},
63 }
65 }
64
66
Show file before | Show file after | Hide comments
@@ -1,240 +1,239 b''
1 # -*- coding: utf-8 -*-
1 # -*- coding: utf-8 -*-
2
2
3 # Copyright (C) 2016-2017 RhodeCode GmbH
3 # Copyright (C) 2016-2017 RhodeCode GmbH
4 #
4 #
5 # This program is free software: you can redistribute it and/or modify
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU Affero General Public License, version 3
6 # it under the terms of the GNU Affero General Public License, version 3
7 # (only), as published by the Free Software Foundation.
7 # (only), as published by the Free Software Foundation.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU Affero General Public License
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 #
16 #
17 # This program is dual-licensed. If you wish to learn more about the
17 # This program is dual-licensed. If you wish to learn more about the
18 # RhodeCode Enterprise Edition, including its added features, Support services,
18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20
20
21 import logging
21 import logging
22
22
23 from pyramid.httpexceptions import HTTPFound
23 from pyramid.httpexceptions import HTTPFound
24 from pyramid.view import view_config
24 from pyramid.view import view_config
25
25
26 from rhodecode.apps._base import BaseAppView
26 from rhodecode.apps._base import BaseAppView
27 from rhodecode.lib.auth import (
27 from rhodecode.lib.auth import (
28 LoginRequired, HasPermissionAllDecorator, CSRFRequired)
28 LoginRequired, HasPermissionAllDecorator, CSRFRequired)
29 from rhodecode.lib import helpers as h
29 from rhodecode.lib import helpers as h
30 from rhodecode.lib.utils import PartialRenderer
30 from rhodecode.lib.utils import PartialRenderer
31 from rhodecode.lib.utils2 import safe_int, safe_unicode
31 from rhodecode.lib.utils2 import safe_int, safe_unicode
32 from rhodecode.model.auth_token import AuthTokenModel
32 from rhodecode.model.auth_token import AuthTokenModel
33 from rhodecode.model.db import User, or_
33 from rhodecode.model.db import User, or_
34 from rhodecode.model.meta import Session
34 from rhodecode.model.meta import Session
35
35
36 log = logging.getLogger(__name__)
36 log = logging.getLogger(__name__)
37
37
38
38
39 class AdminUsersView(BaseAppView):
39 class AdminUsersView(BaseAppView):
40 ALLOW_SCOPED_TOKENS = False
40 ALLOW_SCOPED_TOKENS = False
41 """
41 """
42 This view has alternative version inside EE, if modified please take a look
42 This view has alternative version inside EE, if modified please take a look
43 in there as well.
43 in there as well.
44 """
44 """
45
45
46 def load_default_context(self):
46 def load_default_context(self):
47 c = self._get_local_tmpl_context()
47 c = self._get_local_tmpl_context()
48 c.auth_user = self.request.user
49 c.allow_scoped_tokens = self.ALLOW_SCOPED_TOKENS
48 c.allow_scoped_tokens = self.ALLOW_SCOPED_TOKENS
50 self._register_global_c(c)
49 self._register_global_c(c)
51 return c
50 return c
52
51
53 def _redirect_for_default_user(self, username):
52 def _redirect_for_default_user(self, username):
54 _ = self.request.translate
53 _ = self.request.translate
55 if username == User.DEFAULT_USER:
54 if username == User.DEFAULT_USER:
56 h.flash(_("You can't edit this user"), category='warning')
55 h.flash(_("You can't edit this user"), category='warning')
57 # TODO(marcink): redirect to 'users' admin panel once this
56 # TODO(marcink): redirect to 'users' admin panel once this
58 # is a pyramid view
57 # is a pyramid view
59 raise HTTPFound('/')
58 raise HTTPFound('/')
60
59
61 def _extract_ordering(self, request):
60 def _extract_ordering(self, request):
62 column_index = safe_int(request.GET.get('order[0][column]'))
61 column_index = safe_int(request.GET.get('order[0][column]'))
63 order_dir = request.GET.get(
62 order_dir = request.GET.get(
64 'order[0][dir]', 'desc')
63 'order[0][dir]', 'desc')
65 order_by = request.GET.get(
64 order_by = request.GET.get(
66 'columns[%s][data][sort]' % column_index, 'name_raw')
65 'columns[%s][data][sort]' % column_index, 'name_raw')
67
66
68 # translate datatable to DB columns
67 # translate datatable to DB columns
69 order_by = {
68 order_by = {
70 'first_name': 'name',
69 'first_name': 'name',
71 'last_name': 'lastname',
70 'last_name': 'lastname',
72 'last_activity': ''
71 'last_activity': ''
73 }.get(order_by) or order_by
72 }.get(order_by) or order_by
74
73
75 search_q = request.GET.get('search[value]')
74 search_q = request.GET.get('search[value]')
76 return search_q, order_by, order_dir
75 return search_q, order_by, order_dir
77
76
78 def _extract_chunk(self, request):
77 def _extract_chunk(self, request):
79 start = safe_int(request.GET.get('start'), 0)
78 start = safe_int(request.GET.get('start'), 0)
80 length = safe_int(request.GET.get('length'), 25)
79 length = safe_int(request.GET.get('length'), 25)
81 draw = safe_int(request.GET.get('draw'))
80 draw = safe_int(request.GET.get('draw'))
82 return draw, start, length
81 return draw, start, length
83
82
84 @HasPermissionAllDecorator('hg.admin')
83 @HasPermissionAllDecorator('hg.admin')
85 @view_config(
84 @view_config(
86 route_name='users', request_method='GET',
85 route_name='users', request_method='GET',
87 renderer='rhodecode:templates/admin/users/users.mako')
86 renderer='rhodecode:templates/admin/users/users.mako')
88 def users_list(self):
87 def users_list(self):
89 c = self.load_default_context()
88 c = self.load_default_context()
90 return self._get_template_context(c)
89 return self._get_template_context(c)
91
90
92 @HasPermissionAllDecorator('hg.admin')
91 @HasPermissionAllDecorator('hg.admin')
93 @view_config(
92 @view_config(
94 # renderer defined below
93 # renderer defined below
95 route_name='users_data', request_method='GET', renderer='json',
94 route_name='users_data', request_method='GET', renderer='json',
96 xhr=True)
95 xhr=True)
97 def users_list_data(self):
96 def users_list_data(self):
98 draw, start, limit = self._extract_chunk(self.request)
97 draw, start, limit = self._extract_chunk(self.request)
99 search_q, order_by, order_dir = self._extract_ordering(self.request)
98 search_q, order_by, order_dir = self._extract_ordering(self.request)
100
99
101 _render = PartialRenderer('data_table/_dt_elements.mako')
100 _render = PartialRenderer('data_table/_dt_elements.mako')
102
101
103 def user_actions(user_id, username):
102 def user_actions(user_id, username):
104 return _render("user_actions", user_id, username)
103 return _render("user_actions", user_id, username)
105
104
106 users_data_total_count = User.query()\
105 users_data_total_count = User.query()\
107 .filter(User.username != User.DEFAULT_USER) \
106 .filter(User.username != User.DEFAULT_USER) \
108 .count()
107 .count()
109
108
110 # json generate
109 # json generate
111 base_q = User.query().filter(User.username != User.DEFAULT_USER)
110 base_q = User.query().filter(User.username != User.DEFAULT_USER)
112
111
113 if search_q:
112 if search_q:
114 like_expression = u'%{}%'.format(safe_unicode(search_q))
113 like_expression = u'%{}%'.format(safe_unicode(search_q))
115 base_q = base_q.filter(or_(
114 base_q = base_q.filter(or_(
116 User.username.ilike(like_expression),
115 User.username.ilike(like_expression),
117 User._email.ilike(like_expression),
116 User._email.ilike(like_expression),
118 User.name.ilike(like_expression),
117 User.name.ilike(like_expression),
119 User.lastname.ilike(like_expression),
118 User.lastname.ilike(like_expression),
120 ))
119 ))
121
120
122 users_data_total_filtered_count = base_q.count()
121 users_data_total_filtered_count = base_q.count()
123
122
124 sort_col = getattr(User, order_by, None)
123 sort_col = getattr(User, order_by, None)
125 if sort_col and order_dir == 'asc':
124 if sort_col and order_dir == 'asc':
126 base_q = base_q.order_by(sort_col.asc())
125 base_q = base_q.order_by(sort_col.asc())
127 elif sort_col:
126 elif sort_col:
128 base_q = base_q.order_by(sort_col.desc())
127 base_q = base_q.order_by(sort_col.desc())
129
128
130 base_q = base_q.offset(start).limit(limit)
129 base_q = base_q.offset(start).limit(limit)
131 users_list = base_q.all()
130 users_list = base_q.all()
132
131
133 users_data = []
132 users_data = []
134 for user in users_list:
133 for user in users_list:
135 users_data.append({
134 users_data.append({
136 "username": h.gravatar_with_user(user.username),
135 "username": h.gravatar_with_user(user.username),
137 "email": user.email,
136 "email": user.email,
138 "first_name": h.escape(user.name),
137 "first_name": h.escape(user.name),
139 "last_name": h.escape(user.lastname),
138 "last_name": h.escape(user.lastname),
140 "last_login": h.format_date(user.last_login),
139 "last_login": h.format_date(user.last_login),
141 "last_activity": h.format_date(
140 "last_activity": h.format_date(
142 h.time_to_datetime(user.user_data.get('last_activity', 0))),
141 h.time_to_datetime(user.user_data.get('last_activity', 0))),
143 "active": h.bool2icon(user.active),
142 "active": h.bool2icon(user.active),
144 "active_raw": user.active,
143 "active_raw": user.active,
145 "admin": h.bool2icon(user.admin),
144 "admin": h.bool2icon(user.admin),
146 "extern_type": user.extern_type,
145 "extern_type": user.extern_type,
147 "extern_name": user.extern_name,
146 "extern_name": user.extern_name,
148 "action": user_actions(user.user_id, user.username),
147 "action": user_actions(user.user_id, user.username),
149 })
148 })
150
149
151 data = ({
150 data = ({
152 'draw': draw,
151 'draw': draw,
153 'data': users_data,
152 'data': users_data,
154 'recordsTotal': users_data_total_count,
153 'recordsTotal': users_data_total_count,
155 'recordsFiltered': users_data_total_filtered_count,
154 'recordsFiltered': users_data_total_filtered_count,
156 })
155 })
157
156
158 return data
157 return data
159
158
160 @LoginRequired()
159 @LoginRequired()
161 @HasPermissionAllDecorator('hg.admin')
160 @HasPermissionAllDecorator('hg.admin')
162 @view_config(
161 @view_config(
163 route_name='edit_user_auth_tokens', request_method='GET',
162 route_name='edit_user_auth_tokens', request_method='GET',
164 renderer='rhodecode:templates/admin/users/user_edit.mako')
163 renderer='rhodecode:templates/admin/users/user_edit.mako')
165 def auth_tokens(self):
164 def auth_tokens(self):
166 _ = self.request.translate
165 _ = self.request.translate
167 c = self.load_default_context()
166 c = self.load_default_context()
168
167
169 user_id = self.request.matchdict.get('user_id')
168 user_id = self.request.matchdict.get('user_id')
170 c.user = User.get_or_404(user_id, pyramid_exc=True)
169 c.user = User.get_or_404(user_id, pyramid_exc=True)
171 self._redirect_for_default_user(c.user.username)
170 self._redirect_for_default_user(c.user.username)
172
171
173 c.active = 'auth_tokens'
172 c.active = 'auth_tokens'
174
173
175 c.lifetime_values = [
174 c.lifetime_values = [
176 (str(-1), _('forever')),
175 (str(-1), _('forever')),
177 (str(5), _('5 minutes')),
176 (str(5), _('5 minutes')),
178 (str(60), _('1 hour')),
177 (str(60), _('1 hour')),
179 (str(60 * 24), _('1 day')),
178 (str(60 * 24), _('1 day')),
180 (str(60 * 24 * 30), _('1 month')),
179 (str(60 * 24 * 30), _('1 month')),
181 ]
180 ]
182 c.lifetime_options = [(c.lifetime_values, _("Lifetime"))]
181 c.lifetime_options = [(c.lifetime_values, _("Lifetime"))]
183 c.role_values = [
182 c.role_values = [
184 (x, AuthTokenModel.cls._get_role_name(x))
183 (x, AuthTokenModel.cls._get_role_name(x))
185 for x in AuthTokenModel.cls.ROLES]
184 for x in AuthTokenModel.cls.ROLES]
186 c.role_options = [(c.role_values, _("Role"))]
185 c.role_options = [(c.role_values, _("Role"))]
187 c.user_auth_tokens = AuthTokenModel().get_auth_tokens(
186 c.user_auth_tokens = AuthTokenModel().get_auth_tokens(
188 c.user.user_id, show_expired=True)
187 c.user.user_id, show_expired=True)
189 return self._get_template_context(c)
188 return self._get_template_context(c)
190
189
191 def maybe_attach_token_scope(self, token):
190 def maybe_attach_token_scope(self, token):
192 # implemented in EE edition
191 # implemented in EE edition
193 pass
192 pass
194
193
195 @LoginRequired()
194 @LoginRequired()
196 @HasPermissionAllDecorator('hg.admin')
195 @HasPermissionAllDecorator('hg.admin')
197 @CSRFRequired()
196 @CSRFRequired()
198 @view_config(
197 @view_config(
199 route_name='edit_user_auth_tokens_add', request_method='POST')
198 route_name='edit_user_auth_tokens_add', request_method='POST')
200 def auth_tokens_add(self):
199 def auth_tokens_add(self):
201 _ = self.request.translate
200 _ = self.request.translate
202 c = self.load_default_context()
201 c = self.load_default_context()
203
202
204 user_id = self.request.matchdict.get('user_id')
203 user_id = self.request.matchdict.get('user_id')
205 c.user = User.get_or_404(user_id, pyramid_exc=True)
204 c.user = User.get_or_404(user_id, pyramid_exc=True)
206 self._redirect_for_default_user(c.user.username)
205 self._redirect_for_default_user(c.user.username)
207
206
208 lifetime = safe_int(self.request.POST.get('lifetime'), -1)
207 lifetime = safe_int(self.request.POST.get('lifetime'), -1)
209 description = self.request.POST.get('description')
208 description = self.request.POST.get('description')
210 role = self.request.POST.get('role')
209 role = self.request.POST.get('role')
211
210
212 token = AuthTokenModel().create(
211 token = AuthTokenModel().create(
213 c.user.user_id, description, lifetime, role)
212 c.user.user_id, description, lifetime, role)
214 self.maybe_attach_token_scope(token)
213 self.maybe_attach_token_scope(token)
215 Session().commit()
214 Session().commit()
216
215
217 h.flash(_("Auth token successfully created"), category='success')
216 h.flash(_("Auth token successfully created"), category='success')
218 return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
217 return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
219
218
220 @LoginRequired()
219 @LoginRequired()
221 @HasPermissionAllDecorator('hg.admin')
220 @HasPermissionAllDecorator('hg.admin')
222 @CSRFRequired()
221 @CSRFRequired()
223 @view_config(
222 @view_config(
224 route_name='edit_user_auth_tokens_delete', request_method='POST')
223 route_name='edit_user_auth_tokens_delete', request_method='POST')
225 def auth_tokens_delete(self):
224 def auth_tokens_delete(self):
226 _ = self.request.translate
225 _ = self.request.translate
227 c = self.load_default_context()
226 c = self.load_default_context()
228
227
229 user_id = self.request.matchdict.get('user_id')
228 user_id = self.request.matchdict.get('user_id')
230 c.user = User.get_or_404(user_id, pyramid_exc=True)
229 c.user = User.get_or_404(user_id, pyramid_exc=True)
231 self._redirect_for_default_user(c.user.username)
230 self._redirect_for_default_user(c.user.username)
232
231
233 del_auth_token = self.request.POST.get('del_auth_token')
232 del_auth_token = self.request.POST.get('del_auth_token')
234
233
235 if del_auth_token:
234 if del_auth_token:
236 AuthTokenModel().delete(del_auth_token, c.user.user_id)
235 AuthTokenModel().delete(del_auth_token, c.user.user_id)
237 Session().commit()
236 Session().commit()
238 h.flash(_("Auth token successfully deleted"), category='success')
237 h.flash(_("Auth token successfully deleted"), category='success')
239
238
240 return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
239 return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
Show file before | Show file after | Hide comments
@@ -1,120 +1,119 b''
1 # -*- coding: utf-8 -*-
1 # -*- coding: utf-8 -*-
2
2
3 # Copyright (C) 2016-2017 RhodeCode GmbH
3 # Copyright (C) 2016-2017 RhodeCode GmbH
4 #
4 #
5 # This program is free software: you can redistribute it and/or modify
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU Affero General Public License, version 3
6 # it under the terms of the GNU Affero General Public License, version 3
7 # (only), as published by the Free Software Foundation.
7 # (only), as published by the Free Software Foundation.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU Affero General Public License
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 #
16 #
17 # This program is dual-licensed. If you wish to learn more about the
17 # This program is dual-licensed. If you wish to learn more about the
18 # RhodeCode Enterprise Edition, including its added features, Support services,
18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20
20
21 import logging
21 import logging
22
22
23 from pyramid.httpexceptions import HTTPFound
23 from pyramid.httpexceptions import HTTPFound
24 from pyramid.view import view_config
24 from pyramid.view import view_config
25
25
26 from rhodecode.apps._base import BaseAppView
26 from rhodecode.apps._base import BaseAppView
27 from rhodecode.lib.auth import LoginRequired, NotAnonymous, CSRFRequired
27 from rhodecode.lib.auth import LoginRequired, NotAnonymous, CSRFRequired
28 from rhodecode.lib.utils2 import safe_int
28 from rhodecode.lib.utils2 import safe_int
29 from rhodecode.lib import helpers as h
29 from rhodecode.lib import helpers as h
30 from rhodecode.model.auth_token import AuthTokenModel
30 from rhodecode.model.auth_token import AuthTokenModel
31 from rhodecode.model.meta import Session
31 from rhodecode.model.meta import Session
32
32
33 log = logging.getLogger(__name__)
33 log = logging.getLogger(__name__)
34
34
35
35
36 class MyAccountView(BaseAppView):
36 class MyAccountView(BaseAppView):
37 ALLOW_SCOPED_TOKENS = False
37 ALLOW_SCOPED_TOKENS = False
38 """
38 """
39 This view has alternative version inside EE, if modified please take a look
39 This view has alternative version inside EE, if modified please take a look
40 in there as well.
40 in there as well.
41 """
41 """
42
42
43 def load_default_context(self):
43 def load_default_context(self):
44 c = self._get_local_tmpl_context()
44 c = self._get_local_tmpl_context()
45
45
46 c.auth_user = self.request.user
47 c.user = c.auth_user.get_instance()
46 c.user = c.auth_user.get_instance()
48 c.allow_scoped_tokens = self.ALLOW_SCOPED_TOKENS
47 c.allow_scoped_tokens = self.ALLOW_SCOPED_TOKENS
49 self._register_global_c(c)
48 self._register_global_c(c)
50 return c
49 return c
51
50
52 @LoginRequired()
51 @LoginRequired()
53 @NotAnonymous()
52 @NotAnonymous()
54 @view_config(
53 @view_config(
55 route_name='my_account_auth_tokens', request_method='GET',
54 route_name='my_account_auth_tokens', request_method='GET',
56 renderer='rhodecode:templates/admin/my_account/my_account.mako')
55 renderer='rhodecode:templates/admin/my_account/my_account.mako')
57 def my_account_auth_tokens(self):
56 def my_account_auth_tokens(self):
58 _ = self.request.translate
57 _ = self.request.translate
59
58
60 c = self.load_default_context()
59 c = self.load_default_context()
61 c.active = 'auth_tokens'
60 c.active = 'auth_tokens'
62
61
63 c.lifetime_values = [
62 c.lifetime_values = [
64 (str(-1), _('forever')),
63 (str(-1), _('forever')),
65 (str(5), _('5 minutes')),
64 (str(5), _('5 minutes')),
66 (str(60), _('1 hour')),
65 (str(60), _('1 hour')),
67 (str(60 * 24), _('1 day')),
66 (str(60 * 24), _('1 day')),
68 (str(60 * 24 * 30), _('1 month')),
67 (str(60 * 24 * 30), _('1 month')),
69 ]
68 ]
70 c.lifetime_options = [(c.lifetime_values, _("Lifetime"))]
69 c.lifetime_options = [(c.lifetime_values, _("Lifetime"))]
71 c.role_values = [
70 c.role_values = [
72 (x, AuthTokenModel.cls._get_role_name(x))
71 (x, AuthTokenModel.cls._get_role_name(x))
73 for x in AuthTokenModel.cls.ROLES]
72 for x in AuthTokenModel.cls.ROLES]
74 c.role_options = [(c.role_values, _("Role"))]
73 c.role_options = [(c.role_values, _("Role"))]
75 c.user_auth_tokens = AuthTokenModel().get_auth_tokens(
74 c.user_auth_tokens = AuthTokenModel().get_auth_tokens(
76 c.user.user_id, show_expired=True)
75 c.user.user_id, show_expired=True)
77 return self._get_template_context(c)
76 return self._get_template_context(c)
78
77
79 def maybe_attach_token_scope(self, token):
78 def maybe_attach_token_scope(self, token):
80 # implemented in EE edition
79 # implemented in EE edition
81 pass
80 pass
82
81
83 @LoginRequired()
82 @LoginRequired()
84 @NotAnonymous()
83 @NotAnonymous()
85 @CSRFRequired()
84 @CSRFRequired()
86 @view_config(
85 @view_config(
87 route_name='my_account_auth_tokens_add', request_method='POST')
86 route_name='my_account_auth_tokens_add', request_method='POST')
88 def my_account_auth_tokens_add(self):
87 def my_account_auth_tokens_add(self):
89 _ = self.request.translate
88 _ = self.request.translate
90 c = self.load_default_context()
89 c = self.load_default_context()
91
90
92 lifetime = safe_int(self.request.POST.get('lifetime'), -1)
91 lifetime = safe_int(self.request.POST.get('lifetime'), -1)
93 description = self.request.POST.get('description')
92 description = self.request.POST.get('description')
94 role = self.request.POST.get('role')
93 role = self.request.POST.get('role')
95
94
96 token = AuthTokenModel().create(
95 token = AuthTokenModel().create(
97 c.user.user_id, description, lifetime, role)
96 c.user.user_id, description, lifetime, role)
98 self.maybe_attach_token_scope(token)
97 self.maybe_attach_token_scope(token)
99 Session().commit()
98 Session().commit()
100
99
101 h.flash(_("Auth token successfully created"), category='success')
100 h.flash(_("Auth token successfully created"), category='success')
102 return HTTPFound(h.route_path('my_account_auth_tokens'))
101 return HTTPFound(h.route_path('my_account_auth_tokens'))
103
102
104 @LoginRequired()
103 @LoginRequired()
105 @NotAnonymous()
104 @NotAnonymous()
106 @CSRFRequired()
105 @CSRFRequired()
107 @view_config(
106 @view_config(
108 route_name='my_account_auth_tokens_delete', request_method='POST')
107 route_name='my_account_auth_tokens_delete', request_method='POST')
109 def my_account_auth_tokens_delete(self):
108 def my_account_auth_tokens_delete(self):
110 _ = self.request.translate
109 _ = self.request.translate
111 c = self.load_default_context()
110 c = self.load_default_context()
112
111
113 del_auth_token = self.request.POST.get('del_auth_token')
112 del_auth_token = self.request.POST.get('del_auth_token')
114
113
115 if del_auth_token:
114 if del_auth_token:
116 AuthTokenModel().delete(del_auth_token, c.user.user_id)
115 AuthTokenModel().delete(del_auth_token, c.user.user_id)
117 Session().commit()
116 Session().commit()
118 h.flash(_("Auth token successfully deleted"), category='success')
117 h.flash(_("Auth token successfully deleted"), category='success')
119
118
120 return HTTPFound(h.route_path('my_account_auth_tokens'))
119 return HTTPFound(h.route_path('my_account_auth_tokens'))
General Comments 0
You need to be logged in to leave comments. Login now