rhodecode-enterprise-ce Commit - r5522:33fc2e7c

feat(vcs clients filtering): added changes related to vcs client filtering needed for EE. Fixes:

ilin.s -

r5522:33fc2e7c default

parent child

rhodecode/templates/admin/security/edit_allowed_vcs_client_versions.mako

0 created 644 +62 0

@@ -0,0 +1,62 b''
	1	<style>
	2	.form-group {
	3	margin-bottom: 15px;
	4	}
	5
	6	.form-group label {
	7	display: flex;
	8	align-items: left;
	9	font-weight: bold;
	10	}
	11
	12	.form-control {
	13	width: 60%;
	14	padding: 10px;
	15	font-size: 1rem;
	16	line-height: 1.5;
	17	border: 1px solid #ced4da;
	18	border-radius: 4px;
	19	box-sizing: border-box;
	20	}
	21
	22	.btn-primary {
	23	background-color: #007bff;
	24	border: none;
	25	padding: 10px 20px;
	26	color: white;
	27	font-size: 1rem;
	28	border-radius: 4px;
	29	cursor: pointer;
	30	}
	31
	32	.btn-primary:hover {
	33	background-color: #0056b3;
	34	}
	35	.form-group .help_block {
	36	display: block;
	37	width: 100%;
	38	margin-top: 10px;
	39	text-align: left;
	40	font-size: 0.875rem;
	41	}
	42	</style>
	43
	44	<div>
	45	<div class="form-group">
	46	${h.secure_form(h.route_path('check_2fa'), request=request, id='allowed_clients_form')}
	47	<p><label for="git">${_('git')}:</label>
	48	${h.text('git', class_="form-control", value=initial_git)}</p>
	49	<p><label for="hg">${_('hg')}:</label>
	50	${h.text('hg', class_="form-control", value=initial_hg)}</p>
	51	<p><label for="svn">${_('svn')}:</label>
	52	${h.text('svn', class_="form-control", value=initial_svn)}</p>
	53	%for k, v in errors.items():
	54	<span class="error-message">${k}: ${v}</span>
	55	<br />
	56	%endfor
	57	<p class="help_block">${_('Set rules for allowed git, hg or svn client versions. You can set exact version (for example 2.0.9) or use comparison operators to set earliest or latest version (>=2.6.0)')}</p>
	58
	59	${h.submit('send', _('Save'), class_="btn btn-primary")}
	60	${h.end_form()}
	61	</div>
	62	</div>

rhodecode/apps/admin/__init__.py

0 +12 -3

             # Copyright (C) 2016-2023 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             from rhodecode.apps._base import ADMIN_PREFIX
             from rhodecode.apps._base.navigation import includeme as nav_includeme
             from rhodecode.apps.admin.views.main_views import AdminMainView
             def admin_routes(config):
                 """
                 Admin prefixed routes
                 """
                 from rhodecode.apps.admin.views.audit_logs import AdminAuditLogsView
                 from rhodecode.apps.admin.views.artifacts import AdminArtifactsView
                 from rhodecode.apps.admin.views.automation import AdminAutomationView
                 from rhodecode.apps.admin.views.scheduler import AdminSchedulerView
                 from rhodecode.apps.admin.views.defaults import AdminDefaultSettingsView
                 from rhodecode.apps.admin.views.exception_tracker import ExceptionsTrackerView
                 from rhodecode.apps.admin.views.open_source_licenses import OpenSourceLicensesAdminSettingsView
                 from rhodecode.apps.admin.views.permissions import AdminPermissionsView
                 from rhodecode.apps.admin.views.process_management import AdminProcessManagementView
                 from rhodecode.apps.admin.views.repo_groups import AdminRepoGroupsView
                 from rhodecode.apps.admin.views.repositories import AdminReposView
                 from rhodecode.apps.admin.views.sessions import AdminSessionSettingsView
                 from rhodecode.apps.admin.views.settings import AdminSettingsView
                 from rhodecode.apps.admin.views.svn_config import AdminSvnConfigView
                 from rhodecode.apps.admin.views.system_info import AdminSystemInfoSettingsView
                 from rhodecode.apps.admin.views.user_groups import AdminUserGroupsView
                 from rhodecode.apps.admin.views.users import AdminUsersView, UsersView
                 from rhodecode.apps.admin.views.security import AdminSecurityView
                 # Security EE feature
                 config.add_route(
                     'admin_security',
-                    pattern=ADMIN_PREFIX + '/security')
+                    pattern='/security')
                 config.add_view(
                     AdminSecurityView,
-                    attr='security' ,
+                    attr='security',
                     route_name='admin_security', request_method='GET',
                     renderer='rhodecode:templates/admin/security/security.mako')
                 config.add_route(
                     name='admin_security_update',
-                    pattern=ADMIN_PREFIX + '/security/update')
+                    pattern='/security/update')
                 config.add_view(
                     AdminSecurityView,
                     attr='security_update',
                     route_name='admin_security_update', request_method='POST',
                     renderer='rhodecode:templates/admin/security/security.mako')
+                config.add_route(
+                    name='admin_security_modify_allowed_vcs_client_versions',
+                    pattern='/security/modify/allowed_vcs_client_versions')
+                config.add_view(
+                    AdminSecurityView,
+                    attr='vcs_whitelisted_client_versions_edit',
+                    route_name='admin_security_modify_allowed_vcs_client_versions', request_method=('GET', 'POST'),
+                    renderer='rhodecode:templates/admin/security/edit_allowed_vcs_client_versions.mako')
                 config.add_route(
                     name='admin_audit_logs',
                     pattern='/audit_logs')
                 config.add_view(
                     AdminAuditLogsView,
                     attr='admin_audit_logs',
                     route_name='admin_audit_logs', request_method='GET',
                     renderer='rhodecode:templates/admin/admin_audit_logs.mako')
                 config.add_route(
                     name='admin_audit_log_entry',
                     pattern='/audit_logs/{audit_log_id}')
                 config.add_view(
                     AdminAuditLogsView,
                     attr='admin_audit_log_entry',
                     route_name='admin_audit_log_entry', request_method='GET',
                     renderer='rhodecode:templates/admin/admin_audit_log_entry.mako')
                 # Artifacts EE feature
                 config.add_route(
                     'admin_artifacts',
                     pattern=ADMIN_PREFIX + '/artifacts')
                 config.add_route(
                     'admin_artifacts_show_all',
                     pattern=ADMIN_PREFIX + '/artifacts')
                 config.add_view(
                     AdminArtifactsView,
                     attr='artifacts',
                     route_name='admin_artifacts', request_method='GET',
                     renderer='rhodecode:templates/admin/artifacts/artifacts.mako')
                 config.add_view(
                     AdminArtifactsView,
                     attr='artifacts',
                     route_name='admin_artifacts_show_all', request_method='GET',
                     renderer='rhodecode:templates/admin/artifacts/artifacts.mako')
                 # EE views
                 config.add_route(
                     name='admin_artifacts_show_info',
                     pattern=ADMIN_PREFIX + '/artifacts/{uid}')
                 config.add_route(
                     name='admin_artifacts_delete',
                     pattern=ADMIN_PREFIX + '/artifacts/{uid}/delete')
                 config.add_route(
                     name='admin_artifacts_update',
                     pattern=ADMIN_PREFIX + '/artifacts/{uid}/update')
                 # Automation EE feature
                 config.add_route(
                     'admin_automation',
                     pattern=ADMIN_PREFIX + '/automation')
                 config.add_view(
                     AdminAutomationView,
                     attr='automation',
                     route_name='admin_automation', request_method='GET',
                     renderer='rhodecode:templates/admin/automation/automation.mako')
                 # Scheduler EE feature
                 config.add_route(
                     'admin_scheduler',
                     pattern=ADMIN_PREFIX + '/scheduler')
                 config.add_view(
                     AdminSchedulerView,
                     attr='scheduler',
                     route_name='admin_scheduler', request_method='GET',
                     renderer='rhodecode:templates/admin/scheduler/scheduler.mako')
                 config.add_route(
                     name='admin_settings_open_source',
                     pattern='/settings/open_source')
                 config.add_view(
                     OpenSourceLicensesAdminSettingsView,
                     attr='open_source_licenses',
                     route_name='admin_settings_open_source', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_vcs_svn_generate_cfg',
                     pattern='/settings/vcs/svn_generate_cfg')
                 config.add_view(
                     AdminSvnConfigView,
                     attr='vcs_svn_generate_config',
                     route_name='admin_settings_vcs_svn_generate_cfg',
                     request_method='POST', renderer='json')
                 config.add_route(
                     name='admin_settings_system',
                     pattern='/settings/system')
                 config.add_view(
                     AdminSystemInfoSettingsView,
                     attr='settings_system_info',
                     route_name='admin_settings_system', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_system_update',
                     pattern='/settings/system/updates')
                 config.add_view(
                     AdminSystemInfoSettingsView,
                     attr='settings_system_info_check_update',
                     route_name='admin_settings_system_update', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings_system_update.mako')
                 config.add_route(
                     name='admin_settings_exception_tracker',
                     pattern='/settings/exceptions')
                 config.add_view(
                     ExceptionsTrackerView,
                     attr='browse_exceptions',
                     route_name='admin_settings_exception_tracker', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_exception_tracker_delete_all',
                     pattern='/settings/exceptions_delete_all')
                 config.add_view(
                     ExceptionsTrackerView,
                     attr='exception_delete_all',
                     route_name='admin_settings_exception_tracker_delete_all', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_exception_tracker_show',
                     pattern='/settings/exceptions/{exception_id}')
                 config.add_view(
                     ExceptionsTrackerView,
                     attr='exception_show',
                     route_name='admin_settings_exception_tracker_show', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_exception_tracker_delete',
                     pattern='/settings/exceptions/{exception_id}/delete')
                 config.add_view(
                     ExceptionsTrackerView,
                     attr='exception_delete',
                     route_name='admin_settings_exception_tracker_delete', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_sessions',
                     pattern='/settings/sessions')
                 config.add_view(
                     AdminSessionSettingsView,
                     attr='settings_sessions',
                     route_name='admin_settings_sessions', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_sessions_cleanup',
                     pattern='/settings/sessions/cleanup')
                 config.add_view(
                     AdminSessionSettingsView,
                     attr='settings_sessions_cleanup',
                     route_name='admin_settings_sessions_cleanup', request_method='POST')
                 config.add_route(
                     name='admin_settings_process_management',
                     pattern='/settings/process_management')
                 config.add_view(
                     AdminProcessManagementView,
                     attr='process_management',
                     route_name='admin_settings_process_management', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_process_management_data',
                     pattern='/settings/process_management/data')
                 config.add_view(
                     AdminProcessManagementView,
                     attr='process_management_data',
                     route_name='admin_settings_process_management_data', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings_process_management_data.mako')
                 config.add_route(
                     name='admin_settings_process_management_signal',
                     pattern='/settings/process_management/signal')
                 config.add_view(
                     AdminProcessManagementView,
                     attr='process_management_signal',
                     route_name='admin_settings_process_management_signal',
                     request_method='POST', renderer='json_ext')
                 config.add_route(
                     name='admin_settings_process_management_master_signal',
                     pattern='/settings/process_management/master_signal')
                 config.add_view(
                     AdminProcessManagementView,
                     attr='process_management_master_signal',
                     route_name='admin_settings_process_management_master_signal',
                     request_method='POST', renderer='json_ext')
                 # default settings
                 config.add_route(
                     name='admin_defaults_repositories',
                     pattern='/defaults/repositories')
                 config.add_view(
                     AdminDefaultSettingsView,
                     attr='defaults_repository_show',
                     route_name='admin_defaults_repositories', request_method='GET',
                     renderer='rhodecode:templates/admin/defaults/defaults.mako')
                 config.add_route(
                     name='admin_defaults_repositories_update',
                     pattern='/defaults/repositories/update')
                 config.add_view(
                     AdminDefaultSettingsView,
                     attr='defaults_repository_update',
                     route_name='admin_defaults_repositories_update', request_method='POST',
                     renderer='rhodecode:templates/admin/defaults/defaults.mako')
                 # admin settings
                 config.add_route(
                     name='admin_settings',
                     pattern='/settings')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_global',
                     route_name='admin_settings', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_update',
                     pattern='/settings/update')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_global_update',
                     route_name='admin_settings_update', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_global',
                     pattern='/settings/global')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_global',
                     route_name='admin_settings_global', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_global_update',
                     pattern='/settings/global/update')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_global_update',
                     route_name='admin_settings_global_update', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_vcs',
                     pattern='/settings/vcs')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_vcs',
                     route_name='admin_settings_vcs', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_vcs_update',
                     pattern='/settings/vcs/update')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_vcs_update',
                     route_name='admin_settings_vcs_update', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_vcs_svn_pattern_delete',
                     pattern='/settings/vcs/svn_pattern_delete')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_vcs_delete_svn_pattern',
                     route_name='admin_settings_vcs_svn_pattern_delete', request_method='POST',
                     renderer='json_ext', xhr=True)
                 config.add_route(
                     name='admin_settings_mapping',
                     pattern='/settings/mapping')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_mapping',
                     route_name='admin_settings_mapping', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_mapping_update',
                     pattern='/settings/mapping/update')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_mapping_update',
                     route_name='admin_settings_mapping_update', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_visual',
                     pattern='/settings/visual')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_visual',
                     route_name='admin_settings_visual', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_visual_update',
                     pattern='/settings/visual/update')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_visual_update',
                     route_name='admin_settings_visual_update', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_issuetracker',
                     pattern='/settings/issue-tracker')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_issuetracker',
                     route_name='admin_settings_issuetracker', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_issuetracker_update',
                     pattern='/settings/issue-tracker/update')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_issuetracker_update',
                     route_name='admin_settings_issuetracker_update', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_issuetracker_test',
                     pattern='/settings/issue-tracker/test')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_issuetracker_test',
                     route_name='admin_settings_issuetracker_test', request_method='POST',
                     renderer='string', xhr=True)
                 config.add_route(
                     name='admin_settings_issuetracker_delete',
                     pattern='/settings/issue-tracker/delete')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_issuetracker_delete',
                     route_name='admin_settings_issuetracker_delete', request_method='POST',
                     renderer='json_ext', xhr=True)
                 config.add_route(
                     name='admin_settings_email',
                     pattern='/settings/email')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_email',
                     route_name='admin_settings_email', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_email_update',
                     pattern='/settings/email/update')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_email_update',
                     route_name='admin_settings_email_update', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_hooks',
                     pattern='/settings/hooks')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_hooks',
                     route_name='admin_settings_hooks', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_hooks_update',
                     pattern='/settings/hooks/update')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_hooks_update',
                     route_name='admin_settings_hooks_update', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_hooks_delete',
                     pattern='/settings/hooks/delete')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_hooks_update',
                     route_name='admin_settings_hooks_delete', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_search',
                     pattern='/settings/search')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_search',
                     route_name='admin_settings_search', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_labs',
                     pattern='/settings/labs')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_labs',
                     route_name='admin_settings_labs', request_method='GET',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 config.add_route(
                     name='admin_settings_labs_update',
                     pattern='/settings/labs/update')
                 config.add_view(
                     AdminSettingsView,
                     attr='settings_labs_update',
                     route_name='admin_settings_labs_update', request_method='POST',
                     renderer='rhodecode:templates/admin/settings/settings.mako')
                 # global permissions
                 config.add_route(
                     name='admin_permissions_application',
                     pattern='/permissions/application')
                 config.add_view(
                     AdminPermissionsView,
                     attr='permissions_application',
                     route_name='admin_permissions_application', request_method='GET',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_application_update',
                     pattern='/permissions/application/update')
                 config.add_view(
                     AdminPermissionsView,
                     attr='permissions_application_update',
                     route_name='admin_permissions_application_update', request_method='POST',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_global',
                     pattern='/permissions/global')
                 config.add_view(
                     AdminPermissionsView,
                     attr='permissions_global',
                     route_name='admin_permissions_global', request_method='GET',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_global_update',
                     pattern='/permissions/global/update')
                 config.add_view(
                     AdminPermissionsView,
                     attr='permissions_global_update',
                     route_name='admin_permissions_global_update', request_method='POST',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_object',
                     pattern='/permissions/object')
                 config.add_view(
                     AdminPermissionsView,
                     attr='permissions_objects',
                     route_name='admin_permissions_object', request_method='GET',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_object_update',
                     pattern='/permissions/object/update')
                 config.add_view(
                     AdminPermissionsView,
                     attr='permissions_objects_update',
                     route_name='admin_permissions_object_update', request_method='POST',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 # Branch perms EE feature
                 config.add_route(
                     name='admin_permissions_branch',
                     pattern='/permissions/branch')
                 config.add_view(
                     AdminPermissionsView,
                     attr='permissions_branch',
                     route_name='admin_permissions_branch', request_method='GET',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_ips',
                     pattern='/permissions/ips')
                 config.add_view(
                     AdminPermissionsView,
                     attr='permissions_ips',
                     route_name='admin_permissions_ips', request_method='GET',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_overview',
                     pattern='/permissions/overview')
                 config.add_view(
                     AdminPermissionsView,
                     attr='permissions_overview',
                     route_name='admin_permissions_overview', request_method='GET',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_auth_token_access',
                     pattern='/permissions/auth_token_access')
                 config.add_view(
                     AdminPermissionsView,
                     attr='auth_token_access',
                     route_name='admin_permissions_auth_token_access', request_method='GET',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_ssh_keys',
                     pattern='/permissions/ssh_keys')
                 config.add_view(
                     AdminPermissionsView,
                     attr='ssh_keys',
                     route_name='admin_permissions_ssh_keys', request_method='GET',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 config.add_route(
                     name='admin_permissions_ssh_keys_data',
                     pattern='/permissions/ssh_keys/data')
                 config.add_view(
                     AdminPermissionsView,
                     attr='ssh_keys_data',
                     route_name='admin_permissions_ssh_keys_data', request_method='GET',
                     renderer='json_ext', xhr=True)
                 config.add_route(
                     name='admin_permissions_ssh_keys_update',
                     pattern='/permissions/ssh_keys/update')
                 config.add_view(
                     AdminPermissionsView,
                     attr='ssh_keys_update',
                     route_name='admin_permissions_ssh_keys_update', request_method='POST',
                     renderer='rhodecode:templates/admin/permissions/permissions.mako')
                 # users admin
                 config.add_route(
                     name='users',
                     pattern='/users')
                 config.add_view(
                     AdminUsersView,
                     attr='users_list',
                     route_name='users', request_method='GET',
                     renderer='rhodecode:templates/admin/users/users.mako')
                 config.add_route(
                     name='users_data',
                     pattern='/users_data')
                 config.add_view(
                     AdminUsersView,
                     attr='users_list_data',
                     # renderer defined below
                     route_name='users_data', request_method='GET',
                     renderer='json_ext', xhr=True)
                 config.add_route(
                     name='users_create',
                     pattern='/users/create')
                 config.add_view(
                     AdminUsersView,
                     attr='users_create',
                     route_name='users_create', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_add.mako')
                 config.add_route(
                     name='users_new',
                     pattern='/users/new')
                 config.add_view(
                     AdminUsersView,
                     attr='users_new',
                     route_name='users_new', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_add.mako')
                 # user management
                 config.add_route(
                     name='user_edit',
                     pattern=r'/users/{user_id:\d+}/edit',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_edit',
                     route_name='user_edit', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='user_edit_advanced',
                     pattern=r'/users/{user_id:\d+}/edit/advanced',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_edit_advanced',
                     route_name='user_edit_advanced', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='user_edit_global_perms',
                     pattern=r'/users/{user_id:\d+}/edit/global_permissions',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_edit_global_perms',
                     route_name='user_edit_global_perms', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='user_edit_global_perms_update',
                     pattern=r'/users/{user_id:\d+}/edit/global_permissions/update',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_edit_global_perms_update',
                     route_name='user_edit_global_perms_update', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='user_update',
                     pattern=r'/users/{user_id:\d+}/update',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_update',
                     route_name='user_update', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='user_delete',
                     pattern=r'/users/{user_id:\d+}/delete',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_delete',
                     route_name='user_delete', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='user_enable_force_password_reset',
                     pattern=r'/users/{user_id:\d+}/password_reset_enable',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_enable_force_password_reset',
                     route_name='user_enable_force_password_reset', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='user_disable_force_password_reset',
                     pattern=r'/users/{user_id:\d+}/password_reset_disable',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_disable_force_password_reset',
                     route_name='user_disable_force_password_reset', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='user_create_personal_repo_group',
                     pattern=r'/users/{user_id:\d+}/create_repo_group',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_create_personal_repo_group',
                     route_name='user_create_personal_repo_group', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 # user notice
                 config.add_route(
                     name='user_notice_dismiss',
                     pattern=r'/users/{user_id:\d+}/notice_dismiss',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_notice_dismiss',
                     route_name='user_notice_dismiss', request_method='POST',
                     renderer='json_ext', xhr=True)
                 # user auth tokens
                 config.add_route(
                     name='edit_user_auth_tokens',
                     pattern=r'/users/{user_id:\d+}/edit/auth_tokens',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='auth_tokens',
                     route_name='edit_user_auth_tokens', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='edit_user_auth_tokens_view',
                     pattern=r'/users/{user_id:\d+}/edit/auth_tokens/view',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='auth_tokens_view',
                     route_name='edit_user_auth_tokens_view', request_method='POST',
                     renderer='json_ext', xhr=True)
                 config.add_route(
                     name='edit_user_auth_tokens_add',
                     pattern=r'/users/{user_id:\d+}/edit/auth_tokens/new',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='auth_tokens_add',
                     route_name='edit_user_auth_tokens_add', request_method='POST')
                 config.add_route(
                     name='edit_user_auth_tokens_delete',
                     pattern=r'/users/{user_id:\d+}/edit/auth_tokens/delete',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='auth_tokens_delete',
                     route_name='edit_user_auth_tokens_delete', request_method='POST')
                 # user ssh keys
                 config.add_route(
                     name='edit_user_ssh_keys',
                     pattern=r'/users/{user_id:\d+}/edit/ssh_keys',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='ssh_keys',
                     route_name='edit_user_ssh_keys', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='edit_user_ssh_keys_generate_keypair',
                     pattern=r'/users/{user_id:\d+}/edit/ssh_keys/generate',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='ssh_keys_generate_keypair',
                     route_name='edit_user_ssh_keys_generate_keypair', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='edit_user_ssh_keys_add',
                     pattern=r'/users/{user_id:\d+}/edit/ssh_keys/new',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='ssh_keys_add',
                     route_name='edit_user_ssh_keys_add', request_method='POST')
                 config.add_route(
                     name='edit_user_ssh_keys_delete',
                     pattern=r'/users/{user_id:\d+}/edit/ssh_keys/delete',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='ssh_keys_delete',
                     route_name='edit_user_ssh_keys_delete', request_method='POST')
                 # user emails
                 config.add_route(
                     name='edit_user_emails',
                     pattern=r'/users/{user_id:\d+}/edit/emails',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='emails',
                     route_name='edit_user_emails', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='edit_user_emails_add',
                     pattern=r'/users/{user_id:\d+}/edit/emails/new',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='emails_add',
                     route_name='edit_user_emails_add', request_method='POST')
                 config.add_route(
                     name='edit_user_emails_delete',
                     pattern=r'/users/{user_id:\d+}/edit/emails/delete',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='emails_delete',
                     route_name='edit_user_emails_delete', request_method='POST')
                 # user IPs
                 config.add_route(
                     name='edit_user_ips',
                     pattern=r'/users/{user_id:\d+}/edit/ips',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='ips',
                     route_name='edit_user_ips', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='edit_user_ips_add',
                     pattern=r'/users/{user_id:\d+}/edit/ips/new',
                     user_route_with_default=True)  # enabled for default user too
                 config.add_view(
                     UsersView,
                     attr='ips_add',
                     route_name='edit_user_ips_add', request_method='POST')
                 config.add_route(
                     name='edit_user_ips_delete',
                     pattern=r'/users/{user_id:\d+}/edit/ips/delete',
                     user_route_with_default=True)  # enabled for default user too
                 config.add_view(
                     UsersView,
                     attr='ips_delete',
                     route_name='edit_user_ips_delete', request_method='POST')
                 # user perms
                 config.add_route(
                     name='edit_user_perms_summary',
                     pattern=r'/users/{user_id:\d+}/edit/permissions_summary',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_perms_summary',
                     route_name='edit_user_perms_summary', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='edit_user_perms_summary_json',
                     pattern=r'/users/{user_id:\d+}/edit/permissions_summary/json',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_perms_summary_json',
                     route_name='edit_user_perms_summary_json', request_method='GET',
                     renderer='json_ext')
                 # user user groups management
                 config.add_route(
                     name='edit_user_groups_management',
                     pattern=r'/users/{user_id:\d+}/edit/groups_management',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='groups_management',
                     route_name='edit_user_groups_management', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='edit_user_groups_management_updates',
                     pattern=r'/users/{user_id:\d+}/edit/edit_user_groups_management/updates',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='groups_management_updates',
                     route_name='edit_user_groups_management_updates', request_method='POST')
                 # user audit logs
                 config.add_route(
                     name='edit_user_audit_logs',
                     pattern=r'/users/{user_id:\d+}/edit/audit', user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_audit_logs',
                     route_name='edit_user_audit_logs', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='edit_user_audit_logs_download',
                     pattern=r'/users/{user_id:\d+}/edit/audit/download', user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_audit_logs_download',
                     route_name='edit_user_audit_logs_download', request_method='GET',
                     renderer='string')
                 # user caches
                 config.add_route(
                     name='edit_user_caches',
                     pattern=r'/users/{user_id:\d+}/edit/caches',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_caches',
                     route_name='edit_user_caches', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 config.add_route(
                     name='edit_user_caches_update',
                     pattern=r'/users/{user_id:\d+}/edit/caches/update',
                     user_route=True)
                 config.add_view(
                     UsersView,
                     attr='user_caches_update',
                     route_name='edit_user_caches_update', request_method='POST')
                 # user-groups admin
                 config.add_route(
                     name='user_groups',
                     pattern='/user_groups')
                 config.add_view(
                     AdminUserGroupsView,
                     attr='user_groups_list',
                     route_name='user_groups', request_method='GET',
                     renderer='rhodecode:templates/admin/user_groups/user_groups.mako')
                 config.add_route(
                     name='user_groups_data',
                     pattern='/user_groups_data')
                 config.add_view(
                     AdminUserGroupsView,
                     attr='user_groups_list_data',
                     route_name='user_groups_data', request_method='GET',
                     renderer='json_ext', xhr=True)
                 config.add_route(
                     name='user_groups_new',
                     pattern='/user_groups/new')
                 config.add_view(
                     AdminUserGroupsView,
                     attr='user_groups_new',
                     route_name='user_groups_new', request_method='GET',
                     renderer='rhodecode:templates/admin/user_groups/user_group_add.mako')
                 config.add_route(
                     name='user_groups_create',
                     pattern='/user_groups/create')
                 config.add_view(
                     AdminUserGroupsView,
                     attr='user_groups_create',
                     route_name='user_groups_create', request_method='POST',
                     renderer='rhodecode:templates/admin/user_groups/user_group_add.mako')
                 # repos admin
                 config.add_route(
                     name='repos',
                     pattern='/repos')
                 config.add_view(
                     AdminReposView,
                     attr='repository_list',
                     route_name='repos', request_method='GET',
                     renderer='rhodecode:templates/admin/repos/repos.mako')
                 config.add_route(
                     name='repos_data',
                     pattern='/repos_data')
                 config.add_view(
                     AdminReposView,
                     attr='repository_list_data',
                     route_name='repos_data', request_method='GET',
                     renderer='json_ext', xhr=True)
                 config.add_route(
                     name='repo_new',
                     pattern='/repos/new')
                 config.add_view(
                     AdminReposView,
                     attr='repository_new',
                     route_name='repo_new', request_method='GET',
                     renderer='rhodecode:templates/admin/repos/repo_add.mako')
                 config.add_route(
                     name='repo_create',
                     pattern='/repos/create')
                 config.add_view(
                     AdminReposView,
                     attr='repository_create',
                     route_name='repo_create', request_method='POST',
                     renderer='rhodecode:templates/admin/repos/repos.mako')
                 # repo groups admin
                 config.add_route(
                     name='repo_groups',
                     pattern='/repo_groups')
                 config.add_view(
                     AdminRepoGroupsView,
                     attr='repo_group_list',
                     route_name='repo_groups', request_method='GET',
                     renderer='rhodecode:templates/admin/repo_groups/repo_groups.mako')
                 config.add_route(
                     name='repo_groups_data',
                     pattern='/repo_groups_data')
                 config.add_view(
                     AdminRepoGroupsView,
                     attr='repo_group_list_data',
                     route_name='repo_groups_data', request_method='GET',
                     renderer='json_ext', xhr=True)
                 config.add_route(
                     name='repo_group_new',
                     pattern='/repo_group/new')
                 config.add_view(
                     AdminRepoGroupsView,
                     attr='repo_group_new',
                     route_name='repo_group_new', request_method='GET',
                     renderer='rhodecode:templates/admin/repo_groups/repo_group_add.mako')
                 config.add_route(
                     name='repo_group_create',
                     pattern='/repo_group/create')
                 config.add_view(
                     AdminRepoGroupsView,
                     attr='repo_group_create',
                     route_name='repo_group_create', request_method='POST',
                     renderer='rhodecode:templates/admin/repo_groups/repo_group_add.mako')
             def includeme(config):
                 # Create admin navigation registry and add it to the pyramid registry.
                 nav_includeme(config)
                 # main admin routes
                 config.add_route(
                     name='admin_home', pattern=ADMIN_PREFIX)
                 config.add_view(
                     AdminMainView,
                     attr='admin_main',
                     route_name='admin_home', request_method='GET',
                     renderer='rhodecode:templates/admin/main.mako')
                 # pr global redirect
                 config.add_route(
                     name='pull_requests_global_0',  # backward compat
                     pattern=ADMIN_PREFIX + r'/pull_requests/{pull_request_id:\d+}')
                 config.add_view(
                     AdminMainView,
                     attr='pull_requests',
                     route_name='pull_requests_global_0', request_method='GET')
                 config.add_route(
                     name='pull_requests_global_1',  # backward compat
                     pattern=ADMIN_PREFIX + r'/pull-requests/{pull_request_id:\d+}')
                 config.add_view(
                     AdminMainView,
                     attr='pull_requests',
                     route_name='pull_requests_global_1', request_method='GET')
                 config.add_route(
                     name='pull_requests_global',
                     pattern=ADMIN_PREFIX + r'/pull-request/{pull_request_id:\d+}')
                 config.add_view(
                     AdminMainView,
                     attr='pull_requests',
                     route_name='pull_requests_global', request_method='GET')
                 config.include(admin_routes, route_prefix=ADMIN_PREFIX)

rhodecode/apps/admin/views/security.py

0 +33 0

             # Copyright (C) 2010-2024 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import logging
+            import formencode
+            from rhodecode import BACKENDS
             from rhodecode.apps._base import BaseAppView
+            from rhodecode.model.meta import Session
+            from rhodecode.model.settings import SettingsModel
+            from rhodecode.model.forms import WhitelistedVcsClientsForm
             from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator
             log = logging.getLogger(__name__)
             class AdminSecurityView(BaseAppView):
                 def load_default_context(self):
                     c = self._get_local_tmpl_context()
                     return c
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 def security(self):
                     c = self.load_default_context()
                     c.active = 'security'
                     return self._get_template_context(c)
+                @LoginRequired()
+                @HasPermissionAllDecorator('hg.admin')
+                def vcs_whitelisted_client_versions_edit(self):
+                    _ = self.request.translate
+                    c = self.load_default_context()
+                    render_ctx = {}
+                    settings = SettingsModel()
+                    form = WhitelistedVcsClientsForm(_, )()
+                    if self.request.method == 'POST':
+                        try:
+                            result = form.to_python(self.request.POST)
+                            for k, v in result.items():
+                                if v:
+                                    setting = settings.create_or_update_setting(name=f'{k}_allowed_clients', val=v)
+                                    Session().add(setting)
+                            Session().commit()
+                        except formencode.Invalid as errors:
+                            render_ctx.update({
+                                'errors': errors.error_dict
+                            })
+                    for key in BACKENDS.keys():
+                        verbose_name = f"initial_{key}"
+                        if existing := settings.get_setting_by_name(name=f'{key}_allowed_clients'):
+                            render_ctx[verbose_name] = existing.app_settings_value
+                        else:
+                            render_ctx[verbose_name] = '*'
+                    return self._get_template_context(c, **render_ctx)

rhodecode/lib/exceptions.py

0 +5 0

             # Copyright (C) 2010-2023 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             Set of custom exceptions used in RhodeCode
             """
             from webob.exc import HTTPClientError
             from pyramid.httpexceptions import HTTPBadGateway
             class LdapUsernameError(Exception):
                 pass
             class LdapPasswordError(Exception):
                 pass
             class LdapConnectionError(Exception):
                 pass
             class LdapImportError(Exception):
                 pass
             class DefaultUserException(Exception):
                 pass
             class UserOwnsReposException(Exception):
                 pass
             class UserOwnsRepoGroupsException(Exception):
                 pass
             class UserOwnsUserGroupsException(Exception):
                 pass
             class UserOwnsPullRequestsException(Exception):
                 pass
             class UserOwnsArtifactsException(Exception):
                 pass
             class UserGroupAssignedException(Exception):
                 pass
             class StatusChangeOnClosedPullRequestError(Exception):
                 pass
             class AttachedForksError(Exception):
                 pass
             class AttachedPullRequestsError(Exception):
                 pass
             class AttachedArtifactsError(Exception):
                 pass
             class RepoGroupAssignmentError(Exception):
                 pass
             class NonRelativePathError(Exception):
                 pass
             class HTTPRequirementError(HTTPClientError):
                 title = explanation = 'Repository Requirement Missing'
                 reason = None
                 def __init__(self, message, *args, **kwargs):
                     self.title = self.explanation = message
                     super().__init__(*args, **kwargs)
                     self.args = (message, )
+            class ClientNotSupportedError(HTTPRequirementError):
+                title = explanation = 'Client Not Supported'
+                reason = None
             class HTTPLockedRC(HTTPClientError):
                 """
                 Special Exception For locked Repos in RhodeCode, the return code can
                 be overwritten by _code keyword argument passed into constructors
                 """
                 code = 423
                 title = explanation = 'Repository Locked'
                 reason = None
                 def __init__(self, message, *args, **kwargs):
                     import rhodecode
                     self.code = rhodecode.ConfigGet().get_int('lock_ret_code', missing=self.code)
                     self.title = self.explanation = message
                     super().__init__(*args, **kwargs)
                     self.args = (message, )
             class HTTPBranchProtected(HTTPClientError):
                 """
                 Special Exception For Indicating that branch is protected in RhodeCode, the
                 return code can be overwritten by _code keyword argument passed into constructors
                 """
                 code = 403
                 title = explanation = 'Branch Protected'
                 reason = None
                 def __init__(self, message, *args, **kwargs):
                     self.title = self.explanation = message
                     super().__init__(*args, **kwargs)
                     self.args = (message, )
             class IMCCommitError(Exception):
                 pass
             class UserCreationError(Exception):
                 pass
             class NotAllowedToCreateUserError(Exception):
                 pass
             class DuplicateUpdateUserError(Exception):
                 pass
             class RepositoryCreationError(Exception):
                 pass
             class VCSServerUnavailable(HTTPBadGateway):
                 """ HTTP Exception class for VCS Server errors """
                 code = 502
                 title = 'VCS Server Error'
                 causes = [
                     'VCS Server is not running',
                     'Incorrect vcs.server=host:port',
                     'Incorrect vcs.server.protocol',
                 ]
                 def __init__(self, message=''):
                     self.explanation = 'Could not connect to VCS Server'
                     if message:
                         self.explanation += ': ' + message
                     super().__init__()
             class ArtifactMetadataDuplicate(ValueError):
                 def __init__(self, *args, **kwargs):
                     self.err_section = kwargs.pop('err_section', None)
                     self.err_key = kwargs.pop('err_key', None)
                     super().__init__(*args, **kwargs)
             class ArtifactMetadataBadValueType(ValueError):
                 pass
             class CommentVersionMismatch(ValueError):
                 pass
             class SignatureVerificationError(ValueError):
                 pass
             def signature_verification_error(msg):
                 details = """
             Encryption signature verification failed.
             Please check your value of secret key, and/or encrypted value stored.
             Secret key stored inside .ini file:
             `rhodecode.encrypted_values.secret` or defaults to
             `beaker.session.secret`
             Probably the stored values were encrypted using a different secret then currently set in .ini file
             """
                 final_msg = f'{msg}\n{details}'
                 return SignatureVerificationError(final_msg)

rhodecode/lib/hooks_base.py

0 +15 -1

             # Copyright (C) 2013-2023 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             Set of hooks run by RhodeCode Enterprise
             """
             import os
             import logging
             import rhodecode
             from rhodecode import events
             from rhodecode.lib import helpers as h
             from rhodecode.lib import audit_logger
             from rhodecode.lib.utils2 import safe_str, user_agent_normalizer
             from rhodecode.lib.exceptions import (
-                HTTPLockedRC, HTTPBranchProtected, UserCreationError)
+                HTTPLockedRC, HTTPBranchProtected, UserCreationError, ClientNotSupportedError)
             from rhodecode.model.db import Repository, User
             from rhodecode.lib.statsd_client import StatsdClient
             log = logging.getLogger(__name__)
             class HookResponse(object):
                 def __init__(self, status, output):
                     self.status = status
                     self.output = output
                 def __add__(self, other):
                     other_status = getattr(other, 'status', 0)
                     new_status = max(self.status, other_status)
                     other_output = getattr(other, 'output', '')
                     new_output = self.output + other_output
                     return HookResponse(new_status, new_output)
                 def __bool__(self):
                     return self.status == 0
                 def to_json(self):
                     return {'status': self.status, 'output': self.output}
             def is_shadow_repo(extras):
                 """
                 Returns ``True`` if this is an action executed against a shadow repository.
                 """
                 return extras['is_shadow_repo']
+            def check_vcs_client(extras):
+                """
+                Checks if vcs client is allowed (Only works in enterprise edition)
+                """
+                try:
+                    from rc_ee.lib.security.utils import is_vcs_client_whitelisted
+                except ModuleNotFoundError:
+                    is_vcs_client_whitelisted = lambda *x: True
+                backend = extras.get('scm')
+                if not is_vcs_client_whitelisted(extras.get('user_agent'), backend):
+                    raise ClientNotSupportedError(f"Your {backend} client is forbidden")
             def _get_scm_size(alias, root_path):
                 if not alias.startswith('.'):
                     alias += '.'
                 size_scm, size_root = 0, 0
                 for path, unused_dirs, files in os.walk(safe_str(root_path)):
                     if path.find(alias) != -1:
                         for f in files:
                             try:
                                 size_scm += os.path.getsize(os.path.join(path, f))
                             except OSError:
                                 pass
                     else:
                         for f in files:
                             try:
                                 size_root += os.path.getsize(os.path.join(path, f))
                             except OSError:
                                 pass
                 size_scm_f = h.format_byte_size_binary(size_scm)
                 size_root_f = h.format_byte_size_binary(size_root)
                 size_total_f = h.format_byte_size_binary(size_root + size_scm)
                 return size_scm_f, size_root_f, size_total_f
             # actual hooks called by Mercurial internally, and GIT by our Python Hooks
             def repo_size(extras):
                 """Present size of repository after push."""
                 repo = Repository.get_by_repo_name(extras.repository)
                 vcs_part = f'.{repo.repo_type}'
                 size_vcs, size_root, size_total = _get_scm_size(vcs_part, repo.repo_full_path)
                 msg = (f'RhodeCode: `{repo.repo_name}` size summary {vcs_part}:{size_vcs} repo:{size_root} total:{size_total}\n')
                 return HookResponse(0, msg)
             def pre_push(extras):
                 """
                 Hook executed before pushing code.
                 It bans pushing when the repository is locked.
                 """
+                check_vcs_client(extras)
                 user = User.get_by_username(extras.username)
                 output = ''
                 if extras.locked_by[0] and user.user_id != int(extras.locked_by[0]):
                     locked_by = User.get(extras.locked_by[0]).username
                     reason = extras.locked_by[2]
                     # this exception is interpreted in git/hg middlewares and based
                     # on that proper return code is server to client
                     _http_ret = HTTPLockedRC(
                         _locked_by_explanation(extras.repository, locked_by, reason))
                     if str(_http_ret.code).startswith('2'):
                         # 2xx Codes don't raise exceptions
                         output = _http_ret.title
                     else:
                         raise _http_ret
                 hook_response = ''
                 if not is_shadow_repo(extras):
                     if extras.commit_ids and extras.check_branch_perms:
                         auth_user = user.AuthUser()
                         repo = Repository.get_by_repo_name(extras.repository)
                         affected_branches = []
                         if repo.repo_type == 'hg':
                             for entry in extras.commit_ids:
                                 if entry['type'] == 'branch':
                                     is_forced = bool(entry['multiple_heads'])
                                     affected_branches.append([entry['name'], is_forced])
                         elif repo.repo_type == 'git':
                             for entry in extras.commit_ids:
                                 if entry['type'] == 'heads':
                                     is_forced = bool(entry['pruned_sha'])
                                     affected_branches.append([entry['name'], is_forced])
                         for branch_name, is_forced in affected_branches:
                             rule, branch_perm = auth_user.get_rule_and_branch_permission(
                                 extras.repository, branch_name)
                             if not branch_perm:
                                 # no branch permission found for this branch, just keep checking
                                 continue
                             if branch_perm == 'branch.push_force':
                                 continue
                             elif branch_perm == 'branch.push' and is_forced is False:
                                 continue
                             elif branch_perm == 'branch.push' and is_forced is True:
                                 halt_message = f'Branch `{branch_name}` changes rejected by rule {rule}. ' \
                                                f'FORCE PUSH FORBIDDEN.'
                             else:
                                 halt_message = f'Branch `{branch_name}` changes rejected by rule {rule}.'
                             if halt_message:
                                 _http_ret = HTTPBranchProtected(halt_message)
                                 raise _http_ret
                     # Propagate to external components. This is done after checking the
                     # lock, for consistent behavior.
                     hook_response = pre_push_extension(
                         repo_store_path=Repository.base_path(), **extras)
                     events.trigger(events.RepoPrePushEvent(
                         repo_name=extras.repository, extras=extras))
                 return HookResponse(0, output) + hook_response
             def pre_pull(extras):
                 """
                 Hook executed before pulling the code.
                 It bans pulling when the repository is locked.
                 """
+                check_vcs_client(extras)
                 output = ''
                 if extras.locked_by[0]:
                     locked_by = User.get(extras.locked_by[0]).username
                     reason = extras.locked_by[2]
                     # this exception is interpreted in git/hg middlewares and based
                     # on that proper return code is server to client
                     _http_ret = HTTPLockedRC(
                         _locked_by_explanation(extras.repository, locked_by, reason))
                     if str(_http_ret.code).startswith('2'):
                         # 2xx Codes don't raise exceptions
                         output = _http_ret.title
                     else:
                         raise _http_ret
                 # Propagate to external components. This is done after checking the
                 # lock, for consistent behavior.
                 hook_response = ''
                 if not is_shadow_repo(extras):
                     extras.hook_type = extras.hook_type or 'pre_pull'
                     hook_response = pre_pull_extension(
                         repo_store_path=Repository.base_path(), **extras)
                     events.trigger(events.RepoPrePullEvent(
                         repo_name=extras.repository, extras=extras))
                 return HookResponse(0, output) + hook_response
             def post_pull(extras):
                 """Hook executed after client pulls the code."""
                 audit_user = audit_logger.UserWrap(
                     username=extras.username,
                     ip_addr=extras.ip)
                 repo = audit_logger.RepoWrap(repo_name=extras.repository)
                 audit_logger.store(
                     'user.pull', action_data={'user_agent': extras.user_agent},
                     user=audit_user, repo=repo, commit=True)
                 statsd = StatsdClient.statsd
                 if statsd:
                     statsd.incr('rhodecode_pull_total', tags=[
                         f'user-agent:{user_agent_normalizer(extras.user_agent)}',
                     ])
                 output = ''
                 # make lock is a tri state False, True, None. We only make lock on True
                 if extras.make_lock is True and not is_shadow_repo(extras):
                     user = User.get_by_username(extras.username)
                     Repository.lock(Repository.get_by_repo_name(extras.repository),
                                     user.user_id,
                                     lock_reason=Repository.LOCK_PULL)
                     msg = 'Made lock on repo `{}`'.format(extras.repository)
                     output += msg
                 if extras.locked_by[0]:
                     locked_by = User.get(extras.locked_by[0]).username
                     reason = extras.locked_by[2]
                     _http_ret = HTTPLockedRC(
                         _locked_by_explanation(extras.repository, locked_by, reason))
                     if str(_http_ret.code).startswith('2'):
                         # 2xx Codes don't raise exceptions
                         output += _http_ret.title
                 # Propagate to external components.
                 hook_response = ''
                 if not is_shadow_repo(extras):
                     extras.hook_type = extras.hook_type or 'post_pull'
                     hook_response = post_pull_extension(
                         repo_store_path=Repository.base_path(), **extras)
                     events.trigger(events.RepoPullEvent(
                         repo_name=extras.repository, extras=extras))
                 return HookResponse(0, output) + hook_response
             def post_push(extras):
                 """Hook executed after user pushes to the repository."""
                 commit_ids = extras.commit_ids
                 # log the push call
                 audit_user = audit_logger.UserWrap(
                     username=extras.username, ip_addr=extras.ip)
                 repo = audit_logger.RepoWrap(repo_name=extras.repository)
                 audit_logger.store(
                     'user.push', action_data={
                         'user_agent': extras.user_agent,
                         'commit_ids': commit_ids[:400]},
                     user=audit_user, repo=repo, commit=True)
                 statsd = StatsdClient.statsd
                 if statsd:
                     statsd.incr('rhodecode_push_total', tags=[
                         f'user-agent:{user_agent_normalizer(extras.user_agent)}',
                     ])
                 # Propagate to external components.
                 output = ''
                 # make lock is a tri state False, True, None. We only release lock on False
                 if extras.make_lock is False and not is_shadow_repo(extras):
                     Repository.unlock(Repository.get_by_repo_name(extras.repository))
                     msg = f'Released lock on repo `{extras.repository}`\n'
                     output += msg
                 if extras.locked_by[0]:
                     locked_by = User.get(extras.locked_by[0]).username
                     reason = extras.locked_by[2]
                     _http_ret = HTTPLockedRC(
                         _locked_by_explanation(extras.repository, locked_by, reason))
                     # TODO: johbo: if not?
                     if str(_http_ret.code).startswith('2'):
                         # 2xx Codes don't raise exceptions
                         output += _http_ret.title
                 if extras.new_refs:
                     tmpl = '{}/{}/pull-request/new?{{ref_type}}={{ref_name}}'.format(
                         safe_str(extras.server_url), safe_str(extras.repository))
                     for branch_name in extras.new_refs['branches']:
                         pr_link = tmpl.format(ref_type='branch', ref_name=safe_str(branch_name))
                         output += f'RhodeCode: open pull request link: {pr_link}\n'
                     for book_name in extras.new_refs['bookmarks']:
                         pr_link = tmpl.format(ref_type='bookmark', ref_name=safe_str(book_name))
                         output += f'RhodeCode: open pull request link: {pr_link}\n'
                 hook_response = ''
                 if not is_shadow_repo(extras):
                     hook_response = post_push_extension(
                         repo_store_path=Repository.base_path(),
                         **extras)
                     events.trigger(events.RepoPushEvent(
                         repo_name=extras.repository, pushed_commit_ids=commit_ids, extras=extras))
                 output += 'RhodeCode: push completed\n'
                 return HookResponse(0, output) + hook_response
             def _locked_by_explanation(repo_name, user_name, reason):
                 message = f'Repository `{repo_name}` locked by user `{user_name}`. Reason:`{reason}`'
                 return message
             def check_allowed_create_user(user_dict, created_by, **kwargs):
                 # pre create hooks
                 if pre_create_user.is_active():
                     hook_result = pre_create_user(created_by=created_by, **user_dict)
                     allowed = hook_result.status == 0
                     if not allowed:
                         reason = hook_result.output
                         raise UserCreationError(reason)
             class ExtensionCallback(object):
                 """
                 Forwards a given call to rcextensions, sanitizes keyword arguments.
                 Does check if there is an extension active for that hook. If it is
                 there, it will forward all `kwargs_keys` keyword arguments to the
                 extension callback.
                 """
                 def __init__(self, hook_name, kwargs_keys):
                     self._hook_name = hook_name
                     self._kwargs_keys = set(kwargs_keys)
                 def __call__(self, *args, **kwargs):
                     log.debug('Calling extension callback for `%s`', self._hook_name)
                     callback = self._get_callback()
                     if not callback:
                         log.debug('extension callback `%s` not found, skipping...', self._hook_name)
                         return
                     kwargs_to_pass = {}
                     for key in self._kwargs_keys:
                         try:
                             kwargs_to_pass[key] = kwargs[key]
                         except KeyError:
                             log.error('Failed to fetch %s key from given kwargs. '
                                       'Expected keys: %s', key, self._kwargs_keys)
                             raise
                     # backward compat for removed api_key for old hooks. This was it works
                     # with older rcextensions that require api_key present
                     if self._hook_name in ['CREATE_USER_HOOK', 'DELETE_USER_HOOK']:
                         kwargs_to_pass['api_key'] = '_DEPRECATED_'
                     return callback(**kwargs_to_pass)
                 def is_active(self):
                     return hasattr(rhodecode.EXTENSIONS, self._hook_name)
                 def _get_callback(self):
                     return getattr(rhodecode.EXTENSIONS, self._hook_name, None)
             pre_pull_extension = ExtensionCallback(
                 hook_name='PRE_PULL_HOOK',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'hook_type', 'user_agent', 'repo_store_path',))
             post_pull_extension = ExtensionCallback(
                 hook_name='PULL_HOOK',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'hook_type', 'user_agent', 'repo_store_path',))
             pre_push_extension = ExtensionCallback(
                 hook_name='PRE_PUSH_HOOK',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'repo_store_path', 'commit_ids', 'hook_type', 'user_agent',))
             post_push_extension = ExtensionCallback(
                 hook_name='PUSH_HOOK',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'repo_store_path', 'commit_ids', 'hook_type', 'user_agent',))
             pre_create_user = ExtensionCallback(
                 hook_name='PRE_CREATE_USER_HOOK',
                 kwargs_keys=(
                     'username', 'password', 'email', 'firstname', 'lastname', 'active',
                     'admin', 'created_by'))
             create_pull_request = ExtensionCallback(
                 hook_name='CREATE_PULL_REQUEST',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'pull_request_id', 'url', 'title', 'description',
                     'status', 'created_on', 'updated_on', 'commit_ids', 'review_status',
                     'mergeable', 'source', 'target', 'author', 'reviewers'))
             merge_pull_request = ExtensionCallback(
                 hook_name='MERGE_PULL_REQUEST',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'pull_request_id', 'url', 'title', 'description',
                     'status', 'created_on', 'updated_on', 'commit_ids', 'review_status',
                     'mergeable', 'source', 'target', 'author', 'reviewers'))
             close_pull_request = ExtensionCallback(
                 hook_name='CLOSE_PULL_REQUEST',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'pull_request_id', 'url', 'title', 'description',
                     'status', 'created_on', 'updated_on', 'commit_ids', 'review_status',
                     'mergeable', 'source', 'target', 'author', 'reviewers'))
             review_pull_request = ExtensionCallback(
                 hook_name='REVIEW_PULL_REQUEST',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'pull_request_id', 'url', 'title', 'description',
                     'status', 'created_on', 'updated_on', 'commit_ids', 'review_status',
                     'mergeable', 'source', 'target', 'author', 'reviewers'))
             comment_pull_request = ExtensionCallback(
                 hook_name='COMMENT_PULL_REQUEST',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'pull_request_id', 'url', 'title', 'description',
                     'status', 'comment', 'created_on', 'updated_on', 'commit_ids', 'review_status',
                     'mergeable', 'source', 'target', 'author', 'reviewers'))
             comment_edit_pull_request = ExtensionCallback(
                 hook_name='COMMENT_EDIT_PULL_REQUEST',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'pull_request_id', 'url', 'title', 'description',
                     'status', 'comment', 'created_on', 'updated_on', 'commit_ids', 'review_status',
                     'mergeable', 'source', 'target', 'author', 'reviewers'))
             update_pull_request = ExtensionCallback(
                 hook_name='UPDATE_PULL_REQUEST',
                 kwargs_keys=(
                     'server_url', 'config', 'scm', 'username', 'ip', 'action',
                     'repository', 'pull_request_id', 'url', 'title', 'description',
                     'status', 'created_on', 'updated_on', 'commit_ids', 'review_status',
                     'mergeable', 'source', 'target', 'author', 'reviewers'))
             create_user = ExtensionCallback(
                 hook_name='CREATE_USER_HOOK',
                 kwargs_keys=(
                     'username', 'full_name_or_username', 'full_contact', 'user_id',
                     'name', 'firstname', 'short_contact', 'admin', 'lastname',
                     'ip_addresses', 'extern_type', 'extern_name',
                     'email', 'api_keys', 'last_login',
                     'full_name', 'active', 'password', 'emails',
                     'inherit_default_permissions', 'created_by', 'created_on'))
             delete_user = ExtensionCallback(
                 hook_name='DELETE_USER_HOOK',
                 kwargs_keys=(
                     'username', 'full_name_or_username', 'full_contact', 'user_id',
                     'name', 'firstname', 'short_contact', 'admin', 'lastname',
                     'ip_addresses',
                     'email', 'last_login',
                     'full_name', 'active', 'password', 'emails',
                     'inherit_default_permissions', 'deleted_by'))
             create_repository = ExtensionCallback(
                 hook_name='CREATE_REPO_HOOK',
                 kwargs_keys=(
                     'repo_name', 'repo_type', 'description', 'private', 'created_on',
                     'enable_downloads', 'repo_id', 'user_id', 'enable_statistics',
                     'clone_uri', 'fork_id', 'group_id', 'created_by'))
             delete_repository = ExtensionCallback(
                 hook_name='DELETE_REPO_HOOK',
                 kwargs_keys=(
                     'repo_name', 'repo_type', 'description', 'private', 'created_on',
                     'enable_downloads', 'repo_id', 'user_id', 'enable_statistics',
                     'clone_uri', 'fork_id', 'group_id', 'deleted_by', 'deleted_on'))
             comment_commit_repository = ExtensionCallback(
                 hook_name='COMMENT_COMMIT_REPO_HOOK',
                 kwargs_keys=(
                     'repo_name', 'repo_type', 'description', 'private', 'created_on',
                     'enable_downloads', 'repo_id', 'user_id', 'enable_statistics',
                     'clone_uri', 'fork_id', 'group_id',
                     'repository', 'created_by', 'comment', 'commit'))
             comment_edit_commit_repository = ExtensionCallback(
                 hook_name='COMMENT_EDIT_COMMIT_REPO_HOOK',
                 kwargs_keys=(
                     'repo_name', 'repo_type', 'description', 'private', 'created_on',
                     'enable_downloads', 'repo_id', 'user_id', 'enable_statistics',
                     'clone_uri', 'fork_id', 'group_id',
                     'repository', 'created_by', 'comment', 'commit'))
             create_repository_group = ExtensionCallback(
                 hook_name='CREATE_REPO_GROUP_HOOK',
                 kwargs_keys=(
                     'group_name', 'group_parent_id', 'group_description',
                     'group_id', 'user_id', 'created_by', 'created_on',
                     'enable_locking'))

rhodecode/lib/utils.py

0 +5 -2

             # Copyright (C) 2010-2023 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             Utilities library for RhodeCode
             """
             import datetime
             import decorator
             import logging
             import os
             import re
             import sys
             import shutil
             import socket
             import tempfile
             import traceback
             import tarfile
             from functools import wraps
             from os.path import join as jn
             import paste
             import pkg_resources
             from webhelpers2.text import collapse, strip_tags, convert_accented_entities, convert_misc_entities
             from mako import exceptions
             from rhodecode.lib.hash_utils import sha256_safe, md5, sha1
             from rhodecode.lib.type_utils import AttributeDict
             from rhodecode.lib.str_utils import safe_bytes, safe_str
             from rhodecode.lib.vcs.backends.base import Config
             from rhodecode.lib.vcs.exceptions import VCSError
             from rhodecode.lib.vcs.utils.helpers import get_scm, get_scm_backend
             from rhodecode.lib.ext_json import sjson as json
             from rhodecode.model import meta
             from rhodecode.model.db import (
                 Repository, User, RhodeCodeUi, UserLog, RepoGroup, UserGroup)
             from rhodecode.model.meta import Session
             log = logging.getLogger(__name__)
             REMOVED_REPO_PAT = re.compile(r'rm__\d{8}_\d{6}_\d{6}__.*')
             # String which contains characters that are not allowed in slug names for
             # repositories or repository groups. It is properly escaped to use it in
             # regular expressions.
             SLUG_BAD_CHARS = re.escape(r'`?=[]\;\'"<>,/~!@#$%^&*()+{}|:')
             # Regex that matches forbidden characters in repo/group slugs.
             SLUG_BAD_CHAR_RE = re.compile(r'[{}\x00-\x08\x0b-\x0c\x0e-\x1f]'.format(SLUG_BAD_CHARS))
             # Regex that matches allowed characters in repo/group slugs.
             SLUG_GOOD_CHAR_RE = re.compile(r'[^{}]'.format(SLUG_BAD_CHARS))
             # Regex that matches whole repo/group slugs.
             SLUG_RE = re.compile(r'[^{}]+'.format(SLUG_BAD_CHARS))
             _license_cache = None
             def adopt_for_celery(func):
                 """
                 Decorator designed to adopt hooks (from rhodecode.lib.hooks_base)
                 for further usage as a celery tasks.
                 """
                 @wraps(func)
                 def wrapper(extras):
                     extras = AttributeDict(extras)
-                    # HooksResponse implements to_json method which must be used there.
+                    try:
-                    return func(extras).to_json()
+                        # HooksResponse implements to_json method which must be used there.
+                        return func(extras).to_json()
+                    except Exception as e:
+                        return {'status': 128, 'exception': type(e).__name__, 'exception_args': e.args}
                 return wrapper
             def repo_name_slug(value):
                 """
                 Return slug of name of repository
                 This function is called on each creation/modification
                 of repository to prevent bad names in repo
                 """
                 replacement_char = '-'
                 slug = strip_tags(value)
                 slug = convert_accented_entities(slug)
                 slug = convert_misc_entities(slug)
                 slug = SLUG_BAD_CHAR_RE.sub('', slug)
                 slug = re.sub(r'[\s]+', '-', slug)
                 slug = collapse(slug, replacement_char)
                 return slug
             #==============================================================================
             # PERM DECORATOR HELPERS FOR EXTRACTING NAMES FOR PERM CHECKS
             #==============================================================================
             def get_repo_slug(request):
                 _repo = ''
                 if hasattr(request, 'db_repo_name'):
                     # if our requests has set db reference use it for name, this
                     # translates the example.com/_<id> into proper repo names
                     _repo = request.db_repo_name
                 elif getattr(request, 'matchdict', None):
                     # pyramid
                     _repo = request.matchdict.get('repo_name')
                 if _repo:
                     _repo = _repo.rstrip('/')
                 return _repo
             def get_repo_group_slug(request):
                 _group = ''
                 if hasattr(request, 'db_repo_group'):
                     # if our requests has set db reference use it for name, this
                     # translates the example.com/_<id> into proper repo group names
                     _group = request.db_repo_group.group_name
                 elif getattr(request, 'matchdict', None):
                     # pyramid
                     _group = request.matchdict.get('repo_group_name')
                 if _group:
                     _group = _group.rstrip('/')
                 return _group
             def get_user_group_slug(request):
                 _user_group = ''
                 if hasattr(request, 'db_user_group'):
                     _user_group = request.db_user_group.users_group_name
                 elif getattr(request, 'matchdict', None):
                     # pyramid
                     _user_group = request.matchdict.get('user_group_id')
                     _user_group_name = request.matchdict.get('user_group_name')
                     try:
                         if _user_group:
                             _user_group = UserGroup.get(_user_group)
                         elif _user_group_name:
                             _user_group = UserGroup.get_by_group_name(_user_group_name)
                         if _user_group:
                             _user_group = _user_group.users_group_name
                     except Exception:
                         log.exception('Failed to get user group by id and name')
                         # catch all failures here
                         return None
                 return _user_group
             def get_filesystem_repos(path, recursive=False, skip_removed_repos=True):
                 """
                 Scans given path for repos and return (name,(type,path)) tuple
                 :param path: path to scan for repositories
                 :param recursive: recursive search and return names with subdirs in front
                 """
                 # remove ending slash for better results
                 path = path.rstrip(os.sep)
                 log.debug('now scanning in %s location recursive:%s...', path, recursive)
                 def _get_repos(p):
                     dirpaths = get_dirpaths(p)
                     if not _is_dir_writable(p):
                         log.warning('repo path without write access: %s', p)
                     for dirpath in dirpaths:
                         if os.path.isfile(os.path.join(p, dirpath)):
                             continue
                         cur_path = os.path.join(p, dirpath)
                         # skip removed repos
                         if skip_removed_repos and REMOVED_REPO_PAT.match(dirpath):
                             continue
                         #skip .<somethin> dirs
                         if dirpath.startswith('.'):
                             continue
                         try:
                             scm_info = get_scm(cur_path)
                             yield scm_info[1].split(path, 1)[-1].lstrip(os.sep), scm_info
                         except VCSError:
                             if not recursive:
                                 continue
                             #check if this dir containts other repos for recursive scan
                             rec_path = os.path.join(p, dirpath)
                             if os.path.isdir(rec_path):
                                 yield from _get_repos(rec_path)
                 return _get_repos(path)
             def get_dirpaths(p: str) -> list:
                 try:
                     # OS-independable way of checking if we have at least read-only
                     # access or not.
                     dirpaths = os.listdir(p)
                 except OSError:
                     log.warning('ignoring repo path without read access: %s', p)
                     return []
                 # os.listpath has a tweak: If a unicode is passed into it, then it tries to
                 # decode paths and suddenly returns unicode objects itself. The items it
                 # cannot decode are returned as strings and cause issues.
                 #
                 # Those paths are ignored here until a solid solution for path handling has
                 # been built.
                 expected_type = type(p)
                 def _has_correct_type(item):
                     if type(item) is not expected_type:
                         log.error(
                             "Ignoring path %s since it cannot be decoded into str.",
                             # Using "repr" to make sure that we see the byte value in case
                             # of support.
                             repr(item))
                         return False
                     return True
                 dirpaths = [item for item in dirpaths if _has_correct_type(item)]
                 return dirpaths
             def _is_dir_writable(path):
                 """
                 Probe if `path` is writable.
                 Due to trouble on Cygwin / Windows, this is actually probing if it is
                 possible to create a file inside of `path`, stat does not produce reliable
                 results in this case.
                 """
                 try:
                     with tempfile.TemporaryFile(dir=path):
                         pass
                 except OSError:
                     return False
                 return True
             def is_valid_repo(repo_name, base_path, expect_scm=None, explicit_scm=None, config=None):
                 """
                 Returns True if given path is a valid repository False otherwise.
                 If expect_scm param is given also, compare if given scm is the same
                 as expected from scm parameter. If explicit_scm is given don't try to
                 detect the scm, just use the given one to check if repo is valid
                 :param repo_name:
                 :param base_path:
                 :param expect_scm:
                 :param explicit_scm:
                 :param config:
                 :return True: if given path is a valid repository
                 """
                 full_path = os.path.join(safe_str(base_path), safe_str(repo_name))
                 log.debug('Checking if `%s` is a valid path for repository. '
                           'Explicit type: %s', repo_name, explicit_scm)
                 try:
                     if explicit_scm:
                         detected_scms = [get_scm_backend(explicit_scm)(
                             full_path, config=config).alias]
                     else:
                         detected_scms = get_scm(full_path)
                     if expect_scm:
                         return detected_scms[0] == expect_scm
                     log.debug('path: %s is an vcs object:%s', full_path, detected_scms)
                     return True
                 except VCSError:
                     log.debug('path: %s is not a valid repo !', full_path)
                     return False
             def is_valid_repo_group(repo_group_name, base_path, skip_path_check=False):
                 """
                 Returns True if a given path is a repository group, False otherwise
                 :param repo_group_name:
                 :param base_path:
                 """
                 full_path = os.path.join(safe_str(base_path), safe_str(repo_group_name))
                 log.debug('Checking if `%s` is a valid path for repository group',
                           repo_group_name)
                 # check if it's not a repo
                 if is_valid_repo(repo_group_name, base_path):
                     log.debug('Repo called %s exist, it is not a valid repo group', repo_group_name)
                     return False
                 try:
                     # we need to check bare git repos at higher level
                     # since we might match branches/hooks/info/objects or possible
                     # other things inside bare git repo
                     maybe_repo = os.path.dirname(full_path)
                     if maybe_repo == base_path:
                         # skip root level repo check; we know root location CANNOT BE a repo group
                         return False
                     scm_ = get_scm(maybe_repo)
                     log.debug('path: %s is a vcs object:%s, not valid repo group', full_path, scm_)
                     return False
                 except VCSError:
                     pass
                 # check if it's a valid path
                 if skip_path_check or os.path.isdir(full_path):
                     log.debug('path: %s is a valid repo group !', full_path)
                     return True
                 log.debug('path: %s is not a valid repo group !', full_path)
                 return False
             def ask_ok(prompt, retries=4, complaint='[y]es or [n]o please!'):
                 while True:
                     ok = input(prompt)
                     if ok.lower() in ('y', 'ye', 'yes'):
                         return True
                     if ok.lower() in ('n', 'no', 'nop', 'nope'):
                         return False
                     retries = retries - 1
                     if retries < 0:
                         raise OSError
                     print(complaint)
             # propagated from mercurial documentation
             ui_sections = [
                 'alias', 'auth',
                 'decode/encode', 'defaults',
                 'diff', 'email',
                 'extensions', 'format',
                 'merge-patterns', 'merge-tools',
                 'hooks', 'http_proxy',
                 'smtp', 'patch',
                 'paths', 'profiling',
                 'server', 'trusted',
                 'ui', 'web', ]
             def config_data_from_db(clear_session=True, repo=None):
                 """
                 Read the configuration data from the database and return configuration
                 tuples.
                 """
                 from rhodecode.model.settings import VcsSettingsModel
                 config = []
                 sa = meta.Session()
                 settings_model = VcsSettingsModel(repo=repo, sa=sa)
                 ui_settings = settings_model.get_ui_settings()
                 ui_data = []
                 for setting in ui_settings:
                     if setting.active:
                         ui_data.append((setting.section, setting.key, setting.value))
                         config.append((
                             safe_str(setting.section), safe_str(setting.key),
                             safe_str(setting.value)))
                     if setting.key == 'push_ssl':
                         # force set push_ssl requirement to False, rhodecode
                         # handles that
                         config.append((
                             safe_str(setting.section), safe_str(setting.key), False))
                 log.debug(
                     'settings ui from db@repo[%s]: %s',
                     repo,
                     ','.join(['[{}] {}={}'.format(*s) for s in ui_data]))
                 if clear_session:
                     meta.Session.remove()
                 # TODO: mikhail: probably it makes no sense to re-read hooks information.
                 # It's already there and activated/deactivated
                 skip_entries = []
                 enabled_hook_classes = get_enabled_hook_classes(ui_settings)
                 if 'pull' not in enabled_hook_classes:
                     skip_entries.append(('hooks', RhodeCodeUi.HOOK_PRE_PULL))
                 if 'push' not in enabled_hook_classes:
                     skip_entries.append(('hooks', RhodeCodeUi.HOOK_PRE_PUSH))
                     skip_entries.append(('hooks', RhodeCodeUi.HOOK_PRETX_PUSH))
                     skip_entries.append(('hooks', RhodeCodeUi.HOOK_PUSH_KEY))
                 config = [entry for entry in config if entry[:2] not in skip_entries]
                 return config
             def make_db_config(clear_session=True, repo=None):
                 """
                 Create a :class:`Config` instance based on the values in the database.
                 """
                 config = Config()
                 config_data = config_data_from_db(clear_session=clear_session, repo=repo)
                 for section, option, value in config_data:
                     config.set(section, option, value)
                 return config
             def get_enabled_hook_classes(ui_settings):
                 """
                 Return the enabled hook classes.
                 :param ui_settings: List of ui_settings as returned
                     by :meth:`VcsSettingsModel.get_ui_settings`
                 :return: a list with the enabled hook classes. The order is not guaranteed.
                 :rtype: list
                 """
                 enabled_hooks = []
                 active_hook_keys = [
                     key for section, key, value, active in ui_settings
                     if section == 'hooks' and active]
                 hook_names = {
                     RhodeCodeUi.HOOK_PUSH: 'push',
                     RhodeCodeUi.HOOK_PULL: 'pull',
                     RhodeCodeUi.HOOK_REPO_SIZE: 'repo_size'
                 }
                 for key in active_hook_keys:
                     hook = hook_names.get(key)
                     if hook:
                         enabled_hooks.append(hook)
                 return enabled_hooks
             def set_rhodecode_config(config):
                 """
                 Updates pyramid config with new settings from database
                 :param config:
                 """
                 from rhodecode.model.settings import SettingsModel
                 app_settings = SettingsModel().get_all_settings()
                 for k, v in list(app_settings.items()):
                     config[k] = v
             def get_rhodecode_realm():
                 """
                 Return the rhodecode realm from database.
                 """
                 from rhodecode.model.settings import SettingsModel
                 realm = SettingsModel().get_setting_by_name('realm')
                 return safe_str(realm.app_settings_value)
             def get_rhodecode_repo_store_path():
                 """
                 Returns the base path. The base path is the filesystem path which points
                 to the repository store.
                 """
                 import rhodecode
                 return rhodecode.CONFIG['repo_store.path']
             def map_groups(path):
                 """
                 Given a full path to a repository, create all nested groups that this
                 repo is inside. This function creates parent-child relationships between
                 groups and creates default perms for all new groups.
                 :param paths: full path to repository
                 """
                 from rhodecode.model.repo_group import RepoGroupModel
                 sa = meta.Session()
                 groups = path.split(Repository.NAME_SEP)
                 parent = None
                 group = None
                 # last element is repo in nested groups structure
                 groups = groups[:-1]
                 rgm = RepoGroupModel(sa)
                 owner = User.get_first_super_admin()
                 for lvl, group_name in enumerate(groups):
                     group_name = '/'.join(groups[:lvl] + [group_name])
                     group = RepoGroup.get_by_group_name(group_name)
                     desc = '%s group' % group_name
                     # skip folders that are now removed repos
                     if REMOVED_REPO_PAT.match(group_name):
                         break
                     if group is None:
                         log.debug('creating group level: %s group_name: %s',
                                    lvl, group_name)
                         group = RepoGroup(group_name, parent)
                         group.group_description = desc
                         group.user = owner
                         sa.add(group)
                         perm_obj = rgm._create_default_perms(group)
                         sa.add(perm_obj)
                         sa.flush()
                     parent = group
                 return group
             def repo2db_mapper(initial_repo_list, remove_obsolete=False, force_hooks_rebuild=False):
                 """
                 maps all repos given in initial_repo_list, non existing repositories
                 are created, if remove_obsolete is True it also checks for db entries
                 that are not in initial_repo_list and removes them.
                 :param initial_repo_list: list of repositories found by scanning methods
                 :param remove_obsolete: check for obsolete entries in database
                 """
                 from rhodecode.model.repo import RepoModel
                 from rhodecode.model.repo_group import RepoGroupModel
                 from rhodecode.model.settings import SettingsModel
                 sa = meta.Session()
                 repo_model = RepoModel()
                 user = User.get_first_super_admin()
                 added = []
                 # creation defaults
                 defs = SettingsModel().get_default_repo_settings(strip_prefix=True)
                 enable_statistics = defs.get('repo_enable_statistics')
                 enable_locking = defs.get('repo_enable_locking')
                 enable_downloads = defs.get('repo_enable_downloads')
                 private = defs.get('repo_private')
                 for name, repo in list(initial_repo_list.items()):
                     group = map_groups(name)
                     str_name = safe_str(name)
                     db_repo = repo_model.get_by_repo_name(str_name)
                     # found repo that is on filesystem not in RhodeCode database
                     if not db_repo:
                         log.info('repository `%s` not found in the database, creating now', name)
                         added.append(name)
                         desc = (repo.description
                                 if repo.description != 'unknown'
                                 else '%s repository' % name)
                         db_repo = repo_model._create_repo(
                             repo_name=name,
                             repo_type=repo.alias,
                             description=desc,
                             repo_group=getattr(group, 'group_id', None),
                             owner=user,
                             enable_locking=enable_locking,
                             enable_downloads=enable_downloads,
                             enable_statistics=enable_statistics,
                             private=private,
                             state=Repository.STATE_CREATED
                         )
                         sa.commit()
                         # we added that repo just now, and make sure we updated server info
                         if db_repo.repo_type == 'git':
                             git_repo = db_repo.scm_instance()
                             # update repository server-info
                             log.debug('Running update server info')
                             git_repo._update_server_info(force=True)
                         db_repo.update_commit_cache(recursive=False)
                     config = db_repo._config
                     config.set('extensions', 'largefiles', '')
                     repo = db_repo.scm_instance(config=config)
                     repo.install_hooks(force=force_hooks_rebuild)
                 removed = []
                 if remove_obsolete:
                     # remove from database those repositories that are not in the filesystem
                     for repo in sa.query(Repository).all():
                         if repo.repo_name not in list(initial_repo_list.keys()):
                             log.debug("Removing non-existing repository found in db `%s`",
                                       repo.repo_name)
                             try:
                                 RepoModel(sa).delete(repo, forks='detach', fs_remove=False)
                                 sa.commit()
                                 removed.append(repo.repo_name)
                             except Exception:
                                 # don't hold further removals on error
                                 log.error(traceback.format_exc())
                                 sa.rollback()
                     def splitter(full_repo_name):
                         _parts = full_repo_name.rsplit(RepoGroup.url_sep(), 1)
                         gr_name = None
                         if len(_parts) == 2:
                             gr_name = _parts[0]
                         return gr_name
                     initial_repo_group_list = [splitter(x) for x in
                                                list(initial_repo_list.keys()) if splitter(x)]
                     # remove from database those repository groups that are not in the
                     # filesystem due to parent child relationships we need to delete them
                     # in a specific order of most nested first
                     all_groups = [x.group_name for x in sa.query(RepoGroup).all()]
                     def nested_sort(gr):
                         return len(gr.split('/'))
                     for group_name in sorted(all_groups, key=nested_sort, reverse=True):
                         if group_name not in initial_repo_group_list:
                             repo_group = RepoGroup.get_by_group_name(group_name)
                             if (repo_group.children.all() or
                                 not RepoGroupModel().check_exist_filesystem(
                                     group_name=group_name, exc_on_failure=False)):
                                 continue
                             log.info(
                                 'Removing non-existing repository group found in db `%s`',
                                 group_name)
                             try:
                                 RepoGroupModel(sa).delete(group_name, fs_remove=False)
                                 sa.commit()
                                 removed.append(group_name)
                             except Exception:
                                 # don't hold further removals on error
                                 log.exception(
                                     'Unable to remove repository group `%s`',
                                     group_name)
                                 sa.rollback()
                                 raise
                 return added, removed
             def load_rcextensions(root_path):
                 import rhodecode
                 from rhodecode.config import conf
                 path = os.path.join(root_path)
                 sys.path.append(path)
                 try:
                     rcextensions = __import__('rcextensions')
                 except ImportError:
                     if os.path.isdir(os.path.join(path, 'rcextensions')):
                         log.warning('Unable to load rcextensions from %s', path)
                     rcextensions = None
                 if rcextensions:
                     log.info('Loaded rcextensions from %s...', rcextensions)
                     rhodecode.EXTENSIONS = rcextensions
                     # Additional mappings that are not present in the pygments lexers
                     conf.LANGUAGES_EXTENSIONS_MAP.update(
                         getattr(rhodecode.EXTENSIONS, 'EXTRA_MAPPINGS', {}))
             def get_custom_lexer(extension):
                 """
                 returns a custom lexer if it is defined in rcextensions module, or None
                 if there's no custom lexer defined
                 """
                 import rhodecode
                 from pygments import lexers
                 # custom override made by RhodeCode
                 if extension in ['mako']:
                     return lexers.get_lexer_by_name('html+mako')
                 # check if we didn't define this extension as other lexer
                 extensions = rhodecode.EXTENSIONS and getattr(rhodecode.EXTENSIONS, 'EXTRA_LEXERS', None)
                 if extensions and extension in rhodecode.EXTENSIONS.EXTRA_LEXERS:
                     _lexer_name = rhodecode.EXTENSIONS.EXTRA_LEXERS[extension]
                     return lexers.get_lexer_by_name(_lexer_name)
             #==============================================================================
             # TEST FUNCTIONS AND CREATORS
             #==============================================================================
             def create_test_index(repo_location, config):
                 """
                 Makes default test index.
                 """
                 try:
                     import rc_testdata
                 except ImportError:
                     raise ImportError('Failed to import rc_testdata, '
                                       'please make sure this package is installed from requirements_test.txt')
                 rc_testdata.extract_search_index(
                     'vcs_search_index', os.path.dirname(config['search.location']))
             def create_test_directory(test_path):
                 """
                 Create test directory if it doesn't exist.
                 """
                 if not os.path.isdir(test_path):
                     log.debug('Creating testdir %s', test_path)
                     os.makedirs(test_path)
             def create_test_database(test_path, config):
                 """
                 Makes a fresh database.
                 """
                 from rhodecode.lib.db_manage import DbManage
                 from rhodecode.lib.utils2 import get_encryption_key
                 # PART ONE create db
                 dbconf = config['sqlalchemy.db1.url']
                 enc_key = get_encryption_key(config)
                 log.debug('making test db %s', dbconf)
                 dbmanage = DbManage(log_sql=False, dbconf=dbconf, root=config['here'],
                                     tests=True, cli_args={'force_ask': True}, enc_key=enc_key)
                 dbmanage.create_tables(override=True)
                 dbmanage.set_db_version()
                 # for tests dynamically set new root paths based on generated content
                 dbmanage.create_settings(dbmanage.config_prompt(test_path))
                 dbmanage.create_default_user()
                 dbmanage.create_test_admin_and_users()
                 dbmanage.create_permissions()
                 dbmanage.populate_default_permissions()
                 Session().commit()
             def create_test_repositories(test_path, config):
                 """
                 Creates test repositories in the temporary directory. Repositories are
                 extracted from archives within the rc_testdata package.
                 """
                 import rc_testdata
                 from rhodecode.tests import HG_REPO, GIT_REPO, SVN_REPO
                 log.debug('making test vcs repositories')
                 idx_path = config['search.location']
                 data_path = config['cache_dir']
                 # clean index and data
                 if idx_path and os.path.exists(idx_path):
                     log.debug('remove %s', idx_path)
                     shutil.rmtree(idx_path)
                 if data_path and os.path.exists(data_path):
                     log.debug('remove %s', data_path)
                     shutil.rmtree(data_path)
                 rc_testdata.extract_hg_dump('vcs_test_hg', jn(test_path, HG_REPO))
                 rc_testdata.extract_git_dump('vcs_test_git', jn(test_path, GIT_REPO))
                 # Note: Subversion is in the process of being integrated with the system,
                 # until we have a properly packed version of the test svn repository, this
                 # tries to copy over the repo from a package "rc_testdata"
                 svn_repo_path = rc_testdata.get_svn_repo_archive()
                 with tarfile.open(svn_repo_path) as tar:
                     tar.extractall(jn(test_path, SVN_REPO))
             def password_changed(auth_user, session):
                 # Never report password change in case of default user or anonymous user.
                 if auth_user.username == User.DEFAULT_USER or auth_user.user_id is None:
                     return False
                 password_hash = md5(safe_bytes(auth_user.password)) if auth_user.password else None
                 rhodecode_user = session.get('rhodecode_user', {})
                 session_password_hash = rhodecode_user.get('password', '')
                 return password_hash != session_password_hash
             def read_opensource_licenses():
                 global _license_cache
                 if not _license_cache:
                     licenses = pkg_resources.resource_string(
                         'rhodecode', 'config/licenses.json')
                     _license_cache = json.loads(licenses)
                 return _license_cache
             def generate_platform_uuid():
                 """
                 Generates platform UUID based on it's name
                 """
                 import platform
                 try:
                     uuid_list = [platform.platform()]
                     return sha256_safe(':'.join(uuid_list))
                 except Exception as e:
                     log.error('Failed to generate host uuid: %s', e)
                     return 'UNDEFINED'
             def send_test_email(recipients, email_body='TEST EMAIL'):
                 """
                 Simple code for generating test emails.
                 Usage::
                     from rhodecode.lib import utils
                     utils.send_test_email()
                 """
                 from rhodecode.lib.celerylib import tasks, run_task
                 email_body = email_body_plaintext = email_body
                 subject = f'SUBJECT FROM: {socket.gethostname()}'
                 tasks.send_email(recipients, subject, email_body_plaintext, email_body)

rhodecode/model/forms.py

0 +14 0

             # Copyright (C) 2010-2023 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             this is forms validation classes
             http://formencode.org/module-formencode.validators.html
             for list off all availible validators
             we can create our own validators
             The table below outlines the options which can be used in a schema in addition to the validators themselves
             pre_validators          []     These validators will be applied before the schema
             chained_validators      []     These validators will be applied after the schema
             allow_extra_fields      False     If True, then it is not an error when keys that aren't associated with a validator are present
             filter_extra_fields     False     If True, then keys that aren't associated with a validator are removed
             if_key_missing          NoDefault If this is given, then any keys that aren't available but are expected will be replaced with this value (and then validated). This does not override a present .if_missing attribute on validators. NoDefault is a special FormEncode class to mean that no default values has been specified and therefore missing keys shouldn't take a default value.
             ignore_key_missing      False     If True, then missing keys will be missing in the result, if the validator doesn't have .if_missing on it already
             <name> = formencode.validators.<name of validator>
             <name> must equal form name
             list=[1,2,3,4,5]
             for SELECT use formencode.All(OneOf(list), Int())
             """
             import deform
             import logging
             import formencode
             from pkg_resources import resource_filename
             from formencode import All, Pipe
             from pyramid.threadlocal import get_current_request
             from rhodecode import BACKENDS
             from rhodecode.lib import helpers
             from rhodecode.model import validators as v
             log = logging.getLogger(__name__)
             deform_templates = resource_filename('deform', 'templates')
             rhodecode_templates = resource_filename('rhodecode', 'templates/forms')
             search_path = (rhodecode_templates, deform_templates)
             class RhodecodeFormZPTRendererFactory(deform.ZPTRendererFactory):
                 """ Subclass of ZPTRendererFactory to add rhodecode context variables """
                 def __call__(self, template_name, **kw):
                     kw['h'] = helpers
                     kw['request'] = get_current_request()
                     return self.load(template_name)(**kw)
             form_renderer = RhodecodeFormZPTRendererFactory(search_path)
             deform.Form.set_default_renderer(form_renderer)
             def LoginForm(localizer):
                 _ = localizer
                 class _LoginForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     username = v.UnicodeString(
                         strip=True,
                         min=1,
                         not_empty=True,
                         messages={
                             'empty': _('Please enter a login'),
                             'tooShort': _('Enter a value %(min)i characters long or more')
                         }
                     )
                     password = v.UnicodeString(
                         strip=False,
                         min=3,
                         max=72,
                         not_empty=True,
                         messages={
                             'empty': _('Please enter a password'),
                             'tooShort': _('Enter %(min)i characters or more')}
                     )
                     remember = v.StringBoolean(if_missing=False)
                     chained_validators = [v.ValidAuth(localizer)]
                 return _LoginForm
             def TOTPForm(localizer, user, allow_recovery_code_use=False):
                 _ = localizer
                 class _TOTPForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     totp = v.Regex(r'^(?:\d{6}|[A-Z0-9]{32})$')
                     secret_totp = v.String()
                     def to_python(self, value, state=None):
                         validation_checks = [user.is_totp_valid]
                         if allow_recovery_code_use:
                             validation_checks.append(user.is_2fa_recovery_code_valid)
                         form_data = super().to_python(value, state)
                         received_code = form_data['totp']
                         secret = form_data.get('secret_totp')
                         if not any(map(lambda func: func(received_code, secret), validation_checks)):
                             error_msg = _('Code is invalid. Try again!')
                             raise formencode.Invalid(error_msg, v, state, error_dict={'totp': error_msg})
                         return form_data
                 return _TOTPForm
+            def WhitelistedVcsClientsForm(localizer):
+                _ = localizer
+                class _WhitelistedVcsClientsForm(formencode.Schema):
+                    regexp = r'^(?:\s*[<>=~^!]*\s*\d{1,2}\.\d{1,2}(?:\.\d{1,2})?\s*|\*)\s*(?:,\s*[<>=~^!]*\s*\d{1,2}\.\d{1,2}(?:\.\d{1,2})?\s*|\s*\*\s*)*$'
+                    allow_extra_fields = True
+                    filter_extra_fields = True
+                    git = v.Regex(regexp)
+                    hg = v.Regex(regexp)
+                    svn = v.Regex(regexp)
+                return _WhitelistedVcsClientsForm
             def UserForm(localizer, edit=False, available_languages=None, old_data=None):
                 old_data = old_data or {}
                 available_languages = available_languages or []
                 _ = localizer
                 class _UserForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     username = All(v.UnicodeString(strip=True, min=1, not_empty=True),
                                    v.ValidUsername(localizer, edit, old_data))
                     if edit:
                         new_password = All(
                             v.ValidPassword(localizer),
                             v.UnicodeString(strip=False, min=6, max=72, not_empty=False)
                         )
                         password_confirmation = All(
                             v.ValidPassword(localizer),
                             v.UnicodeString(strip=False, min=6, max=72, not_empty=False),
                         )
                         admin = v.StringBoolean(if_missing=False)
                     else:
                         password = All(
                             v.ValidPassword(localizer),
                             v.UnicodeString(strip=False, min=6, max=72, not_empty=True)
                         )
                         password_confirmation = All(
                             v.ValidPassword(localizer),
                             v.UnicodeString(strip=False, min=6, max=72, not_empty=False)
                         )
                     password_change = v.StringBoolean(if_missing=False)
                     create_repo_group = v.StringBoolean(if_missing=False)
                     active = v.StringBoolean(if_missing=False)
                     firstname = v.UnicodeString(strip=True, min=1, not_empty=False)
                     lastname = v.UnicodeString(strip=True, min=1, not_empty=False)
                     email = All(v.UniqSystemEmail(localizer, old_data), v.Email(not_empty=True))
                     description = v.UnicodeString(strip=True, min=1, max=250, not_empty=False,
                                                   if_missing='')
                     extern_name = v.UnicodeString(strip=True)
                     extern_type = v.UnicodeString(strip=True)
                     language = v.OneOf(available_languages, hideList=False,
                                        testValueList=True, if_missing=None)
                     chained_validators = [v.ValidPasswordsMatch(localizer)]
                 return _UserForm
             def UserGroupForm(localizer, edit=False, old_data=None, allow_disabled=False):
                 old_data = old_data or {}
                 _ = localizer
                 class _UserGroupForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     users_group_name = All(
                         v.UnicodeString(strip=True, min=1, not_empty=True),
                         v.ValidUserGroup(localizer, edit, old_data)
                     )
                     user_group_description = v.UnicodeString(strip=True, min=1,
                                                              not_empty=False)
                     users_group_active = v.StringBoolean(if_missing=False)
                     if edit:
                         # this is user group owner
                         user = All(
                             v.UnicodeString(not_empty=True),
                             v.ValidRepoUser(localizer, allow_disabled))
                 return _UserGroupForm
             def RepoGroupForm(localizer, edit=False, old_data=None, available_groups=None,
                               can_create_in_root=False, allow_disabled=False):
                 _ = localizer
                 old_data = old_data or {}
                 available_groups = available_groups or []
                 class _RepoGroupForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     group_name = All(v.UnicodeString(strip=True, min=1, not_empty=True),
                                      v.SlugifyName(localizer),)
                     group_description = v.UnicodeString(strip=True, min=1,
                                                         not_empty=False)
                     group_copy_permissions = v.StringBoolean(if_missing=False)
                     group_parent_id = v.OneOf(available_groups, hideList=False,
                                               testValueList=True, not_empty=True)
                     enable_locking = v.StringBoolean(if_missing=False)
                     chained_validators = [
                         v.ValidRepoGroup(localizer, edit, old_data, can_create_in_root)]
                     if edit:
                         # this is repo group owner
                         user = All(
                             v.UnicodeString(not_empty=True),
                             v.ValidRepoUser(localizer, allow_disabled))
                 return _RepoGroupForm
             def RegisterForm(localizer, edit=False, old_data=None):
                 _ = localizer
                 old_data = old_data or {}
                 class _RegisterForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     username = All(
                         v.ValidUsername(localizer, edit, old_data),
                         v.UnicodeString(strip=True, min=1, not_empty=True)
                     )
                     password = All(
                         v.ValidPassword(localizer),
                         v.UnicodeString(strip=False, min=6, max=72, not_empty=True)
                     )
                     password_confirmation = All(
                         v.ValidPassword(localizer),
                         v.UnicodeString(strip=False, min=6, max=72, not_empty=True)
                     )
                     active = v.StringBoolean(if_missing=False)
                     firstname = v.UnicodeString(strip=True, min=1, not_empty=False)
                     lastname = v.UnicodeString(strip=True, min=1, not_empty=False)
                     email = All(v.UniqSystemEmail(localizer, old_data), v.Email(not_empty=True))
                     chained_validators = [v.ValidPasswordsMatch(localizer)]
                 return _RegisterForm
             def PasswordResetForm(localizer):
                 _ = localizer
                 class _PasswordResetForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     email = All(v.ValidSystemEmail(localizer), v.Email(not_empty=True))
                 return _PasswordResetForm
             def RepoForm(localizer, edit=False, old_data=None, repo_groups=None, allow_disabled=False):
                 _ = localizer
                 old_data = old_data or {}
                 repo_groups = repo_groups or []
                 supported_backends = BACKENDS.keys()
                 class _RepoForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     repo_name = All(v.UnicodeString(strip=True, min=1, not_empty=True),
                                     v.SlugifyName(localizer), v.CannotHaveGitSuffix(localizer))
                     repo_group = All(v.CanWriteGroup(localizer, old_data),
                                      v.OneOf(repo_groups, hideList=True))
                     repo_type = v.OneOf(supported_backends, required=False,
                                         if_missing=old_data.get('repo_type'))
                     repo_description = v.UnicodeString(strip=True, min=1, not_empty=False)
                     repo_private = v.StringBoolean(if_missing=False)
                     repo_copy_permissions = v.StringBoolean(if_missing=False)
                     clone_uri = All(v.UnicodeString(strip=True, min=1, not_empty=False))
                     repo_enable_statistics = v.StringBoolean(if_missing=False)
                     repo_enable_downloads = v.StringBoolean(if_missing=False)
                     repo_enable_locking = v.StringBoolean(if_missing=False)
                     if edit:
                         # this is repo owner
                         user = All(
                             v.UnicodeString(not_empty=True),
                             v.ValidRepoUser(localizer, allow_disabled))
                         clone_uri_change = v.UnicodeString(
                             not_empty=False, if_missing=v.Missing)
                     chained_validators = [v.ValidCloneUri(localizer),
                                           v.ValidRepoName(localizer, edit, old_data)]
                 return _RepoForm
             def RepoPermsForm(localizer):
                 _ = localizer
                 class _RepoPermsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     chained_validators = [v.ValidPerms(localizer, type_='repo')]
                 return _RepoPermsForm
             def RepoGroupPermsForm(localizer, valid_recursive_choices):
                 _ = localizer
                 class _RepoGroupPermsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     recursive = v.OneOf(valid_recursive_choices)
                     chained_validators = [v.ValidPerms(localizer, type_='repo_group')]
                 return _RepoGroupPermsForm
             def UserGroupPermsForm(localizer):
                 _ = localizer
                 class _UserPermsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     chained_validators = [v.ValidPerms(localizer, type_='user_group')]
                 return _UserPermsForm
             def RepoFieldForm(localizer):
                 _ = localizer
                 class _RepoFieldForm(formencode.Schema):
                     filter_extra_fields = True
                     allow_extra_fields = True
                     new_field_key = All(v.FieldKey(localizer),
                                         v.UnicodeString(strip=True, min=3, not_empty=True))
                     new_field_value = v.UnicodeString(not_empty=False, if_missing='')
                     new_field_type = v.OneOf(['str', 'unicode', 'list', 'tuple'],
                                              if_missing='str')
                     new_field_label = v.UnicodeString(not_empty=False)
                     new_field_desc = v.UnicodeString(not_empty=False)
                 return _RepoFieldForm
             def RepoForkForm(localizer, edit=False, old_data=None,
                              supported_backends=BACKENDS.keys(), repo_groups=None):
                 _ = localizer
                 old_data = old_data or {}
                 repo_groups = repo_groups or []
                 class _RepoForkForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     repo_name = All(v.UnicodeString(strip=True, min=1, not_empty=True),
                                     v.SlugifyName(localizer))
                     repo_group = All(v.CanWriteGroup(localizer, ),
                                      v.OneOf(repo_groups, hideList=True))
                     repo_type = All(v.ValidForkType(localizer, old_data), v.OneOf(supported_backends))
                     description = v.UnicodeString(strip=True, min=1, not_empty=True)
                     private = v.StringBoolean(if_missing=False)
                     copy_permissions = v.StringBoolean(if_missing=False)
                     fork_parent_id = v.UnicodeString()
                     chained_validators = [v.ValidForkName(localizer, edit, old_data)]
                 return _RepoForkForm
             def ApplicationSettingsForm(localizer):
                 _ = localizer
                 class _ApplicationSettingsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     rhodecode_title = v.UnicodeString(strip=True, max=40, not_empty=False)
                     rhodecode_realm = v.UnicodeString(strip=True, min=1, not_empty=True)
                     rhodecode_pre_code = v.UnicodeString(strip=True, min=1, not_empty=False)
                     rhodecode_post_code = v.UnicodeString(strip=True, min=1, not_empty=False)
                     rhodecode_captcha_public_key = v.UnicodeString(strip=True, min=1, not_empty=False)
                     rhodecode_captcha_private_key = v.UnicodeString(strip=True, min=1, not_empty=False)
                     rhodecode_create_personal_repo_group = v.StringBoolean(if_missing=False)
                     rhodecode_personal_repo_group_pattern = v.UnicodeString(strip=True, min=1, not_empty=False)
                 return _ApplicationSettingsForm
             def ApplicationVisualisationForm(localizer):
                 from rhodecode.model.db import Repository
                 _ = localizer
                 class _ApplicationVisualisationForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     rhodecode_show_public_icon = v.StringBoolean(if_missing=False)
                     rhodecode_show_private_icon = v.StringBoolean(if_missing=False)
                     rhodecode_stylify_metatags = v.StringBoolean(if_missing=False)
                     rhodecode_repository_fields = v.StringBoolean(if_missing=False)
                     rhodecode_lightweight_journal = v.StringBoolean(if_missing=False)
                     rhodecode_dashboard_items = v.Int(min=5, not_empty=True)
                     rhodecode_admin_grid_items = v.Int(min=5, not_empty=True)
                     rhodecode_show_version = v.StringBoolean(if_missing=False)
                     rhodecode_use_gravatar = v.StringBoolean(if_missing=False)
                     rhodecode_markup_renderer = v.OneOf(['markdown', 'rst'])
                     rhodecode_gravatar_url = v.UnicodeString(min=3)
                     rhodecode_clone_uri_tmpl = v.UnicodeString(not_empty=False, if_empty=Repository.DEFAULT_CLONE_URI)
                     rhodecode_clone_uri_id_tmpl = v.UnicodeString(not_empty=False, if_empty=Repository.DEFAULT_CLONE_URI_ID)
                     rhodecode_clone_uri_ssh_tmpl = v.UnicodeString(not_empty=False, if_empty=Repository.DEFAULT_CLONE_URI_SSH)
                     rhodecode_support_url = v.UnicodeString()
                     rhodecode_show_revision_number = v.StringBoolean(if_missing=False)
                     rhodecode_show_sha_length = v.Int(min=4, not_empty=True)
                 return _ApplicationVisualisationForm
             class _BaseVcsSettingsForm(formencode.Schema):
                 allow_extra_fields = True
                 filter_extra_fields = False
                 hooks_changegroup_repo_size = v.StringBoolean(if_missing=False)
                 hooks_changegroup_push_logger = v.StringBoolean(if_missing=False)
                 hooks_outgoing_pull_logger = v.StringBoolean(if_missing=False)
                 # PR/Code-review
                 rhodecode_pr_merge_enabled = v.StringBoolean(if_missing=False)
                 rhodecode_use_outdated_comments = v.StringBoolean(if_missing=False)
                 # hg
                 extensions_largefiles = v.StringBoolean(if_missing=False)
                 extensions_evolve = v.StringBoolean(if_missing=False)
                 phases_publish = v.StringBoolean(if_missing=False)
                 rhodecode_hg_use_rebase_for_merging = v.StringBoolean(if_missing=False)
                 rhodecode_hg_close_branch_before_merging = v.StringBoolean(if_missing=False)
                 # git
                 vcs_git_lfs_enabled = v.StringBoolean(if_missing=False)
                 rhodecode_git_use_rebase_for_merging = v.StringBoolean(if_missing=False)
                 rhodecode_git_close_branch_before_merging = v.StringBoolean(if_missing=False)
                 # cache
                 rhodecode_diff_cache = v.StringBoolean(if_missing=False)
             def ApplicationUiSettingsForm(localizer):
                 _ = localizer
                 class _ApplicationUiSettingsForm(_BaseVcsSettingsForm):
                     web_push_ssl = v.StringBoolean(if_missing=False)
                     largefiles_usercache = All(
                         v.ValidPath(localizer),
                         v.UnicodeString(strip=True, min=2, not_empty=True))
                     vcs_git_lfs_store_location = All(
                         v.ValidPath(localizer),
                         v.UnicodeString(strip=True, min=2, not_empty=True))
                     extensions_hggit = v.StringBoolean(if_missing=False)
                     new_svn_branch = v.ValidSvnPattern(localizer, section='vcs_svn_branch')
                     new_svn_tag = v.ValidSvnPattern(localizer, section='vcs_svn_tag')
                 return _ApplicationUiSettingsForm
             def RepoVcsSettingsForm(localizer, repo_name):
                 _ = localizer
                 class _RepoVcsSettingsForm(_BaseVcsSettingsForm):
                     inherit_global_settings = v.StringBoolean(if_missing=False)
                     new_svn_branch = v.ValidSvnPattern(localizer,
                         section='vcs_svn_branch', repo_name=repo_name)
                     new_svn_tag = v.ValidSvnPattern(localizer,
                         section='vcs_svn_tag', repo_name=repo_name)
                 return _RepoVcsSettingsForm
             def LabsSettingsForm(localizer):
                 _ = localizer
                 class _LabSettingsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                 return _LabSettingsForm
             def ApplicationPermissionsForm(
                     localizer, register_choices, password_reset_choices,
                     extern_activate_choices):
                 _ = localizer
                 class _DefaultPermissionsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     anonymous = v.StringBoolean(if_missing=False)
                     default_register = v.OneOf(register_choices)
                     default_register_message = v.UnicodeString()
                     default_password_reset = v.OneOf(password_reset_choices)
                     default_extern_activate = v.OneOf(extern_activate_choices)
                 return _DefaultPermissionsForm
             def ObjectPermissionsForm(localizer, repo_perms_choices, group_perms_choices,
                                       user_group_perms_choices):
                 _ = localizer
                 class _ObjectPermissionsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     overwrite_default_repo = v.StringBoolean(if_missing=False)
                     overwrite_default_group = v.StringBoolean(if_missing=False)
                     overwrite_default_user_group = v.StringBoolean(if_missing=False)
                     default_repo_perm = v.OneOf(repo_perms_choices)
                     default_group_perm = v.OneOf(group_perms_choices)
                     default_user_group_perm = v.OneOf(user_group_perms_choices)
                 return _ObjectPermissionsForm
             def BranchPermissionsForm(localizer, branch_perms_choices):
                 _ = localizer
                 class _BranchPermissionsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     overwrite_default_branch = v.StringBoolean(if_missing=False)
                     default_branch_perm = v.OneOf(branch_perms_choices)
                 return _BranchPermissionsForm
             def UserPermissionsForm(localizer, create_choices, create_on_write_choices,
                                     repo_group_create_choices, user_group_create_choices,
                                     fork_choices, inherit_default_permissions_choices):
                 _ = localizer
                 class _DefaultPermissionsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     anonymous = v.StringBoolean(if_missing=False)
                     default_repo_create = v.OneOf(create_choices)
                     default_repo_create_on_write = v.OneOf(create_on_write_choices)
                     default_user_group_create = v.OneOf(user_group_create_choices)
                     default_repo_group_create = v.OneOf(repo_group_create_choices)
                     default_fork_create = v.OneOf(fork_choices)
                     default_inherit_default_permissions = v.OneOf(inherit_default_permissions_choices)
                 return _DefaultPermissionsForm
             def UserIndividualPermissionsForm(localizer):
                 _ = localizer
                 class _DefaultPermissionsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     inherit_default_permissions = v.StringBoolean(if_missing=False)
                 return _DefaultPermissionsForm
             def DefaultsForm(localizer, edit=False, old_data=None, supported_backends=BACKENDS.keys()):
                 _ = localizer
                 old_data = old_data or {}
                 class _DefaultsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     default_repo_type = v.OneOf(supported_backends)
                     default_repo_private = v.StringBoolean(if_missing=False)
                     default_repo_enable_statistics = v.StringBoolean(if_missing=False)
                     default_repo_enable_downloads = v.StringBoolean(if_missing=False)
                     default_repo_enable_locking = v.StringBoolean(if_missing=False)
                 return _DefaultsForm
             def AuthSettingsForm(localizer):
                 _ = localizer
                 class _AuthSettingsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     auth_plugins = All(v.ValidAuthPlugins(localizer),
                                        v.UniqueListFromString(localizer)(not_empty=True))
                 return _AuthSettingsForm
             def UserExtraEmailForm(localizer):
                 _ = localizer
                 class _UserExtraEmailForm(formencode.Schema):
                     email = All(v.UniqSystemEmail(localizer), v.Email(not_empty=True))
                 return _UserExtraEmailForm
             def UserExtraIpForm(localizer):
                 _ = localizer
                 class _UserExtraIpForm(formencode.Schema):
                     ip = v.ValidIp(localizer)(not_empty=True)
                 return _UserExtraIpForm
             def PullRequestForm(localizer, repo_id):
                 _ = localizer
                 class ReviewerForm(formencode.Schema):
                     user_id = v.Int(not_empty=True)
                     reasons = All()
                     rules = All(v.UniqueList(localizer, convert=int)())
                     mandatory = v.StringBoolean()
                     role = v.String(if_missing='reviewer')
                 class ObserverForm(formencode.Schema):
                     user_id = v.Int(not_empty=True)
                     reasons = All()
                     rules = All(v.UniqueList(localizer, convert=int)())
                     mandatory = v.StringBoolean()
                     role = v.String(if_missing='observer')
                 class _PullRequestForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     common_ancestor = v.UnicodeString(strip=True, required=True)
                     source_repo = v.UnicodeString(strip=True, required=True)
                     source_ref = v.UnicodeString(strip=True, required=True)
                     target_repo = v.UnicodeString(strip=True, required=True)
                     target_ref = v.UnicodeString(strip=True, required=True)
                     revisions = All(#v.NotReviewedRevisions(localizer, repo_id)(),
                                     v.UniqueList(localizer)(not_empty=True))
                     review_members = formencode.ForEach(ReviewerForm())
                     observer_members = formencode.ForEach(ObserverForm())
                     pullrequest_title = v.UnicodeString(strip=True, required=True, min=1, max=255)
                     pullrequest_desc = v.UnicodeString(strip=True, required=False)
                     description_renderer = v.UnicodeString(strip=True, required=False)
                 return _PullRequestForm
             def IssueTrackerPatternsForm(localizer):
                 _ = localizer
                 class _IssueTrackerPatternsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     chained_validators = [v.ValidPattern(localizer)]
                 return _IssueTrackerPatternsForm

rhodecode/public/js/rhodecode/routes.js

0 +1 0

             /******************************************************************************
              *                                                                            *
              *                      DO NOT CHANGE THIS FILE MANUALLY                      *
              *                                                                            *
              *                                                                            *
              *        This file is automatically generated when the app starts up with    *
              *                         generate_js_files = true                           *
              *                                                                            *
              *  To add a route here pass jsroute=True to the route definition in the app  *
              *                                                                            *
              ******************************************************************************/
             function registerRCRoutes() {
                 // routes registration
                 pyroutes.register('admin_artifacts', '/_admin/artifacts', []);
                 pyroutes.register('admin_artifacts_data', '/_admin/artifacts-data', []);
                 pyroutes.register('admin_artifacts_delete', '/_admin/artifacts/%(uid)s/delete', ['uid']);
                 pyroutes.register('admin_artifacts_show_all', '/_admin/artifacts', []);
                 pyroutes.register('admin_artifacts_show_info', '/_admin/artifacts/%(uid)s', ['uid']);
                 pyroutes.register('admin_artifacts_update', '/_admin/artifacts/%(uid)s/update', ['uid']);
                 pyroutes.register('admin_audit_log_entry', '/_admin/audit_logs/%(audit_log_id)s', ['audit_log_id']);
                 pyroutes.register('admin_audit_logs', '/_admin/audit_logs', []);
                 pyroutes.register('admin_automation', '/_admin/automation', []);
                 pyroutes.register('admin_automation_update', '/_admin/automation/%(entry_id)s/update', ['entry_id']);
                 pyroutes.register('admin_defaults_repositories', '/_admin/defaults/repositories', []);
                 pyroutes.register('admin_defaults_repositories_update', '/_admin/defaults/repositories/update', []);
                 pyroutes.register('admin_home', '/_admin', []);
                 pyroutes.register('admin_permissions_application', '/_admin/permissions/application', []);
                 pyroutes.register('admin_permissions_application_update', '/_admin/permissions/application/update', []);
                 pyroutes.register('admin_permissions_auth_token_access', '/_admin/permissions/auth_token_access', []);
                 pyroutes.register('admin_permissions_branch', '/_admin/permissions/branch', []);
                 pyroutes.register('admin_permissions_branch_update', '/_admin/permissions/branch/update', []);
                 pyroutes.register('admin_permissions_global', '/_admin/permissions/global', []);
                 pyroutes.register('admin_permissions_global_update', '/_admin/permissions/global/update', []);
                 pyroutes.register('admin_permissions_ips', '/_admin/permissions/ips', []);
                 pyroutes.register('admin_permissions_object', '/_admin/permissions/object', []);
                 pyroutes.register('admin_permissions_object_update', '/_admin/permissions/object/update', []);
                 pyroutes.register('admin_permissions_overview', '/_admin/permissions/overview', []);
                 pyroutes.register('admin_permissions_ssh_keys', '/_admin/permissions/ssh_keys', []);
                 pyroutes.register('admin_permissions_ssh_keys_data', '/_admin/permissions/ssh_keys/data', []);
                 pyroutes.register('admin_permissions_ssh_keys_update', '/_admin/permissions/ssh_keys/update', []);
                 pyroutes.register('admin_scheduler', '/_admin/scheduler', []);
                 pyroutes.register('admin_scheduler_show_tasks', '/_admin/scheduler/_tasks', []);
                 pyroutes.register('admin_settings', '/_admin/settings', []);
                 pyroutes.register('admin_settings_email', '/_admin/settings/email', []);
                 pyroutes.register('admin_settings_email_update', '/_admin/settings/email/update', []);
                 pyroutes.register('admin_settings_exception_tracker', '/_admin/settings/exceptions', []);
                 pyroutes.register('admin_settings_exception_tracker_delete', '/_admin/settings/exceptions/%(exception_id)s/delete', ['exception_id']);
                 pyroutes.register('admin_settings_exception_tracker_delete_all', '/_admin/settings/exceptions_delete_all', []);
                 pyroutes.register('admin_settings_exception_tracker_show', '/_admin/settings/exceptions/%(exception_id)s', ['exception_id']);
                 pyroutes.register('admin_settings_global', '/_admin/settings/global', []);
                 pyroutes.register('admin_settings_global_update', '/_admin/settings/global/update', []);
                 pyroutes.register('admin_settings_hooks', '/_admin/settings/hooks', []);
                 pyroutes.register('admin_settings_hooks_delete', '/_admin/settings/hooks/delete', []);
                 pyroutes.register('admin_settings_hooks_update', '/_admin/settings/hooks/update', []);
                 pyroutes.register('admin_settings_issuetracker', '/_admin/settings/issue-tracker', []);
                 pyroutes.register('admin_settings_issuetracker_delete', '/_admin/settings/issue-tracker/delete', []);
                 pyroutes.register('admin_settings_issuetracker_test', '/_admin/settings/issue-tracker/test', []);
                 pyroutes.register('admin_settings_issuetracker_update', '/_admin/settings/issue-tracker/update', []);
                 pyroutes.register('admin_settings_labs', '/_admin/settings/labs', []);
                 pyroutes.register('admin_settings_labs_update', '/_admin/settings/labs/update', []);
                 pyroutes.register('admin_settings_license', '/_admin/settings/license', []);
                 pyroutes.register('admin_settings_license_unlock', '/_admin/settings/license_unlock', []);
                 pyroutes.register('admin_settings_mapping', '/_admin/settings/mapping', []);
                 pyroutes.register('admin_settings_mapping_update', '/_admin/settings/mapping/update', []);
                 pyroutes.register('admin_settings_open_source', '/_admin/settings/open_source', []);
                 pyroutes.register('admin_settings_process_management', '/_admin/settings/process_management', []);
                 pyroutes.register('admin_settings_process_management_data', '/_admin/settings/process_management/data', []);
                 pyroutes.register('admin_settings_process_management_master_signal', '/_admin/settings/process_management/master_signal', []);
                 pyroutes.register('admin_settings_process_management_signal', '/_admin/settings/process_management/signal', []);
                 pyroutes.register('admin_settings_scheduler_create', '/_admin/scheduler/create', []);
                 pyroutes.register('admin_settings_scheduler_delete', '/_admin/scheduler/%(schedule_id)s/delete', ['schedule_id']);
                 pyroutes.register('admin_settings_scheduler_edit', '/_admin/scheduler/%(schedule_id)s', ['schedule_id']);
                 pyroutes.register('admin_settings_scheduler_execute', '/_admin/scheduler/%(schedule_id)s/execute', ['schedule_id']);
                 pyroutes.register('admin_settings_scheduler_new', '/_admin/scheduler/new', []);
                 pyroutes.register('admin_settings_scheduler_update', '/_admin/scheduler/%(schedule_id)s/update', ['schedule_id']);
                 pyroutes.register('admin_settings_search', '/_admin/settings/search', []);
                 pyroutes.register('admin_settings_sessions', '/_admin/settings/sessions', []);
                 pyroutes.register('admin_settings_sessions_cleanup', '/_admin/settings/sessions/cleanup', []);
                 pyroutes.register('admin_settings_system', '/_admin/settings/system', []);
                 pyroutes.register('admin_settings_system_update', '/_admin/settings/system/updates', []);
                 pyroutes.register('admin_settings_update', '/_admin/settings/update', []);
                 pyroutes.register('admin_settings_vcs', '/_admin/settings/vcs', []);
                 pyroutes.register('admin_settings_vcs_svn_generate_cfg', '/_admin/settings/vcs/svn_generate_cfg', []);
                 pyroutes.register('admin_settings_vcs_svn_pattern_delete', '/_admin/settings/vcs/svn_pattern_delete', []);
                 pyroutes.register('admin_settings_vcs_update', '/_admin/settings/vcs/update', []);
                 pyroutes.register('admin_settings_visual', '/_admin/settings/visual', []);
                 pyroutes.register('admin_settings_visual_update', '/_admin/settings/visual/update', []);
+                pyroutes.register('admin_security_modify_allowed_vcs_client_versions', '/_admin/security/modify/allowed_vcs_client_versions', []);
                 pyroutes.register('apiv2', '/_admin/api', []);
                 pyroutes.register('atom_feed_home', '/%(repo_name)s/feed-atom', ['repo_name']);
                 pyroutes.register('atom_feed_home_old', '/%(repo_name)s/feed/atom', ['repo_name']);
                 pyroutes.register('auth_home', '/_admin/auth*traverse', []);
                 pyroutes.register('bookmarks_home', '/%(repo_name)s/bookmarks', ['repo_name']);
                 pyroutes.register('branch_remove', '/%(repo_name)s/branches/%(branch_name)s/remove', ['repo_name', 'branch_name']);
                 pyroutes.register('branches_home', '/%(repo_name)s/branches', ['repo_name']);
                 pyroutes.register('channelstream_connect', '/_admin/channelstream/connect', []);
                 pyroutes.register('channelstream_proxy', '/_channelstream', []);
                 pyroutes.register('channelstream_subscribe', '/_admin/channelstream/subscribe', []);
                 pyroutes.register('check_2fa', '/_admin/check_2fa', []);
                 pyroutes.register('commit_draft_comments_submit', '/%(repo_name)s/changeset/%(commit_id)s/draft_comments_submit', ['repo_name', 'commit_id']);
                 pyroutes.register('debug_style_email', '/_admin/debug_style/email/%(email_id)s', ['email_id']);
                 pyroutes.register('debug_style_email_plain_rendered', '/_admin/debug_style/email-rendered/%(email_id)s', ['email_id']);
                 pyroutes.register('debug_style_home', '/_admin/debug_style', []);
                 pyroutes.register('debug_style_template', '/_admin/debug_style/t/%(t_path)s', ['t_path']);
                 pyroutes.register('download_file', '/_file_store/download/%(fid)s', ['fid']);
                 pyroutes.register('download_file_by_token', '/_file_store/token-download/%(_auth_token)s/%(fid)s', ['_auth_token', 'fid']);
                 pyroutes.register('edit_repo', '/%(repo_name)s/settings', ['repo_name']);
                 pyroutes.register('edit_repo_advanced', '/%(repo_name)s/settings/advanced', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_archive', '/%(repo_name)s/settings/advanced/archive', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_delete', '/%(repo_name)s/settings/advanced/delete', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_fork', '/%(repo_name)s/settings/advanced/fork', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_hooks', '/%(repo_name)s/settings/advanced/hooks', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_journal', '/%(repo_name)s/settings/advanced/journal', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_locking', '/%(repo_name)s/settings/advanced/locking', ['repo_name']);
                 pyroutes.register('edit_repo_audit_logs', '/%(repo_name)s/settings/audit_logs', ['repo_name']);
                 pyroutes.register('edit_repo_caches', '/%(repo_name)s/settings/caches', ['repo_name']);
                 pyroutes.register('edit_repo_fields', '/%(repo_name)s/settings/fields', ['repo_name']);
                 pyroutes.register('edit_repo_fields_create', '/%(repo_name)s/settings/fields/create', ['repo_name']);
                 pyroutes.register('edit_repo_fields_delete', '/%(repo_name)s/settings/fields/%(field_id)s/delete', ['repo_name', 'field_id']);
                 pyroutes.register('edit_repo_group', '/%(repo_group_name)s/_edit', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_advanced', '/%(repo_group_name)s/_settings/advanced', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_advanced_delete', '/%(repo_group_name)s/_settings/advanced/delete', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_perms', '/%(repo_group_name)s/_settings/permissions', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_perms_update', '/%(repo_group_name)s/_settings/permissions/update', ['repo_group_name']);
                 pyroutes.register('edit_repo_issuetracker', '/%(repo_name)s/settings/issue_trackers', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker_delete', '/%(repo_name)s/settings/issue_trackers/delete', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker_test', '/%(repo_name)s/settings/issue_trackers/test', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker_update', '/%(repo_name)s/settings/issue_trackers/update', ['repo_name']);
                 pyroutes.register('edit_repo_maintenance', '/%(repo_name)s/settings/maintenance', ['repo_name']);
                 pyroutes.register('edit_repo_maintenance_execute', '/%(repo_name)s/settings/maintenance/execute', ['repo_name']);
                 pyroutes.register('edit_repo_perms', '/%(repo_name)s/settings/permissions', ['repo_name']);
                 pyroutes.register('edit_repo_perms_branch', '/%(repo_name)s/settings/branch_permissions', ['repo_name']);
                 pyroutes.register('edit_repo_perms_branch_delete', '/%(repo_name)s/settings/branch_permissions/%(rule_id)s/delete', ['repo_name', 'rule_id']);
                 pyroutes.register('edit_repo_perms_set_private', '/%(repo_name)s/settings/permissions/set_private', ['repo_name']);
                 pyroutes.register('edit_repo_remote', '/%(repo_name)s/settings/remote', ['repo_name']);
                 pyroutes.register('edit_repo_remote_pull', '/%(repo_name)s/settings/remote/pull', ['repo_name']);
                 pyroutes.register('edit_repo_remote_push', '/%(repo_name)s/settings/remote/push', ['repo_name']);
                 pyroutes.register('edit_repo_statistics', '/%(repo_name)s/settings/statistics', ['repo_name']);
                 pyroutes.register('edit_repo_statistics_reset', '/%(repo_name)s/settings/statistics/update', ['repo_name']);
                 pyroutes.register('edit_repo_strip', '/%(repo_name)s/settings/strip', ['repo_name']);
                 pyroutes.register('edit_repo_vcs', '/%(repo_name)s/settings/vcs', ['repo_name']);
                 pyroutes.register('edit_repo_vcs_svn_pattern_delete', '/%(repo_name)s/settings/vcs/svn_pattern/delete', ['repo_name']);
                 pyroutes.register('edit_repo_vcs_update', '/%(repo_name)s/settings/vcs/update', ['repo_name']);
                 pyroutes.register('edit_user_audit_logs', '/_admin/users/%(user_id)s/edit/audit', ['user_id']);
                 pyroutes.register('edit_user_audit_logs_download', '/_admin/users/%(user_id)s/edit/audit/download', ['user_id']);
                 pyroutes.register('edit_user_auth_tokens', '/_admin/users/%(user_id)s/edit/auth_tokens', ['user_id']);
                 pyroutes.register('edit_user_auth_tokens_add', '/_admin/users/%(user_id)s/edit/auth_tokens/new', ['user_id']);
                 pyroutes.register('edit_user_auth_tokens_delete', '/_admin/users/%(user_id)s/edit/auth_tokens/delete', ['user_id']);
                 pyroutes.register('edit_user_auth_tokens_view', '/_admin/users/%(user_id)s/edit/auth_tokens/view', ['user_id']);
                 pyroutes.register('edit_user_caches', '/_admin/users/%(user_id)s/edit/caches', ['user_id']);
                 pyroutes.register('edit_user_caches_update', '/_admin/users/%(user_id)s/edit/caches/update', ['user_id']);
                 pyroutes.register('edit_user_emails', '/_admin/users/%(user_id)s/edit/emails', ['user_id']);
                 pyroutes.register('edit_user_emails_add', '/_admin/users/%(user_id)s/edit/emails/new', ['user_id']);
                 pyroutes.register('edit_user_emails_delete', '/_admin/users/%(user_id)s/edit/emails/delete', ['user_id']);
                 pyroutes.register('edit_user_group', '/_admin/user_groups/%(user_group_id)s/edit', ['user_group_id']);
                 pyroutes.register('edit_user_group_advanced', '/_admin/user_groups/%(user_group_id)s/edit/advanced', ['user_group_id']);
                 pyroutes.register('edit_user_group_advanced_sync', '/_admin/user_groups/%(user_group_id)s/edit/advanced/sync', ['user_group_id']);
                 pyroutes.register('edit_user_group_global_perms', '/_admin/user_groups/%(user_group_id)s/edit/global_permissions', ['user_group_id']);
                 pyroutes.register('edit_user_group_global_perms_update', '/_admin/user_groups/%(user_group_id)s/edit/global_permissions/update', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms', '/_admin/user_groups/%(user_group_id)s/edit/permissions', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms_summary', '/_admin/user_groups/%(user_group_id)s/edit/permissions_summary', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms_summary_json', '/_admin/user_groups/%(user_group_id)s/edit/permissions_summary/json', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms_update', '/_admin/user_groups/%(user_group_id)s/edit/permissions/update', ['user_group_id']);
                 pyroutes.register('edit_user_groups_management', '/_admin/users/%(user_id)s/edit/groups_management', ['user_id']);
                 pyroutes.register('edit_user_groups_management_updates', '/_admin/users/%(user_id)s/edit/edit_user_groups_management/updates', ['user_id']);
                 pyroutes.register('edit_user_ips', '/_admin/users/%(user_id)s/edit/ips', ['user_id']);
                 pyroutes.register('edit_user_ips_add', '/_admin/users/%(user_id)s/edit/ips/new', ['user_id']);
                 pyroutes.register('edit_user_ips_delete', '/_admin/users/%(user_id)s/edit/ips/delete', ['user_id']);
                 pyroutes.register('edit_user_perms_summary', '/_admin/users/%(user_id)s/edit/permissions_summary', ['user_id']);
                 pyroutes.register('edit_user_perms_summary_json', '/_admin/users/%(user_id)s/edit/permissions_summary/json', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys', '/_admin/users/%(user_id)s/edit/ssh_keys', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys_add', '/_admin/users/%(user_id)s/edit/ssh_keys/new', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys_delete', '/_admin/users/%(user_id)s/edit/ssh_keys/delete', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys_generate_keypair', '/_admin/users/%(user_id)s/edit/ssh_keys/generate', ['user_id']);
                 pyroutes.register('favicon', '/favicon.ico', []);
                 pyroutes.register('file_preview', '/_file_preview', []);
                 pyroutes.register('gist_delete', '/_admin/gists/%(gist_id)s/delete', ['gist_id']);
                 pyroutes.register('gist_edit', '/_admin/gists/%(gist_id)s/edit', ['gist_id']);
                 pyroutes.register('gist_edit_check_revision', '/_admin/gists/%(gist_id)s/edit/check_revision', ['gist_id']);
                 pyroutes.register('gist_show', '/_admin/gists/%(gist_id)s', ['gist_id']);
                 pyroutes.register('gist_show_formatted', '/_admin/gists/%(gist_id)s/rev/%(revision)s/%(format)s', ['gist_id', 'revision', 'format']);
                 pyroutes.register('gist_show_formatted_path', '/_admin/gists/%(gist_id)s/rev/%(revision)s/%(format)s/%(f_path)s', ['gist_id', 'revision', 'format', 'f_path']);
                 pyroutes.register('gist_show_rev', '/_admin/gists/%(gist_id)s/rev/%(revision)s', ['gist_id', 'revision']);
                 pyroutes.register('gist_update', '/_admin/gists/%(gist_id)s/update', ['gist_id']);
                 pyroutes.register('gists_create', '/_admin/gists/create', []);
                 pyroutes.register('gists_new', '/_admin/gists/new', []);
                 pyroutes.register('gists_show', '/_admin/gists', []);
                 pyroutes.register('global_integrations_create', '/_admin/integrations/%(integration)s/new', ['integration']);
                 pyroutes.register('global_integrations_edit', '/_admin/integrations/%(integration)s/%(integration_id)s', ['integration', 'integration_id']);
                 pyroutes.register('global_integrations_home', '/_admin/integrations', []);
                 pyroutes.register('global_integrations_list', '/_admin/integrations/%(integration)s', ['integration']);
                 pyroutes.register('global_integrations_new', '/_admin/integrations/new', []);
                 pyroutes.register('goto_switcher_data', '/_goto_data', []);
                 pyroutes.register('home', '/', []);
                 pyroutes.register('hovercard_pull_request', '/_hovercard/pull_request/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('hovercard_repo_commit', '/_hovercard/commit/%(repo_name)s/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('hovercard_user', '/_hovercard/user/%(user_id)s', ['user_id']);
                 pyroutes.register('hovercard_user_group', '/_hovercard/user_group/%(user_group_id)s', ['user_group_id']);
                 pyroutes.register('hovercard_username', '/_hovercard/username/%(username)s', ['username']);
                 pyroutes.register('journal', '/_admin/journal', []);
                 pyroutes.register('journal_atom', '/_admin/journal/atom', []);
                 pyroutes.register('journal_public', '/_admin/public_journal', []);
                 pyroutes.register('journal_public_atom', '/_admin/public_journal/atom', []);
                 pyroutes.register('journal_public_atom_old', '/_admin/public_journal_atom', []);
                 pyroutes.register('journal_public_rss', '/_admin/public_journal/rss', []);
                 pyroutes.register('journal_public_rss_old', '/_admin/public_journal_rss', []);
                 pyroutes.register('journal_rss', '/_admin/journal/rss', []);
                 pyroutes.register('login', '/_admin/login', []);
                 pyroutes.register('logout', '/_admin/logout', []);
                 pyroutes.register('main_page_repo_groups_data', '/_home_repo_groups', []);
                 pyroutes.register('main_page_repos_data', '/_home_repos', []);
                 pyroutes.register('markup_preview', '/_markup_preview', []);
                 pyroutes.register('my_account_auth_tokens', '/_admin/my_account/auth_tokens', []);
                 pyroutes.register('my_account_auth_tokens_add', '/_admin/my_account/auth_tokens/new', []);
                 pyroutes.register('my_account_auth_tokens_delete', '/_admin/my_account/auth_tokens/delete', []);
                 pyroutes.register('my_account_auth_tokens_view', '/_admin/my_account/auth_tokens/view', []);
                 pyroutes.register('my_account_bookmarks', '/_admin/my_account/bookmarks', []);
                 pyroutes.register('my_account_bookmarks_update', '/_admin/my_account/bookmarks/update', []);
                 pyroutes.register('my_account_configure_2fa', '/_admin/my_account/configure_2fa', []);
                 pyroutes.register('my_account_configure_2fa_update', '/_admin/my_account/configure_2fa_update', []);
                 pyroutes.register('my_account_edit', '/_admin/my_account/edit', []);
                 pyroutes.register('my_account_emails', '/_admin/my_account/emails', []);
                 pyroutes.register('my_account_emails_add', '/_admin/my_account/emails/new', []);
                 pyroutes.register('my_account_emails_delete', '/_admin/my_account/emails/delete', []);
                 pyroutes.register('my_account_external_identity', '/_admin/my_account/external-identity', []);
                 pyroutes.register('my_account_external_identity_delete', '/_admin/my_account/external-identity/delete', []);
                 pyroutes.register('my_account_goto_bookmark', '/_admin/my_account/bookmark/%(bookmark_id)s', ['bookmark_id']);
                 pyroutes.register('my_account_notifications', '/_admin/my_account/notifications', []);
                 pyroutes.register('my_account_notifications_test_channelstream', '/_admin/my_account/test_channelstream', []);
                 pyroutes.register('my_account_notifications_toggle_visibility', '/_admin/my_account/toggle_visibility', []);
                 pyroutes.register('my_account_password', '/_admin/my_account/password', []);
                 pyroutes.register('my_account_password_update', '/_admin/my_account/password/update', []);
                 pyroutes.register('my_account_perms', '/_admin/my_account/perms', []);
                 pyroutes.register('my_account_profile', '/_admin/my_account/profile', []);
                 pyroutes.register('my_account_pullrequests', '/_admin/my_account/pull_requests', []);
                 pyroutes.register('my_account_pullrequests_data', '/_admin/my_account/pull_requests/data', []);
                 pyroutes.register('my_account_regenerate_2fa_recovery_codes', '/_admin/my_account/regenerate_recovery_codes', []);
                 pyroutes.register('my_account_repos', '/_admin/my_account/repos', []);
                 pyroutes.register('my_account_show_2fa_recovery_codes', '/_admin/my_account/recovery_codes', []);
                 pyroutes.register('my_account_ssh_keys', '/_admin/my_account/ssh_keys', []);
                 pyroutes.register('my_account_ssh_keys_add', '/_admin/my_account/ssh_keys/new', []);
                 pyroutes.register('my_account_ssh_keys_delete', '/_admin/my_account/ssh_keys/delete', []);
                 pyroutes.register('my_account_ssh_keys_generate', '/_admin/my_account/ssh_keys/generate', []);
                 pyroutes.register('my_account_update', '/_admin/my_account/update', []);
                 pyroutes.register('my_account_user_group_membership', '/_admin/my_account/user_group_membership', []);
                 pyroutes.register('my_account_watched', '/_admin/my_account/watched', []);
                 pyroutes.register('notifications_delete', '/_admin/notifications/%(notification_id)s/delete', ['notification_id']);
                 pyroutes.register('notifications_mark_all_read', '/_admin/notifications_mark_all_read', []);
                 pyroutes.register('notifications_show', '/_admin/notifications/%(notification_id)s', ['notification_id']);
                 pyroutes.register('notifications_show_all', '/_admin/notifications', []);
                 pyroutes.register('notifications_update', '/_admin/notifications/%(notification_id)s/update', ['notification_id']);
                 pyroutes.register('ops_celery_error_test', '/_admin/ops/error-celery', []);
                 pyroutes.register('ops_error_test', '/_admin/ops/error', []);
                 pyroutes.register('ops_healthcheck', '/_admin/ops/status', []);
                 pyroutes.register('ops_ping', '/_admin/ops/ping', []);
                 pyroutes.register('ops_redirect_test', '/_admin/ops/redirect', []);
                 pyroutes.register('plugin_admin_chat', '/_admin/plugin_admin_chat/%(action)s', ['action']);
                 pyroutes.register('pull_requests_global', '/_admin/pull-request/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('pull_requests_global_0', '/_admin/pull_requests/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('pull_requests_global_1', '/_admin/pull-requests/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('pullrequest_comment_create', '/%(repo_name)s/pull-request/%(pull_request_id)s/comment', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_comment_delete', '/%(repo_name)s/pull-request/%(pull_request_id)s/comment/%(comment_id)s/delete', ['repo_name', 'pull_request_id', 'comment_id']);
                 pyroutes.register('pullrequest_comment_edit', '/%(repo_name)s/pull-request/%(pull_request_id)s/comment/%(comment_id)s/edit', ['repo_name', 'pull_request_id', 'comment_id']);
                 pyroutes.register('pullrequest_comments', '/%(repo_name)s/pull-request/%(pull_request_id)s/comments', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_create', '/%(repo_name)s/pull-request/create', ['repo_name']);
                 pyroutes.register('pullrequest_delete', '/%(repo_name)s/pull-request/%(pull_request_id)s/delete', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_draft_comments_submit', '/%(repo_name)s/pull-request/%(pull_request_id)s/draft_comments_submit', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_drafts', '/%(repo_name)s/pull-request/%(pull_request_id)s/drafts', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_merge', '/%(repo_name)s/pull-request/%(pull_request_id)s/merge', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_new', '/%(repo_name)s/pull-request/new', ['repo_name']);
                 pyroutes.register('pullrequest_repo_refs', '/%(repo_name)s/pull-request/refs/%(target_repo_name)s', ['repo_name', 'target_repo_name']);
                 pyroutes.register('pullrequest_repo_targets', '/%(repo_name)s/pull-request/repo-targets', ['repo_name']);
                 pyroutes.register('pullrequest_show', '/%(repo_name)s/pull-request/%(pull_request_id)s', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_show_all', '/%(repo_name)s/pull-request', ['repo_name']);
                 pyroutes.register('pullrequest_show_all_data', '/%(repo_name)s/pull-request-data', ['repo_name']);
                 pyroutes.register('pullrequest_todos', '/%(repo_name)s/pull-request/%(pull_request_id)s/todos', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_update', '/%(repo_name)s/pull-request/%(pull_request_id)s/update', ['repo_name', 'pull_request_id']);
                 pyroutes.register('register', '/_admin/register', []);
                 pyroutes.register('repo_archivefile', '/%(repo_name)s/archive/%(fname)s', ['repo_name', 'fname']);
                 pyroutes.register('repo_artifacts_data', '/%(repo_name)s/artifacts_data', ['repo_name']);
                 pyroutes.register('repo_artifacts_delete', '/%(repo_name)s/artifacts/delete/%(uid)s', ['repo_name', 'uid']);
                 pyroutes.register('repo_artifacts_get', '/%(repo_name)s/artifacts/download/%(uid)s', ['repo_name', 'uid']);
                 pyroutes.register('repo_artifacts_info', '/%(repo_name)s/artifacts/info/%(uid)s', ['repo_name', 'uid']);
                 pyroutes.register('repo_artifacts_list', '/%(repo_name)s/artifacts', ['repo_name']);
                 pyroutes.register('repo_artifacts_new', '/%(repo_name)s/artifacts/new', ['repo_name']);
                 pyroutes.register('repo_artifacts_store', '/%(repo_name)s/artifacts/store', ['repo_name']);
                 pyroutes.register('repo_artifacts_stream_script', '/_file_store/stream-upload-script', []);
                 pyroutes.register('repo_artifacts_stream_store', '/_file_store/stream-upload', []);
                 pyroutes.register('repo_artifacts_update', '/%(repo_name)s/artifacts/update/%(uid)s', ['repo_name', 'uid']);
                 pyroutes.register('repo_automation', '/%(repo_name)s/settings/automation', ['repo_name']);
                 pyroutes.register('repo_automation_update', '/%(repo_name)s/settings/automation/%(entry_id)s/update', ['repo_name', 'entry_id']);
                 pyroutes.register('repo_changelog', '/%(repo_name)s/changelog', ['repo_name']);
                 pyroutes.register('repo_changelog_file', '/%(repo_name)s/changelog/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_commit', '/%(repo_name)s/changeset/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_children', '/%(repo_name)s/changeset_children/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_comment_attachment_upload', '/%(repo_name)s/changeset/%(commit_id)s/comment/attachment_upload', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_comment_create', '/%(repo_name)s/changeset/%(commit_id)s/comment/create', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_comment_delete', '/%(repo_name)s/changeset/%(commit_id)s/comment/%(comment_id)s/delete', ['repo_name', 'commit_id', 'comment_id']);
                 pyroutes.register('repo_commit_comment_edit', '/%(repo_name)s/changeset/%(commit_id)s/comment/%(comment_id)s/edit', ['repo_name', 'commit_id', 'comment_id']);
                 pyroutes.register('repo_commit_comment_history_view', '/%(repo_name)s/changeset/%(commit_id)s/comment/%(comment_id)s/history_view/%(comment_history_id)s', ['repo_name', 'commit_id', 'comment_id', 'comment_history_id']);
                 pyroutes.register('repo_commit_comment_preview', '/%(repo_name)s/changeset/%(commit_id)s/comment/preview', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_data', '/%(repo_name)s/changeset-data/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_download', '/%(repo_name)s/changeset-download/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_parents', '/%(repo_name)s/changeset_parents/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_patch', '/%(repo_name)s/changeset-patch/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_raw', '/%(repo_name)s/changeset-diff/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_raw_deprecated', '/%(repo_name)s/raw-changeset/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commits', '/%(repo_name)s/commits', ['repo_name']);
                 pyroutes.register('repo_commits_elements', '/%(repo_name)s/commits_elements', ['repo_name']);
                 pyroutes.register('repo_commits_elements_file', '/%(repo_name)s/commits_elements/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_commits_file', '/%(repo_name)s/commits/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_compare', '/%(repo_name)s/compare/%(source_ref_type)s@%(source_ref)s...%(target_ref_type)s@%(target_ref)s', ['repo_name', 'source_ref_type', 'source_ref', 'target_ref_type', 'target_ref']);
                 pyroutes.register('repo_compare_select', '/%(repo_name)s/compare', ['repo_name']);
                 pyroutes.register('repo_create', '/_admin/repos/create', []);
                 pyroutes.register('repo_creating', '/%(repo_name)s/repo_creating', ['repo_name']);
                 pyroutes.register('repo_creating_check', '/%(repo_name)s/repo_creating_check', ['repo_name']);
                 pyroutes.register('repo_default_reviewers_data', '/%(repo_name)s/settings/review/default-reviewers', ['repo_name']);
                 pyroutes.register('repo_file_authors', '/%(repo_name)s/authors/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_download', '/%(repo_name)s/download/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_download:legacy', '/%(repo_name)s/rawfile/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_history', '/%(repo_name)s/history/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_raw', '/%(repo_name)s/raw/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files', '/%(repo_name)s/files/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files:annotated', '/%(repo_name)s/annotate/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files:annotated_previous', '/%(repo_name)s/annotate-previous/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files:default_commit', '/%(repo_name)s/files', ['repo_name']);
                 pyroutes.register('repo_files:default_path', '/%(repo_name)s/files/%(commit_id)s/', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_files:rendered', '/%(repo_name)s/render/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_add_file', '/%(repo_name)s/add_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_check_head', '/%(repo_name)s/check_head/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_create_file', '/%(repo_name)s/create_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_delete_file', '/%(repo_name)s/delete_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_diff', '/%(repo_name)s/diff/%(f_path)s', ['repo_name', 'f_path']);
                 pyroutes.register('repo_files_diff_2way_redirect', '/%(repo_name)s/diff-2way/%(f_path)s', ['repo_name', 'f_path']);
                 pyroutes.register('repo_files_edit_file', '/%(repo_name)s/edit_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_nodelist', '/%(repo_name)s/nodelist/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_remove_file', '/%(repo_name)s/remove_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_replace_binary', '/%(repo_name)s/replace_binary/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_update_file', '/%(repo_name)s/update_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_upload_file', '/%(repo_name)s/upload_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_fork_create', '/%(repo_name)s/fork/create', ['repo_name']);
                 pyroutes.register('repo_fork_new', '/%(repo_name)s/fork', ['repo_name']);
                 pyroutes.register('repo_forks_data', '/%(repo_name)s/forks/data', ['repo_name']);
                 pyroutes.register('repo_forks_show_all', '/%(repo_name)s/forks', ['repo_name']);
                 pyroutes.register('repo_group_create', '/_admin/repo_group/create', []);
                 pyroutes.register('repo_group_home', '/%(repo_group_name)s', ['repo_group_name']);
                 pyroutes.register('repo_group_home_slash', '/%(repo_group_name)s/', ['repo_group_name']);
                 pyroutes.register('repo_group_integrations_create', '/%(repo_group_name)s/_settings/integrations/%(integration)s/new', ['repo_group_name', 'integration']);
                 pyroutes.register('repo_group_integrations_edit', '/%(repo_group_name)s/_settings/integrations/%(integration)s/%(integration_id)s', ['repo_group_name', 'integration', 'integration_id']);
                 pyroutes.register('repo_group_integrations_home', '/%(repo_group_name)s/_settings/integrations', ['repo_group_name']);
                 pyroutes.register('repo_group_integrations_list', '/%(repo_group_name)s/_settings/integrations/%(integration)s', ['repo_group_name', 'integration']);
                 pyroutes.register('repo_group_integrations_new', '/%(repo_group_name)s/_settings/integrations/new', ['repo_group_name']);
                 pyroutes.register('repo_group_list_data', '/_repo_groups', []);
                 pyroutes.register('repo_group_new', '/_admin/repo_group/new', []);
                 pyroutes.register('repo_groups', '/_admin/repo_groups', []);
                 pyroutes.register('repo_groups_data', '/_admin/repo_groups_data', []);
                 pyroutes.register('repo_integrations_create', '/%(repo_name)s/settings/integrations/%(integration)s/new', ['repo_name', 'integration']);
                 pyroutes.register('repo_integrations_edit', '/%(repo_name)s/settings/integrations/%(integration)s/%(integration_id)s', ['repo_name', 'integration', 'integration_id']);
                 pyroutes.register('repo_integrations_home', '/%(repo_name)s/settings/integrations', ['repo_name']);
                 pyroutes.register('repo_integrations_list', '/%(repo_name)s/settings/integrations/%(integration)s', ['repo_name', 'integration']);
                 pyroutes.register('repo_integrations_new', '/%(repo_name)s/settings/integrations/new', ['repo_name']);
                 pyroutes.register('repo_list_data', '/_repos', []);
                 pyroutes.register('repo_new', '/_admin/repos/new', []);
                 pyroutes.register('repo_nodetree_full', '/%(repo_name)s/nodetree_full/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_nodetree_full:default_path', '/%(repo_name)s/nodetree_full/%(commit_id)s/', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_refs_changelog_data', '/%(repo_name)s/refs-data-changelog', ['repo_name']);
                 pyroutes.register('repo_refs_data', '/%(repo_name)s/refs-data', ['repo_name']);
                 pyroutes.register('repo_reviewers', '/%(repo_name)s/settings/review/rules', ['repo_name']);
                 pyroutes.register('repo_reviewers_review_rule_delete', '/%(repo_name)s/settings/review/rules/%(rule_id)s/delete', ['repo_name', 'rule_id']);
                 pyroutes.register('repo_reviewers_review_rule_edit', '/%(repo_name)s/settings/review/rules/%(rule_id)s', ['repo_name', 'rule_id']);
                 pyroutes.register('repo_reviewers_review_rule_new', '/%(repo_name)s/settings/review/rules/new', ['repo_name']);
                 pyroutes.register('repo_settings_quick_actions', '/%(repo_name)s/settings/quick-action', ['repo_name']);
                 pyroutes.register('repo_stats', '/%(repo_name)s/repo_stats/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_summary', '/%(repo_name)s', ['repo_name']);
                 pyroutes.register('repo_summary_commits', '/%(repo_name)s/summary-commits', ['repo_name']);
                 pyroutes.register('repo_summary_explicit', '/%(repo_name)s/summary', ['repo_name']);
                 pyroutes.register('repo_summary_slash', '/%(repo_name)s/', ['repo_name']);
                 pyroutes.register('repos', '/_admin/repos', []);
                 pyroutes.register('repos_data', '/_admin/repos_data', []);
                 pyroutes.register('reset_password', '/_admin/password_reset', []);
                 pyroutes.register('reset_password_confirmation', '/_admin/password_reset_confirmation', []);
                 pyroutes.register('robots', '/robots.txt', []);
                 pyroutes.register('rss_feed_home', '/%(repo_name)s/feed-rss', ['repo_name']);
                 pyroutes.register('rss_feed_home_old', '/%(repo_name)s/feed/rss', ['repo_name']);
                 pyroutes.register('search', '/_admin/search', []);
                 pyroutes.register('search_repo', '/%(repo_name)s/_search', ['repo_name']);
                 pyroutes.register('search_repo_alt', '/%(repo_name)s/search', ['repo_name']);
                 pyroutes.register('search_repo_group', '/%(repo_group_name)s/_search', ['repo_group_name']);
                 pyroutes.register('setup_2fa', '/_admin/setup_2fa', []);
                 pyroutes.register('store_user_session_value', '/_store_session_attr', []);
                 pyroutes.register('strip_check', '/%(repo_name)s/settings/strip_check', ['repo_name']);
                 pyroutes.register('strip_execute', '/%(repo_name)s/settings/strip_execute', ['repo_name']);
                 pyroutes.register('tags_home', '/%(repo_name)s/tags', ['repo_name']);
                 pyroutes.register('toggle_following', '/_admin/toggle_following', []);
                 pyroutes.register('upload_file', '/_file_store/upload', []);
                 pyroutes.register('user_autocomplete_data', '/_users', []);
                 pyroutes.register('user_create_personal_repo_group', '/_admin/users/%(user_id)s/create_repo_group', ['user_id']);
                 pyroutes.register('user_delete', '/_admin/users/%(user_id)s/delete', ['user_id']);
                 pyroutes.register('user_disable_force_password_reset', '/_admin/users/%(user_id)s/password_reset_disable', ['user_id']);
                 pyroutes.register('user_edit', '/_admin/users/%(user_id)s/edit', ['user_id']);
                 pyroutes.register('user_edit_advanced', '/_admin/users/%(user_id)s/edit/advanced', ['user_id']);
                 pyroutes.register('user_edit_global_perms', '/_admin/users/%(user_id)s/edit/global_permissions', ['user_id']);
                 pyroutes.register('user_edit_global_perms_update', '/_admin/users/%(user_id)s/edit/global_permissions/update', ['user_id']);
                 pyroutes.register('user_enable_force_password_reset', '/_admin/users/%(user_id)s/password_reset_enable', ['user_id']);
                 pyroutes.register('user_group_autocomplete_data', '/_user_groups', []);
                 pyroutes.register('user_group_members_data', '/_admin/user_groups/%(user_group_id)s/members', ['user_group_id']);
                 pyroutes.register('user_group_profile', '/_profile_user_group/%(user_group_name)s', ['user_group_name']);
                 pyroutes.register('user_groups', '/_admin/user_groups', []);
                 pyroutes.register('user_groups_create', '/_admin/user_groups/create', []);
                 pyroutes.register('user_groups_data', '/_admin/user_groups_data', []);
                 pyroutes.register('user_groups_delete', '/_admin/user_groups/%(user_group_id)s/delete', ['user_group_id']);
                 pyroutes.register('user_groups_new', '/_admin/user_groups/new', []);
                 pyroutes.register('user_groups_update', '/_admin/user_groups/%(user_group_id)s/update', ['user_group_id']);
                 pyroutes.register('user_notice_dismiss', '/_admin/users/%(user_id)s/notice_dismiss', ['user_id']);
                 pyroutes.register('user_profile', '/_profiles/%(username)s', ['username']);
                 pyroutes.register('user_update', '/_admin/users/%(user_id)s/update', ['user_id']);
                 pyroutes.register('users', '/_admin/users', []);
                 pyroutes.register('users_create', '/_admin/users/create', []);
                 pyroutes.register('users_data', '/_admin/users_data', []);
                 pyroutes.register('users_new', '/_admin/users/new', []);
             }

rhodecode/templates/admin/security/security.mako

0 +41 -2

             <%inherit file="/base/base.mako"/>
             <%def name="title()">
                 ${_('Security Admin')}
                 %if c.rhodecode_name:
                     &middot; ${h.branding(c.rhodecode_name)}
                 %endif
             </%def>
             <%def name="breadcrumbs_links()"></%def>
             <%def name="menu_bar_nav()">
                 ${self.menu_items(active='admin')}
             </%def>
             <%def name="menu_bar_subnav()">
                 ${self.admin_menu(active='security')}
             </%def>
             <%def name="main()">
             <div class="box">
                 <div class="panel panel-default">
                     <div class="panel-heading">
                         <h3 class="panel-title">${_('Security Audit')}</h3>
                     </div>
                     <div class="panel-body">
                         <h4>${_('This feature is available in RhodeCode EE edition only. Contact {sales_email} to obtain a trial license.').format(sales_email='<a href="mailto:sales@rhodecode.com">sales@rhodecode.com</a>')|n}</h4>
                         <p>
-                            You can scan your repositories for exposed secrets, passwords, etc
+                            ${_('You can scan your repositories for exposed secrets, passwords, etc')}
                         </p>
                     </div>
                 </div>
+                <div class="panel panel-default">
+                    <div class="panel-heading">
+                        <h3 class="panel-title">${_('Allowed client versions')}</h3>
+                    </div>
+                    <div class="panel-body">
+                        %if c.rhodecode_edition_id != 'EE':
+                        <h4>${_('This feature is available in RhodeCode EE edition only. Contact {sales_email} to obtain a trial license.').format(sales_email='<a href="mailto:sales@rhodecode.com">sales@rhodecode.com</a>')|n}</h4>
+                        <p>
+                            ${_('Some outdated client versions may have security vulnerabilities. This section have rules for whitelisting versions of clients for Git, Mercurial and SVN.')}
+                        </p>
+                        %else:
+                            <div class="inner form" id="container">
+                            </div>
+                        %endif
+                </div>
             </div>
+            <script>
+                $(document).ready(function() {
+                    $.ajax({
+                        url: pyroutes.url('admin_security_modify_allowed_vcs_client_versions'),
+                        type: 'GET',
+                        success: function(response) {
+                            $('#container').html(response);
+                        },
+                    });
+                $(document).on('submit', '#allowed_clients_form', function(event) {
+                            event.preventDefault();
+                            var formData = $(this).serialize();
+                            $.ajax({
+                                url: pyroutes.url('admin_security_modify_allowed_vcs_client_versions'),
+                                type: 'POST',
+                                data: formData,
+                                success: function(response) {
+                                $('#container').html(response);
+                            },
+                            });
+                        });
+                    });
+            </script>
             </%def>

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages