rhodecode-enterprise-ce Commit - r3970:36c4e038

audit-logs: expose download user audit logs as JSON file....

ergo -

r3970:36c4e038 default

parent child

rhodecode/apps/admin/__init__.py

0 +4 0

             # -*- coding: utf-8 -*-
             # Copyright (C) 2016-2019 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             from rhodecode.apps._base import ADMIN_PREFIX
             def admin_routes(config):
                 """
                 Admin prefixed routes
                 """
                 config.add_route(
                     name='admin_audit_logs',
                     pattern='/audit_logs')
                 config.add_route(
                     name='admin_audit_log_entry',
                     pattern='/audit_logs/{audit_log_id}')
                 config.add_route(
                     name='pull_requests_global_0',  # backward compat
                     pattern='/pull_requests/{pull_request_id:\d+}')
                 config.add_route(
                     name='pull_requests_global_1',  # backward compat
                     pattern='/pull-requests/{pull_request_id:\d+}')
                 config.add_route(
                     name='pull_requests_global',
                     pattern='/pull-request/{pull_request_id:\d+}')
                 config.add_route(
                     name='admin_settings_open_source',
                     pattern='/settings/open_source')
                 config.add_route(
                     name='admin_settings_vcs_svn_generate_cfg',
                     pattern='/settings/vcs/svn_generate_cfg')
                 config.add_route(
                     name='admin_settings_system',
                     pattern='/settings/system')
                 config.add_route(
                     name='admin_settings_system_update',
                     pattern='/settings/system/updates')
                 config.add_route(
                     name='admin_settings_exception_tracker',
                     pattern='/settings/exceptions')
                 config.add_route(
                     name='admin_settings_exception_tracker_delete_all',
                     pattern='/settings/exceptions/delete')
                 config.add_route(
                     name='admin_settings_exception_tracker_show',
                     pattern='/settings/exceptions/{exception_id}')
                 config.add_route(
                     name='admin_settings_exception_tracker_delete',
                     pattern='/settings/exceptions/{exception_id}/delete')
                 config.add_route(
                     name='admin_settings_sessions',
                     pattern='/settings/sessions')
                 config.add_route(
                     name='admin_settings_sessions_cleanup',
                     pattern='/settings/sessions/cleanup')
                 config.add_route(
                     name='admin_settings_process_management',
                     pattern='/settings/process_management')
                 config.add_route(
                     name='admin_settings_process_management_data',
                     pattern='/settings/process_management/data')
                 config.add_route(
                     name='admin_settings_process_management_signal',
                     pattern='/settings/process_management/signal')
                 config.add_route(
                     name='admin_settings_process_management_master_signal',
                     pattern='/settings/process_management/master_signal')
                 # default settings
                 config.add_route(
                     name='admin_defaults_repositories',
                     pattern='/defaults/repositories')
                 config.add_route(
                     name='admin_defaults_repositories_update',
                     pattern='/defaults/repositories/update')
                 # admin settings
                 config.add_route(
                     name='admin_settings',
                     pattern='/settings')
                 config.add_route(
                     name='admin_settings_update',
                     pattern='/settings/update')
                 config.add_route(
                     name='admin_settings_global',
                     pattern='/settings/global')
                 config.add_route(
                     name='admin_settings_global_update',
                     pattern='/settings/global/update')
                 config.add_route(
                     name='admin_settings_vcs',
                     pattern='/settings/vcs')
                 config.add_route(
                     name='admin_settings_vcs_update',
                     pattern='/settings/vcs/update')
                 config.add_route(
                     name='admin_settings_vcs_svn_pattern_delete',
                     pattern='/settings/vcs/svn_pattern_delete')
                 config.add_route(
                     name='admin_settings_mapping',
                     pattern='/settings/mapping')
                 config.add_route(
                     name='admin_settings_mapping_update',
                     pattern='/settings/mapping/update')
                 config.add_route(
                     name='admin_settings_visual',
                     pattern='/settings/visual')
                 config.add_route(
                     name='admin_settings_visual_update',
                     pattern='/settings/visual/update')
                 config.add_route(
                     name='admin_settings_issuetracker',
                     pattern='/settings/issue-tracker')
                 config.add_route(
                     name='admin_settings_issuetracker_update',
                     pattern='/settings/issue-tracker/update')
                 config.add_route(
                     name='admin_settings_issuetracker_test',
                     pattern='/settings/issue-tracker/test')
                 config.add_route(
                     name='admin_settings_issuetracker_delete',
                     pattern='/settings/issue-tracker/delete')
                 config.add_route(
                     name='admin_settings_email',
                     pattern='/settings/email')
                 config.add_route(
                     name='admin_settings_email_update',
                     pattern='/settings/email/update')
                 config.add_route(
                     name='admin_settings_hooks',
                     pattern='/settings/hooks')
                 config.add_route(
                     name='admin_settings_hooks_update',
                     pattern='/settings/hooks/update')
                 config.add_route(
                     name='admin_settings_hooks_delete',
                     pattern='/settings/hooks/delete')
                 config.add_route(
                     name='admin_settings_search',
                     pattern='/settings/search')
                 config.add_route(
                     name='admin_settings_labs',
                     pattern='/settings/labs')
                 config.add_route(
                     name='admin_settings_labs_update',
                     pattern='/settings/labs/update')
                 # Automation EE feature
                 config.add_route(
                     'admin_settings_automation',
                     pattern=ADMIN_PREFIX + '/settings/automation')
                 # global permissions
                 config.add_route(
                     name='admin_permissions_application',
                     pattern='/permissions/application')
                 config.add_route(
                     name='admin_permissions_application_update',
                     pattern='/permissions/application/update')
                 config.add_route(
                     name='admin_permissions_global',
                     pattern='/permissions/global')
                 config.add_route(
                     name='admin_permissions_global_update',
                     pattern='/permissions/global/update')
                 config.add_route(
                     name='admin_permissions_object',
                     pattern='/permissions/object')
                 config.add_route(
                     name='admin_permissions_object_update',
                     pattern='/permissions/object/update')
                 # Branch perms EE feature
                 config.add_route(
                     name='admin_permissions_branch',
                     pattern='/permissions/branch')
                 config.add_route(
                     name='admin_permissions_ips',
                     pattern='/permissions/ips')
                 config.add_route(
                     name='admin_permissions_overview',
                     pattern='/permissions/overview')
                 config.add_route(
                     name='admin_permissions_auth_token_access',
                     pattern='/permissions/auth_token_access')
                 config.add_route(
                     name='admin_permissions_ssh_keys',
                     pattern='/permissions/ssh_keys')
                 config.add_route(
                     name='admin_permissions_ssh_keys_data',
                     pattern='/permissions/ssh_keys/data')
                 config.add_route(
                     name='admin_permissions_ssh_keys_update',
                     pattern='/permissions/ssh_keys/update')
                 # users admin
                 config.add_route(
                     name='users',
                     pattern='/users')
                 config.add_route(
                     name='users_data',
                     pattern='/users_data')
                 config.add_route(
                     name='users_create',
                     pattern='/users/create')
                 config.add_route(
                     name='users_new',
                     pattern='/users/new')
                 # user management
                 config.add_route(
                     name='user_edit',
                     pattern='/users/{user_id:\d+}/edit',
                     user_route=True)
                 config.add_route(
                     name='user_edit_advanced',
                     pattern='/users/{user_id:\d+}/edit/advanced',
                     user_route=True)
                 config.add_route(
                     name='user_edit_global_perms',
                     pattern='/users/{user_id:\d+}/edit/global_permissions',
                     user_route=True)
                 config.add_route(
                     name='user_edit_global_perms_update',
                     pattern='/users/{user_id:\d+}/edit/global_permissions/update',
                     user_route=True)
                 config.add_route(
                     name='user_update',
                     pattern='/users/{user_id:\d+}/update',
                     user_route=True)
                 config.add_route(
                     name='user_delete',
                     pattern='/users/{user_id:\d+}/delete',
                     user_route=True)
                 config.add_route(
                     name='user_enable_force_password_reset',
                     pattern='/users/{user_id:\d+}/password_reset_enable',
                     user_route=True)
                 config.add_route(
                     name='user_disable_force_password_reset',
                     pattern='/users/{user_id:\d+}/password_reset_disable',
                     user_route=True)
                 config.add_route(
                     name='user_create_personal_repo_group',
                     pattern='/users/{user_id:\d+}/create_repo_group',
                     user_route=True)
                 # user auth tokens
                 config.add_route(
                     name='edit_user_auth_tokens',
                     pattern='/users/{user_id:\d+}/edit/auth_tokens',
                     user_route=True)
                 config.add_route(
                     name='edit_user_auth_tokens_add',
                     pattern='/users/{user_id:\d+}/edit/auth_tokens/new',
                     user_route=True)
                 config.add_route(
                     name='edit_user_auth_tokens_delete',
                     pattern='/users/{user_id:\d+}/edit/auth_tokens/delete',
                     user_route=True)
                 # user ssh keys
                 config.add_route(
                     name='edit_user_ssh_keys',
                     pattern='/users/{user_id:\d+}/edit/ssh_keys',
                     user_route=True)
                 config.add_route(
                     name='edit_user_ssh_keys_generate_keypair',
                     pattern='/users/{user_id:\d+}/edit/ssh_keys/generate',
                     user_route=True)
                 config.add_route(
                     name='edit_user_ssh_keys_add',
                     pattern='/users/{user_id:\d+}/edit/ssh_keys/new',
                     user_route=True)
                 config.add_route(
                     name='edit_user_ssh_keys_delete',
                     pattern='/users/{user_id:\d+}/edit/ssh_keys/delete',
                     user_route=True)
                 # user emails
                 config.add_route(
                     name='edit_user_emails',
                     pattern='/users/{user_id:\d+}/edit/emails',
                     user_route=True)
                 config.add_route(
                     name='edit_user_emails_add',
                     pattern='/users/{user_id:\d+}/edit/emails/new',
                     user_route=True)
                 config.add_route(
                     name='edit_user_emails_delete',
                     pattern='/users/{user_id:\d+}/edit/emails/delete',
                     user_route=True)
                 # user IPs
                 config.add_route(
                     name='edit_user_ips',
                     pattern='/users/{user_id:\d+}/edit/ips',
                     user_route=True)
                 config.add_route(
                     name='edit_user_ips_add',
                     pattern='/users/{user_id:\d+}/edit/ips/new',
                     user_route_with_default=True)  # enabled for default user too
                 config.add_route(
                     name='edit_user_ips_delete',
                     pattern='/users/{user_id:\d+}/edit/ips/delete',
                     user_route_with_default=True)  # enabled for default user too
                 # user perms
                 config.add_route(
                     name='edit_user_perms_summary',
                     pattern='/users/{user_id:\d+}/edit/permissions_summary',
                     user_route=True)
                 config.add_route(
                     name='edit_user_perms_summary_json',
                     pattern='/users/{user_id:\d+}/edit/permissions_summary/json',
                     user_route=True)
                 # user user groups management
                 config.add_route(
                     name='edit_user_groups_management',
                     pattern='/users/{user_id:\d+}/edit/groups_management',
                     user_route=True)
                 config.add_route(
                     name='edit_user_groups_management_updates',
                     pattern='/users/{user_id:\d+}/edit/edit_user_groups_management/updates',
                     user_route=True)
                 # user audit logs
                 config.add_route(
                     name='edit_user_audit_logs',
                     pattern='/users/{user_id:\d+}/edit/audit', user_route=True)
+                config.add_route(
+                    name='edit_user_audit_logs_download',
+                    pattern='/users/{user_id:\d+}/edit/audit/download', user_route=True)
                 # user caches
                 config.add_route(
                     name='edit_user_caches',
                     pattern='/users/{user_id:\d+}/edit/caches',
                     user_route=True)
                 config.add_route(
                     name='edit_user_caches_update',
                     pattern='/users/{user_id:\d+}/edit/caches/update',
                     user_route=True)
                 # user-groups admin
                 config.add_route(
                     name='user_groups',
                     pattern='/user_groups')
                 config.add_route(
                     name='user_groups_data',
                     pattern='/user_groups_data')
                 config.add_route(
                     name='user_groups_new',
                     pattern='/user_groups/new')
                 config.add_route(
                     name='user_groups_create',
                     pattern='/user_groups/create')
                 # repos admin
                 config.add_route(
                     name='repos',
                     pattern='/repos')
                 config.add_route(
                     name='repo_new',
                     pattern='/repos/new')
                 config.add_route(
                     name='repo_create',
                     pattern='/repos/create')
                 # repo groups admin
                 config.add_route(
                     name='repo_groups',
                     pattern='/repo_groups')
                 config.add_route(
                     name='repo_groups_data',
                     pattern='/repo_groups_data')
                 config.add_route(
                     name='repo_group_new',
                     pattern='/repo_group/new')
                 config.add_route(
                     name='repo_group_create',
                     pattern='/repo_group/create')
             def includeme(config):
                 from rhodecode.apps._base.navigation import includeme as nav_includeme
                 # Create admin navigation registry and add it to the pyramid registry.
                 nav_includeme(config)
                 # main admin routes
                 config.add_route(name='admin_home', pattern=ADMIN_PREFIX)
                 config.include(admin_routes, route_prefix=ADMIN_PREFIX)
                 # Scan module for configuration decorators.
                 config.scan('.views', ignore='.tests')

rhodecode/apps/admin/tests/test_admin_users.py

0 +16 -7

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2019 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import pytest
             from sqlalchemy.orm.exc import NoResultFound
             from rhodecode.lib import auth
             from rhodecode.lib import helpers as h
             from rhodecode.model.db import User, UserApiKeys, UserEmailMap, Repository
             from rhodecode.model.meta import Session
             from rhodecode.model.user import UserModel
             from rhodecode.tests import (
                 TestController, TEST_USER_REGULAR_LOGIN, assert_session_flash)
             from rhodecode.tests.fixture import Fixture
             fixture = Fixture()
             def route_path(name, params=None, **kwargs):
                 import urllib
                 from rhodecode.apps._base import ADMIN_PREFIX
                 base_url = {
                     'users':
                         ADMIN_PREFIX + '/users',
                     'users_data':
                         ADMIN_PREFIX + '/users_data',
                     'users_create':
                         ADMIN_PREFIX + '/users/create',
                     'users_new':
                         ADMIN_PREFIX + '/users/new',
                     'user_edit':
                         ADMIN_PREFIX + '/users/{user_id}/edit',
                     'user_edit_advanced':
                         ADMIN_PREFIX + '/users/{user_id}/edit/advanced',
                     'user_edit_global_perms':
                         ADMIN_PREFIX + '/users/{user_id}/edit/global_permissions',
                     'user_edit_global_perms_update':
                         ADMIN_PREFIX + '/users/{user_id}/edit/global_permissions/update',
                     'user_update':
                         ADMIN_PREFIX + '/users/{user_id}/update',
                     'user_delete':
                         ADMIN_PREFIX + '/users/{user_id}/delete',
                     'user_create_personal_repo_group':
                         ADMIN_PREFIX + '/users/{user_id}/create_repo_group',
                     'edit_user_auth_tokens':
                         ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens',
                     'edit_user_auth_tokens_add':
                         ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens/new',
                     'edit_user_auth_tokens_delete':
                         ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens/delete',
                     'edit_user_emails':
                         ADMIN_PREFIX + '/users/{user_id}/edit/emails',
                     'edit_user_emails_add':
                         ADMIN_PREFIX + '/users/{user_id}/edit/emails/new',
                     'edit_user_emails_delete':
                         ADMIN_PREFIX + '/users/{user_id}/edit/emails/delete',
                     'edit_user_ips':
                         ADMIN_PREFIX + '/users/{user_id}/edit/ips',
                     'edit_user_ips_add':
                         ADMIN_PREFIX + '/users/{user_id}/edit/ips/new',
                     'edit_user_ips_delete':
                         ADMIN_PREFIX + '/users/{user_id}/edit/ips/delete',
                     'edit_user_perms_summary':
                         ADMIN_PREFIX + '/users/{user_id}/edit/permissions_summary',
                     'edit_user_perms_summary_json':
                         ADMIN_PREFIX + '/users/{user_id}/edit/permissions_summary/json',
                     'edit_user_audit_logs':
                         ADMIN_PREFIX + '/users/{user_id}/edit/audit',
+                    'edit_user_audit_logs_download':
+                        ADMIN_PREFIX + '/users/{user_id}/edit/audit/download',
                 }[name].format(**kwargs)
                 if params:
                     base_url = '{}?{}'.format(base_url, urllib.urlencode(params))
                 return base_url
             class TestAdminUsersView(TestController):
                 def test_show_users(self):
                     self.log_user()
                     self.app.get(route_path('users'))
                 def test_show_users_data(self, xhr_header):
                     self.log_user()
                     response = self.app.get(route_path(
                         'users_data'), extra_environ=xhr_header)
                     all_users = User.query().filter(
                         User.username != User.DEFAULT_USER).count()
                     assert response.json['recordsTotal'] == all_users
                 def test_show_users_data_filtered(self, xhr_header):
                     self.log_user()
                     response = self.app.get(route_path(
                         'users_data', params={'search[value]': 'empty_search'}),
                         extra_environ=xhr_header)
                     all_users = User.query().filter(
                         User.username != User.DEFAULT_USER).count()
                     assert response.json['recordsTotal'] == all_users
                     assert response.json['recordsFiltered'] == 0
                 def test_auth_tokens_default_user(self):
                     self.log_user()
                     user = User.get_default_user()
                     response = self.app.get(
                         route_path('edit_user_auth_tokens', user_id=user.user_id),
                         status=302)
                 def test_auth_tokens(self):
                     self.log_user()
                     user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
                     user_id = user.user_id
                     auth_tokens = user.auth_tokens
                     response = self.app.get(
                         route_path('edit_user_auth_tokens', user_id=user_id))
                     for token in auth_tokens:
                         response.mustcontain(token)
                         response.mustcontain('never')
                 @pytest.mark.parametrize("desc, lifetime", [
                     ('forever', -1),
                     ('5mins', 60*5),
                     ('30days', 60*60*24*30),
                 ])
                 def test_add_auth_token(self, desc, lifetime, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     response = self.app.post(
                         route_path('edit_user_auth_tokens_add', user_id=user_id),
                         {'description': desc, 'lifetime': lifetime,
                          'csrf_token': self.csrf_token})
                     assert_session_flash(response, 'Auth token successfully created')
                     response = response.follow()
                     user = User.get(user_id)
                     for auth_token in user.auth_tokens:
                         response.mustcontain(auth_token)
                 def test_delete_auth_token(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     keys = user.auth_tokens
                     assert 2 == len(keys)
                     response = self.app.post(
                         route_path('edit_user_auth_tokens_add', user_id=user_id),
                         {'description': 'desc', 'lifetime': -1,
                          'csrf_token': self.csrf_token})
                     assert_session_flash(response, 'Auth token successfully created')
                     response.follow()
                     # now delete our key
                     keys = UserApiKeys.query().filter(UserApiKeys.user_id == user_id).all()
                     assert 3 == len(keys)
                     response = self.app.post(
                         route_path('edit_user_auth_tokens_delete', user_id=user_id),
                         {'del_auth_token': keys[0].user_api_key_id,
                          'csrf_token': self.csrf_token})
                     assert_session_flash(response, 'Auth token successfully deleted')
                     keys = UserApiKeys.query().filter(UserApiKeys.user_id == user_id).all()
                     assert 2 == len(keys)
                 def test_ips(self):
                     self.log_user()
                     user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
                     response = self.app.get(route_path('edit_user_ips', user_id=user.user_id))
                     response.mustcontain('All IP addresses are allowed')
                 @pytest.mark.parametrize("test_name, ip, ip_range, failure", [
                     ('127/24', '127.0.0.1/24', '127.0.0.0 - 127.0.0.255', False),
                     ('10/32', '10.0.0.10/32', '10.0.0.10 - 10.0.0.10', False),
                     ('0/16', '0.0.0.0/16', '0.0.0.0 - 0.0.255.255', False),
                     ('0/8', '0.0.0.0/8', '0.0.0.0 - 0.255.255.255', False),
                     ('127_bad_mask', '127.0.0.1/99', '127.0.0.1 - 127.0.0.1', True),
                     ('127_bad_ip', 'foobar', 'foobar', True),
                 ])
                 def test_ips_add(self, user_util, test_name, ip, ip_range, failure):
                     self.log_user()
                     user = user_util.create_user(username=test_name)
                     user_id = user.user_id
                     response = self.app.post(
                         route_path('edit_user_ips_add', user_id=user_id),
                         params={'new_ip': ip, 'csrf_token': self.csrf_token})
                     if failure:
                         assert_session_flash(
                             response, 'Please enter a valid IPv4 or IpV6 address')
                         response = self.app.get(route_path('edit_user_ips', user_id=user_id))
                         response.mustcontain(no=[ip])
                         response.mustcontain(no=[ip_range])
                     else:
                         response = self.app.get(route_path('edit_user_ips', user_id=user_id))
                         response.mustcontain(ip)
                         response.mustcontain(ip_range)
                 def test_ips_delete(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     ip = '127.0.0.1/32'
                     ip_range = '127.0.0.1 - 127.0.0.1'
                     new_ip = UserModel().add_extra_ip(user_id, ip)
                     Session().commit()
                     new_ip_id = new_ip.ip_id
                     response = self.app.get(route_path('edit_user_ips', user_id=user_id))
                     response.mustcontain(ip)
                     response.mustcontain(ip_range)
                     self.app.post(
                         route_path('edit_user_ips_delete', user_id=user_id),
                         params={'del_ip_id': new_ip_id, 'csrf_token': self.csrf_token})
                     response = self.app.get(route_path('edit_user_ips', user_id=user_id))
                     response.mustcontain('All IP addresses are allowed')
                     response.mustcontain(no=[ip])
                     response.mustcontain(no=[ip_range])
                 def test_emails(self):
                     self.log_user()
                     user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user.user_id))
                     response.mustcontain('No additional emails specified')
                 def test_emails_add(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     self.app.post(
                         route_path('edit_user_emails_add', user_id=user_id),
                         params={'new_email': 'example@rhodecode.com',
                                 'csrf_token': self.csrf_token})
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user_id))
                     response.mustcontain('example@rhodecode.com')
                 def test_emails_add_existing_email(self, user_util, user_regular):
                     existing_email = user_regular.email
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     response = self.app.post(
                         route_path('edit_user_emails_add', user_id=user_id),
                         params={'new_email': existing_email,
                                 'csrf_token': self.csrf_token})
                     assert_session_flash(
                         response, 'This e-mail address is already taken')
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user_id))
                     response.mustcontain(no=[existing_email])
                 def test_emails_delete(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     self.app.post(
                         route_path('edit_user_emails_add', user_id=user_id),
                         params={'new_email': 'example@rhodecode.com',
                                 'csrf_token': self.csrf_token})
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user_id))
                     response.mustcontain('example@rhodecode.com')
                     user_email = UserEmailMap.query()\
                         .filter(UserEmailMap.email == 'example@rhodecode.com') \
                         .filter(UserEmailMap.user_id == user_id)\
                         .one()
                     del_email_id = user_email.email_id
                     self.app.post(
                         route_path('edit_user_emails_delete', user_id=user_id),
                         params={'del_email_id': del_email_id,
                                 'csrf_token': self.csrf_token})
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user_id))
                     response.mustcontain(no=['example@rhodecode.com'])
                 def test_create(self, request, xhr_header):
                     self.log_user()
                     username = 'newtestuser'
                     password = 'test12'
                     password_confirmation = password
                     name = 'name'
                     lastname = 'lastname'
                     email = 'mail@mail.com'
                     self.app.get(route_path('users_new'))
                     response = self.app.post(route_path('users_create'), params={
                         'username': username,
                         'password': password,
                         'password_confirmation': password_confirmation,
                         'firstname': name,
                         'active': True,
                         'lastname': lastname,
                         'extern_name': 'rhodecode',
                         'extern_type': 'rhodecode',
                         'email': email,
                         'csrf_token': self.csrf_token,
                     })
                     user_link = h.link_to(
                         username,
                         route_path(
                             'user_edit', user_id=User.get_by_username(username).user_id))
                     assert_session_flash(response, 'Created user %s' % (user_link,))
                     @request.addfinalizer
                     def cleanup():
                         fixture.destroy_user(username)
                         Session().commit()
                     new_user = User.query().filter(User.username == username).one()
                     assert new_user.username == username
                     assert auth.check_password(password, new_user.password)
                     assert new_user.name == name
                     assert new_user.lastname == lastname
                     assert new_user.email == email
                     response = self.app.get(route_path('users_data'),
                                             extra_environ=xhr_header)
                     response.mustcontain(username)
                 def test_create_err(self):
                     self.log_user()
                     username = 'new_user'
                     password = ''
                     name = 'name'
                     lastname = 'lastname'
                     email = 'errmail.com'
                     self.app.get(route_path('users_new'))
                     response = self.app.post(route_path('users_create'), params={
                         'username': username,
                         'password': password,
                         'name': name,
                         'active': False,
                         'lastname': lastname,
                         'email': email,
                         'csrf_token': self.csrf_token,
                     })
                     msg = u'Username "%(username)s" is forbidden'
                     msg = h.html_escape(msg % {'username': 'new_user'})
                     response.mustcontain('<span class="error-message">%s</span>' % msg)
                     response.mustcontain(
                         '<span class="error-message">Please enter a value</span>')
                     response.mustcontain(
                         '<span class="error-message">An email address must contain a'
                         ' single @</span>')
                     def get_user():
                         Session().query(User).filter(User.username == username).one()
                     with pytest.raises(NoResultFound):
                         get_user()
                 def test_new(self):
                     self.log_user()
                     self.app.get(route_path('users_new'))
                 @pytest.mark.parametrize("name, attrs", [
                     ('firstname', {'firstname': 'new_username'}),
                     ('lastname', {'lastname': 'new_username'}),
                     ('admin', {'admin': True}),
                     ('admin', {'admin': False}),
                     ('extern_type', {'extern_type': 'ldap'}),
                     ('extern_type', {'extern_type': None}),
                     ('extern_name', {'extern_name': 'test'}),
                     ('extern_name', {'extern_name': None}),
                     ('active', {'active': False}),
                     ('active', {'active': True}),
                     ('email', {'email': 'some@email.com'}),
                     ('language', {'language': 'de'}),
                     ('language', {'language': 'en'}),
                     # ('new_password', {'new_password': 'foobar123',
                     #                   'password_confirmation': 'foobar123'})
                     ])
                 def test_update(self, name, attrs, user_util):
                     self.log_user()
                     usr = user_util.create_user(
                         password='qweqwe',
                         email='testme@rhodecode.org',
                         extern_type='rhodecode',
                         extern_name='xxx',
                     )
                     user_id = usr.user_id
                     Session().commit()
                     params = usr.get_api_data()
                     cur_lang = params['language'] or 'en'
                     params.update({
                         'password_confirmation': '',
                         'new_password': '',
                         'language': cur_lang,
                         'csrf_token': self.csrf_token,
                     })
                     params.update({'new_password': ''})
                     params.update(attrs)
                     if name == 'email':
                         params['emails'] = [attrs['email']]
                     elif name == 'extern_type':
                         # cannot update this via form, expected value is original one
                         params['extern_type'] = "rhodecode"
                     elif name == 'extern_name':
                         # cannot update this via form, expected value is original one
                         params['extern_name'] = 'xxx'
                         # special case since this user is not
                         # logged in yet his data is not filled
                         # so we use creation data
                     response = self.app.post(
                         route_path('user_update', user_id=usr.user_id), params)
                     assert response.status_int == 302
                     assert_session_flash(response, 'User updated successfully')
                     updated_user = User.get(user_id)
                     updated_params = updated_user.get_api_data()
                     updated_params.update({'password_confirmation': ''})
                     updated_params.update({'new_password': ''})
                     del params['csrf_token']
                     assert params == updated_params
                 def test_update_and_migrate_password(
                         self, autologin_user, real_crypto_backend, user_util):
                     user = user_util.create_user()
                     temp_user = user.username
                     user.password = auth._RhodeCodeCryptoSha256().hash_create(
                         b'test123')
                     Session().add(user)
                     Session().commit()
                     params = user.get_api_data()
                     params.update({
                         'password_confirmation': 'qweqwe123',
                         'new_password': 'qweqwe123',
                         'language': 'en',
                         'csrf_token': autologin_user.csrf_token,
                     })
                     response = self.app.post(
                         route_path('user_update', user_id=user.user_id), params)
                     assert response.status_int == 302
                     assert_session_flash(response, 'User updated successfully')
                     # new password should be bcrypted, after log-in and transfer
                     user = User.get_by_username(temp_user)
                     assert user.password.startswith('$')
                     updated_user = User.get_by_username(temp_user)
                     updated_params = updated_user.get_api_data()
                     updated_params.update({'password_confirmation': 'qweqwe123'})
                     updated_params.update({'new_password': 'qweqwe123'})
                     del params['csrf_token']
                     assert params == updated_params
                 def test_delete(self):
                     self.log_user()
                     username = 'newtestuserdeleteme'
                     fixture.create_user(name=username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'csrf_token': self.csrf_token})
                     assert_session_flash(response, 'Successfully deleted user')
                 def test_delete_owner_of_repository(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_repo'
                     usr = user_util.create_user()
                     username = usr.username
                     fixture.create_repo(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'csrf_token': self.csrf_token})
                     msg = 'user "%s" still owns 1 repositories and cannot be removed. ' \
-                          'Switch owners or remove those repositories:%s' % (username,
+                          'Switch owners or remove those repositories:%s' % (username, obj_name)
-                                                                             obj_name)
                     assert_session_flash(response, msg)
                     fixture.destroy_repo(obj_name)
                 def test_delete_owner_of_repository_detaching(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_repo'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_repo(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_repos': 'detach', 'csrf_token': self.csrf_token})
                     msg = 'Detached 1 repositories'
                     assert_session_flash(response, msg)
                     fixture.destroy_repo(obj_name)
                 def test_delete_owner_of_repository_deleting(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_repo'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_repo(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_repos': 'delete', 'csrf_token': self.csrf_token})
                     msg = 'Deleted 1 repositories'
                     assert_session_flash(response, msg)
                 def test_delete_owner_of_repository_group(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_group'
                     usr = user_util.create_user()
                     username = usr.username
                     fixture.create_repo_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'csrf_token': self.csrf_token})
                     msg = 'user "%s" still owns 1 repository groups and cannot be removed. ' \
-                          'Switch owners or remove those repository groups:%s' % (username,
+                          'Switch owners or remove those repository groups:%s' % (username, obj_name)
-                                                                                  obj_name)
                     assert_session_flash(response, msg)
                     fixture.destroy_repo_group(obj_name)
                 def test_delete_owner_of_repository_group_detaching(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_group'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_repo_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_repo_groups': 'delete', 'csrf_token': self.csrf_token})
                     msg = 'Deleted 1 repository groups'
                     assert_session_flash(response, msg)
                 def test_delete_owner_of_repository_group_deleting(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_group'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_repo_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_repo_groups': 'detach', 'csrf_token': self.csrf_token})
                     msg = 'Detached 1 repository groups'
                     assert_session_flash(response, msg)
                     fixture.destroy_repo_group(obj_name)
                 def test_delete_owner_of_user_group(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_user_group'
                     usr = user_util.create_user()
                     username = usr.username
                     fixture.create_user_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'csrf_token': self.csrf_token})
                     msg = 'user "%s" still owns 1 user groups and cannot be removed. ' \
-                          'Switch owners or remove those user groups:%s' % (username,
+                          'Switch owners or remove those user groups:%s' % (username, obj_name)
-                                                                            obj_name)
                     assert_session_flash(response, msg)
                     fixture.destroy_user_group(obj_name)
                 def test_delete_owner_of_user_group_detaching(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_user_group'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_user_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     try:
                         response = self.app.post(
                             route_path('user_delete', user_id=new_user.user_id),
                             params={'user_user_groups': 'detach',
                                     'csrf_token': self.csrf_token})
                         msg = 'Detached 1 user groups'
                         assert_session_flash(response, msg)
                     finally:
                         fixture.destroy_user_group(obj_name)
                 def test_delete_owner_of_user_group_deleting(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_user_group'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_user_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_user_groups': 'delete', 'csrf_token': self.csrf_token})
                     msg = 'Deleted 1 user groups'
                     assert_session_flash(response, msg)
                 def test_edit(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     self.app.get(route_path('user_edit', user_id=user.user_id))
                 def test_edit_default_user_redirect(self):
                     self.log_user()
                     user = User.get_default_user()
                     self.app.get(route_path('user_edit', user_id=user.user_id), status=302)
                 @pytest.mark.parametrize(
                     'repo_create, repo_create_write, user_group_create, repo_group_create,'
                     'fork_create, inherit_default_permissions, expect_error,'
                     'expect_form_error', [
                         ('hg.create.none', 'hg.create.write_on_repogroup.false',
                          'hg.usergroup.create.false', 'hg.repogroup.create.false',
                          'hg.fork.none', 'hg.inherit_default_perms.false', False, False),
                         ('hg.create.repository', 'hg.create.write_on_repogroup.false',
                          'hg.usergroup.create.false', 'hg.repogroup.create.false',
                          'hg.fork.none', 'hg.inherit_default_perms.false', False, False),
                         ('hg.create.repository', 'hg.create.write_on_repogroup.true',
                          'hg.usergroup.create.true', 'hg.repogroup.create.true',
                          'hg.fork.repository', 'hg.inherit_default_perms.false', False,
                          False),
                         ('hg.create.XXX', 'hg.create.write_on_repogroup.true',
                          'hg.usergroup.create.true', 'hg.repogroup.create.true',
                          'hg.fork.repository', 'hg.inherit_default_perms.false', False,
                          True),
                         ('', '', '', '', '', '', True, False),
                     ])
                 def test_global_perms_on_user(
                         self, repo_create, repo_create_write, user_group_create,
                         repo_group_create, fork_create, expect_error, expect_form_error,
                         inherit_default_permissions, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     uid = user.user_id
                     # ENABLE REPO CREATE ON A GROUP
                     perm_params = {
                         'inherit_default_permissions': False,
                         'default_repo_create': repo_create,
                         'default_repo_create_on_write': repo_create_write,
                         'default_user_group_create': user_group_create,
                         'default_repo_group_create': repo_group_create,
                         'default_fork_create': fork_create,
                         'default_inherit_default_permissions': inherit_default_permissions,
                         'csrf_token': self.csrf_token,
                     }
                     response = self.app.post(
                         route_path('user_edit_global_perms_update', user_id=uid),
                         params=perm_params)
                     if expect_form_error:
                         assert response.status_int == 200
                         response.mustcontain('Value must be one of')
                     else:
                         if expect_error:
                             msg = 'An error occurred during permissions saving'
                         else:
                             msg = 'User global permissions updated successfully'
                             ug = User.get(uid)
                             del perm_params['inherit_default_permissions']
                             del perm_params['csrf_token']
                             assert perm_params == ug.get_default_perms()
                         assert_session_flash(response, msg)
                 def test_global_permissions_initial_values(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     uid = user.user_id
                     response = self.app.get(
                         route_path('user_edit_global_perms', user_id=uid))
                     default_user = User.get_default_user()
                     default_permissions = default_user.get_default_perms()
                     assert_response = response.assert_response()
                     expected_permissions = (
                         'default_repo_create', 'default_repo_create_on_write',
                         'default_fork_create', 'default_repo_group_create',
                         'default_user_group_create', 'default_inherit_default_permissions')
                     for permission in expected_permissions:
                         css_selector = '[name={}][checked=checked]'.format(permission)
                         element = assert_response.get_element(css_selector)
                         assert element.value == default_permissions[permission]
                 def test_perms_summary_page(self):
                     user = self.log_user()
                     response = self.app.get(
                         route_path('edit_user_perms_summary', user_id=user['user_id']))
                     for repo in Repository.query().all():
                         response.mustcontain(repo.repo_name)
                 def test_perms_summary_page_json(self):
                     user = self.log_user()
                     response = self.app.get(
                         route_path('edit_user_perms_summary_json', user_id=user['user_id']))
                     for repo in Repository.query().all():
                         response.mustcontain(repo.repo_name)
                 def test_audit_log_page(self):
                     user = self.log_user()
                     self.app.get(
                         route_path('edit_user_audit_logs', user_id=user['user_id']))
+                def test_audit_log_page_download(self):
+                    user = self.log_user()
+                    user_id = user['user_id']
+                    response = self.app.get(
+                        route_path('edit_user_audit_logs_download', user_id=user_id))
+                    assert response.content_disposition == \
+                           'attachment; filename=user_{}_audit_logs.json'.format(user_id)
+                    assert response.content_type == "application/json"

rhodecode/apps/admin/views/users.py

0 +23 0

             # -*- coding: utf-8 -*-
             # Copyright (C) 2016-2019 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import logging
             import datetime
             import formencode
             import formencode.htmlfill
             from pyramid.httpexceptions import HTTPFound
             from pyramid.view import view_config
             from pyramid.renderers import render
             from pyramid.response import Response
             from rhodecode import events
             from rhodecode.apps._base import BaseAppView, DataGridAppView, UserAppView
             from rhodecode.apps.ssh_support import SshKeyFileChangeEvent
             from rhodecode.authentication.plugins import auth_rhodecode
             from rhodecode.events import trigger
             from rhodecode.model.db import true
             from rhodecode.lib import audit_logger, rc_cache
             from rhodecode.lib.exceptions import (
                 UserCreationError, UserOwnsReposException, UserOwnsRepoGroupsException,
                 UserOwnsUserGroupsException, DefaultUserException)
             from rhodecode.lib.ext_json import json
             from rhodecode.lib.auth import (
                 LoginRequired, HasPermissionAllDecorator, CSRFRequired)
             from rhodecode.lib import helpers as h
             from rhodecode.lib.utils2 import safe_int, safe_unicode, AttributeDict
             from rhodecode.model.auth_token import AuthTokenModel
             from rhodecode.model.forms import (
                 UserForm, UserIndividualPermissionsForm, UserPermissionsForm,
                 UserExtraEmailForm, UserExtraIpForm)
             from rhodecode.model.permission import PermissionModel
             from rhodecode.model.repo_group import RepoGroupModel
             from rhodecode.model.ssh_key import SshKeyModel
             from rhodecode.model.user import UserModel
             from rhodecode.model.user_group import UserGroupModel
             from rhodecode.model.db import (
                 or_, coalesce,IntegrityError, User, UserGroup, UserIpMap, UserEmailMap,
                 UserApiKeys, UserSshKeys, RepoGroup)
             from rhodecode.model.meta import Session
             log = logging.getLogger(__name__)
             class AdminUsersView(BaseAppView, DataGridAppView):
                 def load_default_context(self):
                     c = self._get_local_tmpl_context()
                     return c
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='users', request_method='GET',
                     renderer='rhodecode:templates/admin/users/users.mako')
                 def users_list(self):
                     c = self.load_default_context()
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     # renderer defined below
                     route_name='users_data', request_method='GET',
                     renderer='json_ext', xhr=True)
                 def users_list_data(self):
                     self.load_default_context()
                     column_map = {
                         'first_name': 'name',
                         'last_name': 'lastname',
                     }
                     draw, start, limit = self._extract_chunk(self.request)
                     search_q, order_by, order_dir = self._extract_ordering(
                         self.request, column_map=column_map)
                     _render = self.request.get_partial_renderer(
                         'rhodecode:templates/data_table/_dt_elements.mako')
                     def user_actions(user_id, username):
                         return _render("user_actions", user_id, username)
                     users_data_total_count = User.query()\
                         .filter(User.username != User.DEFAULT_USER) \
                         .count()
                     users_data_total_inactive_count = User.query()\
                         .filter(User.username != User.DEFAULT_USER) \
                         .filter(User.active != true())\
                         .count()
                     # json generate
                     base_q = User.query().filter(User.username != User.DEFAULT_USER)
                     base_inactive_q = base_q.filter(User.active != true())
                     if search_q:
                         like_expression = u'%{}%'.format(safe_unicode(search_q))
                         base_q = base_q.filter(or_(
                             User.username.ilike(like_expression),
                             User._email.ilike(like_expression),
                             User.name.ilike(like_expression),
                             User.lastname.ilike(like_expression),
                         ))
                         base_inactive_q = base_q.filter(User.active != true())
                     users_data_total_filtered_count = base_q.count()
                     users_data_total_filtered_inactive_count = base_inactive_q.count()
                     sort_col = getattr(User, order_by, None)
                     if sort_col:
                         if order_dir == 'asc':
                             # handle null values properly to order by NULL last
                             if order_by in ['last_activity']:
                                 sort_col = coalesce(sort_col, datetime.date.max)
                             sort_col = sort_col.asc()
                         else:
                             # handle null values properly to order by NULL last
                             if order_by in ['last_activity']:
                                 sort_col = coalesce(sort_col, datetime.date.min)
                             sort_col = sort_col.desc()
                     base_q = base_q.order_by(sort_col)
                     base_q = base_q.offset(start).limit(limit)
                     users_list = base_q.all()
                     users_data = []
                     for user in users_list:
                         users_data.append({
                             "username": h.gravatar_with_user(self.request, user.username),
                             "email": user.email,
                             "first_name": user.first_name,
                             "last_name": user.last_name,
                             "last_login": h.format_date(user.last_login),
                             "last_activity": h.format_date(user.last_activity),
                             "active": h.bool2icon(user.active),
                             "active_raw": user.active,
                             "admin": h.bool2icon(user.admin),
                             "extern_type": user.extern_type,
                             "extern_name": user.extern_name,
                             "action": user_actions(user.user_id, user.username),
                         })
                     data = ({
                         'draw': draw,
                         'data': users_data,
                         'recordsTotal': users_data_total_count,
                         'recordsFiltered': users_data_total_filtered_count,
                         'recordsTotalInactive': users_data_total_inactive_count,
                         'recordsFilteredInactive': users_data_total_filtered_inactive_count
                     })
                     return data
                 def _set_personal_repo_group_template_vars(self, c_obj):
                     DummyUser = AttributeDict({
                         'username': '${username}',
                         'user_id': '${user_id}',
                     })
                     c_obj.default_create_repo_group = RepoGroupModel() \
                         .get_default_create_personal_repo_group()
                     c_obj.personal_repo_group_name = RepoGroupModel() \
                         .get_personal_group_name(DummyUser)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='users_new', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_add.mako')
                 def users_new(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.default_extern_type = auth_rhodecode.RhodeCodeAuthPlugin.uid
                     self._set_personal_repo_group_template_vars(c)
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='users_create', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_add.mako')
                 def users_create(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.default_extern_type = auth_rhodecode.RhodeCodeAuthPlugin.uid
                     user_model = UserModel()
                     user_form = UserForm(self.request.translate)()
                     try:
                         form_result = user_form.to_python(dict(self.request.POST))
                         user = user_model.create(form_result)
                         Session().flush()
                         creation_data = user.get_api_data()
                         username = form_result['username']
                         audit_logger.store_web(
                             'user.create', action_data={'data': creation_data},
                             user=c.rhodecode_user)
                         user_link = h.link_to(
                             h.escape(username),
                             h.route_path('user_edit', user_id=user.user_id))
                         h.flash(h.literal(_('Created user %(user_link)s')
                                           % {'user_link': user_link}), category='success')
                         Session().commit()
                     except formencode.Invalid as errors:
                         self._set_personal_repo_group_template_vars(c)
                         data = render(
                             'rhodecode:templates/admin/users/user_add.mako',
                             self._get_template_context(c), self.request)
                         html = formencode.htmlfill.render(
                             data,
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False
                         )
                         return Response(html)
                     except UserCreationError as e:
                         h.flash(e, 'error')
                     except Exception:
                         log.exception("Exception creation of user")
                         h.flash(_('Error occurred during creation of user %s')
                                 % self.request.POST.get('username'), category='error')
                     raise HTTPFound(h.route_path('users'))
             class UsersView(UserAppView):
                 ALLOW_SCOPED_TOKENS = False
                 """
                 This view has alternative version inside EE, if modified please take a look
                 in there as well.
                 """
                 def load_default_context(self):
                     c = self._get_local_tmpl_context()
                     c.allow_scoped_tokens = self.ALLOW_SCOPED_TOKENS
                     c.allowed_languages = [
                         ('en', 'English (en)'),
                         ('de', 'German (de)'),
                         ('fr', 'French (fr)'),
                         ('it', 'Italian (it)'),
                         ('ja', 'Japanese (ja)'),
                         ('pl', 'Polish (pl)'),
                         ('pt', 'Portuguese (pt)'),
                         ('ru', 'Russian (ru)'),
                         ('zh', 'Chinese (zh)'),
                     ]
                     req = self.request
                     c.available_permissions = req.registry.settings['available_permissions']
                     PermissionModel().set_global_permission_choices(
                         c, gettext_translator=req.translate)
                     return c
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_update', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_update(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     c.active = 'profile'
                     c.extern_type = c.user.extern_type
                     c.extern_name = c.user.extern_name
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     available_languages = [x[0] for x in c.allowed_languages]
                     _form = UserForm(self.request.translate, edit=True,
                                      available_languages=available_languages,
                                      old_data={'user_id': user_id,
                                                'email': c.user.email})()
                     form_result = {}
                     old_values = c.user.get_api_data()
                     try:
                         form_result = _form.to_python(dict(self.request.POST))
                         skip_attrs = ['extern_type', 'extern_name']
                         # TODO: plugin should define if username can be updated
                         if c.extern_type != "rhodecode":
                             # forbid updating username for external accounts
                             skip_attrs.append('username')
                         UserModel().update_user(
                             user_id, skip_attrs=skip_attrs, **form_result)
                         audit_logger.store_web(
                             'user.edit', action_data={'old_data': old_values},
                             user=c.rhodecode_user)
                         Session().commit()
                         h.flash(_('User updated successfully'), category='success')
                     except formencode.Invalid as errors:
                         data = render(
                             'rhodecode:templates/admin/users/user_edit.mako',
                             self._get_template_context(c), self.request)
                         html = formencode.htmlfill.render(
                             data,
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False
                         )
                         return Response(html)
                     except UserCreationError as e:
                         h.flash(e, 'error')
                     except Exception:
                         log.exception("Exception updating user")
                         h.flash(_('Error occurred during update of user %s')
                                 % form_result.get('username'), category='error')
                     raise HTTPFound(h.route_path('user_edit', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_delete', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     _repos = c.user.repositories
                     _repo_groups = c.user.repository_groups
                     _user_groups = c.user.user_groups
                     handle_repos = None
                     handle_repo_groups = None
                     handle_user_groups = None
                     # dummy call for flash of handle
                     set_handle_flash_repos = lambda: None
                     set_handle_flash_repo_groups = lambda: None
                     set_handle_flash_user_groups = lambda: None
                     if _repos and self.request.POST.get('user_repos'):
                         do = self.request.POST['user_repos']
                         if do == 'detach':
                             handle_repos = 'detach'
                             set_handle_flash_repos = lambda: h.flash(
                                 _('Detached %s repositories') % len(_repos),
                                 category='success')
                         elif do == 'delete':
                             handle_repos = 'delete'
                             set_handle_flash_repos = lambda: h.flash(
                                 _('Deleted %s repositories') % len(_repos),
                                 category='success')
                     if _repo_groups and self.request.POST.get('user_repo_groups'):
                         do = self.request.POST['user_repo_groups']
                         if do == 'detach':
                             handle_repo_groups = 'detach'
                             set_handle_flash_repo_groups = lambda: h.flash(
                                 _('Detached %s repository groups') % len(_repo_groups),
                                 category='success')
                         elif do == 'delete':
                             handle_repo_groups = 'delete'
                             set_handle_flash_repo_groups = lambda: h.flash(
                                 _('Deleted %s repository groups') % len(_repo_groups),
                                 category='success')
                     if _user_groups and self.request.POST.get('user_user_groups'):
                         do = self.request.POST['user_user_groups']
                         if do == 'detach':
                             handle_user_groups = 'detach'
                             set_handle_flash_user_groups = lambda: h.flash(
                                 _('Detached %s user groups') % len(_user_groups),
                                 category='success')
                         elif do == 'delete':
                             handle_user_groups = 'delete'
                             set_handle_flash_user_groups = lambda: h.flash(
                                 _('Deleted %s user groups') % len(_user_groups),
                                 category='success')
                     old_values = c.user.get_api_data()
                     try:
                         UserModel().delete(c.user, handle_repos=handle_repos,
                                            handle_repo_groups=handle_repo_groups,
                                            handle_user_groups=handle_user_groups)
                         audit_logger.store_web(
                             'user.delete', action_data={'old_data': old_values},
                             user=c.rhodecode_user)
                         Session().commit()
                         set_handle_flash_repos()
                         set_handle_flash_repo_groups()
                         set_handle_flash_user_groups()
                         h.flash(_('Successfully deleted user'), category='success')
                     except (UserOwnsReposException, UserOwnsRepoGroupsException,
                             UserOwnsUserGroupsException, DefaultUserException) as e:
                         h.flash(e, category='warning')
                     except Exception:
                         log.exception("Exception during deletion of user")
                         h.flash(_('An error occurred during deletion of user'),
                                 category='error')
                     raise HTTPFound(h.route_path('users'))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='user_edit', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_edit(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'profile'
                     c.extern_type = c.user.extern_type
                     c.extern_name = c.user.extern_name
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     defaults = c.user.get_dict()
                     defaults.update({'language': c.user.user_data.get('language')})
                     data = render(
                         'rhodecode:templates/admin/users/user_edit.mako',
                         self._get_template_context(c), self.request)
                     html = formencode.htmlfill.render(
                         data,
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                     return Response(html)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='user_edit_advanced', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_edit_advanced(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     c.active = 'advanced'
                     c.personal_repo_group = RepoGroup.get_user_personal_repo_group(user_id)
                     c.personal_repo_group_name = RepoGroupModel()\
                         .get_personal_group_name(c.user)
                     c.user_to_review_rules = sorted(
                         (x.user for x in c.user.user_review_rules),
                         key=lambda u: u.username.lower())
                     c.first_admin = User.get_first_super_admin()
                     defaults = c.user.get_dict()
                     # Interim workaround if the user participated on any pull requests as a
                     # reviewer.
                     has_review = len(c.user.reviewer_pull_requests)
                     c.can_delete_user = not has_review
                     c.can_delete_user_message = ''
                     inactive_link = h.link_to(
                         'inactive', h.route_path('user_edit', user_id=user_id, _anchor='active'))
                     if has_review == 1:
                         c.can_delete_user_message = h.literal(_(
                             'The user participates as reviewer in {} pull request and '
                             'cannot be deleted. \nYou can set the user to '
                             '"{}" instead of deleting it.').format(
                             has_review, inactive_link))
                     elif has_review:
                         c.can_delete_user_message = h.literal(_(
                             'The user participates as reviewer in {} pull requests and '
                             'cannot be deleted. \nYou can set the user to '
                             '"{}" instead of deleting it.').format(
                             has_review, inactive_link))
                     data = render(
                         'rhodecode:templates/admin/users/user_edit.mako',
                         self._get_template_context(c), self.request)
                     html = formencode.htmlfill.render(
                         data,
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                     return Response(html)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='user_edit_global_perms', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_edit_global_perms(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'global_perms'
                     c.default_user = User.get_default_user()
                     defaults = c.user.get_dict()
                     defaults.update(c.default_user.get_default_perms(suffix='_inherited'))
                     defaults.update(c.default_user.get_default_perms())
                     defaults.update(c.user.get_default_perms())
                     data = render(
                         'rhodecode:templates/admin/users/user_edit.mako',
                         self._get_template_context(c), self.request)
                     html = formencode.htmlfill.render(
                         data,
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                     return Response(html)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_edit_global_perms_update', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_edit_global_perms_update(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     c.active = 'global_perms'
                     try:
                         # first stage that verifies the checkbox
                         _form = UserIndividualPermissionsForm(self.request.translate)
                         form_result = _form.to_python(dict(self.request.POST))
                         inherit_perms = form_result['inherit_default_permissions']
                         c.user.inherit_default_permissions = inherit_perms
                         Session().add(c.user)
                         if not inherit_perms:
                             # only update the individual ones if we un check the flag
                             _form = UserPermissionsForm(
                                 self.request.translate,
                                 [x[0] for x in c.repo_create_choices],
                                 [x[0] for x in c.repo_create_on_write_choices],
                                 [x[0] for x in c.repo_group_create_choices],
                                 [x[0] for x in c.user_group_create_choices],
                                 [x[0] for x in c.fork_choices],
                                 [x[0] for x in c.inherit_default_permission_choices])()
                             form_result = _form.to_python(dict(self.request.POST))
                             form_result.update({'perm_user_id': c.user.user_id})
                             PermissionModel().update_user_permissions(form_result)
                         # TODO(marcink): implement global permissions
                         # audit_log.store_web('user.edit.permissions')
                         Session().commit()
                         h.flash(_('User global permissions updated successfully'),
                                 category='success')
                     except formencode.Invalid as errors:
                         data = render(
                             'rhodecode:templates/admin/users/user_edit.mako',
                             self._get_template_context(c), self.request)
                         html = formencode.htmlfill.render(
                             data,
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False
                         )
                         return Response(html)
                     except Exception:
                         log.exception("Exception during permissions saving")
                         h.flash(_('An error occurred during permissions saving'),
                                 category='error')
                     affected_user_ids = [user_id]
                     PermissionModel().trigger_permission_flush(affected_user_ids)
                     raise HTTPFound(h.route_path('user_edit_global_perms', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_enable_force_password_reset', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_enable_force_password_reset(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     try:
                         c.user.update_userdata(force_password_change=True)
                         msg = _('Force password change enabled for user')
                         audit_logger.store_web('user.edit.password_reset.enabled',
                                                user=c.rhodecode_user)
                         Session().commit()
                         h.flash(msg, category='success')
                     except Exception:
                         log.exception("Exception during password reset for user")
                         h.flash(_('An error occurred during password reset for user'),
                                 category='error')
                     raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_disable_force_password_reset', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_disable_force_password_reset(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     try:
                         c.user.update_userdata(force_password_change=False)
                         msg = _('Force password change disabled for user')
                         audit_logger.store_web(
                             'user.edit.password_reset.disabled',
                             user=c.rhodecode_user)
                         Session().commit()
                         h.flash(msg, category='success')
                     except Exception:
                         log.exception("Exception during password reset for user")
                         h.flash(_('An error occurred during password reset for user'),
                                 category='error')
                     raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_create_personal_repo_group', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_create_personal_repo_group(self):
                     """
                     Create personal repository group for this user
                     """
                     from rhodecode.model.repo_group import RepoGroupModel
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     personal_repo_group = RepoGroup.get_user_personal_repo_group(
                         c.user.user_id)
                     if personal_repo_group:
                         raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
                     personal_repo_group_name = RepoGroupModel().get_personal_group_name(c.user)
                     named_personal_group = RepoGroup.get_by_group_name(
                         personal_repo_group_name)
                     try:
                         if named_personal_group and named_personal_group.user_id == c.user.user_id:
                             # migrate the same named group, and mark it as personal
                             named_personal_group.personal = True
                             Session().add(named_personal_group)
                             Session().commit()
                             msg = _('Linked repository group `%s` as personal' % (
                                 personal_repo_group_name,))
                             h.flash(msg, category='success')
                         elif not named_personal_group:
                             RepoGroupModel().create_personal_repo_group(c.user)
                             msg = _('Created repository group `%s`' % (
                                 personal_repo_group_name,))
                             h.flash(msg, category='success')
                         else:
                             msg = _('Repository group `%s` is already taken' % (
                                 personal_repo_group_name,))
                             h.flash(msg, category='warning')
                     except Exception:
                         log.exception("Exception during repository group creation")
                         msg = _(
                             'An error occurred during repository group creation for user')
                         h.flash(msg, category='error')
                         Session().rollback()
                     raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_auth_tokens', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def auth_tokens(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'auth_tokens'
                     c.lifetime_values = AuthTokenModel.get_lifetime_values(translator=_)
                     c.role_values = [
                         (x, AuthTokenModel.cls._get_role_name(x))
                         for x in AuthTokenModel.cls.ROLES]
                     c.role_options = [(c.role_values, _("Role"))]
                     c.user_auth_tokens = AuthTokenModel().get_auth_tokens(
                         c.user.user_id, show_expired=True)
                     c.role_vcs = AuthTokenModel.cls.ROLE_VCS
                     return self._get_template_context(c)
                 def maybe_attach_token_scope(self, token):
                     # implemented in EE edition
                     pass
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_auth_tokens_add', request_method='POST')
                 def auth_tokens_add(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_data = c.user.get_api_data()
                     lifetime = safe_int(self.request.POST.get('lifetime'), -1)
                     description = self.request.POST.get('description')
                     role = self.request.POST.get('role')
                     token = UserModel().add_auth_token(
                         user=c.user.user_id,
                         lifetime_minutes=lifetime, role=role, description=description,
                         scope_callback=self.maybe_attach_token_scope)
                     token_data = token.get_api_data()
                     audit_logger.store_web(
                         'user.edit.token.add', action_data={
                             'data': {'token': token_data, 'user': user_data}},
                         user=self._rhodecode_user, )
                     Session().commit()
                     h.flash(_("Auth token successfully created"), category='success')
                     return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_auth_tokens_delete', request_method='POST')
                 def auth_tokens_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_data = c.user.get_api_data()
                     del_auth_token = self.request.POST.get('del_auth_token')
                     if del_auth_token:
                         token = UserApiKeys.get_or_404(del_auth_token)
                         token_data = token.get_api_data()
                         AuthTokenModel().delete(del_auth_token, c.user.user_id)
                         audit_logger.store_web(
                             'user.edit.token.delete', action_data={
                                 'data': {'token': token_data, 'user': user_data}},
                             user=self._rhodecode_user,)
                         Session().commit()
                         h.flash(_("Auth token successfully deleted"), category='success')
                     return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_ssh_keys', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def ssh_keys(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'ssh_keys'
                     c.default_key = self.request.GET.get('default_key')
                     c.user_ssh_keys = SshKeyModel().get_ssh_keys(c.user.user_id)
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_ssh_keys_generate_keypair', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def ssh_keys_generate_keypair(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'ssh_keys_generate'
                     comment = 'RhodeCode-SSH {}'.format(c.user.email or '')
                     c.private, c.public = SshKeyModel().generate_keypair(comment=comment)
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_ssh_keys_add', request_method='POST')
                 def ssh_keys_add(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_data = c.user.get_api_data()
                     key_data = self.request.POST.get('key_data')
                     description = self.request.POST.get('description')
                     fingerprint = 'unknown'
                     try:
                         if not key_data:
                             raise ValueError('Please add a valid public key')
                         key = SshKeyModel().parse_key(key_data.strip())
                         fingerprint = key.hash_md5()
                         ssh_key = SshKeyModel().create(
                             c.user.user_id, fingerprint, key.keydata, description)
                         ssh_key_data = ssh_key.get_api_data()
                         audit_logger.store_web(
                             'user.edit.ssh_key.add', action_data={
                                 'data': {'ssh_key': ssh_key_data, 'user': user_data}},
                             user=self._rhodecode_user, )
                         Session().commit()
                         # Trigger an event on change of keys.
                         trigger(SshKeyFileChangeEvent(), self.request.registry)
                         h.flash(_("Ssh Key successfully created"), category='success')
                     except IntegrityError:
                         log.exception("Exception during ssh key saving")
                         err = 'Such key with fingerprint `{}` already exists, ' \
                               'please use a different one'.format(fingerprint)
                         h.flash(_('An error occurred during ssh key saving: {}').format(err),
                                 category='error')
                     except Exception as e:
                         log.exception("Exception during ssh key saving")
                         h.flash(_('An error occurred during ssh key saving: {}').format(e),
                                 category='error')
                     return HTTPFound(
                         h.route_path('edit_user_ssh_keys', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_ssh_keys_delete', request_method='POST')
                 def ssh_keys_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_data = c.user.get_api_data()
                     del_ssh_key = self.request.POST.get('del_ssh_key')
                     if del_ssh_key:
                         ssh_key = UserSshKeys.get_or_404(del_ssh_key)
                         ssh_key_data = ssh_key.get_api_data()
                         SshKeyModel().delete(del_ssh_key, c.user.user_id)
                         audit_logger.store_web(
                             'user.edit.ssh_key.delete', action_data={
                                 'data': {'ssh_key': ssh_key_data, 'user': user_data}},
                             user=self._rhodecode_user,)
                         Session().commit()
                         # Trigger an event on change of keys.
                         trigger(SshKeyFileChangeEvent(), self.request.registry)
                         h.flash(_("Ssh key successfully deleted"), category='success')
                     return HTTPFound(h.route_path('edit_user_ssh_keys', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_emails', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def emails(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'emails'
                     c.user_email_map = UserEmailMap.query() \
                         .filter(UserEmailMap.user == c.user).all()
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_emails_add', request_method='POST')
                 def emails_add(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     email = self.request.POST.get('new_email')
                     user_data = c.user.get_api_data()
                     try:
                         form = UserExtraEmailForm(self.request.translate)()
                         data = form.to_python({'email': email})
                         email = data['email']
                         UserModel().add_extra_email(c.user.user_id, email)
                         audit_logger.store_web(
                             'user.edit.email.add',
                             action_data={'email': email, 'user': user_data},
                             user=self._rhodecode_user)
                         Session().commit()
                         h.flash(_("Added new email address `%s` for user account") % email,
                                 category='success')
                     except formencode.Invalid as error:
                         h.flash(h.escape(error.error_dict['email']), category='error')
                     except IntegrityError:
                         log.warning("Email %s already exists", email)
                         h.flash(_('Email `{}` is already registered for another user.').format(email),
                                 category='error')
                     except Exception:
                         log.exception("Exception during email saving")
                         h.flash(_('An error occurred during email saving'),
                                 category='error')
                     raise HTTPFound(h.route_path('edit_user_emails', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_emails_delete', request_method='POST')
                 def emails_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     email_id = self.request.POST.get('del_email_id')
                     user_model = UserModel()
                     email = UserEmailMap.query().get(email_id).email
                     user_data = c.user.get_api_data()
                     user_model.delete_extra_email(c.user.user_id, email_id)
                     audit_logger.store_web(
                         'user.edit.email.delete',
                         action_data={'email': email, 'user': user_data},
                         user=self._rhodecode_user)
                     Session().commit()
                     h.flash(_("Removed email address from user account"),
                             category='success')
                     raise HTTPFound(h.route_path('edit_user_emails', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_ips', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def ips(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'ips'
                     c.user_ip_map = UserIpMap.query() \
                         .filter(UserIpMap.user == c.user).all()
                     c.inherit_default_ips = c.user.inherit_default_permissions
                     c.default_user_ip_map = UserIpMap.query() \
                         .filter(UserIpMap.user == User.get_default_user()).all()
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_ips_add', request_method='POST')
                 # NOTE(marcink): this view is allowed for default users, as we can
                 # edit their IP white list
                 def ips_add(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_model = UserModel()
                     desc = self.request.POST.get('description')
                     try:
                         ip_list = user_model.parse_ip_range(
                             self.request.POST.get('new_ip'))
                     except Exception as e:
                         ip_list = []
                         log.exception("Exception during ip saving")
                         h.flash(_('An error occurred during ip saving:%s' % (e,)),
                                 category='error')
                     added = []
                     user_data = c.user.get_api_data()
                     for ip in ip_list:
                         try:
                             form = UserExtraIpForm(self.request.translate)()
                             data = form.to_python({'ip': ip})
                             ip = data['ip']
                             user_model.add_extra_ip(c.user.user_id, ip, desc)
                             audit_logger.store_web(
                                 'user.edit.ip.add',
                                 action_data={'ip': ip, 'user': user_data},
                                 user=self._rhodecode_user)
                             Session().commit()
                             added.append(ip)
                         except formencode.Invalid as error:
                             msg = error.error_dict['ip']
                             h.flash(msg, category='error')
                         except Exception:
                             log.exception("Exception during ip saving")
                             h.flash(_('An error occurred during ip saving'),
                                     category='error')
                     if added:
                         h.flash(
                             _("Added ips %s to user whitelist") % (', '.join(ip_list), ),
                             category='success')
                     if 'default_user' in self.request.POST:
                         # case for editing global IP list we do it for 'DEFAULT' user
                         raise HTTPFound(h.route_path('admin_permissions_ips'))
                     raise HTTPFound(h.route_path('edit_user_ips', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_ips_delete', request_method='POST')
                 # NOTE(marcink): this view is allowed for default users, as we can
                 # edit their IP white list
                 def ips_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     ip_id = self.request.POST.get('del_ip_id')
                     user_model = UserModel()
                     user_data = c.user.get_api_data()
                     ip = UserIpMap.query().get(ip_id).ip_addr
                     user_model.delete_extra_ip(c.user.user_id, ip_id)
                     audit_logger.store_web(
                         'user.edit.ip.delete', action_data={'ip': ip, 'user': user_data},
                         user=self._rhodecode_user)
                     Session().commit()
                     h.flash(_("Removed ip address from user whitelist"), category='success')
                     if 'default_user' in self.request.POST:
                         # case for editing global IP list we do it for 'DEFAULT' user
                         raise HTTPFound(h.route_path('admin_permissions_ips'))
                     raise HTTPFound(h.route_path('edit_user_ips', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_groups_management', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def groups_management(self):
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.data = c.user.group_member
                     groups = [UserGroupModel.get_user_groups_as_dict(group.users_group)
                               for group in c.user.group_member]
                     c.groups = json.dumps(groups)
                     c.active = 'groups'
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_groups_management_updates', request_method='POST')
                 def groups_management_updates(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_groups = set(self.request.POST.getall('users_group_id'))
                     user_groups_objects = []
                     for ugid in user_groups:
                         user_groups_objects.append(
                             UserGroupModel().get_group(safe_int(ugid)))
                     user_group_model = UserGroupModel()
                     added_to_groups, removed_from_groups = \
                         user_group_model.change_groups(c.user, user_groups_objects)
                     user_data = c.user.get_api_data()
                     for user_group_id in added_to_groups:
                         user_group = UserGroup.get(user_group_id)
                         old_values = user_group.get_api_data()
                         audit_logger.store_web(
                             'user_group.edit.member.add',
                             action_data={'user': user_data, 'old_data': old_values},
                             user=self._rhodecode_user)
                     for user_group_id in removed_from_groups:
                         user_group = UserGroup.get(user_group_id)
                         old_values = user_group.get_api_data()
                         audit_logger.store_web(
                             'user_group.edit.member.delete',
                             action_data={'user': user_data, 'old_data': old_values},
                             user=self._rhodecode_user)
                     Session().commit()
                     c.active = 'user_groups_management'
                     h.flash(_("Groups successfully changed"), category='success')
                     return HTTPFound(h.route_path(
                         'edit_user_groups_management', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_audit_logs', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_audit_logs(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'audit'
                     p = safe_int(self.request.GET.get('page', 1), 1)
                     filter_term = self.request.GET.get('filter')
                     user_log = UserModel().get_user_log(c.user, filter_term)
                     def url_generator(**kw):
                         if filter_term:
                             kw['filter'] = filter_term
                         return self.request.current_route_path(_query=kw)
                     c.audit_logs = h.Page(
                         user_log, page=p, items_per_page=10, url=url_generator)
                     c.filter_term = filter_term
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
+                    route_name='edit_user_audit_logs_download', request_method='GET',
+                    renderer='string')
+                def user_audit_logs_download(self):
+                    _ = self.request.translate
+                    c = self.load_default_context()
+                    c.user = self.db_user
+                    user_log = UserModel().get_user_log(c.user, filter_term=None)
+                    audit_log_data = {}
+                    for entry in user_log:
+                        audit_log_data[entry.user_log_id] = entry.get_dict()
+                    response = Response(json.dumps(audit_log_data, indent=4))
+                    response.content_disposition = str(
+                        'attachment; filename=%s' % 'user_{}_audit_logs.json'.format(c.user.user_id))
+                    response.content_type = 'application/json'
+                    return response
+                @LoginRequired()
+                @HasPermissionAllDecorator('hg.admin')
+                @view_config(
                     route_name='edit_user_perms_summary', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_perms_summary(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'perms_summary'
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_perms_summary_json', request_method='GET',
                     renderer='json_ext')
                 def user_perms_summary_json(self):
                     self.load_default_context()
                     perm_user = self.db_user.AuthUser(ip_addr=self.request.remote_addr)
                     return perm_user.permissions
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_caches', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_caches(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'caches'
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     cache_namespace_uid = 'cache_user_auth.{}'.format(self.db_user.user_id)
                     c.region = rc_cache.get_or_create_region('cache_perms', cache_namespace_uid)
                     c.backend = c.region.backend
                     c.user_keys = sorted(c.region.backend.list_keys(prefix=cache_namespace_uid))
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_caches_update', request_method='POST')
                 def user_caches_update(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'caches'
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     cache_namespace_uid = 'cache_user_auth.{}'.format(self.db_user.user_id)
                     del_keys = rc_cache.clear_cache_namespace('cache_perms', cache_namespace_uid)
                     h.flash(_("Deleted {} cache keys").format(del_keys), category='success')
                     return HTTPFound(h.route_path(
                         'edit_user_caches', user_id=c.user.user_id))

rhodecode/public/js/rhodecode/routes.js

0 +1 0

             /******************************************************************************
              *                                                                            *
              *                      DO NOT CHANGE THIS FILE MANUALLY                      *
              *                                                                            *
              *                                                                            *
              *        This file is automatically generated when the app starts up with    *
              *                         generate_js_files = true                           *
              *                                                                            *
              *  To add a route here pass jsroute=True to the route definition in the app  *
              *                                                                            *
              ******************************************************************************/
             function registerRCRoutes() {
                 // routes registration
                 pyroutes.register('favicon', '/favicon.ico', []);
                 pyroutes.register('robots', '/robots.txt', []);
                 pyroutes.register('auth_home', '/_admin/auth*traverse', []);
                 pyroutes.register('global_integrations_new', '/_admin/integrations/new', []);
                 pyroutes.register('global_integrations_home', '/_admin/integrations', []);
                 pyroutes.register('global_integrations_list', '/_admin/integrations/%(integration)s', ['integration']);
                 pyroutes.register('global_integrations_create', '/_admin/integrations/%(integration)s/new', ['integration']);
                 pyroutes.register('global_integrations_edit', '/_admin/integrations/%(integration)s/%(integration_id)s', ['integration', 'integration_id']);
                 pyroutes.register('repo_group_integrations_home', '/%(repo_group_name)s/_settings/integrations', ['repo_group_name']);
                 pyroutes.register('repo_group_integrations_new', '/%(repo_group_name)s/_settings/integrations/new', ['repo_group_name']);
                 pyroutes.register('repo_group_integrations_list', '/%(repo_group_name)s/_settings/integrations/%(integration)s', ['repo_group_name', 'integration']);
                 pyroutes.register('repo_group_integrations_create', '/%(repo_group_name)s/_settings/integrations/%(integration)s/new', ['repo_group_name', 'integration']);
                 pyroutes.register('repo_group_integrations_edit', '/%(repo_group_name)s/_settings/integrations/%(integration)s/%(integration_id)s', ['repo_group_name', 'integration', 'integration_id']);
                 pyroutes.register('repo_integrations_home', '/%(repo_name)s/settings/integrations', ['repo_name']);
                 pyroutes.register('repo_integrations_new', '/%(repo_name)s/settings/integrations/new', ['repo_name']);
                 pyroutes.register('repo_integrations_list', '/%(repo_name)s/settings/integrations/%(integration)s', ['repo_name', 'integration']);
                 pyroutes.register('repo_integrations_create', '/%(repo_name)s/settings/integrations/%(integration)s/new', ['repo_name', 'integration']);
                 pyroutes.register('repo_integrations_edit', '/%(repo_name)s/settings/integrations/%(integration)s/%(integration_id)s', ['repo_name', 'integration', 'integration_id']);
                 pyroutes.register('ops_ping', '/_admin/ops/ping', []);
                 pyroutes.register('ops_error_test', '/_admin/ops/error', []);
                 pyroutes.register('ops_redirect_test', '/_admin/ops/redirect', []);
                 pyroutes.register('ops_ping_legacy', '/_admin/ping', []);
                 pyroutes.register('ops_error_test_legacy', '/_admin/error_test', []);
                 pyroutes.register('admin_home', '/_admin', []);
                 pyroutes.register('admin_audit_logs', '/_admin/audit_logs', []);
                 pyroutes.register('admin_audit_log_entry', '/_admin/audit_logs/%(audit_log_id)s', ['audit_log_id']);
                 pyroutes.register('pull_requests_global_0', '/_admin/pull_requests/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('pull_requests_global_1', '/_admin/pull-requests/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('pull_requests_global', '/_admin/pull-request/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('admin_settings_open_source', '/_admin/settings/open_source', []);
                 pyroutes.register('admin_settings_vcs_svn_generate_cfg', '/_admin/settings/vcs/svn_generate_cfg', []);
                 pyroutes.register('admin_settings_system', '/_admin/settings/system', []);
                 pyroutes.register('admin_settings_system_update', '/_admin/settings/system/updates', []);
                 pyroutes.register('admin_settings_exception_tracker', '/_admin/settings/exceptions', []);
                 pyroutes.register('admin_settings_exception_tracker_delete_all', '/_admin/settings/exceptions/delete', []);
                 pyroutes.register('admin_settings_exception_tracker_show', '/_admin/settings/exceptions/%(exception_id)s', ['exception_id']);
                 pyroutes.register('admin_settings_exception_tracker_delete', '/_admin/settings/exceptions/%(exception_id)s/delete', ['exception_id']);
                 pyroutes.register('admin_settings_sessions', '/_admin/settings/sessions', []);
                 pyroutes.register('admin_settings_sessions_cleanup', '/_admin/settings/sessions/cleanup', []);
                 pyroutes.register('admin_settings_process_management', '/_admin/settings/process_management', []);
                 pyroutes.register('admin_settings_process_management_data', '/_admin/settings/process_management/data', []);
                 pyroutes.register('admin_settings_process_management_signal', '/_admin/settings/process_management/signal', []);
                 pyroutes.register('admin_settings_process_management_master_signal', '/_admin/settings/process_management/master_signal', []);
                 pyroutes.register('admin_defaults_repositories', '/_admin/defaults/repositories', []);
                 pyroutes.register('admin_defaults_repositories_update', '/_admin/defaults/repositories/update', []);
                 pyroutes.register('admin_settings', '/_admin/settings', []);
                 pyroutes.register('admin_settings_update', '/_admin/settings/update', []);
                 pyroutes.register('admin_settings_global', '/_admin/settings/global', []);
                 pyroutes.register('admin_settings_global_update', '/_admin/settings/global/update', []);
                 pyroutes.register('admin_settings_vcs', '/_admin/settings/vcs', []);
                 pyroutes.register('admin_settings_vcs_update', '/_admin/settings/vcs/update', []);
                 pyroutes.register('admin_settings_vcs_svn_pattern_delete', '/_admin/settings/vcs/svn_pattern_delete', []);
                 pyroutes.register('admin_settings_mapping', '/_admin/settings/mapping', []);
                 pyroutes.register('admin_settings_mapping_update', '/_admin/settings/mapping/update', []);
                 pyroutes.register('admin_settings_visual', '/_admin/settings/visual', []);
                 pyroutes.register('admin_settings_visual_update', '/_admin/settings/visual/update', []);
                 pyroutes.register('admin_settings_issuetracker', '/_admin/settings/issue-tracker', []);
                 pyroutes.register('admin_settings_issuetracker_update', '/_admin/settings/issue-tracker/update', []);
                 pyroutes.register('admin_settings_issuetracker_test', '/_admin/settings/issue-tracker/test', []);
                 pyroutes.register('admin_settings_issuetracker_delete', '/_admin/settings/issue-tracker/delete', []);
                 pyroutes.register('admin_settings_email', '/_admin/settings/email', []);
                 pyroutes.register('admin_settings_email_update', '/_admin/settings/email/update', []);
                 pyroutes.register('admin_settings_hooks', '/_admin/settings/hooks', []);
                 pyroutes.register('admin_settings_hooks_update', '/_admin/settings/hooks/update', []);
                 pyroutes.register('admin_settings_hooks_delete', '/_admin/settings/hooks/delete', []);
                 pyroutes.register('admin_settings_search', '/_admin/settings/search', []);
                 pyroutes.register('admin_settings_labs', '/_admin/settings/labs', []);
                 pyroutes.register('admin_settings_labs_update', '/_admin/settings/labs/update', []);
                 pyroutes.register('admin_permissions_application', '/_admin/permissions/application', []);
                 pyroutes.register('admin_permissions_application_update', '/_admin/permissions/application/update', []);
                 pyroutes.register('admin_permissions_global', '/_admin/permissions/global', []);
                 pyroutes.register('admin_permissions_global_update', '/_admin/permissions/global/update', []);
                 pyroutes.register('admin_permissions_object', '/_admin/permissions/object', []);
                 pyroutes.register('admin_permissions_object_update', '/_admin/permissions/object/update', []);
                 pyroutes.register('admin_permissions_ips', '/_admin/permissions/ips', []);
                 pyroutes.register('admin_permissions_overview', '/_admin/permissions/overview', []);
                 pyroutes.register('admin_permissions_auth_token_access', '/_admin/permissions/auth_token_access', []);
                 pyroutes.register('admin_permissions_ssh_keys', '/_admin/permissions/ssh_keys', []);
                 pyroutes.register('admin_permissions_ssh_keys_data', '/_admin/permissions/ssh_keys/data', []);
                 pyroutes.register('admin_permissions_ssh_keys_update', '/_admin/permissions/ssh_keys/update', []);
                 pyroutes.register('users', '/_admin/users', []);
                 pyroutes.register('users_data', '/_admin/users_data', []);
                 pyroutes.register('users_create', '/_admin/users/create', []);
                 pyroutes.register('users_new', '/_admin/users/new', []);
                 pyroutes.register('user_edit', '/_admin/users/%(user_id)s/edit', ['user_id']);
                 pyroutes.register('user_edit_advanced', '/_admin/users/%(user_id)s/edit/advanced', ['user_id']);
                 pyroutes.register('user_edit_global_perms', '/_admin/users/%(user_id)s/edit/global_permissions', ['user_id']);
                 pyroutes.register('user_edit_global_perms_update', '/_admin/users/%(user_id)s/edit/global_permissions/update', ['user_id']);
                 pyroutes.register('user_update', '/_admin/users/%(user_id)s/update', ['user_id']);
                 pyroutes.register('user_delete', '/_admin/users/%(user_id)s/delete', ['user_id']);
                 pyroutes.register('user_enable_force_password_reset', '/_admin/users/%(user_id)s/password_reset_enable', ['user_id']);
                 pyroutes.register('user_disable_force_password_reset', '/_admin/users/%(user_id)s/password_reset_disable', ['user_id']);
                 pyroutes.register('user_create_personal_repo_group', '/_admin/users/%(user_id)s/create_repo_group', ['user_id']);
                 pyroutes.register('edit_user_auth_tokens_delete', '/_admin/users/%(user_id)s/edit/auth_tokens/delete', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys', '/_admin/users/%(user_id)s/edit/ssh_keys', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys_generate_keypair', '/_admin/users/%(user_id)s/edit/ssh_keys/generate', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys_add', '/_admin/users/%(user_id)s/edit/ssh_keys/new', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys_delete', '/_admin/users/%(user_id)s/edit/ssh_keys/delete', ['user_id']);
                 pyroutes.register('edit_user_emails', '/_admin/users/%(user_id)s/edit/emails', ['user_id']);
                 pyroutes.register('edit_user_emails_add', '/_admin/users/%(user_id)s/edit/emails/new', ['user_id']);
                 pyroutes.register('edit_user_emails_delete', '/_admin/users/%(user_id)s/edit/emails/delete', ['user_id']);
                 pyroutes.register('edit_user_ips', '/_admin/users/%(user_id)s/edit/ips', ['user_id']);
                 pyroutes.register('edit_user_ips_add', '/_admin/users/%(user_id)s/edit/ips/new', ['user_id']);
                 pyroutes.register('edit_user_ips_delete', '/_admin/users/%(user_id)s/edit/ips/delete', ['user_id']);
                 pyroutes.register('edit_user_perms_summary', '/_admin/users/%(user_id)s/edit/permissions_summary', ['user_id']);
                 pyroutes.register('edit_user_perms_summary_json', '/_admin/users/%(user_id)s/edit/permissions_summary/json', ['user_id']);
                 pyroutes.register('edit_user_groups_management', '/_admin/users/%(user_id)s/edit/groups_management', ['user_id']);
                 pyroutes.register('edit_user_groups_management_updates', '/_admin/users/%(user_id)s/edit/edit_user_groups_management/updates', ['user_id']);
                 pyroutes.register('edit_user_audit_logs', '/_admin/users/%(user_id)s/edit/audit', ['user_id']);
+                pyroutes.register('edit_user_audit_logs_download', '/_admin/users/%(user_id)s/edit/audit/download', ['user_id']);
                 pyroutes.register('edit_user_caches', '/_admin/users/%(user_id)s/edit/caches', ['user_id']);
                 pyroutes.register('edit_user_caches_update', '/_admin/users/%(user_id)s/edit/caches/update', ['user_id']);
                 pyroutes.register('user_groups', '/_admin/user_groups', []);
                 pyroutes.register('user_groups_data', '/_admin/user_groups_data', []);
                 pyroutes.register('user_groups_new', '/_admin/user_groups/new', []);
                 pyroutes.register('user_groups_create', '/_admin/user_groups/create', []);
                 pyroutes.register('repos', '/_admin/repos', []);
                 pyroutes.register('repo_new', '/_admin/repos/new', []);
                 pyroutes.register('repo_create', '/_admin/repos/create', []);
                 pyroutes.register('repo_groups', '/_admin/repo_groups', []);
                 pyroutes.register('repo_groups_data', '/_admin/repo_groups_data', []);
                 pyroutes.register('repo_group_new', '/_admin/repo_group/new', []);
                 pyroutes.register('repo_group_create', '/_admin/repo_group/create', []);
                 pyroutes.register('channelstream_connect', '/_admin/channelstream/connect', []);
                 pyroutes.register('channelstream_subscribe', '/_admin/channelstream/subscribe', []);
                 pyroutes.register('channelstream_proxy', '/_channelstream', []);
                 pyroutes.register('upload_file', '/_file_store/upload', []);
                 pyroutes.register('download_file', '/_file_store/download/%(fid)s', ['fid']);
                 pyroutes.register('logout', '/_admin/logout', []);
                 pyroutes.register('reset_password', '/_admin/password_reset', []);
                 pyroutes.register('reset_password_confirmation', '/_admin/password_reset_confirmation', []);
                 pyroutes.register('home', '/', []);
                 pyroutes.register('user_autocomplete_data', '/_users', []);
                 pyroutes.register('user_group_autocomplete_data', '/_user_groups', []);
                 pyroutes.register('repo_list_data', '/_repos', []);
                 pyroutes.register('repo_group_list_data', '/_repo_groups', []);
                 pyroutes.register('goto_switcher_data', '/_goto_data', []);
                 pyroutes.register('markup_preview', '/_markup_preview', []);
                 pyroutes.register('file_preview', '/_file_preview', []);
                 pyroutes.register('store_user_session_value', '/_store_session_attr', []);
                 pyroutes.register('journal', '/_admin/journal', []);
                 pyroutes.register('journal_rss', '/_admin/journal/rss', []);
                 pyroutes.register('journal_atom', '/_admin/journal/atom', []);
                 pyroutes.register('journal_public', '/_admin/public_journal', []);
                 pyroutes.register('journal_public_atom', '/_admin/public_journal/atom', []);
                 pyroutes.register('journal_public_atom_old', '/_admin/public_journal_atom', []);
                 pyroutes.register('journal_public_rss', '/_admin/public_journal/rss', []);
                 pyroutes.register('journal_public_rss_old', '/_admin/public_journal_rss', []);
                 pyroutes.register('toggle_following', '/_admin/toggle_following', []);
                 pyroutes.register('repo_creating', '/%(repo_name)s/repo_creating', ['repo_name']);
                 pyroutes.register('repo_creating_check', '/%(repo_name)s/repo_creating_check', ['repo_name']);
                 pyroutes.register('repo_summary_explicit', '/%(repo_name)s/summary', ['repo_name']);
                 pyroutes.register('repo_summary_commits', '/%(repo_name)s/summary-commits', ['repo_name']);
                 pyroutes.register('repo_commit', '/%(repo_name)s/changeset/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_children', '/%(repo_name)s/changeset_children/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_parents', '/%(repo_name)s/changeset_parents/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_raw', '/%(repo_name)s/changeset-diff/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_patch', '/%(repo_name)s/changeset-patch/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_download', '/%(repo_name)s/changeset-download/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_data', '/%(repo_name)s/changeset-data/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_comment_create', '/%(repo_name)s/changeset/%(commit_id)s/comment/create', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_comment_preview', '/%(repo_name)s/changeset/%(commit_id)s/comment/preview', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_comment_delete', '/%(repo_name)s/changeset/%(commit_id)s/comment/%(comment_id)s/delete', ['repo_name', 'commit_id', 'comment_id']);
                 pyroutes.register('repo_commit_raw_deprecated', '/%(repo_name)s/raw-changeset/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_archivefile', '/%(repo_name)s/archive/%(fname)s', ['repo_name', 'fname']);
                 pyroutes.register('repo_files_diff', '/%(repo_name)s/diff/%(f_path)s', ['repo_name', 'f_path']);
                 pyroutes.register('repo_files_diff_2way_redirect', '/%(repo_name)s/diff-2way/%(f_path)s', ['repo_name', 'f_path']);
                 pyroutes.register('repo_files', '/%(repo_name)s/files/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files:default_path', '/%(repo_name)s/files/%(commit_id)s/', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_files:default_commit', '/%(repo_name)s/files', ['repo_name']);
                 pyroutes.register('repo_files:rendered', '/%(repo_name)s/render/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files:annotated', '/%(repo_name)s/annotate/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files:annotated_previous', '/%(repo_name)s/annotate-previous/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_nodetree_full', '/%(repo_name)s/nodetree_full/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_nodetree_full:default_path', '/%(repo_name)s/nodetree_full/%(commit_id)s/', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_files_nodelist', '/%(repo_name)s/nodelist/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_raw', '/%(repo_name)s/raw/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_download', '/%(repo_name)s/download/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_download:legacy', '/%(repo_name)s/rawfile/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_history', '/%(repo_name)s/history/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_authors', '/%(repo_name)s/authors/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_remove_file', '/%(repo_name)s/remove_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_delete_file', '/%(repo_name)s/delete_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_edit_file', '/%(repo_name)s/edit_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_update_file', '/%(repo_name)s/update_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_add_file', '/%(repo_name)s/add_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_upload_file', '/%(repo_name)s/upload_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_create_file', '/%(repo_name)s/create_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_refs_data', '/%(repo_name)s/refs-data', ['repo_name']);
                 pyroutes.register('repo_refs_changelog_data', '/%(repo_name)s/refs-data-changelog', ['repo_name']);
                 pyroutes.register('repo_stats', '/%(repo_name)s/repo_stats/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commits', '/%(repo_name)s/commits', ['repo_name']);
                 pyroutes.register('repo_commits_file', '/%(repo_name)s/commits/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_commits_elements', '/%(repo_name)s/commits_elements', ['repo_name']);
                 pyroutes.register('repo_commits_elements_file', '/%(repo_name)s/commits_elements/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_changelog', '/%(repo_name)s/changelog', ['repo_name']);
                 pyroutes.register('repo_changelog_file', '/%(repo_name)s/changelog/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_compare_select', '/%(repo_name)s/compare', ['repo_name']);
                 pyroutes.register('repo_compare', '/%(repo_name)s/compare/%(source_ref_type)s@%(source_ref)s...%(target_ref_type)s@%(target_ref)s', ['repo_name', 'source_ref_type', 'source_ref', 'target_ref_type', 'target_ref']);
                 pyroutes.register('tags_home', '/%(repo_name)s/tags', ['repo_name']);
                 pyroutes.register('branches_home', '/%(repo_name)s/branches', ['repo_name']);
                 pyroutes.register('bookmarks_home', '/%(repo_name)s/bookmarks', ['repo_name']);
                 pyroutes.register('repo_fork_new', '/%(repo_name)s/fork', ['repo_name']);
                 pyroutes.register('repo_fork_create', '/%(repo_name)s/fork/create', ['repo_name']);
                 pyroutes.register('repo_forks_show_all', '/%(repo_name)s/forks', ['repo_name']);
                 pyroutes.register('repo_forks_data', '/%(repo_name)s/forks/data', ['repo_name']);
                 pyroutes.register('pullrequest_show', '/%(repo_name)s/pull-request/%(pull_request_id)s', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_show_all', '/%(repo_name)s/pull-request', ['repo_name']);
                 pyroutes.register('pullrequest_show_all_data', '/%(repo_name)s/pull-request-data', ['repo_name']);
                 pyroutes.register('pullrequest_repo_refs', '/%(repo_name)s/pull-request/refs/%(target_repo_name)s', ['repo_name', 'target_repo_name']);
                 pyroutes.register('pullrequest_repo_targets', '/%(repo_name)s/pull-request/repo-targets', ['repo_name']);
                 pyroutes.register('pullrequest_new', '/%(repo_name)s/pull-request/new', ['repo_name']);
                 pyroutes.register('pullrequest_create', '/%(repo_name)s/pull-request/create', ['repo_name']);
                 pyroutes.register('pullrequest_update', '/%(repo_name)s/pull-request/%(pull_request_id)s/update', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_merge', '/%(repo_name)s/pull-request/%(pull_request_id)s/merge', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_delete', '/%(repo_name)s/pull-request/%(pull_request_id)s/delete', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_comment_create', '/%(repo_name)s/pull-request/%(pull_request_id)s/comment', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_comment_delete', '/%(repo_name)s/pull-request/%(pull_request_id)s/comment/%(comment_id)s/delete', ['repo_name', 'pull_request_id', 'comment_id']);
                 pyroutes.register('edit_repo', '/%(repo_name)s/settings', ['repo_name']);
                 pyroutes.register('edit_repo_advanced', '/%(repo_name)s/settings/advanced', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_archive', '/%(repo_name)s/settings/advanced/archive', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_delete', '/%(repo_name)s/settings/advanced/delete', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_locking', '/%(repo_name)s/settings/advanced/locking', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_journal', '/%(repo_name)s/settings/advanced/journal', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_fork', '/%(repo_name)s/settings/advanced/fork', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_hooks', '/%(repo_name)s/settings/advanced/hooks', ['repo_name']);
                 pyroutes.register('edit_repo_caches', '/%(repo_name)s/settings/caches', ['repo_name']);
                 pyroutes.register('edit_repo_perms', '/%(repo_name)s/settings/permissions', ['repo_name']);
                 pyroutes.register('edit_repo_perms_set_private', '/%(repo_name)s/settings/permissions/set_private', ['repo_name']);
                 pyroutes.register('edit_repo_maintenance', '/%(repo_name)s/settings/maintenance', ['repo_name']);
                 pyroutes.register('edit_repo_maintenance_execute', '/%(repo_name)s/settings/maintenance/execute', ['repo_name']);
                 pyroutes.register('edit_repo_fields', '/%(repo_name)s/settings/fields', ['repo_name']);
                 pyroutes.register('edit_repo_fields_create', '/%(repo_name)s/settings/fields/create', ['repo_name']);
                 pyroutes.register('edit_repo_fields_delete', '/%(repo_name)s/settings/fields/%(field_id)s/delete', ['repo_name', 'field_id']);
                 pyroutes.register('repo_edit_toggle_locking', '/%(repo_name)s/settings/toggle_locking', ['repo_name']);
                 pyroutes.register('edit_repo_remote', '/%(repo_name)s/settings/remote', ['repo_name']);
                 pyroutes.register('edit_repo_remote_pull', '/%(repo_name)s/settings/remote/pull', ['repo_name']);
                 pyroutes.register('edit_repo_statistics', '/%(repo_name)s/settings/statistics', ['repo_name']);
                 pyroutes.register('edit_repo_statistics_reset', '/%(repo_name)s/settings/statistics/update', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker', '/%(repo_name)s/settings/issue_trackers', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker_test', '/%(repo_name)s/settings/issue_trackers/test', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker_delete', '/%(repo_name)s/settings/issue_trackers/delete', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker_update', '/%(repo_name)s/settings/issue_trackers/update', ['repo_name']);
                 pyroutes.register('edit_repo_vcs', '/%(repo_name)s/settings/vcs', ['repo_name']);
                 pyroutes.register('edit_repo_vcs_update', '/%(repo_name)s/settings/vcs/update', ['repo_name']);
                 pyroutes.register('edit_repo_vcs_svn_pattern_delete', '/%(repo_name)s/settings/vcs/svn_pattern/delete', ['repo_name']);
                 pyroutes.register('repo_reviewers', '/%(repo_name)s/settings/review/rules', ['repo_name']);
                 pyroutes.register('repo_default_reviewers_data', '/%(repo_name)s/settings/review/default-reviewers', ['repo_name']);
                 pyroutes.register('edit_repo_strip', '/%(repo_name)s/settings/strip', ['repo_name']);
                 pyroutes.register('strip_check', '/%(repo_name)s/settings/strip_check', ['repo_name']);
                 pyroutes.register('strip_execute', '/%(repo_name)s/settings/strip_execute', ['repo_name']);
                 pyroutes.register('edit_repo_audit_logs', '/%(repo_name)s/settings/audit_logs', ['repo_name']);
                 pyroutes.register('rss_feed_home', '/%(repo_name)s/feed-rss', ['repo_name']);
                 pyroutes.register('atom_feed_home', '/%(repo_name)s/feed-atom', ['repo_name']);
                 pyroutes.register('rss_feed_home_old', '/%(repo_name)s/feed/rss', ['repo_name']);
                 pyroutes.register('atom_feed_home_old', '/%(repo_name)s/feed/atom', ['repo_name']);
                 pyroutes.register('repo_summary', '/%(repo_name)s', ['repo_name']);
                 pyroutes.register('repo_summary_slash', '/%(repo_name)s/', ['repo_name']);
                 pyroutes.register('edit_repo_group', '/%(repo_group_name)s/_edit', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_advanced', '/%(repo_group_name)s/_settings/advanced', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_advanced_delete', '/%(repo_group_name)s/_settings/advanced/delete', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_perms', '/%(repo_group_name)s/_settings/permissions', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_perms_update', '/%(repo_group_name)s/_settings/permissions/update', ['repo_group_name']);
                 pyroutes.register('repo_group_home', '/%(repo_group_name)s', ['repo_group_name']);
                 pyroutes.register('repo_group_home_slash', '/%(repo_group_name)s/', ['repo_group_name']);
                 pyroutes.register('user_group_members_data', '/_admin/user_groups/%(user_group_id)s/members', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms_summary', '/_admin/user_groups/%(user_group_id)s/edit/permissions_summary', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms_summary_json', '/_admin/user_groups/%(user_group_id)s/edit/permissions_summary/json', ['user_group_id']);
                 pyroutes.register('edit_user_group', '/_admin/user_groups/%(user_group_id)s/edit', ['user_group_id']);
                 pyroutes.register('user_groups_update', '/_admin/user_groups/%(user_group_id)s/update', ['user_group_id']);
                 pyroutes.register('edit_user_group_global_perms', '/_admin/user_groups/%(user_group_id)s/edit/global_permissions', ['user_group_id']);
                 pyroutes.register('edit_user_group_global_perms_update', '/_admin/user_groups/%(user_group_id)s/edit/global_permissions/update', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms', '/_admin/user_groups/%(user_group_id)s/edit/permissions', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms_update', '/_admin/user_groups/%(user_group_id)s/edit/permissions/update', ['user_group_id']);
                 pyroutes.register('edit_user_group_advanced', '/_admin/user_groups/%(user_group_id)s/edit/advanced', ['user_group_id']);
                 pyroutes.register('edit_user_group_advanced_sync', '/_admin/user_groups/%(user_group_id)s/edit/advanced/sync', ['user_group_id']);
                 pyroutes.register('user_groups_delete', '/_admin/user_groups/%(user_group_id)s/delete', ['user_group_id']);
                 pyroutes.register('search', '/_admin/search', []);
                 pyroutes.register('search_repo', '/%(repo_name)s/_search', ['repo_name']);
                 pyroutes.register('search_repo_alt', '/%(repo_name)s/search', ['repo_name']);
                 pyroutes.register('search_repo_group', '/%(repo_group_name)s/_search', ['repo_group_name']);
                 pyroutes.register('user_profile', '/_profiles/%(username)s', ['username']);
                 pyroutes.register('user_group_profile', '/_profile_user_group/%(user_group_name)s', ['user_group_name']);
                 pyroutes.register('my_account_profile', '/_admin/my_account/profile', []);
                 pyroutes.register('my_account_edit', '/_admin/my_account/edit', []);
                 pyroutes.register('my_account_update', '/_admin/my_account/update', []);
                 pyroutes.register('my_account_password', '/_admin/my_account/password', []);
                 pyroutes.register('my_account_password_update', '/_admin/my_account/password/update', []);
                 pyroutes.register('my_account_auth_tokens_delete', '/_admin/my_account/auth_tokens/delete', []);
                 pyroutes.register('my_account_ssh_keys', '/_admin/my_account/ssh_keys', []);
                 pyroutes.register('my_account_ssh_keys_generate', '/_admin/my_account/ssh_keys/generate', []);
                 pyroutes.register('my_account_ssh_keys_add', '/_admin/my_account/ssh_keys/new', []);
                 pyroutes.register('my_account_ssh_keys_delete', '/_admin/my_account/ssh_keys/delete', []);
                 pyroutes.register('my_account_user_group_membership', '/_admin/my_account/user_group_membership', []);
                 pyroutes.register('my_account_emails', '/_admin/my_account/emails', []);
                 pyroutes.register('my_account_emails_add', '/_admin/my_account/emails/new', []);
                 pyroutes.register('my_account_emails_delete', '/_admin/my_account/emails/delete', []);
                 pyroutes.register('my_account_repos', '/_admin/my_account/repos', []);
                 pyroutes.register('my_account_watched', '/_admin/my_account/watched', []);
                 pyroutes.register('my_account_bookmarks', '/_admin/my_account/bookmarks', []);
                 pyroutes.register('my_account_bookmarks_update', '/_admin/my_account/bookmarks/update', []);
                 pyroutes.register('my_account_goto_bookmark', '/_admin/my_account/bookmark/%(bookmark_id)s', ['bookmark_id']);
                 pyroutes.register('my_account_perms', '/_admin/my_account/perms', []);
                 pyroutes.register('my_account_notifications', '/_admin/my_account/notifications', []);
                 pyroutes.register('my_account_notifications_toggle_visibility', '/_admin/my_account/toggle_visibility', []);
                 pyroutes.register('my_account_pullrequests', '/_admin/my_account/pull_requests', []);
                 pyroutes.register('my_account_pullrequests_data', '/_admin/my_account/pull_requests/data', []);
                 pyroutes.register('notifications_show_all', '/_admin/notifications', []);
                 pyroutes.register('notifications_mark_all_read', '/_admin/notifications/mark_all_read', []);
                 pyroutes.register('notifications_show', '/_admin/notifications/%(notification_id)s', ['notification_id']);
                 pyroutes.register('notifications_update', '/_admin/notifications/%(notification_id)s/update', ['notification_id']);
                 pyroutes.register('notifications_delete', '/_admin/notifications/%(notification_id)s/delete', ['notification_id']);
                 pyroutes.register('my_account_notifications_test_channelstream', '/_admin/my_account/test_channelstream', []);
                 pyroutes.register('gists_show', '/_admin/gists', []);
                 pyroutes.register('gists_new', '/_admin/gists/new', []);
                 pyroutes.register('gists_create', '/_admin/gists/create', []);
                 pyroutes.register('gist_show', '/_admin/gists/%(gist_id)s', ['gist_id']);
                 pyroutes.register('gist_delete', '/_admin/gists/%(gist_id)s/delete', ['gist_id']);
                 pyroutes.register('gist_edit', '/_admin/gists/%(gist_id)s/edit', ['gist_id']);
                 pyroutes.register('gist_edit_check_revision', '/_admin/gists/%(gist_id)s/edit/check_revision', ['gist_id']);
                 pyroutes.register('gist_update', '/_admin/gists/%(gist_id)s/update', ['gist_id']);
                 pyroutes.register('gist_show_rev', '/_admin/gists/%(gist_id)s/%(revision)s', ['gist_id', 'revision']);
                 pyroutes.register('gist_show_formatted', '/_admin/gists/%(gist_id)s/%(revision)s/%(format)s', ['gist_id', 'revision', 'format']);
                 pyroutes.register('gist_show_formatted_path', '/_admin/gists/%(gist_id)s/%(revision)s/%(format)s/%(f_path)s', ['gist_id', 'revision', 'format', 'f_path']);
                 pyroutes.register('debug_style_home', '/_admin/debug_style', []);
                 pyroutes.register('debug_style_template', '/_admin/debug_style/t/%(t_path)s', ['t_path']);
                 pyroutes.register('apiv2', '/_admin/api', []);
                 pyroutes.register('admin_settings_license', '/_admin/settings/license', []);
                 pyroutes.register('admin_settings_license_unlock', '/_admin/settings/license_unlock', []);
                 pyroutes.register('login', '/_admin/login', []);
                 pyroutes.register('register', '/_admin/register', []);
                 pyroutes.register('repo_reviewers_review_rule_new', '/%(repo_name)s/settings/review/rules/new', ['repo_name']);
                 pyroutes.register('repo_reviewers_review_rule_edit', '/%(repo_name)s/settings/review/rules/%(rule_id)s', ['repo_name', 'rule_id']);
                 pyroutes.register('repo_reviewers_review_rule_delete', '/%(repo_name)s/settings/review/rules/%(rule_id)s/delete', ['repo_name', 'rule_id']);
                 pyroutes.register('plugin_admin_chat', '/_admin/plugin_admin_chat/%(action)s', ['action']);
                 pyroutes.register('edit_user_auth_tokens', '/_admin/users/%(user_id)s/edit/auth_tokens', ['user_id']);
                 pyroutes.register('edit_user_auth_tokens_add', '/_admin/users/%(user_id)s/edit/auth_tokens/new', ['user_id']);
                 pyroutes.register('admin_settings_scheduler_show_tasks', '/_admin/settings/scheduler/_tasks', []);
                 pyroutes.register('admin_settings_scheduler_show_all', '/_admin/settings/scheduler', []);
                 pyroutes.register('admin_settings_scheduler_new', '/_admin/settings/scheduler/new', []);
                 pyroutes.register('admin_settings_scheduler_create', '/_admin/settings/scheduler/create', []);
                 pyroutes.register('admin_settings_scheduler_edit', '/_admin/settings/scheduler/%(schedule_id)s', ['schedule_id']);
                 pyroutes.register('admin_settings_scheduler_update', '/_admin/settings/scheduler/%(schedule_id)s/update', ['schedule_id']);
                 pyroutes.register('admin_settings_scheduler_delete', '/_admin/settings/scheduler/%(schedule_id)s/delete', ['schedule_id']);
                 pyroutes.register('admin_settings_scheduler_execute', '/_admin/settings/scheduler/%(schedule_id)s/execute', ['schedule_id']);
                 pyroutes.register('admin_settings_automation', '/_admin/settings/automation', []);
                 pyroutes.register('admin_settings_automation_update', '/_admin/settings/automation/%(entry_id)s/update', ['entry_id']);
                 pyroutes.register('admin_permissions_branch', '/_admin/permissions/branch', []);
                 pyroutes.register('admin_permissions_branch_update', '/_admin/permissions/branch/update', []);
                 pyroutes.register('my_account_auth_tokens', '/_admin/my_account/auth_tokens', []);
                 pyroutes.register('my_account_auth_tokens_add', '/_admin/my_account/auth_tokens/new', []);
                 pyroutes.register('my_account_external_identity', '/_admin/my_account/external-identity', []);
                 pyroutes.register('my_account_external_identity_delete', '/_admin/my_account/external-identity/delete', []);
                 pyroutes.register('repo_artifacts_list', '/%(repo_name)s/artifacts', ['repo_name']);
                 pyroutes.register('repo_artifacts_data', '/%(repo_name)s/artifacts_data', ['repo_name']);
                 pyroutes.register('repo_artifacts_new', '/%(repo_name)s/artifacts/new', ['repo_name']);
                 pyroutes.register('repo_artifacts_get', '/%(repo_name)s/artifacts/download/%(uid)s', ['repo_name', 'uid']);
                 pyroutes.register('repo_artifacts_store', '/%(repo_name)s/artifacts/store', ['repo_name']);
                 pyroutes.register('repo_artifacts_info', '/%(repo_name)s/artifacts/info/%(uid)s', ['repo_name', 'uid']);
                 pyroutes.register('repo_artifacts_delete', '/%(repo_name)s/artifacts/delete/%(uid)s', ['repo_name', 'uid']);
                 pyroutes.register('repo_automation', '/%(repo_name)s/settings/automation', ['repo_name']);
                 pyroutes.register('repo_automation_update', '/%(repo_name)s/settings/automation/%(entry_id)s/update', ['repo_name', 'entry_id']);
                 pyroutes.register('edit_repo_remote_push', '/%(repo_name)s/settings/remote/push', ['repo_name']);
                 pyroutes.register('edit_repo_perms_branch', '/%(repo_name)s/settings/branch_permissions', ['repo_name']);
                 pyroutes.register('edit_repo_perms_branch_delete', '/%(repo_name)s/settings/branch_permissions/%(rule_id)s/delete', ['repo_name', 'rule_id']);
             }

rhodecode/templates/admin/users/user_edit_audit.mako

0 +1 0

             ## -*- coding: utf-8 -*-
             <%namespace name="base" file="/base/base.mako"/>
             <div class="panel panel-default">
                 <div class="panel-heading">
                   <h3 class="panel-title">${_('User Audit Logs')} -
                   ${_ungettext('%s entry', '%s entries', c.audit_logs.item_count) % (c.audit_logs.item_count)}
                   </h3>
+                  <a href="${h.route_path('edit_user_audit_logs_download', user_id=c.user.user_id)}" class="panel-edit">${_('Download as JSON')}</a>
                 </div>
                 <div class="panel-body">
                     ${h.form(None, id_="filter_form", method="get")}
                         <input class="q_filter_box ${'' if c.filter_term else 'initial'}" id="j_filter" size="15" type="text" name="filter" value="${c.filter_term or ''}" placeholder="${_('audit filter...')}"/>
                         <input type='submit' value="${_('filter')}" class="btn" />
                     ${h.end_form()}
                     <p class="filterexample" style="position: inherit" onclick="$('#search-help').toggle()">${_('Example Queries')}</p>
                     <pre id="search-help" style="display: none">${h.tooltip(h.journal_filter_help(request))}</pre>
                     <%include file="/admin/admin_log_base.mako" />
                 </div>
             </div>

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages