rhodecode-enterprise-ce Commit - r3241:611f6ed0

app: disconect auth plugin loading from authentication registry....

marcink -

r3241:611f6ed0 default

parent child

rhodecode/authentication/__init__.py

0 +1 -13

             # -*- coding: utf-8 -*-
             # Copyright (C) 2012-2018 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import logging
             import importlib
             from pyramid.authentication import SessionAuthenticationPolicy
             from rhodecode.authentication.registry import AuthenticationPluginRegistry
             from rhodecode.authentication.routes import root_factory
             from rhodecode.authentication.routes import AuthnRootResource
             from rhodecode.apps._base import ADMIN_PREFIX
             from rhodecode.model.settings import SettingsModel
             log = logging.getLogger(__name__)
             legacy_plugin_prefix = 'py:'
             plugin_default_auth_ttl = 30
             def _import_legacy_plugin(plugin_id):
                 module_name = plugin_id.split(legacy_plugin_prefix, 1)[-1]
                 module = importlib.import_module(module_name)
                 return module.plugin_factory(plugin_id=plugin_id)
-            def _discover_legacy_plugins(config, prefix=legacy_plugin_prefix):
+            def discover_legacy_plugins(config, prefix=legacy_plugin_prefix):
                 """
                 Function that imports the legacy plugins stored in the 'auth_plugins'
                 setting in database which are using the specified prefix. Normally 'py:' is
                 used for the legacy plugins.
                 """
                 log.debug('authentication: running legacy plugin discovery for prefix %s',
                           legacy_plugin_prefix)
                 try:
                     auth_plugins = SettingsModel().get_setting_by_name('auth_plugins')
                     enabled_plugins = auth_plugins.app_settings_value
                     legacy_plugins = [id_ for id_ in enabled_plugins if id_.startswith(prefix)]
                 except Exception:
                     legacy_plugins = []
                 for plugin_id in legacy_plugins:
                     log.debug('Legacy plugin discovered: "%s"', plugin_id)
                     try:
                         plugin = _import_legacy_plugin(plugin_id)
                         config.include(plugin.includeme)
                     except Exception as e:
                         log.exception(
                             'Exception while loading legacy authentication plugin '
                             '"{}": {}'.format(plugin_id, e.message))
             def includeme(config):
                 # Set authentication policy.
                 authn_policy = SessionAuthenticationPolicy()
                 config.set_authentication_policy(authn_policy)
                 # Create authentication plugin registry and add it to the pyramid registry.
                 authn_registry = AuthenticationPluginRegistry(config.get_settings())
                 config.add_directive('add_authn_plugin', authn_registry.add_authn_plugin)
                 config.registry.registerUtility(authn_registry)
                 # Create authentication traversal root resource.
                 authn_root_resource = root_factory()
                 config.add_directive('add_authn_resource',
                                      authn_root_resource.add_authn_resource)
                 # Add the authentication traversal route.
                 config.add_route('auth_home',
                                  ADMIN_PREFIX + '/auth*traverse',
                                  factory=root_factory)
                 # Add the authentication settings root views.
                 config.add_view('rhodecode.authentication.views.AuthSettingsView',
                                 attr='index',
                                 request_method='GET',
                                 route_name='auth_home',
                                 context=AuthnRootResource)
                 config.add_view('rhodecode.authentication.views.AuthSettingsView',
                                 attr='auth_settings',
                                 request_method='POST',
                                 route_name='auth_home',
                                 context=AuthnRootResource)
-                # load CE authentication plugins
-                config.include('rhodecode.authentication.plugins.auth_crowd')
-                config.include('rhodecode.authentication.plugins.auth_headers')
-                config.include('rhodecode.authentication.plugins.auth_jasig_cas')
-                config.include('rhodecode.authentication.plugins.auth_ldap')
-                config.include('rhodecode.authentication.plugins.auth_pam')
-                config.include('rhodecode.authentication.plugins.auth_rhodecode')
-                config.include('rhodecode.authentication.plugins.auth_token')
-                # Auto discover authentication plugins and include their configuration.
-                _discover_legacy_plugins(config)

rhodecode/config/middleware.py

0 +44 -18

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2018 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import os
             import sys
             import logging
             import collections
             import tempfile
             import time
             from paste.gzipper import make_gzip_middleware
             import pyramid.events
             from pyramid.wsgi import wsgiapp
             from pyramid.authorization import ACLAuthorizationPolicy
             from pyramid.config import Configurator
             from pyramid.settings import asbool, aslist
             from pyramid.httpexceptions import (
                 HTTPException, HTTPError, HTTPInternalServerError, HTTPFound, HTTPNotFound)
             from pyramid.renderers import render_to_response
             from rhodecode.model import meta
             from rhodecode.config import patches
             from rhodecode.config import utils as config_utils
             from rhodecode.config.environment import load_pyramid_environment
             import rhodecode.events
             from rhodecode.lib.middleware.vcs import VCSMiddleware
             from rhodecode.lib.request import Request
             from rhodecode.lib.vcs import VCSCommunicationError
             from rhodecode.lib.exceptions import VCSServerUnavailable
             from rhodecode.lib.middleware.appenlight import wrap_in_appenlight_if_enabled
             from rhodecode.lib.middleware.https_fixup import HttpsFixup
             from rhodecode.lib.celerylib.loader import configure_celery
             from rhodecode.lib.plugins.utils import register_rhodecode_plugin
             from rhodecode.lib.utils2 import aslist as rhodecode_aslist, AttributeDict
             from rhodecode.lib.exc_tracking import store_exception
             from rhodecode.subscribers import (
                 scan_repositories_if_enabled, write_js_routes_if_enabled,
                 write_metadata_if_needed, inject_app_settings)
             log = logging.getLogger(__name__)
             def is_http_error(response):
                 # error which should have traceback
                 return response.status_code > 499
+            def should_load_all():
+                """
+                Returns if all application components should be loaded. In some cases it's
+                desired to skip apps loading for faster shell script execution
+                """
+                return True
             def make_pyramid_app(global_config, **settings):
                 """
                 Constructs the WSGI application based on Pyramid.
                 Specials:
                 * The application can also be integrated like a plugin via the call to
                   `includeme`. This is accompanied with the other utility functions which
                   are called. Changing this should be done with great care to not break
                   cases when these fragments are assembled from another place.
                 """
                 # Allows to use format style "{ENV_NAME}" placeholders in the configuration. It
                 # will be replaced by the value of the environment variable "NAME" in this case.
                 start_time = time.time()
                 environ = {'ENV_{}'.format(key): value for key, value in os.environ.items()}
                 global_config = _substitute_values(global_config, environ)
                 settings = _substitute_values(settings, environ)
                 sanitize_settings_and_apply_defaults(settings)
                 config = Configurator(settings=settings)
                 # Apply compatibility patches
                 patches.inspect_getargspec()
                 load_pyramid_environment(global_config, settings)
                 # Static file view comes first
                 includeme_first(config)
                 includeme(config)
                 pyramid_app = config.make_wsgi_app()
                 pyramid_app = wrap_app_in_wsgi_middlewares(pyramid_app, config)
                 pyramid_app.config = config
                 config.configure_celery(global_config['__file__'])
                 # creating the app uses a connection - return it after we are done
                 meta.Session.remove()
                 total_time = time.time() - start_time
                 log.info('Pyramid app `%s` created and configured in %.2fs',
                          pyramid_app.func_name, total_time)
                 return pyramid_app
             def not_found_view(request):
                 """
                 This creates the view which should be registered as not-found-view to
                 pyramid.
                 """
                 if not getattr(request, 'vcs_call', None):
                     # handle like regular case with our error_handler
                     return error_handler(HTTPNotFound(), request)
                 # handle not found view as a vcs call
                 settings = request.registry.settings
                 ae_client = getattr(request, 'ae_client', None)
                 vcs_app = VCSMiddleware(
                     HTTPNotFound(), request.registry, settings,
                     appenlight_client=ae_client)
                 return wsgiapp(vcs_app)(None, request)
             def error_handler(exception, request):
                 import rhodecode
                 from rhodecode.lib import helpers
                 rhodecode_title = rhodecode.CONFIG.get('rhodecode_title') or 'RhodeCode'
                 base_response = HTTPInternalServerError()
                 # prefer original exception for the response since it may have headers set
                 if isinstance(exception, HTTPException):
                     base_response = exception
                 elif isinstance(exception, VCSCommunicationError):
                     base_response = VCSServerUnavailable()
                 if is_http_error(base_response):
                     log.exception(
                         'error occurred handling this request for path: %s', request.path)
                 error_explanation = base_response.explanation or str(base_response)
                 if base_response.status_code == 404:
                     error_explanation += " Or you don't have permission to access it."
                 c = AttributeDict()
                 c.error_message = base_response.status
                 c.error_explanation = error_explanation
                 c.visual = AttributeDict()
                 c.visual.rhodecode_support_url = (
                     request.registry.settings.get('rhodecode_support_url') or
                     request.route_url('rhodecode_support')
                 )
                 c.redirect_time = 0
                 c.rhodecode_name = rhodecode_title
                 if not c.rhodecode_name:
                     c.rhodecode_name = 'Rhodecode'
                 c.causes = []
                 if is_http_error(base_response):
                     c.causes.append('Server is overloaded.')
                     c.causes.append('Server database connection is lost.')
                     c.causes.append('Server expected unhandled error.')
                 if hasattr(base_response, 'causes'):
                     c.causes = base_response.causes
                 c.messages = helpers.flash.pop_messages(request=request)
                 exc_info = sys.exc_info()
                 c.exception_id = id(exc_info)
                 c.show_exception_id = isinstance(base_response, VCSServerUnavailable) \
                                       or base_response.status_code > 499
                 c.exception_id_url = request.route_url(
                     'admin_settings_exception_tracker_show', exception_id=c.exception_id)
                 if c.show_exception_id:
                     store_exception(c.exception_id, exc_info)
                 response = render_to_response(
                     '/errors/error_document.mako', {'c': c, 'h': helpers}, request=request,
                     response=base_response)
                 return response
             def includeme_first(config):
                 # redirect automatic browser favicon.ico requests to correct place
                 def favicon_redirect(context, request):
                     return HTTPFound(
                         request.static_path('rhodecode:public/images/favicon.ico'))
                 config.add_view(favicon_redirect, route_name='favicon')
                 config.add_route('favicon', '/favicon.ico')
                 def robots_redirect(context, request):
                     return HTTPFound(
                         request.static_path('rhodecode:public/robots.txt'))
                 config.add_view(robots_redirect, route_name='robots')
                 config.add_route('robots', '/robots.txt')
                 config.add_static_view(
                     '_static/deform', 'deform:static')
                 config.add_static_view(
                     '_static/rhodecode', path='rhodecode:public', cache_max_age=3600 * 24)
             def includeme(config):
                 log.debug('Initializing main includeme from %s', os.path.basename(__file__))
                 settings = config.registry.settings
                 config.set_request_factory(Request)
                 # plugin information
                 config.registry.rhodecode_plugins = collections.OrderedDict()
                 config.add_directive(
                     'register_rhodecode_plugin', register_rhodecode_plugin)
                 config.add_directive('configure_celery', configure_celery)
                 if asbool(settings.get('appenlight', 'false')):
                     config.include('appenlight_client.ext.pyramid_tween')
+                load_all = should_load_all()
                 # Includes which are required. The application would fail without them.
                 config.include('pyramid_mako')
                 config.include('pyramid_beaker')
                 config.include('rhodecode.lib.rc_cache')
                 config.include('rhodecode.apps._base.navigation')
                 config.include('rhodecode.apps._base.subscribers')
                 config.include('rhodecode.tweens')
                 config.include('rhodecode.integrations')
                 config.include('rhodecode.authentication')
+                if load_all:
+                    from rhodecode.authentication import discover_legacy_plugins
+                    # load CE authentication plugins
+                    config.include('rhodecode.authentication.plugins.auth_crowd')
+                    config.include('rhodecode.authentication.plugins.auth_headers')
+                    config.include('rhodecode.authentication.plugins.auth_jasig_cas')
+                    config.include('rhodecode.authentication.plugins.auth_ldap')
+                    config.include('rhodecode.authentication.plugins.auth_pam')
+                    config.include('rhodecode.authentication.plugins.auth_rhodecode')
+                    config.include('rhodecode.authentication.plugins.auth_token')
+                    # Auto discover authentication plugins and include their configuration.
+                    discover_legacy_plugins(config)
                 # apps
                 config.include('rhodecode.apps._base')
-                config.include('rhodecode.apps.ops')
-                config.include('rhodecode.apps.admin')
+                if load_all:
-                config.include('rhodecode.apps.channelstream')
+                    config.include('rhodecode.apps.ops')
-                config.include('rhodecode.apps.login')
+                    config.include('rhodecode.apps.admin')
-                config.include('rhodecode.apps.home')
+                    config.include('rhodecode.apps.channelstream')
-                config.include('rhodecode.apps.journal')
+                    config.include('rhodecode.apps.login')
-                config.include('rhodecode.apps.repository')
+                    config.include('rhodecode.apps.home')
-                config.include('rhodecode.apps.repo_group')
+                    config.include('rhodecode.apps.journal')
-                config.include('rhodecode.apps.user_group')
+                    config.include('rhodecode.apps.repository')
-                config.include('rhodecode.apps.search')
+                    config.include('rhodecode.apps.repo_group')
-                config.include('rhodecode.apps.user_profile')
+                    config.include('rhodecode.apps.user_group')
-                config.include('rhodecode.apps.user_group_profile')
+                    config.include('rhodecode.apps.search')
-                config.include('rhodecode.apps.my_account')
+                    config.include('rhodecode.apps.user_profile')
-                config.include('rhodecode.apps.svn_support')
+                    config.include('rhodecode.apps.user_group_profile')
-                config.include('rhodecode.apps.ssh_support')
+                    config.include('rhodecode.apps.my_account')
-                config.include('rhodecode.apps.gist')
+                    config.include('rhodecode.apps.svn_support')
-                config.include('rhodecode.apps.debug_style')
+                    config.include('rhodecode.apps.ssh_support')
-                config.include('rhodecode.api')
+                    config.include('rhodecode.apps.gist')
+                    config.include('rhodecode.apps.debug_style')
+                    config.include('rhodecode.api')
                 config.add_route('rhodecode_support', 'https://rhodecode.com/help/', static=True)
                 config.add_translation_dirs('rhodecode:i18n/')
                 settings['default_locale_name'] = settings.get('lang', 'en')
                 # Add subscribers.
                 config.add_subscriber(inject_app_settings,
                                       pyramid.events.ApplicationCreated)
                 config.add_subscriber(scan_repositories_if_enabled,
                                       pyramid.events.ApplicationCreated)
                 config.add_subscriber(write_metadata_if_needed,
                                       pyramid.events.ApplicationCreated)
                 config.add_subscriber(write_js_routes_if_enabled,
                                       pyramid.events.ApplicationCreated)
                 # request custom methods
                 config.add_request_method(
                     'rhodecode.lib.partial_renderer.get_partial_renderer',
                     'get_partial_renderer')
                 # Set the authorization policy.
                 authz_policy = ACLAuthorizationPolicy()
                 config.set_authorization_policy(authz_policy)
                 # Set the default renderer for HTML templates to mako.
                 config.add_mako_renderer('.html')
                 config.add_renderer(
                     name='json_ext',
                     factory='rhodecode.lib.ext_json_renderer.pyramid_ext_json')
                 # include RhodeCode plugins
                 includes = aslist(settings.get('rhodecode.includes', []))
                 for inc in includes:
                     config.include(inc)
                 # custom not found view, if our pyramid app doesn't know how to handle
                 # the request pass it to potential VCS handling ap
                 config.add_notfound_view(not_found_view)
                 if not settings.get('debugtoolbar.enabled', False):
                     # disabled debugtoolbar handle all exceptions via the error_handlers
                     config.add_view(error_handler, context=Exception)
                 # all errors including 403/404/50X
                 config.add_view(error_handler, context=HTTPError)
             def wrap_app_in_wsgi_middlewares(pyramid_app, config):
                 """
                 Apply outer WSGI middlewares around the application.
                 """
                 registry = config.registry
                 settings = registry.settings
                 # enable https redirects based on HTTP_X_URL_SCHEME set by proxy
                 pyramid_app = HttpsFixup(pyramid_app, settings)
                 pyramid_app, _ae_client = wrap_in_appenlight_if_enabled(
                     pyramid_app, settings)
                 registry.ae_client = _ae_client
                 if settings['gzip_responses']:
                     pyramid_app = make_gzip_middleware(
                         pyramid_app, settings, compress_level=1)
                 # this should be the outer most middleware in the wsgi stack since
                 # middleware like Routes make database calls
                 def pyramid_app_with_cleanup(environ, start_response):
                     try:
                         return pyramid_app(environ, start_response)
                     finally:
                         # Dispose current database session and rollback uncommitted
                         # transactions.
                         meta.Session.remove()
                         # In a single threaded mode server, on non sqlite db we should have
                         # '0 Current Checked out connections' at the end of a request,
                         # if not, then something, somewhere is leaving a connection open
                         pool = meta.Base.metadata.bind.engine.pool
                         log.debug('sa pool status: %s', pool.status())
                         log.debug('Request processing finalized')
                 return pyramid_app_with_cleanup
             def sanitize_settings_and_apply_defaults(settings):
                 """
                 Applies settings defaults and does all type conversion.
                 We would move all settings parsing and preparation into this place, so that
                 we have only one place left which deals with this part. The remaining parts
                 of the application would start to rely fully on well prepared settings.
                 This piece would later be split up per topic to avoid a big fat monster
                 function.
                 """
                 settings.setdefault('rhodecode.edition', 'Community Edition')
                 if 'mako.default_filters' not in settings:
                     # set custom default filters if we don't have it defined
                     settings['mako.imports'] = 'from rhodecode.lib.base import h_filter'
                     settings['mako.default_filters'] = 'h_filter'
                 if 'mako.directories' not in settings:
                     mako_directories = settings.setdefault('mako.directories', [
                         # Base templates of the original application
                         'rhodecode:templates',
                     ])
                     log.debug(
                         "Using the following Mako template directories: %s",
                         mako_directories)
                 # Default includes, possible to change as a user
                 pyramid_includes = settings.setdefault('pyramid.includes', [
                     'rhodecode.lib.middleware.request_wrapper',
                 ])
                 log.debug(
                     "Using the following pyramid.includes: %s",
                     pyramid_includes)
                 # TODO: johbo: Re-think this, usually the call to config.include
                 # should allow to pass in a prefix.
                 settings.setdefault('rhodecode.api.url', '/_admin/api')
                 # Sanitize generic settings.
                 _list_setting(settings, 'default_encoding', 'UTF-8')
                 _bool_setting(settings, 'is_test', 'false')
                 _bool_setting(settings, 'gzip_responses', 'false')
                 # Call split out functions that sanitize settings for each topic.
                 _sanitize_appenlight_settings(settings)
                 _sanitize_vcs_settings(settings)
                 _sanitize_cache_settings(settings)
                 # configure instance id
                 config_utils.set_instance_id(settings)
                 return settings
             def _sanitize_appenlight_settings(settings):
                 _bool_setting(settings, 'appenlight', 'false')
             def _sanitize_vcs_settings(settings):
                 """
                 Applies settings defaults and does type conversion for all VCS related
                 settings.
                 """
                 _string_setting(settings, 'vcs.svn.compatible_version', '')
                 _string_setting(settings, 'git_rev_filter', '--all')
                 _string_setting(settings, 'vcs.hooks.protocol', 'http')
                 _string_setting(settings, 'vcs.hooks.host', '127.0.0.1')
                 _string_setting(settings, 'vcs.scm_app_implementation', 'http')
                 _string_setting(settings, 'vcs.server', '')
                 _string_setting(settings, 'vcs.server.log_level', 'debug')
                 _string_setting(settings, 'vcs.server.protocol', 'http')
                 _bool_setting(settings, 'startup.import_repos', 'false')
                 _bool_setting(settings, 'vcs.hooks.direct_calls', 'false')
                 _bool_setting(settings, 'vcs.server.enable', 'true')
                 _bool_setting(settings, 'vcs.start_server', 'false')
                 _list_setting(settings, 'vcs.backends', 'hg, git, svn')
                 _int_setting(settings, 'vcs.connection_timeout', 3600)
                 # Support legacy values of vcs.scm_app_implementation. Legacy
                 # configurations may use 'rhodecode.lib.middleware.utils.scm_app_http', or
                 # disabled since 4.13 'vcsserver.scm_app' which is now mapped to 'http'.
                 scm_app_impl = settings['vcs.scm_app_implementation']
                 if scm_app_impl in ['rhodecode.lib.middleware.utils.scm_app_http', 'vcsserver.scm_app']:
                     settings['vcs.scm_app_implementation'] = 'http'
             def _sanitize_cache_settings(settings):
                 temp_store = tempfile.gettempdir()
                 default_cache_dir = os.path.join(temp_store, 'rc_cache')
                 # save default, cache dir, and use it for all backends later.
                 default_cache_dir = _string_setting(
                     settings,
                     'cache_dir',
                     default_cache_dir, lower=False, default_when_empty=True)
                 # ensure we have our dir created
                 if not os.path.isdir(default_cache_dir):
                     os.makedirs(default_cache_dir, mode=0755)
                 # exception store cache
                 _string_setting(
                     settings,
                     'exception_tracker.store_path',
                     temp_store, lower=False, default_when_empty=True)
                 # cache_perms
                 _string_setting(
                     settings,
                     'rc_cache.cache_perms.backend',
                     'dogpile.cache.rc.file_namespace', lower=False)
                 _int_setting(
                     settings,
                     'rc_cache.cache_perms.expiration_time',
 )
                 _string_setting(
                     settings,
                     'rc_cache.cache_perms.arguments.filename',
                     os.path.join(default_cache_dir, 'rc_cache_1'), lower=False)
                 # cache_repo
                 _string_setting(
                     settings,
                     'rc_cache.cache_repo.backend',
                     'dogpile.cache.rc.file_namespace', lower=False)
                 _int_setting(
                     settings,
                     'rc_cache.cache_repo.expiration_time',
 )
                 _string_setting(
                     settings,
                     'rc_cache.cache_repo.arguments.filename',
                     os.path.join(default_cache_dir, 'rc_cache_2'), lower=False)
                 # cache_license
                 _string_setting(
                     settings,
                     'rc_cache.cache_license.backend',
                     'dogpile.cache.rc.file_namespace', lower=False)
                 _int_setting(
                     settings,
                     'rc_cache.cache_license.expiration_time',
 *60)
                 _string_setting(
                     settings,
                     'rc_cache.cache_license.arguments.filename',
                     os.path.join(default_cache_dir, 'rc_cache_3'), lower=False)
                 # cache_repo_longterm memory, 96H
                 _string_setting(
                     settings,
                     'rc_cache.cache_repo_longterm.backend',
                     'dogpile.cache.rc.memory_lru', lower=False)
                 _int_setting(
                     settings,
                     'rc_cache.cache_repo_longterm.expiration_time',
 )
                 _int_setting(
                     settings,
                     'rc_cache.cache_repo_longterm.max_size',
 )
                 # sql_cache_short
                 _string_setting(
                     settings,
                     'rc_cache.sql_cache_short.backend',
                     'dogpile.cache.rc.memory_lru', lower=False)
                 _int_setting(
                     settings,
                     'rc_cache.sql_cache_short.expiration_time',
 )
                 _int_setting(
                     settings,
                     'rc_cache.sql_cache_short.max_size',
 )
             def _int_setting(settings, name, default):
                 settings[name] = int(settings.get(name, default))
                 return settings[name]
             def _bool_setting(settings, name, default):
                 input_val = settings.get(name, default)
                 if isinstance(input_val, unicode):
                     input_val = input_val.encode('utf8')
                 settings[name] = asbool(input_val)
                 return settings[name]
             def _list_setting(settings, name, default):
                 raw_value = settings.get(name, default)
                 old_separator = ','
                 if old_separator in raw_value:
                     # If we get a comma separated list, pass it to our own function.
                     settings[name] = rhodecode_aslist(raw_value, sep=old_separator)
                 else:
                     # Otherwise we assume it uses pyramids space/newline separation.
                     settings[name] = aslist(raw_value)
                 return settings[name]
             def _string_setting(settings, name, default, lower=True, default_when_empty=False):
                 value = settings.get(name, default)
                 if default_when_empty and not value:
                     # use default value when value is empty
                     value = default
                 if lower:
                     value = value.lower()
                 settings[name] = value
                 return settings[name]
             def _substitute_values(mapping, substitutions):
                 try:
                     result = {
                         # Note: Cannot use regular replacements, since they would clash
                         # with the implementation of ConfigParser. Using "format" instead.
                         key: value.format(**substitutions)
                         for key, value in mapping.items()
                     }
                 except KeyError as e:
                     raise ValueError(
                         'Failed to substitute env variable: {}. '
                         'Make sure you have specified this env variable without ENV_ prefix'.format(e))
                 except ValueError as e:
                     log.warning('Failed to substitute ENV variable: %s', e)
                     result = mapping
                 return result

rhodecode/tests/lib/middleware/test_simplevcs.py

0 +2 0

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2018 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import base64
             import mock
             import pytest
             from rhodecode.lib.utils2 import AttributeDict
             from rhodecode.tests.utils import CustomTestApp
             from rhodecode.lib.caching_query import FromCache
             from rhodecode.lib.hooks_daemon import DummyHooksCallbackDaemon
             from rhodecode.lib.middleware import simplevcs
             from rhodecode.lib.middleware.https_fixup import HttpsFixup
             from rhodecode.lib.middleware.utils import scm_app_http
             from rhodecode.model.db import User, _hash_key
             from rhodecode.model.meta import Session
             from rhodecode.tests import (
                 HG_REPO, TEST_USER_ADMIN_LOGIN, TEST_USER_ADMIN_PASS)
             from rhodecode.tests.lib.middleware import mock_scm_app
             class StubVCSController(simplevcs.SimpleVCS):
                 SCM = 'hg'
                 stub_response_body = tuple()
                 def __init__(self, *args, **kwargs):
                     super(StubVCSController, self).__init__(*args, **kwargs)
                     self._action = 'pull'
                     self._is_shadow_repo_dir = True
                     self._name = HG_REPO
                     self.set_repo_names(None)
                 @property
                 def is_shadow_repo_dir(self):
                     return self._is_shadow_repo_dir
                 def _get_repository_name(self, environ):
                     return self._name
                 def _get_action(self, environ):
                     return self._action
                 def _create_wsgi_app(self, repo_path, repo_name, config):
                     def fake_app(environ, start_response):
                         headers = [
                             ('Http-Accept', 'application/mercurial')
                         ]
                         start_response('200 OK', headers)
                         return self.stub_response_body
                     return fake_app
                 def _create_config(self, extras, repo_name):
                     return None
             @pytest.fixture
             def vcscontroller(baseapp, config_stub, request_stub):
                 config_stub.testing_securitypolicy()
                 config_stub.include('rhodecode.authentication')
+                config_stub.include('rhodecode.authentication.plugins.auth_rhodecode')
+                config_stub.include('rhodecode.authentication.plugins.auth_token')
                 controller = StubVCSController(
                     baseapp.config.get_settings(), request_stub.registry)
                 app = HttpsFixup(controller, baseapp.config.get_settings())
                 app = CustomTestApp(app)
                 _remove_default_user_from_query_cache()
                 # Sanity checks that things are set up correctly
                 app.get('/' + HG_REPO, status=200)
                 app.controller = controller
                 return app
             def _remove_default_user_from_query_cache():
                 user = User.get_default_user(cache=True)
                 query = Session().query(User).filter(User.username == user.username)
                 query = query.options(
                     FromCache("sql_cache_short", "get_user_%s" % _hash_key(user.username)))
                 query.invalidate()
                 Session().expire(user)
             def test_handles_exceptions_during_permissions_checks(
                     vcscontroller, disable_anonymous_user):
                 user_and_pass = '%s:%s' % (TEST_USER_ADMIN_LOGIN, TEST_USER_ADMIN_PASS)
                 auth_password = base64.encodestring(user_and_pass).strip()
                 extra_environ = {
                     'AUTH_TYPE': 'Basic',
                     'HTTP_AUTHORIZATION': 'Basic %s' % auth_password,
                     'REMOTE_USER': TEST_USER_ADMIN_LOGIN,
                 }
                 # Verify that things are hooked up correctly
                 vcscontroller.get('/', status=200, extra_environ=extra_environ)
                 # Simulate trouble during permission checks
                 with mock.patch('rhodecode.model.db.User.get_by_username',
                                 side_effect=Exception) as get_user:
                     # Verify that a correct 500 is returned and check that the expected
                     # code path was hit.
                     vcscontroller.get('/', status=500, extra_environ=extra_environ)
                     assert get_user.called
             def test_returns_forbidden_if_no_anonymous_access(
                     vcscontroller, disable_anonymous_user):
                 vcscontroller.get('/', status=401)
             class StubFailVCSController(simplevcs.SimpleVCS):
                 def _handle_request(self, environ, start_response):
                     raise Exception("BOOM")
             @pytest.fixture(scope='module')
             def fail_controller(baseapp):
                 controller = StubFailVCSController(
                     baseapp.config.get_settings(), baseapp.config)
                 controller = HttpsFixup(controller, baseapp.config.get_settings())
                 controller = CustomTestApp(controller)
                 return controller
             def test_handles_exceptions_as_internal_server_error(fail_controller):
                 fail_controller.get('/', status=500)
             def test_provides_traceback_for_appenlight(fail_controller):
                 response = fail_controller.get(
                     '/', status=500, extra_environ={'appenlight.client': 'fake'})
                 assert 'appenlight.__traceback' in response.request.environ
             def test_provides_utils_scm_app_as_scm_app_by_default(baseapp, request_stub):
                 controller = StubVCSController(baseapp.config.get_settings(), request_stub.registry)
                 assert controller.scm_app is scm_app_http
             def test_allows_to_override_scm_app_via_config(baseapp, request_stub):
                 config = baseapp.config.get_settings().copy()
                 config['vcs.scm_app_implementation'] = (
                     'rhodecode.tests.lib.middleware.mock_scm_app')
                 controller = StubVCSController(config, request_stub.registry)
                 assert controller.scm_app is mock_scm_app
             @pytest.mark.parametrize('query_string, expected', [
                 ('cmd=stub_command', True),
                 ('cmd=listkeys', False),
             ])
             def test_should_check_locking(query_string, expected):
                 result = simplevcs._should_check_locking(query_string)
                 assert result == expected
             class TestShadowRepoRegularExpression(object):
                 pr_segment = 'pull-request'
                 shadow_segment = 'repository'
                 @pytest.mark.parametrize('url, expected', [
                     # repo with/without groups
                     ('My-Repo/{pr_segment}/1/{shadow_segment}', True),
                     ('Group/My-Repo/{pr_segment}/2/{shadow_segment}', True),
                     ('Group/Sub-Group/My-Repo/{pr_segment}/3/{shadow_segment}', True),
                     ('Group/Sub-Group1/Sub-Group2/My-Repo/{pr_segment}/3/{shadow_segment}', True),
                     # pull request ID
                     ('MyRepo/{pr_segment}/1/{shadow_segment}', True),
                     ('MyRepo/{pr_segment}/1234567890/{shadow_segment}', True),
                     ('MyRepo/{pr_segment}/-1/{shadow_segment}', False),
                     ('MyRepo/{pr_segment}/invalid/{shadow_segment}', False),
                     # unicode
                     (u'Sp€çîál-Repö/{pr_segment}/1/{shadow_segment}', True),
                     (u'Sp€çîál-Gröüp/Sp€çîál-Repö/{pr_segment}/1/{shadow_segment}', True),
                     # trailing/leading slash
                     ('/My-Repo/{pr_segment}/1/{shadow_segment}', False),
                     ('My-Repo/{pr_segment}/1/{shadow_segment}/', False),
                     ('/My-Repo/{pr_segment}/1/{shadow_segment}/', False),
                     # misc
                     ('My-Repo/{pr_segment}/1/{shadow_segment}/extra', False),
                     ('My-Repo/{pr_segment}/1/{shadow_segment}extra', False),
                 ])
                 def test_shadow_repo_regular_expression(self, url, expected):
                     from rhodecode.lib.middleware.simplevcs import SimpleVCS
                     url = url.format(
                         pr_segment=self.pr_segment,
                         shadow_segment=self.shadow_segment)
                     match_obj = SimpleVCS.shadow_repo_re.match(url)
                     assert (match_obj is not None) == expected
             @pytest.mark.backends('git', 'hg')
             class TestShadowRepoExposure(object):
                 def test_pull_on_shadow_repo_propagates_to_wsgi_app(
                         self, baseapp, request_stub):
                     """
                     Check that a pull action to a shadow repo is propagated to the
                     underlying wsgi app.
                     """
                     controller = StubVCSController(
                         baseapp.config.get_settings(), request_stub.registry)
                     controller._check_ssl = mock.Mock()
                     controller.is_shadow_repo = True
                     controller._action = 'pull'
                     controller._is_shadow_repo_dir = True
                     controller.stub_response_body = 'dummy body value'
                     controller._get_default_cache_ttl = mock.Mock(
                         return_value=(False, 0))
                     environ_stub = {
                         'HTTP_HOST': 'test.example.com',
                         'HTTP_ACCEPT': 'application/mercurial',
                         'REQUEST_METHOD': 'GET',
                         'wsgi.url_scheme': 'http',
                     }
                     response = controller(environ_stub, mock.Mock())
                     response_body = ''.join(response)
                     # Assert that we got the response from the wsgi app.
                     assert response_body == controller.stub_response_body
                 def test_pull_on_shadow_repo_that_is_missing(self, baseapp, request_stub):
                     """
                     Check that a pull action to a shadow repo is propagated to the
                     underlying wsgi app.
                     """
                     controller = StubVCSController(
                         baseapp.config.get_settings(), request_stub.registry)
                     controller._check_ssl = mock.Mock()
                     controller.is_shadow_repo = True
                     controller._action = 'pull'
                     controller._is_shadow_repo_dir = False
                     controller.stub_response_body = 'dummy body value'
                     environ_stub = {
                         'HTTP_HOST': 'test.example.com',
                         'HTTP_ACCEPT': 'application/mercurial',
                         'REQUEST_METHOD': 'GET',
                         'wsgi.url_scheme': 'http',
                     }
                     response = controller(environ_stub, mock.Mock())
                     response_body = ''.join(response)
                     # Assert that we got the response from the wsgi app.
                     assert '404 Not Found' in response_body
                 def test_push_on_shadow_repo_raises(self, baseapp, request_stub):
                     """
                     Check that a push action to a shadow repo is aborted.
                     """
                     controller = StubVCSController(
                         baseapp.config.get_settings(), request_stub.registry)
                     controller._check_ssl = mock.Mock()
                     controller.is_shadow_repo = True
                     controller._action = 'push'
                     controller.stub_response_body = 'dummy body value'
                     environ_stub = {
                         'HTTP_HOST': 'test.example.com',
                         'HTTP_ACCEPT': 'application/mercurial',
                         'REQUEST_METHOD': 'GET',
                         'wsgi.url_scheme': 'http',
                     }
                     response = controller(environ_stub, mock.Mock())
                     response_body = ''.join(response)
                     assert response_body != controller.stub_response_body
                     # Assert that a 406 error is returned.
                     assert '406 Not Acceptable' in response_body
                 def test_set_repo_names_no_shadow(self, baseapp, request_stub):
                     """
                     Check that the set_repo_names method sets all names to the one returned
                     by the _get_repository_name method on a request to a non shadow repo.
                     """
                     environ_stub = {}
                     controller = StubVCSController(
                         baseapp.config.get_settings(), request_stub.registry)
                     controller._name = 'RepoGroup/MyRepo'
                     controller.set_repo_names(environ_stub)
                     assert not controller.is_shadow_repo
                     assert (controller.url_repo_name ==
                             controller.acl_repo_name ==
                             controller.vcs_repo_name ==
                             controller._get_repository_name(environ_stub))
                 def test_set_repo_names_with_shadow(
                         self, baseapp, pr_util, config_stub, request_stub):
                     """
                     Check that the set_repo_names method sets correct names on a request
                     to a shadow repo.
                     """
                     from rhodecode.model.pull_request import PullRequestModel
                     pull_request = pr_util.create_pull_request()
                     shadow_url = '{target}/{pr_segment}/{pr_id}/{shadow_segment}'.format(
                         target=pull_request.target_repo.repo_name,
                         pr_id=pull_request.pull_request_id,
                         pr_segment=TestShadowRepoRegularExpression.pr_segment,
                         shadow_segment=TestShadowRepoRegularExpression.shadow_segment)
                     controller = StubVCSController(
                         baseapp.config.get_settings(), request_stub.registry)
                     controller._name = shadow_url
                     controller.set_repo_names({})
                     # Get file system path to shadow repo for assertions.
                     workspace_id = PullRequestModel()._workspace_id(pull_request)
                     target_vcs = pull_request.target_repo.scm_instance()
                     vcs_repo_name = target_vcs._get_shadow_repository_path(
                         pull_request.target_repo.repo_id, workspace_id)
                     assert controller.vcs_repo_name == vcs_repo_name
                     assert controller.url_repo_name == shadow_url
                     assert controller.acl_repo_name == pull_request.target_repo.repo_name
                     assert controller.is_shadow_repo
                 def test_set_repo_names_with_shadow_but_missing_pr(
                         self, baseapp, pr_util, config_stub, request_stub):
                     """
                     Checks that the set_repo_names method enforces matching target repos
                     and pull request IDs.
                     """
                     pull_request = pr_util.create_pull_request()
                     shadow_url = '{target}/{pr_segment}/{pr_id}/{shadow_segment}'.format(
                         target=pull_request.target_repo.repo_name,
                         pr_id=999999999,
                         pr_segment=TestShadowRepoRegularExpression.pr_segment,
                         shadow_segment=TestShadowRepoRegularExpression.shadow_segment)
                     controller = StubVCSController(
                         baseapp.config.get_settings(), request_stub.registry)
                     controller._name = shadow_url
                     controller.set_repo_names({})
                     assert not controller.is_shadow_repo
                     assert (controller.url_repo_name ==
                             controller.acl_repo_name ==
                             controller.vcs_repo_name)
             @pytest.mark.usefixtures('baseapp')
             class TestGenerateVcsResponse(object):
                 def test_ensures_that_start_response_is_called_early_enough(self):
                     self.call_controller_with_response_body(iter(['a', 'b']))
                     assert self.start_response.called
                 def test_invalidates_cache_after_body_is_consumed(self):
                     result = self.call_controller_with_response_body(iter(['a', 'b']))
                     assert not self.was_cache_invalidated()
                     # Consume the result
                     list(result)
                     assert self.was_cache_invalidated()
                 def test_raises_unknown_exceptions(self):
                     result = self.call_controller_with_response_body(
                         self.raise_result_iter(vcs_kind='unknown'))
                     with pytest.raises(Exception):
                         list(result)
                 def test_prepare_callback_daemon_is_called(self):
                     def side_effect(extras, environ, action, txn_id=None):
                         return DummyHooksCallbackDaemon(), extras
                     prepare_patcher = mock.patch.object(
                         StubVCSController, '_prepare_callback_daemon')
                     with prepare_patcher as prepare_mock:
                         prepare_mock.side_effect = side_effect
                         self.call_controller_with_response_body(iter(['a', 'b']))
                     assert prepare_mock.called
                     assert prepare_mock.call_count == 1
                 def call_controller_with_response_body(self, response_body):
                     settings = {
                         'base_path': 'fake_base_path',
                         'vcs.hooks.protocol': 'http',
                         'vcs.hooks.direct_calls': False,
                     }
                     registry = AttributeDict()
                     controller = StubVCSController(settings, registry)
                     controller._invalidate_cache = mock.Mock()
                     controller.stub_response_body = response_body
                     self.start_response = mock.Mock()
                     result = controller._generate_vcs_response(
                         environ={}, start_response=self.start_response,
                         repo_path='fake_repo_path',
                         extras={}, action='push')
                     self.controller = controller
                     return result
                 def raise_result_iter(self, vcs_kind='repo_locked'):
                     """
                     Simulates an exception due to a vcs raised exception if kind vcs_kind
                     """
                     raise self.vcs_exception(vcs_kind=vcs_kind)
                     yield "never_reached"
                 def vcs_exception(self, vcs_kind='repo_locked'):
                     locked_exception = Exception('TEST_MESSAGE')
                     locked_exception._vcs_kind = vcs_kind
                     return locked_exception
                 def was_cache_invalidated(self):
                     return self.controller._invalidate_cache.called
             class TestInitializeGenerator(object):
                 def test_drains_first_element(self):
                     gen = self.factory(['__init__', 1, 2])
                     result = list(gen)
                     assert result == [1, 2]
                 @pytest.mark.parametrize('values', [
                     [],
                     [1, 2],
                 ])
                 def test_raises_value_error(self, values):
                     with pytest.raises(ValueError):
                         self.factory(values)
                 @simplevcs.initialize_generator
                 def factory(self, iterable):
                     for elem in iterable:
                         yield elem
             class TestPrepareHooksDaemon(object):
                 def test_calls_imported_prepare_callback_daemon(self, app_settings, request_stub):
                     expected_extras = {'extra1': 'value1'}
                     daemon = DummyHooksCallbackDaemon()
                     controller = StubVCSController(app_settings, request_stub.registry)
                     prepare_patcher = mock.patch.object(
                         simplevcs, 'prepare_callback_daemon',
                         return_value=(daemon, expected_extras))
                     with prepare_patcher as prepare_mock:
                         callback_daemon, extras = controller._prepare_callback_daemon(
                             expected_extras.copy(), {}, 'push')
                     prepare_mock.assert_called_once_with(
                         expected_extras,
                         protocol=app_settings['vcs.hooks.protocol'],
                         host=app_settings['vcs.hooks.host'],
                         txn_id=None,
                         use_direct_calls=app_settings['vcs.hooks.direct_calls'])
                     assert callback_daemon == daemon
                     assert extras == extras

rhodecode/tests/other/test_validators.py

0 +2 0

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2018 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import formencode
             import pytest
             from rhodecode.tests import (
                 HG_REPO, TEST_USER_REGULAR2_EMAIL, TEST_USER_REGULAR2_LOGIN,
                 TEST_USER_REGULAR2_PASS, TEST_USER_ADMIN_LOGIN, TESTS_TMP_PATH)
             from rhodecode.model import validators as v
             from rhodecode.model.user_group import UserGroupModel
             from rhodecode.model.meta import Session
             from rhodecode.model.repo_group import RepoGroupModel
             from rhodecode.model.db import ChangesetStatus, Repository
             from rhodecode.model.changeset_status import ChangesetStatusModel
             from rhodecode.tests.fixture import Fixture
             fixture = Fixture()
             pytestmark = pytest.mark.usefixtures('baseapp')
             @pytest.fixture
             def localizer():
                 def func(msg):
                     return msg
                 return func
             def test_Message_extractor(localizer):
                 validator = v.ValidUsername(localizer)
                 pytest.raises(formencode.Invalid, validator.to_python, 'default')
                 class StateObj(object):
                     pass
                 pytest.raises(
                     formencode.Invalid, validator.to_python, 'default', StateObj)
             def test_ValidUsername(localizer):
                 validator = v.ValidUsername(localizer)
                 pytest.raises(formencode.Invalid, validator.to_python, 'default')
                 pytest.raises(formencode.Invalid, validator.to_python, 'new_user')
                 pytest.raises(formencode.Invalid, validator.to_python, '.,')
                 pytest.raises(
                     formencode.Invalid, validator.to_python, TEST_USER_ADMIN_LOGIN)
                 assert 'test' == validator.to_python('test')
                 validator = v.ValidUsername(localizer, edit=True, old_data={'user_id': 1})
             def test_ValidRepoUser(localizer):
                 validator = v.ValidRepoUser(localizer)
                 pytest.raises(formencode.Invalid, validator.to_python, 'nouser')
                 assert TEST_USER_ADMIN_LOGIN == \
                     validator.to_python(TEST_USER_ADMIN_LOGIN)
             def test_ValidUserGroup(localizer):
                 validator = v.ValidUserGroup(localizer)
                 pytest.raises(formencode.Invalid, validator.to_python, 'default')
                 pytest.raises(formencode.Invalid, validator.to_python, '.,')
                 gr = fixture.create_user_group('test')
                 gr2 = fixture.create_user_group('tes2')
                 Session().commit()
                 pytest.raises(formencode.Invalid, validator.to_python, 'test')
                 assert gr.users_group_id is not None
                 validator = v.ValidUserGroup(localizer,
                     edit=True,
                     old_data={'users_group_id': gr2.users_group_id})
                 pytest.raises(formencode.Invalid, validator.to_python, 'test')
                 pytest.raises(formencode.Invalid, validator.to_python, 'TesT')
                 pytest.raises(formencode.Invalid, validator.to_python, 'TEST')
                 UserGroupModel().delete(gr)
                 UserGroupModel().delete(gr2)
                 Session().commit()
             @pytest.fixture(scope='function')
             def repo_group(request):
                 model = RepoGroupModel()
                 gr = model.create(
                     group_name='test_gr', group_description='desc', just_db=True,
                     owner=TEST_USER_ADMIN_LOGIN)
                 def cleanup():
                     model.delete(gr)
                 request.addfinalizer(cleanup)
                 return gr
             def test_ValidRepoGroup_same_name_as_repo(localizer):
                 validator = v.ValidRepoGroup(localizer)
                 with pytest.raises(formencode.Invalid) as excinfo:
                     validator.to_python({'group_name': HG_REPO})
                 expected_msg = 'Repository with name "vcs_test_hg" already exists'
                 assert expected_msg in str(excinfo.value)
             def test_ValidRepoGroup_group_exists(localizer, repo_group):
                 validator = v.ValidRepoGroup(localizer)
                 with pytest.raises(formencode.Invalid) as excinfo:
                     validator.to_python({'group_name': repo_group.group_name})
                 expected_msg = 'Group "test_gr" already exists'
                 assert expected_msg in str(excinfo.value)
             def test_ValidRepoGroup_invalid_parent(localizer, repo_group):
                 validator = v.ValidRepoGroup(localizer, edit=True,
                                              old_data={'group_id': repo_group.group_id})
                 with pytest.raises(formencode.Invalid) as excinfo:
                     validator.to_python({
                         'group_name': repo_group.group_name + 'n',
                         'group_parent_id': repo_group.group_id,
                     })
                 expected_msg = 'Cannot assign this group as parent'
                 assert expected_msg in str(excinfo.value)
             def test_ValidRepoGroup_edit_group_no_root_permission(localizer, repo_group):
                 validator = v.ValidRepoGroup(localizer,
                     edit=True, old_data={'group_id': repo_group.group_id},
                     can_create_in_root=False)
                 # Cannot change parent
                 with pytest.raises(formencode.Invalid) as excinfo:
                     validator.to_python({'group_parent_id': '25'})
                 expected_msg = 'no permission to store repository group in root location'
                 assert expected_msg in str(excinfo.value)
                 # Chaning all the other fields is allowed
                 validator.to_python({'group_name': 'foo', 'group_parent_id': '-1'})
                 validator.to_python(
                     {'user': TEST_USER_REGULAR2_LOGIN, 'group_parent_id': '-1'})
                 validator.to_python({'group_description': 'bar', 'group_parent_id': '-1'})
                 validator.to_python({'enable_locking': 'true', 'group_parent_id': '-1'})
             def test_ValidPassword(localizer):
                 validator = v.ValidPassword(localizer)
                 assert 'lol' == validator.to_python('lol')
                 assert None == validator.to_python(None)
                 pytest.raises(formencode.Invalid, validator.to_python, 'ąćżź')
             def test_ValidPasswordsMatch(localizer):
                 validator = v.ValidPasswordsMatch(localizer)
                 pytest.raises(
                     formencode.Invalid,
                     validator.to_python, {'password': 'pass',
                                           'password_confirmation': 'pass2'})
                 pytest.raises(
                     formencode.Invalid,
                     validator.to_python, {'new_password': 'pass',
                                           'password_confirmation': 'pass2'})
                 assert {'new_password': 'pass', 'password_confirmation': 'pass'} == \
                     validator.to_python({'new_password': 'pass',
                                          'password_confirmation': 'pass'})
                 assert {'password': 'pass', 'password_confirmation': 'pass'} == \
                     validator.to_python({'password': 'pass',
                                          'password_confirmation': 'pass'})
             def test_ValidAuth(localizer, config_stub):
                 config_stub.testing_securitypolicy()
                 config_stub.include('rhodecode.authentication')
+                config_stub.include('rhodecode.authentication.plugins.auth_rhodecode')
+                config_stub.include('rhodecode.authentication.plugins.auth_token')
                 validator = v.ValidAuth(localizer)
                 valid_creds = {
                     'username': TEST_USER_REGULAR2_LOGIN,
                     'password': TEST_USER_REGULAR2_PASS,
                 }
                 invalid_creds = {
                     'username': 'err',
                     'password': 'err',
                 }
                 assert valid_creds == validator.to_python(valid_creds)
                 pytest.raises(
                     formencode.Invalid, validator.to_python, invalid_creds)
             def test_ValidRepoName(localizer):
                 validator = v.ValidRepoName(localizer)
                 pytest.raises(
                     formencode.Invalid, validator.to_python, {'repo_name': ''})
                 pytest.raises(
                     formencode.Invalid, validator.to_python, {'repo_name': HG_REPO})
                 gr = RepoGroupModel().create(group_name='group_test',
                                              group_description='desc',
                                              owner=TEST_USER_ADMIN_LOGIN)
                 pytest.raises(
                     formencode.Invalid, validator.to_python, {'repo_name': gr.group_name})
                 #TODO: write an error case for that ie. create a repo withinh a group
             #        pytest.raises(formencode.Invalid,
             #                          validator.to_python, {'repo_name': 'some',
             #                                                'repo_group': gr.group_id})
             def test_ValidForkName(localizer):
                 # this uses ValidRepoName validator
                 assert True
             @pytest.mark.parametrize("name, expected", [
                 ('test', 'test'), ('lolz!', 'lolz'), ('  aavv', 'aavv'),
                 ('ala ma kota', 'ala-ma-kota'), ('@nooo', 'nooo'),
                 ('$!haha lolz !', 'haha-lolz'), ('$$$$$', ''), ('{}OK!', 'OK'),
                 ('/]re po', 're-po')])
             def test_SlugifyName(name, expected, localizer):
                 validator = v.SlugifyName(localizer)
                 assert expected == validator.to_python(name)
             def test_ValidForkType(localizer):
                     validator = v.ValidForkType(localizer, old_data={'repo_type': 'hg'})
                     assert 'hg' == validator.to_python('hg')
                     pytest.raises(formencode.Invalid, validator.to_python, 'git')
             def test_ValidPath(localizer):
                     validator = v.ValidPath(localizer)
                     assert TESTS_TMP_PATH == validator.to_python(TESTS_TMP_PATH)
                     pytest.raises(
                         formencode.Invalid, validator.to_python, '/no_such_dir')
             def test_UniqSystemEmail(localizer):
                 validator = v.UniqSystemEmail(localizer, old_data={})
                 assert 'mail@python.org' == validator.to_python('MaiL@Python.org')
                 email = TEST_USER_REGULAR2_EMAIL
                 pytest.raises(formencode.Invalid, validator.to_python, email)
             def test_ValidSystemEmail(localizer):
                 validator = v.ValidSystemEmail(localizer)
                 email = TEST_USER_REGULAR2_EMAIL
                 assert email == validator.to_python(email)
                 pytest.raises(formencode.Invalid, validator.to_python, 'err')
             def test_NotReviewedRevisions(localizer):
                 repo_id = Repository.get_by_repo_name(HG_REPO).repo_id
                 validator = v.NotReviewedRevisions(localizer, repo_id)
                 rev = '0' * 40
                 # add status for a rev, that should throw an error because it is already
                 # reviewed
                 new_status = ChangesetStatus()
                 new_status.author = ChangesetStatusModel()._get_user(TEST_USER_ADMIN_LOGIN)
                 new_status.repo = ChangesetStatusModel()._get_repo(HG_REPO)
                 new_status.status = ChangesetStatus.STATUS_APPROVED
                 new_status.comment = None
                 new_status.revision = rev
                 Session().add(new_status)
                 Session().commit()
                 try:
                     pytest.raises(formencode.Invalid, validator.to_python, [rev])
                 finally:
                     Session().delete(new_status)
                     Session().commit()

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages