rhodecode-enterprise-ce Commit - r2620:807566df

path-permissions: Introduced a _get_f_path_unchecked method, which can be used by redirects, which don't have to create a template context

idlsoft -

r2620:807566df default

parent child

Collapse all files

rhodecode/apps/_base/__init__.py

0 +9 -3

             # -*- coding: utf-8 -*-
             # Copyright (C) 2016-2018 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import time
             import logging
             import operator
             from pyramid.httpexceptions import HTTPFound, HTTPForbidden
             from rhodecode.lib import helpers as h, diffs
             from rhodecode.lib.utils2 import StrictAttributeDict, safe_int, datetime_to_time
             from rhodecode.lib.vcs.exceptions import RepositoryRequirementError
             from rhodecode.model import repo
             from rhodecode.model import repo_group
             from rhodecode.model import user_group
             from rhodecode.model import user
             from rhodecode.model.db import User
             from rhodecode.model.scm import ScmModel
             log = logging.getLogger(__name__)
             ADMIN_PREFIX = '/_admin'
             STATIC_FILE_PREFIX = '/_static'
             URL_NAME_REQUIREMENTS = {
                 # group name can have a slash in them, but they must not end with a slash
                 'group_name': r'.*?[^/]',
                 'repo_group_name': r'.*?[^/]',
                 # repo names can have a slash in them, but they must not end with a slash
                 'repo_name': r'.*?[^/]',
                 # file path eats up everything at the end
                 'f_path': r'.*',
                 # reference types
                 'source_ref_type': '(branch|book|tag|rev|\%\(source_ref_type\)s)',
                 'target_ref_type': '(branch|book|tag|rev|\%\(target_ref_type\)s)',
             }
             def add_route_with_slash(config,name, pattern, **kw):
                 config.add_route(name, pattern, **kw)
                 if not pattern.endswith('/'):
                     config.add_route(name + '_slash', pattern + '/', **kw)
             def add_route_requirements(route_path, requirements=URL_NAME_REQUIREMENTS):
                 """
                 Adds regex requirements to pyramid routes using a mapping dict
                 e.g::
                     add_route_requirements('{repo_name}/settings')
                 """
                 for key, regex in requirements.items():
                     route_path = route_path.replace('{%s}' % key, '{%s:%s}' % (key, regex))
                 return route_path
             def get_format_ref_id(repo):
                 """Returns a `repo` specific reference formatter function"""
                 if h.is_svn(repo):
                     return _format_ref_id_svn
                 else:
                     return _format_ref_id
             def _format_ref_id(name, raw_id):
                 """Default formatting of a given reference `name`"""
                 return name
             def _format_ref_id_svn(name, raw_id):
                 """Special way of formatting a reference for Subversion including path"""
                 return '%s@%s' % (name, raw_id)
             class TemplateArgs(StrictAttributeDict):
                 pass
             class BaseAppView(object):
                 def __init__(self, context, request):
                     self.request = request
                     self.context = context
                     self.session = request.session
                     self._rhodecode_user = request.user  # auth user
                     self._rhodecode_db_user = self._rhodecode_user.get_instance()
                     self._maybe_needs_password_change(
                         request.matched_route.name, self._rhodecode_db_user)
                 def _maybe_needs_password_change(self, view_name, user_obj):
                     log.debug('Checking if user %s needs password change on view %s',
                               user_obj, view_name)
                     skip_user_views = [
                         'logout', 'login',
                         'my_account_password', 'my_account_password_update'
                     ]
                     if not user_obj:
                         return
                     if user_obj.username == User.DEFAULT_USER:
                         return
                     now = time.time()
                     should_change = user_obj.user_data.get('force_password_change')
                     change_after = safe_int(should_change) or 0
                     if should_change and now > change_after:
                         log.debug('User %s requires password change', user_obj)
                         h.flash('You are required to change your password', 'warning',
                                 ignore_duplicate=True)
                         if view_name not in skip_user_views:
                             raise HTTPFound(
                                 self.request.route_path('my_account_password'))
                 def _log_creation_exception(self, e, repo_name):
                     _ = self.request.translate
                     reason = None
                     if len(e.args) == 2:
                         reason = e.args[1]
                     if reason == 'INVALID_CERTIFICATE':
                         log.exception(
                             'Exception creating a repository: invalid certificate')
                         msg = (_('Error creating repository %s: invalid certificate')
                                % repo_name)
                     else:
                         log.exception("Exception creating a repository")
                         msg = (_('Error creating repository %s')
                                % repo_name)
                     return msg
                 def _get_local_tmpl_context(self, include_app_defaults=True):
                     c = TemplateArgs()
                     c.auth_user = self.request.user
                     # TODO(marcink): migrate the usage of c.rhodecode_user to c.auth_user
                     c.rhodecode_user = self.request.user
                     if include_app_defaults:
                         from rhodecode.lib.base import attach_context_attributes
                         attach_context_attributes(c, self.request, self.request.user.user_id)
                     return c
                 def _get_template_context(self, tmpl_args, **kwargs):
                     local_tmpl_args = {
                         'defaults': {},
                         'errors': {},
                         'c': tmpl_args
                     }
                     local_tmpl_args.update(kwargs)
                     return local_tmpl_args
                 def load_default_context(self):
                     """
                     example:
                     def load_default_context(self):
                         c = self._get_local_tmpl_context()
                         c.custom_var = 'foobar'
                         return c
                     """
                     raise NotImplementedError('Needs implementation in view class')
             class RepoAppView(BaseAppView):
                 def __init__(self, context, request):
                     super(RepoAppView, self).__init__(context, request)
                     self.db_repo = request.db_repo
                     self.db_repo_name = self.db_repo.repo_name
                     self.db_repo_pull_requests = ScmModel().get_pull_requests(self.db_repo)
                 def _handle_missing_requirements(self, error):
                     log.error(
                         'Requirements are missing for repository %s: %s',
                         self.db_repo_name, error.message)
                 def _get_local_tmpl_context(self, include_app_defaults=True):
                     _ = self.request.translate
                     c = super(RepoAppView, self)._get_local_tmpl_context(
                         include_app_defaults=include_app_defaults)
                     # register common vars for this type of view
                     c.rhodecode_db_repo = self.db_repo
                     c.repo_name = self.db_repo_name
                     c.repository_pull_requests = self.db_repo_pull_requests
                     c.repository_requirements_missing = False
                     try:
                         self.rhodecode_vcs_repo = self.db_repo.scm_instance()
                         self.path_filter = PathFilter(self.rhodecode_vcs_repo.get_path_permissions(c.auth_user.username))
                     except RepositoryRequirementError as e:
                         c.repository_requirements_missing = True
                         self._handle_missing_requirements(e)
                         self.rhodecode_vcs_repo = None
                         self.path_filter = None
                     c.path_filter = self.path_filter # used by atom_feed_entry.mako
                     if (not c.repository_requirements_missing
                         and self.rhodecode_vcs_repo is None):
                         # unable to fetch this repo as vcs instance, report back to user
                         h.flash(_(
                             "The repository `%(repo_name)s` cannot be loaded in filesystem. "
                             "Please check if it exist, or is not damaged.") %
                                 {'repo_name': c.repo_name},
                                 category='error', ignore_duplicate=True)
                         raise HTTPFound(h.route_path('home'))
                     return c
-                def _get_f_path(self, matchdict, default=None):
+                def _get_f_path_unchecked(self, matchdict, default=None):
+                    """
+                    Should only be used by redirects, everything else should call _get_f_path
+                    """
                     f_path = matchdict.get('f_path')
                     if f_path:
                         # fix for multiple initial slashes that causes errors for GIT
-                        return self.path_filter.assert_path_permissions(f_path.lstrip('/'))
+                        return f_path.lstrip('/')
-                    return self.path_filter.assert_path_permissions(default)
+                    return default
+                def _get_f_path(self, matchdict, default=None):
+                    return self.path_filter.assert_path_permissions(self._get_f_path_unchecked(matchdict, default))
             class PathFilter(object):
                 # Expects and instance of BasePathPermissionChecker or None
                 def __init__(self, permission_checker):
                     self.permission_checker = permission_checker
                 def assert_path_permissions(self, path):
                     if path and self.permission_checker and not self.permission_checker.has_access(path):
                         raise HTTPForbidden()
                     return path
                 def filter_patchset(self, patchset):
                     if not self.permission_checker or not patchset:
                         return patchset, False
                     had_filtered = False
                     filtered_patchset = []
                     for patch in patchset:
                         filename = patch.get('filename', None)
                         if not filename or self.permission_checker.has_access(filename):
                             filtered_patchset.append(patch)
                         else:
                             had_filtered = True
                     if had_filtered:
                         if isinstance(patchset, diffs.LimitedDiffContainer):
                             filtered_patchset = diffs.LimitedDiffContainer(patchset.diff_limit, patchset.cur_diff_size, filtered_patchset)
                         return filtered_patchset, True
                     else:
                         return patchset, False
                 def render_patchset_filtered(self, diffset, patchset, source_ref=None, target_ref=None):
                     filtered_patchset, has_hidden_changes = self.filter_patchset(patchset)
                     result = diffset.render_patchset(filtered_patchset, source_ref=source_ref, target_ref=target_ref)
                     result.has_hidden_changes = has_hidden_changes
                     return result
                 def get_raw_patch(self, diff_processor):
                     if self.permission_checker is None:
                         return diff_processor.as_raw()
                     elif self.permission_checker.has_full_access:
                         return diff_processor.as_raw()
                     else:
                         return '# Repository has user-specific filters, raw patch generation is disabled.'
                 @property
                 def is_enabled(self):
                     return self.permission_checker is not None
             class RepoGroupAppView(BaseAppView):
                 def __init__(self, context, request):
                     super(RepoGroupAppView, self).__init__(context, request)
                     self.db_repo_group = request.db_repo_group
                     self.db_repo_group_name = self.db_repo_group.group_name
                 def _revoke_perms_on_yourself(self, form_result):
                     _updates = filter(lambda u: self._rhodecode_user.user_id == int(u[0]),
                                       form_result['perm_updates'])
                     _additions = filter(lambda u: self._rhodecode_user.user_id == int(u[0]),
                                         form_result['perm_additions'])
                     _deletions = filter(lambda u: self._rhodecode_user.user_id == int(u[0]),
                                         form_result['perm_deletions'])
                     admin_perm = 'group.admin'
                     if _updates and _updates[0][1] != admin_perm or \
                        _additions and _additions[0][1] != admin_perm or \
                        _deletions and _deletions[0][1] != admin_perm:
                         return True
                     return False
             class UserGroupAppView(BaseAppView):
                 def __init__(self, context, request):
                     super(UserGroupAppView, self).__init__(context, request)
                     self.db_user_group = request.db_user_group
                     self.db_user_group_name = self.db_user_group.users_group_name
             class UserAppView(BaseAppView):
                 def __init__(self, context, request):
                     super(UserAppView, self).__init__(context, request)
                     self.db_user = request.db_user
                     self.db_user_id = self.db_user.user_id
                     _ = self.request.translate
                     if not request.db_user_supports_default:
                         if self.db_user.username == User.DEFAULT_USER:
                             h.flash(_("Editing user `{}` is disabled.".format(
                                 User.DEFAULT_USER)), category='warning')
                             raise HTTPFound(h.route_path('users'))
             class DataGridAppView(object):
                 """
                 Common class to have re-usable grid rendering components
                 """
                 def _extract_ordering(self, request, column_map=None):
                     column_map = column_map or {}
                     column_index = safe_int(request.GET.get('order[0][column]'))
                     order_dir = request.GET.get(
                         'order[0][dir]', 'desc')
                     order_by = request.GET.get(
                         'columns[%s][data][sort]' % column_index, 'name_raw')
                     # translate datatable to DB columns
                     order_by = column_map.get(order_by) or order_by
                     search_q = request.GET.get('search[value]')
                     return search_q, order_by, order_dir
                 def _extract_chunk(self, request):
                     start = safe_int(request.GET.get('start'), 0)
                     length = safe_int(request.GET.get('length'), 25)
                     draw = safe_int(request.GET.get('draw'))
                     return draw, start, length
                 def _get_order_col(self, order_by, model):
                     if isinstance(order_by, basestring):
                         try:
                             return operator.attrgetter(order_by)(model)
                         except AttributeError:
                             return None
                     else:
                         return order_by
             class BaseReferencesView(RepoAppView):
                 """
                 Base for reference view for branches, tags and bookmarks.
                 """
                 def load_default_context(self):
                     c = self._get_local_tmpl_context()
                     return c
                 def load_refs_context(self, ref_items, partials_template):
                     _render = self.request.get_partial_renderer(partials_template)
                     pre_load = ["author", "date", "message"]
                     is_svn = h.is_svn(self.rhodecode_vcs_repo)
                     is_hg = h.is_hg(self.rhodecode_vcs_repo)
                     format_ref_id = get_format_ref_id(self.rhodecode_vcs_repo)
                     closed_refs = {}
                     if is_hg:
                         closed_refs = self.rhodecode_vcs_repo.branches_closed
                     data = []
                     for ref_name, commit_id in ref_items:
                         commit = self.rhodecode_vcs_repo.get_commit(
                             commit_id=commit_id, pre_load=pre_load)
                         closed = ref_name in closed_refs
                         # TODO: johbo: Unify generation of reference links
                         use_commit_id = '/' in ref_name or is_svn
                         if use_commit_id:
                             files_url = h.route_path(
                                 'repo_files',
                                 repo_name=self.db_repo_name,
                                 f_path=ref_name if is_svn else '',
                                 commit_id=commit_id)
                         else:
                             files_url = h.route_path(
                                 'repo_files',
                                 repo_name=self.db_repo_name,
                                 f_path=ref_name if is_svn else '',
                                 commit_id=ref_name,
                                 _query=dict(at=ref_name))
                         data.append({
                             "name": _render('name', ref_name, files_url, closed),
                             "name_raw": ref_name,
                             "date": _render('date', commit.date),
                             "date_raw": datetime_to_time(commit.date),
                             "author": _render('author', commit.author),
                             "commit": _render(
                                 'commit', commit.message, commit.raw_id, commit.idx),
                             "commit_raw": commit.idx,
                             "compare": _render(
                                 'compare', format_ref_id(ref_name, commit.raw_id)),
                         })
                     return data
             class RepoRoutePredicate(object):
                 def __init__(self, val, config):
                     self.val = val
                 def text(self):
                     return 'repo_route = %s' % self.val
                 phash = text
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     repo_name = info['match']['repo_name']
                     repo_model = repo.RepoModel()
                     by_name_match = repo_model.get_by_repo_name(repo_name, cache=True)
                     def redirect_if_creating(db_repo):
                         if db_repo.repo_state in [repo.Repository.STATE_PENDING]:
                             raise HTTPFound(
                                 request.route_path('repo_creating',
                                                    repo_name=db_repo.repo_name))
                     if by_name_match:
                         # register this as request object we can re-use later
                         request.db_repo = by_name_match
                         redirect_if_creating(by_name_match)
                         return True
                     by_id_match = repo_model.get_repo_by_id(repo_name)
                     if by_id_match:
                         request.db_repo = by_id_match
                         redirect_if_creating(by_id_match)
                         return True
                     return False
             class RepoTypeRoutePredicate(object):
                 def __init__(self, val, config):
                     self.val = val or ['hg', 'git', 'svn']
                 def text(self):
                     return 'repo_accepted_type = %s' % self.val
                 phash = text
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     rhodecode_db_repo = request.db_repo
                     log.debug(
                         '%s checking repo type for %s in %s',
                         self.__class__.__name__, rhodecode_db_repo.repo_type, self.val)
                     if rhodecode_db_repo.repo_type in self.val:
                         return True
                     else:
                         log.warning('Current view is not supported for repo type:%s',
                                     rhodecode_db_repo.repo_type)
                         #
                         # h.flash(h.literal(
                         #     _('Action not supported for %s.' % rhodecode_repo.alias)),
                         #     category='warning')
                         # return redirect(
                         #     route_path('repo_summary', repo_name=cls.rhodecode_db_repo.repo_name))
                         return False
             class RepoGroupRoutePredicate(object):
                 def __init__(self, val, config):
                     self.val = val
                 def text(self):
                     return 'repo_group_route = %s' % self.val
                 phash = text
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     repo_group_name = info['match']['repo_group_name']
                     repo_group_model = repo_group.RepoGroupModel()
                     by_name_match = repo_group_model.get_by_group_name(
                         repo_group_name, cache=True)
                     if by_name_match:
                         # register this as request object we can re-use later
                         request.db_repo_group = by_name_match
                         return True
                     return False
             class UserGroupRoutePredicate(object):
                 def __init__(self, val, config):
                     self.val = val
                 def text(self):
                     return 'user_group_route = %s' % self.val
                 phash = text
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     user_group_id = info['match']['user_group_id']
                     user_group_model = user_group.UserGroup()
                     by_id_match = user_group_model.get(
                         user_group_id, cache=True)
                     if by_id_match:
                         # register this as request object we can re-use later
                         request.db_user_group = by_id_match
                         return True
                     return False
             class UserRoutePredicateBase(object):
                 supports_default = None
                 def __init__(self, val, config):
                     self.val = val
                 def text(self):
                     raise NotImplementedError()
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     user_id = info['match']['user_id']
                     user_model = user.User()
                     by_id_match = user_model.get(
                         user_id, cache=True)
                     if by_id_match:
                         # register this as request object we can re-use later
                         request.db_user = by_id_match
                         request.db_user_supports_default = self.supports_default
                         return True
                     return False
             class UserRoutePredicate(UserRoutePredicateBase):
                 supports_default = False
                 def text(self):
                     return 'user_route = %s' % self.val
                 phash = text
             class UserRouteWithDefaultPredicate(UserRoutePredicateBase):
                 supports_default = True
                 def text(self):
                     return 'user_with_default_route = %s' % self.val
                 phash = text
             def includeme(config):
                 config.add_route_predicate(
                     'repo_route', RepoRoutePredicate)
                 config.add_route_predicate(
                     'repo_accepted_types', RepoTypeRoutePredicate)
                 config.add_route_predicate(
                     'repo_group_route', RepoGroupRoutePredicate)
                 config.add_route_predicate(
                     'user_group_route', UserGroupRoutePredicate)
                 config.add_route_predicate(
                     'user_route_with_default', UserRouteWithDefaultPredicate)
                 config.add_route_predicate(
                     'user_route', UserRoutePredicate)

rhodecode/apps/repository/views/repo_files.py

0 +1 -1

             # -*- coding: utf-8 -*-
             # Copyright (C) 2011-2018 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import itertools
             import logging
             import os
             import shutil
             import tempfile
             import collections
             from pyramid.httpexceptions import HTTPNotFound, HTTPBadRequest, HTTPFound
             from pyramid.view import view_config
             from pyramid.renderers import render
             from pyramid.response import Response
             from rhodecode.apps._base import RepoAppView
             from rhodecode.controllers.utils import parse_path_ref
             from rhodecode.lib import diffs, helpers as h, caches
             from rhodecode.lib import audit_logger
             from rhodecode.lib.exceptions import NonRelativePathError
             from rhodecode.lib.codeblocks import (
                 filenode_as_lines_tokens, filenode_as_annotated_lines_tokens)
             from rhodecode.lib.utils2 import (
                 convert_line_endings, detect_mode, safe_str, str2bool)
             from rhodecode.lib.auth import (
                 LoginRequired, HasRepoPermissionAnyDecorator, CSRFRequired)
             from rhodecode.lib.vcs import path as vcspath
             from rhodecode.lib.vcs.backends.base import EmptyCommit
             from rhodecode.lib.vcs.conf import settings
             from rhodecode.lib.vcs.nodes import FileNode
             from rhodecode.lib.vcs.exceptions import (
                 RepositoryError, CommitDoesNotExistError, EmptyRepositoryError,
                 ImproperArchiveTypeError, VCSError, NodeAlreadyExistsError,
                 NodeDoesNotExistError, CommitError, NodeError)
             from rhodecode.model.scm import ScmModel
             from rhodecode.model.db import Repository
             log = logging.getLogger(__name__)
             class RepoFilesView(RepoAppView):
                 @staticmethod
                 def adjust_file_path_for_svn(f_path, repo):
                     """
                     Computes the relative path of `f_path`.
                     This is mainly based on prefix matching of the recognized tags and
                     branches in the underlying repository.
                     """
                     tags_and_branches = itertools.chain(
                         repo.branches.iterkeys(),
                         repo.tags.iterkeys())
                     tags_and_branches = sorted(tags_and_branches, key=len, reverse=True)
                     for name in tags_and_branches:
                         if f_path.startswith('{}/'.format(name)):
                             f_path = vcspath.relpath(f_path, name)
                             break
                     return f_path
                 def load_default_context(self):
                     c = self._get_local_tmpl_context(include_app_defaults=True)
                     c.rhodecode_repo = self.rhodecode_vcs_repo
                     return c
                 def _ensure_not_locked(self):
                     _ = self.request.translate
                     repo = self.db_repo
                     if repo.enable_locking and repo.locked[0]:
                         h.flash(_('This repository has been locked by %s on %s')
                                 % (h.person_by_id(repo.locked[0]),
                                 h.format_date(h.time_to_datetime(repo.locked[1]))),
                                 'warning')
                         files_url = h.route_path(
                             'repo_files:default_path',
                             repo_name=self.db_repo_name, commit_id='tip')
                         raise HTTPFound(files_url)
                 def _get_commit_and_path(self):
                     default_commit_id = self.db_repo.landing_rev[1]
                     default_f_path = '/'
                     commit_id = self.request.matchdict.get(
                         'commit_id', default_commit_id)
                     f_path = self._get_f_path(self.request.matchdict, default_f_path)
                     return commit_id, f_path
                 def _get_default_encoding(self, c):
                     enc_list = getattr(c, 'default_encodings', [])
                     return enc_list[0] if enc_list else 'UTF-8'
                 def _get_commit_or_redirect(self, commit_id, redirect_after=True):
                     """
                     This is a safe way to get commit. If an error occurs it redirects to
                     tip with proper message
                     :param commit_id: id of commit to fetch
                     :param redirect_after: toggle redirection
                     """
                     _ = self.request.translate
                     try:
                         return self.rhodecode_vcs_repo.get_commit(commit_id)
                     except EmptyRepositoryError:
                         if not redirect_after:
                             return None
                         _url = h.route_path(
                             'repo_files_add_file',
                             repo_name=self.db_repo_name, commit_id=0, f_path='',
                             _anchor='edit')
                         if h.HasRepoPermissionAny(
                                 'repository.write', 'repository.admin')(self.db_repo_name):
                             add_new = h.link_to(
                                 _('Click here to add a new file.'), _url, class_="alert-link")
                         else:
                             add_new = ""
                         h.flash(h.literal(
                             _('There are no files yet. %s') % add_new), category='warning')
                         raise HTTPFound(
                             h.route_path('repo_summary', repo_name=self.db_repo_name))
                     except (CommitDoesNotExistError, LookupError):
                         msg = _('No such commit exists for this repository')
                         h.flash(msg, category='error')
                         raise HTTPNotFound()
                     except RepositoryError as e:
                         h.flash(safe_str(h.escape(e)), category='error')
                         raise HTTPNotFound()
                 def _get_filenode_or_redirect(self, commit_obj, path):
                     """
                     Returns file_node, if error occurs or given path is directory,
                     it'll redirect to top level path
                     """
                     _ = self.request.translate
                     try:
                         file_node = commit_obj.get_node(path)
                         if file_node.is_dir():
                             raise RepositoryError('The given path is a directory')
                     except CommitDoesNotExistError:
                         log.exception('No such commit exists for this repository')
                         h.flash(_('No such commit exists for this repository'), category='error')
                         raise HTTPNotFound()
                     except RepositoryError as e:
                         log.warning('Repository error while fetching '
                                     'filenode `%s`. Err:%s', path, e)
                         h.flash(safe_str(h.escape(e)), category='error')
                         raise HTTPNotFound()
                     return file_node
                 def _is_valid_head(self, commit_id, repo):
                     # check if commit is a branch identifier- basically we cannot
                     # create multiple heads via file editing
                     valid_heads = repo.branches.keys() + repo.branches.values()
                     if h.is_svn(repo) and not repo.is_empty():
                         # Note: Subversion only has one head, we add it here in case there
                         # is no branch matched.
                         valid_heads.append(repo.get_commit(commit_idx=-1).raw_id)
                     # check if commit is a branch name or branch hash
                     return commit_id in valid_heads
                 def _get_tree_cache_manager(self, namespace_type):
                     _namespace = caches.get_repo_namespace_key(
                         namespace_type, self.db_repo_name)
                     return caches.get_cache_manager('repo_cache_long', _namespace)
                 def _get_tree_at_commit(
                         self, c, commit_id, f_path, full_load=False, force=False):
                     def _cached_tree():
                         log.debug('Generating cached file tree for %s, %s, %s',
                                   self.db_repo_name, commit_id, f_path)
                         c.full_load = full_load
                         return render(
                             'rhodecode:templates/files/files_browser_tree.mako',
                             self._get_template_context(c), self.request)
                     cache_manager = self._get_tree_cache_manager(caches.FILE_TREE)
                     cache_key = caches.compute_key_from_params(
                         self.db_repo_name, commit_id, f_path)
                     if force:
                         # we want to force recompute of caches
                         cache_manager.remove_value(cache_key)
                     return cache_manager.get(cache_key, createfunc=_cached_tree)
                 def _get_archive_spec(self, fname):
                     log.debug('Detecting archive spec for: `%s`', fname)
                     fileformat = None
                     ext = None
                     content_type = None
                     for a_type, ext_data in settings.ARCHIVE_SPECS.items():
                         content_type, extension = ext_data
                         if fname.endswith(extension):
                             fileformat = a_type
                             log.debug('archive is of type: %s', fileformat)
                             ext = extension
                             break
                     if not fileformat:
                         raise ValueError()
                     # left over part of whole fname is the commit
                     commit_id = fname[:-len(ext)]
                     return commit_id, ext, fileformat, content_type
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_archivefile', request_method='GET',
                     renderer=None)
                 def repo_archivefile(self):
                     # archive cache config
                     from rhodecode import CONFIG
                     _ = self.request.translate
                     self.load_default_context()
                     fname = self.request.matchdict['fname']
                     subrepos = self.request.GET.get('subrepos') == 'true'
                     if not self.db_repo.enable_downloads:
                         return Response(_('Downloads disabled'))
                     try:
                         commit_id, ext, fileformat, content_type = \
                             self._get_archive_spec(fname)
                     except ValueError:
                         return Response(_('Unknown archive type for: `{}`').format(
                             h.escape(fname)))
                     try:
                         commit = self.rhodecode_vcs_repo.get_commit(commit_id)
                     except CommitDoesNotExistError:
                         return Response(_('Unknown commit_id {}').format(
                             h.escape(commit_id)))
                     except EmptyRepositoryError:
                         return Response(_('Empty repository'))
                     archive_name = '%s-%s%s%s' % (
                         safe_str(self.db_repo_name.replace('/', '_')),
                         '-sub' if subrepos else '',
                         safe_str(commit.short_id), ext)
                     use_cached_archive = False
                     archive_cache_enabled = CONFIG.get(
                         'archive_cache_dir') and not self.request.GET.get('no_cache')
                     if archive_cache_enabled:
                         # check if we it's ok to write
                         if not os.path.isdir(CONFIG['archive_cache_dir']):
                             os.makedirs(CONFIG['archive_cache_dir'])
                         cached_archive_path = os.path.join(
                             CONFIG['archive_cache_dir'], archive_name)
                         if os.path.isfile(cached_archive_path):
                             log.debug('Found cached archive in %s', cached_archive_path)
                             fd, archive = None, cached_archive_path
                             use_cached_archive = True
                         else:
                             log.debug('Archive %s is not yet cached', archive_name)
                     if not use_cached_archive:
                         # generate new archive
                         fd, archive = tempfile.mkstemp()
                         log.debug('Creating new temp archive in %s', archive)
                         try:
                             commit.archive_repo(archive, kind=fileformat, subrepos=subrepos)
                         except ImproperArchiveTypeError:
                             return _('Unknown archive type')
                         if archive_cache_enabled:
                             # if we generated the archive and we have cache enabled
                             # let's use this for future
                             log.debug('Storing new archive in %s', cached_archive_path)
                             shutil.move(archive, cached_archive_path)
                             archive = cached_archive_path
                     # store download action
                     audit_logger.store_web(
                         'repo.archive.download', action_data={
                             'user_agent': self.request.user_agent,
                             'archive_name': archive_name,
                             'archive_spec': fname,
                             'archive_cached': use_cached_archive},
                         user=self._rhodecode_user,
                         repo=self.db_repo,
                         commit=True
                     )
                     def get_chunked_archive(archive):
                         with open(archive, 'rb') as stream:
                             while True:
                                 data = stream.read(16 * 1024)
                                 if not data:
                                     if fd:  # fd means we used temporary file
                                         os.close(fd)
                                     if not archive_cache_enabled:
                                         log.debug('Destroying temp archive %s', archive)
                                         os.remove(archive)
                                     break
                                 yield data
                     response = Response(app_iter=get_chunked_archive(archive))
                     response.content_disposition = str(
                         'attachment; filename=%s' % archive_name)
                     response.content_type = str(content_type)
                     return response
                 def _get_file_node(self, commit_id, f_path):
                     if commit_id not in ['', None, 'None', '0' * 12, '0' * 40]:
                         commit = self.rhodecode_vcs_repo.get_commit(commit_id=commit_id)
                         try:
                             node = commit.get_node(f_path)
                             if node.is_dir():
                                 raise NodeError('%s path is a %s not a file'
                                                 % (node, type(node)))
                         except NodeDoesNotExistError:
                             commit = EmptyCommit(
                                 commit_id=commit_id,
                                 idx=commit.idx,
                                 repo=commit.repository,
                                 alias=commit.repository.alias,
                                 message=commit.message,
                                 author=commit.author,
                                 date=commit.date)
                             node = FileNode(f_path, '', commit=commit)
                     else:
                         commit = EmptyCommit(
                             repo=self.rhodecode_vcs_repo,
                             alias=self.rhodecode_vcs_repo.alias)
                         node = FileNode(f_path, '', commit=commit)
                     return node
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_files_diff', request_method='GET',
                     renderer=None)
                 def repo_files_diff(self):
                     c = self.load_default_context()
                     f_path = self._get_f_path(self.request.matchdict)
                     diff1 = self.request.GET.get('diff1', '')
                     diff2 = self.request.GET.get('diff2', '')
                     path1, diff1 = parse_path_ref(diff1, default_path=f_path)
                     ignore_whitespace = str2bool(self.request.GET.get('ignorews'))
                     line_context = self.request.GET.get('context', 3)
                     if not any((diff1, diff2)):
                         h.flash(
                             'Need query parameter "diff1" or "diff2" to generate a diff.',
                             category='error')
                         raise HTTPBadRequest()
                     c.action = self.request.GET.get('diff')
                     if c.action not in ['download', 'raw']:
                         compare_url = h.route_path(
                             'repo_compare',
                             repo_name=self.db_repo_name,
                             source_ref_type='rev',
                             source_ref=diff1,
                             target_repo=self.db_repo_name,
                             target_ref_type='rev',
                             target_ref=diff2,
                             _query=dict(f_path=f_path))
                         # redirect to new view if we render diff
                         raise HTTPFound(compare_url)
                     try:
                         node1 = self._get_file_node(diff1, path1)
                         node2 = self._get_file_node(diff2, f_path)
                     except (RepositoryError, NodeError):
                         log.exception("Exception while trying to get node from repository")
                         raise HTTPFound(
                             h.route_path('repo_files', repo_name=self.db_repo_name,
                                          commit_id='tip', f_path=f_path))
                     if all(isinstance(node.commit, EmptyCommit)
                            for node in (node1, node2)):
                         raise HTTPNotFound()
                     c.commit_1 = node1.commit
                     c.commit_2 = node2.commit
                     if c.action == 'download':
                         _diff = diffs.get_gitdiff(node1, node2,
                                                   ignore_whitespace=ignore_whitespace,
                                                   context=line_context)
                         diff = diffs.DiffProcessor(_diff, format='gitdiff')
                         response = Response(self.path_filter.get_raw_patch(diff))
                         response.content_type = 'text/plain'
                         response.content_disposition = (
                             'attachment; filename=%s_%s_vs_%s.diff' % (f_path, diff1, diff2)
                         )
                         charset = self._get_default_encoding(c)
                         if charset:
                             response.charset = charset
                         return response
                     elif c.action == 'raw':
                         _diff = diffs.get_gitdiff(node1, node2,
                                                   ignore_whitespace=ignore_whitespace,
                                                   context=line_context)
                         diff = diffs.DiffProcessor(_diff, format='gitdiff')
                         response = Response(self.path_filter.get_raw_patch(diff))
                         response.content_type = 'text/plain'
                         charset = self._get_default_encoding(c)
                         if charset:
                             response.charset = charset
                         return response
                     # in case we ever end up here
                     raise HTTPNotFound()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_files_diff_2way_redirect', request_method='GET',
                     renderer=None)
                 def repo_files_diff_2way_redirect(self):
                     """
                     Kept only to make OLD links work
                     """
-                    f_path = self._get_f_path(self.request.matchdict)
+                    f_path = self._get_f_path_unchecked(self.request.matchdict)
                     diff1 = self.request.GET.get('diff1', '')
                     diff2 = self.request.GET.get('diff2', '')
                     if not any((diff1, diff2)):
                         h.flash(
                             'Need query parameter "diff1" or "diff2" to generate a diff.',
                             category='error')
                         raise HTTPBadRequest()
                     compare_url = h.route_path(
                         'repo_compare',
                         repo_name=self.db_repo_name,
                         source_ref_type='rev',
                         source_ref=diff1,
                         target_ref_type='rev',
                         target_ref=diff2,
                         _query=dict(f_path=f_path, diffmode='sideside',
                                     target_repo=self.db_repo_name,))
                     raise HTTPFound(compare_url)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_files', request_method='GET',
                     renderer=None)
                 @view_config(
                     route_name='repo_files:default_path', request_method='GET',
                     renderer=None)
                 @view_config(
                     route_name='repo_files:default_commit', request_method='GET',
                     renderer=None)
                 @view_config(
                     route_name='repo_files:rendered', request_method='GET',
                     renderer=None)
                 @view_config(
                     route_name='repo_files:annotated', request_method='GET',
                     renderer=None)
                 def repo_files(self):
                     c = self.load_default_context()
                     view_name = getattr(self.request.matched_route, 'name', None)
                     c.annotate = view_name == 'repo_files:annotated'
                     # default is false, but .rst/.md files later are auto rendered, we can
                     # overwrite auto rendering by setting this GET flag
                     c.renderer = view_name == 'repo_files:rendered' or \
                                     not self.request.GET.get('no-render', False)
                     # redirect to given commit_id from form if given
                     get_commit_id = self.request.GET.get('at_rev', None)
                     if get_commit_id:
                         self._get_commit_or_redirect(get_commit_id)
                     commit_id, f_path = self._get_commit_and_path()
                     c.commit = self._get_commit_or_redirect(commit_id)
                     c.branch = self.request.GET.get('branch', None)
                     c.f_path = f_path
                     # prev link
                     try:
                         prev_commit = c.commit.prev(c.branch)
                         c.prev_commit = prev_commit
                         c.url_prev = h.route_path(
                             'repo_files', repo_name=self.db_repo_name,
                             commit_id=prev_commit.raw_id, f_path=f_path)
                         if c.branch:
                             c.url_prev += '?branch=%s' % c.branch
                     except (CommitDoesNotExistError, VCSError):
                         c.url_prev = '#'
                         c.prev_commit = EmptyCommit()
                     # next link
                     try:
                         next_commit = c.commit.next(c.branch)
                         c.next_commit = next_commit
                         c.url_next = h.route_path(
                             'repo_files', repo_name=self.db_repo_name,
                             commit_id=next_commit.raw_id, f_path=f_path)
                         if c.branch:
                             c.url_next += '?branch=%s' % c.branch
                     except (CommitDoesNotExistError, VCSError):
                         c.url_next = '#'
                         c.next_commit = EmptyCommit()
                     # files or dirs
                     try:
                         c.file = c.commit.get_node(f_path)
                         c.file_author = True
                         c.file_tree = ''
                         # load file content
                         if c.file.is_file():
                             c.lf_node = c.file.get_largefile_node()
                             c.file_source_page = 'true'
                             c.file_last_commit = c.file.last_commit
                             if c.file.size < c.visual.cut_off_limit_diff:
                                 if c.annotate:  # annotation has precedence over renderer
                                     c.annotated_lines = filenode_as_annotated_lines_tokens(
                                         c.file
                                     )
                                 else:
                                     c.renderer = (
                                         c.renderer and h.renderer_from_filename(c.file.path)
                                     )
                                     if not c.renderer:
                                         c.lines = filenode_as_lines_tokens(c.file)
                             c.on_branch_head = self._is_valid_head(
                                 commit_id, self.rhodecode_vcs_repo)
                             branch = c.commit.branch if (
                                 c.commit.branch and '/' not in c.commit.branch) else None
                             c.branch_or_raw_id = branch or c.commit.raw_id
                             c.branch_name = c.commit.branch or h.short_id(c.commit.raw_id)
                             author = c.file_last_commit.author
                             c.authors = [[
                                 h.email(author),
                                 h.person(author, 'username_or_name_or_email'),
                             ]]
                         else:  # load tree content at path
                             c.file_source_page = 'false'
                             c.authors = []
                             # this loads a simple tree without metadata to speed things up
                             # later via ajax we call repo_nodetree_full and fetch whole
                             c.file_tree = self._get_tree_at_commit(
                                 c, c.commit.raw_id, f_path)
                     except RepositoryError as e:
                         h.flash(safe_str(h.escape(e)), category='error')
                         raise HTTPNotFound()
                     if self.request.environ.get('HTTP_X_PJAX'):
                         html = render('rhodecode:templates/files/files_pjax.mako',
                                       self._get_template_context(c), self.request)
                     else:
                         html = render('rhodecode:templates/files/files.mako',
                                       self._get_template_context(c), self.request)
                     return Response(html)
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_files:annotated_previous', request_method='GET',
                     renderer=None)
                 def repo_files_annotated_previous(self):
                     self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     commit = self._get_commit_or_redirect(commit_id)
                     prev_commit_id = commit.raw_id
                     line_anchor = self.request.GET.get('line_anchor')
                     is_file = False
                     try:
                         _file = commit.get_node(f_path)
                         is_file = _file.is_file()
                     except (NodeDoesNotExistError, CommitDoesNotExistError, VCSError):
                         pass
                     if is_file:
                         history = commit.get_file_history(f_path)
                         prev_commit_id = history[1].raw_id \
                             if len(history) > 1 else prev_commit_id
                     prev_url = h.route_path(
                         'repo_files:annotated', repo_name=self.db_repo_name,
                         commit_id=prev_commit_id, f_path=f_path,
                         _anchor='L{}'.format(line_anchor))
                     raise HTTPFound(prev_url)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_nodetree_full', request_method='GET',
                     renderer=None, xhr=True)
                 @view_config(
                     route_name='repo_nodetree_full:default_path', request_method='GET',
                     renderer=None, xhr=True)
                 def repo_nodetree_full(self):
                     """
                     Returns rendered html of file tree that contains commit date,
                     author, commit_id for the specified combination of
                     repo, commit_id and file path
                     """
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     commit = self._get_commit_or_redirect(commit_id)
                     try:
                         dir_node = commit.get_node(f_path)
                     except RepositoryError as e:
                         return Response('error: {}'.format(h.escape(safe_str(e))))
                     if dir_node.is_file():
                         return Response('')
                     c.file = dir_node
                     c.commit = commit
                     # using force=True here, make a little trick. We flush the cache and
                     # compute it using the same key as without previous full_load, so now
                     # the fully loaded tree is now returned instead of partial,
                     # and we store this in caches
                     html = self._get_tree_at_commit(
                         c, commit.raw_id, dir_node.path, full_load=True, force=True)
                     return Response(html)
                 def _get_attachement_disposition(self, f_path):
                     return 'attachment; filename=%s' % \
                         safe_str(f_path.split(Repository.NAME_SEP)[-1])
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_file_raw', request_method='GET',
                     renderer=None)
                 def repo_file_raw(self):
                     """
                     Action for show as raw, some mimetypes are "rendered",
                     those include images, icons.
                     """
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     commit = self._get_commit_or_redirect(commit_id)
                     file_node = self._get_filenode_or_redirect(commit, f_path)
                     raw_mimetype_mapping = {
                         # map original mimetype to a mimetype used for "show as raw"
                         # you can also provide a content-disposition to override the
                         # default "attachment" disposition.
                         # orig_type: (new_type, new_dispo)
                         # show images inline:
                         # Do not re-add SVG: it is unsafe and permits XSS attacks. One can
                         # for example render an SVG with javascript inside or even render
                         # HTML.
                         'image/x-icon': ('image/x-icon', 'inline'),
                         'image/png': ('image/png', 'inline'),
                         'image/gif': ('image/gif', 'inline'),
                         'image/jpeg': ('image/jpeg', 'inline'),
                         'application/pdf': ('application/pdf', 'inline'),
                     }
                     mimetype = file_node.mimetype
                     try:
                         mimetype, disposition = raw_mimetype_mapping[mimetype]
                     except KeyError:
                         # we don't know anything special about this, handle it safely
                         if file_node.is_binary:
                             # do same as download raw for binary files
                             mimetype, disposition = 'application/octet-stream', 'attachment'
                         else:
                             # do not just use the original mimetype, but force text/plain,
                             # otherwise it would serve text/html and that might be unsafe.
                             # Note: underlying vcs library fakes text/plain mimetype if the
                             # mimetype can not be determined and it thinks it is not
                             # binary.This might lead to erroneous text display in some
                             # cases, but helps in other cases, like with text files
                             # without extension.
                             mimetype, disposition = 'text/plain', 'inline'
                     if disposition == 'attachment':
                         disposition = self._get_attachement_disposition(f_path)
                     def stream_node():
                         yield file_node.raw_bytes
                     response = Response(app_iter=stream_node())
                     response.content_disposition = disposition
                     response.content_type = mimetype
                     charset = self._get_default_encoding(c)
                     if charset:
                         response.charset = charset
                     return response
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_file_download', request_method='GET',
                     renderer=None)
                 @view_config(
                     route_name='repo_file_download:legacy', request_method='GET',
                     renderer=None)
                 def repo_file_download(self):
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     commit = self._get_commit_or_redirect(commit_id)
                     file_node = self._get_filenode_or_redirect(commit, f_path)
                     if self.request.GET.get('lf'):
                         # only if lf get flag is passed, we download this file
                         # as LFS/Largefile
                         lf_node = file_node.get_largefile_node()
                         if lf_node:
                             # overwrite our pointer with the REAL large-file
                             file_node = lf_node
                     disposition = self._get_attachement_disposition(f_path)
                     def stream_node():
                         yield file_node.raw_bytes
                     response = Response(app_iter=stream_node())
                     response.content_disposition = disposition
                     response.content_type = file_node.mimetype
                     charset = self._get_default_encoding(c)
                     if charset:
                         response.charset = charset
                     return response
                 def _get_nodelist_at_commit(self, repo_name, commit_id, f_path):
                     def _cached_nodes():
                         log.debug('Generating cached nodelist for %s, %s, %s',
                                   repo_name, commit_id, f_path)
                         try:
                             _d, _f = ScmModel().get_nodes(
                                 repo_name, commit_id, f_path, flat=False)
                         except (RepositoryError, CommitDoesNotExistError, Exception) as e:
                             log.exception(safe_str(e))
                             h.flash(safe_str(h.escape(e)), category='error')
                             raise HTTPFound(h.route_path(
                                 'repo_files', repo_name=self.db_repo_name,
                                 commit_id='tip', f_path='/'))
                         return _d + _f
                     cache_manager = self._get_tree_cache_manager(
                         caches.FILE_SEARCH_TREE_META)
                     cache_key = caches.compute_key_from_params(
                         repo_name, commit_id, f_path)
                     return cache_manager.get(cache_key, createfunc=_cached_nodes)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_files_nodelist', request_method='GET',
                     renderer='json_ext', xhr=True)
                 def repo_nodelist(self):
                     self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     commit = self._get_commit_or_redirect(commit_id)
                     metadata = self._get_nodelist_at_commit(
                         self.db_repo_name, commit.raw_id, f_path)
                     return {'nodes': metadata}
                 def _create_references(
                         self, branches_or_tags, symbolic_reference, f_path):
                     items = []
                     for name, commit_id in branches_or_tags.items():
                         sym_ref = symbolic_reference(commit_id, name, f_path)
                         items.append((sym_ref, name))
                     return items
                 def _symbolic_reference(self, commit_id, name, f_path):
                     return commit_id
                 def _symbolic_reference_svn(self, commit_id, name, f_path):
                     new_f_path = vcspath.join(name, f_path)
                     return u'%s@%s' % (new_f_path, commit_id)
                 def _get_node_history(self, commit_obj, f_path, commits=None):
                     """
                     get commit history for given node
                     :param commit_obj: commit to calculate history
                     :param f_path: path for node to calculate history for
                     :param commits: if passed don't calculate history and take
                         commits defined in this list
                     """
                     _ = self.request.translate
                     # calculate history based on tip
                     tip = self.rhodecode_vcs_repo.get_commit()
                     if commits is None:
                         pre_load = ["author", "branch"]
                         try:
                             commits = tip.get_file_history(f_path, pre_load=pre_load)
                         except (NodeDoesNotExistError, CommitError):
                             # this node is not present at tip!
                             commits = commit_obj.get_file_history(f_path, pre_load=pre_load)
                     history = []
                     commits_group = ([], _("Changesets"))
                     for commit in commits:
                         branch = ' (%s)' % commit.branch if commit.branch else ''
                         n_desc = 'r%s:%s%s' % (commit.idx, commit.short_id, branch)
                         commits_group[0].append((commit.raw_id, n_desc,))
                     history.append(commits_group)
                     symbolic_reference = self._symbolic_reference
                     if self.rhodecode_vcs_repo.alias == 'svn':
                         adjusted_f_path = RepoFilesView.adjust_file_path_for_svn(
                             f_path, self.rhodecode_vcs_repo)
                         if adjusted_f_path != f_path:
                             log.debug(
                                 'Recognized svn tag or branch in file "%s", using svn '
                                 'specific symbolic references', f_path)
                             f_path = adjusted_f_path
                             symbolic_reference = self._symbolic_reference_svn
                     branches = self._create_references(
                         self.rhodecode_vcs_repo.branches, symbolic_reference, f_path)
                     branches_group = (branches, _("Branches"))
                     tags = self._create_references(
                         self.rhodecode_vcs_repo.tags, symbolic_reference, f_path)
                     tags_group = (tags, _("Tags"))
                     history.append(branches_group)
                     history.append(tags_group)
                     return history, commits
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_file_history', request_method='GET',
                     renderer='json_ext')
                 def repo_file_history(self):
                     self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     commit = self._get_commit_or_redirect(commit_id)
                     file_node = self._get_filenode_or_redirect(commit, f_path)
                     if file_node.is_file():
                         file_history, _hist = self._get_node_history(commit, f_path)
                         res = []
                         for obj in file_history:
                             res.append({
                                 'text': obj[1],
                                 'children': [{'id': o[0], 'text': o[1]} for o in obj[0]]
                             })
                         data = {
                             'more': False,
                             'results': res
                         }
                         return data
                     log.warning('Cannot fetch history for directory')
                     raise HTTPBadRequest()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_file_authors', request_method='GET',
                     renderer='rhodecode:templates/files/file_authors_box.mako')
                 def repo_file_authors(self):
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     commit = self._get_commit_or_redirect(commit_id)
                     file_node = self._get_filenode_or_redirect(commit, f_path)
                     if not file_node.is_file():
                         raise HTTPBadRequest()
                     c.file_last_commit = file_node.last_commit
                     if self.request.GET.get('annotate') == '1':
                         # use _hist from annotation if annotation mode is on
                         commit_ids = set(x[1] for x in file_node.annotate)
                         _hist = (
                             self.rhodecode_vcs_repo.get_commit(commit_id)
                             for commit_id in commit_ids)
                     else:
                         _f_history, _hist = self._get_node_history(commit, f_path)
                     c.file_author = False
                     unique = collections.OrderedDict()
                     for commit in _hist:
                         author = commit.author
                         if author not in unique:
                             unique[commit.author] = [
                                 h.email(author),
                                 h.person(author, 'username_or_name_or_email'),
 # counter
                             ]
                         else:
                             # increase counter
                             unique[commit.author][2] += 1
                     c.authors = [val for val in unique.values()]
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_files_remove_file', request_method='GET',
                     renderer='rhodecode:templates/files/files_delete.mako')
                 def repo_files_remove_file(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     self._ensure_not_locked()
                     if not self._is_valid_head(commit_id, self.rhodecode_vcs_repo):
                         h.flash(_('You can only delete files with commit '
                                   'being a valid branch '), category='warning')
                         raise HTTPFound(
                             h.route_path('repo_files',
                                          repo_name=self.db_repo_name, commit_id='tip',
                                          f_path=f_path))
                     c.commit = self._get_commit_or_redirect(commit_id)
                     c.file = self._get_filenode_or_redirect(c.commit, f_path)
                     c.default_message = _(
                         'Deleted file {} via RhodeCode Enterprise').format(f_path)
                     c.f_path = f_path
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='repo_files_delete_file', request_method='POST',
                     renderer=None)
                 def repo_files_delete_file(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     self._ensure_not_locked()
                     if not self._is_valid_head(commit_id, self.rhodecode_vcs_repo):
                         h.flash(_('You can only delete files with commit '
                                   'being a valid branch '), category='warning')
                         raise HTTPFound(
                             h.route_path('repo_files',
                                          repo_name=self.db_repo_name, commit_id='tip',
                                          f_path=f_path))
                     c.commit = self._get_commit_or_redirect(commit_id)
                     c.file = self._get_filenode_or_redirect(c.commit, f_path)
                     c.default_message = _(
                         'Deleted file {} via RhodeCode Enterprise').format(f_path)
                     c.f_path = f_path
                     node_path = f_path
                     author = self._rhodecode_db_user.full_contact
                     message = self.request.POST.get('message') or c.default_message
                     try:
                         nodes = {
                             node_path: {
                                 'content': ''
                             }
                         }
                         ScmModel().delete_nodes(
                             user=self._rhodecode_db_user.user_id, repo=self.db_repo,
                             message=message,
                             nodes=nodes,
                             parent_commit=c.commit,
                             author=author,
                         )
                         h.flash(
                             _('Successfully deleted file `{}`').format(
                                 h.escape(f_path)), category='success')
                     except Exception:
                         log.exception('Error during commit operation')
                         h.flash(_('Error occurred during commit'), category='error')
                     raise HTTPFound(
                         h.route_path('repo_commit', repo_name=self.db_repo_name,
                                      commit_id='tip'))
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_files_edit_file', request_method='GET',
                     renderer='rhodecode:templates/files/files_edit.mako')
                 def repo_files_edit_file(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     self._ensure_not_locked()
                     if not self._is_valid_head(commit_id, self.rhodecode_vcs_repo):
                         h.flash(_('You can only edit files with commit '
                                   'being a valid branch '), category='warning')
                         raise HTTPFound(
                             h.route_path('repo_files',
                                          repo_name=self.db_repo_name, commit_id='tip',
                                          f_path=f_path))
                     c.commit = self._get_commit_or_redirect(commit_id)
                     c.file = self._get_filenode_or_redirect(c.commit, f_path)
                     if c.file.is_binary:
                         files_url = h.route_path(
                             'repo_files',
                             repo_name=self.db_repo_name,
                             commit_id=c.commit.raw_id, f_path=f_path)
                         raise HTTPFound(files_url)
                     c.default_message = _(
                         'Edited file {} via RhodeCode Enterprise').format(f_path)
                     c.f_path = f_path
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='repo_files_update_file', request_method='POST',
                     renderer=None)
                 def repo_files_update_file(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     self._ensure_not_locked()
                     if not self._is_valid_head(commit_id, self.rhodecode_vcs_repo):
                         h.flash(_('You can only edit files with commit '
                                   'being a valid branch '), category='warning')
                         raise HTTPFound(
                             h.route_path('repo_files',
                                          repo_name=self.db_repo_name, commit_id='tip',
                                          f_path=f_path))
                     c.commit = self._get_commit_or_redirect(commit_id)
                     c.file = self._get_filenode_or_redirect(c.commit, f_path)
                     if c.file.is_binary:
                         raise HTTPFound(
                             h.route_path('repo_files',
                                          repo_name=self.db_repo_name,
                                          commit_id=c.commit.raw_id,
                                          f_path=f_path))
                     c.default_message = _(
                         'Edited file {} via RhodeCode Enterprise').format(f_path)
                     c.f_path = f_path
                     old_content = c.file.content
                     sl = old_content.splitlines(1)
                     first_line = sl[0] if sl else ''
                     r_post = self.request.POST
                     # modes:  0 - Unix, 1 - Mac, 2 - DOS
                     mode = detect_mode(first_line, 0)
                     content = convert_line_endings(r_post.get('content', ''), mode)
                     message = r_post.get('message') or c.default_message
                     org_f_path = c.file.unicode_path
                     filename = r_post['filename']
                     org_filename = c.file.name
                     if content == old_content and filename == org_filename:
                         h.flash(_('No changes'), category='warning')
                         raise HTTPFound(
                             h.route_path('repo_commit', repo_name=self.db_repo_name,
                                          commit_id='tip'))
                     try:
                         mapping = {
                             org_f_path: {
                                 'org_filename': org_f_path,
                                 'filename': os.path.join(c.file.dir_path, filename),
                                 'content': content,
                                 'lexer': '',
                                 'op': 'mod',
                             }
                         }
                         ScmModel().update_nodes(
                             user=self._rhodecode_db_user.user_id,
                             repo=self.db_repo,
                             message=message,
                             nodes=mapping,
                             parent_commit=c.commit,
                         )
                         h.flash(
                             _('Successfully committed changes to file `{}`').format(
                                 h.escape(f_path)), category='success')
                     except Exception:
                         log.exception('Error occurred during commit')
                         h.flash(_('Error occurred during commit'), category='error')
                     raise HTTPFound(
                         h.route_path('repo_commit', repo_name=self.db_repo_name,
                                      commit_id='tip'))
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 @view_config(
                     route_name='repo_files_add_file', request_method='GET',
                     renderer='rhodecode:templates/files/files_add.mako')
                 def repo_files_add_file(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     self._ensure_not_locked()
                     c.commit = self._get_commit_or_redirect(commit_id, redirect_after=False)
                     if c.commit is None:
                         c.commit = EmptyCommit(alias=self.rhodecode_vcs_repo.alias)
                     c.default_message = (_('Added file via RhodeCode Enterprise'))
                     c.f_path = f_path.lstrip('/')  # ensure not relative path
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='repo_files_create_file', request_method='POST',
                     renderer=None)
                 def repo_files_create_file(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     commit_id, f_path = self._get_commit_and_path()
                     self._ensure_not_locked()
                     r_post = self.request.POST
                     c.commit = self._get_commit_or_redirect(
                         commit_id, redirect_after=False)
                     if c.commit is None:
                         c.commit = EmptyCommit(alias=self.rhodecode_vcs_repo.alias)
                     c.default_message = (_('Added file via RhodeCode Enterprise'))
                     c.f_path = f_path
                     unix_mode = 0
                     content = convert_line_endings(r_post.get('content', ''), unix_mode)
                     message = r_post.get('message') or c.default_message
                     filename = r_post.get('filename')
                     location = r_post.get('location', '')  # dir location
                     file_obj = r_post.get('upload_file', None)
                     if file_obj is not None and hasattr(file_obj, 'filename'):
                         filename = r_post.get('filename_upload')
                         content = file_obj.file
                         if hasattr(content, 'file'):
                             # non posix systems store real file under file attr
                             content = content.file
                     if self.rhodecode_vcs_repo.is_empty:
                         default_redirect_url = h.route_path(
                             'repo_summary', repo_name=self.db_repo_name)
                     else:
                         default_redirect_url = h.route_path(
                             'repo_commit', repo_name=self.db_repo_name, commit_id='tip')
                     # If there's no commit, redirect to repo summary
                     if type(c.commit) is EmptyCommit:
                         redirect_url = h.route_path(
                             'repo_summary', repo_name=self.db_repo_name)
                     else:
                         redirect_url = default_redirect_url
                     if not filename:
                         h.flash(_('No filename'), category='warning')
                         raise HTTPFound(redirect_url)
                     # extract the location from filename,
                     # allows using foo/bar.txt syntax to create subdirectories
                     subdir_loc = filename.rsplit('/', 1)
                     if len(subdir_loc) == 2:
                         location = os.path.join(location, subdir_loc[0])
                     # strip all crap out of file, just leave the basename
                     filename = os.path.basename(filename)
                     node_path = os.path.join(location, filename)
                     author = self._rhodecode_db_user.full_contact
                     try:
                         nodes = {
                             node_path: {
                                 'content': content
                             }
                         }
                         ScmModel().create_nodes(
                             user=self._rhodecode_db_user.user_id,
                             repo=self.db_repo,
                             message=message,
                             nodes=nodes,
                             parent_commit=c.commit,
                             author=author,
                         )
                         h.flash(
                             _('Successfully committed new file `{}`').format(
                                 h.escape(node_path)), category='success')
                     except NonRelativePathError:
                         log.exception('Non Relative path found')
                         h.flash(_(
                             'The location specified must be a relative path and must not '
                             'contain .. in the path'), category='warning')
                         raise HTTPFound(default_redirect_url)
                     except (NodeError, NodeAlreadyExistsError) as e:
                         h.flash(_(h.escape(e)), category='error')
                     except Exception:
                         log.exception('Error occurred during commit')
                         h.flash(_('Error occurred during commit'), category='error')
                     raise HTTPFound(default_redirect_url)

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages