##// END OF EJS Templates
user: deprecated usage of api_keys....
marcink -
r1953:9d49c7f1 default
parent child Browse files
Show More

The requested changes are too big and content was truncated. Show full diff

@@ -1,281 +1,281 b''
1 # -*- coding: utf-8 -*-
1 # -*- coding: utf-8 -*-
2
2
3 # Copyright (C) 2010-2017 RhodeCode GmbH
3 # Copyright (C) 2010-2017 RhodeCode GmbH
4 #
4 #
5 # This program is free software: you can redistribute it and/or modify
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU Affero General Public License, version 3
6 # it under the terms of the GNU Affero General Public License, version 3
7 # (only), as published by the Free Software Foundation.
7 # (only), as published by the Free Software Foundation.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU Affero General Public License
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 #
16 #
17 # This program is dual-licensed. If you wish to learn more about the
17 # This program is dual-licensed. If you wish to learn more about the
18 # RhodeCode Enterprise Edition, including its added features, Support services,
18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20
20
21 import pytest
21 import pytest
22
22
23 from rhodecode.model.db import User, UserApiKeys, UserEmailMap
23 from rhodecode.model.db import User, UserApiKeys, UserEmailMap
24 from rhodecode.model.meta import Session
24 from rhodecode.model.meta import Session
25 from rhodecode.model.user import UserModel
25 from rhodecode.model.user import UserModel
26
26
27 from rhodecode.tests import (
27 from rhodecode.tests import (
28 TestController, TEST_USER_REGULAR_LOGIN, assert_session_flash)
28 TestController, TEST_USER_REGULAR_LOGIN, assert_session_flash)
29 from rhodecode.tests.fixture import Fixture
29 from rhodecode.tests.fixture import Fixture
30
30
31 fixture = Fixture()
31 fixture = Fixture()
32
32
33
33
34 def route_path(name, params=None, **kwargs):
34 def route_path(name, params=None, **kwargs):
35 import urllib
35 import urllib
36 from rhodecode.apps._base import ADMIN_PREFIX
36 from rhodecode.apps._base import ADMIN_PREFIX
37
37
38 base_url = {
38 base_url = {
39 'users':
39 'users':
40 ADMIN_PREFIX + '/users',
40 ADMIN_PREFIX + '/users',
41 'users_data':
41 'users_data':
42 ADMIN_PREFIX + '/users_data',
42 ADMIN_PREFIX + '/users_data',
43 'edit_user_auth_tokens':
43 'edit_user_auth_tokens':
44 ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens',
44 ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens',
45 'edit_user_auth_tokens_add':
45 'edit_user_auth_tokens_add':
46 ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens/new',
46 ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens/new',
47 'edit_user_auth_tokens_delete':
47 'edit_user_auth_tokens_delete':
48 ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens/delete',
48 ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens/delete',
49
49
50 'edit_user_emails':
50 'edit_user_emails':
51 ADMIN_PREFIX + '/users/{user_id}/edit/emails',
51 ADMIN_PREFIX + '/users/{user_id}/edit/emails',
52 'edit_user_emails_add':
52 'edit_user_emails_add':
53 ADMIN_PREFIX + '/users/{user_id}/edit/emails/new',
53 ADMIN_PREFIX + '/users/{user_id}/edit/emails/new',
54 'edit_user_emails_delete':
54 'edit_user_emails_delete':
55 ADMIN_PREFIX + '/users/{user_id}/edit/emails/delete',
55 ADMIN_PREFIX + '/users/{user_id}/edit/emails/delete',
56
56
57 'edit_user_ips':
57 'edit_user_ips':
58 ADMIN_PREFIX + '/users/{user_id}/edit/ips',
58 ADMIN_PREFIX + '/users/{user_id}/edit/ips',
59 'edit_user_ips_add':
59 'edit_user_ips_add':
60 ADMIN_PREFIX + '/users/{user_id}/edit/ips/new',
60 ADMIN_PREFIX + '/users/{user_id}/edit/ips/new',
61 'edit_user_ips_delete':
61 'edit_user_ips_delete':
62 ADMIN_PREFIX + '/users/{user_id}/edit/ips/delete',
62 ADMIN_PREFIX + '/users/{user_id}/edit/ips/delete',
63 }[name].format(**kwargs)
63 }[name].format(**kwargs)
64
64
65 if params:
65 if params:
66 base_url = '{}?{}'.format(base_url, urllib.urlencode(params))
66 base_url = '{}?{}'.format(base_url, urllib.urlencode(params))
67 return base_url
67 return base_url
68
68
69
69
70 class TestAdminUsersView(TestController):
70 class TestAdminUsersView(TestController):
71
71
72 def test_show_users(self):
72 def test_show_users(self):
73 self.log_user()
73 self.log_user()
74 self.app.get(route_path('users'))
74 self.app.get(route_path('users'))
75
75
76 def test_show_users_data(self, xhr_header):
76 def test_show_users_data(self, xhr_header):
77 self.log_user()
77 self.log_user()
78 response = self.app.get(route_path(
78 response = self.app.get(route_path(
79 'users_data'), extra_environ=xhr_header)
79 'users_data'), extra_environ=xhr_header)
80
80
81 all_users = User.query().filter(
81 all_users = User.query().filter(
82 User.username != User.DEFAULT_USER).count()
82 User.username != User.DEFAULT_USER).count()
83 assert response.json['recordsTotal'] == all_users
83 assert response.json['recordsTotal'] == all_users
84
84
85 def test_show_users_data_filtered(self, xhr_header):
85 def test_show_users_data_filtered(self, xhr_header):
86 self.log_user()
86 self.log_user()
87 response = self.app.get(route_path(
87 response = self.app.get(route_path(
88 'users_data', params={'search[value]': 'empty_search'}),
88 'users_data', params={'search[value]': 'empty_search'}),
89 extra_environ=xhr_header)
89 extra_environ=xhr_header)
90
90
91 all_users = User.query().filter(
91 all_users = User.query().filter(
92 User.username != User.DEFAULT_USER).count()
92 User.username != User.DEFAULT_USER).count()
93 assert response.json['recordsTotal'] == all_users
93 assert response.json['recordsTotal'] == all_users
94 assert response.json['recordsFiltered'] == 0
94 assert response.json['recordsFiltered'] == 0
95
95
96 def test_auth_tokens_default_user(self):
96 def test_auth_tokens_default_user(self):
97 self.log_user()
97 self.log_user()
98 user = User.get_default_user()
98 user = User.get_default_user()
99 response = self.app.get(
99 response = self.app.get(
100 route_path('edit_user_auth_tokens', user_id=user.user_id),
100 route_path('edit_user_auth_tokens', user_id=user.user_id),
101 status=302)
101 status=302)
102
102
103 def test_auth_tokens(self):
103 def test_auth_tokens(self):
104 self.log_user()
104 self.log_user()
105
105
106 user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
106 user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
107 response = self.app.get(
107 response = self.app.get(
108 route_path('edit_user_auth_tokens', user_id=user.user_id))
108 route_path('edit_user_auth_tokens', user_id=user.user_id))
109 for token in user.auth_tokens:
109 for token in user.auth_tokens:
110 response.mustcontain(token)
110 response.mustcontain(token)
111 response.mustcontain('never')
111 response.mustcontain('never')
112
112
113 @pytest.mark.parametrize("desc, lifetime", [
113 @pytest.mark.parametrize("desc, lifetime", [
114 ('forever', -1),
114 ('forever', -1),
115 ('5mins', 60*5),
115 ('5mins', 60*5),
116 ('30days', 60*60*24*30),
116 ('30days', 60*60*24*30),
117 ])
117 ])
118 def test_add_auth_token(self, desc, lifetime, user_util):
118 def test_add_auth_token(self, desc, lifetime, user_util):
119 self.log_user()
119 self.log_user()
120 user = user_util.create_user()
120 user = user_util.create_user()
121 user_id = user.user_id
121 user_id = user.user_id
122
122
123 response = self.app.post(
123 response = self.app.post(
124 route_path('edit_user_auth_tokens_add', user_id=user_id),
124 route_path('edit_user_auth_tokens_add', user_id=user_id),
125 {'description': desc, 'lifetime': lifetime,
125 {'description': desc, 'lifetime': lifetime,
126 'csrf_token': self.csrf_token})
126 'csrf_token': self.csrf_token})
127 assert_session_flash(response, 'Auth token successfully created')
127 assert_session_flash(response, 'Auth token successfully created')
128
128
129 response = response.follow()
129 response = response.follow()
130 user = User.get(user_id)
130 user = User.get(user_id)
131 for auth_token in user.auth_tokens:
131 for auth_token in user.auth_tokens:
132 response.mustcontain(auth_token)
132 response.mustcontain(auth_token)
133
133
134 def test_delete_auth_token(self, user_util):
134 def test_delete_auth_token(self, user_util):
135 self.log_user()
135 self.log_user()
136 user = user_util.create_user()
136 user = user_util.create_user()
137 user_id = user.user_id
137 user_id = user.user_id
138 keys = user.extra_auth_tokens
138 keys = user.auth_tokens
139 assert 2 == len(keys)
139 assert 2 == len(keys)
140
140
141 response = self.app.post(
141 response = self.app.post(
142 route_path('edit_user_auth_tokens_add', user_id=user_id),
142 route_path('edit_user_auth_tokens_add', user_id=user_id),
143 {'description': 'desc', 'lifetime': -1,
143 {'description': 'desc', 'lifetime': -1,
144 'csrf_token': self.csrf_token})
144 'csrf_token': self.csrf_token})
145 assert_session_flash(response, 'Auth token successfully created')
145 assert_session_flash(response, 'Auth token successfully created')
146 response.follow()
146 response.follow()
147
147
148 # now delete our key
148 # now delete our key
149 keys = UserApiKeys.query().filter(UserApiKeys.user_id == user_id).all()
149 keys = UserApiKeys.query().filter(UserApiKeys.user_id == user_id).all()
150 assert 3 == len(keys)
150 assert 3 == len(keys)
151
151
152 response = self.app.post(
152 response = self.app.post(
153 route_path('edit_user_auth_tokens_delete', user_id=user_id),
153 route_path('edit_user_auth_tokens_delete', user_id=user_id),
154 {'del_auth_token': keys[0].user_api_key_id,
154 {'del_auth_token': keys[0].user_api_key_id,
155 'csrf_token': self.csrf_token})
155 'csrf_token': self.csrf_token})
156
156
157 assert_session_flash(response, 'Auth token successfully deleted')
157 assert_session_flash(response, 'Auth token successfully deleted')
158 keys = UserApiKeys.query().filter(UserApiKeys.user_id == user_id).all()
158 keys = UserApiKeys.query().filter(UserApiKeys.user_id == user_id).all()
159 assert 2 == len(keys)
159 assert 2 == len(keys)
160
160
161 def test_ips(self):
161 def test_ips(self):
162 self.log_user()
162 self.log_user()
163 user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
163 user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
164 response = self.app.get(route_path('edit_user_ips', user_id=user.user_id))
164 response = self.app.get(route_path('edit_user_ips', user_id=user.user_id))
165 response.mustcontain('All IP addresses are allowed')
165 response.mustcontain('All IP addresses are allowed')
166
166
167 @pytest.mark.parametrize("test_name, ip, ip_range, failure", [
167 @pytest.mark.parametrize("test_name, ip, ip_range, failure", [
168 ('127/24', '127.0.0.1/24', '127.0.0.0 - 127.0.0.255', False),
168 ('127/24', '127.0.0.1/24', '127.0.0.0 - 127.0.0.255', False),
169 ('10/32', '10.0.0.10/32', '10.0.0.10 - 10.0.0.10', False),
169 ('10/32', '10.0.0.10/32', '10.0.0.10 - 10.0.0.10', False),
170 ('0/16', '0.0.0.0/16', '0.0.0.0 - 0.0.255.255', False),
170 ('0/16', '0.0.0.0/16', '0.0.0.0 - 0.0.255.255', False),
171 ('0/8', '0.0.0.0/8', '0.0.0.0 - 0.255.255.255', False),
171 ('0/8', '0.0.0.0/8', '0.0.0.0 - 0.255.255.255', False),
172 ('127_bad_mask', '127.0.0.1/99', '127.0.0.1 - 127.0.0.1', True),
172 ('127_bad_mask', '127.0.0.1/99', '127.0.0.1 - 127.0.0.1', True),
173 ('127_bad_ip', 'foobar', 'foobar', True),
173 ('127_bad_ip', 'foobar', 'foobar', True),
174 ])
174 ])
175 def test_ips_add(self, user_util, test_name, ip, ip_range, failure):
175 def test_ips_add(self, user_util, test_name, ip, ip_range, failure):
176 self.log_user()
176 self.log_user()
177 user = user_util.create_user(username=test_name)
177 user = user_util.create_user(username=test_name)
178 user_id = user.user_id
178 user_id = user.user_id
179
179
180 response = self.app.post(
180 response = self.app.post(
181 route_path('edit_user_ips_add', user_id=user_id),
181 route_path('edit_user_ips_add', user_id=user_id),
182 params={'new_ip': ip, 'csrf_token': self.csrf_token})
182 params={'new_ip': ip, 'csrf_token': self.csrf_token})
183
183
184 if failure:
184 if failure:
185 assert_session_flash(
185 assert_session_flash(
186 response, 'Please enter a valid IPv4 or IpV6 address')
186 response, 'Please enter a valid IPv4 or IpV6 address')
187 response = self.app.get(route_path('edit_user_ips', user_id=user_id))
187 response = self.app.get(route_path('edit_user_ips', user_id=user_id))
188
188
189 response.mustcontain(no=[ip])
189 response.mustcontain(no=[ip])
190 response.mustcontain(no=[ip_range])
190 response.mustcontain(no=[ip_range])
191
191
192 else:
192 else:
193 response = self.app.get(route_path('edit_user_ips', user_id=user_id))
193 response = self.app.get(route_path('edit_user_ips', user_id=user_id))
194 response.mustcontain(ip)
194 response.mustcontain(ip)
195 response.mustcontain(ip_range)
195 response.mustcontain(ip_range)
196
196
197 def test_ips_delete(self, user_util):
197 def test_ips_delete(self, user_util):
198 self.log_user()
198 self.log_user()
199 user = user_util.create_user()
199 user = user_util.create_user()
200 user_id = user.user_id
200 user_id = user.user_id
201 ip = '127.0.0.1/32'
201 ip = '127.0.0.1/32'
202 ip_range = '127.0.0.1 - 127.0.0.1'
202 ip_range = '127.0.0.1 - 127.0.0.1'
203 new_ip = UserModel().add_extra_ip(user_id, ip)
203 new_ip = UserModel().add_extra_ip(user_id, ip)
204 Session().commit()
204 Session().commit()
205 new_ip_id = new_ip.ip_id
205 new_ip_id = new_ip.ip_id
206
206
207 response = self.app.get(route_path('edit_user_ips', user_id=user_id))
207 response = self.app.get(route_path('edit_user_ips', user_id=user_id))
208 response.mustcontain(ip)
208 response.mustcontain(ip)
209 response.mustcontain(ip_range)
209 response.mustcontain(ip_range)
210
210
211 self.app.post(
211 self.app.post(
212 route_path('edit_user_ips_delete', user_id=user_id),
212 route_path('edit_user_ips_delete', user_id=user_id),
213 params={'del_ip_id': new_ip_id, 'csrf_token': self.csrf_token})
213 params={'del_ip_id': new_ip_id, 'csrf_token': self.csrf_token})
214
214
215 response = self.app.get(route_path('edit_user_ips', user_id=user_id))
215 response = self.app.get(route_path('edit_user_ips', user_id=user_id))
216 response.mustcontain('All IP addresses are allowed')
216 response.mustcontain('All IP addresses are allowed')
217 response.mustcontain(no=[ip])
217 response.mustcontain(no=[ip])
218 response.mustcontain(no=[ip_range])
218 response.mustcontain(no=[ip_range])
219
219
220 def test_emails(self):
220 def test_emails(self):
221 self.log_user()
221 self.log_user()
222 user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
222 user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
223 response = self.app.get(route_path('edit_user_emails', user_id=user.user_id))
223 response = self.app.get(route_path('edit_user_emails', user_id=user.user_id))
224 response.mustcontain('No additional emails specified')
224 response.mustcontain('No additional emails specified')
225
225
226 def test_emails_add(self, user_util):
226 def test_emails_add(self, user_util):
227 self.log_user()
227 self.log_user()
228 user = user_util.create_user()
228 user = user_util.create_user()
229 user_id = user.user_id
229 user_id = user.user_id
230
230
231 self.app.post(
231 self.app.post(
232 route_path('edit_user_emails_add', user_id=user_id),
232 route_path('edit_user_emails_add', user_id=user_id),
233 params={'new_email': 'example@rhodecode.com',
233 params={'new_email': 'example@rhodecode.com',
234 'csrf_token': self.csrf_token})
234 'csrf_token': self.csrf_token})
235
235
236 response = self.app.get(route_path('edit_user_emails', user_id=user_id))
236 response = self.app.get(route_path('edit_user_emails', user_id=user_id))
237 response.mustcontain('example@rhodecode.com')
237 response.mustcontain('example@rhodecode.com')
238
238
239 def test_emails_add_existing_email(self, user_util, user_regular):
239 def test_emails_add_existing_email(self, user_util, user_regular):
240 existing_email = user_regular.email
240 existing_email = user_regular.email
241
241
242 self.log_user()
242 self.log_user()
243 user = user_util.create_user()
243 user = user_util.create_user()
244 user_id = user.user_id
244 user_id = user.user_id
245
245
246 response = self.app.post(
246 response = self.app.post(
247 route_path('edit_user_emails_add', user_id=user_id),
247 route_path('edit_user_emails_add', user_id=user_id),
248 params={'new_email': existing_email,
248 params={'new_email': existing_email,
249 'csrf_token': self.csrf_token})
249 'csrf_token': self.csrf_token})
250 assert_session_flash(
250 assert_session_flash(
251 response, 'This e-mail address is already taken')
251 response, 'This e-mail address is already taken')
252
252
253 response = self.app.get(route_path('edit_user_emails', user_id=user_id))
253 response = self.app.get(route_path('edit_user_emails', user_id=user_id))
254 response.mustcontain(no=[existing_email])
254 response.mustcontain(no=[existing_email])
255
255
256 def test_emails_delete(self, user_util):
256 def test_emails_delete(self, user_util):
257 self.log_user()
257 self.log_user()
258 user = user_util.create_user()
258 user = user_util.create_user()
259 user_id = user.user_id
259 user_id = user.user_id
260
260
261 self.app.post(
261 self.app.post(
262 route_path('edit_user_emails_add', user_id=user_id),
262 route_path('edit_user_emails_add', user_id=user_id),
263 params={'new_email': 'example@rhodecode.com',
263 params={'new_email': 'example@rhodecode.com',
264 'csrf_token': self.csrf_token})
264 'csrf_token': self.csrf_token})
265
265
266 response = self.app.get(route_path('edit_user_emails', user_id=user_id))
266 response = self.app.get(route_path('edit_user_emails', user_id=user_id))
267 response.mustcontain('example@rhodecode.com')
267 response.mustcontain('example@rhodecode.com')
268
268
269 user_email = UserEmailMap.query()\
269 user_email = UserEmailMap.query()\
270 .filter(UserEmailMap.email == 'example@rhodecode.com') \
270 .filter(UserEmailMap.email == 'example@rhodecode.com') \
271 .filter(UserEmailMap.user_id == user_id)\
271 .filter(UserEmailMap.user_id == user_id)\
272 .one()
272 .one()
273
273
274 del_email_id = user_email.email_id
274 del_email_id = user_email.email_id
275 self.app.post(
275 self.app.post(
276 route_path('edit_user_emails_delete', user_id=user_id),
276 route_path('edit_user_emails_delete', user_id=user_id),
277 params={'del_email_id': del_email_id,
277 params={'del_email_id': del_email_id,
278 'csrf_token': self.csrf_token})
278 'csrf_token': self.csrf_token})
279
279
280 response = self.app.get(route_path('edit_user_emails', user_id=user_id))
280 response = self.app.get(route_path('edit_user_emails', user_id=user_id))
281 response.mustcontain(no=['example@rhodecode.com']) No newline at end of file
281 response.mustcontain(no=['example@rhodecode.com'])
@@ -1,111 +1,111 b''
1 # -*- coding: utf-8 -*-
1 # -*- coding: utf-8 -*-
2
2
3 # Copyright (C) 2010-2017 RhodeCode GmbH
3 # Copyright (C) 2010-2017 RhodeCode GmbH
4 #
4 #
5 # This program is free software: you can redistribute it and/or modify
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU Affero General Public License, version 3
6 # it under the terms of the GNU Affero General Public License, version 3
7 # (only), as published by the Free Software Foundation.
7 # (only), as published by the Free Software Foundation.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU Affero General Public License
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 #
16 #
17 # This program is dual-licensed. If you wish to learn more about the
17 # This program is dual-licensed. If you wish to learn more about the
18 # RhodeCode Enterprise Edition, including its added features, Support services,
18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20
20
21 import pytest
21 import pytest
22
22
23 from rhodecode.apps._base import ADMIN_PREFIX
23 from rhodecode.apps._base import ADMIN_PREFIX
24 from rhodecode.model.db import User
24 from rhodecode.model.db import User
25 from rhodecode.tests import (
25 from rhodecode.tests import (
26 TestController, TEST_USER_ADMIN_LOGIN, TEST_USER_ADMIN_PASS,
26 TestController, TEST_USER_ADMIN_LOGIN, TEST_USER_ADMIN_PASS,
27 TEST_USER_REGULAR_LOGIN, TEST_USER_REGULAR_PASS, assert_session_flash)
27 TEST_USER_REGULAR_LOGIN, TEST_USER_REGULAR_PASS, assert_session_flash)
28 from rhodecode.tests.fixture import Fixture
28 from rhodecode.tests.fixture import Fixture
29 from rhodecode.tests.utils import AssertResponse
29 from rhodecode.tests.utils import AssertResponse
30
30
31 fixture = Fixture()
31 fixture = Fixture()
32
32
33
33
34 def route_path(name, **kwargs):
34 def route_path(name, **kwargs):
35 return {
35 return {
36 'my_account_auth_tokens':
36 'my_account_auth_tokens':
37 ADMIN_PREFIX + '/my_account/auth_tokens',
37 ADMIN_PREFIX + '/my_account/auth_tokens',
38 'my_account_auth_tokens_add':
38 'my_account_auth_tokens_add':
39 ADMIN_PREFIX + '/my_account/auth_tokens/new',
39 ADMIN_PREFIX + '/my_account/auth_tokens/new',
40 'my_account_auth_tokens_delete':
40 'my_account_auth_tokens_delete':
41 ADMIN_PREFIX + '/my_account/auth_tokens/delete',
41 ADMIN_PREFIX + '/my_account/auth_tokens/delete',
42 }[name].format(**kwargs)
42 }[name].format(**kwargs)
43
43
44
44
45 class TestMyAccountAuthTokens(TestController):
45 class TestMyAccountAuthTokens(TestController):
46
46
47 def test_my_account_auth_tokens(self):
47 def test_my_account_auth_tokens(self):
48 usr = self.log_user('test_regular2', 'test12')
48 usr = self.log_user('test_regular2', 'test12')
49 user = User.get(usr['user_id'])
49 user = User.get(usr['user_id'])
50 response = self.app.get(route_path('my_account_auth_tokens'))
50 response = self.app.get(route_path('my_account_auth_tokens'))
51 for token in user.auth_tokens:
51 for token in user.auth_tokens:
52 response.mustcontain(token)
52 response.mustcontain(token)
53 response.mustcontain('never')
53 response.mustcontain('never')
54
54
55 def test_my_account_add_auth_tokens_wrong_csrf(self, user_util):
55 def test_my_account_add_auth_tokens_wrong_csrf(self, user_util):
56 user = user_util.create_user(password='qweqwe')
56 user = user_util.create_user(password='qweqwe')
57 self.log_user(user.username, 'qweqwe')
57 self.log_user(user.username, 'qweqwe')
58
58
59 self.app.post(
59 self.app.post(
60 route_path('my_account_auth_tokens_add'),
60 route_path('my_account_auth_tokens_add'),
61 {'description': 'desc', 'lifetime': -1}, status=403)
61 {'description': 'desc', 'lifetime': -1}, status=403)
62
62
63 @pytest.mark.parametrize("desc, lifetime", [
63 @pytest.mark.parametrize("desc, lifetime", [
64 ('forever', -1),
64 ('forever', -1),
65 ('5mins', 60*5),
65 ('5mins', 60*5),
66 ('30days', 60*60*24*30),
66 ('30days', 60*60*24*30),
67 ])
67 ])
68 def test_my_account_add_auth_tokens(self, desc, lifetime, user_util):
68 def test_my_account_add_auth_tokens(self, desc, lifetime, user_util):
69 user = user_util.create_user(password='qweqwe')
69 user = user_util.create_user(password='qweqwe')
70 user_id = user.user_id
70 user_id = user.user_id
71 self.log_user(user.username, 'qweqwe')
71 self.log_user(user.username, 'qweqwe')
72
72
73 response = self.app.post(
73 response = self.app.post(
74 route_path('my_account_auth_tokens_add'),
74 route_path('my_account_auth_tokens_add'),
75 {'description': desc, 'lifetime': lifetime,
75 {'description': desc, 'lifetime': lifetime,
76 'csrf_token': self.csrf_token})
76 'csrf_token': self.csrf_token})
77 assert_session_flash(response, 'Auth token successfully created')
77 assert_session_flash(response, 'Auth token successfully created')
78
78
79 response = response.follow()
79 response = response.follow()
80 user = User.get(user_id)
80 user = User.get(user_id)
81 for auth_token in user.auth_tokens:
81 for auth_token in user.auth_tokens:
82 response.mustcontain(auth_token)
82 response.mustcontain(auth_token)
83
83
84 def test_my_account_delete_auth_token(self, user_util):
84 def test_my_account_delete_auth_token(self, user_util):
85 user = user_util.create_user(password='qweqwe')
85 user = user_util.create_user(password='qweqwe')
86 user_id = user.user_id
86 user_id = user.user_id
87 self.log_user(user.username, 'qweqwe')
87 self.log_user(user.username, 'qweqwe')
88
88
89 user = User.get(user_id)
89 user = User.get(user_id)
90 keys = user.extra_auth_tokens
90 keys = user.get_auth_tokens()
91 assert 2 == len(keys)
91 assert 2 == len(keys)
92
92
93 response = self.app.post(
93 response = self.app.post(
94 route_path('my_account_auth_tokens_add'),
94 route_path('my_account_auth_tokens_add'),
95 {'description': 'desc', 'lifetime': -1,
95 {'description': 'desc', 'lifetime': -1,
96 'csrf_token': self.csrf_token})
96 'csrf_token': self.csrf_token})
97 assert_session_flash(response, 'Auth token successfully created')
97 assert_session_flash(response, 'Auth token successfully created')
98 response.follow()
98 response.follow()
99
99
100 user = User.get(user_id)
100 user = User.get(user_id)
101 keys = user.extra_auth_tokens
101 keys = user.get_auth_tokens()
102 assert 3 == len(keys)
102 assert 3 == len(keys)
103
103
104 response = self.app.post(
104 response = self.app.post(
105 route_path('my_account_auth_tokens_delete'),
105 route_path('my_account_auth_tokens_delete'),
106 {'del_auth_token': keys[0].user_api_key_id, 'csrf_token': self.csrf_token})
106 {'del_auth_token': keys[0].user_api_key_id, 'csrf_token': self.csrf_token})
107 assert_session_flash(response, 'Auth token successfully deleted')
107 assert_session_flash(response, 'Auth token successfully deleted')
108
108
109 user = User.get(user_id)
109 user = User.get(user_id)
110 keys = user.extra_auth_tokens
110 keys = user.auth_tokens
111 assert 2 == len(keys)
111 assert 2 == len(keys)
@@ -1,2027 +1,2027 b''
1 # -*- coding: utf-8 -*-
1 # -*- coding: utf-8 -*-
2
2
3 # Copyright (C) 2010-2017 RhodeCode GmbH
3 # Copyright (C) 2010-2017 RhodeCode GmbH
4 #
4 #
5 # This program is free software: you can redistribute it and/or modify
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU Affero General Public License, version 3
6 # it under the terms of the GNU Affero General Public License, version 3
7 # (only), as published by the Free Software Foundation.
7 # (only), as published by the Free Software Foundation.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU Affero General Public License
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 #
16 #
17 # This program is dual-licensed. If you wish to learn more about the
17 # This program is dual-licensed. If you wish to learn more about the
18 # RhodeCode Enterprise Edition, including its added features, Support services,
18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20
20
21 """
21 """
22 authentication and permission libraries
22 authentication and permission libraries
23 """
23 """
24
24
25 import os
25 import os
26 import inspect
26 import inspect
27 import collections
27 import collections
28 import fnmatch
28 import fnmatch
29 import hashlib
29 import hashlib
30 import itertools
30 import itertools
31 import logging
31 import logging
32 import random
32 import random
33 import traceback
33 import traceback
34 from functools import wraps
34 from functools import wraps
35
35
36 import ipaddress
36 import ipaddress
37 from pyramid.httpexceptions import HTTPForbidden, HTTPFound, HTTPNotFound
37 from pyramid.httpexceptions import HTTPForbidden, HTTPFound, HTTPNotFound
38 from pylons.i18n.translation import _
38 from pylons.i18n.translation import _
39 # NOTE(marcink): this has to be removed only after pyramid migration,
39 # NOTE(marcink): this has to be removed only after pyramid migration,
40 # replace with _ = request.translate
40 # replace with _ = request.translate
41 from sqlalchemy.orm.exc import ObjectDeletedError
41 from sqlalchemy.orm.exc import ObjectDeletedError
42 from sqlalchemy.orm import joinedload
42 from sqlalchemy.orm import joinedload
43 from zope.cachedescriptors.property import Lazy as LazyProperty
43 from zope.cachedescriptors.property import Lazy as LazyProperty
44
44
45 import rhodecode
45 import rhodecode
46 from rhodecode.model import meta
46 from rhodecode.model import meta
47 from rhodecode.model.meta import Session
47 from rhodecode.model.meta import Session
48 from rhodecode.model.user import UserModel
48 from rhodecode.model.user import UserModel
49 from rhodecode.model.db import (
49 from rhodecode.model.db import (
50 User, Repository, Permission, UserToPerm, UserGroupToPerm, UserGroupMember,
50 User, Repository, Permission, UserToPerm, UserGroupToPerm, UserGroupMember,
51 UserIpMap, UserApiKeys, RepoGroup)
51 UserIpMap, UserApiKeys, RepoGroup)
52 from rhodecode.lib import caches
52 from rhodecode.lib import caches
53 from rhodecode.lib.utils2 import safe_unicode, aslist, safe_str, md5
53 from rhodecode.lib.utils2 import safe_unicode, aslist, safe_str, md5
54 from rhodecode.lib.utils import (
54 from rhodecode.lib.utils import (
55 get_repo_slug, get_repo_group_slug, get_user_group_slug)
55 get_repo_slug, get_repo_group_slug, get_user_group_slug)
56 from rhodecode.lib.caching_query import FromCache
56 from rhodecode.lib.caching_query import FromCache
57
57
58
58
59 if rhodecode.is_unix:
59 if rhodecode.is_unix:
60 import bcrypt
60 import bcrypt
61
61
62 log = logging.getLogger(__name__)
62 log = logging.getLogger(__name__)
63
63
64 csrf_token_key = "csrf_token"
64 csrf_token_key = "csrf_token"
65
65
66
66
67 class PasswordGenerator(object):
67 class PasswordGenerator(object):
68 """
68 """
69 This is a simple class for generating password from different sets of
69 This is a simple class for generating password from different sets of
70 characters
70 characters
71 usage::
71 usage::
72
72
73 passwd_gen = PasswordGenerator()
73 passwd_gen = PasswordGenerator()
74 #print 8-letter password containing only big and small letters
74 #print 8-letter password containing only big and small letters
75 of alphabet
75 of alphabet
76 passwd_gen.gen_password(8, passwd_gen.ALPHABETS_BIG_SMALL)
76 passwd_gen.gen_password(8, passwd_gen.ALPHABETS_BIG_SMALL)
77 """
77 """
78 ALPHABETS_NUM = r'''1234567890'''
78 ALPHABETS_NUM = r'''1234567890'''
79 ALPHABETS_SMALL = r'''qwertyuiopasdfghjklzxcvbnm'''
79 ALPHABETS_SMALL = r'''qwertyuiopasdfghjklzxcvbnm'''
80 ALPHABETS_BIG = r'''QWERTYUIOPASDFGHJKLZXCVBNM'''
80 ALPHABETS_BIG = r'''QWERTYUIOPASDFGHJKLZXCVBNM'''
81 ALPHABETS_SPECIAL = r'''`-=[]\;',./~!@#$%^&*()_+{}|:"<>?'''
81 ALPHABETS_SPECIAL = r'''`-=[]\;',./~!@#$%^&*()_+{}|:"<>?'''
82 ALPHABETS_FULL = ALPHABETS_BIG + ALPHABETS_SMALL \
82 ALPHABETS_FULL = ALPHABETS_BIG + ALPHABETS_SMALL \
83 + ALPHABETS_NUM + ALPHABETS_SPECIAL
83 + ALPHABETS_NUM + ALPHABETS_SPECIAL
84 ALPHABETS_ALPHANUM = ALPHABETS_BIG + ALPHABETS_SMALL + ALPHABETS_NUM
84 ALPHABETS_ALPHANUM = ALPHABETS_BIG + ALPHABETS_SMALL + ALPHABETS_NUM
85 ALPHABETS_BIG_SMALL = ALPHABETS_BIG + ALPHABETS_SMALL
85 ALPHABETS_BIG_SMALL = ALPHABETS_BIG + ALPHABETS_SMALL
86 ALPHABETS_ALPHANUM_BIG = ALPHABETS_BIG + ALPHABETS_NUM
86 ALPHABETS_ALPHANUM_BIG = ALPHABETS_BIG + ALPHABETS_NUM
87 ALPHABETS_ALPHANUM_SMALL = ALPHABETS_SMALL + ALPHABETS_NUM
87 ALPHABETS_ALPHANUM_SMALL = ALPHABETS_SMALL + ALPHABETS_NUM
88
88
89 def __init__(self, passwd=''):
89 def __init__(self, passwd=''):
90 self.passwd = passwd
90 self.passwd = passwd
91
91
92 def gen_password(self, length, type_=None):
92 def gen_password(self, length, type_=None):
93 if type_ is None:
93 if type_ is None:
94 type_ = self.ALPHABETS_FULL
94 type_ = self.ALPHABETS_FULL
95 self.passwd = ''.join([random.choice(type_) for _ in xrange(length)])
95 self.passwd = ''.join([random.choice(type_) for _ in xrange(length)])
96 return self.passwd
96 return self.passwd
97
97
98
98
99 class _RhodeCodeCryptoBase(object):
99 class _RhodeCodeCryptoBase(object):
100 ENC_PREF = None
100 ENC_PREF = None
101
101
102 def hash_create(self, str_):
102 def hash_create(self, str_):
103 """
103 """
104 hash the string using
104 hash the string using
105
105
106 :param str_: password to hash
106 :param str_: password to hash
107 """
107 """
108 raise NotImplementedError
108 raise NotImplementedError
109
109
110 def hash_check_with_upgrade(self, password, hashed):
110 def hash_check_with_upgrade(self, password, hashed):
111 """
111 """
112 Returns tuple in which first element is boolean that states that
112 Returns tuple in which first element is boolean that states that
113 given password matches it's hashed version, and the second is new hash
113 given password matches it's hashed version, and the second is new hash
114 of the password, in case this password should be migrated to new
114 of the password, in case this password should be migrated to new
115 cipher.
115 cipher.
116 """
116 """
117 checked_hash = self.hash_check(password, hashed)
117 checked_hash = self.hash_check(password, hashed)
118 return checked_hash, None
118 return checked_hash, None
119
119
120 def hash_check(self, password, hashed):
120 def hash_check(self, password, hashed):
121 """
121 """
122 Checks matching password with it's hashed value.
122 Checks matching password with it's hashed value.
123
123
124 :param password: password
124 :param password: password
125 :param hashed: password in hashed form
125 :param hashed: password in hashed form
126 """
126 """
127 raise NotImplementedError
127 raise NotImplementedError
128
128
129 def _assert_bytes(self, value):
129 def _assert_bytes(self, value):
130 """
130 """
131 Passing in an `unicode` object can lead to hard to detect issues
131 Passing in an `unicode` object can lead to hard to detect issues
132 if passwords contain non-ascii characters. Doing a type check
132 if passwords contain non-ascii characters. Doing a type check
133 during runtime, so that such mistakes are detected early on.
133 during runtime, so that such mistakes are detected early on.
134 """
134 """
135 if not isinstance(value, str):
135 if not isinstance(value, str):
136 raise TypeError(
136 raise TypeError(
137 "Bytestring required as input, got %r." % (value, ))
137 "Bytestring required as input, got %r." % (value, ))
138
138
139
139
140 class _RhodeCodeCryptoBCrypt(_RhodeCodeCryptoBase):
140 class _RhodeCodeCryptoBCrypt(_RhodeCodeCryptoBase):
141 ENC_PREF = ('$2a$10', '$2b$10')
141 ENC_PREF = ('$2a$10', '$2b$10')
142
142
143 def hash_create(self, str_):
143 def hash_create(self, str_):
144 self._assert_bytes(str_)
144 self._assert_bytes(str_)
145 return bcrypt.hashpw(str_, bcrypt.gensalt(10))
145 return bcrypt.hashpw(str_, bcrypt.gensalt(10))
146
146
147 def hash_check_with_upgrade(self, password, hashed):
147 def hash_check_with_upgrade(self, password, hashed):
148 """
148 """
149 Returns tuple in which first element is boolean that states that
149 Returns tuple in which first element is boolean that states that
150 given password matches it's hashed version, and the second is new hash
150 given password matches it's hashed version, and the second is new hash
151 of the password, in case this password should be migrated to new
151 of the password, in case this password should be migrated to new
152 cipher.
152 cipher.
153
153
154 This implements special upgrade logic which works like that:
154 This implements special upgrade logic which works like that:
155 - check if the given password == bcrypted hash, if yes then we
155 - check if the given password == bcrypted hash, if yes then we
156 properly used password and it was already in bcrypt. Proceed
156 properly used password and it was already in bcrypt. Proceed
157 without any changes
157 without any changes
158 - if bcrypt hash check is not working try with sha256. If hash compare
158 - if bcrypt hash check is not working try with sha256. If hash compare
159 is ok, it means we using correct but old hashed password. indicate
159 is ok, it means we using correct but old hashed password. indicate
160 hash change and proceed
160 hash change and proceed
161 """
161 """
162
162
163 new_hash = None
163 new_hash = None
164
164
165 # regular pw check
165 # regular pw check
166 password_match_bcrypt = self.hash_check(password, hashed)
166 password_match_bcrypt = self.hash_check(password, hashed)
167
167
168 # now we want to know if the password was maybe from sha256
168 # now we want to know if the password was maybe from sha256
169 # basically calling _RhodeCodeCryptoSha256().hash_check()
169 # basically calling _RhodeCodeCryptoSha256().hash_check()
170 if not password_match_bcrypt:
170 if not password_match_bcrypt:
171 if _RhodeCodeCryptoSha256().hash_check(password, hashed):
171 if _RhodeCodeCryptoSha256().hash_check(password, hashed):
172 new_hash = self.hash_create(password) # make new bcrypt hash
172 new_hash = self.hash_create(password) # make new bcrypt hash
173 password_match_bcrypt = True
173 password_match_bcrypt = True
174
174
175 return password_match_bcrypt, new_hash
175 return password_match_bcrypt, new_hash
176
176
177 def hash_check(self, password, hashed):
177 def hash_check(self, password, hashed):
178 """
178 """
179 Checks matching password with it's hashed value.
179 Checks matching password with it's hashed value.
180
180
181 :param password: password
181 :param password: password
182 :param hashed: password in hashed form
182 :param hashed: password in hashed form
183 """
183 """
184 self._assert_bytes(password)
184 self._assert_bytes(password)
185 try:
185 try:
186 return bcrypt.hashpw(password, hashed) == hashed
186 return bcrypt.hashpw(password, hashed) == hashed
187 except ValueError as e:
187 except ValueError as e:
188 # we're having a invalid salt here probably, we should not crash
188 # we're having a invalid salt here probably, we should not crash
189 # just return with False as it would be a wrong password.
189 # just return with False as it would be a wrong password.
190 log.debug('Failed to check password hash using bcrypt %s',
190 log.debug('Failed to check password hash using bcrypt %s',
191 safe_str(e))
191 safe_str(e))
192
192
193 return False
193 return False
194
194
195
195
196 class _RhodeCodeCryptoSha256(_RhodeCodeCryptoBase):
196 class _RhodeCodeCryptoSha256(_RhodeCodeCryptoBase):
197 ENC_PREF = '_'
197 ENC_PREF = '_'
198
198
199 def hash_create(self, str_):
199 def hash_create(self, str_):
200 self._assert_bytes(str_)
200 self._assert_bytes(str_)
201 return hashlib.sha256(str_).hexdigest()
201 return hashlib.sha256(str_).hexdigest()
202
202
203 def hash_check(self, password, hashed):
203 def hash_check(self, password, hashed):
204 """
204 """
205 Checks matching password with it's hashed value.
205 Checks matching password with it's hashed value.
206
206
207 :param password: password
207 :param password: password
208 :param hashed: password in hashed form
208 :param hashed: password in hashed form
209 """
209 """
210 self._assert_bytes(password)
210 self._assert_bytes(password)
211 return hashlib.sha256(password).hexdigest() == hashed
211 return hashlib.sha256(password).hexdigest() == hashed
212
212
213
213
214 class _RhodeCodeCryptoMd5(_RhodeCodeCryptoBase):
214 class _RhodeCodeCryptoMd5(_RhodeCodeCryptoBase):
215 ENC_PREF = '_'
215 ENC_PREF = '_'
216
216
217 def hash_create(self, str_):
217 def hash_create(self, str_):
218 self._assert_bytes(str_)
218 self._assert_bytes(str_)
219 return hashlib.md5(str_).hexdigest()
219 return hashlib.md5(str_).hexdigest()
220
220
221 def hash_check(self, password, hashed):
221 def hash_check(self, password, hashed):
222 """
222 """
223 Checks matching password with it's hashed value.
223 Checks matching password with it's hashed value.
224
224
225 :param password: password
225 :param password: password
226 :param hashed: password in hashed form
226 :param hashed: password in hashed form
227 """
227 """
228 self._assert_bytes(password)
228 self._assert_bytes(password)
229 return hashlib.md5(password).hexdigest() == hashed
229 return hashlib.md5(password).hexdigest() == hashed
230
230
231
231
232 def crypto_backend():
232 def crypto_backend():
233 """
233 """
234 Return the matching crypto backend.
234 Return the matching crypto backend.
235
235
236 Selection is based on if we run tests or not, we pick md5 backend to run
236 Selection is based on if we run tests or not, we pick md5 backend to run
237 tests faster since BCRYPT is expensive to calculate
237 tests faster since BCRYPT is expensive to calculate
238 """
238 """
239 if rhodecode.is_test:
239 if rhodecode.is_test:
240 RhodeCodeCrypto = _RhodeCodeCryptoMd5()
240 RhodeCodeCrypto = _RhodeCodeCryptoMd5()
241 else:
241 else:
242 RhodeCodeCrypto = _RhodeCodeCryptoBCrypt()
242 RhodeCodeCrypto = _RhodeCodeCryptoBCrypt()
243
243
244 return RhodeCodeCrypto
244 return RhodeCodeCrypto
245
245
246
246
247 def get_crypt_password(password):
247 def get_crypt_password(password):
248 """
248 """
249 Create the hash of `password` with the active crypto backend.
249 Create the hash of `password` with the active crypto backend.
250
250
251 :param password: The cleartext password.
251 :param password: The cleartext password.
252 :type password: unicode
252 :type password: unicode
253 """
253 """
254 password = safe_str(password)
254 password = safe_str(password)
255 return crypto_backend().hash_create(password)
255 return crypto_backend().hash_create(password)
256
256
257
257
258 def check_password(password, hashed):
258 def check_password(password, hashed):
259 """
259 """
260 Check if the value in `password` matches the hash in `hashed`.
260 Check if the value in `password` matches the hash in `hashed`.
261
261
262 :param password: The cleartext password.
262 :param password: The cleartext password.
263 :type password: unicode
263 :type password: unicode
264
264
265 :param hashed: The expected hashed version of the password.
265 :param hashed: The expected hashed version of the password.
266 :type hashed: The hash has to be passed in in text representation.
266 :type hashed: The hash has to be passed in in text representation.
267 """
267 """
268 password = safe_str(password)
268 password = safe_str(password)
269 return crypto_backend().hash_check(password, hashed)
269 return crypto_backend().hash_check(password, hashed)
270
270
271
271
272 def generate_auth_token(data, salt=None):
272 def generate_auth_token(data, salt=None):
273 """
273 """
274 Generates API KEY from given string
274 Generates API KEY from given string
275 """
275 """
276
276
277 if salt is None:
277 if salt is None:
278 salt = os.urandom(16)
278 salt = os.urandom(16)
279 return hashlib.sha1(safe_str(data) + salt).hexdigest()
279 return hashlib.sha1(safe_str(data) + salt).hexdigest()
280
280
281
281
282 class CookieStoreWrapper(object):
282 class CookieStoreWrapper(object):
283
283
284 def __init__(self, cookie_store):
284 def __init__(self, cookie_store):
285 self.cookie_store = cookie_store
285 self.cookie_store = cookie_store
286
286
287 def __repr__(self):
287 def __repr__(self):
288 return 'CookieStore<%s>' % (self.cookie_store)
288 return 'CookieStore<%s>' % (self.cookie_store)
289
289
290 def get(self, key, other=None):
290 def get(self, key, other=None):
291 if isinstance(self.cookie_store, dict):
291 if isinstance(self.cookie_store, dict):
292 return self.cookie_store.get(key, other)
292 return self.cookie_store.get(key, other)
293 elif isinstance(self.cookie_store, AuthUser):
293 elif isinstance(self.cookie_store, AuthUser):
294 return self.cookie_store.__dict__.get(key, other)
294 return self.cookie_store.__dict__.get(key, other)
295
295
296
296
297 def _cached_perms_data(user_id, scope, user_is_admin,
297 def _cached_perms_data(user_id, scope, user_is_admin,
298 user_inherit_default_permissions, explicit, algo):
298 user_inherit_default_permissions, explicit, algo):
299
299
300 permissions = PermissionCalculator(
300 permissions = PermissionCalculator(
301 user_id, scope, user_is_admin, user_inherit_default_permissions,
301 user_id, scope, user_is_admin, user_inherit_default_permissions,
302 explicit, algo)
302 explicit, algo)
303 return permissions.calculate()
303 return permissions.calculate()
304
304
305
305
306 class PermOrigin(object):
306 class PermOrigin(object):
307 ADMIN = 'superadmin'
307 ADMIN = 'superadmin'
308
308
309 REPO_USER = 'user:%s'
309 REPO_USER = 'user:%s'
310 REPO_USERGROUP = 'usergroup:%s'
310 REPO_USERGROUP = 'usergroup:%s'
311 REPO_OWNER = 'repo.owner'
311 REPO_OWNER = 'repo.owner'
312 REPO_DEFAULT = 'repo.default'
312 REPO_DEFAULT = 'repo.default'
313 REPO_PRIVATE = 'repo.private'
313 REPO_PRIVATE = 'repo.private'
314
314
315 REPOGROUP_USER = 'user:%s'
315 REPOGROUP_USER = 'user:%s'
316 REPOGROUP_USERGROUP = 'usergroup:%s'
316 REPOGROUP_USERGROUP = 'usergroup:%s'
317 REPOGROUP_OWNER = 'group.owner'
317 REPOGROUP_OWNER = 'group.owner'
318 REPOGROUP_DEFAULT = 'group.default'
318 REPOGROUP_DEFAULT = 'group.default'
319
319
320 USERGROUP_USER = 'user:%s'
320 USERGROUP_USER = 'user:%s'
321 USERGROUP_USERGROUP = 'usergroup:%s'
321 USERGROUP_USERGROUP = 'usergroup:%s'
322 USERGROUP_OWNER = 'usergroup.owner'
322 USERGROUP_OWNER = 'usergroup.owner'
323 USERGROUP_DEFAULT = 'usergroup.default'
323 USERGROUP_DEFAULT = 'usergroup.default'
324
324
325
325
326 class PermOriginDict(dict):
326 class PermOriginDict(dict):
327 """
327 """
328 A special dict used for tracking permissions along with their origins.
328 A special dict used for tracking permissions along with their origins.
329
329
330 `__setitem__` has been overridden to expect a tuple(perm, origin)
330 `__setitem__` has been overridden to expect a tuple(perm, origin)
331 `__getitem__` will return only the perm
331 `__getitem__` will return only the perm
332 `.perm_origin_stack` will return the stack of (perm, origin) set per key
332 `.perm_origin_stack` will return the stack of (perm, origin) set per key
333
333
334 >>> perms = PermOriginDict()
334 >>> perms = PermOriginDict()
335 >>> perms['resource'] = 'read', 'default'
335 >>> perms['resource'] = 'read', 'default'
336 >>> perms['resource']
336 >>> perms['resource']
337 'read'
337 'read'
338 >>> perms['resource'] = 'write', 'admin'
338 >>> perms['resource'] = 'write', 'admin'
339 >>> perms['resource']
339 >>> perms['resource']
340 'write'
340 'write'
341 >>> perms.perm_origin_stack
341 >>> perms.perm_origin_stack
342 {'resource': [('read', 'default'), ('write', 'admin')]}
342 {'resource': [('read', 'default'), ('write', 'admin')]}
343 """
343 """
344
344
345 def __init__(self, *args, **kw):
345 def __init__(self, *args, **kw):
346 dict.__init__(self, *args, **kw)
346 dict.__init__(self, *args, **kw)
347 self.perm_origin_stack = {}
347 self.perm_origin_stack = {}
348
348
349 def __setitem__(self, key, (perm, origin)):
349 def __setitem__(self, key, (perm, origin)):
350 self.perm_origin_stack.setdefault(key, []).append((perm, origin))
350 self.perm_origin_stack.setdefault(key, []).append((perm, origin))
351 dict.__setitem__(self, key, perm)
351 dict.__setitem__(self, key, perm)
352
352
353
353
354 class PermissionCalculator(object):
354 class PermissionCalculator(object):
355
355
356 def __init__(
356 def __init__(
357 self, user_id, scope, user_is_admin,
357 self, user_id, scope, user_is_admin,
358 user_inherit_default_permissions, explicit, algo):
358 user_inherit_default_permissions, explicit, algo):
359 self.user_id = user_id
359 self.user_id = user_id
360 self.user_is_admin = user_is_admin
360 self.user_is_admin = user_is_admin
361 self.inherit_default_permissions = user_inherit_default_permissions
361 self.inherit_default_permissions = user_inherit_default_permissions
362 self.explicit = explicit
362 self.explicit = explicit
363 self.algo = algo
363 self.algo = algo
364
364
365 scope = scope or {}
365 scope = scope or {}
366 self.scope_repo_id = scope.get('repo_id')
366 self.scope_repo_id = scope.get('repo_id')
367 self.scope_repo_group_id = scope.get('repo_group_id')
367 self.scope_repo_group_id = scope.get('repo_group_id')
368 self.scope_user_group_id = scope.get('user_group_id')
368 self.scope_user_group_id = scope.get('user_group_id')
369
369
370 self.default_user_id = User.get_default_user(cache=True).user_id
370 self.default_user_id = User.get_default_user(cache=True).user_id
371
371
372 self.permissions_repositories = PermOriginDict()
372 self.permissions_repositories = PermOriginDict()
373 self.permissions_repository_groups = PermOriginDict()
373 self.permissions_repository_groups = PermOriginDict()
374 self.permissions_user_groups = PermOriginDict()
374 self.permissions_user_groups = PermOriginDict()
375 self.permissions_global = set()
375 self.permissions_global = set()
376
376
377 self.default_repo_perms = Permission.get_default_repo_perms(
377 self.default_repo_perms = Permission.get_default_repo_perms(
378 self.default_user_id, self.scope_repo_id)
378 self.default_user_id, self.scope_repo_id)
379 self.default_repo_groups_perms = Permission.get_default_group_perms(
379 self.default_repo_groups_perms = Permission.get_default_group_perms(
380 self.default_user_id, self.scope_repo_group_id)
380 self.default_user_id, self.scope_repo_group_id)
381 self.default_user_group_perms = \
381 self.default_user_group_perms = \
382 Permission.get_default_user_group_perms(
382 Permission.get_default_user_group_perms(
383 self.default_user_id, self.scope_user_group_id)
383 self.default_user_id, self.scope_user_group_id)
384
384
385 def calculate(self):
385 def calculate(self):
386 if self.user_is_admin:
386 if self.user_is_admin:
387 return self._admin_permissions()
387 return self._admin_permissions()
388
388
389 self._calculate_global_default_permissions()
389 self._calculate_global_default_permissions()
390 self._calculate_global_permissions()
390 self._calculate_global_permissions()
391 self._calculate_default_permissions()
391 self._calculate_default_permissions()
392 self._calculate_repository_permissions()
392 self._calculate_repository_permissions()
393 self._calculate_repository_group_permissions()
393 self._calculate_repository_group_permissions()
394 self._calculate_user_group_permissions()
394 self._calculate_user_group_permissions()
395 return self._permission_structure()
395 return self._permission_structure()
396
396
397 def _admin_permissions(self):
397 def _admin_permissions(self):
398 """
398 """
399 admin user have all default rights for repositories
399 admin user have all default rights for repositories
400 and groups set to admin
400 and groups set to admin
401 """
401 """
402 self.permissions_global.add('hg.admin')
402 self.permissions_global.add('hg.admin')
403 self.permissions_global.add('hg.create.write_on_repogroup.true')
403 self.permissions_global.add('hg.create.write_on_repogroup.true')
404
404
405 # repositories
405 # repositories
406 for perm in self.default_repo_perms:
406 for perm in self.default_repo_perms:
407 r_k = perm.UserRepoToPerm.repository.repo_name
407 r_k = perm.UserRepoToPerm.repository.repo_name
408 p = 'repository.admin'
408 p = 'repository.admin'
409 self.permissions_repositories[r_k] = p, PermOrigin.ADMIN
409 self.permissions_repositories[r_k] = p, PermOrigin.ADMIN
410
410
411 # repository groups
411 # repository groups
412 for perm in self.default_repo_groups_perms:
412 for perm in self.default_repo_groups_perms:
413 rg_k = perm.UserRepoGroupToPerm.group.group_name
413 rg_k = perm.UserRepoGroupToPerm.group.group_name
414 p = 'group.admin'
414 p = 'group.admin'
415 self.permissions_repository_groups[rg_k] = p, PermOrigin.ADMIN
415 self.permissions_repository_groups[rg_k] = p, PermOrigin.ADMIN
416
416
417 # user groups
417 # user groups
418 for perm in self.default_user_group_perms:
418 for perm in self.default_user_group_perms:
419 u_k = perm.UserUserGroupToPerm.user_group.users_group_name
419 u_k = perm.UserUserGroupToPerm.user_group.users_group_name
420 p = 'usergroup.admin'
420 p = 'usergroup.admin'
421 self.permissions_user_groups[u_k] = p, PermOrigin.ADMIN
421 self.permissions_user_groups[u_k] = p, PermOrigin.ADMIN
422
422
423 return self._permission_structure()
423 return self._permission_structure()
424
424
425 def _calculate_global_default_permissions(self):
425 def _calculate_global_default_permissions(self):
426 """
426 """
427 global permissions taken from the default user
427 global permissions taken from the default user
428 """
428 """
429 default_global_perms = UserToPerm.query()\
429 default_global_perms = UserToPerm.query()\
430 .filter(UserToPerm.user_id == self.default_user_id)\
430 .filter(UserToPerm.user_id == self.default_user_id)\
431 .options(joinedload(UserToPerm.permission))
431 .options(joinedload(UserToPerm.permission))
432
432
433 for perm in default_global_perms:
433 for perm in default_global_perms:
434 self.permissions_global.add(perm.permission.permission_name)
434 self.permissions_global.add(perm.permission.permission_name)
435
435
436 def _calculate_global_permissions(self):
436 def _calculate_global_permissions(self):
437 """
437 """
438 Set global system permissions with user permissions or permissions
438 Set global system permissions with user permissions or permissions
439 taken from the user groups of the current user.
439 taken from the user groups of the current user.
440
440
441 The permissions include repo creating, repo group creating, forking
441 The permissions include repo creating, repo group creating, forking
442 etc.
442 etc.
443 """
443 """
444
444
445 # now we read the defined permissions and overwrite what we have set
445 # now we read the defined permissions and overwrite what we have set
446 # before those can be configured from groups or users explicitly.
446 # before those can be configured from groups or users explicitly.
447
447
448 # TODO: johbo: This seems to be out of sync, find out the reason
448 # TODO: johbo: This seems to be out of sync, find out the reason
449 # for the comment below and update it.
449 # for the comment below and update it.
450
450
451 # In case we want to extend this list we should be always in sync with
451 # In case we want to extend this list we should be always in sync with
452 # User.DEFAULT_USER_PERMISSIONS definitions
452 # User.DEFAULT_USER_PERMISSIONS definitions
453 _configurable = frozenset([
453 _configurable = frozenset([
454 'hg.fork.none', 'hg.fork.repository',
454 'hg.fork.none', 'hg.fork.repository',
455 'hg.create.none', 'hg.create.repository',
455 'hg.create.none', 'hg.create.repository',
456 'hg.usergroup.create.false', 'hg.usergroup.create.true',
456 'hg.usergroup.create.false', 'hg.usergroup.create.true',
457 'hg.repogroup.create.false', 'hg.repogroup.create.true',
457 'hg.repogroup.create.false', 'hg.repogroup.create.true',
458 'hg.create.write_on_repogroup.false',
458 'hg.create.write_on_repogroup.false',
459 'hg.create.write_on_repogroup.true',
459 'hg.create.write_on_repogroup.true',
460 'hg.inherit_default_perms.false', 'hg.inherit_default_perms.true'
460 'hg.inherit_default_perms.false', 'hg.inherit_default_perms.true'
461 ])
461 ])
462
462
463 # USER GROUPS comes first user group global permissions
463 # USER GROUPS comes first user group global permissions
464 user_perms_from_users_groups = Session().query(UserGroupToPerm)\
464 user_perms_from_users_groups = Session().query(UserGroupToPerm)\
465 .options(joinedload(UserGroupToPerm.permission))\
465 .options(joinedload(UserGroupToPerm.permission))\
466 .join((UserGroupMember, UserGroupToPerm.users_group_id ==
466 .join((UserGroupMember, UserGroupToPerm.users_group_id ==
467 UserGroupMember.users_group_id))\
467 UserGroupMember.users_group_id))\
468 .filter(UserGroupMember.user_id == self.user_id)\
468 .filter(UserGroupMember.user_id == self.user_id)\
469 .order_by(UserGroupToPerm.users_group_id)\
469 .order_by(UserGroupToPerm.users_group_id)\
470 .all()
470 .all()
471
471
472 # need to group here by groups since user can be in more than
472 # need to group here by groups since user can be in more than
473 # one group, so we get all groups
473 # one group, so we get all groups
474 _explicit_grouped_perms = [
474 _explicit_grouped_perms = [
475 [x, list(y)] for x, y in
475 [x, list(y)] for x, y in
476 itertools.groupby(user_perms_from_users_groups,
476 itertools.groupby(user_perms_from_users_groups,
477 lambda _x: _x.users_group)]
477 lambda _x: _x.users_group)]
478
478
479 for gr, perms in _explicit_grouped_perms:
479 for gr, perms in _explicit_grouped_perms:
480 # since user can be in multiple groups iterate over them and
480 # since user can be in multiple groups iterate over them and
481 # select the lowest permissions first (more explicit)
481 # select the lowest permissions first (more explicit)
482 # TODO: marcink: do this^^
482 # TODO: marcink: do this^^
483
483
484 # group doesn't inherit default permissions so we actually set them
484 # group doesn't inherit default permissions so we actually set them
485 if not gr.inherit_default_permissions:
485 if not gr.inherit_default_permissions:
486 # NEED TO IGNORE all previously set configurable permissions
486 # NEED TO IGNORE all previously set configurable permissions
487 # and replace them with explicitly set from this user
487 # and replace them with explicitly set from this user
488 # group permissions
488 # group permissions
489 self.permissions_global = self.permissions_global.difference(
489 self.permissions_global = self.permissions_global.difference(
490 _configurable)
490 _configurable)
491 for perm in perms:
491 for perm in perms:
492 self.permissions_global.add(perm.permission.permission_name)
492 self.permissions_global.add(perm.permission.permission_name)
493
493
494 # user explicit global permissions
494 # user explicit global permissions
495 user_perms = Session().query(UserToPerm)\
495 user_perms = Session().query(UserToPerm)\
496 .options(joinedload(UserToPerm.permission))\
496 .options(joinedload(UserToPerm.permission))\
497 .filter(UserToPerm.user_id == self.user_id).all()
497 .filter(UserToPerm.user_id == self.user_id).all()
498
498
499 if not self.inherit_default_permissions:
499 if not self.inherit_default_permissions:
500 # NEED TO IGNORE all configurable permissions and
500 # NEED TO IGNORE all configurable permissions and
501 # replace them with explicitly set from this user permissions
501 # replace them with explicitly set from this user permissions
502 self.permissions_global = self.permissions_global.difference(
502 self.permissions_global = self.permissions_global.difference(
503 _configurable)
503 _configurable)
504 for perm in user_perms:
504 for perm in user_perms:
505 self.permissions_global.add(perm.permission.permission_name)
505 self.permissions_global.add(perm.permission.permission_name)
506
506
507 def _calculate_default_permissions(self):
507 def _calculate_default_permissions(self):
508 """
508 """
509 Set default user permissions for repositories, repository groups
509 Set default user permissions for repositories, repository groups
510 taken from the default user.
510 taken from the default user.
511
511
512 Calculate inheritance of object permissions based on what we have now
512 Calculate inheritance of object permissions based on what we have now
513 in GLOBAL permissions. We check if .false is in GLOBAL since this is
513 in GLOBAL permissions. We check if .false is in GLOBAL since this is
514 explicitly set. Inherit is the opposite of .false being there.
514 explicitly set. Inherit is the opposite of .false being there.
515
515
516 .. note::
516 .. note::
517
517
518 the syntax is little bit odd but what we need to check here is
518 the syntax is little bit odd but what we need to check here is
519 the opposite of .false permission being in the list so even for
519 the opposite of .false permission being in the list so even for
520 inconsistent state when both .true/.false is there
520 inconsistent state when both .true/.false is there
521 .false is more important
521 .false is more important
522
522
523 """
523 """
524 user_inherit_object_permissions = not ('hg.inherit_default_perms.false'
524 user_inherit_object_permissions = not ('hg.inherit_default_perms.false'
525 in self.permissions_global)
525 in self.permissions_global)
526
526
527 # defaults for repositories, taken from `default` user permissions
527 # defaults for repositories, taken from `default` user permissions
528 # on given repo
528 # on given repo
529 for perm in self.default_repo_perms:
529 for perm in self.default_repo_perms:
530 r_k = perm.UserRepoToPerm.repository.repo_name
530 r_k = perm.UserRepoToPerm.repository.repo_name
531 o = PermOrigin.REPO_DEFAULT
531 o = PermOrigin.REPO_DEFAULT
532 if perm.Repository.private and not (
532 if perm.Repository.private and not (
533 perm.Repository.user_id == self.user_id):
533 perm.Repository.user_id == self.user_id):
534 # disable defaults for private repos,
534 # disable defaults for private repos,
535 p = 'repository.none'
535 p = 'repository.none'
536 o = PermOrigin.REPO_PRIVATE
536 o = PermOrigin.REPO_PRIVATE
537 elif perm.Repository.user_id == self.user_id:
537 elif perm.Repository.user_id == self.user_id:
538 # set admin if owner
538 # set admin if owner
539 p = 'repository.admin'
539 p = 'repository.admin'
540 o = PermOrigin.REPO_OWNER
540 o = PermOrigin.REPO_OWNER
541 else:
541 else:
542 p = perm.Permission.permission_name
542 p = perm.Permission.permission_name
543 # if we decide this user isn't inheriting permissions from
543 # if we decide this user isn't inheriting permissions from
544 # default user we set him to .none so only explicit
544 # default user we set him to .none so only explicit
545 # permissions work
545 # permissions work
546 if not user_inherit_object_permissions:
546 if not user_inherit_object_permissions:
547 p = 'repository.none'
547 p = 'repository.none'
548 self.permissions_repositories[r_k] = p, o
548 self.permissions_repositories[r_k] = p, o
549
549
550 # defaults for repository groups taken from `default` user permission
550 # defaults for repository groups taken from `default` user permission
551 # on given group
551 # on given group
552 for perm in self.default_repo_groups_perms:
552 for perm in self.default_repo_groups_perms:
553 rg_k = perm.UserRepoGroupToPerm.group.group_name
553 rg_k = perm.UserRepoGroupToPerm.group.group_name
554 o = PermOrigin.REPOGROUP_DEFAULT
554 o = PermOrigin.REPOGROUP_DEFAULT
555 if perm.RepoGroup.user_id == self.user_id:
555 if perm.RepoGroup.user_id == self.user_id:
556 # set admin if owner
556 # set admin if owner
557 p = 'group.admin'
557 p = 'group.admin'
558 o = PermOrigin.REPOGROUP_OWNER
558 o = PermOrigin.REPOGROUP_OWNER
559 else:
559 else:
560 p = perm.Permission.permission_name
560 p = perm.Permission.permission_name
561
561
562 # if we decide this user isn't inheriting permissions from default
562 # if we decide this user isn't inheriting permissions from default
563 # user we set him to .none so only explicit permissions work
563 # user we set him to .none so only explicit permissions work
564 if not user_inherit_object_permissions:
564 if not user_inherit_object_permissions:
565 p = 'group.none'
565 p = 'group.none'
566 self.permissions_repository_groups[rg_k] = p, o
566 self.permissions_repository_groups[rg_k] = p, o
567
567
568 # defaults for user groups taken from `default` user permission
568 # defaults for user groups taken from `default` user permission
569 # on given user group
569 # on given user group
570 for perm in self.default_user_group_perms:
570 for perm in self.default_user_group_perms:
571 u_k = perm.UserUserGroupToPerm.user_group.users_group_name
571 u_k = perm.UserUserGroupToPerm.user_group.users_group_name
572 o = PermOrigin.USERGROUP_DEFAULT
572 o = PermOrigin.USERGROUP_DEFAULT
573 if perm.UserGroup.user_id == self.user_id:
573 if perm.UserGroup.user_id == self.user_id:
574 # set admin if owner
574 # set admin if owner
575 p = 'usergroup.admin'
575 p = 'usergroup.admin'
576 o = PermOrigin.USERGROUP_OWNER
576 o = PermOrigin.USERGROUP_OWNER
577 else:
577 else:
578 p = perm.Permission.permission_name
578 p = perm.Permission.permission_name
579
579
580 # if we decide this user isn't inheriting permissions from default
580 # if we decide this user isn't inheriting permissions from default
581 # user we set him to .none so only explicit permissions work
581 # user we set him to .none so only explicit permissions work
582 if not user_inherit_object_permissions:
582 if not user_inherit_object_permissions:
583 p = 'usergroup.none'
583 p = 'usergroup.none'
584 self.permissions_user_groups[u_k] = p, o
584 self.permissions_user_groups[u_k] = p, o
585
585
586 def _calculate_repository_permissions(self):
586 def _calculate_repository_permissions(self):
587 """
587 """
588 Repository permissions for the current user.
588 Repository permissions for the current user.
589
589
590 Check if the user is part of user groups for this repository and
590 Check if the user is part of user groups for this repository and
591 fill in the permission from it. `_choose_permission` decides of which
591 fill in the permission from it. `_choose_permission` decides of which
592 permission should be selected based on selected method.
592 permission should be selected based on selected method.
593 """
593 """
594
594
595 # user group for repositories permissions
595 # user group for repositories permissions
596 user_repo_perms_from_user_group = Permission\
596 user_repo_perms_from_user_group = Permission\
597 .get_default_repo_perms_from_user_group(
597 .get_default_repo_perms_from_user_group(
598 self.user_id, self.scope_repo_id)
598 self.user_id, self.scope_repo_id)
599
599
600 multiple_counter = collections.defaultdict(int)
600 multiple_counter = collections.defaultdict(int)
601 for perm in user_repo_perms_from_user_group:
601 for perm in user_repo_perms_from_user_group:
602 r_k = perm.UserGroupRepoToPerm.repository.repo_name
602 r_k = perm.UserGroupRepoToPerm.repository.repo_name
603 ug_k = perm.UserGroupRepoToPerm.users_group.users_group_name
603 ug_k = perm.UserGroupRepoToPerm.users_group.users_group_name
604 multiple_counter[r_k] += 1
604 multiple_counter[r_k] += 1
605 p = perm.Permission.permission_name
605 p = perm.Permission.permission_name
606 o = PermOrigin.REPO_USERGROUP % ug_k
606 o = PermOrigin.REPO_USERGROUP % ug_k
607
607
608 if perm.Repository.user_id == self.user_id:
608 if perm.Repository.user_id == self.user_id:
609 # set admin if owner
609 # set admin if owner
610 p = 'repository.admin'
610 p = 'repository.admin'
611 o = PermOrigin.REPO_OWNER
611 o = PermOrigin.REPO_OWNER
612 else:
612 else:
613 if multiple_counter[r_k] > 1:
613 if multiple_counter[r_k] > 1:
614 cur_perm = self.permissions_repositories[r_k]
614 cur_perm = self.permissions_repositories[r_k]
615 p = self._choose_permission(p, cur_perm)
615 p = self._choose_permission(p, cur_perm)
616 self.permissions_repositories[r_k] = p, o
616 self.permissions_repositories[r_k] = p, o
617
617
618 # user explicit permissions for repositories, overrides any specified
618 # user explicit permissions for repositories, overrides any specified
619 # by the group permission
619 # by the group permission
620 user_repo_perms = Permission.get_default_repo_perms(
620 user_repo_perms = Permission.get_default_repo_perms(
621 self.user_id, self.scope_repo_id)
621 self.user_id, self.scope_repo_id)
622 for perm in user_repo_perms:
622 for perm in user_repo_perms:
623 r_k = perm.UserRepoToPerm.repository.repo_name
623 r_k = perm.UserRepoToPerm.repository.repo_name
624 o = PermOrigin.REPO_USER % perm.UserRepoToPerm.user.username
624 o = PermOrigin.REPO_USER % perm.UserRepoToPerm.user.username
625 # set admin if owner
625 # set admin if owner
626 if perm.Repository.user_id == self.user_id:
626 if perm.Repository.user_id == self.user_id:
627 p = 'repository.admin'
627 p = 'repository.admin'
628 o = PermOrigin.REPO_OWNER
628 o = PermOrigin.REPO_OWNER
629 else:
629 else:
630 p = perm.Permission.permission_name
630 p = perm.Permission.permission_name
631 if not self.explicit:
631 if not self.explicit:
632 cur_perm = self.permissions_repositories.get(
632 cur_perm = self.permissions_repositories.get(
633 r_k, 'repository.none')
633 r_k, 'repository.none')
634 p = self._choose_permission(p, cur_perm)
634 p = self._choose_permission(p, cur_perm)
635 self.permissions_repositories[r_k] = p, o
635 self.permissions_repositories[r_k] = p, o
636
636
637 def _calculate_repository_group_permissions(self):
637 def _calculate_repository_group_permissions(self):
638 """
638 """
639 Repository group permissions for the current user.
639 Repository group permissions for the current user.
640
640
641 Check if the user is part of user groups for repository groups and
641 Check if the user is part of user groups for repository groups and
642 fill in the permissions from it. `_choose_permmission` decides of which
642 fill in the permissions from it. `_choose_permmission` decides of which
643 permission should be selected based on selected method.
643 permission should be selected based on selected method.
644 """
644 """
645 # user group for repo groups permissions
645 # user group for repo groups permissions
646 user_repo_group_perms_from_user_group = Permission\
646 user_repo_group_perms_from_user_group = Permission\
647 .get_default_group_perms_from_user_group(
647 .get_default_group_perms_from_user_group(
648 self.user_id, self.scope_repo_group_id)
648 self.user_id, self.scope_repo_group_id)
649
649
650 multiple_counter = collections.defaultdict(int)
650 multiple_counter = collections.defaultdict(int)
651 for perm in user_repo_group_perms_from_user_group:
651 for perm in user_repo_group_perms_from_user_group:
652 g_k = perm.UserGroupRepoGroupToPerm.group.group_name
652 g_k = perm.UserGroupRepoGroupToPerm.group.group_name
653 ug_k = perm.UserGroupRepoGroupToPerm.users_group.users_group_name
653 ug_k = perm.UserGroupRepoGroupToPerm.users_group.users_group_name
654 o = PermOrigin.REPOGROUP_USERGROUP % ug_k
654 o = PermOrigin.REPOGROUP_USERGROUP % ug_k
655 multiple_counter[g_k] += 1
655 multiple_counter[g_k] += 1
656 p = perm.Permission.permission_name
656 p = perm.Permission.permission_name
657 if perm.RepoGroup.user_id == self.user_id:
657 if perm.RepoGroup.user_id == self.user_id:
658 # set admin if owner, even for member of other user group
658 # set admin if owner, even for member of other user group
659 p = 'group.admin'
659 p = 'group.admin'
660 o = PermOrigin.REPOGROUP_OWNER
660 o = PermOrigin.REPOGROUP_OWNER
661 else:
661 else:
662 if multiple_counter[g_k] > 1:
662 if multiple_counter[g_k] > 1:
663 cur_perm = self.permissions_repository_groups[g_k]
663 cur_perm = self.permissions_repository_groups[g_k]
664 p = self._choose_permission(p, cur_perm)
664 p = self._choose_permission(p, cur_perm)
665 self.permissions_repository_groups[g_k] = p, o
665 self.permissions_repository_groups[g_k] = p, o
666
666
667 # user explicit permissions for repository groups
667 # user explicit permissions for repository groups
668 user_repo_groups_perms = Permission.get_default_group_perms(
668 user_repo_groups_perms = Permission.get_default_group_perms(
669 self.user_id, self.scope_repo_group_id)
669 self.user_id, self.scope_repo_group_id)
670 for perm in user_repo_groups_perms:
670 for perm in user_repo_groups_perms:
671 rg_k = perm.UserRepoGroupToPerm.group.group_name
671 rg_k = perm.UserRepoGroupToPerm.group.group_name
672 u_k = perm.UserRepoGroupToPerm.user.username
672 u_k = perm.UserRepoGroupToPerm.user.username
673 o = PermOrigin.REPOGROUP_USER % u_k
673 o = PermOrigin.REPOGROUP_USER % u_k
674
674
675 if perm.RepoGroup.user_id == self.user_id:
675 if perm.RepoGroup.user_id == self.user_id:
676 # set admin if owner
676 # set admin if owner
677 p = 'group.admin'
677 p = 'group.admin'
678 o = PermOrigin.REPOGROUP_OWNER
678 o = PermOrigin.REPOGROUP_OWNER
679 else:
679 else:
680 p = perm.Permission.permission_name
680 p = perm.Permission.permission_name
681 if not self.explicit:
681 if not self.explicit:
682 cur_perm = self.permissions_repository_groups.get(
682 cur_perm = self.permissions_repository_groups.get(
683 rg_k, 'group.none')
683 rg_k, 'group.none')
684 p = self._choose_permission(p, cur_perm)
684 p = self._choose_permission(p, cur_perm)
685 self.permissions_repository_groups[rg_k] = p, o
685 self.permissions_repository_groups[rg_k] = p, o
686
686
687 def _calculate_user_group_permissions(self):
687 def _calculate_user_group_permissions(self):
688 """
688 """
689 User group permissions for the current user.
689 User group permissions for the current user.
690 """
690 """
691 # user group for user group permissions
691 # user group for user group permissions
692 user_group_from_user_group = Permission\
692 user_group_from_user_group = Permission\
693 .get_default_user_group_perms_from_user_group(
693 .get_default_user_group_perms_from_user_group(
694 self.user_id, self.scope_user_group_id)
694 self.user_id, self.scope_user_group_id)
695
695
696 multiple_counter = collections.defaultdict(int)
696 multiple_counter = collections.defaultdict(int)
697 for perm in user_group_from_user_group:
697 for perm in user_group_from_user_group:
698 g_k = perm.UserGroupUserGroupToPerm\
698 g_k = perm.UserGroupUserGroupToPerm\
699 .target_user_group.users_group_name
699 .target_user_group.users_group_name
700 u_k = perm.UserGroupUserGroupToPerm\
700 u_k = perm.UserGroupUserGroupToPerm\
701 .user_group.users_group_name
701 .user_group.users_group_name
702 o = PermOrigin.USERGROUP_USERGROUP % u_k
702 o = PermOrigin.USERGROUP_USERGROUP % u_k
703 multiple_counter[g_k] += 1
703 multiple_counter[g_k] += 1
704 p = perm.Permission.permission_name
704 p = perm.Permission.permission_name
705
705
706 if perm.UserGroup.user_id == self.user_id:
706 if perm.UserGroup.user_id == self.user_id:
707 # set admin if owner, even for member of other user group
707 # set admin if owner, even for member of other user group
708 p = 'usergroup.admin'
708 p = 'usergroup.admin'
709 o = PermOrigin.USERGROUP_OWNER
709 o = PermOrigin.USERGROUP_OWNER
710 else:
710 else:
711 if multiple_counter[g_k] > 1:
711 if multiple_counter[g_k] > 1:
712 cur_perm = self.permissions_user_groups[g_k]
712 cur_perm = self.permissions_user_groups[g_k]
713 p = self._choose_permission(p, cur_perm)
713 p = self._choose_permission(p, cur_perm)
714 self.permissions_user_groups[g_k] = p, o
714 self.permissions_user_groups[g_k] = p, o
715
715
716 # user explicit permission for user groups
716 # user explicit permission for user groups
717 user_user_groups_perms = Permission.get_default_user_group_perms(
717 user_user_groups_perms = Permission.get_default_user_group_perms(
718 self.user_id, self.scope_user_group_id)
718 self.user_id, self.scope_user_group_id)
719 for perm in user_user_groups_perms:
719 for perm in user_user_groups_perms:
720 ug_k = perm.UserUserGroupToPerm.user_group.users_group_name
720 ug_k = perm.UserUserGroupToPerm.user_group.users_group_name
721 u_k = perm.UserUserGroupToPerm.user.username
721 u_k = perm.UserUserGroupToPerm.user.username
722 o = PermOrigin.USERGROUP_USER % u_k
722 o = PermOrigin.USERGROUP_USER % u_k
723
723
724 if perm.UserGroup.user_id == self.user_id:
724 if perm.UserGroup.user_id == self.user_id:
725 # set admin if owner
725 # set admin if owner
726 p = 'usergroup.admin'
726 p = 'usergroup.admin'
727 o = PermOrigin.USERGROUP_OWNER
727 o = PermOrigin.USERGROUP_OWNER
728 else:
728 else:
729 p = perm.Permission.permission_name
729 p = perm.Permission.permission_name
730 if not self.explicit:
730 if not self.explicit:
731 cur_perm = self.permissions_user_groups.get(
731 cur_perm = self.permissions_user_groups.get(
732 ug_k, 'usergroup.none')
732 ug_k, 'usergroup.none')
733 p = self._choose_permission(p, cur_perm)
733 p = self._choose_permission(p, cur_perm)
734 self.permissions_user_groups[ug_k] = p, o
734 self.permissions_user_groups[ug_k] = p, o
735
735
736 def _choose_permission(self, new_perm, cur_perm):
736 def _choose_permission(self, new_perm, cur_perm):
737 new_perm_val = Permission.PERM_WEIGHTS[new_perm]
737 new_perm_val = Permission.PERM_WEIGHTS[new_perm]
738 cur_perm_val = Permission.PERM_WEIGHTS[cur_perm]
738 cur_perm_val = Permission.PERM_WEIGHTS[cur_perm]
739 if self.algo == 'higherwin':
739 if self.algo == 'higherwin':
740 if new_perm_val > cur_perm_val:
740 if new_perm_val > cur_perm_val:
741 return new_perm
741 return new_perm
742 return cur_perm
742 return cur_perm
743 elif self.algo == 'lowerwin':
743 elif self.algo == 'lowerwin':
744 if new_perm_val < cur_perm_val:
744 if new_perm_val < cur_perm_val:
745 return new_perm
745 return new_perm
746 return cur_perm
746 return cur_perm
747
747
748 def _permission_structure(self):
748 def _permission_structure(self):
749 return {
749 return {
750 'global': self.permissions_global,
750 'global': self.permissions_global,
751 'repositories': self.permissions_repositories,
751 'repositories': self.permissions_repositories,
752 'repositories_groups': self.permissions_repository_groups,
752 'repositories_groups': self.permissions_repository_groups,
753 'user_groups': self.permissions_user_groups,
753 'user_groups': self.permissions_user_groups,
754 }
754 }
755
755
756
756
757 def allowed_auth_token_access(view_name, whitelist=None, auth_token=None):
757 def allowed_auth_token_access(view_name, whitelist=None, auth_token=None):
758 """
758 """
759 Check if given controller_name is in whitelist of auth token access
759 Check if given controller_name is in whitelist of auth token access
760 """
760 """
761 if not whitelist:
761 if not whitelist:
762 from rhodecode import CONFIG
762 from rhodecode import CONFIG
763 whitelist = aslist(
763 whitelist = aslist(
764 CONFIG.get('api_access_controllers_whitelist'), sep=',')
764 CONFIG.get('api_access_controllers_whitelist'), sep=',')
765 log.debug(
765 log.debug(
766 'Allowed controllers for AUTH TOKEN access: %s' % (whitelist,))
766 'Allowed controllers for AUTH TOKEN access: %s' % (whitelist,))
767
767
768 auth_token_access_valid = False
768 auth_token_access_valid = False
769 for entry in whitelist:
769 for entry in whitelist:
770 if fnmatch.fnmatch(view_name, entry):
770 if fnmatch.fnmatch(view_name, entry):
771 auth_token_access_valid = True
771 auth_token_access_valid = True
772 break
772 break
773
773
774 if auth_token_access_valid:
774 if auth_token_access_valid:
775 log.debug('view: `%s` matches entry in whitelist: %s'
775 log.debug('view: `%s` matches entry in whitelist: %s'
776 % (view_name, whitelist))
776 % (view_name, whitelist))
777 else:
777 else:
778 msg = ('view: `%s` does *NOT* match any entry in whitelist: %s'
778 msg = ('view: `%s` does *NOT* match any entry in whitelist: %s'
779 % (view_name, whitelist))
779 % (view_name, whitelist))
780 if auth_token:
780 if auth_token:
781 # if we use auth token key and don't have access it's a warning
781 # if we use auth token key and don't have access it's a warning
782 log.warning(msg)
782 log.warning(msg)
783 else:
783 else:
784 log.debug(msg)
784 log.debug(msg)
785
785
786 return auth_token_access_valid
786 return auth_token_access_valid
787
787
788
788
789 class AuthUser(object):
789 class AuthUser(object):
790 """
790 """
791 A simple object that handles all attributes of user in RhodeCode
791 A simple object that handles all attributes of user in RhodeCode
792
792
793 It does lookup based on API key,given user, or user present in session
793 It does lookup based on API key,given user, or user present in session
794 Then it fills all required information for such user. It also checks if
794 Then it fills all required information for such user. It also checks if
795 anonymous access is enabled and if so, it returns default user as logged in
795 anonymous access is enabled and if so, it returns default user as logged in
796 """
796 """
797 GLOBAL_PERMS = [x[0] for x in Permission.PERMS]
797 GLOBAL_PERMS = [x[0] for x in Permission.PERMS]
798
798
799 def __init__(self, user_id=None, api_key=None, username=None, ip_addr=None):
799 def __init__(self, user_id=None, api_key=None, username=None, ip_addr=None):
800
800
801 self.user_id = user_id
801 self.user_id = user_id
802 self._api_key = api_key
802 self._api_key = api_key
803
803
804 self.api_key = None
804 self.api_key = None
805 self.feed_token = ''
805 self.feed_token = ''
806 self.username = username
806 self.username = username
807 self.ip_addr = ip_addr
807 self.ip_addr = ip_addr
808 self.name = ''
808 self.name = ''
809 self.lastname = ''
809 self.lastname = ''
810 self.first_name = ''
810 self.first_name = ''
811 self.last_name = ''
811 self.last_name = ''
812 self.email = ''
812 self.email = ''
813 self.is_authenticated = False
813 self.is_authenticated = False
814 self.admin = False
814 self.admin = False
815 self.inherit_default_permissions = False
815 self.inherit_default_permissions = False
816 self.password = ''
816 self.password = ''
817
817
818 self.anonymous_user = None # propagated on propagate_data
818 self.anonymous_user = None # propagated on propagate_data
819 self.propagate_data()
819 self.propagate_data()
820 self._instance = None
820 self._instance = None
821 self._permissions_scoped_cache = {} # used to bind scoped calculation
821 self._permissions_scoped_cache = {} # used to bind scoped calculation
822
822
823 @LazyProperty
823 @LazyProperty
824 def permissions(self):
824 def permissions(self):
825 return self.get_perms(user=self, cache=False)
825 return self.get_perms(user=self, cache=False)
826
826
827 def permissions_with_scope(self, scope):
827 def permissions_with_scope(self, scope):
828 """
828 """
829 Call the get_perms function with scoped data. The scope in that function
829 Call the get_perms function with scoped data. The scope in that function
830 narrows the SQL calls to the given ID of objects resulting in fetching
830 narrows the SQL calls to the given ID of objects resulting in fetching
831 Just particular permission we want to obtain. If scope is an empty dict
831 Just particular permission we want to obtain. If scope is an empty dict
832 then it basically narrows the scope to GLOBAL permissions only.
832 then it basically narrows the scope to GLOBAL permissions only.
833
833
834 :param scope: dict
834 :param scope: dict
835 """
835 """
836 if 'repo_name' in scope:
836 if 'repo_name' in scope:
837 obj = Repository.get_by_repo_name(scope['repo_name'])
837 obj = Repository.get_by_repo_name(scope['repo_name'])
838 if obj:
838 if obj:
839 scope['repo_id'] = obj.repo_id
839 scope['repo_id'] = obj.repo_id
840 _scope = {
840 _scope = {
841 'repo_id': -1,
841 'repo_id': -1,
842 'user_group_id': -1,
842 'user_group_id': -1,
843 'repo_group_id': -1,
843 'repo_group_id': -1,
844 }
844 }
845 _scope.update(scope)
845 _scope.update(scope)
846 cache_key = "_".join(map(safe_str, reduce(lambda a, b: a+b,
846 cache_key = "_".join(map(safe_str, reduce(lambda a, b: a+b,
847 _scope.items())))
847 _scope.items())))
848 if cache_key not in self._permissions_scoped_cache:
848 if cache_key not in self._permissions_scoped_cache:
849 # store in cache to mimic how the @LazyProperty works,
849 # store in cache to mimic how the @LazyProperty works,
850 # the difference here is that we use the unique key calculated
850 # the difference here is that we use the unique key calculated
851 # from params and values
851 # from params and values
852 res = self.get_perms(user=self, cache=False, scope=_scope)
852 res = self.get_perms(user=self, cache=False, scope=_scope)
853 self._permissions_scoped_cache[cache_key] = res
853 self._permissions_scoped_cache[cache_key] = res
854 return self._permissions_scoped_cache[cache_key]
854 return self._permissions_scoped_cache[cache_key]
855
855
856 def get_instance(self):
856 def get_instance(self):
857 return User.get(self.user_id)
857 return User.get(self.user_id)
858
858
859 def update_lastactivity(self):
859 def update_lastactivity(self):
860 if self.user_id:
860 if self.user_id:
861 User.get(self.user_id).update_lastactivity()
861 User.get(self.user_id).update_lastactivity()
862
862
863 def propagate_data(self):
863 def propagate_data(self):
864 """
864 """
865 Fills in user data and propagates values to this instance. Maps fetched
865 Fills in user data and propagates values to this instance. Maps fetched
866 user attributes to this class instance attributes
866 user attributes to this class instance attributes
867 """
867 """
868 log.debug('starting data propagation for new potential AuthUser')
868 log.debug('AuthUser: starting data propagation for new potential user')
869 user_model = UserModel()
869 user_model = UserModel()
870 anon_user = self.anonymous_user = User.get_default_user(cache=True)
870 anon_user = self.anonymous_user = User.get_default_user(cache=True)
871 is_user_loaded = False
871 is_user_loaded = False
872
872
873 # lookup by userid
873 # lookup by userid
874 if self.user_id is not None and self.user_id != anon_user.user_id:
874 if self.user_id is not None and self.user_id != anon_user.user_id:
875 log.debug('Trying Auth User lookup by USER ID: `%s`' % self.user_id)
875 log.debug('Trying Auth User lookup by USER ID: `%s`' % self.user_id)
876 is_user_loaded = user_model.fill_data(self, user_id=self.user_id)
876 is_user_loaded = user_model.fill_data(self, user_id=self.user_id)
877
877
878 # try go get user by api key
878 # try go get user by api key
879 elif self._api_key and self._api_key != anon_user.api_key:
879 elif self._api_key and self._api_key != anon_user.api_key:
880 log.debug('Trying Auth User lookup by API KEY: `%s`' % self._api_key)
880 log.debug('Trying Auth User lookup by API KEY: `%s`' % self._api_key)
881 is_user_loaded = user_model.fill_data(self, api_key=self._api_key)
881 is_user_loaded = user_model.fill_data(self, api_key=self._api_key)
882
882
883 # lookup by username
883 # lookup by username
884 elif self.username:
884 elif self.username:
885 log.debug('Trying Auth User lookup by USER NAME: `%s`' % self.username)
885 log.debug('Trying Auth User lookup by USER NAME: `%s`' % self.username)
886 is_user_loaded = user_model.fill_data(self, username=self.username)
886 is_user_loaded = user_model.fill_data(self, username=self.username)
887 else:
887 else:
888 log.debug('No data in %s that could been used to log in' % self)
888 log.debug('No data in %s that could been used to log in' % self)
889
889
890 if not is_user_loaded:
890 if not is_user_loaded:
891 log.debug('Failed to load user. Fallback to default user')
891 log.debug('Failed to load user. Fallback to default user')
892 # if we cannot authenticate user try anonymous
892 # if we cannot authenticate user try anonymous
893 if anon_user.active:
893 if anon_user.active:
894 user_model.fill_data(self, user_id=anon_user.user_id)
894 user_model.fill_data(self, user_id=anon_user.user_id)
895 # then we set this user is logged in
895 # then we set this user is logged in
896 self.is_authenticated = True
896 self.is_authenticated = True
897 else:
897 else:
898 # in case of disabled anonymous user we reset some of the
898 # in case of disabled anonymous user we reset some of the
899 # parameters so such user is "corrupted", skipping the fill_data
899 # parameters so such user is "corrupted", skipping the fill_data
900 for attr in ['user_id', 'username', 'admin', 'active']:
900 for attr in ['user_id', 'username', 'admin', 'active']:
901 setattr(self, attr, None)
901 setattr(self, attr, None)
902 self.is_authenticated = False
902 self.is_authenticated = False
903
903
904 if not self.username:
904 if not self.username:
905 self.username = 'None'
905 self.username = 'None'
906
906
907 log.debug('Auth User is now %s' % self)
907 log.debug('AuthUser: propagated user is now %s' % self)
908
908
909 def get_perms(self, user, scope=None, explicit=True, algo='higherwin',
909 def get_perms(self, user, scope=None, explicit=True, algo='higherwin',
910 cache=False):
910 cache=False):
911 """
911 """
912 Fills user permission attribute with permissions taken from database
912 Fills user permission attribute with permissions taken from database
913 works for permissions given for repositories, and for permissions that
913 works for permissions given for repositories, and for permissions that
914 are granted to groups
914 are granted to groups
915
915
916 :param user: instance of User object from database
916 :param user: instance of User object from database
917 :param explicit: In case there are permissions both for user and a group
917 :param explicit: In case there are permissions both for user and a group
918 that user is part of, explicit flag will defiine if user will
918 that user is part of, explicit flag will defiine if user will
919 explicitly override permissions from group, if it's False it will
919 explicitly override permissions from group, if it's False it will
920 make decision based on the algo
920 make decision based on the algo
921 :param algo: algorithm to decide what permission should be choose if
921 :param algo: algorithm to decide what permission should be choose if
922 it's multiple defined, eg user in two different groups. It also
922 it's multiple defined, eg user in two different groups. It also
923 decides if explicit flag is turned off how to specify the permission
923 decides if explicit flag is turned off how to specify the permission
924 for case when user is in a group + have defined separate permission
924 for case when user is in a group + have defined separate permission
925 """
925 """
926 user_id = user.user_id
926 user_id = user.user_id
927 user_is_admin = user.is_admin
927 user_is_admin = user.is_admin
928
928
929 # inheritance of global permissions like create repo/fork repo etc
929 # inheritance of global permissions like create repo/fork repo etc
930 user_inherit_default_permissions = user.inherit_default_permissions
930 user_inherit_default_permissions = user.inherit_default_permissions
931
931
932 log.debug('Computing PERMISSION tree for scope %s' % (scope, ))
932 log.debug('Computing PERMISSION tree for scope %s' % (scope, ))
933 compute = caches.conditional_cache(
933 compute = caches.conditional_cache(
934 'short_term', 'cache_desc',
934 'short_term', 'cache_desc',
935 condition=cache, func=_cached_perms_data)
935 condition=cache, func=_cached_perms_data)
936 result = compute(user_id, scope, user_is_admin,
936 result = compute(user_id, scope, user_is_admin,
937 user_inherit_default_permissions, explicit, algo)
937 user_inherit_default_permissions, explicit, algo)
938
938
939 result_repr = []
939 result_repr = []
940 for k in result:
940 for k in result:
941 result_repr.append((k, len(result[k])))
941 result_repr.append((k, len(result[k])))
942
942
943 log.debug('PERMISSION tree computed %s' % (result_repr,))
943 log.debug('PERMISSION tree computed %s' % (result_repr,))
944 return result
944 return result
945
945
946 @property
946 @property
947 def is_default(self):
947 def is_default(self):
948 return self.username == User.DEFAULT_USER
948 return self.username == User.DEFAULT_USER
949
949
950 @property
950 @property
951 def is_admin(self):
951 def is_admin(self):
952 return self.admin
952 return self.admin
953
953
954 @property
954 @property
955 def is_user_object(self):
955 def is_user_object(self):
956 return self.user_id is not None
956 return self.user_id is not None
957
957
958 @property
958 @property
959 def repositories_admin(self):
959 def repositories_admin(self):
960 """
960 """
961 Returns list of repositories you're an admin of
961 Returns list of repositories you're an admin of
962 """
962 """
963 return [
963 return [
964 x[0] for x in self.permissions['repositories'].iteritems()
964 x[0] for x in self.permissions['repositories'].iteritems()
965 if x[1] == 'repository.admin']
965 if x[1] == 'repository.admin']
966
966
967 @property
967 @property
968 def repository_groups_admin(self):
968 def repository_groups_admin(self):
969 """
969 """
970 Returns list of repository groups you're an admin of
970 Returns list of repository groups you're an admin of
971 """
971 """
972 return [
972 return [
973 x[0] for x in self.permissions['repositories_groups'].iteritems()
973 x[0] for x in self.permissions['repositories_groups'].iteritems()
974 if x[1] == 'group.admin']
974 if x[1] == 'group.admin']
975
975
976 @property
976 @property
977 def user_groups_admin(self):
977 def user_groups_admin(self):
978 """
978 """
979 Returns list of user groups you're an admin of
979 Returns list of user groups you're an admin of
980 """
980 """
981 return [
981 return [
982 x[0] for x in self.permissions['user_groups'].iteritems()
982 x[0] for x in self.permissions['user_groups'].iteritems()
983 if x[1] == 'usergroup.admin']
983 if x[1] == 'usergroup.admin']
984
984
985 @property
985 @property
986 def ip_allowed(self):
986 def ip_allowed(self):
987 """
987 """
988 Checks if ip_addr used in constructor is allowed from defined list of
988 Checks if ip_addr used in constructor is allowed from defined list of
989 allowed ip_addresses for user
989 allowed ip_addresses for user
990
990
991 :returns: boolean, True if ip is in allowed ip range
991 :returns: boolean, True if ip is in allowed ip range
992 """
992 """
993 # check IP
993 # check IP
994 inherit = self.inherit_default_permissions
994 inherit = self.inherit_default_permissions
995 return AuthUser.check_ip_allowed(self.user_id, self.ip_addr,
995 return AuthUser.check_ip_allowed(self.user_id, self.ip_addr,
996 inherit_from_default=inherit)
996 inherit_from_default=inherit)
997 @property
997 @property
998 def personal_repo_group(self):
998 def personal_repo_group(self):
999 return RepoGroup.get_user_personal_repo_group(self.user_id)
999 return RepoGroup.get_user_personal_repo_group(self.user_id)
1000
1000
1001 @classmethod
1001 @classmethod
1002 def check_ip_allowed(cls, user_id, ip_addr, inherit_from_default):
1002 def check_ip_allowed(cls, user_id, ip_addr, inherit_from_default):
1003 allowed_ips = AuthUser.get_allowed_ips(
1003 allowed_ips = AuthUser.get_allowed_ips(
1004 user_id, cache=True, inherit_from_default=inherit_from_default)
1004 user_id, cache=True, inherit_from_default=inherit_from_default)
1005 if check_ip_access(source_ip=ip_addr, allowed_ips=allowed_ips):
1005 if check_ip_access(source_ip=ip_addr, allowed_ips=allowed_ips):
1006 log.debug('IP:%s is in range of %s' % (ip_addr, allowed_ips))
1006 log.debug('IP:%s is in range of %s' % (ip_addr, allowed_ips))
1007 return True
1007 return True
1008 else:
1008 else:
1009 log.info('Access for IP:%s forbidden, '
1009 log.info('Access for IP:%s forbidden, '
1010 'not in %s' % (ip_addr, allowed_ips))
1010 'not in %s' % (ip_addr, allowed_ips))
1011 return False
1011 return False
1012
1012
1013 def __repr__(self):
1013 def __repr__(self):
1014 return "<AuthUser('id:%s[%s] ip:%s auth:%s')>"\
1014 return "<AuthUser('id:%s[%s] ip:%s auth:%s')>"\
1015 % (self.user_id, self.username, self.ip_addr, self.is_authenticated)
1015 % (self.user_id, self.username, self.ip_addr, self.is_authenticated)
1016
1016
1017 def set_authenticated(self, authenticated=True):
1017 def set_authenticated(self, authenticated=True):
1018 if self.user_id != self.anonymous_user.user_id:
1018 if self.user_id != self.anonymous_user.user_id:
1019 self.is_authenticated = authenticated
1019 self.is_authenticated = authenticated
1020
1020
1021 def get_cookie_store(self):
1021 def get_cookie_store(self):
1022 return {
1022 return {
1023 'username': self.username,
1023 'username': self.username,
1024 'password': md5(self.password),
1024 'password': md5(self.password),
1025 'user_id': self.user_id,
1025 'user_id': self.user_id,
1026 'is_authenticated': self.is_authenticated
1026 'is_authenticated': self.is_authenticated
1027 }
1027 }
1028
1028
1029 @classmethod
1029 @classmethod
1030 def from_cookie_store(cls, cookie_store):
1030 def from_cookie_store(cls, cookie_store):
1031 """
1031 """
1032 Creates AuthUser from a cookie store
1032 Creates AuthUser from a cookie store
1033
1033
1034 :param cls:
1034 :param cls:
1035 :param cookie_store:
1035 :param cookie_store:
1036 """
1036 """
1037 user_id = cookie_store.get('user_id')
1037 user_id = cookie_store.get('user_id')
1038 username = cookie_store.get('username')
1038 username = cookie_store.get('username')
1039 api_key = cookie_store.get('api_key')
1039 api_key = cookie_store.get('api_key')
1040 return AuthUser(user_id, api_key, username)
1040 return AuthUser(user_id, api_key, username)
1041
1041
1042 @classmethod
1042 @classmethod
1043 def get_allowed_ips(cls, user_id, cache=False, inherit_from_default=False):
1043 def get_allowed_ips(cls, user_id, cache=False, inherit_from_default=False):
1044 _set = set()
1044 _set = set()
1045
1045
1046 if inherit_from_default:
1046 if inherit_from_default:
1047 default_ips = UserIpMap.query().filter(
1047 default_ips = UserIpMap.query().filter(
1048 UserIpMap.user == User.get_default_user(cache=True))
1048 UserIpMap.user == User.get_default_user(cache=True))
1049 if cache:
1049 if cache:
1050 default_ips = default_ips.options(
1050 default_ips = default_ips.options(
1051 FromCache("sql_cache_short", "get_user_ips_default"))
1051 FromCache("sql_cache_short", "get_user_ips_default"))
1052
1052
1053 # populate from default user
1053 # populate from default user
1054 for ip in default_ips:
1054 for ip in default_ips:
1055 try:
1055 try:
1056 _set.add(ip.ip_addr)
1056 _set.add(ip.ip_addr)
1057 except ObjectDeletedError:
1057 except ObjectDeletedError:
1058 # since we use heavy caching sometimes it happens that
1058 # since we use heavy caching sometimes it happens that
1059 # we get deleted objects here, we just skip them
1059 # we get deleted objects here, we just skip them
1060 pass
1060 pass
1061
1061
1062 user_ips = UserIpMap.query().filter(UserIpMap.user_id == user_id)
1062 user_ips = UserIpMap.query().filter(UserIpMap.user_id == user_id)
1063 if cache:
1063 if cache:
1064 user_ips = user_ips.options(
1064 user_ips = user_ips.options(
1065 FromCache("sql_cache_short", "get_user_ips_%s" % user_id))
1065 FromCache("sql_cache_short", "get_user_ips_%s" % user_id))
1066
1066
1067 for ip in user_ips:
1067 for ip in user_ips:
1068 try:
1068 try:
1069 _set.add(ip.ip_addr)
1069 _set.add(ip.ip_addr)
1070 except ObjectDeletedError:
1070 except ObjectDeletedError:
1071 # since we use heavy caching sometimes it happens that we get
1071 # since we use heavy caching sometimes it happens that we get
1072 # deleted objects here, we just skip them
1072 # deleted objects here, we just skip them
1073 pass
1073 pass
1074 return _set or set(['0.0.0.0/0', '::/0'])
1074 return _set or set(['0.0.0.0/0', '::/0'])
1075
1075
1076
1076
1077 def set_available_permissions(config):
1077 def set_available_permissions(config):
1078 """
1078 """
1079 This function will propagate pylons globals with all available defined
1079 This function will propagate pylons globals with all available defined
1080 permission given in db. We don't want to check each time from db for new
1080 permission given in db. We don't want to check each time from db for new
1081 permissions since adding a new permission also requires application restart
1081 permissions since adding a new permission also requires application restart
1082 ie. to decorate new views with the newly created permission
1082 ie. to decorate new views with the newly created permission
1083
1083
1084 :param config: current pylons config instance
1084 :param config: current pylons config instance
1085
1085
1086 """
1086 """
1087 log.info('getting information about all available permissions')
1087 log.info('getting information about all available permissions')
1088 try:
1088 try:
1089 sa = meta.Session
1089 sa = meta.Session
1090 all_perms = sa.query(Permission).all()
1090 all_perms = sa.query(Permission).all()
1091 config['available_permissions'] = [x.permission_name for x in all_perms]
1091 config['available_permissions'] = [x.permission_name for x in all_perms]
1092 except Exception:
1092 except Exception:
1093 log.error(traceback.format_exc())
1093 log.error(traceback.format_exc())
1094 finally:
1094 finally:
1095 meta.Session.remove()
1095 meta.Session.remove()
1096
1096
1097
1097
1098 def get_csrf_token(session=None, force_new=False, save_if_missing=True):
1098 def get_csrf_token(session=None, force_new=False, save_if_missing=True):
1099 """
1099 """
1100 Return the current authentication token, creating one if one doesn't
1100 Return the current authentication token, creating one if one doesn't
1101 already exist and the save_if_missing flag is present.
1101 already exist and the save_if_missing flag is present.
1102
1102
1103 :param session: pass in the pylons session, else we use the global ones
1103 :param session: pass in the pylons session, else we use the global ones
1104 :param force_new: force to re-generate the token and store it in session
1104 :param force_new: force to re-generate the token and store it in session
1105 :param save_if_missing: save the newly generated token if it's missing in
1105 :param save_if_missing: save the newly generated token if it's missing in
1106 session
1106 session
1107 """
1107 """
1108 # NOTE(marcink): probably should be replaced with below one from pyramid 1.9
1108 # NOTE(marcink): probably should be replaced with below one from pyramid 1.9
1109 # from pyramid.csrf import get_csrf_token
1109 # from pyramid.csrf import get_csrf_token
1110
1110
1111 if not session:
1111 if not session:
1112 from pylons import session
1112 from pylons import session
1113
1113
1114 if (csrf_token_key not in session and save_if_missing) or force_new:
1114 if (csrf_token_key not in session and save_if_missing) or force_new:
1115 token = hashlib.sha1(str(random.getrandbits(128))).hexdigest()
1115 token = hashlib.sha1(str(random.getrandbits(128))).hexdigest()
1116 session[csrf_token_key] = token
1116 session[csrf_token_key] = token
1117 if hasattr(session, 'save'):
1117 if hasattr(session, 'save'):
1118 session.save()
1118 session.save()
1119 return session.get(csrf_token_key)
1119 return session.get(csrf_token_key)
1120
1120
1121
1121
1122 def get_request(perm_class):
1122 def get_request(perm_class):
1123 from pyramid.threadlocal import get_current_request
1123 from pyramid.threadlocal import get_current_request
1124 pyramid_request = get_current_request()
1124 pyramid_request = get_current_request()
1125 if not pyramid_request:
1125 if not pyramid_request:
1126 # return global request of pylons in case pyramid isn't available
1126 # return global request of pylons in case pyramid isn't available
1127 # NOTE(marcink): this should be removed after migration to pyramid
1127 # NOTE(marcink): this should be removed after migration to pyramid
1128 from pylons import request
1128 from pylons import request
1129 return request
1129 return request
1130 return pyramid_request
1130 return pyramid_request
1131
1131
1132
1132
1133 # CHECK DECORATORS
1133 # CHECK DECORATORS
1134 class CSRFRequired(object):
1134 class CSRFRequired(object):
1135 """
1135 """
1136 Decorator for authenticating a form
1136 Decorator for authenticating a form
1137
1137
1138 This decorator uses an authorization token stored in the client's
1138 This decorator uses an authorization token stored in the client's
1139 session for prevention of certain Cross-site request forgery (CSRF)
1139 session for prevention of certain Cross-site request forgery (CSRF)
1140 attacks (See
1140 attacks (See
1141 http://en.wikipedia.org/wiki/Cross-site_request_forgery for more
1141 http://en.wikipedia.org/wiki/Cross-site_request_forgery for more
1142 information).
1142 information).
1143
1143
1144 For use with the ``webhelpers.secure_form`` helper functions.
1144 For use with the ``webhelpers.secure_form`` helper functions.
1145
1145
1146 """
1146 """
1147 def __init__(self, token=csrf_token_key, header='X-CSRF-Token',
1147 def __init__(self, token=csrf_token_key, header='X-CSRF-Token',
1148 except_methods=None):
1148 except_methods=None):
1149 self.token = token
1149 self.token = token
1150 self.header = header
1150 self.header = header
1151 self.except_methods = except_methods or []
1151 self.except_methods = except_methods or []
1152
1152
1153 def __call__(self, func):
1153 def __call__(self, func):
1154 return get_cython_compat_decorator(self.__wrapper, func)
1154 return get_cython_compat_decorator(self.__wrapper, func)
1155
1155
1156 def _get_csrf(self, _request):
1156 def _get_csrf(self, _request):
1157 return _request.POST.get(self.token, _request.headers.get(self.header))
1157 return _request.POST.get(self.token, _request.headers.get(self.header))
1158
1158
1159 def check_csrf(self, _request, cur_token):
1159 def check_csrf(self, _request, cur_token):
1160 supplied_token = self._get_csrf(_request)
1160 supplied_token = self._get_csrf(_request)
1161 return supplied_token and supplied_token == cur_token
1161 return supplied_token and supplied_token == cur_token
1162
1162
1163 def _get_request(self):
1163 def _get_request(self):
1164 return get_request(self)
1164 return get_request(self)
1165
1165
1166 def __wrapper(self, func, *fargs, **fkwargs):
1166 def __wrapper(self, func, *fargs, **fkwargs):
1167 request = self._get_request()
1167 request = self._get_request()
1168
1168
1169 if request.method in self.except_methods:
1169 if request.method in self.except_methods:
1170 return func(*fargs, **fkwargs)
1170 return func(*fargs, **fkwargs)
1171
1171
1172 cur_token = get_csrf_token(save_if_missing=False)
1172 cur_token = get_csrf_token(save_if_missing=False)
1173 if self.check_csrf(request, cur_token):
1173 if self.check_csrf(request, cur_token):
1174 if request.POST.get(self.token):
1174 if request.POST.get(self.token):
1175 del request.POST[self.token]
1175 del request.POST[self.token]
1176 return func(*fargs, **fkwargs)
1176 return func(*fargs, **fkwargs)
1177 else:
1177 else:
1178 reason = 'token-missing'
1178 reason = 'token-missing'
1179 supplied_token = self._get_csrf(request)
1179 supplied_token = self._get_csrf(request)
1180 if supplied_token and cur_token != supplied_token:
1180 if supplied_token and cur_token != supplied_token:
1181 reason = 'token-mismatch [%s:%s]' % (
1181 reason = 'token-mismatch [%s:%s]' % (
1182 cur_token or ''[:6], supplied_token or ''[:6])
1182 cur_token or ''[:6], supplied_token or ''[:6])
1183
1183
1184 csrf_message = \
1184 csrf_message = \
1185 ("Cross-site request forgery detected, request denied. See "
1185 ("Cross-site request forgery detected, request denied. See "
1186 "http://en.wikipedia.org/wiki/Cross-site_request_forgery for "
1186 "http://en.wikipedia.org/wiki/Cross-site_request_forgery for "
1187 "more information.")
1187 "more information.")
1188 log.warn('Cross-site request forgery detected, request %r DENIED: %s '
1188 log.warn('Cross-site request forgery detected, request %r DENIED: %s '
1189 'REMOTE_ADDR:%s, HEADERS:%s' % (
1189 'REMOTE_ADDR:%s, HEADERS:%s' % (
1190 request, reason, request.remote_addr, request.headers))
1190 request, reason, request.remote_addr, request.headers))
1191
1191
1192 raise HTTPForbidden(explanation=csrf_message)
1192 raise HTTPForbidden(explanation=csrf_message)
1193
1193
1194
1194
1195 class LoginRequired(object):
1195 class LoginRequired(object):
1196 """
1196 """
1197 Must be logged in to execute this function else
1197 Must be logged in to execute this function else
1198 redirect to login page
1198 redirect to login page
1199
1199
1200 :param api_access: if enabled this checks only for valid auth token
1200 :param api_access: if enabled this checks only for valid auth token
1201 and grants access based on valid token
1201 and grants access based on valid token
1202 """
1202 """
1203 def __init__(self, auth_token_access=None):
1203 def __init__(self, auth_token_access=None):
1204 self.auth_token_access = auth_token_access
1204 self.auth_token_access = auth_token_access
1205
1205
1206 def __call__(self, func):
1206 def __call__(self, func):
1207 return get_cython_compat_decorator(self.__wrapper, func)
1207 return get_cython_compat_decorator(self.__wrapper, func)
1208
1208
1209 def _get_request(self):
1209 def _get_request(self):
1210 return get_request(self)
1210 return get_request(self)
1211
1211
1212 def __wrapper(self, func, *fargs, **fkwargs):
1212 def __wrapper(self, func, *fargs, **fkwargs):
1213 from rhodecode.lib import helpers as h
1213 from rhodecode.lib import helpers as h
1214 cls = fargs[0]
1214 cls = fargs[0]
1215 user = cls._rhodecode_user
1215 user = cls._rhodecode_user
1216 request = self._get_request()
1216 request = self._get_request()
1217
1217
1218 loc = "%s:%s" % (cls.__class__.__name__, func.__name__)
1218 loc = "%s:%s" % (cls.__class__.__name__, func.__name__)
1219 log.debug('Starting login restriction checks for user: %s' % (user,))
1219 log.debug('Starting login restriction checks for user: %s' % (user,))
1220 # check if our IP is allowed
1220 # check if our IP is allowed
1221 ip_access_valid = True
1221 ip_access_valid = True
1222 if not user.ip_allowed:
1222 if not user.ip_allowed:
1223 h.flash(h.literal(_('IP %s not allowed' % (user.ip_addr,))),
1223 h.flash(h.literal(_('IP %s not allowed' % (user.ip_addr,))),
1224 category='warning')
1224 category='warning')
1225 ip_access_valid = False
1225 ip_access_valid = False
1226
1226
1227 # check if we used an APIKEY and it's a valid one
1227 # check if we used an APIKEY and it's a valid one
1228 # defined white-list of controllers which API access will be enabled
1228 # defined white-list of controllers which API access will be enabled
1229 _auth_token = request.GET.get(
1229 _auth_token = request.GET.get(
1230 'auth_token', '') or request.GET.get('api_key', '')
1230 'auth_token', '') or request.GET.get('api_key', '')
1231 auth_token_access_valid = allowed_auth_token_access(
1231 auth_token_access_valid = allowed_auth_token_access(
1232 loc, auth_token=_auth_token)
1232 loc, auth_token=_auth_token)
1233
1233
1234 # explicit controller is enabled or API is in our whitelist
1234 # explicit controller is enabled or API is in our whitelist
1235 if self.auth_token_access or auth_token_access_valid:
1235 if self.auth_token_access or auth_token_access_valid:
1236 log.debug('Checking AUTH TOKEN access for %s' % (cls,))
1236 log.debug('Checking AUTH TOKEN access for %s' % (cls,))
1237 db_user = user.get_instance()
1237 db_user = user.get_instance()
1238
1238
1239 if db_user:
1239 if db_user:
1240 if self.auth_token_access:
1240 if self.auth_token_access:
1241 roles = self.auth_token_access
1241 roles = self.auth_token_access
1242 else:
1242 else:
1243 roles = [UserApiKeys.ROLE_HTTP]
1243 roles = [UserApiKeys.ROLE_HTTP]
1244 token_match = db_user.authenticate_by_token(
1244 token_match = db_user.authenticate_by_token(
1245 _auth_token, roles=roles)
1245 _auth_token, roles=roles)
1246 else:
1246 else:
1247 log.debug('Unable to fetch db instance for auth user: %s', user)
1247 log.debug('Unable to fetch db instance for auth user: %s', user)
1248 token_match = False
1248 token_match = False
1249
1249
1250 if _auth_token and token_match:
1250 if _auth_token and token_match:
1251 auth_token_access_valid = True
1251 auth_token_access_valid = True
1252 log.debug('AUTH TOKEN ****%s is VALID' % (_auth_token[-4:],))
1252 log.debug('AUTH TOKEN ****%s is VALID' % (_auth_token[-4:],))
1253 else:
1253 else:
1254 auth_token_access_valid = False
1254 auth_token_access_valid = False
1255 if not _auth_token:
1255 if not _auth_token:
1256 log.debug("AUTH TOKEN *NOT* present in request")
1256 log.debug("AUTH TOKEN *NOT* present in request")
1257 else:
1257 else:
1258 log.warning(
1258 log.warning(
1259 "AUTH TOKEN ****%s *NOT* valid" % _auth_token[-4:])
1259 "AUTH TOKEN ****%s *NOT* valid" % _auth_token[-4:])
1260
1260
1261 log.debug('Checking if %s is authenticated @ %s' % (user.username, loc))
1261 log.debug('Checking if %s is authenticated @ %s' % (user.username, loc))
1262 reason = 'RHODECODE_AUTH' if user.is_authenticated \
1262 reason = 'RHODECODE_AUTH' if user.is_authenticated \
1263 else 'AUTH_TOKEN_AUTH'
1263 else 'AUTH_TOKEN_AUTH'
1264
1264
1265 if ip_access_valid and (
1265 if ip_access_valid and (
1266 user.is_authenticated or auth_token_access_valid):
1266 user.is_authenticated or auth_token_access_valid):
1267 log.info(
1267 log.info(
1268 'user %s authenticating with:%s IS authenticated on func %s'
1268 'user %s authenticating with:%s IS authenticated on func %s'
1269 % (user, reason, loc))
1269 % (user, reason, loc))
1270
1270
1271 # update user data to check last activity
1271 # update user data to check last activity
1272 user.update_lastactivity()
1272 user.update_lastactivity()
1273 Session().commit()
1273 Session().commit()
1274 return func(*fargs, **fkwargs)
1274 return func(*fargs, **fkwargs)
1275 else:
1275 else:
1276 log.warning(
1276 log.warning(
1277 'user %s authenticating with:%s NOT authenticated on '
1277 'user %s authenticating with:%s NOT authenticated on '
1278 'func: %s: IP_ACCESS:%s AUTH_TOKEN_ACCESS:%s'
1278 'func: %s: IP_ACCESS:%s AUTH_TOKEN_ACCESS:%s'
1279 % (user, reason, loc, ip_access_valid,
1279 % (user, reason, loc, ip_access_valid,
1280 auth_token_access_valid))
1280 auth_token_access_valid))
1281 # we preserve the get PARAM
1281 # we preserve the get PARAM
1282 came_from = request.path_qs
1282 came_from = request.path_qs
1283 log.debug('redirecting to login page with %s' % (came_from,))
1283 log.debug('redirecting to login page with %s' % (came_from,))
1284 raise HTTPFound(
1284 raise HTTPFound(
1285 h.route_path('login', _query={'came_from': came_from}))
1285 h.route_path('login', _query={'came_from': came_from}))
1286
1286
1287
1287
1288 class NotAnonymous(object):
1288 class NotAnonymous(object):
1289 """
1289 """
1290 Must be logged in to execute this function else
1290 Must be logged in to execute this function else
1291 redirect to login page
1291 redirect to login page
1292 """
1292 """
1293
1293
1294 def __call__(self, func):
1294 def __call__(self, func):
1295 return get_cython_compat_decorator(self.__wrapper, func)
1295 return get_cython_compat_decorator(self.__wrapper, func)
1296
1296
1297 def _get_request(self):
1297 def _get_request(self):
1298 return get_request(self)
1298 return get_request(self)
1299
1299
1300 def __wrapper(self, func, *fargs, **fkwargs):
1300 def __wrapper(self, func, *fargs, **fkwargs):
1301 import rhodecode.lib.helpers as h
1301 import rhodecode.lib.helpers as h
1302 cls = fargs[0]
1302 cls = fargs[0]
1303 self.user = cls._rhodecode_user
1303 self.user = cls._rhodecode_user
1304 request = self._get_request()
1304 request = self._get_request()
1305
1305
1306 log.debug('Checking if user is not anonymous @%s' % cls)
1306 log.debug('Checking if user is not anonymous @%s' % cls)
1307
1307
1308 anonymous = self.user.username == User.DEFAULT_USER
1308 anonymous = self.user.username == User.DEFAULT_USER
1309
1309
1310 if anonymous:
1310 if anonymous:
1311 came_from = request.path_qs
1311 came_from = request.path_qs
1312 h.flash(_('You need to be a registered user to '
1312 h.flash(_('You need to be a registered user to '
1313 'perform this action'),
1313 'perform this action'),
1314 category='warning')
1314 category='warning')
1315 raise HTTPFound(
1315 raise HTTPFound(
1316 h.route_path('login', _query={'came_from': came_from}))
1316 h.route_path('login', _query={'came_from': came_from}))
1317 else:
1317 else:
1318 return func(*fargs, **fkwargs)
1318 return func(*fargs, **fkwargs)
1319
1319
1320
1320
1321 class XHRRequired(object):
1321 class XHRRequired(object):
1322 # TODO(marcink): remove this in favor of the predicates in pyramid routes
1322 # TODO(marcink): remove this in favor of the predicates in pyramid routes
1323
1323
1324 def __call__(self, func):
1324 def __call__(self, func):
1325 return get_cython_compat_decorator(self.__wrapper, func)
1325 return get_cython_compat_decorator(self.__wrapper, func)
1326
1326
1327 def _get_request(self):
1327 def _get_request(self):
1328 return get_request(self)
1328 return get_request(self)
1329
1329
1330 def __wrapper(self, func, *fargs, **fkwargs):
1330 def __wrapper(self, func, *fargs, **fkwargs):
1331 from pylons.controllers.util import abort
1331 from pylons.controllers.util import abort
1332 request = self._get_request()
1332 request = self._get_request()
1333
1333
1334 log.debug('Checking if request is XMLHttpRequest (XHR)')
1334 log.debug('Checking if request is XMLHttpRequest (XHR)')
1335 xhr_message = 'This is not a valid XMLHttpRequest (XHR) request'
1335 xhr_message = 'This is not a valid XMLHttpRequest (XHR) request'
1336
1336
1337 if not request.is_xhr:
1337 if not request.is_xhr:
1338 abort(400, detail=xhr_message)
1338 abort(400, detail=xhr_message)
1339
1339
1340 return func(*fargs, **fkwargs)
1340 return func(*fargs, **fkwargs)
1341
1341
1342
1342
1343 class HasAcceptedRepoType(object):
1343 class HasAcceptedRepoType(object):
1344 """
1344 """
1345 Check if requested repo is within given repo type aliases
1345 Check if requested repo is within given repo type aliases
1346 """
1346 """
1347
1347
1348 # TODO(marcink): remove this in favor of the predicates in pyramid routes
1348 # TODO(marcink): remove this in favor of the predicates in pyramid routes
1349
1349
1350 def __init__(self, *repo_type_list):
1350 def __init__(self, *repo_type_list):
1351 self.repo_type_list = set(repo_type_list)
1351 self.repo_type_list = set(repo_type_list)
1352
1352
1353 def __call__(self, func):
1353 def __call__(self, func):
1354 return get_cython_compat_decorator(self.__wrapper, func)
1354 return get_cython_compat_decorator(self.__wrapper, func)
1355
1355
1356 def __wrapper(self, func, *fargs, **fkwargs):
1356 def __wrapper(self, func, *fargs, **fkwargs):
1357 import rhodecode.lib.helpers as h
1357 import rhodecode.lib.helpers as h
1358 cls = fargs[0]
1358 cls = fargs[0]
1359 rhodecode_repo = cls.rhodecode_repo
1359 rhodecode_repo = cls.rhodecode_repo
1360
1360
1361 log.debug('%s checking repo type for %s in %s',
1361 log.debug('%s checking repo type for %s in %s',
1362 self.__class__.__name__,
1362 self.__class__.__name__,
1363 rhodecode_repo.alias, self.repo_type_list)
1363 rhodecode_repo.alias, self.repo_type_list)
1364
1364
1365 if rhodecode_repo.alias in self.repo_type_list:
1365 if rhodecode_repo.alias in self.repo_type_list:
1366 return func(*fargs, **fkwargs)
1366 return func(*fargs, **fkwargs)
1367 else:
1367 else:
1368 h.flash(h.literal(
1368 h.flash(h.literal(
1369 _('Action not supported for %s.' % rhodecode_repo.alias)),
1369 _('Action not supported for %s.' % rhodecode_repo.alias)),
1370 category='warning')
1370 category='warning')
1371 raise HTTPFound(
1371 raise HTTPFound(
1372 h.route_path('repo_summary',
1372 h.route_path('repo_summary',
1373 repo_name=cls.rhodecode_db_repo.repo_name))
1373 repo_name=cls.rhodecode_db_repo.repo_name))
1374
1374
1375
1375
1376 class PermsDecorator(object):
1376 class PermsDecorator(object):
1377 """
1377 """
1378 Base class for controller decorators, we extract the current user from
1378 Base class for controller decorators, we extract the current user from
1379 the class itself, which has it stored in base controllers
1379 the class itself, which has it stored in base controllers
1380 """
1380 """
1381
1381
1382 def __init__(self, *required_perms):
1382 def __init__(self, *required_perms):
1383 self.required_perms = set(required_perms)
1383 self.required_perms = set(required_perms)
1384
1384
1385 def __call__(self, func):
1385 def __call__(self, func):
1386 return get_cython_compat_decorator(self.__wrapper, func)
1386 return get_cython_compat_decorator(self.__wrapper, func)
1387
1387
1388 def _get_request(self):
1388 def _get_request(self):
1389 return get_request(self)
1389 return get_request(self)
1390
1390
1391 def _get_came_from(self):
1391 def _get_came_from(self):
1392 _request = self._get_request()
1392 _request = self._get_request()
1393
1393
1394 # both pylons/pyramid has this attribute
1394 # both pylons/pyramid has this attribute
1395 return _request.path_qs
1395 return _request.path_qs
1396
1396
1397 def __wrapper(self, func, *fargs, **fkwargs):
1397 def __wrapper(self, func, *fargs, **fkwargs):
1398 import rhodecode.lib.helpers as h
1398 import rhodecode.lib.helpers as h
1399 cls = fargs[0]
1399 cls = fargs[0]
1400 _user = cls._rhodecode_user
1400 _user = cls._rhodecode_user
1401
1401
1402 log.debug('checking %s permissions %s for %s %s',
1402 log.debug('checking %s permissions %s for %s %s',
1403 self.__class__.__name__, self.required_perms, cls, _user)
1403 self.__class__.__name__, self.required_perms, cls, _user)
1404
1404
1405 if self.check_permissions(_user):
1405 if self.check_permissions(_user):
1406 log.debug('Permission granted for %s %s', cls, _user)
1406 log.debug('Permission granted for %s %s', cls, _user)
1407 return func(*fargs, **fkwargs)
1407 return func(*fargs, **fkwargs)
1408
1408
1409 else:
1409 else:
1410 log.debug('Permission denied for %s %s', cls, _user)
1410 log.debug('Permission denied for %s %s', cls, _user)
1411 anonymous = _user.username == User.DEFAULT_USER
1411 anonymous = _user.username == User.DEFAULT_USER
1412
1412
1413 if anonymous:
1413 if anonymous:
1414 came_from = self._get_came_from()
1414 came_from = self._get_came_from()
1415 h.flash(_('You need to be signed in to view this page'),
1415 h.flash(_('You need to be signed in to view this page'),
1416 category='warning')
1416 category='warning')
1417 raise HTTPFound(
1417 raise HTTPFound(
1418 h.route_path('login', _query={'came_from': came_from}))
1418 h.route_path('login', _query={'came_from': came_from}))
1419
1419
1420 else:
1420 else:
1421 # redirect with 404 to prevent resource discovery
1421 # redirect with 404 to prevent resource discovery
1422 raise HTTPNotFound()
1422 raise HTTPNotFound()
1423
1423
1424 def check_permissions(self, user):
1424 def check_permissions(self, user):
1425 """Dummy function for overriding"""
1425 """Dummy function for overriding"""
1426 raise NotImplementedError(
1426 raise NotImplementedError(
1427 'You have to write this function in child class')
1427 'You have to write this function in child class')
1428
1428
1429
1429
1430 class HasPermissionAllDecorator(PermsDecorator):
1430 class HasPermissionAllDecorator(PermsDecorator):
1431 """
1431 """
1432 Checks for access permission for all given predicates. All of them
1432 Checks for access permission for all given predicates. All of them
1433 have to be meet in order to fulfill the request
1433 have to be meet in order to fulfill the request
1434 """
1434 """
1435
1435
1436 def check_permissions(self, user):
1436 def check_permissions(self, user):
1437 perms = user.permissions_with_scope({})
1437 perms = user.permissions_with_scope({})
1438 if self.required_perms.issubset(perms['global']):
1438 if self.required_perms.issubset(perms['global']):
1439 return True
1439 return True
1440 return False
1440 return False
1441
1441
1442
1442
1443 class HasPermissionAnyDecorator(PermsDecorator):
1443 class HasPermissionAnyDecorator(PermsDecorator):
1444 """
1444 """
1445 Checks for access permission for any of given predicates. In order to
1445 Checks for access permission for any of given predicates. In order to
1446 fulfill the request any of predicates must be meet
1446 fulfill the request any of predicates must be meet
1447 """
1447 """
1448
1448
1449 def check_permissions(self, user):
1449 def check_permissions(self, user):
1450 perms = user.permissions_with_scope({})
1450 perms = user.permissions_with_scope({})
1451 if self.required_perms.intersection(perms['global']):
1451 if self.required_perms.intersection(perms['global']):
1452 return True
1452 return True
1453 return False
1453 return False
1454
1454
1455
1455
1456 class HasRepoPermissionAllDecorator(PermsDecorator):
1456 class HasRepoPermissionAllDecorator(PermsDecorator):
1457 """
1457 """
1458 Checks for access permission for all given predicates for specific
1458 Checks for access permission for all given predicates for specific
1459 repository. All of them have to be meet in order to fulfill the request
1459 repository. All of them have to be meet in order to fulfill the request
1460 """
1460 """
1461 def _get_repo_name(self):
1461 def _get_repo_name(self):
1462 _request = self._get_request()
1462 _request = self._get_request()
1463 return get_repo_slug(_request)
1463 return get_repo_slug(_request)
1464
1464
1465 def check_permissions(self, user):
1465 def check_permissions(self, user):
1466 perms = user.permissions
1466 perms = user.permissions
1467 repo_name = self._get_repo_name()
1467 repo_name = self._get_repo_name()
1468
1468
1469 try:
1469 try:
1470 user_perms = set([perms['repositories'][repo_name]])
1470 user_perms = set([perms['repositories'][repo_name]])
1471 except KeyError:
1471 except KeyError:
1472 log.debug('cannot locate repo with name: `%s` in permissions defs',
1472 log.debug('cannot locate repo with name: `%s` in permissions defs',
1473 repo_name)
1473 repo_name)
1474 return False
1474 return False
1475
1475
1476 log.debug('checking `%s` permissions for repo `%s`',
1476 log.debug('checking `%s` permissions for repo `%s`',
1477 user_perms, repo_name)
1477 user_perms, repo_name)
1478 if self.required_perms.issubset(user_perms):
1478 if self.required_perms.issubset(user_perms):
1479 return True
1479 return True
1480 return False
1480 return False
1481
1481
1482
1482
1483 class HasRepoPermissionAnyDecorator(PermsDecorator):
1483 class HasRepoPermissionAnyDecorator(PermsDecorator):
1484 """
1484 """
1485 Checks for access permission for any of given predicates for specific
1485 Checks for access permission for any of given predicates for specific
1486 repository. In order to fulfill the request any of predicates must be meet
1486 repository. In order to fulfill the request any of predicates must be meet
1487 """
1487 """
1488 def _get_repo_name(self):
1488 def _get_repo_name(self):
1489 _request = self._get_request()
1489 _request = self._get_request()
1490 return get_repo_slug(_request)
1490 return get_repo_slug(_request)
1491
1491
1492 def check_permissions(self, user):
1492 def check_permissions(self, user):
1493 perms = user.permissions
1493 perms = user.permissions
1494 repo_name = self._get_repo_name()
1494 repo_name = self._get_repo_name()
1495
1495
1496 try:
1496 try:
1497 user_perms = set([perms['repositories'][repo_name]])
1497 user_perms = set([perms['repositories'][repo_name]])
1498 except KeyError:
1498 except KeyError:
1499 log.debug('cannot locate repo with name: `%s` in permissions defs',
1499 log.debug('cannot locate repo with name: `%s` in permissions defs',
1500 repo_name)
1500 repo_name)
1501 return False
1501 return False
1502
1502
1503 log.debug('checking `%s` permissions for repo `%s`',
1503 log.debug('checking `%s` permissions for repo `%s`',
1504 user_perms, repo_name)
1504 user_perms, repo_name)
1505 if self.required_perms.intersection(user_perms):
1505 if self.required_perms.intersection(user_perms):
1506 return True
1506 return True
1507 return False
1507 return False
1508
1508
1509
1509
1510 class HasRepoGroupPermissionAllDecorator(PermsDecorator):
1510 class HasRepoGroupPermissionAllDecorator(PermsDecorator):
1511 """
1511 """
1512 Checks for access permission for all given predicates for specific
1512 Checks for access permission for all given predicates for specific
1513 repository group. All of them have to be meet in order to
1513 repository group. All of them have to be meet in order to
1514 fulfill the request
1514 fulfill the request
1515 """
1515 """
1516 def _get_repo_group_name(self):
1516 def _get_repo_group_name(self):
1517 _request = self._get_request()
1517 _request = self._get_request()
1518 return get_repo_group_slug(_request)
1518 return get_repo_group_slug(_request)
1519
1519
1520 def check_permissions(self, user):
1520 def check_permissions(self, user):
1521 perms = user.permissions
1521 perms = user.permissions
1522 group_name = self._get_repo_group_name()
1522 group_name = self._get_repo_group_name()
1523 try:
1523 try:
1524 user_perms = set([perms['repositories_groups'][group_name]])
1524 user_perms = set([perms['repositories_groups'][group_name]])
1525 except KeyError:
1525 except KeyError:
1526 log.debug('cannot locate repo group with name: `%s` in permissions defs',
1526 log.debug('cannot locate repo group with name: `%s` in permissions defs',
1527 group_name)
1527 group_name)
1528 return False
1528 return False
1529
1529
1530 log.debug('checking `%s` permissions for repo group `%s`',
1530 log.debug('checking `%s` permissions for repo group `%s`',
1531 user_perms, group_name)
1531 user_perms, group_name)
1532 if self.required_perms.issubset(user_perms):
1532 if self.required_perms.issubset(user_perms):
1533 return True
1533 return True
1534 return False
1534 return False
1535
1535
1536
1536
1537 class HasRepoGroupPermissionAnyDecorator(PermsDecorator):
1537 class HasRepoGroupPermissionAnyDecorator(PermsDecorator):
1538 """
1538 """
1539 Checks for access permission for any of given predicates for specific
1539 Checks for access permission for any of given predicates for specific
1540 repository group. In order to fulfill the request any
1540 repository group. In order to fulfill the request any
1541 of predicates must be met
1541 of predicates must be met
1542 """
1542 """
1543 def _get_repo_group_name(self):
1543 def _get_repo_group_name(self):
1544 _request = self._get_request()
1544 _request = self._get_request()
1545 return get_repo_group_slug(_request)
1545 return get_repo_group_slug(_request)
1546
1546
1547 def check_permissions(self, user):
1547 def check_permissions(self, user):
1548 perms = user.permissions
1548 perms = user.permissions
1549 group_name = self._get_repo_group_name()
1549 group_name = self._get_repo_group_name()
1550
1550
1551 try:
1551 try:
1552 user_perms = set([perms['repositories_groups'][group_name]])
1552 user_perms = set([perms['repositories_groups'][group_name]])
1553 except KeyError:
1553 except KeyError:
1554 log.debug('cannot locate repo group with name: `%s` in permissions defs',
1554 log.debug('cannot locate repo group with name: `%s` in permissions defs',
1555 group_name)
1555 group_name)
1556 return False
1556 return False
1557
1557
1558 log.debug('checking `%s` permissions for repo group `%s`',
1558 log.debug('checking `%s` permissions for repo group `%s`',
1559 user_perms, group_name)
1559 user_perms, group_name)
1560 if self.required_perms.intersection(user_perms):
1560 if self.required_perms.intersection(user_perms):
1561 return True
1561 return True
1562 return False
1562 return False
1563
1563
1564
1564
1565 class HasUserGroupPermissionAllDecorator(PermsDecorator):
1565 class HasUserGroupPermissionAllDecorator(PermsDecorator):
1566 """
1566 """
1567 Checks for access permission for all given predicates for specific
1567 Checks for access permission for all given predicates for specific
1568 user group. All of them have to be meet in order to fulfill the request
1568 user group. All of them have to be meet in order to fulfill the request
1569 """
1569 """
1570 def _get_user_group_name(self):
1570 def _get_user_group_name(self):
1571 _request = self._get_request()
1571 _request = self._get_request()
1572 return get_user_group_slug(_request)
1572 return get_user_group_slug(_request)
1573
1573
1574 def check_permissions(self, user):
1574 def check_permissions(self, user):
1575 perms = user.permissions
1575 perms = user.permissions
1576 group_name = self._get_user_group_name()
1576 group_name = self._get_user_group_name()
1577 try:
1577 try:
1578 user_perms = set([perms['user_groups'][group_name]])
1578 user_perms = set([perms['user_groups'][group_name]])
1579 except KeyError:
1579 except KeyError:
1580 return False
1580 return False
1581
1581
1582 if self.required_perms.issubset(user_perms):
1582 if self.required_perms.issubset(user_perms):
1583 return True
1583 return True
1584 return False
1584 return False
1585
1585
1586
1586
1587 class HasUserGroupPermissionAnyDecorator(PermsDecorator):
1587 class HasUserGroupPermissionAnyDecorator(PermsDecorator):
1588 """
1588 """
1589 Checks for access permission for any of given predicates for specific
1589 Checks for access permission for any of given predicates for specific
1590 user group. In order to fulfill the request any of predicates must be meet
1590 user group. In order to fulfill the request any of predicates must be meet
1591 """
1591 """
1592 def _get_user_group_name(self):
1592 def _get_user_group_name(self):
1593 _request = self._get_request()
1593 _request = self._get_request()
1594 return get_user_group_slug(_request)
1594 return get_user_group_slug(_request)
1595
1595
1596 def check_permissions(self, user):
1596 def check_permissions(self, user):
1597 perms = user.permissions
1597 perms = user.permissions
1598 group_name = self._get_user_group_name()
1598 group_name = self._get_user_group_name()
1599 try:
1599 try:
1600 user_perms = set([perms['user_groups'][group_name]])
1600 user_perms = set([perms['user_groups'][group_name]])
1601 except KeyError:
1601 except KeyError:
1602 return False
1602 return False
1603
1603
1604 if self.required_perms.intersection(user_perms):
1604 if self.required_perms.intersection(user_perms):
1605 return True
1605 return True
1606 return False
1606 return False
1607
1607
1608
1608
1609 # CHECK FUNCTIONS
1609 # CHECK FUNCTIONS
1610 class PermsFunction(object):
1610 class PermsFunction(object):
1611 """Base function for other check functions"""
1611 """Base function for other check functions"""
1612
1612
1613 def __init__(self, *perms):
1613 def __init__(self, *perms):
1614 self.required_perms = set(perms)
1614 self.required_perms = set(perms)
1615 self.repo_name = None
1615 self.repo_name = None
1616 self.repo_group_name = None
1616 self.repo_group_name = None
1617 self.user_group_name = None
1617 self.user_group_name = None
1618
1618
1619 def __bool__(self):
1619 def __bool__(self):
1620 frame = inspect.currentframe()
1620 frame = inspect.currentframe()
1621 stack_trace = traceback.format_stack(frame)
1621 stack_trace = traceback.format_stack(frame)
1622 log.error('Checking bool value on a class instance of perm '
1622 log.error('Checking bool value on a class instance of perm '
1623 'function is not allowed: %s' % ''.join(stack_trace))
1623 'function is not allowed: %s' % ''.join(stack_trace))
1624 # rather than throwing errors, here we always return False so if by
1624 # rather than throwing errors, here we always return False so if by
1625 # accident someone checks truth for just an instance it will always end
1625 # accident someone checks truth for just an instance it will always end
1626 # up in returning False
1626 # up in returning False
1627 return False
1627 return False
1628 __nonzero__ = __bool__
1628 __nonzero__ = __bool__
1629
1629
1630 def __call__(self, check_location='', user=None):
1630 def __call__(self, check_location='', user=None):
1631 if not user:
1631 if not user:
1632 log.debug('Using user attribute from global request')
1632 log.debug('Using user attribute from global request')
1633 # TODO: remove this someday,put as user as attribute here
1633 # TODO: remove this someday,put as user as attribute here
1634 request = self._get_request()
1634 request = self._get_request()
1635 user = request.user
1635 user = request.user
1636
1636
1637 # init auth user if not already given
1637 # init auth user if not already given
1638 if not isinstance(user, AuthUser):
1638 if not isinstance(user, AuthUser):
1639 log.debug('Wrapping user %s into AuthUser', user)
1639 log.debug('Wrapping user %s into AuthUser', user)
1640 user = AuthUser(user.user_id)
1640 user = AuthUser(user.user_id)
1641
1641
1642 cls_name = self.__class__.__name__
1642 cls_name = self.__class__.__name__
1643 check_scope = self._get_check_scope(cls_name)
1643 check_scope = self._get_check_scope(cls_name)
1644 check_location = check_location or 'unspecified location'
1644 check_location = check_location or 'unspecified location'
1645
1645
1646 log.debug('checking cls:%s %s usr:%s %s @ %s', cls_name,
1646 log.debug('checking cls:%s %s usr:%s %s @ %s', cls_name,
1647 self.required_perms, user, check_scope, check_location)
1647 self.required_perms, user, check_scope, check_location)
1648 if not user:
1648 if not user:
1649 log.warning('Empty user given for permission check')
1649 log.warning('Empty user given for permission check')
1650 return False
1650 return False
1651
1651
1652 if self.check_permissions(user):
1652 if self.check_permissions(user):
1653 log.debug('Permission to repo:`%s` GRANTED for user:`%s` @ %s',
1653 log.debug('Permission to repo:`%s` GRANTED for user:`%s` @ %s',
1654 check_scope, user, check_location)
1654 check_scope, user, check_location)
1655 return True
1655 return True
1656
1656
1657 else:
1657 else:
1658 log.debug('Permission to repo:`%s` DENIED for user:`%s` @ %s',
1658 log.debug('Permission to repo:`%s` DENIED for user:`%s` @ %s',
1659 check_scope, user, check_location)
1659 check_scope, user, check_location)
1660 return False
1660 return False
1661
1661
1662 def _get_request(self):
1662 def _get_request(self):
1663 return get_request(self)
1663 return get_request(self)
1664
1664
1665 def _get_check_scope(self, cls_name):
1665 def _get_check_scope(self, cls_name):
1666 return {
1666 return {
1667 'HasPermissionAll': 'GLOBAL',
1667 'HasPermissionAll': 'GLOBAL',
1668 'HasPermissionAny': 'GLOBAL',
1668 'HasPermissionAny': 'GLOBAL',
1669 'HasRepoPermissionAll': 'repo:%s' % self.repo_name,
1669 'HasRepoPermissionAll': 'repo:%s' % self.repo_name,
1670 'HasRepoPermissionAny': 'repo:%s' % self.repo_name,
1670 'HasRepoPermissionAny': 'repo:%s' % self.repo_name,
1671 'HasRepoGroupPermissionAll': 'repo_group:%s' % self.repo_group_name,
1671 'HasRepoGroupPermissionAll': 'repo_group:%s' % self.repo_group_name,
1672 'HasRepoGroupPermissionAny': 'repo_group:%s' % self.repo_group_name,
1672 'HasRepoGroupPermissionAny': 'repo_group:%s' % self.repo_group_name,
1673 'HasUserGroupPermissionAll': 'user_group:%s' % self.user_group_name,
1673 'HasUserGroupPermissionAll': 'user_group:%s' % self.user_group_name,
1674 'HasUserGroupPermissionAny': 'user_group:%s' % self.user_group_name,
1674 'HasUserGroupPermissionAny': 'user_group:%s' % self.user_group_name,
1675 }.get(cls_name, '?:%s' % cls_name)
1675 }.get(cls_name, '?:%s' % cls_name)
1676
1676
1677 def check_permissions(self, user):
1677 def check_permissions(self, user):
1678 """Dummy function for overriding"""
1678 """Dummy function for overriding"""
1679 raise Exception('You have to write this function in child class')
1679 raise Exception('You have to write this function in child class')
1680
1680
1681
1681
1682 class HasPermissionAll(PermsFunction):
1682 class HasPermissionAll(PermsFunction):
1683 def check_permissions(self, user):
1683 def check_permissions(self, user):
1684 perms = user.permissions_with_scope({})
1684 perms = user.permissions_with_scope({})
1685 if self.required_perms.issubset(perms.get('global')):
1685 if self.required_perms.issubset(perms.get('global')):
1686 return True
1686 return True
1687 return False
1687 return False
1688
1688
1689
1689
1690 class HasPermissionAny(PermsFunction):
1690 class HasPermissionAny(PermsFunction):
1691 def check_permissions(self, user):
1691 def check_permissions(self, user):
1692 perms = user.permissions_with_scope({})
1692 perms = user.permissions_with_scope({})
1693 if self.required_perms.intersection(perms.get('global')):
1693 if self.required_perms.intersection(perms.get('global')):
1694 return True
1694 return True
1695 return False
1695 return False
1696
1696
1697
1697
1698 class HasRepoPermissionAll(PermsFunction):
1698 class HasRepoPermissionAll(PermsFunction):
1699 def __call__(self, repo_name=None, check_location='', user=None):
1699 def __call__(self, repo_name=None, check_location='', user=None):
1700 self.repo_name = repo_name
1700 self.repo_name = repo_name
1701 return super(HasRepoPermissionAll, self).__call__(check_location, user)
1701 return super(HasRepoPermissionAll, self).__call__(check_location, user)
1702
1702
1703 def _get_repo_name(self):
1703 def _get_repo_name(self):
1704 if not self.repo_name:
1704 if not self.repo_name:
1705 _request = self._get_request()
1705 _request = self._get_request()
1706 self.repo_name = get_repo_slug(_request)
1706 self.repo_name = get_repo_slug(_request)
1707 return self.repo_name
1707 return self.repo_name
1708
1708
1709 def check_permissions(self, user):
1709 def check_permissions(self, user):
1710 self.repo_name = self._get_repo_name()
1710 self.repo_name = self._get_repo_name()
1711 perms = user.permissions
1711 perms = user.permissions
1712 try:
1712 try:
1713 user_perms = set([perms['repositories'][self.repo_name]])
1713 user_perms = set([perms['repositories'][self.repo_name]])
1714 except KeyError:
1714 except KeyError:
1715 return False
1715 return False
1716 if self.required_perms.issubset(user_perms):
1716 if self.required_perms.issubset(user_perms):
1717 return True
1717 return True
1718 return False
1718 return False
1719
1719
1720
1720
1721 class HasRepoPermissionAny(PermsFunction):
1721 class HasRepoPermissionAny(PermsFunction):
1722 def __call__(self, repo_name=None, check_location='', user=None):
1722 def __call__(self, repo_name=None, check_location='', user=None):
1723 self.repo_name = repo_name
1723 self.repo_name = repo_name
1724 return super(HasRepoPermissionAny, self).__call__(check_location, user)
1724 return super(HasRepoPermissionAny, self).__call__(check_location, user)
1725
1725
1726 def _get_repo_name(self):
1726 def _get_repo_name(self):
1727 if not self.repo_name:
1727 if not self.repo_name:
1728 _request = self._get_request()
1728 _request = self._get_request()
1729 self.repo_name = get_repo_slug(_request)
1729 self.repo_name = get_repo_slug(_request)
1730 return self.repo_name
1730 return self.repo_name
1731
1731
1732 def check_permissions(self, user):
1732 def check_permissions(self, user):
1733 self.repo_name = self._get_repo_name()
1733 self.repo_name = self._get_repo_name()
1734 perms = user.permissions
1734 perms = user.permissions
1735 try:
1735 try:
1736 user_perms = set([perms['repositories'][self.repo_name]])
1736 user_perms = set([perms['repositories'][self.repo_name]])
1737 except KeyError:
1737 except KeyError:
1738 return False
1738 return False
1739 if self.required_perms.intersection(user_perms):
1739 if self.required_perms.intersection(user_perms):
1740 return True
1740 return True
1741 return False
1741 return False
1742
1742
1743
1743
1744 class HasRepoGroupPermissionAny(PermsFunction):
1744 class HasRepoGroupPermissionAny(PermsFunction):
1745 def __call__(self, group_name=None, check_location='', user=None):
1745 def __call__(self, group_name=None, check_location='', user=None):
1746 self.repo_group_name = group_name
1746 self.repo_group_name = group_name
1747 return super(HasRepoGroupPermissionAny, self).__call__(
1747 return super(HasRepoGroupPermissionAny, self).__call__(
1748 check_location, user)
1748 check_location, user)
1749
1749
1750 def check_permissions(self, user):
1750 def check_permissions(self, user):
1751 perms = user.permissions
1751 perms = user.permissions
1752 try:
1752 try:
1753 user_perms = set(
1753 user_perms = set(
1754 [perms['repositories_groups'][self.repo_group_name]])
1754 [perms['repositories_groups'][self.repo_group_name]])
1755 except KeyError:
1755 except KeyError:
1756 return False
1756 return False
1757 if self.required_perms.intersection(user_perms):
1757 if self.required_perms.intersection(user_perms):
1758 return True
1758 return True
1759 return False
1759 return False
1760
1760
1761
1761
1762 class HasRepoGroupPermissionAll(PermsFunction):
1762 class HasRepoGroupPermissionAll(PermsFunction):
1763 def __call__(self, group_name=None, check_location='', user=None):
1763 def __call__(self, group_name=None, check_location='', user=None):
1764 self.repo_group_name = group_name
1764 self.repo_group_name = group_name
1765 return super(HasRepoGroupPermissionAll, self).__call__(
1765 return super(HasRepoGroupPermissionAll, self).__call__(
1766 check_location, user)
1766 check_location, user)
1767
1767
1768 def check_permissions(self, user):
1768 def check_permissions(self, user):
1769 perms = user.permissions
1769 perms = user.permissions
1770 try:
1770 try:
1771 user_perms = set(
1771 user_perms = set(
1772 [perms['repositories_groups'][self.repo_group_name]])
1772 [perms['repositories_groups'][self.repo_group_name]])
1773 except KeyError:
1773 except KeyError:
1774 return False
1774 return False
1775 if self.required_perms.issubset(user_perms):
1775 if self.required_perms.issubset(user_perms):
1776 return True
1776 return True
1777 return False
1777 return False
1778
1778
1779
1779
1780 class HasUserGroupPermissionAny(PermsFunction):
1780 class HasUserGroupPermissionAny(PermsFunction):
1781 def __call__(self, user_group_name=None, check_location='', user=None):
1781 def __call__(self, user_group_name=None, check_location='', user=None):
1782 self.user_group_name = user_group_name
1782 self.user_group_name = user_group_name
1783 return super(HasUserGroupPermissionAny, self).__call__(
1783 return super(HasUserGroupPermissionAny, self).__call__(
1784 check_location, user)
1784 check_location, user)
1785
1785
1786 def check_permissions(self, user):
1786 def check_permissions(self, user):
1787 perms = user.permissions
1787 perms = user.permissions
1788 try:
1788 try:
1789 user_perms = set([perms['user_groups'][self.user_group_name]])
1789 user_perms = set([perms['user_groups'][self.user_group_name]])
1790 except KeyError:
1790 except KeyError:
1791 return False
1791 return False
1792 if self.required_perms.intersection(user_perms):
1792 if self.required_perms.intersection(user_perms):
1793 return True
1793 return True
1794 return False
1794 return False
1795
1795
1796
1796
1797 class HasUserGroupPermissionAll(PermsFunction):
1797 class HasUserGroupPermissionAll(PermsFunction):
1798 def __call__(self, user_group_name=None, check_location='', user=None):
1798 def __call__(self, user_group_name=None, check_location='', user=None):
1799 self.user_group_name = user_group_name
1799 self.user_group_name = user_group_name
1800 return super(HasUserGroupPermissionAll, self).__call__(
1800 return super(HasUserGroupPermissionAll, self).__call__(
1801 check_location, user)
1801 check_location, user)
1802
1802
1803 def check_permissions(self, user):
1803 def check_permissions(self, user):
1804 perms = user.permissions
1804 perms = user.permissions
1805 try:
1805 try:
1806 user_perms = set([perms['user_groups'][self.user_group_name]])
1806 user_perms = set([perms['user_groups'][self.user_group_name]])
1807 except KeyError:
1807 except KeyError:
1808 return False
1808 return False
1809 if self.required_perms.issubset(user_perms):
1809 if self.required_perms.issubset(user_perms):
1810 return True
1810 return True
1811 return False
1811 return False
1812
1812
1813
1813
1814 # SPECIAL VERSION TO HANDLE MIDDLEWARE AUTH
1814 # SPECIAL VERSION TO HANDLE MIDDLEWARE AUTH
1815 class HasPermissionAnyMiddleware(object):
1815 class HasPermissionAnyMiddleware(object):
1816 def __init__(self, *perms):
1816 def __init__(self, *perms):
1817 self.required_perms = set(perms)
1817 self.required_perms = set(perms)
1818
1818
1819 def __call__(self, user, repo_name):
1819 def __call__(self, user, repo_name):
1820 # repo_name MUST be unicode, since we handle keys in permission
1820 # repo_name MUST be unicode, since we handle keys in permission
1821 # dict by unicode
1821 # dict by unicode
1822 repo_name = safe_unicode(repo_name)
1822 repo_name = safe_unicode(repo_name)
1823 user = AuthUser(user.user_id)
1823 user = AuthUser(user.user_id)
1824 log.debug(
1824 log.debug(
1825 'Checking VCS protocol permissions %s for user:%s repo:`%s`',
1825 'Checking VCS protocol permissions %s for user:%s repo:`%s`',
1826 self.required_perms, user, repo_name)
1826 self.required_perms, user, repo_name)
1827
1827
1828 if self.check_permissions(user, repo_name):
1828 if self.check_permissions(user, repo_name):
1829 log.debug('Permission to repo:`%s` GRANTED for user:%s @ %s',
1829 log.debug('Permission to repo:`%s` GRANTED for user:%s @ %s',
1830 repo_name, user, 'PermissionMiddleware')
1830 repo_name, user, 'PermissionMiddleware')
1831 return True
1831 return True
1832
1832
1833 else:
1833 else:
1834 log.debug('Permission to repo:`%s` DENIED for user:%s @ %s',
1834 log.debug('Permission to repo:`%s` DENIED for user:%s @ %s',
1835 repo_name, user, 'PermissionMiddleware')
1835 repo_name, user, 'PermissionMiddleware')
1836 return False
1836 return False
1837
1837
1838 def check_permissions(self, user, repo_name):
1838 def check_permissions(self, user, repo_name):
1839 perms = user.permissions_with_scope({'repo_name': repo_name})
1839 perms = user.permissions_with_scope({'repo_name': repo_name})
1840
1840
1841 try:
1841 try:
1842 user_perms = set([perms['repositories'][repo_name]])
1842 user_perms = set([perms['repositories'][repo_name]])
1843 except Exception:
1843 except Exception:
1844 log.exception('Error while accessing user permissions')
1844 log.exception('Error while accessing user permissions')
1845 return False
1845 return False
1846
1846
1847 if self.required_perms.intersection(user_perms):
1847 if self.required_perms.intersection(user_perms):
1848 return True
1848 return True
1849 return False
1849 return False
1850
1850
1851
1851
1852 # SPECIAL VERSION TO HANDLE API AUTH
1852 # SPECIAL VERSION TO HANDLE API AUTH
1853 class _BaseApiPerm(object):
1853 class _BaseApiPerm(object):
1854 def __init__(self, *perms):
1854 def __init__(self, *perms):
1855 self.required_perms = set(perms)
1855 self.required_perms = set(perms)
1856
1856
1857 def __call__(self, check_location=None, user=None, repo_name=None,
1857 def __call__(self, check_location=None, user=None, repo_name=None,
1858 group_name=None, user_group_name=None):
1858 group_name=None, user_group_name=None):
1859 cls_name = self.__class__.__name__
1859 cls_name = self.__class__.__name__
1860 check_scope = 'global:%s' % (self.required_perms,)
1860 check_scope = 'global:%s' % (self.required_perms,)
1861 if repo_name:
1861 if repo_name:
1862 check_scope += ', repo_name:%s' % (repo_name,)
1862 check_scope += ', repo_name:%s' % (repo_name,)
1863
1863
1864 if group_name:
1864 if group_name:
1865 check_scope += ', repo_group_name:%s' % (group_name,)
1865 check_scope += ', repo_group_name:%s' % (group_name,)
1866
1866
1867 if user_group_name:
1867 if user_group_name:
1868 check_scope += ', user_group_name:%s' % (user_group_name,)
1868 check_scope += ', user_group_name:%s' % (user_group_name,)
1869
1869
1870 log.debug(
1870 log.debug(
1871 'checking cls:%s %s %s @ %s'
1871 'checking cls:%s %s %s @ %s'
1872 % (cls_name, self.required_perms, check_scope, check_location))
1872 % (cls_name, self.required_perms, check_scope, check_location))
1873 if not user:
1873 if not user:
1874 log.debug('Empty User passed into arguments')
1874 log.debug('Empty User passed into arguments')
1875 return False
1875 return False
1876
1876
1877 # process user
1877 # process user
1878 if not isinstance(user, AuthUser):
1878 if not isinstance(user, AuthUser):
1879 user = AuthUser(user.user_id)
1879 user = AuthUser(user.user_id)
1880 if not check_location:
1880 if not check_location:
1881 check_location = 'unspecified'
1881 check_location = 'unspecified'
1882 if self.check_permissions(user.permissions, repo_name, group_name,
1882 if self.check_permissions(user.permissions, repo_name, group_name,
1883 user_group_name):
1883 user_group_name):
1884 log.debug('Permission to repo:`%s` GRANTED for user:`%s` @ %s',
1884 log.debug('Permission to repo:`%s` GRANTED for user:`%s` @ %s',
1885 check_scope, user, check_location)
1885 check_scope, user, check_location)
1886 return True
1886 return True
1887
1887
1888 else:
1888 else:
1889 log.debug('Permission to repo:`%s` DENIED for user:`%s` @ %s',
1889 log.debug('Permission to repo:`%s` DENIED for user:`%s` @ %s',
1890 check_scope, user, check_location)
1890 check_scope, user, check_location)
1891 return False
1891 return False
1892
1892
1893 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1893 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1894 user_group_name=None):
1894 user_group_name=None):
1895 """
1895 """
1896 implement in child class should return True if permissions are ok,
1896 implement in child class should return True if permissions are ok,
1897 False otherwise
1897 False otherwise
1898
1898
1899 :param perm_defs: dict with permission definitions
1899 :param perm_defs: dict with permission definitions
1900 :param repo_name: repo name
1900 :param repo_name: repo name
1901 """
1901 """
1902 raise NotImplementedError()
1902 raise NotImplementedError()
1903
1903
1904
1904
1905 class HasPermissionAllApi(_BaseApiPerm):
1905 class HasPermissionAllApi(_BaseApiPerm):
1906 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1906 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1907 user_group_name=None):
1907 user_group_name=None):
1908 if self.required_perms.issubset(perm_defs.get('global')):
1908 if self.required_perms.issubset(perm_defs.get('global')):
1909 return True
1909 return True
1910 return False
1910 return False
1911
1911
1912
1912
1913 class HasPermissionAnyApi(_BaseApiPerm):
1913 class HasPermissionAnyApi(_BaseApiPerm):
1914 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1914 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1915 user_group_name=None):
1915 user_group_name=None):
1916 if self.required_perms.intersection(perm_defs.get('global')):
1916 if self.required_perms.intersection(perm_defs.get('global')):
1917 return True
1917 return True
1918 return False
1918 return False
1919
1919
1920
1920
1921 class HasRepoPermissionAllApi(_BaseApiPerm):
1921 class HasRepoPermissionAllApi(_BaseApiPerm):
1922 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1922 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1923 user_group_name=None):
1923 user_group_name=None):
1924 try:
1924 try:
1925 _user_perms = set([perm_defs['repositories'][repo_name]])
1925 _user_perms = set([perm_defs['repositories'][repo_name]])
1926 except KeyError:
1926 except KeyError:
1927 log.warning(traceback.format_exc())
1927 log.warning(traceback.format_exc())
1928 return False
1928 return False
1929 if self.required_perms.issubset(_user_perms):
1929 if self.required_perms.issubset(_user_perms):
1930 return True
1930 return True
1931 return False
1931 return False
1932
1932
1933
1933
1934 class HasRepoPermissionAnyApi(_BaseApiPerm):
1934 class HasRepoPermissionAnyApi(_BaseApiPerm):
1935 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1935 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1936 user_group_name=None):
1936 user_group_name=None):
1937 try:
1937 try:
1938 _user_perms = set([perm_defs['repositories'][repo_name]])
1938 _user_perms = set([perm_defs['repositories'][repo_name]])
1939 except KeyError:
1939 except KeyError:
1940 log.warning(traceback.format_exc())
1940 log.warning(traceback.format_exc())
1941 return False
1941 return False
1942 if self.required_perms.intersection(_user_perms):
1942 if self.required_perms.intersection(_user_perms):
1943 return True
1943 return True
1944 return False
1944 return False
1945
1945
1946
1946
1947 class HasRepoGroupPermissionAnyApi(_BaseApiPerm):
1947 class HasRepoGroupPermissionAnyApi(_BaseApiPerm):
1948 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1948 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1949 user_group_name=None):
1949 user_group_name=None):
1950 try:
1950 try:
1951 _user_perms = set([perm_defs['repositories_groups'][group_name]])
1951 _user_perms = set([perm_defs['repositories_groups'][group_name]])
1952 except KeyError:
1952 except KeyError:
1953 log.warning(traceback.format_exc())
1953 log.warning(traceback.format_exc())
1954 return False
1954 return False
1955 if self.required_perms.intersection(_user_perms):
1955 if self.required_perms.intersection(_user_perms):
1956 return True
1956 return True
1957 return False
1957 return False
1958
1958
1959
1959
1960 class HasRepoGroupPermissionAllApi(_BaseApiPerm):
1960 class HasRepoGroupPermissionAllApi(_BaseApiPerm):
1961 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1961 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1962 user_group_name=None):
1962 user_group_name=None):
1963 try:
1963 try:
1964 _user_perms = set([perm_defs['repositories_groups'][group_name]])
1964 _user_perms = set([perm_defs['repositories_groups'][group_name]])
1965 except KeyError:
1965 except KeyError:
1966 log.warning(traceback.format_exc())
1966 log.warning(traceback.format_exc())
1967 return False
1967 return False
1968 if self.required_perms.issubset(_user_perms):
1968 if self.required_perms.issubset(_user_perms):
1969 return True
1969 return True
1970 return False
1970 return False
1971
1971
1972
1972
1973 class HasUserGroupPermissionAnyApi(_BaseApiPerm):
1973 class HasUserGroupPermissionAnyApi(_BaseApiPerm):
1974 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1974 def check_permissions(self, perm_defs, repo_name=None, group_name=None,
1975 user_group_name=None):
1975 user_group_name=None):
1976 try:
1976 try:
1977 _user_perms = set([perm_defs['user_groups'][user_group_name]])
1977 _user_perms = set([perm_defs['user_groups'][user_group_name]])
1978 except KeyError:
1978 except KeyError:
1979 log.warning(traceback.format_exc())
1979 log.warning(traceback.format_exc())
1980 return False
1980 return False
1981 if self.required_perms.intersection(_user_perms):
1981 if self.required_perms.intersection(_user_perms):
1982 return True
1982 return True
1983 return False
1983 return False
1984
1984
1985
1985
1986 def check_ip_access(source_ip, allowed_ips=None):
1986 def check_ip_access(source_ip, allowed_ips=None):
1987 """
1987 """
1988 Checks if source_ip is a subnet of any of allowed_ips.
1988 Checks if source_ip is a subnet of any of allowed_ips.
1989
1989
1990 :param source_ip:
1990 :param source_ip:
1991 :param allowed_ips: list of allowed ips together with mask
1991 :param allowed_ips: list of allowed ips together with mask
1992 """
1992 """
1993 log.debug('checking if ip:%s is subnet of %s' % (source_ip, allowed_ips))
1993 log.debug('checking if ip:%s is subnet of %s' % (source_ip, allowed_ips))
1994 source_ip_address = ipaddress.ip_address(safe_unicode(source_ip))
1994 source_ip_address = ipaddress.ip_address(safe_unicode(source_ip))
1995 if isinstance(allowed_ips, (tuple, list, set)):
1995 if isinstance(allowed_ips, (tuple, list, set)):
1996 for ip in allowed_ips:
1996 for ip in allowed_ips:
1997 ip = safe_unicode(ip)
1997 ip = safe_unicode(ip)
1998 try:
1998 try:
1999 network_address = ipaddress.ip_network(ip, strict=False)
1999 network_address = ipaddress.ip_network(ip, strict=False)
2000 if source_ip_address in network_address:
2000 if source_ip_address in network_address:
2001 log.debug('IP %s is network %s' %
2001 log.debug('IP %s is network %s' %
2002 (source_ip_address, network_address))
2002 (source_ip_address, network_address))
2003 return True
2003 return True
2004 # for any case we cannot determine the IP, don't crash just
2004 # for any case we cannot determine the IP, don't crash just
2005 # skip it and log as error, we want to say forbidden still when
2005 # skip it and log as error, we want to say forbidden still when
2006 # sending bad IP
2006 # sending bad IP
2007 except Exception:
2007 except Exception:
2008 log.error(traceback.format_exc())
2008 log.error(traceback.format_exc())
2009 continue
2009 continue
2010 return False
2010 return False
2011
2011
2012
2012
2013 def get_cython_compat_decorator(wrapper, func):
2013 def get_cython_compat_decorator(wrapper, func):
2014 """
2014 """
2015 Creates a cython compatible decorator. The previously used
2015 Creates a cython compatible decorator. The previously used
2016 decorator.decorator() function seems to be incompatible with cython.
2016 decorator.decorator() function seems to be incompatible with cython.
2017
2017
2018 :param wrapper: __wrapper method of the decorator class
2018 :param wrapper: __wrapper method of the decorator class
2019 :param func: decorated function
2019 :param func: decorated function
2020 """
2020 """
2021 @wraps(func)
2021 @wraps(func)
2022 def local_wrapper(*args, **kwds):
2022 def local_wrapper(*args, **kwds):
2023 return wrapper(func, *args, **kwds)
2023 return wrapper(func, *args, **kwds)
2024 local_wrapper.__wrapped__ = func
2024 local_wrapper.__wrapped__ = func
2025 return local_wrapper
2025 return local_wrapper
2026
2026
2027
2027
1 NO CONTENT: modified file
NO CONTENT: modified file
The requested commit or file is too big and content was truncated. Show full diff
@@ -1,909 +1,910 b''
1 # -*- coding: utf-8 -*-
1 # -*- coding: utf-8 -*-
2
2
3 # Copyright (C) 2010-2017 RhodeCode GmbH
3 # Copyright (C) 2010-2017 RhodeCode GmbH
4 #
4 #
5 # This program is free software: you can redistribute it and/or modify
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU Affero General Public License, version 3
6 # it under the terms of the GNU Affero General Public License, version 3
7 # (only), as published by the Free Software Foundation.
7 # (only), as published by the Free Software Foundation.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU Affero General Public License
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 #
16 #
17 # This program is dual-licensed. If you wish to learn more about the
17 # This program is dual-licensed. If you wish to learn more about the
18 # RhodeCode Enterprise Edition, including its added features, Support services,
18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20
20
21 """
21 """
22 users model for RhodeCode
22 users model for RhodeCode
23 """
23 """
24
24
25 import logging
25 import logging
26 import traceback
26 import traceback
27
27
28 import datetime
28 import datetime
29 from pylons.i18n.translation import _
29 from pylons.i18n.translation import _
30
30
31 import ipaddress
31 import ipaddress
32 from sqlalchemy.exc import DatabaseError
32 from sqlalchemy.exc import DatabaseError
33
33
34 from rhodecode import events
34 from rhodecode import events
35 from rhodecode.lib.user_log_filter import user_log_filter
35 from rhodecode.lib.user_log_filter import user_log_filter
36 from rhodecode.lib.utils2 import (
36 from rhodecode.lib.utils2 import (
37 safe_unicode, get_current_rhodecode_user, action_logger_generic,
37 safe_unicode, get_current_rhodecode_user, action_logger_generic,
38 AttributeDict, str2bool)
38 AttributeDict, str2bool)
39 from rhodecode.lib.exceptions import (
39 from rhodecode.lib.exceptions import (
40 DefaultUserException, UserOwnsReposException, UserOwnsRepoGroupsException,
40 DefaultUserException, UserOwnsReposException, UserOwnsRepoGroupsException,
41 UserOwnsUserGroupsException, NotAllowedToCreateUserError)
41 UserOwnsUserGroupsException, NotAllowedToCreateUserError)
42 from rhodecode.lib.caching_query import FromCache
42 from rhodecode.lib.caching_query import FromCache
43 from rhodecode.model import BaseModel
43 from rhodecode.model import BaseModel
44 from rhodecode.model.auth_token import AuthTokenModel
44 from rhodecode.model.auth_token import AuthTokenModel
45 from rhodecode.model.db import (
45 from rhodecode.model.db import (
46 _hash_key, true, false, or_, joinedload, User, UserToPerm,
46 _hash_key, true, false, or_, joinedload, User, UserToPerm,
47 UserEmailMap, UserIpMap, UserLog)
47 UserEmailMap, UserIpMap, UserLog)
48 from rhodecode.model.meta import Session
48 from rhodecode.model.meta import Session
49 from rhodecode.model.repo_group import RepoGroupModel
49 from rhodecode.model.repo_group import RepoGroupModel
50
50
51
51
52 log = logging.getLogger(__name__)
52 log = logging.getLogger(__name__)
53
53
54
54
55 class UserModel(BaseModel):
55 class UserModel(BaseModel):
56 cls = User
56 cls = User
57
57
58 def get(self, user_id, cache=False):
58 def get(self, user_id, cache=False):
59 user = self.sa.query(User)
59 user = self.sa.query(User)
60 if cache:
60 if cache:
61 user = user.options(
61 user = user.options(
62 FromCache("sql_cache_short", "get_user_%s" % user_id))
62 FromCache("sql_cache_short", "get_user_%s" % user_id))
63 return user.get(user_id)
63 return user.get(user_id)
64
64
65 def get_user(self, user):
65 def get_user(self, user):
66 return self._get_user(user)
66 return self._get_user(user)
67
67
68 def _serialize_user(self, user):
68 def _serialize_user(self, user):
69 import rhodecode.lib.helpers as h
69 import rhodecode.lib.helpers as h
70
70
71 return {
71 return {
72 'id': user.user_id,
72 'id': user.user_id,
73 'first_name': user.first_name,
73 'first_name': user.first_name,
74 'last_name': user.last_name,
74 'last_name': user.last_name,
75 'username': user.username,
75 'username': user.username,
76 'email': user.email,
76 'email': user.email,
77 'icon_link': h.gravatar_url(user.email, 30),
77 'icon_link': h.gravatar_url(user.email, 30),
78 'value_display': h.escape(h.person(user)),
78 'value_display': h.escape(h.person(user)),
79 'value': user.username,
79 'value': user.username,
80 'value_type': 'user',
80 'value_type': 'user',
81 'active': user.active,
81 'active': user.active,
82 }
82 }
83
83
84 def get_users(self, name_contains=None, limit=20, only_active=True):
84 def get_users(self, name_contains=None, limit=20, only_active=True):
85
85
86 query = self.sa.query(User)
86 query = self.sa.query(User)
87 if only_active:
87 if only_active:
88 query = query.filter(User.active == true())
88 query = query.filter(User.active == true())
89
89
90 if name_contains:
90 if name_contains:
91 ilike_expression = u'%{}%'.format(safe_unicode(name_contains))
91 ilike_expression = u'%{}%'.format(safe_unicode(name_contains))
92 query = query.filter(
92 query = query.filter(
93 or_(
93 or_(
94 User.name.ilike(ilike_expression),
94 User.name.ilike(ilike_expression),
95 User.lastname.ilike(ilike_expression),
95 User.lastname.ilike(ilike_expression),
96 User.username.ilike(ilike_expression)
96 User.username.ilike(ilike_expression)
97 )
97 )
98 )
98 )
99 query = query.limit(limit)
99 query = query.limit(limit)
100 users = query.all()
100 users = query.all()
101
101
102 _users = [
102 _users = [
103 self._serialize_user(user) for user in users
103 self._serialize_user(user) for user in users
104 ]
104 ]
105 return _users
105 return _users
106
106
107 def get_by_username(self, username, cache=False, case_insensitive=False):
107 def get_by_username(self, username, cache=False, case_insensitive=False):
108
108
109 if case_insensitive:
109 if case_insensitive:
110 user = self.sa.query(User).filter(User.username.ilike(username))
110 user = self.sa.query(User).filter(User.username.ilike(username))
111 else:
111 else:
112 user = self.sa.query(User)\
112 user = self.sa.query(User)\
113 .filter(User.username == username)
113 .filter(User.username == username)
114 if cache:
114 if cache:
115 name_key = _hash_key(username)
115 name_key = _hash_key(username)
116 user = user.options(
116 user = user.options(
117 FromCache("sql_cache_short", "get_user_%s" % name_key))
117 FromCache("sql_cache_short", "get_user_%s" % name_key))
118 return user.scalar()
118 return user.scalar()
119
119
120 def get_by_email(self, email, cache=False, case_insensitive=False):
120 def get_by_email(self, email, cache=False, case_insensitive=False):
121 return User.get_by_email(email, case_insensitive, cache)
121 return User.get_by_email(email, case_insensitive, cache)
122
122
123 def get_by_auth_token(self, auth_token, cache=False):
123 def get_by_auth_token(self, auth_token, cache=False):
124 return User.get_by_auth_token(auth_token, cache)
124 return User.get_by_auth_token(auth_token, cache)
125
125
126 def get_active_user_count(self, cache=False):
126 def get_active_user_count(self, cache=False):
127 return User.query().filter(
127 return User.query().filter(
128 User.active == True).filter(
128 User.active == True).filter(
129 User.username != User.DEFAULT_USER).count()
129 User.username != User.DEFAULT_USER).count()
130
130
131 def create(self, form_data, cur_user=None):
131 def create(self, form_data, cur_user=None):
132 if not cur_user:
132 if not cur_user:
133 cur_user = getattr(get_current_rhodecode_user(), 'username', None)
133 cur_user = getattr(get_current_rhodecode_user(), 'username', None)
134
134
135 user_data = {
135 user_data = {
136 'username': form_data['username'],
136 'username': form_data['username'],
137 'password': form_data['password'],
137 'password': form_data['password'],
138 'email': form_data['email'],
138 'email': form_data['email'],
139 'firstname': form_data['firstname'],
139 'firstname': form_data['firstname'],
140 'lastname': form_data['lastname'],
140 'lastname': form_data['lastname'],
141 'active': form_data['active'],
141 'active': form_data['active'],
142 'extern_type': form_data['extern_type'],
142 'extern_type': form_data['extern_type'],
143 'extern_name': form_data['extern_name'],
143 'extern_name': form_data['extern_name'],
144 'admin': False,
144 'admin': False,
145 'cur_user': cur_user
145 'cur_user': cur_user
146 }
146 }
147
147
148 if 'create_repo_group' in form_data:
148 if 'create_repo_group' in form_data:
149 user_data['create_repo_group'] = str2bool(
149 user_data['create_repo_group'] = str2bool(
150 form_data.get('create_repo_group'))
150 form_data.get('create_repo_group'))
151
151
152 try:
152 try:
153 if form_data.get('password_change'):
153 if form_data.get('password_change'):
154 user_data['force_password_change'] = True
154 user_data['force_password_change'] = True
155 return UserModel().create_or_update(**user_data)
155 return UserModel().create_or_update(**user_data)
156 except Exception:
156 except Exception:
157 log.error(traceback.format_exc())
157 log.error(traceback.format_exc())
158 raise
158 raise
159
159
160 def update_user(self, user, skip_attrs=None, **kwargs):
160 def update_user(self, user, skip_attrs=None, **kwargs):
161 from rhodecode.lib.auth import get_crypt_password
161 from rhodecode.lib.auth import get_crypt_password
162
162
163 user = self._get_user(user)
163 user = self._get_user(user)
164 if user.username == User.DEFAULT_USER:
164 if user.username == User.DEFAULT_USER:
165 raise DefaultUserException(
165 raise DefaultUserException(
166 _("You can't Edit this user since it's"
166 _("You can't Edit this user since it's"
167 " crucial for entire application"))
167 " crucial for entire application"))
168
168
169 # first store only defaults
169 # first store only defaults
170 user_attrs = {
170 user_attrs = {
171 'updating_user_id': user.user_id,
171 'updating_user_id': user.user_id,
172 'username': user.username,
172 'username': user.username,
173 'password': user.password,
173 'password': user.password,
174 'email': user.email,
174 'email': user.email,
175 'firstname': user.name,
175 'firstname': user.name,
176 'lastname': user.lastname,
176 'lastname': user.lastname,
177 'active': user.active,
177 'active': user.active,
178 'admin': user.admin,
178 'admin': user.admin,
179 'extern_name': user.extern_name,
179 'extern_name': user.extern_name,
180 'extern_type': user.extern_type,
180 'extern_type': user.extern_type,
181 'language': user.user_data.get('language')
181 'language': user.user_data.get('language')
182 }
182 }
183
183
184 # in case there's new_password, that comes from form, use it to
184 # in case there's new_password, that comes from form, use it to
185 # store password
185 # store password
186 if kwargs.get('new_password'):
186 if kwargs.get('new_password'):
187 kwargs['password'] = kwargs['new_password']
187 kwargs['password'] = kwargs['new_password']
188
188
189 # cleanups, my_account password change form
189 # cleanups, my_account password change form
190 kwargs.pop('current_password', None)
190 kwargs.pop('current_password', None)
191 kwargs.pop('new_password', None)
191 kwargs.pop('new_password', None)
192
192
193 # cleanups, user edit password change form
193 # cleanups, user edit password change form
194 kwargs.pop('password_confirmation', None)
194 kwargs.pop('password_confirmation', None)
195 kwargs.pop('password_change', None)
195 kwargs.pop('password_change', None)
196
196
197 # create repo group on user creation
197 # create repo group on user creation
198 kwargs.pop('create_repo_group', None)
198 kwargs.pop('create_repo_group', None)
199
199
200 # legacy forms send name, which is the firstname
200 # legacy forms send name, which is the firstname
201 firstname = kwargs.pop('name', None)
201 firstname = kwargs.pop('name', None)
202 if firstname:
202 if firstname:
203 kwargs['firstname'] = firstname
203 kwargs['firstname'] = firstname
204
204
205 for k, v in kwargs.items():
205 for k, v in kwargs.items():
206 # skip if we don't want to update this
206 # skip if we don't want to update this
207 if skip_attrs and k in skip_attrs:
207 if skip_attrs and k in skip_attrs:
208 continue
208 continue
209
209
210 user_attrs[k] = v
210 user_attrs[k] = v
211
211
212 try:
212 try:
213 return self.create_or_update(**user_attrs)
213 return self.create_or_update(**user_attrs)
214 except Exception:
214 except Exception:
215 log.error(traceback.format_exc())
215 log.error(traceback.format_exc())
216 raise
216 raise
217
217
218 def create_or_update(
218 def create_or_update(
219 self, username, password, email, firstname='', lastname='',
219 self, username, password, email, firstname='', lastname='',
220 active=True, admin=False, extern_type=None, extern_name=None,
220 active=True, admin=False, extern_type=None, extern_name=None,
221 cur_user=None, plugin=None, force_password_change=False,
221 cur_user=None, plugin=None, force_password_change=False,
222 allow_to_create_user=True, create_repo_group=None,
222 allow_to_create_user=True, create_repo_group=None,
223 updating_user_id=None, language=None, strict_creation_check=True):
223 updating_user_id=None, language=None, strict_creation_check=True):
224 """
224 """
225 Creates a new instance if not found, or updates current one
225 Creates a new instance if not found, or updates current one
226
226
227 :param username:
227 :param username:
228 :param password:
228 :param password:
229 :param email:
229 :param email:
230 :param firstname:
230 :param firstname:
231 :param lastname:
231 :param lastname:
232 :param active:
232 :param active:
233 :param admin:
233 :param admin:
234 :param extern_type:
234 :param extern_type:
235 :param extern_name:
235 :param extern_name:
236 :param cur_user:
236 :param cur_user:
237 :param plugin: optional plugin this method was called from
237 :param plugin: optional plugin this method was called from
238 :param force_password_change: toggles new or existing user flag
238 :param force_password_change: toggles new or existing user flag
239 for password change
239 for password change
240 :param allow_to_create_user: Defines if the method can actually create
240 :param allow_to_create_user: Defines if the method can actually create
241 new users
241 new users
242 :param create_repo_group: Defines if the method should also
242 :param create_repo_group: Defines if the method should also
243 create an repo group with user name, and owner
243 create an repo group with user name, and owner
244 :param updating_user_id: if we set it up this is the user we want to
244 :param updating_user_id: if we set it up this is the user we want to
245 update this allows to editing username.
245 update this allows to editing username.
246 :param language: language of user from interface.
246 :param language: language of user from interface.
247
247
248 :returns: new User object with injected `is_new_user` attribute.
248 :returns: new User object with injected `is_new_user` attribute.
249 """
249 """
250 if not cur_user:
250 if not cur_user:
251 cur_user = getattr(get_current_rhodecode_user(), 'username', None)
251 cur_user = getattr(get_current_rhodecode_user(), 'username', None)
252
252
253 from rhodecode.lib.auth import (
253 from rhodecode.lib.auth import (
254 get_crypt_password, check_password, generate_auth_token)
254 get_crypt_password, check_password, generate_auth_token)
255 from rhodecode.lib.hooks_base import (
255 from rhodecode.lib.hooks_base import (
256 log_create_user, check_allowed_create_user)
256 log_create_user, check_allowed_create_user)
257
257
258 def _password_change(new_user, password):
258 def _password_change(new_user, password):
259 # empty password
259 # empty password
260 if not new_user.password:
260 if not new_user.password:
261 return False
261 return False
262
262
263 # password check is only needed for RhodeCode internal auth calls
263 # password check is only needed for RhodeCode internal auth calls
264 # in case it's a plugin we don't care
264 # in case it's a plugin we don't care
265 if not plugin:
265 if not plugin:
266
266
267 # first check if we gave crypted password back, and if it
267 # first check if we gave crypted password back, and if it
268 # matches it's not password change
268 # matches it's not password change
269 if new_user.password == password:
269 if new_user.password == password:
270 return False
270 return False
271
271
272 password_match = check_password(password, new_user.password)
272 password_match = check_password(password, new_user.password)
273 if not password_match:
273 if not password_match:
274 return True
274 return True
275
275
276 return False
276 return False
277
277
278 # read settings on default personal repo group creation
278 # read settings on default personal repo group creation
279 if create_repo_group is None:
279 if create_repo_group is None:
280 default_create_repo_group = RepoGroupModel()\
280 default_create_repo_group = RepoGroupModel()\
281 .get_default_create_personal_repo_group()
281 .get_default_create_personal_repo_group()
282 create_repo_group = default_create_repo_group
282 create_repo_group = default_create_repo_group
283
283
284 user_data = {
284 user_data = {
285 'username': username,
285 'username': username,
286 'password': password,
286 'password': password,
287 'email': email,
287 'email': email,
288 'firstname': firstname,
288 'firstname': firstname,
289 'lastname': lastname,
289 'lastname': lastname,
290 'active': active,
290 'active': active,
291 'admin': admin
291 'admin': admin
292 }
292 }
293
293
294 if updating_user_id:
294 if updating_user_id:
295 log.debug('Checking for existing account in RhodeCode '
295 log.debug('Checking for existing account in RhodeCode '
296 'database with user_id `%s` ' % (updating_user_id,))
296 'database with user_id `%s` ' % (updating_user_id,))
297 user = User.get(updating_user_id)
297 user = User.get(updating_user_id)
298 else:
298 else:
299 log.debug('Checking for existing account in RhodeCode '
299 log.debug('Checking for existing account in RhodeCode '
300 'database with username `%s` ' % (username,))
300 'database with username `%s` ' % (username,))
301 user = User.get_by_username(username, case_insensitive=True)
301 user = User.get_by_username(username, case_insensitive=True)
302
302
303 if user is None:
303 if user is None:
304 # we check internal flag if this method is actually allowed to
304 # we check internal flag if this method is actually allowed to
305 # create new user
305 # create new user
306 if not allow_to_create_user:
306 if not allow_to_create_user:
307 msg = ('Method wants to create new user, but it is not '
307 msg = ('Method wants to create new user, but it is not '
308 'allowed to do so')
308 'allowed to do so')
309 log.warning(msg)
309 log.warning(msg)
310 raise NotAllowedToCreateUserError(msg)
310 raise NotAllowedToCreateUserError(msg)
311
311
312 log.debug('Creating new user %s', username)
312 log.debug('Creating new user %s', username)
313
313
314 # only if we create user that is active
314 # only if we create user that is active
315 new_active_user = active
315 new_active_user = active
316 if new_active_user and strict_creation_check:
316 if new_active_user and strict_creation_check:
317 # raises UserCreationError if it's not allowed for any reason to
317 # raises UserCreationError if it's not allowed for any reason to
318 # create new active user, this also executes pre-create hooks
318 # create new active user, this also executes pre-create hooks
319 check_allowed_create_user(user_data, cur_user, strict_check=True)
319 check_allowed_create_user(user_data, cur_user, strict_check=True)
320 events.trigger(events.UserPreCreate(user_data))
320 events.trigger(events.UserPreCreate(user_data))
321 new_user = User()
321 new_user = User()
322 edit = False
322 edit = False
323 else:
323 else:
324 log.debug('updating user %s', username)
324 log.debug('updating user %s', username)
325 events.trigger(events.UserPreUpdate(user, user_data))
325 events.trigger(events.UserPreUpdate(user, user_data))
326 new_user = user
326 new_user = user
327 edit = True
327 edit = True
328
328
329 # we're not allowed to edit default user
329 # we're not allowed to edit default user
330 if user.username == User.DEFAULT_USER:
330 if user.username == User.DEFAULT_USER:
331 raise DefaultUserException(
331 raise DefaultUserException(
332 _("You can't edit this user (`%(username)s`) since it's "
332 _("You can't edit this user (`%(username)s`) since it's "
333 "crucial for entire application") % {'username': user.username})
333 "crucial for entire application") % {'username': user.username})
334
334
335 # inject special attribute that will tell us if User is new or old
335 # inject special attribute that will tell us if User is new or old
336 new_user.is_new_user = not edit
336 new_user.is_new_user = not edit
337 # for users that didn's specify auth type, we use RhodeCode built in
337 # for users that didn's specify auth type, we use RhodeCode built in
338 from rhodecode.authentication.plugins import auth_rhodecode
338 from rhodecode.authentication.plugins import auth_rhodecode
339 extern_name = extern_name or auth_rhodecode.RhodeCodeAuthPlugin.name
339 extern_name = extern_name or auth_rhodecode.RhodeCodeAuthPlugin.name
340 extern_type = extern_type or auth_rhodecode.RhodeCodeAuthPlugin.name
340 extern_type = extern_type or auth_rhodecode.RhodeCodeAuthPlugin.name
341
341
342 try:
342 try:
343 new_user.username = username
343 new_user.username = username
344 new_user.admin = admin
344 new_user.admin = admin
345 new_user.email = email
345 new_user.email = email
346 new_user.active = active
346 new_user.active = active
347 new_user.extern_name = safe_unicode(extern_name)
347 new_user.extern_name = safe_unicode(extern_name)
348 new_user.extern_type = safe_unicode(extern_type)
348 new_user.extern_type = safe_unicode(extern_type)
349 new_user.name = firstname
349 new_user.name = firstname
350 new_user.lastname = lastname
350 new_user.lastname = lastname
351
351
352 # set password only if creating an user or password is changed
352 # set password only if creating an user or password is changed
353 if not edit or _password_change(new_user, password):
353 if not edit or _password_change(new_user, password):
354 reason = 'new password' if edit else 'new user'
354 reason = 'new password' if edit else 'new user'
355 log.debug('Updating password reason=>%s', reason)
355 log.debug('Updating password reason=>%s', reason)
356 new_user.password = get_crypt_password(password) if password else None
356 new_user.password = get_crypt_password(password) if password else None
357
357
358 if force_password_change:
358 if force_password_change:
359 new_user.update_userdata(force_password_change=True)
359 new_user.update_userdata(force_password_change=True)
360 if language:
360 if language:
361 new_user.update_userdata(language=language)
361 new_user.update_userdata(language=language)
362 new_user.update_userdata(notification_status=True)
362 new_user.update_userdata(notification_status=True)
363
363
364 self.sa.add(new_user)
364 self.sa.add(new_user)
365
365
366 if not edit and create_repo_group:
366 if not edit and create_repo_group:
367 RepoGroupModel().create_personal_repo_group(
367 RepoGroupModel().create_personal_repo_group(
368 new_user, commit_early=False)
368 new_user, commit_early=False)
369
369
370 if not edit:
370 if not edit:
371 # add the RSS token
371 # add the RSS token
372 AuthTokenModel().create(username,
372 AuthTokenModel().create(username,
373 description='Generated feed token',
373 description='Generated feed token',
374 role=AuthTokenModel.cls.ROLE_FEED)
374 role=AuthTokenModel.cls.ROLE_FEED)
375 log_create_user(created_by=cur_user, **new_user.get_dict())
375 kwargs = new_user.get_dict()
376 # backward compat, require api_keys present
377 kwargs['api_keys'] = kwargs['auth_tokens']
378 log_create_user(created_by=cur_user, **kwargs)
376 events.trigger(events.UserPostCreate(user_data))
379 events.trigger(events.UserPostCreate(user_data))
377 return new_user
380 return new_user
378 except (DatabaseError,):
381 except (DatabaseError,):
379 log.error(traceback.format_exc())
382 log.error(traceback.format_exc())
380 raise
383 raise
381
384
382 def create_registration(self, form_data):
385 def create_registration(self, form_data):
383 from rhodecode.model.notification import NotificationModel
386 from rhodecode.model.notification import NotificationModel
384 from rhodecode.model.notification import EmailNotificationModel
387 from rhodecode.model.notification import EmailNotificationModel
385
388
386 try:
389 try:
387 form_data['admin'] = False
390 form_data['admin'] = False
388 form_data['extern_name'] = 'rhodecode'
391 form_data['extern_name'] = 'rhodecode'
389 form_data['extern_type'] = 'rhodecode'
392 form_data['extern_type'] = 'rhodecode'
390 new_user = self.create(form_data)
393 new_user = self.create(form_data)
391
394
392 self.sa.add(new_user)
395 self.sa.add(new_user)
393 self.sa.flush()
396 self.sa.flush()
394
397
395 user_data = new_user.get_dict()
398 user_data = new_user.get_dict()
396 kwargs = {
399 kwargs = {
397 # use SQLALCHEMY safe dump of user data
400 # use SQLALCHEMY safe dump of user data
398 'user': AttributeDict(user_data),
401 'user': AttributeDict(user_data),
399 'date': datetime.datetime.now()
402 'date': datetime.datetime.now()
400 }
403 }
401 notification_type = EmailNotificationModel.TYPE_REGISTRATION
404 notification_type = EmailNotificationModel.TYPE_REGISTRATION
402 # pre-generate the subject for notification itself
405 # pre-generate the subject for notification itself
403 (subject,
406 (subject,
404 _h, _e, # we don't care about those
407 _h, _e, # we don't care about those
405 body_plaintext) = EmailNotificationModel().render_email(
408 body_plaintext) = EmailNotificationModel().render_email(
406 notification_type, **kwargs)
409 notification_type, **kwargs)
407
410
408 # create notification objects, and emails
411 # create notification objects, and emails
409 NotificationModel().create(
412 NotificationModel().create(
410 created_by=new_user,
413 created_by=new_user,
411 notification_subject=subject,
414 notification_subject=subject,
412 notification_body=body_plaintext,
415 notification_body=body_plaintext,
413 notification_type=notification_type,
416 notification_type=notification_type,
414 recipients=None, # all admins
417 recipients=None, # all admins
415 email_kwargs=kwargs,
418 email_kwargs=kwargs,
416 )
419 )
417
420
418 return new_user
421 return new_user
419 except Exception:
422 except Exception:
420 log.error(traceback.format_exc())
423 log.error(traceback.format_exc())
421 raise
424 raise
422
425
423 def _handle_user_repos(self, username, repositories, handle_mode=None):
426 def _handle_user_repos(self, username, repositories, handle_mode=None):
424 _superadmin = self.cls.get_first_super_admin()
427 _superadmin = self.cls.get_first_super_admin()
425 left_overs = True
428 left_overs = True
426
429
427 from rhodecode.model.repo import RepoModel
430 from rhodecode.model.repo import RepoModel
428
431
429 if handle_mode == 'detach':
432 if handle_mode == 'detach':
430 for obj in repositories:
433 for obj in repositories:
431 obj.user = _superadmin
434 obj.user = _superadmin
432 # set description we know why we super admin now owns
435 # set description we know why we super admin now owns
433 # additional repositories that were orphaned !
436 # additional repositories that were orphaned !
434 obj.description += ' \n::detached repository from deleted user: %s' % (username,)
437 obj.description += ' \n::detached repository from deleted user: %s' % (username,)
435 self.sa.add(obj)
438 self.sa.add(obj)
436 left_overs = False
439 left_overs = False
437 elif handle_mode == 'delete':
440 elif handle_mode == 'delete':
438 for obj in repositories:
441 for obj in repositories:
439 RepoModel().delete(obj, forks='detach')
442 RepoModel().delete(obj, forks='detach')
440 left_overs = False
443 left_overs = False
441
444
442 # if nothing is done we have left overs left
445 # if nothing is done we have left overs left
443 return left_overs
446 return left_overs
444
447
445 def _handle_user_repo_groups(self, username, repository_groups,
448 def _handle_user_repo_groups(self, username, repository_groups,
446 handle_mode=None):
449 handle_mode=None):
447 _superadmin = self.cls.get_first_super_admin()
450 _superadmin = self.cls.get_first_super_admin()
448 left_overs = True
451 left_overs = True
449
452
450 from rhodecode.model.repo_group import RepoGroupModel
453 from rhodecode.model.repo_group import RepoGroupModel
451
454
452 if handle_mode == 'detach':
455 if handle_mode == 'detach':
453 for r in repository_groups:
456 for r in repository_groups:
454 r.user = _superadmin
457 r.user = _superadmin
455 # set description we know why we super admin now owns
458 # set description we know why we super admin now owns
456 # additional repositories that were orphaned !
459 # additional repositories that were orphaned !
457 r.group_description += ' \n::detached repository group from deleted user: %s' % (username,)
460 r.group_description += ' \n::detached repository group from deleted user: %s' % (username,)
458 self.sa.add(r)
461 self.sa.add(r)
459 left_overs = False
462 left_overs = False
460 elif handle_mode == 'delete':
463 elif handle_mode == 'delete':
461 for r in repository_groups:
464 for r in repository_groups:
462 RepoGroupModel().delete(r)
465 RepoGroupModel().delete(r)
463 left_overs = False
466 left_overs = False
464
467
465 # if nothing is done we have left overs left
468 # if nothing is done we have left overs left
466 return left_overs
469 return left_overs
467
470
468 def _handle_user_user_groups(self, username, user_groups, handle_mode=None):
471 def _handle_user_user_groups(self, username, user_groups, handle_mode=None):
469 _superadmin = self.cls.get_first_super_admin()
472 _superadmin = self.cls.get_first_super_admin()
470 left_overs = True
473 left_overs = True
471
474
472 from rhodecode.model.user_group import UserGroupModel
475 from rhodecode.model.user_group import UserGroupModel
473
476
474 if handle_mode == 'detach':
477 if handle_mode == 'detach':
475 for r in user_groups:
478 for r in user_groups:
476 for user_user_group_to_perm in r.user_user_group_to_perm:
479 for user_user_group_to_perm in r.user_user_group_to_perm:
477 if user_user_group_to_perm.user.username == username:
480 if user_user_group_to_perm.user.username == username:
478 user_user_group_to_perm.user = _superadmin
481 user_user_group_to_perm.user = _superadmin
479 r.user = _superadmin
482 r.user = _superadmin
480 # set description we know why we super admin now owns
483 # set description we know why we super admin now owns
481 # additional repositories that were orphaned !
484 # additional repositories that were orphaned !
482 r.user_group_description += ' \n::detached user group from deleted user: %s' % (username,)
485 r.user_group_description += ' \n::detached user group from deleted user: %s' % (username,)
483 self.sa.add(r)
486 self.sa.add(r)
484 left_overs = False
487 left_overs = False
485 elif handle_mode == 'delete':
488 elif handle_mode == 'delete':
486 for r in user_groups:
489 for r in user_groups:
487 UserGroupModel().delete(r)
490 UserGroupModel().delete(r)
488 left_overs = False
491 left_overs = False
489
492
490 # if nothing is done we have left overs left
493 # if nothing is done we have left overs left
491 return left_overs
494 return left_overs
492
495
493 def delete(self, user, cur_user=None, handle_repos=None,
496 def delete(self, user, cur_user=None, handle_repos=None,
494 handle_repo_groups=None, handle_user_groups=None):
497 handle_repo_groups=None, handle_user_groups=None):
495 if not cur_user:
498 if not cur_user:
496 cur_user = getattr(get_current_rhodecode_user(), 'username', None)
499 cur_user = getattr(get_current_rhodecode_user(), 'username', None)
497 user = self._get_user(user)
500 user = self._get_user(user)
498
501
499 try:
502 try:
500 if user.username == User.DEFAULT_USER:
503 if user.username == User.DEFAULT_USER:
501 raise DefaultUserException(
504 raise DefaultUserException(
502 _(u"You can't remove this user since it's"
505 _(u"You can't remove this user since it's"
503 u" crucial for entire application"))
506 u" crucial for entire application"))
504
507
505 left_overs = self._handle_user_repos(
508 left_overs = self._handle_user_repos(
506 user.username, user.repositories, handle_repos)
509 user.username, user.repositories, handle_repos)
507 if left_overs and user.repositories:
510 if left_overs and user.repositories:
508 repos = [x.repo_name for x in user.repositories]
511 repos = [x.repo_name for x in user.repositories]
509 raise UserOwnsReposException(
512 raise UserOwnsReposException(
510 _(u'user "%s" still owns %s repositories and cannot be '
513 _(u'user "%s" still owns %s repositories and cannot be '
511 u'removed. Switch owners or remove those repositories:%s')
514 u'removed. Switch owners or remove those repositories:%s')
512 % (user.username, len(repos), ', '.join(repos)))
515 % (user.username, len(repos), ', '.join(repos)))
513
516
514 left_overs = self._handle_user_repo_groups(
517 left_overs = self._handle_user_repo_groups(
515 user.username, user.repository_groups, handle_repo_groups)
518 user.username, user.repository_groups, handle_repo_groups)
516 if left_overs and user.repository_groups:
519 if left_overs and user.repository_groups:
517 repo_groups = [x.group_name for x in user.repository_groups]
520 repo_groups = [x.group_name for x in user.repository_groups]
518 raise UserOwnsRepoGroupsException(
521 raise UserOwnsRepoGroupsException(
519 _(u'user "%s" still owns %s repository groups and cannot be '
522 _(u'user "%s" still owns %s repository groups and cannot be '
520 u'removed. Switch owners or remove those repository groups:%s')
523 u'removed. Switch owners or remove those repository groups:%s')
521 % (user.username, len(repo_groups), ', '.join(repo_groups)))
524 % (user.username, len(repo_groups), ', '.join(repo_groups)))
522
525
523 left_overs = self._handle_user_user_groups(
526 left_overs = self._handle_user_user_groups(
524 user.username, user.user_groups, handle_user_groups)
527 user.username, user.user_groups, handle_user_groups)
525 if left_overs and user.user_groups:
528 if left_overs and user.user_groups:
526 user_groups = [x.users_group_name for x in user.user_groups]
529 user_groups = [x.users_group_name for x in user.user_groups]
527 raise UserOwnsUserGroupsException(
530 raise UserOwnsUserGroupsException(
528 _(u'user "%s" still owns %s user groups and cannot be '
531 _(u'user "%s" still owns %s user groups and cannot be '
529 u'removed. Switch owners or remove those user groups:%s')
532 u'removed. Switch owners or remove those user groups:%s')
530 % (user.username, len(user_groups), ', '.join(user_groups)))
533 % (user.username, len(user_groups), ', '.join(user_groups)))
531
534
532 # we might change the user data with detach/delete, make sure
535 # we might change the user data with detach/delete, make sure
533 # the object is marked as expired before actually deleting !
536 # the object is marked as expired before actually deleting !
534 self.sa.expire(user)
537 self.sa.expire(user)
535 self.sa.delete(user)
538 self.sa.delete(user)
536 from rhodecode.lib.hooks_base import log_delete_user
539 from rhodecode.lib.hooks_base import log_delete_user
537 log_delete_user(deleted_by=cur_user, **user.get_dict())
540 log_delete_user(deleted_by=cur_user, **user.get_dict())
538 except Exception:
541 except Exception:
539 log.error(traceback.format_exc())
542 log.error(traceback.format_exc())
540 raise
543 raise
541
544
542 def reset_password_link(self, data, pwd_reset_url):
545 def reset_password_link(self, data, pwd_reset_url):
543 from rhodecode.lib.celerylib import tasks, run_task
546 from rhodecode.lib.celerylib import tasks, run_task
544 from rhodecode.model.notification import EmailNotificationModel
547 from rhodecode.model.notification import EmailNotificationModel
545 user_email = data['email']
548 user_email = data['email']
546 try:
549 try:
547 user = User.get_by_email(user_email)
550 user = User.get_by_email(user_email)
548 if user:
551 if user:
549 log.debug('password reset user found %s', user)
552 log.debug('password reset user found %s', user)
550
553
551 email_kwargs = {
554 email_kwargs = {
552 'password_reset_url': pwd_reset_url,
555 'password_reset_url': pwd_reset_url,
553 'user': user,
556 'user': user,
554 'email': user_email,
557 'email': user_email,
555 'date': datetime.datetime.now()
558 'date': datetime.datetime.now()
556 }
559 }
557
560
558 (subject, headers, email_body,
561 (subject, headers, email_body,
559 email_body_plaintext) = EmailNotificationModel().render_email(
562 email_body_plaintext) = EmailNotificationModel().render_email(
560 EmailNotificationModel.TYPE_PASSWORD_RESET, **email_kwargs)
563 EmailNotificationModel.TYPE_PASSWORD_RESET, **email_kwargs)
561
564
562 recipients = [user_email]
565 recipients = [user_email]
563
566
564 action_logger_generic(
567 action_logger_generic(
565 'sending password reset email to user: {}'.format(
568 'sending password reset email to user: {}'.format(
566 user), namespace='security.password_reset')
569 user), namespace='security.password_reset')
567
570
568 run_task(tasks.send_email, recipients, subject,
571 run_task(tasks.send_email, recipients, subject,
569 email_body_plaintext, email_body)
572 email_body_plaintext, email_body)
570
573
571 else:
574 else:
572 log.debug("password reset email %s not found", user_email)
575 log.debug("password reset email %s not found", user_email)
573 except Exception:
576 except Exception:
574 log.error(traceback.format_exc())
577 log.error(traceback.format_exc())
575 return False
578 return False
576
579
577 return True
580 return True
578
581
579 def reset_password(self, data):
582 def reset_password(self, data):
580 from rhodecode.lib.celerylib import tasks, run_task
583 from rhodecode.lib.celerylib import tasks, run_task
581 from rhodecode.model.notification import EmailNotificationModel
584 from rhodecode.model.notification import EmailNotificationModel
582 from rhodecode.lib import auth
585 from rhodecode.lib import auth
583 user_email = data['email']
586 user_email = data['email']
584 pre_db = True
587 pre_db = True
585 try:
588 try:
586 user = User.get_by_email(user_email)
589 user = User.get_by_email(user_email)
587 new_passwd = auth.PasswordGenerator().gen_password(
590 new_passwd = auth.PasswordGenerator().gen_password(
588 12, auth.PasswordGenerator.ALPHABETS_BIG_SMALL)
591 12, auth.PasswordGenerator.ALPHABETS_BIG_SMALL)
589 if user:
592 if user:
590 user.password = auth.get_crypt_password(new_passwd)
593 user.password = auth.get_crypt_password(new_passwd)
591 # also force this user to reset his password !
594 # also force this user to reset his password !
592 user.update_userdata(force_password_change=True)
595 user.update_userdata(force_password_change=True)
593
596
594 Session().add(user)
597 Session().add(user)
595
598
596 # now delete the token in question
599 # now delete the token in question
597 UserApiKeys = AuthTokenModel.cls
600 UserApiKeys = AuthTokenModel.cls
598 UserApiKeys().query().filter(
601 UserApiKeys().query().filter(
599 UserApiKeys.api_key == data['token']).delete()
602 UserApiKeys.api_key == data['token']).delete()
600
603
601 Session().commit()
604 Session().commit()
602 log.info('successfully reset password for `%s`', user_email)
605 log.info('successfully reset password for `%s`', user_email)
603
606
604 if new_passwd is None:
607 if new_passwd is None:
605 raise Exception('unable to generate new password')
608 raise Exception('unable to generate new password')
606
609
607 pre_db = False
610 pre_db = False
608
611
609 email_kwargs = {
612 email_kwargs = {
610 'new_password': new_passwd,
613 'new_password': new_passwd,
611 'user': user,
614 'user': user,
612 'email': user_email,
615 'email': user_email,
613 'date': datetime.datetime.now()
616 'date': datetime.datetime.now()
614 }
617 }
615
618
616 (subject, headers, email_body,
619 (subject, headers, email_body,
617 email_body_plaintext) = EmailNotificationModel().render_email(
620 email_body_plaintext) = EmailNotificationModel().render_email(
618 EmailNotificationModel.TYPE_PASSWORD_RESET_CONFIRMATION,
621 EmailNotificationModel.TYPE_PASSWORD_RESET_CONFIRMATION,
619 **email_kwargs)
622 **email_kwargs)
620
623
621 recipients = [user_email]
624 recipients = [user_email]
622
625
623 action_logger_generic(
626 action_logger_generic(
624 'sent new password to user: {} with email: {}'.format(
627 'sent new password to user: {} with email: {}'.format(
625 user, user_email), namespace='security.password_reset')
628 user, user_email), namespace='security.password_reset')
626
629
627 run_task(tasks.send_email, recipients, subject,
630 run_task(tasks.send_email, recipients, subject,
628 email_body_plaintext, email_body)
631 email_body_plaintext, email_body)
629
632
630 except Exception:
633 except Exception:
631 log.error('Failed to update user password')
634 log.error('Failed to update user password')
632 log.error(traceback.format_exc())
635 log.error(traceback.format_exc())
633 if pre_db:
636 if pre_db:
634 # we rollback only if local db stuff fails. If it goes into
637 # we rollback only if local db stuff fails. If it goes into
635 # run_task, we're pass rollback state this wouldn't work then
638 # run_task, we're pass rollback state this wouldn't work then
636 Session().rollback()
639 Session().rollback()
637
640
638 return True
641 return True
639
642
640 def fill_data(self, auth_user, user_id=None, api_key=None, username=None):
643 def fill_data(self, auth_user, user_id=None, api_key=None, username=None):
641 """
644 """
642 Fetches auth_user by user_id,or api_key if present.
645 Fetches auth_user by user_id,or api_key if present.
643 Fills auth_user attributes with those taken from database.
646 Fills auth_user attributes with those taken from database.
644 Additionally set's is_authenitated if lookup fails
647 Additionally set's is_authenitated if lookup fails
645 present in database
648 present in database
646
649
647 :param auth_user: instance of user to set attributes
650 :param auth_user: instance of user to set attributes
648 :param user_id: user id to fetch by
651 :param user_id: user id to fetch by
649 :param api_key: api key to fetch by
652 :param api_key: api key to fetch by
650 :param username: username to fetch by
653 :param username: username to fetch by
651 """
654 """
652 if user_id is None and api_key is None and username is None:
655 if user_id is None and api_key is None and username is None:
653 raise Exception('You need to pass user_id, api_key or username')
656 raise Exception('You need to pass user_id, api_key or username')
654
657
655 log.debug(
658 log.debug(
656 'doing fill data based on: user_id:%s api_key:%s username:%s',
659 'doing fill data based on: user_id:%s api_key:%s username:%s',
657 user_id, api_key, username)
660 user_id, api_key, username)
658 try:
661 try:
659 dbuser = None
662 dbuser = None
660 if user_id:
663 if user_id:
661 dbuser = self.get(user_id)
664 dbuser = self.get(user_id)
662 elif api_key:
665 elif api_key:
663 dbuser = self.get_by_auth_token(api_key)
666 dbuser = self.get_by_auth_token(api_key)
664 elif username:
667 elif username:
665 dbuser = self.get_by_username(username)
668 dbuser = self.get_by_username(username)
666
669
667 if not dbuser:
670 if not dbuser:
668 log.warning(
671 log.warning(
669 'Unable to lookup user by id:%s api_key:%s username:%s',
672 'Unable to lookup user by id:%s api_key:%s username:%s',
670 user_id, api_key, username)
673 user_id, api_key, username)
671 return False
674 return False
672 if not dbuser.active:
675 if not dbuser.active:
673 log.debug('User `%s:%s` is inactive, skipping fill data',
676 log.debug('User `%s:%s` is inactive, skipping fill data',
674 username, user_id)
677 username, user_id)
675 return False
678 return False
676
679
677 log.debug('filling user:%s data', dbuser)
680 log.debug('filling user:%s data', dbuser)
681 user_data = dbuser.get_dict()
678
682
679 # TODO: johbo: Think about this and find a clean solution
680 user_data = dbuser.get_dict()
681 user_data.update(dbuser.get_api_data(include_secrets=True))
682 user_data.update({
683 user_data.update({
683 # set explicit the safe escaped values
684 # set explicit the safe escaped values
684 'first_name': dbuser.first_name,
685 'first_name': dbuser.first_name,
685 'last_name': dbuser.last_name,
686 'last_name': dbuser.last_name,
686 })
687 })
687
688
688 for k, v in user_data.iteritems():
689 for k, v in user_data.items():
689 # properties of auth user we dont update
690 # properties of auth user we dont update
690 if k not in ['auth_tokens', 'permissions']:
691 if k not in ['auth_tokens', 'permissions']:
691 setattr(auth_user, k, v)
692 setattr(auth_user, k, v)
692
693
693 # few extras
694 # few extras
694 setattr(auth_user, 'feed_token', dbuser.feed_token)
695 setattr(auth_user, 'feed_token', dbuser.feed_token)
695 except Exception:
696 except Exception:
696 log.error(traceback.format_exc())
697 log.error(traceback.format_exc())
697 auth_user.is_authenticated = False
698 auth_user.is_authenticated = False
698 return False
699 return False
699
700
700 return True
701 return True
701
702
702 def has_perm(self, user, perm):
703 def has_perm(self, user, perm):
703 perm = self._get_perm(perm)
704 perm = self._get_perm(perm)
704 user = self._get_user(user)
705 user = self._get_user(user)
705
706
706 return UserToPerm.query().filter(UserToPerm.user == user)\
707 return UserToPerm.query().filter(UserToPerm.user == user)\
707 .filter(UserToPerm.permission == perm).scalar() is not None
708 .filter(UserToPerm.permission == perm).scalar() is not None
708
709
709 def grant_perm(self, user, perm):
710 def grant_perm(self, user, perm):
710 """
711 """
711 Grant user global permissions
712 Grant user global permissions
712
713
713 :param user:
714 :param user:
714 :param perm:
715 :param perm:
715 """
716 """
716 user = self._get_user(user)
717 user = self._get_user(user)
717 perm = self._get_perm(perm)
718 perm = self._get_perm(perm)
718 # if this permission is already granted skip it
719 # if this permission is already granted skip it
719 _perm = UserToPerm.query()\
720 _perm = UserToPerm.query()\
720 .filter(UserToPerm.user == user)\
721 .filter(UserToPerm.user == user)\
721 .filter(UserToPerm.permission == perm)\
722 .filter(UserToPerm.permission == perm)\
722 .scalar()
723 .scalar()
723 if _perm:
724 if _perm:
724 return
725 return
725 new = UserToPerm()
726 new = UserToPerm()
726 new.user = user
727 new.user = user
727 new.permission = perm
728 new.permission = perm
728 self.sa.add(new)
729 self.sa.add(new)
729 return new
730 return new
730
731
731 def revoke_perm(self, user, perm):
732 def revoke_perm(self, user, perm):
732 """
733 """
733 Revoke users global permissions
734 Revoke users global permissions
734
735
735 :param user:
736 :param user:
736 :param perm:
737 :param perm:
737 """
738 """
738 user = self._get_user(user)
739 user = self._get_user(user)
739 perm = self._get_perm(perm)
740 perm = self._get_perm(perm)
740
741
741 obj = UserToPerm.query()\
742 obj = UserToPerm.query()\
742 .filter(UserToPerm.user == user)\
743 .filter(UserToPerm.user == user)\
743 .filter(UserToPerm.permission == perm)\
744 .filter(UserToPerm.permission == perm)\
744 .scalar()
745 .scalar()
745 if obj:
746 if obj:
746 self.sa.delete(obj)
747 self.sa.delete(obj)
747
748
748 def add_extra_email(self, user, email):
749 def add_extra_email(self, user, email):
749 """
750 """
750 Adds email address to UserEmailMap
751 Adds email address to UserEmailMap
751
752
752 :param user:
753 :param user:
753 :param email:
754 :param email:
754 """
755 """
755 from rhodecode.model import forms
756 from rhodecode.model import forms
756 form = forms.UserExtraEmailForm()()
757 form = forms.UserExtraEmailForm()()
757 data = form.to_python({'email': email})
758 data = form.to_python({'email': email})
758 user = self._get_user(user)
759 user = self._get_user(user)
759
760
760 obj = UserEmailMap()
761 obj = UserEmailMap()
761 obj.user = user
762 obj.user = user
762 obj.email = data['email']
763 obj.email = data['email']
763 self.sa.add(obj)
764 self.sa.add(obj)
764 return obj
765 return obj
765
766
766 def delete_extra_email(self, user, email_id):
767 def delete_extra_email(self, user, email_id):
767 """
768 """
768 Removes email address from UserEmailMap
769 Removes email address from UserEmailMap
769
770
770 :param user:
771 :param user:
771 :param email_id:
772 :param email_id:
772 """
773 """
773 user = self._get_user(user)
774 user = self._get_user(user)
774 obj = UserEmailMap.query().get(email_id)
775 obj = UserEmailMap.query().get(email_id)
775 if obj and obj.user_id == user.user_id:
776 if obj and obj.user_id == user.user_id:
776 self.sa.delete(obj)
777 self.sa.delete(obj)
777
778
778 def parse_ip_range(self, ip_range):
779 def parse_ip_range(self, ip_range):
779 ip_list = []
780 ip_list = []
780
781
781 def make_unique(value):
782 def make_unique(value):
782 seen = []
783 seen = []
783 return [c for c in value if not (c in seen or seen.append(c))]
784 return [c for c in value if not (c in seen or seen.append(c))]
784
785
785 # firsts split by commas
786 # firsts split by commas
786 for ip_range in ip_range.split(','):
787 for ip_range in ip_range.split(','):
787 if not ip_range:
788 if not ip_range:
788 continue
789 continue
789 ip_range = ip_range.strip()
790 ip_range = ip_range.strip()
790 if '-' in ip_range:
791 if '-' in ip_range:
791 start_ip, end_ip = ip_range.split('-', 1)
792 start_ip, end_ip = ip_range.split('-', 1)
792 start_ip = ipaddress.ip_address(safe_unicode(start_ip.strip()))
793 start_ip = ipaddress.ip_address(safe_unicode(start_ip.strip()))
793 end_ip = ipaddress.ip_address(safe_unicode(end_ip.strip()))
794 end_ip = ipaddress.ip_address(safe_unicode(end_ip.strip()))
794 parsed_ip_range = []
795 parsed_ip_range = []
795
796
796 for index in xrange(int(start_ip), int(end_ip) + 1):
797 for index in xrange(int(start_ip), int(end_ip) + 1):
797 new_ip = ipaddress.ip_address(index)
798 new_ip = ipaddress.ip_address(index)
798 parsed_ip_range.append(str(new_ip))
799 parsed_ip_range.append(str(new_ip))
799 ip_list.extend(parsed_ip_range)
800 ip_list.extend(parsed_ip_range)
800 else:
801 else:
801 ip_list.append(ip_range)
802 ip_list.append(ip_range)
802
803
803 return make_unique(ip_list)
804 return make_unique(ip_list)
804
805
805 def add_extra_ip(self, user, ip, description=None):
806 def add_extra_ip(self, user, ip, description=None):
806 """
807 """
807 Adds ip address to UserIpMap
808 Adds ip address to UserIpMap
808
809
809 :param user:
810 :param user:
810 :param ip:
811 :param ip:
811 """
812 """
812 from rhodecode.model import forms
813 from rhodecode.model import forms
813 form = forms.UserExtraIpForm()()
814 form = forms.UserExtraIpForm()()
814 data = form.to_python({'ip': ip})
815 data = form.to_python({'ip': ip})
815 user = self._get_user(user)
816 user = self._get_user(user)
816
817
817 obj = UserIpMap()
818 obj = UserIpMap()
818 obj.user = user
819 obj.user = user
819 obj.ip_addr = data['ip']
820 obj.ip_addr = data['ip']
820 obj.description = description
821 obj.description = description
821 self.sa.add(obj)
822 self.sa.add(obj)
822 return obj
823 return obj
823
824
824 def delete_extra_ip(self, user, ip_id):
825 def delete_extra_ip(self, user, ip_id):
825 """
826 """
826 Removes ip address from UserIpMap
827 Removes ip address from UserIpMap
827
828
828 :param user:
829 :param user:
829 :param ip_id:
830 :param ip_id:
830 """
831 """
831 user = self._get_user(user)
832 user = self._get_user(user)
832 obj = UserIpMap.query().get(ip_id)
833 obj = UserIpMap.query().get(ip_id)
833 if obj and obj.user_id == user.user_id:
834 if obj and obj.user_id == user.user_id:
834 self.sa.delete(obj)
835 self.sa.delete(obj)
835
836
836 def get_accounts_in_creation_order(self, current_user=None):
837 def get_accounts_in_creation_order(self, current_user=None):
837 """
838 """
838 Get accounts in order of creation for deactivation for license limits
839 Get accounts in order of creation for deactivation for license limits
839
840
840 pick currently logged in user, and append to the list in position 0
841 pick currently logged in user, and append to the list in position 0
841 pick all super-admins in order of creation date and add it to the list
842 pick all super-admins in order of creation date and add it to the list
842 pick all other accounts in order of creation and add it to the list.
843 pick all other accounts in order of creation and add it to the list.
843
844
844 Based on that list, the last accounts can be disabled as they are
845 Based on that list, the last accounts can be disabled as they are
845 created at the end and don't include any of the super admins as well
846 created at the end and don't include any of the super admins as well
846 as the current user.
847 as the current user.
847
848
848 :param current_user: optionally current user running this operation
849 :param current_user: optionally current user running this operation
849 """
850 """
850
851
851 if not current_user:
852 if not current_user:
852 current_user = get_current_rhodecode_user()
853 current_user = get_current_rhodecode_user()
853 active_super_admins = [
854 active_super_admins = [
854 x.user_id for x in User.query()
855 x.user_id for x in User.query()
855 .filter(User.user_id != current_user.user_id)
856 .filter(User.user_id != current_user.user_id)
856 .filter(User.active == true())
857 .filter(User.active == true())
857 .filter(User.admin == true())
858 .filter(User.admin == true())
858 .order_by(User.created_on.asc())]
859 .order_by(User.created_on.asc())]
859
860
860 active_regular_users = [
861 active_regular_users = [
861 x.user_id for x in User.query()
862 x.user_id for x in User.query()
862 .filter(User.user_id != current_user.user_id)
863 .filter(User.user_id != current_user.user_id)
863 .filter(User.active == true())
864 .filter(User.active == true())
864 .filter(User.admin == false())
865 .filter(User.admin == false())
865 .order_by(User.created_on.asc())]
866 .order_by(User.created_on.asc())]
866
867
867 list_of_accounts = [current_user.user_id]
868 list_of_accounts = [current_user.user_id]
868 list_of_accounts += active_super_admins
869 list_of_accounts += active_super_admins
869 list_of_accounts += active_regular_users
870 list_of_accounts += active_regular_users
870
871
871 return list_of_accounts
872 return list_of_accounts
872
873
873 def deactivate_last_users(self, expected_users, current_user=None):
874 def deactivate_last_users(self, expected_users, current_user=None):
874 """
875 """
875 Deactivate accounts that are over the license limits.
876 Deactivate accounts that are over the license limits.
876 Algorithm of which accounts to disabled is based on the formula:
877 Algorithm of which accounts to disabled is based on the formula:
877
878
878 Get current user, then super admins in creation order, then regular
879 Get current user, then super admins in creation order, then regular
879 active users in creation order.
880 active users in creation order.
880
881
881 Using that list we mark all accounts from the end of it as inactive.
882 Using that list we mark all accounts from the end of it as inactive.
882 This way we block only latest created accounts.
883 This way we block only latest created accounts.
883
884
884 :param expected_users: list of users in special order, we deactivate
885 :param expected_users: list of users in special order, we deactivate
885 the end N ammoun of users from that list
886 the end N ammoun of users from that list
886 """
887 """
887
888
888 list_of_accounts = self.get_accounts_in_creation_order(
889 list_of_accounts = self.get_accounts_in_creation_order(
889 current_user=current_user)
890 current_user=current_user)
890
891
891 for acc_id in list_of_accounts[expected_users + 1:]:
892 for acc_id in list_of_accounts[expected_users + 1:]:
892 user = User.get(acc_id)
893 user = User.get(acc_id)
893 log.info('Deactivating account %s for license unlock', user)
894 log.info('Deactivating account %s for license unlock', user)
894 user.active = False
895 user.active = False
895 Session().add(user)
896 Session().add(user)
896 Session().commit()
897 Session().commit()
897
898
898 return
899 return
899
900
900 def get_user_log(self, user, filter_term):
901 def get_user_log(self, user, filter_term):
901 user_log = UserLog.query()\
902 user_log = UserLog.query()\
902 .filter(or_(UserLog.user_id == user.user_id,
903 .filter(or_(UserLog.user_id == user.user_id,
903 UserLog.username == user.username))\
904 UserLog.username == user.username))\
904 .options(joinedload(UserLog.user))\
905 .options(joinedload(UserLog.user))\
905 .options(joinedload(UserLog.repository))\
906 .options(joinedload(UserLog.repository))\
906 .order_by(UserLog.action_date.desc())
907 .order_by(UserLog.action_date.desc())
907
908
908 user_log = user_log_filter(user_log, filter_term)
909 user_log = user_log_filter(user_log, filter_term)
909 return user_log
910 return user_log
@@ -1,323 +1,323 b''
1 # -*- coding: utf-8 -*-
1 # -*- coding: utf-8 -*-
2
2
3 # Copyright (C) 2010-2017 RhodeCode GmbH
3 # Copyright (C) 2010-2017 RhodeCode GmbH
4 #
4 #
5 # This program is free software: you can redistribute it and/or modify
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU Affero General Public License, version 3
6 # it under the terms of the GNU Affero General Public License, version 3
7 # (only), as published by the Free Software Foundation.
7 # (only), as published by the Free Software Foundation.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU Affero General Public License
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 #
16 #
17 # This program is dual-licensed. If you wish to learn more about the
17 # This program is dual-licensed. If you wish to learn more about the
18 # RhodeCode Enterprise Edition, including its added features, Support services,
18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20
20
21 import pytest
21 import pytest
22 import mock
22 import mock
23
23
24 from rhodecode.lib.utils2 import safe_unicode
24 from rhodecode.lib.utils2 import safe_unicode
25 from rhodecode.model.db import (
25 from rhodecode.model.db import (
26 true, User, UserGroup, UserGroupMember, UserEmailMap, Permission, UserIpMap)
26 true, User, UserGroup, UserGroupMember, UserEmailMap, Permission, UserIpMap)
27 from rhodecode.model.meta import Session
27 from rhodecode.model.meta import Session
28 from rhodecode.model.user import UserModel
28 from rhodecode.model.user import UserModel
29 from rhodecode.model.user_group import UserGroupModel
29 from rhodecode.model.user_group import UserGroupModel
30 from rhodecode.model.repo import RepoModel
30 from rhodecode.model.repo import RepoModel
31 from rhodecode.model.repo_group import RepoGroupModel
31 from rhodecode.model.repo_group import RepoGroupModel
32 from rhodecode.tests.fixture import Fixture
32 from rhodecode.tests.fixture import Fixture
33
33
34 fixture = Fixture()
34 fixture = Fixture()
35
35
36
36
37 class TestGetUsers(object):
37 class TestGetUsers(object):
38 def test_returns_active_users(self, backend, user_util):
38 def test_returns_active_users(self, backend, user_util):
39 for i in range(4):
39 for i in range(4):
40 is_active = i % 2 == 0
40 is_active = i % 2 == 0
41 user_util.create_user(active=is_active, lastname='Fake user')
41 user_util.create_user(active=is_active, lastname='Fake user')
42
42
43 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
43 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
44 users = UserModel().get_users()
44 users = UserModel().get_users()
45 fake_users = [u for u in users if u['last_name'] == 'Fake user']
45 fake_users = [u for u in users if u['last_name'] == 'Fake user']
46 assert len(fake_users) == 2
46 assert len(fake_users) == 2
47
47
48 expected_keys = (
48 expected_keys = (
49 'id', 'first_name', 'last_name', 'username', 'icon_link',
49 'id', 'first_name', 'last_name', 'username', 'icon_link',
50 'value_display', 'value', 'value_type')
50 'value_display', 'value', 'value_type')
51 for user in users:
51 for user in users:
52 assert user['value_type'] is 'user'
52 assert user['value_type'] is 'user'
53 for key in expected_keys:
53 for key in expected_keys:
54 assert key in user
54 assert key in user
55
55
56 def test_returns_user_filtered_by_last_name(self, backend, user_util):
56 def test_returns_user_filtered_by_last_name(self, backend, user_util):
57 keywords = ('aBc', u'ΓΌnicode')
57 keywords = ('aBc', u'ΓΌnicode')
58 for keyword in keywords:
58 for keyword in keywords:
59 for i in range(2):
59 for i in range(2):
60 user_util.create_user(
60 user_util.create_user(
61 active=True, lastname=u'Fake {} user'.format(keyword))
61 active=True, lastname=u'Fake {} user'.format(keyword))
62
62
63 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
63 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
64 keyword = keywords[1].lower()
64 keyword = keywords[1].lower()
65 users = UserModel().get_users(name_contains=keyword)
65 users = UserModel().get_users(name_contains=keyword)
66
66
67 fake_users = [u for u in users if u['last_name'].startswith('Fake')]
67 fake_users = [u for u in users if u['last_name'].startswith('Fake')]
68 assert len(fake_users) == 2
68 assert len(fake_users) == 2
69 for user in fake_users:
69 for user in fake_users:
70 assert user['last_name'] == safe_unicode('Fake ΓΌnicode user')
70 assert user['last_name'] == safe_unicode('Fake ΓΌnicode user')
71
71
72 def test_returns_user_filtered_by_first_name(self, backend, user_util):
72 def test_returns_user_filtered_by_first_name(self, backend, user_util):
73 created_users = []
73 created_users = []
74 keywords = ('aBc', u'ΓΌnicode')
74 keywords = ('aBc', u'ΓΌnicode')
75 for keyword in keywords:
75 for keyword in keywords:
76 for i in range(2):
76 for i in range(2):
77 created_users.append(user_util.create_user(
77 created_users.append(user_util.create_user(
78 active=True, lastname='Fake user',
78 active=True, lastname='Fake user',
79 firstname=u'Fake {} user'.format(keyword)))
79 firstname=u'Fake {} user'.format(keyword)))
80
80
81 keyword = keywords[1].lower()
81 keyword = keywords[1].lower()
82 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
82 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
83 users = UserModel().get_users(name_contains=keyword)
83 users = UserModel().get_users(name_contains=keyword)
84
84
85 fake_users = [u for u in users if u['last_name'].startswith('Fake')]
85 fake_users = [u for u in users if u['last_name'].startswith('Fake')]
86 assert len(fake_users) == 2
86 assert len(fake_users) == 2
87 for user in fake_users:
87 for user in fake_users:
88 assert user['first_name'] == safe_unicode('Fake ΓΌnicode user')
88 assert user['first_name'] == safe_unicode('Fake ΓΌnicode user')
89
89
90 def test_returns_user_filtered_by_username(self, backend, user_util):
90 def test_returns_user_filtered_by_username(self, backend, user_util):
91 created_users = []
91 created_users = []
92 for i in range(5):
92 for i in range(5):
93 created_users.append(user_util.create_user(
93 created_users.append(user_util.create_user(
94 active=True, lastname='Fake user'))
94 active=True, lastname='Fake user'))
95
95
96 user_filter = created_users[-1].username[-2:]
96 user_filter = created_users[-1].username[-2:]
97 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
97 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
98 users = UserModel().get_users(name_contains=user_filter)
98 users = UserModel().get_users(name_contains=user_filter)
99
99
100 fake_users = [u for u in users if u['last_name'].startswith('Fake')]
100 fake_users = [u for u in users if u['last_name'].startswith('Fake')]
101 assert len(fake_users) == 1
101 assert len(fake_users) == 1
102 assert fake_users[0]['username'] == created_users[-1].username
102 assert fake_users[0]['username'] == created_users[-1].username
103
103
104 def test_returns_limited_user_list(self, backend, user_util):
104 def test_returns_limited_user_list(self, backend, user_util):
105 created_users = []
105 created_users = []
106 for i in range(5):
106 for i in range(5):
107 created_users.append(user_util.create_user(
107 created_users.append(user_util.create_user(
108 active=True, lastname='Fake user'))
108 active=True, lastname='Fake user'))
109
109
110 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
110 with mock.patch('rhodecode.lib.helpers.gravatar_url'):
111 users = UserModel().get_users(name_contains='Fake', limit=3)
111 users = UserModel().get_users(name_contains='Fake', limit=3)
112
112
113 fake_users = [u for u in users if u['last_name'].startswith('Fake')]
113 fake_users = [u for u in users if u['last_name'].startswith('Fake')]
114 assert len(fake_users) == 3
114 assert len(fake_users) == 3
115
115
116
116
117 @pytest.fixture
117 @pytest.fixture
118 def test_user(request, pylonsapp):
118 def test_user(request, pylonsapp):
119 usr = UserModel().create_or_update(
119 usr = UserModel().create_or_update(
120 username=u'test_user',
120 username=u'test_user',
121 password=u'qweqwe',
121 password=u'qweqwe',
122 email=u'main_email@rhodecode.org',
122 email=u'main_email@rhodecode.org',
123 firstname=u'u1', lastname=u'u1')
123 firstname=u'u1', lastname=u'u1')
124 Session().commit()
124 Session().commit()
125 assert User.get_by_username(u'test_user') == usr
125 assert User.get_by_username(u'test_user') == usr
126
126
127 @request.addfinalizer
127 @request.addfinalizer
128 def cleanup():
128 def cleanup():
129 if UserModel().get_user(usr.user_id) is None:
129 if UserModel().get_user(usr.user_id) is None:
130 return
130 return
131
131
132 perm = Permission.query().all()
132 perm = Permission.query().all()
133 for p in perm:
133 for p in perm:
134 UserModel().revoke_perm(usr, p)
134 UserModel().revoke_perm(usr, p)
135
135
136 UserModel().delete(usr.user_id)
136 UserModel().delete(usr.user_id)
137 Session().commit()
137 Session().commit()
138
138
139 return usr
139 return usr
140
140
141
141
142 def test_create_and_remove(test_user):
142 def test_create_and_remove(test_user):
143 usr = test_user
143 usr = test_user
144
144
145 # make user group
145 # make user group
146 user_group = fixture.create_user_group('some_example_group')
146 user_group = fixture.create_user_group('some_example_group')
147 Session().commit()
147 Session().commit()
148
148
149 UserGroupModel().add_user_to_group(user_group, usr)
149 UserGroupModel().add_user_to_group(user_group, usr)
150 Session().commit()
150 Session().commit()
151
151
152 assert UserGroup.get(user_group.users_group_id) == user_group
152 assert UserGroup.get(user_group.users_group_id) == user_group
153 assert UserGroupMember.query().count() == 1
153 assert UserGroupMember.query().count() == 1
154 UserModel().delete(usr.user_id)
154 UserModel().delete(usr.user_id)
155 Session().commit()
155 Session().commit()
156
156
157 assert UserGroupMember.query().all() == []
157 assert UserGroupMember.query().all() == []
158
158
159
159
160 def test_additonal_email_as_main(test_user):
160 def test_additonal_email_as_main(test_user):
161 with pytest.raises(AttributeError):
161 with pytest.raises(AttributeError):
162 m = UserEmailMap()
162 m = UserEmailMap()
163 m.email = test_user.email
163 m.email = test_user.email
164 m.user = test_user
164 m.user = test_user
165 Session().add(m)
165 Session().add(m)
166 Session().commit()
166 Session().commit()
167
167
168
168
169 def test_extra_email_map(test_user):
169 def test_extra_email_map(test_user):
170
170
171 m = UserEmailMap()
171 m = UserEmailMap()
172 m.email = u'main_email2@rhodecode.org'
172 m.email = u'main_email2@rhodecode.org'
173 m.user = test_user
173 m.user = test_user
174 Session().add(m)
174 Session().add(m)
175 Session().commit()
175 Session().commit()
176
176
177 u = User.get_by_email(email='main_email@rhodecode.org')
177 u = User.get_by_email(email='main_email@rhodecode.org')
178 assert test_user.user_id == u.user_id
178 assert test_user.user_id == u.user_id
179 assert test_user.username == u.username
179 assert test_user.username == u.username
180
180
181 u = User.get_by_email(email='main_email2@rhodecode.org')
181 u = User.get_by_email(email='main_email2@rhodecode.org')
182 assert test_user.user_id == u.user_id
182 assert test_user.user_id == u.user_id
183 assert test_user.username == u.username
183 assert test_user.username == u.username
184 u = User.get_by_email(email='main_email3@rhodecode.org')
184 u = User.get_by_email(email='main_email3@rhodecode.org')
185 assert u is None
185 assert u is None
186
186
187
187
188 def test_get_api_data_replaces_secret_data_by_default(test_user):
188 def test_get_api_data_replaces_secret_data_by_default(test_user):
189 api_data = test_user.get_api_data()
189 api_data = test_user.get_api_data()
190 api_key_length = 40
190 api_key_length = 40
191 expected_replacement = '*' * api_key_length
191 expected_replacement = '*' * api_key_length
192
192
193 for key in api_data['api_keys']:
193 for key in api_data['auth_tokens']:
194 assert key == expected_replacement
194 assert key == expected_replacement
195
195
196
196
197 def test_get_api_data_includes_secret_data_if_activated(test_user):
197 def test_get_api_data_includes_secret_data_if_activated(test_user):
198 api_data = test_user.get_api_data(include_secrets=True)
198 api_data = test_user.get_api_data(include_secrets=True)
199 assert api_data['api_keys'] == test_user.auth_tokens
199 assert api_data['auth_tokens'] == test_user.auth_tokens
200
200
201
201
202 def test_add_perm(test_user):
202 def test_add_perm(test_user):
203 perm = Permission.query().all()[0]
203 perm = Permission.query().all()[0]
204 UserModel().grant_perm(test_user, perm)
204 UserModel().grant_perm(test_user, perm)
205 Session().commit()
205 Session().commit()
206 assert UserModel().has_perm(test_user, perm)
206 assert UserModel().has_perm(test_user, perm)
207
207
208
208
209 def test_has_perm(test_user):
209 def test_has_perm(test_user):
210 perm = Permission.query().all()
210 perm = Permission.query().all()
211 for p in perm:
211 for p in perm:
212 assert not UserModel().has_perm(test_user, p)
212 assert not UserModel().has_perm(test_user, p)
213
213
214
214
215 def test_revoke_perm(test_user):
215 def test_revoke_perm(test_user):
216 perm = Permission.query().all()[0]
216 perm = Permission.query().all()[0]
217 UserModel().grant_perm(test_user, perm)
217 UserModel().grant_perm(test_user, perm)
218 Session().commit()
218 Session().commit()
219 assert UserModel().has_perm(test_user, perm)
219 assert UserModel().has_perm(test_user, perm)
220
220
221 # revoke
221 # revoke
222 UserModel().revoke_perm(test_user, perm)
222 UserModel().revoke_perm(test_user, perm)
223 Session().commit()
223 Session().commit()
224 assert not UserModel().has_perm(test_user, perm)
224 assert not UserModel().has_perm(test_user, perm)
225
225
226
226
227 @pytest.mark.parametrize("ip_range, expected, expect_errors", [
227 @pytest.mark.parametrize("ip_range, expected, expect_errors", [
228 ('', [], False),
228 ('', [], False),
229 ('127.0.0.1', ['127.0.0.1'], False),
229 ('127.0.0.1', ['127.0.0.1'], False),
230 ('127.0.0.1,127.0.0.2', ['127.0.0.1', '127.0.0.2'], False),
230 ('127.0.0.1,127.0.0.2', ['127.0.0.1', '127.0.0.2'], False),
231 ('127.0.0.1 , 127.0.0.2', ['127.0.0.1', '127.0.0.2'], False),
231 ('127.0.0.1 , 127.0.0.2', ['127.0.0.1', '127.0.0.2'], False),
232 (
232 (
233 '127.0.0.1,172.172.172.0,127.0.0.2',
233 '127.0.0.1,172.172.172.0,127.0.0.2',
234 ['127.0.0.1', '172.172.172.0', '127.0.0.2'], False),
234 ['127.0.0.1', '172.172.172.0', '127.0.0.2'], False),
235 (
235 (
236 '127.0.0.1-127.0.0.5',
236 '127.0.0.1-127.0.0.5',
237 ['127.0.0.1', '127.0.0.2', '127.0.0.3', '127.0.0.4', '127.0.0.5'],
237 ['127.0.0.1', '127.0.0.2', '127.0.0.3', '127.0.0.4', '127.0.0.5'],
238 False),
238 False),
239 (
239 (
240 '127.0.0.1 - 127.0.0.5',
240 '127.0.0.1 - 127.0.0.5',
241 ['127.0.0.1', '127.0.0.2', '127.0.0.3', '127.0.0.4', '127.0.0.5'],
241 ['127.0.0.1', '127.0.0.2', '127.0.0.3', '127.0.0.4', '127.0.0.5'],
242 False
242 False
243 ),
243 ),
244 ('-', [], True),
244 ('-', [], True),
245 ('127.0.0.1-32', [], True),
245 ('127.0.0.1-32', [], True),
246 (
246 (
247 '127.0.0.1,127.0.0.1,127.0.0.1,127.0.0.1-127.0.0.2,127.0.0.2',
247 '127.0.0.1,127.0.0.1,127.0.0.1,127.0.0.1-127.0.0.2,127.0.0.2',
248 ['127.0.0.1', '127.0.0.2'], False),
248 ['127.0.0.1', '127.0.0.2'], False),
249 (
249 (
250 '127.0.0.1-127.0.0.2,127.0.0.4-127.0.0.6,',
250 '127.0.0.1-127.0.0.2,127.0.0.4-127.0.0.6,',
251 ['127.0.0.1', '127.0.0.2', '127.0.0.4', '127.0.0.5', '127.0.0.6'],
251 ['127.0.0.1', '127.0.0.2', '127.0.0.4', '127.0.0.5', '127.0.0.6'],
252 False
252 False
253 ),
253 ),
254 (
254 (
255 '127.0.0.1-127.0.0.2,127.0.0.1-127.0.0.6,',
255 '127.0.0.1-127.0.0.2,127.0.0.1-127.0.0.6,',
256 ['127.0.0.1', '127.0.0.2', '127.0.0.3', '127.0.0.4', '127.0.0.5',
256 ['127.0.0.1', '127.0.0.2', '127.0.0.3', '127.0.0.4', '127.0.0.5',
257 '127.0.0.6'],
257 '127.0.0.6'],
258 False
258 False
259 ),
259 ),
260 ])
260 ])
261 def test_ip_range_generator(ip_range, expected, expect_errors):
261 def test_ip_range_generator(ip_range, expected, expect_errors):
262 func = UserModel().parse_ip_range
262 func = UserModel().parse_ip_range
263 if expect_errors:
263 if expect_errors:
264 pytest.raises(ValueError, func, ip_range)
264 pytest.raises(ValueError, func, ip_range)
265 else:
265 else:
266 parsed_list = func(ip_range)
266 parsed_list = func(ip_range)
267 assert parsed_list == expected
267 assert parsed_list == expected
268
268
269
269
270 def test_user_delete_cascades_ip_whitelist(test_user):
270 def test_user_delete_cascades_ip_whitelist(test_user):
271 sample_ip = '1.1.1.1'
271 sample_ip = '1.1.1.1'
272 uid_map = UserIpMap(user_id=test_user.user_id, ip_addr=sample_ip)
272 uid_map = UserIpMap(user_id=test_user.user_id, ip_addr=sample_ip)
273 Session().add(uid_map)
273 Session().add(uid_map)
274 Session().delete(test_user)
274 Session().delete(test_user)
275 try:
275 try:
276 Session().flush()
276 Session().flush()
277 finally:
277 finally:
278 Session().rollback()
278 Session().rollback()
279
279
280
280
281 def test_account_for_deactivation_generation(test_user):
281 def test_account_for_deactivation_generation(test_user):
282 accounts = UserModel().get_accounts_in_creation_order(
282 accounts = UserModel().get_accounts_in_creation_order(
283 current_user=test_user)
283 current_user=test_user)
284 # current user should be #1 in the list
284 # current user should be #1 in the list
285 assert accounts[0] == test_user.user_id
285 assert accounts[0] == test_user.user_id
286 active_users = User.query().filter(User.active == true()).count()
286 active_users = User.query().filter(User.active == true()).count()
287 assert active_users == len(accounts)
287 assert active_users == len(accounts)
288
288
289
289
290 def test_user_delete_cascades_permissions_on_repo(backend, test_user):
290 def test_user_delete_cascades_permissions_on_repo(backend, test_user):
291 test_repo = backend.create_repo()
291 test_repo = backend.create_repo()
292 RepoModel().grant_user_permission(
292 RepoModel().grant_user_permission(
293 test_repo, test_user, 'repository.write')
293 test_repo, test_user, 'repository.write')
294 Session().commit()
294 Session().commit()
295
295
296 assert test_user.repo_to_perm
296 assert test_user.repo_to_perm
297
297
298 UserModel().delete(test_user)
298 UserModel().delete(test_user)
299 Session().commit()
299 Session().commit()
300
300
301
301
302 def test_user_delete_cascades_permissions_on_repo_group(
302 def test_user_delete_cascades_permissions_on_repo_group(
303 test_repo_group, test_user):
303 test_repo_group, test_user):
304 RepoGroupModel().grant_user_permission(
304 RepoGroupModel().grant_user_permission(
305 test_repo_group, test_user, 'group.write')
305 test_repo_group, test_user, 'group.write')
306 Session().commit()
306 Session().commit()
307
307
308 assert test_user.repo_group_to_perm
308 assert test_user.repo_group_to_perm
309
309
310 Session().delete(test_user)
310 Session().delete(test_user)
311 Session().commit()
311 Session().commit()
312
312
313
313
314 def test_user_delete_cascades_permissions_on_user_group(
314 def test_user_delete_cascades_permissions_on_user_group(
315 test_user_group, test_user):
315 test_user_group, test_user):
316 UserGroupModel().grant_user_permission(
316 UserGroupModel().grant_user_permission(
317 test_user_group, test_user, 'usergroup.write')
317 test_user_group, test_user, 'usergroup.write')
318 Session().commit()
318 Session().commit()
319
319
320 assert test_user.user_group_to_perm
320 assert test_user.user_group_to_perm
321
321
322 Session().delete(test_user)
322 Session().delete(test_user)
323 Session().commit()
323 Session().commit()
General Comments 0
You need to be logged in to leave comments. Login now