rhodecode-enterprise-ce Commit - r1796:b0e7443a

cleanup: imports cleanup.

marcink -

r1796:b0e7443a default

parent child

rhodecode/controllers/admin/repo_groups.py

0 +1 -1

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2017 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             Repository groups controller for RhodeCode
             """
             import logging
             import formencode
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url
             from pylons.controllers.util import abort, redirect
             from pylons.i18n.translation import _, ungettext
             from rhodecode.lib import auth
             from rhodecode.lib import helpers as h
             from rhodecode.lib.ext_json import json
             from rhodecode.lib.auth import (
                 LoginRequired, NotAnonymous, HasPermissionAll,
                 HasRepoGroupPermissionAll, HasRepoGroupPermissionAnyDecorator)
             from rhodecode.lib.base import BaseController, render
+            from rhodecode.lib.utils2 import safe_int
             from rhodecode.model.db import RepoGroup, User
             from rhodecode.model.scm import RepoGroupList
             from rhodecode.model.repo_group import RepoGroupModel
             from rhodecode.model.forms import RepoGroupForm, RepoGroupPermsForm
             from rhodecode.model.meta import Session
-            from rhodecode.lib.utils2 import safe_int
             log = logging.getLogger(__name__)
             class RepoGroupsController(BaseController):
                 """REST Controller styled on the Atom Publishing Protocol"""
                 @LoginRequired()
                 def __before__(self):
                     super(RepoGroupsController, self).__before__()
                 def __load_defaults(self, allow_empty_group=False, repo_group=None):
                     if self._can_create_repo_group():
                         # we're global admin, we're ok and we can create TOP level groups
                         allow_empty_group = True
                     # override the choices for this form, we need to filter choices
                     # and display only those we have ADMIN right
                     groups_with_admin_rights = RepoGroupList(
                         RepoGroup.query().all(),
                         perm_set=['group.admin'])
                     c.repo_groups = RepoGroup.groups_choices(
                         groups=groups_with_admin_rights,
                         show_empty_group=allow_empty_group)
                     if repo_group:
                         # exclude filtered ids
                         exclude_group_ids = [repo_group.group_id]
                         c.repo_groups = filter(lambda x: x[0] not in exclude_group_ids,
                                                c.repo_groups)
                         c.repo_groups_choices = map(lambda k: unicode(k[0]), c.repo_groups)
                         parent_group = repo_group.parent_group
                         add_parent_group = (parent_group and (
                             unicode(parent_group.group_id) not in c.repo_groups_choices))
                         if add_parent_group:
                             c.repo_groups_choices.append(unicode(parent_group.group_id))
                             c.repo_groups.append(RepoGroup._generate_choice(parent_group))
                 def __load_data(self, group_id):
                     """
                     Load defaults settings for edit, and update
                     :param group_id:
                     """
                     repo_group = RepoGroup.get_or_404(group_id)
                     data = repo_group.get_dict()
                     data['group_name'] = repo_group.name
                     # fill owner
                     if repo_group.user:
                         data.update({'user': repo_group.user.username})
                     else:
                         replacement_user = User.get_first_super_admin().username
                         data.update({'user': replacement_user})
                     # fill repository group users
                     for p in repo_group.repo_group_to_perm:
                         data.update({
                             'u_perm_%s' % p.user.user_id: p.permission.permission_name})
                     # fill repository group user groups
                     for p in repo_group.users_group_to_perm:
                         data.update({
                             'g_perm_%s' % p.users_group.users_group_id:
                             p.permission.permission_name})
                     # html and form expects -1 as empty parent group
                     data['group_parent_id'] = data['group_parent_id'] or -1
                     return data
                 def _revoke_perms_on_yourself(self, form_result):
                     _updates = filter(lambda u: c.rhodecode_user.user_id == int(u[0]),
                                       form_result['perm_updates'])
                     _additions = filter(lambda u: c.rhodecode_user.user_id == int(u[0]),
                                         form_result['perm_additions'])
                     _deletions = filter(lambda u: c.rhodecode_user.user_id == int(u[0]),
                                         form_result['perm_deletions'])
                     admin_perm = 'group.admin'
                     if _updates and _updates[0][1] != admin_perm or \
                        _additions and _additions[0][1] != admin_perm or \
                        _deletions and _deletions[0][1] != admin_perm:
                         return True
                     return False
                 def _can_create_repo_group(self, parent_group_id=None):
                     is_admin = HasPermissionAll('hg.admin')('group create controller')
                     create_repo_group = HasPermissionAll(
                         'hg.repogroup.create.true')('group create controller')
                     if is_admin or (create_repo_group and not parent_group_id):
                         # we're global admin, or we have global repo group create
                         # permission
                         # we're ok and we can create TOP level groups
                         return True
                     elif parent_group_id:
                         # we check the permission if we can write to parent group
                         group = RepoGroup.get(parent_group_id)
                         group_name = group.group_name if group else None
                         if HasRepoGroupPermissionAll('group.admin')(
                                 group_name, 'check if user is an admin of group'):
                             # we're an admin of passed in group, we're ok.
                             return True
                         else:
                             return False
                     return False
                 @NotAnonymous()
                 def index(self):
                     """GET /repo_groups: All items in the collection"""
                     # url('repo_groups')
                     repo_group_list = RepoGroup.get_all_repo_groups()
                     _perms = ['group.admin']
                     repo_group_list_acl = RepoGroupList(repo_group_list, perm_set=_perms)
                     repo_group_data = RepoGroupModel().get_repo_groups_as_dict(
                         repo_group_list=repo_group_list_acl, admin=True)
                     c.data = json.dumps(repo_group_data)
                     return render('admin/repo_groups/repo_groups.mako')
                 # perm checks inside
                 @NotAnonymous()
                 @auth.CSRFRequired()
                 def create(self):
                     """POST /repo_groups: Create a new item"""
                     # url('repo_groups')
                     parent_group_id = safe_int(request.POST.get('group_parent_id'))
                     can_create = self._can_create_repo_group(parent_group_id)
                     self.__load_defaults()
                     # permissions for can create group based on parent_id are checked
                     # here in the Form
                     available_groups = map(lambda k: unicode(k[0]), c.repo_groups)
                     repo_group_form = RepoGroupForm(available_groups=available_groups,
                                                     can_create_in_root=can_create)()
                     try:
                         owner = c.rhodecode_user
                         form_result = repo_group_form.to_python(dict(request.POST))
                         RepoGroupModel().create(
                             group_name=form_result['group_name_full'],
                             group_description=form_result['group_description'],
                             owner=owner.user_id,
                             copy_permissions=form_result['group_copy_permissions']
                         )
                         Session().commit()
                         _new_group_name = form_result['group_name_full']
                         repo_group_url = h.link_to(
                             _new_group_name,
                             h.route_path('repo_group_home', repo_group_name=_new_group_name))
                         h.flash(h.literal(_('Created repository group %s')
                                 % repo_group_url), category='success')
                         # TODO: in future action_logger(, '', '', '', self.sa)
                     except formencode.Invalid as errors:
                         return htmlfill.render(
                             render('admin/repo_groups/repo_group_add.mako'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.exception("Exception during creation of repository group")
                         h.flash(_('Error occurred during creation of repository group %s')
                                 % request.POST.get('group_name'), category='error')
                     # TODO: maybe we should get back to the main view, not the admin one
                     return redirect(url('repo_groups', parent_group=parent_group_id))
                 # perm checks inside
                 @NotAnonymous()
                 def new(self):
                     """GET /repo_groups/new: Form to create a new item"""
                     # url('new_repo_group')
                     # perm check for admin, create_group perm or admin of parent_group
                     parent_group_id = safe_int(request.GET.get('parent_group'))
                     if not self._can_create_repo_group(parent_group_id):
                         return abort(403)
                     self.__load_defaults()
                     return render('admin/repo_groups/repo_group_add.mako')
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 @auth.CSRFRequired()
                 def update(self, group_name):
                     """PUT /repo_groups/group_name: Update an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="PUT" />
                     # Or using helpers:
                     #    h.form(url('repos_group', group_name=GROUP_NAME), method='put')
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     can_create_in_root = self._can_create_repo_group()
                     show_root_location = can_create_in_root
                     if not c.repo_group.parent_group:
                         # this group don't have a parrent so we should show empty value
                         show_root_location = True
                     self.__load_defaults(allow_empty_group=show_root_location,
                                          repo_group=c.repo_group)
                     repo_group_form = RepoGroupForm(
                         edit=True, old_data=c.repo_group.get_dict(),
                         available_groups=c.repo_groups_choices,
                         can_create_in_root=can_create_in_root, allow_disabled=True)()
                     try:
                         form_result = repo_group_form.to_python(dict(request.POST))
                         gr_name = form_result['group_name']
                         new_gr = RepoGroupModel().update(group_name, form_result)
                         Session().commit()
                         h.flash(_('Updated repository group %s') % (gr_name,),
                                 category='success')
                         # we now have new name !
                         group_name = new_gr.group_name
                         # TODO: in future action_logger(, '', '', '', self.sa)
                     except formencode.Invalid as errors:
                         c.active = 'settings'
                         return htmlfill.render(
                             render('admin/repo_groups/repo_group_edit.mako'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.exception("Exception during update or repository group")
                         h.flash(_('Error occurred during update of repository group %s')
                                 % request.POST.get('group_name'), category='error')
                     return redirect(url('edit_repo_group', group_name=group_name))
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 @auth.CSRFRequired()
                 def delete(self, group_name):
                     """DELETE /repo_groups/group_name: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('repos_group', group_name=GROUP_NAME), method='delete')
                     gr = c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     repos = gr.repositories.all()
                     if repos:
                         msg = ungettext(
                             'This group contains %(num)d repository and cannot be deleted',
                             'This group contains %(num)d repositories and cannot be'
                             ' deleted',
                             len(repos)) % {'num': len(repos)}
                         h.flash(msg, category='warning')
                         return redirect(url('repo_groups'))
                     children = gr.children.all()
                     if children:
                         msg = ungettext(
                             'This group contains %(num)d subgroup and cannot be deleted',
                             'This group contains %(num)d subgroups and cannot be deleted',
                             len(children)) % {'num': len(children)}
                         h.flash(msg, category='warning')
                         return redirect(url('repo_groups'))
                     try:
                         RepoGroupModel().delete(group_name)
                         Session().commit()
                         h.flash(_('Removed repository group %s') % group_name,
                                 category='success')
                         # TODO: in future action_logger(, '', '', '', self.sa)
                     except Exception:
                         log.exception("Exception during deletion of repository group")
                         h.flash(_('Error occurred during deletion of repository group %s')
                                 % group_name, category='error')
                     return redirect(url('repo_groups'))
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def edit(self, group_name):
                     """GET /repo_groups/group_name/edit: Form to edit an existing item"""
                     # url('edit_repo_group', group_name=GROUP_NAME)
                     c.active = 'settings'
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     # we can only allow moving empty group if it's already a top-level
                     # group, ie has no parents, or we're admin
                     can_create_in_root = self._can_create_repo_group()
                     show_root_location = can_create_in_root
                     if not c.repo_group.parent_group:
                         # this group don't have a parrent so we should show empty value
                         show_root_location = True
                     self.__load_defaults(allow_empty_group=show_root_location,
                                          repo_group=c.repo_group)
                     defaults = self.__load_data(c.repo_group.group_id)
                     return htmlfill.render(
                         render('admin/repo_groups/repo_group_edit.mako'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def edit_repo_group_advanced(self, group_name):
                     """GET /repo_groups/group_name/edit: Form to edit an existing item"""
                     # url('edit_repo_group', group_name=GROUP_NAME)
                     c.active = 'advanced'
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     return render('admin/repo_groups/repo_group_edit.mako')
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def edit_repo_group_perms(self, group_name):
                     """GET /repo_groups/group_name/edit: Form to edit an existing item"""
                     # url('edit_repo_group', group_name=GROUP_NAME)
                     c.active = 'perms'
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     self.__load_defaults()
                     defaults = self.__load_data(c.repo_group.group_id)
                     return htmlfill.render(
                         render('admin/repo_groups/repo_group_edit.mako'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 @auth.CSRFRequired()
                 def update_perms(self, group_name):
                     """
                     Update permissions for given repository group
                     :param group_name:
                     """
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     valid_recursive_choices = ['none', 'repos', 'groups', 'all']
                     form = RepoGroupPermsForm(valid_recursive_choices)().to_python(
                         request.POST)
                     if not c.rhodecode_user.is_admin:
                         if self._revoke_perms_on_yourself(form):
                             msg = _('Cannot change permission for yourself as admin')
                             h.flash(msg, category='warning')
                             return redirect(
                                 url('edit_repo_group_perms', group_name=group_name))
                     # iterate over all members(if in recursive mode) of this groups and
                     # set the permissions !
                     # this can be potentially heavy operation
                     RepoGroupModel().update_permissions(
                         c.repo_group,
                         form['perm_additions'], form['perm_updates'],
                         form['perm_deletions'], form['recursive'])
                     # TODO: implement this
                     # action_logger(c.rhodecode_user, 'admin_changed_repo_permissions',
                     #               repo_name, self.ip_addr, self.sa)
                     Session().commit()
                     h.flash(_('Repository Group permissions updated'), category='success')
                     return redirect(url('edit_repo_group_perms', group_name=group_name))

rhodecode/controllers/admin/repos.py

0 +3 -7

             # -*- coding: utf-8 -*-
             # Copyright (C) 2013-2017 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             Repositories controller for RhodeCode
             """
             import logging
             import traceback
             import formencode
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url
             from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
             from webob.exc import HTTPForbidden, HTTPNotFound, HTTPBadRequest
             import rhodecode
             from rhodecode.lib import auth, helpers as h
             from rhodecode.lib.auth import (
                 LoginRequired, HasPermissionAllDecorator,
                 HasRepoPermissionAllDecorator, NotAnonymous, HasPermissionAny,
                 HasRepoGroupPermissionAny, HasRepoPermissionAnyDecorator)
             from rhodecode.lib.base import BaseRepoController, render
             from rhodecode.lib.ext_json import json
-            from rhodecode.lib.exceptions import AttachedForksError
+            from rhodecode.lib.utils import repo_name_slug, jsonify
-            from rhodecode.lib.utils import action_logger, repo_name_slug, jsonify
             from rhodecode.lib.utils2 import safe_int, str2bool
-            from rhodecode.lib.vcs import RepositoryError
+            from rhodecode.model.db import (Repository, RepoGroup, RepositoryField)
-            from rhodecode.model.db import (
-                User, Repository, UserFollowing, RepoGroup, RepositoryField)
             from rhodecode.model.forms import (
-                RepoForm, RepoFieldForm, RepoPermsForm, RepoVcsSettingsForm,
+                RepoForm, RepoFieldForm, RepoVcsSettingsForm, IssueTrackerPatternsForm)
-                IssueTrackerPatternsForm)
             from rhodecode.model.meta import Session
             from rhodecode.model.repo import RepoModel
             from rhodecode.model.scm import ScmModel, RepoGroupList, RepoList
             from rhodecode.model.settings import (
                 SettingsModel, IssueTrackerSettingsModel, VcsSettingsModel,
                 SettingNotFound)
             log = logging.getLogger(__name__)
             class ReposController(BaseRepoController):
                 """
                 REST Controller styled on the Atom Publishing Protocol"""
                 # To properly map this controller, ensure your config/routing.py
                 # file has a resource setup:
                 #     map.resource('repo', 'repos')
                 @LoginRequired()
                 def __before__(self):
                     super(ReposController, self).__before__()
                 def _load_repo(self, repo_name):
                     repo_obj = Repository.get_by_repo_name(repo_name)
                     if repo_obj is None:
                         h.not_mapped_error(repo_name)
                         return redirect(url('repos'))
                     return repo_obj
                 def __load_defaults(self, repo=None):
                     acl_groups = RepoGroupList(RepoGroup.query().all(),
                                            perm_set=['group.write', 'group.admin'])
                     c.repo_groups = RepoGroup.groups_choices(groups=acl_groups)
                     c.repo_groups_choices = map(lambda k: unicode(k[0]), c.repo_groups)
                     # in case someone no longer have a group.write access to a repository
                     # pre fill the list with this entry, we don't care if this is the same
                     # but it will allow saving repo data properly.
                     repo_group = None
                     if repo:
                         repo_group = repo.group
                     if repo_group and unicode(repo_group.group_id) not in c.repo_groups_choices:
                         c.repo_groups_choices.append(unicode(repo_group.group_id))
                         c.repo_groups.append(RepoGroup._generate_choice(repo_group))
                     choices, c.landing_revs = ScmModel().get_repo_landing_revs()
                     c.landing_revs_choices = choices
                 def __load_data(self, repo_name=None):
                     """
                     Load defaults settings for edit, and update
                     :param repo_name:
                     """
                     c.repo_info = self._load_repo(repo_name)
                     self.__load_defaults(c.repo_info)
                     # override defaults for exact repo info here git/hg etc
                     if not c.repository_requirements_missing:
                         choices, c.landing_revs = ScmModel().get_repo_landing_revs(
                             c.repo_info)
                         c.landing_revs_choices = choices
                     defaults = RepoModel()._get_defaults(repo_name)
                     return defaults
                 def _log_creation_exception(self, e, repo_name):
                         reason = None
                         if len(e.args) == 2:
                             reason = e.args[1]
                         if reason == 'INVALID_CERTIFICATE':
                             log.exception(
                                 'Exception creating a repository: invalid certificate')
                             msg = (_('Error creating repository %s: invalid certificate')
                                    % repo_name)
                         else:
                             log.exception("Exception creating a repository")
                             msg = (_('Error creating repository %s')
                                    % repo_name)
                         return msg
                 @NotAnonymous()
                 def index(self, format='html'):
                     """GET /repos: All items in the collection"""
                     # url('repos')
                     repo_list = Repository.get_all_repos()
                     c.repo_list = RepoList(repo_list, perm_set=['repository.admin'])
                     repos_data = RepoModel().get_repos_as_dict(
                         repo_list=c.repo_list, admin=True, super_user_actions=True)
                     # json used to render the grid
                     c.data = json.dumps(repos_data)
                     return render('admin/repos/repos.mako')
                 # perms check inside
                 @NotAnonymous()
                 @auth.CSRFRequired()
                 def create(self):
                     """
                     POST /repos: Create a new item"""
                     # url('repos')
                     self.__load_defaults()
                     form_result = {}
                     task_id = None
                     c.personal_repo_group = c.rhodecode_user.personal_repo_group
                     try:
                         # CanWriteToGroup validators checks permissions of this POST
                         form_result = RepoForm(repo_groups=c.repo_groups_choices,
                                                landing_revs=c.landing_revs_choices)()\
                                         .to_python(dict(request.POST))
                         # create is done sometimes async on celery, db transaction
                         # management is handled there.
                         task = RepoModel().create(form_result, c.rhodecode_user.user_id)
                         from celery.result import BaseAsyncResult
                         if isinstance(task, BaseAsyncResult):
                             task_id = task.task_id
                     except formencode.Invalid as errors:
                         return htmlfill.render(
                             render('admin/repos/repo_add.mako'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception as e:
                         msg = self._log_creation_exception(e, form_result.get('repo_name'))
                         h.flash(msg, category='error')
                         return redirect(h.route_path('home'))
                     return redirect(h.url('repo_creating_home',
                                           repo_name=form_result['repo_name_full'],
                                           task_id=task_id))
                 # perms check inside
                 @NotAnonymous()
                 def create_repository(self):
                     """GET /_admin/create_repository: Form to create a new item"""
                     new_repo = request.GET.get('repo', '')
                     parent_group = safe_int(request.GET.get('parent_group'))
                     _gr = RepoGroup.get(parent_group)
                     if not HasPermissionAny('hg.admin', 'hg.create.repository')():
                         # you're not super admin nor have global create permissions,
                         # but maybe you have at least write permission to a parent group ?
                         gr_name = _gr.group_name if _gr else None
                         # create repositories with write permission on group is set to true
                         create_on_write = HasPermissionAny('hg.create.write_on_repogroup.true')()
                         group_admin = HasRepoGroupPermissionAny('group.admin')(group_name=gr_name)
                         group_write = HasRepoGroupPermissionAny('group.write')(group_name=gr_name)
                         if not (group_admin or (group_write and create_on_write)):
                             raise HTTPForbidden
                     acl_groups = RepoGroupList(RepoGroup.query().all(),
                                            perm_set=['group.write', 'group.admin'])
                     c.repo_groups = RepoGroup.groups_choices(groups=acl_groups)
                     c.repo_groups_choices = map(lambda k: unicode(k[0]), c.repo_groups)
                     choices, c.landing_revs = ScmModel().get_repo_landing_revs()
                     c.personal_repo_group = c.rhodecode_user.personal_repo_group
                     c.new_repo = repo_name_slug(new_repo)
                     # apply the defaults from defaults page
                     defaults = SettingsModel().get_default_repo_settings(strip_prefix=True)
                     # set checkbox to autochecked
                     defaults['repo_copy_permissions'] = True
                     parent_group_choice = '-1'
                     if not c.rhodecode_user.is_admin and c.rhodecode_user.personal_repo_group:
                         parent_group_choice = c.rhodecode_user.personal_repo_group
                     if parent_group and _gr:
                         if parent_group in [x[0] for x in c.repo_groups]:
                             parent_group_choice = unicode(parent_group)
                     defaults.update({'repo_group': parent_group_choice})
                     return htmlfill.render(
                         render('admin/repos/repo_add.mako'),
                         defaults=defaults,
                         errors={},
                         prefix_error=False,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @NotAnonymous()
                 def repo_creating(self, repo_name):
                     c.repo = repo_name
                     c.task_id = request.GET.get('task_id')
                     if not c.repo:
                         raise HTTPNotFound()
                     return render('admin/repos/repo_creating.mako')
                 @NotAnonymous()
                 @jsonify
                 def repo_check(self, repo_name):
                     c.repo = repo_name
                     task_id = request.GET.get('task_id')
                     if task_id and task_id not in ['None']:
                         import rhodecode
                         from celery.result import AsyncResult
                         if rhodecode.CELERY_ENABLED:
                             task = AsyncResult(task_id)
                             if task.failed():
                                 msg = self._log_creation_exception(task.result, c.repo)
                                 h.flash(msg, category='error')
                                 return redirect(h.route_path('home'), code=501)
                     repo = Repository.get_by_repo_name(repo_name)
                     if repo and repo.repo_state == Repository.STATE_CREATED:
                         if repo.clone_uri:
                             clone_uri = repo.clone_uri_hidden
                             h.flash(_('Created repository %s from %s')
                                     % (repo.repo_name, clone_uri), category='success')
                         else:
                             repo_url = h.link_to(
                                 repo.repo_name,
                                 h.route_path('repo_summary',repo_name=repo.repo_name))
                             fork = repo.fork
                             if fork:
                                 fork_name = fork.repo_name
                                 h.flash(h.literal(_('Forked repository %s as %s')
                                         % (fork_name, repo_url)), category='success')
                             else:
                                 h.flash(h.literal(_('Created repository %s') % repo_url),
                                         category='success')
                         return {'result': True}
                     return {'result': False}
                 @HasPermissionAllDecorator('hg.admin')
                 def show(self, repo_name, format='html'):
                     """GET /repos/repo_name: Show a specific item"""
                     # url('repo', repo_name=ID)
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_fields(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     c.repo_info = self._load_repo(repo_name)
                     c.repo_fields = RepositoryField.query()\
                         .filter(RepositoryField.repository == c.repo_info).all()
                     c.active = 'fields'
                     if request.POST:
                         return redirect(url('repo_edit_fields'))
                     return render('admin/repos/repo_edit.mako')
                 @HasRepoPermissionAllDecorator('repository.admin')
                 @auth.CSRFRequired()
                 def create_repo_field(self, repo_name):
                     try:
                         form_result = RepoFieldForm()().to_python(dict(request.POST))
                         RepoModel().add_repo_field(
                             repo_name, form_result['new_field_key'],
                             field_type=form_result['new_field_type'],
                             field_value=form_result['new_field_value'],
                             field_label=form_result['new_field_label'],
                             field_desc=form_result['new_field_desc'])
                         Session().commit()
                     except Exception as e:
                         log.exception("Exception creating field")
                         msg = _('An error occurred during creation of field')
                         if isinstance(e, formencode.Invalid):
                             msg += ". " + e.msg
                         h.flash(msg, category='error')
                     return redirect(url('edit_repo_fields', repo_name=repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 @auth.CSRFRequired()
                 def delete_repo_field(self, repo_name, field_id):
                     field = RepositoryField.get_or_404(field_id)
                     try:
                         RepoModel().delete_repo_field(repo_name, field.field_key)
                         Session().commit()
                     except Exception as e:
                         log.exception("Exception during removal of field")
                         msg = _('An error occurred during removal of field')
                         h.flash(msg, category='error')
                     return redirect(url('edit_repo_fields', repo_name=repo_name))
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 @auth.CSRFRequired()
                 def toggle_locking(self, repo_name):
                     """
                     Toggle locking of repository by simple GET call to url
                     :param repo_name:
                     """
                     try:
                         repo = Repository.get_by_repo_name(repo_name)
                         if repo.enable_locking:
                             if repo.locked[0]:
                                 Repository.unlock(repo)
                                 action = _('Unlocked')
                             else:
                                 Repository.lock(repo, c.rhodecode_user.user_id,
                                                 lock_reason=Repository.LOCK_WEB)
                                 action = _('Locked')
                             h.flash(_('Repository has been %s') % action,
                                     category='success')
                     except Exception:
                         log.exception("Exception during unlocking")
                         h.flash(_('An error occurred during unlocking'),
                                 category='error')
                     return redirect(h.route_path('repo_summary', repo_name=repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 @auth.CSRFRequired()
                 def edit_remote(self, repo_name):
                     """PUT /{repo_name}/settings/remote: edit the repo remote."""
                     try:
                         ScmModel().pull_changes(repo_name, c.rhodecode_user.username)
                         h.flash(_('Pulled from remote location'), category='success')
                     except Exception:
                         log.exception("Exception during pull from remote")
                         h.flash(_('An error occurred during pull from remote location'),
                                 category='error')
                     return redirect(url('edit_repo_remote', repo_name=c.repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_remote_form(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     c.repo_info = self._load_repo(repo_name)
                     c.active = 'remote'
                     return render('admin/repos/repo_edit.mako')
                 @HasRepoPermissionAllDecorator('repository.admin')
                 @auth.CSRFRequired()
                 def edit_statistics(self, repo_name):
                     """PUT /{repo_name}/settings/statistics: reset the repo statistics."""
                     try:
                         RepoModel().delete_stats(repo_name)
                         Session().commit()
                     except Exception as e:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during deletion of repository stats'),
                                 category='error')
                     return redirect(url('edit_repo_statistics', repo_name=c.repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_statistics_form(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     c.repo_info = self._load_repo(repo_name)
                     repo = c.repo_info.scm_instance()
                     if c.repo_info.stats:
                         # this is on what revision we ended up so we add +1 for count
                         last_rev = c.repo_info.stats.stat_on_revision + 1
                     else:
                         last_rev = 0
                     c.stats_revision = last_rev
                     c.repo_last_rev = repo.count()
                     if last_rev == 0 or c.repo_last_rev == 0:
                         c.stats_percentage = 0
                     else:
                         c.stats_percentage = '%.2f' % ((float((last_rev)) / c.repo_last_rev) * 100)
                     c.active = 'statistics'
                     return render('admin/repos/repo_edit.mako')
                 @HasRepoPermissionAllDecorator('repository.admin')
                 @auth.CSRFRequired()
                 def repo_issuetracker_test(self, repo_name):
                     if request.is_xhr:
                         return h.urlify_commit_message(
                             request.POST.get('test_text', ''),
                             repo_name)
                     else:
                         raise HTTPBadRequest()
                 @HasRepoPermissionAllDecorator('repository.admin')
                 @auth.CSRFRequired()
                 def repo_issuetracker_delete(self, repo_name):
                     uid = request.POST.get('uid')
                     repo_settings = IssueTrackerSettingsModel(repo=repo_name)
                     try:
                         repo_settings.delete_entries(uid)
                     except Exception:
                         h.flash(_('Error occurred during deleting issue tracker entry'),
                                 category='error')
                     else:
                         h.flash(_('Removed issue tracker entry'), category='success')
                     return redirect(url('repo_settings_issuetracker',
                                     repo_name=repo_name))
                 def _update_patterns(self, form, repo_settings):
                     for uid in form['delete_patterns']:
                         repo_settings.delete_entries(uid)
                     for pattern in form['patterns']:
                         for setting, value, type_ in pattern:
                             sett = repo_settings.create_or_update_setting(
                                 setting, value, type_)
                             Session().add(sett)
                         Session().commit()
                 @HasRepoPermissionAllDecorator('repository.admin')
                 @auth.CSRFRequired()
                 def repo_issuetracker_save(self, repo_name):
                     # Save inheritance
                     repo_settings = IssueTrackerSettingsModel(repo=repo_name)
                     inherited = (request.POST.get('inherit_global_issuetracker')
                                  == "inherited")
                     repo_settings.inherit_global_settings = inherited
                     Session().commit()
                     form = IssueTrackerPatternsForm()().to_python(request.POST)
                     if form:
                         self._update_patterns(form, repo_settings)
                     h.flash(_('Updated issue tracker entries'), category='success')
                     return redirect(url('repo_settings_issuetracker',
                                     repo_name=repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def repo_issuetracker(self, repo_name):
                     """GET /admin/settings/issue-tracker: All items in the collection"""
                     c.active = 'issuetracker'
                     c.data = 'data'
                     c.repo_info = self._load_repo(repo_name)
                     repo = Repository.get_by_repo_name(repo_name)
                     c.settings_model = IssueTrackerSettingsModel(repo=repo)
                     c.global_patterns = c.settings_model.get_global_settings()
                     c.repo_patterns = c.settings_model.get_repo_settings()
                     return render('admin/repos/repo_edit.mako')
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def repo_settings_vcs(self, repo_name):
                     """GET /{repo_name}/settings/vcs/: All items in the collection"""
                     model = VcsSettingsModel(repo=repo_name)
                     c.active = 'vcs'
                     c.global_svn_branch_patterns = model.get_global_svn_branch_patterns()
                     c.global_svn_tag_patterns = model.get_global_svn_tag_patterns()
                     c.svn_branch_patterns = model.get_repo_svn_branch_patterns()
                     c.svn_tag_patterns = model.get_repo_svn_tag_patterns()
                     c.repo_info = self._load_repo(repo_name)
                     defaults = self._vcs_form_defaults(repo_name)
                     c.inherit_global_settings = defaults['inherit_global_settings']
                     c.labs_active = str2bool(
                         rhodecode.CONFIG.get('labs_settings_active', 'true'))
                     return htmlfill.render(
                         render('admin/repos/repo_edit.mako'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasRepoPermissionAllDecorator('repository.admin')
                 @auth.CSRFRequired()
                 def repo_settings_vcs_update(self, repo_name):
                     """POST /{repo_name}/settings/vcs/: All items in the collection"""
                     c.active = 'vcs'
                     model = VcsSettingsModel(repo=repo_name)
                     c.global_svn_branch_patterns = model.get_global_svn_branch_patterns()
                     c.global_svn_tag_patterns = model.get_global_svn_tag_patterns()
                     c.svn_branch_patterns = model.get_repo_svn_branch_patterns()
                     c.svn_tag_patterns = model.get_repo_svn_tag_patterns()
                     c.repo_info = self._load_repo(repo_name)
                     defaults = self._vcs_form_defaults(repo_name)
                     c.inherit_global_settings = defaults['inherit_global_settings']
                     application_form = RepoVcsSettingsForm(repo_name)()
                     try:
                         form_result = application_form.to_python(dict(request.POST))
                     except formencode.Invalid as errors:
                         h.flash(
                             _("Some form inputs contain invalid data."),
                             category='error')
                         return htmlfill.render(
                             render('admin/repos/repo_edit.mako'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False
                         )
                     try:
                         inherit_global_settings = form_result['inherit_global_settings']
                         model.create_or_update_repo_settings(
                             form_result, inherit_global_settings=inherit_global_settings)
                     except Exception:
                         log.exception("Exception while updating settings")
                         h.flash(
                             _('Error occurred during updating repository VCS settings'),
                             category='error')
                     else:
                         Session().commit()
                         h.flash(_('Updated VCS settings'), category='success')
                         return redirect(url('repo_vcs_settings', repo_name=repo_name))
                     return htmlfill.render(
                         render('admin/repos/repo_edit.mako'),
                         defaults=self._vcs_form_defaults(repo_name),
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasRepoPermissionAllDecorator('repository.admin')
                 @auth.CSRFRequired()
                 @jsonify
                 def repo_delete_svn_pattern(self, repo_name):
                     if not request.is_xhr:
                         return False
                     delete_pattern_id = request.POST.get('delete_svn_pattern')
                     model = VcsSettingsModel(repo=repo_name)
                     try:
                         model.delete_repo_svn_pattern(delete_pattern_id)
                     except SettingNotFound:
                         raise HTTPBadRequest()
                     Session().commit()
                     return True
                 def _vcs_form_defaults(self, repo_name):
                     model = VcsSettingsModel(repo=repo_name)
                     global_defaults = model.get_global_settings()
                     repo_defaults = {}
                     repo_defaults.update(global_defaults)
                     repo_defaults.update(model.get_repo_settings())
                     global_defaults = {
                         '{}_inherited'.format(k): global_defaults[k]
                         for k in global_defaults}
                     defaults = {
                         'inherit_global_settings': model.inherit_global_settings
                     }
                     defaults.update(global_defaults)
                     defaults.update(repo_defaults)
                     defaults.update({
                         'new_svn_branch': '',
                         'new_svn_tag': '',
                     })
                     return defaults

rhodecode/controllers/admin/user_groups.py

0 +2 -2

             # -*- coding: utf-8 -*-
             # Copyright (C) 2011-2017 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             User Groups crud controller for pylons
             """
             import logging
             import formencode
             import peppercorn
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url, config
             from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
             from sqlalchemy.orm import joinedload
             from rhodecode.lib import auth
             from rhodecode.lib import helpers as h
+            from rhodecode.lib.ext_json import json
             from rhodecode.lib.exceptions import UserGroupAssignedException,\
                 RepoGroupAssignmentError
             from rhodecode.lib.utils import jsonify, action_logger
             from rhodecode.lib.utils2 import safe_unicode, str2bool, safe_int
             from rhodecode.lib.auth import (
                 LoginRequired, NotAnonymous, HasUserGroupPermissionAnyDecorator,
                 HasPermissionAnyDecorator, XHRRequired)
             from rhodecode.lib.base import BaseController, render
             from rhodecode.model.permission import PermissionModel
             from rhodecode.model.scm import UserGroupList
             from rhodecode.model.user_group import UserGroupModel
             from rhodecode.model.db import (
                 User, UserGroup, UserGroupRepoToPerm, UserGroupRepoGroupToPerm)
             from rhodecode.model.forms import (
                 UserGroupForm, UserGroupPermsForm, UserIndividualPermissionsForm,
                 UserPermissionsForm)
             from rhodecode.model.meta import Session
-            from rhodecode.lib.utils import action_logger
-            from rhodecode.lib.ext_json import json
             log = logging.getLogger(__name__)
             class UserGroupsController(BaseController):
                 """REST Controller styled on the Atom Publishing Protocol"""
                 @LoginRequired()
                 def __before__(self):
                     super(UserGroupsController, self).__before__()
                     c.available_permissions = config['available_permissions']
                     PermissionModel().set_global_permission_choices(c, gettext_translator=_)
                 def __load_data(self, user_group_id):
                     c.group_members_obj = [x.user for x in c.user_group.members]
                     c.group_members_obj.sort(key=lambda u: u.username.lower())
                     c.group_members = [(x.user_id, x.username) for x in c.group_members_obj]
                 def __load_defaults(self, user_group_id):
                     """
                     Load defaults settings for edit, and update
                     :param user_group_id:
                     """
                     user_group = UserGroup.get_or_404(user_group_id)
                     data = user_group.get_dict()
                     # fill owner
                     if user_group.user:
                         data.update({'user': user_group.user.username})
                     else:
                         replacement_user = User.get_first_super_admin().username
                         data.update({'user': replacement_user})
                     return data
                 def _revoke_perms_on_yourself(self, form_result):
                     _updates = filter(lambda u: c.rhodecode_user.user_id == int(u[0]),
                                       form_result['perm_updates'])
                     _additions = filter(lambda u: c.rhodecode_user.user_id == int(u[0]),
                                         form_result['perm_additions'])
                     _deletions = filter(lambda u: c.rhodecode_user.user_id == int(u[0]),
                                         form_result['perm_deletions'])
                     admin_perm = 'usergroup.admin'
                     if _updates   and _updates[0][1]   != admin_perm or \
                        _additions and _additions[0][1] != admin_perm or \
                        _deletions and _deletions[0][1] != admin_perm:
                         return True
                     return False
                 # permission check inside
                 @NotAnonymous()
                 def index(self):
                     """GET /users_groups: All items in the collection"""
                     # url('users_groups')
                     from rhodecode.lib.utils import PartialRenderer
                     _render = PartialRenderer('data_table/_dt_elements.mako')
                     def user_group_name(user_group_id, user_group_name):
                         return _render("user_group_name", user_group_id, user_group_name)
                     def user_group_actions(user_group_id, user_group_name):
                         return _render("user_group_actions", user_group_id, user_group_name)
                     # json generate
                     group_iter = UserGroupList(UserGroup.query().all(),
                                                perm_set=['usergroup.admin'])
                     user_groups_data = []
                     for user_gr in group_iter:
                         user_groups_data.append({
                             "group_name": user_group_name(
                                 user_gr.users_group_id, h.escape(user_gr.users_group_name)),
                             "group_name_raw": user_gr.users_group_name,
                             "desc": h.escape(user_gr.user_group_description),
                             "members": len(user_gr.members),
                             "sync": user_gr.group_data.get('extern_type'),
                             "active": h.bool2icon(user_gr.users_group_active),
                             "owner": h.escape(h.link_to_user(user_gr.user.username)),
                             "action": user_group_actions(
                                 user_gr.users_group_id, user_gr.users_group_name)
                         })
                     c.data = json.dumps(user_groups_data)
                     return render('admin/user_groups/user_groups.mako')
                 @HasPermissionAnyDecorator('hg.admin', 'hg.usergroup.create.true')
                 @auth.CSRFRequired()
                 def create(self):
                     """POST /users_groups: Create a new item"""
                     # url('users_groups')
                     users_group_form = UserGroupForm()()
                     try:
                         form_result = users_group_form.to_python(dict(request.POST))
                         user_group = UserGroupModel().create(
                             name=form_result['users_group_name'],
                             description=form_result['user_group_description'],
                             owner=c.rhodecode_user.user_id,
                             active=form_result['users_group_active'])
                         Session().flush()
                         user_group_name = form_result['users_group_name']
                         action_logger(c.rhodecode_user,
                                       'admin_created_users_group:%s' % user_group_name,
                                       None, self.ip_addr, self.sa)
                         user_group_link = h.link_to(h.escape(user_group_name),
                                                     url('edit_users_group',
                                                         user_group_id=user_group.users_group_id))
                         h.flash(h.literal(_('Created user group %(user_group_link)s')
                                           % {'user_group_link': user_group_link}),
                                 category='success')
                         Session().commit()
                     except formencode.Invalid as errors:
                         return htmlfill.render(
                             render('admin/user_groups/user_group_add.mako'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.exception("Exception creating user group")
                         h.flash(_('Error occurred during creation of user group %s') \
                                 % request.POST.get('users_group_name'), category='error')
                     return redirect(
                         url('edit_users_group', user_group_id=user_group.users_group_id))
                 @HasPermissionAnyDecorator('hg.admin', 'hg.usergroup.create.true')
                 def new(self):
                     """GET /user_groups/new: Form to create a new item"""
                     # url('new_users_group')
                     return render('admin/user_groups/user_group_add.mako')
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 @auth.CSRFRequired()
                 def update(self, user_group_id):
                     """PUT /user_groups/user_group_id: Update an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="PUT" />
                     # Or using helpers:
                     #    h.form(url('users_group', user_group_id=ID),
                     #           method='put')
                     # url('users_group', user_group_id=ID)
                     user_group_id = safe_int(user_group_id)
                     c.user_group = UserGroup.get_or_404(user_group_id)
                     c.active = 'settings'
                     self.__load_data(user_group_id)
                     users_group_form = UserGroupForm(
                         edit=True, old_data=c.user_group.get_dict(), allow_disabled=True)()
                     try:
                         form_result = users_group_form.to_python(request.POST)
                         pstruct = peppercorn.parse(request.POST.items())
                         form_result['users_group_members'] = pstruct['user_group_members']
                         UserGroupModel().update(c.user_group, form_result)
                         updated_user_group = form_result['users_group_name']
                         action_logger(c.rhodecode_user,
                                       'admin_updated_users_group:%s' % updated_user_group,
                                       None, self.ip_addr, self.sa)
                         h.flash(_('Updated user group %s') % updated_user_group,
                                 category='success')
                         Session().commit()
                     except formencode.Invalid as errors:
                         defaults = errors.value
                         e = errors.error_dict or {}
                         return htmlfill.render(
                             render('admin/user_groups/user_group_edit.mako'),
                             defaults=defaults,
                             errors=e,
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.exception("Exception during update of user group")
                         h.flash(_('Error occurred during update of user group %s')
                                 % request.POST.get('users_group_name'), category='error')
                     return redirect(url('edit_users_group', user_group_id=user_group_id))
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 @auth.CSRFRequired()
                 def delete(self, user_group_id):
                     """DELETE /user_groups/user_group_id: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('users_group', user_group_id=ID),
                     #           method='delete')
                     # url('users_group', user_group_id=ID)
                     user_group_id = safe_int(user_group_id)
                     c.user_group = UserGroup.get_or_404(user_group_id)
                     force = str2bool(request.POST.get('force'))
                     try:
                         UserGroupModel().delete(c.user_group, force=force)
                         Session().commit()
                         h.flash(_('Successfully deleted user group'), category='success')
                     except UserGroupAssignedException as e:
                         h.flash(str(e), category='error')
                     except Exception:
                         log.exception("Exception during deletion of user group")
                         h.flash(_('An error occurred during deletion of user group'),
                                 category='error')
                     return redirect(url('users_groups'))
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit(self, user_group_id):
                     """GET /user_groups/user_group_id/edit: Form to edit an existing item"""
                     # url('edit_users_group', user_group_id=ID)
                     user_group_id = safe_int(user_group_id)
                     c.user_group = UserGroup.get_or_404(user_group_id)
                     c.active = 'settings'
                     self.__load_data(user_group_id)
                     defaults = self.__load_defaults(user_group_id)
                     return htmlfill.render(
                         render('admin/user_groups/user_group_edit.mako'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit_perms(self, user_group_id):
                     user_group_id = safe_int(user_group_id)
                     c.user_group = UserGroup.get_or_404(user_group_id)
                     c.active = 'perms'
                     defaults = {}
                     # fill user group users
                     for p in c.user_group.user_user_group_to_perm:
                         defaults.update({'u_perm_%s' % p.user.user_id:
                                          p.permission.permission_name})
                     for p in c.user_group.user_group_user_group_to_perm:
                         defaults.update({'g_perm_%s' % p.user_group.users_group_id:
                                          p.permission.permission_name})
                     return htmlfill.render(
                         render('admin/user_groups/user_group_edit.mako'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 @auth.CSRFRequired()
                 def update_perms(self, user_group_id):
                     """
                     grant permission for given usergroup
                     :param user_group_id:
                     """
                     user_group_id = safe_int(user_group_id)
                     c.user_group = UserGroup.get_or_404(user_group_id)
                     form = UserGroupPermsForm()().to_python(request.POST)
                     if not c.rhodecode_user.is_admin:
                         if self._revoke_perms_on_yourself(form):
                             msg = _('Cannot change permission for yourself as admin')
                             h.flash(msg, category='warning')
                             return redirect(url('edit_user_group_perms', user_group_id=user_group_id))
                     try:
                         UserGroupModel().update_permissions(user_group_id,
                             form['perm_additions'], form['perm_updates'], form['perm_deletions'])
                     except RepoGroupAssignmentError:
                         h.flash(_('Target group cannot be the same'), category='error')
                         return redirect(url('edit_user_group_perms', user_group_id=user_group_id))
                     #TODO: implement this
                     #action_logger(c.rhodecode_user, 'admin_changed_repo_permissions',
                     #              repo_name, self.ip_addr, self.sa)
                     Session().commit()
                     h.flash(_('User Group permissions updated'), category='success')
                     return redirect(url('edit_user_group_perms', user_group_id=user_group_id))
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit_perms_summary(self, user_group_id):
                     user_group_id = safe_int(user_group_id)
                     c.user_group = UserGroup.get_or_404(user_group_id)
                     c.active = 'perms_summary'
                     permissions = {
                         'repositories': {},
                         'repositories_groups': {},
                     }
                     ugroup_repo_perms = UserGroupRepoToPerm.query()\
                         .options(joinedload(UserGroupRepoToPerm.permission))\
                         .options(joinedload(UserGroupRepoToPerm.repository))\
                         .filter(UserGroupRepoToPerm.users_group_id == user_group_id)\
                         .all()
                     for gr in ugroup_repo_perms:
                         permissions['repositories'][gr.repository.repo_name]  \
                             = gr.permission.permission_name
                     ugroup_group_perms = UserGroupRepoGroupToPerm.query()\
                         .options(joinedload(UserGroupRepoGroupToPerm.permission))\
                         .options(joinedload(UserGroupRepoGroupToPerm.group))\
                         .filter(UserGroupRepoGroupToPerm.users_group_id == user_group_id)\
                         .all()
                     for gr in ugroup_group_perms:
                         permissions['repositories_groups'][gr.group.group_name] \
                             = gr.permission.permission_name
                     c.permissions = permissions
                     return render('admin/user_groups/user_group_edit.mako')
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit_global_perms(self, user_group_id):
                     user_group_id = safe_int(user_group_id)
                     c.user_group = UserGroup.get_or_404(user_group_id)
                     c.active = 'global_perms'
                     c.default_user = User.get_default_user()
                     defaults = c.user_group.get_dict()
                     defaults.update(c.default_user.get_default_perms(suffix='_inherited'))
                     defaults.update(c.user_group.get_default_perms())
                     return htmlfill.render(
                         render('admin/user_groups/user_group_edit.mako'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 @auth.CSRFRequired()
                 def update_global_perms(self, user_group_id):
                     """PUT /users_perm/user_group_id: Update an existing item"""
                     # url('users_group_perm', user_group_id=ID, method='put')
                     user_group_id = safe_int(user_group_id)
                     user_group = UserGroup.get_or_404(user_group_id)
                     c.active = 'global_perms'
                     try:
                         # first stage that verifies the checkbox
                         _form = UserIndividualPermissionsForm()
                         form_result = _form.to_python(dict(request.POST))
                         inherit_perms = form_result['inherit_default_permissions']
                         user_group.inherit_default_permissions = inherit_perms
                         Session().add(user_group)
                         if not inherit_perms:
                             # only update the individual ones if we un check the flag
                             _form = UserPermissionsForm(
                                 [x[0] for x in c.repo_create_choices],
                                 [x[0] for x in c.repo_create_on_write_choices],
                                 [x[0] for x in c.repo_group_create_choices],
                                 [x[0] for x in c.user_group_create_choices],
                                 [x[0] for x in c.fork_choices],
                                 [x[0] for x in c.inherit_default_permission_choices])()
                             form_result = _form.to_python(dict(request.POST))
                             form_result.update({'perm_user_group_id': user_group.users_group_id})
                             PermissionModel().update_user_group_permissions(form_result)
                         Session().commit()
                         h.flash(_('User Group global permissions updated successfully'),
                                 category='success')
                     except formencode.Invalid as errors:
                         defaults = errors.value
                         c.user_group = user_group
                         return htmlfill.render(
                             render('admin/user_groups/user_group_edit.mako'),
                             defaults=defaults,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.exception("Exception during permissions saving")
                         h.flash(_('An error occurred during permissions saving'),
                                 category='error')
                     return redirect(url('edit_user_group_global_perms', user_group_id=user_group_id))
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit_advanced(self, user_group_id):
                     user_group_id = safe_int(user_group_id)
                     c.user_group = UserGroup.get_or_404(user_group_id)
                     c.active = 'advanced'
                     c.group_members_obj = sorted(
                         (x.user for x in c.user_group.members),
                         key=lambda u: u.username.lower())
                     c.group_to_repos = sorted(
                         (x.repository for x in c.user_group.users_group_repo_to_perm),
                         key=lambda u: u.repo_name.lower())
                     c.group_to_repo_groups = sorted(
                         (x.group for x in c.user_group.users_group_repo_group_to_perm),
                         key=lambda u: u.group_name.lower())
                     return render('admin/user_groups/user_group_edit.mako')
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit_advanced_set_synchronization(self, user_group_id):
                     user_group_id = safe_int(user_group_id)
                     user_group = UserGroup.get_or_404(user_group_id)
                     existing = user_group.group_data.get('extern_type')
                     if existing:
                         new_state = user_group.group_data
                         new_state['extern_type'] = None
                     else:
                         new_state = user_group.group_data
                         new_state['extern_type'] = 'manual'
                         new_state['extern_type_set_by'] = c.rhodecode_user.username
                     try:
                         user_group.group_data = new_state
                         Session().add(user_group)
                         Session().commit()
                         h.flash(_('User Group synchronization updated successfully'),
                                 category='success')
                     except Exception:
                         log.exception("Exception during sync settings saving")
                         h.flash(_('An error occurred during synchronization update'),
                                 category='error')
                     return redirect(
                         url('edit_user_group_advanced', user_group_id=user_group_id))
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 @XHRRequired()
                 @jsonify
                 def user_group_members(self, user_group_id):
                     user_group_id = safe_int(user_group_id)
                     user_group = UserGroup.get_or_404(user_group_id)
                     group_members_obj = sorted((x.user for x in user_group.members),
                                                key=lambda u: u.username.lower())
                     group_members = [
                         {
                             'id': user.user_id,
                             'first_name': user.name,
                             'last_name': user.lastname,
                             'username': user.username,
                             'icon_link': h.gravatar_url(user.email, 30),
                             'value_display': h.person(user.email),
                             'value': user.username,
                             'value_type': 'user',
                             'active': user.active,
                         }
                         for user in group_members_obj
                     ]
                     return {
                         'members': group_members
                     }

rhodecode/controllers/changeset.py

0 +1 -2

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2017 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             commit controller for RhodeCode showing changes between commits
             """
             import logging
             from collections import defaultdict
             from webob.exc import HTTPForbidden, HTTPBadRequest, HTTPNotFound
             from pylons import tmpl_context as c, request, response
             from pylons.i18n.translation import _
             from pylons.controllers.util import redirect
             from rhodecode.lib import auth
             from rhodecode.lib import diffs, codeblocks
             from rhodecode.lib.auth import (
                 LoginRequired, HasRepoPermissionAnyDecorator, NotAnonymous)
             from rhodecode.lib.base import BaseRepoController, render
             from rhodecode.lib.compat import OrderedDict
             from rhodecode.lib.exceptions import StatusChangeOnClosedPullRequestError
             import rhodecode.lib.helpers as h
-            from rhodecode.lib.utils import action_logger, jsonify
+            from rhodecode.lib.utils import jsonify
             from rhodecode.lib.utils2 import safe_unicode
             from rhodecode.lib.vcs.backends.base import EmptyCommit
             from rhodecode.lib.vcs.exceptions import (
                 RepositoryError, CommitDoesNotExistError, NodeDoesNotExistError)
             from rhodecode.model.db import ChangesetComment, ChangesetStatus
             from rhodecode.model.changeset_status import ChangesetStatusModel
             from rhodecode.model.comment import CommentsModel
             from rhodecode.model.meta import Session
-            from rhodecode.model.repo import RepoModel
             log = logging.getLogger(__name__)
             def _update_with_GET(params, GET):
                 for k in ['diff1', 'diff2', 'diff']:
                     params[k] += GET.getall(k)
             def get_ignore_ws(fid, GET):
                 ig_ws_global = GET.get('ignorews')
                 ig_ws = filter(lambda k: k.startswith('WS'), GET.getall(fid))
                 if ig_ws:
                     try:
                         return int(ig_ws[0].split(':')[-1])
                     except Exception:
                         pass
                 return ig_ws_global
             def _ignorews_url(GET, fileid=None):
                 fileid = str(fileid) if fileid else None
                 params = defaultdict(list)
                 _update_with_GET(params, GET)
                 label = _('Show whitespace')
                 tooltiplbl = _('Show whitespace for all diffs')
                 ig_ws = get_ignore_ws(fileid, GET)
                 ln_ctx = get_line_ctx(fileid, GET)
                 if ig_ws is None:
                     params['ignorews'] += [1]
                     label = _('Ignore whitespace')
                     tooltiplbl = _('Ignore whitespace for all diffs')
                 ctx_key = 'context'
                 ctx_val = ln_ctx
                 # if we have passed in ln_ctx pass it along to our params
                 if ln_ctx:
                     params[ctx_key] += [ctx_val]
                 if fileid:
                     params['anchor'] = 'a_' + fileid
                 return h.link_to(label, h.url.current(**params), title=tooltiplbl, class_='tooltip')
             def get_line_ctx(fid, GET):
                 ln_ctx_global = GET.get('context')
                 if fid:
                     ln_ctx = filter(lambda k: k.startswith('C'), GET.getall(fid))
                 else:
                     _ln_ctx = filter(lambda k: k.startswith('C'), GET)
                     ln_ctx = GET.get(_ln_ctx[0]) if _ln_ctx  else ln_ctx_global
                     if ln_ctx:
                         ln_ctx = [ln_ctx]
                 if ln_ctx:
                     retval = ln_ctx[0].split(':')[-1]
                 else:
                     retval = ln_ctx_global
                 try:
                     return int(retval)
                 except Exception:
                     return 3
             def _context_url(GET, fileid=None):
                 """
                 Generates a url for context lines.
                 :param fileid:
                 """
                 fileid = str(fileid) if fileid else None
                 ig_ws = get_ignore_ws(fileid, GET)
                 ln_ctx = (get_line_ctx(fileid, GET) or 3) * 2
                 params = defaultdict(list)
                 _update_with_GET(params, GET)
                 if ln_ctx > 0:
                     params['context'] += [ln_ctx]
                 if ig_ws:
                     ig_ws_key = 'ignorews'
                     ig_ws_val = 1
                     params[ig_ws_key] += [ig_ws_val]
                 lbl = _('Increase context')
                 tooltiplbl = _('Increase context for all diffs')
                 if fileid:
                     params['anchor'] = 'a_' + fileid
                 return h.link_to(lbl, h.url.current(**params), title=tooltiplbl, class_='tooltip')
             class ChangesetController(BaseRepoController):
                 def __before__(self):
                     super(ChangesetController, self).__before__()
                     c.affected_files_cut_off = 60
                 def _index(self, commit_id_range, method):
                     c.ignorews_url = _ignorews_url
                     c.context_url = _context_url
                     c.fulldiff = fulldiff = request.GET.get('fulldiff')
                     # fetch global flags of ignore ws or context lines
                     context_lcl = get_line_ctx('', request.GET)
                     ign_whitespace_lcl = get_ignore_ws('', request.GET)
                     # diff_limit will cut off the whole diff if the limit is applied
                     # otherwise it will just hide the big files from the front-end
                     diff_limit = self.cut_off_limit_diff
                     file_limit = self.cut_off_limit_file
                     # get ranges of commit ids if preset
                     commit_range = commit_id_range.split('...')[:2]
                     try:
                         pre_load = ['affected_files', 'author', 'branch', 'date',
                                     'message', 'parents']
                         if len(commit_range) == 2:
                             commits = c.rhodecode_repo.get_commits(
                                 start_id=commit_range[0], end_id=commit_range[1],
                                 pre_load=pre_load)
                             commits = list(commits)
                         else:
                             commits = [c.rhodecode_repo.get_commit(
                                 commit_id=commit_id_range, pre_load=pre_load)]
                         c.commit_ranges = commits
                         if not c.commit_ranges:
                             raise RepositoryError(
                                 'The commit range returned an empty result')
                     except CommitDoesNotExistError:
                         msg = _('No such commit exists for this repository')
                         h.flash(msg, category='error')
                         raise HTTPNotFound()
                     except Exception:
                         log.exception("General failure")
                         raise HTTPNotFound()
                     c.changes = OrderedDict()
                     c.lines_added = 0
                     c.lines_deleted = 0
                     # auto collapse if we have more than limit
                     collapse_limit = diffs.DiffProcessor._collapse_commits_over
                     c.collapse_all_commits = len(c.commit_ranges) > collapse_limit
                     c.commit_statuses = ChangesetStatus.STATUSES
                     c.inline_comments = []
                     c.files = []
                     c.statuses = []
                     c.comments = []
                     c.unresolved_comments = []
                     if len(c.commit_ranges) == 1:
                         commit = c.commit_ranges[0]
                         c.comments = CommentsModel().get_comments(
                             c.rhodecode_db_repo.repo_id,
                             revision=commit.raw_id)
                         c.statuses.append(ChangesetStatusModel().get_status(
                             c.rhodecode_db_repo.repo_id, commit.raw_id))
                         # comments from PR
                         statuses = ChangesetStatusModel().get_statuses(
                             c.rhodecode_db_repo.repo_id, commit.raw_id,
                             with_revisions=True)
                         prs = set(st.pull_request for st in statuses
                                   if st.pull_request is not None)
                         # from associated statuses, check the pull requests, and
                         # show comments from them
                         for pr in prs:
                             c.comments.extend(pr.comments)
                         c.unresolved_comments = CommentsModel()\
                             .get_commit_unresolved_todos(commit.raw_id)
                     # Iterate over ranges (default commit view is always one commit)
                     for commit in c.commit_ranges:
                         c.changes[commit.raw_id] = []
                         commit2 = commit
                         commit1 = commit.parents[0] if commit.parents else EmptyCommit()
                         _diff = c.rhodecode_repo.get_diff(
                             commit1, commit2,
                             ignore_whitespace=ign_whitespace_lcl, context=context_lcl)
                         diff_processor = diffs.DiffProcessor(
                             _diff, format='newdiff', diff_limit=diff_limit,
                             file_limit=file_limit, show_full_diff=fulldiff)
                         commit_changes = OrderedDict()
                         if method == 'show':
                             _parsed = diff_processor.prepare()
                             c.limited_diff = isinstance(_parsed, diffs.LimitedDiffContainer)
                             _parsed = diff_processor.prepare()
                             def _node_getter(commit):
                                 def get_node(fname):
                                     try:
                                         return commit.get_node(fname)
                                     except NodeDoesNotExistError:
                                         return None
                                 return get_node
                             inline_comments = CommentsModel().get_inline_comments(
                                 c.rhodecode_db_repo.repo_id, revision=commit.raw_id)
                             c.inline_cnt = CommentsModel().get_inline_comments_count(
                                 inline_comments)
                             diffset = codeblocks.DiffSet(
                                 repo_name=c.repo_name,
                                 source_node_getter=_node_getter(commit1),
                                 target_node_getter=_node_getter(commit2),
                                 comments=inline_comments
                             ).render_patchset(_parsed, commit1.raw_id, commit2.raw_id)
                             c.changes[commit.raw_id] = diffset
                         else:
                             # downloads/raw we only need RAW diff nothing else
                             diff = diff_processor.as_raw()
                             c.changes[commit.raw_id] = [None, None, None, None, diff, None, None]
                     # sort comments by how they were generated
                     c.comments = sorted(c.comments, key=lambda x: x.comment_id)
                     if len(c.commit_ranges) == 1:
                         c.commit = c.commit_ranges[0]
                         c.parent_tmpl = ''.join(
                             '# Parent  %s\n' % x.raw_id for x in c.commit.parents)
                     if method == 'download':
                         response.content_type = 'text/plain'
                         response.content_disposition = (
                             'attachment; filename=%s.diff' % commit_id_range[:12])
                         return diff
                     elif method == 'patch':
                         response.content_type = 'text/plain'
                         c.diff = safe_unicode(diff)
                         return render('changeset/patch_changeset.mako')
                     elif method == 'raw':
                         response.content_type = 'text/plain'
                         return diff
                     elif method == 'show':
                         if len(c.commit_ranges) == 1:
                             return render('changeset/changeset.mako')
                         else:
                             c.ancestor = None
                             c.target_repo = c.rhodecode_db_repo
                             return render('changeset/changeset_range.mako')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def index(self, revision, method='show'):
                     return self._index(revision, method=method)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def changeset_raw(self, revision):
                     return self._index(revision, method='raw')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def changeset_patch(self, revision):
                     return self._index(revision, method='patch')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def changeset_download(self, revision):
                     return self._index(revision, method='download')
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @auth.CSRFRequired()
                 @jsonify
                 def comment(self, repo_name, revision):
                     commit_id = revision
                     status = request.POST.get('changeset_status', None)
                     text = request.POST.get('text')
                     comment_type = request.POST.get('comment_type')
                     resolves_comment_id = request.POST.get('resolves_comment_id', None)
                     if status:
                         text = text or (_('Status change %(transition_icon)s %(status)s')
                                         % {'transition_icon': '>',
                                            'status': ChangesetStatus.get_status_lbl(status)})
                     multi_commit_ids = []
                     for _commit_id in request.POST.get('commit_ids', '').split(','):
                         if _commit_id not in ['', None, EmptyCommit.raw_id]:
                             if _commit_id not in multi_commit_ids:
                                 multi_commit_ids.append(_commit_id)
                     commit_ids = multi_commit_ids or [commit_id]
                     comment = None
                     for current_id in filter(None, commit_ids):
                         c.co = comment = CommentsModel().create(
                             text=text,
                             repo=c.rhodecode_db_repo.repo_id,
                             user=c.rhodecode_user.user_id,
                             commit_id=current_id,
                             f_path=request.POST.get('f_path'),
                             line_no=request.POST.get('line'),
                             status_change=(ChangesetStatus.get_status_lbl(status)
                                            if status else None),
                             status_change_type=status,
                             comment_type=comment_type,
                             resolves_comment_id=resolves_comment_id
                         )
                         # get status if set !
                         if status:
                             # if latest status was from pull request and it's closed
                             # disallow changing status !
                             # dont_allow_on_closed_pull_request = True !
                             try:
                                 ChangesetStatusModel().set_status(
                                     c.rhodecode_db_repo.repo_id,
                                     status,
                                     c.rhodecode_user.user_id,
                                     comment,
                                     revision=current_id,
                                     dont_allow_on_closed_pull_request=True
                                 )
                             except StatusChangeOnClosedPullRequestError:
                                 msg = _('Changing the status of a commit associated with '
                                         'a closed pull request is not allowed')
                                 log.exception(msg)
                                 h.flash(msg, category='warning')
                                 return redirect(h.url(
                                     'changeset_home', repo_name=repo_name,
                                     revision=current_id))
                     # finalize, commit and redirect
                     Session().commit()
                     data = {
                         'target_id': h.safeid(h.safe_unicode(request.POST.get('f_path'))),
                     }
                     if comment:
                         data.update(comment.get_dict())
                         data.update({'rendered_text':
                                      render('changeset/changeset_comment_block.mako')})
                     return data
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @auth.CSRFRequired()
                 def preview_comment(self):
                     # Technically a CSRF token is not needed as no state changes with this
                     # call. However, as this is a POST is better to have it, so automated
                     # tools don't flag it as potential CSRF.
                     # Post is required because the payload could be bigger than the maximum
                     # allowed by GET.
                     if not request.environ.get('HTTP_X_PARTIAL_XHR'):
                         raise HTTPBadRequest()
                     text = request.POST.get('text')
                     renderer = request.POST.get('renderer') or 'rst'
                     if text:
                         return h.render(text, renderer=renderer, mentions=True)
                     return ''
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @auth.CSRFRequired()
                 @jsonify
                 def delete_comment(self, repo_name, comment_id):
                     comment = ChangesetComment.get(comment_id)
                     if not comment:
                         log.debug('Comment with id:%s not found, skipping', comment_id)
                         # comment already deleted in another call probably
                         return True
                     owner = (comment.author.user_id == c.rhodecode_user.user_id)
                     is_repo_admin = h.HasRepoPermissionAny('repository.admin')(c.repo_name)
                     if h.HasPermissionAny('hg.admin')() or is_repo_admin or owner:
                         CommentsModel().delete(comment=comment)
                         Session().commit()
                         return True
                     else:
                         raise HTTPForbidden()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def changeset_info(self, repo_name, revision):
                     if request.is_xhr:
                         try:
                             return c.rhodecode_repo.get_commit(commit_id=revision)
                         except CommitDoesNotExistError as e:
                             return EmptyCommit(message=str(e))
                     else:
                         raise HTTPBadRequest()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def changeset_children(self, repo_name, revision):
                     if request.is_xhr:
                         commit = c.rhodecode_repo.get_commit(commit_id=revision)
                         result = {"results": commit.children}
                         return result
                     else:
                         raise HTTPBadRequest()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def changeset_parents(self, repo_name, revision):
                     if request.is_xhr:
                         commit = c.rhodecode_repo.get_commit(commit_id=revision)
                         result = {"results": commit.parents}
                         return result
                     else:
                         raise HTTPBadRequest()

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages