##// END OF EJS Templates
rhodecode-enterprise-ce
RSS
caches: don't use beaker for file caches anymore
marcink -
r2846:bbc96602 default
parent child Browse files
Show More
Show file before | Show file after | Hide comments
@@ -1,705 +1,738 b''
1 1
2 2
3 3 ################################################################################
4 4 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
5 5 # The %(here)s variable will be replaced with the parent directory of this file#
6 6 ################################################################################
7 7
8 8 [DEFAULT]
9 9 debug = true
10 10
11 11 ################################################################################
12 12 ## EMAIL CONFIGURATION ##
13 13 ## Uncomment and replace with the email address which should receive ##
14 14 ## any error reports after an application crash ##
15 15 ## Additionally these settings will be used by the RhodeCode mailing system ##
16 16 ################################################################################
17 17
18 18 ## prefix all emails subjects with given prefix, helps filtering out emails
19 19 #email_prefix = [RhodeCode]
20 20
21 21 ## email FROM address all mails will be sent
22 22 #app_email_from = rhodecode-noreply@localhost
23 23
24 24 ## Uncomment and replace with the address which should receive any error report
25 25 ## note: using appenlight for error handling doesn't need this to be uncommented
26 26 #email_to = admin@localhost
27 27
28 28 ## in case of Application errors, sent an error email form
29 29 #error_email_from = rhodecode_error@localhost
30 30
31 31 ## additional error message to be send in case of server crash
32 32 #error_message =
33 33
34 34
35 35 #smtp_server = mail.server.com
36 36 #smtp_username =
37 37 #smtp_password =
38 38 #smtp_port =
39 39 #smtp_use_tls = false
40 40 #smtp_use_ssl = true
41 41 ## Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
42 42 #smtp_auth =
43 43
44 44 [server:main]
45 45 ## COMMON ##
46 46 host = 127.0.0.1
47 47 port = 5000
48 48
49 49 ##################################
50 50 ## WAITRESS WSGI SERVER ##
51 51 ## Recommended for Development ##
52 52 ##################################
53 53
54 54 use = egg:waitress#main
55 55 ## number of worker threads
56 56 threads = 5
57 57 ## MAX BODY SIZE 100GB
58 58 max_request_body_size = 107374182400
59 59 ## Use poll instead of select, fixes file descriptors limits problems.
60 60 ## May not work on old windows systems.
61 61 asyncore_use_poll = true
62 62
63 63
64 64 ##########################
65 65 ## GUNICORN WSGI SERVER ##
66 66 ##########################
67 67 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
68 68
69 69 #use = egg:gunicorn#main
70 70 ## Sets the number of process workers. You must set `instance_id = *`
71 71 ## when this option is set to more than one worker, recommended
72 72 ## value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers
73 73 ## The `instance_id = *` must be set in the [app:main] section below
74 74 #workers = 2
75 75 ## number of threads for each of the worker, must be set to 1 for gevent
76 76 ## generally recommended to be at 1
77 77 #threads = 1
78 78 ## process name
79 79 #proc_name = rhodecode
80 80 ## type of worker class, one of sync, gevent
81 81 ## recommended for bigger setup is using of of other than sync one
82 82 #worker_class = gevent
83 83 ## The maximum number of simultaneous clients. Valid only for Gevent
84 84 #worker_connections = 10
85 85 ## max number of requests that worker will handle before being gracefully
86 86 ## restarted, could prevent memory leaks
87 87 #max_requests = 1000
88 88 #max_requests_jitter = 30
89 89 ## amount of time a worker can spend with handling a request before it
90 90 ## gets killed and restarted. Set to 6hrs
91 91 #timeout = 21600
92 92
93 93
94 94 ## prefix middleware for RhodeCode.
95 95 ## recommended when using proxy setup.
96 96 ## allows to set RhodeCode under a prefix in server.
97 97 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
98 98 ## And set your prefix like: `prefix = /custom_prefix`
99 99 ## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
100 100 ## to make your cookies only work on prefix url
101 101 [filter:proxy-prefix]
102 102 use = egg:PasteDeploy#prefix
103 103 prefix = /
104 104
105 105 [app:main]
106 106 use = egg:rhodecode-enterprise-ce
107 107
108 108 ## enable proxy prefix middleware, defined above
109 109 #filter-with = proxy-prefix
110 110
111 111 # During development the we want to have the debug toolbar enabled
112 112 pyramid.includes =
113 113 pyramid_debugtoolbar
114 114 rhodecode.lib.middleware.request_wrapper
115 115
116 116 pyramid.reload_templates = true
117 117
118 118 debugtoolbar.hosts = 0.0.0.0/0
119 119 debugtoolbar.exclude_prefixes =
120 120 /css
121 121 /fonts
122 122 /images
123 123 /js
124 124
125 125 ## RHODECODE PLUGINS ##
126 126 rhodecode.includes =
127 127 rhodecode.api
128 128
129 129
130 130 # api prefix url
131 131 rhodecode.api.url = /_admin/api
132 132
133 133
134 134 ## END RHODECODE PLUGINS ##
135 135
136 136 ## encryption key used to encrypt social plugin tokens,
137 137 ## remote_urls with credentials etc, if not set it defaults to
138 138 ## `beaker.session.secret`
139 139 #rhodecode.encrypted_values.secret =
140 140
141 141 ## decryption strict mode (enabled by default). It controls if decryption raises
142 142 ## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
143 143 #rhodecode.encrypted_values.strict = false
144 144
145 145 ## return gzipped responses from Rhodecode (static files/application)
146 146 gzip_responses = false
147 147
148 148 ## autogenerate javascript routes file on startup
149 149 generate_js_files = false
150 150
151 151 ## Optional Languages
152 152 ## en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
153 153 lang = en
154 154
155 155 ## perform a full repository scan on each server start, this should be
156 156 ## set to false after first startup, to allow faster server restarts.
157 157 startup.import_repos = false
158 158
159 159 ## Uncomment and set this path to use archive download cache.
160 160 ## Once enabled, generated archives will be cached at this location
161 161 ## and served from the cache during subsequent requests for the same archive of
162 162 ## the repository.
163 163 #archive_cache_dir = /tmp/tarballcache
164 164
165 165 ## URL at which the application is running. This is used for bootstraping
166 166 ## requests in context when no web request is available. Used in ishell, or
167 167 ## SSH calls. Set this for events to receive proper url for SSH calls.
168 168 app.base_url = http://rhodecode.local
169 169
170 170 ## change this to unique ID for security
171 171 app_instance_uuid = rc-production
172 172
173 173 ## cut off limit for large diffs (size in bytes). If overall diff size on
174 174 ## commit, or pull request exceeds this limit this diff will be displayed
175 175 ## partially. E.g 512000 == 512Kb
176 176 cut_off_limit_diff = 512000
177 177
178 178 ## cut off limit for large files inside diffs (size in bytes). Each individual
179 179 ## file inside diff which exceeds this limit will be displayed partially.
180 180 ## E.g 128000 == 128Kb
181 181 cut_off_limit_file = 128000
182 182
183 183 ## use cache version of scm repo everywhere
184 184 vcs_full_cache = true
185 185
186 186 ## force https in RhodeCode, fixes https redirects, assumes it's always https
187 187 ## Normally this is controlled by proper http flags sent from http server
188 188 force_https = false
189 189
190 190 ## use Strict-Transport-Security headers
191 191 use_htsts = false
192 192
193 193 ## git rev filter option, --all is the default filter, if you need to
194 194 ## hide all refs in changelog switch this to --branches --tags
195 195 git_rev_filter = --branches --tags
196 196
197 197 # Set to true if your repos are exposed using the dumb protocol
198 198 git_update_server_info = false
199 199
200 200 ## RSS/ATOM feed options
201 201 rss_cut_off_limit = 256000
202 202 rss_items_per_page = 10
203 203 rss_include_diff = false
204 204
205 205 ## gist URL alias, used to create nicer urls for gist. This should be an
206 206 ## url that does rewrites to _admin/gists/{gistid}.
207 207 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
208 208 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
209 209 gist_alias_url =
210 210
211 211 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
212 212 ## used for access.
213 213 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
214 214 ## came from the the logged in user who own this authentication token.
215 215 ## Additionally @TOKEN syntaxt can be used to bound the view to specific
216 216 ## authentication token. Such view would be only accessible when used together
217 217 ## with this authentication token
218 218 ##
219 219 ## list of all views can be found under `/_admin/permissions/auth_token_access`
220 220 ## The list should be "," separated and on a single line.
221 221 ##
222 222 ## Most common views to enable:
223 223 # RepoCommitsView:repo_commit_download
224 224 # RepoCommitsView:repo_commit_patch
225 225 # RepoCommitsView:repo_commit_raw
226 226 # RepoCommitsView:repo_commit_raw@TOKEN
227 227 # RepoFilesView:repo_files_diff
228 228 # RepoFilesView:repo_archivefile
229 229 # RepoFilesView:repo_file_raw
230 230 # GistView:*
231 231 api_access_controllers_whitelist =
232 232
233 233 ## default encoding used to convert from and to unicode
234 234 ## can be also a comma separated list of encoding in case of mixed encodings
235 235 default_encoding = UTF-8
236 236
237 237 ## instance-id prefix
238 238 ## a prefix key for this instance used for cache invalidation when running
239 239 ## multiple instances of rhodecode, make sure it's globally unique for
240 240 ## all running rhodecode instances. Leave empty if you don't use it
241 241 instance_id =
242 242
243 243 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
244 244 ## of an authentication plugin also if it is disabled by it's settings.
245 245 ## This could be useful if you are unable to log in to the system due to broken
246 246 ## authentication settings. Then you can enable e.g. the internal rhodecode auth
247 247 ## module to log in again and fix the settings.
248 248 ##
249 249 ## Available builtin plugin IDs (hash is part of the ID):
250 250 ## egg:rhodecode-enterprise-ce#rhodecode
251 251 ## egg:rhodecode-enterprise-ce#pam
252 252 ## egg:rhodecode-enterprise-ce#ldap
253 253 ## egg:rhodecode-enterprise-ce#jasig_cas
254 254 ## egg:rhodecode-enterprise-ce#headers
255 255 ## egg:rhodecode-enterprise-ce#crowd
256 256 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
257 257
258 258 ## alternative return HTTP header for failed authentication. Default HTTP
259 259 ## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
260 260 ## handling that causing a series of failed authentication calls.
261 261 ## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
262 262 ## This will be served instead of default 401 on bad authnetication
263 263 auth_ret_code =
264 264
265 265 ## use special detection method when serving auth_ret_code, instead of serving
266 266 ## ret_code directly, use 401 initially (Which triggers credentials prompt)
267 267 ## and then serve auth_ret_code to clients
268 268 auth_ret_code_detection = false
269 269
270 270 ## locking return code. When repository is locked return this HTTP code. 2XX
271 271 ## codes don't break the transactions while 4XX codes do
272 272 lock_ret_code = 423
273 273
274 274 ## allows to change the repository location in settings page
275 275 allow_repo_location_change = true
276 276
277 277 ## allows to setup custom hooks in settings page
278 278 allow_custom_hooks_settings = true
279 279
280 280 ## generated license token, goto license page in RhodeCode settings to obtain
281 281 ## new token
282 282 license_token =
283 283
284 284 ## supervisor connection uri, for managing supervisor and logs.
285 285 supervisor.uri =
286 286 ## supervisord group name/id we only want this RC instance to handle
287 287 supervisor.group_id = dev
288 288
289 289 ## Display extended labs settings
290 290 labs_settings_active = true
291 291
292 292 ####################################
293 293 ### CELERY CONFIG ####
294 294 ####################################
295 295 ## run: /path/to/celery worker \
296 296 ## -E --beat --app rhodecode.lib.celerylib.loader \
297 297 ## --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
298 298 ## --loglevel DEBUG --ini /path/to/rhodecode.ini
299 299
300 300 use_celery = false
301 301
302 302 ## connection url to the message broker (default rabbitmq)
303 303 celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
304 304
305 305 ## maximum tasks to execute before worker restart
306 306 celery.max_tasks_per_child = 100
307 307
308 308 ## tasks will never be sent to the queue, but executed locally instead.
309 309 celery.task_always_eager = false
310 310
311 #####################################
312 ### DOGPILE CACHE ####
313 #####################################
314 ## Default cache dir for caches. Putting this into a ramdisk
315 ## can boost performance, eg. /tmpfs/data_ramdisk, however this might require lots
316 ## of space
317 cache_dir = /tmp/rcdev/data
318
319 ## cache settings for permission tree, auth TTL.
320 rc_cache.cache_perms.backend = dogpile.cache.rc.file_namespace
321 rc_cache.cache_perms.expiration_time = 300
322 rc_cache.cache_perms.arguments.filename = /tmp/rc_cache_1
323
324 ## redis backend with distributed locks
325 #rc_cache.cache_perms.backend = dogpile.cache.rc.redis
326 #rc_cache.cache_perms.expiration_time = 300
327 #rc_cache.cache_perms.arguments.host = localhost
328 #rc_cache.cache_perms.arguments.port = 6379
329 #rc_cache.cache_perms.arguments.db = 0
330 #rc_cache.cache_perms.arguments.redis_expiration_time = 7200
331 #rc_cache.cache_perms.arguments.distributed_lock = true
332
333
334 rc_cache.cache_repo.backend = dogpile.cache.rc.file_namespace
335 rc_cache.cache_repo.expiration_time = 2592000
336 rc_cache.cache_repo.arguments.filename = /tmp/rc_cache_2
337
338 ## redis backend with distributed locks
339 #rc_cache.cache_repo.backend = dogpile.cache.rc.redis
340 #rc_cache.cache_repo.expiration_time = 2592000
341 ## this needs to be greater then expiration_time
342 #rc_cache.cache_repo.arguments.redis_expiration_time = 2678400
343 #rc_cache.cache_repo.arguments.host = localhost
344 #rc_cache.cache_repo.arguments.port = 6379
345 #rc_cache.cache_repo.arguments.db = 1
346 #rc_cache.cache_repo.arguments.distributed_lock = true
347
348
311 349 ####################################
312 350 ### BEAKER CACHE ####
313 351 ####################################
314 # default cache dir for templates. Putting this into a ramdisk
315 ## can boost performance, eg. %(here)s/data_ramdisk
316 cache_dir = %(here)s/data
317 352
318 353 ## locking and default file storage for Beaker. Putting this into a ramdisk
319 354 ## can boost performance, eg. %(here)s/data_ramdisk/cache/beaker_data
320 355 beaker.cache.data_dir = %(here)s/data/cache/beaker_data
321 356 beaker.cache.lock_dir = %(here)s/data/cache/beaker_lock
322 357
323 beaker.cache.regions = long_term, sql_cache_short, repo_cache_long
358 beaker.cache.regions = long_term, sql_cache_short
324 359
325 beaker.cache.long_term.type = memory
326 beaker.cache.long_term.expire = 36000
360 beaker.cache.long_term.type = memorylru_base
361 beaker.cache.long_term.expire = 172800
327 362 beaker.cache.long_term.key_length = 256
328 363
329 beaker.cache.sql_cache_short.type = memory
364 beaker.cache.sql_cache_short.type = memorylru_base
330 365 beaker.cache.sql_cache_short.expire = 10
331 366 beaker.cache.sql_cache_short.key_length = 256
332 367
333 beaker.cache.repo_cache_long.type = memorylru_base
334 beaker.cache.repo_cache_long.max_items = 4096
335 beaker.cache.repo_cache_long.expire = 2592000
336
337 ## default is memorylru_base cache, configure only if required
338 ## using multi-node or multi-worker setup
339 #beaker.cache.repo_cache_long.type = ext:memcached
340 #beaker.cache.repo_cache_long.url = localhost:11211
341 #beaker.cache.repo_cache_long.expire = 1209600
342 #beaker.cache.repo_cache_long.key_length = 256
343 368
344 369 ####################################
345 370 ### BEAKER SESSION ####
346 371 ####################################
347 372
348 373 ## .session.type is type of storage options for the session, current allowed
349 ## types are file, ext:memcached, ext:database, and memory (default).
374 ## types are file, ext:memcached, ext:redis, ext:database, and memory (default).
350 375 beaker.session.type = file
351 beaker.session.data_dir = %(here)s/data/sessions/data
376 beaker.session.data_dir = %(here)s/data/sessions
352 377
353 378 ## db based session, fast, and allows easy management over logged in users
354 379 #beaker.session.type = ext:database
355 380 #beaker.session.table_name = db_session
356 381 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
357 382 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
358 383 #beaker.session.sa.pool_recycle = 3600
359 384 #beaker.session.sa.echo = false
360 385
361 386 beaker.session.key = rhodecode
362 387 beaker.session.secret = develop-rc-uytcxaz
363 388 beaker.session.lock_dir = %(here)s/data/sessions/lock
364 389
365 390 ## Secure encrypted cookie. Requires AES and AES python libraries
366 391 ## you must disable beaker.session.secret to use this
367 392 #beaker.session.encrypt_key = key_for_encryption
368 393 #beaker.session.validate_key = validation_key
369 394
370 395 ## sets session as invalid(also logging out user) if it haven not been
371 396 ## accessed for given amount of time in seconds
372 397 beaker.session.timeout = 2592000
373 398 beaker.session.httponly = true
374 399 ## Path to use for the cookie. Set to prefix if you use prefix middleware
375 400 #beaker.session.cookie_path = /custom_prefix
376 401
377 402 ## uncomment for https secure cookie
378 403 beaker.session.secure = false
379 404
380 405 ## auto save the session to not to use .save()
381 406 beaker.session.auto = false
382 407
383 408 ## default cookie expiration time in seconds, set to `true` to set expire
384 409 ## at browser close
385 410 #beaker.session.cookie_expires = 3600
386 411
387 412 ###################################
388 413 ## SEARCH INDEXING CONFIGURATION ##
389 414 ###################################
390 415 ## Full text search indexer is available in rhodecode-tools under
391 416 ## `rhodecode-tools index` command
392 417
393 418 ## WHOOSH Backend, doesn't require additional services to run
394 419 ## it works good with few dozen repos
395 420 search.module = rhodecode.lib.index.whoosh
396 421 search.location = %(here)s/data/index
397 422
398 423 ########################################
399 424 ### CHANNELSTREAM CONFIG ####
400 425 ########################################
401 426 ## channelstream enables persistent connections and live notification
402 427 ## in the system. It's also used by the chat system
403 428 channelstream.enabled = false
404 429
405 430 ## server address for channelstream server on the backend
406 431 channelstream.server = 127.0.0.1:9800
407 432
408 433 ## location of the channelstream server from outside world
409 434 ## use ws:// for http or wss:// for https. This address needs to be handled
410 435 ## by external HTTP server such as Nginx or Apache
411 436 ## see nginx/apache configuration examples in our docs
412 437 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
413 438 channelstream.secret = secret
414 439 channelstream.history.location = %(here)s/channelstream_history
415 440
416 441 ## Internal application path that Javascript uses to connect into.
417 442 ## If you use proxy-prefix the prefix should be added before /_channelstream
418 443 channelstream.proxy_path = /_channelstream
419 444
420 445
421 446 ###################################
422 447 ## APPENLIGHT CONFIG ##
423 448 ###################################
424 449
425 450 ## Appenlight is tailored to work with RhodeCode, see
426 451 ## http://appenlight.com for details how to obtain an account
427 452
428 453 ## appenlight integration enabled
429 454 appenlight = false
430 455
431 456 appenlight.server_url = https://api.appenlight.com
432 457 appenlight.api_key = YOUR_API_KEY
433 458 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
434 459
435 460 # used for JS client
436 461 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
437 462
438 463 ## TWEAK AMOUNT OF INFO SENT HERE
439 464
440 465 ## enables 404 error logging (default False)
441 466 appenlight.report_404 = false
442 467
443 468 ## time in seconds after request is considered being slow (default 1)
444 469 appenlight.slow_request_time = 1
445 470
446 471 ## record slow requests in application
447 472 ## (needs to be enabled for slow datastore recording and time tracking)
448 473 appenlight.slow_requests = true
449 474
450 475 ## enable hooking to application loggers
451 476 appenlight.logging = true
452 477
453 478 ## minimum log level for log capture
454 479 appenlight.logging.level = WARNING
455 480
456 481 ## send logs only from erroneous/slow requests
457 482 ## (saves API quota for intensive logging)
458 483 appenlight.logging_on_error = false
459 484
460 485 ## list of additonal keywords that should be grabbed from environ object
461 486 ## can be string with comma separated list of words in lowercase
462 487 ## (by default client will always send following info:
463 488 ## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
464 489 ## start with HTTP* this list be extended with additional keywords here
465 490 appenlight.environ_keys_whitelist =
466 491
467 492 ## list of keywords that should be blanked from request object
468 493 ## can be string with comma separated list of words in lowercase
469 494 ## (by default client will always blank keys that contain following words
470 495 ## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
471 496 ## this list be extended with additional keywords set here
472 497 appenlight.request_keys_blacklist =
473 498
474 499 ## list of namespaces that should be ignores when gathering log entries
475 500 ## can be string with comma separated list of namespaces
476 501 ## (by default the client ignores own entries: appenlight_client.client)
477 502 appenlight.log_namespace_blacklist =
478 503
479 504
480 505 ################################################################################
481 506 ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT* ##
482 507 ## Debug mode will enable the interactive debugging tool, allowing ANYONE to ##
483 508 ## execute malicious code after an exception is raised. ##
484 509 ################################################################################
485 510 #set debug = false
486 511
487 512
488 513 ##############
489 514 ## STYLING ##
490 515 ##############
491 516 debug_style = true
492 517
493 518 ###########################################
494 519 ### MAIN RHODECODE DATABASE CONFIG ###
495 520 ###########################################
496 521 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
497 522 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
498 523 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode
524 #sqlalchemy.db1.url = mysql+pymysql://root:qweqwe@localhost/rhodecode
525
499 526 sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
500 527
501 528 # see sqlalchemy docs for other advanced settings
502 529
503 530 ## print the sql statements to output
504 531 sqlalchemy.db1.echo = false
505 532 ## recycle the connections after this amount of seconds
506 533 sqlalchemy.db1.pool_recycle = 3600
507 534 sqlalchemy.db1.convert_unicode = true
508 535
509 536 ## the number of connections to keep open inside the connection pool.
510 537 ## 0 indicates no limit
511 538 #sqlalchemy.db1.pool_size = 5
512 539
513 540 ## the number of connections to allow in connection pool "overflow", that is
514 541 ## connections that can be opened above and beyond the pool_size setting,
515 542 ## which defaults to five.
516 543 #sqlalchemy.db1.max_overflow = 10
517 544
545 ## Connection check ping, used to detect broken database connections
546 ## could be enabled to better handle cases if MySQL has gone away errors
547 #sqlalchemy.db1.ping_connection = true
518 548
519 549 ##################
520 550 ### VCS CONFIG ###
521 551 ##################
522 552 vcs.server.enable = true
523 553 vcs.server = localhost:9900
524 554
525 555 ## Web server connectivity protocol, responsible for web based VCS operatations
526 556 ## Available protocols are:
527 557 ## `http` - use http-rpc backend (default)
528 558 vcs.server.protocol = http
529 559
530 560 ## Push/Pull operations protocol, available options are:
531 561 ## `http` - use http-rpc backend (default)
532 562 ##
533 563 vcs.scm_app_implementation = http
534 564
535 565 ## Push/Pull operations hooks protocol, available options are:
536 566 ## `http` - use http-rpc backend (default)
537 567 vcs.hooks.protocol = http
538 568
539 569 ## Host on which this instance is listening for hooks. If vcsserver is in other location
540 570 ## this should be adjusted.
541 571 vcs.hooks.host = 127.0.0.1
542 572
543 573 vcs.server.log_level = debug
544 574 ## Start VCSServer with this instance as a subprocess, usefull for development
545 575 vcs.start_server = false
546 576
547 577 ## List of enabled VCS backends, available options are:
548 578 ## `hg` - mercurial
549 579 ## `git` - git
550 580 ## `svn` - subversion
551 581 vcs.backends = hg, git, svn
552 582
553 583 vcs.connection_timeout = 3600
554 584 ## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
555 585 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
556 586 #vcs.svn.compatible_version = pre-1.8-compatible
557 587
558 588
559 589 ############################################################
560 590 ### Subversion proxy support (mod_dav_svn) ###
561 591 ### Maps RhodeCode repo groups into SVN paths for Apache ###
562 592 ############################################################
563 593 ## Enable or disable the config file generation.
564 594 svn.proxy.generate_config = false
565 595 ## Generate config file with `SVNListParentPath` set to `On`.
566 596 svn.proxy.list_parent_path = true
567 597 ## Set location and file name of generated config file.
568 598 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
569 599 ## alternative mod_dav config template. This needs to be a mako template
570 600 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
571 601 ## Used as a prefix to the `Location` block in the generated config file.
572 602 ## In most cases it should be set to `/`.
573 603 svn.proxy.location_root = /
574 604 ## Command to reload the mod dav svn configuration on change.
575 605 ## Example: `/etc/init.d/apache2 reload`
576 606 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
577 607 ## If the timeout expires before the reload command finishes, the command will
578 608 ## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
579 609 #svn.proxy.reload_timeout = 10
580 610
581 611 ############################################################
582 612 ### SSH Support Settings ###
583 613 ############################################################
584 614
585 615 ## Defines if a custom authorized_keys file should be created and written on
586 616 ## any change user ssh keys. Setting this to false also disables posibility
587 617 ## of adding SSH keys by users from web interface. Super admins can still
588 618 ## manage SSH Keys.
589 619 ssh.generate_authorized_keyfile = false
590 620
591 621 ## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
592 622 # ssh.authorized_keys_ssh_opts =
593 623
594 624 ## Path to the authrozied_keys file where the generate entries are placed.
595 625 ## It is possible to have multiple key files specified in `sshd_config` e.g.
596 626 ## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
597 627 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
598 628
599 629 ## Command to execute the SSH wrapper. The binary is available in the
600 630 ## rhodecode installation directory.
601 631 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
602 632 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
603 633
604 634 ## Allow shell when executing the ssh-wrapper command
605 635 ssh.wrapper_cmd_allow_shell = false
606 636
607 637 ## Enables logging, and detailed output send back to the client during SSH
608 638 ## operations. Usefull for debugging, shouldn't be used in production.
609 639 ssh.enable_debug_logging = true
610 640
611 641 ## Paths to binary executable, by default they are the names, but we can
612 642 ## override them if we want to use a custom one
613 643 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
614 644 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
615 645 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
616 646
617 647
618 648 ## Dummy marker to add new entries after.
619 649 ## Add any custom entries below. Please don't remove.
620 650 custom.conf = 1
621 651
622 652
623 653 ################################
624 654 ### LOGGING CONFIGURATION ####
625 655 ################################
626 656 [loggers]
627 keys = root, sqlalchemy, beaker, rhodecode, ssh_wrapper, celery
657 keys = root, sqlalchemy, beaker, celery, rhodecode, ssh_wrapper
628 658
629 659 [handlers]
630 660 keys = console, console_sql
631 661
632 662 [formatters]
633 663 keys = generic, color_formatter, color_formatter_sql
634 664
635 665 #############
636 666 ## LOGGERS ##
637 667 #############
638 668 [logger_root]
639 669 level = NOTSET
640 670 handlers = console
641 671
642 672 [logger_sqlalchemy]
643 673 level = INFO
644 674 handlers = console_sql
645 675 qualname = sqlalchemy.engine
646 676 propagate = 0
647 677
648 678 [logger_beaker]
649 679 level = DEBUG
650 680 handlers =
651 681 qualname = beaker.container
652 682 propagate = 1
653 683
654 684 [logger_rhodecode]
655 685 level = DEBUG
656 686 handlers =
657 687 qualname = rhodecode
658 688 propagate = 1
659 689
660 690 [logger_ssh_wrapper]
661 691 level = DEBUG
662 692 handlers =
663 693 qualname = ssh_wrapper
664 694 propagate = 1
665 695
666 696 [logger_celery]
667 697 level = DEBUG
668 698 handlers =
669 699 qualname = celery
670 700
671 701
672 702 ##############
673 703 ## HANDLERS ##
674 704 ##############
675 705
676 706 [handler_console]
677 707 class = StreamHandler
678 708 args = (sys.stderr, )
679 709 level = DEBUG
680 710 formatter = color_formatter
681 711
682 712 [handler_console_sql]
713 # "level = DEBUG" logs SQL queries and results.
714 # "level = INFO" logs SQL queries.
715 # "level = WARN" logs neither. (Recommended for production systems.)
683 716 class = StreamHandler
684 717 args = (sys.stderr, )
685 level = DEBUG
718 level = WARN
686 719 formatter = color_formatter_sql
687 720
688 721 ################
689 722 ## FORMATTERS ##
690 723 ################
691 724
692 725 [formatter_generic]
693 726 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
694 727 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
695 728 datefmt = %Y-%m-%d %H:%M:%S
696 729
697 730 [formatter_color_formatter]
698 731 class = rhodecode.lib.logging_formatter.ColorFormatter
699 732 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
700 733 datefmt = %Y-%m-%d %H:%M:%S
701 734
702 735 [formatter_color_formatter_sql]
703 736 class = rhodecode.lib.logging_formatter.ColorFormatterSql
704 737 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
705 738 datefmt = %Y-%m-%d %H:%M:%S
Show file before | Show file after | Hide comments
@@ -1,674 +1,707 b''
1 1
2 2
3 3 ################################################################################
4 4 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
5 5 # The %(here)s variable will be replaced with the parent directory of this file#
6 6 ################################################################################
7 7
8 8 [DEFAULT]
9 9 debug = true
10 10
11 11 ################################################################################
12 12 ## EMAIL CONFIGURATION ##
13 13 ## Uncomment and replace with the email address which should receive ##
14 14 ## any error reports after an application crash ##
15 15 ## Additionally these settings will be used by the RhodeCode mailing system ##
16 16 ################################################################################
17 17
18 18 ## prefix all emails subjects with given prefix, helps filtering out emails
19 19 #email_prefix = [RhodeCode]
20 20
21 21 ## email FROM address all mails will be sent
22 22 #app_email_from = rhodecode-noreply@localhost
23 23
24 24 ## Uncomment and replace with the address which should receive any error report
25 25 ## note: using appenlight for error handling doesn't need this to be uncommented
26 26 #email_to = admin@localhost
27 27
28 28 ## in case of Application errors, sent an error email form
29 29 #error_email_from = rhodecode_error@localhost
30 30
31 31 ## additional error message to be send in case of server crash
32 32 #error_message =
33 33
34 34
35 35 #smtp_server = mail.server.com
36 36 #smtp_username =
37 37 #smtp_password =
38 38 #smtp_port =
39 39 #smtp_use_tls = false
40 40 #smtp_use_ssl = true
41 41 ## Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
42 42 #smtp_auth =
43 43
44 44 [server:main]
45 45 ## COMMON ##
46 46 host = 127.0.0.1
47 47 port = 5000
48 48
49 49 ##################################
50 50 ## WAITRESS WSGI SERVER ##
51 51 ## Recommended for Development ##
52 52 ##################################
53 53
54 54 #use = egg:waitress#main
55 55 ## number of worker threads
56 56 #threads = 5
57 57 ## MAX BODY SIZE 100GB
58 58 #max_request_body_size = 107374182400
59 59 ## Use poll instead of select, fixes file descriptors limits problems.
60 60 ## May not work on old windows systems.
61 61 #asyncore_use_poll = true
62 62
63 63
64 64 ##########################
65 65 ## GUNICORN WSGI SERVER ##
66 66 ##########################
67 67 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
68 68
69 69 use = egg:gunicorn#main
70 70 ## Sets the number of process workers. You must set `instance_id = *`
71 71 ## when this option is set to more than one worker, recommended
72 72 ## value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers
73 73 ## The `instance_id = *` must be set in the [app:main] section below
74 74 workers = 2
75 75 ## number of threads for each of the worker, must be set to 1 for gevent
76 76 ## generally recommended to be at 1
77 77 #threads = 1
78 78 ## process name
79 79 proc_name = rhodecode
80 80 ## type of worker class, one of sync, gevent
81 81 ## recommended for bigger setup is using of of other than sync one
82 82 worker_class = gevent
83 83 ## The maximum number of simultaneous clients. Valid only for Gevent
84 84 #worker_connections = 10
85 85 ## max number of requests that worker will handle before being gracefully
86 86 ## restarted, could prevent memory leaks
87 87 max_requests = 1000
88 88 max_requests_jitter = 30
89 89 ## amount of time a worker can spend with handling a request before it
90 90 ## gets killed and restarted. Set to 6hrs
91 91 timeout = 21600
92 92
93 93
94 94 ## prefix middleware for RhodeCode.
95 95 ## recommended when using proxy setup.
96 96 ## allows to set RhodeCode under a prefix in server.
97 97 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
98 98 ## And set your prefix like: `prefix = /custom_prefix`
99 99 ## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
100 100 ## to make your cookies only work on prefix url
101 101 [filter:proxy-prefix]
102 102 use = egg:PasteDeploy#prefix
103 103 prefix = /
104 104
105 105 [app:main]
106 106 use = egg:rhodecode-enterprise-ce
107 107
108 108 ## enable proxy prefix middleware, defined above
109 109 #filter-with = proxy-prefix
110 110
111 111 ## encryption key used to encrypt social plugin tokens,
112 112 ## remote_urls with credentials etc, if not set it defaults to
113 113 ## `beaker.session.secret`
114 114 #rhodecode.encrypted_values.secret =
115 115
116 116 ## decryption strict mode (enabled by default). It controls if decryption raises
117 117 ## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
118 118 #rhodecode.encrypted_values.strict = false
119 119
120 120 ## return gzipped responses from Rhodecode (static files/application)
121 121 gzip_responses = false
122 122
123 123 ## autogenerate javascript routes file on startup
124 124 generate_js_files = false
125 125
126 126 ## Optional Languages
127 127 ## en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
128 128 lang = en
129 129
130 130 ## perform a full repository scan on each server start, this should be
131 131 ## set to false after first startup, to allow faster server restarts.
132 132 startup.import_repos = false
133 133
134 134 ## Uncomment and set this path to use archive download cache.
135 135 ## Once enabled, generated archives will be cached at this location
136 136 ## and served from the cache during subsequent requests for the same archive of
137 137 ## the repository.
138 138 #archive_cache_dir = /tmp/tarballcache
139 139
140 140 ## URL at which the application is running. This is used for bootstraping
141 141 ## requests in context when no web request is available. Used in ishell, or
142 142 ## SSH calls. Set this for events to receive proper url for SSH calls.
143 143 app.base_url = http://rhodecode.local
144 144
145 145 ## change this to unique ID for security
146 146 app_instance_uuid = rc-production
147 147
148 148 ## cut off limit for large diffs (size in bytes). If overall diff size on
149 149 ## commit, or pull request exceeds this limit this diff will be displayed
150 150 ## partially. E.g 512000 == 512Kb
151 151 cut_off_limit_diff = 512000
152 152
153 153 ## cut off limit for large files inside diffs (size in bytes). Each individual
154 154 ## file inside diff which exceeds this limit will be displayed partially.
155 155 ## E.g 128000 == 128Kb
156 156 cut_off_limit_file = 128000
157 157
158 158 ## use cache version of scm repo everywhere
159 159 vcs_full_cache = true
160 160
161 161 ## force https in RhodeCode, fixes https redirects, assumes it's always https
162 162 ## Normally this is controlled by proper http flags sent from http server
163 163 force_https = false
164 164
165 165 ## use Strict-Transport-Security headers
166 166 use_htsts = false
167 167
168 168 ## git rev filter option, --all is the default filter, if you need to
169 169 ## hide all refs in changelog switch this to --branches --tags
170 170 git_rev_filter = --branches --tags
171 171
172 172 # Set to true if your repos are exposed using the dumb protocol
173 173 git_update_server_info = false
174 174
175 175 ## RSS/ATOM feed options
176 176 rss_cut_off_limit = 256000
177 177 rss_items_per_page = 10
178 178 rss_include_diff = false
179 179
180 180 ## gist URL alias, used to create nicer urls for gist. This should be an
181 181 ## url that does rewrites to _admin/gists/{gistid}.
182 182 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
183 183 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
184 184 gist_alias_url =
185 185
186 186 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
187 187 ## used for access.
188 188 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
189 189 ## came from the the logged in user who own this authentication token.
190 190 ## Additionally @TOKEN syntaxt can be used to bound the view to specific
191 191 ## authentication token. Such view would be only accessible when used together
192 192 ## with this authentication token
193 193 ##
194 194 ## list of all views can be found under `/_admin/permissions/auth_token_access`
195 195 ## The list should be "," separated and on a single line.
196 196 ##
197 197 ## Most common views to enable:
198 198 # RepoCommitsView:repo_commit_download
199 199 # RepoCommitsView:repo_commit_patch
200 200 # RepoCommitsView:repo_commit_raw
201 201 # RepoCommitsView:repo_commit_raw@TOKEN
202 202 # RepoFilesView:repo_files_diff
203 203 # RepoFilesView:repo_archivefile
204 204 # RepoFilesView:repo_file_raw
205 205 # GistView:*
206 206 api_access_controllers_whitelist =
207 207
208 208 ## default encoding used to convert from and to unicode
209 209 ## can be also a comma separated list of encoding in case of mixed encodings
210 210 default_encoding = UTF-8
211 211
212 212 ## instance-id prefix
213 213 ## a prefix key for this instance used for cache invalidation when running
214 214 ## multiple instances of rhodecode, make sure it's globally unique for
215 215 ## all running rhodecode instances. Leave empty if you don't use it
216 216 instance_id =
217 217
218 218 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
219 219 ## of an authentication plugin also if it is disabled by it's settings.
220 220 ## This could be useful if you are unable to log in to the system due to broken
221 221 ## authentication settings. Then you can enable e.g. the internal rhodecode auth
222 222 ## module to log in again and fix the settings.
223 223 ##
224 224 ## Available builtin plugin IDs (hash is part of the ID):
225 225 ## egg:rhodecode-enterprise-ce#rhodecode
226 226 ## egg:rhodecode-enterprise-ce#pam
227 227 ## egg:rhodecode-enterprise-ce#ldap
228 228 ## egg:rhodecode-enterprise-ce#jasig_cas
229 229 ## egg:rhodecode-enterprise-ce#headers
230 230 ## egg:rhodecode-enterprise-ce#crowd
231 231 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
232 232
233 233 ## alternative return HTTP header for failed authentication. Default HTTP
234 234 ## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
235 235 ## handling that causing a series of failed authentication calls.
236 236 ## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
237 237 ## This will be served instead of default 401 on bad authnetication
238 238 auth_ret_code =
239 239
240 240 ## use special detection method when serving auth_ret_code, instead of serving
241 241 ## ret_code directly, use 401 initially (Which triggers credentials prompt)
242 242 ## and then serve auth_ret_code to clients
243 243 auth_ret_code_detection = false
244 244
245 245 ## locking return code. When repository is locked return this HTTP code. 2XX
246 246 ## codes don't break the transactions while 4XX codes do
247 247 lock_ret_code = 423
248 248
249 249 ## allows to change the repository location in settings page
250 250 allow_repo_location_change = true
251 251
252 252 ## allows to setup custom hooks in settings page
253 253 allow_custom_hooks_settings = true
254 254
255 255 ## generated license token, goto license page in RhodeCode settings to obtain
256 256 ## new token
257 257 license_token =
258 258
259 259 ## supervisor connection uri, for managing supervisor and logs.
260 260 supervisor.uri =
261 261 ## supervisord group name/id we only want this RC instance to handle
262 262 supervisor.group_id = prod
263 263
264 264 ## Display extended labs settings
265 265 labs_settings_active = true
266 266
267 267 ####################################
268 268 ### CELERY CONFIG ####
269 269 ####################################
270 270 ## run: /path/to/celery worker \
271 271 ## -E --beat --app rhodecode.lib.celerylib.loader \
272 272 ## --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
273 273 ## --loglevel DEBUG --ini /path/to/rhodecode.ini
274 274
275 275 use_celery = false
276 276
277 277 ## connection url to the message broker (default rabbitmq)
278 278 celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
279 279
280 280 ## maximum tasks to execute before worker restart
281 281 celery.max_tasks_per_child = 100
282 282
283 283 ## tasks will never be sent to the queue, but executed locally instead.
284 284 celery.task_always_eager = false
285 285
286 #####################################
287 ### DOGPILE CACHE ####
288 #####################################
289 ## Default cache dir for caches. Putting this into a ramdisk
290 ## can boost performance, eg. /tmpfs/data_ramdisk, however this might require lots
291 ## of space
292 cache_dir = /tmp/rcdev/data
293
294 ## cache settings for permission tree, auth TTL.
295 rc_cache.cache_perms.backend = dogpile.cache.rc.file_namespace
296 rc_cache.cache_perms.expiration_time = 300
297 rc_cache.cache_perms.arguments.filename = /tmp/rc_cache_1
298
299 ## redis backend with distributed locks
300 #rc_cache.cache_perms.backend = dogpile.cache.rc.redis
301 #rc_cache.cache_perms.expiration_time = 300
302 #rc_cache.cache_perms.arguments.host = localhost
303 #rc_cache.cache_perms.arguments.port = 6379
304 #rc_cache.cache_perms.arguments.db = 0
305 #rc_cache.cache_perms.arguments.redis_expiration_time = 7200
306 #rc_cache.cache_perms.arguments.distributed_lock = true
307
308
309 rc_cache.cache_repo.backend = dogpile.cache.rc.file_namespace
310 rc_cache.cache_repo.expiration_time = 2592000
311 rc_cache.cache_repo.arguments.filename = /tmp/rc_cache_2
312
313 ## redis backend with distributed locks
314 #rc_cache.cache_repo.backend = dogpile.cache.rc.redis
315 #rc_cache.cache_repo.expiration_time = 2592000
316 ## this needs to be greater then expiration_time
317 #rc_cache.cache_repo.arguments.redis_expiration_time = 2678400
318 #rc_cache.cache_repo.arguments.host = localhost
319 #rc_cache.cache_repo.arguments.port = 6379
320 #rc_cache.cache_repo.arguments.db = 1
321 #rc_cache.cache_repo.arguments.distributed_lock = true
322
323
286 324 ####################################
287 325 ### BEAKER CACHE ####
288 326 ####################################
289 # default cache dir for templates. Putting this into a ramdisk
290 ## can boost performance, eg. %(here)s/data_ramdisk
291 cache_dir = %(here)s/data
292 327
293 328 ## locking and default file storage for Beaker. Putting this into a ramdisk
294 329 ## can boost performance, eg. %(here)s/data_ramdisk/cache/beaker_data
295 330 beaker.cache.data_dir = %(here)s/data/cache/beaker_data
296 331 beaker.cache.lock_dir = %(here)s/data/cache/beaker_lock
297 332
298 beaker.cache.regions = long_term, sql_cache_short, repo_cache_long
333 beaker.cache.regions = long_term, sql_cache_short
299 334
300 335 beaker.cache.long_term.type = memory
301 beaker.cache.long_term.expire = 36000
336 beaker.cache.long_term.expire = 172800
302 337 beaker.cache.long_term.key_length = 256
303 338
304 339 beaker.cache.sql_cache_short.type = memory
305 340 beaker.cache.sql_cache_short.expire = 10
306 341 beaker.cache.sql_cache_short.key_length = 256
307 342
308 beaker.cache.repo_cache_long.type = memorylru_base
309 beaker.cache.repo_cache_long.max_items = 4096
310 beaker.cache.repo_cache_long.expire = 2592000
311
312 ## default is memorylru_base cache, configure only if required
313 ## using multi-node or multi-worker setup
314 #beaker.cache.repo_cache_long.type = ext:memcached
315 #beaker.cache.repo_cache_long.url = localhost:11211
316 #beaker.cache.repo_cache_long.expire = 1209600
317 #beaker.cache.repo_cache_long.key_length = 256
318 343
319 344 ####################################
320 345 ### BEAKER SESSION ####
321 346 ####################################
322 347
323 348 ## .session.type is type of storage options for the session, current allowed
324 ## types are file, ext:memcached, ext:database, and memory (default).
349 ## types are file, ext:memcached, ext:redis, ext:database, and memory (default).
325 350 beaker.session.type = file
326 beaker.session.data_dir = %(here)s/data/sessions/data
351 beaker.session.data_dir = %(here)s/data/sessions
327 352
328 353 ## db based session, fast, and allows easy management over logged in users
329 354 #beaker.session.type = ext:database
330 355 #beaker.session.table_name = db_session
331 356 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
332 357 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
333 358 #beaker.session.sa.pool_recycle = 3600
334 359 #beaker.session.sa.echo = false
335 360
336 361 beaker.session.key = rhodecode
337 362 beaker.session.secret = production-rc-uytcxaz
338 363 beaker.session.lock_dir = %(here)s/data/sessions/lock
339 364
340 365 ## Secure encrypted cookie. Requires AES and AES python libraries
341 366 ## you must disable beaker.session.secret to use this
342 367 #beaker.session.encrypt_key = key_for_encryption
343 368 #beaker.session.validate_key = validation_key
344 369
345 370 ## sets session as invalid(also logging out user) if it haven not been
346 371 ## accessed for given amount of time in seconds
347 372 beaker.session.timeout = 2592000
348 373 beaker.session.httponly = true
349 374 ## Path to use for the cookie. Set to prefix if you use prefix middleware
350 375 #beaker.session.cookie_path = /custom_prefix
351 376
352 377 ## uncomment for https secure cookie
353 378 beaker.session.secure = false
354 379
355 380 ## auto save the session to not to use .save()
356 381 beaker.session.auto = false
357 382
358 383 ## default cookie expiration time in seconds, set to `true` to set expire
359 384 ## at browser close
360 385 #beaker.session.cookie_expires = 3600
361 386
362 387 ###################################
363 388 ## SEARCH INDEXING CONFIGURATION ##
364 389 ###################################
365 390 ## Full text search indexer is available in rhodecode-tools under
366 391 ## `rhodecode-tools index` command
367 392
368 393 ## WHOOSH Backend, doesn't require additional services to run
369 394 ## it works good with few dozen repos
370 395 search.module = rhodecode.lib.index.whoosh
371 396 search.location = %(here)s/data/index
372 397
373 398 ########################################
374 399 ### CHANNELSTREAM CONFIG ####
375 400 ########################################
376 401 ## channelstream enables persistent connections and live notification
377 402 ## in the system. It's also used by the chat system
378 403 channelstream.enabled = false
379 404
380 405 ## server address for channelstream server on the backend
381 406 channelstream.server = 127.0.0.1:9800
382 407
383 408 ## location of the channelstream server from outside world
384 409 ## use ws:// for http or wss:// for https. This address needs to be handled
385 410 ## by external HTTP server such as Nginx or Apache
386 411 ## see nginx/apache configuration examples in our docs
387 412 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
388 413 channelstream.secret = secret
389 414 channelstream.history.location = %(here)s/channelstream_history
390 415
391 416 ## Internal application path that Javascript uses to connect into.
392 417 ## If you use proxy-prefix the prefix should be added before /_channelstream
393 418 channelstream.proxy_path = /_channelstream
394 419
395 420
396 421 ###################################
397 422 ## APPENLIGHT CONFIG ##
398 423 ###################################
399 424
400 425 ## Appenlight is tailored to work with RhodeCode, see
401 426 ## http://appenlight.com for details how to obtain an account
402 427
403 428 ## appenlight integration enabled
404 429 appenlight = false
405 430
406 431 appenlight.server_url = https://api.appenlight.com
407 432 appenlight.api_key = YOUR_API_KEY
408 433 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
409 434
410 435 # used for JS client
411 436 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
412 437
413 438 ## TWEAK AMOUNT OF INFO SENT HERE
414 439
415 440 ## enables 404 error logging (default False)
416 441 appenlight.report_404 = false
417 442
418 443 ## time in seconds after request is considered being slow (default 1)
419 444 appenlight.slow_request_time = 1
420 445
421 446 ## record slow requests in application
422 447 ## (needs to be enabled for slow datastore recording and time tracking)
423 448 appenlight.slow_requests = true
424 449
425 450 ## enable hooking to application loggers
426 451 appenlight.logging = true
427 452
428 453 ## minimum log level for log capture
429 454 appenlight.logging.level = WARNING
430 455
431 456 ## send logs only from erroneous/slow requests
432 457 ## (saves API quota for intensive logging)
433 458 appenlight.logging_on_error = false
434 459
435 460 ## list of additonal keywords that should be grabbed from environ object
436 461 ## can be string with comma separated list of words in lowercase
437 462 ## (by default client will always send following info:
438 463 ## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
439 464 ## start with HTTP* this list be extended with additional keywords here
440 465 appenlight.environ_keys_whitelist =
441 466
442 467 ## list of keywords that should be blanked from request object
443 468 ## can be string with comma separated list of words in lowercase
444 469 ## (by default client will always blank keys that contain following words
445 470 ## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
446 471 ## this list be extended with additional keywords set here
447 472 appenlight.request_keys_blacklist =
448 473
449 474 ## list of namespaces that should be ignores when gathering log entries
450 475 ## can be string with comma separated list of namespaces
451 476 ## (by default the client ignores own entries: appenlight_client.client)
452 477 appenlight.log_namespace_blacklist =
453 478
454 479
455 480 ################################################################################
456 481 ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT* ##
457 482 ## Debug mode will enable the interactive debugging tool, allowing ANYONE to ##
458 483 ## execute malicious code after an exception is raised. ##
459 484 ################################################################################
460 485 set debug = false
461 486
462 487
463 488 ###########################################
464 489 ### MAIN RHODECODE DATABASE CONFIG ###
465 490 ###########################################
466 491 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
467 492 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
468 493 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode
494 #sqlalchemy.db1.url = mysql+pymysql://root:qweqwe@localhost/rhodecode
495
469 496 sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
470 497
471 498 # see sqlalchemy docs for other advanced settings
472 499
473 500 ## print the sql statements to output
474 501 sqlalchemy.db1.echo = false
475 502 ## recycle the connections after this amount of seconds
476 503 sqlalchemy.db1.pool_recycle = 3600
477 504 sqlalchemy.db1.convert_unicode = true
478 505
479 506 ## the number of connections to keep open inside the connection pool.
480 507 ## 0 indicates no limit
481 508 #sqlalchemy.db1.pool_size = 5
482 509
483 510 ## the number of connections to allow in connection pool "overflow", that is
484 511 ## connections that can be opened above and beyond the pool_size setting,
485 512 ## which defaults to five.
486 513 #sqlalchemy.db1.max_overflow = 10
487 514
515 ## Connection check ping, used to detect broken database connections
516 ## could be enabled to better handle cases if MySQL has gone away errors
517 #sqlalchemy.db1.ping_connection = true
488 518
489 519 ##################
490 520 ### VCS CONFIG ###
491 521 ##################
492 522 vcs.server.enable = true
493 523 vcs.server = localhost:9900
494 524
495 525 ## Web server connectivity protocol, responsible for web based VCS operatations
496 526 ## Available protocols are:
497 527 ## `http` - use http-rpc backend (default)
498 528 vcs.server.protocol = http
499 529
500 530 ## Push/Pull operations protocol, available options are:
501 531 ## `http` - use http-rpc backend (default)
502 532 ##
503 533 vcs.scm_app_implementation = http
504 534
505 535 ## Push/Pull operations hooks protocol, available options are:
506 536 ## `http` - use http-rpc backend (default)
507 537 vcs.hooks.protocol = http
508 538 ## Host on which this instance is listening for hooks. If vcsserver is in other location
509 539 ## this should be adjusted.
510 540 vcs.hooks.host = 127.0.0.1
511 541
512 542 vcs.server.log_level = info
513 543 ## Start VCSServer with this instance as a subprocess, usefull for development
514 544 vcs.start_server = false
515 545
516 546 ## List of enabled VCS backends, available options are:
517 547 ## `hg` - mercurial
518 548 ## `git` - git
519 549 ## `svn` - subversion
520 550 vcs.backends = hg, git, svn
521 551
522 552 vcs.connection_timeout = 3600
523 553 ## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
524 554 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
525 555 #vcs.svn.compatible_version = pre-1.8-compatible
526 556
527 557
528 558 ############################################################
529 559 ### Subversion proxy support (mod_dav_svn) ###
530 560 ### Maps RhodeCode repo groups into SVN paths for Apache ###
531 561 ############################################################
532 562 ## Enable or disable the config file generation.
533 563 svn.proxy.generate_config = false
534 564 ## Generate config file with `SVNListParentPath` set to `On`.
535 565 svn.proxy.list_parent_path = true
536 566 ## Set location and file name of generated config file.
537 567 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
538 568 ## alternative mod_dav config template. This needs to be a mako template
539 569 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
540 570 ## Used as a prefix to the `Location` block in the generated config file.
541 571 ## In most cases it should be set to `/`.
542 572 svn.proxy.location_root = /
543 573 ## Command to reload the mod dav svn configuration on change.
544 574 ## Example: `/etc/init.d/apache2 reload`
545 575 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
546 576 ## If the timeout expires before the reload command finishes, the command will
547 577 ## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
548 578 #svn.proxy.reload_timeout = 10
549 579
550 580 ############################################################
551 581 ### SSH Support Settings ###
552 582 ############################################################
553 583
554 584 ## Defines if a custom authorized_keys file should be created and written on
555 585 ## any change user ssh keys. Setting this to false also disables posibility
556 586 ## of adding SSH keys by users from web interface. Super admins can still
557 587 ## manage SSH Keys.
558 588 ssh.generate_authorized_keyfile = false
559 589
560 590 ## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
561 591 # ssh.authorized_keys_ssh_opts =
562 592
563 593 ## Path to the authrozied_keys file where the generate entries are placed.
564 594 ## It is possible to have multiple key files specified in `sshd_config` e.g.
565 595 ## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
566 596 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
567 597
568 598 ## Command to execute the SSH wrapper. The binary is available in the
569 599 ## rhodecode installation directory.
570 600 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
571 601 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
572 602
573 603 ## Allow shell when executing the ssh-wrapper command
574 604 ssh.wrapper_cmd_allow_shell = false
575 605
576 606 ## Enables logging, and detailed output send back to the client during SSH
577 607 ## operations. Usefull for debugging, shouldn't be used in production.
578 608 ssh.enable_debug_logging = false
579 609
580 610 ## Paths to binary executable, by default they are the names, but we can
581 611 ## override them if we want to use a custom one
582 612 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
583 613 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
584 614 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
585 615
586 616
587 617 ## Dummy marker to add new entries after.
588 618 ## Add any custom entries below. Please don't remove.
589 619 custom.conf = 1
590 620
591 621
592 622 ################################
593 623 ### LOGGING CONFIGURATION ####
594 624 ################################
595 625 [loggers]
596 keys = root, sqlalchemy, beaker, rhodecode, ssh_wrapper, celery
626 keys = root, sqlalchemy, beaker, celery, rhodecode, ssh_wrapper
597 627
598 628 [handlers]
599 629 keys = console, console_sql
600 630
601 631 [formatters]
602 632 keys = generic, color_formatter, color_formatter_sql
603 633
604 634 #############
605 635 ## LOGGERS ##
606 636 #############
607 637 [logger_root]
608 638 level = NOTSET
609 639 handlers = console
610 640
611 641 [logger_sqlalchemy]
612 642 level = INFO
613 643 handlers = console_sql
614 644 qualname = sqlalchemy.engine
615 645 propagate = 0
616 646
617 647 [logger_beaker]
618 648 level = DEBUG
619 649 handlers =
620 650 qualname = beaker.container
621 651 propagate = 1
622 652
623 653 [logger_rhodecode]
624 654 level = DEBUG
625 655 handlers =
626 656 qualname = rhodecode
627 657 propagate = 1
628 658
629 659 [logger_ssh_wrapper]
630 660 level = DEBUG
631 661 handlers =
632 662 qualname = ssh_wrapper
633 663 propagate = 1
634 664
635 665 [logger_celery]
636 666 level = DEBUG
637 667 handlers =
638 668 qualname = celery
639 669
640 670
641 671 ##############
642 672 ## HANDLERS ##
643 673 ##############
644 674
645 675 [handler_console]
646 676 class = StreamHandler
647 677 args = (sys.stderr, )
648 678 level = INFO
649 679 formatter = generic
650 680
651 681 [handler_console_sql]
682 # "level = DEBUG" logs SQL queries and results.
683 # "level = INFO" logs SQL queries.
684 # "level = WARN" logs neither. (Recommended for production systems.)
652 685 class = StreamHandler
653 686 args = (sys.stderr, )
654 687 level = WARN
655 688 formatter = generic
656 689
657 690 ################
658 691 ## FORMATTERS ##
659 692 ################
660 693
661 694 [formatter_generic]
662 695 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
663 696 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
664 697 datefmt = %Y-%m-%d %H:%M:%S
665 698
666 699 [formatter_color_formatter]
667 700 class = rhodecode.lib.logging_formatter.ColorFormatter
668 701 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
669 702 datefmt = %Y-%m-%d %H:%M:%S
670 703
671 704 [formatter_color_formatter_sql]
672 705 class = rhodecode.lib.logging_formatter.ColorFormatterSql
673 706 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
674 707 datefmt = %Y-%m-%d %H:%M:%S
Show file before | Show file after | Hide comments
@@ -1,1254 +1,1241 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2016-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 import logging
22 22 import datetime
23 23 import formencode
24 24 import formencode.htmlfill
25 25
26 26 from pyramid.httpexceptions import HTTPFound
27 27 from pyramid.view import view_config
28 28 from pyramid.renderers import render
29 29 from pyramid.response import Response
30 30
31 31 from rhodecode.apps._base import BaseAppView, DataGridAppView, UserAppView
32 32 from rhodecode.apps.ssh_support import SshKeyFileChangeEvent
33 33 from rhodecode.authentication.plugins import auth_rhodecode
34 34 from rhodecode.events import trigger
35 35 from rhodecode.model.db import true
36 36
37 37 from rhodecode.lib import audit_logger, rc_cache
38 38 from rhodecode.lib.exceptions import (
39 39 UserCreationError, UserOwnsReposException, UserOwnsRepoGroupsException,
40 40 UserOwnsUserGroupsException, DefaultUserException)
41 41 from rhodecode.lib.ext_json import json
42 42 from rhodecode.lib.auth import (
43 43 LoginRequired, HasPermissionAllDecorator, CSRFRequired)
44 44 from rhodecode.lib import helpers as h
45 45 from rhodecode.lib.utils2 import safe_int, safe_unicode, AttributeDict
46 46 from rhodecode.model.auth_token import AuthTokenModel
47 47 from rhodecode.model.forms import (
48 48 UserForm, UserIndividualPermissionsForm, UserPermissionsForm,
49 49 UserExtraEmailForm, UserExtraIpForm)
50 50 from rhodecode.model.permission import PermissionModel
51 51 from rhodecode.model.repo_group import RepoGroupModel
52 52 from rhodecode.model.ssh_key import SshKeyModel
53 53 from rhodecode.model.user import UserModel
54 54 from rhodecode.model.user_group import UserGroupModel
55 55 from rhodecode.model.db import (
56 56 or_, coalesce,IntegrityError, User, UserGroup, UserIpMap, UserEmailMap,
57 57 UserApiKeys, UserSshKeys, RepoGroup)
58 58 from rhodecode.model.meta import Session
59 59
60 60 log = logging.getLogger(__name__)
61 61
62 62
63 63 class AdminUsersView(BaseAppView, DataGridAppView):
64 64
65 65 def load_default_context(self):
66 66 c = self._get_local_tmpl_context()
67 67 return c
68 68
69 69 @LoginRequired()
70 70 @HasPermissionAllDecorator('hg.admin')
71 71 @view_config(
72 72 route_name='users', request_method='GET',
73 73 renderer='rhodecode:templates/admin/users/users.mako')
74 74 def users_list(self):
75 75 c = self.load_default_context()
76 76 return self._get_template_context(c)
77 77
78 78 @LoginRequired()
79 79 @HasPermissionAllDecorator('hg.admin')
80 80 @view_config(
81 81 # renderer defined below
82 82 route_name='users_data', request_method='GET',
83 83 renderer='json_ext', xhr=True)
84 84 def users_list_data(self):
85 85 self.load_default_context()
86 86 column_map = {
87 87 'first_name': 'name',
88 88 'last_name': 'lastname',
89 89 }
90 90 draw, start, limit = self._extract_chunk(self.request)
91 91 search_q, order_by, order_dir = self._extract_ordering(
92 92 self.request, column_map=column_map)
93 93 _render = self.request.get_partial_renderer(
94 94 'rhodecode:templates/data_table/_dt_elements.mako')
95 95
96 96 def user_actions(user_id, username):
97 97 return _render("user_actions", user_id, username)
98 98
99 99 users_data_total_count = User.query()\
100 100 .filter(User.username != User.DEFAULT_USER) \
101 101 .count()
102 102
103 103 users_data_total_inactive_count = User.query()\
104 104 .filter(User.username != User.DEFAULT_USER) \
105 105 .filter(User.active != true())\
106 106 .count()
107 107
108 108 # json generate
109 109 base_q = User.query().filter(User.username != User.DEFAULT_USER)
110 110 base_inactive_q = base_q.filter(User.active != true())
111 111
112 112 if search_q:
113 113 like_expression = u'%{}%'.format(safe_unicode(search_q))
114 114 base_q = base_q.filter(or_(
115 115 User.username.ilike(like_expression),
116 116 User._email.ilike(like_expression),
117 117 User.name.ilike(like_expression),
118 118 User.lastname.ilike(like_expression),
119 119 ))
120 120 base_inactive_q = base_q.filter(User.active != true())
121 121
122 122 users_data_total_filtered_count = base_q.count()
123 123 users_data_total_filtered_inactive_count = base_inactive_q.count()
124 124
125 125 sort_col = getattr(User, order_by, None)
126 126 if sort_col:
127 127 if order_dir == 'asc':
128 128 # handle null values properly to order by NULL last
129 129 if order_by in ['last_activity']:
130 130 sort_col = coalesce(sort_col, datetime.date.max)
131 131 sort_col = sort_col.asc()
132 132 else:
133 133 # handle null values properly to order by NULL last
134 134 if order_by in ['last_activity']:
135 135 sort_col = coalesce(sort_col, datetime.date.min)
136 136 sort_col = sort_col.desc()
137 137
138 138 base_q = base_q.order_by(sort_col)
139 139 base_q = base_q.offset(start).limit(limit)
140 140
141 141 users_list = base_q.all()
142 142
143 143 users_data = []
144 144 for user in users_list:
145 145 users_data.append({
146 146 "username": h.gravatar_with_user(self.request, user.username),
147 147 "email": user.email,
148 148 "first_name": user.first_name,
149 149 "last_name": user.last_name,
150 150 "last_login": h.format_date(user.last_login),
151 151 "last_activity": h.format_date(user.last_activity),
152 152 "active": h.bool2icon(user.active),
153 153 "active_raw": user.active,
154 154 "admin": h.bool2icon(user.admin),
155 155 "extern_type": user.extern_type,
156 156 "extern_name": user.extern_name,
157 157 "action": user_actions(user.user_id, user.username),
158 158 })
159 159 data = ({
160 160 'draw': draw,
161 161 'data': users_data,
162 162 'recordsTotal': users_data_total_count,
163 163 'recordsFiltered': users_data_total_filtered_count,
164 164 'recordsTotalInactive': users_data_total_inactive_count,
165 165 'recordsFilteredInactive': users_data_total_filtered_inactive_count
166 166 })
167 167
168 168 return data
169 169
170 170 def _set_personal_repo_group_template_vars(self, c_obj):
171 171 DummyUser = AttributeDict({
172 172 'username': '${username}',
173 173 'user_id': '${user_id}',
174 174 })
175 175 c_obj.default_create_repo_group = RepoGroupModel() \
176 176 .get_default_create_personal_repo_group()
177 177 c_obj.personal_repo_group_name = RepoGroupModel() \
178 178 .get_personal_group_name(DummyUser)
179 179
180 180 @LoginRequired()
181 181 @HasPermissionAllDecorator('hg.admin')
182 182 @view_config(
183 183 route_name='users_new', request_method='GET',
184 184 renderer='rhodecode:templates/admin/users/user_add.mako')
185 185 def users_new(self):
186 186 _ = self.request.translate
187 187 c = self.load_default_context()
188 188 c.default_extern_type = auth_rhodecode.RhodeCodeAuthPlugin.name
189 189 self._set_personal_repo_group_template_vars(c)
190 190 return self._get_template_context(c)
191 191
192 192 @LoginRequired()
193 193 @HasPermissionAllDecorator('hg.admin')
194 194 @CSRFRequired()
195 195 @view_config(
196 196 route_name='users_create', request_method='POST',
197 197 renderer='rhodecode:templates/admin/users/user_add.mako')
198 198 def users_create(self):
199 199 _ = self.request.translate
200 200 c = self.load_default_context()
201 201 c.default_extern_type = auth_rhodecode.RhodeCodeAuthPlugin.name
202 202 user_model = UserModel()
203 203 user_form = UserForm(self.request.translate)()
204 204 try:
205 205 form_result = user_form.to_python(dict(self.request.POST))
206 206 user = user_model.create(form_result)
207 207 Session().flush()
208 208 creation_data = user.get_api_data()
209 209 username = form_result['username']
210 210
211 211 audit_logger.store_web(
212 212 'user.create', action_data={'data': creation_data},
213 213 user=c.rhodecode_user)
214 214
215 215 user_link = h.link_to(
216 216 h.escape(username),
217 217 h.route_path('user_edit', user_id=user.user_id))
218 218 h.flash(h.literal(_('Created user %(user_link)s')
219 219 % {'user_link': user_link}), category='success')
220 220 Session().commit()
221 221 except formencode.Invalid as errors:
222 222 self._set_personal_repo_group_template_vars(c)
223 223 data = render(
224 224 'rhodecode:templates/admin/users/user_add.mako',
225 225 self._get_template_context(c), self.request)
226 226 html = formencode.htmlfill.render(
227 227 data,
228 228 defaults=errors.value,
229 229 errors=errors.error_dict or {},
230 230 prefix_error=False,
231 231 encoding="UTF-8",
232 232 force_defaults=False
233 233 )
234 234 return Response(html)
235 235 except UserCreationError as e:
236 236 h.flash(e, 'error')
237 237 except Exception:
238 238 log.exception("Exception creation of user")
239 239 h.flash(_('Error occurred during creation of user %s')
240 240 % self.request.POST.get('username'), category='error')
241 241 raise HTTPFound(h.route_path('users'))
242 242
243 243
244 244 class UsersView(UserAppView):
245 245 ALLOW_SCOPED_TOKENS = False
246 246 """
247 247 This view has alternative version inside EE, if modified please take a look
248 248 in there as well.
249 249 """
250 250
251 251 def load_default_context(self):
252 252 c = self._get_local_tmpl_context()
253 253 c.allow_scoped_tokens = self.ALLOW_SCOPED_TOKENS
254 254 c.allowed_languages = [
255 255 ('en', 'English (en)'),
256 256 ('de', 'German (de)'),
257 257 ('fr', 'French (fr)'),
258 258 ('it', 'Italian (it)'),
259 259 ('ja', 'Japanese (ja)'),
260 260 ('pl', 'Polish (pl)'),
261 261 ('pt', 'Portuguese (pt)'),
262 262 ('ru', 'Russian (ru)'),
263 263 ('zh', 'Chinese (zh)'),
264 264 ]
265 265 req = self.request
266 266
267 267 c.available_permissions = req.registry.settings['available_permissions']
268 268 PermissionModel().set_global_permission_choices(
269 269 c, gettext_translator=req.translate)
270 270
271 271 return c
272 272
273 273 @LoginRequired()
274 274 @HasPermissionAllDecorator('hg.admin')
275 275 @CSRFRequired()
276 276 @view_config(
277 277 route_name='user_update', request_method='POST',
278 278 renderer='rhodecode:templates/admin/users/user_edit.mako')
279 279 def user_update(self):
280 280 _ = self.request.translate
281 281 c = self.load_default_context()
282 282
283 283 user_id = self.db_user_id
284 284 c.user = self.db_user
285 285
286 286 c.active = 'profile'
287 287 c.extern_type = c.user.extern_type
288 288 c.extern_name = c.user.extern_name
289 289 c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
290 290 available_languages = [x[0] for x in c.allowed_languages]
291 291 _form = UserForm(self.request.translate, edit=True,
292 292 available_languages=available_languages,
293 293 old_data={'user_id': user_id,
294 294 'email': c.user.email})()
295 295 form_result = {}
296 296 old_values = c.user.get_api_data()
297 297 try:
298 298 form_result = _form.to_python(dict(self.request.POST))
299 299 skip_attrs = ['extern_type', 'extern_name']
300 300 # TODO: plugin should define if username can be updated
301 301 if c.extern_type != "rhodecode":
302 302 # forbid updating username for external accounts
303 303 skip_attrs.append('username')
304 304
305 305 UserModel().update_user(
306 306 user_id, skip_attrs=skip_attrs, **form_result)
307 307
308 308 audit_logger.store_web(
309 309 'user.edit', action_data={'old_data': old_values},
310 310 user=c.rhodecode_user)
311 311
312 312 Session().commit()
313 313 h.flash(_('User updated successfully'), category='success')
314 314 except formencode.Invalid as errors:
315 315 data = render(
316 316 'rhodecode:templates/admin/users/user_edit.mako',
317 317 self._get_template_context(c), self.request)
318 318 html = formencode.htmlfill.render(
319 319 data,
320 320 defaults=errors.value,
321 321 errors=errors.error_dict or {},
322 322 prefix_error=False,
323 323 encoding="UTF-8",
324 324 force_defaults=False
325 325 )
326 326 return Response(html)
327 327 except UserCreationError as e:
328 328 h.flash(e, 'error')
329 329 except Exception:
330 330 log.exception("Exception updating user")
331 331 h.flash(_('Error occurred during update of user %s')
332 332 % form_result.get('username'), category='error')
333 333 raise HTTPFound(h.route_path('user_edit', user_id=user_id))
334 334
335 335 @LoginRequired()
336 336 @HasPermissionAllDecorator('hg.admin')
337 337 @CSRFRequired()
338 338 @view_config(
339 339 route_name='user_delete', request_method='POST',
340 340 renderer='rhodecode:templates/admin/users/user_edit.mako')
341 341 def user_delete(self):
342 342 _ = self.request.translate
343 343 c = self.load_default_context()
344 344 c.user = self.db_user
345 345
346 346 _repos = c.user.repositories
347 347 _repo_groups = c.user.repository_groups
348 348 _user_groups = c.user.user_groups
349 349
350 350 handle_repos = None
351 351 handle_repo_groups = None
352 352 handle_user_groups = None
353 353 # dummy call for flash of handle
354 354 set_handle_flash_repos = lambda: None
355 355 set_handle_flash_repo_groups = lambda: None
356 356 set_handle_flash_user_groups = lambda: None
357 357
358 358 if _repos and self.request.POST.get('user_repos'):
359 359 do = self.request.POST['user_repos']
360 360 if do == 'detach':
361 361 handle_repos = 'detach'
362 362 set_handle_flash_repos = lambda: h.flash(
363 363 _('Detached %s repositories') % len(_repos),
364 364 category='success')
365 365 elif do == 'delete':
366 366 handle_repos = 'delete'
367 367 set_handle_flash_repos = lambda: h.flash(
368 368 _('Deleted %s repositories') % len(_repos),
369 369 category='success')
370 370
371 371 if _repo_groups and self.request.POST.get('user_repo_groups'):
372 372 do = self.request.POST['user_repo_groups']
373 373 if do == 'detach':
374 374 handle_repo_groups = 'detach'
375 375 set_handle_flash_repo_groups = lambda: h.flash(
376 376 _('Detached %s repository groups') % len(_repo_groups),
377 377 category='success')
378 378 elif do == 'delete':
379 379 handle_repo_groups = 'delete'
380 380 set_handle_flash_repo_groups = lambda: h.flash(
381 381 _('Deleted %s repository groups') % len(_repo_groups),
382 382 category='success')
383 383
384 384 if _user_groups and self.request.POST.get('user_user_groups'):
385 385 do = self.request.POST['user_user_groups']
386 386 if do == 'detach':
387 387 handle_user_groups = 'detach'
388 388 set_handle_flash_user_groups = lambda: h.flash(
389 389 _('Detached %s user groups') % len(_user_groups),
390 390 category='success')
391 391 elif do == 'delete':
392 392 handle_user_groups = 'delete'
393 393 set_handle_flash_user_groups = lambda: h.flash(
394 394 _('Deleted %s user groups') % len(_user_groups),
395 395 category='success')
396 396
397 397 old_values = c.user.get_api_data()
398 398 try:
399 399 UserModel().delete(c.user, handle_repos=handle_repos,
400 400 handle_repo_groups=handle_repo_groups,
401 401 handle_user_groups=handle_user_groups)
402 402
403 403 audit_logger.store_web(
404 404 'user.delete', action_data={'old_data': old_values},
405 405 user=c.rhodecode_user)
406 406
407 407 Session().commit()
408 408 set_handle_flash_repos()
409 409 set_handle_flash_repo_groups()
410 410 set_handle_flash_user_groups()
411 411 h.flash(_('Successfully deleted user'), category='success')
412 412 except (UserOwnsReposException, UserOwnsRepoGroupsException,
413 413 UserOwnsUserGroupsException, DefaultUserException) as e:
414 414 h.flash(e, category='warning')
415 415 except Exception:
416 416 log.exception("Exception during deletion of user")
417 417 h.flash(_('An error occurred during deletion of user'),
418 418 category='error')
419 419 raise HTTPFound(h.route_path('users'))
420 420
421 421 @LoginRequired()
422 422 @HasPermissionAllDecorator('hg.admin')
423 423 @view_config(
424 424 route_name='user_edit', request_method='GET',
425 425 renderer='rhodecode:templates/admin/users/user_edit.mako')
426 426 def user_edit(self):
427 427 _ = self.request.translate
428 428 c = self.load_default_context()
429 429 c.user = self.db_user
430 430
431 431 c.active = 'profile'
432 432 c.extern_type = c.user.extern_type
433 433 c.extern_name = c.user.extern_name
434 434 c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
435 435
436 436 defaults = c.user.get_dict()
437 437 defaults.update({'language': c.user.user_data.get('language')})
438 438
439 439 data = render(
440 440 'rhodecode:templates/admin/users/user_edit.mako',
441 441 self._get_template_context(c), self.request)
442 442 html = formencode.htmlfill.render(
443 443 data,
444 444 defaults=defaults,
445 445 encoding="UTF-8",
446 446 force_defaults=False
447 447 )
448 448 return Response(html)
449 449
450 450 @LoginRequired()
451 451 @HasPermissionAllDecorator('hg.admin')
452 452 @view_config(
453 453 route_name='user_edit_advanced', request_method='GET',
454 454 renderer='rhodecode:templates/admin/users/user_edit.mako')
455 455 def user_edit_advanced(self):
456 456 _ = self.request.translate
457 457 c = self.load_default_context()
458 458
459 459 user_id = self.db_user_id
460 460 c.user = self.db_user
461 461
462 462 c.active = 'advanced'
463 463 c.personal_repo_group = RepoGroup.get_user_personal_repo_group(user_id)
464 464 c.personal_repo_group_name = RepoGroupModel()\
465 465 .get_personal_group_name(c.user)
466 466
467 467 c.user_to_review_rules = sorted(
468 468 (x.user for x in c.user.user_review_rules),
469 469 key=lambda u: u.username.lower())
470 470
471 471 c.first_admin = User.get_first_super_admin()
472 472 defaults = c.user.get_dict()
473 473
474 474 # Interim workaround if the user participated on any pull requests as a
475 475 # reviewer.
476 476 has_review = len(c.user.reviewer_pull_requests)
477 477 c.can_delete_user = not has_review
478 478 c.can_delete_user_message = ''
479 479 inactive_link = h.link_to(
480 480 'inactive', h.route_path('user_edit', user_id=user_id, _anchor='active'))
481 481 if has_review == 1:
482 482 c.can_delete_user_message = h.literal(_(
483 483 'The user participates as reviewer in {} pull request and '
484 484 'cannot be deleted. \nYou can set the user to '
485 485 '"{}" instead of deleting it.').format(
486 486 has_review, inactive_link))
487 487 elif has_review:
488 488 c.can_delete_user_message = h.literal(_(
489 489 'The user participates as reviewer in {} pull requests and '
490 490 'cannot be deleted. \nYou can set the user to '
491 491 '"{}" instead of deleting it.').format(
492 492 has_review, inactive_link))
493 493
494 494 data = render(
495 495 'rhodecode:templates/admin/users/user_edit.mako',
496 496 self._get_template_context(c), self.request)
497 497 html = formencode.htmlfill.render(
498 498 data,
499 499 defaults=defaults,
500 500 encoding="UTF-8",
501 501 force_defaults=False
502 502 )
503 503 return Response(html)
504 504
505 505 @LoginRequired()
506 506 @HasPermissionAllDecorator('hg.admin')
507 507 @view_config(
508 508 route_name='user_edit_global_perms', request_method='GET',
509 509 renderer='rhodecode:templates/admin/users/user_edit.mako')
510 510 def user_edit_global_perms(self):
511 511 _ = self.request.translate
512 512 c = self.load_default_context()
513 513 c.user = self.db_user
514 514
515 515 c.active = 'global_perms'
516 516
517 517 c.default_user = User.get_default_user()
518 518 defaults = c.user.get_dict()
519 519 defaults.update(c.default_user.get_default_perms(suffix='_inherited'))
520 520 defaults.update(c.default_user.get_default_perms())
521 521 defaults.update(c.user.get_default_perms())
522 522
523 523 data = render(
524 524 'rhodecode:templates/admin/users/user_edit.mako',
525 525 self._get_template_context(c), self.request)
526 526 html = formencode.htmlfill.render(
527 527 data,
528 528 defaults=defaults,
529 529 encoding="UTF-8",
530 530 force_defaults=False
531 531 )
532 532 return Response(html)
533 533
534 534 @LoginRequired()
535 535 @HasPermissionAllDecorator('hg.admin')
536 536 @CSRFRequired()
537 537 @view_config(
538 538 route_name='user_edit_global_perms_update', request_method='POST',
539 539 renderer='rhodecode:templates/admin/users/user_edit.mako')
540 540 def user_edit_global_perms_update(self):
541 541 _ = self.request.translate
542 542 c = self.load_default_context()
543 543
544 544 user_id = self.db_user_id
545 545 c.user = self.db_user
546 546
547 547 c.active = 'global_perms'
548 548 try:
549 549 # first stage that verifies the checkbox
550 550 _form = UserIndividualPermissionsForm(self.request.translate)
551 551 form_result = _form.to_python(dict(self.request.POST))
552 552 inherit_perms = form_result['inherit_default_permissions']
553 553 c.user.inherit_default_permissions = inherit_perms
554 554 Session().add(c.user)
555 555
556 556 if not inherit_perms:
557 557 # only update the individual ones if we un check the flag
558 558 _form = UserPermissionsForm(
559 559 self.request.translate,
560 560 [x[0] for x in c.repo_create_choices],
561 561 [x[0] for x in c.repo_create_on_write_choices],
562 562 [x[0] for x in c.repo_group_create_choices],
563 563 [x[0] for x in c.user_group_create_choices],
564 564 [x[0] for x in c.fork_choices],
565 565 [x[0] for x in c.inherit_default_permission_choices])()
566 566
567 567 form_result = _form.to_python(dict(self.request.POST))
568 568 form_result.update({'perm_user_id': c.user.user_id})
569 569
570 570 PermissionModel().update_user_permissions(form_result)
571 571
572 572 # TODO(marcink): implement global permissions
573 573 # audit_log.store_web('user.edit.permissions')
574 574
575 575 Session().commit()
576 576 h.flash(_('User global permissions updated successfully'),
577 577 category='success')
578 578
579 579 except formencode.Invalid as errors:
580 580 data = render(
581 581 'rhodecode:templates/admin/users/user_edit.mako',
582 582 self._get_template_context(c), self.request)
583 583 html = formencode.htmlfill.render(
584 584 data,
585 585 defaults=errors.value,
586 586 errors=errors.error_dict or {},
587 587 prefix_error=False,
588 588 encoding="UTF-8",
589 589 force_defaults=False
590 590 )
591 591 return Response(html)
592 592 except Exception:
593 593 log.exception("Exception during permissions saving")
594 594 h.flash(_('An error occurred during permissions saving'),
595 595 category='error')
596 596 raise HTTPFound(h.route_path('user_edit_global_perms', user_id=user_id))
597 597
598 598 @LoginRequired()
599 599 @HasPermissionAllDecorator('hg.admin')
600 600 @CSRFRequired()
601 601 @view_config(
602 602 route_name='user_force_password_reset', request_method='POST',
603 603 renderer='rhodecode:templates/admin/users/user_edit.mako')
604 604 def user_force_password_reset(self):
605 605 """
606 606 toggle reset password flag for this user
607 607 """
608 608 _ = self.request.translate
609 609 c = self.load_default_context()
610 610
611 611 user_id = self.db_user_id
612 612 c.user = self.db_user
613 613
614 614 try:
615 615 old_value = c.user.user_data.get('force_password_change')
616 616 c.user.update_userdata(force_password_change=not old_value)
617 617
618 618 if old_value:
619 619 msg = _('Force password change disabled for user')
620 620 audit_logger.store_web(
621 621 'user.edit.password_reset.disabled',
622 622 user=c.rhodecode_user)
623 623 else:
624 624 msg = _('Force password change enabled for user')
625 625 audit_logger.store_web(
626 626 'user.edit.password_reset.enabled',
627 627 user=c.rhodecode_user)
628 628
629 629 Session().commit()
630 630 h.flash(msg, category='success')
631 631 except Exception:
632 632 log.exception("Exception during password reset for user")
633 633 h.flash(_('An error occurred during password reset for user'),
634 634 category='error')
635 635
636 636 raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
637 637
638 638 @LoginRequired()
639 639 @HasPermissionAllDecorator('hg.admin')
640 640 @CSRFRequired()
641 641 @view_config(
642 642 route_name='user_create_personal_repo_group', request_method='POST',
643 643 renderer='rhodecode:templates/admin/users/user_edit.mako')
644 644 def user_create_personal_repo_group(self):
645 645 """
646 646 Create personal repository group for this user
647 647 """
648 648 from rhodecode.model.repo_group import RepoGroupModel
649 649
650 650 _ = self.request.translate
651 651 c = self.load_default_context()
652 652
653 653 user_id = self.db_user_id
654 654 c.user = self.db_user
655 655
656 656 personal_repo_group = RepoGroup.get_user_personal_repo_group(
657 657 c.user.user_id)
658 658 if personal_repo_group:
659 659 raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
660 660
661 661 personal_repo_group_name = RepoGroupModel().get_personal_group_name(
662 662 c.user)
663 663 named_personal_group = RepoGroup.get_by_group_name(
664 664 personal_repo_group_name)
665 665 try:
666 666
667 667 if named_personal_group and named_personal_group.user_id == c.user.user_id:
668 668 # migrate the same named group, and mark it as personal
669 669 named_personal_group.personal = True
670 670 Session().add(named_personal_group)
671 671 Session().commit()
672 672 msg = _('Linked repository group `%s` as personal' % (
673 673 personal_repo_group_name,))
674 674 h.flash(msg, category='success')
675 675 elif not named_personal_group:
676 676 RepoGroupModel().create_personal_repo_group(c.user)
677 677
678 678 msg = _('Created repository group `%s`' % (
679 679 personal_repo_group_name,))
680 680 h.flash(msg, category='success')
681 681 else:
682 682 msg = _('Repository group `%s` is already taken' % (
683 683 personal_repo_group_name,))
684 684 h.flash(msg, category='warning')
685 685 except Exception:
686 686 log.exception("Exception during repository group creation")
687 687 msg = _(
688 688 'An error occurred during repository group creation for user')
689 689 h.flash(msg, category='error')
690 690 Session().rollback()
691 691
692 692 raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
693 693
694 694 @LoginRequired()
695 695 @HasPermissionAllDecorator('hg.admin')
696 696 @view_config(
697 697 route_name='edit_user_auth_tokens', request_method='GET',
698 698 renderer='rhodecode:templates/admin/users/user_edit.mako')
699 699 def auth_tokens(self):
700 700 _ = self.request.translate
701 701 c = self.load_default_context()
702 702 c.user = self.db_user
703 703
704 704 c.active = 'auth_tokens'
705 705
706 706 c.lifetime_values = AuthTokenModel.get_lifetime_values(translator=_)
707 707 c.role_values = [
708 708 (x, AuthTokenModel.cls._get_role_name(x))
709 709 for x in AuthTokenModel.cls.ROLES]
710 710 c.role_options = [(c.role_values, _("Role"))]
711 711 c.user_auth_tokens = AuthTokenModel().get_auth_tokens(
712 712 c.user.user_id, show_expired=True)
713 713 c.role_vcs = AuthTokenModel.cls.ROLE_VCS
714 714 return self._get_template_context(c)
715 715
716 716 def maybe_attach_token_scope(self, token):
717 717 # implemented in EE edition
718 718 pass
719 719
720 720 @LoginRequired()
721 721 @HasPermissionAllDecorator('hg.admin')
722 722 @CSRFRequired()
723 723 @view_config(
724 724 route_name='edit_user_auth_tokens_add', request_method='POST')
725 725 def auth_tokens_add(self):
726 726 _ = self.request.translate
727 727 c = self.load_default_context()
728 728
729 729 user_id = self.db_user_id
730 730 c.user = self.db_user
731 731
732 732 user_data = c.user.get_api_data()
733 733 lifetime = safe_int(self.request.POST.get('lifetime'), -1)
734 734 description = self.request.POST.get('description')
735 735 role = self.request.POST.get('role')
736 736
737 737 token = AuthTokenModel().create(
738 738 c.user.user_id, description, lifetime, role)
739 739 token_data = token.get_api_data()
740 740
741 741 self.maybe_attach_token_scope(token)
742 742 audit_logger.store_web(
743 743 'user.edit.token.add', action_data={
744 744 'data': {'token': token_data, 'user': user_data}},
745 745 user=self._rhodecode_user, )
746 746 Session().commit()
747 747
748 748 h.flash(_("Auth token successfully created"), category='success')
749 749 return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
750 750
751 751 @LoginRequired()
752 752 @HasPermissionAllDecorator('hg.admin')
753 753 @CSRFRequired()
754 754 @view_config(
755 755 route_name='edit_user_auth_tokens_delete', request_method='POST')
756 756 def auth_tokens_delete(self):
757 757 _ = self.request.translate
758 758 c = self.load_default_context()
759 759
760 760 user_id = self.db_user_id
761 761 c.user = self.db_user
762 762
763 763 user_data = c.user.get_api_data()
764 764
765 765 del_auth_token = self.request.POST.get('del_auth_token')
766 766
767 767 if del_auth_token:
768 768 token = UserApiKeys.get_or_404(del_auth_token)
769 769 token_data = token.get_api_data()
770 770
771 771 AuthTokenModel().delete(del_auth_token, c.user.user_id)
772 772 audit_logger.store_web(
773 773 'user.edit.token.delete', action_data={
774 774 'data': {'token': token_data, 'user': user_data}},
775 775 user=self._rhodecode_user,)
776 776 Session().commit()
777 777 h.flash(_("Auth token successfully deleted"), category='success')
778 778
779 779 return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
780 780
781 781 @LoginRequired()
782 782 @HasPermissionAllDecorator('hg.admin')
783 783 @view_config(
784 784 route_name='edit_user_ssh_keys', request_method='GET',
785 785 renderer='rhodecode:templates/admin/users/user_edit.mako')
786 786 def ssh_keys(self):
787 787 _ = self.request.translate
788 788 c = self.load_default_context()
789 789 c.user = self.db_user
790 790
791 791 c.active = 'ssh_keys'
792 792 c.default_key = self.request.GET.get('default_key')
793 793 c.user_ssh_keys = SshKeyModel().get_ssh_keys(c.user.user_id)
794 794 return self._get_template_context(c)
795 795
796 796 @LoginRequired()
797 797 @HasPermissionAllDecorator('hg.admin')
798 798 @view_config(
799 799 route_name='edit_user_ssh_keys_generate_keypair', request_method='GET',
800 800 renderer='rhodecode:templates/admin/users/user_edit.mako')
801 801 def ssh_keys_generate_keypair(self):
802 802 _ = self.request.translate
803 803 c = self.load_default_context()
804 804
805 805 c.user = self.db_user
806 806
807 807 c.active = 'ssh_keys_generate'
808 808 comment = 'RhodeCode-SSH {}'.format(c.user.email or '')
809 809 c.private, c.public = SshKeyModel().generate_keypair(comment=comment)
810 810
811 811 return self._get_template_context(c)
812 812
813 813 @LoginRequired()
814 814 @HasPermissionAllDecorator('hg.admin')
815 815 @CSRFRequired()
816 816 @view_config(
817 817 route_name='edit_user_ssh_keys_add', request_method='POST')
818 818 def ssh_keys_add(self):
819 819 _ = self.request.translate
820 820 c = self.load_default_context()
821 821
822 822 user_id = self.db_user_id
823 823 c.user = self.db_user
824 824
825 825 user_data = c.user.get_api_data()
826 826 key_data = self.request.POST.get('key_data')
827 827 description = self.request.POST.get('description')
828 828
829 829 fingerprint = 'unknown'
830 830 try:
831 831 if not key_data:
832 832 raise ValueError('Please add a valid public key')
833 833
834 834 key = SshKeyModel().parse_key(key_data.strip())
835 835 fingerprint = key.hash_md5()
836 836
837 837 ssh_key = SshKeyModel().create(
838 838 c.user.user_id, fingerprint, key.keydata, description)
839 839 ssh_key_data = ssh_key.get_api_data()
840 840
841 841 audit_logger.store_web(
842 842 'user.edit.ssh_key.add', action_data={
843 843 'data': {'ssh_key': ssh_key_data, 'user': user_data}},
844 844 user=self._rhodecode_user, )
845 845 Session().commit()
846 846
847 847 # Trigger an event on change of keys.
848 848 trigger(SshKeyFileChangeEvent(), self.request.registry)
849 849
850 850 h.flash(_("Ssh Key successfully created"), category='success')
851 851
852 852 except IntegrityError:
853 853 log.exception("Exception during ssh key saving")
854 854 err = 'Such key with fingerprint `{}` already exists, ' \
855 855 'please use a different one'.format(fingerprint)
856 856 h.flash(_('An error occurred during ssh key saving: {}').format(err),
857 857 category='error')
858 858 except Exception as e:
859 859 log.exception("Exception during ssh key saving")
860 860 h.flash(_('An error occurred during ssh key saving: {}').format(e),
861 861 category='error')
862 862
863 863 return HTTPFound(
864 864 h.route_path('edit_user_ssh_keys', user_id=user_id))
865 865
866 866 @LoginRequired()
867 867 @HasPermissionAllDecorator('hg.admin')
868 868 @CSRFRequired()
869 869 @view_config(
870 870 route_name='edit_user_ssh_keys_delete', request_method='POST')
871 871 def ssh_keys_delete(self):
872 872 _ = self.request.translate
873 873 c = self.load_default_context()
874 874
875 875 user_id = self.db_user_id
876 876 c.user = self.db_user
877 877
878 878 user_data = c.user.get_api_data()
879 879
880 880 del_ssh_key = self.request.POST.get('del_ssh_key')
881 881
882 882 if del_ssh_key:
883 883 ssh_key = UserSshKeys.get_or_404(del_ssh_key)
884 884 ssh_key_data = ssh_key.get_api_data()
885 885
886 886 SshKeyModel().delete(del_ssh_key, c.user.user_id)
887 887 audit_logger.store_web(
888 888 'user.edit.ssh_key.delete', action_data={
889 889 'data': {'ssh_key': ssh_key_data, 'user': user_data}},
890 890 user=self._rhodecode_user,)
891 891 Session().commit()
892 892 # Trigger an event on change of keys.
893 893 trigger(SshKeyFileChangeEvent(), self.request.registry)
894 894 h.flash(_("Ssh key successfully deleted"), category='success')
895 895
896 896 return HTTPFound(h.route_path('edit_user_ssh_keys', user_id=user_id))
897 897
898 898 @LoginRequired()
899 899 @HasPermissionAllDecorator('hg.admin')
900 900 @view_config(
901 901 route_name='edit_user_emails', request_method='GET',
902 902 renderer='rhodecode:templates/admin/users/user_edit.mako')
903 903 def emails(self):
904 904 _ = self.request.translate
905 905 c = self.load_default_context()
906 906 c.user = self.db_user
907 907
908 908 c.active = 'emails'
909 909 c.user_email_map = UserEmailMap.query() \
910 910 .filter(UserEmailMap.user == c.user).all()
911 911
912 912 return self._get_template_context(c)
913 913
914 914 @LoginRequired()
915 915 @HasPermissionAllDecorator('hg.admin')
916 916 @CSRFRequired()
917 917 @view_config(
918 918 route_name='edit_user_emails_add', request_method='POST')
919 919 def emails_add(self):
920 920 _ = self.request.translate
921 921 c = self.load_default_context()
922 922
923 923 user_id = self.db_user_id
924 924 c.user = self.db_user
925 925
926 926 email = self.request.POST.get('new_email')
927 927 user_data = c.user.get_api_data()
928 928 try:
929 929
930 930 form = UserExtraEmailForm(self.request.translate)()
931 931 data = form.to_python({'email': email})
932 932 email = data['email']
933 933
934 934 UserModel().add_extra_email(c.user.user_id, email)
935 935 audit_logger.store_web(
936 936 'user.edit.email.add',
937 937 action_data={'email': email, 'user': user_data},
938 938 user=self._rhodecode_user)
939 939 Session().commit()
940 940 h.flash(_("Added new email address `%s` for user account") % email,
941 941 category='success')
942 942 except formencode.Invalid as error:
943 943 h.flash(h.escape(error.error_dict['email']), category='error')
944 944 except IntegrityError:
945 945 log.warning("Email %s already exists", email)
946 946 h.flash(_('Email `{}` is already registered for another user.').format(email),
947 947 category='error')
948 948 except Exception:
949 949 log.exception("Exception during email saving")
950 950 h.flash(_('An error occurred during email saving'),
951 951 category='error')
952 952 raise HTTPFound(h.route_path('edit_user_emails', user_id=user_id))
953 953
954 954 @LoginRequired()
955 955 @HasPermissionAllDecorator('hg.admin')
956 956 @CSRFRequired()
957 957 @view_config(
958 958 route_name='edit_user_emails_delete', request_method='POST')
959 959 def emails_delete(self):
960 960 _ = self.request.translate
961 961 c = self.load_default_context()
962 962
963 963 user_id = self.db_user_id
964 964 c.user = self.db_user
965 965
966 966 email_id = self.request.POST.get('del_email_id')
967 967 user_model = UserModel()
968 968
969 969 email = UserEmailMap.query().get(email_id).email
970 970 user_data = c.user.get_api_data()
971 971 user_model.delete_extra_email(c.user.user_id, email_id)
972 972 audit_logger.store_web(
973 973 'user.edit.email.delete',
974 974 action_data={'email': email, 'user': user_data},
975 975 user=self._rhodecode_user)
976 976 Session().commit()
977 977 h.flash(_("Removed email address from user account"),
978 978 category='success')
979 979 raise HTTPFound(h.route_path('edit_user_emails', user_id=user_id))
980 980
981 981 @LoginRequired()
982 982 @HasPermissionAllDecorator('hg.admin')
983 983 @view_config(
984 984 route_name='edit_user_ips', request_method='GET',
985 985 renderer='rhodecode:templates/admin/users/user_edit.mako')
986 986 def ips(self):
987 987 _ = self.request.translate
988 988 c = self.load_default_context()
989 989 c.user = self.db_user
990 990
991 991 c.active = 'ips'
992 992 c.user_ip_map = UserIpMap.query() \
993 993 .filter(UserIpMap.user == c.user).all()
994 994
995 995 c.inherit_default_ips = c.user.inherit_default_permissions
996 996 c.default_user_ip_map = UserIpMap.query() \
997 997 .filter(UserIpMap.user == User.get_default_user()).all()
998 998
999 999 return self._get_template_context(c)
1000 1000
1001 1001 @LoginRequired()
1002 1002 @HasPermissionAllDecorator('hg.admin')
1003 1003 @CSRFRequired()
1004 1004 @view_config(
1005 1005 route_name='edit_user_ips_add', request_method='POST')
1006 1006 # NOTE(marcink): this view is allowed for default users, as we can
1007 1007 # edit their IP white list
1008 1008 def ips_add(self):
1009 1009 _ = self.request.translate
1010 1010 c = self.load_default_context()
1011 1011
1012 1012 user_id = self.db_user_id
1013 1013 c.user = self.db_user
1014 1014
1015 1015 user_model = UserModel()
1016 1016 desc = self.request.POST.get('description')
1017 1017 try:
1018 1018 ip_list = user_model.parse_ip_range(
1019 1019 self.request.POST.get('new_ip'))
1020 1020 except Exception as e:
1021 1021 ip_list = []
1022 1022 log.exception("Exception during ip saving")
1023 1023 h.flash(_('An error occurred during ip saving:%s' % (e,)),
1024 1024 category='error')
1025 1025 added = []
1026 1026 user_data = c.user.get_api_data()
1027 1027 for ip in ip_list:
1028 1028 try:
1029 1029 form = UserExtraIpForm(self.request.translate)()
1030 1030 data = form.to_python({'ip': ip})
1031 1031 ip = data['ip']
1032 1032
1033 1033 user_model.add_extra_ip(c.user.user_id, ip, desc)
1034 1034 audit_logger.store_web(
1035 1035 'user.edit.ip.add',
1036 1036 action_data={'ip': ip, 'user': user_data},
1037 1037 user=self._rhodecode_user)
1038 1038 Session().commit()
1039 1039 added.append(ip)
1040 1040 except formencode.Invalid as error:
1041 1041 msg = error.error_dict['ip']
1042 1042 h.flash(msg, category='error')
1043 1043 except Exception:
1044 1044 log.exception("Exception during ip saving")
1045 1045 h.flash(_('An error occurred during ip saving'),
1046 1046 category='error')
1047 1047 if added:
1048 1048 h.flash(
1049 1049 _("Added ips %s to user whitelist") % (', '.join(ip_list), ),
1050 1050 category='success')
1051 1051 if 'default_user' in self.request.POST:
1052 1052 # case for editing global IP list we do it for 'DEFAULT' user
1053 1053 raise HTTPFound(h.route_path('admin_permissions_ips'))
1054 1054 raise HTTPFound(h.route_path('edit_user_ips', user_id=user_id))
1055 1055
1056 1056 @LoginRequired()
1057 1057 @HasPermissionAllDecorator('hg.admin')
1058 1058 @CSRFRequired()
1059 1059 @view_config(
1060 1060 route_name='edit_user_ips_delete', request_method='POST')
1061 1061 # NOTE(marcink): this view is allowed for default users, as we can
1062 1062 # edit their IP white list
1063 1063 def ips_delete(self):
1064 1064 _ = self.request.translate
1065 1065 c = self.load_default_context()
1066 1066
1067 1067 user_id = self.db_user_id
1068 1068 c.user = self.db_user
1069 1069
1070 1070 ip_id = self.request.POST.get('del_ip_id')
1071 1071 user_model = UserModel()
1072 1072 user_data = c.user.get_api_data()
1073 1073 ip = UserIpMap.query().get(ip_id).ip_addr
1074 1074 user_model.delete_extra_ip(c.user.user_id, ip_id)
1075 1075 audit_logger.store_web(
1076 1076 'user.edit.ip.delete', action_data={'ip': ip, 'user': user_data},
1077 1077 user=self._rhodecode_user)
1078 1078 Session().commit()
1079 1079 h.flash(_("Removed ip address from user whitelist"), category='success')
1080 1080
1081 1081 if 'default_user' in self.request.POST:
1082 1082 # case for editing global IP list we do it for 'DEFAULT' user
1083 1083 raise HTTPFound(h.route_path('admin_permissions_ips'))
1084 1084 raise HTTPFound(h.route_path('edit_user_ips', user_id=user_id))
1085 1085
1086 1086 @LoginRequired()
1087 1087 @HasPermissionAllDecorator('hg.admin')
1088 1088 @view_config(
1089 1089 route_name='edit_user_groups_management', request_method='GET',
1090 1090 renderer='rhodecode:templates/admin/users/user_edit.mako')
1091 1091 def groups_management(self):
1092 1092 c = self.load_default_context()
1093 1093 c.user = self.db_user
1094 1094 c.data = c.user.group_member
1095 1095
1096 1096 groups = [UserGroupModel.get_user_groups_as_dict(group.users_group)
1097 1097 for group in c.user.group_member]
1098 1098 c.groups = json.dumps(groups)
1099 1099 c.active = 'groups'
1100 1100
1101 1101 return self._get_template_context(c)
1102 1102
1103 1103 @LoginRequired()
1104 1104 @HasPermissionAllDecorator('hg.admin')
1105 1105 @CSRFRequired()
1106 1106 @view_config(
1107 1107 route_name='edit_user_groups_management_updates', request_method='POST')
1108 1108 def groups_management_updates(self):
1109 1109 _ = self.request.translate
1110 1110 c = self.load_default_context()
1111 1111
1112 1112 user_id = self.db_user_id
1113 1113 c.user = self.db_user
1114 1114
1115 1115 user_groups = set(self.request.POST.getall('users_group_id'))
1116 1116 user_groups_objects = []
1117 1117
1118 1118 for ugid in user_groups:
1119 1119 user_groups_objects.append(
1120 1120 UserGroupModel().get_group(safe_int(ugid)))
1121 1121 user_group_model = UserGroupModel()
1122 1122 added_to_groups, removed_from_groups = \
1123 1123 user_group_model.change_groups(c.user, user_groups_objects)
1124 1124
1125 1125 user_data = c.user.get_api_data()
1126 1126 for user_group_id in added_to_groups:
1127 1127 user_group = UserGroup.get(user_group_id)
1128 1128 old_values = user_group.get_api_data()
1129 1129 audit_logger.store_web(
1130 1130 'user_group.edit.member.add',
1131 1131 action_data={'user': user_data, 'old_data': old_values},
1132 1132 user=self._rhodecode_user)
1133 1133
1134 1134 for user_group_id in removed_from_groups:
1135 1135 user_group = UserGroup.get(user_group_id)
1136 1136 old_values = user_group.get_api_data()
1137 1137 audit_logger.store_web(
1138 1138 'user_group.edit.member.delete',
1139 1139 action_data={'user': user_data, 'old_data': old_values},
1140 1140 user=self._rhodecode_user)
1141 1141
1142 1142 Session().commit()
1143 1143 c.active = 'user_groups_management'
1144 1144 h.flash(_("Groups successfully changed"), category='success')
1145 1145
1146 1146 return HTTPFound(h.route_path(
1147 1147 'edit_user_groups_management', user_id=user_id))
1148 1148
1149 1149 @LoginRequired()
1150 1150 @HasPermissionAllDecorator('hg.admin')
1151 1151 @view_config(
1152 1152 route_name='edit_user_audit_logs', request_method='GET',
1153 1153 renderer='rhodecode:templates/admin/users/user_edit.mako')
1154 1154 def user_audit_logs(self):
1155 1155 _ = self.request.translate
1156 1156 c = self.load_default_context()
1157 1157 c.user = self.db_user
1158 1158
1159 1159 c.active = 'audit'
1160 1160
1161 1161 p = safe_int(self.request.GET.get('page', 1), 1)
1162 1162
1163 1163 filter_term = self.request.GET.get('filter')
1164 1164 user_log = UserModel().get_user_log(c.user, filter_term)
1165 1165
1166 1166 def url_generator(**kw):
1167 1167 if filter_term:
1168 1168 kw['filter'] = filter_term
1169 1169 return self.request.current_route_path(_query=kw)
1170 1170
1171 1171 c.audit_logs = h.Page(
1172 1172 user_log, page=p, items_per_page=10, url=url_generator)
1173 1173 c.filter_term = filter_term
1174 1174 return self._get_template_context(c)
1175 1175
1176 1176 @LoginRequired()
1177 1177 @HasPermissionAllDecorator('hg.admin')
1178 1178 @view_config(
1179 1179 route_name='edit_user_perms_summary', request_method='GET',
1180 1180 renderer='rhodecode:templates/admin/users/user_edit.mako')
1181 1181 def user_perms_summary(self):
1182 1182 _ = self.request.translate
1183 1183 c = self.load_default_context()
1184 1184 c.user = self.db_user
1185 1185
1186 1186 c.active = 'perms_summary'
1187 1187 c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
1188 1188
1189 1189 return self._get_template_context(c)
1190 1190
1191 1191 @LoginRequired()
1192 1192 @HasPermissionAllDecorator('hg.admin')
1193 1193 @view_config(
1194 1194 route_name='edit_user_perms_summary_json', request_method='GET',
1195 1195 renderer='json_ext')
1196 1196 def user_perms_summary_json(self):
1197 1197 self.load_default_context()
1198 1198 perm_user = self.db_user.AuthUser(ip_addr=self.request.remote_addr)
1199 1199
1200 1200 return perm_user.permissions
1201 1201
1202 def _get_user_cache_keys(self, cache_namespace_uid, keys):
1203 user_keys = []
1204 for k in sorted(keys):
1205 if k.startswith(cache_namespace_uid):
1206 user_keys.append(k)
1207 return user_keys
1208
1209 1202 @LoginRequired()
1210 1203 @HasPermissionAllDecorator('hg.admin')
1211 1204 @view_config(
1212 1205 route_name='edit_user_caches', request_method='GET',
1213 1206 renderer='rhodecode:templates/admin/users/user_edit.mako')
1214 1207 def user_caches(self):
1215 1208 _ = self.request.translate
1216 1209 c = self.load_default_context()
1217 1210 c.user = self.db_user
1218 1211
1219 1212 c.active = 'caches'
1220 1213 c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
1221 1214
1222 1215 cache_namespace_uid = 'cache_user_auth.{}'.format(self.db_user.user_id)
1223 1216 c.region = rc_cache.get_or_create_region('cache_perms', cache_namespace_uid)
1224 1217 c.backend = c.region.backend
1225 c.user_keys = self._get_user_cache_keys(
1226 cache_namespace_uid, c.region.backend.list_keys())
1218 c.user_keys = sorted(c.region.backend.list_keys(prefix=cache_namespace_uid))
1227 1219
1228 1220 return self._get_template_context(c)
1229 1221
1230 1222 @LoginRequired()
1231 1223 @HasPermissionAllDecorator('hg.admin')
1232 1224 @CSRFRequired()
1233 1225 @view_config(
1234 1226 route_name='edit_user_caches_update', request_method='POST')
1235 1227 def user_caches_update(self):
1236 1228 _ = self.request.translate
1237 1229 c = self.load_default_context()
1238 1230 c.user = self.db_user
1239 1231
1240 1232 c.active = 'caches'
1241 1233 c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
1242 1234
1243 1235 cache_namespace_uid = 'cache_user_auth.{}'.format(self.db_user.user_id)
1244 c.region = rc_cache.get_or_create_region('cache_perms', cache_namespace_uid)
1236 del_keys = rc_cache.clear_cache_namespace('cache_perms', cache_namespace_uid)
1245 1237
1246 c.user_keys = self._get_user_cache_keys(
1247 cache_namespace_uid, c.region.backend.list_keys())
1248 for k in c.user_keys:
1249 c.region.delete(k)
1250
1251 h.flash(_("Deleted {} cache keys").format(len(c.user_keys)), category='success')
1238 h.flash(_("Deleted {} cache keys").format(del_keys), category='success')
1252 1239
1253 1240 return HTTPFound(h.route_path(
1254 1241 'edit_user_caches', user_id=c.user.user_id))
Show file before | Show file after | Hide comments
@@ -1,80 +1,88 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2011-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 import os
22 22 import logging
23 23
24 24 from pyramid.httpexceptions import HTTPFound
25 25 from pyramid.view import view_config
26 26
27 27 from rhodecode.apps._base import RepoAppView
28 28 from rhodecode.lib.auth import (
29 29 LoginRequired, HasRepoPermissionAnyDecorator, CSRFRequired)
30 from rhodecode.lib import helpers as h
30 from rhodecode.lib import helpers as h, rc_cache
31 31 from rhodecode.lib import system_info
32 32 from rhodecode.model.meta import Session
33 33 from rhodecode.model.scm import ScmModel
34 34
35 35 log = logging.getLogger(__name__)
36 36
37 37
38 38 class RepoCachesView(RepoAppView):
39 39 def load_default_context(self):
40 40 c = self._get_local_tmpl_context()
41 41 return c
42 42
43 43 @LoginRequired()
44 44 @HasRepoPermissionAnyDecorator('repository.admin')
45 45 @view_config(
46 46 route_name='edit_repo_caches', request_method='GET',
47 47 renderer='rhodecode:templates/admin/repos/repo_edit.mako')
48 48 def repo_caches(self):
49 49 c = self.load_default_context()
50 50 c.active = 'caches'
51 51 cached_diffs_dir = c.rhodecode_db_repo.cached_diffs_dir
52 52 c.cached_diff_count = len(c.rhodecode_db_repo.cached_diffs())
53 53 c.cached_diff_size = 0
54 54 if os.path.isdir(cached_diffs_dir):
55 55 c.cached_diff_size = system_info.get_storage_size(cached_diffs_dir)
56 56 c.shadow_repos = c.rhodecode_db_repo.shadow_repos()
57
58 cache_namespace_uid = 'cache_repo.{}'.format(self.db_repo.repo_id)
59 c.region = rc_cache.get_or_create_region('cache_repo', cache_namespace_uid)
60 c.backend = c.region.backend
61 c.repo_keys = sorted(c.region.backend.list_keys(prefix=cache_namespace_uid))
62
57 63 return self._get_template_context(c)
58 64
59 65 @LoginRequired()
60 66 @HasRepoPermissionAnyDecorator('repository.admin')
61 67 @CSRFRequired()
62 68 @view_config(
63 69 route_name='edit_repo_caches', request_method='POST')
64 70 def repo_caches_purge(self):
65 71 _ = self.request.translate
66 72 c = self.load_default_context()
67 73 c.active = 'caches'
68 74
69 75 try:
70 76 ScmModel().mark_for_invalidation(self.db_repo_name, delete=True)
77
71 78 Session().commit()
79
72 80 h.flash(_('Cache invalidation successful'),
73 81 category='success')
74 82 except Exception:
75 83 log.exception("Exception during cache invalidation")
76 84 h.flash(_('An error occurred during cache invalidation'),
77 85 category='error')
78 86
79 87 raise HTTPFound(h.route_path(
80 88 'edit_repo_caches', repo_name=self.db_repo_name)) No newline at end of file
Show file before | Show file after | Hide comments
@@ -1,1289 +1,1278 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2011-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 import itertools
22 22 import logging
23 23 import os
24 24 import shutil
25 25 import tempfile
26 26 import collections
27 27
28 28 from pyramid.httpexceptions import HTTPNotFound, HTTPBadRequest, HTTPFound
29 29 from pyramid.view import view_config
30 30 from pyramid.renderers import render
31 31 from pyramid.response import Response
32 32
33 33 from rhodecode.apps._base import RepoAppView
34 34
35 35 from rhodecode.controllers.utils import parse_path_ref
36 from rhodecode.lib import diffs, helpers as h, caches
36 from rhodecode.lib import diffs, helpers as h, caches, rc_cache
37 37 from rhodecode.lib import audit_logger
38 38 from rhodecode.lib.exceptions import NonRelativePathError
39 39 from rhodecode.lib.codeblocks import (
40 40 filenode_as_lines_tokens, filenode_as_annotated_lines_tokens)
41 41 from rhodecode.lib.utils2 import (
42 42 convert_line_endings, detect_mode, safe_str, str2bool)
43 43 from rhodecode.lib.auth import (
44 44 LoginRequired, HasRepoPermissionAnyDecorator, CSRFRequired)
45 45 from rhodecode.lib.vcs import path as vcspath
46 46 from rhodecode.lib.vcs.backends.base import EmptyCommit
47 47 from rhodecode.lib.vcs.conf import settings
48 48 from rhodecode.lib.vcs.nodes import FileNode
49 49 from rhodecode.lib.vcs.exceptions import (
50 50 RepositoryError, CommitDoesNotExistError, EmptyRepositoryError,
51 51 ImproperArchiveTypeError, VCSError, NodeAlreadyExistsError,
52 52 NodeDoesNotExistError, CommitError, NodeError)
53 53
54 54 from rhodecode.model.scm import ScmModel
55 55 from rhodecode.model.db import Repository
56 56
57 57 log = logging.getLogger(__name__)
58 58
59 59
60 60 class RepoFilesView(RepoAppView):
61 61
62 62 @staticmethod
63 63 def adjust_file_path_for_svn(f_path, repo):
64 64 """
65 65 Computes the relative path of `f_path`.
66 66
67 67 This is mainly based on prefix matching of the recognized tags and
68 68 branches in the underlying repository.
69 69 """
70 70 tags_and_branches = itertools.chain(
71 71 repo.branches.iterkeys(),
72 72 repo.tags.iterkeys())
73 73 tags_and_branches = sorted(tags_and_branches, key=len, reverse=True)
74 74
75 75 for name in tags_and_branches:
76 76 if f_path.startswith('{}/'.format(name)):
77 77 f_path = vcspath.relpath(f_path, name)
78 78 break
79 79 return f_path
80 80
81 81 def load_default_context(self):
82 82 c = self._get_local_tmpl_context(include_app_defaults=True)
83 83 c.rhodecode_repo = self.rhodecode_vcs_repo
84 84 return c
85 85
86 86 def _ensure_not_locked(self):
87 87 _ = self.request.translate
88 88
89 89 repo = self.db_repo
90 90 if repo.enable_locking and repo.locked[0]:
91 91 h.flash(_('This repository has been locked by %s on %s')
92 92 % (h.person_by_id(repo.locked[0]),
93 93 h.format_date(h.time_to_datetime(repo.locked[1]))),
94 94 'warning')
95 95 files_url = h.route_path(
96 96 'repo_files:default_path',
97 97 repo_name=self.db_repo_name, commit_id='tip')
98 98 raise HTTPFound(files_url)
99 99
100 100 def _get_commit_and_path(self):
101 101 default_commit_id = self.db_repo.landing_rev[1]
102 102 default_f_path = '/'
103 103
104 104 commit_id = self.request.matchdict.get(
105 105 'commit_id', default_commit_id)
106 106 f_path = self._get_f_path(self.request.matchdict, default_f_path)
107 107 return commit_id, f_path
108 108
109 109 def _get_default_encoding(self, c):
110 110 enc_list = getattr(c, 'default_encodings', [])
111 111 return enc_list[0] if enc_list else 'UTF-8'
112 112
113 113 def _get_commit_or_redirect(self, commit_id, redirect_after=True):
114 114 """
115 115 This is a safe way to get commit. If an error occurs it redirects to
116 116 tip with proper message
117 117
118 118 :param commit_id: id of commit to fetch
119 119 :param redirect_after: toggle redirection
120 120 """
121 121 _ = self.request.translate
122 122
123 123 try:
124 124 return self.rhodecode_vcs_repo.get_commit(commit_id)
125 125 except EmptyRepositoryError:
126 126 if not redirect_after:
127 127 return None
128 128
129 129 _url = h.route_path(
130 130 'repo_files_add_file',
131 131 repo_name=self.db_repo_name, commit_id=0, f_path='',
132 132 _anchor='edit')
133 133
134 134 if h.HasRepoPermissionAny(
135 135 'repository.write', 'repository.admin')(self.db_repo_name):
136 136 add_new = h.link_to(
137 137 _('Click here to add a new file.'), _url, class_="alert-link")
138 138 else:
139 139 add_new = ""
140 140
141 141 h.flash(h.literal(
142 142 _('There are no files yet. %s') % add_new), category='warning')
143 143 raise HTTPFound(
144 144 h.route_path('repo_summary', repo_name=self.db_repo_name))
145 145
146 146 except (CommitDoesNotExistError, LookupError):
147 147 msg = _('No such commit exists for this repository')
148 148 h.flash(msg, category='error')
149 149 raise HTTPNotFound()
150 150 except RepositoryError as e:
151 151 h.flash(safe_str(h.escape(e)), category='error')
152 152 raise HTTPNotFound()
153 153
154 154 def _get_filenode_or_redirect(self, commit_obj, path):
155 155 """
156 156 Returns file_node, if error occurs or given path is directory,
157 157 it'll redirect to top level path
158 158 """
159 159 _ = self.request.translate
160 160
161 161 try:
162 162 file_node = commit_obj.get_node(path)
163 163 if file_node.is_dir():
164 164 raise RepositoryError('The given path is a directory')
165 165 except CommitDoesNotExistError:
166 166 log.exception('No such commit exists for this repository')
167 167 h.flash(_('No such commit exists for this repository'), category='error')
168 168 raise HTTPNotFound()
169 169 except RepositoryError as e:
170 170 log.warning('Repository error while fetching '
171 171 'filenode `%s`. Err:%s', path, e)
172 172 h.flash(safe_str(h.escape(e)), category='error')
173 173 raise HTTPNotFound()
174 174
175 175 return file_node
176 176
177 177 def _is_valid_head(self, commit_id, repo):
178 178 # check if commit is a branch identifier- basically we cannot
179 179 # create multiple heads via file editing
180 180 valid_heads = repo.branches.keys() + repo.branches.values()
181 181
182 182 if h.is_svn(repo) and not repo.is_empty():
183 183 # Note: Subversion only has one head, we add it here in case there
184 184 # is no branch matched.
185 185 valid_heads.append(repo.get_commit(commit_idx=-1).raw_id)
186 186
187 187 # check if commit is a branch name or branch hash
188 188 return commit_id in valid_heads
189 189
190 def _get_tree_cache_manager(self, namespace_type):
191 _namespace = caches.get_repo_namespace_key(
192 namespace_type, self.db_repo_name)
193 return caches.get_cache_manager('repo_cache_long', _namespace)
190 def _get_tree_at_commit(
191 self, c, commit_id, f_path, full_load=False):
192
193 repo_id = self.db_repo.repo_id
194 194
195 def _get_tree_at_commit(
196 self, c, commit_id, f_path, full_load=False, force=False):
197 def _cached_tree():
198 log.debug('Generating cached file tree for %s, %s, %s',
199 self.db_repo_name, commit_id, f_path)
195 cache_namespace_uid = 'cache_repo.{}'.format(repo_id)
196 region = rc_cache.get_or_create_region('cache_repo', cache_namespace_uid)
197
198 @region.cache_on_arguments(namespace=cache_namespace_uid)
199 def compute_file_tree(repo_id, commit_id, f_path, full_load):
200 log.debug('Generating cached file tree for repo_id: %s, %s, %s',
201 repo_id, commit_id, f_path)
200 202
201 203 c.full_load = full_load
202 204 return render(
203 205 'rhodecode:templates/files/files_browser_tree.mako',
204 206 self._get_template_context(c), self.request)
205 207
206 cache_manager = self._get_tree_cache_manager(caches.FILE_TREE)
207
208 cache_key = caches.compute_key_from_params(
209 self.db_repo_name, commit_id, f_path)
210
211 if force:
212 # we want to force recompute of caches
213 cache_manager.remove_value(cache_key)
214
215 return cache_manager.get(cache_key, createfunc=_cached_tree)
208 return compute_file_tree(self.db_repo.repo_id, commit_id, f_path, full_load)
216 209
217 210 def _get_archive_spec(self, fname):
218 211 log.debug('Detecting archive spec for: `%s`', fname)
219 212
220 213 fileformat = None
221 214 ext = None
222 215 content_type = None
223 216 for a_type, ext_data in settings.ARCHIVE_SPECS.items():
224 217 content_type, extension = ext_data
225 218
226 219 if fname.endswith(extension):
227 220 fileformat = a_type
228 221 log.debug('archive is of type: %s', fileformat)
229 222 ext = extension
230 223 break
231 224
232 225 if not fileformat:
233 226 raise ValueError()
234 227
235 228 # left over part of whole fname is the commit
236 229 commit_id = fname[:-len(ext)]
237 230
238 231 return commit_id, ext, fileformat, content_type
239 232
240 233 @LoginRequired()
241 234 @HasRepoPermissionAnyDecorator(
242 235 'repository.read', 'repository.write', 'repository.admin')
243 236 @view_config(
244 237 route_name='repo_archivefile', request_method='GET',
245 238 renderer=None)
246 239 def repo_archivefile(self):
247 240 # archive cache config
248 241 from rhodecode import CONFIG
249 242 _ = self.request.translate
250 243 self.load_default_context()
251 244
252 245 fname = self.request.matchdict['fname']
253 246 subrepos = self.request.GET.get('subrepos') == 'true'
254 247
255 248 if not self.db_repo.enable_downloads:
256 249 return Response(_('Downloads disabled'))
257 250
258 251 try:
259 252 commit_id, ext, fileformat, content_type = \
260 253 self._get_archive_spec(fname)
261 254 except ValueError:
262 255 return Response(_('Unknown archive type for: `{}`').format(
263 256 h.escape(fname)))
264 257
265 258 try:
266 259 commit = self.rhodecode_vcs_repo.get_commit(commit_id)
267 260 except CommitDoesNotExistError:
268 261 return Response(_('Unknown commit_id {}').format(
269 262 h.escape(commit_id)))
270 263 except EmptyRepositoryError:
271 264 return Response(_('Empty repository'))
272 265
273 266 archive_name = '%s-%s%s%s' % (
274 267 safe_str(self.db_repo_name.replace('/', '_')),
275 268 '-sub' if subrepos else '',
276 269 safe_str(commit.short_id), ext)
277 270
278 271 use_cached_archive = False
279 272 archive_cache_enabled = CONFIG.get(
280 273 'archive_cache_dir') and not self.request.GET.get('no_cache')
281 274
282 275 if archive_cache_enabled:
283 276 # check if we it's ok to write
284 277 if not os.path.isdir(CONFIG['archive_cache_dir']):
285 278 os.makedirs(CONFIG['archive_cache_dir'])
286 279 cached_archive_path = os.path.join(
287 280 CONFIG['archive_cache_dir'], archive_name)
288 281 if os.path.isfile(cached_archive_path):
289 282 log.debug('Found cached archive in %s', cached_archive_path)
290 283 fd, archive = None, cached_archive_path
291 284 use_cached_archive = True
292 285 else:
293 286 log.debug('Archive %s is not yet cached', archive_name)
294 287
295 288 if not use_cached_archive:
296 289 # generate new archive
297 290 fd, archive = tempfile.mkstemp()
298 291 log.debug('Creating new temp archive in %s', archive)
299 292 try:
300 293 commit.archive_repo(archive, kind=fileformat, subrepos=subrepos)
301 294 except ImproperArchiveTypeError:
302 295 return _('Unknown archive type')
303 296 if archive_cache_enabled:
304 297 # if we generated the archive and we have cache enabled
305 298 # let's use this for future
306 299 log.debug('Storing new archive in %s', cached_archive_path)
307 300 shutil.move(archive, cached_archive_path)
308 301 archive = cached_archive_path
309 302
310 303 # store download action
311 304 audit_logger.store_web(
312 305 'repo.archive.download', action_data={
313 306 'user_agent': self.request.user_agent,
314 307 'archive_name': archive_name,
315 308 'archive_spec': fname,
316 309 'archive_cached': use_cached_archive},
317 310 user=self._rhodecode_user,
318 311 repo=self.db_repo,
319 312 commit=True
320 313 )
321 314
322 315 def get_chunked_archive(archive):
323 316 with open(archive, 'rb') as stream:
324 317 while True:
325 318 data = stream.read(16 * 1024)
326 319 if not data:
327 320 if fd: # fd means we used temporary file
328 321 os.close(fd)
329 322 if not archive_cache_enabled:
330 323 log.debug('Destroying temp archive %s', archive)
331 324 os.remove(archive)
332 325 break
333 326 yield data
334 327
335 328 response = Response(app_iter=get_chunked_archive(archive))
336 329 response.content_disposition = str(
337 330 'attachment; filename=%s' % archive_name)
338 331 response.content_type = str(content_type)
339 332
340 333 return response
341 334
342 335 def _get_file_node(self, commit_id, f_path):
343 336 if commit_id not in ['', None, 'None', '0' * 12, '0' * 40]:
344 337 commit = self.rhodecode_vcs_repo.get_commit(commit_id=commit_id)
345 338 try:
346 339 node = commit.get_node(f_path)
347 340 if node.is_dir():
348 341 raise NodeError('%s path is a %s not a file'
349 342 % (node, type(node)))
350 343 except NodeDoesNotExistError:
351 344 commit = EmptyCommit(
352 345 commit_id=commit_id,
353 346 idx=commit.idx,
354 347 repo=commit.repository,
355 348 alias=commit.repository.alias,
356 349 message=commit.message,
357 350 author=commit.author,
358 351 date=commit.date)
359 352 node = FileNode(f_path, '', commit=commit)
360 353 else:
361 354 commit = EmptyCommit(
362 355 repo=self.rhodecode_vcs_repo,
363 356 alias=self.rhodecode_vcs_repo.alias)
364 357 node = FileNode(f_path, '', commit=commit)
365 358 return node
366 359
367 360 @LoginRequired()
368 361 @HasRepoPermissionAnyDecorator(
369 362 'repository.read', 'repository.write', 'repository.admin')
370 363 @view_config(
371 364 route_name='repo_files_diff', request_method='GET',
372 365 renderer=None)
373 366 def repo_files_diff(self):
374 367 c = self.load_default_context()
375 368 f_path = self._get_f_path(self.request.matchdict)
376 369 diff1 = self.request.GET.get('diff1', '')
377 370 diff2 = self.request.GET.get('diff2', '')
378 371
379 372 path1, diff1 = parse_path_ref(diff1, default_path=f_path)
380 373
381 374 ignore_whitespace = str2bool(self.request.GET.get('ignorews'))
382 375 line_context = self.request.GET.get('context', 3)
383 376
384 377 if not any((diff1, diff2)):
385 378 h.flash(
386 379 'Need query parameter "diff1" or "diff2" to generate a diff.',
387 380 category='error')
388 381 raise HTTPBadRequest()
389 382
390 383 c.action = self.request.GET.get('diff')
391 384 if c.action not in ['download', 'raw']:
392 385 compare_url = h.route_path(
393 386 'repo_compare',
394 387 repo_name=self.db_repo_name,
395 388 source_ref_type='rev',
396 389 source_ref=diff1,
397 390 target_repo=self.db_repo_name,
398 391 target_ref_type='rev',
399 392 target_ref=diff2,
400 393 _query=dict(f_path=f_path))
401 394 # redirect to new view if we render diff
402 395 raise HTTPFound(compare_url)
403 396
404 397 try:
405 398 node1 = self._get_file_node(diff1, path1)
406 399 node2 = self._get_file_node(diff2, f_path)
407 400 except (RepositoryError, NodeError):
408 401 log.exception("Exception while trying to get node from repository")
409 402 raise HTTPFound(
410 403 h.route_path('repo_files', repo_name=self.db_repo_name,
411 404 commit_id='tip', f_path=f_path))
412 405
413 406 if all(isinstance(node.commit, EmptyCommit)
414 407 for node in (node1, node2)):
415 408 raise HTTPNotFound()
416 409
417 410 c.commit_1 = node1.commit
418 411 c.commit_2 = node2.commit
419 412
420 413 if c.action == 'download':
421 414 _diff = diffs.get_gitdiff(node1, node2,
422 415 ignore_whitespace=ignore_whitespace,
423 416 context=line_context)
424 417 diff = diffs.DiffProcessor(_diff, format='gitdiff')
425 418
426 419 response = Response(self.path_filter.get_raw_patch(diff))
427 420 response.content_type = 'text/plain'
428 421 response.content_disposition = (
429 422 'attachment; filename=%s_%s_vs_%s.diff' % (f_path, diff1, diff2)
430 423 )
431 424 charset = self._get_default_encoding(c)
432 425 if charset:
433 426 response.charset = charset
434 427 return response
435 428
436 429 elif c.action == 'raw':
437 430 _diff = diffs.get_gitdiff(node1, node2,
438 431 ignore_whitespace=ignore_whitespace,
439 432 context=line_context)
440 433 diff = diffs.DiffProcessor(_diff, format='gitdiff')
441 434
442 435 response = Response(self.path_filter.get_raw_patch(diff))
443 436 response.content_type = 'text/plain'
444 437 charset = self._get_default_encoding(c)
445 438 if charset:
446 439 response.charset = charset
447 440 return response
448 441
449 442 # in case we ever end up here
450 443 raise HTTPNotFound()
451 444
452 445 @LoginRequired()
453 446 @HasRepoPermissionAnyDecorator(
454 447 'repository.read', 'repository.write', 'repository.admin')
455 448 @view_config(
456 449 route_name='repo_files_diff_2way_redirect', request_method='GET',
457 450 renderer=None)
458 451 def repo_files_diff_2way_redirect(self):
459 452 """
460 453 Kept only to make OLD links work
461 454 """
462 455 f_path = self._get_f_path_unchecked(self.request.matchdict)
463 456 diff1 = self.request.GET.get('diff1', '')
464 457 diff2 = self.request.GET.get('diff2', '')
465 458
466 459 if not any((diff1, diff2)):
467 460 h.flash(
468 461 'Need query parameter "diff1" or "diff2" to generate a diff.',
469 462 category='error')
470 463 raise HTTPBadRequest()
471 464
472 465 compare_url = h.route_path(
473 466 'repo_compare',
474 467 repo_name=self.db_repo_name,
475 468 source_ref_type='rev',
476 469 source_ref=diff1,
477 470 target_ref_type='rev',
478 471 target_ref=diff2,
479 472 _query=dict(f_path=f_path, diffmode='sideside',
480 473 target_repo=self.db_repo_name,))
481 474 raise HTTPFound(compare_url)
482 475
483 476 @LoginRequired()
484 477 @HasRepoPermissionAnyDecorator(
485 478 'repository.read', 'repository.write', 'repository.admin')
486 479 @view_config(
487 480 route_name='repo_files', request_method='GET',
488 481 renderer=None)
489 482 @view_config(
490 483 route_name='repo_files:default_path', request_method='GET',
491 484 renderer=None)
492 485 @view_config(
493 486 route_name='repo_files:default_commit', request_method='GET',
494 487 renderer=None)
495 488 @view_config(
496 489 route_name='repo_files:rendered', request_method='GET',
497 490 renderer=None)
498 491 @view_config(
499 492 route_name='repo_files:annotated', request_method='GET',
500 493 renderer=None)
501 494 def repo_files(self):
502 495 c = self.load_default_context()
503 496
504 497 view_name = getattr(self.request.matched_route, 'name', None)
505 498
506 499 c.annotate = view_name == 'repo_files:annotated'
507 500 # default is false, but .rst/.md files later are auto rendered, we can
508 501 # overwrite auto rendering by setting this GET flag
509 502 c.renderer = view_name == 'repo_files:rendered' or \
510 503 not self.request.GET.get('no-render', False)
511 504
512 505 # redirect to given commit_id from form if given
513 506 get_commit_id = self.request.GET.get('at_rev', None)
514 507 if get_commit_id:
515 508 self._get_commit_or_redirect(get_commit_id)
516 509
517 510 commit_id, f_path = self._get_commit_and_path()
518 511 c.commit = self._get_commit_or_redirect(commit_id)
519 512 c.branch = self.request.GET.get('branch', None)
520 513 c.f_path = f_path
521 514
522 515 # prev link
523 516 try:
524 517 prev_commit = c.commit.prev(c.branch)
525 518 c.prev_commit = prev_commit
526 519 c.url_prev = h.route_path(
527 520 'repo_files', repo_name=self.db_repo_name,
528 521 commit_id=prev_commit.raw_id, f_path=f_path)
529 522 if c.branch:
530 523 c.url_prev += '?branch=%s' % c.branch
531 524 except (CommitDoesNotExistError, VCSError):
532 525 c.url_prev = '#'
533 526 c.prev_commit = EmptyCommit()
534 527
535 528 # next link
536 529 try:
537 530 next_commit = c.commit.next(c.branch)
538 531 c.next_commit = next_commit
539 532 c.url_next = h.route_path(
540 533 'repo_files', repo_name=self.db_repo_name,
541 534 commit_id=next_commit.raw_id, f_path=f_path)
542 535 if c.branch:
543 536 c.url_next += '?branch=%s' % c.branch
544 537 except (CommitDoesNotExistError, VCSError):
545 538 c.url_next = '#'
546 539 c.next_commit = EmptyCommit()
547 540
548 541 # files or dirs
549 542 try:
550 543 c.file = c.commit.get_node(f_path)
551 544 c.file_author = True
552 545 c.file_tree = ''
553 546
554 547 # load file content
555 548 if c.file.is_file():
556 549 c.lf_node = c.file.get_largefile_node()
557 550
558 551 c.file_source_page = 'true'
559 552 c.file_last_commit = c.file.last_commit
560 553 if c.file.size < c.visual.cut_off_limit_diff:
561 554 if c.annotate: # annotation has precedence over renderer
562 555 c.annotated_lines = filenode_as_annotated_lines_tokens(
563 556 c.file
564 557 )
565 558 else:
566 559 c.renderer = (
567 560 c.renderer and h.renderer_from_filename(c.file.path)
568 561 )
569 562 if not c.renderer:
570 563 c.lines = filenode_as_lines_tokens(c.file)
571 564
572 565 c.on_branch_head = self._is_valid_head(
573 566 commit_id, self.rhodecode_vcs_repo)
574 567
575 568 branch = c.commit.branch if (
576 569 c.commit.branch and '/' not in c.commit.branch) else None
577 570 c.branch_or_raw_id = branch or c.commit.raw_id
578 571 c.branch_name = c.commit.branch or h.short_id(c.commit.raw_id)
579 572
580 573 author = c.file_last_commit.author
581 574 c.authors = [[
582 575 h.email(author),
583 576 h.person(author, 'username_or_name_or_email'),
584 577 1
585 578 ]]
586 579
587 580 else: # load tree content at path
588 581 c.file_source_page = 'false'
589 582 c.authors = []
590 583 # this loads a simple tree without metadata to speed things up
591 584 # later via ajax we call repo_nodetree_full and fetch whole
592 585 c.file_tree = self._get_tree_at_commit(
593 586 c, c.commit.raw_id, f_path)
594 587
595 588 except RepositoryError as e:
596 589 h.flash(safe_str(h.escape(e)), category='error')
597 590 raise HTTPNotFound()
598 591
599 592 if self.request.environ.get('HTTP_X_PJAX'):
600 593 html = render('rhodecode:templates/files/files_pjax.mako',
601 594 self._get_template_context(c), self.request)
602 595 else:
603 596 html = render('rhodecode:templates/files/files.mako',
604 597 self._get_template_context(c), self.request)
605 598 return Response(html)
606 599
607 600 @HasRepoPermissionAnyDecorator(
608 601 'repository.read', 'repository.write', 'repository.admin')
609 602 @view_config(
610 603 route_name='repo_files:annotated_previous', request_method='GET',
611 604 renderer=None)
612 605 def repo_files_annotated_previous(self):
613 606 self.load_default_context()
614 607
615 608 commit_id, f_path = self._get_commit_and_path()
616 609 commit = self._get_commit_or_redirect(commit_id)
617 610 prev_commit_id = commit.raw_id
618 611 line_anchor = self.request.GET.get('line_anchor')
619 612 is_file = False
620 613 try:
621 614 _file = commit.get_node(f_path)
622 615 is_file = _file.is_file()
623 616 except (NodeDoesNotExistError, CommitDoesNotExistError, VCSError):
624 617 pass
625 618
626 619 if is_file:
627 620 history = commit.get_file_history(f_path)
628 621 prev_commit_id = history[1].raw_id \
629 622 if len(history) > 1 else prev_commit_id
630 623 prev_url = h.route_path(
631 624 'repo_files:annotated', repo_name=self.db_repo_name,
632 625 commit_id=prev_commit_id, f_path=f_path,
633 626 _anchor='L{}'.format(line_anchor))
634 627
635 628 raise HTTPFound(prev_url)
636 629
637 630 @LoginRequired()
638 631 @HasRepoPermissionAnyDecorator(
639 632 'repository.read', 'repository.write', 'repository.admin')
640 633 @view_config(
641 634 route_name='repo_nodetree_full', request_method='GET',
642 635 renderer=None, xhr=True)
643 636 @view_config(
644 637 route_name='repo_nodetree_full:default_path', request_method='GET',
645 638 renderer=None, xhr=True)
646 639 def repo_nodetree_full(self):
647 640 """
648 641 Returns rendered html of file tree that contains commit date,
649 642 author, commit_id for the specified combination of
650 643 repo, commit_id and file path
651 644 """
652 645 c = self.load_default_context()
653 646
654 647 commit_id, f_path = self._get_commit_and_path()
655 648 commit = self._get_commit_or_redirect(commit_id)
656 649 try:
657 650 dir_node = commit.get_node(f_path)
658 651 except RepositoryError as e:
659 652 return Response('error: {}'.format(h.escape(safe_str(e))))
660 653
661 654 if dir_node.is_file():
662 655 return Response('')
663 656
664 657 c.file = dir_node
665 658 c.commit = commit
666 659
667 # using force=True here, make a little trick. We flush the cache and
668 # compute it using the same key as without previous full_load, so now
669 # the fully loaded tree is now returned instead of partial,
670 # and we store this in caches
671 660 html = self._get_tree_at_commit(
672 c, commit.raw_id, dir_node.path, full_load=True, force=True)
661 c, commit.raw_id, dir_node.path, full_load=True)
673 662
674 663 return Response(html)
675 664
676 665 def _get_attachement_disposition(self, f_path):
677 666 return 'attachment; filename=%s' % \
678 667 safe_str(f_path.split(Repository.NAME_SEP)[-1])
679 668
680 669 @LoginRequired()
681 670 @HasRepoPermissionAnyDecorator(
682 671 'repository.read', 'repository.write', 'repository.admin')
683 672 @view_config(
684 673 route_name='repo_file_raw', request_method='GET',
685 674 renderer=None)
686 675 def repo_file_raw(self):
687 676 """
688 677 Action for show as raw, some mimetypes are "rendered",
689 678 those include images, icons.
690 679 """
691 680 c = self.load_default_context()
692 681
693 682 commit_id, f_path = self._get_commit_and_path()
694 683 commit = self._get_commit_or_redirect(commit_id)
695 684 file_node = self._get_filenode_or_redirect(commit, f_path)
696 685
697 686 raw_mimetype_mapping = {
698 687 # map original mimetype to a mimetype used for "show as raw"
699 688 # you can also provide a content-disposition to override the
700 689 # default "attachment" disposition.
701 690 # orig_type: (new_type, new_dispo)
702 691
703 692 # show images inline:
704 693 # Do not re-add SVG: it is unsafe and permits XSS attacks. One can
705 694 # for example render an SVG with javascript inside or even render
706 695 # HTML.
707 696 'image/x-icon': ('image/x-icon', 'inline'),
708 697 'image/png': ('image/png', 'inline'),
709 698 'image/gif': ('image/gif', 'inline'),
710 699 'image/jpeg': ('image/jpeg', 'inline'),
711 700 'application/pdf': ('application/pdf', 'inline'),
712 701 }
713 702
714 703 mimetype = file_node.mimetype
715 704 try:
716 705 mimetype, disposition = raw_mimetype_mapping[mimetype]
717 706 except KeyError:
718 707 # we don't know anything special about this, handle it safely
719 708 if file_node.is_binary:
720 709 # do same as download raw for binary files
721 710 mimetype, disposition = 'application/octet-stream', 'attachment'
722 711 else:
723 712 # do not just use the original mimetype, but force text/plain,
724 713 # otherwise it would serve text/html and that might be unsafe.
725 714 # Note: underlying vcs library fakes text/plain mimetype if the
726 715 # mimetype can not be determined and it thinks it is not
727 716 # binary.This might lead to erroneous text display in some
728 717 # cases, but helps in other cases, like with text files
729 718 # without extension.
730 719 mimetype, disposition = 'text/plain', 'inline'
731 720
732 721 if disposition == 'attachment':
733 722 disposition = self._get_attachement_disposition(f_path)
734 723
735 724 def stream_node():
736 725 yield file_node.raw_bytes
737 726
738 727 response = Response(app_iter=stream_node())
739 728 response.content_disposition = disposition
740 729 response.content_type = mimetype
741 730
742 731 charset = self._get_default_encoding(c)
743 732 if charset:
744 733 response.charset = charset
745 734
746 735 return response
747 736
748 737 @LoginRequired()
749 738 @HasRepoPermissionAnyDecorator(
750 739 'repository.read', 'repository.write', 'repository.admin')
751 740 @view_config(
752 741 route_name='repo_file_download', request_method='GET',
753 742 renderer=None)
754 743 @view_config(
755 744 route_name='repo_file_download:legacy', request_method='GET',
756 745 renderer=None)
757 746 def repo_file_download(self):
758 747 c = self.load_default_context()
759 748
760 749 commit_id, f_path = self._get_commit_and_path()
761 750 commit = self._get_commit_or_redirect(commit_id)
762 751 file_node = self._get_filenode_or_redirect(commit, f_path)
763 752
764 753 if self.request.GET.get('lf'):
765 754 # only if lf get flag is passed, we download this file
766 755 # as LFS/Largefile
767 756 lf_node = file_node.get_largefile_node()
768 757 if lf_node:
769 758 # overwrite our pointer with the REAL large-file
770 759 file_node = lf_node
771 760
772 761 disposition = self._get_attachement_disposition(f_path)
773 762
774 763 def stream_node():
775 764 yield file_node.raw_bytes
776 765
777 766 response = Response(app_iter=stream_node())
778 767 response.content_disposition = disposition
779 768 response.content_type = file_node.mimetype
780 769
781 770 charset = self._get_default_encoding(c)
782 771 if charset:
783 772 response.charset = charset
784 773
785 774 return response
786 775
787 def _get_nodelist_at_commit(self, repo_name, commit_id, f_path):
788 def _cached_nodes():
789 log.debug('Generating cached nodelist for %s, %s, %s',
790 repo_name, commit_id, f_path)
776 def _get_nodelist_at_commit(self, repo_name, repo_id, commit_id, f_path):
777
778 cache_namespace_uid = 'cache_repo.{}'.format(repo_id)
779 region = rc_cache.get_or_create_region('cache_repo', cache_namespace_uid)
780
781 @region.cache_on_arguments(namespace=cache_namespace_uid)
782 def compute_file_search(repo_id, commit_id, f_path):
783 log.debug('Generating cached nodelist for repo_id:%s, %s, %s',
784 repo_id, commit_id, f_path)
791 785 try:
792 786 _d, _f = ScmModel().get_nodes(
793 787 repo_name, commit_id, f_path, flat=False)
794 788 except (RepositoryError, CommitDoesNotExistError, Exception) as e:
795 789 log.exception(safe_str(e))
796 790 h.flash(safe_str(h.escape(e)), category='error')
797 791 raise HTTPFound(h.route_path(
798 792 'repo_files', repo_name=self.db_repo_name,
799 793 commit_id='tip', f_path='/'))
800 794 return _d + _f
801 795
802 cache_manager = self._get_tree_cache_manager(
803 caches.FILE_SEARCH_TREE_META)
804
805 cache_key = caches.compute_key_from_params(
806 repo_name, commit_id, f_path)
807 return cache_manager.get(cache_key, createfunc=_cached_nodes)
796 return compute_file_search(self.db_repo.repo_id, commit_id, f_path)
808 797
809 798 @LoginRequired()
810 799 @HasRepoPermissionAnyDecorator(
811 800 'repository.read', 'repository.write', 'repository.admin')
812 801 @view_config(
813 802 route_name='repo_files_nodelist', request_method='GET',
814 803 renderer='json_ext', xhr=True)
815 804 def repo_nodelist(self):
816 805 self.load_default_context()
817 806
818 807 commit_id, f_path = self._get_commit_and_path()
819 808 commit = self._get_commit_or_redirect(commit_id)
820 809
821 810 metadata = self._get_nodelist_at_commit(
822 self.db_repo_name, commit.raw_id, f_path)
811 self.db_repo_name, self.db_repo.repo_id, commit.raw_id, f_path)
823 812 return {'nodes': metadata}
824 813
825 814 def _create_references(
826 815 self, branches_or_tags, symbolic_reference, f_path):
827 816 items = []
828 817 for name, commit_id in branches_or_tags.items():
829 818 sym_ref = symbolic_reference(commit_id, name, f_path)
830 819 items.append((sym_ref, name))
831 820 return items
832 821
833 822 def _symbolic_reference(self, commit_id, name, f_path):
834 823 return commit_id
835 824
836 825 def _symbolic_reference_svn(self, commit_id, name, f_path):
837 826 new_f_path = vcspath.join(name, f_path)
838 827 return u'%s@%s' % (new_f_path, commit_id)
839 828
840 829 def _get_node_history(self, commit_obj, f_path, commits=None):
841 830 """
842 831 get commit history for given node
843 832
844 833 :param commit_obj: commit to calculate history
845 834 :param f_path: path for node to calculate history for
846 835 :param commits: if passed don't calculate history and take
847 836 commits defined in this list
848 837 """
849 838 _ = self.request.translate
850 839
851 840 # calculate history based on tip
852 841 tip = self.rhodecode_vcs_repo.get_commit()
853 842 if commits is None:
854 843 pre_load = ["author", "branch"]
855 844 try:
856 845 commits = tip.get_file_history(f_path, pre_load=pre_load)
857 846 except (NodeDoesNotExistError, CommitError):
858 847 # this node is not present at tip!
859 848 commits = commit_obj.get_file_history(f_path, pre_load=pre_load)
860 849
861 850 history = []
862 851 commits_group = ([], _("Changesets"))
863 852 for commit in commits:
864 853 branch = ' (%s)' % commit.branch if commit.branch else ''
865 854 n_desc = 'r%s:%s%s' % (commit.idx, commit.short_id, branch)
866 855 commits_group[0].append((commit.raw_id, n_desc,))
867 856 history.append(commits_group)
868 857
869 858 symbolic_reference = self._symbolic_reference
870 859
871 860 if self.rhodecode_vcs_repo.alias == 'svn':
872 861 adjusted_f_path = RepoFilesView.adjust_file_path_for_svn(
873 862 f_path, self.rhodecode_vcs_repo)
874 863 if adjusted_f_path != f_path:
875 864 log.debug(
876 865 'Recognized svn tag or branch in file "%s", using svn '
877 866 'specific symbolic references', f_path)
878 867 f_path = adjusted_f_path
879 868 symbolic_reference = self._symbolic_reference_svn
880 869
881 870 branches = self._create_references(
882 871 self.rhodecode_vcs_repo.branches, symbolic_reference, f_path)
883 872 branches_group = (branches, _("Branches"))
884 873
885 874 tags = self._create_references(
886 875 self.rhodecode_vcs_repo.tags, symbolic_reference, f_path)
887 876 tags_group = (tags, _("Tags"))
888 877
889 878 history.append(branches_group)
890 879 history.append(tags_group)
891 880
892 881 return history, commits
893 882
894 883 @LoginRequired()
895 884 @HasRepoPermissionAnyDecorator(
896 885 'repository.read', 'repository.write', 'repository.admin')
897 886 @view_config(
898 887 route_name='repo_file_history', request_method='GET',
899 888 renderer='json_ext')
900 889 def repo_file_history(self):
901 890 self.load_default_context()
902 891
903 892 commit_id, f_path = self._get_commit_and_path()
904 893 commit = self._get_commit_or_redirect(commit_id)
905 894 file_node = self._get_filenode_or_redirect(commit, f_path)
906 895
907 896 if file_node.is_file():
908 897 file_history, _hist = self._get_node_history(commit, f_path)
909 898
910 899 res = []
911 900 for obj in file_history:
912 901 res.append({
913 902 'text': obj[1],
914 903 'children': [{'id': o[0], 'text': o[1]} for o in obj[0]]
915 904 })
916 905
917 906 data = {
918 907 'more': False,
919 908 'results': res
920 909 }
921 910 return data
922 911
923 912 log.warning('Cannot fetch history for directory')
924 913 raise HTTPBadRequest()
925 914
926 915 @LoginRequired()
927 916 @HasRepoPermissionAnyDecorator(
928 917 'repository.read', 'repository.write', 'repository.admin')
929 918 @view_config(
930 919 route_name='repo_file_authors', request_method='GET',
931 920 renderer='rhodecode:templates/files/file_authors_box.mako')
932 921 def repo_file_authors(self):
933 922 c = self.load_default_context()
934 923
935 924 commit_id, f_path = self._get_commit_and_path()
936 925 commit = self._get_commit_or_redirect(commit_id)
937 926 file_node = self._get_filenode_or_redirect(commit, f_path)
938 927
939 928 if not file_node.is_file():
940 929 raise HTTPBadRequest()
941 930
942 931 c.file_last_commit = file_node.last_commit
943 932 if self.request.GET.get('annotate') == '1':
944 933 # use _hist from annotation if annotation mode is on
945 934 commit_ids = set(x[1] for x in file_node.annotate)
946 935 _hist = (
947 936 self.rhodecode_vcs_repo.get_commit(commit_id)
948 937 for commit_id in commit_ids)
949 938 else:
950 939 _f_history, _hist = self._get_node_history(commit, f_path)
951 940 c.file_author = False
952 941
953 942 unique = collections.OrderedDict()
954 943 for commit in _hist:
955 944 author = commit.author
956 945 if author not in unique:
957 946 unique[commit.author] = [
958 947 h.email(author),
959 948 h.person(author, 'username_or_name_or_email'),
960 949 1 # counter
961 950 ]
962 951
963 952 else:
964 953 # increase counter
965 954 unique[commit.author][2] += 1
966 955
967 956 c.authors = [val for val in unique.values()]
968 957
969 958 return self._get_template_context(c)
970 959
971 960 @LoginRequired()
972 961 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
973 962 @view_config(
974 963 route_name='repo_files_remove_file', request_method='GET',
975 964 renderer='rhodecode:templates/files/files_delete.mako')
976 965 def repo_files_remove_file(self):
977 966 _ = self.request.translate
978 967 c = self.load_default_context()
979 968 commit_id, f_path = self._get_commit_and_path()
980 969
981 970 self._ensure_not_locked()
982 971
983 972 if not self._is_valid_head(commit_id, self.rhodecode_vcs_repo):
984 973 h.flash(_('You can only delete files with commit '
985 974 'being a valid branch '), category='warning')
986 975 raise HTTPFound(
987 976 h.route_path('repo_files',
988 977 repo_name=self.db_repo_name, commit_id='tip',
989 978 f_path=f_path))
990 979
991 980 c.commit = self._get_commit_or_redirect(commit_id)
992 981 c.file = self._get_filenode_or_redirect(c.commit, f_path)
993 982
994 983 c.default_message = _(
995 984 'Deleted file {} via RhodeCode Enterprise').format(f_path)
996 985 c.f_path = f_path
997 986
998 987 return self._get_template_context(c)
999 988
1000 989 @LoginRequired()
1001 990 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
1002 991 @CSRFRequired()
1003 992 @view_config(
1004 993 route_name='repo_files_delete_file', request_method='POST',
1005 994 renderer=None)
1006 995 def repo_files_delete_file(self):
1007 996 _ = self.request.translate
1008 997
1009 998 c = self.load_default_context()
1010 999 commit_id, f_path = self._get_commit_and_path()
1011 1000
1012 1001 self._ensure_not_locked()
1013 1002
1014 1003 if not self._is_valid_head(commit_id, self.rhodecode_vcs_repo):
1015 1004 h.flash(_('You can only delete files with commit '
1016 1005 'being a valid branch '), category='warning')
1017 1006 raise HTTPFound(
1018 1007 h.route_path('repo_files',
1019 1008 repo_name=self.db_repo_name, commit_id='tip',
1020 1009 f_path=f_path))
1021 1010
1022 1011 c.commit = self._get_commit_or_redirect(commit_id)
1023 1012 c.file = self._get_filenode_or_redirect(c.commit, f_path)
1024 1013
1025 1014 c.default_message = _(
1026 1015 'Deleted file {} via RhodeCode Enterprise').format(f_path)
1027 1016 c.f_path = f_path
1028 1017 node_path = f_path
1029 1018 author = self._rhodecode_db_user.full_contact
1030 1019 message = self.request.POST.get('message') or c.default_message
1031 1020 try:
1032 1021 nodes = {
1033 1022 node_path: {
1034 1023 'content': ''
1035 1024 }
1036 1025 }
1037 1026 ScmModel().delete_nodes(
1038 1027 user=self._rhodecode_db_user.user_id, repo=self.db_repo,
1039 1028 message=message,
1040 1029 nodes=nodes,
1041 1030 parent_commit=c.commit,
1042 1031 author=author,
1043 1032 )
1044 1033
1045 1034 h.flash(
1046 1035 _('Successfully deleted file `{}`').format(
1047 1036 h.escape(f_path)), category='success')
1048 1037 except Exception:
1049 1038 log.exception('Error during commit operation')
1050 1039 h.flash(_('Error occurred during commit'), category='error')
1051 1040 raise HTTPFound(
1052 1041 h.route_path('repo_commit', repo_name=self.db_repo_name,
1053 1042 commit_id='tip'))
1054 1043
1055 1044 @LoginRequired()
1056 1045 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
1057 1046 @view_config(
1058 1047 route_name='repo_files_edit_file', request_method='GET',
1059 1048 renderer='rhodecode:templates/files/files_edit.mako')
1060 1049 def repo_files_edit_file(self):
1061 1050 _ = self.request.translate
1062 1051 c = self.load_default_context()
1063 1052 commit_id, f_path = self._get_commit_and_path()
1064 1053
1065 1054 self._ensure_not_locked()
1066 1055
1067 1056 if not self._is_valid_head(commit_id, self.rhodecode_vcs_repo):
1068 1057 h.flash(_('You can only edit files with commit '
1069 1058 'being a valid branch '), category='warning')
1070 1059 raise HTTPFound(
1071 1060 h.route_path('repo_files',
1072 1061 repo_name=self.db_repo_name, commit_id='tip',
1073 1062 f_path=f_path))
1074 1063
1075 1064 c.commit = self._get_commit_or_redirect(commit_id)
1076 1065 c.file = self._get_filenode_or_redirect(c.commit, f_path)
1077 1066
1078 1067 if c.file.is_binary:
1079 1068 files_url = h.route_path(
1080 1069 'repo_files',
1081 1070 repo_name=self.db_repo_name,
1082 1071 commit_id=c.commit.raw_id, f_path=f_path)
1083 1072 raise HTTPFound(files_url)
1084 1073
1085 1074 c.default_message = _(
1086 1075 'Edited file {} via RhodeCode Enterprise').format(f_path)
1087 1076 c.f_path = f_path
1088 1077
1089 1078 return self._get_template_context(c)
1090 1079
1091 1080 @LoginRequired()
1092 1081 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
1093 1082 @CSRFRequired()
1094 1083 @view_config(
1095 1084 route_name='repo_files_update_file', request_method='POST',
1096 1085 renderer=None)
1097 1086 def repo_files_update_file(self):
1098 1087 _ = self.request.translate
1099 1088 c = self.load_default_context()
1100 1089 commit_id, f_path = self._get_commit_and_path()
1101 1090
1102 1091 self._ensure_not_locked()
1103 1092
1104 1093 if not self._is_valid_head(commit_id, self.rhodecode_vcs_repo):
1105 1094 h.flash(_('You can only edit files with commit '
1106 1095 'being a valid branch '), category='warning')
1107 1096 raise HTTPFound(
1108 1097 h.route_path('repo_files',
1109 1098 repo_name=self.db_repo_name, commit_id='tip',
1110 1099 f_path=f_path))
1111 1100
1112 1101 c.commit = self._get_commit_or_redirect(commit_id)
1113 1102 c.file = self._get_filenode_or_redirect(c.commit, f_path)
1114 1103
1115 1104 if c.file.is_binary:
1116 1105 raise HTTPFound(
1117 1106 h.route_path('repo_files',
1118 1107 repo_name=self.db_repo_name,
1119 1108 commit_id=c.commit.raw_id,
1120 1109 f_path=f_path))
1121 1110
1122 1111 c.default_message = _(
1123 1112 'Edited file {} via RhodeCode Enterprise').format(f_path)
1124 1113 c.f_path = f_path
1125 1114 old_content = c.file.content
1126 1115 sl = old_content.splitlines(1)
1127 1116 first_line = sl[0] if sl else ''
1128 1117
1129 1118 r_post = self.request.POST
1130 1119 # modes: 0 - Unix, 1 - Mac, 2 - DOS
1131 1120 mode = detect_mode(first_line, 0)
1132 1121 content = convert_line_endings(r_post.get('content', ''), mode)
1133 1122
1134 1123 message = r_post.get('message') or c.default_message
1135 1124 org_f_path = c.file.unicode_path
1136 1125 filename = r_post['filename']
1137 1126 org_filename = c.file.name
1138 1127
1139 1128 if content == old_content and filename == org_filename:
1140 1129 h.flash(_('No changes'), category='warning')
1141 1130 raise HTTPFound(
1142 1131 h.route_path('repo_commit', repo_name=self.db_repo_name,
1143 1132 commit_id='tip'))
1144 1133 try:
1145 1134 mapping = {
1146 1135 org_f_path: {
1147 1136 'org_filename': org_f_path,
1148 1137 'filename': os.path.join(c.file.dir_path, filename),
1149 1138 'content': content,
1150 1139 'lexer': '',
1151 1140 'op': 'mod',
1152 1141 }
1153 1142 }
1154 1143
1155 1144 ScmModel().update_nodes(
1156 1145 user=self._rhodecode_db_user.user_id,
1157 1146 repo=self.db_repo,
1158 1147 message=message,
1159 1148 nodes=mapping,
1160 1149 parent_commit=c.commit,
1161 1150 )
1162 1151
1163 1152 h.flash(
1164 1153 _('Successfully committed changes to file `{}`').format(
1165 1154 h.escape(f_path)), category='success')
1166 1155 except Exception:
1167 1156 log.exception('Error occurred during commit')
1168 1157 h.flash(_('Error occurred during commit'), category='error')
1169 1158 raise HTTPFound(
1170 1159 h.route_path('repo_commit', repo_name=self.db_repo_name,
1171 1160 commit_id='tip'))
1172 1161
1173 1162 @LoginRequired()
1174 1163 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
1175 1164 @view_config(
1176 1165 route_name='repo_files_add_file', request_method='GET',
1177 1166 renderer='rhodecode:templates/files/files_add.mako')
1178 1167 def repo_files_add_file(self):
1179 1168 _ = self.request.translate
1180 1169 c = self.load_default_context()
1181 1170 commit_id, f_path = self._get_commit_and_path()
1182 1171
1183 1172 self._ensure_not_locked()
1184 1173
1185 1174 c.commit = self._get_commit_or_redirect(commit_id, redirect_after=False)
1186 1175 if c.commit is None:
1187 1176 c.commit = EmptyCommit(alias=self.rhodecode_vcs_repo.alias)
1188 1177 c.default_message = (_('Added file via RhodeCode Enterprise'))
1189 1178 c.f_path = f_path.lstrip('/') # ensure not relative path
1190 1179
1191 1180 return self._get_template_context(c)
1192 1181
1193 1182 @LoginRequired()
1194 1183 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
1195 1184 @CSRFRequired()
1196 1185 @view_config(
1197 1186 route_name='repo_files_create_file', request_method='POST',
1198 1187 renderer=None)
1199 1188 def repo_files_create_file(self):
1200 1189 _ = self.request.translate
1201 1190 c = self.load_default_context()
1202 1191 commit_id, f_path = self._get_commit_and_path()
1203 1192
1204 1193 self._ensure_not_locked()
1205 1194
1206 1195 r_post = self.request.POST
1207 1196
1208 1197 c.commit = self._get_commit_or_redirect(
1209 1198 commit_id, redirect_after=False)
1210 1199 if c.commit is None:
1211 1200 c.commit = EmptyCommit(alias=self.rhodecode_vcs_repo.alias)
1212 1201 c.default_message = (_('Added file via RhodeCode Enterprise'))
1213 1202 c.f_path = f_path
1214 1203 unix_mode = 0
1215 1204 content = convert_line_endings(r_post.get('content', ''), unix_mode)
1216 1205
1217 1206 message = r_post.get('message') or c.default_message
1218 1207 filename = r_post.get('filename')
1219 1208 location = r_post.get('location', '') # dir location
1220 1209 file_obj = r_post.get('upload_file', None)
1221 1210
1222 1211 if file_obj is not None and hasattr(file_obj, 'filename'):
1223 1212 filename = r_post.get('filename_upload')
1224 1213 content = file_obj.file
1225 1214
1226 1215 if hasattr(content, 'file'):
1227 1216 # non posix systems store real file under file attr
1228 1217 content = content.file
1229 1218
1230 1219 if self.rhodecode_vcs_repo.is_empty:
1231 1220 default_redirect_url = h.route_path(
1232 1221 'repo_summary', repo_name=self.db_repo_name)
1233 1222 else:
1234 1223 default_redirect_url = h.route_path(
1235 1224 'repo_commit', repo_name=self.db_repo_name, commit_id='tip')
1236 1225
1237 1226 # If there's no commit, redirect to repo summary
1238 1227 if type(c.commit) is EmptyCommit:
1239 1228 redirect_url = h.route_path(
1240 1229 'repo_summary', repo_name=self.db_repo_name)
1241 1230 else:
1242 1231 redirect_url = default_redirect_url
1243 1232
1244 1233 if not filename:
1245 1234 h.flash(_('No filename'), category='warning')
1246 1235 raise HTTPFound(redirect_url)
1247 1236
1248 1237 # extract the location from filename,
1249 1238 # allows using foo/bar.txt syntax to create subdirectories
1250 1239 subdir_loc = filename.rsplit('/', 1)
1251 1240 if len(subdir_loc) == 2:
1252 1241 location = os.path.join(location, subdir_loc[0])
1253 1242
1254 1243 # strip all crap out of file, just leave the basename
1255 1244 filename = os.path.basename(filename)
1256 1245 node_path = os.path.join(location, filename)
1257 1246 author = self._rhodecode_db_user.full_contact
1258 1247
1259 1248 try:
1260 1249 nodes = {
1261 1250 node_path: {
1262 1251 'content': content
1263 1252 }
1264 1253 }
1265 1254 ScmModel().create_nodes(
1266 1255 user=self._rhodecode_db_user.user_id,
1267 1256 repo=self.db_repo,
1268 1257 message=message,
1269 1258 nodes=nodes,
1270 1259 parent_commit=c.commit,
1271 1260 author=author,
1272 1261 )
1273 1262
1274 1263 h.flash(
1275 1264 _('Successfully committed new file `{}`').format(
1276 1265 h.escape(node_path)), category='success')
1277 1266 except NonRelativePathError:
1278 1267 log.exception('Non Relative path found')
1279 1268 h.flash(_(
1280 1269 'The location specified must be a relative path and must not '
1281 1270 'contain .. in the path'), category='warning')
1282 1271 raise HTTPFound(default_redirect_url)
1283 1272 except (NodeError, NodeAlreadyExistsError) as e:
1284 1273 h.flash(_(h.escape(e)), category='error')
1285 1274 except Exception:
1286 1275 log.exception('Error occurred during commit')
1287 1276 h.flash(_('Error occurred during commit'), category='error')
1288 1277
1289 1278 raise HTTPFound(default_redirect_url)
Show file before | Show file after | Hide comments
@@ -1,372 +1,369 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2011-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 import logging
22 22 import string
23 23
24 24 from pyramid.view import view_config
25 25 from beaker.cache import cache_region
26 26
27 27 from rhodecode.controllers import utils
28 28 from rhodecode.apps._base import RepoAppView
29 29 from rhodecode.config.conf import (LANGUAGES_EXTENSIONS_MAP)
30 from rhodecode.lib import caches, helpers as h
31 from rhodecode.lib.helpers import RepoPage
30 from rhodecode.lib import helpers as h, rc_cache
32 31 from rhodecode.lib.utils2 import safe_str, safe_int
33 32 from rhodecode.lib.auth import LoginRequired, HasRepoPermissionAnyDecorator
34 33 from rhodecode.lib.markup_renderer import MarkupRenderer, relative_links
35 34 from rhodecode.lib.ext_json import json
36 35 from rhodecode.lib.vcs.backends.base import EmptyCommit
37 from rhodecode.lib.vcs.exceptions import CommitError, EmptyRepositoryError, \
38 CommitDoesNotExistError
36 from rhodecode.lib.vcs.exceptions import (
37 CommitError, EmptyRepositoryError, CommitDoesNotExistError)
39 38 from rhodecode.model.db import Statistics, CacheKey, User
40 39 from rhodecode.model.meta import Session
41 40 from rhodecode.model.repo import ReadmeFinder
42 41 from rhodecode.model.scm import ScmModel
43 42
44 43 log = logging.getLogger(__name__)
45 44
46 45
47 46 class RepoSummaryView(RepoAppView):
48 47
49 48 def load_default_context(self):
50 49 c = self._get_local_tmpl_context(include_app_defaults=True)
51 50 c.rhodecode_repo = None
52 51 if not c.repository_requirements_missing:
53 52 c.rhodecode_repo = self.rhodecode_vcs_repo
54 53 return c
55 54
56 55 def _get_readme_data(self, db_repo, default_renderer):
57 56 repo_name = db_repo.repo_name
58 57 log.debug('Looking for README file')
59 58
60 59 @cache_region('long_term')
61 60 def _generate_readme(cache_key):
62 61 readme_data = None
63 62 readme_node = None
64 63 readme_filename = None
65 64 commit = self._get_landing_commit_or_none(db_repo)
66 65 if commit:
67 66 log.debug("Searching for a README file.")
68 67 readme_node = ReadmeFinder(default_renderer).search(commit)
69 68 if readme_node:
70 69 relative_urls = {
71 70 'raw': h.route_path(
72 71 'repo_file_raw', repo_name=repo_name,
73 72 commit_id=commit.raw_id, f_path=readme_node.path),
74 73 'standard': h.route_path(
75 74 'repo_files', repo_name=repo_name,
76 75 commit_id=commit.raw_id, f_path=readme_node.path),
77 76 }
78 77 readme_data = self._render_readme_or_none(
79 78 commit, readme_node, relative_urls)
80 79 readme_filename = readme_node.path
81 80 return readme_data, readme_filename
82 81
83 82 invalidator_context = CacheKey.repo_context_cache(
84 83 _generate_readme, repo_name, CacheKey.CACHE_TYPE_README)
85 84
86 85 with invalidator_context as context:
87 86 context.invalidate()
88 87 computed = context.compute()
89 88
90 89 return computed
91 90
92 91 def _get_landing_commit_or_none(self, db_repo):
93 92 log.debug("Getting the landing commit.")
94 93 try:
95 94 commit = db_repo.get_landing_commit()
96 95 if not isinstance(commit, EmptyCommit):
97 96 return commit
98 97 else:
99 98 log.debug("Repository is empty, no README to render.")
100 99 except CommitError:
101 100 log.exception(
102 101 "Problem getting commit when trying to render the README.")
103 102
104 103 def _render_readme_or_none(self, commit, readme_node, relative_urls):
105 104 log.debug(
106 105 'Found README file `%s` rendering...', readme_node.path)
107 106 renderer = MarkupRenderer()
108 107 try:
109 108 html_source = renderer.render(
110 109 readme_node.content, filename=readme_node.path)
111 110 if relative_urls:
112 111 return relative_links(html_source, relative_urls)
113 112 return html_source
114 113 except Exception:
115 114 log.exception(
116 115 "Exception while trying to render the README")
117 116
118 117 def _load_commits_context(self, c):
119 118 p = safe_int(self.request.GET.get('page'), 1)
120 119 size = safe_int(self.request.GET.get('size'), 10)
121 120
122 121 def url_generator(**kw):
123 122 query_params = {
124 123 'size': size
125 124 }
126 125 query_params.update(kw)
127 126 return h.route_path(
128 127 'repo_summary_commits',
129 128 repo_name=c.rhodecode_db_repo.repo_name, _query=query_params)
130 129
131 130 pre_load = ['author', 'branch', 'date', 'message']
132 131 try:
133 132 collection = self.rhodecode_vcs_repo.get_commits(pre_load=pre_load)
134 133 except EmptyRepositoryError:
135 134 collection = self.rhodecode_vcs_repo
136 135
137 c.repo_commits = RepoPage(
136 c.repo_commits = h.RepoPage(
138 137 collection, page=p, items_per_page=size, url=url_generator)
139 138 page_ids = [x.raw_id for x in c.repo_commits]
140 139 c.comments = self.db_repo.get_comments(page_ids)
141 140 c.statuses = self.db_repo.statuses(page_ids)
142 141
143 142 @LoginRequired()
144 143 @HasRepoPermissionAnyDecorator(
145 144 'repository.read', 'repository.write', 'repository.admin')
146 145 @view_config(
147 146 route_name='repo_summary_commits', request_method='GET',
148 147 renderer='rhodecode:templates/summary/summary_commits.mako')
149 148 def summary_commits(self):
150 149 c = self.load_default_context()
151 150 self._load_commits_context(c)
152 151 return self._get_template_context(c)
153 152
154 153 @LoginRequired()
155 154 @HasRepoPermissionAnyDecorator(
156 155 'repository.read', 'repository.write', 'repository.admin')
157 156 @view_config(
158 157 route_name='repo_summary', request_method='GET',
159 158 renderer='rhodecode:templates/summary/summary.mako')
160 159 @view_config(
161 160 route_name='repo_summary_slash', request_method='GET',
162 161 renderer='rhodecode:templates/summary/summary.mako')
163 162 @view_config(
164 163 route_name='repo_summary_explicit', request_method='GET',
165 164 renderer='rhodecode:templates/summary/summary.mako')
166 165 def summary(self):
167 166 c = self.load_default_context()
168 167
169 168 # Prepare the clone URL
170 169 username = ''
171 170 if self._rhodecode_user.username != User.DEFAULT_USER:
172 171 username = safe_str(self._rhodecode_user.username)
173 172
174 173 _def_clone_uri = _def_clone_uri_id = c.clone_uri_tmpl
175 174 _def_clone_uri_ssh = c.clone_uri_ssh_tmpl
176 175
177 176 if '{repo}' in _def_clone_uri:
178 177 _def_clone_uri_id = _def_clone_uri.replace(
179 178 '{repo}', '_{repoid}')
180 179 elif '{repoid}' in _def_clone_uri:
181 180 _def_clone_uri_id = _def_clone_uri.replace(
182 181 '_{repoid}', '{repo}')
183 182
184 183 c.clone_repo_url = self.db_repo.clone_url(
185 184 user=username, uri_tmpl=_def_clone_uri)
186 185 c.clone_repo_url_id = self.db_repo.clone_url(
187 186 user=username, uri_tmpl=_def_clone_uri_id)
188 187 c.clone_repo_url_ssh = self.db_repo.clone_url(
189 188 uri_tmpl=_def_clone_uri_ssh, ssh=True)
190 189
191 190 # If enabled, get statistics data
192 191
193 192 c.show_stats = bool(self.db_repo.enable_statistics)
194 193
195 194 stats = Session().query(Statistics) \
196 195 .filter(Statistics.repository == self.db_repo) \
197 196 .scalar()
198 197
199 198 c.stats_percentage = 0
200 199
201 200 if stats and stats.languages:
202 201 c.no_data = False is self.db_repo.enable_statistics
203 202 lang_stats_d = json.loads(stats.languages)
204 203
205 204 # Sort first by decreasing count and second by the file extension,
206 205 # so we have a consistent output.
207 206 lang_stats_items = sorted(lang_stats_d.iteritems(),
208 207 key=lambda k: (-k[1], k[0]))[:10]
209 208 lang_stats = [(x, {"count": y,
210 209 "desc": LANGUAGES_EXTENSIONS_MAP.get(x)})
211 210 for x, y in lang_stats_items]
212 211
213 212 c.trending_languages = json.dumps(lang_stats)
214 213 else:
215 214 c.no_data = True
216 215 c.trending_languages = json.dumps({})
217 216
218 217 scm_model = ScmModel()
219 218 c.enable_downloads = self.db_repo.enable_downloads
220 219 c.repository_followers = scm_model.get_followers(self.db_repo)
221 220 c.repository_forks = scm_model.get_forks(self.db_repo)
222 221 c.repository_is_user_following = scm_model.is_following_repo(
223 222 self.db_repo_name, self._rhodecode_user.user_id)
224 223
225 224 # first interaction with the VCS instance after here...
226 225 if c.repository_requirements_missing:
227 226 self.request.override_renderer = \
228 227 'rhodecode:templates/summary/missing_requirements.mako'
229 228 return self._get_template_context(c)
230 229
231 230 c.readme_data, c.readme_file = \
232 231 self._get_readme_data(self.db_repo, c.visual.default_renderer)
233 232
234 233 # loads the summary commits template context
235 234 self._load_commits_context(c)
236 235
237 236 return self._get_template_context(c)
238 237
239 238 def get_request_commit_id(self):
240 239 return self.request.matchdict['commit_id']
241 240
242 241 @LoginRequired()
243 242 @HasRepoPermissionAnyDecorator(
244 243 'repository.read', 'repository.write', 'repository.admin')
245 244 @view_config(
246 245 route_name='repo_stats', request_method='GET',
247 246 renderer='json_ext')
248 247 def repo_stats(self):
249 248 commit_id = self.get_request_commit_id()
249 show_stats = bool(self.db_repo.enable_statistics)
250 repo_id = self.db_repo.repo_id
250 251
251 _namespace = caches.get_repo_namespace_key(
252 caches.SUMMARY_STATS, self.db_repo_name)
253 show_stats = bool(self.db_repo.enable_statistics)
254 cache_manager = caches.get_cache_manager(
255 'repo_cache_long', _namespace)
256 _cache_key = caches.compute_key_from_params(
257 self.db_repo_name, commit_id, show_stats)
252 cache_namespace_uid = 'cache_repo.{}'.format(repo_id)
253 region = rc_cache.get_or_create_region('cache_repo', cache_namespace_uid)
258 254
259 def compute_stats():
255 @region.cache_on_arguments(namespace=cache_namespace_uid)
256 def compute_stats(repo_id, commit_id, show_stats):
260 257 code_stats = {}
261 258 size = 0
262 259 try:
263 260 scm_instance = self.db_repo.scm_instance()
264 261 commit = scm_instance.get_commit(commit_id)
265 262
266 263 for node in commit.get_filenodes_generator():
267 264 size += node.size
268 265 if not show_stats:
269 266 continue
270 267 ext = string.lower(node.extension)
271 268 ext_info = LANGUAGES_EXTENSIONS_MAP.get(ext)
272 269 if ext_info:
273 270 if ext in code_stats:
274 271 code_stats[ext]['count'] += 1
275 272 else:
276 273 code_stats[ext] = {"count": 1, "desc": ext_info}
277 274 except (EmptyRepositoryError, CommitDoesNotExistError):
278 275 pass
279 276 return {'size': h.format_byte_size_binary(size),
280 277 'code_stats': code_stats}
281 278
282 stats = cache_manager.get(_cache_key, createfunc=compute_stats)
279 stats = compute_stats(self.db_repo.repo_id, commit_id, show_stats)
283 280 return stats
284 281
285 282 @LoginRequired()
286 283 @HasRepoPermissionAnyDecorator(
287 284 'repository.read', 'repository.write', 'repository.admin')
288 285 @view_config(
289 286 route_name='repo_refs_data', request_method='GET',
290 287 renderer='json_ext')
291 288 def repo_refs_data(self):
292 289 _ = self.request.translate
293 290 self.load_default_context()
294 291
295 292 repo = self.rhodecode_vcs_repo
296 293 refs_to_create = [
297 294 (_("Branch"), repo.branches, 'branch'),
298 295 (_("Tag"), repo.tags, 'tag'),
299 296 (_("Bookmark"), repo.bookmarks, 'book'),
300 297 ]
301 298 res = self._create_reference_data(
302 299 repo, self.db_repo_name, refs_to_create)
303 300 data = {
304 301 'more': False,
305 302 'results': res
306 303 }
307 304 return data
308 305
309 306 @LoginRequired()
310 307 @HasRepoPermissionAnyDecorator(
311 308 'repository.read', 'repository.write', 'repository.admin')
312 309 @view_config(
313 310 route_name='repo_refs_changelog_data', request_method='GET',
314 311 renderer='json_ext')
315 312 def repo_refs_changelog_data(self):
316 313 _ = self.request.translate
317 314 self.load_default_context()
318 315
319 316 repo = self.rhodecode_vcs_repo
320 317
321 318 refs_to_create = [
322 319 (_("Branches"), repo.branches, 'branch'),
323 320 (_("Closed branches"), repo.branches_closed, 'branch_closed'),
324 321 # TODO: enable when vcs can handle bookmarks filters
325 322 # (_("Bookmarks"), repo.bookmarks, "book"),
326 323 ]
327 324 res = self._create_reference_data(
328 325 repo, self.db_repo_name, refs_to_create)
329 326 data = {
330 327 'more': False,
331 328 'results': res
332 329 }
333 330 return data
334 331
335 332 def _create_reference_data(self, repo, full_repo_name, refs_to_create):
336 333 format_ref_id = utils.get_format_ref_id(repo)
337 334
338 335 result = []
339 336 for title, refs, ref_type in refs_to_create:
340 337 if refs:
341 338 result.append({
342 339 'text': title,
343 340 'children': self._create_reference_items(
344 341 repo, full_repo_name, refs, ref_type,
345 342 format_ref_id),
346 343 })
347 344 return result
348 345
349 346 def _create_reference_items(self, repo, full_repo_name, refs, ref_type,
350 347 format_ref_id):
351 348 result = []
352 349 is_svn = h.is_svn(repo)
353 350 for ref_name, raw_id in refs.iteritems():
354 351 files_url = self._create_files_url(
355 352 repo, full_repo_name, ref_name, raw_id, is_svn)
356 353 result.append({
357 354 'text': ref_name,
358 355 'id': format_ref_id(ref_name, raw_id),
359 356 'raw_id': raw_id,
360 357 'type': ref_type,
361 358 'files_url': files_url,
362 359 })
363 360 return result
364 361
365 362 def _create_files_url(self, repo, full_repo_name, ref_name, raw_id, is_svn):
366 363 use_commit_id = '/' in ref_name or is_svn
367 364 return h.route_path(
368 365 'repo_files',
369 366 repo_name=full_repo_name,
370 367 f_path=ref_name if is_svn else '',
371 368 commit_id=raw_id if use_commit_id else ref_name,
372 369 _query=dict(at=ref_name))
Show file before | Show file after | Hide comments
@@ -1,476 +1,483 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2010-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 import os
22 22 import logging
23 23 import traceback
24 24 import collections
25 25 import tempfile
26 26
27 27 from paste.gzipper import make_gzip_middleware
28 28 from pyramid.wsgi import wsgiapp
29 29 from pyramid.authorization import ACLAuthorizationPolicy
30 30 from pyramid.config import Configurator
31 31 from pyramid.settings import asbool, aslist
32 32 from pyramid.httpexceptions import (
33 33 HTTPException, HTTPError, HTTPInternalServerError, HTTPFound, HTTPNotFound)
34 34 from pyramid.events import ApplicationCreated
35 35 from pyramid.renderers import render_to_response
36 36
37 37 from rhodecode.model import meta
38 38 from rhodecode.config import patches
39 39 from rhodecode.config import utils as config_utils
40 40 from rhodecode.config.environment import load_pyramid_environment
41 41
42 42 from rhodecode.lib.middleware.vcs import VCSMiddleware
43 43 from rhodecode.lib.request import Request
44 44 from rhodecode.lib.vcs import VCSCommunicationError
45 45 from rhodecode.lib.exceptions import VCSServerUnavailable
46 46 from rhodecode.lib.middleware.appenlight import wrap_in_appenlight_if_enabled
47 47 from rhodecode.lib.middleware.https_fixup import HttpsFixup
48 48 from rhodecode.lib.celerylib.loader import configure_celery
49 49 from rhodecode.lib.plugins.utils import register_rhodecode_plugin
50 50 from rhodecode.lib.utils2 import aslist as rhodecode_aslist, AttributeDict
51 51 from rhodecode.subscribers import (
52 52 scan_repositories_if_enabled, write_js_routes_if_enabled,
53 53 write_metadata_if_needed, inject_app_settings)
54 54
55 55
56 56 log = logging.getLogger(__name__)
57 57
58 58
59 59 def is_http_error(response):
60 60 # error which should have traceback
61 61 return response.status_code > 499
62 62
63 63
64 64 def make_pyramid_app(global_config, **settings):
65 65 """
66 66 Constructs the WSGI application based on Pyramid.
67 67
68 68 Specials:
69 69
70 70 * The application can also be integrated like a plugin via the call to
71 71 `includeme`. This is accompanied with the other utility functions which
72 72 are called. Changing this should be done with great care to not break
73 73 cases when these fragments are assembled from another place.
74 74
75 75 """
76 76
77 77 # Allows to use format style "{ENV_NAME}" placeholders in the configuration. It
78 78 # will be replaced by the value of the environment variable "NAME" in this case.
79 79 environ = {
80 80 'ENV_{}'.format(key): value for key, value in os.environ.items()}
81 81
82 82 global_config = _substitute_values(global_config, environ)
83 83 settings = _substitute_values(settings, environ)
84 84
85 85 sanitize_settings_and_apply_defaults(settings)
86 86
87 87 config = Configurator(settings=settings)
88 88
89 89 # Apply compatibility patches
90 90 patches.inspect_getargspec()
91 91
92 92 load_pyramid_environment(global_config, settings)
93 93
94 94 # Static file view comes first
95 95 includeme_first(config)
96 96
97 97 includeme(config)
98 98
99 99 pyramid_app = config.make_wsgi_app()
100 100 pyramid_app = wrap_app_in_wsgi_middlewares(pyramid_app, config)
101 101 pyramid_app.config = config
102 102
103 103 config.configure_celery(global_config['__file__'])
104 104 # creating the app uses a connection - return it after we are done
105 105 meta.Session.remove()
106 106
107 107 log.info('Pyramid app %s created and configured.', pyramid_app)
108 108 return pyramid_app
109 109
110 110
111 111 def not_found_view(request):
112 112 """
113 113 This creates the view which should be registered as not-found-view to
114 114 pyramid.
115 115 """
116 116
117 117 if not getattr(request, 'vcs_call', None):
118 118 # handle like regular case with our error_handler
119 119 return error_handler(HTTPNotFound(), request)
120 120
121 121 # handle not found view as a vcs call
122 122 settings = request.registry.settings
123 123 ae_client = getattr(request, 'ae_client', None)
124 124 vcs_app = VCSMiddleware(
125 125 HTTPNotFound(), request.registry, settings,
126 126 appenlight_client=ae_client)
127 127
128 128 return wsgiapp(vcs_app)(None, request)
129 129
130 130
131 131 def error_handler(exception, request):
132 132 import rhodecode
133 133 from rhodecode.lib import helpers
134 134
135 135 rhodecode_title = rhodecode.CONFIG.get('rhodecode_title') or 'RhodeCode'
136 136
137 137 base_response = HTTPInternalServerError()
138 138 # prefer original exception for the response since it may have headers set
139 139 if isinstance(exception, HTTPException):
140 140 base_response = exception
141 141 elif isinstance(exception, VCSCommunicationError):
142 142 base_response = VCSServerUnavailable()
143 143
144 144 if is_http_error(base_response):
145 145 log.exception(
146 146 'error occurred handling this request for path: %s', request.path)
147 147
148 148 error_explanation = base_response.explanation or str(base_response)
149 149 if base_response.status_code == 404:
150 150 error_explanation += " Or you don't have permission to access it."
151 151 c = AttributeDict()
152 152 c.error_message = base_response.status
153 153 c.error_explanation = error_explanation
154 154 c.visual = AttributeDict()
155 155
156 156 c.visual.rhodecode_support_url = (
157 157 request.registry.settings.get('rhodecode_support_url') or
158 158 request.route_url('rhodecode_support')
159 159 )
160 160 c.redirect_time = 0
161 161 c.rhodecode_name = rhodecode_title
162 162 if not c.rhodecode_name:
163 163 c.rhodecode_name = 'Rhodecode'
164 164
165 165 c.causes = []
166 166 if is_http_error(base_response):
167 167 c.causes.append('Server is overloaded.')
168 168 c.causes.append('Server database connection is lost.')
169 169 c.causes.append('Server expected unhandled error.')
170 170
171 171 if hasattr(base_response, 'causes'):
172 172 c.causes = base_response.causes
173 173
174 174 c.messages = helpers.flash.pop_messages(request=request)
175 175 c.traceback = traceback.format_exc()
176 176 response = render_to_response(
177 177 '/errors/error_document.mako', {'c': c, 'h': helpers}, request=request,
178 178 response=base_response)
179 179
180 180 return response
181 181
182 182
183 183 def includeme_first(config):
184 184 # redirect automatic browser favicon.ico requests to correct place
185 185 def favicon_redirect(context, request):
186 186 return HTTPFound(
187 187 request.static_path('rhodecode:public/images/favicon.ico'))
188 188
189 189 config.add_view(favicon_redirect, route_name='favicon')
190 190 config.add_route('favicon', '/favicon.ico')
191 191
192 192 def robots_redirect(context, request):
193 193 return HTTPFound(
194 194 request.static_path('rhodecode:public/robots.txt'))
195 195
196 196 config.add_view(robots_redirect, route_name='robots')
197 197 config.add_route('robots', '/robots.txt')
198 198
199 199 config.add_static_view(
200 200 '_static/deform', 'deform:static')
201 201 config.add_static_view(
202 202 '_static/rhodecode', path='rhodecode:public', cache_max_age=3600 * 24)
203 203
204 204
205 205 def includeme(config):
206 206 settings = config.registry.settings
207 207 config.set_request_factory(Request)
208 208
209 209 # plugin information
210 210 config.registry.rhodecode_plugins = collections.OrderedDict()
211 211
212 212 config.add_directive(
213 213 'register_rhodecode_plugin', register_rhodecode_plugin)
214 214
215 215 config.add_directive('configure_celery', configure_celery)
216 216
217 217 if asbool(settings.get('appenlight', 'false')):
218 218 config.include('appenlight_client.ext.pyramid_tween')
219 219
220 220 # Includes which are required. The application would fail without them.
221 221 config.include('pyramid_mako')
222 222 config.include('pyramid_beaker')
223 223 config.include('rhodecode.lib.caches')
224 224 config.include('rhodecode.lib.rc_cache')
225 225
226 226 config.include('rhodecode.authentication')
227 227 config.include('rhodecode.integrations')
228 228
229 229 # apps
230 230 config.include('rhodecode.apps._base')
231 231 config.include('rhodecode.apps.ops')
232 232
233 233 config.include('rhodecode.apps.admin')
234 234 config.include('rhodecode.apps.channelstream')
235 235 config.include('rhodecode.apps.login')
236 236 config.include('rhodecode.apps.home')
237 237 config.include('rhodecode.apps.journal')
238 238 config.include('rhodecode.apps.repository')
239 239 config.include('rhodecode.apps.repo_group')
240 240 config.include('rhodecode.apps.user_group')
241 241 config.include('rhodecode.apps.search')
242 242 config.include('rhodecode.apps.user_profile')
243 243 config.include('rhodecode.apps.user_group_profile')
244 244 config.include('rhodecode.apps.my_account')
245 245 config.include('rhodecode.apps.svn_support')
246 246 config.include('rhodecode.apps.ssh_support')
247 247 config.include('rhodecode.apps.gist')
248 248
249 249 config.include('rhodecode.apps.debug_style')
250 250 config.include('rhodecode.tweens')
251 251 config.include('rhodecode.api')
252 252
253 253 config.add_route(
254 254 'rhodecode_support', 'https://rhodecode.com/help/', static=True)
255 255
256 256 config.add_translation_dirs('rhodecode:i18n/')
257 257 settings['default_locale_name'] = settings.get('lang', 'en')
258 258
259 259 # Add subscribers.
260 260 config.add_subscriber(inject_app_settings, ApplicationCreated)
261 261 config.add_subscriber(scan_repositories_if_enabled, ApplicationCreated)
262 262 config.add_subscriber(write_metadata_if_needed, ApplicationCreated)
263 263 config.add_subscriber(write_js_routes_if_enabled, ApplicationCreated)
264 264
265 265 # events
266 266 # TODO(marcink): this should be done when pyramid migration is finished
267 267 # config.add_subscriber(
268 268 # 'rhodecode.integrations.integrations_event_handler',
269 269 # 'rhodecode.events.RhodecodeEvent')
270 270
271 271 # request custom methods
272 272 config.add_request_method(
273 273 'rhodecode.lib.partial_renderer.get_partial_renderer',
274 274 'get_partial_renderer')
275 275
276 276 # Set the authorization policy.
277 277 authz_policy = ACLAuthorizationPolicy()
278 278 config.set_authorization_policy(authz_policy)
279 279
280 280 # Set the default renderer for HTML templates to mako.
281 281 config.add_mako_renderer('.html')
282 282
283 283 config.add_renderer(
284 284 name='json_ext',
285 285 factory='rhodecode.lib.ext_json_renderer.pyramid_ext_json')
286 286
287 287 # include RhodeCode plugins
288 288 includes = aslist(settings.get('rhodecode.includes', []))
289 289 for inc in includes:
290 290 config.include(inc)
291 291
292 292 # custom not found view, if our pyramid app doesn't know how to handle
293 293 # the request pass it to potential VCS handling ap
294 294 config.add_notfound_view(not_found_view)
295 295 if not settings.get('debugtoolbar.enabled', False):
296 296 # disabled debugtoolbar handle all exceptions via the error_handlers
297 297 config.add_view(error_handler, context=Exception)
298 298
299 299 # all errors including 403/404/50X
300 300 config.add_view(error_handler, context=HTTPError)
301 301
302 302
303 303 def wrap_app_in_wsgi_middlewares(pyramid_app, config):
304 304 """
305 305 Apply outer WSGI middlewares around the application.
306 306 """
307 307 settings = config.registry.settings
308 308
309 309 # enable https redirects based on HTTP_X_URL_SCHEME set by proxy
310 310 pyramid_app = HttpsFixup(pyramid_app, settings)
311 311
312 312 pyramid_app, _ae_client = wrap_in_appenlight_if_enabled(
313 313 pyramid_app, settings)
314 314 config.registry.ae_client = _ae_client
315 315
316 316 if settings['gzip_responses']:
317 317 pyramid_app = make_gzip_middleware(
318 318 pyramid_app, settings, compress_level=1)
319 319
320 320 # this should be the outer most middleware in the wsgi stack since
321 321 # middleware like Routes make database calls
322 322 def pyramid_app_with_cleanup(environ, start_response):
323 323 try:
324 324 return pyramid_app(environ, start_response)
325 325 finally:
326 326 # Dispose current database session and rollback uncommitted
327 327 # transactions.
328 328 meta.Session.remove()
329 329
330 330 # In a single threaded mode server, on non sqlite db we should have
331 331 # '0 Current Checked out connections' at the end of a request,
332 332 # if not, then something, somewhere is leaving a connection open
333 333 pool = meta.Base.metadata.bind.engine.pool
334 334 log.debug('sa pool status: %s', pool.status())
335 335
336 336 return pyramid_app_with_cleanup
337 337
338 338
339 339 def sanitize_settings_and_apply_defaults(settings):
340 340 """
341 341 Applies settings defaults and does all type conversion.
342 342
343 343 We would move all settings parsing and preparation into this place, so that
344 344 we have only one place left which deals with this part. The remaining parts
345 345 of the application would start to rely fully on well prepared settings.
346 346
347 347 This piece would later be split up per topic to avoid a big fat monster
348 348 function.
349 349 """
350 350
351 351 settings.setdefault('rhodecode.edition', 'Community Edition')
352 352
353 353 if 'mako.default_filters' not in settings:
354 354 # set custom default filters if we don't have it defined
355 355 settings['mako.imports'] = 'from rhodecode.lib.base import h_filter'
356 356 settings['mako.default_filters'] = 'h_filter'
357 357
358 358 if 'mako.directories' not in settings:
359 359 mako_directories = settings.setdefault('mako.directories', [
360 360 # Base templates of the original application
361 361 'rhodecode:templates',
362 362 ])
363 363 log.debug(
364 364 "Using the following Mako template directories: %s",
365 365 mako_directories)
366 366
367 367 # Default includes, possible to change as a user
368 368 pyramid_includes = settings.setdefault('pyramid.includes', [
369 369 'rhodecode.lib.middleware.request_wrapper',
370 370 ])
371 371 log.debug(
372 372 "Using the following pyramid.includes: %s",
373 373 pyramid_includes)
374 374
375 375 # TODO: johbo: Re-think this, usually the call to config.include
376 376 # should allow to pass in a prefix.
377 377 settings.setdefault('rhodecode.api.url', '/_admin/api')
378 378
379 379 # Sanitize generic settings.
380 380 _list_setting(settings, 'default_encoding', 'UTF-8')
381 381 _bool_setting(settings, 'is_test', 'false')
382 382 _bool_setting(settings, 'gzip_responses', 'false')
383 383
384 384 # Call split out functions that sanitize settings for each topic.
385 385 _sanitize_appenlight_settings(settings)
386 386 _sanitize_vcs_settings(settings)
387 387 _sanitize_cache_settings(settings)
388 388
389 389 # configure instance id
390 390 config_utils.set_instance_id(settings)
391 391
392 392 return settings
393 393
394 394
395 395 def _sanitize_appenlight_settings(settings):
396 396 _bool_setting(settings, 'appenlight', 'false')
397 397
398 398
399 399 def _sanitize_vcs_settings(settings):
400 400 """
401 401 Applies settings defaults and does type conversion for all VCS related
402 402 settings.
403 403 """
404 404 _string_setting(settings, 'vcs.svn.compatible_version', '')
405 405 _string_setting(settings, 'git_rev_filter', '--all')
406 406 _string_setting(settings, 'vcs.hooks.protocol', 'http')
407 407 _string_setting(settings, 'vcs.hooks.host', '127.0.0.1')
408 408 _string_setting(settings, 'vcs.scm_app_implementation', 'http')
409 409 _string_setting(settings, 'vcs.server', '')
410 410 _string_setting(settings, 'vcs.server.log_level', 'debug')
411 411 _string_setting(settings, 'vcs.server.protocol', 'http')
412 412 _bool_setting(settings, 'startup.import_repos', 'false')
413 413 _bool_setting(settings, 'vcs.hooks.direct_calls', 'false')
414 414 _bool_setting(settings, 'vcs.server.enable', 'true')
415 415 _bool_setting(settings, 'vcs.start_server', 'false')
416 416 _list_setting(settings, 'vcs.backends', 'hg, git, svn')
417 417 _int_setting(settings, 'vcs.connection_timeout', 3600)
418 418
419 419 # Support legacy values of vcs.scm_app_implementation. Legacy
420 420 # configurations may use 'rhodecode.lib.middleware.utils.scm_app_http'
421 421 # which is now mapped to 'http'.
422 422 scm_app_impl = settings['vcs.scm_app_implementation']
423 423 if scm_app_impl == 'rhodecode.lib.middleware.utils.scm_app_http':
424 424 settings['vcs.scm_app_implementation'] = 'http'
425 425
426 426
427 427 def _sanitize_cache_settings(settings):
428 428 _string_setting(settings, 'cache_dir',
429 429 os.path.join(tempfile.gettempdir(), 'rc_cache'))
430 430
431 431 _string_setting(settings, 'rc_cache.cache_perms.backend',
432 432 'dogpile.cache.rc.file_namespace')
433 433 _int_setting(settings, 'rc_cache.cache_perms.expiration_time',
434 434 60)
435 435 _string_setting(settings, 'rc_cache.cache_perms.arguments.filename',
436 436 os.path.join(tempfile.gettempdir(), 'rc_cache_1'))
437 437
438 _string_setting(settings, 'rc_cache.cache_repo.backend',
439 'dogpile.cache.rc.file_namespace')
440 _int_setting(settings, 'rc_cache.cache_repo.expiration_time',
441 60)
442 _string_setting(settings, 'rc_cache.cache_repo.arguments.filename',
443 os.path.join(tempfile.gettempdir(), 'rc_cache_2'))
444
438 445
439 446 def _int_setting(settings, name, default):
440 447 settings[name] = int(settings.get(name, default))
441 448
442 449
443 450 def _bool_setting(settings, name, default):
444 451 input_val = settings.get(name, default)
445 452 if isinstance(input_val, unicode):
446 453 input_val = input_val.encode('utf8')
447 454 settings[name] = asbool(input_val)
448 455
449 456
450 457 def _list_setting(settings, name, default):
451 458 raw_value = settings.get(name, default)
452 459
453 460 old_separator = ','
454 461 if old_separator in raw_value:
455 462 # If we get a comma separated list, pass it to our own function.
456 463 settings[name] = rhodecode_aslist(raw_value, sep=old_separator)
457 464 else:
458 465 # Otherwise we assume it uses pyramids space/newline separation.
459 466 settings[name] = aslist(raw_value)
460 467
461 468
462 469 def _string_setting(settings, name, default, lower=True):
463 470 value = settings.get(name, default)
464 471 if lower:
465 472 value = value.lower()
466 473 settings[name] = value
467 474
468 475
469 476 def _substitute_values(mapping, substitutions):
470 477 result = {
471 478 # Note: Cannot use regular replacements, since they would clash
472 479 # with the implementation of ConfigParser. Using "format" instead.
473 480 key: value.format(**substitutions)
474 481 for key, value in mapping.items()
475 482 }
476 483 return result
Show file before | Show file after | Hide comments
@@ -1,295 +1,226 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2015-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20 import functools
21 21
22 22 import beaker
23 23 import logging
24 24 import threading
25 25
26 26 from beaker.cache import _cache_decorate, cache_regions, region_invalidate
27 27 from sqlalchemy.exc import IntegrityError
28 28
29 29 from rhodecode.lib.utils import safe_str, sha1
30 30 from rhodecode.model.db import Session, CacheKey
31 31
32 32 log = logging.getLogger(__name__)
33 33
34 FILE_TREE = 'cache_file_tree'
35 FILE_TREE_META = 'cache_file_tree_metadata'
36 FILE_SEARCH_TREE_META = 'cache_file_search_metadata'
37 SUMMARY_STATS = 'cache_summary_stats'
38
39 # This list of caches gets purged when invalidation happens
40 USED_REPO_CACHES = (FILE_TREE, FILE_SEARCH_TREE_META)
41 34
42 35 DEFAULT_CACHE_MANAGER_CONFIG = {
43 36 'type': 'memorylru_base',
44 37 'max_items': 10240,
45 38 'key_length': 256,
46 39 'enabled': True
47 40 }
48 41
49 42
50 43 def get_default_cache_settings(settings):
51 44 cache_settings = {}
52 45 for key in settings.keys():
53 46 for prefix in ['beaker.cache.', 'cache.']:
54 47 if key.startswith(prefix):
55 48 name = key.split(prefix)[1].strip()
56 49 cache_settings[name] = settings[key].strip()
57 50 return cache_settings
58 51
59 52
60 53 # set cache regions for beaker so celery can utilise it
61 54 def configure_caches(settings, default_region_settings=None):
62 55 cache_settings = {'regions': None}
63 56 # main cache settings used as default ...
64 57 cache_settings.update(get_default_cache_settings(settings))
65 58 default_region_settings = default_region_settings or \
66 59 {'type': DEFAULT_CACHE_MANAGER_CONFIG['type']}
67 60 if cache_settings['regions']:
68 61 for region in cache_settings['regions'].split(','):
69 62 region = region.strip()
70 63 region_settings = default_region_settings.copy()
71 64 for key, value in cache_settings.items():
72 65 if key.startswith(region):
73 66 region_settings[key.split(region + '.')[-1]] = value
74 67 log.debug('Configuring cache region `%s` with settings %s',
75 68 region, region_settings)
76 69 configure_cache_region(
77 70 region, region_settings, cache_settings)
78 71
79 72
80 73 def configure_cache_region(
81 74 region_name, region_settings, default_cache_kw, default_expire=60):
82 75 default_type = default_cache_kw.get('type', 'memory')
83 76 default_lock_dir = default_cache_kw.get('lock_dir')
84 77 default_data_dir = default_cache_kw.get('data_dir')
85 78
86 79 region_settings['lock_dir'] = region_settings.get('lock_dir', default_lock_dir)
87 80 region_settings['data_dir'] = region_settings.get('data_dir', default_data_dir)
88 81 region_settings['type'] = region_settings.get('type', default_type)
89 82 region_settings['expire'] = int(region_settings.get('expire', default_expire))
90 83
91 84 beaker.cache.cache_regions[region_name] = region_settings
92 85
93 86
94 87 def get_cache_manager(region_name, cache_name, custom_ttl=None):
95 88 """
96 89 Creates a Beaker cache manager. Such instance can be used like that::
97 90
98 91 _namespace = caches.get_repo_namespace_key(caches.XXX, repo_name)
99 92 cache_manager = caches.get_cache_manager('some_namespace_name', _namespace)
100 93 _cache_key = caches.compute_key_from_params(repo_name, commit.raw_id)
101 94 def heavy_compute():
102 95 ...
103 96 result = cache_manager.get(_cache_key, createfunc=heavy_compute)
104 97
105 98 :param region_name: region from ini file
106 99 :param cache_name: custom cache name, usually prefix+repo_name. eg
107 100 file_switcher_repo1
108 101 :param custom_ttl: override .ini file timeout on this cache
109 102 :return: instance of cache manager
110 103 """
111 104
112 105 cache_config = cache_regions.get(region_name, DEFAULT_CACHE_MANAGER_CONFIG)
113 106 if custom_ttl:
114 107 log.debug('Updating region %s with custom ttl: %s',
115 108 region_name, custom_ttl)
116 109 cache_config.update({'expire': custom_ttl})
117 110
118 111 return beaker.cache.Cache._get_cache(cache_name, cache_config)
119 112
120 113
121 114 def clear_cache_manager(cache_manager):
122 115 """
123 116 namespace = 'foobar'
124 117 cache_manager = get_cache_manager('some_namespace_name', namespace)
125 118 clear_cache_manager(cache_manager)
126 119 """
127 120
128 121 log.debug('Clearing all values for cache manager %s', cache_manager)
129 122 cache_manager.clear()
130 123
131 124
132 def clear_repo_caches(repo_name):
133 # invalidate cache manager for this repo
134 for prefix in USED_REPO_CACHES:
135 namespace = get_repo_namespace_key(prefix, repo_name)
136 cache_manager = get_cache_manager('repo_cache_long', namespace)
137 clear_cache_manager(cache_manager)
138
139
140 125 def compute_key_from_params(*args):
141 126 """
142 127 Helper to compute key from given params to be used in cache manager
143 128 """
144 129 return sha1("_".join(map(safe_str, args)))
145 130
146 131
147 132 def get_repo_namespace_key(prefix, repo_name):
148 133 return '{0}_{1}'.format(prefix, compute_key_from_params(repo_name))
149 134
150 135
151 def conditional_cache(region, cache_namespace, condition, func):
152 """
153 Conditional caching function use like::
154 def _c(arg):
155 # heavy computation function
156 return data
157
158 # depending on the condition the compute is wrapped in cache or not
159 compute = conditional_cache('short_term', 'cache_namespace_id',
160 condition=True, func=func)
161 return compute(arg)
162
163 :param region: name of cache region
164 :param cache_namespace: cache namespace
165 :param condition: condition for cache to be triggered, and
166 return data cached
167 :param func: wrapped heavy function to compute
168
169 """
170 wrapped = func
171 if condition:
172 log.debug('conditional_cache: True, wrapping call of '
173 'func: %s into %s region cache', region, func)
174
175 def _cache_wrap(region_name, cache_namespace):
176 """Return a caching wrapper"""
177
178 def decorate(func):
179 @functools.wraps(func)
180 def cached(*args, **kwargs):
181 if kwargs:
182 raise AttributeError(
183 'Usage of kwargs is not allowed. '
184 'Use only positional arguments in wrapped function')
185 manager = get_cache_manager(region_name, cache_namespace)
186 cache_key = compute_key_from_params(*args)
187
188 def go():
189 return func(*args, **kwargs)
190
191 # save org function name
192 go.__name__ = '_cached_%s' % (func.__name__,)
193
194 return manager.get(cache_key, createfunc=go)
195 return cached
196
197 return decorate
198
199 cached_region = _cache_wrap(region, cache_namespace)
200 wrapped = cached_region(func)
201
202 return wrapped
203
204
205 136 class ActiveRegionCache(object):
206 137 def __init__(self, context):
207 138 self.context = context
208 139
209 140 def invalidate(self, *args, **kwargs):
210 141 return False
211 142
212 143 def compute(self):
213 144 log.debug('Context cache: getting obj %s from cache', self.context)
214 145 return self.context.compute_func(self.context.cache_key)
215 146
216 147
217 148 class FreshRegionCache(ActiveRegionCache):
218 149 def invalidate(self):
219 150 log.debug('Context cache: invalidating cache for %s', self.context)
220 151 region_invalidate(
221 152 self.context.compute_func, None, self.context.cache_key)
222 153 return True
223 154
224 155
225 156 class InvalidationContext(object):
226 157 def __repr__(self):
227 158 return '<InvalidationContext:{}[{}]>'.format(
228 159 safe_str(self.repo_name), safe_str(self.cache_type))
229 160
230 161 def __init__(self, compute_func, repo_name, cache_type,
231 162 raise_exception=False, thread_scoped=False):
232 163 self.compute_func = compute_func
233 164 self.repo_name = repo_name
234 165 self.cache_type = cache_type
235 166 self.cache_key = compute_key_from_params(
236 167 repo_name, cache_type)
237 168 self.raise_exception = raise_exception
238 169
239 170 # Append the thread id to the cache key if this invalidation context
240 171 # should be scoped to the current thread.
241 172 if thread_scoped:
242 173 thread_id = threading.current_thread().ident
243 174 self.cache_key = '{cache_key}_{thread_id}'.format(
244 175 cache_key=self.cache_key, thread_id=thread_id)
245 176
246 177 def get_cache_obj(self):
247 178 cache_key = CacheKey.get_cache_key(
248 179 self.repo_name, self.cache_type)
249 180 cache_obj = CacheKey.get_active_cache(cache_key)
250 181 if not cache_obj:
251 182 cache_obj = CacheKey(cache_key, self.repo_name)
252 183 return cache_obj
253 184
254 185 def __enter__(self):
255 186 """
256 187 Test if current object is valid, and return CacheRegion function
257 188 that does invalidation and calculation
258 189 """
259 190
260 191 self.cache_obj = self.get_cache_obj()
261 192 if self.cache_obj.cache_active:
262 193 # means our cache obj is existing and marked as it's
263 194 # cache is not outdated, we return BaseInvalidator
264 195 self.skip_cache_active_change = True
265 196 return ActiveRegionCache(self)
266 197
267 198 # the key is either not existing or set to False, we return
268 199 # the real invalidator which re-computes value. We additionally set
269 200 # the flag to actually update the Database objects
270 201 self.skip_cache_active_change = False
271 202 return FreshRegionCache(self)
272 203
273 204 def __exit__(self, exc_type, exc_val, exc_tb):
274 205
275 206 if self.skip_cache_active_change:
276 207 return
277 208
278 209 try:
279 210 self.cache_obj.cache_active = True
280 211 Session().add(self.cache_obj)
281 212 Session().commit()
282 213 except IntegrityError:
283 214 # if we catch integrity error, it means we inserted this object
284 215 # assumption is that's really an edge race-condition case and
285 216 # it's safe is to skip it
286 217 Session().rollback()
287 218 except Exception:
288 219 log.exception('Failed to commit on cache key update')
289 220 Session().rollback()
290 221 if self.raise_exception:
291 222 raise
292 223
293 224
294 225 def includeme(config):
295 226 configure_caches(config.registry.settings)
Show file before | Show file after | Hide comments
@@ -1,66 +1,68 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2015-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 from dogpile.cache import register_backend
22 22 from dogpile.cache import make_region
23 23
24 24 register_backend(
25 25 "dogpile.cache.rc.memory_lru", "rhodecode.lib.rc_cache.backends",
26 26 "LRUMemoryBackend")
27 27
28 28 register_backend(
29 29 "dogpile.cache.rc.file_namespace", "rhodecode.lib.rc_cache.backends",
30 30 "FileNamespaceBackend")
31 31
32 32 register_backend(
33 33 "dogpile.cache.rc.redis", "rhodecode.lib.rc_cache.backends",
34 34 "RedisPickleBackend")
35 35
36 36
37 37 from . import region_meta
38 from .utils import get_default_cache_settings, key_generator, get_or_create_region
38 from .utils import (
39 get_default_cache_settings, key_generator, get_or_create_region,
40 clear_cache_namespace)
39 41
40 42
41 43 def configure_dogpile_cache(settings):
42 44 cache_dir = settings.get('cache_dir')
43 45 if cache_dir:
44 46 region_meta.dogpile_config_defaults['cache_dir'] = cache_dir
45 47
46 48 rc_cache_data = get_default_cache_settings(settings, prefixes=['rc_cache.'])
47 49
48 50 # inspect available namespaces
49 51 avail_regions = set()
50 52 for key in rc_cache_data.keys():
51 53 namespace_name = key.split('.', 1)[0]
52 54 avail_regions.add(namespace_name)
53 55
54 56 # register them into namespace
55 57 for region_name in avail_regions:
56 58 new_region = make_region(
57 59 name=region_name,
58 60 function_key_generator=key_generator
59 61 )
60 62
61 63 new_region.configure_from_config(settings, 'rc_cache.{}.'.format(region_name))
62 64 region_meta.dogpile_cache_regions[region_name] = new_region
63 65
64 66
65 67 def includeme(config):
66 68 configure_dogpile_cache(config.registry.settings)
Show file before | Show file after | Hide comments
@@ -1,109 +1,120 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2015-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 from dogpile.cache.backends import memory as memory_backend
22 22 from dogpile.cache.backends import file as file_backend
23 23 from dogpile.cache.backends import redis as redis_backend
24 24 from dogpile.cache.backends.file import NO_VALUE, compat
25 25
26 26 from rhodecode.lib.memory_lru_debug import LRUDict
27 27
28 28 _default_max_size = 1024
29 29
30 30
31 31 class LRUMemoryBackend(memory_backend.MemoryBackend):
32 32
33 33 def __init__(self, arguments):
34 34 max_size = arguments.pop('max_size', _default_max_size)
35 35 arguments['cache_dict'] = LRUDict(max_size)
36 36 super(LRUMemoryBackend, self).__init__(arguments)
37 37
38 38
39 39 class Serializer(object):
40 40 def _dumps(self, value):
41 41 return compat.pickle.dumps(value)
42 42
43 43 def _loads(self, value):
44 44 return compat.pickle.loads(value)
45 45
46 46
47 47 class FileNamespaceBackend(Serializer, file_backend.DBMBackend):
48 48
49 49 def __init__(self, arguments):
50 50 super(FileNamespaceBackend, self).__init__(arguments)
51 51
52 def list_keys(self):
52 def list_keys(self, prefix=''):
53 def cond(v):
54 if not prefix:
55 return True
56
57 if v.startswith(prefix):
58 return True
59 return False
60
53 61 with self._dbm_file(True) as dbm:
54 return dbm.keys()
62
63 return filter(cond, dbm.keys())
55 64
56 65 def get_store(self):
57 66 return self.filename
58 67
59 68 def get(self, key):
60 69 with self._dbm_file(False) as dbm:
61 70 if hasattr(dbm, 'get'):
62 71 value = dbm.get(key, NO_VALUE)
63 72 else:
64 73 # gdbm objects lack a .get method
65 74 try:
66 75 value = dbm[key]
67 76 except KeyError:
68 77 value = NO_VALUE
69 78 if value is not NO_VALUE:
70 79 value = self._loads(value)
71 80 return value
72 81
73 82 def set(self, key, value):
74 83 with self._dbm_file(True) as dbm:
75 84 dbm[key] = self._dumps(value)
76 85
77 86 def set_multi(self, mapping):
78 87 with self._dbm_file(True) as dbm:
79 88 for key, value in mapping.items():
80 89 dbm[key] = self._dumps(value)
81 90
82 91
83 92 class RedisPickleBackend(Serializer, redis_backend.RedisBackend):
84 def list_keys(self):
85 return self.client.keys()
93 def list_keys(self, prefix=''):
94 if prefix:
95 prefix = prefix + '*'
96 return self.client.keys(prefix)
86 97
87 98 def get_store(self):
88 99 return self.client.connection_pool
89 100
90 101 def set(self, key, value):
91 102 if self.redis_expiration_time:
92 103 self.client.setex(key, self.redis_expiration_time,
93 104 self._dumps(value))
94 105 else:
95 106 self.client.set(key, self._dumps(value))
96 107
97 108 def set_multi(self, mapping):
98 109 mapping = dict(
99 110 (k, self._dumps(v))
100 111 for k, v in mapping.items()
101 112 )
102 113
103 114 if not self.redis_expiration_time:
104 115 self.client.mset(mapping)
105 116 else:
106 117 pipe = self.client.pipeline()
107 118 for key, value in mapping.items():
108 119 pipe.setex(key, self.redis_expiration_time, value)
109 120 pipe.execute()
Show file before | Show file after | Hide comments
@@ -1,99 +1,107 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2015-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20 import os
21 21 import logging
22 22 from dogpile.cache import make_region
23 23
24 24 from rhodecode.lib.utils import safe_str, sha1
25 25 from . import region_meta
26 26
27 27 log = logging.getLogger(__name__)
28 28
29 29
30 30 def get_default_cache_settings(settings, prefixes=None):
31 31 prefixes = prefixes or []
32 32 cache_settings = {}
33 33 for key in settings.keys():
34 34 for prefix in prefixes:
35 35 if key.startswith(prefix):
36 36 name = key.split(prefix)[1].strip()
37 37 val = settings[key]
38 38 if isinstance(val, basestring):
39 39 val = val.strip()
40 40 cache_settings[name] = val
41 41 return cache_settings
42 42
43 43
44 44 def compute_key_from_params(*args):
45 45 """
46 46 Helper to compute key from given params to be used in cache manager
47 47 """
48 48 return sha1("_".join(map(safe_str, args)))
49 49
50 50
51 51 def key_generator(namespace, fn):
52 52 fname = fn.__name__
53 53
54 54 def generate_key(*args):
55 55 namespace_pref = namespace or 'default'
56 56 arg_key = compute_key_from_params(*args)
57 57 final_key = "{}:{}_{}".format(namespace_pref, fname, arg_key)
58 58
59 59 return final_key
60 60
61 61 return generate_key
62 62
63 63
64 64 def get_or_create_region(region_name, region_namespace=None):
65 65 from rhodecode.lib.rc_cache.backends import FileNamespaceBackend
66 66 region_obj = region_meta.dogpile_cache_regions.get(region_name)
67 67 if not region_obj:
68 68 raise EnvironmentError(
69 69 'Region `{}` not in configured: {}.'.format(
70 70 region_name, region_meta.dogpile_cache_regions.keys()))
71 71
72 72 region_uid_name = '{}:{}'.format(region_name, region_namespace)
73 73 if isinstance(region_obj.actual_backend, FileNamespaceBackend):
74 74 region_exist = region_meta.dogpile_cache_regions.get(region_namespace)
75 75 if region_exist:
76 76 log.debug('Using already configured region: %s', region_namespace)
77 77 return region_exist
78 78 cache_dir = region_meta.dogpile_config_defaults['cache_dir']
79 79 expiration_time = region_obj.expiration_time
80 80
81 81 if not os.path.isdir(cache_dir):
82 82 os.makedirs(cache_dir)
83 83 new_region = make_region(
84 84 name=region_uid_name, function_key_generator=key_generator
85 85 )
86 86 namespace_filename = os.path.join(
87 87 cache_dir, "{}.cache.dbm".format(region_namespace))
88 88 # special type that allows 1db per namespace
89 89 new_region.configure(
90 90 backend='dogpile.cache.rc.file_namespace',
91 91 expiration_time=expiration_time,
92 92 arguments={"filename": namespace_filename}
93 93 )
94 94
95 95 # create and save in region caches
96 96 log.debug('configuring new region: %s',region_uid_name)
97 97 region_obj = region_meta.dogpile_cache_regions[region_namespace] = new_region
98 98
99 99 return region_obj
100
101
102 def clear_cache_namespace(cache_region, cache_namespace_uid):
103 region = get_or_create_region(cache_region, cache_namespace_uid)
104 cache_keys = region.backend.list_keys(prefix=cache_namespace_uid)
105 for k in cache_keys:
106 region.delete(k)
107 return len(cache_keys)
Show file before | Show file after | Hide comments
@@ -1,812 +1,815 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2010-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 """
22 22 Scm model for RhodeCode
23 23 """
24 24
25 25 import os.path
26 26 import re
27 27 import sys
28 28 import traceback
29 29 import logging
30 30 import cStringIO
31 31 import pkg_resources
32 32
33 33 from sqlalchemy import func
34 34 from zope.cachedescriptors.property import Lazy as LazyProperty
35 35
36 36 import rhodecode
37 37 from rhodecode.lib.vcs import get_backend
38 38 from rhodecode.lib.vcs.exceptions import RepositoryError, NodeNotChangedError
39 39 from rhodecode.lib.vcs.nodes import FileNode
40 40 from rhodecode.lib.vcs.backends.base import EmptyCommit
41 from rhodecode.lib import helpers as h
41 from rhodecode.lib import helpers as h, rc_cache
42 42 from rhodecode.lib.auth import (
43 43 HasRepoPermissionAny, HasRepoGroupPermissionAny,
44 44 HasUserGroupPermissionAny)
45 45 from rhodecode.lib.exceptions import NonRelativePathError, IMCCommitError
46 46 from rhodecode.lib import hooks_utils, caches
47 47 from rhodecode.lib.utils import (
48 48 get_filesystem_repos, make_db_config)
49 49 from rhodecode.lib.utils2 import (safe_str, safe_unicode)
50 50 from rhodecode.lib.system_info import get_system_info
51 51 from rhodecode.model import BaseModel
52 52 from rhodecode.model.db import (
53 53 Repository, CacheKey, UserFollowing, UserLog, User, RepoGroup,
54 54 PullRequest)
55 55 from rhodecode.model.settings import VcsSettingsModel
56 56
57 57 log = logging.getLogger(__name__)
58 58
59 59
60 60 class UserTemp(object):
61 61 def __init__(self, user_id):
62 62 self.user_id = user_id
63 63
64 64 def __repr__(self):
65 65 return "<%s('id:%s')>" % (self.__class__.__name__, self.user_id)
66 66
67 67
68 68 class RepoTemp(object):
69 69 def __init__(self, repo_id):
70 70 self.repo_id = repo_id
71 71
72 72 def __repr__(self):
73 73 return "<%s('id:%s')>" % (self.__class__.__name__, self.repo_id)
74 74
75 75
76 76 class SimpleCachedRepoList(object):
77 77 """
78 78 Lighter version of of iteration of repos without the scm initialisation,
79 79 and with cache usage
80 80 """
81 81 def __init__(self, db_repo_list, repos_path, order_by=None, perm_set=None):
82 82 self.db_repo_list = db_repo_list
83 83 self.repos_path = repos_path
84 84 self.order_by = order_by
85 85 self.reversed = (order_by or '').startswith('-')
86 86 if not perm_set:
87 87 perm_set = ['repository.read', 'repository.write',
88 88 'repository.admin']
89 89 self.perm_set = perm_set
90 90
91 91 def __len__(self):
92 92 return len(self.db_repo_list)
93 93
94 94 def __repr__(self):
95 95 return '<%s (%s)>' % (self.__class__.__name__, self.__len__())
96 96
97 97 def __iter__(self):
98 98 for dbr in self.db_repo_list:
99 99 # check permission at this level
100 100 has_perm = HasRepoPermissionAny(*self.perm_set)(
101 101 dbr.repo_name, 'SimpleCachedRepoList check')
102 102 if not has_perm:
103 103 continue
104 104
105 105 tmp_d = {
106 106 'name': dbr.repo_name,
107 107 'dbrepo': dbr.get_dict(),
108 108 'dbrepo_fork': dbr.fork.get_dict() if dbr.fork else {}
109 109 }
110 110 yield tmp_d
111 111
112 112
113 113 class _PermCheckIterator(object):
114 114
115 115 def __init__(
116 116 self, obj_list, obj_attr, perm_set, perm_checker,
117 117 extra_kwargs=None):
118 118 """
119 119 Creates iterator from given list of objects, additionally
120 120 checking permission for them from perm_set var
121 121
122 122 :param obj_list: list of db objects
123 123 :param obj_attr: attribute of object to pass into perm_checker
124 124 :param perm_set: list of permissions to check
125 125 :param perm_checker: callable to check permissions against
126 126 """
127 127 self.obj_list = obj_list
128 128 self.obj_attr = obj_attr
129 129 self.perm_set = perm_set
130 130 self.perm_checker = perm_checker
131 131 self.extra_kwargs = extra_kwargs or {}
132 132
133 133 def __len__(self):
134 134 return len(self.obj_list)
135 135
136 136 def __repr__(self):
137 137 return '<%s (%s)>' % (self.__class__.__name__, self.__len__())
138 138
139 139 def __iter__(self):
140 140 checker = self.perm_checker(*self.perm_set)
141 141 for db_obj in self.obj_list:
142 142 # check permission at this level
143 143 name = getattr(db_obj, self.obj_attr, None)
144 144 if not checker(name, self.__class__.__name__, **self.extra_kwargs):
145 145 continue
146 146
147 147 yield db_obj
148 148
149 149
150 150 class RepoList(_PermCheckIterator):
151 151
152 152 def __init__(self, db_repo_list, perm_set=None, extra_kwargs=None):
153 153 if not perm_set:
154 154 perm_set = [
155 155 'repository.read', 'repository.write', 'repository.admin']
156 156
157 157 super(RepoList, self).__init__(
158 158 obj_list=db_repo_list,
159 159 obj_attr='repo_name', perm_set=perm_set,
160 160 perm_checker=HasRepoPermissionAny,
161 161 extra_kwargs=extra_kwargs)
162 162
163 163
164 164 class RepoGroupList(_PermCheckIterator):
165 165
166 166 def __init__(self, db_repo_group_list, perm_set=None, extra_kwargs=None):
167 167 if not perm_set:
168 168 perm_set = ['group.read', 'group.write', 'group.admin']
169 169
170 170 super(RepoGroupList, self).__init__(
171 171 obj_list=db_repo_group_list,
172 172 obj_attr='group_name', perm_set=perm_set,
173 173 perm_checker=HasRepoGroupPermissionAny,
174 174 extra_kwargs=extra_kwargs)
175 175
176 176
177 177 class UserGroupList(_PermCheckIterator):
178 178
179 179 def __init__(self, db_user_group_list, perm_set=None, extra_kwargs=None):
180 180 if not perm_set:
181 181 perm_set = ['usergroup.read', 'usergroup.write', 'usergroup.admin']
182 182
183 183 super(UserGroupList, self).__init__(
184 184 obj_list=db_user_group_list,
185 185 obj_attr='users_group_name', perm_set=perm_set,
186 186 perm_checker=HasUserGroupPermissionAny,
187 187 extra_kwargs=extra_kwargs)
188 188
189 189
190 190 class ScmModel(BaseModel):
191 191 """
192 192 Generic Scm Model
193 193 """
194 194
195 195 @LazyProperty
196 196 def repos_path(self):
197 197 """
198 198 Gets the repositories root path from database
199 199 """
200 200
201 201 settings_model = VcsSettingsModel(sa=self.sa)
202 202 return settings_model.get_repos_location()
203 203
204 204 def repo_scan(self, repos_path=None):
205 205 """
206 206 Listing of repositories in given path. This path should not be a
207 207 repository itself. Return a dictionary of repository objects
208 208
209 209 :param repos_path: path to directory containing repositories
210 210 """
211 211
212 212 if repos_path is None:
213 213 repos_path = self.repos_path
214 214
215 215 log.info('scanning for repositories in %s', repos_path)
216 216
217 217 config = make_db_config()
218 218 config.set('extensions', 'largefiles', '')
219 219 repos = {}
220 220
221 221 for name, path in get_filesystem_repos(repos_path, recursive=True):
222 222 # name need to be decomposed and put back together using the /
223 223 # since this is internal storage separator for rhodecode
224 224 name = Repository.normalize_repo_name(name)
225 225
226 226 try:
227 227 if name in repos:
228 228 raise RepositoryError('Duplicate repository name %s '
229 229 'found in %s' % (name, path))
230 230 elif path[0] in rhodecode.BACKENDS:
231 231 klass = get_backend(path[0])
232 232 repos[name] = klass(path[1], config=config)
233 233 except OSError:
234 234 continue
235 235 log.debug('found %s paths with repositories', len(repos))
236 236 return repos
237 237
238 238 def get_repos(self, all_repos=None, sort_key=None):
239 239 """
240 240 Get all repositories from db and for each repo create it's
241 241 backend instance and fill that backed with information from database
242 242
243 243 :param all_repos: list of repository names as strings
244 244 give specific repositories list, good for filtering
245 245
246 246 :param sort_key: initial sorting of repositories
247 247 """
248 248 if all_repos is None:
249 249 all_repos = self.sa.query(Repository)\
250 250 .filter(Repository.group_id == None)\
251 251 .order_by(func.lower(Repository.repo_name)).all()
252 252 repo_iter = SimpleCachedRepoList(
253 253 all_repos, repos_path=self.repos_path, order_by=sort_key)
254 254 return repo_iter
255 255
256 256 def get_repo_groups(self, all_groups=None):
257 257 if all_groups is None:
258 258 all_groups = RepoGroup.query()\
259 259 .filter(RepoGroup.group_parent_id == None).all()
260 260 return [x for x in RepoGroupList(all_groups)]
261 261
262 262 def mark_for_invalidation(self, repo_name, delete=False):
263 263 """
264 264 Mark caches of this repo invalid in the database. `delete` flag
265 265 removes the cache entries
266 266
267 267 :param repo_name: the repo_name for which caches should be marked
268 268 invalid, or deleted
269 269 :param delete: delete the entry keys instead of setting bool
270 flag on them
270 flag on them, and also purge caches used by the dogpile
271 271 """
272 272 CacheKey.set_invalidate(repo_name, delete=delete)
273 273 repo = Repository.get_by_repo_name(repo_name)
274 274
275 275 if repo:
276 repo_id = repo.repo_id
276 277 config = repo._config
277 278 config.set('extensions', 'largefiles', '')
278 279 repo.update_commit_cache(config=config, cs_cache=None)
279 caches.clear_repo_caches(repo_name)
280 if delete:
281 cache_namespace_uid = 'cache_repo.{}'.format(repo_id)
282 rc_cache.clear_cache_namespace('cache_repo', cache_namespace_uid)
280 283
281 284 def toggle_following_repo(self, follow_repo_id, user_id):
282 285
283 286 f = self.sa.query(UserFollowing)\
284 287 .filter(UserFollowing.follows_repo_id == follow_repo_id)\
285 288 .filter(UserFollowing.user_id == user_id).scalar()
286 289
287 290 if f is not None:
288 291 try:
289 292 self.sa.delete(f)
290 293 return
291 294 except Exception:
292 295 log.error(traceback.format_exc())
293 296 raise
294 297
295 298 try:
296 299 f = UserFollowing()
297 300 f.user_id = user_id
298 301 f.follows_repo_id = follow_repo_id
299 302 self.sa.add(f)
300 303 except Exception:
301 304 log.error(traceback.format_exc())
302 305 raise
303 306
304 307 def toggle_following_user(self, follow_user_id, user_id):
305 308 f = self.sa.query(UserFollowing)\
306 309 .filter(UserFollowing.follows_user_id == follow_user_id)\
307 310 .filter(UserFollowing.user_id == user_id).scalar()
308 311
309 312 if f is not None:
310 313 try:
311 314 self.sa.delete(f)
312 315 return
313 316 except Exception:
314 317 log.error(traceback.format_exc())
315 318 raise
316 319
317 320 try:
318 321 f = UserFollowing()
319 322 f.user_id = user_id
320 323 f.follows_user_id = follow_user_id
321 324 self.sa.add(f)
322 325 except Exception:
323 326 log.error(traceback.format_exc())
324 327 raise
325 328
326 329 def is_following_repo(self, repo_name, user_id, cache=False):
327 330 r = self.sa.query(Repository)\
328 331 .filter(Repository.repo_name == repo_name).scalar()
329 332
330 333 f = self.sa.query(UserFollowing)\
331 334 .filter(UserFollowing.follows_repository == r)\
332 335 .filter(UserFollowing.user_id == user_id).scalar()
333 336
334 337 return f is not None
335 338
336 339 def is_following_user(self, username, user_id, cache=False):
337 340 u = User.get_by_username(username)
338 341
339 342 f = self.sa.query(UserFollowing)\
340 343 .filter(UserFollowing.follows_user == u)\
341 344 .filter(UserFollowing.user_id == user_id).scalar()
342 345
343 346 return f is not None
344 347
345 348 def get_followers(self, repo):
346 349 repo = self._get_repo(repo)
347 350
348 351 return self.sa.query(UserFollowing)\
349 352 .filter(UserFollowing.follows_repository == repo).count()
350 353
351 354 def get_forks(self, repo):
352 355 repo = self._get_repo(repo)
353 356 return self.sa.query(Repository)\
354 357 .filter(Repository.fork == repo).count()
355 358
356 359 def get_pull_requests(self, repo):
357 360 repo = self._get_repo(repo)
358 361 return self.sa.query(PullRequest)\
359 362 .filter(PullRequest.target_repo == repo)\
360 363 .filter(PullRequest.status != PullRequest.STATUS_CLOSED).count()
361 364
362 365 def mark_as_fork(self, repo, fork, user):
363 366 repo = self._get_repo(repo)
364 367 fork = self._get_repo(fork)
365 368 if fork and repo.repo_id == fork.repo_id:
366 369 raise Exception("Cannot set repository as fork of itself")
367 370
368 371 if fork and repo.repo_type != fork.repo_type:
369 372 raise RepositoryError(
370 373 "Cannot set repository as fork of repository with other type")
371 374
372 375 repo.fork = fork
373 376 self.sa.add(repo)
374 377 return repo
375 378
376 379 def pull_changes(self, repo, username, remote_uri=None):
377 380 dbrepo = self._get_repo(repo)
378 381 remote_uri = remote_uri or dbrepo.clone_uri
379 382 if not remote_uri:
380 383 raise Exception("This repository doesn't have a clone uri")
381 384
382 385 repo = dbrepo.scm_instance(cache=False)
383 386 # TODO: marcink fix this an re-enable since we need common logic
384 387 # for hg/git remove hooks so we don't trigger them on fetching
385 388 # commits from remote
386 389 repo.config.clear_section('hooks')
387 390
388 391 repo_name = dbrepo.repo_name
389 392 try:
390 393 # TODO: we need to make sure those operations call proper hooks !
391 394 repo.pull(remote_uri)
392 395
393 396 self.mark_for_invalidation(repo_name)
394 397 except Exception:
395 398 log.error(traceback.format_exc())
396 399 raise
397 400
398 401 def push_changes(self, repo, username, remote_uri=None):
399 402 dbrepo = self._get_repo(repo)
400 403 remote_uri = remote_uri or dbrepo.push_uri
401 404 if not remote_uri:
402 405 raise Exception("This repository doesn't have a clone uri")
403 406
404 407 repo = dbrepo.scm_instance(cache=False)
405 408 repo.config.clear_section('hooks')
406 409
407 410 try:
408 411 repo.push(remote_uri)
409 412 except Exception:
410 413 log.error(traceback.format_exc())
411 414 raise
412 415
413 416 def commit_change(self, repo, repo_name, commit, user, author, message,
414 417 content, f_path):
415 418 """
416 419 Commits changes
417 420
418 421 :param repo: SCM instance
419 422
420 423 """
421 424 user = self._get_user(user)
422 425
423 426 # decoding here will force that we have proper encoded values
424 427 # in any other case this will throw exceptions and deny commit
425 428 content = safe_str(content)
426 429 path = safe_str(f_path)
427 430 # message and author needs to be unicode
428 431 # proper backend should then translate that into required type
429 432 message = safe_unicode(message)
430 433 author = safe_unicode(author)
431 434 imc = repo.in_memory_commit
432 435 imc.change(FileNode(path, content, mode=commit.get_file_mode(f_path)))
433 436 try:
434 437 # TODO: handle pre-push action !
435 438 tip = imc.commit(
436 439 message=message, author=author, parents=[commit],
437 440 branch=commit.branch)
438 441 except Exception as e:
439 442 log.error(traceback.format_exc())
440 443 raise IMCCommitError(str(e))
441 444 finally:
442 445 # always clear caches, if commit fails we want fresh object also
443 446 self.mark_for_invalidation(repo_name)
444 447
445 448 # We trigger the post-push action
446 449 hooks_utils.trigger_post_push_hook(
447 450 username=user.username, action='push_local', repo_name=repo_name,
448 451 repo_alias=repo.alias, commit_ids=[tip.raw_id])
449 452 return tip
450 453
451 454 def _sanitize_path(self, f_path):
452 455 if f_path.startswith('/') or f_path.startswith('./') or '../' in f_path:
453 456 raise NonRelativePathError('%s is not an relative path' % f_path)
454 457 if f_path:
455 458 f_path = os.path.normpath(f_path)
456 459 return f_path
457 460
458 461 def get_dirnode_metadata(self, request, commit, dir_node):
459 462 if not dir_node.is_dir():
460 463 return []
461 464
462 465 data = []
463 466 for node in dir_node:
464 467 if not node.is_file():
465 468 # we skip file-nodes
466 469 continue
467 470
468 471 last_commit = node.last_commit
469 472 last_commit_date = last_commit.date
470 473 data.append({
471 474 'name': node.name,
472 475 'size': h.format_byte_size_binary(node.size),
473 476 'modified_at': h.format_date(last_commit_date),
474 477 'modified_ts': last_commit_date.isoformat(),
475 478 'revision': last_commit.revision,
476 479 'short_id': last_commit.short_id,
477 480 'message': h.escape(last_commit.message),
478 481 'author': h.escape(last_commit.author),
479 482 'user_profile': h.gravatar_with_user(
480 483 request, last_commit.author),
481 484 })
482 485
483 486 return data
484 487
485 488 def get_nodes(self, repo_name, commit_id, root_path='/', flat=True,
486 489 extended_info=False, content=False, max_file_bytes=None):
487 490 """
488 491 recursive walk in root dir and return a set of all path in that dir
489 492 based on repository walk function
490 493
491 494 :param repo_name: name of repository
492 495 :param commit_id: commit id for which to list nodes
493 496 :param root_path: root path to list
494 497 :param flat: return as a list, if False returns a dict with description
495 498 :param max_file_bytes: will not return file contents over this limit
496 499
497 500 """
498 501 _files = list()
499 502 _dirs = list()
500 503 try:
501 504 _repo = self._get_repo(repo_name)
502 505 commit = _repo.scm_instance().get_commit(commit_id=commit_id)
503 506 root_path = root_path.lstrip('/')
504 507 for __, dirs, files in commit.walk(root_path):
505 508 for f in files:
506 509 _content = None
507 510 _data = f.unicode_path
508 511 over_size_limit = (max_file_bytes is not None
509 512 and f.size > max_file_bytes)
510 513
511 514 if not flat:
512 515 _data = {
513 516 "name": h.escape(f.unicode_path),
514 517 "type": "file",
515 518 }
516 519 if extended_info:
517 520 _data.update({
518 521 "md5": f.md5,
519 522 "binary": f.is_binary,
520 523 "size": f.size,
521 524 "extension": f.extension,
522 525 "mimetype": f.mimetype,
523 526 "lines": f.lines()[0]
524 527 })
525 528
526 529 if content:
527 530 full_content = None
528 531 if not f.is_binary and not over_size_limit:
529 532 full_content = safe_str(f.content)
530 533
531 534 _data.update({
532 535 "content": full_content,
533 536 })
534 537 _files.append(_data)
535 538 for d in dirs:
536 539 _data = d.unicode_path
537 540 if not flat:
538 541 _data = {
539 542 "name": h.escape(d.unicode_path),
540 543 "type": "dir",
541 544 }
542 545 if extended_info:
543 546 _data.update({
544 547 "md5": None,
545 548 "binary": None,
546 549 "size": None,
547 550 "extension": None,
548 551 })
549 552 if content:
550 553 _data.update({
551 554 "content": None
552 555 })
553 556 _dirs.append(_data)
554 557 except RepositoryError:
555 558 log.debug("Exception in get_nodes", exc_info=True)
556 559 raise
557 560
558 561 return _dirs, _files
559 562
560 563 def create_nodes(self, user, repo, message, nodes, parent_commit=None,
561 564 author=None, trigger_push_hook=True):
562 565 """
563 566 Commits given multiple nodes into repo
564 567
565 568 :param user: RhodeCode User object or user_id, the commiter
566 569 :param repo: RhodeCode Repository object
567 570 :param message: commit message
568 571 :param nodes: mapping {filename:{'content':content},...}
569 572 :param parent_commit: parent commit, can be empty than it's
570 573 initial commit
571 574 :param author: author of commit, cna be different that commiter
572 575 only for git
573 576 :param trigger_push_hook: trigger push hooks
574 577
575 578 :returns: new commited commit
576 579 """
577 580
578 581 user = self._get_user(user)
579 582 scm_instance = repo.scm_instance(cache=False)
580 583
581 584 processed_nodes = []
582 585 for f_path in nodes:
583 586 f_path = self._sanitize_path(f_path)
584 587 content = nodes[f_path]['content']
585 588 f_path = safe_str(f_path)
586 589 # decoding here will force that we have proper encoded values
587 590 # in any other case this will throw exceptions and deny commit
588 591 if isinstance(content, (basestring,)):
589 592 content = safe_str(content)
590 593 elif isinstance(content, (file, cStringIO.OutputType,)):
591 594 content = content.read()
592 595 else:
593 596 raise Exception('Content is of unrecognized type %s' % (
594 597 type(content)
595 598 ))
596 599 processed_nodes.append((f_path, content))
597 600
598 601 message = safe_unicode(message)
599 602 commiter = user.full_contact
600 603 author = safe_unicode(author) if author else commiter
601 604
602 605 imc = scm_instance.in_memory_commit
603 606
604 607 if not parent_commit:
605 608 parent_commit = EmptyCommit(alias=scm_instance.alias)
606 609
607 610 if isinstance(parent_commit, EmptyCommit):
608 611 # EmptyCommit means we we're editing empty repository
609 612 parents = None
610 613 else:
611 614 parents = [parent_commit]
612 615 # add multiple nodes
613 616 for path, content in processed_nodes:
614 617 imc.add(FileNode(path, content=content))
615 618 # TODO: handle pre push scenario
616 619 tip = imc.commit(message=message,
617 620 author=author,
618 621 parents=parents,
619 622 branch=parent_commit.branch)
620 623
621 624 self.mark_for_invalidation(repo.repo_name)
622 625 if trigger_push_hook:
623 626 hooks_utils.trigger_post_push_hook(
624 627 username=user.username, action='push_local',
625 628 repo_name=repo.repo_name, repo_alias=scm_instance.alias,
626 629 commit_ids=[tip.raw_id])
627 630 return tip
628 631
629 632 def update_nodes(self, user, repo, message, nodes, parent_commit=None,
630 633 author=None, trigger_push_hook=True):
631 634 user = self._get_user(user)
632 635 scm_instance = repo.scm_instance(cache=False)
633 636
634 637 message = safe_unicode(message)
635 638 commiter = user.full_contact
636 639 author = safe_unicode(author) if author else commiter
637 640
638 641 imc = scm_instance.in_memory_commit
639 642
640 643 if not parent_commit:
641 644 parent_commit = EmptyCommit(alias=scm_instance.alias)
642 645
643 646 if isinstance(parent_commit, EmptyCommit):
644 647 # EmptyCommit means we we're editing empty repository
645 648 parents = None
646 649 else:
647 650 parents = [parent_commit]
648 651
649 652 # add multiple nodes
650 653 for _filename, data in nodes.items():
651 654 # new filename, can be renamed from the old one, also sanitaze
652 655 # the path for any hack around relative paths like ../../ etc.
653 656 filename = self._sanitize_path(data['filename'])
654 657 old_filename = self._sanitize_path(_filename)
655 658 content = data['content']
656 659
657 660 filenode = FileNode(old_filename, content=content)
658 661 op = data['op']
659 662 if op == 'add':
660 663 imc.add(filenode)
661 664 elif op == 'del':
662 665 imc.remove(filenode)
663 666 elif op == 'mod':
664 667 if filename != old_filename:
665 668 # TODO: handle renames more efficient, needs vcs lib
666 669 # changes
667 670 imc.remove(filenode)
668 671 imc.add(FileNode(filename, content=content))
669 672 else:
670 673 imc.change(filenode)
671 674
672 675 try:
673 676 # TODO: handle pre push scenario
674 677 # commit changes
675 678 tip = imc.commit(message=message,
676 679 author=author,
677 680 parents=parents,
678 681 branch=parent_commit.branch)
679 682 except NodeNotChangedError:
680 683 raise
681 684 except Exception as e:
682 685 log.exception("Unexpected exception during call to imc.commit")
683 686 raise IMCCommitError(str(e))
684 687 finally:
685 688 # always clear caches, if commit fails we want fresh object also
686 689 self.mark_for_invalidation(repo.repo_name)
687 690
688 691 if trigger_push_hook:
689 692 hooks_utils.trigger_post_push_hook(
690 693 username=user.username, action='push_local',
691 694 repo_name=repo.repo_name, repo_alias=scm_instance.alias,
692 695 commit_ids=[tip.raw_id])
693 696
694 697 def delete_nodes(self, user, repo, message, nodes, parent_commit=None,
695 698 author=None, trigger_push_hook=True):
696 699 """
697 700 Deletes given multiple nodes into `repo`
698 701
699 702 :param user: RhodeCode User object or user_id, the committer
700 703 :param repo: RhodeCode Repository object
701 704 :param message: commit message
702 705 :param nodes: mapping {filename:{'content':content},...}
703 706 :param parent_commit: parent commit, can be empty than it's initial
704 707 commit
705 708 :param author: author of commit, cna be different that commiter only
706 709 for git
707 710 :param trigger_push_hook: trigger push hooks
708 711
709 712 :returns: new commit after deletion
710 713 """
711 714
712 715 user = self._get_user(user)
713 716 scm_instance = repo.scm_instance(cache=False)
714 717
715 718 processed_nodes = []
716 719 for f_path in nodes:
717 720 f_path = self._sanitize_path(f_path)
718 721 # content can be empty but for compatabilty it allows same dicts
719 722 # structure as add_nodes
720 723 content = nodes[f_path].get('content')
721 724 processed_nodes.append((f_path, content))
722 725
723 726 message = safe_unicode(message)
724 727 commiter = user.full_contact
725 728 author = safe_unicode(author) if author else commiter
726 729
727 730 imc = scm_instance.in_memory_commit
728 731
729 732 if not parent_commit:
730 733 parent_commit = EmptyCommit(alias=scm_instance.alias)
731 734
732 735 if isinstance(parent_commit, EmptyCommit):
733 736 # EmptyCommit means we we're editing empty repository
734 737 parents = None
735 738 else:
736 739 parents = [parent_commit]
737 740 # add multiple nodes
738 741 for path, content in processed_nodes:
739 742 imc.remove(FileNode(path, content=content))
740 743
741 744 # TODO: handle pre push scenario
742 745 tip = imc.commit(message=message,
743 746 author=author,
744 747 parents=parents,
745 748 branch=parent_commit.branch)
746 749
747 750 self.mark_for_invalidation(repo.repo_name)
748 751 if trigger_push_hook:
749 752 hooks_utils.trigger_post_push_hook(
750 753 username=user.username, action='push_local',
751 754 repo_name=repo.repo_name, repo_alias=scm_instance.alias,
752 755 commit_ids=[tip.raw_id])
753 756 return tip
754 757
755 758 def strip(self, repo, commit_id, branch):
756 759 scm_instance = repo.scm_instance(cache=False)
757 760 scm_instance.config.clear_section('hooks')
758 761 scm_instance.strip(commit_id, branch)
759 762 self.mark_for_invalidation(repo.repo_name)
760 763
761 764 def get_unread_journal(self):
762 765 return self.sa.query(UserLog).count()
763 766
764 767 def get_repo_landing_revs(self, translator, repo=None):
765 768 """
766 769 Generates select option with tags branches and bookmarks (for hg only)
767 770 grouped by type
768 771
769 772 :param repo:
770 773 """
771 774 _ = translator
772 775 repo = self._get_repo(repo)
773 776
774 777 hist_l = [
775 778 ['rev:tip', _('latest tip')]
776 779 ]
777 780 choices = [
778 781 'rev:tip'
779 782 ]
780 783
781 784 if not repo:
782 785 return choices, hist_l
783 786
784 787 repo = repo.scm_instance()
785 788
786 789 branches_group = (
787 790 [(u'branch:%s' % safe_unicode(b), safe_unicode(b))
788 791 for b in repo.branches],
789 792 _("Branches"))
790 793 hist_l.append(branches_group)
791 794 choices.extend([x[0] for x in branches_group[0]])
792 795
793 796 if repo.alias == 'hg':
794 797 bookmarks_group = (
795 798 [(u'book:%s' % safe_unicode(b), safe_unicode(b))
796 799 for b in repo.bookmarks],
797 800 _("Bookmarks"))
798 801 hist_l.append(bookmarks_group)
799 802 choices.extend([x[0] for x in bookmarks_group[0]])
800 803
801 804 tags_group = (
802 805 [(u'tag:%s' % safe_unicode(t), safe_unicode(t))
803 806 for t in repo.tags],
804 807 _("Tags"))
805 808 hist_l.append(tags_group)
806 809 choices.extend([x[0] for x in tags_group[0]])
807 810
808 811 return choices, hist_l
809 812
810 813 def get_server_info(self, environ=None):
811 814 server_info = get_system_info(environ)
812 815 return server_info
Show file before | Show file after | Hide comments
@@ -1,98 +1,133 b''
1 1 <div class="panel panel-default">
2 2 <div class="panel-heading">
3 3 <h3 class="panel-title">${_('Invalidate Cache for Repository')}</h3>
4 4 </div>
5 5 <div class="panel-body">
6 6
7 7 <h4>${_('Manually invalidate the repository cache. On the next access a repository cache will be recreated.')}</h4>
8 8
9 9 <p>
10 10 ${_('Cache purge can be automated by such api call. Can be called periodically in crontab etc.')}
11 11 <br/>
12 12 <code>
13 13 ${h.api_call_example(method='invalidate_cache', args={"repoid": c.rhodecode_db_repo.repo_name})}
14 14 </code>
15 15 </p>
16 16
17 17 ${h.secure_form(h.route_path('edit_repo_caches', repo_name=c.repo_name), request=request)}
18 18 <div class="form">
19 19 <div class="fields">
20 20 ${h.submit('reset_cache_%s' % c.rhodecode_db_repo.repo_name,_('Invalidate repository cache'),class_="btn btn-small",onclick="return confirm('"+_('Confirm to invalidate repository cache')+"');")}
21 21 </div>
22 22 </div>
23 23 ${h.end_form()}
24 24
25 25 </div>
26 26 </div>
27 27
28 28
29 29 <div class="panel panel-default">
30 30 <div class="panel-heading">
31 31 <h3 class="panel-title">
32 32 ${(_ungettext('List of repository caches (%(count)s entry)', 'List of repository caches (%(count)s entries)' ,len(c.rhodecode_db_repo.cache_keys)) % {'count': len(c.rhodecode_db_repo.cache_keys)})}
33 33 </h3>
34 34 </div>
35 35 <div class="panel-body">
36 36 <div class="field" >
37 37 <table class="rctable edit_cache">
38 38 <tr>
39 39 <th>${_('Prefix')}</th>
40 40 <th>${_('Key')}</th>
41 41 <th>${_('Active')}</th>
42 42 </tr>
43 43 %for cache in c.rhodecode_db_repo.cache_keys:
44 44 <tr>
45 45 <td class="td-prefix">${cache.get_prefix() or '-'}</td>
46 46 <td class="td-cachekey">${cache.cache_key}</td>
47 47 <td class="td-active">${h.bool2icon(cache.cache_active)}</td>
48 48 </tr>
49 49 %endfor
50 50 </table>
51 51 </div>
52 52 </div>
53 53 </div>
54 54
55 55 <div class="panel panel-default">
56 56 <div class="panel-heading">
57 <h3 class="panel-title">
58 ${_('Cache keys')}
59 </h3>
60 </div>
61 <div class="panel-body">
62 <p>
63 Cache keys used for storing cached values of repository stats,
64 file tree history and file tree search.
65 Invalidating the cache will remove those entries.
66 </p>
67 <pre>
68 region: ${c.region.name}
69 backend: ${c.region.actual_backend.__class__}
70 store: ${c.region.actual_backend.get_store()}
71
72
73 % if c.repo_keys:
74 ${len(c.repo_keys)} <a href="#showKeys" onclick="$('#show-keys').toggle()">${_('Show all')}</a>
75 <span id="show-keys" style="display: none">
76 % for k in c.repo_keys:
77 - ${k}
78 % endfor
79 </span>
80 % else:
81 NO KEYS FOUND
82 % endif
83
84 </pre>
85
86 </div>
87 </div>
88
89
90 <div class="panel panel-default">
91 <div class="panel-heading">
57 92 <h3 class="panel-title">${_('Shadow Repositories')}</h3>
58 93 </div>
59 94 <div class="panel-body">
60 95 <table class="rctable edit_cache">
61 96 % if c.shadow_repos:
62 97 % for shadow_repo in c.shadow_repos:
63 98 <tr>
64 99 <td>${shadow_repo}</td>
65 100 </tr>
66 101 % endfor
67 102 % else:
68 103 <tr>
69 104 <td>${_('No Shadow repositories exist for this repository.')}</td>
70 105 </tr>
71 106 % endif
72 107
73 108 </table>
74 109 </div>
75 110 </div>
76 111
77 112
78 113 <div class="panel panel-default">
79 114 <div class="panel-heading">
80 115 <h3 class="panel-title">${_('Diff Caches')}</h3>
81 116 </div>
82 117 <div class="panel-body">
83 118 <table class="rctable edit_cache">
84 119 <tr>
85 120 <td>${_('Cached diff name')}:</td>
86 121 <td>${c.rhodecode_db_repo.cached_diffs_relative_dir}</td>
87 122 </tr>
88 123 <tr>
89 124 <td>${_('Cached diff files')}:</td>
90 125 <td>${c.cached_diff_count}</td>
91 126 </tr>
92 127 <tr>
93 128 <td>${_('Cached diff size')}:</td>
94 129 <td>${h.format_byte_size(c.cached_diff_size)}</td>
95 130 </tr>
96 131 </table>
97 132 </div>
98 133 </div>
Show file before | Show file after | Hide comments
@@ -1,29 +1,41 b''
1 1 <%namespace name="base" file="/base/base.mako"/>
2 2
3 3 <div class="panel panel-default">
4 4 <div class="panel-heading">
5 5 <h3 class="panel-title">${_('Caches')}</h3>
6 6 </div>
7 7 <div class="panel-body">
8 <p>
9 Cache keys used for storing cached values of user permissions and authentication plugin cache.
10 Invalidating the cache will remove those entries.
11 </p>
12
8 13 <pre>
9 14 region: ${c.region.name}
10 15 backend: ${c.region.actual_backend.__class__}
11 16 store: ${c.region.actual_backend.get_store()}
12 17
18 % if c.user_keys:
19 ${len(c.user_keys)} <a href="#showKeys" onclick="$('#show-keys').toggle()">${_('Show all')}</a>
20 <span id="show-keys" style="display: none">
13 21 % for k in c.user_keys:
14 22 - ${k}
15 23 % endfor
24 </span>
25 % else:
26 NO KEYS FOUND
27 % endif
16 28 </pre>
17
29 <p></p>
18 30 ${h.secure_form(h.route_path('edit_user_caches_update', user_id=c.user.user_id), request=request)}
19 31 <div class="form">
20 32 <div class="fields">
21 33 ${h.submit('reset_cache_%s' % c.user.user_id, _('Invalidate user cache'),class_="btn btn-small",onclick="return confirm('"+_('Confirm to invalidate user cache')+"');")}
22 34 </div>
23 35 </div>
24 36 ${h.end_form()}
25 37
26 38 </div>
27 39 </div>
28 40
29 41
Show file before | Show file after | Hide comments
@@ -1,683 +1,671 b''
1 1
2 2
3 3 ################################################################################
4 4 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
5 5 # The %(here)s variable will be replaced with the parent directory of this file#
6 6 ################################################################################
7 7
8 8 [DEFAULT]
9 9 debug = true
10 10
11 11 ################################################################################
12 12 ## EMAIL CONFIGURATION ##
13 13 ## Uncomment and replace with the email address which should receive ##
14 14 ## any error reports after an application crash ##
15 15 ## Additionally these settings will be used by the RhodeCode mailing system ##
16 16 ################################################################################
17 17
18 18 ## prefix all emails subjects with given prefix, helps filtering out emails
19 19 #email_prefix = [RhodeCode]
20 20
21 21 ## email FROM address all mails will be sent
22 22 #app_email_from = rhodecode-noreply@localhost
23 23
24 24 ## Uncomment and replace with the address which should receive any error report
25 25 ## note: using appenlight for error handling doesn't need this to be uncommented
26 26 #email_to = admin@localhost
27 27
28 28 ## in case of Application errors, sent an error email form
29 29 #error_email_from = rhodecode_error@localhost
30 30
31 31 ## additional error message to be send in case of server crash
32 32 #error_message =
33 33
34 34
35 35 #smtp_server = mail.server.com
36 36 #smtp_username =
37 37 #smtp_password =
38 38 #smtp_port =
39 39 #smtp_use_tls = false
40 40 #smtp_use_ssl = true
41 41 ## Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
42 42 #smtp_auth =
43 43
44 44 [server:main]
45 45 ## COMMON ##
46 46 host = 0.0.0.0
47 47 port = 5000
48 48
49 49 ##########################
50 50 ## GUNICORN WSGI SERVER ##
51 51 ##########################
52 52 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
53 53
54 54 use = egg:gunicorn#main
55 55 ## Sets the number of process workers. You must set `instance_id = *`
56 56 ## when this option is set to more than one worker, recommended
57 57 ## value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers
58 58 ## The `instance_id = *` must be set in the [app:main] section below
59 59 #workers = 2
60 60 ## number of threads for each of the worker, must be set to 1 for gevent
61 61 ## generally recommened to be at 1
62 62 #threads = 1
63 63 ## process name
64 64 #proc_name = rhodecode
65 65 ## type of worker class, one of sync, gevent
66 66 ## recommended for bigger setup is using of of other than sync one
67 67 #worker_class = sync
68 68 ## The maximum number of simultaneous clients. Valid only for Gevent
69 69 #worker_connections = 10
70 70 ## max number of requests that worker will handle before being gracefully
71 71 ## restarted, could prevent memory leaks
72 72 #max_requests = 1000
73 73 #max_requests_jitter = 30
74 74 ## amount of time a worker can spend with handling a request before it
75 75 ## gets killed and restarted. Set to 6hrs
76 76 #timeout = 21600
77 77
78 78 ## prefix middleware for RhodeCode.
79 79 ## recommended when using proxy setup.
80 80 ## allows to set RhodeCode under a prefix in server.
81 81 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
82 82 ## And set your prefix like: `prefix = /custom_prefix`
83 83 ## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
84 84 ## to make your cookies only work on prefix url
85 85 [filter:proxy-prefix]
86 86 use = egg:PasteDeploy#prefix
87 87 prefix = /
88 88
89 89 [app:main]
90 90 is_test = True
91 91 use = egg:rhodecode-enterprise-ce
92 92
93 93 ## enable proxy prefix middleware, defined above
94 94 #filter-with = proxy-prefix
95 95
96 96
97 97 ## RHODECODE PLUGINS ##
98 98 rhodecode.includes = rhodecode.api
99 99
100 100 # api prefix url
101 101 rhodecode.api.url = /_admin/api
102 102
103 103
104 104 ## END RHODECODE PLUGINS ##
105 105
106 106 ## encryption key used to encrypt social plugin tokens,
107 107 ## remote_urls with credentials etc, if not set it defaults to
108 108 ## `beaker.session.secret`
109 109 #rhodecode.encrypted_values.secret =
110 110
111 111 ## decryption strict mode (enabled by default). It controls if decryption raises
112 112 ## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
113 113 #rhodecode.encrypted_values.strict = false
114 114
115 115 ## return gzipped responses from Rhodecode (static files/application)
116 116 gzip_responses = false
117 117
118 118 ## autogenerate javascript routes file on startup
119 119 generate_js_files = false
120 120
121 121 ## Optional Languages
122 122 ## en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
123 123 lang = en
124 124
125 125 ## perform a full repository scan on each server start, this should be
126 126 ## set to false after first startup, to allow faster server restarts.
127 127 startup.import_repos = true
128 128
129 129 ## Uncomment and set this path to use archive download cache.
130 130 ## Once enabled, generated archives will be cached at this location
131 131 ## and served from the cache during subsequent requests for the same archive of
132 132 ## the repository.
133 133 #archive_cache_dir = /tmp/tarballcache
134 134
135 135 ## URL at which the application is running. This is used for bootstraping
136 136 ## requests in context when no web request is available. Used in ishell, or
137 137 ## SSH calls. Set this for events to receive proper url for SSH calls.
138 138 app.base_url = http://rhodecode.local
139 139
140 140 ## change this to unique ID for security
141 141 app_instance_uuid = rc-production
142 142
143 143 ## cut off limit for large diffs (size in bytes)
144 144 cut_off_limit_diff = 1024000
145 145 cut_off_limit_file = 256000
146 146
147 147 ## use cache version of scm repo everywhere
148 148 vcs_full_cache = false
149 149
150 150 ## force https in RhodeCode, fixes https redirects, assumes it's always https
151 151 ## Normally this is controlled by proper http flags sent from http server
152 152 force_https = false
153 153
154 154 ## use Strict-Transport-Security headers
155 155 use_htsts = false
156 156
157 157 ## git rev filter option, --all is the default filter, if you need to
158 158 ## hide all refs in changelog switch this to --branches --tags
159 159 git_rev_filter = --all
160 160
161 161 # Set to true if your repos are exposed using the dumb protocol
162 162 git_update_server_info = false
163 163
164 164 ## RSS/ATOM feed options
165 165 rss_cut_off_limit = 256000
166 166 rss_items_per_page = 10
167 167 rss_include_diff = false
168 168
169 169 ## gist URL alias, used to create nicer urls for gist. This should be an
170 170 ## url that does rewrites to _admin/gists/{gistid}.
171 171 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
172 172 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
173 173 gist_alias_url =
174 174
175 175 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
176 176 ## used for access.
177 177 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
178 178 ## came from the the logged in user who own this authentication token.
179 179 ## Additionally @TOKEN syntaxt can be used to bound the view to specific
180 180 ## authentication token. Such view would be only accessible when used together
181 181 ## with this authentication token
182 182 ##
183 183 ## list of all views can be found under `/_admin/permissions/auth_token_access`
184 184 ## The list should be "," separated and on a single line.
185 185 ##
186 186 ## Most common views to enable:
187 187 # RepoCommitsView:repo_commit_download
188 188 # RepoCommitsView:repo_commit_patch
189 189 # RepoCommitsView:repo_commit_raw
190 190 # RepoCommitsView:repo_commit_raw@TOKEN
191 191 # RepoFilesView:repo_files_diff
192 192 # RepoFilesView:repo_archivefile
193 193 # RepoFilesView:repo_file_raw
194 194 # GistView:*
195 195 api_access_controllers_whitelist =
196 196
197 197 ## default encoding used to convert from and to unicode
198 198 ## can be also a comma separated list of encoding in case of mixed encodings
199 199 default_encoding = UTF-8
200 200
201 201 ## instance-id prefix
202 202 ## a prefix key for this instance used for cache invalidation when running
203 203 ## multiple instances of rhodecode, make sure it's globally unique for
204 204 ## all running rhodecode instances. Leave empty if you don't use it
205 205 instance_id =
206 206
207 207 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
208 208 ## of an authentication plugin also if it is disabled by it's settings.
209 209 ## This could be useful if you are unable to log in to the system due to broken
210 210 ## authentication settings. Then you can enable e.g. the internal rhodecode auth
211 211 ## module to log in again and fix the settings.
212 212 ##
213 213 ## Available builtin plugin IDs (hash is part of the ID):
214 214 ## egg:rhodecode-enterprise-ce#rhodecode
215 215 ## egg:rhodecode-enterprise-ce#pam
216 216 ## egg:rhodecode-enterprise-ce#ldap
217 217 ## egg:rhodecode-enterprise-ce#jasig_cas
218 218 ## egg:rhodecode-enterprise-ce#headers
219 219 ## egg:rhodecode-enterprise-ce#crowd
220 220 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
221 221
222 222 ## alternative return HTTP header for failed authentication. Default HTTP
223 223 ## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
224 224 ## handling that causing a series of failed authentication calls.
225 225 ## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
226 226 ## This will be served instead of default 401 on bad authnetication
227 227 auth_ret_code =
228 228
229 229 ## use special detection method when serving auth_ret_code, instead of serving
230 230 ## ret_code directly, use 401 initially (Which triggers credentials prompt)
231 231 ## and then serve auth_ret_code to clients
232 232 auth_ret_code_detection = false
233 233
234 234 ## locking return code. When repository is locked return this HTTP code. 2XX
235 235 ## codes don't break the transactions while 4XX codes do
236 236 lock_ret_code = 423
237 237
238 238 ## allows to change the repository location in settings page
239 239 allow_repo_location_change = true
240 240
241 241 ## allows to setup custom hooks in settings page
242 242 allow_custom_hooks_settings = true
243 243
244 244 ## generated license token, goto license page in RhodeCode settings to obtain
245 245 ## new token
246 246 license_token = abra-cada-bra1-rce3
247 247
248 248 ## supervisor connection uri, for managing supervisor and logs.
249 249 supervisor.uri =
250 250 ## supervisord group name/id we only want this RC instance to handle
251 251 supervisor.group_id = dev
252 252
253 253 ## Display extended labs settings
254 254 labs_settings_active = true
255 255
256 256 ####################################
257 257 ### CELERY CONFIG ####
258 258 ####################################
259 259 use_celery = false
260 260 broker.host = localhost
261 261 broker.vhost = rabbitmqhost
262 262 broker.port = 5672
263 263 broker.user = rabbitmq
264 264 broker.password = qweqwe
265 265
266 266 celery.imports = rhodecode.lib.celerylib.tasks
267 267
268 268 celery.result.backend = amqp
269 269 celery.result.dburi = amqp://
270 270 celery.result.serialier = json
271 271
272 272 #celery.send.task.error.emails = true
273 273 #celery.amqp.task.result.expires = 18000
274 274
275 275 celeryd.concurrency = 2
276 276 #celeryd.log.file = celeryd.log
277 277 celeryd.log.level = debug
278 278 celeryd.max.tasks.per.child = 1
279 279
280 280 ## tasks will never be sent to the queue, but executed locally instead.
281 281 celery.always.eager = false
282 282
283 283 ####################################
284 284 ### BEAKER CACHE ####
285 285 ####################################
286 286 # default cache dir for templates. Putting this into a ramdisk
287 287 ## can boost performance, eg. %(here)s/data_ramdisk
288 288 cache_dir = %(here)s/data
289 289
290 290 ## locking and default file storage for Beaker. Putting this into a ramdisk
291 291 ## can boost performance, eg. %(here)s/data_ramdisk/cache/beaker_data
292 292 beaker.cache.data_dir = %(here)s/rc/data/cache/beaker_data
293 293 beaker.cache.lock_dir = %(here)s/rc/data/cache/beaker_lock
294 294
295 beaker.cache.regions = long_term, sql_cache_short, repo_cache_long
295 beaker.cache.regions = long_term, sql_cache_short
296 296
297 297 beaker.cache.long_term.type = memory
298 298 beaker.cache.long_term.expire = 36000
299 299 beaker.cache.long_term.key_length = 256
300 300
301 301 beaker.cache.sql_cache_short.type = memory
302 302 beaker.cache.sql_cache_short.expire = 1
303 303 beaker.cache.sql_cache_short.key_length = 256
304 304
305 beaker.cache.repo_cache_long.type = memorylru_base
306 beaker.cache.repo_cache_long.max_items = 4096
307 beaker.cache.repo_cache_long.expire = 2592000
308
309 ## default is memorylru_base cache, configure only if required
310 ## using multi-node or multi-worker setup
311 #beaker.cache.repo_cache_long.type = ext:memcached
312 #beaker.cache.repo_cache_long.url = localhost:11211
313 #beaker.cache.repo_cache_long.expire = 1209600
314 #beaker.cache.repo_cache_long.key_length = 256
315
316
317 305 #####################################
318 306 ### DOGPILE CACHE ####
319 307 #####################################
320 308
321 309 ## permission tree cache settings
322 310 rc_cache.cache_perms.backend = dogpile.cache.rc.file_namespace
323 311 rc_cache.cache_perms.expiration_time = 0
324 312 rc_cache.cache_perms.arguments.filename = /tmp/rc_cache_1
325 313
326 314 ####################################
327 315 ### BEAKER SESSION ####
328 316 ####################################
329 317
330 318 ## .session.type is type of storage options for the session, current allowed
331 319 ## types are file, ext:memcached, ext:database, and memory (default).
332 320 beaker.session.type = file
333 321 beaker.session.data_dir = %(here)s/rc/data/sessions/data
334 322
335 323 ## db based session, fast, and allows easy management over logged in users
336 324 #beaker.session.type = ext:database
337 325 #beaker.session.table_name = db_session
338 326 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
339 327 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
340 328 #beaker.session.sa.pool_recycle = 3600
341 329 #beaker.session.sa.echo = false
342 330
343 331 beaker.session.key = rhodecode
344 332 beaker.session.secret = test-rc-uytcxaz
345 333 beaker.session.lock_dir = %(here)s/rc/data/sessions/lock
346 334
347 335 ## Secure encrypted cookie. Requires AES and AES python libraries
348 336 ## you must disable beaker.session.secret to use this
349 337 #beaker.session.encrypt_key = key_for_encryption
350 338 #beaker.session.validate_key = validation_key
351 339
352 340 ## sets session as invalid(also logging out user) if it haven not been
353 341 ## accessed for given amount of time in seconds
354 342 beaker.session.timeout = 2592000
355 343 beaker.session.httponly = true
356 344 ## Path to use for the cookie. Set to prefix if you use prefix middleware
357 345 #beaker.session.cookie_path = /custom_prefix
358 346
359 347 ## uncomment for https secure cookie
360 348 beaker.session.secure = false
361 349
362 350 ## auto save the session to not to use .save()
363 351 beaker.session.auto = false
364 352
365 353 ## default cookie expiration time in seconds, set to `true` to set expire
366 354 ## at browser close
367 355 #beaker.session.cookie_expires = 3600
368 356
369 357 ###################################
370 358 ## SEARCH INDEXING CONFIGURATION ##
371 359 ###################################
372 360 ## Full text search indexer is available in rhodecode-tools under
373 361 ## `rhodecode-tools index` command
374 362
375 363 ## WHOOSH Backend, doesn't require additional services to run
376 364 ## it works good with few dozen repos
377 365 search.module = rhodecode.lib.index.whoosh
378 366 search.location = %(here)s/data/index
379 367
380 368 ########################################
381 369 ### CHANNELSTREAM CONFIG ####
382 370 ########################################
383 371 ## channelstream enables persistent connections and live notification
384 372 ## in the system. It's also used by the chat system
385 373
386 374 channelstream.enabled = false
387 375
388 376 ## server address for channelstream server on the backend
389 377 channelstream.server = 127.0.0.1:9800
390 378 ## location of the channelstream server from outside world
391 379 ## use ws:// for http or wss:// for https. This address needs to be handled
392 380 ## by external HTTP server such as Nginx or Apache
393 381 ## see nginx/apache configuration examples in our docs
394 382 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
395 383 channelstream.secret = secret
396 384 channelstream.history.location = %(here)s/channelstream_history
397 385
398 386 ## Internal application path that Javascript uses to connect into.
399 387 ## If you use proxy-prefix the prefix should be added before /_channelstream
400 388 channelstream.proxy_path = /_channelstream
401 389
402 390
403 391 ###################################
404 392 ## APPENLIGHT CONFIG ##
405 393 ###################################
406 394
407 395 ## Appenlight is tailored to work with RhodeCode, see
408 396 ## http://appenlight.com for details how to obtain an account
409 397
410 398 ## appenlight integration enabled
411 399 appenlight = false
412 400
413 401 appenlight.server_url = https://api.appenlight.com
414 402 appenlight.api_key = YOUR_API_KEY
415 403 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
416 404
417 405 # used for JS client
418 406 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
419 407
420 408 ## TWEAK AMOUNT OF INFO SENT HERE
421 409
422 410 ## enables 404 error logging (default False)
423 411 appenlight.report_404 = false
424 412
425 413 ## time in seconds after request is considered being slow (default 1)
426 414 appenlight.slow_request_time = 1
427 415
428 416 ## record slow requests in application
429 417 ## (needs to be enabled for slow datastore recording and time tracking)
430 418 appenlight.slow_requests = true
431 419
432 420 ## enable hooking to application loggers
433 421 appenlight.logging = true
434 422
435 423 ## minimum log level for log capture
436 424 appenlight.logging.level = WARNING
437 425
438 426 ## send logs only from erroneous/slow requests
439 427 ## (saves API quota for intensive logging)
440 428 appenlight.logging_on_error = false
441 429
442 430 ## list of additonal keywords that should be grabbed from environ object
443 431 ## can be string with comma separated list of words in lowercase
444 432 ## (by default client will always send following info:
445 433 ## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
446 434 ## start with HTTP* this list be extended with additional keywords here
447 435 appenlight.environ_keys_whitelist =
448 436
449 437 ## list of keywords that should be blanked from request object
450 438 ## can be string with comma separated list of words in lowercase
451 439 ## (by default client will always blank keys that contain following words
452 440 ## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
453 441 ## this list be extended with additional keywords set here
454 442 appenlight.request_keys_blacklist =
455 443
456 444 ## list of namespaces that should be ignores when gathering log entries
457 445 ## can be string with comma separated list of namespaces
458 446 ## (by default the client ignores own entries: appenlight_client.client)
459 447 appenlight.log_namespace_blacklist =
460 448
461 449
462 450 ################################################################################
463 451 ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT* ##
464 452 ## Debug mode will enable the interactive debugging tool, allowing ANYONE to ##
465 453 ## execute malicious code after an exception is raised. ##
466 454 ################################################################################
467 455 set debug = false
468 456
469 457
470 458 ##############
471 459 ## STYLING ##
472 460 ##############
473 461 debug_style = false
474 462
475 463 ###########################################
476 464 ### MAIN RHODECODE DATABASE CONFIG ###
477 465 ###########################################
478 466 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode_test.db?timeout=30
479 467 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode_test
480 468 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode_test
481 469 sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode_test.db?timeout=30
482 470
483 471 # see sqlalchemy docs for other advanced settings
484 472
485 473 ## print the sql statements to output
486 474 sqlalchemy.db1.echo = false
487 475 ## recycle the connections after this amount of seconds
488 476 sqlalchemy.db1.pool_recycle = 3600
489 477 sqlalchemy.db1.convert_unicode = true
490 478
491 479 ## the number of connections to keep open inside the connection pool.
492 480 ## 0 indicates no limit
493 481 #sqlalchemy.db1.pool_size = 5
494 482
495 483 ## the number of connections to allow in connection pool "overflow", that is
496 484 ## connections that can be opened above and beyond the pool_size setting,
497 485 ## which defaults to five.
498 486 #sqlalchemy.db1.max_overflow = 10
499 487
500 488
501 489 ##################
502 490 ### VCS CONFIG ###
503 491 ##################
504 492 vcs.server.enable = true
505 493 vcs.server = localhost:9901
506 494
507 495 ## Web server connectivity protocol, responsible for web based VCS operatations
508 496 ## Available protocols are:
509 497 ## `http` - use http-rpc backend (default)
510 498 vcs.server.protocol = http
511 499
512 500 ## Push/Pull operations protocol, available options are:
513 501 ## `http` - use http-rpc backend (default)
514 502 ## `vcsserver.scm_app` - internal app (EE only)
515 503 vcs.scm_app_implementation = http
516 504
517 505 ## Push/Pull operations hooks protocol, available options are:
518 506 ## `http` - use http-rpc backend (default)
519 507 vcs.hooks.protocol = http
520 508 vcs.hooks.host = 127.0.0.1
521 509
522 510 vcs.server.log_level = debug
523 511 ## Start VCSServer with this instance as a subprocess, usefull for development
524 512 vcs.start_server = false
525 513
526 514 ## List of enabled VCS backends, available options are:
527 515 ## `hg` - mercurial
528 516 ## `git` - git
529 517 ## `svn` - subversion
530 518 vcs.backends = hg, git, svn
531 519
532 520 vcs.connection_timeout = 3600
533 521 ## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
534 522 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
535 523 #vcs.svn.compatible_version = pre-1.8-compatible
536 524
537 525
538 526 ############################################################
539 527 ### Subversion proxy support (mod_dav_svn) ###
540 528 ### Maps RhodeCode repo groups into SVN paths for Apache ###
541 529 ############################################################
542 530 ## Enable or disable the config file generation.
543 531 svn.proxy.generate_config = false
544 532 ## Generate config file with `SVNListParentPath` set to `On`.
545 533 svn.proxy.list_parent_path = true
546 534 ## Set location and file name of generated config file.
547 535 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
548 536 ## Used as a prefix to the `Location` block in the generated config file.
549 537 ## In most cases it should be set to `/`.
550 538 svn.proxy.location_root = /
551 539 ## Command to reload the mod dav svn configuration on change.
552 540 ## Example: `/etc/init.d/apache2 reload`
553 541 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
554 542 ## If the timeout expires before the reload command finishes, the command will
555 543 ## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
556 544 #svn.proxy.reload_timeout = 10
557 545
558 546 ############################################################
559 547 ### SSH Support Settings ###
560 548 ############################################################
561 549
562 550 ## Defines if the authorized_keys file should be written on any change of
563 551 ## user ssh keys, setting this to false also disables posibility of adding
564 552 ## ssh keys for users from web interface.
565 553 ssh.generate_authorized_keyfile = true
566 554
567 555 ## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
568 556 # ssh.authorized_keys_ssh_opts =
569 557
570 558 ## File to generate the authorized keys together with options
571 559 ## It is possible to have multiple key files specified in `sshd_config` e.g.
572 560 ## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
573 561 ssh.authorized_keys_file_path = %(here)s/rc/authorized_keys_rhodecode
574 562
575 563 ## Command to execute the SSH wrapper. The binary is available in the
576 564 ## rhodecode installation directory.
577 565 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
578 566 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
579 567
580 568 ## Allow shell when executing the ssh-wrapper command
581 569 ssh.wrapper_cmd_allow_shell = false
582 570
583 571 ## Enables logging, and detailed output send back to the client. Usefull for
584 572 ## debugging, shouldn't be used in production.
585 573 ssh.enable_debug_logging = false
586 574
587 575 ## Paths to binary executrables, by default they are the names, but we can
588 576 ## override them if we want to use a custom one
589 577 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
590 578 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
591 579 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
592 580
593 581
594 582 ## Dummy marker to add new entries after.
595 583 ## Add any custom entries below. Please don't remove.
596 584 custom.conf = 1
597 585
598 586
599 587 ################################
600 588 ### LOGGING CONFIGURATION ####
601 589 ################################
602 590 [loggers]
603 591 keys = root, sqlalchemy, beaker, rhodecode, ssh_wrapper
604 592
605 593 [handlers]
606 594 keys = console, console_sql
607 595
608 596 [formatters]
609 597 keys = generic, color_formatter, color_formatter_sql
610 598
611 599 #############
612 600 ## LOGGERS ##
613 601 #############
614 602 [logger_root]
615 603 level = NOTSET
616 604 handlers = console
617 605
618 606 [logger_routes]
619 607 level = DEBUG
620 608 handlers =
621 609 qualname = routes.middleware
622 610 ## "level = DEBUG" logs the route matched and routing variables.
623 611 propagate = 1
624 612
625 613 [logger_beaker]
626 614 level = DEBUG
627 615 handlers =
628 616 qualname = beaker.container
629 617 propagate = 1
630 618
631 619 [logger_rhodecode]
632 620 level = DEBUG
633 621 handlers =
634 622 qualname = rhodecode
635 623 propagate = 1
636 624
637 625 [logger_sqlalchemy]
638 626 level = ERROR
639 627 handlers = console_sql
640 628 qualname = sqlalchemy.engine
641 629 propagate = 0
642 630
643 631 [logger_ssh_wrapper]
644 632 level = DEBUG
645 633 handlers =
646 634 qualname = ssh_wrapper
647 635 propagate = 1
648 636
649 637
650 638 ##############
651 639 ## HANDLERS ##
652 640 ##############
653 641
654 642 [handler_console]
655 643 class = StreamHandler
656 644 args = (sys.stderr,)
657 645 level = DEBUG
658 646 formatter = generic
659 647
660 648 [handler_console_sql]
661 649 class = StreamHandler
662 650 args = (sys.stderr,)
663 651 level = WARN
664 652 formatter = generic
665 653
666 654 ################
667 655 ## FORMATTERS ##
668 656 ################
669 657
670 658 [formatter_generic]
671 659 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
672 660 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
673 661 datefmt = %Y-%m-%d %H:%M:%S
674 662
675 663 [formatter_color_formatter]
676 664 class = rhodecode.lib.logging_formatter.ColorFormatter
677 665 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
678 666 datefmt = %Y-%m-%d %H:%M:%S
679 667
680 668 [formatter_color_formatter_sql]
681 669 class = rhodecode.lib.logging_formatter.ColorFormatterSql
682 670 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
683 671 datefmt = %Y-%m-%d %H:%M:%S
General Comments 0
You need to be logged in to leave comments. Login now