##// END OF EJS Templates
rhodecode-enterprise-ce
RSS
branch-permissions: handle cases for revoking regular permissions when branch permissions are set:...
marcink -
r2984:de0780ef default
parent child Browse files
Show More
Show file before | Show file after | Hide comments
@@ -1,4694 +1,4695 b''
1 # -*- coding: utf-8 -*-
1 # -*- coding: utf-8 -*-
2
2
3 # Copyright (C) 2010-2018 RhodeCode GmbH
3 # Copyright (C) 2010-2018 RhodeCode GmbH
4 #
4 #
5 # This program is free software: you can redistribute it and/or modify
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU Affero General Public License, version 3
6 # it under the terms of the GNU Affero General Public License, version 3
7 # (only), as published by the Free Software Foundation.
7 # (only), as published by the Free Software Foundation.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU Affero General Public License
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 #
16 #
17 # This program is dual-licensed. If you wish to learn more about the
17 # This program is dual-licensed. If you wish to learn more about the
18 # RhodeCode Enterprise Edition, including its added features, Support services,
18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20
20
21 """
21 """
22 Database Models for RhodeCode Enterprise
22 Database Models for RhodeCode Enterprise
23 """
23 """
24
24
25 import re
25 import re
26 import os
26 import os
27 import time
27 import time
28 import hashlib
28 import hashlib
29 import logging
29 import logging
30 import datetime
30 import datetime
31 import warnings
31 import warnings
32 import ipaddress
32 import ipaddress
33 import functools
33 import functools
34 import traceback
34 import traceback
35 import collections
35 import collections
36
36
37 from sqlalchemy import (
37 from sqlalchemy import (
38 or_, and_, not_, func, TypeDecorator, event,
38 or_, and_, not_, func, TypeDecorator, event,
39 Index, Sequence, UniqueConstraint, ForeignKey, CheckConstraint, Column,
39 Index, Sequence, UniqueConstraint, ForeignKey, CheckConstraint, Column,
40 Boolean, String, Unicode, UnicodeText, DateTime, Integer, LargeBinary,
40 Boolean, String, Unicode, UnicodeText, DateTime, Integer, LargeBinary,
41 Text, Float, PickleType)
41 Text, Float, PickleType)
42 from sqlalchemy.sql.expression import true, false
42 from sqlalchemy.sql.expression import true, false
43 from sqlalchemy.sql.functions import coalesce, count # noqa
43 from sqlalchemy.sql.functions import coalesce, count # noqa
44 from sqlalchemy.orm import (
44 from sqlalchemy.orm import (
45 relationship, joinedload, class_mapper, validates, aliased)
45 relationship, joinedload, class_mapper, validates, aliased)
46 from sqlalchemy.ext.declarative import declared_attr
46 from sqlalchemy.ext.declarative import declared_attr
47 from sqlalchemy.ext.hybrid import hybrid_property
47 from sqlalchemy.ext.hybrid import hybrid_property
48 from sqlalchemy.exc import IntegrityError # noqa
48 from sqlalchemy.exc import IntegrityError # noqa
49 from sqlalchemy.dialects.mysql import LONGTEXT
49 from sqlalchemy.dialects.mysql import LONGTEXT
50 from zope.cachedescriptors.property import Lazy as LazyProperty
50 from zope.cachedescriptors.property import Lazy as LazyProperty
51
51
52 from pyramid.threadlocal import get_current_request
52 from pyramid.threadlocal import get_current_request
53
53
54 from rhodecode.translation import _
54 from rhodecode.translation import _
55 from rhodecode.lib.vcs import get_vcs_instance
55 from rhodecode.lib.vcs import get_vcs_instance
56 from rhodecode.lib.vcs.backends.base import EmptyCommit, Reference
56 from rhodecode.lib.vcs.backends.base import EmptyCommit, Reference
57 from rhodecode.lib.utils2 import (
57 from rhodecode.lib.utils2 import (
58 str2bool, safe_str, get_commit_safe, safe_unicode, sha1_safe,
58 str2bool, safe_str, get_commit_safe, safe_unicode, sha1_safe,
59 time_to_datetime, aslist, Optional, safe_int, get_clone_url, AttributeDict,
59 time_to_datetime, aslist, Optional, safe_int, get_clone_url, AttributeDict,
60 glob2re, StrictAttributeDict, cleaned_uri)
60 glob2re, StrictAttributeDict, cleaned_uri)
61 from rhodecode.lib.jsonalchemy import MutationObj, MutationList, JsonType, \
61 from rhodecode.lib.jsonalchemy import MutationObj, MutationList, JsonType, \
62 JsonRaw
62 JsonRaw
63 from rhodecode.lib.ext_json import json
63 from rhodecode.lib.ext_json import json
64 from rhodecode.lib.caching_query import FromCache
64 from rhodecode.lib.caching_query import FromCache
65 from rhodecode.lib.encrypt import AESCipher
65 from rhodecode.lib.encrypt import AESCipher
66
66
67 from rhodecode.model.meta import Base, Session
67 from rhodecode.model.meta import Base, Session
68
68
69 URL_SEP = '/'
69 URL_SEP = '/'
70 log = logging.getLogger(__name__)
70 log = logging.getLogger(__name__)
71
71
72 # =============================================================================
72 # =============================================================================
73 # BASE CLASSES
73 # BASE CLASSES
74 # =============================================================================
74 # =============================================================================
75
75
76 # this is propagated from .ini file rhodecode.encrypted_values.secret or
76 # this is propagated from .ini file rhodecode.encrypted_values.secret or
77 # beaker.session.secret if first is not set.
77 # beaker.session.secret if first is not set.
78 # and initialized at environment.py
78 # and initialized at environment.py
79 ENCRYPTION_KEY = None
79 ENCRYPTION_KEY = None
80
80
81 # used to sort permissions by types, '#' used here is not allowed to be in
81 # used to sort permissions by types, '#' used here is not allowed to be in
82 # usernames, and it's very early in sorted string.printable table.
82 # usernames, and it's very early in sorted string.printable table.
83 PERMISSION_TYPE_SORT = {
83 PERMISSION_TYPE_SORT = {
84 'admin': '####',
84 'admin': '####',
85 'write': '###',
85 'write': '###',
86 'read': '##',
86 'read': '##',
87 'none': '#',
87 'none': '#',
88 }
88 }
89
89
90
90
91 def display_user_sort(obj):
91 def display_user_sort(obj):
92 """
92 """
93 Sort function used to sort permissions in .permissions() function of
93 Sort function used to sort permissions in .permissions() function of
94 Repository, RepoGroup, UserGroup. Also it put the default user in front
94 Repository, RepoGroup, UserGroup. Also it put the default user in front
95 of all other resources
95 of all other resources
96 """
96 """
97
97
98 if obj.username == User.DEFAULT_USER:
98 if obj.username == User.DEFAULT_USER:
99 return '#####'
99 return '#####'
100 prefix = PERMISSION_TYPE_SORT.get(obj.permission.split('.')[-1], '')
100 prefix = PERMISSION_TYPE_SORT.get(obj.permission.split('.')[-1], '')
101 return prefix + obj.username
101 return prefix + obj.username
102
102
103
103
104 def display_user_group_sort(obj):
104 def display_user_group_sort(obj):
105 """
105 """
106 Sort function used to sort permissions in .permissions() function of
106 Sort function used to sort permissions in .permissions() function of
107 Repository, RepoGroup, UserGroup. Also it put the default user in front
107 Repository, RepoGroup, UserGroup. Also it put the default user in front
108 of all other resources
108 of all other resources
109 """
109 """
110
110
111 prefix = PERMISSION_TYPE_SORT.get(obj.permission.split('.')[-1], '')
111 prefix = PERMISSION_TYPE_SORT.get(obj.permission.split('.')[-1], '')
112 return prefix + obj.users_group_name
112 return prefix + obj.users_group_name
113
113
114
114
115 def _hash_key(k):
115 def _hash_key(k):
116 return sha1_safe(k)
116 return sha1_safe(k)
117
117
118
118
119 def in_filter_generator(qry, items, limit=500):
119 def in_filter_generator(qry, items, limit=500):
120 """
120 """
121 Splits IN() into multiple with OR
121 Splits IN() into multiple with OR
122 e.g.::
122 e.g.::
123 cnt = Repository.query().filter(
123 cnt = Repository.query().filter(
124 or_(
124 or_(
125 *in_filter_generator(Repository.repo_id, range(100000))
125 *in_filter_generator(Repository.repo_id, range(100000))
126 )).count()
126 )).count()
127 """
127 """
128 if not items:
128 if not items:
129 # empty list will cause empty query which might cause security issues
129 # empty list will cause empty query which might cause security issues
130 # this can lead to hidden unpleasant results
130 # this can lead to hidden unpleasant results
131 items = [-1]
131 items = [-1]
132
132
133 parts = []
133 parts = []
134 for chunk in xrange(0, len(items), limit):
134 for chunk in xrange(0, len(items), limit):
135 parts.append(
135 parts.append(
136 qry.in_(items[chunk: chunk + limit])
136 qry.in_(items[chunk: chunk + limit])
137 )
137 )
138
138
139 return parts
139 return parts
140
140
141
141
142 base_table_args = {
142 base_table_args = {
143 'extend_existing': True,
143 'extend_existing': True,
144 'mysql_engine': 'InnoDB',
144 'mysql_engine': 'InnoDB',
145 'mysql_charset': 'utf8',
145 'mysql_charset': 'utf8',
146 'sqlite_autoincrement': True
146 'sqlite_autoincrement': True
147 }
147 }
148
148
149
149
150 class EncryptedTextValue(TypeDecorator):
150 class EncryptedTextValue(TypeDecorator):
151 """
151 """
152 Special column for encrypted long text data, use like::
152 Special column for encrypted long text data, use like::
153
153
154 value = Column("encrypted_value", EncryptedValue(), nullable=False)
154 value = Column("encrypted_value", EncryptedValue(), nullable=False)
155
155
156 This column is intelligent so if value is in unencrypted form it return
156 This column is intelligent so if value is in unencrypted form it return
157 unencrypted form, but on save it always encrypts
157 unencrypted form, but on save it always encrypts
158 """
158 """
159 impl = Text
159 impl = Text
160
160
161 def process_bind_param(self, value, dialect):
161 def process_bind_param(self, value, dialect):
162 if not value:
162 if not value:
163 return value
163 return value
164 if value.startswith('enc$aes$') or value.startswith('enc$aes_hmac$'):
164 if value.startswith('enc$aes$') or value.startswith('enc$aes_hmac$'):
165 # protect against double encrypting if someone manually starts
165 # protect against double encrypting if someone manually starts
166 # doing
166 # doing
167 raise ValueError('value needs to be in unencrypted format, ie. '
167 raise ValueError('value needs to be in unencrypted format, ie. '
168 'not starting with enc$aes')
168 'not starting with enc$aes')
169 return 'enc$aes_hmac$%s' % AESCipher(
169 return 'enc$aes_hmac$%s' % AESCipher(
170 ENCRYPTION_KEY, hmac=True).encrypt(value)
170 ENCRYPTION_KEY, hmac=True).encrypt(value)
171
171
172 def process_result_value(self, value, dialect):
172 def process_result_value(self, value, dialect):
173 import rhodecode
173 import rhodecode
174
174
175 if not value:
175 if not value:
176 return value
176 return value
177
177
178 parts = value.split('$', 3)
178 parts = value.split('$', 3)
179 if not len(parts) == 3:
179 if not len(parts) == 3:
180 # probably not encrypted values
180 # probably not encrypted values
181 return value
181 return value
182 else:
182 else:
183 if parts[0] != 'enc':
183 if parts[0] != 'enc':
184 # parts ok but without our header ?
184 # parts ok but without our header ?
185 return value
185 return value
186 enc_strict_mode = str2bool(rhodecode.CONFIG.get(
186 enc_strict_mode = str2bool(rhodecode.CONFIG.get(
187 'rhodecode.encrypted_values.strict') or True)
187 'rhodecode.encrypted_values.strict') or True)
188 # at that stage we know it's our encryption
188 # at that stage we know it's our encryption
189 if parts[1] == 'aes':
189 if parts[1] == 'aes':
190 decrypted_data = AESCipher(ENCRYPTION_KEY).decrypt(parts[2])
190 decrypted_data = AESCipher(ENCRYPTION_KEY).decrypt(parts[2])
191 elif parts[1] == 'aes_hmac':
191 elif parts[1] == 'aes_hmac':
192 decrypted_data = AESCipher(
192 decrypted_data = AESCipher(
193 ENCRYPTION_KEY, hmac=True,
193 ENCRYPTION_KEY, hmac=True,
194 strict_verification=enc_strict_mode).decrypt(parts[2])
194 strict_verification=enc_strict_mode).decrypt(parts[2])
195 else:
195 else:
196 raise ValueError(
196 raise ValueError(
197 'Encryption type part is wrong, must be `aes` '
197 'Encryption type part is wrong, must be `aes` '
198 'or `aes_hmac`, got `%s` instead' % (parts[1]))
198 'or `aes_hmac`, got `%s` instead' % (parts[1]))
199 return decrypted_data
199 return decrypted_data
200
200
201
201
202 class BaseModel(object):
202 class BaseModel(object):
203 """
203 """
204 Base Model for all classes
204 Base Model for all classes
205 """
205 """
206
206
207 @classmethod
207 @classmethod
208 def _get_keys(cls):
208 def _get_keys(cls):
209 """return column names for this model """
209 """return column names for this model """
210 return class_mapper(cls).c.keys()
210 return class_mapper(cls).c.keys()
211
211
212 def get_dict(self):
212 def get_dict(self):
213 """
213 """
214 return dict with keys and values corresponding
214 return dict with keys and values corresponding
215 to this model data """
215 to this model data """
216
216
217 d = {}
217 d = {}
218 for k in self._get_keys():
218 for k in self._get_keys():
219 d[k] = getattr(self, k)
219 d[k] = getattr(self, k)
220
220
221 # also use __json__() if present to get additional fields
221 # also use __json__() if present to get additional fields
222 _json_attr = getattr(self, '__json__', None)
222 _json_attr = getattr(self, '__json__', None)
223 if _json_attr:
223 if _json_attr:
224 # update with attributes from __json__
224 # update with attributes from __json__
225 if callable(_json_attr):
225 if callable(_json_attr):
226 _json_attr = _json_attr()
226 _json_attr = _json_attr()
227 for k, val in _json_attr.iteritems():
227 for k, val in _json_attr.iteritems():
228 d[k] = val
228 d[k] = val
229 return d
229 return d
230
230
231 def get_appstruct(self):
231 def get_appstruct(self):
232 """return list with keys and values tuples corresponding
232 """return list with keys and values tuples corresponding
233 to this model data """
233 to this model data """
234
234
235 lst = []
235 lst = []
236 for k in self._get_keys():
236 for k in self._get_keys():
237 lst.append((k, getattr(self, k),))
237 lst.append((k, getattr(self, k),))
238 return lst
238 return lst
239
239
240 def populate_obj(self, populate_dict):
240 def populate_obj(self, populate_dict):
241 """populate model with data from given populate_dict"""
241 """populate model with data from given populate_dict"""
242
242
243 for k in self._get_keys():
243 for k in self._get_keys():
244 if k in populate_dict:
244 if k in populate_dict:
245 setattr(self, k, populate_dict[k])
245 setattr(self, k, populate_dict[k])
246
246
247 @classmethod
247 @classmethod
248 def query(cls):
248 def query(cls):
249 return Session().query(cls)
249 return Session().query(cls)
250
250
251 @classmethod
251 @classmethod
252 def get(cls, id_):
252 def get(cls, id_):
253 if id_:
253 if id_:
254 return cls.query().get(id_)
254 return cls.query().get(id_)
255
255
256 @classmethod
256 @classmethod
257 def get_or_404(cls, id_):
257 def get_or_404(cls, id_):
258 from pyramid.httpexceptions import HTTPNotFound
258 from pyramid.httpexceptions import HTTPNotFound
259
259
260 try:
260 try:
261 id_ = int(id_)
261 id_ = int(id_)
262 except (TypeError, ValueError):
262 except (TypeError, ValueError):
263 raise HTTPNotFound()
263 raise HTTPNotFound()
264
264
265 res = cls.query().get(id_)
265 res = cls.query().get(id_)
266 if not res:
266 if not res:
267 raise HTTPNotFound()
267 raise HTTPNotFound()
268 return res
268 return res
269
269
270 @classmethod
270 @classmethod
271 def getAll(cls):
271 def getAll(cls):
272 # deprecated and left for backward compatibility
272 # deprecated and left for backward compatibility
273 return cls.get_all()
273 return cls.get_all()
274
274
275 @classmethod
275 @classmethod
276 def get_all(cls):
276 def get_all(cls):
277 return cls.query().all()
277 return cls.query().all()
278
278
279 @classmethod
279 @classmethod
280 def delete(cls, id_):
280 def delete(cls, id_):
281 obj = cls.query().get(id_)
281 obj = cls.query().get(id_)
282 Session().delete(obj)
282 Session().delete(obj)
283
283
284 @classmethod
284 @classmethod
285 def identity_cache(cls, session, attr_name, value):
285 def identity_cache(cls, session, attr_name, value):
286 exist_in_session = []
286 exist_in_session = []
287 for (item_cls, pkey), instance in session.identity_map.items():
287 for (item_cls, pkey), instance in session.identity_map.items():
288 if cls == item_cls and getattr(instance, attr_name) == value:
288 if cls == item_cls and getattr(instance, attr_name) == value:
289 exist_in_session.append(instance)
289 exist_in_session.append(instance)
290 if exist_in_session:
290 if exist_in_session:
291 if len(exist_in_session) == 1:
291 if len(exist_in_session) == 1:
292 return exist_in_session[0]
292 return exist_in_session[0]
293 log.exception(
293 log.exception(
294 'multiple objects with attr %s and '
294 'multiple objects with attr %s and '
295 'value %s found with same name: %r',
295 'value %s found with same name: %r',
296 attr_name, value, exist_in_session)
296 attr_name, value, exist_in_session)
297
297
298 def __repr__(self):
298 def __repr__(self):
299 if hasattr(self, '__unicode__'):
299 if hasattr(self, '__unicode__'):
300 # python repr needs to return str
300 # python repr needs to return str
301 try:
301 try:
302 return safe_str(self.__unicode__())
302 return safe_str(self.__unicode__())
303 except UnicodeDecodeError:
303 except UnicodeDecodeError:
304 pass
304 pass
305 return '<DB:%s>' % (self.__class__.__name__)
305 return '<DB:%s>' % (self.__class__.__name__)
306
306
307
307
308 class RhodeCodeSetting(Base, BaseModel):
308 class RhodeCodeSetting(Base, BaseModel):
309 __tablename__ = 'rhodecode_settings'
309 __tablename__ = 'rhodecode_settings'
310 __table_args__ = (
310 __table_args__ = (
311 UniqueConstraint('app_settings_name'),
311 UniqueConstraint('app_settings_name'),
312 base_table_args
312 base_table_args
313 )
313 )
314
314
315 SETTINGS_TYPES = {
315 SETTINGS_TYPES = {
316 'str': safe_str,
316 'str': safe_str,
317 'int': safe_int,
317 'int': safe_int,
318 'unicode': safe_unicode,
318 'unicode': safe_unicode,
319 'bool': str2bool,
319 'bool': str2bool,
320 'list': functools.partial(aslist, sep=',')
320 'list': functools.partial(aslist, sep=',')
321 }
321 }
322 DEFAULT_UPDATE_URL = 'https://rhodecode.com/api/v1/info/versions'
322 DEFAULT_UPDATE_URL = 'https://rhodecode.com/api/v1/info/versions'
323 GLOBAL_CONF_KEY = 'app_settings'
323 GLOBAL_CONF_KEY = 'app_settings'
324
324
325 app_settings_id = Column("app_settings_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
325 app_settings_id = Column("app_settings_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
326 app_settings_name = Column("app_settings_name", String(255), nullable=True, unique=None, default=None)
326 app_settings_name = Column("app_settings_name", String(255), nullable=True, unique=None, default=None)
327 _app_settings_value = Column("app_settings_value", String(4096), nullable=True, unique=None, default=None)
327 _app_settings_value = Column("app_settings_value", String(4096), nullable=True, unique=None, default=None)
328 _app_settings_type = Column("app_settings_type", String(255), nullable=True, unique=None, default=None)
328 _app_settings_type = Column("app_settings_type", String(255), nullable=True, unique=None, default=None)
329
329
330 def __init__(self, key='', val='', type='unicode'):
330 def __init__(self, key='', val='', type='unicode'):
331 self.app_settings_name = key
331 self.app_settings_name = key
332 self.app_settings_type = type
332 self.app_settings_type = type
333 self.app_settings_value = val
333 self.app_settings_value = val
334
334
335 @validates('_app_settings_value')
335 @validates('_app_settings_value')
336 def validate_settings_value(self, key, val):
336 def validate_settings_value(self, key, val):
337 assert type(val) == unicode
337 assert type(val) == unicode
338 return val
338 return val
339
339
340 @hybrid_property
340 @hybrid_property
341 def app_settings_value(self):
341 def app_settings_value(self):
342 v = self._app_settings_value
342 v = self._app_settings_value
343 _type = self.app_settings_type
343 _type = self.app_settings_type
344 if _type:
344 if _type:
345 _type = self.app_settings_type.split('.')[0]
345 _type = self.app_settings_type.split('.')[0]
346 # decode the encrypted value
346 # decode the encrypted value
347 if 'encrypted' in self.app_settings_type:
347 if 'encrypted' in self.app_settings_type:
348 cipher = EncryptedTextValue()
348 cipher = EncryptedTextValue()
349 v = safe_unicode(cipher.process_result_value(v, None))
349 v = safe_unicode(cipher.process_result_value(v, None))
350
350
351 converter = self.SETTINGS_TYPES.get(_type) or \
351 converter = self.SETTINGS_TYPES.get(_type) or \
352 self.SETTINGS_TYPES['unicode']
352 self.SETTINGS_TYPES['unicode']
353 return converter(v)
353 return converter(v)
354
354
355 @app_settings_value.setter
355 @app_settings_value.setter
356 def app_settings_value(self, val):
356 def app_settings_value(self, val):
357 """
357 """
358 Setter that will always make sure we use unicode in app_settings_value
358 Setter that will always make sure we use unicode in app_settings_value
359
359
360 :param val:
360 :param val:
361 """
361 """
362 val = safe_unicode(val)
362 val = safe_unicode(val)
363 # encode the encrypted value
363 # encode the encrypted value
364 if 'encrypted' in self.app_settings_type:
364 if 'encrypted' in self.app_settings_type:
365 cipher = EncryptedTextValue()
365 cipher = EncryptedTextValue()
366 val = safe_unicode(cipher.process_bind_param(val, None))
366 val = safe_unicode(cipher.process_bind_param(val, None))
367 self._app_settings_value = val
367 self._app_settings_value = val
368
368
369 @hybrid_property
369 @hybrid_property
370 def app_settings_type(self):
370 def app_settings_type(self):
371 return self._app_settings_type
371 return self._app_settings_type
372
372
373 @app_settings_type.setter
373 @app_settings_type.setter
374 def app_settings_type(self, val):
374 def app_settings_type(self, val):
375 if val.split('.')[0] not in self.SETTINGS_TYPES:
375 if val.split('.')[0] not in self.SETTINGS_TYPES:
376 raise Exception('type must be one of %s got %s'
376 raise Exception('type must be one of %s got %s'
377 % (self.SETTINGS_TYPES.keys(), val))
377 % (self.SETTINGS_TYPES.keys(), val))
378 self._app_settings_type = val
378 self._app_settings_type = val
379
379
380 def __unicode__(self):
380 def __unicode__(self):
381 return u"<%s('%s:%s[%s]')>" % (
381 return u"<%s('%s:%s[%s]')>" % (
382 self.__class__.__name__,
382 self.__class__.__name__,
383 self.app_settings_name, self.app_settings_value,
383 self.app_settings_name, self.app_settings_value,
384 self.app_settings_type
384 self.app_settings_type
385 )
385 )
386
386
387
387
388 class RhodeCodeUi(Base, BaseModel):
388 class RhodeCodeUi(Base, BaseModel):
389 __tablename__ = 'rhodecode_ui'
389 __tablename__ = 'rhodecode_ui'
390 __table_args__ = (
390 __table_args__ = (
391 UniqueConstraint('ui_key'),
391 UniqueConstraint('ui_key'),
392 base_table_args
392 base_table_args
393 )
393 )
394
394
395 HOOK_REPO_SIZE = 'changegroup.repo_size'
395 HOOK_REPO_SIZE = 'changegroup.repo_size'
396 # HG
396 # HG
397 HOOK_PRE_PULL = 'preoutgoing.pre_pull'
397 HOOK_PRE_PULL = 'preoutgoing.pre_pull'
398 HOOK_PULL = 'outgoing.pull_logger'
398 HOOK_PULL = 'outgoing.pull_logger'
399 HOOK_PRE_PUSH = 'prechangegroup.pre_push'
399 HOOK_PRE_PUSH = 'prechangegroup.pre_push'
400 HOOK_PRETX_PUSH = 'pretxnchangegroup.pre_push'
400 HOOK_PRETX_PUSH = 'pretxnchangegroup.pre_push'
401 HOOK_PUSH = 'changegroup.push_logger'
401 HOOK_PUSH = 'changegroup.push_logger'
402 HOOK_PUSH_KEY = 'pushkey.key_push'
402 HOOK_PUSH_KEY = 'pushkey.key_push'
403
403
404 # TODO: johbo: Unify way how hooks are configured for git and hg,
404 # TODO: johbo: Unify way how hooks are configured for git and hg,
405 # git part is currently hardcoded.
405 # git part is currently hardcoded.
406
406
407 # SVN PATTERNS
407 # SVN PATTERNS
408 SVN_BRANCH_ID = 'vcs_svn_branch'
408 SVN_BRANCH_ID = 'vcs_svn_branch'
409 SVN_TAG_ID = 'vcs_svn_tag'
409 SVN_TAG_ID = 'vcs_svn_tag'
410
410
411 ui_id = Column(
411 ui_id = Column(
412 "ui_id", Integer(), nullable=False, unique=True, default=None,
412 "ui_id", Integer(), nullable=False, unique=True, default=None,
413 primary_key=True)
413 primary_key=True)
414 ui_section = Column(
414 ui_section = Column(
415 "ui_section", String(255), nullable=True, unique=None, default=None)
415 "ui_section", String(255), nullable=True, unique=None, default=None)
416 ui_key = Column(
416 ui_key = Column(
417 "ui_key", String(255), nullable=True, unique=None, default=None)
417 "ui_key", String(255), nullable=True, unique=None, default=None)
418 ui_value = Column(
418 ui_value = Column(
419 "ui_value", String(255), nullable=True, unique=None, default=None)
419 "ui_value", String(255), nullable=True, unique=None, default=None)
420 ui_active = Column(
420 ui_active = Column(
421 "ui_active", Boolean(), nullable=True, unique=None, default=True)
421 "ui_active", Boolean(), nullable=True, unique=None, default=True)
422
422
423 def __repr__(self):
423 def __repr__(self):
424 return '<%s[%s]%s=>%s]>' % (self.__class__.__name__, self.ui_section,
424 return '<%s[%s]%s=>%s]>' % (self.__class__.__name__, self.ui_section,
425 self.ui_key, self.ui_value)
425 self.ui_key, self.ui_value)
426
426
427
427
428 class RepoRhodeCodeSetting(Base, BaseModel):
428 class RepoRhodeCodeSetting(Base, BaseModel):
429 __tablename__ = 'repo_rhodecode_settings'
429 __tablename__ = 'repo_rhodecode_settings'
430 __table_args__ = (
430 __table_args__ = (
431 UniqueConstraint(
431 UniqueConstraint(
432 'app_settings_name', 'repository_id',
432 'app_settings_name', 'repository_id',
433 name='uq_repo_rhodecode_setting_name_repo_id'),
433 name='uq_repo_rhodecode_setting_name_repo_id'),
434 base_table_args
434 base_table_args
435 )
435 )
436
436
437 repository_id = Column(
437 repository_id = Column(
438 "repository_id", Integer(), ForeignKey('repositories.repo_id'),
438 "repository_id", Integer(), ForeignKey('repositories.repo_id'),
439 nullable=False)
439 nullable=False)
440 app_settings_id = Column(
440 app_settings_id = Column(
441 "app_settings_id", Integer(), nullable=False, unique=True,
441 "app_settings_id", Integer(), nullable=False, unique=True,
442 default=None, primary_key=True)
442 default=None, primary_key=True)
443 app_settings_name = Column(
443 app_settings_name = Column(
444 "app_settings_name", String(255), nullable=True, unique=None,
444 "app_settings_name", String(255), nullable=True, unique=None,
445 default=None)
445 default=None)
446 _app_settings_value = Column(
446 _app_settings_value = Column(
447 "app_settings_value", String(4096), nullable=True, unique=None,
447 "app_settings_value", String(4096), nullable=True, unique=None,
448 default=None)
448 default=None)
449 _app_settings_type = Column(
449 _app_settings_type = Column(
450 "app_settings_type", String(255), nullable=True, unique=None,
450 "app_settings_type", String(255), nullable=True, unique=None,
451 default=None)
451 default=None)
452
452
453 repository = relationship('Repository')
453 repository = relationship('Repository')
454
454
455 def __init__(self, repository_id, key='', val='', type='unicode'):
455 def __init__(self, repository_id, key='', val='', type='unicode'):
456 self.repository_id = repository_id
456 self.repository_id = repository_id
457 self.app_settings_name = key
457 self.app_settings_name = key
458 self.app_settings_type = type
458 self.app_settings_type = type
459 self.app_settings_value = val
459 self.app_settings_value = val
460
460
461 @validates('_app_settings_value')
461 @validates('_app_settings_value')
462 def validate_settings_value(self, key, val):
462 def validate_settings_value(self, key, val):
463 assert type(val) == unicode
463 assert type(val) == unicode
464 return val
464 return val
465
465
466 @hybrid_property
466 @hybrid_property
467 def app_settings_value(self):
467 def app_settings_value(self):
468 v = self._app_settings_value
468 v = self._app_settings_value
469 type_ = self.app_settings_type
469 type_ = self.app_settings_type
470 SETTINGS_TYPES = RhodeCodeSetting.SETTINGS_TYPES
470 SETTINGS_TYPES = RhodeCodeSetting.SETTINGS_TYPES
471 converter = SETTINGS_TYPES.get(type_) or SETTINGS_TYPES['unicode']
471 converter = SETTINGS_TYPES.get(type_) or SETTINGS_TYPES['unicode']
472 return converter(v)
472 return converter(v)
473
473
474 @app_settings_value.setter
474 @app_settings_value.setter
475 def app_settings_value(self, val):
475 def app_settings_value(self, val):
476 """
476 """
477 Setter that will always make sure we use unicode in app_settings_value
477 Setter that will always make sure we use unicode in app_settings_value
478
478
479 :param val:
479 :param val:
480 """
480 """
481 self._app_settings_value = safe_unicode(val)
481 self._app_settings_value = safe_unicode(val)
482
482
483 @hybrid_property
483 @hybrid_property
484 def app_settings_type(self):
484 def app_settings_type(self):
485 return self._app_settings_type
485 return self._app_settings_type
486
486
487 @app_settings_type.setter
487 @app_settings_type.setter
488 def app_settings_type(self, val):
488 def app_settings_type(self, val):
489 SETTINGS_TYPES = RhodeCodeSetting.SETTINGS_TYPES
489 SETTINGS_TYPES = RhodeCodeSetting.SETTINGS_TYPES
490 if val not in SETTINGS_TYPES:
490 if val not in SETTINGS_TYPES:
491 raise Exception('type must be one of %s got %s'
491 raise Exception('type must be one of %s got %s'
492 % (SETTINGS_TYPES.keys(), val))
492 % (SETTINGS_TYPES.keys(), val))
493 self._app_settings_type = val
493 self._app_settings_type = val
494
494
495 def __unicode__(self):
495 def __unicode__(self):
496 return u"<%s('%s:%s:%s[%s]')>" % (
496 return u"<%s('%s:%s:%s[%s]')>" % (
497 self.__class__.__name__, self.repository.repo_name,
497 self.__class__.__name__, self.repository.repo_name,
498 self.app_settings_name, self.app_settings_value,
498 self.app_settings_name, self.app_settings_value,
499 self.app_settings_type
499 self.app_settings_type
500 )
500 )
501
501
502
502
503 class RepoRhodeCodeUi(Base, BaseModel):
503 class RepoRhodeCodeUi(Base, BaseModel):
504 __tablename__ = 'repo_rhodecode_ui'
504 __tablename__ = 'repo_rhodecode_ui'
505 __table_args__ = (
505 __table_args__ = (
506 UniqueConstraint(
506 UniqueConstraint(
507 'repository_id', 'ui_section', 'ui_key',
507 'repository_id', 'ui_section', 'ui_key',
508 name='uq_repo_rhodecode_ui_repository_id_section_key'),
508 name='uq_repo_rhodecode_ui_repository_id_section_key'),
509 base_table_args
509 base_table_args
510 )
510 )
511
511
512 repository_id = Column(
512 repository_id = Column(
513 "repository_id", Integer(), ForeignKey('repositories.repo_id'),
513 "repository_id", Integer(), ForeignKey('repositories.repo_id'),
514 nullable=False)
514 nullable=False)
515 ui_id = Column(
515 ui_id = Column(
516 "ui_id", Integer(), nullable=False, unique=True, default=None,
516 "ui_id", Integer(), nullable=False, unique=True, default=None,
517 primary_key=True)
517 primary_key=True)
518 ui_section = Column(
518 ui_section = Column(
519 "ui_section", String(255), nullable=True, unique=None, default=None)
519 "ui_section", String(255), nullable=True, unique=None, default=None)
520 ui_key = Column(
520 ui_key = Column(
521 "ui_key", String(255), nullable=True, unique=None, default=None)
521 "ui_key", String(255), nullable=True, unique=None, default=None)
522 ui_value = Column(
522 ui_value = Column(
523 "ui_value", String(255), nullable=True, unique=None, default=None)
523 "ui_value", String(255), nullable=True, unique=None, default=None)
524 ui_active = Column(
524 ui_active = Column(
525 "ui_active", Boolean(), nullable=True, unique=None, default=True)
525 "ui_active", Boolean(), nullable=True, unique=None, default=True)
526
526
527 repository = relationship('Repository')
527 repository = relationship('Repository')
528
528
529 def __repr__(self):
529 def __repr__(self):
530 return '<%s[%s:%s]%s=>%s]>' % (
530 return '<%s[%s:%s]%s=>%s]>' % (
531 self.__class__.__name__, self.repository.repo_name,
531 self.__class__.__name__, self.repository.repo_name,
532 self.ui_section, self.ui_key, self.ui_value)
532 self.ui_section, self.ui_key, self.ui_value)
533
533
534
534
535 class User(Base, BaseModel):
535 class User(Base, BaseModel):
536 __tablename__ = 'users'
536 __tablename__ = 'users'
537 __table_args__ = (
537 __table_args__ = (
538 UniqueConstraint('username'), UniqueConstraint('email'),
538 UniqueConstraint('username'), UniqueConstraint('email'),
539 Index('u_username_idx', 'username'),
539 Index('u_username_idx', 'username'),
540 Index('u_email_idx', 'email'),
540 Index('u_email_idx', 'email'),
541 base_table_args
541 base_table_args
542 )
542 )
543
543
544 DEFAULT_USER = 'default'
544 DEFAULT_USER = 'default'
545 DEFAULT_USER_EMAIL = 'anonymous@rhodecode.org'
545 DEFAULT_USER_EMAIL = 'anonymous@rhodecode.org'
546 DEFAULT_GRAVATAR_URL = 'https://secure.gravatar.com/avatar/{md5email}?d=identicon&s={size}'
546 DEFAULT_GRAVATAR_URL = 'https://secure.gravatar.com/avatar/{md5email}?d=identicon&s={size}'
547
547
548 user_id = Column("user_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
548 user_id = Column("user_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
549 username = Column("username", String(255), nullable=True, unique=None, default=None)
549 username = Column("username", String(255), nullable=True, unique=None, default=None)
550 password = Column("password", String(255), nullable=True, unique=None, default=None)
550 password = Column("password", String(255), nullable=True, unique=None, default=None)
551 active = Column("active", Boolean(), nullable=True, unique=None, default=True)
551 active = Column("active", Boolean(), nullable=True, unique=None, default=True)
552 admin = Column("admin", Boolean(), nullable=True, unique=None, default=False)
552 admin = Column("admin", Boolean(), nullable=True, unique=None, default=False)
553 name = Column("firstname", String(255), nullable=True, unique=None, default=None)
553 name = Column("firstname", String(255), nullable=True, unique=None, default=None)
554 lastname = Column("lastname", String(255), nullable=True, unique=None, default=None)
554 lastname = Column("lastname", String(255), nullable=True, unique=None, default=None)
555 _email = Column("email", String(255), nullable=True, unique=None, default=None)
555 _email = Column("email", String(255), nullable=True, unique=None, default=None)
556 last_login = Column("last_login", DateTime(timezone=False), nullable=True, unique=None, default=None)
556 last_login = Column("last_login", DateTime(timezone=False), nullable=True, unique=None, default=None)
557 last_activity = Column('last_activity', DateTime(timezone=False), nullable=True, unique=None, default=None)
557 last_activity = Column('last_activity', DateTime(timezone=False), nullable=True, unique=None, default=None)
558
558
559 extern_type = Column("extern_type", String(255), nullable=True, unique=None, default=None)
559 extern_type = Column("extern_type", String(255), nullable=True, unique=None, default=None)
560 extern_name = Column("extern_name", String(255), nullable=True, unique=None, default=None)
560 extern_name = Column("extern_name", String(255), nullable=True, unique=None, default=None)
561 _api_key = Column("api_key", String(255), nullable=True, unique=None, default=None)
561 _api_key = Column("api_key", String(255), nullable=True, unique=None, default=None)
562 inherit_default_permissions = Column("inherit_default_permissions", Boolean(), nullable=False, unique=None, default=True)
562 inherit_default_permissions = Column("inherit_default_permissions", Boolean(), nullable=False, unique=None, default=True)
563 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
563 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
564 _user_data = Column("user_data", LargeBinary(), nullable=True) # JSON data
564 _user_data = Column("user_data", LargeBinary(), nullable=True) # JSON data
565
565
566 user_log = relationship('UserLog')
566 user_log = relationship('UserLog')
567 user_perms = relationship('UserToPerm', primaryjoin="User.user_id==UserToPerm.user_id", cascade='all')
567 user_perms = relationship('UserToPerm', primaryjoin="User.user_id==UserToPerm.user_id", cascade='all')
568
568
569 repositories = relationship('Repository')
569 repositories = relationship('Repository')
570 repository_groups = relationship('RepoGroup')
570 repository_groups = relationship('RepoGroup')
571 user_groups = relationship('UserGroup')
571 user_groups = relationship('UserGroup')
572
572
573 user_followers = relationship('UserFollowing', primaryjoin='UserFollowing.follows_user_id==User.user_id', cascade='all')
573 user_followers = relationship('UserFollowing', primaryjoin='UserFollowing.follows_user_id==User.user_id', cascade='all')
574 followings = relationship('UserFollowing', primaryjoin='UserFollowing.user_id==User.user_id', cascade='all')
574 followings = relationship('UserFollowing', primaryjoin='UserFollowing.user_id==User.user_id', cascade='all')
575
575
576 repo_to_perm = relationship('UserRepoToPerm', primaryjoin='UserRepoToPerm.user_id==User.user_id', cascade='all')
576 repo_to_perm = relationship('UserRepoToPerm', primaryjoin='UserRepoToPerm.user_id==User.user_id', cascade='all')
577 repo_group_to_perm = relationship('UserRepoGroupToPerm', primaryjoin='UserRepoGroupToPerm.user_id==User.user_id', cascade='all')
577 repo_group_to_perm = relationship('UserRepoGroupToPerm', primaryjoin='UserRepoGroupToPerm.user_id==User.user_id', cascade='all')
578 user_group_to_perm = relationship('UserUserGroupToPerm', primaryjoin='UserUserGroupToPerm.user_id==User.user_id', cascade='all')
578 user_group_to_perm = relationship('UserUserGroupToPerm', primaryjoin='UserUserGroupToPerm.user_id==User.user_id', cascade='all')
579
579
580 group_member = relationship('UserGroupMember', cascade='all')
580 group_member = relationship('UserGroupMember', cascade='all')
581
581
582 notifications = relationship('UserNotification', cascade='all')
582 notifications = relationship('UserNotification', cascade='all')
583 # notifications assigned to this user
583 # notifications assigned to this user
584 user_created_notifications = relationship('Notification', cascade='all')
584 user_created_notifications = relationship('Notification', cascade='all')
585 # comments created by this user
585 # comments created by this user
586 user_comments = relationship('ChangesetComment', cascade='all')
586 user_comments = relationship('ChangesetComment', cascade='all')
587 # user profile extra info
587 # user profile extra info
588 user_emails = relationship('UserEmailMap', cascade='all')
588 user_emails = relationship('UserEmailMap', cascade='all')
589 user_ip_map = relationship('UserIpMap', cascade='all')
589 user_ip_map = relationship('UserIpMap', cascade='all')
590 user_auth_tokens = relationship('UserApiKeys', cascade='all')
590 user_auth_tokens = relationship('UserApiKeys', cascade='all')
591 user_ssh_keys = relationship('UserSshKeys', cascade='all')
591 user_ssh_keys = relationship('UserSshKeys', cascade='all')
592
592
593 # gists
593 # gists
594 user_gists = relationship('Gist', cascade='all')
594 user_gists = relationship('Gist', cascade='all')
595 # user pull requests
595 # user pull requests
596 user_pull_requests = relationship('PullRequest', cascade='all')
596 user_pull_requests = relationship('PullRequest', cascade='all')
597 # external identities
597 # external identities
598 extenal_identities = relationship(
598 extenal_identities = relationship(
599 'ExternalIdentity',
599 'ExternalIdentity',
600 primaryjoin="User.user_id==ExternalIdentity.local_user_id",
600 primaryjoin="User.user_id==ExternalIdentity.local_user_id",
601 cascade='all')
601 cascade='all')
602 # review rules
602 # review rules
603 user_review_rules = relationship('RepoReviewRuleUser', cascade='all')
603 user_review_rules = relationship('RepoReviewRuleUser', cascade='all')
604
604
605 def __unicode__(self):
605 def __unicode__(self):
606 return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
606 return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
607 self.user_id, self.username)
607 self.user_id, self.username)
608
608
609 @hybrid_property
609 @hybrid_property
610 def email(self):
610 def email(self):
611 return self._email
611 return self._email
612
612
613 @email.setter
613 @email.setter
614 def email(self, val):
614 def email(self, val):
615 self._email = val.lower() if val else None
615 self._email = val.lower() if val else None
616
616
617 @hybrid_property
617 @hybrid_property
618 def first_name(self):
618 def first_name(self):
619 from rhodecode.lib import helpers as h
619 from rhodecode.lib import helpers as h
620 if self.name:
620 if self.name:
621 return h.escape(self.name)
621 return h.escape(self.name)
622 return self.name
622 return self.name
623
623
624 @hybrid_property
624 @hybrid_property
625 def last_name(self):
625 def last_name(self):
626 from rhodecode.lib import helpers as h
626 from rhodecode.lib import helpers as h
627 if self.lastname:
627 if self.lastname:
628 return h.escape(self.lastname)
628 return h.escape(self.lastname)
629 return self.lastname
629 return self.lastname
630
630
631 @hybrid_property
631 @hybrid_property
632 def api_key(self):
632 def api_key(self):
633 """
633 """
634 Fetch if exist an auth-token with role ALL connected to this user
634 Fetch if exist an auth-token with role ALL connected to this user
635 """
635 """
636 user_auth_token = UserApiKeys.query()\
636 user_auth_token = UserApiKeys.query()\
637 .filter(UserApiKeys.user_id == self.user_id)\
637 .filter(UserApiKeys.user_id == self.user_id)\
638 .filter(or_(UserApiKeys.expires == -1,
638 .filter(or_(UserApiKeys.expires == -1,
639 UserApiKeys.expires >= time.time()))\
639 UserApiKeys.expires >= time.time()))\
640 .filter(UserApiKeys.role == UserApiKeys.ROLE_ALL).first()
640 .filter(UserApiKeys.role == UserApiKeys.ROLE_ALL).first()
641 if user_auth_token:
641 if user_auth_token:
642 user_auth_token = user_auth_token.api_key
642 user_auth_token = user_auth_token.api_key
643
643
644 return user_auth_token
644 return user_auth_token
645
645
646 @api_key.setter
646 @api_key.setter
647 def api_key(self, val):
647 def api_key(self, val):
648 # don't allow to set API key this is deprecated for now
648 # don't allow to set API key this is deprecated for now
649 self._api_key = None
649 self._api_key = None
650
650
651 @property
651 @property
652 def reviewer_pull_requests(self):
652 def reviewer_pull_requests(self):
653 return PullRequestReviewers.query() \
653 return PullRequestReviewers.query() \
654 .options(joinedload(PullRequestReviewers.pull_request)) \
654 .options(joinedload(PullRequestReviewers.pull_request)) \
655 .filter(PullRequestReviewers.user_id == self.user_id) \
655 .filter(PullRequestReviewers.user_id == self.user_id) \
656 .all()
656 .all()
657
657
658 @property
658 @property
659 def firstname(self):
659 def firstname(self):
660 # alias for future
660 # alias for future
661 return self.name
661 return self.name
662
662
663 @property
663 @property
664 def emails(self):
664 def emails(self):
665 other = UserEmailMap.query()\
665 other = UserEmailMap.query()\
666 .filter(UserEmailMap.user == self) \
666 .filter(UserEmailMap.user == self) \
667 .order_by(UserEmailMap.email_id.asc()) \
667 .order_by(UserEmailMap.email_id.asc()) \
668 .all()
668 .all()
669 return [self.email] + [x.email for x in other]
669 return [self.email] + [x.email for x in other]
670
670
671 @property
671 @property
672 def auth_tokens(self):
672 def auth_tokens(self):
673 auth_tokens = self.get_auth_tokens()
673 auth_tokens = self.get_auth_tokens()
674 return [x.api_key for x in auth_tokens]
674 return [x.api_key for x in auth_tokens]
675
675
676 def get_auth_tokens(self):
676 def get_auth_tokens(self):
677 return UserApiKeys.query()\
677 return UserApiKeys.query()\
678 .filter(UserApiKeys.user == self)\
678 .filter(UserApiKeys.user == self)\
679 .order_by(UserApiKeys.user_api_key_id.asc())\
679 .order_by(UserApiKeys.user_api_key_id.asc())\
680 .all()
680 .all()
681
681
682 @LazyProperty
682 @LazyProperty
683 def feed_token(self):
683 def feed_token(self):
684 return self.get_feed_token()
684 return self.get_feed_token()
685
685
686 def get_feed_token(self, cache=True):
686 def get_feed_token(self, cache=True):
687 feed_tokens = UserApiKeys.query()\
687 feed_tokens = UserApiKeys.query()\
688 .filter(UserApiKeys.user == self)\
688 .filter(UserApiKeys.user == self)\
689 .filter(UserApiKeys.role == UserApiKeys.ROLE_FEED)
689 .filter(UserApiKeys.role == UserApiKeys.ROLE_FEED)
690 if cache:
690 if cache:
691 feed_tokens = feed_tokens.options(
691 feed_tokens = feed_tokens.options(
692 FromCache("sql_cache_short", "get_user_feed_token_%s" % self.user_id))
692 FromCache("sql_cache_short", "get_user_feed_token_%s" % self.user_id))
693
693
694 feed_tokens = feed_tokens.all()
694 feed_tokens = feed_tokens.all()
695 if feed_tokens:
695 if feed_tokens:
696 return feed_tokens[0].api_key
696 return feed_tokens[0].api_key
697 return 'NO_FEED_TOKEN_AVAILABLE'
697 return 'NO_FEED_TOKEN_AVAILABLE'
698
698
699 @classmethod
699 @classmethod
700 def get(cls, user_id, cache=False):
700 def get(cls, user_id, cache=False):
701 if not user_id:
701 if not user_id:
702 return
702 return
703
703
704 user = cls.query()
704 user = cls.query()
705 if cache:
705 if cache:
706 user = user.options(
706 user = user.options(
707 FromCache("sql_cache_short", "get_users_%s" % user_id))
707 FromCache("sql_cache_short", "get_users_%s" % user_id))
708 return user.get(user_id)
708 return user.get(user_id)
709
709
710 @classmethod
710 @classmethod
711 def extra_valid_auth_tokens(cls, user, role=None):
711 def extra_valid_auth_tokens(cls, user, role=None):
712 tokens = UserApiKeys.query().filter(UserApiKeys.user == user)\
712 tokens = UserApiKeys.query().filter(UserApiKeys.user == user)\
713 .filter(or_(UserApiKeys.expires == -1,
713 .filter(or_(UserApiKeys.expires == -1,
714 UserApiKeys.expires >= time.time()))
714 UserApiKeys.expires >= time.time()))
715 if role:
715 if role:
716 tokens = tokens.filter(or_(UserApiKeys.role == role,
716 tokens = tokens.filter(or_(UserApiKeys.role == role,
717 UserApiKeys.role == UserApiKeys.ROLE_ALL))
717 UserApiKeys.role == UserApiKeys.ROLE_ALL))
718 return tokens.all()
718 return tokens.all()
719
719
720 def authenticate_by_token(self, auth_token, roles=None, scope_repo_id=None):
720 def authenticate_by_token(self, auth_token, roles=None, scope_repo_id=None):
721 from rhodecode.lib import auth
721 from rhodecode.lib import auth
722
722
723 log.debug('Trying to authenticate user: %s via auth-token, '
723 log.debug('Trying to authenticate user: %s via auth-token, '
724 'and roles: %s', self, roles)
724 'and roles: %s', self, roles)
725
725
726 if not auth_token:
726 if not auth_token:
727 return False
727 return False
728
728
729 crypto_backend = auth.crypto_backend()
729 crypto_backend = auth.crypto_backend()
730
730
731 roles = (roles or []) + [UserApiKeys.ROLE_ALL]
731 roles = (roles or []) + [UserApiKeys.ROLE_ALL]
732 tokens_q = UserApiKeys.query()\
732 tokens_q = UserApiKeys.query()\
733 .filter(UserApiKeys.user_id == self.user_id)\
733 .filter(UserApiKeys.user_id == self.user_id)\
734 .filter(or_(UserApiKeys.expires == -1,
734 .filter(or_(UserApiKeys.expires == -1,
735 UserApiKeys.expires >= time.time()))
735 UserApiKeys.expires >= time.time()))
736
736
737 tokens_q = tokens_q.filter(UserApiKeys.role.in_(roles))
737 tokens_q = tokens_q.filter(UserApiKeys.role.in_(roles))
738
738
739 plain_tokens = []
739 plain_tokens = []
740 hash_tokens = []
740 hash_tokens = []
741
741
742 for token in tokens_q.all():
742 for token in tokens_q.all():
743 # verify scope first
743 # verify scope first
744 if token.repo_id:
744 if token.repo_id:
745 # token has a scope, we need to verify it
745 # token has a scope, we need to verify it
746 if scope_repo_id != token.repo_id:
746 if scope_repo_id != token.repo_id:
747 log.debug(
747 log.debug(
748 'Scope mismatch: token has a set repo scope: %s, '
748 'Scope mismatch: token has a set repo scope: %s, '
749 'and calling scope is:%s, skipping further checks',
749 'and calling scope is:%s, skipping further checks',
750 token.repo, scope_repo_id)
750 token.repo, scope_repo_id)
751 # token has a scope, and it doesn't match, skip token
751 # token has a scope, and it doesn't match, skip token
752 continue
752 continue
753
753
754 if token.api_key.startswith(crypto_backend.ENC_PREF):
754 if token.api_key.startswith(crypto_backend.ENC_PREF):
755 hash_tokens.append(token.api_key)
755 hash_tokens.append(token.api_key)
756 else:
756 else:
757 plain_tokens.append(token.api_key)
757 plain_tokens.append(token.api_key)
758
758
759 is_plain_match = auth_token in plain_tokens
759 is_plain_match = auth_token in plain_tokens
760 if is_plain_match:
760 if is_plain_match:
761 return True
761 return True
762
762
763 for hashed in hash_tokens:
763 for hashed in hash_tokens:
764 # TODO(marcink): this is expensive to calculate, but most secure
764 # TODO(marcink): this is expensive to calculate, but most secure
765 match = crypto_backend.hash_check(auth_token, hashed)
765 match = crypto_backend.hash_check(auth_token, hashed)
766 if match:
766 if match:
767 return True
767 return True
768
768
769 return False
769 return False
770
770
771 @property
771 @property
772 def ip_addresses(self):
772 def ip_addresses(self):
773 ret = UserIpMap.query().filter(UserIpMap.user == self).all()
773 ret = UserIpMap.query().filter(UserIpMap.user == self).all()
774 return [x.ip_addr for x in ret]
774 return [x.ip_addr for x in ret]
775
775
776 @property
776 @property
777 def username_and_name(self):
777 def username_and_name(self):
778 return '%s (%s %s)' % (self.username, self.first_name, self.last_name)
778 return '%s (%s %s)' % (self.username, self.first_name, self.last_name)
779
779
780 @property
780 @property
781 def username_or_name_or_email(self):
781 def username_or_name_or_email(self):
782 full_name = self.full_name if self.full_name is not ' ' else None
782 full_name = self.full_name if self.full_name is not ' ' else None
783 return self.username or full_name or self.email
783 return self.username or full_name or self.email
784
784
785 @property
785 @property
786 def full_name(self):
786 def full_name(self):
787 return '%s %s' % (self.first_name, self.last_name)
787 return '%s %s' % (self.first_name, self.last_name)
788
788
789 @property
789 @property
790 def full_name_or_username(self):
790 def full_name_or_username(self):
791 return ('%s %s' % (self.first_name, self.last_name)
791 return ('%s %s' % (self.first_name, self.last_name)
792 if (self.first_name and self.last_name) else self.username)
792 if (self.first_name and self.last_name) else self.username)
793
793
794 @property
794 @property
795 def full_contact(self):
795 def full_contact(self):
796 return '%s %s <%s>' % (self.first_name, self.last_name, self.email)
796 return '%s %s <%s>' % (self.first_name, self.last_name, self.email)
797
797
798 @property
798 @property
799 def short_contact(self):
799 def short_contact(self):
800 return '%s %s' % (self.first_name, self.last_name)
800 return '%s %s' % (self.first_name, self.last_name)
801
801
802 @property
802 @property
803 def is_admin(self):
803 def is_admin(self):
804 return self.admin
804 return self.admin
805
805
806 def AuthUser(self, **kwargs):
806 def AuthUser(self, **kwargs):
807 """
807 """
808 Returns instance of AuthUser for this user
808 Returns instance of AuthUser for this user
809 """
809 """
810 from rhodecode.lib.auth import AuthUser
810 from rhodecode.lib.auth import AuthUser
811 return AuthUser(user_id=self.user_id, username=self.username, **kwargs)
811 return AuthUser(user_id=self.user_id, username=self.username, **kwargs)
812
812
813 @hybrid_property
813 @hybrid_property
814 def user_data(self):
814 def user_data(self):
815 if not self._user_data:
815 if not self._user_data:
816 return {}
816 return {}
817
817
818 try:
818 try:
819 return json.loads(self._user_data)
819 return json.loads(self._user_data)
820 except TypeError:
820 except TypeError:
821 return {}
821 return {}
822
822
823 @user_data.setter
823 @user_data.setter
824 def user_data(self, val):
824 def user_data(self, val):
825 if not isinstance(val, dict):
825 if not isinstance(val, dict):
826 raise Exception('user_data must be dict, got %s' % type(val))
826 raise Exception('user_data must be dict, got %s' % type(val))
827 try:
827 try:
828 self._user_data = json.dumps(val)
828 self._user_data = json.dumps(val)
829 except Exception:
829 except Exception:
830 log.error(traceback.format_exc())
830 log.error(traceback.format_exc())
831
831
832 @classmethod
832 @classmethod
833 def get_by_username(cls, username, case_insensitive=False,
833 def get_by_username(cls, username, case_insensitive=False,
834 cache=False, identity_cache=False):
834 cache=False, identity_cache=False):
835 session = Session()
835 session = Session()
836
836
837 if case_insensitive:
837 if case_insensitive:
838 q = cls.query().filter(
838 q = cls.query().filter(
839 func.lower(cls.username) == func.lower(username))
839 func.lower(cls.username) == func.lower(username))
840 else:
840 else:
841 q = cls.query().filter(cls.username == username)
841 q = cls.query().filter(cls.username == username)
842
842
843 if cache:
843 if cache:
844 if identity_cache:
844 if identity_cache:
845 val = cls.identity_cache(session, 'username', username)
845 val = cls.identity_cache(session, 'username', username)
846 if val:
846 if val:
847 return val
847 return val
848 else:
848 else:
849 cache_key = "get_user_by_name_%s" % _hash_key(username)
849 cache_key = "get_user_by_name_%s" % _hash_key(username)
850 q = q.options(
850 q = q.options(
851 FromCache("sql_cache_short", cache_key))
851 FromCache("sql_cache_short", cache_key))
852
852
853 return q.scalar()
853 return q.scalar()
854
854
855 @classmethod
855 @classmethod
856 def get_by_auth_token(cls, auth_token, cache=False):
856 def get_by_auth_token(cls, auth_token, cache=False):
857 q = UserApiKeys.query()\
857 q = UserApiKeys.query()\
858 .filter(UserApiKeys.api_key == auth_token)\
858 .filter(UserApiKeys.api_key == auth_token)\
859 .filter(or_(UserApiKeys.expires == -1,
859 .filter(or_(UserApiKeys.expires == -1,
860 UserApiKeys.expires >= time.time()))
860 UserApiKeys.expires >= time.time()))
861 if cache:
861 if cache:
862 q = q.options(
862 q = q.options(
863 FromCache("sql_cache_short", "get_auth_token_%s" % auth_token))
863 FromCache("sql_cache_short", "get_auth_token_%s" % auth_token))
864
864
865 match = q.first()
865 match = q.first()
866 if match:
866 if match:
867 return match.user
867 return match.user
868
868
869 @classmethod
869 @classmethod
870 def get_by_email(cls, email, case_insensitive=False, cache=False):
870 def get_by_email(cls, email, case_insensitive=False, cache=False):
871
871
872 if case_insensitive:
872 if case_insensitive:
873 q = cls.query().filter(func.lower(cls.email) == func.lower(email))
873 q = cls.query().filter(func.lower(cls.email) == func.lower(email))
874
874
875 else:
875 else:
876 q = cls.query().filter(cls.email == email)
876 q = cls.query().filter(cls.email == email)
877
877
878 email_key = _hash_key(email)
878 email_key = _hash_key(email)
879 if cache:
879 if cache:
880 q = q.options(
880 q = q.options(
881 FromCache("sql_cache_short", "get_email_key_%s" % email_key))
881 FromCache("sql_cache_short", "get_email_key_%s" % email_key))
882
882
883 ret = q.scalar()
883 ret = q.scalar()
884 if ret is None:
884 if ret is None:
885 q = UserEmailMap.query()
885 q = UserEmailMap.query()
886 # try fetching in alternate email map
886 # try fetching in alternate email map
887 if case_insensitive:
887 if case_insensitive:
888 q = q.filter(func.lower(UserEmailMap.email) == func.lower(email))
888 q = q.filter(func.lower(UserEmailMap.email) == func.lower(email))
889 else:
889 else:
890 q = q.filter(UserEmailMap.email == email)
890 q = q.filter(UserEmailMap.email == email)
891 q = q.options(joinedload(UserEmailMap.user))
891 q = q.options(joinedload(UserEmailMap.user))
892 if cache:
892 if cache:
893 q = q.options(
893 q = q.options(
894 FromCache("sql_cache_short", "get_email_map_key_%s" % email_key))
894 FromCache("sql_cache_short", "get_email_map_key_%s" % email_key))
895 ret = getattr(q.scalar(), 'user', None)
895 ret = getattr(q.scalar(), 'user', None)
896
896
897 return ret
897 return ret
898
898
899 @classmethod
899 @classmethod
900 def get_from_cs_author(cls, author):
900 def get_from_cs_author(cls, author):
901 """
901 """
902 Tries to get User objects out of commit author string
902 Tries to get User objects out of commit author string
903
903
904 :param author:
904 :param author:
905 """
905 """
906 from rhodecode.lib.helpers import email, author_name
906 from rhodecode.lib.helpers import email, author_name
907 # Valid email in the attribute passed, see if they're in the system
907 # Valid email in the attribute passed, see if they're in the system
908 _email = email(author)
908 _email = email(author)
909 if _email:
909 if _email:
910 user = cls.get_by_email(_email, case_insensitive=True)
910 user = cls.get_by_email(_email, case_insensitive=True)
911 if user:
911 if user:
912 return user
912 return user
913 # Maybe we can match by username?
913 # Maybe we can match by username?
914 _author = author_name(author)
914 _author = author_name(author)
915 user = cls.get_by_username(_author, case_insensitive=True)
915 user = cls.get_by_username(_author, case_insensitive=True)
916 if user:
916 if user:
917 return user
917 return user
918
918
919 def update_userdata(self, **kwargs):
919 def update_userdata(self, **kwargs):
920 usr = self
920 usr = self
921 old = usr.user_data
921 old = usr.user_data
922 old.update(**kwargs)
922 old.update(**kwargs)
923 usr.user_data = old
923 usr.user_data = old
924 Session().add(usr)
924 Session().add(usr)
925 log.debug('updated userdata with ', kwargs)
925 log.debug('updated userdata with ', kwargs)
926
926
927 def update_lastlogin(self):
927 def update_lastlogin(self):
928 """Update user lastlogin"""
928 """Update user lastlogin"""
929 self.last_login = datetime.datetime.now()
929 self.last_login = datetime.datetime.now()
930 Session().add(self)
930 Session().add(self)
931 log.debug('updated user %s lastlogin', self.username)
931 log.debug('updated user %s lastlogin', self.username)
932
932
933 def update_password(self, new_password):
933 def update_password(self, new_password):
934 from rhodecode.lib.auth import get_crypt_password
934 from rhodecode.lib.auth import get_crypt_password
935
935
936 self.password = get_crypt_password(new_password)
936 self.password = get_crypt_password(new_password)
937 Session().add(self)
937 Session().add(self)
938
938
939 @classmethod
939 @classmethod
940 def get_first_super_admin(cls):
940 def get_first_super_admin(cls):
941 user = User.query().filter(User.admin == true()).first()
941 user = User.query().filter(User.admin == true()).first()
942 if user is None:
942 if user is None:
943 raise Exception('FATAL: Missing administrative account!')
943 raise Exception('FATAL: Missing administrative account!')
944 return user
944 return user
945
945
946 @classmethod
946 @classmethod
947 def get_all_super_admins(cls):
947 def get_all_super_admins(cls):
948 """
948 """
949 Returns all admin accounts sorted by username
949 Returns all admin accounts sorted by username
950 """
950 """
951 return User.query().filter(User.admin == true())\
951 return User.query().filter(User.admin == true())\
952 .order_by(User.username.asc()).all()
952 .order_by(User.username.asc()).all()
953
953
954 @classmethod
954 @classmethod
955 def get_default_user(cls, cache=False, refresh=False):
955 def get_default_user(cls, cache=False, refresh=False):
956 user = User.get_by_username(User.DEFAULT_USER, cache=cache)
956 user = User.get_by_username(User.DEFAULT_USER, cache=cache)
957 if user is None:
957 if user is None:
958 raise Exception('FATAL: Missing default account!')
958 raise Exception('FATAL: Missing default account!')
959 if refresh:
959 if refresh:
960 # The default user might be based on outdated state which
960 # The default user might be based on outdated state which
961 # has been loaded from the cache.
961 # has been loaded from the cache.
962 # A call to refresh() ensures that the
962 # A call to refresh() ensures that the
963 # latest state from the database is used.
963 # latest state from the database is used.
964 Session().refresh(user)
964 Session().refresh(user)
965 return user
965 return user
966
966
967 def _get_default_perms(self, user, suffix=''):
967 def _get_default_perms(self, user, suffix=''):
968 from rhodecode.model.permission import PermissionModel
968 from rhodecode.model.permission import PermissionModel
969 return PermissionModel().get_default_perms(user.user_perms, suffix)
969 return PermissionModel().get_default_perms(user.user_perms, suffix)
970
970
971 def get_default_perms(self, suffix=''):
971 def get_default_perms(self, suffix=''):
972 return self._get_default_perms(self, suffix)
972 return self._get_default_perms(self, suffix)
973
973
974 def get_api_data(self, include_secrets=False, details='full'):
974 def get_api_data(self, include_secrets=False, details='full'):
975 """
975 """
976 Common function for generating user related data for API
976 Common function for generating user related data for API
977
977
978 :param include_secrets: By default secrets in the API data will be replaced
978 :param include_secrets: By default secrets in the API data will be replaced
979 by a placeholder value to prevent exposing this data by accident. In case
979 by a placeholder value to prevent exposing this data by accident. In case
980 this data shall be exposed, set this flag to ``True``.
980 this data shall be exposed, set this flag to ``True``.
981
981
982 :param details: details can be 'basic|full' basic gives only a subset of
982 :param details: details can be 'basic|full' basic gives only a subset of
983 the available user information that includes user_id, name and emails.
983 the available user information that includes user_id, name and emails.
984 """
984 """
985 user = self
985 user = self
986 user_data = self.user_data
986 user_data = self.user_data
987 data = {
987 data = {
988 'user_id': user.user_id,
988 'user_id': user.user_id,
989 'username': user.username,
989 'username': user.username,
990 'firstname': user.name,
990 'firstname': user.name,
991 'lastname': user.lastname,
991 'lastname': user.lastname,
992 'email': user.email,
992 'email': user.email,
993 'emails': user.emails,
993 'emails': user.emails,
994 }
994 }
995 if details == 'basic':
995 if details == 'basic':
996 return data
996 return data
997
997
998 auth_token_length = 40
998 auth_token_length = 40
999 auth_token_replacement = '*' * auth_token_length
999 auth_token_replacement = '*' * auth_token_length
1000
1000
1001 extras = {
1001 extras = {
1002 'auth_tokens': [auth_token_replacement],
1002 'auth_tokens': [auth_token_replacement],
1003 'active': user.active,
1003 'active': user.active,
1004 'admin': user.admin,
1004 'admin': user.admin,
1005 'extern_type': user.extern_type,
1005 'extern_type': user.extern_type,
1006 'extern_name': user.extern_name,
1006 'extern_name': user.extern_name,
1007 'last_login': user.last_login,
1007 'last_login': user.last_login,
1008 'last_activity': user.last_activity,
1008 'last_activity': user.last_activity,
1009 'ip_addresses': user.ip_addresses,
1009 'ip_addresses': user.ip_addresses,
1010 'language': user_data.get('language')
1010 'language': user_data.get('language')
1011 }
1011 }
1012 data.update(extras)
1012 data.update(extras)
1013
1013
1014 if include_secrets:
1014 if include_secrets:
1015 data['auth_tokens'] = user.auth_tokens
1015 data['auth_tokens'] = user.auth_tokens
1016 return data
1016 return data
1017
1017
1018 def __json__(self):
1018 def __json__(self):
1019 data = {
1019 data = {
1020 'full_name': self.full_name,
1020 'full_name': self.full_name,
1021 'full_name_or_username': self.full_name_or_username,
1021 'full_name_or_username': self.full_name_or_username,
1022 'short_contact': self.short_contact,
1022 'short_contact': self.short_contact,
1023 'full_contact': self.full_contact,
1023 'full_contact': self.full_contact,
1024 }
1024 }
1025 data.update(self.get_api_data())
1025 data.update(self.get_api_data())
1026 return data
1026 return data
1027
1027
1028
1028
1029 class UserApiKeys(Base, BaseModel):
1029 class UserApiKeys(Base, BaseModel):
1030 __tablename__ = 'user_api_keys'
1030 __tablename__ = 'user_api_keys'
1031 __table_args__ = (
1031 __table_args__ = (
1032 Index('uak_api_key_idx', 'api_key', unique=True),
1032 Index('uak_api_key_idx', 'api_key', unique=True),
1033 Index('uak_api_key_expires_idx', 'api_key', 'expires'),
1033 Index('uak_api_key_expires_idx', 'api_key', 'expires'),
1034 base_table_args
1034 base_table_args
1035 )
1035 )
1036 __mapper_args__ = {}
1036 __mapper_args__ = {}
1037
1037
1038 # ApiKey role
1038 # ApiKey role
1039 ROLE_ALL = 'token_role_all'
1039 ROLE_ALL = 'token_role_all'
1040 ROLE_HTTP = 'token_role_http'
1040 ROLE_HTTP = 'token_role_http'
1041 ROLE_VCS = 'token_role_vcs'
1041 ROLE_VCS = 'token_role_vcs'
1042 ROLE_API = 'token_role_api'
1042 ROLE_API = 'token_role_api'
1043 ROLE_FEED = 'token_role_feed'
1043 ROLE_FEED = 'token_role_feed'
1044 ROLE_PASSWORD_RESET = 'token_password_reset'
1044 ROLE_PASSWORD_RESET = 'token_password_reset'
1045
1045
1046 ROLES = [ROLE_ALL, ROLE_HTTP, ROLE_VCS, ROLE_API, ROLE_FEED]
1046 ROLES = [ROLE_ALL, ROLE_HTTP, ROLE_VCS, ROLE_API, ROLE_FEED]
1047
1047
1048 user_api_key_id = Column("user_api_key_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1048 user_api_key_id = Column("user_api_key_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1049 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1049 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1050 api_key = Column("api_key", String(255), nullable=False, unique=True)
1050 api_key = Column("api_key", String(255), nullable=False, unique=True)
1051 description = Column('description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
1051 description = Column('description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
1052 expires = Column('expires', Float(53), nullable=False)
1052 expires = Column('expires', Float(53), nullable=False)
1053 role = Column('role', String(255), nullable=True)
1053 role = Column('role', String(255), nullable=True)
1054 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1054 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1055
1055
1056 # scope columns
1056 # scope columns
1057 repo_id = Column(
1057 repo_id = Column(
1058 'repo_id', Integer(), ForeignKey('repositories.repo_id'),
1058 'repo_id', Integer(), ForeignKey('repositories.repo_id'),
1059 nullable=True, unique=None, default=None)
1059 nullable=True, unique=None, default=None)
1060 repo = relationship('Repository', lazy='joined')
1060 repo = relationship('Repository', lazy='joined')
1061
1061
1062 repo_group_id = Column(
1062 repo_group_id = Column(
1063 'repo_group_id', Integer(), ForeignKey('groups.group_id'),
1063 'repo_group_id', Integer(), ForeignKey('groups.group_id'),
1064 nullable=True, unique=None, default=None)
1064 nullable=True, unique=None, default=None)
1065 repo_group = relationship('RepoGroup', lazy='joined')
1065 repo_group = relationship('RepoGroup', lazy='joined')
1066
1066
1067 user = relationship('User', lazy='joined')
1067 user = relationship('User', lazy='joined')
1068
1068
1069 def __unicode__(self):
1069 def __unicode__(self):
1070 return u"<%s('%s')>" % (self.__class__.__name__, self.role)
1070 return u"<%s('%s')>" % (self.__class__.__name__, self.role)
1071
1071
1072 def __json__(self):
1072 def __json__(self):
1073 data = {
1073 data = {
1074 'auth_token': self.api_key,
1074 'auth_token': self.api_key,
1075 'role': self.role,
1075 'role': self.role,
1076 'scope': self.scope_humanized,
1076 'scope': self.scope_humanized,
1077 'expired': self.expired
1077 'expired': self.expired
1078 }
1078 }
1079 return data
1079 return data
1080
1080
1081 def get_api_data(self, include_secrets=False):
1081 def get_api_data(self, include_secrets=False):
1082 data = self.__json__()
1082 data = self.__json__()
1083 if include_secrets:
1083 if include_secrets:
1084 return data
1084 return data
1085 else:
1085 else:
1086 data['auth_token'] = self.token_obfuscated
1086 data['auth_token'] = self.token_obfuscated
1087 return data
1087 return data
1088
1088
1089 @hybrid_property
1089 @hybrid_property
1090 def description_safe(self):
1090 def description_safe(self):
1091 from rhodecode.lib import helpers as h
1091 from rhodecode.lib import helpers as h
1092 return h.escape(self.description)
1092 return h.escape(self.description)
1093
1093
1094 @property
1094 @property
1095 def expired(self):
1095 def expired(self):
1096 if self.expires == -1:
1096 if self.expires == -1:
1097 return False
1097 return False
1098 return time.time() > self.expires
1098 return time.time() > self.expires
1099
1099
1100 @classmethod
1100 @classmethod
1101 def _get_role_name(cls, role):
1101 def _get_role_name(cls, role):
1102 return {
1102 return {
1103 cls.ROLE_ALL: _('all'),
1103 cls.ROLE_ALL: _('all'),
1104 cls.ROLE_HTTP: _('http/web interface'),
1104 cls.ROLE_HTTP: _('http/web interface'),
1105 cls.ROLE_VCS: _('vcs (git/hg/svn protocol)'),
1105 cls.ROLE_VCS: _('vcs (git/hg/svn protocol)'),
1106 cls.ROLE_API: _('api calls'),
1106 cls.ROLE_API: _('api calls'),
1107 cls.ROLE_FEED: _('feed access'),
1107 cls.ROLE_FEED: _('feed access'),
1108 }.get(role, role)
1108 }.get(role, role)
1109
1109
1110 @property
1110 @property
1111 def role_humanized(self):
1111 def role_humanized(self):
1112 return self._get_role_name(self.role)
1112 return self._get_role_name(self.role)
1113
1113
1114 def _get_scope(self):
1114 def _get_scope(self):
1115 if self.repo:
1115 if self.repo:
1116 return repr(self.repo)
1116 return repr(self.repo)
1117 if self.repo_group:
1117 if self.repo_group:
1118 return repr(self.repo_group) + ' (recursive)'
1118 return repr(self.repo_group) + ' (recursive)'
1119 return 'global'
1119 return 'global'
1120
1120
1121 @property
1121 @property
1122 def scope_humanized(self):
1122 def scope_humanized(self):
1123 return self._get_scope()
1123 return self._get_scope()
1124
1124
1125 @property
1125 @property
1126 def token_obfuscated(self):
1126 def token_obfuscated(self):
1127 if self.api_key:
1127 if self.api_key:
1128 return self.api_key[:4] + "****"
1128 return self.api_key[:4] + "****"
1129
1129
1130
1130
1131 class UserEmailMap(Base, BaseModel):
1131 class UserEmailMap(Base, BaseModel):
1132 __tablename__ = 'user_email_map'
1132 __tablename__ = 'user_email_map'
1133 __table_args__ = (
1133 __table_args__ = (
1134 Index('uem_email_idx', 'email'),
1134 Index('uem_email_idx', 'email'),
1135 UniqueConstraint('email'),
1135 UniqueConstraint('email'),
1136 base_table_args
1136 base_table_args
1137 )
1137 )
1138 __mapper_args__ = {}
1138 __mapper_args__ = {}
1139
1139
1140 email_id = Column("email_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1140 email_id = Column("email_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1141 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1141 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1142 _email = Column("email", String(255), nullable=True, unique=False, default=None)
1142 _email = Column("email", String(255), nullable=True, unique=False, default=None)
1143 user = relationship('User', lazy='joined')
1143 user = relationship('User', lazy='joined')
1144
1144
1145 @validates('_email')
1145 @validates('_email')
1146 def validate_email(self, key, email):
1146 def validate_email(self, key, email):
1147 # check if this email is not main one
1147 # check if this email is not main one
1148 main_email = Session().query(User).filter(User.email == email).scalar()
1148 main_email = Session().query(User).filter(User.email == email).scalar()
1149 if main_email is not None:
1149 if main_email is not None:
1150 raise AttributeError('email %s is present is user table' % email)
1150 raise AttributeError('email %s is present is user table' % email)
1151 return email
1151 return email
1152
1152
1153 @hybrid_property
1153 @hybrid_property
1154 def email(self):
1154 def email(self):
1155 return self._email
1155 return self._email
1156
1156
1157 @email.setter
1157 @email.setter
1158 def email(self, val):
1158 def email(self, val):
1159 self._email = val.lower() if val else None
1159 self._email = val.lower() if val else None
1160
1160
1161
1161
1162 class UserIpMap(Base, BaseModel):
1162 class UserIpMap(Base, BaseModel):
1163 __tablename__ = 'user_ip_map'
1163 __tablename__ = 'user_ip_map'
1164 __table_args__ = (
1164 __table_args__ = (
1165 UniqueConstraint('user_id', 'ip_addr'),
1165 UniqueConstraint('user_id', 'ip_addr'),
1166 base_table_args
1166 base_table_args
1167 )
1167 )
1168 __mapper_args__ = {}
1168 __mapper_args__ = {}
1169
1169
1170 ip_id = Column("ip_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1170 ip_id = Column("ip_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1171 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1171 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1172 ip_addr = Column("ip_addr", String(255), nullable=True, unique=False, default=None)
1172 ip_addr = Column("ip_addr", String(255), nullable=True, unique=False, default=None)
1173 active = Column("active", Boolean(), nullable=True, unique=None, default=True)
1173 active = Column("active", Boolean(), nullable=True, unique=None, default=True)
1174 description = Column("description", String(10000), nullable=True, unique=None, default=None)
1174 description = Column("description", String(10000), nullable=True, unique=None, default=None)
1175 user = relationship('User', lazy='joined')
1175 user = relationship('User', lazy='joined')
1176
1176
1177 @hybrid_property
1177 @hybrid_property
1178 def description_safe(self):
1178 def description_safe(self):
1179 from rhodecode.lib import helpers as h
1179 from rhodecode.lib import helpers as h
1180 return h.escape(self.description)
1180 return h.escape(self.description)
1181
1181
1182 @classmethod
1182 @classmethod
1183 def _get_ip_range(cls, ip_addr):
1183 def _get_ip_range(cls, ip_addr):
1184 net = ipaddress.ip_network(safe_unicode(ip_addr), strict=False)
1184 net = ipaddress.ip_network(safe_unicode(ip_addr), strict=False)
1185 return [str(net.network_address), str(net.broadcast_address)]
1185 return [str(net.network_address), str(net.broadcast_address)]
1186
1186
1187 def __json__(self):
1187 def __json__(self):
1188 return {
1188 return {
1189 'ip_addr': self.ip_addr,
1189 'ip_addr': self.ip_addr,
1190 'ip_range': self._get_ip_range(self.ip_addr),
1190 'ip_range': self._get_ip_range(self.ip_addr),
1191 }
1191 }
1192
1192
1193 def __unicode__(self):
1193 def __unicode__(self):
1194 return u"<%s('user_id:%s=>%s')>" % (self.__class__.__name__,
1194 return u"<%s('user_id:%s=>%s')>" % (self.__class__.__name__,
1195 self.user_id, self.ip_addr)
1195 self.user_id, self.ip_addr)
1196
1196
1197
1197
1198 class UserSshKeys(Base, BaseModel):
1198 class UserSshKeys(Base, BaseModel):
1199 __tablename__ = 'user_ssh_keys'
1199 __tablename__ = 'user_ssh_keys'
1200 __table_args__ = (
1200 __table_args__ = (
1201 Index('usk_ssh_key_fingerprint_idx', 'ssh_key_fingerprint'),
1201 Index('usk_ssh_key_fingerprint_idx', 'ssh_key_fingerprint'),
1202
1202
1203 UniqueConstraint('ssh_key_fingerprint'),
1203 UniqueConstraint('ssh_key_fingerprint'),
1204
1204
1205 base_table_args
1205 base_table_args
1206 )
1206 )
1207 __mapper_args__ = {}
1207 __mapper_args__ = {}
1208
1208
1209 ssh_key_id = Column('ssh_key_id', Integer(), nullable=False, unique=True, default=None, primary_key=True)
1209 ssh_key_id = Column('ssh_key_id', Integer(), nullable=False, unique=True, default=None, primary_key=True)
1210 ssh_key_data = Column('ssh_key_data', String(10240), nullable=False, unique=None, default=None)
1210 ssh_key_data = Column('ssh_key_data', String(10240), nullable=False, unique=None, default=None)
1211 ssh_key_fingerprint = Column('ssh_key_fingerprint', String(255), nullable=False, unique=None, default=None)
1211 ssh_key_fingerprint = Column('ssh_key_fingerprint', String(255), nullable=False, unique=None, default=None)
1212
1212
1213 description = Column('description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
1213 description = Column('description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
1214
1214
1215 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1215 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1216 accessed_on = Column('accessed_on', DateTime(timezone=False), nullable=True, default=None)
1216 accessed_on = Column('accessed_on', DateTime(timezone=False), nullable=True, default=None)
1217 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1217 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1218
1218
1219 user = relationship('User', lazy='joined')
1219 user = relationship('User', lazy='joined')
1220
1220
1221 def __json__(self):
1221 def __json__(self):
1222 data = {
1222 data = {
1223 'ssh_fingerprint': self.ssh_key_fingerprint,
1223 'ssh_fingerprint': self.ssh_key_fingerprint,
1224 'description': self.description,
1224 'description': self.description,
1225 'created_on': self.created_on
1225 'created_on': self.created_on
1226 }
1226 }
1227 return data
1227 return data
1228
1228
1229 def get_api_data(self):
1229 def get_api_data(self):
1230 data = self.__json__()
1230 data = self.__json__()
1231 return data
1231 return data
1232
1232
1233
1233
1234 class UserLog(Base, BaseModel):
1234 class UserLog(Base, BaseModel):
1235 __tablename__ = 'user_logs'
1235 __tablename__ = 'user_logs'
1236 __table_args__ = (
1236 __table_args__ = (
1237 base_table_args,
1237 base_table_args,
1238 )
1238 )
1239
1239
1240 VERSION_1 = 'v1'
1240 VERSION_1 = 'v1'
1241 VERSION_2 = 'v2'
1241 VERSION_2 = 'v2'
1242 VERSIONS = [VERSION_1, VERSION_2]
1242 VERSIONS = [VERSION_1, VERSION_2]
1243
1243
1244 user_log_id = Column("user_log_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1244 user_log_id = Column("user_log_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1245 user_id = Column("user_id", Integer(), ForeignKey('users.user_id',ondelete='SET NULL'), nullable=True, unique=None, default=None)
1245 user_id = Column("user_id", Integer(), ForeignKey('users.user_id',ondelete='SET NULL'), nullable=True, unique=None, default=None)
1246 username = Column("username", String(255), nullable=True, unique=None, default=None)
1246 username = Column("username", String(255), nullable=True, unique=None, default=None)
1247 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id', ondelete='SET NULL'), nullable=True, unique=None, default=None)
1247 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id', ondelete='SET NULL'), nullable=True, unique=None, default=None)
1248 repository_name = Column("repository_name", String(255), nullable=True, unique=None, default=None)
1248 repository_name = Column("repository_name", String(255), nullable=True, unique=None, default=None)
1249 user_ip = Column("user_ip", String(255), nullable=True, unique=None, default=None)
1249 user_ip = Column("user_ip", String(255), nullable=True, unique=None, default=None)
1250 action = Column("action", Text().with_variant(Text(1200000), 'mysql'), nullable=True, unique=None, default=None)
1250 action = Column("action", Text().with_variant(Text(1200000), 'mysql'), nullable=True, unique=None, default=None)
1251 action_date = Column("action_date", DateTime(timezone=False), nullable=True, unique=None, default=None)
1251 action_date = Column("action_date", DateTime(timezone=False), nullable=True, unique=None, default=None)
1252
1252
1253 version = Column("version", String(255), nullable=True, default=VERSION_1)
1253 version = Column("version", String(255), nullable=True, default=VERSION_1)
1254 user_data = Column('user_data_json', MutationObj.as_mutable(JsonType(dialect_map=dict(mysql=LONGTEXT()))))
1254 user_data = Column('user_data_json', MutationObj.as_mutable(JsonType(dialect_map=dict(mysql=LONGTEXT()))))
1255 action_data = Column('action_data_json', MutationObj.as_mutable(JsonType(dialect_map=dict(mysql=LONGTEXT()))))
1255 action_data = Column('action_data_json', MutationObj.as_mutable(JsonType(dialect_map=dict(mysql=LONGTEXT()))))
1256
1256
1257 def __unicode__(self):
1257 def __unicode__(self):
1258 return u"<%s('id:%s:%s')>" % (
1258 return u"<%s('id:%s:%s')>" % (
1259 self.__class__.__name__, self.repository_name, self.action)
1259 self.__class__.__name__, self.repository_name, self.action)
1260
1260
1261 def __json__(self):
1261 def __json__(self):
1262 return {
1262 return {
1263 'user_id': self.user_id,
1263 'user_id': self.user_id,
1264 'username': self.username,
1264 'username': self.username,
1265 'repository_id': self.repository_id,
1265 'repository_id': self.repository_id,
1266 'repository_name': self.repository_name,
1266 'repository_name': self.repository_name,
1267 'user_ip': self.user_ip,
1267 'user_ip': self.user_ip,
1268 'action_date': self.action_date,
1268 'action_date': self.action_date,
1269 'action': self.action,
1269 'action': self.action,
1270 }
1270 }
1271
1271
1272 @hybrid_property
1272 @hybrid_property
1273 def entry_id(self):
1273 def entry_id(self):
1274 return self.user_log_id
1274 return self.user_log_id
1275
1275
1276 @property
1276 @property
1277 def action_as_day(self):
1277 def action_as_day(self):
1278 return datetime.date(*self.action_date.timetuple()[:3])
1278 return datetime.date(*self.action_date.timetuple()[:3])
1279
1279
1280 user = relationship('User')
1280 user = relationship('User')
1281 repository = relationship('Repository', cascade='')
1281 repository = relationship('Repository', cascade='')
1282
1282
1283
1283
1284 class UserGroup(Base, BaseModel):
1284 class UserGroup(Base, BaseModel):
1285 __tablename__ = 'users_groups'
1285 __tablename__ = 'users_groups'
1286 __table_args__ = (
1286 __table_args__ = (
1287 base_table_args,
1287 base_table_args,
1288 )
1288 )
1289
1289
1290 users_group_id = Column("users_group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1290 users_group_id = Column("users_group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1291 users_group_name = Column("users_group_name", String(255), nullable=False, unique=True, default=None)
1291 users_group_name = Column("users_group_name", String(255), nullable=False, unique=True, default=None)
1292 user_group_description = Column("user_group_description", String(10000), nullable=True, unique=None, default=None)
1292 user_group_description = Column("user_group_description", String(10000), nullable=True, unique=None, default=None)
1293 users_group_active = Column("users_group_active", Boolean(), nullable=True, unique=None, default=None)
1293 users_group_active = Column("users_group_active", Boolean(), nullable=True, unique=None, default=None)
1294 inherit_default_permissions = Column("users_group_inherit_default_permissions", Boolean(), nullable=False, unique=None, default=True)
1294 inherit_default_permissions = Column("users_group_inherit_default_permissions", Boolean(), nullable=False, unique=None, default=True)
1295 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=False, default=None)
1295 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=False, default=None)
1296 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1296 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1297 _group_data = Column("group_data", LargeBinary(), nullable=True) # JSON data
1297 _group_data = Column("group_data", LargeBinary(), nullable=True) # JSON data
1298
1298
1299 members = relationship('UserGroupMember', cascade="all, delete, delete-orphan", lazy="joined")
1299 members = relationship('UserGroupMember', cascade="all, delete, delete-orphan", lazy="joined")
1300 users_group_to_perm = relationship('UserGroupToPerm', cascade='all')
1300 users_group_to_perm = relationship('UserGroupToPerm', cascade='all')
1301 users_group_repo_to_perm = relationship('UserGroupRepoToPerm', cascade='all')
1301 users_group_repo_to_perm = relationship('UserGroupRepoToPerm', cascade='all')
1302 users_group_repo_group_to_perm = relationship('UserGroupRepoGroupToPerm', cascade='all')
1302 users_group_repo_group_to_perm = relationship('UserGroupRepoGroupToPerm', cascade='all')
1303 user_user_group_to_perm = relationship('UserUserGroupToPerm', cascade='all')
1303 user_user_group_to_perm = relationship('UserUserGroupToPerm', cascade='all')
1304 user_group_user_group_to_perm = relationship('UserGroupUserGroupToPerm ', primaryjoin="UserGroupUserGroupToPerm.target_user_group_id==UserGroup.users_group_id", cascade='all')
1304 user_group_user_group_to_perm = relationship('UserGroupUserGroupToPerm ', primaryjoin="UserGroupUserGroupToPerm.target_user_group_id==UserGroup.users_group_id", cascade='all')
1305
1305
1306 user_group_review_rules = relationship('RepoReviewRuleUserGroup', cascade='all')
1306 user_group_review_rules = relationship('RepoReviewRuleUserGroup', cascade='all')
1307 user = relationship('User', primaryjoin="User.user_id==UserGroup.user_id")
1307 user = relationship('User', primaryjoin="User.user_id==UserGroup.user_id")
1308
1308
1309 @classmethod
1309 @classmethod
1310 def _load_group_data(cls, column):
1310 def _load_group_data(cls, column):
1311 if not column:
1311 if not column:
1312 return {}
1312 return {}
1313
1313
1314 try:
1314 try:
1315 return json.loads(column) or {}
1315 return json.loads(column) or {}
1316 except TypeError:
1316 except TypeError:
1317 return {}
1317 return {}
1318
1318
1319 @hybrid_property
1319 @hybrid_property
1320 def description_safe(self):
1320 def description_safe(self):
1321 from rhodecode.lib import helpers as h
1321 from rhodecode.lib import helpers as h
1322 return h.escape(self.user_group_description)
1322 return h.escape(self.user_group_description)
1323
1323
1324 @hybrid_property
1324 @hybrid_property
1325 def group_data(self):
1325 def group_data(self):
1326 return self._load_group_data(self._group_data)
1326 return self._load_group_data(self._group_data)
1327
1327
1328 @group_data.expression
1328 @group_data.expression
1329 def group_data(self, **kwargs):
1329 def group_data(self, **kwargs):
1330 return self._group_data
1330 return self._group_data
1331
1331
1332 @group_data.setter
1332 @group_data.setter
1333 def group_data(self, val):
1333 def group_data(self, val):
1334 try:
1334 try:
1335 self._group_data = json.dumps(val)
1335 self._group_data = json.dumps(val)
1336 except Exception:
1336 except Exception:
1337 log.error(traceback.format_exc())
1337 log.error(traceback.format_exc())
1338
1338
1339 @classmethod
1339 @classmethod
1340 def _load_sync(cls, group_data):
1340 def _load_sync(cls, group_data):
1341 if group_data:
1341 if group_data:
1342 return group_data.get('extern_type')
1342 return group_data.get('extern_type')
1343
1343
1344 @property
1344 @property
1345 def sync(self):
1345 def sync(self):
1346 return self._load_sync(self.group_data)
1346 return self._load_sync(self.group_data)
1347
1347
1348 def __unicode__(self):
1348 def __unicode__(self):
1349 return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
1349 return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
1350 self.users_group_id,
1350 self.users_group_id,
1351 self.users_group_name)
1351 self.users_group_name)
1352
1352
1353 @classmethod
1353 @classmethod
1354 def get_by_group_name(cls, group_name, cache=False,
1354 def get_by_group_name(cls, group_name, cache=False,
1355 case_insensitive=False):
1355 case_insensitive=False):
1356 if case_insensitive:
1356 if case_insensitive:
1357 q = cls.query().filter(func.lower(cls.users_group_name) ==
1357 q = cls.query().filter(func.lower(cls.users_group_name) ==
1358 func.lower(group_name))
1358 func.lower(group_name))
1359
1359
1360 else:
1360 else:
1361 q = cls.query().filter(cls.users_group_name == group_name)
1361 q = cls.query().filter(cls.users_group_name == group_name)
1362 if cache:
1362 if cache:
1363 q = q.options(
1363 q = q.options(
1364 FromCache("sql_cache_short", "get_group_%s" % _hash_key(group_name)))
1364 FromCache("sql_cache_short", "get_group_%s" % _hash_key(group_name)))
1365 return q.scalar()
1365 return q.scalar()
1366
1366
1367 @classmethod
1367 @classmethod
1368 def get(cls, user_group_id, cache=False):
1368 def get(cls, user_group_id, cache=False):
1369 if not user_group_id:
1369 if not user_group_id:
1370 return
1370 return
1371
1371
1372 user_group = cls.query()
1372 user_group = cls.query()
1373 if cache:
1373 if cache:
1374 user_group = user_group.options(
1374 user_group = user_group.options(
1375 FromCache("sql_cache_short", "get_users_group_%s" % user_group_id))
1375 FromCache("sql_cache_short", "get_users_group_%s" % user_group_id))
1376 return user_group.get(user_group_id)
1376 return user_group.get(user_group_id)
1377
1377
1378 def permissions(self, with_admins=True, with_owner=True):
1378 def permissions(self, with_admins=True, with_owner=True):
1379 """
1379 """
1380 Permissions for user groups
1380 Permissions for user groups
1381 """
1381 """
1382 _admin_perm = 'usergroup.admin'
1382 _admin_perm = 'usergroup.admin'
1383
1383
1384 owner_row = []
1384 owner_row = []
1385 if with_owner:
1385 if with_owner:
1386 usr = AttributeDict(self.user.get_dict())
1386 usr = AttributeDict(self.user.get_dict())
1387 usr.owner_row = True
1387 usr.owner_row = True
1388 usr.permission = _admin_perm
1388 usr.permission = _admin_perm
1389 owner_row.append(usr)
1389 owner_row.append(usr)
1390
1390
1391 super_admin_ids = []
1391 super_admin_ids = []
1392 super_admin_rows = []
1392 super_admin_rows = []
1393 if with_admins:
1393 if with_admins:
1394 for usr in User.get_all_super_admins():
1394 for usr in User.get_all_super_admins():
1395 super_admin_ids.append(usr.user_id)
1395 super_admin_ids.append(usr.user_id)
1396 # if this admin is also owner, don't double the record
1396 # if this admin is also owner, don't double the record
1397 if usr.user_id == owner_row[0].user_id:
1397 if usr.user_id == owner_row[0].user_id:
1398 owner_row[0].admin_row = True
1398 owner_row[0].admin_row = True
1399 else:
1399 else:
1400 usr = AttributeDict(usr.get_dict())
1400 usr = AttributeDict(usr.get_dict())
1401 usr.admin_row = True
1401 usr.admin_row = True
1402 usr.permission = _admin_perm
1402 usr.permission = _admin_perm
1403 super_admin_rows.append(usr)
1403 super_admin_rows.append(usr)
1404
1404
1405 q = UserUserGroupToPerm.query().filter(UserUserGroupToPerm.user_group == self)
1405 q = UserUserGroupToPerm.query().filter(UserUserGroupToPerm.user_group == self)
1406 q = q.options(joinedload(UserUserGroupToPerm.user_group),
1406 q = q.options(joinedload(UserUserGroupToPerm.user_group),
1407 joinedload(UserUserGroupToPerm.user),
1407 joinedload(UserUserGroupToPerm.user),
1408 joinedload(UserUserGroupToPerm.permission),)
1408 joinedload(UserUserGroupToPerm.permission),)
1409
1409
1410 # get owners and admins and permissions. We do a trick of re-writing
1410 # get owners and admins and permissions. We do a trick of re-writing
1411 # objects from sqlalchemy to named-tuples due to sqlalchemy session
1411 # objects from sqlalchemy to named-tuples due to sqlalchemy session
1412 # has a global reference and changing one object propagates to all
1412 # has a global reference and changing one object propagates to all
1413 # others. This means if admin is also an owner admin_row that change
1413 # others. This means if admin is also an owner admin_row that change
1414 # would propagate to both objects
1414 # would propagate to both objects
1415 perm_rows = []
1415 perm_rows = []
1416 for _usr in q.all():
1416 for _usr in q.all():
1417 usr = AttributeDict(_usr.user.get_dict())
1417 usr = AttributeDict(_usr.user.get_dict())
1418 # if this user is also owner/admin, mark as duplicate record
1418 # if this user is also owner/admin, mark as duplicate record
1419 if usr.user_id == owner_row[0].user_id or usr.user_id in super_admin_ids:
1419 if usr.user_id == owner_row[0].user_id or usr.user_id in super_admin_ids:
1420 usr.duplicate_perm = True
1420 usr.duplicate_perm = True
1421 usr.permission = _usr.permission.permission_name
1421 usr.permission = _usr.permission.permission_name
1422 perm_rows.append(usr)
1422 perm_rows.append(usr)
1423
1423
1424 # filter the perm rows by 'default' first and then sort them by
1424 # filter the perm rows by 'default' first and then sort them by
1425 # admin,write,read,none permissions sorted again alphabetically in
1425 # admin,write,read,none permissions sorted again alphabetically in
1426 # each group
1426 # each group
1427 perm_rows = sorted(perm_rows, key=display_user_sort)
1427 perm_rows = sorted(perm_rows, key=display_user_sort)
1428
1428
1429 return super_admin_rows + owner_row + perm_rows
1429 return super_admin_rows + owner_row + perm_rows
1430
1430
1431 def permission_user_groups(self):
1431 def permission_user_groups(self):
1432 q = UserGroupUserGroupToPerm.query().filter(UserGroupUserGroupToPerm.target_user_group == self)
1432 q = UserGroupUserGroupToPerm.query().filter(UserGroupUserGroupToPerm.target_user_group == self)
1433 q = q.options(joinedload(UserGroupUserGroupToPerm.user_group),
1433 q = q.options(joinedload(UserGroupUserGroupToPerm.user_group),
1434 joinedload(UserGroupUserGroupToPerm.target_user_group),
1434 joinedload(UserGroupUserGroupToPerm.target_user_group),
1435 joinedload(UserGroupUserGroupToPerm.permission),)
1435 joinedload(UserGroupUserGroupToPerm.permission),)
1436
1436
1437 perm_rows = []
1437 perm_rows = []
1438 for _user_group in q.all():
1438 for _user_group in q.all():
1439 usr = AttributeDict(_user_group.user_group.get_dict())
1439 usr = AttributeDict(_user_group.user_group.get_dict())
1440 usr.permission = _user_group.permission.permission_name
1440 usr.permission = _user_group.permission.permission_name
1441 perm_rows.append(usr)
1441 perm_rows.append(usr)
1442
1442
1443 perm_rows = sorted(perm_rows, key=display_user_group_sort)
1443 perm_rows = sorted(perm_rows, key=display_user_group_sort)
1444 return perm_rows
1444 return perm_rows
1445
1445
1446 def _get_default_perms(self, user_group, suffix=''):
1446 def _get_default_perms(self, user_group, suffix=''):
1447 from rhodecode.model.permission import PermissionModel
1447 from rhodecode.model.permission import PermissionModel
1448 return PermissionModel().get_default_perms(user_group.users_group_to_perm, suffix)
1448 return PermissionModel().get_default_perms(user_group.users_group_to_perm, suffix)
1449
1449
1450 def get_default_perms(self, suffix=''):
1450 def get_default_perms(self, suffix=''):
1451 return self._get_default_perms(self, suffix)
1451 return self._get_default_perms(self, suffix)
1452
1452
1453 def get_api_data(self, with_group_members=True, include_secrets=False):
1453 def get_api_data(self, with_group_members=True, include_secrets=False):
1454 """
1454 """
1455 :param include_secrets: See :meth:`User.get_api_data`, this parameter is
1455 :param include_secrets: See :meth:`User.get_api_data`, this parameter is
1456 basically forwarded.
1456 basically forwarded.
1457
1457
1458 """
1458 """
1459 user_group = self
1459 user_group = self
1460 data = {
1460 data = {
1461 'users_group_id': user_group.users_group_id,
1461 'users_group_id': user_group.users_group_id,
1462 'group_name': user_group.users_group_name,
1462 'group_name': user_group.users_group_name,
1463 'group_description': user_group.user_group_description,
1463 'group_description': user_group.user_group_description,
1464 'active': user_group.users_group_active,
1464 'active': user_group.users_group_active,
1465 'owner': user_group.user.username,
1465 'owner': user_group.user.username,
1466 'sync': user_group.sync,
1466 'sync': user_group.sync,
1467 'owner_email': user_group.user.email,
1467 'owner_email': user_group.user.email,
1468 }
1468 }
1469
1469
1470 if with_group_members:
1470 if with_group_members:
1471 users = []
1471 users = []
1472 for user in user_group.members:
1472 for user in user_group.members:
1473 user = user.user
1473 user = user.user
1474 users.append(user.get_api_data(include_secrets=include_secrets))
1474 users.append(user.get_api_data(include_secrets=include_secrets))
1475 data['users'] = users
1475 data['users'] = users
1476
1476
1477 return data
1477 return data
1478
1478
1479
1479
1480 class UserGroupMember(Base, BaseModel):
1480 class UserGroupMember(Base, BaseModel):
1481 __tablename__ = 'users_groups_members'
1481 __tablename__ = 'users_groups_members'
1482 __table_args__ = (
1482 __table_args__ = (
1483 base_table_args,
1483 base_table_args,
1484 )
1484 )
1485
1485
1486 users_group_member_id = Column("users_group_member_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1486 users_group_member_id = Column("users_group_member_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1487 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
1487 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
1488 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
1488 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
1489
1489
1490 user = relationship('User', lazy='joined')
1490 user = relationship('User', lazy='joined')
1491 users_group = relationship('UserGroup')
1491 users_group = relationship('UserGroup')
1492
1492
1493 def __init__(self, gr_id='', u_id=''):
1493 def __init__(self, gr_id='', u_id=''):
1494 self.users_group_id = gr_id
1494 self.users_group_id = gr_id
1495 self.user_id = u_id
1495 self.user_id = u_id
1496
1496
1497
1497
1498 class RepositoryField(Base, BaseModel):
1498 class RepositoryField(Base, BaseModel):
1499 __tablename__ = 'repositories_fields'
1499 __tablename__ = 'repositories_fields'
1500 __table_args__ = (
1500 __table_args__ = (
1501 UniqueConstraint('repository_id', 'field_key'), # no-multi field
1501 UniqueConstraint('repository_id', 'field_key'), # no-multi field
1502 base_table_args,
1502 base_table_args,
1503 )
1503 )
1504
1504
1505 PREFIX = 'ex_' # prefix used in form to not conflict with already existing fields
1505 PREFIX = 'ex_' # prefix used in form to not conflict with already existing fields
1506
1506
1507 repo_field_id = Column("repo_field_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1507 repo_field_id = Column("repo_field_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1508 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
1508 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
1509 field_key = Column("field_key", String(250))
1509 field_key = Column("field_key", String(250))
1510 field_label = Column("field_label", String(1024), nullable=False)
1510 field_label = Column("field_label", String(1024), nullable=False)
1511 field_value = Column("field_value", String(10000), nullable=False)
1511 field_value = Column("field_value", String(10000), nullable=False)
1512 field_desc = Column("field_desc", String(1024), nullable=False)
1512 field_desc = Column("field_desc", String(1024), nullable=False)
1513 field_type = Column("field_type", String(255), nullable=False, unique=None)
1513 field_type = Column("field_type", String(255), nullable=False, unique=None)
1514 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1514 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1515
1515
1516 repository = relationship('Repository')
1516 repository = relationship('Repository')
1517
1517
1518 @property
1518 @property
1519 def field_key_prefixed(self):
1519 def field_key_prefixed(self):
1520 return 'ex_%s' % self.field_key
1520 return 'ex_%s' % self.field_key
1521
1521
1522 @classmethod
1522 @classmethod
1523 def un_prefix_key(cls, key):
1523 def un_prefix_key(cls, key):
1524 if key.startswith(cls.PREFIX):
1524 if key.startswith(cls.PREFIX):
1525 return key[len(cls.PREFIX):]
1525 return key[len(cls.PREFIX):]
1526 return key
1526 return key
1527
1527
1528 @classmethod
1528 @classmethod
1529 def get_by_key_name(cls, key, repo):
1529 def get_by_key_name(cls, key, repo):
1530 row = cls.query()\
1530 row = cls.query()\
1531 .filter(cls.repository == repo)\
1531 .filter(cls.repository == repo)\
1532 .filter(cls.field_key == key).scalar()
1532 .filter(cls.field_key == key).scalar()
1533 return row
1533 return row
1534
1534
1535
1535
1536 class Repository(Base, BaseModel):
1536 class Repository(Base, BaseModel):
1537 __tablename__ = 'repositories'
1537 __tablename__ = 'repositories'
1538 __table_args__ = (
1538 __table_args__ = (
1539 Index('r_repo_name_idx', 'repo_name', mysql_length=255),
1539 Index('r_repo_name_idx', 'repo_name', mysql_length=255),
1540 base_table_args,
1540 base_table_args,
1541 )
1541 )
1542 DEFAULT_CLONE_URI = '{scheme}://{user}@{netloc}/{repo}'
1542 DEFAULT_CLONE_URI = '{scheme}://{user}@{netloc}/{repo}'
1543 DEFAULT_CLONE_URI_ID = '{scheme}://{user}@{netloc}/_{repoid}'
1543 DEFAULT_CLONE_URI_ID = '{scheme}://{user}@{netloc}/_{repoid}'
1544 DEFAULT_CLONE_URI_SSH = 'ssh://{sys_user}@{hostname}/{repo}'
1544 DEFAULT_CLONE_URI_SSH = 'ssh://{sys_user}@{hostname}/{repo}'
1545
1545
1546 STATE_CREATED = 'repo_state_created'
1546 STATE_CREATED = 'repo_state_created'
1547 STATE_PENDING = 'repo_state_pending'
1547 STATE_PENDING = 'repo_state_pending'
1548 STATE_ERROR = 'repo_state_error'
1548 STATE_ERROR = 'repo_state_error'
1549
1549
1550 LOCK_AUTOMATIC = 'lock_auto'
1550 LOCK_AUTOMATIC = 'lock_auto'
1551 LOCK_API = 'lock_api'
1551 LOCK_API = 'lock_api'
1552 LOCK_WEB = 'lock_web'
1552 LOCK_WEB = 'lock_web'
1553 LOCK_PULL = 'lock_pull'
1553 LOCK_PULL = 'lock_pull'
1554
1554
1555 NAME_SEP = URL_SEP
1555 NAME_SEP = URL_SEP
1556
1556
1557 repo_id = Column(
1557 repo_id = Column(
1558 "repo_id", Integer(), nullable=False, unique=True, default=None,
1558 "repo_id", Integer(), nullable=False, unique=True, default=None,
1559 primary_key=True)
1559 primary_key=True)
1560 _repo_name = Column(
1560 _repo_name = Column(
1561 "repo_name", Text(), nullable=False, default=None)
1561 "repo_name", Text(), nullable=False, default=None)
1562 _repo_name_hash = Column(
1562 _repo_name_hash = Column(
1563 "repo_name_hash", String(255), nullable=False, unique=True)
1563 "repo_name_hash", String(255), nullable=False, unique=True)
1564 repo_state = Column("repo_state", String(255), nullable=True)
1564 repo_state = Column("repo_state", String(255), nullable=True)
1565
1565
1566 clone_uri = Column(
1566 clone_uri = Column(
1567 "clone_uri", EncryptedTextValue(), nullable=True, unique=False,
1567 "clone_uri", EncryptedTextValue(), nullable=True, unique=False,
1568 default=None)
1568 default=None)
1569 push_uri = Column(
1569 push_uri = Column(
1570 "push_uri", EncryptedTextValue(), nullable=True, unique=False,
1570 "push_uri", EncryptedTextValue(), nullable=True, unique=False,
1571 default=None)
1571 default=None)
1572 repo_type = Column(
1572 repo_type = Column(
1573 "repo_type", String(255), nullable=False, unique=False, default=None)
1573 "repo_type", String(255), nullable=False, unique=False, default=None)
1574 user_id = Column(
1574 user_id = Column(
1575 "user_id", Integer(), ForeignKey('users.user_id'), nullable=False,
1575 "user_id", Integer(), ForeignKey('users.user_id'), nullable=False,
1576 unique=False, default=None)
1576 unique=False, default=None)
1577 private = Column(
1577 private = Column(
1578 "private", Boolean(), nullable=True, unique=None, default=None)
1578 "private", Boolean(), nullable=True, unique=None, default=None)
1579 enable_statistics = Column(
1579 enable_statistics = Column(
1580 "statistics", Boolean(), nullable=True, unique=None, default=True)
1580 "statistics", Boolean(), nullable=True, unique=None, default=True)
1581 enable_downloads = Column(
1581 enable_downloads = Column(
1582 "downloads", Boolean(), nullable=True, unique=None, default=True)
1582 "downloads", Boolean(), nullable=True, unique=None, default=True)
1583 description = Column(
1583 description = Column(
1584 "description", String(10000), nullable=True, unique=None, default=None)
1584 "description", String(10000), nullable=True, unique=None, default=None)
1585 created_on = Column(
1585 created_on = Column(
1586 'created_on', DateTime(timezone=False), nullable=True, unique=None,
1586 'created_on', DateTime(timezone=False), nullable=True, unique=None,
1587 default=datetime.datetime.now)
1587 default=datetime.datetime.now)
1588 updated_on = Column(
1588 updated_on = Column(
1589 'updated_on', DateTime(timezone=False), nullable=True, unique=None,
1589 'updated_on', DateTime(timezone=False), nullable=True, unique=None,
1590 default=datetime.datetime.now)
1590 default=datetime.datetime.now)
1591 _landing_revision = Column(
1591 _landing_revision = Column(
1592 "landing_revision", String(255), nullable=False, unique=False,
1592 "landing_revision", String(255), nullable=False, unique=False,
1593 default=None)
1593 default=None)
1594 enable_locking = Column(
1594 enable_locking = Column(
1595 "enable_locking", Boolean(), nullable=False, unique=None,
1595 "enable_locking", Boolean(), nullable=False, unique=None,
1596 default=False)
1596 default=False)
1597 _locked = Column(
1597 _locked = Column(
1598 "locked", String(255), nullable=True, unique=False, default=None)
1598 "locked", String(255), nullable=True, unique=False, default=None)
1599 _changeset_cache = Column(
1599 _changeset_cache = Column(
1600 "changeset_cache", LargeBinary(), nullable=True) # JSON data
1600 "changeset_cache", LargeBinary(), nullable=True) # JSON data
1601
1601
1602 fork_id = Column(
1602 fork_id = Column(
1603 "fork_id", Integer(), ForeignKey('repositories.repo_id'),
1603 "fork_id", Integer(), ForeignKey('repositories.repo_id'),
1604 nullable=True, unique=False, default=None)
1604 nullable=True, unique=False, default=None)
1605 group_id = Column(
1605 group_id = Column(
1606 "group_id", Integer(), ForeignKey('groups.group_id'), nullable=True,
1606 "group_id", Integer(), ForeignKey('groups.group_id'), nullable=True,
1607 unique=False, default=None)
1607 unique=False, default=None)
1608
1608
1609 user = relationship('User', lazy='joined')
1609 user = relationship('User', lazy='joined')
1610 fork = relationship('Repository', remote_side=repo_id, lazy='joined')
1610 fork = relationship('Repository', remote_side=repo_id, lazy='joined')
1611 group = relationship('RepoGroup', lazy='joined')
1611 group = relationship('RepoGroup', lazy='joined')
1612 repo_to_perm = relationship(
1612 repo_to_perm = relationship(
1613 'UserRepoToPerm', cascade='all',
1613 'UserRepoToPerm', cascade='all',
1614 order_by='UserRepoToPerm.repo_to_perm_id')
1614 order_by='UserRepoToPerm.repo_to_perm_id')
1615 users_group_to_perm = relationship('UserGroupRepoToPerm', cascade='all')
1615 users_group_to_perm = relationship('UserGroupRepoToPerm', cascade='all')
1616 stats = relationship('Statistics', cascade='all', uselist=False)
1616 stats = relationship('Statistics', cascade='all', uselist=False)
1617
1617
1618 followers = relationship(
1618 followers = relationship(
1619 'UserFollowing',
1619 'UserFollowing',
1620 primaryjoin='UserFollowing.follows_repo_id==Repository.repo_id',
1620 primaryjoin='UserFollowing.follows_repo_id==Repository.repo_id',
1621 cascade='all')
1621 cascade='all')
1622 extra_fields = relationship(
1622 extra_fields = relationship(
1623 'RepositoryField', cascade="all, delete, delete-orphan")
1623 'RepositoryField', cascade="all, delete, delete-orphan")
1624 logs = relationship('UserLog')
1624 logs = relationship('UserLog')
1625 comments = relationship(
1625 comments = relationship(
1626 'ChangesetComment', cascade="all, delete, delete-orphan")
1626 'ChangesetComment', cascade="all, delete, delete-orphan")
1627 pull_requests_source = relationship(
1627 pull_requests_source = relationship(
1628 'PullRequest',
1628 'PullRequest',
1629 primaryjoin='PullRequest.source_repo_id==Repository.repo_id',
1629 primaryjoin='PullRequest.source_repo_id==Repository.repo_id',
1630 cascade="all, delete, delete-orphan")
1630 cascade="all, delete, delete-orphan")
1631 pull_requests_target = relationship(
1631 pull_requests_target = relationship(
1632 'PullRequest',
1632 'PullRequest',
1633 primaryjoin='PullRequest.target_repo_id==Repository.repo_id',
1633 primaryjoin='PullRequest.target_repo_id==Repository.repo_id',
1634 cascade="all, delete, delete-orphan")
1634 cascade="all, delete, delete-orphan")
1635 ui = relationship('RepoRhodeCodeUi', cascade="all")
1635 ui = relationship('RepoRhodeCodeUi', cascade="all")
1636 settings = relationship('RepoRhodeCodeSetting', cascade="all")
1636 settings = relationship('RepoRhodeCodeSetting', cascade="all")
1637 integrations = relationship('Integration',
1637 integrations = relationship('Integration',
1638 cascade="all, delete, delete-orphan")
1638 cascade="all, delete, delete-orphan")
1639
1639
1640 scoped_tokens = relationship('UserApiKeys', cascade="all")
1640 scoped_tokens = relationship('UserApiKeys', cascade="all")
1641
1641
1642 def __unicode__(self):
1642 def __unicode__(self):
1643 return u"<%s('%s:%s')>" % (self.__class__.__name__, self.repo_id,
1643 return u"<%s('%s:%s')>" % (self.__class__.__name__, self.repo_id,
1644 safe_unicode(self.repo_name))
1644 safe_unicode(self.repo_name))
1645
1645
1646 @hybrid_property
1646 @hybrid_property
1647 def description_safe(self):
1647 def description_safe(self):
1648 from rhodecode.lib import helpers as h
1648 from rhodecode.lib import helpers as h
1649 return h.escape(self.description)
1649 return h.escape(self.description)
1650
1650
1651 @hybrid_property
1651 @hybrid_property
1652 def landing_rev(self):
1652 def landing_rev(self):
1653 # always should return [rev_type, rev]
1653 # always should return [rev_type, rev]
1654 if self._landing_revision:
1654 if self._landing_revision:
1655 _rev_info = self._landing_revision.split(':')
1655 _rev_info = self._landing_revision.split(':')
1656 if len(_rev_info) < 2:
1656 if len(_rev_info) < 2:
1657 _rev_info.insert(0, 'rev')
1657 _rev_info.insert(0, 'rev')
1658 return [_rev_info[0], _rev_info[1]]
1658 return [_rev_info[0], _rev_info[1]]
1659 return [None, None]
1659 return [None, None]
1660
1660
1661 @landing_rev.setter
1661 @landing_rev.setter
1662 def landing_rev(self, val):
1662 def landing_rev(self, val):
1663 if ':' not in val:
1663 if ':' not in val:
1664 raise ValueError('value must be delimited with `:` and consist '
1664 raise ValueError('value must be delimited with `:` and consist '
1665 'of <rev_type>:<rev>, got %s instead' % val)
1665 'of <rev_type>:<rev>, got %s instead' % val)
1666 self._landing_revision = val
1666 self._landing_revision = val
1667
1667
1668 @hybrid_property
1668 @hybrid_property
1669 def locked(self):
1669 def locked(self):
1670 if self._locked:
1670 if self._locked:
1671 user_id, timelocked, reason = self._locked.split(':')
1671 user_id, timelocked, reason = self._locked.split(':')
1672 lock_values = int(user_id), timelocked, reason
1672 lock_values = int(user_id), timelocked, reason
1673 else:
1673 else:
1674 lock_values = [None, None, None]
1674 lock_values = [None, None, None]
1675 return lock_values
1675 return lock_values
1676
1676
1677 @locked.setter
1677 @locked.setter
1678 def locked(self, val):
1678 def locked(self, val):
1679 if val and isinstance(val, (list, tuple)):
1679 if val and isinstance(val, (list, tuple)):
1680 self._locked = ':'.join(map(str, val))
1680 self._locked = ':'.join(map(str, val))
1681 else:
1681 else:
1682 self._locked = None
1682 self._locked = None
1683
1683
1684 @hybrid_property
1684 @hybrid_property
1685 def changeset_cache(self):
1685 def changeset_cache(self):
1686 from rhodecode.lib.vcs.backends.base import EmptyCommit
1686 from rhodecode.lib.vcs.backends.base import EmptyCommit
1687 dummy = EmptyCommit().__json__()
1687 dummy = EmptyCommit().__json__()
1688 if not self._changeset_cache:
1688 if not self._changeset_cache:
1689 return dummy
1689 return dummy
1690 try:
1690 try:
1691 return json.loads(self._changeset_cache)
1691 return json.loads(self._changeset_cache)
1692 except TypeError:
1692 except TypeError:
1693 return dummy
1693 return dummy
1694 except Exception:
1694 except Exception:
1695 log.error(traceback.format_exc())
1695 log.error(traceback.format_exc())
1696 return dummy
1696 return dummy
1697
1697
1698 @changeset_cache.setter
1698 @changeset_cache.setter
1699 def changeset_cache(self, val):
1699 def changeset_cache(self, val):
1700 try:
1700 try:
1701 self._changeset_cache = json.dumps(val)
1701 self._changeset_cache = json.dumps(val)
1702 except Exception:
1702 except Exception:
1703 log.error(traceback.format_exc())
1703 log.error(traceback.format_exc())
1704
1704
1705 @hybrid_property
1705 @hybrid_property
1706 def repo_name(self):
1706 def repo_name(self):
1707 return self._repo_name
1707 return self._repo_name
1708
1708
1709 @repo_name.setter
1709 @repo_name.setter
1710 def repo_name(self, value):
1710 def repo_name(self, value):
1711 self._repo_name = value
1711 self._repo_name = value
1712 self._repo_name_hash = hashlib.sha1(safe_str(value)).hexdigest()
1712 self._repo_name_hash = hashlib.sha1(safe_str(value)).hexdigest()
1713
1713
1714 @classmethod
1714 @classmethod
1715 def normalize_repo_name(cls, repo_name):
1715 def normalize_repo_name(cls, repo_name):
1716 """
1716 """
1717 Normalizes os specific repo_name to the format internally stored inside
1717 Normalizes os specific repo_name to the format internally stored inside
1718 database using URL_SEP
1718 database using URL_SEP
1719
1719
1720 :param cls:
1720 :param cls:
1721 :param repo_name:
1721 :param repo_name:
1722 """
1722 """
1723 return cls.NAME_SEP.join(repo_name.split(os.sep))
1723 return cls.NAME_SEP.join(repo_name.split(os.sep))
1724
1724
1725 @classmethod
1725 @classmethod
1726 def get_by_repo_name(cls, repo_name, cache=False, identity_cache=False):
1726 def get_by_repo_name(cls, repo_name, cache=False, identity_cache=False):
1727 session = Session()
1727 session = Session()
1728 q = session.query(cls).filter(cls.repo_name == repo_name)
1728 q = session.query(cls).filter(cls.repo_name == repo_name)
1729
1729
1730 if cache:
1730 if cache:
1731 if identity_cache:
1731 if identity_cache:
1732 val = cls.identity_cache(session, 'repo_name', repo_name)
1732 val = cls.identity_cache(session, 'repo_name', repo_name)
1733 if val:
1733 if val:
1734 return val
1734 return val
1735 else:
1735 else:
1736 cache_key = "get_repo_by_name_%s" % _hash_key(repo_name)
1736 cache_key = "get_repo_by_name_%s" % _hash_key(repo_name)
1737 q = q.options(
1737 q = q.options(
1738 FromCache("sql_cache_short", cache_key))
1738 FromCache("sql_cache_short", cache_key))
1739
1739
1740 return q.scalar()
1740 return q.scalar()
1741
1741
1742 @classmethod
1742 @classmethod
1743 def get_by_id_or_repo_name(cls, repoid):
1743 def get_by_id_or_repo_name(cls, repoid):
1744 if isinstance(repoid, (int, long)):
1744 if isinstance(repoid, (int, long)):
1745 try:
1745 try:
1746 repo = cls.get(repoid)
1746 repo = cls.get(repoid)
1747 except ValueError:
1747 except ValueError:
1748 repo = None
1748 repo = None
1749 else:
1749 else:
1750 repo = cls.get_by_repo_name(repoid)
1750 repo = cls.get_by_repo_name(repoid)
1751 return repo
1751 return repo
1752
1752
1753 @classmethod
1753 @classmethod
1754 def get_by_full_path(cls, repo_full_path):
1754 def get_by_full_path(cls, repo_full_path):
1755 repo_name = repo_full_path.split(cls.base_path(), 1)[-1]
1755 repo_name = repo_full_path.split(cls.base_path(), 1)[-1]
1756 repo_name = cls.normalize_repo_name(repo_name)
1756 repo_name = cls.normalize_repo_name(repo_name)
1757 return cls.get_by_repo_name(repo_name.strip(URL_SEP))
1757 return cls.get_by_repo_name(repo_name.strip(URL_SEP))
1758
1758
1759 @classmethod
1759 @classmethod
1760 def get_repo_forks(cls, repo_id):
1760 def get_repo_forks(cls, repo_id):
1761 return cls.query().filter(Repository.fork_id == repo_id)
1761 return cls.query().filter(Repository.fork_id == repo_id)
1762
1762
1763 @classmethod
1763 @classmethod
1764 def base_path(cls):
1764 def base_path(cls):
1765 """
1765 """
1766 Returns base path when all repos are stored
1766 Returns base path when all repos are stored
1767
1767
1768 :param cls:
1768 :param cls:
1769 """
1769 """
1770 q = Session().query(RhodeCodeUi)\
1770 q = Session().query(RhodeCodeUi)\
1771 .filter(RhodeCodeUi.ui_key == cls.NAME_SEP)
1771 .filter(RhodeCodeUi.ui_key == cls.NAME_SEP)
1772 q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
1772 q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
1773 return q.one().ui_value
1773 return q.one().ui_value
1774
1774
1775 @classmethod
1775 @classmethod
1776 def get_all_repos(cls, user_id=Optional(None), group_id=Optional(None),
1776 def get_all_repos(cls, user_id=Optional(None), group_id=Optional(None),
1777 case_insensitive=True):
1777 case_insensitive=True):
1778 q = Repository.query()
1778 q = Repository.query()
1779
1779
1780 if not isinstance(user_id, Optional):
1780 if not isinstance(user_id, Optional):
1781 q = q.filter(Repository.user_id == user_id)
1781 q = q.filter(Repository.user_id == user_id)
1782
1782
1783 if not isinstance(group_id, Optional):
1783 if not isinstance(group_id, Optional):
1784 q = q.filter(Repository.group_id == group_id)
1784 q = q.filter(Repository.group_id == group_id)
1785
1785
1786 if case_insensitive:
1786 if case_insensitive:
1787 q = q.order_by(func.lower(Repository.repo_name))
1787 q = q.order_by(func.lower(Repository.repo_name))
1788 else:
1788 else:
1789 q = q.order_by(Repository.repo_name)
1789 q = q.order_by(Repository.repo_name)
1790 return q.all()
1790 return q.all()
1791
1791
1792 @property
1792 @property
1793 def forks(self):
1793 def forks(self):
1794 """
1794 """
1795 Return forks of this repo
1795 Return forks of this repo
1796 """
1796 """
1797 return Repository.get_repo_forks(self.repo_id)
1797 return Repository.get_repo_forks(self.repo_id)
1798
1798
1799 @property
1799 @property
1800 def parent(self):
1800 def parent(self):
1801 """
1801 """
1802 Returns fork parent
1802 Returns fork parent
1803 """
1803 """
1804 return self.fork
1804 return self.fork
1805
1805
1806 @property
1806 @property
1807 def just_name(self):
1807 def just_name(self):
1808 return self.repo_name.split(self.NAME_SEP)[-1]
1808 return self.repo_name.split(self.NAME_SEP)[-1]
1809
1809
1810 @property
1810 @property
1811 def groups_with_parents(self):
1811 def groups_with_parents(self):
1812 groups = []
1812 groups = []
1813 if self.group is None:
1813 if self.group is None:
1814 return groups
1814 return groups
1815
1815
1816 cur_gr = self.group
1816 cur_gr = self.group
1817 groups.insert(0, cur_gr)
1817 groups.insert(0, cur_gr)
1818 while 1:
1818 while 1:
1819 gr = getattr(cur_gr, 'parent_group', None)
1819 gr = getattr(cur_gr, 'parent_group', None)
1820 cur_gr = cur_gr.parent_group
1820 cur_gr = cur_gr.parent_group
1821 if gr is None:
1821 if gr is None:
1822 break
1822 break
1823 groups.insert(0, gr)
1823 groups.insert(0, gr)
1824
1824
1825 return groups
1825 return groups
1826
1826
1827 @property
1827 @property
1828 def groups_and_repo(self):
1828 def groups_and_repo(self):
1829 return self.groups_with_parents, self
1829 return self.groups_with_parents, self
1830
1830
1831 @LazyProperty
1831 @LazyProperty
1832 def repo_path(self):
1832 def repo_path(self):
1833 """
1833 """
1834 Returns base full path for that repository means where it actually
1834 Returns base full path for that repository means where it actually
1835 exists on a filesystem
1835 exists on a filesystem
1836 """
1836 """
1837 q = Session().query(RhodeCodeUi).filter(
1837 q = Session().query(RhodeCodeUi).filter(
1838 RhodeCodeUi.ui_key == self.NAME_SEP)
1838 RhodeCodeUi.ui_key == self.NAME_SEP)
1839 q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
1839 q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
1840 return q.one().ui_value
1840 return q.one().ui_value
1841
1841
1842 @property
1842 @property
1843 def repo_full_path(self):
1843 def repo_full_path(self):
1844 p = [self.repo_path]
1844 p = [self.repo_path]
1845 # we need to split the name by / since this is how we store the
1845 # we need to split the name by / since this is how we store the
1846 # names in the database, but that eventually needs to be converted
1846 # names in the database, but that eventually needs to be converted
1847 # into a valid system path
1847 # into a valid system path
1848 p += self.repo_name.split(self.NAME_SEP)
1848 p += self.repo_name.split(self.NAME_SEP)
1849 return os.path.join(*map(safe_unicode, p))
1849 return os.path.join(*map(safe_unicode, p))
1850
1850
1851 @property
1851 @property
1852 def cache_keys(self):
1852 def cache_keys(self):
1853 """
1853 """
1854 Returns associated cache keys for that repo
1854 Returns associated cache keys for that repo
1855 """
1855 """
1856 invalidation_namespace = CacheKey.REPO_INVALIDATION_NAMESPACE.format(
1856 invalidation_namespace = CacheKey.REPO_INVALIDATION_NAMESPACE.format(
1857 repo_id=self.repo_id)
1857 repo_id=self.repo_id)
1858 return CacheKey.query()\
1858 return CacheKey.query()\
1859 .filter(CacheKey.cache_args == invalidation_namespace)\
1859 .filter(CacheKey.cache_args == invalidation_namespace)\
1860 .order_by(CacheKey.cache_key)\
1860 .order_by(CacheKey.cache_key)\
1861 .all()
1861 .all()
1862
1862
1863 @property
1863 @property
1864 def cached_diffs_relative_dir(self):
1864 def cached_diffs_relative_dir(self):
1865 """
1865 """
1866 Return a relative to the repository store path of cached diffs
1866 Return a relative to the repository store path of cached diffs
1867 used for safe display for users, who shouldn't know the absolute store
1867 used for safe display for users, who shouldn't know the absolute store
1868 path
1868 path
1869 """
1869 """
1870 return os.path.join(
1870 return os.path.join(
1871 os.path.dirname(self.repo_name),
1871 os.path.dirname(self.repo_name),
1872 self.cached_diffs_dir.split(os.path.sep)[-1])
1872 self.cached_diffs_dir.split(os.path.sep)[-1])
1873
1873
1874 @property
1874 @property
1875 def cached_diffs_dir(self):
1875 def cached_diffs_dir(self):
1876 path = self.repo_full_path
1876 path = self.repo_full_path
1877 return os.path.join(
1877 return os.path.join(
1878 os.path.dirname(path),
1878 os.path.dirname(path),
1879 '.__shadow_diff_cache_repo_{}'.format(self.repo_id))
1879 '.__shadow_diff_cache_repo_{}'.format(self.repo_id))
1880
1880
1881 def cached_diffs(self):
1881 def cached_diffs(self):
1882 diff_cache_dir = self.cached_diffs_dir
1882 diff_cache_dir = self.cached_diffs_dir
1883 if os.path.isdir(diff_cache_dir):
1883 if os.path.isdir(diff_cache_dir):
1884 return os.listdir(diff_cache_dir)
1884 return os.listdir(diff_cache_dir)
1885 return []
1885 return []
1886
1886
1887 def shadow_repos(self):
1887 def shadow_repos(self):
1888 shadow_repos_pattern = '.__shadow_repo_{}'.format(self.repo_id)
1888 shadow_repos_pattern = '.__shadow_repo_{}'.format(self.repo_id)
1889 return [
1889 return [
1890 x for x in os.listdir(os.path.dirname(self.repo_full_path))
1890 x for x in os.listdir(os.path.dirname(self.repo_full_path))
1891 if x.startswith(shadow_repos_pattern)]
1891 if x.startswith(shadow_repos_pattern)]
1892
1892
1893 def get_new_name(self, repo_name):
1893 def get_new_name(self, repo_name):
1894 """
1894 """
1895 returns new full repository name based on assigned group and new new
1895 returns new full repository name based on assigned group and new new
1896
1896
1897 :param group_name:
1897 :param group_name:
1898 """
1898 """
1899 path_prefix = self.group.full_path_splitted if self.group else []
1899 path_prefix = self.group.full_path_splitted if self.group else []
1900 return self.NAME_SEP.join(path_prefix + [repo_name])
1900 return self.NAME_SEP.join(path_prefix + [repo_name])
1901
1901
1902 @property
1902 @property
1903 def _config(self):
1903 def _config(self):
1904 """
1904 """
1905 Returns db based config object.
1905 Returns db based config object.
1906 """
1906 """
1907 from rhodecode.lib.utils import make_db_config
1907 from rhodecode.lib.utils import make_db_config
1908 return make_db_config(clear_session=False, repo=self)
1908 return make_db_config(clear_session=False, repo=self)
1909
1909
1910 def permissions(self, with_admins=True, with_owner=True):
1910 def permissions(self, with_admins=True, with_owner=True):
1911 """
1911 """
1912 Permissions for repositories
1912 Permissions for repositories
1913 """
1913 """
1914 _admin_perm = 'repository.admin'
1914 _admin_perm = 'repository.admin'
1915
1915
1916 owner_row = []
1916 owner_row = []
1917 if with_owner:
1917 if with_owner:
1918 usr = AttributeDict(self.user.get_dict())
1918 usr = AttributeDict(self.user.get_dict())
1919 usr.owner_row = True
1919 usr.owner_row = True
1920 usr.permission = _admin_perm
1920 usr.permission = _admin_perm
1921 usr.permission_id = None
1921 usr.permission_id = None
1922 owner_row.append(usr)
1922 owner_row.append(usr)
1923
1923
1924 super_admin_ids = []
1924 super_admin_ids = []
1925 super_admin_rows = []
1925 super_admin_rows = []
1926 if with_admins:
1926 if with_admins:
1927 for usr in User.get_all_super_admins():
1927 for usr in User.get_all_super_admins():
1928 super_admin_ids.append(usr.user_id)
1928 super_admin_ids.append(usr.user_id)
1929 # if this admin is also owner, don't double the record
1929 # if this admin is also owner, don't double the record
1930 if usr.user_id == owner_row[0].user_id:
1930 if usr.user_id == owner_row[0].user_id:
1931 owner_row[0].admin_row = True
1931 owner_row[0].admin_row = True
1932 else:
1932 else:
1933 usr = AttributeDict(usr.get_dict())
1933 usr = AttributeDict(usr.get_dict())
1934 usr.admin_row = True
1934 usr.admin_row = True
1935 usr.permission = _admin_perm
1935 usr.permission = _admin_perm
1936 usr.permission_id = None
1936 usr.permission_id = None
1937 super_admin_rows.append(usr)
1937 super_admin_rows.append(usr)
1938
1938
1939 q = UserRepoToPerm.query().filter(UserRepoToPerm.repository == self)
1939 q = UserRepoToPerm.query().filter(UserRepoToPerm.repository == self)
1940 q = q.options(joinedload(UserRepoToPerm.repository),
1940 q = q.options(joinedload(UserRepoToPerm.repository),
1941 joinedload(UserRepoToPerm.user),
1941 joinedload(UserRepoToPerm.user),
1942 joinedload(UserRepoToPerm.permission),)
1942 joinedload(UserRepoToPerm.permission),)
1943
1943
1944 # get owners and admins and permissions. We do a trick of re-writing
1944 # get owners and admins and permissions. We do a trick of re-writing
1945 # objects from sqlalchemy to named-tuples due to sqlalchemy session
1945 # objects from sqlalchemy to named-tuples due to sqlalchemy session
1946 # has a global reference and changing one object propagates to all
1946 # has a global reference and changing one object propagates to all
1947 # others. This means if admin is also an owner admin_row that change
1947 # others. This means if admin is also an owner admin_row that change
1948 # would propagate to both objects
1948 # would propagate to both objects
1949 perm_rows = []
1949 perm_rows = []
1950 for _usr in q.all():
1950 for _usr in q.all():
1951 usr = AttributeDict(_usr.user.get_dict())
1951 usr = AttributeDict(_usr.user.get_dict())
1952 # if this user is also owner/admin, mark as duplicate record
1952 # if this user is also owner/admin, mark as duplicate record
1953 if usr.user_id == owner_row[0].user_id or usr.user_id in super_admin_ids:
1953 if usr.user_id == owner_row[0].user_id or usr.user_id in super_admin_ids:
1954 usr.duplicate_perm = True
1954 usr.duplicate_perm = True
1955 # also check if this permission is maybe used by branch_permissions
1955 # also check if this permission is maybe used by branch_permissions
1956 if _usr.branch_perm_entry:
1956 if _usr.branch_perm_entry:
1957 usr.branch_rules = [x.branch_rule_id for x in _usr.branch_perm_entry]
1957 usr.branch_rules = [x.branch_rule_id for x in _usr.branch_perm_entry]
1958
1958
1959 usr.permission = _usr.permission.permission_name
1959 usr.permission = _usr.permission.permission_name
1960 usr.permission_id = _usr.repo_to_perm_id
1960 usr.permission_id = _usr.repo_to_perm_id
1961 perm_rows.append(usr)
1961 perm_rows.append(usr)
1962
1962
1963 # filter the perm rows by 'default' first and then sort them by
1963 # filter the perm rows by 'default' first and then sort them by
1964 # admin,write,read,none permissions sorted again alphabetically in
1964 # admin,write,read,none permissions sorted again alphabetically in
1965 # each group
1965 # each group
1966 perm_rows = sorted(perm_rows, key=display_user_sort)
1966 perm_rows = sorted(perm_rows, key=display_user_sort)
1967
1967
1968 return super_admin_rows + owner_row + perm_rows
1968 return super_admin_rows + owner_row + perm_rows
1969
1969
1970 def permission_user_groups(self):
1970 def permission_user_groups(self):
1971 q = UserGroupRepoToPerm.query().filter(
1971 q = UserGroupRepoToPerm.query().filter(
1972 UserGroupRepoToPerm.repository == self)
1972 UserGroupRepoToPerm.repository == self)
1973 q = q.options(joinedload(UserGroupRepoToPerm.repository),
1973 q = q.options(joinedload(UserGroupRepoToPerm.repository),
1974 joinedload(UserGroupRepoToPerm.users_group),
1974 joinedload(UserGroupRepoToPerm.users_group),
1975 joinedload(UserGroupRepoToPerm.permission),)
1975 joinedload(UserGroupRepoToPerm.permission),)
1976
1976
1977 perm_rows = []
1977 perm_rows = []
1978 for _user_group in q.all():
1978 for _user_group in q.all():
1979 usr = AttributeDict(_user_group.users_group.get_dict())
1979 usr = AttributeDict(_user_group.users_group.get_dict())
1980 usr.permission = _user_group.permission.permission_name
1980 usr.permission = _user_group.permission.permission_name
1981 perm_rows.append(usr)
1981 perm_rows.append(usr)
1982
1982
1983 perm_rows = sorted(perm_rows, key=display_user_group_sort)
1983 perm_rows = sorted(perm_rows, key=display_user_group_sort)
1984 return perm_rows
1984 return perm_rows
1985
1985
1986 def get_api_data(self, include_secrets=False):
1986 def get_api_data(self, include_secrets=False):
1987 """
1987 """
1988 Common function for generating repo api data
1988 Common function for generating repo api data
1989
1989
1990 :param include_secrets: See :meth:`User.get_api_data`.
1990 :param include_secrets: See :meth:`User.get_api_data`.
1991
1991
1992 """
1992 """
1993 # TODO: mikhail: Here there is an anti-pattern, we probably need to
1993 # TODO: mikhail: Here there is an anti-pattern, we probably need to
1994 # move this methods on models level.
1994 # move this methods on models level.
1995 from rhodecode.model.settings import SettingsModel
1995 from rhodecode.model.settings import SettingsModel
1996 from rhodecode.model.repo import RepoModel
1996 from rhodecode.model.repo import RepoModel
1997
1997
1998 repo = self
1998 repo = self
1999 _user_id, _time, _reason = self.locked
1999 _user_id, _time, _reason = self.locked
2000
2000
2001 data = {
2001 data = {
2002 'repo_id': repo.repo_id,
2002 'repo_id': repo.repo_id,
2003 'repo_name': repo.repo_name,
2003 'repo_name': repo.repo_name,
2004 'repo_type': repo.repo_type,
2004 'repo_type': repo.repo_type,
2005 'clone_uri': repo.clone_uri or '',
2005 'clone_uri': repo.clone_uri or '',
2006 'push_uri': repo.push_uri or '',
2006 'push_uri': repo.push_uri or '',
2007 'url': RepoModel().get_url(self),
2007 'url': RepoModel().get_url(self),
2008 'private': repo.private,
2008 'private': repo.private,
2009 'created_on': repo.created_on,
2009 'created_on': repo.created_on,
2010 'description': repo.description_safe,
2010 'description': repo.description_safe,
2011 'landing_rev': repo.landing_rev,
2011 'landing_rev': repo.landing_rev,
2012 'owner': repo.user.username,
2012 'owner': repo.user.username,
2013 'fork_of': repo.fork.repo_name if repo.fork else None,
2013 'fork_of': repo.fork.repo_name if repo.fork else None,
2014 'fork_of_id': repo.fork.repo_id if repo.fork else None,
2014 'fork_of_id': repo.fork.repo_id if repo.fork else None,
2015 'enable_statistics': repo.enable_statistics,
2015 'enable_statistics': repo.enable_statistics,
2016 'enable_locking': repo.enable_locking,
2016 'enable_locking': repo.enable_locking,
2017 'enable_downloads': repo.enable_downloads,
2017 'enable_downloads': repo.enable_downloads,
2018 'last_changeset': repo.changeset_cache,
2018 'last_changeset': repo.changeset_cache,
2019 'locked_by': User.get(_user_id).get_api_data(
2019 'locked_by': User.get(_user_id).get_api_data(
2020 include_secrets=include_secrets) if _user_id else None,
2020 include_secrets=include_secrets) if _user_id else None,
2021 'locked_date': time_to_datetime(_time) if _time else None,
2021 'locked_date': time_to_datetime(_time) if _time else None,
2022 'lock_reason': _reason if _reason else None,
2022 'lock_reason': _reason if _reason else None,
2023 }
2023 }
2024
2024
2025 # TODO: mikhail: should be per-repo settings here
2025 # TODO: mikhail: should be per-repo settings here
2026 rc_config = SettingsModel().get_all_settings()
2026 rc_config = SettingsModel().get_all_settings()
2027 repository_fields = str2bool(
2027 repository_fields = str2bool(
2028 rc_config.get('rhodecode_repository_fields'))
2028 rc_config.get('rhodecode_repository_fields'))
2029 if repository_fields:
2029 if repository_fields:
2030 for f in self.extra_fields:
2030 for f in self.extra_fields:
2031 data[f.field_key_prefixed] = f.field_value
2031 data[f.field_key_prefixed] = f.field_value
2032
2032
2033 return data
2033 return data
2034
2034
2035 @classmethod
2035 @classmethod
2036 def lock(cls, repo, user_id, lock_time=None, lock_reason=None):
2036 def lock(cls, repo, user_id, lock_time=None, lock_reason=None):
2037 if not lock_time:
2037 if not lock_time:
2038 lock_time = time.time()
2038 lock_time = time.time()
2039 if not lock_reason:
2039 if not lock_reason:
2040 lock_reason = cls.LOCK_AUTOMATIC
2040 lock_reason = cls.LOCK_AUTOMATIC
2041 repo.locked = [user_id, lock_time, lock_reason]
2041 repo.locked = [user_id, lock_time, lock_reason]
2042 Session().add(repo)
2042 Session().add(repo)
2043 Session().commit()
2043 Session().commit()
2044
2044
2045 @classmethod
2045 @classmethod
2046 def unlock(cls, repo):
2046 def unlock(cls, repo):
2047 repo.locked = None
2047 repo.locked = None
2048 Session().add(repo)
2048 Session().add(repo)
2049 Session().commit()
2049 Session().commit()
2050
2050
2051 @classmethod
2051 @classmethod
2052 def getlock(cls, repo):
2052 def getlock(cls, repo):
2053 return repo.locked
2053 return repo.locked
2054
2054
2055 def is_user_lock(self, user_id):
2055 def is_user_lock(self, user_id):
2056 if self.lock[0]:
2056 if self.lock[0]:
2057 lock_user_id = safe_int(self.lock[0])
2057 lock_user_id = safe_int(self.lock[0])
2058 user_id = safe_int(user_id)
2058 user_id = safe_int(user_id)
2059 # both are ints, and they are equal
2059 # both are ints, and they are equal
2060 return all([lock_user_id, user_id]) and lock_user_id == user_id
2060 return all([lock_user_id, user_id]) and lock_user_id == user_id
2061
2061
2062 return False
2062 return False
2063
2063
2064 def get_locking_state(self, action, user_id, only_when_enabled=True):
2064 def get_locking_state(self, action, user_id, only_when_enabled=True):
2065 """
2065 """
2066 Checks locking on this repository, if locking is enabled and lock is
2066 Checks locking on this repository, if locking is enabled and lock is
2067 present returns a tuple of make_lock, locked, locked_by.
2067 present returns a tuple of make_lock, locked, locked_by.
2068 make_lock can have 3 states None (do nothing) True, make lock
2068 make_lock can have 3 states None (do nothing) True, make lock
2069 False release lock, This value is later propagated to hooks, which
2069 False release lock, This value is later propagated to hooks, which
2070 do the locking. Think about this as signals passed to hooks what to do.
2070 do the locking. Think about this as signals passed to hooks what to do.
2071
2071
2072 """
2072 """
2073 # TODO: johbo: This is part of the business logic and should be moved
2073 # TODO: johbo: This is part of the business logic and should be moved
2074 # into the RepositoryModel.
2074 # into the RepositoryModel.
2075
2075
2076 if action not in ('push', 'pull'):
2076 if action not in ('push', 'pull'):
2077 raise ValueError("Invalid action value: %s" % repr(action))
2077 raise ValueError("Invalid action value: %s" % repr(action))
2078
2078
2079 # defines if locked error should be thrown to user
2079 # defines if locked error should be thrown to user
2080 currently_locked = False
2080 currently_locked = False
2081 # defines if new lock should be made, tri-state
2081 # defines if new lock should be made, tri-state
2082 make_lock = None
2082 make_lock = None
2083 repo = self
2083 repo = self
2084 user = User.get(user_id)
2084 user = User.get(user_id)
2085
2085
2086 lock_info = repo.locked
2086 lock_info = repo.locked
2087
2087
2088 if repo and (repo.enable_locking or not only_when_enabled):
2088 if repo and (repo.enable_locking or not only_when_enabled):
2089 if action == 'push':
2089 if action == 'push':
2090 # check if it's already locked !, if it is compare users
2090 # check if it's already locked !, if it is compare users
2091 locked_by_user_id = lock_info[0]
2091 locked_by_user_id = lock_info[0]
2092 if user.user_id == locked_by_user_id:
2092 if user.user_id == locked_by_user_id:
2093 log.debug(
2093 log.debug(
2094 'Got `push` action from user %s, now unlocking', user)
2094 'Got `push` action from user %s, now unlocking', user)
2095 # unlock if we have push from user who locked
2095 # unlock if we have push from user who locked
2096 make_lock = False
2096 make_lock = False
2097 else:
2097 else:
2098 # we're not the same user who locked, ban with
2098 # we're not the same user who locked, ban with
2099 # code defined in settings (default is 423 HTTP Locked) !
2099 # code defined in settings (default is 423 HTTP Locked) !
2100 log.debug('Repo %s is currently locked by %s', repo, user)
2100 log.debug('Repo %s is currently locked by %s', repo, user)
2101 currently_locked = True
2101 currently_locked = True
2102 elif action == 'pull':
2102 elif action == 'pull':
2103 # [0] user [1] date
2103 # [0] user [1] date
2104 if lock_info[0] and lock_info[1]:
2104 if lock_info[0] and lock_info[1]:
2105 log.debug('Repo %s is currently locked by %s', repo, user)
2105 log.debug('Repo %s is currently locked by %s', repo, user)
2106 currently_locked = True
2106 currently_locked = True
2107 else:
2107 else:
2108 log.debug('Setting lock on repo %s by %s', repo, user)
2108 log.debug('Setting lock on repo %s by %s', repo, user)
2109 make_lock = True
2109 make_lock = True
2110
2110
2111 else:
2111 else:
2112 log.debug('Repository %s do not have locking enabled', repo)
2112 log.debug('Repository %s do not have locking enabled', repo)
2113
2113
2114 log.debug('FINAL locking values make_lock:%s,locked:%s,locked_by:%s',
2114 log.debug('FINAL locking values make_lock:%s,locked:%s,locked_by:%s',
2115 make_lock, currently_locked, lock_info)
2115 make_lock, currently_locked, lock_info)
2116
2116
2117 from rhodecode.lib.auth import HasRepoPermissionAny
2117 from rhodecode.lib.auth import HasRepoPermissionAny
2118 perm_check = HasRepoPermissionAny('repository.write', 'repository.admin')
2118 perm_check = HasRepoPermissionAny('repository.write', 'repository.admin')
2119 if make_lock and not perm_check(repo_name=repo.repo_name, user=user):
2119 if make_lock and not perm_check(repo_name=repo.repo_name, user=user):
2120 # if we don't have at least write permission we cannot make a lock
2120 # if we don't have at least write permission we cannot make a lock
2121 log.debug('lock state reset back to FALSE due to lack '
2121 log.debug('lock state reset back to FALSE due to lack '
2122 'of at least read permission')
2122 'of at least read permission')
2123 make_lock = False
2123 make_lock = False
2124
2124
2125 return make_lock, currently_locked, lock_info
2125 return make_lock, currently_locked, lock_info
2126
2126
2127 @property
2127 @property
2128 def last_db_change(self):
2128 def last_db_change(self):
2129 return self.updated_on
2129 return self.updated_on
2130
2130
2131 @property
2131 @property
2132 def clone_uri_hidden(self):
2132 def clone_uri_hidden(self):
2133 clone_uri = self.clone_uri
2133 clone_uri = self.clone_uri
2134 if clone_uri:
2134 if clone_uri:
2135 import urlobject
2135 import urlobject
2136 url_obj = urlobject.URLObject(cleaned_uri(clone_uri))
2136 url_obj = urlobject.URLObject(cleaned_uri(clone_uri))
2137 if url_obj.password:
2137 if url_obj.password:
2138 clone_uri = url_obj.with_password('*****')
2138 clone_uri = url_obj.with_password('*****')
2139 return clone_uri
2139 return clone_uri
2140
2140
2141 @property
2141 @property
2142 def push_uri_hidden(self):
2142 def push_uri_hidden(self):
2143 push_uri = self.push_uri
2143 push_uri = self.push_uri
2144 if push_uri:
2144 if push_uri:
2145 import urlobject
2145 import urlobject
2146 url_obj = urlobject.URLObject(cleaned_uri(push_uri))
2146 url_obj = urlobject.URLObject(cleaned_uri(push_uri))
2147 if url_obj.password:
2147 if url_obj.password:
2148 push_uri = url_obj.with_password('*****')
2148 push_uri = url_obj.with_password('*****')
2149 return push_uri
2149 return push_uri
2150
2150
2151 def clone_url(self, **override):
2151 def clone_url(self, **override):
2152 from rhodecode.model.settings import SettingsModel
2152 from rhodecode.model.settings import SettingsModel
2153
2153
2154 uri_tmpl = None
2154 uri_tmpl = None
2155 if 'with_id' in override:
2155 if 'with_id' in override:
2156 uri_tmpl = self.DEFAULT_CLONE_URI_ID
2156 uri_tmpl = self.DEFAULT_CLONE_URI_ID
2157 del override['with_id']
2157 del override['with_id']
2158
2158
2159 if 'uri_tmpl' in override:
2159 if 'uri_tmpl' in override:
2160 uri_tmpl = override['uri_tmpl']
2160 uri_tmpl = override['uri_tmpl']
2161 del override['uri_tmpl']
2161 del override['uri_tmpl']
2162
2162
2163 ssh = False
2163 ssh = False
2164 if 'ssh' in override:
2164 if 'ssh' in override:
2165 ssh = True
2165 ssh = True
2166 del override['ssh']
2166 del override['ssh']
2167
2167
2168 # we didn't override our tmpl from **overrides
2168 # we didn't override our tmpl from **overrides
2169 if not uri_tmpl:
2169 if not uri_tmpl:
2170 rc_config = SettingsModel().get_all_settings(cache=True)
2170 rc_config = SettingsModel().get_all_settings(cache=True)
2171 if ssh:
2171 if ssh:
2172 uri_tmpl = rc_config.get(
2172 uri_tmpl = rc_config.get(
2173 'rhodecode_clone_uri_ssh_tmpl') or self.DEFAULT_CLONE_URI_SSH
2173 'rhodecode_clone_uri_ssh_tmpl') or self.DEFAULT_CLONE_URI_SSH
2174 else:
2174 else:
2175 uri_tmpl = rc_config.get(
2175 uri_tmpl = rc_config.get(
2176 'rhodecode_clone_uri_tmpl') or self.DEFAULT_CLONE_URI
2176 'rhodecode_clone_uri_tmpl') or self.DEFAULT_CLONE_URI
2177
2177
2178 request = get_current_request()
2178 request = get_current_request()
2179 return get_clone_url(request=request,
2179 return get_clone_url(request=request,
2180 uri_tmpl=uri_tmpl,
2180 uri_tmpl=uri_tmpl,
2181 repo_name=self.repo_name,
2181 repo_name=self.repo_name,
2182 repo_id=self.repo_id, **override)
2182 repo_id=self.repo_id, **override)
2183
2183
2184 def set_state(self, state):
2184 def set_state(self, state):
2185 self.repo_state = state
2185 self.repo_state = state
2186 Session().add(self)
2186 Session().add(self)
2187 #==========================================================================
2187 #==========================================================================
2188 # SCM PROPERTIES
2188 # SCM PROPERTIES
2189 #==========================================================================
2189 #==========================================================================
2190
2190
2191 def get_commit(self, commit_id=None, commit_idx=None, pre_load=None):
2191 def get_commit(self, commit_id=None, commit_idx=None, pre_load=None):
2192 return get_commit_safe(
2192 return get_commit_safe(
2193 self.scm_instance(), commit_id, commit_idx, pre_load=pre_load)
2193 self.scm_instance(), commit_id, commit_idx, pre_load=pre_load)
2194
2194
2195 def get_changeset(self, rev=None, pre_load=None):
2195 def get_changeset(self, rev=None, pre_load=None):
2196 warnings.warn("Use get_commit", DeprecationWarning)
2196 warnings.warn("Use get_commit", DeprecationWarning)
2197 commit_id = None
2197 commit_id = None
2198 commit_idx = None
2198 commit_idx = None
2199 if isinstance(rev, basestring):
2199 if isinstance(rev, basestring):
2200 commit_id = rev
2200 commit_id = rev
2201 else:
2201 else:
2202 commit_idx = rev
2202 commit_idx = rev
2203 return self.get_commit(commit_id=commit_id, commit_idx=commit_idx,
2203 return self.get_commit(commit_id=commit_id, commit_idx=commit_idx,
2204 pre_load=pre_load)
2204 pre_load=pre_load)
2205
2205
2206 def get_landing_commit(self):
2206 def get_landing_commit(self):
2207 """
2207 """
2208 Returns landing commit, or if that doesn't exist returns the tip
2208 Returns landing commit, or if that doesn't exist returns the tip
2209 """
2209 """
2210 _rev_type, _rev = self.landing_rev
2210 _rev_type, _rev = self.landing_rev
2211 commit = self.get_commit(_rev)
2211 commit = self.get_commit(_rev)
2212 if isinstance(commit, EmptyCommit):
2212 if isinstance(commit, EmptyCommit):
2213 return self.get_commit()
2213 return self.get_commit()
2214 return commit
2214 return commit
2215
2215
2216 def update_commit_cache(self, cs_cache=None, config=None):
2216 def update_commit_cache(self, cs_cache=None, config=None):
2217 """
2217 """
2218 Update cache of last changeset for repository, keys should be::
2218 Update cache of last changeset for repository, keys should be::
2219
2219
2220 short_id
2220 short_id
2221 raw_id
2221 raw_id
2222 revision
2222 revision
2223 parents
2223 parents
2224 message
2224 message
2225 date
2225 date
2226 author
2226 author
2227
2227
2228 :param cs_cache:
2228 :param cs_cache:
2229 """
2229 """
2230 from rhodecode.lib.vcs.backends.base import BaseChangeset
2230 from rhodecode.lib.vcs.backends.base import BaseChangeset
2231 if cs_cache is None:
2231 if cs_cache is None:
2232 # use no-cache version here
2232 # use no-cache version here
2233 scm_repo = self.scm_instance(cache=False, config=config)
2233 scm_repo = self.scm_instance(cache=False, config=config)
2234
2234
2235 empty = scm_repo.is_empty()
2235 empty = scm_repo.is_empty()
2236 if not empty:
2236 if not empty:
2237 cs_cache = scm_repo.get_commit(
2237 cs_cache = scm_repo.get_commit(
2238 pre_load=["author", "date", "message", "parents"])
2238 pre_load=["author", "date", "message", "parents"])
2239 else:
2239 else:
2240 cs_cache = EmptyCommit()
2240 cs_cache = EmptyCommit()
2241
2241
2242 if isinstance(cs_cache, BaseChangeset):
2242 if isinstance(cs_cache, BaseChangeset):
2243 cs_cache = cs_cache.__json__()
2243 cs_cache = cs_cache.__json__()
2244
2244
2245 def is_outdated(new_cs_cache):
2245 def is_outdated(new_cs_cache):
2246 if (new_cs_cache['raw_id'] != self.changeset_cache['raw_id'] or
2246 if (new_cs_cache['raw_id'] != self.changeset_cache['raw_id'] or
2247 new_cs_cache['revision'] != self.changeset_cache['revision']):
2247 new_cs_cache['revision'] != self.changeset_cache['revision']):
2248 return True
2248 return True
2249 return False
2249 return False
2250
2250
2251 # check if we have maybe already latest cached revision
2251 # check if we have maybe already latest cached revision
2252 if is_outdated(cs_cache) or not self.changeset_cache:
2252 if is_outdated(cs_cache) or not self.changeset_cache:
2253 _default = datetime.datetime.utcnow()
2253 _default = datetime.datetime.utcnow()
2254 last_change = cs_cache.get('date') or _default
2254 last_change = cs_cache.get('date') or _default
2255 if self.updated_on and self.updated_on > last_change:
2255 if self.updated_on and self.updated_on > last_change:
2256 # we check if last update is newer than the new value
2256 # we check if last update is newer than the new value
2257 # if yes, we use the current timestamp instead. Imagine you get
2257 # if yes, we use the current timestamp instead. Imagine you get
2258 # old commit pushed 1y ago, we'd set last update 1y to ago.
2258 # old commit pushed 1y ago, we'd set last update 1y to ago.
2259 last_change = _default
2259 last_change = _default
2260 log.debug('updated repo %s with new cs cache %s',
2260 log.debug('updated repo %s with new cs cache %s',
2261 self.repo_name, cs_cache)
2261 self.repo_name, cs_cache)
2262 self.updated_on = last_change
2262 self.updated_on = last_change
2263 self.changeset_cache = cs_cache
2263 self.changeset_cache = cs_cache
2264 Session().add(self)
2264 Session().add(self)
2265 Session().commit()
2265 Session().commit()
2266 else:
2266 else:
2267 log.debug('Skipping update_commit_cache for repo:`%s` '
2267 log.debug('Skipping update_commit_cache for repo:`%s` '
2268 'commit already with latest changes', self.repo_name)
2268 'commit already with latest changes', self.repo_name)
2269
2269
2270 @property
2270 @property
2271 def tip(self):
2271 def tip(self):
2272 return self.get_commit('tip')
2272 return self.get_commit('tip')
2273
2273
2274 @property
2274 @property
2275 def author(self):
2275 def author(self):
2276 return self.tip.author
2276 return self.tip.author
2277
2277
2278 @property
2278 @property
2279 def last_change(self):
2279 def last_change(self):
2280 return self.scm_instance().last_change
2280 return self.scm_instance().last_change
2281
2281
2282 def get_comments(self, revisions=None):
2282 def get_comments(self, revisions=None):
2283 """
2283 """
2284 Returns comments for this repository grouped by revisions
2284 Returns comments for this repository grouped by revisions
2285
2285
2286 :param revisions: filter query by revisions only
2286 :param revisions: filter query by revisions only
2287 """
2287 """
2288 cmts = ChangesetComment.query()\
2288 cmts = ChangesetComment.query()\
2289 .filter(ChangesetComment.repo == self)
2289 .filter(ChangesetComment.repo == self)
2290 if revisions:
2290 if revisions:
2291 cmts = cmts.filter(ChangesetComment.revision.in_(revisions))
2291 cmts = cmts.filter(ChangesetComment.revision.in_(revisions))
2292 grouped = collections.defaultdict(list)
2292 grouped = collections.defaultdict(list)
2293 for cmt in cmts.all():
2293 for cmt in cmts.all():
2294 grouped[cmt.revision].append(cmt)
2294 grouped[cmt.revision].append(cmt)
2295 return grouped
2295 return grouped
2296
2296
2297 def statuses(self, revisions=None):
2297 def statuses(self, revisions=None):
2298 """
2298 """
2299 Returns statuses for this repository
2299 Returns statuses for this repository
2300
2300
2301 :param revisions: list of revisions to get statuses for
2301 :param revisions: list of revisions to get statuses for
2302 """
2302 """
2303 statuses = ChangesetStatus.query()\
2303 statuses = ChangesetStatus.query()\
2304 .filter(ChangesetStatus.repo == self)\
2304 .filter(ChangesetStatus.repo == self)\
2305 .filter(ChangesetStatus.version == 0)
2305 .filter(ChangesetStatus.version == 0)
2306
2306
2307 if revisions:
2307 if revisions:
2308 # Try doing the filtering in chunks to avoid hitting limits
2308 # Try doing the filtering in chunks to avoid hitting limits
2309 size = 500
2309 size = 500
2310 status_results = []
2310 status_results = []
2311 for chunk in xrange(0, len(revisions), size):
2311 for chunk in xrange(0, len(revisions), size):
2312 status_results += statuses.filter(
2312 status_results += statuses.filter(
2313 ChangesetStatus.revision.in_(
2313 ChangesetStatus.revision.in_(
2314 revisions[chunk: chunk+size])
2314 revisions[chunk: chunk+size])
2315 ).all()
2315 ).all()
2316 else:
2316 else:
2317 status_results = statuses.all()
2317 status_results = statuses.all()
2318
2318
2319 grouped = {}
2319 grouped = {}
2320
2320
2321 # maybe we have open new pullrequest without a status?
2321 # maybe we have open new pullrequest without a status?
2322 stat = ChangesetStatus.STATUS_UNDER_REVIEW
2322 stat = ChangesetStatus.STATUS_UNDER_REVIEW
2323 status_lbl = ChangesetStatus.get_status_lbl(stat)
2323 status_lbl = ChangesetStatus.get_status_lbl(stat)
2324 for pr in PullRequest.query().filter(PullRequest.source_repo == self).all():
2324 for pr in PullRequest.query().filter(PullRequest.source_repo == self).all():
2325 for rev in pr.revisions:
2325 for rev in pr.revisions:
2326 pr_id = pr.pull_request_id
2326 pr_id = pr.pull_request_id
2327 pr_repo = pr.target_repo.repo_name
2327 pr_repo = pr.target_repo.repo_name
2328 grouped[rev] = [stat, status_lbl, pr_id, pr_repo]
2328 grouped[rev] = [stat, status_lbl, pr_id, pr_repo]
2329
2329
2330 for stat in status_results:
2330 for stat in status_results:
2331 pr_id = pr_repo = None
2331 pr_id = pr_repo = None
2332 if stat.pull_request:
2332 if stat.pull_request:
2333 pr_id = stat.pull_request.pull_request_id
2333 pr_id = stat.pull_request.pull_request_id
2334 pr_repo = stat.pull_request.target_repo.repo_name
2334 pr_repo = stat.pull_request.target_repo.repo_name
2335 grouped[stat.revision] = [str(stat.status), stat.status_lbl,
2335 grouped[stat.revision] = [str(stat.status), stat.status_lbl,
2336 pr_id, pr_repo]
2336 pr_id, pr_repo]
2337 return grouped
2337 return grouped
2338
2338
2339 # ==========================================================================
2339 # ==========================================================================
2340 # SCM CACHE INSTANCE
2340 # SCM CACHE INSTANCE
2341 # ==========================================================================
2341 # ==========================================================================
2342
2342
2343 def scm_instance(self, **kwargs):
2343 def scm_instance(self, **kwargs):
2344 import rhodecode
2344 import rhodecode
2345
2345
2346 # Passing a config will not hit the cache currently only used
2346 # Passing a config will not hit the cache currently only used
2347 # for repo2dbmapper
2347 # for repo2dbmapper
2348 config = kwargs.pop('config', None)
2348 config = kwargs.pop('config', None)
2349 cache = kwargs.pop('cache', None)
2349 cache = kwargs.pop('cache', None)
2350 full_cache = str2bool(rhodecode.CONFIG.get('vcs_full_cache'))
2350 full_cache = str2bool(rhodecode.CONFIG.get('vcs_full_cache'))
2351 # if cache is NOT defined use default global, else we have a full
2351 # if cache is NOT defined use default global, else we have a full
2352 # control over cache behaviour
2352 # control over cache behaviour
2353 if cache is None and full_cache and not config:
2353 if cache is None and full_cache and not config:
2354 return self._get_instance_cached()
2354 return self._get_instance_cached()
2355 return self._get_instance(cache=bool(cache), config=config)
2355 return self._get_instance(cache=bool(cache), config=config)
2356
2356
2357 def _get_instance_cached(self):
2357 def _get_instance_cached(self):
2358 from rhodecode.lib import rc_cache
2358 from rhodecode.lib import rc_cache
2359
2359
2360 cache_namespace_uid = 'cache_repo_instance.{}'.format(self.repo_id)
2360 cache_namespace_uid = 'cache_repo_instance.{}'.format(self.repo_id)
2361 invalidation_namespace = CacheKey.REPO_INVALIDATION_NAMESPACE.format(
2361 invalidation_namespace = CacheKey.REPO_INVALIDATION_NAMESPACE.format(
2362 repo_id=self.repo_id)
2362 repo_id=self.repo_id)
2363 region = rc_cache.get_or_create_region('cache_repo_longterm', cache_namespace_uid)
2363 region = rc_cache.get_or_create_region('cache_repo_longterm', cache_namespace_uid)
2364
2364
2365 @region.conditional_cache_on_arguments(namespace=cache_namespace_uid)
2365 @region.conditional_cache_on_arguments(namespace=cache_namespace_uid)
2366 def get_instance_cached(repo_id, context_id):
2366 def get_instance_cached(repo_id, context_id):
2367 return self._get_instance()
2367 return self._get_instance()
2368
2368
2369 # we must use thread scoped cache here,
2369 # we must use thread scoped cache here,
2370 # because each thread of gevent needs it's own not shared connection and cache
2370 # because each thread of gevent needs it's own not shared connection and cache
2371 # we also alter `args` so the cache key is individual for every green thread.
2371 # we also alter `args` so the cache key is individual for every green thread.
2372 inv_context_manager = rc_cache.InvalidationContext(
2372 inv_context_manager = rc_cache.InvalidationContext(
2373 uid=cache_namespace_uid, invalidation_namespace=invalidation_namespace,
2373 uid=cache_namespace_uid, invalidation_namespace=invalidation_namespace,
2374 thread_scoped=True)
2374 thread_scoped=True)
2375 with inv_context_manager as invalidation_context:
2375 with inv_context_manager as invalidation_context:
2376 args = (self.repo_id, inv_context_manager.cache_key)
2376 args = (self.repo_id, inv_context_manager.cache_key)
2377 # re-compute and store cache if we get invalidate signal
2377 # re-compute and store cache if we get invalidate signal
2378 if invalidation_context.should_invalidate():
2378 if invalidation_context.should_invalidate():
2379 instance = get_instance_cached.refresh(*args)
2379 instance = get_instance_cached.refresh(*args)
2380 else:
2380 else:
2381 instance = get_instance_cached(*args)
2381 instance = get_instance_cached(*args)
2382
2382
2383 log.debug(
2383 log.debug(
2384 'Repo instance fetched in %.3fs', inv_context_manager.compute_time)
2384 'Repo instance fetched in %.3fs', inv_context_manager.compute_time)
2385 return instance
2385 return instance
2386
2386
2387 def _get_instance(self, cache=True, config=None):
2387 def _get_instance(self, cache=True, config=None):
2388 config = config or self._config
2388 config = config or self._config
2389 custom_wire = {
2389 custom_wire = {
2390 'cache': cache # controls the vcs.remote cache
2390 'cache': cache # controls the vcs.remote cache
2391 }
2391 }
2392 repo = get_vcs_instance(
2392 repo = get_vcs_instance(
2393 repo_path=safe_str(self.repo_full_path),
2393 repo_path=safe_str(self.repo_full_path),
2394 config=config,
2394 config=config,
2395 with_wire=custom_wire,
2395 with_wire=custom_wire,
2396 create=False,
2396 create=False,
2397 _vcs_alias=self.repo_type)
2397 _vcs_alias=self.repo_type)
2398
2398
2399 return repo
2399 return repo
2400
2400
2401 def __json__(self):
2401 def __json__(self):
2402 return {'landing_rev': self.landing_rev}
2402 return {'landing_rev': self.landing_rev}
2403
2403
2404 def get_dict(self):
2404 def get_dict(self):
2405
2405
2406 # Since we transformed `repo_name` to a hybrid property, we need to
2406 # Since we transformed `repo_name` to a hybrid property, we need to
2407 # keep compatibility with the code which uses `repo_name` field.
2407 # keep compatibility with the code which uses `repo_name` field.
2408
2408
2409 result = super(Repository, self).get_dict()
2409 result = super(Repository, self).get_dict()
2410 result['repo_name'] = result.pop('_repo_name', None)
2410 result['repo_name'] = result.pop('_repo_name', None)
2411 return result
2411 return result
2412
2412
2413
2413
2414 class RepoGroup(Base, BaseModel):
2414 class RepoGroup(Base, BaseModel):
2415 __tablename__ = 'groups'
2415 __tablename__ = 'groups'
2416 __table_args__ = (
2416 __table_args__ = (
2417 UniqueConstraint('group_name', 'group_parent_id'),
2417 UniqueConstraint('group_name', 'group_parent_id'),
2418 CheckConstraint('group_id != group_parent_id'),
2418 CheckConstraint('group_id != group_parent_id'),
2419 base_table_args,
2419 base_table_args,
2420 )
2420 )
2421 __mapper_args__ = {'order_by': 'group_name'}
2421 __mapper_args__ = {'order_by': 'group_name'}
2422
2422
2423 CHOICES_SEPARATOR = '/' # used to generate select2 choices for nested groups
2423 CHOICES_SEPARATOR = '/' # used to generate select2 choices for nested groups
2424
2424
2425 group_id = Column("group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
2425 group_id = Column("group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
2426 group_name = Column("group_name", String(255), nullable=False, unique=True, default=None)
2426 group_name = Column("group_name", String(255), nullable=False, unique=True, default=None)
2427 group_parent_id = Column("group_parent_id", Integer(), ForeignKey('groups.group_id'), nullable=True, unique=None, default=None)
2427 group_parent_id = Column("group_parent_id", Integer(), ForeignKey('groups.group_id'), nullable=True, unique=None, default=None)
2428 group_description = Column("group_description", String(10000), nullable=True, unique=None, default=None)
2428 group_description = Column("group_description", String(10000), nullable=True, unique=None, default=None)
2429 enable_locking = Column("enable_locking", Boolean(), nullable=False, unique=None, default=False)
2429 enable_locking = Column("enable_locking", Boolean(), nullable=False, unique=None, default=False)
2430 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=False, default=None)
2430 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=False, default=None)
2431 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
2431 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
2432 updated_on = Column('updated_on', DateTime(timezone=False), nullable=True, unique=None, default=datetime.datetime.now)
2432 updated_on = Column('updated_on', DateTime(timezone=False), nullable=True, unique=None, default=datetime.datetime.now)
2433 personal = Column('personal', Boolean(), nullable=True, unique=None, default=None)
2433 personal = Column('personal', Boolean(), nullable=True, unique=None, default=None)
2434
2434
2435 repo_group_to_perm = relationship('UserRepoGroupToPerm', cascade='all', order_by='UserRepoGroupToPerm.group_to_perm_id')
2435 repo_group_to_perm = relationship('UserRepoGroupToPerm', cascade='all', order_by='UserRepoGroupToPerm.group_to_perm_id')
2436 users_group_to_perm = relationship('UserGroupRepoGroupToPerm', cascade='all')
2436 users_group_to_perm = relationship('UserGroupRepoGroupToPerm', cascade='all')
2437 parent_group = relationship('RepoGroup', remote_side=group_id)
2437 parent_group = relationship('RepoGroup', remote_side=group_id)
2438 user = relationship('User')
2438 user = relationship('User')
2439 integrations = relationship('Integration',
2439 integrations = relationship('Integration',
2440 cascade="all, delete, delete-orphan")
2440 cascade="all, delete, delete-orphan")
2441
2441
2442 def __init__(self, group_name='', parent_group=None):
2442 def __init__(self, group_name='', parent_group=None):
2443 self.group_name = group_name
2443 self.group_name = group_name
2444 self.parent_group = parent_group
2444 self.parent_group = parent_group
2445
2445
2446 def __unicode__(self):
2446 def __unicode__(self):
2447 return u"<%s('id:%s:%s')>" % (
2447 return u"<%s('id:%s:%s')>" % (
2448 self.__class__.__name__, self.group_id, self.group_name)
2448 self.__class__.__name__, self.group_id, self.group_name)
2449
2449
2450 @hybrid_property
2450 @hybrid_property
2451 def description_safe(self):
2451 def description_safe(self):
2452 from rhodecode.lib import helpers as h
2452 from rhodecode.lib import helpers as h
2453 return h.escape(self.group_description)
2453 return h.escape(self.group_description)
2454
2454
2455 @classmethod
2455 @classmethod
2456 def _generate_choice(cls, repo_group):
2456 def _generate_choice(cls, repo_group):
2457 from webhelpers.html import literal as _literal
2457 from webhelpers.html import literal as _literal
2458 _name = lambda k: _literal(cls.CHOICES_SEPARATOR.join(k))
2458 _name = lambda k: _literal(cls.CHOICES_SEPARATOR.join(k))
2459 return repo_group.group_id, _name(repo_group.full_path_splitted)
2459 return repo_group.group_id, _name(repo_group.full_path_splitted)
2460
2460
2461 @classmethod
2461 @classmethod
2462 def groups_choices(cls, groups=None, show_empty_group=True):
2462 def groups_choices(cls, groups=None, show_empty_group=True):
2463 if not groups:
2463 if not groups:
2464 groups = cls.query().all()
2464 groups = cls.query().all()
2465
2465
2466 repo_groups = []
2466 repo_groups = []
2467 if show_empty_group:
2467 if show_empty_group:
2468 repo_groups = [(-1, u'-- %s --' % _('No parent'))]
2468 repo_groups = [(-1, u'-- %s --' % _('No parent'))]
2469
2469
2470 repo_groups.extend([cls._generate_choice(x) for x in groups])
2470 repo_groups.extend([cls._generate_choice(x) for x in groups])
2471
2471
2472 repo_groups = sorted(
2472 repo_groups = sorted(
2473 repo_groups, key=lambda t: t[1].split(cls.CHOICES_SEPARATOR)[0])
2473 repo_groups, key=lambda t: t[1].split(cls.CHOICES_SEPARATOR)[0])
2474 return repo_groups
2474 return repo_groups
2475
2475
2476 @classmethod
2476 @classmethod
2477 def url_sep(cls):
2477 def url_sep(cls):
2478 return URL_SEP
2478 return URL_SEP
2479
2479
2480 @classmethod
2480 @classmethod
2481 def get_by_group_name(cls, group_name, cache=False, case_insensitive=False):
2481 def get_by_group_name(cls, group_name, cache=False, case_insensitive=False):
2482 if case_insensitive:
2482 if case_insensitive:
2483 gr = cls.query().filter(func.lower(cls.group_name)
2483 gr = cls.query().filter(func.lower(cls.group_name)
2484 == func.lower(group_name))
2484 == func.lower(group_name))
2485 else:
2485 else:
2486 gr = cls.query().filter(cls.group_name == group_name)
2486 gr = cls.query().filter(cls.group_name == group_name)
2487 if cache:
2487 if cache:
2488 name_key = _hash_key(group_name)
2488 name_key = _hash_key(group_name)
2489 gr = gr.options(
2489 gr = gr.options(
2490 FromCache("sql_cache_short", "get_group_%s" % name_key))
2490 FromCache("sql_cache_short", "get_group_%s" % name_key))
2491 return gr.scalar()
2491 return gr.scalar()
2492
2492
2493 @classmethod
2493 @classmethod
2494 def get_user_personal_repo_group(cls, user_id):
2494 def get_user_personal_repo_group(cls, user_id):
2495 user = User.get(user_id)
2495 user = User.get(user_id)
2496 if user.username == User.DEFAULT_USER:
2496 if user.username == User.DEFAULT_USER:
2497 return None
2497 return None
2498
2498
2499 return cls.query()\
2499 return cls.query()\
2500 .filter(cls.personal == true()) \
2500 .filter(cls.personal == true()) \
2501 .filter(cls.user == user).scalar()
2501 .filter(cls.user == user).scalar()
2502
2502
2503 @classmethod
2503 @classmethod
2504 def get_all_repo_groups(cls, user_id=Optional(None), group_id=Optional(None),
2504 def get_all_repo_groups(cls, user_id=Optional(None), group_id=Optional(None),
2505 case_insensitive=True):
2505 case_insensitive=True):
2506 q = RepoGroup.query()
2506 q = RepoGroup.query()
2507
2507
2508 if not isinstance(user_id, Optional):
2508 if not isinstance(user_id, Optional):
2509 q = q.filter(RepoGroup.user_id == user_id)
2509 q = q.filter(RepoGroup.user_id == user_id)
2510
2510
2511 if not isinstance(group_id, Optional):
2511 if not isinstance(group_id, Optional):
2512 q = q.filter(RepoGroup.group_parent_id == group_id)
2512 q = q.filter(RepoGroup.group_parent_id == group_id)
2513
2513
2514 if case_insensitive:
2514 if case_insensitive:
2515 q = q.order_by(func.lower(RepoGroup.group_name))
2515 q = q.order_by(func.lower(RepoGroup.group_name))
2516 else:
2516 else:
2517 q = q.order_by(RepoGroup.group_name)
2517 q = q.order_by(RepoGroup.group_name)
2518 return q.all()
2518 return q.all()
2519
2519
2520 @property
2520 @property
2521 def parents(self):
2521 def parents(self):
2522 parents_recursion_limit = 10
2522 parents_recursion_limit = 10
2523 groups = []
2523 groups = []
2524 if self.parent_group is None:
2524 if self.parent_group is None:
2525 return groups
2525 return groups
2526 cur_gr = self.parent_group
2526 cur_gr = self.parent_group
2527 groups.insert(0, cur_gr)
2527 groups.insert(0, cur_gr)
2528 cnt = 0
2528 cnt = 0
2529 while 1:
2529 while 1:
2530 cnt += 1
2530 cnt += 1
2531 gr = getattr(cur_gr, 'parent_group', None)
2531 gr = getattr(cur_gr, 'parent_group', None)
2532 cur_gr = cur_gr.parent_group
2532 cur_gr = cur_gr.parent_group
2533 if gr is None:
2533 if gr is None:
2534 break
2534 break
2535 if cnt == parents_recursion_limit:
2535 if cnt == parents_recursion_limit:
2536 # this will prevent accidental infinit loops
2536 # this will prevent accidental infinit loops
2537 log.error(('more than %s parents found for group %s, stopping '
2537 log.error(('more than %s parents found for group %s, stopping '
2538 'recursive parent fetching' % (parents_recursion_limit, self)))
2538 'recursive parent fetching' % (parents_recursion_limit, self)))
2539 break
2539 break
2540
2540
2541 groups.insert(0, gr)
2541 groups.insert(0, gr)
2542 return groups
2542 return groups
2543
2543
2544 @property
2544 @property
2545 def last_db_change(self):
2545 def last_db_change(self):
2546 return self.updated_on
2546 return self.updated_on
2547
2547
2548 @property
2548 @property
2549 def children(self):
2549 def children(self):
2550 return RepoGroup.query().filter(RepoGroup.parent_group == self)
2550 return RepoGroup.query().filter(RepoGroup.parent_group == self)
2551
2551
2552 @property
2552 @property
2553 def name(self):
2553 def name(self):
2554 return self.group_name.split(RepoGroup.url_sep())[-1]
2554 return self.group_name.split(RepoGroup.url_sep())[-1]
2555
2555
2556 @property
2556 @property
2557 def full_path(self):
2557 def full_path(self):
2558 return self.group_name
2558 return self.group_name
2559
2559
2560 @property
2560 @property
2561 def full_path_splitted(self):
2561 def full_path_splitted(self):
2562 return self.group_name.split(RepoGroup.url_sep())
2562 return self.group_name.split(RepoGroup.url_sep())
2563
2563
2564 @property
2564 @property
2565 def repositories(self):
2565 def repositories(self):
2566 return Repository.query()\
2566 return Repository.query()\
2567 .filter(Repository.group == self)\
2567 .filter(Repository.group == self)\
2568 .order_by(Repository.repo_name)
2568 .order_by(Repository.repo_name)
2569
2569
2570 @property
2570 @property
2571 def repositories_recursive_count(self):
2571 def repositories_recursive_count(self):
2572 cnt = self.repositories.count()
2572 cnt = self.repositories.count()
2573
2573
2574 def children_count(group):
2574 def children_count(group):
2575 cnt = 0
2575 cnt = 0
2576 for child in group.children:
2576 for child in group.children:
2577 cnt += child.repositories.count()
2577 cnt += child.repositories.count()
2578 cnt += children_count(child)
2578 cnt += children_count(child)
2579 return cnt
2579 return cnt
2580
2580
2581 return cnt + children_count(self)
2581 return cnt + children_count(self)
2582
2582
2583 def _recursive_objects(self, include_repos=True):
2583 def _recursive_objects(self, include_repos=True):
2584 all_ = []
2584 all_ = []
2585
2585
2586 def _get_members(root_gr):
2586 def _get_members(root_gr):
2587 if include_repos:
2587 if include_repos:
2588 for r in root_gr.repositories:
2588 for r in root_gr.repositories:
2589 all_.append(r)
2589 all_.append(r)
2590 childs = root_gr.children.all()
2590 childs = root_gr.children.all()
2591 if childs:
2591 if childs:
2592 for gr in childs:
2592 for gr in childs:
2593 all_.append(gr)
2593 all_.append(gr)
2594 _get_members(gr)
2594 _get_members(gr)
2595
2595
2596 _get_members(self)
2596 _get_members(self)
2597 return [self] + all_
2597 return [self] + all_
2598
2598
2599 def recursive_groups_and_repos(self):
2599 def recursive_groups_and_repos(self):
2600 """
2600 """
2601 Recursive return all groups, with repositories in those groups
2601 Recursive return all groups, with repositories in those groups
2602 """
2602 """
2603 return self._recursive_objects()
2603 return self._recursive_objects()
2604
2604
2605 def recursive_groups(self):
2605 def recursive_groups(self):
2606 """
2606 """
2607 Returns all children groups for this group including children of children
2607 Returns all children groups for this group including children of children
2608 """
2608 """
2609 return self._recursive_objects(include_repos=False)
2609 return self._recursive_objects(include_repos=False)
2610
2610
2611 def get_new_name(self, group_name):
2611 def get_new_name(self, group_name):
2612 """
2612 """
2613 returns new full group name based on parent and new name
2613 returns new full group name based on parent and new name
2614
2614
2615 :param group_name:
2615 :param group_name:
2616 """
2616 """
2617 path_prefix = (self.parent_group.full_path_splitted if
2617 path_prefix = (self.parent_group.full_path_splitted if
2618 self.parent_group else [])
2618 self.parent_group else [])
2619 return RepoGroup.url_sep().join(path_prefix + [group_name])
2619 return RepoGroup.url_sep().join(path_prefix + [group_name])
2620
2620
2621 def permissions(self, with_admins=True, with_owner=True):
2621 def permissions(self, with_admins=True, with_owner=True):
2622 """
2622 """
2623 Permissions for repository groups
2623 Permissions for repository groups
2624 """
2624 """
2625 _admin_perm = 'group.admin'
2625 _admin_perm = 'group.admin'
2626
2626
2627 owner_row = []
2627 owner_row = []
2628 if with_owner:
2628 if with_owner:
2629 usr = AttributeDict(self.user.get_dict())
2629 usr = AttributeDict(self.user.get_dict())
2630 usr.owner_row = True
2630 usr.owner_row = True
2631 usr.permission = _admin_perm
2631 usr.permission = _admin_perm
2632 owner_row.append(usr)
2632 owner_row.append(usr)
2633
2633
2634 super_admin_ids = []
2634 super_admin_ids = []
2635 super_admin_rows = []
2635 super_admin_rows = []
2636 if with_admins:
2636 if with_admins:
2637 for usr in User.get_all_super_admins():
2637 for usr in User.get_all_super_admins():
2638 super_admin_ids.append(usr.user_id)
2638 super_admin_ids.append(usr.user_id)
2639 # if this admin is also owner, don't double the record
2639 # if this admin is also owner, don't double the record
2640 if usr.user_id == owner_row[0].user_id:
2640 if usr.user_id == owner_row[0].user_id:
2641 owner_row[0].admin_row = True
2641 owner_row[0].admin_row = True
2642 else:
2642 else:
2643 usr = AttributeDict(usr.get_dict())
2643 usr = AttributeDict(usr.get_dict())
2644 usr.admin_row = True
2644 usr.admin_row = True
2645 usr.permission = _admin_perm
2645 usr.permission = _admin_perm
2646 super_admin_rows.append(usr)
2646 super_admin_rows.append(usr)
2647
2647
2648 q = UserRepoGroupToPerm.query().filter(UserRepoGroupToPerm.group == self)
2648 q = UserRepoGroupToPerm.query().filter(UserRepoGroupToPerm.group == self)
2649 q = q.options(joinedload(UserRepoGroupToPerm.group),
2649 q = q.options(joinedload(UserRepoGroupToPerm.group),
2650 joinedload(UserRepoGroupToPerm.user),
2650 joinedload(UserRepoGroupToPerm.user),
2651 joinedload(UserRepoGroupToPerm.permission),)
2651 joinedload(UserRepoGroupToPerm.permission),)
2652
2652
2653 # get owners and admins and permissions. We do a trick of re-writing
2653 # get owners and admins and permissions. We do a trick of re-writing
2654 # objects from sqlalchemy to named-tuples due to sqlalchemy session
2654 # objects from sqlalchemy to named-tuples due to sqlalchemy session
2655 # has a global reference and changing one object propagates to all
2655 # has a global reference and changing one object propagates to all
2656 # others. This means if admin is also an owner admin_row that change
2656 # others. This means if admin is also an owner admin_row that change
2657 # would propagate to both objects
2657 # would propagate to both objects
2658 perm_rows = []
2658 perm_rows = []
2659 for _usr in q.all():
2659 for _usr in q.all():
2660 usr = AttributeDict(_usr.user.get_dict())
2660 usr = AttributeDict(_usr.user.get_dict())
2661 # if this user is also owner/admin, mark as duplicate record
2661 # if this user is also owner/admin, mark as duplicate record
2662 if usr.user_id == owner_row[0].user_id or usr.user_id in super_admin_ids:
2662 if usr.user_id == owner_row[0].user_id or usr.user_id in super_admin_ids:
2663 usr.duplicate_perm = True
2663 usr.duplicate_perm = True
2664 usr.permission = _usr.permission.permission_name
2664 usr.permission = _usr.permission.permission_name
2665 perm_rows.append(usr)
2665 perm_rows.append(usr)
2666
2666
2667 # filter the perm rows by 'default' first and then sort them by
2667 # filter the perm rows by 'default' first and then sort them by
2668 # admin,write,read,none permissions sorted again alphabetically in
2668 # admin,write,read,none permissions sorted again alphabetically in
2669 # each group
2669 # each group
2670 perm_rows = sorted(perm_rows, key=display_user_sort)
2670 perm_rows = sorted(perm_rows, key=display_user_sort)
2671
2671
2672 return super_admin_rows + owner_row + perm_rows
2672 return super_admin_rows + owner_row + perm_rows
2673
2673
2674 def permission_user_groups(self):
2674 def permission_user_groups(self):
2675 q = UserGroupRepoGroupToPerm.query().filter(
2675 q = UserGroupRepoGroupToPerm.query().filter(
2676 UserGroupRepoGroupToPerm.group == self)
2676 UserGroupRepoGroupToPerm.group == self)
2677 q = q.options(joinedload(UserGroupRepoGroupToPerm.group),
2677 q = q.options(joinedload(UserGroupRepoGroupToPerm.group),
2678 joinedload(UserGroupRepoGroupToPerm.users_group),
2678 joinedload(UserGroupRepoGroupToPerm.users_group),
2679 joinedload(UserGroupRepoGroupToPerm.permission),)
2679 joinedload(UserGroupRepoGroupToPerm.permission),)
2680
2680
2681 perm_rows = []
2681 perm_rows = []
2682 for _user_group in q.all():
2682 for _user_group in q.all():
2683 usr = AttributeDict(_user_group.users_group.get_dict())
2683 usr = AttributeDict(_user_group.users_group.get_dict())
2684 usr.permission = _user_group.permission.permission_name
2684 usr.permission = _user_group.permission.permission_name
2685 perm_rows.append(usr)
2685 perm_rows.append(usr)
2686
2686
2687 perm_rows = sorted(perm_rows, key=display_user_group_sort)
2687 perm_rows = sorted(perm_rows, key=display_user_group_sort)
2688 return perm_rows
2688 return perm_rows
2689
2689
2690 def get_api_data(self):
2690 def get_api_data(self):
2691 """
2691 """
2692 Common function for generating api data
2692 Common function for generating api data
2693
2693
2694 """
2694 """
2695 group = self
2695 group = self
2696 data = {
2696 data = {
2697 'group_id': group.group_id,
2697 'group_id': group.group_id,
2698 'group_name': group.group_name,
2698 'group_name': group.group_name,
2699 'group_description': group.description_safe,
2699 'group_description': group.description_safe,
2700 'parent_group': group.parent_group.group_name if group.parent_group else None,
2700 'parent_group': group.parent_group.group_name if group.parent_group else None,
2701 'repositories': [x.repo_name for x in group.repositories],
2701 'repositories': [x.repo_name for x in group.repositories],
2702 'owner': group.user.username,
2702 'owner': group.user.username,
2703 }
2703 }
2704 return data
2704 return data
2705
2705
2706
2706
2707 class Permission(Base, BaseModel):
2707 class Permission(Base, BaseModel):
2708 __tablename__ = 'permissions'
2708 __tablename__ = 'permissions'
2709 __table_args__ = (
2709 __table_args__ = (
2710 Index('p_perm_name_idx', 'permission_name'),
2710 Index('p_perm_name_idx', 'permission_name'),
2711 base_table_args,
2711 base_table_args,
2712 )
2712 )
2713
2713
2714 PERMS = [
2714 PERMS = [
2715 ('hg.admin', _('RhodeCode Super Administrator')),
2715 ('hg.admin', _('RhodeCode Super Administrator')),
2716
2716
2717 ('repository.none', _('Repository no access')),
2717 ('repository.none', _('Repository no access')),
2718 ('repository.read', _('Repository read access')),
2718 ('repository.read', _('Repository read access')),
2719 ('repository.write', _('Repository write access')),
2719 ('repository.write', _('Repository write access')),
2720 ('repository.admin', _('Repository admin access')),
2720 ('repository.admin', _('Repository admin access')),
2721
2721
2722 ('group.none', _('Repository group no access')),
2722 ('group.none', _('Repository group no access')),
2723 ('group.read', _('Repository group read access')),
2723 ('group.read', _('Repository group read access')),
2724 ('group.write', _('Repository group write access')),
2724 ('group.write', _('Repository group write access')),
2725 ('group.admin', _('Repository group admin access')),
2725 ('group.admin', _('Repository group admin access')),
2726
2726
2727 ('usergroup.none', _('User group no access')),
2727 ('usergroup.none', _('User group no access')),
2728 ('usergroup.read', _('User group read access')),
2728 ('usergroup.read', _('User group read access')),
2729 ('usergroup.write', _('User group write access')),
2729 ('usergroup.write', _('User group write access')),
2730 ('usergroup.admin', _('User group admin access')),
2730 ('usergroup.admin', _('User group admin access')),
2731
2731
2732 ('branch.none', _('Branch no permissions')),
2732 ('branch.none', _('Branch no permissions')),
2733 ('branch.merge', _('Branch access by web merge')),
2733 ('branch.merge', _('Branch access by web merge')),
2734 ('branch.push', _('Branch access by push')),
2734 ('branch.push', _('Branch access by push')),
2735 ('branch.push_force', _('Branch access by push with force')),
2735 ('branch.push_force', _('Branch access by push with force')),
2736
2736
2737 ('hg.repogroup.create.false', _('Repository Group creation disabled')),
2737 ('hg.repogroup.create.false', _('Repository Group creation disabled')),
2738 ('hg.repogroup.create.true', _('Repository Group creation enabled')),
2738 ('hg.repogroup.create.true', _('Repository Group creation enabled')),
2739
2739
2740 ('hg.usergroup.create.false', _('User Group creation disabled')),
2740 ('hg.usergroup.create.false', _('User Group creation disabled')),
2741 ('hg.usergroup.create.true', _('User Group creation enabled')),
2741 ('hg.usergroup.create.true', _('User Group creation enabled')),
2742
2742
2743 ('hg.create.none', _('Repository creation disabled')),
2743 ('hg.create.none', _('Repository creation disabled')),
2744 ('hg.create.repository', _('Repository creation enabled')),
2744 ('hg.create.repository', _('Repository creation enabled')),
2745 ('hg.create.write_on_repogroup.true', _('Repository creation enabled with write permission to a repository group')),
2745 ('hg.create.write_on_repogroup.true', _('Repository creation enabled with write permission to a repository group')),
2746 ('hg.create.write_on_repogroup.false', _('Repository creation disabled with write permission to a repository group')),
2746 ('hg.create.write_on_repogroup.false', _('Repository creation disabled with write permission to a repository group')),
2747
2747
2748 ('hg.fork.none', _('Repository forking disabled')),
2748 ('hg.fork.none', _('Repository forking disabled')),
2749 ('hg.fork.repository', _('Repository forking enabled')),
2749 ('hg.fork.repository', _('Repository forking enabled')),
2750
2750
2751 ('hg.register.none', _('Registration disabled')),
2751 ('hg.register.none', _('Registration disabled')),
2752 ('hg.register.manual_activate', _('User Registration with manual account activation')),
2752 ('hg.register.manual_activate', _('User Registration with manual account activation')),
2753 ('hg.register.auto_activate', _('User Registration with automatic account activation')),
2753 ('hg.register.auto_activate', _('User Registration with automatic account activation')),
2754
2754
2755 ('hg.password_reset.enabled', _('Password reset enabled')),
2755 ('hg.password_reset.enabled', _('Password reset enabled')),
2756 ('hg.password_reset.hidden', _('Password reset hidden')),
2756 ('hg.password_reset.hidden', _('Password reset hidden')),
2757 ('hg.password_reset.disabled', _('Password reset disabled')),
2757 ('hg.password_reset.disabled', _('Password reset disabled')),
2758
2758
2759 ('hg.extern_activate.manual', _('Manual activation of external account')),
2759 ('hg.extern_activate.manual', _('Manual activation of external account')),
2760 ('hg.extern_activate.auto', _('Automatic activation of external account')),
2760 ('hg.extern_activate.auto', _('Automatic activation of external account')),
2761
2761
2762 ('hg.inherit_default_perms.false', _('Inherit object permissions from default user disabled')),
2762 ('hg.inherit_default_perms.false', _('Inherit object permissions from default user disabled')),
2763 ('hg.inherit_default_perms.true', _('Inherit object permissions from default user enabled')),
2763 ('hg.inherit_default_perms.true', _('Inherit object permissions from default user enabled')),
2764 ]
2764 ]
2765
2765
2766 # definition of system default permissions for DEFAULT user, created on
2766 # definition of system default permissions for DEFAULT user, created on
2767 # system setup
2767 # system setup
2768 DEFAULT_USER_PERMISSIONS = [
2768 DEFAULT_USER_PERMISSIONS = [
2769 # object perms
2769 # object perms
2770 'repository.read',
2770 'repository.read',
2771 'group.read',
2771 'group.read',
2772 'usergroup.read',
2772 'usergroup.read',
2773 # branch, for backward compat we need same value as before so forced pushed
2773 # branch, for backward compat we need same value as before so forced pushed
2774 'branch.push_force',
2774 'branch.push_force',
2775 # global
2775 # global
2776 'hg.create.repository',
2776 'hg.create.repository',
2777 'hg.repogroup.create.false',
2777 'hg.repogroup.create.false',
2778 'hg.usergroup.create.false',
2778 'hg.usergroup.create.false',
2779 'hg.create.write_on_repogroup.true',
2779 'hg.create.write_on_repogroup.true',
2780 'hg.fork.repository',
2780 'hg.fork.repository',
2781 'hg.register.manual_activate',
2781 'hg.register.manual_activate',
2782 'hg.password_reset.enabled',
2782 'hg.password_reset.enabled',
2783 'hg.extern_activate.auto',
2783 'hg.extern_activate.auto',
2784 'hg.inherit_default_perms.true',
2784 'hg.inherit_default_perms.true',
2785 ]
2785 ]
2786
2786
2787 # defines which permissions are more important higher the more important
2787 # defines which permissions are more important higher the more important
2788 # Weight defines which permissions are more important.
2788 # Weight defines which permissions are more important.
2789 # The higher number the more important.
2789 # The higher number the more important.
2790 PERM_WEIGHTS = {
2790 PERM_WEIGHTS = {
2791 'repository.none': 0,
2791 'repository.none': 0,
2792 'repository.read': 1,
2792 'repository.read': 1,
2793 'repository.write': 3,
2793 'repository.write': 3,
2794 'repository.admin': 4,
2794 'repository.admin': 4,
2795
2795
2796 'group.none': 0,
2796 'group.none': 0,
2797 'group.read': 1,
2797 'group.read': 1,
2798 'group.write': 3,
2798 'group.write': 3,
2799 'group.admin': 4,
2799 'group.admin': 4,
2800
2800
2801 'usergroup.none': 0,
2801 'usergroup.none': 0,
2802 'usergroup.read': 1,
2802 'usergroup.read': 1,
2803 'usergroup.write': 3,
2803 'usergroup.write': 3,
2804 'usergroup.admin': 4,
2804 'usergroup.admin': 4,
2805
2805
2806 'branch.none': 0,
2806 'branch.none': 0,
2807 'branch.merge': 1,
2807 'branch.merge': 1,
2808 'branch.push': 3,
2808 'branch.push': 3,
2809 'branch.push_force': 4,
2809 'branch.push_force': 4,
2810
2810
2811 'hg.repogroup.create.false': 0,
2811 'hg.repogroup.create.false': 0,
2812 'hg.repogroup.create.true': 1,
2812 'hg.repogroup.create.true': 1,
2813
2813
2814 'hg.usergroup.create.false': 0,
2814 'hg.usergroup.create.false': 0,
2815 'hg.usergroup.create.true': 1,
2815 'hg.usergroup.create.true': 1,
2816
2816
2817 'hg.fork.none': 0,
2817 'hg.fork.none': 0,
2818 'hg.fork.repository': 1,
2818 'hg.fork.repository': 1,
2819 'hg.create.none': 0,
2819 'hg.create.none': 0,
2820 'hg.create.repository': 1
2820 'hg.create.repository': 1
2821 }
2821 }
2822
2822
2823 permission_id = Column("permission_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
2823 permission_id = Column("permission_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
2824 permission_name = Column("permission_name", String(255), nullable=True, unique=None, default=None)
2824 permission_name = Column("permission_name", String(255), nullable=True, unique=None, default=None)
2825 permission_longname = Column("permission_longname", String(255), nullable=True, unique=None, default=None)
2825 permission_longname = Column("permission_longname", String(255), nullable=True, unique=None, default=None)
2826
2826
2827 def __unicode__(self):
2827 def __unicode__(self):
2828 return u"<%s('%s:%s')>" % (
2828 return u"<%s('%s:%s')>" % (
2829 self.__class__.__name__, self.permission_id, self.permission_name
2829 self.__class__.__name__, self.permission_id, self.permission_name
2830 )
2830 )
2831
2831
2832 @classmethod
2832 @classmethod
2833 def get_by_key(cls, key):
2833 def get_by_key(cls, key):
2834 return cls.query().filter(cls.permission_name == key).scalar()
2834 return cls.query().filter(cls.permission_name == key).scalar()
2835
2835
2836 @classmethod
2836 @classmethod
2837 def get_default_repo_perms(cls, user_id, repo_id=None):
2837 def get_default_repo_perms(cls, user_id, repo_id=None):
2838 q = Session().query(UserRepoToPerm, Repository, Permission)\
2838 q = Session().query(UserRepoToPerm, Repository, Permission)\
2839 .join((Permission, UserRepoToPerm.permission_id == Permission.permission_id))\
2839 .join((Permission, UserRepoToPerm.permission_id == Permission.permission_id))\
2840 .join((Repository, UserRepoToPerm.repository_id == Repository.repo_id))\
2840 .join((Repository, UserRepoToPerm.repository_id == Repository.repo_id))\
2841 .filter(UserRepoToPerm.user_id == user_id)
2841 .filter(UserRepoToPerm.user_id == user_id)
2842 if repo_id:
2842 if repo_id:
2843 q = q.filter(UserRepoToPerm.repository_id == repo_id)
2843 q = q.filter(UserRepoToPerm.repository_id == repo_id)
2844 return q.all()
2844 return q.all()
2845
2845
2846 @classmethod
2846 @classmethod
2847 def get_default_repo_branch_perms(cls, user_id, repo_id=None):
2847 def get_default_repo_branch_perms(cls, user_id, repo_id=None):
2848 q = Session().query(UserToRepoBranchPermission, UserRepoToPerm, Permission) \
2848 q = Session().query(UserToRepoBranchPermission, UserRepoToPerm, Permission) \
2849 .join(
2849 .join(
2850 Permission,
2850 Permission,
2851 UserToRepoBranchPermission.permission_id == Permission.permission_id) \
2851 UserToRepoBranchPermission.permission_id == Permission.permission_id) \
2852 .join(
2852 .join(
2853 UserRepoToPerm,
2853 UserRepoToPerm,
2854 UserToRepoBranchPermission.rule_to_perm_id == UserRepoToPerm.repo_to_perm_id) \
2854 UserToRepoBranchPermission.rule_to_perm_id == UserRepoToPerm.repo_to_perm_id) \
2855 .filter(UserRepoToPerm.user_id == user_id)
2855 .filter(UserRepoToPerm.user_id == user_id)
2856
2856
2857 if repo_id:
2857 if repo_id:
2858 q = q.filter(UserToRepoBranchPermission.repository_id == repo_id)
2858 q = q.filter(UserToRepoBranchPermission.repository_id == repo_id)
2859 return q.order_by(UserToRepoBranchPermission.rule_order).all()
2859 return q.order_by(UserToRepoBranchPermission.rule_order).all()
2860
2860
2861 @classmethod
2861 @classmethod
2862 def get_default_repo_perms_from_user_group(cls, user_id, repo_id=None):
2862 def get_default_repo_perms_from_user_group(cls, user_id, repo_id=None):
2863 q = Session().query(UserGroupRepoToPerm, Repository, Permission)\
2863 q = Session().query(UserGroupRepoToPerm, Repository, Permission)\
2864 .join(
2864 .join(
2865 Permission,
2865 Permission,
2866 UserGroupRepoToPerm.permission_id == Permission.permission_id)\
2866 UserGroupRepoToPerm.permission_id == Permission.permission_id)\
2867 .join(
2867 .join(
2868 Repository,
2868 Repository,
2869 UserGroupRepoToPerm.repository_id == Repository.repo_id)\
2869 UserGroupRepoToPerm.repository_id == Repository.repo_id)\
2870 .join(
2870 .join(
2871 UserGroup,
2871 UserGroup,
2872 UserGroupRepoToPerm.users_group_id ==
2872 UserGroupRepoToPerm.users_group_id ==
2873 UserGroup.users_group_id)\
2873 UserGroup.users_group_id)\
2874 .join(
2874 .join(
2875 UserGroupMember,
2875 UserGroupMember,
2876 UserGroupRepoToPerm.users_group_id ==
2876 UserGroupRepoToPerm.users_group_id ==
2877 UserGroupMember.users_group_id)\
2877 UserGroupMember.users_group_id)\
2878 .filter(
2878 .filter(
2879 UserGroupMember.user_id == user_id,
2879 UserGroupMember.user_id == user_id,
2880 UserGroup.users_group_active == true())
2880 UserGroup.users_group_active == true())
2881 if repo_id:
2881 if repo_id:
2882 q = q.filter(UserGroupRepoToPerm.repository_id == repo_id)
2882 q = q.filter(UserGroupRepoToPerm.repository_id == repo_id)
2883 return q.all()
2883 return q.all()
2884
2884
2885 @classmethod
2885 @classmethod
2886 def get_default_repo_branch_perms_from_user_group(cls, user_id, repo_id=None):
2886 def get_default_repo_branch_perms_from_user_group(cls, user_id, repo_id=None):
2887 q = Session().query(UserGroupToRepoBranchPermission, UserGroupRepoToPerm, Permission) \
2887 q = Session().query(UserGroupToRepoBranchPermission, UserGroupRepoToPerm, Permission) \
2888 .join(
2888 .join(
2889 Permission,
2889 Permission,
2890 UserGroupToRepoBranchPermission.permission_id == Permission.permission_id) \
2890 UserGroupToRepoBranchPermission.permission_id == Permission.permission_id) \
2891 .join(
2891 .join(
2892 UserGroupRepoToPerm,
2892 UserGroupRepoToPerm,
2893 UserGroupToRepoBranchPermission.rule_to_perm_id == UserGroupRepoToPerm.users_group_to_perm_id) \
2893 UserGroupToRepoBranchPermission.rule_to_perm_id == UserGroupRepoToPerm.users_group_to_perm_id) \
2894 .join(
2894 .join(
2895 UserGroup,
2895 UserGroup,
2896 UserGroupRepoToPerm.users_group_id == UserGroup.users_group_id) \
2896 UserGroupRepoToPerm.users_group_id == UserGroup.users_group_id) \
2897 .join(
2897 .join(
2898 UserGroupMember,
2898 UserGroupMember,
2899 UserGroupRepoToPerm.users_group_id == UserGroupMember.users_group_id) \
2899 UserGroupRepoToPerm.users_group_id == UserGroupMember.users_group_id) \
2900 .filter(
2900 .filter(
2901 UserGroupMember.user_id == user_id,
2901 UserGroupMember.user_id == user_id,
2902 UserGroup.users_group_active == true())
2902 UserGroup.users_group_active == true())
2903
2903
2904 if repo_id:
2904 if repo_id:
2905 q = q.filter(UserGroupToRepoBranchPermission.repository_id == repo_id)
2905 q = q.filter(UserGroupToRepoBranchPermission.repository_id == repo_id)
2906 return q.order_by(UserGroupToRepoBranchPermission.rule_order).all()
2906 return q.order_by(UserGroupToRepoBranchPermission.rule_order).all()
2907
2907
2908 @classmethod
2908 @classmethod
2909 def get_default_group_perms(cls, user_id, repo_group_id=None):
2909 def get_default_group_perms(cls, user_id, repo_group_id=None):
2910 q = Session().query(UserRepoGroupToPerm, RepoGroup, Permission)\
2910 q = Session().query(UserRepoGroupToPerm, RepoGroup, Permission)\
2911 .join(
2911 .join(
2912 Permission,
2912 Permission,
2913 UserRepoGroupToPerm.permission_id == Permission.permission_id)\
2913 UserRepoGroupToPerm.permission_id == Permission.permission_id)\
2914 .join(
2914 .join(
2915 RepoGroup,
2915 RepoGroup,
2916 UserRepoGroupToPerm.group_id == RepoGroup.group_id)\
2916 UserRepoGroupToPerm.group_id == RepoGroup.group_id)\
2917 .filter(UserRepoGroupToPerm.user_id == user_id)
2917 .filter(UserRepoGroupToPerm.user_id == user_id)
2918 if repo_group_id:
2918 if repo_group_id:
2919 q = q.filter(UserRepoGroupToPerm.group_id == repo_group_id)
2919 q = q.filter(UserRepoGroupToPerm.group_id == repo_group_id)
2920 return q.all()
2920 return q.all()
2921
2921
2922 @classmethod
2922 @classmethod
2923 def get_default_group_perms_from_user_group(
2923 def get_default_group_perms_from_user_group(
2924 cls, user_id, repo_group_id=None):
2924 cls, user_id, repo_group_id=None):
2925 q = Session().query(UserGroupRepoGroupToPerm, RepoGroup, Permission)\
2925 q = Session().query(UserGroupRepoGroupToPerm, RepoGroup, Permission)\
2926 .join(
2926 .join(
2927 Permission,
2927 Permission,
2928 UserGroupRepoGroupToPerm.permission_id ==
2928 UserGroupRepoGroupToPerm.permission_id ==
2929 Permission.permission_id)\
2929 Permission.permission_id)\
2930 .join(
2930 .join(
2931 RepoGroup,
2931 RepoGroup,
2932 UserGroupRepoGroupToPerm.group_id == RepoGroup.group_id)\
2932 UserGroupRepoGroupToPerm.group_id == RepoGroup.group_id)\
2933 .join(
2933 .join(
2934 UserGroup,
2934 UserGroup,
2935 UserGroupRepoGroupToPerm.users_group_id ==
2935 UserGroupRepoGroupToPerm.users_group_id ==
2936 UserGroup.users_group_id)\
2936 UserGroup.users_group_id)\
2937 .join(
2937 .join(
2938 UserGroupMember,
2938 UserGroupMember,
2939 UserGroupRepoGroupToPerm.users_group_id ==
2939 UserGroupRepoGroupToPerm.users_group_id ==
2940 UserGroupMember.users_group_id)\
2940 UserGroupMember.users_group_id)\
2941 .filter(
2941 .filter(
2942 UserGroupMember.user_id == user_id,
2942 UserGroupMember.user_id == user_id,
2943 UserGroup.users_group_active == true())
2943 UserGroup.users_group_active == true())
2944 if repo_group_id:
2944 if repo_group_id:
2945 q = q.filter(UserGroupRepoGroupToPerm.group_id == repo_group_id)
2945 q = q.filter(UserGroupRepoGroupToPerm.group_id == repo_group_id)
2946 return q.all()
2946 return q.all()
2947
2947
2948 @classmethod
2948 @classmethod
2949 def get_default_user_group_perms(cls, user_id, user_group_id=None):
2949 def get_default_user_group_perms(cls, user_id, user_group_id=None):
2950 q = Session().query(UserUserGroupToPerm, UserGroup, Permission)\
2950 q = Session().query(UserUserGroupToPerm, UserGroup, Permission)\
2951 .join((Permission, UserUserGroupToPerm.permission_id == Permission.permission_id))\
2951 .join((Permission, UserUserGroupToPerm.permission_id == Permission.permission_id))\
2952 .join((UserGroup, UserUserGroupToPerm.user_group_id == UserGroup.users_group_id))\
2952 .join((UserGroup, UserUserGroupToPerm.user_group_id == UserGroup.users_group_id))\
2953 .filter(UserUserGroupToPerm.user_id == user_id)
2953 .filter(UserUserGroupToPerm.user_id == user_id)
2954 if user_group_id:
2954 if user_group_id:
2955 q = q.filter(UserUserGroupToPerm.user_group_id == user_group_id)
2955 q = q.filter(UserUserGroupToPerm.user_group_id == user_group_id)
2956 return q.all()
2956 return q.all()
2957
2957
2958 @classmethod
2958 @classmethod
2959 def get_default_user_group_perms_from_user_group(
2959 def get_default_user_group_perms_from_user_group(
2960 cls, user_id, user_group_id=None):
2960 cls, user_id, user_group_id=None):
2961 TargetUserGroup = aliased(UserGroup, name='target_user_group')
2961 TargetUserGroup = aliased(UserGroup, name='target_user_group')
2962 q = Session().query(UserGroupUserGroupToPerm, UserGroup, Permission)\
2962 q = Session().query(UserGroupUserGroupToPerm, UserGroup, Permission)\
2963 .join(
2963 .join(
2964 Permission,
2964 Permission,
2965 UserGroupUserGroupToPerm.permission_id ==
2965 UserGroupUserGroupToPerm.permission_id ==
2966 Permission.permission_id)\
2966 Permission.permission_id)\
2967 .join(
2967 .join(
2968 TargetUserGroup,
2968 TargetUserGroup,
2969 UserGroupUserGroupToPerm.target_user_group_id ==
2969 UserGroupUserGroupToPerm.target_user_group_id ==
2970 TargetUserGroup.users_group_id)\
2970 TargetUserGroup.users_group_id)\
2971 .join(
2971 .join(
2972 UserGroup,
2972 UserGroup,
2973 UserGroupUserGroupToPerm.user_group_id ==
2973 UserGroupUserGroupToPerm.user_group_id ==
2974 UserGroup.users_group_id)\
2974 UserGroup.users_group_id)\
2975 .join(
2975 .join(
2976 UserGroupMember,
2976 UserGroupMember,
2977 UserGroupUserGroupToPerm.user_group_id ==
2977 UserGroupUserGroupToPerm.user_group_id ==
2978 UserGroupMember.users_group_id)\
2978 UserGroupMember.users_group_id)\
2979 .filter(
2979 .filter(
2980 UserGroupMember.user_id == user_id,
2980 UserGroupMember.user_id == user_id,
2981 UserGroup.users_group_active == true())
2981 UserGroup.users_group_active == true())
2982 if user_group_id:
2982 if user_group_id:
2983 q = q.filter(
2983 q = q.filter(
2984 UserGroupUserGroupToPerm.user_group_id == user_group_id)
2984 UserGroupUserGroupToPerm.user_group_id == user_group_id)
2985
2985
2986 return q.all()
2986 return q.all()
2987
2987
2988
2988
2989 class UserRepoToPerm(Base, BaseModel):
2989 class UserRepoToPerm(Base, BaseModel):
2990 __tablename__ = 'repo_to_perm'
2990 __tablename__ = 'repo_to_perm'
2991 __table_args__ = (
2991 __table_args__ = (
2992 UniqueConstraint('user_id', 'repository_id', 'permission_id'),
2992 UniqueConstraint('user_id', 'repository_id', 'permission_id'),
2993 base_table_args
2993 base_table_args
2994 )
2994 )
2995
2995
2996 repo_to_perm_id = Column("repo_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
2996 repo_to_perm_id = Column("repo_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
2997 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
2997 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
2998 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
2998 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
2999 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
2999 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
3000
3000
3001 user = relationship('User')
3001 user = relationship('User')
3002 repository = relationship('Repository')
3002 repository = relationship('Repository')
3003 permission = relationship('Permission')
3003 permission = relationship('Permission')
3004
3004
3005 branch_perm_entry = relationship('UserToRepoBranchPermission', cascade="all, delete, delete-orphan", lazy='joined')
3005 branch_perm_entry = relationship('UserToRepoBranchPermission', cascade="all, delete, delete-orphan", lazy='joined')
3006
3006
3007 @classmethod
3007 @classmethod
3008 def create(cls, user, repository, permission):
3008 def create(cls, user, repository, permission):
3009 n = cls()
3009 n = cls()
3010 n.user = user
3010 n.user = user
3011 n.repository = repository
3011 n.repository = repository
3012 n.permission = permission
3012 n.permission = permission
3013 Session().add(n)
3013 Session().add(n)
3014 return n
3014 return n
3015
3015
3016 def __unicode__(self):
3016 def __unicode__(self):
3017 return u'<%s => %s >' % (self.user, self.repository)
3017 return u'<%s => %s >' % (self.user, self.repository)
3018
3018
3019
3019
3020 class UserUserGroupToPerm(Base, BaseModel):
3020 class UserUserGroupToPerm(Base, BaseModel):
3021 __tablename__ = 'user_user_group_to_perm'
3021 __tablename__ = 'user_user_group_to_perm'
3022 __table_args__ = (
3022 __table_args__ = (
3023 UniqueConstraint('user_id', 'user_group_id', 'permission_id'),
3023 UniqueConstraint('user_id', 'user_group_id', 'permission_id'),
3024 base_table_args
3024 base_table_args
3025 )
3025 )
3026
3026
3027 user_user_group_to_perm_id = Column("user_user_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3027 user_user_group_to_perm_id = Column("user_user_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3028 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3028 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3029 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3029 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3030 user_group_id = Column("user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3030 user_group_id = Column("user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3031
3031
3032 user = relationship('User')
3032 user = relationship('User')
3033 user_group = relationship('UserGroup')
3033 user_group = relationship('UserGroup')
3034 permission = relationship('Permission')
3034 permission = relationship('Permission')
3035
3035
3036 @classmethod
3036 @classmethod
3037 def create(cls, user, user_group, permission):
3037 def create(cls, user, user_group, permission):
3038 n = cls()
3038 n = cls()
3039 n.user = user
3039 n.user = user
3040 n.user_group = user_group
3040 n.user_group = user_group
3041 n.permission = permission
3041 n.permission = permission
3042 Session().add(n)
3042 Session().add(n)
3043 return n
3043 return n
3044
3044
3045 def __unicode__(self):
3045 def __unicode__(self):
3046 return u'<%s => %s >' % (self.user, self.user_group)
3046 return u'<%s => %s >' % (self.user, self.user_group)
3047
3047
3048
3048
3049 class UserToPerm(Base, BaseModel):
3049 class UserToPerm(Base, BaseModel):
3050 __tablename__ = 'user_to_perm'
3050 __tablename__ = 'user_to_perm'
3051 __table_args__ = (
3051 __table_args__ = (
3052 UniqueConstraint('user_id', 'permission_id'),
3052 UniqueConstraint('user_id', 'permission_id'),
3053 base_table_args
3053 base_table_args
3054 )
3054 )
3055
3055
3056 user_to_perm_id = Column("user_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3056 user_to_perm_id = Column("user_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3057 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3057 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3058 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3058 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3059
3059
3060 user = relationship('User')
3060 user = relationship('User')
3061 permission = relationship('Permission', lazy='joined')
3061 permission = relationship('Permission', lazy='joined')
3062
3062
3063 def __unicode__(self):
3063 def __unicode__(self):
3064 return u'<%s => %s >' % (self.user, self.permission)
3064 return u'<%s => %s >' % (self.user, self.permission)
3065
3065
3066
3066
3067 class UserGroupRepoToPerm(Base, BaseModel):
3067 class UserGroupRepoToPerm(Base, BaseModel):
3068 __tablename__ = 'users_group_repo_to_perm'
3068 __tablename__ = 'users_group_repo_to_perm'
3069 __table_args__ = (
3069 __table_args__ = (
3070 UniqueConstraint('repository_id', 'users_group_id', 'permission_id'),
3070 UniqueConstraint('repository_id', 'users_group_id', 'permission_id'),
3071 base_table_args
3071 base_table_args
3072 )
3072 )
3073
3073
3074 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3074 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3075 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3075 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3076 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3076 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3077 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
3077 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
3078
3078
3079 users_group = relationship('UserGroup')
3079 users_group = relationship('UserGroup')
3080 permission = relationship('Permission')
3080 permission = relationship('Permission')
3081 repository = relationship('Repository')
3081 repository = relationship('Repository')
3082 user_group_branch_perms = relationship('UserGroupToRepoBranchPermission', cascade='all')
3082
3083
3083 @classmethod
3084 @classmethod
3084 def create(cls, users_group, repository, permission):
3085 def create(cls, users_group, repository, permission):
3085 n = cls()
3086 n = cls()
3086 n.users_group = users_group
3087 n.users_group = users_group
3087 n.repository = repository
3088 n.repository = repository
3088 n.permission = permission
3089 n.permission = permission
3089 Session().add(n)
3090 Session().add(n)
3090 return n
3091 return n
3091
3092
3092 def __unicode__(self):
3093 def __unicode__(self):
3093 return u'<UserGroupRepoToPerm:%s => %s >' % (self.users_group, self.repository)
3094 return u'<UserGroupRepoToPerm:%s => %s >' % (self.users_group, self.repository)
3094
3095
3095
3096
3096 class UserGroupUserGroupToPerm(Base, BaseModel):
3097 class UserGroupUserGroupToPerm(Base, BaseModel):
3097 __tablename__ = 'user_group_user_group_to_perm'
3098 __tablename__ = 'user_group_user_group_to_perm'
3098 __table_args__ = (
3099 __table_args__ = (
3099 UniqueConstraint('target_user_group_id', 'user_group_id', 'permission_id'),
3100 UniqueConstraint('target_user_group_id', 'user_group_id', 'permission_id'),
3100 CheckConstraint('target_user_group_id != user_group_id'),
3101 CheckConstraint('target_user_group_id != user_group_id'),
3101 base_table_args
3102 base_table_args
3102 )
3103 )
3103
3104
3104 user_group_user_group_to_perm_id = Column("user_group_user_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3105 user_group_user_group_to_perm_id = Column("user_group_user_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3105 target_user_group_id = Column("target_user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3106 target_user_group_id = Column("target_user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3106 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3107 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3107 user_group_id = Column("user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3108 user_group_id = Column("user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3108
3109
3109 target_user_group = relationship('UserGroup', primaryjoin='UserGroupUserGroupToPerm.target_user_group_id==UserGroup.users_group_id')
3110 target_user_group = relationship('UserGroup', primaryjoin='UserGroupUserGroupToPerm.target_user_group_id==UserGroup.users_group_id')
3110 user_group = relationship('UserGroup', primaryjoin='UserGroupUserGroupToPerm.user_group_id==UserGroup.users_group_id')
3111 user_group = relationship('UserGroup', primaryjoin='UserGroupUserGroupToPerm.user_group_id==UserGroup.users_group_id')
3111 permission = relationship('Permission')
3112 permission = relationship('Permission')
3112
3113
3113 @classmethod
3114 @classmethod
3114 def create(cls, target_user_group, user_group, permission):
3115 def create(cls, target_user_group, user_group, permission):
3115 n = cls()
3116 n = cls()
3116 n.target_user_group = target_user_group
3117 n.target_user_group = target_user_group
3117 n.user_group = user_group
3118 n.user_group = user_group
3118 n.permission = permission
3119 n.permission = permission
3119 Session().add(n)
3120 Session().add(n)
3120 return n
3121 return n
3121
3122
3122 def __unicode__(self):
3123 def __unicode__(self):
3123 return u'<UserGroupUserGroup:%s => %s >' % (self.target_user_group, self.user_group)
3124 return u'<UserGroupUserGroup:%s => %s >' % (self.target_user_group, self.user_group)
3124
3125
3125
3126
3126 class UserGroupToPerm(Base, BaseModel):
3127 class UserGroupToPerm(Base, BaseModel):
3127 __tablename__ = 'users_group_to_perm'
3128 __tablename__ = 'users_group_to_perm'
3128 __table_args__ = (
3129 __table_args__ = (
3129 UniqueConstraint('users_group_id', 'permission_id',),
3130 UniqueConstraint('users_group_id', 'permission_id',),
3130 base_table_args
3131 base_table_args
3131 )
3132 )
3132
3133
3133 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3134 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3134 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3135 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3135 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3136 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3136
3137
3137 users_group = relationship('UserGroup')
3138 users_group = relationship('UserGroup')
3138 permission = relationship('Permission')
3139 permission = relationship('Permission')
3139
3140
3140
3141
3141 class UserRepoGroupToPerm(Base, BaseModel):
3142 class UserRepoGroupToPerm(Base, BaseModel):
3142 __tablename__ = 'user_repo_group_to_perm'
3143 __tablename__ = 'user_repo_group_to_perm'
3143 __table_args__ = (
3144 __table_args__ = (
3144 UniqueConstraint('user_id', 'group_id', 'permission_id'),
3145 UniqueConstraint('user_id', 'group_id', 'permission_id'),
3145 base_table_args
3146 base_table_args
3146 )
3147 )
3147
3148
3148 group_to_perm_id = Column("group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3149 group_to_perm_id = Column("group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3149 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3150 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3150 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=False, unique=None, default=None)
3151 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=False, unique=None, default=None)
3151 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3152 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3152
3153
3153 user = relationship('User')
3154 user = relationship('User')
3154 group = relationship('RepoGroup')
3155 group = relationship('RepoGroup')
3155 permission = relationship('Permission')
3156 permission = relationship('Permission')
3156
3157
3157 @classmethod
3158 @classmethod
3158 def create(cls, user, repository_group, permission):
3159 def create(cls, user, repository_group, permission):
3159 n = cls()
3160 n = cls()
3160 n.user = user
3161 n.user = user
3161 n.group = repository_group
3162 n.group = repository_group
3162 n.permission = permission
3163 n.permission = permission
3163 Session().add(n)
3164 Session().add(n)
3164 return n
3165 return n
3165
3166
3166
3167
3167 class UserGroupRepoGroupToPerm(Base, BaseModel):
3168 class UserGroupRepoGroupToPerm(Base, BaseModel):
3168 __tablename__ = 'users_group_repo_group_to_perm'
3169 __tablename__ = 'users_group_repo_group_to_perm'
3169 __table_args__ = (
3170 __table_args__ = (
3170 UniqueConstraint('users_group_id', 'group_id'),
3171 UniqueConstraint('users_group_id', 'group_id'),
3171 base_table_args
3172 base_table_args
3172 )
3173 )
3173
3174
3174 users_group_repo_group_to_perm_id = Column("users_group_repo_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3175 users_group_repo_group_to_perm_id = Column("users_group_repo_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3175 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3176 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3176 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=False, unique=None, default=None)
3177 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=False, unique=None, default=None)
3177 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3178 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3178
3179
3179 users_group = relationship('UserGroup')
3180 users_group = relationship('UserGroup')
3180 permission = relationship('Permission')
3181 permission = relationship('Permission')
3181 group = relationship('RepoGroup')
3182 group = relationship('RepoGroup')
3182
3183
3183 @classmethod
3184 @classmethod
3184 def create(cls, user_group, repository_group, permission):
3185 def create(cls, user_group, repository_group, permission):
3185 n = cls()
3186 n = cls()
3186 n.users_group = user_group
3187 n.users_group = user_group
3187 n.group = repository_group
3188 n.group = repository_group
3188 n.permission = permission
3189 n.permission = permission
3189 Session().add(n)
3190 Session().add(n)
3190 return n
3191 return n
3191
3192
3192 def __unicode__(self):
3193 def __unicode__(self):
3193 return u'<UserGroupRepoGroupToPerm:%s => %s >' % (self.users_group, self.group)
3194 return u'<UserGroupRepoGroupToPerm:%s => %s >' % (self.users_group, self.group)
3194
3195
3195
3196
3196 class Statistics(Base, BaseModel):
3197 class Statistics(Base, BaseModel):
3197 __tablename__ = 'statistics'
3198 __tablename__ = 'statistics'
3198 __table_args__ = (
3199 __table_args__ = (
3199 base_table_args
3200 base_table_args
3200 )
3201 )
3201
3202
3202 stat_id = Column("stat_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3203 stat_id = Column("stat_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3203 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=True, default=None)
3204 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=True, default=None)
3204 stat_on_revision = Column("stat_on_revision", Integer(), nullable=False)
3205 stat_on_revision = Column("stat_on_revision", Integer(), nullable=False)
3205 commit_activity = Column("commit_activity", LargeBinary(1000000), nullable=False)#JSON data
3206 commit_activity = Column("commit_activity", LargeBinary(1000000), nullable=False)#JSON data
3206 commit_activity_combined = Column("commit_activity_combined", LargeBinary(), nullable=False)#JSON data
3207 commit_activity_combined = Column("commit_activity_combined", LargeBinary(), nullable=False)#JSON data
3207 languages = Column("languages", LargeBinary(1000000), nullable=False)#JSON data
3208 languages = Column("languages", LargeBinary(1000000), nullable=False)#JSON data
3208
3209
3209 repository = relationship('Repository', single_parent=True)
3210 repository = relationship('Repository', single_parent=True)
3210
3211
3211
3212
3212 class UserFollowing(Base, BaseModel):
3213 class UserFollowing(Base, BaseModel):
3213 __tablename__ = 'user_followings'
3214 __tablename__ = 'user_followings'
3214 __table_args__ = (
3215 __table_args__ = (
3215 UniqueConstraint('user_id', 'follows_repository_id'),
3216 UniqueConstraint('user_id', 'follows_repository_id'),
3216 UniqueConstraint('user_id', 'follows_user_id'),
3217 UniqueConstraint('user_id', 'follows_user_id'),
3217 base_table_args
3218 base_table_args
3218 )
3219 )
3219
3220
3220 user_following_id = Column("user_following_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3221 user_following_id = Column("user_following_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3221 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3222 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3222 follows_repo_id = Column("follows_repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=True, unique=None, default=None)
3223 follows_repo_id = Column("follows_repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=True, unique=None, default=None)
3223 follows_user_id = Column("follows_user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
3224 follows_user_id = Column("follows_user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
3224 follows_from = Column('follows_from', DateTime(timezone=False), nullable=True, unique=None, default=datetime.datetime.now)
3225 follows_from = Column('follows_from', DateTime(timezone=False), nullable=True, unique=None, default=datetime.datetime.now)
3225
3226
3226 user = relationship('User', primaryjoin='User.user_id==UserFollowing.user_id')
3227 user = relationship('User', primaryjoin='User.user_id==UserFollowing.user_id')
3227
3228
3228 follows_user = relationship('User', primaryjoin='User.user_id==UserFollowing.follows_user_id')
3229 follows_user = relationship('User', primaryjoin='User.user_id==UserFollowing.follows_user_id')
3229 follows_repository = relationship('Repository', order_by='Repository.repo_name')
3230 follows_repository = relationship('Repository', order_by='Repository.repo_name')
3230
3231
3231 @classmethod
3232 @classmethod
3232 def get_repo_followers(cls, repo_id):
3233 def get_repo_followers(cls, repo_id):
3233 return cls.query().filter(cls.follows_repo_id == repo_id)
3234 return cls.query().filter(cls.follows_repo_id == repo_id)
3234
3235
3235
3236
3236 class CacheKey(Base, BaseModel):
3237 class CacheKey(Base, BaseModel):
3237 __tablename__ = 'cache_invalidation'
3238 __tablename__ = 'cache_invalidation'
3238 __table_args__ = (
3239 __table_args__ = (
3239 UniqueConstraint('cache_key'),
3240 UniqueConstraint('cache_key'),
3240 Index('key_idx', 'cache_key'),
3241 Index('key_idx', 'cache_key'),
3241 base_table_args,
3242 base_table_args,
3242 )
3243 )
3243
3244
3244 CACHE_TYPE_FEED = 'FEED'
3245 CACHE_TYPE_FEED = 'FEED'
3245 CACHE_TYPE_README = 'README'
3246 CACHE_TYPE_README = 'README'
3246 # namespaces used to register process/thread aware caches
3247 # namespaces used to register process/thread aware caches
3247 REPO_INVALIDATION_NAMESPACE = 'repo_cache:{repo_id}'
3248 REPO_INVALIDATION_NAMESPACE = 'repo_cache:{repo_id}'
3248 SETTINGS_INVALIDATION_NAMESPACE = 'system_settings'
3249 SETTINGS_INVALIDATION_NAMESPACE = 'system_settings'
3249
3250
3250 cache_id = Column("cache_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3251 cache_id = Column("cache_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3251 cache_key = Column("cache_key", String(255), nullable=True, unique=None, default=None)
3252 cache_key = Column("cache_key", String(255), nullable=True, unique=None, default=None)
3252 cache_args = Column("cache_args", String(255), nullable=True, unique=None, default=None)
3253 cache_args = Column("cache_args", String(255), nullable=True, unique=None, default=None)
3253 cache_active = Column("cache_active", Boolean(), nullable=True, unique=None, default=False)
3254 cache_active = Column("cache_active", Boolean(), nullable=True, unique=None, default=False)
3254
3255
3255 def __init__(self, cache_key, cache_args=''):
3256 def __init__(self, cache_key, cache_args=''):
3256 self.cache_key = cache_key
3257 self.cache_key = cache_key
3257 self.cache_args = cache_args
3258 self.cache_args = cache_args
3258 self.cache_active = False
3259 self.cache_active = False
3259
3260
3260 def __unicode__(self):
3261 def __unicode__(self):
3261 return u"<%s('%s:%s[%s]')>" % (
3262 return u"<%s('%s:%s[%s]')>" % (
3262 self.__class__.__name__,
3263 self.__class__.__name__,
3263 self.cache_id, self.cache_key, self.cache_active)
3264 self.cache_id, self.cache_key, self.cache_active)
3264
3265
3265 def _cache_key_partition(self):
3266 def _cache_key_partition(self):
3266 prefix, repo_name, suffix = self.cache_key.partition(self.cache_args)
3267 prefix, repo_name, suffix = self.cache_key.partition(self.cache_args)
3267 return prefix, repo_name, suffix
3268 return prefix, repo_name, suffix
3268
3269
3269 def get_prefix(self):
3270 def get_prefix(self):
3270 """
3271 """
3271 Try to extract prefix from existing cache key. The key could consist
3272 Try to extract prefix from existing cache key. The key could consist
3272 of prefix, repo_name, suffix
3273 of prefix, repo_name, suffix
3273 """
3274 """
3274 # this returns prefix, repo_name, suffix
3275 # this returns prefix, repo_name, suffix
3275 return self._cache_key_partition()[0]
3276 return self._cache_key_partition()[0]
3276
3277
3277 def get_suffix(self):
3278 def get_suffix(self):
3278 """
3279 """
3279 get suffix that might have been used in _get_cache_key to
3280 get suffix that might have been used in _get_cache_key to
3280 generate self.cache_key. Only used for informational purposes
3281 generate self.cache_key. Only used for informational purposes
3281 in repo_edit.mako.
3282 in repo_edit.mako.
3282 """
3283 """
3283 # prefix, repo_name, suffix
3284 # prefix, repo_name, suffix
3284 return self._cache_key_partition()[2]
3285 return self._cache_key_partition()[2]
3285
3286
3286 @classmethod
3287 @classmethod
3287 def delete_all_cache(cls):
3288 def delete_all_cache(cls):
3288 """
3289 """
3289 Delete all cache keys from database.
3290 Delete all cache keys from database.
3290 Should only be run when all instances are down and all entries
3291 Should only be run when all instances are down and all entries
3291 thus stale.
3292 thus stale.
3292 """
3293 """
3293 cls.query().delete()
3294 cls.query().delete()
3294 Session().commit()
3295 Session().commit()
3295
3296
3296 @classmethod
3297 @classmethod
3297 def set_invalidate(cls, cache_uid, delete=False):
3298 def set_invalidate(cls, cache_uid, delete=False):
3298 """
3299 """
3299 Mark all caches of a repo as invalid in the database.
3300 Mark all caches of a repo as invalid in the database.
3300 """
3301 """
3301
3302
3302 try:
3303 try:
3303 qry = Session().query(cls).filter(cls.cache_args == cache_uid)
3304 qry = Session().query(cls).filter(cls.cache_args == cache_uid)
3304 if delete:
3305 if delete:
3305 qry.delete()
3306 qry.delete()
3306 log.debug('cache objects deleted for cache args %s',
3307 log.debug('cache objects deleted for cache args %s',
3307 safe_str(cache_uid))
3308 safe_str(cache_uid))
3308 else:
3309 else:
3309 qry.update({"cache_active": False})
3310 qry.update({"cache_active": False})
3310 log.debug('cache objects marked as invalid for cache args %s',
3311 log.debug('cache objects marked as invalid for cache args %s',
3311 safe_str(cache_uid))
3312 safe_str(cache_uid))
3312
3313
3313 Session().commit()
3314 Session().commit()
3314 except Exception:
3315 except Exception:
3315 log.exception(
3316 log.exception(
3316 'Cache key invalidation failed for cache args %s',
3317 'Cache key invalidation failed for cache args %s',
3317 safe_str(cache_uid))
3318 safe_str(cache_uid))
3318 Session().rollback()
3319 Session().rollback()
3319
3320
3320 @classmethod
3321 @classmethod
3321 def get_active_cache(cls, cache_key):
3322 def get_active_cache(cls, cache_key):
3322 inv_obj = cls.query().filter(cls.cache_key == cache_key).scalar()
3323 inv_obj = cls.query().filter(cls.cache_key == cache_key).scalar()
3323 if inv_obj:
3324 if inv_obj:
3324 return inv_obj
3325 return inv_obj
3325 return None
3326 return None
3326
3327
3327
3328
3328 class ChangesetComment(Base, BaseModel):
3329 class ChangesetComment(Base, BaseModel):
3329 __tablename__ = 'changeset_comments'
3330 __tablename__ = 'changeset_comments'
3330 __table_args__ = (
3331 __table_args__ = (
3331 Index('cc_revision_idx', 'revision'),
3332 Index('cc_revision_idx', 'revision'),
3332 base_table_args,
3333 base_table_args,
3333 )
3334 )
3334
3335
3335 COMMENT_OUTDATED = u'comment_outdated'
3336 COMMENT_OUTDATED = u'comment_outdated'
3336 COMMENT_TYPE_NOTE = u'note'
3337 COMMENT_TYPE_NOTE = u'note'
3337 COMMENT_TYPE_TODO = u'todo'
3338 COMMENT_TYPE_TODO = u'todo'
3338 COMMENT_TYPES = [COMMENT_TYPE_NOTE, COMMENT_TYPE_TODO]
3339 COMMENT_TYPES = [COMMENT_TYPE_NOTE, COMMENT_TYPE_TODO]
3339
3340
3340 comment_id = Column('comment_id', Integer(), nullable=False, primary_key=True)
3341 comment_id = Column('comment_id', Integer(), nullable=False, primary_key=True)
3341 repo_id = Column('repo_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False)
3342 repo_id = Column('repo_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False)
3342 revision = Column('revision', String(40), nullable=True)
3343 revision = Column('revision', String(40), nullable=True)
3343 pull_request_id = Column("pull_request_id", Integer(), ForeignKey('pull_requests.pull_request_id'), nullable=True)
3344 pull_request_id = Column("pull_request_id", Integer(), ForeignKey('pull_requests.pull_request_id'), nullable=True)
3344 pull_request_version_id = Column("pull_request_version_id", Integer(), ForeignKey('pull_request_versions.pull_request_version_id'), nullable=True)
3345 pull_request_version_id = Column("pull_request_version_id", Integer(), ForeignKey('pull_request_versions.pull_request_version_id'), nullable=True)
3345 line_no = Column('line_no', Unicode(10), nullable=True)
3346 line_no = Column('line_no', Unicode(10), nullable=True)
3346 hl_lines = Column('hl_lines', Unicode(512), nullable=True)
3347 hl_lines = Column('hl_lines', Unicode(512), nullable=True)
3347 f_path = Column('f_path', Unicode(1000), nullable=True)
3348 f_path = Column('f_path', Unicode(1000), nullable=True)
3348 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=False)
3349 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=False)
3349 text = Column('text', UnicodeText().with_variant(UnicodeText(25000), 'mysql'), nullable=False)
3350 text = Column('text', UnicodeText().with_variant(UnicodeText(25000), 'mysql'), nullable=False)
3350 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
3351 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
3351 modified_at = Column('modified_at', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
3352 modified_at = Column('modified_at', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
3352 renderer = Column('renderer', Unicode(64), nullable=True)
3353 renderer = Column('renderer', Unicode(64), nullable=True)
3353 display_state = Column('display_state', Unicode(128), nullable=True)
3354 display_state = Column('display_state', Unicode(128), nullable=True)
3354
3355
3355 comment_type = Column('comment_type', Unicode(128), nullable=True, default=COMMENT_TYPE_NOTE)
3356 comment_type = Column('comment_type', Unicode(128), nullable=True, default=COMMENT_TYPE_NOTE)
3356 resolved_comment_id = Column('resolved_comment_id', Integer(), ForeignKey('changeset_comments.comment_id'), nullable=True)
3357 resolved_comment_id = Column('resolved_comment_id', Integer(), ForeignKey('changeset_comments.comment_id'), nullable=True)
3357 resolved_comment = relationship('ChangesetComment', remote_side=comment_id, backref='resolved_by')
3358 resolved_comment = relationship('ChangesetComment', remote_side=comment_id, backref='resolved_by')
3358 author = relationship('User', lazy='joined')
3359 author = relationship('User', lazy='joined')
3359 repo = relationship('Repository')
3360 repo = relationship('Repository')
3360 status_change = relationship('ChangesetStatus', cascade="all, delete, delete-orphan", lazy='joined')
3361 status_change = relationship('ChangesetStatus', cascade="all, delete, delete-orphan", lazy='joined')
3361 pull_request = relationship('PullRequest', lazy='joined')
3362 pull_request = relationship('PullRequest', lazy='joined')
3362 pull_request_version = relationship('PullRequestVersion')
3363 pull_request_version = relationship('PullRequestVersion')
3363
3364
3364 @classmethod
3365 @classmethod
3365 def get_users(cls, revision=None, pull_request_id=None):
3366 def get_users(cls, revision=None, pull_request_id=None):
3366 """
3367 """
3367 Returns user associated with this ChangesetComment. ie those
3368 Returns user associated with this ChangesetComment. ie those
3368 who actually commented
3369 who actually commented
3369
3370
3370 :param cls:
3371 :param cls:
3371 :param revision:
3372 :param revision:
3372 """
3373 """
3373 q = Session().query(User)\
3374 q = Session().query(User)\
3374 .join(ChangesetComment.author)
3375 .join(ChangesetComment.author)
3375 if revision:
3376 if revision:
3376 q = q.filter(cls.revision == revision)
3377 q = q.filter(cls.revision == revision)
3377 elif pull_request_id:
3378 elif pull_request_id:
3378 q = q.filter(cls.pull_request_id == pull_request_id)
3379 q = q.filter(cls.pull_request_id == pull_request_id)
3379 return q.all()
3380 return q.all()
3380
3381
3381 @classmethod
3382 @classmethod
3382 def get_index_from_version(cls, pr_version, versions):
3383 def get_index_from_version(cls, pr_version, versions):
3383 num_versions = [x.pull_request_version_id for x in versions]
3384 num_versions = [x.pull_request_version_id for x in versions]
3384 try:
3385 try:
3385 return num_versions.index(pr_version) +1
3386 return num_versions.index(pr_version) +1
3386 except (IndexError, ValueError):
3387 except (IndexError, ValueError):
3387 return
3388 return
3388
3389
3389 @property
3390 @property
3390 def outdated(self):
3391 def outdated(self):
3391 return self.display_state == self.COMMENT_OUTDATED
3392 return self.display_state == self.COMMENT_OUTDATED
3392
3393
3393 def outdated_at_version(self, version):
3394 def outdated_at_version(self, version):
3394 """
3395 """
3395 Checks if comment is outdated for given pull request version
3396 Checks if comment is outdated for given pull request version
3396 """
3397 """
3397 return self.outdated and self.pull_request_version_id != version
3398 return self.outdated and self.pull_request_version_id != version
3398
3399
3399 def older_than_version(self, version):
3400 def older_than_version(self, version):
3400 """
3401 """
3401 Checks if comment is made from previous version than given
3402 Checks if comment is made from previous version than given
3402 """
3403 """
3403 if version is None:
3404 if version is None:
3404 return self.pull_request_version_id is not None
3405 return self.pull_request_version_id is not None
3405
3406
3406 return self.pull_request_version_id < version
3407 return self.pull_request_version_id < version
3407
3408
3408 @property
3409 @property
3409 def resolved(self):
3410 def resolved(self):
3410 return self.resolved_by[0] if self.resolved_by else None
3411 return self.resolved_by[0] if self.resolved_by else None
3411
3412
3412 @property
3413 @property
3413 def is_todo(self):
3414 def is_todo(self):
3414 return self.comment_type == self.COMMENT_TYPE_TODO
3415 return self.comment_type == self.COMMENT_TYPE_TODO
3415
3416
3416 @property
3417 @property
3417 def is_inline(self):
3418 def is_inline(self):
3418 return self.line_no and self.f_path
3419 return self.line_no and self.f_path
3419
3420
3420 def get_index_version(self, versions):
3421 def get_index_version(self, versions):
3421 return self.get_index_from_version(
3422 return self.get_index_from_version(
3422 self.pull_request_version_id, versions)
3423 self.pull_request_version_id, versions)
3423
3424
3424 def __repr__(self):
3425 def __repr__(self):
3425 if self.comment_id:
3426 if self.comment_id:
3426 return '<DB:Comment #%s>' % self.comment_id
3427 return '<DB:Comment #%s>' % self.comment_id
3427 else:
3428 else:
3428 return '<DB:Comment at %#x>' % id(self)
3429 return '<DB:Comment at %#x>' % id(self)
3429
3430
3430 def get_api_data(self):
3431 def get_api_data(self):
3431 comment = self
3432 comment = self
3432 data = {
3433 data = {
3433 'comment_id': comment.comment_id,
3434 'comment_id': comment.comment_id,
3434 'comment_type': comment.comment_type,
3435 'comment_type': comment.comment_type,
3435 'comment_text': comment.text,
3436 'comment_text': comment.text,
3436 'comment_status': comment.status_change,
3437 'comment_status': comment.status_change,
3437 'comment_f_path': comment.f_path,
3438 'comment_f_path': comment.f_path,
3438 'comment_lineno': comment.line_no,
3439 'comment_lineno': comment.line_no,
3439 'comment_author': comment.author,
3440 'comment_author': comment.author,
3440 'comment_created_on': comment.created_on
3441 'comment_created_on': comment.created_on
3441 }
3442 }
3442 return data
3443 return data
3443
3444
3444 def __json__(self):
3445 def __json__(self):
3445 data = dict()
3446 data = dict()
3446 data.update(self.get_api_data())
3447 data.update(self.get_api_data())
3447 return data
3448 return data
3448
3449
3449
3450
3450 class ChangesetStatus(Base, BaseModel):
3451 class ChangesetStatus(Base, BaseModel):
3451 __tablename__ = 'changeset_statuses'
3452 __tablename__ = 'changeset_statuses'
3452 __table_args__ = (
3453 __table_args__ = (
3453 Index('cs_revision_idx', 'revision'),
3454 Index('cs_revision_idx', 'revision'),
3454 Index('cs_version_idx', 'version'),
3455 Index('cs_version_idx', 'version'),
3455 UniqueConstraint('repo_id', 'revision', 'version'),
3456 UniqueConstraint('repo_id', 'revision', 'version'),
3456 base_table_args
3457 base_table_args
3457 )
3458 )
3458
3459
3459 STATUS_NOT_REVIEWED = DEFAULT = 'not_reviewed'
3460 STATUS_NOT_REVIEWED = DEFAULT = 'not_reviewed'
3460 STATUS_APPROVED = 'approved'
3461 STATUS_APPROVED = 'approved'
3461 STATUS_REJECTED = 'rejected'
3462 STATUS_REJECTED = 'rejected'
3462 STATUS_UNDER_REVIEW = 'under_review'
3463 STATUS_UNDER_REVIEW = 'under_review'
3463
3464
3464 STATUSES = [
3465 STATUSES = [
3465 (STATUS_NOT_REVIEWED, _("Not Reviewed")), # (no icon) and default
3466 (STATUS_NOT_REVIEWED, _("Not Reviewed")), # (no icon) and default
3466 (STATUS_APPROVED, _("Approved")),
3467 (STATUS_APPROVED, _("Approved")),
3467 (STATUS_REJECTED, _("Rejected")),
3468 (STATUS_REJECTED, _("Rejected")),
3468 (STATUS_UNDER_REVIEW, _("Under Review")),
3469 (STATUS_UNDER_REVIEW, _("Under Review")),
3469 ]
3470 ]
3470
3471
3471 changeset_status_id = Column('changeset_status_id', Integer(), nullable=False, primary_key=True)
3472 changeset_status_id = Column('changeset_status_id', Integer(), nullable=False, primary_key=True)
3472 repo_id = Column('repo_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False)
3473 repo_id = Column('repo_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False)
3473 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None)
3474 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None)
3474 revision = Column('revision', String(40), nullable=False)
3475 revision = Column('revision', String(40), nullable=False)
3475 status = Column('status', String(128), nullable=False, default=DEFAULT)
3476 status = Column('status', String(128), nullable=False, default=DEFAULT)
3476 changeset_comment_id = Column('changeset_comment_id', Integer(), ForeignKey('changeset_comments.comment_id'))
3477 changeset_comment_id = Column('changeset_comment_id', Integer(), ForeignKey('changeset_comments.comment_id'))
3477 modified_at = Column('modified_at', DateTime(), nullable=False, default=datetime.datetime.now)
3478 modified_at = Column('modified_at', DateTime(), nullable=False, default=datetime.datetime.now)
3478 version = Column('version', Integer(), nullable=False, default=0)
3479 version = Column('version', Integer(), nullable=False, default=0)
3479 pull_request_id = Column("pull_request_id", Integer(), ForeignKey('pull_requests.pull_request_id'), nullable=True)
3480 pull_request_id = Column("pull_request_id", Integer(), ForeignKey('pull_requests.pull_request_id'), nullable=True)
3480
3481
3481 author = relationship('User', lazy='joined')
3482 author = relationship('User', lazy='joined')
3482 repo = relationship('Repository')
3483 repo = relationship('Repository')
3483 comment = relationship('ChangesetComment', lazy='joined')
3484 comment = relationship('ChangesetComment', lazy='joined')
3484 pull_request = relationship('PullRequest', lazy='joined')
3485 pull_request = relationship('PullRequest', lazy='joined')
3485
3486
3486 def __unicode__(self):
3487 def __unicode__(self):
3487 return u"<%s('%s[v%s]:%s')>" % (
3488 return u"<%s('%s[v%s]:%s')>" % (
3488 self.__class__.__name__,
3489 self.__class__.__name__,
3489 self.status, self.version, self.author
3490 self.status, self.version, self.author
3490 )
3491 )
3491
3492
3492 @classmethod
3493 @classmethod
3493 def get_status_lbl(cls, value):
3494 def get_status_lbl(cls, value):
3494 return dict(cls.STATUSES).get(value)
3495 return dict(cls.STATUSES).get(value)
3495
3496
3496 @property
3497 @property
3497 def status_lbl(self):
3498 def status_lbl(self):
3498 return ChangesetStatus.get_status_lbl(self.status)
3499 return ChangesetStatus.get_status_lbl(self.status)
3499
3500
3500 def get_api_data(self):
3501 def get_api_data(self):
3501 status = self
3502 status = self
3502 data = {
3503 data = {
3503 'status_id': status.changeset_status_id,
3504 'status_id': status.changeset_status_id,
3504 'status': status.status,
3505 'status': status.status,
3505 }
3506 }
3506 return data
3507 return data
3507
3508
3508 def __json__(self):
3509 def __json__(self):
3509 data = dict()
3510 data = dict()
3510 data.update(self.get_api_data())
3511 data.update(self.get_api_data())
3511 return data
3512 return data
3512
3513
3513
3514
3514 class _PullRequestBase(BaseModel):
3515 class _PullRequestBase(BaseModel):
3515 """
3516 """
3516 Common attributes of pull request and version entries.
3517 Common attributes of pull request and version entries.
3517 """
3518 """
3518
3519
3519 # .status values
3520 # .status values
3520 STATUS_NEW = u'new'
3521 STATUS_NEW = u'new'
3521 STATUS_OPEN = u'open'
3522 STATUS_OPEN = u'open'
3522 STATUS_CLOSED = u'closed'
3523 STATUS_CLOSED = u'closed'
3523
3524
3524 title = Column('title', Unicode(255), nullable=True)
3525 title = Column('title', Unicode(255), nullable=True)
3525 description = Column(
3526 description = Column(
3526 'description', UnicodeText().with_variant(UnicodeText(10240), 'mysql'),
3527 'description', UnicodeText().with_variant(UnicodeText(10240), 'mysql'),
3527 nullable=True)
3528 nullable=True)
3528 description_renderer = Column('description_renderer', Unicode(64), nullable=True)
3529 description_renderer = Column('description_renderer', Unicode(64), nullable=True)
3529
3530
3530 # new/open/closed status of pull request (not approve/reject/etc)
3531 # new/open/closed status of pull request (not approve/reject/etc)
3531 status = Column('status', Unicode(255), nullable=False, default=STATUS_NEW)
3532 status = Column('status', Unicode(255), nullable=False, default=STATUS_NEW)
3532 created_on = Column(
3533 created_on = Column(
3533 'created_on', DateTime(timezone=False), nullable=False,
3534 'created_on', DateTime(timezone=False), nullable=False,
3534 default=datetime.datetime.now)
3535 default=datetime.datetime.now)
3535 updated_on = Column(
3536 updated_on = Column(
3536 'updated_on', DateTime(timezone=False), nullable=False,
3537 'updated_on', DateTime(timezone=False), nullable=False,
3537 default=datetime.datetime.now)
3538 default=datetime.datetime.now)
3538
3539
3539 @declared_attr
3540 @declared_attr
3540 def user_id(cls):
3541 def user_id(cls):
3541 return Column(
3542 return Column(
3542 "user_id", Integer(), ForeignKey('users.user_id'), nullable=False,
3543 "user_id", Integer(), ForeignKey('users.user_id'), nullable=False,
3543 unique=None)
3544 unique=None)
3544
3545
3545 # 500 revisions max
3546 # 500 revisions max
3546 _revisions = Column(
3547 _revisions = Column(
3547 'revisions', UnicodeText().with_variant(UnicodeText(20500), 'mysql'))
3548 'revisions', UnicodeText().with_variant(UnicodeText(20500), 'mysql'))
3548
3549
3549 @declared_attr
3550 @declared_attr
3550 def source_repo_id(cls):
3551 def source_repo_id(cls):
3551 # TODO: dan: rename column to source_repo_id
3552 # TODO: dan: rename column to source_repo_id
3552 return Column(
3553 return Column(
3553 'org_repo_id', Integer(), ForeignKey('repositories.repo_id'),
3554 'org_repo_id', Integer(), ForeignKey('repositories.repo_id'),
3554 nullable=False)
3555 nullable=False)
3555
3556
3556 source_ref = Column('org_ref', Unicode(255), nullable=False)
3557 source_ref = Column('org_ref', Unicode(255), nullable=False)
3557
3558
3558 @declared_attr
3559 @declared_attr
3559 def target_repo_id(cls):
3560 def target_repo_id(cls):
3560 # TODO: dan: rename column to target_repo_id
3561 # TODO: dan: rename column to target_repo_id
3561 return Column(
3562 return Column(
3562 'other_repo_id', Integer(), ForeignKey('repositories.repo_id'),
3563 'other_repo_id', Integer(), ForeignKey('repositories.repo_id'),
3563 nullable=False)
3564 nullable=False)
3564
3565
3565 target_ref = Column('other_ref', Unicode(255), nullable=False)
3566 target_ref = Column('other_ref', Unicode(255), nullable=False)
3566 _shadow_merge_ref = Column('shadow_merge_ref', Unicode(255), nullable=True)
3567 _shadow_merge_ref = Column('shadow_merge_ref', Unicode(255), nullable=True)
3567
3568
3568 # TODO: dan: rename column to last_merge_source_rev
3569 # TODO: dan: rename column to last_merge_source_rev
3569 _last_merge_source_rev = Column(
3570 _last_merge_source_rev = Column(
3570 'last_merge_org_rev', String(40), nullable=True)
3571 'last_merge_org_rev', String(40), nullable=True)
3571 # TODO: dan: rename column to last_merge_target_rev
3572 # TODO: dan: rename column to last_merge_target_rev
3572 _last_merge_target_rev = Column(
3573 _last_merge_target_rev = Column(
3573 'last_merge_other_rev', String(40), nullable=True)
3574 'last_merge_other_rev', String(40), nullable=True)
3574 _last_merge_status = Column('merge_status', Integer(), nullable=True)
3575 _last_merge_status = Column('merge_status', Integer(), nullable=True)
3575 merge_rev = Column('merge_rev', String(40), nullable=True)
3576 merge_rev = Column('merge_rev', String(40), nullable=True)
3576
3577
3577 reviewer_data = Column(
3578 reviewer_data = Column(
3578 'reviewer_data_json', MutationObj.as_mutable(
3579 'reviewer_data_json', MutationObj.as_mutable(
3579 JsonType(dialect_map=dict(mysql=UnicodeText(16384)))))
3580 JsonType(dialect_map=dict(mysql=UnicodeText(16384)))))
3580
3581
3581 @property
3582 @property
3582 def reviewer_data_json(self):
3583 def reviewer_data_json(self):
3583 return json.dumps(self.reviewer_data)
3584 return json.dumps(self.reviewer_data)
3584
3585
3585 @hybrid_property
3586 @hybrid_property
3586 def description_safe(self):
3587 def description_safe(self):
3587 from rhodecode.lib import helpers as h
3588 from rhodecode.lib import helpers as h
3588 return h.escape(self.description)
3589 return h.escape(self.description)
3589
3590
3590 @hybrid_property
3591 @hybrid_property
3591 def revisions(self):
3592 def revisions(self):
3592 return self._revisions.split(':') if self._revisions else []
3593 return self._revisions.split(':') if self._revisions else []
3593
3594
3594 @revisions.setter
3595 @revisions.setter
3595 def revisions(self, val):
3596 def revisions(self, val):
3596 self._revisions = ':'.join(val)
3597 self._revisions = ':'.join(val)
3597
3598
3598 @hybrid_property
3599 @hybrid_property
3599 def last_merge_status(self):
3600 def last_merge_status(self):
3600 return safe_int(self._last_merge_status)
3601 return safe_int(self._last_merge_status)
3601
3602
3602 @last_merge_status.setter
3603 @last_merge_status.setter
3603 def last_merge_status(self, val):
3604 def last_merge_status(self, val):
3604 self._last_merge_status = val
3605 self._last_merge_status = val
3605
3606
3606 @declared_attr
3607 @declared_attr
3607 def author(cls):
3608 def author(cls):
3608 return relationship('User', lazy='joined')
3609 return relationship('User', lazy='joined')
3609
3610
3610 @declared_attr
3611 @declared_attr
3611 def source_repo(cls):
3612 def source_repo(cls):
3612 return relationship(
3613 return relationship(
3613 'Repository',
3614 'Repository',
3614 primaryjoin='%s.source_repo_id==Repository.repo_id' % cls.__name__)
3615 primaryjoin='%s.source_repo_id==Repository.repo_id' % cls.__name__)
3615
3616
3616 @property
3617 @property
3617 def source_ref_parts(self):
3618 def source_ref_parts(self):
3618 return self.unicode_to_reference(self.source_ref)
3619 return self.unicode_to_reference(self.source_ref)
3619
3620
3620 @declared_attr
3621 @declared_attr
3621 def target_repo(cls):
3622 def target_repo(cls):
3622 return relationship(
3623 return relationship(
3623 'Repository',
3624 'Repository',
3624 primaryjoin='%s.target_repo_id==Repository.repo_id' % cls.__name__)
3625 primaryjoin='%s.target_repo_id==Repository.repo_id' % cls.__name__)
3625
3626
3626 @property
3627 @property
3627 def target_ref_parts(self):
3628 def target_ref_parts(self):
3628 return self.unicode_to_reference(self.target_ref)
3629 return self.unicode_to_reference(self.target_ref)
3629
3630
3630 @property
3631 @property
3631 def shadow_merge_ref(self):
3632 def shadow_merge_ref(self):
3632 return self.unicode_to_reference(self._shadow_merge_ref)
3633 return self.unicode_to_reference(self._shadow_merge_ref)
3633
3634
3634 @shadow_merge_ref.setter
3635 @shadow_merge_ref.setter
3635 def shadow_merge_ref(self, ref):
3636 def shadow_merge_ref(self, ref):
3636 self._shadow_merge_ref = self.reference_to_unicode(ref)
3637 self._shadow_merge_ref = self.reference_to_unicode(ref)
3637
3638
3638 def unicode_to_reference(self, raw):
3639 def unicode_to_reference(self, raw):
3639 """
3640 """
3640 Convert a unicode (or string) to a reference object.
3641 Convert a unicode (or string) to a reference object.
3641 If unicode evaluates to False it returns None.
3642 If unicode evaluates to False it returns None.
3642 """
3643 """
3643 if raw:
3644 if raw:
3644 refs = raw.split(':')
3645 refs = raw.split(':')
3645 return Reference(*refs)
3646 return Reference(*refs)
3646 else:
3647 else:
3647 return None
3648 return None
3648
3649
3649 def reference_to_unicode(self, ref):
3650 def reference_to_unicode(self, ref):
3650 """
3651 """
3651 Convert a reference object to unicode.
3652 Convert a reference object to unicode.
3652 If reference is None it returns None.
3653 If reference is None it returns None.
3653 """
3654 """
3654 if ref:
3655 if ref:
3655 return u':'.join(ref)
3656 return u':'.join(ref)
3656 else:
3657 else:
3657 return None
3658 return None
3658
3659
3659 def get_api_data(self, with_merge_state=True):
3660 def get_api_data(self, with_merge_state=True):
3660 from rhodecode.model.pull_request import PullRequestModel
3661 from rhodecode.model.pull_request import PullRequestModel
3661
3662
3662 pull_request = self
3663 pull_request = self
3663 if with_merge_state:
3664 if with_merge_state:
3664 merge_status = PullRequestModel().merge_status(pull_request)
3665 merge_status = PullRequestModel().merge_status(pull_request)
3665 merge_state = {
3666 merge_state = {
3666 'status': merge_status[0],
3667 'status': merge_status[0],
3667 'message': safe_unicode(merge_status[1]),
3668 'message': safe_unicode(merge_status[1]),
3668 }
3669 }
3669 else:
3670 else:
3670 merge_state = {'status': 'not_available',
3671 merge_state = {'status': 'not_available',
3671 'message': 'not_available'}
3672 'message': 'not_available'}
3672
3673
3673 merge_data = {
3674 merge_data = {
3674 'clone_url': PullRequestModel().get_shadow_clone_url(pull_request),
3675 'clone_url': PullRequestModel().get_shadow_clone_url(pull_request),
3675 'reference': (
3676 'reference': (
3676 pull_request.shadow_merge_ref._asdict()
3677 pull_request.shadow_merge_ref._asdict()
3677 if pull_request.shadow_merge_ref else None),
3678 if pull_request.shadow_merge_ref else None),
3678 }
3679 }
3679
3680
3680 data = {
3681 data = {
3681 'pull_request_id': pull_request.pull_request_id,
3682 'pull_request_id': pull_request.pull_request_id,
3682 'url': PullRequestModel().get_url(pull_request),
3683 'url': PullRequestModel().get_url(pull_request),
3683 'title': pull_request.title,
3684 'title': pull_request.title,
3684 'description': pull_request.description,
3685 'description': pull_request.description,
3685 'status': pull_request.status,
3686 'status': pull_request.status,
3686 'created_on': pull_request.created_on,
3687 'created_on': pull_request.created_on,
3687 'updated_on': pull_request.updated_on,
3688 'updated_on': pull_request.updated_on,
3688 'commit_ids': pull_request.revisions,
3689 'commit_ids': pull_request.revisions,
3689 'review_status': pull_request.calculated_review_status(),
3690 'review_status': pull_request.calculated_review_status(),
3690 'mergeable': merge_state,
3691 'mergeable': merge_state,
3691 'source': {
3692 'source': {
3692 'clone_url': pull_request.source_repo.clone_url(),
3693 'clone_url': pull_request.source_repo.clone_url(),
3693 'repository': pull_request.source_repo.repo_name,
3694 'repository': pull_request.source_repo.repo_name,
3694 'reference': {
3695 'reference': {
3695 'name': pull_request.source_ref_parts.name,
3696 'name': pull_request.source_ref_parts.name,
3696 'type': pull_request.source_ref_parts.type,
3697 'type': pull_request.source_ref_parts.type,
3697 'commit_id': pull_request.source_ref_parts.commit_id,
3698 'commit_id': pull_request.source_ref_parts.commit_id,
3698 },
3699 },
3699 },
3700 },
3700 'target': {
3701 'target': {
3701 'clone_url': pull_request.target_repo.clone_url(),
3702 'clone_url': pull_request.target_repo.clone_url(),
3702 'repository': pull_request.target_repo.repo_name,
3703 'repository': pull_request.target_repo.repo_name,
3703 'reference': {
3704 'reference': {
3704 'name': pull_request.target_ref_parts.name,
3705 'name': pull_request.target_ref_parts.name,
3705 'type': pull_request.target_ref_parts.type,
3706 'type': pull_request.target_ref_parts.type,
3706 'commit_id': pull_request.target_ref_parts.commit_id,
3707 'commit_id': pull_request.target_ref_parts.commit_id,
3707 },
3708 },
3708 },
3709 },
3709 'merge': merge_data,
3710 'merge': merge_data,
3710 'author': pull_request.author.get_api_data(include_secrets=False,
3711 'author': pull_request.author.get_api_data(include_secrets=False,
3711 details='basic'),
3712 details='basic'),
3712 'reviewers': [
3713 'reviewers': [
3713 {
3714 {
3714 'user': reviewer.get_api_data(include_secrets=False,
3715 'user': reviewer.get_api_data(include_secrets=False,
3715 details='basic'),
3716 details='basic'),
3716 'reasons': reasons,
3717 'reasons': reasons,
3717 'review_status': st[0][1].status if st else 'not_reviewed',
3718 'review_status': st[0][1].status if st else 'not_reviewed',
3718 }
3719 }
3719 for obj, reviewer, reasons, mandatory, st in
3720 for obj, reviewer, reasons, mandatory, st in
3720 pull_request.reviewers_statuses()
3721 pull_request.reviewers_statuses()
3721 ]
3722 ]
3722 }
3723 }
3723
3724
3724 return data
3725 return data
3725
3726
3726
3727
3727 class PullRequest(Base, _PullRequestBase):
3728 class PullRequest(Base, _PullRequestBase):
3728 __tablename__ = 'pull_requests'
3729 __tablename__ = 'pull_requests'
3729 __table_args__ = (
3730 __table_args__ = (
3730 base_table_args,
3731 base_table_args,
3731 )
3732 )
3732
3733
3733 pull_request_id = Column(
3734 pull_request_id = Column(
3734 'pull_request_id', Integer(), nullable=False, primary_key=True)
3735 'pull_request_id', Integer(), nullable=False, primary_key=True)
3735
3736
3736 def __repr__(self):
3737 def __repr__(self):
3737 if self.pull_request_id:
3738 if self.pull_request_id:
3738 return '<DB:PullRequest #%s>' % self.pull_request_id
3739 return '<DB:PullRequest #%s>' % self.pull_request_id
3739 else:
3740 else:
3740 return '<DB:PullRequest at %#x>' % id(self)
3741 return '<DB:PullRequest at %#x>' % id(self)
3741
3742
3742 reviewers = relationship('PullRequestReviewers',
3743 reviewers = relationship('PullRequestReviewers',
3743 cascade="all, delete, delete-orphan")
3744 cascade="all, delete, delete-orphan")
3744 statuses = relationship('ChangesetStatus',
3745 statuses = relationship('ChangesetStatus',
3745 cascade="all, delete, delete-orphan")
3746 cascade="all, delete, delete-orphan")
3746 comments = relationship('ChangesetComment',
3747 comments = relationship('ChangesetComment',
3747 cascade="all, delete, delete-orphan")
3748 cascade="all, delete, delete-orphan")
3748 versions = relationship('PullRequestVersion',
3749 versions = relationship('PullRequestVersion',
3749 cascade="all, delete, delete-orphan",
3750 cascade="all, delete, delete-orphan",
3750 lazy='dynamic')
3751 lazy='dynamic')
3751
3752
3752 @classmethod
3753 @classmethod
3753 def get_pr_display_object(cls, pull_request_obj, org_pull_request_obj,
3754 def get_pr_display_object(cls, pull_request_obj, org_pull_request_obj,
3754 internal_methods=None):
3755 internal_methods=None):
3755
3756
3756 class PullRequestDisplay(object):
3757 class PullRequestDisplay(object):
3757 """
3758 """
3758 Special object wrapper for showing PullRequest data via Versions
3759 Special object wrapper for showing PullRequest data via Versions
3759 It mimics PR object as close as possible. This is read only object
3760 It mimics PR object as close as possible. This is read only object
3760 just for display
3761 just for display
3761 """
3762 """
3762
3763
3763 def __init__(self, attrs, internal=None):
3764 def __init__(self, attrs, internal=None):
3764 self.attrs = attrs
3765 self.attrs = attrs
3765 # internal have priority over the given ones via attrs
3766 # internal have priority over the given ones via attrs
3766 self.internal = internal or ['versions']
3767 self.internal = internal or ['versions']
3767
3768
3768 def __getattr__(self, item):
3769 def __getattr__(self, item):
3769 if item in self.internal:
3770 if item in self.internal:
3770 return getattr(self, item)
3771 return getattr(self, item)
3771 try:
3772 try:
3772 return self.attrs[item]
3773 return self.attrs[item]
3773 except KeyError:
3774 except KeyError:
3774 raise AttributeError(
3775 raise AttributeError(
3775 '%s object has no attribute %s' % (self, item))
3776 '%s object has no attribute %s' % (self, item))
3776
3777
3777 def __repr__(self):
3778 def __repr__(self):
3778 return '<DB:PullRequestDisplay #%s>' % self.attrs.get('pull_request_id')
3779 return '<DB:PullRequestDisplay #%s>' % self.attrs.get('pull_request_id')
3779
3780
3780 def versions(self):
3781 def versions(self):
3781 return pull_request_obj.versions.order_by(
3782 return pull_request_obj.versions.order_by(
3782 PullRequestVersion.pull_request_version_id).all()
3783 PullRequestVersion.pull_request_version_id).all()
3783
3784
3784 def is_closed(self):
3785 def is_closed(self):
3785 return pull_request_obj.is_closed()
3786 return pull_request_obj.is_closed()
3786
3787
3787 @property
3788 @property
3788 def pull_request_version_id(self):
3789 def pull_request_version_id(self):
3789 return getattr(pull_request_obj, 'pull_request_version_id', None)
3790 return getattr(pull_request_obj, 'pull_request_version_id', None)
3790
3791
3791 attrs = StrictAttributeDict(pull_request_obj.get_api_data())
3792 attrs = StrictAttributeDict(pull_request_obj.get_api_data())
3792
3793
3793 attrs.author = StrictAttributeDict(
3794 attrs.author = StrictAttributeDict(
3794 pull_request_obj.author.get_api_data())
3795 pull_request_obj.author.get_api_data())
3795 if pull_request_obj.target_repo:
3796 if pull_request_obj.target_repo:
3796 attrs.target_repo = StrictAttributeDict(
3797 attrs.target_repo = StrictAttributeDict(
3797 pull_request_obj.target_repo.get_api_data())
3798 pull_request_obj.target_repo.get_api_data())
3798 attrs.target_repo.clone_url = pull_request_obj.target_repo.clone_url
3799 attrs.target_repo.clone_url = pull_request_obj.target_repo.clone_url
3799
3800
3800 if pull_request_obj.source_repo:
3801 if pull_request_obj.source_repo:
3801 attrs.source_repo = StrictAttributeDict(
3802 attrs.source_repo = StrictAttributeDict(
3802 pull_request_obj.source_repo.get_api_data())
3803 pull_request_obj.source_repo.get_api_data())
3803 attrs.source_repo.clone_url = pull_request_obj.source_repo.clone_url
3804 attrs.source_repo.clone_url = pull_request_obj.source_repo.clone_url
3804
3805
3805 attrs.source_ref_parts = pull_request_obj.source_ref_parts
3806 attrs.source_ref_parts = pull_request_obj.source_ref_parts
3806 attrs.target_ref_parts = pull_request_obj.target_ref_parts
3807 attrs.target_ref_parts = pull_request_obj.target_ref_parts
3807 attrs.revisions = pull_request_obj.revisions
3808 attrs.revisions = pull_request_obj.revisions
3808
3809
3809 attrs.shadow_merge_ref = org_pull_request_obj.shadow_merge_ref
3810 attrs.shadow_merge_ref = org_pull_request_obj.shadow_merge_ref
3810 attrs.reviewer_data = org_pull_request_obj.reviewer_data
3811 attrs.reviewer_data = org_pull_request_obj.reviewer_data
3811 attrs.reviewer_data_json = org_pull_request_obj.reviewer_data_json
3812 attrs.reviewer_data_json = org_pull_request_obj.reviewer_data_json
3812
3813
3813 return PullRequestDisplay(attrs, internal=internal_methods)
3814 return PullRequestDisplay(attrs, internal=internal_methods)
3814
3815
3815 def is_closed(self):
3816 def is_closed(self):
3816 return self.status == self.STATUS_CLOSED
3817 return self.status == self.STATUS_CLOSED
3817
3818
3818 def __json__(self):
3819 def __json__(self):
3819 return {
3820 return {
3820 'revisions': self.revisions,
3821 'revisions': self.revisions,
3821 }
3822 }
3822
3823
3823 def calculated_review_status(self):
3824 def calculated_review_status(self):
3824 from rhodecode.model.changeset_status import ChangesetStatusModel
3825 from rhodecode.model.changeset_status import ChangesetStatusModel
3825 return ChangesetStatusModel().calculated_review_status(self)
3826 return ChangesetStatusModel().calculated_review_status(self)
3826
3827
3827 def reviewers_statuses(self):
3828 def reviewers_statuses(self):
3828 from rhodecode.model.changeset_status import ChangesetStatusModel
3829 from rhodecode.model.changeset_status import ChangesetStatusModel
3829 return ChangesetStatusModel().reviewers_statuses(self)
3830 return ChangesetStatusModel().reviewers_statuses(self)
3830
3831
3831 @property
3832 @property
3832 def workspace_id(self):
3833 def workspace_id(self):
3833 from rhodecode.model.pull_request import PullRequestModel
3834 from rhodecode.model.pull_request import PullRequestModel
3834 return PullRequestModel()._workspace_id(self)
3835 return PullRequestModel()._workspace_id(self)
3835
3836
3836 def get_shadow_repo(self):
3837 def get_shadow_repo(self):
3837 workspace_id = self.workspace_id
3838 workspace_id = self.workspace_id
3838 vcs_obj = self.target_repo.scm_instance()
3839 vcs_obj = self.target_repo.scm_instance()
3839 shadow_repository_path = vcs_obj._get_shadow_repository_path(
3840 shadow_repository_path = vcs_obj._get_shadow_repository_path(
3840 self.target_repo.repo_id, workspace_id)
3841 self.target_repo.repo_id, workspace_id)
3841 if os.path.isdir(shadow_repository_path):
3842 if os.path.isdir(shadow_repository_path):
3842 return vcs_obj._get_shadow_instance(shadow_repository_path)
3843 return vcs_obj._get_shadow_instance(shadow_repository_path)
3843
3844
3844
3845
3845 class PullRequestVersion(Base, _PullRequestBase):
3846 class PullRequestVersion(Base, _PullRequestBase):
3846 __tablename__ = 'pull_request_versions'
3847 __tablename__ = 'pull_request_versions'
3847 __table_args__ = (
3848 __table_args__ = (
3848 base_table_args,
3849 base_table_args,
3849 )
3850 )
3850
3851
3851 pull_request_version_id = Column(
3852 pull_request_version_id = Column(
3852 'pull_request_version_id', Integer(), nullable=False, primary_key=True)
3853 'pull_request_version_id', Integer(), nullable=False, primary_key=True)
3853 pull_request_id = Column(
3854 pull_request_id = Column(
3854 'pull_request_id', Integer(),
3855 'pull_request_id', Integer(),
3855 ForeignKey('pull_requests.pull_request_id'), nullable=False)
3856 ForeignKey('pull_requests.pull_request_id'), nullable=False)
3856 pull_request = relationship('PullRequest')
3857 pull_request = relationship('PullRequest')
3857
3858
3858 def __repr__(self):
3859 def __repr__(self):
3859 if self.pull_request_version_id:
3860 if self.pull_request_version_id:
3860 return '<DB:PullRequestVersion #%s>' % self.pull_request_version_id
3861 return '<DB:PullRequestVersion #%s>' % self.pull_request_version_id
3861 else:
3862 else:
3862 return '<DB:PullRequestVersion at %#x>' % id(self)
3863 return '<DB:PullRequestVersion at %#x>' % id(self)
3863
3864
3864 @property
3865 @property
3865 def reviewers(self):
3866 def reviewers(self):
3866 return self.pull_request.reviewers
3867 return self.pull_request.reviewers
3867
3868
3868 @property
3869 @property
3869 def versions(self):
3870 def versions(self):
3870 return self.pull_request.versions
3871 return self.pull_request.versions
3871
3872
3872 def is_closed(self):
3873 def is_closed(self):
3873 # calculate from original
3874 # calculate from original
3874 return self.pull_request.status == self.STATUS_CLOSED
3875 return self.pull_request.status == self.STATUS_CLOSED
3875
3876
3876 def calculated_review_status(self):
3877 def calculated_review_status(self):
3877 return self.pull_request.calculated_review_status()
3878 return self.pull_request.calculated_review_status()
3878
3879
3879 def reviewers_statuses(self):
3880 def reviewers_statuses(self):
3880 return self.pull_request.reviewers_statuses()
3881 return self.pull_request.reviewers_statuses()
3881
3882
3882
3883
3883 class PullRequestReviewers(Base, BaseModel):
3884 class PullRequestReviewers(Base, BaseModel):
3884 __tablename__ = 'pull_request_reviewers'
3885 __tablename__ = 'pull_request_reviewers'
3885 __table_args__ = (
3886 __table_args__ = (
3886 base_table_args,
3887 base_table_args,
3887 )
3888 )
3888
3889
3889 @hybrid_property
3890 @hybrid_property
3890 def reasons(self):
3891 def reasons(self):
3891 if not self._reasons:
3892 if not self._reasons:
3892 return []
3893 return []
3893 return self._reasons
3894 return self._reasons
3894
3895
3895 @reasons.setter
3896 @reasons.setter
3896 def reasons(self, val):
3897 def reasons(self, val):
3897 val = val or []
3898 val = val or []
3898 if any(not isinstance(x, basestring) for x in val):
3899 if any(not isinstance(x, basestring) for x in val):
3899 raise Exception('invalid reasons type, must be list of strings')
3900 raise Exception('invalid reasons type, must be list of strings')
3900 self._reasons = val
3901 self._reasons = val
3901
3902
3902 pull_requests_reviewers_id = Column(
3903 pull_requests_reviewers_id = Column(
3903 'pull_requests_reviewers_id', Integer(), nullable=False,
3904 'pull_requests_reviewers_id', Integer(), nullable=False,
3904 primary_key=True)
3905 primary_key=True)
3905 pull_request_id = Column(
3906 pull_request_id = Column(
3906 "pull_request_id", Integer(),
3907 "pull_request_id", Integer(),
3907 ForeignKey('pull_requests.pull_request_id'), nullable=False)
3908 ForeignKey('pull_requests.pull_request_id'), nullable=False)
3908 user_id = Column(
3909 user_id = Column(
3909 "user_id", Integer(), ForeignKey('users.user_id'), nullable=True)
3910 "user_id", Integer(), ForeignKey('users.user_id'), nullable=True)
3910 _reasons = Column(
3911 _reasons = Column(
3911 'reason', MutationList.as_mutable(
3912 'reason', MutationList.as_mutable(
3912 JsonType('list', dialect_map=dict(mysql=UnicodeText(16384)))))
3913 JsonType('list', dialect_map=dict(mysql=UnicodeText(16384)))))
3913
3914
3914 mandatory = Column("mandatory", Boolean(), nullable=False, default=False)
3915 mandatory = Column("mandatory", Boolean(), nullable=False, default=False)
3915 user = relationship('User')
3916 user = relationship('User')
3916 pull_request = relationship('PullRequest')
3917 pull_request = relationship('PullRequest')
3917
3918
3918 rule_data = Column(
3919 rule_data = Column(
3919 'rule_data_json',
3920 'rule_data_json',
3920 JsonType(dialect_map=dict(mysql=UnicodeText(16384))))
3921 JsonType(dialect_map=dict(mysql=UnicodeText(16384))))
3921
3922
3922 def rule_user_group_data(self):
3923 def rule_user_group_data(self):
3923 """
3924 """
3924 Returns the voting user group rule data for this reviewer
3925 Returns the voting user group rule data for this reviewer
3925 """
3926 """
3926
3927
3927 if self.rule_data and 'vote_rule' in self.rule_data:
3928 if self.rule_data and 'vote_rule' in self.rule_data:
3928 user_group_data = {}
3929 user_group_data = {}
3929 if 'rule_user_group_entry_id' in self.rule_data:
3930 if 'rule_user_group_entry_id' in self.rule_data:
3930 # means a group with voting rules !
3931 # means a group with voting rules !
3931 user_group_data['id'] = self.rule_data['rule_user_group_entry_id']
3932 user_group_data['id'] = self.rule_data['rule_user_group_entry_id']
3932 user_group_data['name'] = self.rule_data['rule_name']
3933 user_group_data['name'] = self.rule_data['rule_name']
3933 user_group_data['vote_rule'] = self.rule_data['vote_rule']
3934 user_group_data['vote_rule'] = self.rule_data['vote_rule']
3934
3935
3935 return user_group_data
3936 return user_group_data
3936
3937
3937 def __unicode__(self):
3938 def __unicode__(self):
3938 return u"<%s('id:%s')>" % (self.__class__.__name__,
3939 return u"<%s('id:%s')>" % (self.__class__.__name__,
3939 self.pull_requests_reviewers_id)
3940 self.pull_requests_reviewers_id)
3940
3941
3941
3942
3942 class Notification(Base, BaseModel):
3943 class Notification(Base, BaseModel):
3943 __tablename__ = 'notifications'
3944 __tablename__ = 'notifications'
3944 __table_args__ = (
3945 __table_args__ = (
3945 Index('notification_type_idx', 'type'),
3946 Index('notification_type_idx', 'type'),
3946 base_table_args,
3947 base_table_args,
3947 )
3948 )
3948
3949
3949 TYPE_CHANGESET_COMMENT = u'cs_comment'
3950 TYPE_CHANGESET_COMMENT = u'cs_comment'
3950 TYPE_MESSAGE = u'message'
3951 TYPE_MESSAGE = u'message'
3951 TYPE_MENTION = u'mention'
3952 TYPE_MENTION = u'mention'
3952 TYPE_REGISTRATION = u'registration'
3953 TYPE_REGISTRATION = u'registration'
3953 TYPE_PULL_REQUEST = u'pull_request'
3954 TYPE_PULL_REQUEST = u'pull_request'
3954 TYPE_PULL_REQUEST_COMMENT = u'pull_request_comment'
3955 TYPE_PULL_REQUEST_COMMENT = u'pull_request_comment'
3955
3956
3956 notification_id = Column('notification_id', Integer(), nullable=False, primary_key=True)
3957 notification_id = Column('notification_id', Integer(), nullable=False, primary_key=True)
3957 subject = Column('subject', Unicode(512), nullable=True)
3958 subject = Column('subject', Unicode(512), nullable=True)
3958 body = Column('body', UnicodeText().with_variant(UnicodeText(50000), 'mysql'), nullable=True)
3959 body = Column('body', UnicodeText().with_variant(UnicodeText(50000), 'mysql'), nullable=True)
3959 created_by = Column("created_by", Integer(), ForeignKey('users.user_id'), nullable=True)
3960 created_by = Column("created_by", Integer(), ForeignKey('users.user_id'), nullable=True)
3960 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
3961 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
3961 type_ = Column('type', Unicode(255))
3962 type_ = Column('type', Unicode(255))
3962
3963
3963 created_by_user = relationship('User')
3964 created_by_user = relationship('User')
3964 notifications_to_users = relationship('UserNotification', lazy='joined',
3965 notifications_to_users = relationship('UserNotification', lazy='joined',
3965 cascade="all, delete, delete-orphan")
3966 cascade="all, delete, delete-orphan")
3966
3967
3967 @property
3968 @property
3968 def recipients(self):
3969 def recipients(self):
3969 return [x.user for x in UserNotification.query()\
3970 return [x.user for x in UserNotification.query()\
3970 .filter(UserNotification.notification == self)\
3971 .filter(UserNotification.notification == self)\
3971 .order_by(UserNotification.user_id.asc()).all()]
3972 .order_by(UserNotification.user_id.asc()).all()]
3972
3973
3973 @classmethod
3974 @classmethod
3974 def create(cls, created_by, subject, body, recipients, type_=None):
3975 def create(cls, created_by, subject, body, recipients, type_=None):
3975 if type_ is None:
3976 if type_ is None:
3976 type_ = Notification.TYPE_MESSAGE
3977 type_ = Notification.TYPE_MESSAGE
3977
3978
3978 notification = cls()
3979 notification = cls()
3979 notification.created_by_user = created_by
3980 notification.created_by_user = created_by
3980 notification.subject = subject
3981 notification.subject = subject
3981 notification.body = body
3982 notification.body = body
3982 notification.type_ = type_
3983 notification.type_ = type_
3983 notification.created_on = datetime.datetime.now()
3984 notification.created_on = datetime.datetime.now()
3984
3985
3985 # For each recipient link the created notification to his account
3986 # For each recipient link the created notification to his account
3986 for u in recipients:
3987 for u in recipients:
3987 assoc = UserNotification()
3988 assoc = UserNotification()
3988 assoc.user_id = u.user_id
3989 assoc.user_id = u.user_id
3989 assoc.notification = notification
3990 assoc.notification = notification
3990
3991
3991 # if created_by is inside recipients mark his notification
3992 # if created_by is inside recipients mark his notification
3992 # as read
3993 # as read
3993 if u.user_id == created_by.user_id:
3994 if u.user_id == created_by.user_id:
3994 assoc.read = True
3995 assoc.read = True
3995 Session().add(assoc)
3996 Session().add(assoc)
3996
3997
3997 Session().add(notification)
3998 Session().add(notification)
3998
3999
3999 return notification
4000 return notification
4000
4001
4001
4002
4002 class UserNotification(Base, BaseModel):
4003 class UserNotification(Base, BaseModel):
4003 __tablename__ = 'user_to_notification'
4004 __tablename__ = 'user_to_notification'
4004 __table_args__ = (
4005 __table_args__ = (
4005 UniqueConstraint('user_id', 'notification_id'),
4006 UniqueConstraint('user_id', 'notification_id'),
4006 base_table_args
4007 base_table_args
4007 )
4008 )
4008
4009
4009 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), primary_key=True)
4010 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), primary_key=True)
4010 notification_id = Column("notification_id", Integer(), ForeignKey('notifications.notification_id'), primary_key=True)
4011 notification_id = Column("notification_id", Integer(), ForeignKey('notifications.notification_id'), primary_key=True)
4011 read = Column('read', Boolean, default=False)
4012 read = Column('read', Boolean, default=False)
4012 sent_on = Column('sent_on', DateTime(timezone=False), nullable=True, unique=None)
4013 sent_on = Column('sent_on', DateTime(timezone=False), nullable=True, unique=None)
4013
4014
4014 user = relationship('User', lazy="joined")
4015 user = relationship('User', lazy="joined")
4015 notification = relationship('Notification', lazy="joined",
4016 notification = relationship('Notification', lazy="joined",
4016 order_by=lambda: Notification.created_on.desc(),)
4017 order_by=lambda: Notification.created_on.desc(),)
4017
4018
4018 def mark_as_read(self):
4019 def mark_as_read(self):
4019 self.read = True
4020 self.read = True
4020 Session().add(self)
4021 Session().add(self)
4021
4022
4022
4023
4023 class Gist(Base, BaseModel):
4024 class Gist(Base, BaseModel):
4024 __tablename__ = 'gists'
4025 __tablename__ = 'gists'
4025 __table_args__ = (
4026 __table_args__ = (
4026 Index('g_gist_access_id_idx', 'gist_access_id'),
4027 Index('g_gist_access_id_idx', 'gist_access_id'),
4027 Index('g_created_on_idx', 'created_on'),
4028 Index('g_created_on_idx', 'created_on'),
4028 base_table_args
4029 base_table_args
4029 )
4030 )
4030
4031
4031 GIST_PUBLIC = u'public'
4032 GIST_PUBLIC = u'public'
4032 GIST_PRIVATE = u'private'
4033 GIST_PRIVATE = u'private'
4033 DEFAULT_FILENAME = u'gistfile1.txt'
4034 DEFAULT_FILENAME = u'gistfile1.txt'
4034
4035
4035 ACL_LEVEL_PUBLIC = u'acl_public'
4036 ACL_LEVEL_PUBLIC = u'acl_public'
4036 ACL_LEVEL_PRIVATE = u'acl_private'
4037 ACL_LEVEL_PRIVATE = u'acl_private'
4037
4038
4038 gist_id = Column('gist_id', Integer(), primary_key=True)
4039 gist_id = Column('gist_id', Integer(), primary_key=True)
4039 gist_access_id = Column('gist_access_id', Unicode(250))
4040 gist_access_id = Column('gist_access_id', Unicode(250))
4040 gist_description = Column('gist_description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
4041 gist_description = Column('gist_description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
4041 gist_owner = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=True)
4042 gist_owner = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=True)
4042 gist_expires = Column('gist_expires', Float(53), nullable=False)
4043 gist_expires = Column('gist_expires', Float(53), nullable=False)
4043 gist_type = Column('gist_type', Unicode(128), nullable=False)
4044 gist_type = Column('gist_type', Unicode(128), nullable=False)
4044 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
4045 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
4045 modified_at = Column('modified_at', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
4046 modified_at = Column('modified_at', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
4046 acl_level = Column('acl_level', Unicode(128), nullable=True)
4047 acl_level = Column('acl_level', Unicode(128), nullable=True)
4047
4048
4048 owner = relationship('User')
4049 owner = relationship('User')
4049
4050
4050 def __repr__(self):
4051 def __repr__(self):
4051 return '<Gist:[%s]%s>' % (self.gist_type, self.gist_access_id)
4052 return '<Gist:[%s]%s>' % (self.gist_type, self.gist_access_id)
4052
4053
4053 @hybrid_property
4054 @hybrid_property
4054 def description_safe(self):
4055 def description_safe(self):
4055 from rhodecode.lib import helpers as h
4056 from rhodecode.lib import helpers as h
4056 return h.escape(self.gist_description)
4057 return h.escape(self.gist_description)
4057
4058
4058 @classmethod
4059 @classmethod
4059 def get_or_404(cls, id_):
4060 def get_or_404(cls, id_):
4060 from pyramid.httpexceptions import HTTPNotFound
4061 from pyramid.httpexceptions import HTTPNotFound
4061
4062
4062 res = cls.query().filter(cls.gist_access_id == id_).scalar()
4063 res = cls.query().filter(cls.gist_access_id == id_).scalar()
4063 if not res:
4064 if not res:
4064 raise HTTPNotFound()
4065 raise HTTPNotFound()
4065 return res
4066 return res
4066
4067
4067 @classmethod
4068 @classmethod
4068 def get_by_access_id(cls, gist_access_id):
4069 def get_by_access_id(cls, gist_access_id):
4069 return cls.query().filter(cls.gist_access_id == gist_access_id).scalar()
4070 return cls.query().filter(cls.gist_access_id == gist_access_id).scalar()
4070
4071
4071 def gist_url(self):
4072 def gist_url(self):
4072 from rhodecode.model.gist import GistModel
4073 from rhodecode.model.gist import GistModel
4073 return GistModel().get_url(self)
4074 return GistModel().get_url(self)
4074
4075
4075 @classmethod
4076 @classmethod
4076 def base_path(cls):
4077 def base_path(cls):
4077 """
4078 """
4078 Returns base path when all gists are stored
4079 Returns base path when all gists are stored
4079
4080
4080 :param cls:
4081 :param cls:
4081 """
4082 """
4082 from rhodecode.model.gist import GIST_STORE_LOC
4083 from rhodecode.model.gist import GIST_STORE_LOC
4083 q = Session().query(RhodeCodeUi)\
4084 q = Session().query(RhodeCodeUi)\
4084 .filter(RhodeCodeUi.ui_key == URL_SEP)
4085 .filter(RhodeCodeUi.ui_key == URL_SEP)
4085 q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
4086 q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
4086 return os.path.join(q.one().ui_value, GIST_STORE_LOC)
4087 return os.path.join(q.one().ui_value, GIST_STORE_LOC)
4087
4088
4088 def get_api_data(self):
4089 def get_api_data(self):
4089 """
4090 """
4090 Common function for generating gist related data for API
4091 Common function for generating gist related data for API
4091 """
4092 """
4092 gist = self
4093 gist = self
4093 data = {
4094 data = {
4094 'gist_id': gist.gist_id,
4095 'gist_id': gist.gist_id,
4095 'type': gist.gist_type,
4096 'type': gist.gist_type,
4096 'access_id': gist.gist_access_id,
4097 'access_id': gist.gist_access_id,
4097 'description': gist.gist_description,
4098 'description': gist.gist_description,
4098 'url': gist.gist_url(),
4099 'url': gist.gist_url(),
4099 'expires': gist.gist_expires,
4100 'expires': gist.gist_expires,
4100 'created_on': gist.created_on,
4101 'created_on': gist.created_on,
4101 'modified_at': gist.modified_at,
4102 'modified_at': gist.modified_at,
4102 'content': None,
4103 'content': None,
4103 'acl_level': gist.acl_level,
4104 'acl_level': gist.acl_level,
4104 }
4105 }
4105 return data
4106 return data
4106
4107
4107 def __json__(self):
4108 def __json__(self):
4108 data = dict(
4109 data = dict(
4109 )
4110 )
4110 data.update(self.get_api_data())
4111 data.update(self.get_api_data())
4111 return data
4112 return data
4112 # SCM functions
4113 # SCM functions
4113
4114
4114 def scm_instance(self, **kwargs):
4115 def scm_instance(self, **kwargs):
4115 full_repo_path = os.path.join(self.base_path(), self.gist_access_id)
4116 full_repo_path = os.path.join(self.base_path(), self.gist_access_id)
4116 return get_vcs_instance(
4117 return get_vcs_instance(
4117 repo_path=safe_str(full_repo_path), create=False)
4118 repo_path=safe_str(full_repo_path), create=False)
4118
4119
4119
4120
4120 class ExternalIdentity(Base, BaseModel):
4121 class ExternalIdentity(Base, BaseModel):
4121 __tablename__ = 'external_identities'
4122 __tablename__ = 'external_identities'
4122 __table_args__ = (
4123 __table_args__ = (
4123 Index('local_user_id_idx', 'local_user_id'),
4124 Index('local_user_id_idx', 'local_user_id'),
4124 Index('external_id_idx', 'external_id'),
4125 Index('external_id_idx', 'external_id'),
4125 base_table_args
4126 base_table_args
4126 )
4127 )
4127
4128
4128 external_id = Column('external_id', Unicode(255), default=u'',
4129 external_id = Column('external_id', Unicode(255), default=u'',
4129 primary_key=True)
4130 primary_key=True)
4130 external_username = Column('external_username', Unicode(1024), default=u'')
4131 external_username = Column('external_username', Unicode(1024), default=u'')
4131 local_user_id = Column('local_user_id', Integer(),
4132 local_user_id = Column('local_user_id', Integer(),
4132 ForeignKey('users.user_id'), primary_key=True)
4133 ForeignKey('users.user_id'), primary_key=True)
4133 provider_name = Column('provider_name', Unicode(255), default=u'',
4134 provider_name = Column('provider_name', Unicode(255), default=u'',
4134 primary_key=True)
4135 primary_key=True)
4135 access_token = Column('access_token', String(1024), default=u'')
4136 access_token = Column('access_token', String(1024), default=u'')
4136 alt_token = Column('alt_token', String(1024), default=u'')
4137 alt_token = Column('alt_token', String(1024), default=u'')
4137 token_secret = Column('token_secret', String(1024), default=u'')
4138 token_secret = Column('token_secret', String(1024), default=u'')
4138
4139
4139 @classmethod
4140 @classmethod
4140 def by_external_id_and_provider(cls, external_id, provider_name,
4141 def by_external_id_and_provider(cls, external_id, provider_name,
4141 local_user_id=None):
4142 local_user_id=None):
4142 """
4143 """
4143 Returns ExternalIdentity instance based on search params
4144 Returns ExternalIdentity instance based on search params
4144
4145
4145 :param external_id:
4146 :param external_id:
4146 :param provider_name:
4147 :param provider_name:
4147 :return: ExternalIdentity
4148 :return: ExternalIdentity
4148 """
4149 """
4149 query = cls.query()
4150 query = cls.query()
4150 query = query.filter(cls.external_id == external_id)
4151 query = query.filter(cls.external_id == external_id)
4151 query = query.filter(cls.provider_name == provider_name)
4152 query = query.filter(cls.provider_name == provider_name)
4152 if local_user_id:
4153 if local_user_id:
4153 query = query.filter(cls.local_user_id == local_user_id)
4154 query = query.filter(cls.local_user_id == local_user_id)
4154 return query.first()
4155 return query.first()
4155
4156
4156 @classmethod
4157 @classmethod
4157 def user_by_external_id_and_provider(cls, external_id, provider_name):
4158 def user_by_external_id_and_provider(cls, external_id, provider_name):
4158 """
4159 """
4159 Returns User instance based on search params
4160 Returns User instance based on search params
4160
4161
4161 :param external_id:
4162 :param external_id:
4162 :param provider_name:
4163 :param provider_name:
4163 :return: User
4164 :return: User
4164 """
4165 """
4165 query = User.query()
4166 query = User.query()
4166 query = query.filter(cls.external_id == external_id)
4167 query = query.filter(cls.external_id == external_id)
4167 query = query.filter(cls.provider_name == provider_name)
4168 query = query.filter(cls.provider_name == provider_name)
4168 query = query.filter(User.user_id == cls.local_user_id)
4169 query = query.filter(User.user_id == cls.local_user_id)
4169 return query.first()
4170 return query.first()
4170
4171
4171 @classmethod
4172 @classmethod
4172 def by_local_user_id(cls, local_user_id):
4173 def by_local_user_id(cls, local_user_id):
4173 """
4174 """
4174 Returns all tokens for user
4175 Returns all tokens for user
4175
4176
4176 :param local_user_id:
4177 :param local_user_id:
4177 :return: ExternalIdentity
4178 :return: ExternalIdentity
4178 """
4179 """
4179 query = cls.query()
4180 query = cls.query()
4180 query = query.filter(cls.local_user_id == local_user_id)
4181 query = query.filter(cls.local_user_id == local_user_id)
4181 return query
4182 return query
4182
4183
4183
4184
4184 class Integration(Base, BaseModel):
4185 class Integration(Base, BaseModel):
4185 __tablename__ = 'integrations'
4186 __tablename__ = 'integrations'
4186 __table_args__ = (
4187 __table_args__ = (
4187 base_table_args
4188 base_table_args
4188 )
4189 )
4189
4190
4190 integration_id = Column('integration_id', Integer(), primary_key=True)
4191 integration_id = Column('integration_id', Integer(), primary_key=True)
4191 integration_type = Column('integration_type', String(255))
4192 integration_type = Column('integration_type', String(255))
4192 enabled = Column('enabled', Boolean(), nullable=False)
4193 enabled = Column('enabled', Boolean(), nullable=False)
4193 name = Column('name', String(255), nullable=False)
4194 name = Column('name', String(255), nullable=False)
4194 child_repos_only = Column('child_repos_only', Boolean(), nullable=False,
4195 child_repos_only = Column('child_repos_only', Boolean(), nullable=False,
4195 default=False)
4196 default=False)
4196
4197
4197 settings = Column(
4198 settings = Column(
4198 'settings_json', MutationObj.as_mutable(
4199 'settings_json', MutationObj.as_mutable(
4199 JsonType(dialect_map=dict(mysql=UnicodeText(16384)))))
4200 JsonType(dialect_map=dict(mysql=UnicodeText(16384)))))
4200 repo_id = Column(
4201 repo_id = Column(
4201 'repo_id', Integer(), ForeignKey('repositories.repo_id'),
4202 'repo_id', Integer(), ForeignKey('repositories.repo_id'),
4202 nullable=True, unique=None, default=None)
4203 nullable=True, unique=None, default=None)
4203 repo = relationship('Repository', lazy='joined')
4204 repo = relationship('Repository', lazy='joined')
4204
4205
4205 repo_group_id = Column(
4206 repo_group_id = Column(
4206 'repo_group_id', Integer(), ForeignKey('groups.group_id'),
4207 'repo_group_id', Integer(), ForeignKey('groups.group_id'),
4207 nullable=True, unique=None, default=None)
4208 nullable=True, unique=None, default=None)
4208 repo_group = relationship('RepoGroup', lazy='joined')
4209 repo_group = relationship('RepoGroup', lazy='joined')
4209
4210
4210 @property
4211 @property
4211 def scope(self):
4212 def scope(self):
4212 if self.repo:
4213 if self.repo:
4213 return repr(self.repo)
4214 return repr(self.repo)
4214 if self.repo_group:
4215 if self.repo_group:
4215 if self.child_repos_only:
4216 if self.child_repos_only:
4216 return repr(self.repo_group) + ' (child repos only)'
4217 return repr(self.repo_group) + ' (child repos only)'
4217 else:
4218 else:
4218 return repr(self.repo_group) + ' (recursive)'
4219 return repr(self.repo_group) + ' (recursive)'
4219 if self.child_repos_only:
4220 if self.child_repos_only:
4220 return 'root_repos'
4221 return 'root_repos'
4221 return 'global'
4222 return 'global'
4222
4223
4223 def __repr__(self):
4224 def __repr__(self):
4224 return '<Integration(%r, %r)>' % (self.integration_type, self.scope)
4225 return '<Integration(%r, %r)>' % (self.integration_type, self.scope)
4225
4226
4226
4227
4227 class RepoReviewRuleUser(Base, BaseModel):
4228 class RepoReviewRuleUser(Base, BaseModel):
4228 __tablename__ = 'repo_review_rules_users'
4229 __tablename__ = 'repo_review_rules_users'
4229 __table_args__ = (
4230 __table_args__ = (
4230 base_table_args
4231 base_table_args
4231 )
4232 )
4232
4233
4233 repo_review_rule_user_id = Column('repo_review_rule_user_id', Integer(), primary_key=True)
4234 repo_review_rule_user_id = Column('repo_review_rule_user_id', Integer(), primary_key=True)
4234 repo_review_rule_id = Column("repo_review_rule_id", Integer(), ForeignKey('repo_review_rules.repo_review_rule_id'))
4235 repo_review_rule_id = Column("repo_review_rule_id", Integer(), ForeignKey('repo_review_rules.repo_review_rule_id'))
4235 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False)
4236 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False)
4236 mandatory = Column("mandatory", Boolean(), nullable=False, default=False)
4237 mandatory = Column("mandatory", Boolean(), nullable=False, default=False)
4237 user = relationship('User')
4238 user = relationship('User')
4238
4239
4239 def rule_data(self):
4240 def rule_data(self):
4240 return {
4241 return {
4241 'mandatory': self.mandatory
4242 'mandatory': self.mandatory
4242 }
4243 }
4243
4244
4244
4245
4245 class RepoReviewRuleUserGroup(Base, BaseModel):
4246 class RepoReviewRuleUserGroup(Base, BaseModel):
4246 __tablename__ = 'repo_review_rules_users_groups'
4247 __tablename__ = 'repo_review_rules_users_groups'
4247 __table_args__ = (
4248 __table_args__ = (
4248 base_table_args
4249 base_table_args
4249 )
4250 )
4250
4251
4251 VOTE_RULE_ALL = -1
4252 VOTE_RULE_ALL = -1
4252
4253
4253 repo_review_rule_users_group_id = Column('repo_review_rule_users_group_id', Integer(), primary_key=True)
4254 repo_review_rule_users_group_id = Column('repo_review_rule_users_group_id', Integer(), primary_key=True)
4254 repo_review_rule_id = Column("repo_review_rule_id", Integer(), ForeignKey('repo_review_rules.repo_review_rule_id'))
4255 repo_review_rule_id = Column("repo_review_rule_id", Integer(), ForeignKey('repo_review_rules.repo_review_rule_id'))
4255 users_group_id = Column("users_group_id", Integer(),ForeignKey('users_groups.users_group_id'), nullable=False)
4256 users_group_id = Column("users_group_id", Integer(),ForeignKey('users_groups.users_group_id'), nullable=False)
4256 mandatory = Column("mandatory", Boolean(), nullable=False, default=False)
4257 mandatory = Column("mandatory", Boolean(), nullable=False, default=False)
4257 vote_rule = Column("vote_rule", Integer(), nullable=True, default=VOTE_RULE_ALL)
4258 vote_rule = Column("vote_rule", Integer(), nullable=True, default=VOTE_RULE_ALL)
4258 users_group = relationship('UserGroup')
4259 users_group = relationship('UserGroup')
4259
4260
4260 def rule_data(self):
4261 def rule_data(self):
4261 return {
4262 return {
4262 'mandatory': self.mandatory,
4263 'mandatory': self.mandatory,
4263 'vote_rule': self.vote_rule
4264 'vote_rule': self.vote_rule
4264 }
4265 }
4265
4266
4266 @property
4267 @property
4267 def vote_rule_label(self):
4268 def vote_rule_label(self):
4268 if not self.vote_rule or self.vote_rule == self.VOTE_RULE_ALL:
4269 if not self.vote_rule or self.vote_rule == self.VOTE_RULE_ALL:
4269 return 'all must vote'
4270 return 'all must vote'
4270 else:
4271 else:
4271 return 'min. vote {}'.format(self.vote_rule)
4272 return 'min. vote {}'.format(self.vote_rule)
4272
4273
4273
4274
4274 class RepoReviewRule(Base, BaseModel):
4275 class RepoReviewRule(Base, BaseModel):
4275 __tablename__ = 'repo_review_rules'
4276 __tablename__ = 'repo_review_rules'
4276 __table_args__ = (
4277 __table_args__ = (
4277 base_table_args
4278 base_table_args
4278 )
4279 )
4279
4280
4280 repo_review_rule_id = Column(
4281 repo_review_rule_id = Column(
4281 'repo_review_rule_id', Integer(), primary_key=True)
4282 'repo_review_rule_id', Integer(), primary_key=True)
4282 repo_id = Column(
4283 repo_id = Column(
4283 "repo_id", Integer(), ForeignKey('repositories.repo_id'))
4284 "repo_id", Integer(), ForeignKey('repositories.repo_id'))
4284 repo = relationship('Repository', backref='review_rules')
4285 repo = relationship('Repository', backref='review_rules')
4285
4286
4286 review_rule_name = Column('review_rule_name', String(255))
4287 review_rule_name = Column('review_rule_name', String(255))
4287 _branch_pattern = Column("branch_pattern", UnicodeText().with_variant(UnicodeText(255), 'mysql'), default=u'*') # glob
4288 _branch_pattern = Column("branch_pattern", UnicodeText().with_variant(UnicodeText(255), 'mysql'), default=u'*') # glob
4288 _target_branch_pattern = Column("target_branch_pattern", UnicodeText().with_variant(UnicodeText(255), 'mysql'), default=u'*') # glob
4289 _target_branch_pattern = Column("target_branch_pattern", UnicodeText().with_variant(UnicodeText(255), 'mysql'), default=u'*') # glob
4289 _file_pattern = Column("file_pattern", UnicodeText().with_variant(UnicodeText(255), 'mysql'), default=u'*') # glob
4290 _file_pattern = Column("file_pattern", UnicodeText().with_variant(UnicodeText(255), 'mysql'), default=u'*') # glob
4290
4291
4291 use_authors_for_review = Column("use_authors_for_review", Boolean(), nullable=False, default=False)
4292 use_authors_for_review = Column("use_authors_for_review", Boolean(), nullable=False, default=False)
4292 forbid_author_to_review = Column("forbid_author_to_review", Boolean(), nullable=False, default=False)
4293 forbid_author_to_review = Column("forbid_author_to_review", Boolean(), nullable=False, default=False)
4293 forbid_commit_author_to_review = Column("forbid_commit_author_to_review", Boolean(), nullable=False, default=False)
4294 forbid_commit_author_to_review = Column("forbid_commit_author_to_review", Boolean(), nullable=False, default=False)
4294 forbid_adding_reviewers = Column("forbid_adding_reviewers", Boolean(), nullable=False, default=False)
4295 forbid_adding_reviewers = Column("forbid_adding_reviewers", Boolean(), nullable=False, default=False)
4295
4296
4296 rule_users = relationship('RepoReviewRuleUser')
4297 rule_users = relationship('RepoReviewRuleUser')
4297 rule_user_groups = relationship('RepoReviewRuleUserGroup')
4298 rule_user_groups = relationship('RepoReviewRuleUserGroup')
4298
4299
4299 def _validate_pattern(self, value):
4300 def _validate_pattern(self, value):
4300 re.compile('^' + glob2re(value) + '$')
4301 re.compile('^' + glob2re(value) + '$')
4301
4302
4302 @hybrid_property
4303 @hybrid_property
4303 def source_branch_pattern(self):
4304 def source_branch_pattern(self):
4304 return self._branch_pattern or '*'
4305 return self._branch_pattern or '*'
4305
4306
4306 @source_branch_pattern.setter
4307 @source_branch_pattern.setter
4307 def source_branch_pattern(self, value):
4308 def source_branch_pattern(self, value):
4308 self._validate_pattern(value)
4309 self._validate_pattern(value)
4309 self._branch_pattern = value or '*'
4310 self._branch_pattern = value or '*'
4310
4311
4311 @hybrid_property
4312 @hybrid_property
4312 def target_branch_pattern(self):
4313 def target_branch_pattern(self):
4313 return self._target_branch_pattern or '*'
4314 return self._target_branch_pattern or '*'
4314
4315
4315 @target_branch_pattern.setter
4316 @target_branch_pattern.setter
4316 def target_branch_pattern(self, value):
4317 def target_branch_pattern(self, value):
4317 self._validate_pattern(value)
4318 self._validate_pattern(value)
4318 self._target_branch_pattern = value or '*'
4319 self._target_branch_pattern = value or '*'
4319
4320
4320 @hybrid_property
4321 @hybrid_property
4321 def file_pattern(self):
4322 def file_pattern(self):
4322 return self._file_pattern or '*'
4323 return self._file_pattern or '*'
4323
4324
4324 @file_pattern.setter
4325 @file_pattern.setter
4325 def file_pattern(self, value):
4326 def file_pattern(self, value):
4326 self._validate_pattern(value)
4327 self._validate_pattern(value)
4327 self._file_pattern = value or '*'
4328 self._file_pattern = value or '*'
4328
4329
4329 def matches(self, source_branch, target_branch, files_changed):
4330 def matches(self, source_branch, target_branch, files_changed):
4330 """
4331 """
4331 Check if this review rule matches a branch/files in a pull request
4332 Check if this review rule matches a branch/files in a pull request
4332
4333
4333 :param source_branch: source branch name for the commit
4334 :param source_branch: source branch name for the commit
4334 :param target_branch: target branch name for the commit
4335 :param target_branch: target branch name for the commit
4335 :param files_changed: list of file paths changed in the pull request
4336 :param files_changed: list of file paths changed in the pull request
4336 """
4337 """
4337
4338
4338 source_branch = source_branch or ''
4339 source_branch = source_branch or ''
4339 target_branch = target_branch or ''
4340 target_branch = target_branch or ''
4340 files_changed = files_changed or []
4341 files_changed = files_changed or []
4341
4342
4342 branch_matches = True
4343 branch_matches = True
4343 if source_branch or target_branch:
4344 if source_branch or target_branch:
4344 if self.source_branch_pattern == '*':
4345 if self.source_branch_pattern == '*':
4345 source_branch_match = True
4346 source_branch_match = True
4346 else:
4347 else:
4347 if self.source_branch_pattern.startswith('re:'):
4348 if self.source_branch_pattern.startswith('re:'):
4348 source_pattern = self.source_branch_pattern[3:]
4349 source_pattern = self.source_branch_pattern[3:]
4349 else:
4350 else:
4350 source_pattern = '^' + glob2re(self.source_branch_pattern) + '$'
4351 source_pattern = '^' + glob2re(self.source_branch_pattern) + '$'
4351 source_branch_regex = re.compile(source_pattern)
4352 source_branch_regex = re.compile(source_pattern)
4352 source_branch_match = bool(source_branch_regex.search(source_branch))
4353 source_branch_match = bool(source_branch_regex.search(source_branch))
4353 if self.target_branch_pattern == '*':
4354 if self.target_branch_pattern == '*':
4354 target_branch_match = True
4355 target_branch_match = True
4355 else:
4356 else:
4356 if self.target_branch_pattern.startswith('re:'):
4357 if self.target_branch_pattern.startswith('re:'):
4357 target_pattern = self.target_branch_pattern[3:]
4358 target_pattern = self.target_branch_pattern[3:]
4358 else:
4359 else:
4359 target_pattern = '^' + glob2re(self.target_branch_pattern) + '$'
4360 target_pattern = '^' + glob2re(self.target_branch_pattern) + '$'
4360 target_branch_regex = re.compile(target_pattern)
4361 target_branch_regex = re.compile(target_pattern)
4361 target_branch_match = bool(target_branch_regex.search(target_branch))
4362 target_branch_match = bool(target_branch_regex.search(target_branch))
4362
4363
4363 branch_matches = source_branch_match and target_branch_match
4364 branch_matches = source_branch_match and target_branch_match
4364
4365
4365 files_matches = True
4366 files_matches = True
4366 if self.file_pattern != '*':
4367 if self.file_pattern != '*':
4367 files_matches = False
4368 files_matches = False
4368 if self.file_pattern.startswith('re:'):
4369 if self.file_pattern.startswith('re:'):
4369 file_pattern = self.file_pattern[3:]
4370 file_pattern = self.file_pattern[3:]
4370 else:
4371 else:
4371 file_pattern = glob2re(self.file_pattern)
4372 file_pattern = glob2re(self.file_pattern)
4372 file_regex = re.compile(file_pattern)
4373 file_regex = re.compile(file_pattern)
4373 for filename in files_changed:
4374 for filename in files_changed:
4374 if file_regex.search(filename):
4375 if file_regex.search(filename):
4375 files_matches = True
4376 files_matches = True
4376 break
4377 break
4377
4378
4378 return branch_matches and files_matches
4379 return branch_matches and files_matches
4379
4380
4380 @property
4381 @property
4381 def review_users(self):
4382 def review_users(self):
4382 """ Returns the users which this rule applies to """
4383 """ Returns the users which this rule applies to """
4383
4384
4384 users = collections.OrderedDict()
4385 users = collections.OrderedDict()
4385
4386
4386 for rule_user in self.rule_users:
4387 for rule_user in self.rule_users:
4387 if rule_user.user.active:
4388 if rule_user.user.active:
4388 if rule_user.user not in users:
4389 if rule_user.user not in users:
4389 users[rule_user.user.username] = {
4390 users[rule_user.user.username] = {
4390 'user': rule_user.user,
4391 'user': rule_user.user,
4391 'source': 'user',
4392 'source': 'user',
4392 'source_data': {},
4393 'source_data': {},
4393 'data': rule_user.rule_data()
4394 'data': rule_user.rule_data()
4394 }
4395 }
4395
4396
4396 for rule_user_group in self.rule_user_groups:
4397 for rule_user_group in self.rule_user_groups:
4397 source_data = {
4398 source_data = {
4398 'user_group_id': rule_user_group.users_group.users_group_id,
4399 'user_group_id': rule_user_group.users_group.users_group_id,
4399 'name': rule_user_group.users_group.users_group_name,
4400 'name': rule_user_group.users_group.users_group_name,
4400 'members': len(rule_user_group.users_group.members)
4401 'members': len(rule_user_group.users_group.members)
4401 }
4402 }
4402 for member in rule_user_group.users_group.members:
4403 for member in rule_user_group.users_group.members:
4403 if member.user.active:
4404 if member.user.active:
4404 key = member.user.username
4405 key = member.user.username
4405 if key in users:
4406 if key in users:
4406 # skip this member as we have him already
4407 # skip this member as we have him already
4407 # this prevents from override the "first" matched
4408 # this prevents from override the "first" matched
4408 # users with duplicates in multiple groups
4409 # users with duplicates in multiple groups
4409 continue
4410 continue
4410
4411
4411 users[key] = {
4412 users[key] = {
4412 'user': member.user,
4413 'user': member.user,
4413 'source': 'user_group',
4414 'source': 'user_group',
4414 'source_data': source_data,
4415 'source_data': source_data,
4415 'data': rule_user_group.rule_data()
4416 'data': rule_user_group.rule_data()
4416 }
4417 }
4417
4418
4418 return users
4419 return users
4419
4420
4420 def user_group_vote_rule(self, user_id):
4421 def user_group_vote_rule(self, user_id):
4421
4422
4422 rules = []
4423 rules = []
4423 if not self.rule_user_groups:
4424 if not self.rule_user_groups:
4424 return rules
4425 return rules
4425
4426
4426 for user_group in self.rule_user_groups:
4427 for user_group in self.rule_user_groups:
4427 user_group_members = [x.user_id for x in user_group.users_group.members]
4428 user_group_members = [x.user_id for x in user_group.users_group.members]
4428 if user_id in user_group_members:
4429 if user_id in user_group_members:
4429 rules.append(user_group)
4430 rules.append(user_group)
4430 return rules
4431 return rules
4431
4432
4432 def __repr__(self):
4433 def __repr__(self):
4433 return '<RepoReviewerRule(id=%r, repo=%r)>' % (
4434 return '<RepoReviewerRule(id=%r, repo=%r)>' % (
4434 self.repo_review_rule_id, self.repo)
4435 self.repo_review_rule_id, self.repo)
4435
4436
4436
4437
4437 class ScheduleEntry(Base, BaseModel):
4438 class ScheduleEntry(Base, BaseModel):
4438 __tablename__ = 'schedule_entries'
4439 __tablename__ = 'schedule_entries'
4439 __table_args__ = (
4440 __table_args__ = (
4440 UniqueConstraint('schedule_name', name='s_schedule_name_idx'),
4441 UniqueConstraint('schedule_name', name='s_schedule_name_idx'),
4441 UniqueConstraint('task_uid', name='s_task_uid_idx'),
4442 UniqueConstraint('task_uid', name='s_task_uid_idx'),
4442 base_table_args,
4443 base_table_args,
4443 )
4444 )
4444
4445
4445 schedule_types = ['crontab', 'timedelta', 'integer']
4446 schedule_types = ['crontab', 'timedelta', 'integer']
4446 schedule_entry_id = Column('schedule_entry_id', Integer(), primary_key=True)
4447 schedule_entry_id = Column('schedule_entry_id', Integer(), primary_key=True)
4447
4448
4448 schedule_name = Column("schedule_name", String(255), nullable=False, unique=None, default=None)
4449 schedule_name = Column("schedule_name", String(255), nullable=False, unique=None, default=None)
4449 schedule_description = Column("schedule_description", String(10000), nullable=True, unique=None, default=None)
4450 schedule_description = Column("schedule_description", String(10000), nullable=True, unique=None, default=None)
4450 schedule_enabled = Column("schedule_enabled", Boolean(), nullable=False, unique=None, default=True)
4451 schedule_enabled = Column("schedule_enabled", Boolean(), nullable=False, unique=None, default=True)
4451
4452
4452 _schedule_type = Column("schedule_type", String(255), nullable=False, unique=None, default=None)
4453 _schedule_type = Column("schedule_type", String(255), nullable=False, unique=None, default=None)
4453 schedule_definition = Column('schedule_definition_json', MutationObj.as_mutable(JsonType(default=lambda: "", dialect_map=dict(mysql=LONGTEXT()))))
4454 schedule_definition = Column('schedule_definition_json', MutationObj.as_mutable(JsonType(default=lambda: "", dialect_map=dict(mysql=LONGTEXT()))))
4454
4455
4455 schedule_last_run = Column('schedule_last_run', DateTime(timezone=False), nullable=True, unique=None, default=None)
4456 schedule_last_run = Column('schedule_last_run', DateTime(timezone=False), nullable=True, unique=None, default=None)
4456 schedule_total_run_count = Column('schedule_total_run_count', Integer(), nullable=True, unique=None, default=0)
4457 schedule_total_run_count = Column('schedule_total_run_count', Integer(), nullable=True, unique=None, default=0)
4457
4458
4458 # task
4459 # task
4459 task_uid = Column("task_uid", String(255), nullable=False, unique=None, default=None)
4460 task_uid = Column("task_uid", String(255), nullable=False, unique=None, default=None)
4460 task_dot_notation = Column("task_dot_notation", String(4096), nullable=False, unique=None, default=None)
4461 task_dot_notation = Column("task_dot_notation", String(4096), nullable=False, unique=None, default=None)
4461 task_args = Column('task_args_json', MutationObj.as_mutable(JsonType(default=list, dialect_map=dict(mysql=LONGTEXT()))))
4462 task_args = Column('task_args_json', MutationObj.as_mutable(JsonType(default=list, dialect_map=dict(mysql=LONGTEXT()))))
4462 task_kwargs = Column('task_kwargs_json', MutationObj.as_mutable(JsonType(default=dict, dialect_map=dict(mysql=LONGTEXT()))))
4463 task_kwargs = Column('task_kwargs_json', MutationObj.as_mutable(JsonType(default=dict, dialect_map=dict(mysql=LONGTEXT()))))
4463
4464
4464 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
4465 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
4465 updated_on = Column('updated_on', DateTime(timezone=False), nullable=True, unique=None, default=None)
4466 updated_on = Column('updated_on', DateTime(timezone=False), nullable=True, unique=None, default=None)
4466
4467
4467 @hybrid_property
4468 @hybrid_property
4468 def schedule_type(self):
4469 def schedule_type(self):
4469 return self._schedule_type
4470 return self._schedule_type
4470
4471
4471 @schedule_type.setter
4472 @schedule_type.setter
4472 def schedule_type(self, val):
4473 def schedule_type(self, val):
4473 if val not in self.schedule_types:
4474 if val not in self.schedule_types:
4474 raise ValueError('Value must be on of `{}` and got `{}`'.format(
4475 raise ValueError('Value must be on of `{}` and got `{}`'.format(
4475 val, self.schedule_type))
4476 val, self.schedule_type))
4476
4477
4477 self._schedule_type = val
4478 self._schedule_type = val
4478
4479
4479 @classmethod
4480 @classmethod
4480 def get_uid(cls, obj):
4481 def get_uid(cls, obj):
4481 args = obj.task_args
4482 args = obj.task_args
4482 kwargs = obj.task_kwargs
4483 kwargs = obj.task_kwargs
4483 if isinstance(args, JsonRaw):
4484 if isinstance(args, JsonRaw):
4484 try:
4485 try:
4485 args = json.loads(args)
4486 args = json.loads(args)
4486 except ValueError:
4487 except ValueError:
4487 args = tuple()
4488 args = tuple()
4488
4489
4489 if isinstance(kwargs, JsonRaw):
4490 if isinstance(kwargs, JsonRaw):
4490 try:
4491 try:
4491 kwargs = json.loads(kwargs)
4492 kwargs = json.loads(kwargs)
4492 except ValueError:
4493 except ValueError:
4493 kwargs = dict()
4494 kwargs = dict()
4494
4495
4495 dot_notation = obj.task_dot_notation
4496 dot_notation = obj.task_dot_notation
4496 val = '.'.join(map(safe_str, [
4497 val = '.'.join(map(safe_str, [
4497 sorted(dot_notation), args, sorted(kwargs.items())]))
4498 sorted(dot_notation), args, sorted(kwargs.items())]))
4498 return hashlib.sha1(val).hexdigest()
4499 return hashlib.sha1(val).hexdigest()
4499
4500
4500 @classmethod
4501 @classmethod
4501 def get_by_schedule_name(cls, schedule_name):
4502 def get_by_schedule_name(cls, schedule_name):
4502 return cls.query().filter(cls.schedule_name == schedule_name).scalar()
4503 return cls.query().filter(cls.schedule_name == schedule_name).scalar()
4503
4504
4504 @classmethod
4505 @classmethod
4505 def get_by_schedule_id(cls, schedule_id):
4506 def get_by_schedule_id(cls, schedule_id):
4506 return cls.query().filter(cls.schedule_entry_id == schedule_id).scalar()
4507 return cls.query().filter(cls.schedule_entry_id == schedule_id).scalar()
4507
4508
4508 @property
4509 @property
4509 def task(self):
4510 def task(self):
4510 return self.task_dot_notation
4511 return self.task_dot_notation
4511
4512
4512 @property
4513 @property
4513 def schedule(self):
4514 def schedule(self):
4514 from rhodecode.lib.celerylib.utils import raw_2_schedule
4515 from rhodecode.lib.celerylib.utils import raw_2_schedule
4515 schedule = raw_2_schedule(self.schedule_definition, self.schedule_type)
4516 schedule = raw_2_schedule(self.schedule_definition, self.schedule_type)
4516 return schedule
4517 return schedule
4517
4518
4518 @property
4519 @property
4519 def args(self):
4520 def args(self):
4520 try:
4521 try:
4521 return list(self.task_args or [])
4522 return list(self.task_args or [])
4522 except ValueError:
4523 except ValueError:
4523 return list()
4524 return list()
4524
4525
4525 @property
4526 @property
4526 def kwargs(self):
4527 def kwargs(self):
4527 try:
4528 try:
4528 return dict(self.task_kwargs or {})
4529 return dict(self.task_kwargs or {})
4529 except ValueError:
4530 except ValueError:
4530 return dict()
4531 return dict()
4531
4532
4532 def _as_raw(self, val):
4533 def _as_raw(self, val):
4533 if hasattr(val, 'de_coerce'):
4534 if hasattr(val, 'de_coerce'):
4534 val = val.de_coerce()
4535 val = val.de_coerce()
4535 if val:
4536 if val:
4536 val = json.dumps(val)
4537 val = json.dumps(val)
4537
4538
4538 return val
4539 return val
4539
4540
4540 @property
4541 @property
4541 def schedule_definition_raw(self):
4542 def schedule_definition_raw(self):
4542 return self._as_raw(self.schedule_definition)
4543 return self._as_raw(self.schedule_definition)
4543
4544
4544 @property
4545 @property
4545 def args_raw(self):
4546 def args_raw(self):
4546 return self._as_raw(self.task_args)
4547 return self._as_raw(self.task_args)
4547
4548
4548 @property
4549 @property
4549 def kwargs_raw(self):
4550 def kwargs_raw(self):
4550 return self._as_raw(self.task_kwargs)
4551 return self._as_raw(self.task_kwargs)
4551
4552
4552 def __repr__(self):
4553 def __repr__(self):
4553 return '<DB:ScheduleEntry({}:{})>'.format(
4554 return '<DB:ScheduleEntry({}:{})>'.format(
4554 self.schedule_entry_id, self.schedule_name)
4555 self.schedule_entry_id, self.schedule_name)
4555
4556
4556
4557
4557 @event.listens_for(ScheduleEntry, 'before_update')
4558 @event.listens_for(ScheduleEntry, 'before_update')
4558 def update_task_uid(mapper, connection, target):
4559 def update_task_uid(mapper, connection, target):
4559 target.task_uid = ScheduleEntry.get_uid(target)
4560 target.task_uid = ScheduleEntry.get_uid(target)
4560
4561
4561
4562
4562 @event.listens_for(ScheduleEntry, 'before_insert')
4563 @event.listens_for(ScheduleEntry, 'before_insert')
4563 def set_task_uid(mapper, connection, target):
4564 def set_task_uid(mapper, connection, target):
4564 target.task_uid = ScheduleEntry.get_uid(target)
4565 target.task_uid = ScheduleEntry.get_uid(target)
4565
4566
4566
4567
4567 class _BaseBranchPerms(BaseModel):
4568 class _BaseBranchPerms(BaseModel):
4568 @classmethod
4569 @classmethod
4569 def compute_hash(cls, value):
4570 def compute_hash(cls, value):
4570 return sha1_safe(value)
4571 return sha1_safe(value)
4571
4572
4572 @hybrid_property
4573 @hybrid_property
4573 def branch_pattern(self):
4574 def branch_pattern(self):
4574 return self._branch_pattern or '*'
4575 return self._branch_pattern or '*'
4575
4576
4576 @hybrid_property
4577 @hybrid_property
4577 def branch_hash(self):
4578 def branch_hash(self):
4578 return self._branch_hash
4579 return self._branch_hash
4579
4580
4580 def _validate_glob(self, value):
4581 def _validate_glob(self, value):
4581 re.compile('^' + glob2re(value) + '$')
4582 re.compile('^' + glob2re(value) + '$')
4582
4583
4583 @branch_pattern.setter
4584 @branch_pattern.setter
4584 def branch_pattern(self, value):
4585 def branch_pattern(self, value):
4585 self._validate_glob(value)
4586 self._validate_glob(value)
4586 self._branch_pattern = value or '*'
4587 self._branch_pattern = value or '*'
4587 # set the Hash when setting the branch pattern
4588 # set the Hash when setting the branch pattern
4588 self._branch_hash = self.compute_hash(self._branch_pattern)
4589 self._branch_hash = self.compute_hash(self._branch_pattern)
4589
4590
4590 def matches(self, branch):
4591 def matches(self, branch):
4591 """
4592 """
4592 Check if this the branch matches entry
4593 Check if this the branch matches entry
4593
4594
4594 :param branch: branch name for the commit
4595 :param branch: branch name for the commit
4595 """
4596 """
4596
4597
4597 branch = branch or ''
4598 branch = branch or ''
4598
4599
4599 branch_matches = True
4600 branch_matches = True
4600 if branch:
4601 if branch:
4601 branch_regex = re.compile('^' + glob2re(self.branch_pattern) + '$')
4602 branch_regex = re.compile('^' + glob2re(self.branch_pattern) + '$')
4602 branch_matches = bool(branch_regex.search(branch))
4603 branch_matches = bool(branch_regex.search(branch))
4603
4604
4604 return branch_matches
4605 return branch_matches
4605
4606
4606
4607
4607 class UserToRepoBranchPermission(Base, _BaseBranchPerms):
4608 class UserToRepoBranchPermission(Base, _BaseBranchPerms):
4608 __tablename__ = 'user_to_repo_branch_permissions'
4609 __tablename__ = 'user_to_repo_branch_permissions'
4609 __table_args__ = (
4610 __table_args__ = (
4610 {'extend_existing': True, 'mysql_engine': 'InnoDB',
4611 {'extend_existing': True, 'mysql_engine': 'InnoDB',
4611 'mysql_charset': 'utf8', 'sqlite_autoincrement': True,}
4612 'mysql_charset': 'utf8', 'sqlite_autoincrement': True,}
4612 )
4613 )
4613
4614
4614 branch_rule_id = Column('branch_rule_id', Integer(), primary_key=True)
4615 branch_rule_id = Column('branch_rule_id', Integer(), primary_key=True)
4615
4616
4616 repository_id = Column('repository_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
4617 repository_id = Column('repository_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
4617 repo = relationship('Repository', backref='user_branch_perms')
4618 repo = relationship('Repository', backref='user_branch_perms')
4618
4619
4619 permission_id = Column('permission_id', Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
4620 permission_id = Column('permission_id', Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
4620 permission = relationship('Permission')
4621 permission = relationship('Permission')
4621
4622
4622 rule_to_perm_id = Column('rule_to_perm_id', Integer(), ForeignKey('repo_to_perm.repo_to_perm_id'), nullable=False, unique=None, default=None)
4623 rule_to_perm_id = Column('rule_to_perm_id', Integer(), ForeignKey('repo_to_perm.repo_to_perm_id'), nullable=False, unique=None, default=None)
4623 user_repo_to_perm = relationship('UserRepoToPerm')
4624 user_repo_to_perm = relationship('UserRepoToPerm')
4624
4625
4625 rule_order = Column('rule_order', Integer(), nullable=False)
4626 rule_order = Column('rule_order', Integer(), nullable=False)
4626 _branch_pattern = Column('branch_pattern', UnicodeText().with_variant(UnicodeText(2048), 'mysql'), default=u'*') # glob
4627 _branch_pattern = Column('branch_pattern', UnicodeText().with_variant(UnicodeText(2048), 'mysql'), default=u'*') # glob
4627 _branch_hash = Column('branch_hash', UnicodeText().with_variant(UnicodeText(2048), 'mysql'))
4628 _branch_hash = Column('branch_hash', UnicodeText().with_variant(UnicodeText(2048), 'mysql'))
4628
4629
4629 def __unicode__(self):
4630 def __unicode__(self):
4630 return u'<UserBranchPermission(%s => %r)>' % (
4631 return u'<UserBranchPermission(%s => %r)>' % (
4631 self.user_repo_to_perm, self.branch_pattern)
4632 self.user_repo_to_perm, self.branch_pattern)
4632
4633
4633
4634
4634 class UserGroupToRepoBranchPermission(Base, _BaseBranchPerms):
4635 class UserGroupToRepoBranchPermission(Base, _BaseBranchPerms):
4635 __tablename__ = 'user_group_to_repo_branch_permissions'
4636 __tablename__ = 'user_group_to_repo_branch_permissions'
4636 __table_args__ = (
4637 __table_args__ = (
4637 {'extend_existing': True, 'mysql_engine': 'InnoDB',
4638 {'extend_existing': True, 'mysql_engine': 'InnoDB',
4638 'mysql_charset': 'utf8', 'sqlite_autoincrement': True,}
4639 'mysql_charset': 'utf8', 'sqlite_autoincrement': True,}
4639 )
4640 )
4640
4641
4641 branch_rule_id = Column('branch_rule_id', Integer(), primary_key=True)
4642 branch_rule_id = Column('branch_rule_id', Integer(), primary_key=True)
4642
4643
4643 repository_id = Column('repository_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
4644 repository_id = Column('repository_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
4644 repo = relationship('Repository', backref='user_group_branch_perms')
4645 repo = relationship('Repository', backref='user_group_branch_perms')
4645
4646
4646 permission_id = Column('permission_id', Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
4647 permission_id = Column('permission_id', Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
4647 permission = relationship('Permission')
4648 permission = relationship('Permission')
4648
4649
4649 rule_to_perm_id = Column('rule_to_perm_id', Integer(), ForeignKey('users_group_repo_to_perm.users_group_to_perm_id'), nullable=False, unique=None, default=None)
4650 rule_to_perm_id = Column('rule_to_perm_id', Integer(), ForeignKey('users_group_repo_to_perm.users_group_to_perm_id'), nullable=False, unique=None, default=None)
4650 user_group_repo_to_perm = relationship('UserGroupRepoToPerm')
4651 user_group_repo_to_perm = relationship('UserGroupRepoToPerm')
4651
4652
4652 rule_order = Column('rule_order', Integer(), nullable=False)
4653 rule_order = Column('rule_order', Integer(), nullable=False)
4653 _branch_pattern = Column('branch_pattern', UnicodeText().with_variant(UnicodeText(2048), 'mysql'), default=u'*') # glob
4654 _branch_pattern = Column('branch_pattern', UnicodeText().with_variant(UnicodeText(2048), 'mysql'), default=u'*') # glob
4654 _branch_hash = Column('branch_hash', UnicodeText().with_variant(UnicodeText(2048), 'mysql'))
4655 _branch_hash = Column('branch_hash', UnicodeText().with_variant(UnicodeText(2048), 'mysql'))
4655
4656
4656 def __unicode__(self):
4657 def __unicode__(self):
4657 return u'<UserBranchPermission(%s => %r)>' % (
4658 return u'<UserBranchPermission(%s => %r)>' % (
4658 self.user_group_repo_to_perm, self.branch_pattern)
4659 self.user_group_repo_to_perm, self.branch_pattern)
4659
4660
4660
4661
4661 class DbMigrateVersion(Base, BaseModel):
4662 class DbMigrateVersion(Base, BaseModel):
4662 __tablename__ = 'db_migrate_version'
4663 __tablename__ = 'db_migrate_version'
4663 __table_args__ = (
4664 __table_args__ = (
4664 base_table_args,
4665 base_table_args,
4665 )
4666 )
4666
4667
4667 repository_id = Column('repository_id', String(250), primary_key=True)
4668 repository_id = Column('repository_id', String(250), primary_key=True)
4668 repository_path = Column('repository_path', Text)
4669 repository_path = Column('repository_path', Text)
4669 version = Column('version', Integer)
4670 version = Column('version', Integer)
4670
4671
4671 @classmethod
4672 @classmethod
4672 def set_version(cls, version):
4673 def set_version(cls, version):
4673 """
4674 """
4674 Helper for forcing a different version, usually for debugging purposes via ishell.
4675 Helper for forcing a different version, usually for debugging purposes via ishell.
4675 """
4676 """
4676 ver = DbMigrateVersion.query().first()
4677 ver = DbMigrateVersion.query().first()
4677 ver.version = version
4678 ver.version = version
4678 Session().commit()
4679 Session().commit()
4679
4680
4680
4681
4681 class DbSession(Base, BaseModel):
4682 class DbSession(Base, BaseModel):
4682 __tablename__ = 'db_session'
4683 __tablename__ = 'db_session'
4683 __table_args__ = (
4684 __table_args__ = (
4684 base_table_args,
4685 base_table_args,
4685 )
4686 )
4686
4687
4687 def __repr__(self):
4688 def __repr__(self):
4688 return '<DB:DbSession({})>'.format(self.id)
4689 return '<DB:DbSession({})>'.format(self.id)
4689
4690
4690 id = Column('id', Integer())
4691 id = Column('id', Integer())
4691 namespace = Column('namespace', String(255), primary_key=True)
4692 namespace = Column('namespace', String(255), primary_key=True)
4692 accessed = Column('accessed', DateTime, nullable=False)
4693 accessed = Column('accessed', DateTime, nullable=False)
4693 created = Column('created', DateTime, nullable=False)
4694 created = Column('created', DateTime, nullable=False)
4694 data = Column('data', PickleType, nullable=False)
4695 data = Column('data', PickleType, nullable=False)
Show file before | Show file after | Hide comments
@@ -1,201 +1,201 b''
1 <%namespace name="base" file="/base/base.mako"/>
1 <%namespace name="base" file="/base/base.mako"/>
2
2
3 <div class="panel panel-default">
3 <div class="panel panel-default">
4 <div class="panel-heading">
4 <div class="panel-heading">
5 <h3 class="panel-title">${_('Repository Permissions')}</h3>
5 <h3 class="panel-title">${_('Repository Permissions')}</h3>
6 </div>
6 </div>
7 <div class="panel-body">
7 <div class="panel-body">
8 ${h.secure_form(h.route_path('edit_repo_perms', repo_name=c.repo_name), request=request)}
8 ${h.secure_form(h.route_path('edit_repo_perms', repo_name=c.repo_name), request=request)}
9 <table id="permissions_manage" class="rctable permissions">
9 <table id="permissions_manage" class="rctable permissions">
10 <tr>
10 <tr>
11 <th class="td-radio">${_('None')}</th>
11 <th class="td-radio">${_('None')}</th>
12 <th class="td-radio">${_('Read')}</th>
12 <th class="td-radio">${_('Read')}</th>
13 <th class="td-radio">${_('Write')}</th>
13 <th class="td-radio">${_('Write')}</th>
14 <th class="td-radio">${_('Admin')}</th>
14 <th class="td-radio">${_('Admin')}</th>
15 <th class="td-owner">${_('User/User Group')}</th>
15 <th class="td-owner">${_('User/User Group')}</th>
16 <th class="td-action"></th>
16 <th class="td-action"></th>
17 <th class="td-action"></th>
17 <th class="td-action"></th>
18 </tr>
18 </tr>
19 ## USERS
19 ## USERS
20 %for _user in c.rhodecode_db_repo.permissions():
20 %for _user in c.rhodecode_db_repo.permissions():
21 %if getattr(_user, 'admin_row', None) or getattr(_user, 'owner_row', None):
21 %if getattr(_user, 'admin_row', None) or getattr(_user, 'owner_row', None):
22 <tr class="perm_admin_row">
22 <tr class="perm_admin_row">
23 <td class="td-radio">${h.radio('admin_perm_%s' % _user.user_id,'repository.none', disabled="disabled")}</td>
23 <td class="td-radio">${h.radio('admin_perm_%s' % _user.user_id,'repository.none', disabled="disabled")}</td>
24 <td class="td-radio">${h.radio('admin_perm_%s' % _user.user_id,'repository.read', disabled="disabled")}</td>
24 <td class="td-radio">${h.radio('admin_perm_%s' % _user.user_id,'repository.read', disabled="disabled")}</td>
25 <td class="td-radio">${h.radio('admin_perm_%s' % _user.user_id,'repository.write', disabled="disabled")}</td>
25 <td class="td-radio">${h.radio('admin_perm_%s' % _user.user_id,'repository.write', disabled="disabled")}</td>
26 <td class="td-radio">${h.radio('admin_perm_%s' % _user.user_id,'repository.admin', 'repository.admin', disabled="disabled")}</td>
26 <td class="td-radio">${h.radio('admin_perm_%s' % _user.user_id,'repository.admin', 'repository.admin', disabled="disabled")}</td>
27 <td class="td-user">
27 <td class="td-user">
28 ${base.gravatar(_user.email, 16)}
28 ${base.gravatar(_user.email, 16)}
29 ${h.link_to_user(_user.username)}
29 ${h.link_to_user(_user.username)}
30 %if getattr(_user, 'admin_row', None):
30 %if getattr(_user, 'admin_row', None):
31 (${_('super admin')})
31 (${_('super admin')})
32 %endif
32 %endif
33 %if getattr(_user, 'owner_row', None):
33 %if getattr(_user, 'owner_row', None):
34 (${_('owner')})
34 (${_('owner')})
35 %endif
35 %endif
36 </td>
36 </td>
37 <td></td>
37 <td></td>
38 <td class="quick_repo_menu">
38 <td class="quick_repo_menu">
39 % if c.rhodecode_user.is_admin:
39 % if c.rhodecode_user.is_admin:
40 <i class="icon-more"></i>
40 <i class="icon-more"></i>
41 <div class="menu_items_container" style="display: none;">
41 <div class="menu_items_container" style="display: none;">
42 <ul class="menu_items">
42 <ul class="menu_items">
43 <li>
43 <li>
44 ${h.link_to('show permissions', h.route_path('edit_user_perms_summary', user_id=_user.user_id, _anchor='repositories-permissions'))}
44 ${h.link_to('show permissions', h.route_path('edit_user_perms_summary', user_id=_user.user_id, _anchor='repositories-permissions'))}
45 </li>
45 </li>
46 </ul>
46 </ul>
47 </div>
47 </div>
48 % endif
48 % endif
49 </td>
49 </td>
50 </tr>
50 </tr>
51 %elif _user.username == h.DEFAULT_USER and c.rhodecode_db_repo.private:
51 %elif _user.username == h.DEFAULT_USER and c.rhodecode_db_repo.private:
52 <tr>
52 <tr>
53 <td colspan="4">
53 <td colspan="4">
54 <span class="private_repo_msg">
54 <span class="private_repo_msg">
55 <strong title="${h.tooltip(_user.permission)}">${_('private repository')}</strong>
55 <strong title="${h.tooltip(_user.permission)}">${_('private repository')}</strong>
56 </span>
56 </span>
57 </td>
57 </td>
58 <td class="private_repo_msg">
58 <td class="private_repo_msg">
59 ${base.gravatar(h.DEFAULT_USER_EMAIL, 16)}
59 ${base.gravatar(h.DEFAULT_USER_EMAIL, 16)}
60 ${h.DEFAULT_USER} - ${_('only users/user groups explicitly added here will have access')}</td>
60 ${h.DEFAULT_USER} - ${_('only users/user groups explicitly added here will have access')}</td>
61 <td></td>
61 <td></td>
62 <td class="quick_repo_menu">
62 <td class="quick_repo_menu">
63 % if c.rhodecode_user.is_admin:
63 % if c.rhodecode_user.is_admin:
64 <i class="icon-more"></i>
64 <i class="icon-more"></i>
65 <div class="menu_items_container" style="display: none;">
65 <div class="menu_items_container" style="display: none;">
66 <ul class="menu_items">
66 <ul class="menu_items">
67 <li>
67 <li>
68 ${h.link_to('show permissions', h.route_path('admin_permissions_overview', _anchor='repositories-permissions'))}
68 ${h.link_to('show permissions', h.route_path('admin_permissions_overview', _anchor='repositories-permissions'))}
69 </li>
69 </li>
70 </ul>
70 </ul>
71 </div>
71 </div>
72 % endif
72 % endif
73 </td>
73 </td>
74 </tr>
74 </tr>
75 %else:
75 %else:
76 <% used_by_n_rules = len(getattr(_user, 'branch_rules', None) or []) %>
76 <tr>
77 <tr>
77 <td class="td-radio">${h.radio('u_perm_%s' % _user.user_id,'repository.none', checked=_user.permission=='repository.none')}</td>
78 <td class="td-radio">${h.radio('u_perm_%s' % _user.user_id,'repository.none', checked=_user.permission=='repository.none', disabled="disabled" if (used_by_n_rules and _user.username != h.DEFAULT_USER) else None)}</td>
78 <td class="td-radio">${h.radio('u_perm_%s' % _user.user_id,'repository.read', checked=_user.permission=='repository.read')}</td>
79 <td class="td-radio">${h.radio('u_perm_%s' % _user.user_id,'repository.read', checked=_user.permission=='repository.read', disabled="disabled" if (used_by_n_rules and _user.username != h.DEFAULT_USER) else None)}</td>
79 <td class="td-radio">${h.radio('u_perm_%s' % _user.user_id,'repository.write', checked=_user.permission=='repository.write')}</td>
80 <td class="td-radio">${h.radio('u_perm_%s' % _user.user_id,'repository.write', checked=_user.permission=='repository.write')}</td>
80 <td class="td-radio">${h.radio('u_perm_%s' % _user.user_id,'repository.admin', checked=_user.permission=='repository.admin')}</td>
81 <td class="td-radio">${h.radio('u_perm_%s' % _user.user_id,'repository.admin', checked=_user.permission=='repository.admin')}</td>
81 <td class="td-user">
82 <td class="td-user">
82 ${base.gravatar(_user.email, 16)}
83 ${base.gravatar(_user.email, 16)}
83 <span class="user">
84 <span class="user">
84 % if _user.username == h.DEFAULT_USER:
85 % if _user.username == h.DEFAULT_USER:
85 ${h.DEFAULT_USER} <span class="user-perm-help-text"> - ${_('permission for all other users')}</span>
86 ${h.DEFAULT_USER} <span class="user-perm-help-text"> - ${_('permission for all other users')}</span>
86 % else:
87 % else:
87 ${h.link_to_user(_user.username)}
88 ${h.link_to_user(_user.username)}
88 %if getattr(_user, 'duplicate_perm', None):
89 %if getattr(_user, 'duplicate_perm', None):
89 (${_('inactive duplicate')})
90 (${_('inactive duplicate')})
90 %endif
91 %endif
91 %if getattr(_user, 'branch_rules', None):
92 %if getattr(_user, 'branch_rules', None):
92 <% used_by_n_rules = len(_user.branch_rules) %>
93 % if used_by_n_rules == 1:
93 % if used_by_n_rules == 1:
94 (${_('used by {} branch rule').format(used_by_n_rules)})
94 (${_('used by {} branch rule, requires write+ permissions').format(used_by_n_rules)})
95 % else:
95 % else:
96 (${_('used by {} branch rules').format(used_by_n_rules)})
96 (${_('used by {} branch rules, requires write+ permissions').format(used_by_n_rules)})
97 % endif
97 % endif
98 %endif
98 %endif
99 % endif
99 % endif
100 </span>
100 </span>
101 </td>
101 </td>
102 <td class="td-action">
102 <td class="td-action">
103 %if _user.username != h.DEFAULT_USER and getattr(_user, 'branch_rules', None) is None:
103 %if _user.username != h.DEFAULT_USER and getattr(_user, 'branch_rules', None) is None:
104 <span class="btn btn-link btn-danger revoke_perm"
104 <span class="btn btn-link btn-danger revoke_perm"
105 member="${_user.user_id}" member_type="user">
105 member="${_user.user_id}" member_type="user">
106 ${_('Remove')}
106 ${_('Remove')}
107 </span>
107 </span>
108 %endif
108 %endif
109 </td>
109 </td>
110 <td class="quick_repo_menu">
110 <td class="quick_repo_menu">
111 % if c.rhodecode_user.is_admin:
111 % if c.rhodecode_user.is_admin:
112 <i class="icon-more"></i>
112 <i class="icon-more"></i>
113 <div class="menu_items_container" style="display: none;">
113 <div class="menu_items_container" style="display: none;">
114 <ul class="menu_items">
114 <ul class="menu_items">
115 <li>
115 <li>
116 % if _user.username == h.DEFAULT_USER:
116 % if _user.username == h.DEFAULT_USER:
117 ${h.link_to('show permissions', h.route_path('admin_permissions_overview', _anchor='repositories-permissions'))}
117 ${h.link_to('show permissions', h.route_path('admin_permissions_overview', _anchor='repositories-permissions'))}
118 % else:
118 % else:
119 ${h.link_to('show permissions', h.route_path('edit_user_perms_summary', user_id=_user.user_id, _anchor='repositories-permissions'))}
119 ${h.link_to('show permissions', h.route_path('edit_user_perms_summary', user_id=_user.user_id, _anchor='repositories-permissions'))}
120 % endif
120 % endif
121 </li>
121 </li>
122 </ul>
122 </ul>
123 </div>
123 </div>
124 % endif
124 % endif
125 </td>
125 </td>
126 </tr>
126 </tr>
127 %endif
127 %endif
128 %endfor
128 %endfor
129
129
130 ## USER GROUPS
130 ## USER GROUPS
131 %for _user_group in c.rhodecode_db_repo.permission_user_groups():
131 %for _user_group in c.rhodecode_db_repo.permission_user_groups():
132 <tr>
132 <tr>
133 <td class="td-radio">${h.radio('g_perm_%s' % _user_group.users_group_id,'repository.none', checked=_user_group.permission=='repository.none')}</td>
133 <td class="td-radio">${h.radio('g_perm_%s' % _user_group.users_group_id,'repository.none', checked=_user_group.permission=='repository.none')}</td>
134 <td class="td-radio">${h.radio('g_perm_%s' % _user_group.users_group_id,'repository.read', checked=_user_group.permission=='repository.read')}</td>
134 <td class="td-radio">${h.radio('g_perm_%s' % _user_group.users_group_id,'repository.read', checked=_user_group.permission=='repository.read')}</td>
135 <td class="td-radio">${h.radio('g_perm_%s' % _user_group.users_group_id,'repository.write', checked=_user_group.permission=='repository.write')}</td>
135 <td class="td-radio">${h.radio('g_perm_%s' % _user_group.users_group_id,'repository.write', checked=_user_group.permission=='repository.write')}</td>
136 <td class="td-radio">${h.radio('g_perm_%s' % _user_group.users_group_id,'repository.admin', checked=_user_group.permission=='repository.admin')}</td>
136 <td class="td-radio">${h.radio('g_perm_%s' % _user_group.users_group_id,'repository.admin', checked=_user_group.permission=='repository.admin')}</td>
137 <td class="td-componentname">
137 <td class="td-componentname">
138 <i class="icon-user-group"></i>
138 <i class="icon-user-group"></i>
139 %if h.HasPermissionAny('hg.admin')():
139 %if h.HasPermissionAny('hg.admin')():
140 <a href="${h.route_path('edit_user_group',user_group_id=_user_group.users_group_id)}">
140 <a href="${h.route_path('edit_user_group',user_group_id=_user_group.users_group_id)}">
141 ${_user_group.users_group_name}
141 ${_user_group.users_group_name}
142 </a>
142 </a>
143 %else:
143 %else:
144 ${h.link_to_group(_user_group.users_group_name)}
144 ${h.link_to_group(_user_group.users_group_name)}
145 %endif
145 %endif
146 </td>
146 </td>
147 <td class="td-action">
147 <td class="td-action">
148 <span class="btn btn-link btn-danger revoke_perm"
148 <span class="btn btn-link btn-danger revoke_perm"
149 member="${_user_group.users_group_id}" member_type="user_group">
149 member="${_user_group.users_group_id}" member_type="user_group">
150 ${_('Remove')}
150 ${_('Remove')}
151 </span>
151 </span>
152 </td>
152 </td>
153 <td class="quick_repo_menu">
153 <td class="quick_repo_menu">
154 % if c.rhodecode_user.is_admin:
154 % if c.rhodecode_user.is_admin:
155 <i class="icon-more"></i>
155 <i class="icon-more"></i>
156 <div class="menu_items_container" style="display: none;">
156 <div class="menu_items_container" style="display: none;">
157 <ul class="menu_items">
157 <ul class="menu_items">
158 <li>
158 <li>
159 ${h.link_to('show permissions', h.route_path('edit_user_group_perms_summary', user_group_id=_user_group.users_group_id, _anchor='repositories-permissions'))}
159 ${h.link_to('show permissions', h.route_path('edit_user_group_perms_summary', user_group_id=_user_group.users_group_id, _anchor='repositories-permissions'))}
160 </li>
160 </li>
161 </ul>
161 </ul>
162 </div>
162 </div>
163 % endif
163 % endif
164 </td>
164 </td>
165 </tr>
165 </tr>
166 %endfor
166 %endfor
167 <tr class="new_members" id="add_perm_input"></tr>
167 <tr class="new_members" id="add_perm_input"></tr>
168
168
169 <tr>
169 <tr>
170 <td></td>
170 <td></td>
171 <td></td>
171 <td></td>
172 <td></td>
172 <td></td>
173 <td></td>
173 <td></td>
174 <td></td>
174 <td></td>
175 <td>
175 <td>
176 <span id="add_perm" class="link">
176 <span id="add_perm" class="link">
177 ${_('Add user/user group')}
177 ${_('Add user/user group')}
178 </span>
178 </span>
179 </td>
179 </td>
180 <td></td>
180 <td></td>
181 </tr>
181 </tr>
182
182
183 </table>
183 </table>
184
184
185 <div class="buttons">
185 <div class="buttons">
186 ${h.submit('save',_('Save'),class_="btn btn-primary")}
186 ${h.submit('save',_('Save'),class_="btn btn-primary")}
187 ${h.reset('reset',_('Reset'),class_="btn btn-danger")}
187 ${h.reset('reset',_('Reset'),class_="btn btn-danger")}
188 </div>
188 </div>
189 ${h.end_form()}
189 ${h.end_form()}
190 </div>
190 </div>
191 </div>
191 </div>
192
192
193 <script type="text/javascript">
193 <script type="text/javascript">
194 $('#add_perm').on('click', function(e){
194 $('#add_perm').on('click', function(e){
195 addNewPermInput($(this), 'repository');
195 addNewPermInput($(this), 'repository');
196 });
196 });
197 $('.revoke_perm').on('click', function(e){
197 $('.revoke_perm').on('click', function(e){
198 markRevokePermInput($(this), 'repository');
198 markRevokePermInput($(this), 'repository');
199 });
199 });
200 quick_repo_menu();
200 quick_repo_menu();
201 </script>
201 </script>
General Comments 0
You need to be logged in to leave comments. Login now