rhodecode-enterprise-ce Commit - r4011:e2f9b772

artifacts: handle detach/delete of artifacts for users who own them and are to be deleted....

marcink -

r4011:e2f9b772 default

parent child

rhodecode/apps/admin/tests/test_admin_users.py

0 +1 -1

                         route_path('user_delete', user_id=new_user.user_id),
                         params={'csrf_token': self.csrf_token})
-                    assert_session_flash(response, 'Successfully deleted user')
+                    assert_session_flash(response, 'Successfully deleted user `{}`'.format(username))
                 def test_delete_owner_of_repository(self, request, user_util):
                     self.log_user()

rhodecode/apps/admin/views/users.py

0 +51 -39

@@ -376,59 +376,69 b' class UsersView(UserAppView):'
376	_repos = c.user.repositories	376	_repos = c.user.repositories
377	_repo_groups = c.user.repository_groups	377	_repo_groups = c.user.repository_groups
378	_user_groups = c.user.user_groups	378	_user_groups = c.user.user_groups
		379	_artifacts = c.user.artifacts
379		380
380	handle_repos = None	381	handle_repos = None
381	handle_repo_groups = None	382	handle_repo_groups = None
382	handle_user_groups = None	383	handle_user_groups = None
383	# dummy call for flash of handle	384	handle_artifacts = None
384	set_handle_flash_repos = lambda: None	385
385	set_handle_flash_repo_groups = lambda: None	386	# calls for flash of handle based on handle case detach or delete
386	~~set_han~~dle_f~~lash_user_groups~~ = ~~lambda~~: ~~None~~	387	def set_handle_flash_repos():
		388	handle = handle_repos
		389	if handle == 'detach':
		390	h.flash(_('Detached %s repositories') % len(_repos),
		391	category='success')
		392	elif handle == 'delete':
		393	h.flash(_('Deleted %s repositories') % len(_repos),
		394	category='success')
		395
		396	def set_handle_flash_repo_groups():
		397	handle = handle_repo_groups
		398	if handle == 'detach':
		399	h.flash(_('Detached %s repository groups') % len(_repo_groups),
		400	category='success')
		401	elif handle == 'delete':
		402	h.flash(_('Deleted %s repository groups') % len(_repo_groups),
		403	category='success')
		404
		405	def set_handle_flash_user_groups():
		406	handle = handle_user_groups
		407	if handle == 'detach':
		408	h.flash(_('Detached %s user groups') % len(_user_groups),
		409	category='success')
		410	elif handle == 'delete':
		411	h.flash(_('Deleted %s user groups') % len(_user_groups),
		412	category='success')
		413
		414	def set_handle_flash_artifacts():
		415	handle = handle_artifacts
		416	if handle == 'detach':
		417	h.flash(_('Detached %s artifacts') % len(_artifacts),
		418	category='success')
		419	elif handle == 'delete':
		420	h.flash(_('Deleted %s artifacts') % len(_artifacts),
		421	category='success')
387		422
388	if _repos and self.request.POST.get('user_repos'):	423	if _repos and self.request.POST.get('user_repos'):
389	do = self.request.POST['user_repos']	424	handle_repos = self.request.POST['user_repos']
390	if do == 'detach':
391	handle_repos = 'detach'
392	set_handle_flash_repos = lambda: h.flash(
393	_('Detached %s repositories') % len(_repos),
394	category='success')
395	elif do == 'delete':
396	handle_repos = 'delete'
397	set_handle_flash_repos = lambda: h.flash(
398	_('Deleted %s repositories') % len(_repos),
399	category='success')
400		425
401	if _repo_groups and self.request.POST.get('user_repo_groups'):	426	if _repo_groups and self.request.POST.get('user_repo_groups'):
402	do = self.request.POST['user_repo_groups']	427	handle_repo_groups = self.request.POST['user_repo_groups']
403	if do == 'detach':
404	handle_repo_groups = 'detach'
405	set_handle_flash_repo_groups = lambda: h.flash(
406	_('Detached %s repository groups') % len(_repo_groups),
407	category='success')
408	elif do == 'delete':
409	handle_repo_groups = 'delete'
410	set_handle_flash_repo_groups = lambda: h.flash(
411	_('Deleted %s repository groups') % len(_repo_groups),
412	category='success')
413		428
414	if _user_groups and self.request.POST.get('user_user_groups'):	429	if _user_groups and self.request.POST.get('user_user_groups'):
415	do = self.request.POST['user_user_groups']	430	handle_user_groups = self.request.POST['user_user_groups']
416	if do == 'detach':	431
417	handle_user_groups = 'detach'	432	if _artifacts and self.request.POST.get('user_artifacts'):
418	set_handle_flash_user_groups = lambda: h.flash(	433	handle_artifacts = self.request.POST['user_artifacts']
419	_('Detached %s user groups') % len(_user_groups),
420	category='success')
421	elif do == 'delete':
422	handle_user_groups = 'delete'
423	set_handle_flash_user_groups = lambda: h.flash(
424	_('Deleted %s user groups') % len(_user_groups),
425	category='success')
426		434
427	old_values = c.user.get_api_data()	435	old_values = c.user.get_api_data()
		436
428	try:	437	try:
429	UserModel().delete(c.user, handle_repos=handle_repos,	438	UserModel().delete(c.user, handle_repos=handle_repos,
430	handle_repo_groups=handle_repo_groups,	439	handle_repo_groups=handle_repo_groups,
431	handle_user_groups=handle_user_groups)	440	handle_user_groups=handle_user_groups,
		441	handle_artifacts=handle_artifacts)
432		442
433	audit_logger.store_web(	443	audit_logger.store_web(
434	'user.delete', action_data={'old_data': old_values},	444	'user.delete', action_data={'old_data': old_values},
@@ -438,7 +448,9 b' class UsersView(UserAppView):'
438	set_handle_flash_repos()	448	set_handle_flash_repos()
439	set_handle_flash_repo_groups()	449	set_handle_flash_repo_groups()
440	set_handle_flash_user_groups()	450	set_handle_flash_user_groups()
441	h.flash(_('Successfully deleted user'), category='success')	451	set_handle_flash_artifacts()
		452	username = h.escape(old_values['username'])
		453	h.flash(_('Successfully deleted user `{}`').format(username), category='success')
442	except (UserOwnsReposException, UserOwnsRepoGroupsException,	454	except (UserOwnsReposException, UserOwnsRepoGroupsException,
443	UserOwnsUserGroupsException, DefaultUserException) as e:	455	UserOwnsUserGroupsException, DefaultUserException) as e:
444	h.flash(e, category='warning')	456	h.flash(e, category='warning')

rhodecode/lib/exceptions.py

0 +4 0

                 pass
+            class UserOwnsArtifactsException(Exception):
+                pass
             class UserGroupAssignedException(Exception):
                 pass

rhodecode/model/db.py

0 +17 -10

                 # user pull requests
                 user_pull_requests = relationship('PullRequest', cascade='all')
                 # external identities
-                extenal_identities = relationship(
+                external_identities = relationship(
                     'ExternalIdentity',
                     primaryjoin="User.user_id==ExternalIdentity.local_user_id",
                     cascade='all')
                 # review rules
                 user_review_rules = relationship('RepoReviewRuleUser', cascade='all')
+                # artifacts owned
+                artifacts = relationship('FileStore', primaryjoin='FileStore.user_id==User.user_id')
+                # no cascade, set NULL
+                scope_artifacts = relationship('FileStore', primaryjoin='FileStore.scope_user_id==User.user_id')
                 def __unicode__(self):
                     return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
                                                   self.user_id, self.username)
                 scoped_tokens = relationship('UserApiKeys', cascade="all")
-                artifacts = relationship('FileStore', cascade="all")
+                # no cascade, set NULL
+                artifacts = relationship('FileStore', primaryjoin='FileStore.scope_repo_id==Repository.repo_id')
                 def __unicode__(self):
                     return u"<%s('%s:%s')>" % (self.__class__.__name__, self.repo_id,
                 user = relationship('User')
                 integrations = relationship('Integration', cascade="all, delete-orphan")
+                # no cascade, set NULL
+                scope_artifacts = relationship('FileStore', primaryjoin='FileStore.scope_repo_group_id==RepoGroup.group_id')
                 def __init__(self, group_name='', parent_group=None):
                     self.group_name = group_name
                     self.parent_group = parent_group
                         log.exception('Failed to set PullRequest %s state to %s', self._pr, pr_state)
                         raise
             class _PullRequestBase(BaseModel):
                 """
                 Common attributes of pull request and version entries.
                     else:
                         return '<DB:PullRequest at %#x>' % id(self)
-                reviewers = relationship('PullRequestReviewers',
+                reviewers = relationship('PullRequestReviewers', cascade="all, delete-orphan")
-                                         cascade="all, delete-orphan")
+                statuses = relationship('ChangesetStatus', cascade="all, delete-orphan")
-                statuses = relationship('ChangesetStatus',
+                comments = relationship('ChangesetComment', cascade="all, delete-orphan")
-                                        cascade="all, delete-orphan")
+                versions = relationship('PullRequestVersion', cascade="all, delete-orphan",
-                comments = relationship('ChangesetComment',
-                                        cascade="all, delete-orphan")
-                versions = relationship('PullRequestVersion',
-                                        cascade="all, delete-orphan",
                                         lazy='dynamic')
                 @classmethod

rhodecode/model/user.py

0 +36 -2

@@ -37,7 +37,7 b' from rhodecode.lib.utils2 import ('
37	AttributeDict, str2bool)	37	AttributeDict, str2bool)
38	from rhodecode.lib.exceptions import (	38	from rhodecode.lib.exceptions import (
39	DefaultUserException, UserOwnsReposException, UserOwnsRepoGroupsException,	39	DefaultUserException, UserOwnsReposException, UserOwnsRepoGroupsException,
40	UserOwnsUserGroupsException, NotAllowedToCreateUserError)	40	UserOwnsUserGroupsException, NotAllowedToCreateUserError, UserOwnsArtifactsException)
41	from rhodecode.lib.caching_query import FromCache	41	from rhodecode.lib.caching_query import FromCache
42	from rhodecode.model import BaseModel	42	from rhodecode.model import BaseModel
43	from rhodecode.model.auth_token import AuthTokenModel	43	from rhodecode.model.auth_token import AuthTokenModel
@@ -505,8 +505,33 b' class UserModel(BaseModel):'
505	# if nothing is done we have left overs left	505	# if nothing is done we have left overs left
506	return left_overs	506	return left_overs
507		507
		508	def _handle_user_artifacts(self, username, artifacts, handle_mode=None):
		509	_superadmin = self.cls.get_first_super_admin()
		510	left_overs = True
		511
		512	if handle_mode == 'detach':
		513	for a in artifacts:
		514	a.upload_user = _superadmin
		515	# set description we know why we super admin now owns
		516	# additional artifacts that were orphaned !
		517	a.file_description += ' \n::detached artifact from deleted user: %s' % (username,)
		518	self.sa.add(a)
		519	left_overs = False
		520	elif handle_mode == 'delete':
		521	from rhodecode.apps.file_store import utils as store_utils
		522	storage = store_utils.get_file_storage(self.request.registry.settings)
		523	for a in artifacts:
		524	file_uid = a.file_uid
		525	storage.delete(file_uid)
		526	self.sa.delete(a)
		527
		528	left_overs = False
		529
		530	# if nothing is done we have left overs left
		531	return left_overs
		532
508	def delete(self, user, cur_user=None, handle_repos=None,	533	def delete(self, user, cur_user=None, handle_repos=None,
509	handle_repo_groups=None, handle_user_groups=None):	534	handle_repo_groups=None, handle_user_groups=None, handle_artifacts=None):
510	from rhodecode.lib.hooks_base import log_delete_user	535	from rhodecode.lib.hooks_base import log_delete_user
511		536
512	if not cur_user:	537	if not cur_user:
@@ -548,6 +573,15 b' class UserModel(BaseModel):'
548	u'removed. Switch owners or remove those user groups:%s'	573	u'removed. Switch owners or remove those user groups:%s'
549	% (user.username, len(user_groups), ', '.join(user_groups)))	574	% (user.username, len(user_groups), ', '.join(user_groups)))
550		575
		576	left_overs = self._handle_user_artifacts(
		577	user.username, user.artifacts, handle_artifacts)
		578	if left_overs and user.artifacts:
		579	artifacts = [x.file_uid for x in user.artifacts]
		580	raise UserOwnsArtifactsException(
		581	u'user "%s" still owns %s artifacts and cannot be '
		582	u'removed. Switch owners or remove those artifacts:%s'
		583	% (user.username, len(artifacts), ', '.join(artifacts)))
		584
551	user_data = user.get_dict() # fetch user data before expire	585	user_data = user.get_dict() # fetch user data before expire
552		586
553	# we might change the user data with detach/delete, make sure	587	# we might change the user data with detach/delete, make sure

rhodecode/templates/admin/users/user_edit_advanced.mako

0 +26 -2

                 (_('Repository groups'), len(c.user.repository_groups), '', [x.group_name for x in c.user.repository_groups]),
                 (_('User groups'), len(c.user.user_groups), '', [x.users_group_name for x in c.user.user_groups]),
+                (_('Owned Artifacts'), len(c.user.artifacts), '', [x.file_uid for x in c.user.artifacts]),
                 (_('Reviewer of pull requests'), len(c.user.reviewer_pull_requests), '', ['Pull Request #{}'.format(x.pull_request.pull_request_id) for x in c.user.reviewer_pull_requests]),
                 (_('Assigned to review rules'), len(c.user_to_review_rules), '', [x for x in c.user_to_review_rules]),
             <div class="panel panel-default">
                 <div class="panel-heading">
-                    <h3 class="panel-title">${_('User: %s') % c.user.username}</h3>
+                    <h3 class="panel-title">${_('User: {}').format(c.user.username)}</h3>
                 </div>
                 <div class="panel-body">
-                    ${base.dt_info_panel(elems)}
+                    <table class="rctable">
+                        <tr>
+                            <th>Name</th>
+                            <th>Value</th>
+                            <th>Action</th>
+                        </tr>
+                        % for elem in elems:
+                            ${base.tr_info_entry(elem)}
+                        % endfor
+                    </table>
                 </div>
             </div>
                                     <input type="radio" id="user_user_groups_2" name="user_user_groups" value="delete" ${'disabled=1' if len(c.user.user_groups) == 0 else ''}/> <label for="user_user_groups_2">${_('Delete repositories')}</label>
                                 </td>
                             </tr>
+                            <tr>
+                                <td>
+                                    ${_ungettext('This user owns %s artifact.', 'This user owns %s artifacts.', len(c.user.artifacts)) % len(c.user.artifacts)}
+                                </td>
+                                <td>
+                                    <input type="radio" id="user_artifacts_1" name="user_artifacts" value="detach" checked="checked" ${'disabled=1' if len(c.user.artifacts) == 0 else ''}/> <label for="user_artifacts_1">${_('Detach Artifacts')}</label>
+                                </td>
+                                <td>
+                                    <input type="radio" id="user_artifacts_2" name="user_artifacts" value="delete" ${'disabled=1' if len(c.user.artifacts) == 0 else ''}/> <label for="user_artifacts_2">${_('Delete Artifacts')}</label>
+                                </td>
+                            </tr>
                         </table>
                         <div style="margin: 0 0 20px 0" class="fake-space"></div>
                         <div class="pull-left">

rhodecode/templates/base/base.mako

0 +30 0

@@ -164,6 +164,36 b''
164	</dl>	164	</dl>
165	</%def>	165	</%def>
166		166
		167	<%def name="tr_info_entry(element)">
		168	<% key, val, title, show_items = element %>
		169
		170	<tr>
		171	<td style="vertical-align: top">${key}</td>
		172	<td title="${h.tooltip(title)}">
		173	%if callable(val):
		174	## allow lazy evaluation of elements
		175	${val()}
		176	%else:
		177	${val}
		178	%endif
		179	%if show_items:
		180	<div class="collapsable-content" data-toggle="item-${h.md5_safe(val)[:6]}-details" style="display: none">
		181	% for item in show_items:
		182	<dt></dt>
		183	<dd>${item}</dd>
		184	% endfor
		185	</div>
		186	%endif
		187	</td>
		188	<td style="vertical-align: top">
		189	%if show_items:
		190	<span class="btn-collapse" data-toggle="item-${h.md5_safe(val)[:6]}-details">${_('Show More')} </span>
		191	%endif
		192	</td>
		193	</tr>
		194
		195	</%def>
		196
167	<%def name="gravatar(email, size=16)">	197	<%def name="gravatar(email, size=16)">
168	<%	198	<%
169	if (size > 16):	199	if (size > 16):

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages