rhodecode-enterprise-ce Commit - r3378:f96b7591

users: use two distinct actions for user password reset....

marcink -

r3378:f96b7591 default

parent child

rhodecode/apps/admin/__init__.py

0 +6 -2

             # -*- coding: utf-8 -*-
             # Copyright (C) 2016-2019 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             from rhodecode.apps._base import ADMIN_PREFIX
             def admin_routes(config):
                 """
                 Admin prefixed routes
                 """
                 config.add_route(
                     name='admin_audit_logs',
                     pattern='/audit_logs')
                 config.add_route(
                     name='admin_audit_log_entry',
                     pattern='/audit_logs/{audit_log_id}')
                 config.add_route(
                     name='pull_requests_global_0',  # backward compat
                     pattern='/pull_requests/{pull_request_id:\d+}')
                 config.add_route(
                     name='pull_requests_global_1',  # backward compat
                     pattern='/pull-requests/{pull_request_id:\d+}')
                 config.add_route(
                     name='pull_requests_global',
                     pattern='/pull-request/{pull_request_id:\d+}')
                 config.add_route(
                     name='admin_settings_open_source',
                     pattern='/settings/open_source')
                 config.add_route(
                     name='admin_settings_vcs_svn_generate_cfg',
                     pattern='/settings/vcs/svn_generate_cfg')
                 config.add_route(
                     name='admin_settings_system',
                     pattern='/settings/system')
                 config.add_route(
                     name='admin_settings_system_update',
                     pattern='/settings/system/updates')
                 config.add_route(
                     name='admin_settings_exception_tracker',
                     pattern='/settings/exceptions')
                 config.add_route(
                     name='admin_settings_exception_tracker_delete_all',
                     pattern='/settings/exceptions/delete')
                 config.add_route(
                     name='admin_settings_exception_tracker_show',
                     pattern='/settings/exceptions/{exception_id}')
                 config.add_route(
                     name='admin_settings_exception_tracker_delete',
                     pattern='/settings/exceptions/{exception_id}/delete')
                 config.add_route(
                     name='admin_settings_sessions',
                     pattern='/settings/sessions')
                 config.add_route(
                     name='admin_settings_sessions_cleanup',
                     pattern='/settings/sessions/cleanup')
                 config.add_route(
                     name='admin_settings_process_management',
                     pattern='/settings/process_management')
                 config.add_route(
                     name='admin_settings_process_management_data',
                     pattern='/settings/process_management/data')
                 config.add_route(
                     name='admin_settings_process_management_signal',
                     pattern='/settings/process_management/signal')
                 config.add_route(
                     name='admin_settings_process_management_master_signal',
                     pattern='/settings/process_management/master_signal')
                 # default settings
                 config.add_route(
                     name='admin_defaults_repositories',
                     pattern='/defaults/repositories')
                 config.add_route(
                     name='admin_defaults_repositories_update',
                     pattern='/defaults/repositories/update')
                 # admin settings
                 config.add_route(
                     name='admin_settings',
                     pattern='/settings')
                 config.add_route(
                     name='admin_settings_update',
                     pattern='/settings/update')
                 config.add_route(
                     name='admin_settings_global',
                     pattern='/settings/global')
                 config.add_route(
                     name='admin_settings_global_update',
                     pattern='/settings/global/update')
                 config.add_route(
                     name='admin_settings_vcs',
                     pattern='/settings/vcs')
                 config.add_route(
                     name='admin_settings_vcs_update',
                     pattern='/settings/vcs/update')
                 config.add_route(
                     name='admin_settings_vcs_svn_pattern_delete',
                     pattern='/settings/vcs/svn_pattern_delete')
                 config.add_route(
                     name='admin_settings_mapping',
                     pattern='/settings/mapping')
                 config.add_route(
                     name='admin_settings_mapping_update',
                     pattern='/settings/mapping/update')
                 config.add_route(
                     name='admin_settings_visual',
                     pattern='/settings/visual')
                 config.add_route(
                     name='admin_settings_visual_update',
                     pattern='/settings/visual/update')
                 config.add_route(
                     name='admin_settings_issuetracker',
                     pattern='/settings/issue-tracker')
                 config.add_route(
                     name='admin_settings_issuetracker_update',
                     pattern='/settings/issue-tracker/update')
                 config.add_route(
                     name='admin_settings_issuetracker_test',
                     pattern='/settings/issue-tracker/test')
                 config.add_route(
                     name='admin_settings_issuetracker_delete',
                     pattern='/settings/issue-tracker/delete')
                 config.add_route(
                     name='admin_settings_email',
                     pattern='/settings/email')
                 config.add_route(
                     name='admin_settings_email_update',
                     pattern='/settings/email/update')
                 config.add_route(
                     name='admin_settings_hooks',
                     pattern='/settings/hooks')
                 config.add_route(
                     name='admin_settings_hooks_update',
                     pattern='/settings/hooks/update')
                 config.add_route(
                     name='admin_settings_hooks_delete',
                     pattern='/settings/hooks/delete')
                 config.add_route(
                     name='admin_settings_search',
                     pattern='/settings/search')
                 config.add_route(
                     name='admin_settings_labs',
                     pattern='/settings/labs')
                 config.add_route(
                     name='admin_settings_labs_update',
                     pattern='/settings/labs/update')
                 # Automation EE feature
                 config.add_route(
                     'admin_settings_automation',
                     pattern=ADMIN_PREFIX + '/settings/automation')
                 # global permissions
                 config.add_route(
                     name='admin_permissions_application',
                     pattern='/permissions/application')
                 config.add_route(
                     name='admin_permissions_application_update',
                     pattern='/permissions/application/update')
                 config.add_route(
                     name='admin_permissions_global',
                     pattern='/permissions/global')
                 config.add_route(
                     name='admin_permissions_global_update',
                     pattern='/permissions/global/update')
                 config.add_route(
                     name='admin_permissions_object',
                     pattern='/permissions/object')
                 config.add_route(
                     name='admin_permissions_object_update',
                     pattern='/permissions/object/update')
                 # Branch perms EE feature
                 config.add_route(
                     name='admin_permissions_branch',
                     pattern='/permissions/branch')
                 config.add_route(
                     name='admin_permissions_ips',
                     pattern='/permissions/ips')
                 config.add_route(
                     name='admin_permissions_overview',
                     pattern='/permissions/overview')
                 config.add_route(
                     name='admin_permissions_auth_token_access',
                     pattern='/permissions/auth_token_access')
                 config.add_route(
                     name='admin_permissions_ssh_keys',
                     pattern='/permissions/ssh_keys')
                 config.add_route(
                     name='admin_permissions_ssh_keys_data',
                     pattern='/permissions/ssh_keys/data')
                 config.add_route(
                     name='admin_permissions_ssh_keys_update',
                     pattern='/permissions/ssh_keys/update')
                 # users admin
                 config.add_route(
                     name='users',
                     pattern='/users')
                 config.add_route(
                     name='users_data',
                     pattern='/users_data')
                 config.add_route(
                     name='users_create',
                     pattern='/users/create')
                 config.add_route(
                     name='users_new',
                     pattern='/users/new')
                 # user management
                 config.add_route(
                     name='user_edit',
                     pattern='/users/{user_id:\d+}/edit',
                     user_route=True)
                 config.add_route(
                     name='user_edit_advanced',
                     pattern='/users/{user_id:\d+}/edit/advanced',
                     user_route=True)
                 config.add_route(
                     name='user_edit_global_perms',
                     pattern='/users/{user_id:\d+}/edit/global_permissions',
                     user_route=True)
                 config.add_route(
                     name='user_edit_global_perms_update',
                     pattern='/users/{user_id:\d+}/edit/global_permissions/update',
                     user_route=True)
                 config.add_route(
                     name='user_update',
                     pattern='/users/{user_id:\d+}/update',
                     user_route=True)
                 config.add_route(
                     name='user_delete',
                     pattern='/users/{user_id:\d+}/delete',
                     user_route=True)
                 config.add_route(
-                    name='user_force_password_reset',
+                    name='user_enable_force_password_reset',
-                    pattern='/users/{user_id:\d+}/password_reset',
+                    pattern='/users/{user_id:\d+}/password_reset_enable',
+                    user_route=True)
+                config.add_route(
+                    name='user_disable_force_password_reset',
+                    pattern='/users/{user_id:\d+}/password_reset_disable',
                     user_route=True)
                 config.add_route(
                     name='user_create_personal_repo_group',
                     pattern='/users/{user_id:\d+}/create_repo_group',
                     user_route=True)
                 # user auth tokens
                 config.add_route(
                     name='edit_user_auth_tokens',
                     pattern='/users/{user_id:\d+}/edit/auth_tokens',
                     user_route=True)
                 config.add_route(
                     name='edit_user_auth_tokens_add',
                     pattern='/users/{user_id:\d+}/edit/auth_tokens/new',
                     user_route=True)
                 config.add_route(
                     name='edit_user_auth_tokens_delete',
                     pattern='/users/{user_id:\d+}/edit/auth_tokens/delete',
                     user_route=True)
                 # user ssh keys
                 config.add_route(
                     name='edit_user_ssh_keys',
                     pattern='/users/{user_id:\d+}/edit/ssh_keys',
                     user_route=True)
                 config.add_route(
                     name='edit_user_ssh_keys_generate_keypair',
                     pattern='/users/{user_id:\d+}/edit/ssh_keys/generate',
                     user_route=True)
                 config.add_route(
                     name='edit_user_ssh_keys_add',
                     pattern='/users/{user_id:\d+}/edit/ssh_keys/new',
                     user_route=True)
                 config.add_route(
                     name='edit_user_ssh_keys_delete',
                     pattern='/users/{user_id:\d+}/edit/ssh_keys/delete',
                     user_route=True)
                 # user emails
                 config.add_route(
                     name='edit_user_emails',
                     pattern='/users/{user_id:\d+}/edit/emails',
                     user_route=True)
                 config.add_route(
                     name='edit_user_emails_add',
                     pattern='/users/{user_id:\d+}/edit/emails/new',
                     user_route=True)
                 config.add_route(
                     name='edit_user_emails_delete',
                     pattern='/users/{user_id:\d+}/edit/emails/delete',
                     user_route=True)
                 # user IPs
                 config.add_route(
                     name='edit_user_ips',
                     pattern='/users/{user_id:\d+}/edit/ips',
                     user_route=True)
                 config.add_route(
                     name='edit_user_ips_add',
                     pattern='/users/{user_id:\d+}/edit/ips/new',
                     user_route_with_default=True)  # enabled for default user too
                 config.add_route(
                     name='edit_user_ips_delete',
                     pattern='/users/{user_id:\d+}/edit/ips/delete',
                     user_route_with_default=True)  # enabled for default user too
                 # user perms
                 config.add_route(
                     name='edit_user_perms_summary',
                     pattern='/users/{user_id:\d+}/edit/permissions_summary',
                     user_route=True)
                 config.add_route(
                     name='edit_user_perms_summary_json',
                     pattern='/users/{user_id:\d+}/edit/permissions_summary/json',
                     user_route=True)
                 # user user groups management
                 config.add_route(
                     name='edit_user_groups_management',
                     pattern='/users/{user_id:\d+}/edit/groups_management',
                     user_route=True)
                 config.add_route(
                     name='edit_user_groups_management_updates',
                     pattern='/users/{user_id:\d+}/edit/edit_user_groups_management/updates',
                     user_route=True)
                 # user audit logs
                 config.add_route(
                     name='edit_user_audit_logs',
                     pattern='/users/{user_id:\d+}/edit/audit', user_route=True)
                 # user caches
                 config.add_route(
                     name='edit_user_caches',
                     pattern='/users/{user_id:\d+}/edit/caches',
                     user_route=True)
                 config.add_route(
                     name='edit_user_caches_update',
                     pattern='/users/{user_id:\d+}/edit/caches/update',
                     user_route=True)
                 # user-groups admin
                 config.add_route(
                     name='user_groups',
                     pattern='/user_groups')
                 config.add_route(
                     name='user_groups_data',
                     pattern='/user_groups_data')
                 config.add_route(
                     name='user_groups_new',
                     pattern='/user_groups/new')
                 config.add_route(
                     name='user_groups_create',
                     pattern='/user_groups/create')
                 # repos admin
                 config.add_route(
                     name='repos',
                     pattern='/repos')
                 config.add_route(
                     name='repo_new',
                     pattern='/repos/new')
                 config.add_route(
                     name='repo_create',
                     pattern='/repos/create')
                 # repo groups admin
                 config.add_route(
                     name='repo_groups',
                     pattern='/repo_groups')
                 config.add_route(
                     name='repo_group_new',
                     pattern='/repo_group/new')
                 config.add_route(
                     name='repo_group_create',
                     pattern='/repo_group/create')
             def includeme(config):
                 from rhodecode.apps._base.navigation import includeme as nav_includeme
                 # Create admin navigation registry and add it to the pyramid registry.
                 nav_includeme(config)
                 # main admin routes
                 config.add_route(name='admin_home', pattern=ADMIN_PREFIX)
                 config.include(admin_routes, route_prefix=ADMIN_PREFIX)
                 # Scan module for configuration decorators.
                 config.scan('.views', ignore='.tests')

rhodecode/apps/admin/tests/test_admin_users.py

0 0 -2

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2019 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import pytest
             from sqlalchemy.orm.exc import NoResultFound
             from rhodecode.lib import auth
             from rhodecode.lib import helpers as h
             from rhodecode.model.db import User, UserApiKeys, UserEmailMap, Repository
             from rhodecode.model.meta import Session
             from rhodecode.model.user import UserModel
             from rhodecode.tests import (
                 TestController, TEST_USER_REGULAR_LOGIN, assert_session_flash)
             from rhodecode.tests.fixture import Fixture
             fixture = Fixture()
             def route_path(name, params=None, **kwargs):
                 import urllib
                 from rhodecode.apps._base import ADMIN_PREFIX
                 base_url = {
                     'users':
                         ADMIN_PREFIX + '/users',
                     'users_data':
                         ADMIN_PREFIX + '/users_data',
                     'users_create':
                         ADMIN_PREFIX + '/users/create',
                     'users_new':
                         ADMIN_PREFIX + '/users/new',
                     'user_edit':
                         ADMIN_PREFIX + '/users/{user_id}/edit',
                     'user_edit_advanced':
                         ADMIN_PREFIX + '/users/{user_id}/edit/advanced',
                     'user_edit_global_perms':
                         ADMIN_PREFIX + '/users/{user_id}/edit/global_permissions',
                     'user_edit_global_perms_update':
                         ADMIN_PREFIX + '/users/{user_id}/edit/global_permissions/update',
                     'user_update':
                         ADMIN_PREFIX + '/users/{user_id}/update',
                     'user_delete':
                         ADMIN_PREFIX + '/users/{user_id}/delete',
-                    'user_force_password_reset':
-                        ADMIN_PREFIX + '/users/{user_id}/password_reset',
                     'user_create_personal_repo_group':
                         ADMIN_PREFIX + '/users/{user_id}/create_repo_group',
                     'edit_user_auth_tokens':
                         ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens',
                     'edit_user_auth_tokens_add':
                         ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens/new',
                     'edit_user_auth_tokens_delete':
                         ADMIN_PREFIX + '/users/{user_id}/edit/auth_tokens/delete',
                     'edit_user_emails':
                         ADMIN_PREFIX + '/users/{user_id}/edit/emails',
                     'edit_user_emails_add':
                         ADMIN_PREFIX + '/users/{user_id}/edit/emails/new',
                     'edit_user_emails_delete':
                         ADMIN_PREFIX + '/users/{user_id}/edit/emails/delete',
                     'edit_user_ips':
                         ADMIN_PREFIX + '/users/{user_id}/edit/ips',
                     'edit_user_ips_add':
                         ADMIN_PREFIX + '/users/{user_id}/edit/ips/new',
                     'edit_user_ips_delete':
                         ADMIN_PREFIX + '/users/{user_id}/edit/ips/delete',
                     'edit_user_perms_summary':
                         ADMIN_PREFIX + '/users/{user_id}/edit/permissions_summary',
                     'edit_user_perms_summary_json':
                         ADMIN_PREFIX + '/users/{user_id}/edit/permissions_summary/json',
                     'edit_user_audit_logs':
                         ADMIN_PREFIX + '/users/{user_id}/edit/audit',
                 }[name].format(**kwargs)
                 if params:
                     base_url = '{}?{}'.format(base_url, urllib.urlencode(params))
                 return base_url
             class TestAdminUsersView(TestController):
                 def test_show_users(self):
                     self.log_user()
                     self.app.get(route_path('users'))
                 def test_show_users_data(self, xhr_header):
                     self.log_user()
                     response = self.app.get(route_path(
                         'users_data'), extra_environ=xhr_header)
                     all_users = User.query().filter(
                         User.username != User.DEFAULT_USER).count()
                     assert response.json['recordsTotal'] == all_users
                 def test_show_users_data_filtered(self, xhr_header):
                     self.log_user()
                     response = self.app.get(route_path(
                         'users_data', params={'search[value]': 'empty_search'}),
                         extra_environ=xhr_header)
                     all_users = User.query().filter(
                         User.username != User.DEFAULT_USER).count()
                     assert response.json['recordsTotal'] == all_users
                     assert response.json['recordsFiltered'] == 0
                 def test_auth_tokens_default_user(self):
                     self.log_user()
                     user = User.get_default_user()
                     response = self.app.get(
                         route_path('edit_user_auth_tokens', user_id=user.user_id),
                         status=302)
                 def test_auth_tokens(self):
                     self.log_user()
                     user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
                     user_id = user.user_id
                     auth_tokens = user.auth_tokens
                     response = self.app.get(
                         route_path('edit_user_auth_tokens', user_id=user_id))
                     for token in auth_tokens:
                         response.mustcontain(token)
                         response.mustcontain('never')
                 @pytest.mark.parametrize("desc, lifetime", [
                     ('forever', -1),
                     ('5mins', 60*5),
                     ('30days', 60*60*24*30),
                 ])
                 def test_add_auth_token(self, desc, lifetime, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     response = self.app.post(
                         route_path('edit_user_auth_tokens_add', user_id=user_id),
                         {'description': desc, 'lifetime': lifetime,
                          'csrf_token': self.csrf_token})
                     assert_session_flash(response, 'Auth token successfully created')
                     response = response.follow()
                     user = User.get(user_id)
                     for auth_token in user.auth_tokens:
                         response.mustcontain(auth_token)
                 def test_delete_auth_token(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     keys = user.auth_tokens
                     assert 2 == len(keys)
                     response = self.app.post(
                         route_path('edit_user_auth_tokens_add', user_id=user_id),
                         {'description': 'desc', 'lifetime': -1,
                          'csrf_token': self.csrf_token})
                     assert_session_flash(response, 'Auth token successfully created')
                     response.follow()
                     # now delete our key
                     keys = UserApiKeys.query().filter(UserApiKeys.user_id == user_id).all()
                     assert 3 == len(keys)
                     response = self.app.post(
                         route_path('edit_user_auth_tokens_delete', user_id=user_id),
                         {'del_auth_token': keys[0].user_api_key_id,
                          'csrf_token': self.csrf_token})
                     assert_session_flash(response, 'Auth token successfully deleted')
                     keys = UserApiKeys.query().filter(UserApiKeys.user_id == user_id).all()
                     assert 2 == len(keys)
                 def test_ips(self):
                     self.log_user()
                     user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
                     response = self.app.get(route_path('edit_user_ips', user_id=user.user_id))
                     response.mustcontain('All IP addresses are allowed')
                 @pytest.mark.parametrize("test_name, ip, ip_range, failure", [
                     ('127/24', '127.0.0.1/24', '127.0.0.0 - 127.0.0.255', False),
                     ('10/32', '10.0.0.10/32', '10.0.0.10 - 10.0.0.10', False),
                     ('0/16', '0.0.0.0/16', '0.0.0.0 - 0.0.255.255', False),
                     ('0/8', '0.0.0.0/8', '0.0.0.0 - 0.255.255.255', False),
                     ('127_bad_mask', '127.0.0.1/99', '127.0.0.1 - 127.0.0.1', True),
                     ('127_bad_ip', 'foobar', 'foobar', True),
                 ])
                 def test_ips_add(self, user_util, test_name, ip, ip_range, failure):
                     self.log_user()
                     user = user_util.create_user(username=test_name)
                     user_id = user.user_id
                     response = self.app.post(
                         route_path('edit_user_ips_add', user_id=user_id),
                         params={'new_ip': ip, 'csrf_token': self.csrf_token})
                     if failure:
                         assert_session_flash(
                             response, 'Please enter a valid IPv4 or IpV6 address')
                         response = self.app.get(route_path('edit_user_ips', user_id=user_id))
                         response.mustcontain(no=[ip])
                         response.mustcontain(no=[ip_range])
                     else:
                         response = self.app.get(route_path('edit_user_ips', user_id=user_id))
                         response.mustcontain(ip)
                         response.mustcontain(ip_range)
                 def test_ips_delete(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     ip = '127.0.0.1/32'
                     ip_range = '127.0.0.1 - 127.0.0.1'
                     new_ip = UserModel().add_extra_ip(user_id, ip)
                     Session().commit()
                     new_ip_id = new_ip.ip_id
                     response = self.app.get(route_path('edit_user_ips', user_id=user_id))
                     response.mustcontain(ip)
                     response.mustcontain(ip_range)
                     self.app.post(
                         route_path('edit_user_ips_delete', user_id=user_id),
                         params={'del_ip_id': new_ip_id, 'csrf_token': self.csrf_token})
                     response = self.app.get(route_path('edit_user_ips', user_id=user_id))
                     response.mustcontain('All IP addresses are allowed')
                     response.mustcontain(no=[ip])
                     response.mustcontain(no=[ip_range])
                 def test_emails(self):
                     self.log_user()
                     user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user.user_id))
                     response.mustcontain('No additional emails specified')
                 def test_emails_add(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     self.app.post(
                         route_path('edit_user_emails_add', user_id=user_id),
                         params={'new_email': 'example@rhodecode.com',
                                 'csrf_token': self.csrf_token})
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user_id))
                     response.mustcontain('example@rhodecode.com')
                 def test_emails_add_existing_email(self, user_util, user_regular):
                     existing_email = user_regular.email
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     response = self.app.post(
                         route_path('edit_user_emails_add', user_id=user_id),
                         params={'new_email': existing_email,
                                 'csrf_token': self.csrf_token})
                     assert_session_flash(
                         response, 'This e-mail address is already taken')
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user_id))
                     response.mustcontain(no=[existing_email])
                 def test_emails_delete(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     user_id = user.user_id
                     self.app.post(
                         route_path('edit_user_emails_add', user_id=user_id),
                         params={'new_email': 'example@rhodecode.com',
                                 'csrf_token': self.csrf_token})
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user_id))
                     response.mustcontain('example@rhodecode.com')
                     user_email = UserEmailMap.query()\
                         .filter(UserEmailMap.email == 'example@rhodecode.com') \
                         .filter(UserEmailMap.user_id == user_id)\
                         .one()
                     del_email_id = user_email.email_id
                     self.app.post(
                         route_path('edit_user_emails_delete', user_id=user_id),
                         params={'del_email_id': del_email_id,
                                 'csrf_token': self.csrf_token})
                     response = self.app.get(
                         route_path('edit_user_emails', user_id=user_id))
                     response.mustcontain(no=['example@rhodecode.com'])
                 def test_create(self, request, xhr_header):
                     self.log_user()
                     username = 'newtestuser'
                     password = 'test12'
                     password_confirmation = password
                     name = 'name'
                     lastname = 'lastname'
                     email = 'mail@mail.com'
                     self.app.get(route_path('users_new'))
                     response = self.app.post(route_path('users_create'), params={
                         'username': username,
                         'password': password,
                         'password_confirmation': password_confirmation,
                         'firstname': name,
                         'active': True,
                         'lastname': lastname,
                         'extern_name': 'rhodecode',
                         'extern_type': 'rhodecode',
                         'email': email,
                         'csrf_token': self.csrf_token,
                     })
                     user_link = h.link_to(
                         username,
                         route_path(
                             'user_edit', user_id=User.get_by_username(username).user_id))
                     assert_session_flash(response, 'Created user %s' % (user_link,))
                     @request.addfinalizer
                     def cleanup():
                         fixture.destroy_user(username)
                         Session().commit()
                     new_user = User.query().filter(User.username == username).one()
                     assert new_user.username == username
                     assert auth.check_password(password, new_user.password)
                     assert new_user.name == name
                     assert new_user.lastname == lastname
                     assert new_user.email == email
                     response = self.app.get(route_path('users_data'),
                                             extra_environ=xhr_header)
                     response.mustcontain(username)
                 def test_create_err(self):
                     self.log_user()
                     username = 'new_user'
                     password = ''
                     name = 'name'
                     lastname = 'lastname'
                     email = 'errmail.com'
                     self.app.get(route_path('users_new'))
                     response = self.app.post(route_path('users_create'), params={
                         'username': username,
                         'password': password,
                         'name': name,
                         'active': False,
                         'lastname': lastname,
                         'email': email,
                         'csrf_token': self.csrf_token,
                     })
                     msg = u'Username "%(username)s" is forbidden'
                     msg = h.html_escape(msg % {'username': 'new_user'})
                     response.mustcontain('<span class="error-message">%s</span>' % msg)
                     response.mustcontain(
                         '<span class="error-message">Please enter a value</span>')
                     response.mustcontain(
                         '<span class="error-message">An email address must contain a'
                         ' single @</span>')
                     def get_user():
                         Session().query(User).filter(User.username == username).one()
                     with pytest.raises(NoResultFound):
                         get_user()
                 def test_new(self):
                     self.log_user()
                     self.app.get(route_path('users_new'))
                 @pytest.mark.parametrize("name, attrs", [
                     ('firstname', {'firstname': 'new_username'}),
                     ('lastname', {'lastname': 'new_username'}),
                     ('admin', {'admin': True}),
                     ('admin', {'admin': False}),
                     ('extern_type', {'extern_type': 'ldap'}),
                     ('extern_type', {'extern_type': None}),
                     ('extern_name', {'extern_name': 'test'}),
                     ('extern_name', {'extern_name': None}),
                     ('active', {'active': False}),
                     ('active', {'active': True}),
                     ('email', {'email': 'some@email.com'}),
                     ('language', {'language': 'de'}),
                     ('language', {'language': 'en'}),
                     # ('new_password', {'new_password': 'foobar123',
                     #                   'password_confirmation': 'foobar123'})
                     ])
                 def test_update(self, name, attrs, user_util):
                     self.log_user()
                     usr = user_util.create_user(
                         password='qweqwe',
                         email='testme@rhodecode.org',
                         extern_type='rhodecode',
                         extern_name='xxx',
                     )
                     user_id = usr.user_id
                     Session().commit()
                     params = usr.get_api_data()
                     cur_lang = params['language'] or 'en'
                     params.update({
                         'password_confirmation': '',
                         'new_password': '',
                         'language': cur_lang,
                         'csrf_token': self.csrf_token,
                     })
                     params.update({'new_password': ''})
                     params.update(attrs)
                     if name == 'email':
                         params['emails'] = [attrs['email']]
                     elif name == 'extern_type':
                         # cannot update this via form, expected value is original one
                         params['extern_type'] = "rhodecode"
                     elif name == 'extern_name':
                         # cannot update this via form, expected value is original one
                         params['extern_name'] = 'xxx'
                         # special case since this user is not
                         # logged in yet his data is not filled
                         # so we use creation data
                     response = self.app.post(
                         route_path('user_update', user_id=usr.user_id), params)
                     assert response.status_int == 302
                     assert_session_flash(response, 'User updated successfully')
                     updated_user = User.get(user_id)
                     updated_params = updated_user.get_api_data()
                     updated_params.update({'password_confirmation': ''})
                     updated_params.update({'new_password': ''})
                     del params['csrf_token']
                     assert params == updated_params
                 def test_update_and_migrate_password(
                         self, autologin_user, real_crypto_backend, user_util):
                     user = user_util.create_user()
                     temp_user = user.username
                     user.password = auth._RhodeCodeCryptoSha256().hash_create(
                         b'test123')
                     Session().add(user)
                     Session().commit()
                     params = user.get_api_data()
                     params.update({
                         'password_confirmation': 'qweqwe123',
                         'new_password': 'qweqwe123',
                         'language': 'en',
                         'csrf_token': autologin_user.csrf_token,
                     })
                     response = self.app.post(
                         route_path('user_update', user_id=user.user_id), params)
                     assert response.status_int == 302
                     assert_session_flash(response, 'User updated successfully')
                     # new password should be bcrypted, after log-in and transfer
                     user = User.get_by_username(temp_user)
                     assert user.password.startswith('$')
                     updated_user = User.get_by_username(temp_user)
                     updated_params = updated_user.get_api_data()
                     updated_params.update({'password_confirmation': 'qweqwe123'})
                     updated_params.update({'new_password': 'qweqwe123'})
                     del params['csrf_token']
                     assert params == updated_params
                 def test_delete(self):
                     self.log_user()
                     username = 'newtestuserdeleteme'
                     fixture.create_user(name=username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'csrf_token': self.csrf_token})
                     assert_session_flash(response, 'Successfully deleted user')
                 def test_delete_owner_of_repository(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_repo'
                     usr = user_util.create_user()
                     username = usr.username
                     fixture.create_repo(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'csrf_token': self.csrf_token})
                     msg = 'user "%s" still owns 1 repositories and cannot be removed. ' \
                           'Switch owners or remove those repositories:%s' % (username,
                                                                              obj_name)
                     assert_session_flash(response, msg)
                     fixture.destroy_repo(obj_name)
                 def test_delete_owner_of_repository_detaching(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_repo'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_repo(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_repos': 'detach', 'csrf_token': self.csrf_token})
                     msg = 'Detached 1 repositories'
                     assert_session_flash(response, msg)
                     fixture.destroy_repo(obj_name)
                 def test_delete_owner_of_repository_deleting(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_repo'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_repo(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_repos': 'delete', 'csrf_token': self.csrf_token})
                     msg = 'Deleted 1 repositories'
                     assert_session_flash(response, msg)
                 def test_delete_owner_of_repository_group(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_group'
                     usr = user_util.create_user()
                     username = usr.username
                     fixture.create_repo_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'csrf_token': self.csrf_token})
                     msg = 'user "%s" still owns 1 repository groups and cannot be removed. ' \
                           'Switch owners or remove those repository groups:%s' % (username,
                                                                                   obj_name)
                     assert_session_flash(response, msg)
                     fixture.destroy_repo_group(obj_name)
                 def test_delete_owner_of_repository_group_detaching(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_group'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_repo_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_repo_groups': 'delete', 'csrf_token': self.csrf_token})
                     msg = 'Deleted 1 repository groups'
                     assert_session_flash(response, msg)
                 def test_delete_owner_of_repository_group_deleting(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_group'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_repo_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_repo_groups': 'detach', 'csrf_token': self.csrf_token})
                     msg = 'Detached 1 repository groups'
                     assert_session_flash(response, msg)
                     fixture.destroy_repo_group(obj_name)
                 def test_delete_owner_of_user_group(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_user_group'
                     usr = user_util.create_user()
                     username = usr.username
                     fixture.create_user_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'csrf_token': self.csrf_token})
                     msg = 'user "%s" still owns 1 user groups and cannot be removed. ' \
                           'Switch owners or remove those user groups:%s' % (username,
                                                                             obj_name)
                     assert_session_flash(response, msg)
                     fixture.destroy_user_group(obj_name)
                 def test_delete_owner_of_user_group_detaching(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_user_group'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_user_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     try:
                         response = self.app.post(
                             route_path('user_delete', user_id=new_user.user_id),
                             params={'user_user_groups': 'detach',
                                     'csrf_token': self.csrf_token})
                         msg = 'Detached 1 user groups'
                         assert_session_flash(response, msg)
                     finally:
                         fixture.destroy_user_group(obj_name)
                 def test_delete_owner_of_user_group_deleting(self, request, user_util):
                     self.log_user()
                     obj_name = 'test_user_group'
                     usr = user_util.create_user(auto_cleanup=False)
                     username = usr.username
                     fixture.create_user_group(obj_name, cur_user=usr.username)
                     new_user = Session().query(User)\
                         .filter(User.username == username).one()
                     response = self.app.post(
                         route_path('user_delete', user_id=new_user.user_id),
                         params={'user_user_groups': 'delete', 'csrf_token': self.csrf_token})
                     msg = 'Deleted 1 user groups'
                     assert_session_flash(response, msg)
                 def test_edit(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     self.app.get(route_path('user_edit', user_id=user.user_id))
                 def test_edit_default_user_redirect(self):
                     self.log_user()
                     user = User.get_default_user()
                     self.app.get(route_path('user_edit', user_id=user.user_id), status=302)
                 @pytest.mark.parametrize(
                     'repo_create, repo_create_write, user_group_create, repo_group_create,'
                     'fork_create, inherit_default_permissions, expect_error,'
                     'expect_form_error', [
                         ('hg.create.none', 'hg.create.write_on_repogroup.false',
                          'hg.usergroup.create.false', 'hg.repogroup.create.false',
                          'hg.fork.none', 'hg.inherit_default_perms.false', False, False),
                         ('hg.create.repository', 'hg.create.write_on_repogroup.false',
                          'hg.usergroup.create.false', 'hg.repogroup.create.false',
                          'hg.fork.none', 'hg.inherit_default_perms.false', False, False),
                         ('hg.create.repository', 'hg.create.write_on_repogroup.true',
                          'hg.usergroup.create.true', 'hg.repogroup.create.true',
                          'hg.fork.repository', 'hg.inherit_default_perms.false', False,
                          False),
                         ('hg.create.XXX', 'hg.create.write_on_repogroup.true',
                          'hg.usergroup.create.true', 'hg.repogroup.create.true',
                          'hg.fork.repository', 'hg.inherit_default_perms.false', False,
                          True),
                         ('', '', '', '', '', '', True, False),
                     ])
                 def test_global_perms_on_user(
                         self, repo_create, repo_create_write, user_group_create,
                         repo_group_create, fork_create, expect_error, expect_form_error,
                         inherit_default_permissions, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     uid = user.user_id
                     # ENABLE REPO CREATE ON A GROUP
                     perm_params = {
                         'inherit_default_permissions': False,
                         'default_repo_create': repo_create,
                         'default_repo_create_on_write': repo_create_write,
                         'default_user_group_create': user_group_create,
                         'default_repo_group_create': repo_group_create,
                         'default_fork_create': fork_create,
                         'default_inherit_default_permissions': inherit_default_permissions,
                         'csrf_token': self.csrf_token,
                     }
                     response = self.app.post(
                         route_path('user_edit_global_perms_update', user_id=uid),
                         params=perm_params)
                     if expect_form_error:
                         assert response.status_int == 200
                         response.mustcontain('Value must be one of')
                     else:
                         if expect_error:
                             msg = 'An error occurred during permissions saving'
                         else:
                             msg = 'User global permissions updated successfully'
                             ug = User.get(uid)
                             del perm_params['inherit_default_permissions']
                             del perm_params['csrf_token']
                             assert perm_params == ug.get_default_perms()
                         assert_session_flash(response, msg)
                 def test_global_permissions_initial_values(self, user_util):
                     self.log_user()
                     user = user_util.create_user()
                     uid = user.user_id
                     response = self.app.get(
                         route_path('user_edit_global_perms', user_id=uid))
                     default_user = User.get_default_user()
                     default_permissions = default_user.get_default_perms()
                     assert_response = response.assert_response()
                     expected_permissions = (
                         'default_repo_create', 'default_repo_create_on_write',
                         'default_fork_create', 'default_repo_group_create',
                         'default_user_group_create', 'default_inherit_default_permissions')
                     for permission in expected_permissions:
                         css_selector = '[name={}][checked=checked]'.format(permission)
                         element = assert_response.get_element(css_selector)
                         assert element.value == default_permissions[permission]
                 def test_perms_summary_page(self):
                     user = self.log_user()
                     response = self.app.get(
                         route_path('edit_user_perms_summary', user_id=user['user_id']))
                     for repo in Repository.query().all():
                         response.mustcontain(repo.repo_name)
                 def test_perms_summary_page_json(self):
                     user = self.log_user()
                     response = self.app.get(
                         route_path('edit_user_perms_summary_json', user_id=user['user_id']))
                     for repo in Repository.query().all():
                         response.mustcontain(repo.repo_name)
                 def test_audit_log_page(self):
                     user = self.log_user()
                     self.app.get(
                         route_path('edit_user_audit_logs', user_id=user['user_id']))

rhodecode/apps/admin/views/users.py

0 +36 -17

             # -*- coding: utf-8 -*-
             # Copyright (C) 2016-2019 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import logging
             import datetime
             import formencode
             import formencode.htmlfill
             from pyramid.httpexceptions import HTTPFound
             from pyramid.view import view_config
             from pyramid.renderers import render
             from pyramid.response import Response
             from rhodecode.apps._base import BaseAppView, DataGridAppView, UserAppView
             from rhodecode.apps.ssh_support import SshKeyFileChangeEvent
             from rhodecode.authentication.plugins import auth_rhodecode
             from rhodecode.events import trigger
             from rhodecode.model.db import true
             from rhodecode.lib import audit_logger, rc_cache
             from rhodecode.lib.exceptions import (
                 UserCreationError, UserOwnsReposException, UserOwnsRepoGroupsException,
                 UserOwnsUserGroupsException, DefaultUserException)
             from rhodecode.lib.ext_json import json
             from rhodecode.lib.auth import (
                 LoginRequired, HasPermissionAllDecorator, CSRFRequired)
             from rhodecode.lib import helpers as h
             from rhodecode.lib.utils2 import safe_int, safe_unicode, AttributeDict
             from rhodecode.model.auth_token import AuthTokenModel
             from rhodecode.model.forms import (
                 UserForm, UserIndividualPermissionsForm, UserPermissionsForm,
                 UserExtraEmailForm, UserExtraIpForm)
             from rhodecode.model.permission import PermissionModel
             from rhodecode.model.repo_group import RepoGroupModel
             from rhodecode.model.ssh_key import SshKeyModel
             from rhodecode.model.user import UserModel
             from rhodecode.model.user_group import UserGroupModel
             from rhodecode.model.db import (
                 or_, coalesce,IntegrityError, User, UserGroup, UserIpMap, UserEmailMap,
                 UserApiKeys, UserSshKeys, RepoGroup)
             from rhodecode.model.meta import Session
             log = logging.getLogger(__name__)
             class AdminUsersView(BaseAppView, DataGridAppView):
                 def load_default_context(self):
                     c = self._get_local_tmpl_context()
                     return c
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='users', request_method='GET',
                     renderer='rhodecode:templates/admin/users/users.mako')
                 def users_list(self):
                     c = self.load_default_context()
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     # renderer defined below
                     route_name='users_data', request_method='GET',
                     renderer='json_ext', xhr=True)
                 def users_list_data(self):
                     self.load_default_context()
                     column_map = {
                         'first_name': 'name',
                         'last_name': 'lastname',
                     }
                     draw, start, limit = self._extract_chunk(self.request)
                     search_q, order_by, order_dir = self._extract_ordering(
                         self.request, column_map=column_map)
                     _render = self.request.get_partial_renderer(
                         'rhodecode:templates/data_table/_dt_elements.mako')
                     def user_actions(user_id, username):
                         return _render("user_actions", user_id, username)
                     users_data_total_count = User.query()\
                         .filter(User.username != User.DEFAULT_USER) \
                         .count()
                     users_data_total_inactive_count = User.query()\
                         .filter(User.username != User.DEFAULT_USER) \
                         .filter(User.active != true())\
                         .count()
                     # json generate
                     base_q = User.query().filter(User.username != User.DEFAULT_USER)
                     base_inactive_q = base_q.filter(User.active != true())
                     if search_q:
                         like_expression = u'%{}%'.format(safe_unicode(search_q))
                         base_q = base_q.filter(or_(
                             User.username.ilike(like_expression),
                             User._email.ilike(like_expression),
                             User.name.ilike(like_expression),
                             User.lastname.ilike(like_expression),
                         ))
                         base_inactive_q = base_q.filter(User.active != true())
                     users_data_total_filtered_count = base_q.count()
                     users_data_total_filtered_inactive_count = base_inactive_q.count()
                     sort_col = getattr(User, order_by, None)
                     if sort_col:
                         if order_dir == 'asc':
                             # handle null values properly to order by NULL last
                             if order_by in ['last_activity']:
                                 sort_col = coalesce(sort_col, datetime.date.max)
                             sort_col = sort_col.asc()
                         else:
                             # handle null values properly to order by NULL last
                             if order_by in ['last_activity']:
                                 sort_col = coalesce(sort_col, datetime.date.min)
                             sort_col = sort_col.desc()
                     base_q = base_q.order_by(sort_col)
                     base_q = base_q.offset(start).limit(limit)
                     users_list = base_q.all()
                     users_data = []
                     for user in users_list:
                         users_data.append({
                             "username": h.gravatar_with_user(self.request, user.username),
                             "email": user.email,
                             "first_name": user.first_name,
                             "last_name": user.last_name,
                             "last_login": h.format_date(user.last_login),
                             "last_activity": h.format_date(user.last_activity),
                             "active": h.bool2icon(user.active),
                             "active_raw": user.active,
                             "admin": h.bool2icon(user.admin),
                             "extern_type": user.extern_type,
                             "extern_name": user.extern_name,
                             "action": user_actions(user.user_id, user.username),
                         })
                     data = ({
                         'draw': draw,
                         'data': users_data,
                         'recordsTotal': users_data_total_count,
                         'recordsFiltered': users_data_total_filtered_count,
                         'recordsTotalInactive': users_data_total_inactive_count,
                         'recordsFilteredInactive': users_data_total_filtered_inactive_count
                     })
                     return data
                 def _set_personal_repo_group_template_vars(self, c_obj):
                     DummyUser = AttributeDict({
                         'username': '${username}',
                         'user_id': '${user_id}',
                     })
                     c_obj.default_create_repo_group = RepoGroupModel() \
                         .get_default_create_personal_repo_group()
                     c_obj.personal_repo_group_name = RepoGroupModel() \
                         .get_personal_group_name(DummyUser)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='users_new', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_add.mako')
                 def users_new(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.default_extern_type = auth_rhodecode.RhodeCodeAuthPlugin.uid
                     self._set_personal_repo_group_template_vars(c)
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='users_create', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_add.mako')
                 def users_create(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.default_extern_type = auth_rhodecode.RhodeCodeAuthPlugin.uid
                     user_model = UserModel()
                     user_form = UserForm(self.request.translate)()
                     try:
                         form_result = user_form.to_python(dict(self.request.POST))
                         user = user_model.create(form_result)
                         Session().flush()
                         creation_data = user.get_api_data()
                         username = form_result['username']
                         audit_logger.store_web(
                             'user.create', action_data={'data': creation_data},
                             user=c.rhodecode_user)
                         user_link = h.link_to(
                             h.escape(username),
                             h.route_path('user_edit', user_id=user.user_id))
                         h.flash(h.literal(_('Created user %(user_link)s')
                                           % {'user_link': user_link}), category='success')
                         Session().commit()
                     except formencode.Invalid as errors:
                         self._set_personal_repo_group_template_vars(c)
                         data = render(
                             'rhodecode:templates/admin/users/user_add.mako',
                             self._get_template_context(c), self.request)
                         html = formencode.htmlfill.render(
                             data,
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False
                         )
                         return Response(html)
                     except UserCreationError as e:
                         h.flash(e, 'error')
                     except Exception:
                         log.exception("Exception creation of user")
                         h.flash(_('Error occurred during creation of user %s')
                                 % self.request.POST.get('username'), category='error')
                     raise HTTPFound(h.route_path('users'))
             class UsersView(UserAppView):
                 ALLOW_SCOPED_TOKENS = False
                 """
                 This view has alternative version inside EE, if modified please take a look
                 in there as well.
                 """
                 def load_default_context(self):
                     c = self._get_local_tmpl_context()
                     c.allow_scoped_tokens = self.ALLOW_SCOPED_TOKENS
                     c.allowed_languages = [
                         ('en', 'English (en)'),
                         ('de', 'German (de)'),
                         ('fr', 'French (fr)'),
                         ('it', 'Italian (it)'),
                         ('ja', 'Japanese (ja)'),
                         ('pl', 'Polish (pl)'),
                         ('pt', 'Portuguese (pt)'),
                         ('ru', 'Russian (ru)'),
                         ('zh', 'Chinese (zh)'),
                     ]
                     req = self.request
                     c.available_permissions = req.registry.settings['available_permissions']
                     PermissionModel().set_global_permission_choices(
                         c, gettext_translator=req.translate)
                     return c
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_update', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_update(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     c.active = 'profile'
                     c.extern_type = c.user.extern_type
                     c.extern_name = c.user.extern_name
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     available_languages = [x[0] for x in c.allowed_languages]
                     _form = UserForm(self.request.translate, edit=True,
                                      available_languages=available_languages,
                                      old_data={'user_id': user_id,
                                                'email': c.user.email})()
                     form_result = {}
                     old_values = c.user.get_api_data()
                     try:
                         form_result = _form.to_python(dict(self.request.POST))
                         skip_attrs = ['extern_type', 'extern_name']
                         # TODO: plugin should define if username can be updated
                         if c.extern_type != "rhodecode":
                             # forbid updating username for external accounts
                             skip_attrs.append('username')
                         UserModel().update_user(
                             user_id, skip_attrs=skip_attrs, **form_result)
                         audit_logger.store_web(
                             'user.edit', action_data={'old_data': old_values},
                             user=c.rhodecode_user)
                         Session().commit()
                         h.flash(_('User updated successfully'), category='success')
                     except formencode.Invalid as errors:
                         data = render(
                             'rhodecode:templates/admin/users/user_edit.mako',
                             self._get_template_context(c), self.request)
                         html = formencode.htmlfill.render(
                             data,
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False
                         )
                         return Response(html)
                     except UserCreationError as e:
                         h.flash(e, 'error')
                     except Exception:
                         log.exception("Exception updating user")
                         h.flash(_('Error occurred during update of user %s')
                                 % form_result.get('username'), category='error')
                     raise HTTPFound(h.route_path('user_edit', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_delete', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     _repos = c.user.repositories
                     _repo_groups = c.user.repository_groups
                     _user_groups = c.user.user_groups
                     handle_repos = None
                     handle_repo_groups = None
                     handle_user_groups = None
                     # dummy call for flash of handle
                     set_handle_flash_repos = lambda: None
                     set_handle_flash_repo_groups = lambda: None
                     set_handle_flash_user_groups = lambda: None
                     if _repos and self.request.POST.get('user_repos'):
                         do = self.request.POST['user_repos']
                         if do == 'detach':
                             handle_repos = 'detach'
                             set_handle_flash_repos = lambda: h.flash(
                                 _('Detached %s repositories') % len(_repos),
                                 category='success')
                         elif do == 'delete':
                             handle_repos = 'delete'
                             set_handle_flash_repos = lambda: h.flash(
                                 _('Deleted %s repositories') % len(_repos),
                                 category='success')
                     if _repo_groups and self.request.POST.get('user_repo_groups'):
                         do = self.request.POST['user_repo_groups']
                         if do == 'detach':
                             handle_repo_groups = 'detach'
                             set_handle_flash_repo_groups = lambda: h.flash(
                                 _('Detached %s repository groups') % len(_repo_groups),
                                 category='success')
                         elif do == 'delete':
                             handle_repo_groups = 'delete'
                             set_handle_flash_repo_groups = lambda: h.flash(
                                 _('Deleted %s repository groups') % len(_repo_groups),
                                 category='success')
                     if _user_groups and self.request.POST.get('user_user_groups'):
                         do = self.request.POST['user_user_groups']
                         if do == 'detach':
                             handle_user_groups = 'detach'
                             set_handle_flash_user_groups = lambda: h.flash(
                                 _('Detached %s user groups') % len(_user_groups),
                                 category='success')
                         elif do == 'delete':
                             handle_user_groups = 'delete'
                             set_handle_flash_user_groups = lambda: h.flash(
                                 _('Deleted %s user groups') % len(_user_groups),
                                 category='success')
                     old_values = c.user.get_api_data()
                     try:
                         UserModel().delete(c.user, handle_repos=handle_repos,
                                            handle_repo_groups=handle_repo_groups,
                                            handle_user_groups=handle_user_groups)
                         audit_logger.store_web(
                             'user.delete', action_data={'old_data': old_values},
                             user=c.rhodecode_user)
                         Session().commit()
                         set_handle_flash_repos()
                         set_handle_flash_repo_groups()
                         set_handle_flash_user_groups()
                         h.flash(_('Successfully deleted user'), category='success')
                     except (UserOwnsReposException, UserOwnsRepoGroupsException,
                             UserOwnsUserGroupsException, DefaultUserException) as e:
                         h.flash(e, category='warning')
                     except Exception:
                         log.exception("Exception during deletion of user")
                         h.flash(_('An error occurred during deletion of user'),
                                 category='error')
                     raise HTTPFound(h.route_path('users'))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='user_edit', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_edit(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'profile'
                     c.extern_type = c.user.extern_type
                     c.extern_name = c.user.extern_name
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     defaults = c.user.get_dict()
                     defaults.update({'language': c.user.user_data.get('language')})
                     data = render(
                         'rhodecode:templates/admin/users/user_edit.mako',
                         self._get_template_context(c), self.request)
                     html = formencode.htmlfill.render(
                         data,
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                     return Response(html)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='user_edit_advanced', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_edit_advanced(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     c.active = 'advanced'
                     c.personal_repo_group = RepoGroup.get_user_personal_repo_group(user_id)
                     c.personal_repo_group_name = RepoGroupModel()\
                         .get_personal_group_name(c.user)
                     c.user_to_review_rules = sorted(
                         (x.user for x in c.user.user_review_rules),
                         key=lambda u: u.username.lower())
                     c.first_admin = User.get_first_super_admin()
                     defaults = c.user.get_dict()
                     # Interim workaround if the user participated on any pull requests as a
                     # reviewer.
                     has_review = len(c.user.reviewer_pull_requests)
                     c.can_delete_user = not has_review
                     c.can_delete_user_message = ''
                     inactive_link = h.link_to(
                         'inactive', h.route_path('user_edit', user_id=user_id, _anchor='active'))
                     if has_review == 1:
                         c.can_delete_user_message = h.literal(_(
                             'The user participates as reviewer in {} pull request and '
                             'cannot be deleted. \nYou can set the user to '
                             '"{}" instead of deleting it.').format(
                             has_review, inactive_link))
                     elif has_review:
                         c.can_delete_user_message = h.literal(_(
                             'The user participates as reviewer in {} pull requests and '
                             'cannot be deleted. \nYou can set the user to '
                             '"{}" instead of deleting it.').format(
                             has_review, inactive_link))
                     data = render(
                         'rhodecode:templates/admin/users/user_edit.mako',
                         self._get_template_context(c), self.request)
                     html = formencode.htmlfill.render(
                         data,
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                     return Response(html)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='user_edit_global_perms', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_edit_global_perms(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'global_perms'
                     c.default_user = User.get_default_user()
                     defaults = c.user.get_dict()
                     defaults.update(c.default_user.get_default_perms(suffix='_inherited'))
                     defaults.update(c.default_user.get_default_perms())
                     defaults.update(c.user.get_default_perms())
                     data = render(
                         'rhodecode:templates/admin/users/user_edit.mako',
                         self._get_template_context(c), self.request)
                     html = formencode.htmlfill.render(
                         data,
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                     return Response(html)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_edit_global_perms_update', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_edit_global_perms_update(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     c.active = 'global_perms'
                     try:
                         # first stage that verifies the checkbox
                         _form = UserIndividualPermissionsForm(self.request.translate)
                         form_result = _form.to_python(dict(self.request.POST))
                         inherit_perms = form_result['inherit_default_permissions']
                         c.user.inherit_default_permissions = inherit_perms
                         Session().add(c.user)
                         if not inherit_perms:
                             # only update the individual ones if we un check the flag
                             _form = UserPermissionsForm(
                                 self.request.translate,
                                 [x[0] for x in c.repo_create_choices],
                                 [x[0] for x in c.repo_create_on_write_choices],
                                 [x[0] for x in c.repo_group_create_choices],
                                 [x[0] for x in c.user_group_create_choices],
                                 [x[0] for x in c.fork_choices],
                                 [x[0] for x in c.inherit_default_permission_choices])()
                             form_result = _form.to_python(dict(self.request.POST))
                             form_result.update({'perm_user_id': c.user.user_id})
                             PermissionModel().update_user_permissions(form_result)
                         # TODO(marcink): implement global permissions
                         # audit_log.store_web('user.edit.permissions')
                         Session().commit()
                         h.flash(_('User global permissions updated successfully'),
                                 category='success')
                     except formencode.Invalid as errors:
                         data = render(
                             'rhodecode:templates/admin/users/user_edit.mako',
                             self._get_template_context(c), self.request)
                         html = formencode.htmlfill.render(
                             data,
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False
                         )
                         return Response(html)
                     except Exception:
                         log.exception("Exception during permissions saving")
                         h.flash(_('An error occurred during permissions saving'),
                                 category='error')
                     raise HTTPFound(h.route_path('user_edit_global_perms', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
-                    route_name='user_force_password_reset', request_method='POST',
+                    route_name='user_enable_force_password_reset', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
-                def user_force_password_reset(self):
+                def user_enable_force_password_reset(self):
-                    """
-                    toggle reset password flag for this user
-                    """
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     try:
-                        old_value = c.user.user_data.get('force_password_change')
+                        c.user.update_userdata(force_password_change=True)
-                        c.user.update_userdata(force_password_change=not old_value)
+                        msg = _('Force password change enabled for user')
+                        audit_logger.store_web('user.edit.password_reset.enabled',
+                                               user=c.rhodecode_user)
+                        Session().commit()
+                        h.flash(msg, category='success')
+                    except Exception:
+                        log.exception("Exception during password reset for user")
+                        h.flash(_('An error occurred during password reset for user'),
+                                category='error')
+                    raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
-                        if old_value:
+                @LoginRequired()
-                            msg = _('Force password change disabled for user')
+                @HasPermissionAllDecorator('hg.admin')
-                            audit_logger.store_web(
+                @CSRFRequired()
-                                'user.edit.password_reset.disabled',
+                @view_config(
-                                user=c.rhodecode_user)
+                    route_name='user_disable_force_password_reset', request_method='POST',
-                        else:
+                    renderer='rhodecode:templates/admin/users/user_edit.mako')
-                            msg = _('Force password change enabled for user')
+                def user_disable_force_password_reset(self):
-                            audit_logger.store_web(
+                    _ = self.request.translate
-                                'user.edit.password_reset.enabled',
+                    c = self.load_default_context()
-                                user=c.rhodecode_user)
+                    user_id = self.db_user_id
+                    c.user = self.db_user
+                    try:
+                        c.user.update_userdata(force_password_change=False)
+                        msg = _('Force password change disabled for user')
+                        audit_logger.store_web(
+                            'user.edit.password_reset.disabled',
+                            user=c.rhodecode_user)
                         Session().commit()
                         h.flash(msg, category='success')
                     except Exception:
                         log.exception("Exception during password reset for user")
                         h.flash(_('An error occurred during password reset for user'),
                                 category='error')
                     raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='user_create_personal_repo_group', request_method='POST',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_create_personal_repo_group(self):
                     """
                     Create personal repository group for this user
                     """
                     from rhodecode.model.repo_group import RepoGroupModel
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     personal_repo_group = RepoGroup.get_user_personal_repo_group(
                         c.user.user_id)
                     if personal_repo_group:
                         raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
                     personal_repo_group_name = RepoGroupModel().get_personal_group_name(
                         c.user)
                     named_personal_group = RepoGroup.get_by_group_name(
                         personal_repo_group_name)
                     try:
                         if named_personal_group and named_personal_group.user_id == c.user.user_id:
                             # migrate the same named group, and mark it as personal
                             named_personal_group.personal = True
                             Session().add(named_personal_group)
                             Session().commit()
                             msg = _('Linked repository group `%s` as personal' % (
                                 personal_repo_group_name,))
                             h.flash(msg, category='success')
                         elif not named_personal_group:
                             RepoGroupModel().create_personal_repo_group(c.user)
                             msg = _('Created repository group `%s`' % (
                                 personal_repo_group_name,))
                             h.flash(msg, category='success')
                         else:
                             msg = _('Repository group `%s` is already taken' % (
                                 personal_repo_group_name,))
                             h.flash(msg, category='warning')
                     except Exception:
                         log.exception("Exception during repository group creation")
                         msg = _(
                             'An error occurred during repository group creation for user')
                         h.flash(msg, category='error')
                         Session().rollback()
                     raise HTTPFound(h.route_path('user_edit_advanced', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_auth_tokens', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def auth_tokens(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'auth_tokens'
                     c.lifetime_values = AuthTokenModel.get_lifetime_values(translator=_)
                     c.role_values = [
                         (x, AuthTokenModel.cls._get_role_name(x))
                         for x in AuthTokenModel.cls.ROLES]
                     c.role_options = [(c.role_values, _("Role"))]
                     c.user_auth_tokens = AuthTokenModel().get_auth_tokens(
                         c.user.user_id, show_expired=True)
                     c.role_vcs = AuthTokenModel.cls.ROLE_VCS
                     return self._get_template_context(c)
                 def maybe_attach_token_scope(self, token):
                     # implemented in EE edition
                     pass
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_auth_tokens_add', request_method='POST')
                 def auth_tokens_add(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_data = c.user.get_api_data()
                     lifetime = safe_int(self.request.POST.get('lifetime'), -1)
                     description = self.request.POST.get('description')
                     role = self.request.POST.get('role')
                     token = UserModel().add_auth_token(
                         user=c.user.user_id,
                         lifetime_minutes=lifetime, role=role, description=description,
                         scope_callback=self.maybe_attach_token_scope)
                     token_data = token.get_api_data()
                     audit_logger.store_web(
                         'user.edit.token.add', action_data={
                             'data': {'token': token_data, 'user': user_data}},
                         user=self._rhodecode_user, )
                     Session().commit()
                     h.flash(_("Auth token successfully created"), category='success')
                     return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_auth_tokens_delete', request_method='POST')
                 def auth_tokens_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_data = c.user.get_api_data()
                     del_auth_token = self.request.POST.get('del_auth_token')
                     if del_auth_token:
                         token = UserApiKeys.get_or_404(del_auth_token)
                         token_data = token.get_api_data()
                         AuthTokenModel().delete(del_auth_token, c.user.user_id)
                         audit_logger.store_web(
                             'user.edit.token.delete', action_data={
                                 'data': {'token': token_data, 'user': user_data}},
                             user=self._rhodecode_user,)
                         Session().commit()
                         h.flash(_("Auth token successfully deleted"), category='success')
                     return HTTPFound(h.route_path('edit_user_auth_tokens', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_ssh_keys', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def ssh_keys(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'ssh_keys'
                     c.default_key = self.request.GET.get('default_key')
                     c.user_ssh_keys = SshKeyModel().get_ssh_keys(c.user.user_id)
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_ssh_keys_generate_keypair', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def ssh_keys_generate_keypair(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'ssh_keys_generate'
                     comment = 'RhodeCode-SSH {}'.format(c.user.email or '')
                     c.private, c.public = SshKeyModel().generate_keypair(comment=comment)
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_ssh_keys_add', request_method='POST')
                 def ssh_keys_add(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_data = c.user.get_api_data()
                     key_data = self.request.POST.get('key_data')
                     description = self.request.POST.get('description')
                     fingerprint = 'unknown'
                     try:
                         if not key_data:
                             raise ValueError('Please add a valid public key')
                         key = SshKeyModel().parse_key(key_data.strip())
                         fingerprint = key.hash_md5()
                         ssh_key = SshKeyModel().create(
                             c.user.user_id, fingerprint, key.keydata, description)
                         ssh_key_data = ssh_key.get_api_data()
                         audit_logger.store_web(
                             'user.edit.ssh_key.add', action_data={
                                 'data': {'ssh_key': ssh_key_data, 'user': user_data}},
                             user=self._rhodecode_user, )
                         Session().commit()
                         # Trigger an event on change of keys.
                         trigger(SshKeyFileChangeEvent(), self.request.registry)
                         h.flash(_("Ssh Key successfully created"), category='success')
                     except IntegrityError:
                         log.exception("Exception during ssh key saving")
                         err = 'Such key with fingerprint `{}` already exists, ' \
                               'please use a different one'.format(fingerprint)
                         h.flash(_('An error occurred during ssh key saving: {}').format(err),
                                 category='error')
                     except Exception as e:
                         log.exception("Exception during ssh key saving")
                         h.flash(_('An error occurred during ssh key saving: {}').format(e),
                                 category='error')
                     return HTTPFound(
                         h.route_path('edit_user_ssh_keys', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_ssh_keys_delete', request_method='POST')
                 def ssh_keys_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_data = c.user.get_api_data()
                     del_ssh_key = self.request.POST.get('del_ssh_key')
                     if del_ssh_key:
                         ssh_key = UserSshKeys.get_or_404(del_ssh_key)
                         ssh_key_data = ssh_key.get_api_data()
                         SshKeyModel().delete(del_ssh_key, c.user.user_id)
                         audit_logger.store_web(
                             'user.edit.ssh_key.delete', action_data={
                                 'data': {'ssh_key': ssh_key_data, 'user': user_data}},
                             user=self._rhodecode_user,)
                         Session().commit()
                         # Trigger an event on change of keys.
                         trigger(SshKeyFileChangeEvent(), self.request.registry)
                         h.flash(_("Ssh key successfully deleted"), category='success')
                     return HTTPFound(h.route_path('edit_user_ssh_keys', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_emails', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def emails(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'emails'
                     c.user_email_map = UserEmailMap.query() \
                         .filter(UserEmailMap.user == c.user).all()
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_emails_add', request_method='POST')
                 def emails_add(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     email = self.request.POST.get('new_email')
                     user_data = c.user.get_api_data()
                     try:
                         form = UserExtraEmailForm(self.request.translate)()
                         data = form.to_python({'email': email})
                         email = data['email']
                         UserModel().add_extra_email(c.user.user_id, email)
                         audit_logger.store_web(
                             'user.edit.email.add',
                             action_data={'email': email, 'user': user_data},
                             user=self._rhodecode_user)
                         Session().commit()
                         h.flash(_("Added new email address `%s` for user account") % email,
                                 category='success')
                     except formencode.Invalid as error:
                         h.flash(h.escape(error.error_dict['email']), category='error')
                     except IntegrityError:
                         log.warning("Email %s already exists", email)
                         h.flash(_('Email `{}` is already registered for another user.').format(email),
                                 category='error')
                     except Exception:
                         log.exception("Exception during email saving")
                         h.flash(_('An error occurred during email saving'),
                                 category='error')
                     raise HTTPFound(h.route_path('edit_user_emails', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_emails_delete', request_method='POST')
                 def emails_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     email_id = self.request.POST.get('del_email_id')
                     user_model = UserModel()
                     email = UserEmailMap.query().get(email_id).email
                     user_data = c.user.get_api_data()
                     user_model.delete_extra_email(c.user.user_id, email_id)
                     audit_logger.store_web(
                         'user.edit.email.delete',
                         action_data={'email': email, 'user': user_data},
                         user=self._rhodecode_user)
                     Session().commit()
                     h.flash(_("Removed email address from user account"),
                             category='success')
                     raise HTTPFound(h.route_path('edit_user_emails', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_ips', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def ips(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'ips'
                     c.user_ip_map = UserIpMap.query() \
                         .filter(UserIpMap.user == c.user).all()
                     c.inherit_default_ips = c.user.inherit_default_permissions
                     c.default_user_ip_map = UserIpMap.query() \
                         .filter(UserIpMap.user == User.get_default_user()).all()
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_ips_add', request_method='POST')
                 # NOTE(marcink): this view is allowed for default users, as we can
                 # edit their IP white list
                 def ips_add(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_model = UserModel()
                     desc = self.request.POST.get('description')
                     try:
                         ip_list = user_model.parse_ip_range(
                             self.request.POST.get('new_ip'))
                     except Exception as e:
                         ip_list = []
                         log.exception("Exception during ip saving")
                         h.flash(_('An error occurred during ip saving:%s' % (e,)),
                                 category='error')
                     added = []
                     user_data = c.user.get_api_data()
                     for ip in ip_list:
                         try:
                             form = UserExtraIpForm(self.request.translate)()
                             data = form.to_python({'ip': ip})
                             ip = data['ip']
                             user_model.add_extra_ip(c.user.user_id, ip, desc)
                             audit_logger.store_web(
                                 'user.edit.ip.add',
                                 action_data={'ip': ip, 'user': user_data},
                                 user=self._rhodecode_user)
                             Session().commit()
                             added.append(ip)
                         except formencode.Invalid as error:
                             msg = error.error_dict['ip']
                             h.flash(msg, category='error')
                         except Exception:
                             log.exception("Exception during ip saving")
                             h.flash(_('An error occurred during ip saving'),
                                     category='error')
                     if added:
                         h.flash(
                             _("Added ips %s to user whitelist") % (', '.join(ip_list), ),
                             category='success')
                     if 'default_user' in self.request.POST:
                         # case for editing global IP list we do it for 'DEFAULT' user
                         raise HTTPFound(h.route_path('admin_permissions_ips'))
                     raise HTTPFound(h.route_path('edit_user_ips', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_ips_delete', request_method='POST')
                 # NOTE(marcink): this view is allowed for default users, as we can
                 # edit their IP white list
                 def ips_delete(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     ip_id = self.request.POST.get('del_ip_id')
                     user_model = UserModel()
                     user_data = c.user.get_api_data()
                     ip = UserIpMap.query().get(ip_id).ip_addr
                     user_model.delete_extra_ip(c.user.user_id, ip_id)
                     audit_logger.store_web(
                         'user.edit.ip.delete', action_data={'ip': ip, 'user': user_data},
                         user=self._rhodecode_user)
                     Session().commit()
                     h.flash(_("Removed ip address from user whitelist"), category='success')
                     if 'default_user' in self.request.POST:
                         # case for editing global IP list we do it for 'DEFAULT' user
                         raise HTTPFound(h.route_path('admin_permissions_ips'))
                     raise HTTPFound(h.route_path('edit_user_ips', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_groups_management', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def groups_management(self):
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.data = c.user.group_member
                     groups = [UserGroupModel.get_user_groups_as_dict(group.users_group)
                               for group in c.user.group_member]
                     c.groups = json.dumps(groups)
                     c.active = 'groups'
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_groups_management_updates', request_method='POST')
                 def groups_management_updates(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     user_id = self.db_user_id
                     c.user = self.db_user
                     user_groups = set(self.request.POST.getall('users_group_id'))
                     user_groups_objects = []
                     for ugid in user_groups:
                         user_groups_objects.append(
                             UserGroupModel().get_group(safe_int(ugid)))
                     user_group_model = UserGroupModel()
                     added_to_groups, removed_from_groups = \
                         user_group_model.change_groups(c.user, user_groups_objects)
                     user_data = c.user.get_api_data()
                     for user_group_id in added_to_groups:
                         user_group = UserGroup.get(user_group_id)
                         old_values = user_group.get_api_data()
                         audit_logger.store_web(
                             'user_group.edit.member.add',
                             action_data={'user': user_data, 'old_data': old_values},
                             user=self._rhodecode_user)
                     for user_group_id in removed_from_groups:
                         user_group = UserGroup.get(user_group_id)
                         old_values = user_group.get_api_data()
                         audit_logger.store_web(
                             'user_group.edit.member.delete',
                             action_data={'user': user_data, 'old_data': old_values},
                             user=self._rhodecode_user)
                     Session().commit()
                     c.active = 'user_groups_management'
                     h.flash(_("Groups successfully changed"), category='success')
                     return HTTPFound(h.route_path(
                         'edit_user_groups_management', user_id=user_id))
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_audit_logs', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_audit_logs(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'audit'
                     p = safe_int(self.request.GET.get('page', 1), 1)
                     filter_term = self.request.GET.get('filter')
                     user_log = UserModel().get_user_log(c.user, filter_term)
                     def url_generator(**kw):
                         if filter_term:
                             kw['filter'] = filter_term
                         return self.request.current_route_path(_query=kw)
                     c.audit_logs = h.Page(
                         user_log, page=p, items_per_page=10, url=url_generator)
                     c.filter_term = filter_term
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_perms_summary', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_perms_summary(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'perms_summary'
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_perms_summary_json', request_method='GET',
                     renderer='json_ext')
                 def user_perms_summary_json(self):
                     self.load_default_context()
                     perm_user = self.db_user.AuthUser(ip_addr=self.request.remote_addr)
                     return perm_user.permissions
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @view_config(
                     route_name='edit_user_caches', request_method='GET',
                     renderer='rhodecode:templates/admin/users/user_edit.mako')
                 def user_caches(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'caches'
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     cache_namespace_uid = 'cache_user_auth.{}'.format(self.db_user.user_id)
                     c.region = rc_cache.get_or_create_region('cache_perms', cache_namespace_uid)
                     c.backend = c.region.backend
                     c.user_keys = sorted(c.region.backend.list_keys(prefix=cache_namespace_uid))
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='edit_user_caches_update', request_method='POST')
                 def user_caches_update(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     c.user = self.db_user
                     c.active = 'caches'
                     c.perm_user = c.user.AuthUser(ip_addr=self.request.remote_addr)
                     cache_namespace_uid = 'cache_user_auth.{}'.format(self.db_user.user_id)
                     del_keys = rc_cache.clear_cache_namespace('cache_perms', cache_namespace_uid)
                     h.flash(_("Deleted {} cache keys").format(del_keys), category='success')
                     return HTTPFound(h.route_path(
                         'edit_user_caches', user_id=c.user.user_id))

rhodecode/public/js/rhodecode/routes.js

0 +2 -1

             /******************************************************************************
              *                                                                            *
              *                      DO NOT CHANGE THIS FILE MANUALLY                      *
              *                                                                            *
              *                                                                            *
              *        This file is automatically generated when the app starts up with    *
              *                         generate_js_files = true                           *
              *                                                                            *
              *  To add a route here pass jsroute=True to the route definition in the app  *
              *                                                                            *
              ******************************************************************************/
             function registerRCRoutes() {
                 // routes registration
                 pyroutes.register('favicon', '/favicon.ico', []);
                 pyroutes.register('robots', '/robots.txt', []);
                 pyroutes.register('global_integrations_new', '/_admin/integrations/new', []);
                 pyroutes.register('global_integrations_home', '/_admin/integrations', []);
                 pyroutes.register('global_integrations_list', '/_admin/integrations/%(integration)s', ['integration']);
                 pyroutes.register('global_integrations_create', '/_admin/integrations/%(integration)s/new', ['integration']);
                 pyroutes.register('global_integrations_edit', '/_admin/integrations/%(integration)s/%(integration_id)s', ['integration', 'integration_id']);
                 pyroutes.register('repo_group_integrations_home', '/%(repo_group_name)s/_settings/integrations', ['repo_group_name']);
                 pyroutes.register('repo_group_integrations_new', '/%(repo_group_name)s/_settings/integrations/new', ['repo_group_name']);
                 pyroutes.register('repo_group_integrations_list', '/%(repo_group_name)s/_settings/integrations/%(integration)s', ['repo_group_name', 'integration']);
                 pyroutes.register('repo_group_integrations_create', '/%(repo_group_name)s/_settings/integrations/%(integration)s/new', ['repo_group_name', 'integration']);
                 pyroutes.register('repo_group_integrations_edit', '/%(repo_group_name)s/_settings/integrations/%(integration)s/%(integration_id)s', ['repo_group_name', 'integration', 'integration_id']);
                 pyroutes.register('repo_integrations_home', '/%(repo_name)s/settings/integrations', ['repo_name']);
                 pyroutes.register('repo_integrations_new', '/%(repo_name)s/settings/integrations/new', ['repo_name']);
                 pyroutes.register('repo_integrations_list', '/%(repo_name)s/settings/integrations/%(integration)s', ['repo_name', 'integration']);
                 pyroutes.register('repo_integrations_create', '/%(repo_name)s/settings/integrations/%(integration)s/new', ['repo_name', 'integration']);
                 pyroutes.register('repo_integrations_edit', '/%(repo_name)s/settings/integrations/%(integration)s/%(integration_id)s', ['repo_name', 'integration', 'integration_id']);
                 pyroutes.register('auth_home', '/_admin/auth*traverse', []);
                 pyroutes.register('ops_ping', '/_admin/ops/ping', []);
                 pyroutes.register('ops_error_test', '/_admin/ops/error', []);
                 pyroutes.register('ops_redirect_test', '/_admin/ops/redirect', []);
                 pyroutes.register('ops_ping_legacy', '/_admin/ping', []);
                 pyroutes.register('ops_error_test_legacy', '/_admin/error_test', []);
                 pyroutes.register('admin_home', '/_admin', []);
                 pyroutes.register('admin_audit_logs', '/_admin/audit_logs', []);
                 pyroutes.register('admin_audit_log_entry', '/_admin/audit_logs/%(audit_log_id)s', ['audit_log_id']);
                 pyroutes.register('pull_requests_global_0', '/_admin/pull_requests/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('pull_requests_global_1', '/_admin/pull-requests/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('pull_requests_global', '/_admin/pull-request/%(pull_request_id)s', ['pull_request_id']);
                 pyroutes.register('admin_settings_open_source', '/_admin/settings/open_source', []);
                 pyroutes.register('admin_settings_vcs_svn_generate_cfg', '/_admin/settings/vcs/svn_generate_cfg', []);
                 pyroutes.register('admin_settings_system', '/_admin/settings/system', []);
                 pyroutes.register('admin_settings_system_update', '/_admin/settings/system/updates', []);
                 pyroutes.register('admin_settings_exception_tracker', '/_admin/settings/exceptions', []);
                 pyroutes.register('admin_settings_exception_tracker_delete_all', '/_admin/settings/exceptions/delete', []);
                 pyroutes.register('admin_settings_exception_tracker_show', '/_admin/settings/exceptions/%(exception_id)s', ['exception_id']);
                 pyroutes.register('admin_settings_exception_tracker_delete', '/_admin/settings/exceptions/%(exception_id)s/delete', ['exception_id']);
                 pyroutes.register('admin_settings_sessions', '/_admin/settings/sessions', []);
                 pyroutes.register('admin_settings_sessions_cleanup', '/_admin/settings/sessions/cleanup', []);
                 pyroutes.register('admin_settings_process_management', '/_admin/settings/process_management', []);
                 pyroutes.register('admin_settings_process_management_data', '/_admin/settings/process_management/data', []);
                 pyroutes.register('admin_settings_process_management_signal', '/_admin/settings/process_management/signal', []);
                 pyroutes.register('admin_settings_process_management_master_signal', '/_admin/settings/process_management/master_signal', []);
                 pyroutes.register('admin_defaults_repositories', '/_admin/defaults/repositories', []);
                 pyroutes.register('admin_defaults_repositories_update', '/_admin/defaults/repositories/update', []);
                 pyroutes.register('admin_settings', '/_admin/settings', []);
                 pyroutes.register('admin_settings_update', '/_admin/settings/update', []);
                 pyroutes.register('admin_settings_global', '/_admin/settings/global', []);
                 pyroutes.register('admin_settings_global_update', '/_admin/settings/global/update', []);
                 pyroutes.register('admin_settings_vcs', '/_admin/settings/vcs', []);
                 pyroutes.register('admin_settings_vcs_update', '/_admin/settings/vcs/update', []);
                 pyroutes.register('admin_settings_vcs_svn_pattern_delete', '/_admin/settings/vcs/svn_pattern_delete', []);
                 pyroutes.register('admin_settings_mapping', '/_admin/settings/mapping', []);
                 pyroutes.register('admin_settings_mapping_update', '/_admin/settings/mapping/update', []);
                 pyroutes.register('admin_settings_visual', '/_admin/settings/visual', []);
                 pyroutes.register('admin_settings_visual_update', '/_admin/settings/visual/update', []);
                 pyroutes.register('admin_settings_issuetracker', '/_admin/settings/issue-tracker', []);
                 pyroutes.register('admin_settings_issuetracker_update', '/_admin/settings/issue-tracker/update', []);
                 pyroutes.register('admin_settings_issuetracker_test', '/_admin/settings/issue-tracker/test', []);
                 pyroutes.register('admin_settings_issuetracker_delete', '/_admin/settings/issue-tracker/delete', []);
                 pyroutes.register('admin_settings_email', '/_admin/settings/email', []);
                 pyroutes.register('admin_settings_email_update', '/_admin/settings/email/update', []);
                 pyroutes.register('admin_settings_hooks', '/_admin/settings/hooks', []);
                 pyroutes.register('admin_settings_hooks_update', '/_admin/settings/hooks/update', []);
                 pyroutes.register('admin_settings_hooks_delete', '/_admin/settings/hooks/delete', []);
                 pyroutes.register('admin_settings_search', '/_admin/settings/search', []);
                 pyroutes.register('admin_settings_labs', '/_admin/settings/labs', []);
                 pyroutes.register('admin_settings_labs_update', '/_admin/settings/labs/update', []);
                 pyroutes.register('admin_permissions_application', '/_admin/permissions/application', []);
                 pyroutes.register('admin_permissions_application_update', '/_admin/permissions/application/update', []);
                 pyroutes.register('admin_permissions_global', '/_admin/permissions/global', []);
                 pyroutes.register('admin_permissions_global_update', '/_admin/permissions/global/update', []);
                 pyroutes.register('admin_permissions_object', '/_admin/permissions/object', []);
                 pyroutes.register('admin_permissions_object_update', '/_admin/permissions/object/update', []);
                 pyroutes.register('admin_permissions_ips', '/_admin/permissions/ips', []);
                 pyroutes.register('admin_permissions_overview', '/_admin/permissions/overview', []);
                 pyroutes.register('admin_permissions_auth_token_access', '/_admin/permissions/auth_token_access', []);
                 pyroutes.register('admin_permissions_ssh_keys', '/_admin/permissions/ssh_keys', []);
                 pyroutes.register('admin_permissions_ssh_keys_data', '/_admin/permissions/ssh_keys/data', []);
                 pyroutes.register('admin_permissions_ssh_keys_update', '/_admin/permissions/ssh_keys/update', []);
                 pyroutes.register('users', '/_admin/users', []);
                 pyroutes.register('users_data', '/_admin/users_data', []);
                 pyroutes.register('users_create', '/_admin/users/create', []);
                 pyroutes.register('users_new', '/_admin/users/new', []);
                 pyroutes.register('user_edit', '/_admin/users/%(user_id)s/edit', ['user_id']);
                 pyroutes.register('user_edit_advanced', '/_admin/users/%(user_id)s/edit/advanced', ['user_id']);
                 pyroutes.register('user_edit_global_perms', '/_admin/users/%(user_id)s/edit/global_permissions', ['user_id']);
                 pyroutes.register('user_edit_global_perms_update', '/_admin/users/%(user_id)s/edit/global_permissions/update', ['user_id']);
                 pyroutes.register('user_update', '/_admin/users/%(user_id)s/update', ['user_id']);
                 pyroutes.register('user_delete', '/_admin/users/%(user_id)s/delete', ['user_id']);
-                pyroutes.register('user_force_password_reset', '/_admin/users/%(user_id)s/password_reset', ['user_id']);
+                pyroutes.register('user_enable_force_password_reset', '/_admin/users/%(user_id)s/password_reset_enable', ['user_id']);
+                pyroutes.register('user_disable_force_password_reset', '/_admin/users/%(user_id)s/password_reset_disable', ['user_id']);
                 pyroutes.register('user_create_personal_repo_group', '/_admin/users/%(user_id)s/create_repo_group', ['user_id']);
                 pyroutes.register('edit_user_auth_tokens_delete', '/_admin/users/%(user_id)s/edit/auth_tokens/delete', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys', '/_admin/users/%(user_id)s/edit/ssh_keys', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys_generate_keypair', '/_admin/users/%(user_id)s/edit/ssh_keys/generate', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys_add', '/_admin/users/%(user_id)s/edit/ssh_keys/new', ['user_id']);
                 pyroutes.register('edit_user_ssh_keys_delete', '/_admin/users/%(user_id)s/edit/ssh_keys/delete', ['user_id']);
                 pyroutes.register('edit_user_emails', '/_admin/users/%(user_id)s/edit/emails', ['user_id']);
                 pyroutes.register('edit_user_emails_add', '/_admin/users/%(user_id)s/edit/emails/new', ['user_id']);
                 pyroutes.register('edit_user_emails_delete', '/_admin/users/%(user_id)s/edit/emails/delete', ['user_id']);
                 pyroutes.register('edit_user_ips', '/_admin/users/%(user_id)s/edit/ips', ['user_id']);
                 pyroutes.register('edit_user_ips_add', '/_admin/users/%(user_id)s/edit/ips/new', ['user_id']);
                 pyroutes.register('edit_user_ips_delete', '/_admin/users/%(user_id)s/edit/ips/delete', ['user_id']);
                 pyroutes.register('edit_user_perms_summary', '/_admin/users/%(user_id)s/edit/permissions_summary', ['user_id']);
                 pyroutes.register('edit_user_perms_summary_json', '/_admin/users/%(user_id)s/edit/permissions_summary/json', ['user_id']);
                 pyroutes.register('edit_user_groups_management', '/_admin/users/%(user_id)s/edit/groups_management', ['user_id']);
                 pyroutes.register('edit_user_groups_management_updates', '/_admin/users/%(user_id)s/edit/edit_user_groups_management/updates', ['user_id']);
                 pyroutes.register('edit_user_audit_logs', '/_admin/users/%(user_id)s/edit/audit', ['user_id']);
                 pyroutes.register('edit_user_caches', '/_admin/users/%(user_id)s/edit/caches', ['user_id']);
                 pyroutes.register('edit_user_caches_update', '/_admin/users/%(user_id)s/edit/caches/update', ['user_id']);
                 pyroutes.register('user_groups', '/_admin/user_groups', []);
                 pyroutes.register('user_groups_data', '/_admin/user_groups_data', []);
                 pyroutes.register('user_groups_new', '/_admin/user_groups/new', []);
                 pyroutes.register('user_groups_create', '/_admin/user_groups/create', []);
                 pyroutes.register('repos', '/_admin/repos', []);
                 pyroutes.register('repo_new', '/_admin/repos/new', []);
                 pyroutes.register('repo_create', '/_admin/repos/create', []);
                 pyroutes.register('repo_groups', '/_admin/repo_groups', []);
                 pyroutes.register('repo_group_new', '/_admin/repo_group/new', []);
                 pyroutes.register('repo_group_create', '/_admin/repo_group/create', []);
                 pyroutes.register('channelstream_connect', '/_admin/channelstream/connect', []);
                 pyroutes.register('channelstream_subscribe', '/_admin/channelstream/subscribe', []);
                 pyroutes.register('channelstream_proxy', '/_channelstream', []);
                 pyroutes.register('logout', '/_admin/logout', []);
                 pyroutes.register('reset_password', '/_admin/password_reset', []);
                 pyroutes.register('reset_password_confirmation', '/_admin/password_reset_confirmation', []);
                 pyroutes.register('home', '/', []);
                 pyroutes.register('user_autocomplete_data', '/_users', []);
                 pyroutes.register('user_group_autocomplete_data', '/_user_groups', []);
                 pyroutes.register('repo_list_data', '/_repos', []);
                 pyroutes.register('goto_switcher_data', '/_goto_data', []);
                 pyroutes.register('markup_preview', '/_markup_preview', []);
                 pyroutes.register('store_user_session_value', '/_store_session_attr', []);
                 pyroutes.register('journal', '/_admin/journal', []);
                 pyroutes.register('journal_rss', '/_admin/journal/rss', []);
                 pyroutes.register('journal_atom', '/_admin/journal/atom', []);
                 pyroutes.register('journal_public', '/_admin/public_journal', []);
                 pyroutes.register('journal_public_atom', '/_admin/public_journal/atom', []);
                 pyroutes.register('journal_public_atom_old', '/_admin/public_journal_atom', []);
                 pyroutes.register('journal_public_rss', '/_admin/public_journal/rss', []);
                 pyroutes.register('journal_public_rss_old', '/_admin/public_journal_rss', []);
                 pyroutes.register('toggle_following', '/_admin/toggle_following', []);
                 pyroutes.register('repo_creating', '/%(repo_name)s/repo_creating', ['repo_name']);
                 pyroutes.register('repo_creating_check', '/%(repo_name)s/repo_creating_check', ['repo_name']);
                 pyroutes.register('repo_summary_explicit', '/%(repo_name)s/summary', ['repo_name']);
                 pyroutes.register('repo_summary_commits', '/%(repo_name)s/summary-commits', ['repo_name']);
                 pyroutes.register('repo_commit', '/%(repo_name)s/changeset/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_children', '/%(repo_name)s/changeset_children/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_parents', '/%(repo_name)s/changeset_parents/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_raw', '/%(repo_name)s/changeset-diff/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_patch', '/%(repo_name)s/changeset-patch/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_download', '/%(repo_name)s/changeset-download/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_data', '/%(repo_name)s/changeset-data/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_comment_create', '/%(repo_name)s/changeset/%(commit_id)s/comment/create', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_comment_preview', '/%(repo_name)s/changeset/%(commit_id)s/comment/preview', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_commit_comment_delete', '/%(repo_name)s/changeset/%(commit_id)s/comment/%(comment_id)s/delete', ['repo_name', 'commit_id', 'comment_id']);
                 pyroutes.register('repo_commit_raw_deprecated', '/%(repo_name)s/raw-changeset/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_archivefile', '/%(repo_name)s/archive/%(fname)s', ['repo_name', 'fname']);
                 pyroutes.register('repo_files_diff', '/%(repo_name)s/diff/%(f_path)s', ['repo_name', 'f_path']);
                 pyroutes.register('repo_files_diff_2way_redirect', '/%(repo_name)s/diff-2way/%(f_path)s', ['repo_name', 'f_path']);
                 pyroutes.register('repo_files', '/%(repo_name)s/files/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files:default_path', '/%(repo_name)s/files/%(commit_id)s/', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_files:default_commit', '/%(repo_name)s/files', ['repo_name']);
                 pyroutes.register('repo_files:rendered', '/%(repo_name)s/render/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files:annotated', '/%(repo_name)s/annotate/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files:annotated_previous', '/%(repo_name)s/annotate-previous/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_nodetree_full', '/%(repo_name)s/nodetree_full/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_nodetree_full:default_path', '/%(repo_name)s/nodetree_full/%(commit_id)s/', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_files_nodelist', '/%(repo_name)s/nodelist/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_raw', '/%(repo_name)s/raw/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_download', '/%(repo_name)s/download/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_download:legacy', '/%(repo_name)s/rawfile/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_history', '/%(repo_name)s/history/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_file_authors', '/%(repo_name)s/authors/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_remove_file', '/%(repo_name)s/remove_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_delete_file', '/%(repo_name)s/delete_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_edit_file', '/%(repo_name)s/edit_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_update_file', '/%(repo_name)s/update_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_add_file', '/%(repo_name)s/add_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_files_create_file', '/%(repo_name)s/create_file/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_refs_data', '/%(repo_name)s/refs-data', ['repo_name']);
                 pyroutes.register('repo_refs_changelog_data', '/%(repo_name)s/refs-data-changelog', ['repo_name']);
                 pyroutes.register('repo_stats', '/%(repo_name)s/repo_stats/%(commit_id)s', ['repo_name', 'commit_id']);
                 pyroutes.register('repo_changelog', '/%(repo_name)s/changelog', ['repo_name']);
                 pyroutes.register('repo_changelog_file', '/%(repo_name)s/changelog/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_changelog_elements', '/%(repo_name)s/changelog_elements', ['repo_name']);
                 pyroutes.register('repo_changelog_elements_file', '/%(repo_name)s/changelog_elements/%(commit_id)s/%(f_path)s', ['repo_name', 'commit_id', 'f_path']);
                 pyroutes.register('repo_compare_select', '/%(repo_name)s/compare', ['repo_name']);
                 pyroutes.register('repo_compare', '/%(repo_name)s/compare/%(source_ref_type)s@%(source_ref)s...%(target_ref_type)s@%(target_ref)s', ['repo_name', 'source_ref_type', 'source_ref', 'target_ref_type', 'target_ref']);
                 pyroutes.register('tags_home', '/%(repo_name)s/tags', ['repo_name']);
                 pyroutes.register('branches_home', '/%(repo_name)s/branches', ['repo_name']);
                 pyroutes.register('bookmarks_home', '/%(repo_name)s/bookmarks', ['repo_name']);
                 pyroutes.register('repo_fork_new', '/%(repo_name)s/fork', ['repo_name']);
                 pyroutes.register('repo_fork_create', '/%(repo_name)s/fork/create', ['repo_name']);
                 pyroutes.register('repo_forks_show_all', '/%(repo_name)s/forks', ['repo_name']);
                 pyroutes.register('repo_forks_data', '/%(repo_name)s/forks/data', ['repo_name']);
                 pyroutes.register('pullrequest_show', '/%(repo_name)s/pull-request/%(pull_request_id)s', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_show_all', '/%(repo_name)s/pull-request', ['repo_name']);
                 pyroutes.register('pullrequest_show_all_data', '/%(repo_name)s/pull-request-data', ['repo_name']);
                 pyroutes.register('pullrequest_repo_refs', '/%(repo_name)s/pull-request/refs/%(target_repo_name)s', ['repo_name', 'target_repo_name']);
                 pyroutes.register('pullrequest_repo_targets', '/%(repo_name)s/pull-request/repo-targets', ['repo_name']);
                 pyroutes.register('pullrequest_new', '/%(repo_name)s/pull-request/new', ['repo_name']);
                 pyroutes.register('pullrequest_create', '/%(repo_name)s/pull-request/create', ['repo_name']);
                 pyroutes.register('pullrequest_update', '/%(repo_name)s/pull-request/%(pull_request_id)s/update', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_merge', '/%(repo_name)s/pull-request/%(pull_request_id)s/merge', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_delete', '/%(repo_name)s/pull-request/%(pull_request_id)s/delete', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_comment_create', '/%(repo_name)s/pull-request/%(pull_request_id)s/comment', ['repo_name', 'pull_request_id']);
                 pyroutes.register('pullrequest_comment_delete', '/%(repo_name)s/pull-request/%(pull_request_id)s/comment/%(comment_id)s/delete', ['repo_name', 'pull_request_id', 'comment_id']);
                 pyroutes.register('edit_repo', '/%(repo_name)s/settings', ['repo_name']);
                 pyroutes.register('edit_repo_advanced', '/%(repo_name)s/settings/advanced', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_archive', '/%(repo_name)s/settings/advanced/archive', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_delete', '/%(repo_name)s/settings/advanced/delete', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_locking', '/%(repo_name)s/settings/advanced/locking', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_journal', '/%(repo_name)s/settings/advanced/journal', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_fork', '/%(repo_name)s/settings/advanced/fork', ['repo_name']);
                 pyroutes.register('edit_repo_advanced_hooks', '/%(repo_name)s/settings/advanced/hooks', ['repo_name']);
                 pyroutes.register('edit_repo_caches', '/%(repo_name)s/settings/caches', ['repo_name']);
                 pyroutes.register('edit_repo_perms', '/%(repo_name)s/settings/permissions', ['repo_name']);
                 pyroutes.register('edit_repo_maintenance', '/%(repo_name)s/settings/maintenance', ['repo_name']);
                 pyroutes.register('edit_repo_maintenance_execute', '/%(repo_name)s/settings/maintenance/execute', ['repo_name']);
                 pyroutes.register('edit_repo_fields', '/%(repo_name)s/settings/fields', ['repo_name']);
                 pyroutes.register('edit_repo_fields_create', '/%(repo_name)s/settings/fields/create', ['repo_name']);
                 pyroutes.register('edit_repo_fields_delete', '/%(repo_name)s/settings/fields/%(field_id)s/delete', ['repo_name', 'field_id']);
                 pyroutes.register('repo_edit_toggle_locking', '/%(repo_name)s/settings/toggle_locking', ['repo_name']);
                 pyroutes.register('edit_repo_remote', '/%(repo_name)s/settings/remote', ['repo_name']);
                 pyroutes.register('edit_repo_remote_pull', '/%(repo_name)s/settings/remote/pull', ['repo_name']);
                 pyroutes.register('edit_repo_statistics', '/%(repo_name)s/settings/statistics', ['repo_name']);
                 pyroutes.register('edit_repo_statistics_reset', '/%(repo_name)s/settings/statistics/update', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker', '/%(repo_name)s/settings/issue_trackers', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker_test', '/%(repo_name)s/settings/issue_trackers/test', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker_delete', '/%(repo_name)s/settings/issue_trackers/delete', ['repo_name']);
                 pyroutes.register('edit_repo_issuetracker_update', '/%(repo_name)s/settings/issue_trackers/update', ['repo_name']);
                 pyroutes.register('edit_repo_vcs', '/%(repo_name)s/settings/vcs', ['repo_name']);
                 pyroutes.register('edit_repo_vcs_update', '/%(repo_name)s/settings/vcs/update', ['repo_name']);
                 pyroutes.register('edit_repo_vcs_svn_pattern_delete', '/%(repo_name)s/settings/vcs/svn_pattern/delete', ['repo_name']);
                 pyroutes.register('repo_reviewers', '/%(repo_name)s/settings/review/rules', ['repo_name']);
                 pyroutes.register('repo_default_reviewers_data', '/%(repo_name)s/settings/review/default-reviewers', ['repo_name']);
                 pyroutes.register('edit_repo_strip', '/%(repo_name)s/settings/strip', ['repo_name']);
                 pyroutes.register('strip_check', '/%(repo_name)s/settings/strip_check', ['repo_name']);
                 pyroutes.register('strip_execute', '/%(repo_name)s/settings/strip_execute', ['repo_name']);
                 pyroutes.register('edit_repo_audit_logs', '/%(repo_name)s/settings/audit_logs', ['repo_name']);
                 pyroutes.register('rss_feed_home', '/%(repo_name)s/feed/rss', ['repo_name']);
                 pyroutes.register('atom_feed_home', '/%(repo_name)s/feed/atom', ['repo_name']);
                 pyroutes.register('repo_summary', '/%(repo_name)s', ['repo_name']);
                 pyroutes.register('repo_summary_slash', '/%(repo_name)s/', ['repo_name']);
                 pyroutes.register('edit_repo_group', '/%(repo_group_name)s/_edit', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_advanced', '/%(repo_group_name)s/_settings/advanced', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_advanced_delete', '/%(repo_group_name)s/_settings/advanced/delete', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_perms', '/%(repo_group_name)s/_settings/permissions', ['repo_group_name']);
                 pyroutes.register('edit_repo_group_perms_update', '/%(repo_group_name)s/_settings/permissions/update', ['repo_group_name']);
                 pyroutes.register('repo_group_home', '/%(repo_group_name)s', ['repo_group_name']);
                 pyroutes.register('repo_group_home_slash', '/%(repo_group_name)s/', ['repo_group_name']);
                 pyroutes.register('user_group_members_data', '/_admin/user_groups/%(user_group_id)s/members', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms_summary', '/_admin/user_groups/%(user_group_id)s/edit/permissions_summary', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms_summary_json', '/_admin/user_groups/%(user_group_id)s/edit/permissions_summary/json', ['user_group_id']);
                 pyroutes.register('edit_user_group', '/_admin/user_groups/%(user_group_id)s/edit', ['user_group_id']);
                 pyroutes.register('user_groups_update', '/_admin/user_groups/%(user_group_id)s/update', ['user_group_id']);
                 pyroutes.register('edit_user_group_global_perms', '/_admin/user_groups/%(user_group_id)s/edit/global_permissions', ['user_group_id']);
                 pyroutes.register('edit_user_group_global_perms_update', '/_admin/user_groups/%(user_group_id)s/edit/global_permissions/update', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms', '/_admin/user_groups/%(user_group_id)s/edit/permissions', ['user_group_id']);
                 pyroutes.register('edit_user_group_perms_update', '/_admin/user_groups/%(user_group_id)s/edit/permissions/update', ['user_group_id']);
                 pyroutes.register('edit_user_group_advanced', '/_admin/user_groups/%(user_group_id)s/edit/advanced', ['user_group_id']);
                 pyroutes.register('edit_user_group_advanced_sync', '/_admin/user_groups/%(user_group_id)s/edit/advanced/sync', ['user_group_id']);
                 pyroutes.register('user_groups_delete', '/_admin/user_groups/%(user_group_id)s/delete', ['user_group_id']);
                 pyroutes.register('search', '/_admin/search', []);
                 pyroutes.register('search_repo', '/%(repo_name)s/search', ['repo_name']);
                 pyroutes.register('user_profile', '/_profiles/%(username)s', ['username']);
                 pyroutes.register('user_group_profile', '/_profile_user_group/%(user_group_name)s', ['user_group_name']);
                 pyroutes.register('my_account_profile', '/_admin/my_account/profile', []);
                 pyroutes.register('my_account_edit', '/_admin/my_account/edit', []);
                 pyroutes.register('my_account_update', '/_admin/my_account/update', []);
                 pyroutes.register('my_account_password', '/_admin/my_account/password', []);
                 pyroutes.register('my_account_password_update', '/_admin/my_account/password/update', []);
                 pyroutes.register('my_account_auth_tokens_delete', '/_admin/my_account/auth_tokens/delete', []);
                 pyroutes.register('my_account_ssh_keys', '/_admin/my_account/ssh_keys', []);
                 pyroutes.register('my_account_ssh_keys_generate', '/_admin/my_account/ssh_keys/generate', []);
                 pyroutes.register('my_account_ssh_keys_add', '/_admin/my_account/ssh_keys/new', []);
                 pyroutes.register('my_account_ssh_keys_delete', '/_admin/my_account/ssh_keys/delete', []);
                 pyroutes.register('my_account_user_group_membership', '/_admin/my_account/user_group_membership', []);
                 pyroutes.register('my_account_emails', '/_admin/my_account/emails', []);
                 pyroutes.register('my_account_emails_add', '/_admin/my_account/emails/new', []);
                 pyroutes.register('my_account_emails_delete', '/_admin/my_account/emails/delete', []);
                 pyroutes.register('my_account_repos', '/_admin/my_account/repos', []);
                 pyroutes.register('my_account_watched', '/_admin/my_account/watched', []);
                 pyroutes.register('my_account_perms', '/_admin/my_account/perms', []);
                 pyroutes.register('my_account_notifications', '/_admin/my_account/notifications', []);
                 pyroutes.register('my_account_notifications_toggle_visibility', '/_admin/my_account/toggle_visibility', []);
                 pyroutes.register('my_account_pullrequests', '/_admin/my_account/pull_requests', []);
                 pyroutes.register('my_account_pullrequests_data', '/_admin/my_account/pull_requests/data', []);
                 pyroutes.register('notifications_show_all', '/_admin/notifications', []);
                 pyroutes.register('notifications_mark_all_read', '/_admin/notifications/mark_all_read', []);
                 pyroutes.register('notifications_show', '/_admin/notifications/%(notification_id)s', ['notification_id']);
                 pyroutes.register('notifications_update', '/_admin/notifications/%(notification_id)s/update', ['notification_id']);
                 pyroutes.register('notifications_delete', '/_admin/notifications/%(notification_id)s/delete', ['notification_id']);
                 pyroutes.register('my_account_notifications_test_channelstream', '/_admin/my_account/test_channelstream', []);
                 pyroutes.register('gists_show', '/_admin/gists', []);
                 pyroutes.register('gists_new', '/_admin/gists/new', []);
                 pyroutes.register('gists_create', '/_admin/gists/create', []);
                 pyroutes.register('gist_show', '/_admin/gists/%(gist_id)s', ['gist_id']);
                 pyroutes.register('gist_delete', '/_admin/gists/%(gist_id)s/delete', ['gist_id']);
                 pyroutes.register('gist_edit', '/_admin/gists/%(gist_id)s/edit', ['gist_id']);
                 pyroutes.register('gist_edit_check_revision', '/_admin/gists/%(gist_id)s/edit/check_revision', ['gist_id']);
                 pyroutes.register('gist_update', '/_admin/gists/%(gist_id)s/update', ['gist_id']);
                 pyroutes.register('gist_show_rev', '/_admin/gists/%(gist_id)s/%(revision)s', ['gist_id', 'revision']);
                 pyroutes.register('gist_show_formatted', '/_admin/gists/%(gist_id)s/%(revision)s/%(format)s', ['gist_id', 'revision', 'format']);
                 pyroutes.register('gist_show_formatted_path', '/_admin/gists/%(gist_id)s/%(revision)s/%(format)s/%(f_path)s', ['gist_id', 'revision', 'format', 'f_path']);
                 pyroutes.register('debug_style_home', '/_admin/debug_style', []);
                 pyroutes.register('debug_style_template', '/_admin/debug_style/t/%(t_path)s', ['t_path']);
                 pyroutes.register('apiv2', '/_admin/api', []);
                 pyroutes.register('admin_settings_license', '/_admin/settings/license', []);
                 pyroutes.register('admin_settings_license_unlock', '/_admin/settings/license_unlock', []);
                 pyroutes.register('login', '/_admin/login', []);
                 pyroutes.register('register', '/_admin/register', []);
                 pyroutes.register('repo_reviewers_review_rule_new', '/%(repo_name)s/settings/review/rules/new', ['repo_name']);
                 pyroutes.register('repo_reviewers_review_rule_edit', '/%(repo_name)s/settings/review/rules/%(rule_id)s', ['repo_name', 'rule_id']);
                 pyroutes.register('repo_reviewers_review_rule_delete', '/%(repo_name)s/settings/review/rules/%(rule_id)s/delete', ['repo_name', 'rule_id']);
                 pyroutes.register('plugin_admin_chat', '/_admin/plugin_admin_chat/%(action)s', ['action']);
                 pyroutes.register('edit_user_auth_tokens', '/_admin/users/%(user_id)s/edit/auth_tokens', ['user_id']);
                 pyroutes.register('edit_user_auth_tokens_add', '/_admin/users/%(user_id)s/edit/auth_tokens/new', ['user_id']);
                 pyroutes.register('admin_settings_scheduler_show_tasks', '/_admin/settings/scheduler/_tasks', []);
                 pyroutes.register('admin_settings_scheduler_show_all', '/_admin/settings/scheduler', []);
                 pyroutes.register('admin_settings_scheduler_new', '/_admin/settings/scheduler/new', []);
                 pyroutes.register('admin_settings_scheduler_create', '/_admin/settings/scheduler/create', []);
                 pyroutes.register('admin_settings_scheduler_edit', '/_admin/settings/scheduler/%(schedule_id)s', ['schedule_id']);
                 pyroutes.register('admin_settings_scheduler_update', '/_admin/settings/scheduler/%(schedule_id)s/update', ['schedule_id']);
                 pyroutes.register('admin_settings_scheduler_delete', '/_admin/settings/scheduler/%(schedule_id)s/delete', ['schedule_id']);
                 pyroutes.register('admin_settings_scheduler_execute', '/_admin/settings/scheduler/%(schedule_id)s/execute', ['schedule_id']);
                 pyroutes.register('admin_settings_automation', '/_admin/settings/automation', []);
                 pyroutes.register('admin_settings_automation_update', '/_admin/settings/automation/%(entry_id)s/update', ['entry_id']);
                 pyroutes.register('admin_permissions_branch', '/_admin/permissions/branch', []);
                 pyroutes.register('admin_permissions_branch_update', '/_admin/permissions/branch/update', []);
                 pyroutes.register('my_account_auth_tokens', '/_admin/my_account/auth_tokens', []);
                 pyroutes.register('my_account_auth_tokens_add', '/_admin/my_account/auth_tokens/new', []);
                 pyroutes.register('my_account_external_identity', '/_admin/my_account/external-identity', []);
                 pyroutes.register('my_account_external_identity_delete', '/_admin/my_account/external-identity/delete', []);
                 pyroutes.register('repo_automation', '/%(repo_name)s/settings/automation', ['repo_name']);
                 pyroutes.register('repo_automation_update', '/%(repo_name)s/settings/automation/%(entry_id)s/update', ['repo_name', 'entry_id']);
                 pyroutes.register('edit_repo_remote_push', '/%(repo_name)s/settings/remote/push', ['repo_name']);
                 pyroutes.register('edit_repo_perms_branch', '/%(repo_name)s/settings/branch_permissions', ['repo_name']);
                 pyroutes.register('edit_repo_perms_branch_delete', '/%(repo_name)s/settings/branch_permissions/%(rule_id)s/delete', ['repo_name', 'rule_id']);
             }

rhodecode/templates/admin/repos/repo_edit_settings.mako

0 +1 -1

             ## -*- coding: utf-8 -*-
             <%namespace name="base" file="/base/base.mako"/>
             <div class="panel panel-default">
                 <div class="panel-heading">
                     <h3 class="panel-title">${_('Settings for Repository: %s') % c.rhodecode_db_repo.repo_name}</h3>
                 </div>
                 <div class="panel-body">
                 ${h.secure_form(h.route_path('edit_repo', repo_name=c.rhodecode_db_repo.repo_name), request=request)}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                         <div class="field">
                             <div class="label">
                                 <label for="repo_name">${_('Name')}:</label>
                             </div>
                             <div class="input">
                                 ${c.form['repo_name'].render(css_class='medium', oid='repo_name')|n}
                                 ${c.form.render_error(request, c.form['repo_name'])|n}
                                 <p class="help-block">${_('permalink id')}: `_${c.rhodecode_db_repo.repo_id}` <span><a href="#" onclick="$('#clone_id').toggle();return false">${_('what is that ?')}</a></span></p>
                                 <p id="clone_id" style="display:none;">
                                     ${_('URL by id')}: `${c.rhodecode_db_repo.clone_url(with_id=True)}` <br/>
                                     ${_('''In case this repository is renamed or moved into another group the repository url changes.
                                            Using above url guarantees that this repository will always be accessible under such url.
                                            Useful for CI systems, or any other cases that you need to hardcode the url into 3rd party service.''')}</p>
                             </div>
                        </div>
                        <div class="field">
                             <div class="label">
                                 <label for="repo_group">${_('Repository group')}:</label>
                             </div>
                             <div class="select">
                                 ${c.form['repo_group'].render(css_class='medium', oid='repo_group')|n}
                                 ${c.form.render_error(request, c.form['repo_group'])|n}
                                 % if c.personal_repo_group:
                                      <a class="btn" href="#" data-personal-group-name="${c.personal_repo_group.group_name}" data-personal-group-id="${c.personal_repo_group.group_id}" onclick="selectMyGroup(this); return false">
                                          ${_('Select my personal group (`%(repo_group_name)s`)') % {'repo_group_name': c.personal_repo_group.group_name}}
                                      </a>
                                 % endif
                                 <p class="help-block">${_('Optional select a group to put this repository into.')}</p>
                             </div>
                        </div>
                        % if c.rhodecode_db_repo.repo_type != 'svn':
                        <% sync_link = h.literal(h.link_to('remote sync', h.route_path('edit_repo_remote', repo_name=c.repo_name))) %>
                        <div class="field">
                            <div class="label">
                                <label for="clone_uri">${_('Remote pull uri')}:</label>
                            </div>
                            <div class="input">
                                %if c.rhodecode_db_repo.clone_uri:
                                 ## display, if we don't have any errors
                                 % if not c.form['repo_clone_uri'].error:
                                 <div id="clone_uri_hidden" class='text-as-placeholder'>
                                     <span id="clone_uri_hidden_value">${c.rhodecode_db_repo.clone_uri_hidden}</span>
                                     <span class="link" id="edit_clone_uri"><i class="icon-edit"></i>${_('edit')}</span>
                                 </div>
                                 % endif
                                 ## alter field
                                 <div id="alter_clone_uri" style="${'' if c.form['repo_clone_uri'].error else 'display: none'}">
                                     ${c.form['repo_clone_uri'].render(css_class='medium', oid='clone_uri', placeholder=_('enter new value, or leave empty to remove'))|n}
                                     ${c.form.render_error(request, c.form['repo_clone_uri'])|n}
                                     % if c.form['repo_clone_uri'].error:
                                         ## we got error from form subit, means we modify the url
                                         ${h.hidden('repo_clone_uri_change', 'MOD')}
                                     % else:
                                         ${h.hidden('repo_clone_uri_change', 'OLD')}
                                     % endif
                                     % if not c.form['repo_clone_uri'].error:
                                     <span class="link" id="cancel_edit_clone_uri">${_('cancel')}</span>
                                     % endif
                                 </div>
                                %else:
                                 ## not set yet, display form to set it
                                 ${c.form['repo_clone_uri'].render(css_class='medium', oid='clone_uri')|n}
                                 ${c.form.render_error(request, c.form['repo_clone_uri'])|n}
                                 ${h.hidden('repo_clone_uri_change', 'NEW')}
                                %endif
                              <p id="alter_clone_uri_help_block" class="help-block">
                                  ${_('http[s] url where from repository was imported. This field can used for doing {sync_link}.').format(sync_link=sync_link)|n} <br/>
                                  ${_('This field is stored encrypted inside Database, a format of http://user:password@server.com/repo_name can be used and will be hidden from display.')}
                              </p>
                            </div>
                         </div>
                        <div class="field">
                            <div class="label">
                                <label for="push_uri">${_('Remote push uri')}:</label>
                            </div>
                            <div class="input">
                                %if c.rhodecode_db_repo.push_uri:
                                 ## display, if we don't have any errors
                                 % if not c.form['repo_push_uri'].error:
                                 <div id="push_uri_hidden" class='text-as-placeholder'>
                                     <span id="push_uri_hidden_value">${c.rhodecode_db_repo.push_uri_hidden}</span>
                                     <span class="link" id="edit_push_uri"><i class="icon-edit"></i>${_('edit')}</span>
                                 </div>
                                 % endif
                                 ## alter field
                                 <div id="alter_push_uri" style="${'' if c.form['repo_push_uri'].error else 'display: none'}">
                                     ${c.form['repo_push_uri'].render(css_class='medium', oid='push_uri', placeholder=_('enter new value, or leave empty to remove'))|n}
                                     ${c.form.render_error(request, c.form['repo_push_uri'])|n}
                                     % if c.form['repo_push_uri'].error:
                                         ## we got error from form subit, means we modify the url
                                         ${h.hidden('repo_push_uri_change', 'MOD')}
                                     % else:
                                         ${h.hidden('repo_push_uri_change', 'OLD')}
                                     % endif
                                     % if not c.form['repo_push_uri'].error:
                                     <span class="link" id="cancel_edit_push_uri">${_('cancel')}</span>
                                     % endif
                                 </div>
                                %else:
                                 ## not set yet, display form to set it
                                 ${c.form['repo_push_uri'].render(css_class='medium', oid='push_uri')|n}
                                 ${c.form.render_error(request, c.form['repo_push_uri'])|n}
                                 ${h.hidden('repo_push_uri_change', 'NEW')}
                                %endif
                              <p id="alter_push_uri_help_block" class="help-block">
                                  ${_('http[s] url to sync data back. This field can used for doing {sync_link}.').format(sync_link=sync_link)|n} <br/>
                                  ${_('This field is stored encrypted inside Database, a format of http://user:password@server.com/repo_name can be used and will be hidden from display.')}
                              </p>
                            </div>
                         </div>
                        % else:
                        ${h.hidden('repo_clone_uri', '')}
                        ${h.hidden('repo_push_uri', '')}
                        % endif
                         <div class="field">
                             <div class="label">
                                 <label for="repo_landing_commit_ref">${_('Landing commit')}:</label>
                             </div>
                             <div class="select">
                                 ${c.form['repo_landing_commit_ref'].render(css_class='medium', oid='repo_landing_commit_ref')|n}
                                 ${c.form.render_error(request, c.form['repo_landing_commit_ref'])|n}
-                                <p class="help-block">${_('Default commit for files page, downloads, full text search index and readme')}</p>
+                                <p class="help-block">${_('The default commit for file pages, downloads, full text search index, and README generation.')}</p>
                             </div>
                         </div>
                         <div class="field badged-field">
                             <div class="label">
                                 <label for="repo_owner">${_('Owner')}:</label>
                             </div>
                             <div class="input">
                                 <div class="badge-input-container">
                                     <div class="user-badge">
                                         ${base.gravatar_with_user(c.rhodecode_db_repo.user.email or c.rhodecode_db_repo.user.username, show_disabled=not c.rhodecode_db_repo.user.active)}
                                     </div>
                                     <div class="badge-input-wrap">
                                         ${c.form['repo_owner'].render(css_class='medium', oid='repo_owner')|n}
                                     </div>
                                 </div>
                                 ${c.form.render_error(request, c.form['repo_owner'])|n}
                                 <p class="help-block">${_('Change owner of this repository.')}</p>
                             </div>
                         </div>
                         <div class="field">
                             <div class="label label-textarea">
                                 <label for="repo_description">${_('Description')}:</label>
                             </div>
                             <div class="textarea text-area editor">
                                 ${c.form['repo_description'].render(css_class='medium', oid='repo_description')|n}
                                 ${c.form.render_error(request, c.form['repo_description'])|n}
                                 <% metatags_url = h.literal('''<a href="#metatagsShow" onclick="$('#meta-tags-desc').toggle();return false">meta-tags</a>''') %>
                                 <span class="help-block">${_('Plain text format with support of {metatags}. Add a README file for longer descriptions').format(metatags=metatags_url)|n}</span>
                                 <span id="meta-tags-desc" style="display: none">
                                     <%namespace name="dt" file="/data_table/_dt_elements.mako"/>
                                     ${dt.metatags_help()}
                                 </span>
                             </div>
                         </div>
                         <div class="field">
                             <div class="label label-checkbox">
                                 <label for="${c.form['repo_private'].oid}">${_('Private repository')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${c.form['repo_private'].render(css_class='medium')|n}
                                 ${c.form.render_error(request, c.form['repo_private'])|n}
                                 <span class="help-block">${_('Private repositories are only visible to people explicitly added as collaborators.')}</span>
                             </div>
                         </div>
                         <div class="field">
                             <div class="label label-checkbox">
                                 <label for="${c.form['repo_enable_statistics'].oid}">${_('Enable statistics')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${c.form['repo_enable_statistics'].render(css_class='medium')|n}
                                 ${c.form.render_error(request, c.form['repo_enable_statistics'])|n}
                                 <span class="help-block">${_('Enable statistics window on summary page.')}</span>
                             </div>
                         </div>
                         <div class="field">
                             <div class="label label-checkbox">
                                 <label for="${c.form['repo_enable_downloads'].oid}">${_('Enable downloads')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${c.form['repo_enable_downloads'].render(css_class='medium')|n}
                                 ${c.form.render_error(request, c.form['repo_enable_downloads'])|n}
                                 <span class="help-block">${_('Enable download menu on summary page.')}</span>
                             </div>
                         </div>
                         <div class="field">
                             <div class="label label-checkbox">
                                 <label for="${c.form['repo_enable_locking'].oid}">${_('Enable automatic locking')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${c.form['repo_enable_locking'].render(css_class='medium')|n}
                                 ${c.form.render_error(request, c.form['repo_enable_locking'])|n}
                                 <span class="help-block">${_('Enable automatic locking on repository. Pulling from this repository creates a lock that can be released by pushing back by the same user')}</span>
                             </div>
                         </div>
                         %if c.visual.repository_fields:
                           ## EXTRA FIELDS
                           %for field in c.repo_fields:
                             <div class="field">
                                 <div class="label">
                                     <label for="${field.field_key_prefixed}">${field.field_label} (${field.field_key}):</label>
                                 </div>
                                 <div class="input input-medium">
                                     ${h.text(field.field_key_prefixed, field.field_value, class_='medium')}
                                     %if field.field_desc:
                                       <span class="help-block">${field.field_desc}</span>
                                     %endif
                                 </div>
                              </div>
                           %endfor
                         %endif
                         <div class="buttons">
                           ${h.submit('save',_('Save'),class_="btn")}
                           ${h.reset('reset',_('Reset'),class_="btn")}
                         </div>
                     </div>
                 </div>
                 ${h.end_form()}
               </div>
             </div>
             <script>
                 $(document).ready(function () {
                     var cloneUrl = function (
                         alterButton, editButton, cancelEditButton,
                         hiddenUrl, hiddenUrlValue, input, helpBlock, changedFlag) {
                       var originalText = helpBlock.html();
                       var obfuscatedUrl = hiddenUrlValue.html();
                       var edit = function(e) {
                         alterButton.show();
                         editButton.hide();
                         hiddenUrl.hide();
                         //add the old value next to input for verification
                         helpBlock.html("(" + obfuscatedUrl + ")" + "<br\>" + originalText);
                         changedFlag.val('MOD');
                       };
                       var cancelEdit = function(e) {
                         alterButton.hide();
                         editButton.show();
                         hiddenUrl.show();
                         helpBlock.html(originalText);
                         changedFlag.val('OLD');
                         input.val('');
                       };
                       var initEvents = function() {
                         editButton.on('click', edit);
                         cancelEditButton.on('click', cancelEdit);
                       };
                       var setInitialState = function() {
                         if (input.hasClass('error')) {
                           alterButton.show();
                           editButton.hide();
                           hiddenUrl.hide();
                         }
                       };
                       setInitialState();
                       initEvents();
                     };
                     var alterButton = $('#alter_clone_uri');
                     var editButton = $('#edit_clone_uri');
                     var cancelEditButton = $('#cancel_edit_clone_uri');
                     var hiddenUrl = $('#clone_uri_hidden');
                     var hiddenUrlValue = $('#clone_uri_hidden_value');
                     var input = $('#clone_uri');
                     var helpBlock = $('#alter_clone_uri_help_block');
                     var changedFlag = $('#repo_clone_uri_change');
                     cloneUrl(
                         alterButton, editButton, cancelEditButton, hiddenUrl,
                         hiddenUrlValue, input, helpBlock, changedFlag);
                     var alterButton = $('#alter_push_uri');
                     var editButton = $('#edit_push_uri');
                     var cancelEditButton = $('#cancel_edit_push_uri');
                     var hiddenUrl = $('#push_uri_hidden');
                     var hiddenUrlValue = $('#push_uri_hidden_value');
                     var input = $('#push_uri');
                     var helpBlock = $('#alter_push_uri_help_block');
                     var changedFlag = $('#repo_push_uri_change');
                     cloneUrl(
                         alterButton, editButton, cancelEditButton, hiddenUrl,
                         hiddenUrlValue, input, helpBlock, changedFlag);
                     selectMyGroup = function(element) {
                         $("#repo_group").val($(element).data('personalGroupId')).trigger("change");
                     };
                     UsersAutoComplete('repo_owner', '${c.rhodecode_user.user_id}');
                 });
             </script>

rhodecode/templates/admin/users/user_edit_advanced.mako

0 +16 -7

             <%namespace name="base" file="/base/base.mako"/>
             <%
              elems = [
                 (_('User ID'), c.user.user_id, '', ''),
                 (_('Created on'), h.format_date(c.user.created_on), '', ''),
                 (_('Source of Record'), c.user.extern_type, '', ''),
                 (_('Last login'), c.user.last_login or '-', '', ''),
                 (_('Last activity'), c.user.last_activity, '', ''),
                 (_('Repositories'), len(c.user.repositories), '', [x.repo_name for x in c.user.repositories]),
                 (_('Repository groups'), len(c.user.repository_groups), '', [x.group_name for x in c.user.repository_groups]),
                 (_('User groups'), len(c.user.user_groups), '', [x.users_group_name for x in c.user.user_groups]),
                 (_('Reviewer of pull requests'), len(c.user.reviewer_pull_requests), '', ['Pull Request #{}'.format(x.pull_request.pull_request_id) for x in c.user.reviewer_pull_requests]),
                 (_('Assigned to review rules'), len(c.user_to_review_rules), '', [x for x in c.user_to_review_rules]),
                 (_('Member of User groups'), len(c.user.group_member), '', [x.users_group.users_group_name for x in c.user.group_member]),
                 (_('Force password change'), c.user.user_data.get('force_password_change', 'False'), '', ''),
              ]
             %>
             <div class="panel panel-default">
                 <div class="panel-heading">
                     <h3 class="panel-title">${_('User: %s') % c.user.username}</h3>
                 </div>
                 <div class="panel-body">
                     ${base.dt_info_panel(elems)}
                 </div>
             </div>
             <div class="panel panel-default">
                 <div class="panel-heading">
                     <h3 class="panel-title">${_('Force Password Reset')}</h3>
                 </div>
                 <div class="panel-body">
-                    ${h.secure_form(h.route_path('user_force_password_reset', user_id=c.user.user_id), request=request)}
+                    ${h.secure_form(h.route_path('user_disable_force_password_reset', user_id=c.user.user_id), request=request)}
                         <div class="field">
                             <button class="btn btn-default" type="submit">
-                                <i class="icon-lock"></i>
+                                <i class="icon-unlock"></i> ${_('Disable forced password reset')}
-                                %if c.user.user_data.get('force_password_change'):
+                            </button>
-                                    ${_('Disable forced password reset')}
+                        </div>
-                                %else:
+                        <div class="field">
-                                    ${_('Enable forced password reset')}
+                            <span class="help-block">
-                                %endif
+                                ${_("Clear the forced password change flag.")}
+                            </span>
+                        </div>
+                    ${h.end_form()}
+                    ${h.secure_form(h.route_path('user_enable_force_password_reset', user_id=c.user.user_id), request=request)}
+                        <div class="field">
+                            <button class="btn btn-default" type="submit" onclick="return confirm('${_('Confirm to enable forced password change')}');">
+                                <i class="icon-lock"></i> ${_('Enable forced password reset')}
                             </button>
                         </div>
                         <div class="field">
                             <span class="help-block">
                                 ${_("When this is enabled user will have to change they password when they next use RhodeCode system. This will also forbid vcs operations until someone makes a password change in the web interface")}
                             </span>
                         </div>
                     ${h.end_form()}
                 </div>
             </div>
             <div class="panel panel-default">
                 <div class="panel-heading">
                     <h3 class="panel-title">${_('Personal Repository Group')}</h3>
                 </div>
                 <div class="panel-body">
                     ${h.secure_form(h.route_path('user_create_personal_repo_group', user_id=c.user.user_id), request=request)}
                     %if c.personal_repo_group:
                         <div class="panel-body-title-text">${_('Users personal repository group')} : ${h.link_to(c.personal_repo_group.group_name, h.route_path('repo_group_home', repo_group_name=c.personal_repo_group.group_name))}</div>
                     %else:
                         <div class="panel-body-title-text">
                             ${_('This user currently does not have a personal repository group')}
                             <br/>
                             ${_('New group will be created at: `/%(path)s`') % {'path': c.personal_repo_group_name}}
                         </div>
                     %endif
                         <button class="btn btn-default" type="submit" ${'disabled="disabled"' if c.personal_repo_group else ''}>
                             <i class="icon-folder-close"></i>
                             ${_('Create personal repository group')}
                         </button>
                     ${h.end_form()}
                 </div>
             </div>
             <div class="panel panel-danger">
                 <div class="panel-heading">
                     <h3 class="panel-title">${_('Delete User')}</h3>
                 </div>
                 <div class="panel-body">
                     ${h.secure_form(h.route_path('user_delete', user_id=c.user.user_id), request=request)}
                         <table class="display">
                             <tr>
                                 <td>
                                     ${_ungettext('This user owns %s repository.', 'This user owns %s repositories.', len(c.user.repositories)) % len(c.user.repositories)}
                                 </td>
                                 <td>
                                     %if len(c.user.repositories) > 0:
                                         <input type="radio" id="user_repos_1" name="user_repos" value="detach" checked="checked"/> <label for="user_repos_1">${_('Detach repositories')}</label>
                                     %endif
                                 </td>
                                 <td>
                                     %if len(c.user.repositories) > 0:
                                         <input type="radio" id="user_repos_2" name="user_repos" value="delete" /> <label for="user_repos_2">${_('Delete repositories')}</label>
                                     %endif
                                 </td>
                             </tr>
                             <tr>
                                 <td>
                                     ${_ungettext('This user owns %s repository group.', 'This user owns %s repository groups.', len(c.user.repository_groups)) % len(c.user.repository_groups)}
                                 </td>
                                 <td>
                                     %if len(c.user.repository_groups) > 0:
                                         <input type="radio" id="user_repo_groups_1" name="user_repo_groups" value="detach" checked="checked"/> <label for="user_repo_groups_1">${_('Detach repository groups')}</label>
                                     %endif
                                 </td>
                                 <td>
                                     %if len(c.user.repository_groups) > 0:
                                         <input type="radio" id="user_repo_groups_2" name="user_repo_groups" value="delete" /> <label for="user_repo_groups_2">${_('Delete repositories')}</label>
                                     %endif
                                 </td>
                             </tr>
                             <tr>
                                 <td>
                                     ${_ungettext('This user owns %s user group.', 'This user owns %s user groups.', len(c.user.user_groups)) % len(c.user.user_groups)}
                                 </td>
                                 <td>
                                     %if len(c.user.user_groups) > 0:
                                         <input type="radio" id="user_user_groups_1" name="user_user_groups" value="detach" checked="checked"/> <label for="user_user_groups_1">${_('Detach user groups')}</label>
                                     %endif
                                 </td>
                                 <td>
                                     %if len(c.user.user_groups) > 0:
                                         <input type="radio" id="user_user_groups_2" name="user_user_groups" value="delete" /> <label for="user_user_groups_2">${_('Delete repositories')}</label>
                                     %endif
                                 </td>
                             </tr>
                         </table>
                         <div style="margin: 0 0 20px 0" class="fake-space"></div>
                         <div class="field">
                             <button class="btn btn-small btn-danger" type="submit"
                                     onclick="return confirm('${_('Confirm to delete this user: %s') % c.user.username}');"
                                     ${"disabled" if not c.can_delete_user else ""}>
                                 ${_('Delete this user')}
                             </button>
                         </div>
                         % if c.can_delete_user_message:
                         <p class="help-block pre-formatting">${c.can_delete_user_message}</p>
                         % endif
                         <div class="field">
                             <span class="help-block">
                                 %if len(c.user.repositories) > 0 or len(c.user.repository_groups) > 0 or len(c.user.user_groups) > 0:
                                     <p class="help-block">${_("When selecting the detach option, the depending objects owned by this user will be assigned to the `%s` super admin in the system. The delete option will delete the user's repositories!") % (c.first_admin.full_name)}</p>
                                 %endif
                             </span>
                         </div>
                     ${h.end_form()}
                 </div>
             </div>

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages