notifications.py
178 lines
| 6.9 KiB
| text/x-python
|
PythonLexer
r1 | # -*- coding: utf-8 -*- | |||
r1271 | # Copyright (C) 2010-2017 RhodeCode GmbH | |||
r1 | # | |||
# This program is free software: you can redistribute it and/or modify | ||||
# it under the terms of the GNU Affero General Public License, version 3 | ||||
# (only), as published by the Free Software Foundation. | ||||
# | ||||
# This program is distributed in the hope that it will be useful, | ||||
# but WITHOUT ANY WARRANTY; without even the implied warranty of | ||||
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | ||||
# GNU General Public License for more details. | ||||
# | ||||
# You should have received a copy of the GNU Affero General Public License | ||||
# along with this program. If not, see <http://www.gnu.org/licenses/>. | ||||
# | ||||
# This program is dual-licensed. If you wish to learn more about the | ||||
# RhodeCode Enterprise Edition, including its added features, Support services, | ||||
# and proprietary license terms, please see https://rhodecode.com/licenses/ | ||||
""" | ||||
notifications controller for RhodeCode | ||||
""" | ||||
import logging | ||||
import traceback | ||||
from pylons import request | ||||
from pylons import tmpl_context as c, url | ||||
from pylons.controllers.util import redirect, abort | ||||
import webhelpers.paginate | ||||
from webob.exc import HTTPBadRequest | ||||
from rhodecode.lib import auth | ||||
from rhodecode.lib.auth import LoginRequired, NotAnonymous | ||||
from rhodecode.lib.base import BaseController, render | ||||
from rhodecode.lib import helpers as h | ||||
from rhodecode.lib.helpers import Page | ||||
from rhodecode.lib.utils2 import safe_int | ||||
from rhodecode.model.db import Notification | ||||
from rhodecode.model.notification import NotificationModel | ||||
from rhodecode.model.meta import Session | ||||
log = logging.getLogger(__name__) | ||||
class NotificationsController(BaseController): | ||||
"""REST Controller styled on the Atom Publishing Protocol""" | ||||
# To properly map this controller, ensure your config/routing.py | ||||
# file has a resource setup: | ||||
# map.resource('notification', 'notifications', controller='_admin/notifications', | ||||
# path_prefix='/_admin', name_prefix='_admin_') | ||||
@LoginRequired() | ||||
@NotAnonymous() | ||||
def __before__(self): | ||||
super(NotificationsController, self).__before__() | ||||
def index(self): | ||||
"""GET /_admin/notifications: All items in the collection""" | ||||
# url('notifications') | ||||
c.user = c.rhodecode_user | ||||
notif = NotificationModel().get_for_user(c.rhodecode_user.user_id, | ||||
filter_=request.GET.getall('type')) | ||||
p = safe_int(request.GET.get('page', 1), 1) | ||||
notifications_url = webhelpers.paginate.PageURL( | ||||
url('notifications'), request.GET) | ||||
c.notifications = Page(notif, page=p, items_per_page=10, | ||||
url=notifications_url) | ||||
c.pull_request_type = Notification.TYPE_PULL_REQUEST | ||||
c.comment_type = [Notification.TYPE_CHANGESET_COMMENT, | ||||
Notification.TYPE_PULL_REQUEST_COMMENT] | ||||
_current_filter = request.GET.getall('type') | ||||
c.current_filter = 'all' | ||||
if _current_filter == [c.pull_request_type]: | ||||
c.current_filter = 'pull_request' | ||||
elif _current_filter == c.comment_type: | ||||
c.current_filter = 'comment' | ||||
if request.is_xhr: | ||||
return render('admin/notifications/notifications_data.html') | ||||
return render('admin/notifications/notifications.html') | ||||
r526 | ||||
r1 | @auth.CSRFRequired() | |||
def mark_all_read(self): | ||||
if request.is_xhr: | ||||
nm = NotificationModel() | ||||
# mark all read | ||||
nm.mark_all_read_for_user(c.rhodecode_user.user_id, | ||||
filter_=request.GET.getall('type')) | ||||
Session().commit() | ||||
c.user = c.rhodecode_user | ||||
notif = nm.get_for_user(c.rhodecode_user.user_id, | ||||
filter_=request.GET.getall('type')) | ||||
notifications_url = webhelpers.paginate.PageURL( | ||||
url('notifications'), request.GET) | ||||
c.notifications = Page(notif, page=1, items_per_page=10, | ||||
url=notifications_url) | ||||
return render('admin/notifications/notifications_data.html') | ||||
def _has_permissions(self, notification): | ||||
def is_owner(): | ||||
user_id = c.rhodecode_user.user_id | ||||
for user_notification in notification.notifications_to_users: | ||||
if user_notification.user.user_id == user_id: | ||||
return True | ||||
return False | ||||
return h.HasPermissionAny('hg.admin')() or is_owner() | ||||
@auth.CSRFRequired() | ||||
def update(self, notification_id): | ||||
"""PUT /_admin/notifications/id: Update an existing item""" | ||||
# Forms posted to this method should contain a hidden field: | ||||
# <input type="hidden" name="_method" value="PUT" /> | ||||
# Or using helpers: | ||||
# h.form(url('notification', notification_id=ID), | ||||
# method='put') | ||||
# url('notification', notification_id=ID) | ||||
try: | ||||
no = Notification.get(notification_id) | ||||
if self._has_permissions(no): | ||||
# deletes only notification2user | ||||
NotificationModel().mark_read(c.rhodecode_user.user_id, no) | ||||
Session().commit() | ||||
return 'ok' | ||||
except Exception: | ||||
Session().rollback() | ||||
log.exception("Exception updating a notification item") | ||||
raise HTTPBadRequest() | ||||
@auth.CSRFRequired() | ||||
def delete(self, notification_id): | ||||
"""DELETE /_admin/notifications/id: Delete an existing item""" | ||||
# Forms posted to this method should contain a hidden field: | ||||
# <input type="hidden" name="_method" value="DELETE" /> | ||||
# Or using helpers: | ||||
# h.form(url('notification', notification_id=ID), | ||||
# method='delete') | ||||
# url('notification', notification_id=ID) | ||||
try: | ||||
no = Notification.get(notification_id) | ||||
if self._has_permissions(no): | ||||
# deletes only notification2user | ||||
NotificationModel().delete(c.rhodecode_user.user_id, no) | ||||
Session().commit() | ||||
return 'ok' | ||||
except Exception: | ||||
Session().rollback() | ||||
log.exception("Exception deleting a notification item") | ||||
raise HTTPBadRequest() | ||||
def show(self, notification_id): | ||||
"""GET /_admin/notifications/id: Show a specific item""" | ||||
# url('notification', notification_id=ID) | ||||
c.user = c.rhodecode_user | ||||
no = Notification.get(notification_id) | ||||
if no and self._has_permissions(no): | ||||
unotification = NotificationModel()\ | ||||
.get_user_notification(c.user.user_id, no) | ||||
# if this association to user is not valid, we don't want to show | ||||
# this message | ||||
if unotification: | ||||
if not unotification.read: | ||||
unotification.mark_as_read() | ||||
Session().commit() | ||||
c.notification = no | ||||
return render('admin/notifications/show_notification.html') | ||||
return abort(403) | ||||