u/ewong/rhodecode-enterprise-ce-fork Files · rhodecode/apps/repository/views/repo_settings_advanced.py

ip-restritions: fix issue with loading empty IP rules for non-logged not-anonymous users....

ip-restritions: fix issue with loading empty IP rules for non-logged not-anonymous users. This case won't have any IP rules set. And we accidentally loaded them becuase of no empty user filter was present. This caused some odd display warnings for users.

marcink - - Load All Authors

File last commit:

r2746:9e435730 default


                r2838:d1dcf373

default

Download file

             repo_settings_advanced.py
        
                    248 lines
            
             | 9.8 KiB
            
                | text/x-python
            
             |
                PythonLexer
            
             / rhodecode / apps / repository / views / repo_settings_advanced.py
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
      # -*- coding: utf-8 -*-

        marcink
    
release: update copyright year to 2018

              r2487
            
      # Copyright (C) 2011-2018 RhodeCode GmbH

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
      #

      # This program is free software: you can redistribute it and/or modify

      # it under the terms of the GNU Affero General Public License, version 3

      # (only), as published by the Free Software Foundation.

      #

      # This program is distributed in the hope that it will be useful,

      # but WITHOUT ANY WARRANTY; without even the implied warranty of

      # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

      # GNU General Public License for more details.

      #

      # You should have received a copy of the GNU Affero General Public License

      # along with this program.  If not, see <http://www.gnu.org/licenses/>.

      #

      # This program is dual-licensed. If you wish to learn more about the

      # RhodeCode Enterprise Edition, including its added features, Support services,

      # and proprietary license terms, please see https://rhodecode.com/licenses/

      import logging

      from pyramid.view import view_config

      from pyramid.httpexceptions import HTTPFound

      from rhodecode.apps._base import RepoAppView

      from rhodecode.lib import helpers as h

      from rhodecode.lib import audit_logger

      from rhodecode.lib.auth import (

        marcink
    
repo-forks: security, check for access to fork_id parameter to prevent...

              r2173
            
          LoginRequired, HasRepoPermissionAnyDecorator, CSRFRequired,

          HasRepoPermissionAny)

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
      from rhodecode.lib.exceptions import AttachedForksError

      from rhodecode.lib.utils2 import safe_int

      from rhodecode.lib.vcs import RepositoryError

      from rhodecode.model.db import Session, UserFollowing, User, Repository

      from rhodecode.model.repo import RepoModel

      from rhodecode.model.scm import ScmModel

      log = logging.getLogger(__name__)

      class RepoSettingsView(RepoAppView):

          def load_default_context(self):

              c = self._get_local_tmpl_context()

              return c

          @LoginRequired()

          @HasRepoPermissionAnyDecorator('repository.admin')

          @view_config(

              route_name='edit_repo_advanced', request_method='GET',

              renderer='rhodecode:templates/admin/repos/repo_edit.mako')

          def edit_advanced(self):

              c = self.load_default_context()

              c.active = 'advanced'

              c.default_user_id = User.get_default_user().user_id

              c.in_public_journal = UserFollowing.query() \

                  .filter(UserFollowing.user_id == c.default_user_id) \

        marcink
    
repositories: rewrote whole admin section to pyramid....

              r2014
            
                  .filter(UserFollowing.follows_repository == self.db_repo).scalar()

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
              c.has_origin_repo_read_perm = False

              if self.db_repo.fork:

                  c.has_origin_repo_read_perm = h.HasRepoPermissionAny(

                      'repository.write', 'repository.read', 'repository.admin')(

                      self.db_repo.fork.repo_name, 'repo set as fork page')

              return self._get_template_context(c)

          @LoginRequired()

          @HasRepoPermissionAnyDecorator('repository.admin')

        ergo
    
security: added missing csrf checks in few missing views.

              r1811
            
          @CSRFRequired()

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
          @view_config(

              route_name='edit_repo_advanced_delete', request_method='POST',

              renderer='rhodecode:templates/admin/repos/repo_edit.mako')

          def edit_advanced_delete(self):

              """

              Deletes the repository, or shows warnings if deletion is not possible

              because of attached forks or other errors.

              """

              _ = self.request.translate

              handle_forks = self.request.POST.get('forks', None)

              try:

                  _forks = self.db_repo.forks.count()

                  if _forks and handle_forks:

                      if handle_forks == 'detach_forks':

                          handle_forks = 'detach'

                          h.flash(_('Detached %s forks') % _forks, category='success')

                      elif handle_forks == 'delete_forks':

                          handle_forks = 'delete'

                          h.flash(_('Deleted %s forks') % _forks, category='success')

        marcink
    
audit-logs: implemented full audit logs across application....

              r1829
            
                  old_data = self.db_repo.get_api_data()

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
                  RepoModel().delete(self.db_repo, forks=handle_forks)

        marcink
    
audit-logger: unify calls to repo.delete and also store source of call, api/web.

              r1752
            
                  repo = audit_logger.RepoWrap(repo_id=None,

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
                                               repo_name=self.db_repo.repo_name)

        marcink
    
audit-logs: use specific web/api calls....

              r1806
            
                  audit_logger.store_web(

        marcink
    
audit-logs: implemented full audit logs across application....

              r1829
            
                      'repo.delete', action_data={'old_data': old_data},

        marcink
    
audit-logs: use specific web/api calls....

              r1806
            
                      user=self._rhodecode_user, repo=repo)

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
        marcink
    
audit-logger: unify calls to repo.delete and also store source of call, api/web.

              r1752
            
                  ScmModel().mark_for_invalidation(self.db_repo_name, delete=True)

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
                  h.flash(

                      _('Deleted repository `%s`') % self.db_repo_name,

                      category='success')

                  Session().commit()

              except AttachedForksError:

                  repo_advanced_url = h.route_path(

                      'edit_repo_advanced', repo_name=self.db_repo_name,

                      _anchor='advanced-delete')

                  delete_anchor = h.link_to(_('detach or delete'), repo_advanced_url)

                  h.flash(_('Cannot delete `{repo}` it still contains attached forks. '

                            'Try using {delete_or_detach} option.')

                          .format(repo=self.db_repo_name, delete_or_detach=delete_anchor),

                          category='warning')

                  # redirect to advanced for forks handle action ?

                  raise HTTPFound(repo_advanced_url)

              except Exception:

                  log.exception("Exception during deletion of repository")

                  h.flash(_('An error occurred during deletion of `%s`')

                          % self.db_repo_name, category='error')

                  # redirect to advanced for more deletion options

                  raise HTTPFound(

        marcink
    
repo-settings: fix error on passing in _anchor into wrong call....

              r2171
            
                      h.route_path('edit_repo_advanced', repo_name=self.db_repo_name,

                                   _anchor='advanced-delete'))

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
              raise HTTPFound(h.route_path('home'))

          @LoginRequired()

          @HasRepoPermissionAnyDecorator('repository.admin')

          @CSRFRequired()

          @view_config(

              route_name='edit_repo_advanced_journal', request_method='POST',

              renderer='rhodecode:templates/admin/repos/repo_edit.mako')

          def edit_advanced_journal(self):

              """

              Set's this repository to be visible in public journal,

              in other words making default user to follow this repo

              """

              _ = self.request.translate

              try:

                  user_id = User.get_default_user().user_id

                  ScmModel().toggle_following_repo(self.db_repo.repo_id, user_id)

                  h.flash(_('Updated repository visibility in public journal'),

                          category='success')

                  Session().commit()

              except Exception:

                  h.flash(_('An error occurred during setting this '

                            'repository in public journal'),

                          category='error')

              raise HTTPFound(

                  h.route_path('edit_repo_advanced', repo_name=self.db_repo_name))

          @LoginRequired()

          @HasRepoPermissionAnyDecorator('repository.admin')

          @CSRFRequired()

          @view_config(

              route_name='edit_repo_advanced_fork', request_method='POST',

              renderer='rhodecode:templates/admin/repos/repo_edit.mako')

          def edit_advanced_fork(self):

              """

              Mark given repository as a fork of another

              """

              _ = self.request.translate

        marcink
    
repo-forks: security, check for access to fork_id parameter to prevent...

              r2173
            
              new_fork_id = safe_int(self.request.POST.get('id_fork_of'))

              # valid repo, re-check permissions

              if new_fork_id:

                  repo = Repository.get(new_fork_id)

                  # ensure we have at least read access to the repo we mark

                  perm_check = HasRepoPermissionAny(

                      'repository.read', 'repository.write', 'repository.admin')

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
        marcink
    
repo-forks: security, check for access to fork_id parameter to prevent...

              r2173
            
                  if repo and perm_check(repo_name=repo.repo_name):

                      new_fork_id = repo.repo_id

                  else:

                      new_fork_id = None

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
        marcink
    
repo-forks: security, check for access to fork_id parameter to prevent...

              r2173
            
              try:

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
                  repo = ScmModel().mark_as_fork(

        marcink
    
repo-forks: security, check for access to fork_id parameter to prevent...

              r2173
            
                      self.db_repo_name, new_fork_id, self._rhodecode_user.user_id)

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
                  fork = repo.fork.repo_name if repo.fork else _('Nothing')

                  Session().commit()

        marcink
    
repo-forks: security, check for access to fork_id parameter to prevent...

              r2173
            
                  h.flash(

                      _('Marked repo %s as fork of %s') % (self.db_repo_name, fork),

                      category='success')

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
              except RepositoryError as e:

                  log.exception("Repository Error occurred")

                  h.flash(str(e), category='error')

        marcink
    
repo-forks: security, check for access to fork_id parameter to prevent...

              r2173
            
              except Exception:

        marcink
    
repo-settings: moved advanced setion into pyramid views....

              r1751
            
                  log.exception("Exception while editing fork")

                  h.flash(_('An error occurred during this operation'),

                          category='error')

              raise HTTPFound(

                  h.route_path('edit_repo_advanced', repo_name=self.db_repo_name))

          @LoginRequired()

          @HasRepoPermissionAnyDecorator('repository.admin')

          @CSRFRequired()

          @view_config(

              route_name='edit_repo_advanced_locking', request_method='POST',

              renderer='rhodecode:templates/admin/repos/repo_edit.mako')

          def edit_advanced_locking(self):

              """

              Toggle locking of repository

              """

              _ = self.request.translate

              set_lock = self.request.POST.get('set_lock')

              set_unlock = self.request.POST.get('set_unlock')

              try:

                  if set_lock:

                      Repository.lock(self.db_repo, self._rhodecode_user.user_id,

                                      lock_reason=Repository.LOCK_WEB)

                      h.flash(_('Locked repository'), category='success')

                  elif set_unlock:

                      Repository.unlock(self.db_repo)

                      h.flash(_('Unlocked repository'), category='success')

              except Exception as e:

                  log.exception("Exception during unlocking")

                  h.flash(_('An error occurred during unlocking'), category='error')

              raise HTTPFound(

                  h.route_path('edit_repo_advanced', repo_name=self.db_repo_name))

        marcink
    
repo-settings: add hidden view to force re-install hooks....

              r2678
            
          @LoginRequired()

          @HasRepoPermissionAnyDecorator('repository.admin')

          @view_config(

              route_name='edit_repo_advanced_hooks', request_method='GET',

              renderer='rhodecode:templates/admin/repos/repo_edit.mako')

          def edit_advanced_install_hooks(self):

              """

              Install Hooks for repository

              """

              _ = self.request.translate

              self.load_default_context()

              self.rhodecode_vcs_repo.install_hooks(force=True)

        marcink
    
code: small cleanups of code

              r2746
            
              h.flash(_('installed updated hooks into this repository'),

                      category='success')

        marcink
    
repo-settings: add hidden view to force re-install hooks....

              r2678
            
              raise HTTPFound(

                  h.route_path('edit_repo_advanced', repo_name=self.db_repo_name))

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

marcink repo-settings: moved advanced setion into pyramid views....	r1751	# -- coding: utf-8 --

marcink release: update copyright year to 2018	r2487	# Copyright (C) 2011-2018 RhodeCode GmbH
marcink repo-settings: moved advanced setion into pyramid views....	r1751	#
		# This program is free software: you can redistribute it and/or modify
		# it under the terms of the GNU Affero General Public License, version 3
		# (only), as published by the Free Software Foundation.
		#
		# This program is distributed in the hope that it will be useful,
		# but WITHOUT ANY WARRANTY; without even the implied warranty of
		# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
		# GNU General Public License for more details.
		#
		# You should have received a copy of the GNU Affero General Public License
		# along with this program. If not, see <http://www.gnu.org/licenses/>.
		#
		# This program is dual-licensed. If you wish to learn more about the
		# RhodeCode Enterprise Edition, including its added features, Support services,
		# and proprietary license terms, please see https://rhodecode.com/licenses/

		import logging

		from pyramid.view import view_config
		from pyramid.httpexceptions import HTTPFound

		from rhodecode.apps._base import RepoAppView
		from rhodecode.lib import helpers as h
		from rhodecode.lib import audit_logger
		from rhodecode.lib.auth import (
marcink repo-forks: security, check for access to fork_id parameter to prevent...	r2173	LoginRequired, HasRepoPermissionAnyDecorator, CSRFRequired,
		HasRepoPermissionAny)
marcink repo-settings: moved advanced setion into pyramid views....	r1751	from rhodecode.lib.exceptions import AttachedForksError
		from rhodecode.lib.utils2 import safe_int
		from rhodecode.lib.vcs import RepositoryError
		from rhodecode.model.db import Session, UserFollowing, User, Repository
		from rhodecode.model.repo import RepoModel
		from rhodecode.model.scm import ScmModel

		log = logging.getLogger(__name__)


		class RepoSettingsView(RepoAppView):

		def load_default_context(self):
		c = self._get_local_tmpl_context()
		return c

		@LoginRequired()
		@HasRepoPermissionAnyDecorator('repository.admin')
		@view_config(
		route_name='edit_repo_advanced', request_method='GET',
		renderer='rhodecode:templates/admin/repos/repo_edit.mako')
		def edit_advanced(self):
		c = self.load_default_context()
		c.active = 'advanced'

		c.default_user_id = User.get_default_user().user_id
		c.in_public_journal = UserFollowing.query() \
		.filter(UserFollowing.user_id == c.default_user_id) \
marcink repositories: rewrote whole admin section to pyramid....	r2014	.filter(UserFollowing.follows_repository == self.db_repo).scalar()
marcink repo-settings: moved advanced setion into pyramid views....	r1751
		c.has_origin_repo_read_perm = False
		if self.db_repo.fork:
		c.has_origin_repo_read_perm = h.HasRepoPermissionAny(
		'repository.write', 'repository.read', 'repository.admin')(
		self.db_repo.fork.repo_name, 'repo set as fork page')

		return self._get_template_context(c)

		@LoginRequired()
		@HasRepoPermissionAnyDecorator('repository.admin')
ergo security: added missing csrf checks in few missing views.	r1811	@CSRFRequired()
marcink repo-settings: moved advanced setion into pyramid views....	r1751	@view_config(
		route_name='edit_repo_advanced_delete', request_method='POST',
		renderer='rhodecode:templates/admin/repos/repo_edit.mako')
		def edit_advanced_delete(self):
		"""
		Deletes the repository, or shows warnings if deletion is not possible
		because of attached forks or other errors.
		"""
		_ = self.request.translate
		handle_forks = self.request.POST.get('forks', None)

		try:
		_forks = self.db_repo.forks.count()
		if _forks and handle_forks:
		if handle_forks == 'detach_forks':
		handle_forks = 'detach'
		h.flash(_('Detached %s forks') % _forks, category='success')
		elif handle_forks == 'delete_forks':
		handle_forks = 'delete'
		h.flash(_('Deleted %s forks') % _forks, category='success')

marcink audit-logs: implemented full audit logs across application....	r1829	old_data = self.db_repo.get_api_data()
marcink repo-settings: moved advanced setion into pyramid views....	r1751	RepoModel().delete(self.db_repo, forks=handle_forks)

marcink audit-logger: unify calls to repo.delete and also store source of call, api/web.	r1752	repo = audit_logger.RepoWrap(repo_id=None,
marcink repo-settings: moved advanced setion into pyramid views....	r1751	repo_name=self.db_repo.repo_name)
marcink audit-logs: use specific web/api calls....	r1806	audit_logger.store_web(
marcink audit-logs: implemented full audit logs across application....	r1829	'repo.delete', action_data={'old_data': old_data},
marcink audit-logs: use specific web/api calls....	r1806	user=self._rhodecode_user, repo=repo)
marcink repo-settings: moved advanced setion into pyramid views....	r1751
marcink audit-logger: unify calls to repo.delete and also store source of call, api/web.	r1752	ScmModel().mark_for_invalidation(self.db_repo_name, delete=True)
marcink repo-settings: moved advanced setion into pyramid views....	r1751	h.flash(
		_('Deleted repository `%s`') % self.db_repo_name,
		category='success')
		Session().commit()
		except AttachedForksError:
		repo_advanced_url = h.route_path(
		'edit_repo_advanced', repo_name=self.db_repo_name,
		_anchor='advanced-delete')
		delete_anchor = h.link_to(_('detach or delete'), repo_advanced_url)
		h.flash(_('Cannot delete `{repo}` it still contains attached forks. '
		'Try using {delete_or_detach} option.')
		.format(repo=self.db_repo_name, delete_or_detach=delete_anchor),
		category='warning')

		# redirect to advanced for forks handle action ?
		raise HTTPFound(repo_advanced_url)

		except Exception:
		log.exception("Exception during deletion of repository")
		h.flash(_('An error occurred during deletion of `%s`')
		% self.db_repo_name, category='error')
		# redirect to advanced for more deletion options
		raise HTTPFound(
marcink repo-settings: fix error on passing in _anchor into wrong call....	r2171	h.route_path('edit_repo_advanced', repo_name=self.db_repo_name,
		_anchor='advanced-delete'))
marcink repo-settings: moved advanced setion into pyramid views....	r1751
		raise HTTPFound(h.route_path('home'))

		@LoginRequired()
		@HasRepoPermissionAnyDecorator('repository.admin')
		@CSRFRequired()
		@view_config(
		route_name='edit_repo_advanced_journal', request_method='POST',
		renderer='rhodecode:templates/admin/repos/repo_edit.mako')
		def edit_advanced_journal(self):
		"""
		Set's this repository to be visible in public journal,
		in other words making default user to follow this repo
		"""
		_ = self.request.translate

		try:
		user_id = User.get_default_user().user_id
		ScmModel().toggle_following_repo(self.db_repo.repo_id, user_id)
		h.flash(_('Updated repository visibility in public journal'),
		category='success')
		Session().commit()
		except Exception:
		h.flash(_('An error occurred during setting this '
		'repository in public journal'),
		category='error')

		raise HTTPFound(
		h.route_path('edit_repo_advanced', repo_name=self.db_repo_name))

		@LoginRequired()
		@HasRepoPermissionAnyDecorator('repository.admin')
		@CSRFRequired()
		@view_config(
		route_name='edit_repo_advanced_fork', request_method='POST',
		renderer='rhodecode:templates/admin/repos/repo_edit.mako')
		def edit_advanced_fork(self):
		"""
		Mark given repository as a fork of another
		"""
		_ = self.request.translate

marcink repo-forks: security, check for access to fork_id parameter to prevent...	r2173	new_fork_id = safe_int(self.request.POST.get('id_fork_of'))

		# valid repo, re-check permissions
		if new_fork_id:
		repo = Repository.get(new_fork_id)
		# ensure we have at least read access to the repo we mark
		perm_check = HasRepoPermissionAny(
		'repository.read', 'repository.write', 'repository.admin')
marcink repo-settings: moved advanced setion into pyramid views....	r1751
marcink repo-forks: security, check for access to fork_id parameter to prevent...	r2173	if repo and perm_check(repo_name=repo.repo_name):
		new_fork_id = repo.repo_id
		else:
		new_fork_id = None
marcink repo-settings: moved advanced setion into pyramid views....	r1751
marcink repo-forks: security, check for access to fork_id parameter to prevent...	r2173	try:
marcink repo-settings: moved advanced setion into pyramid views....	r1751	repo = ScmModel().mark_as_fork(
marcink repo-forks: security, check for access to fork_id parameter to prevent...	r2173	self.db_repo_name, new_fork_id, self._rhodecode_user.user_id)
marcink repo-settings: moved advanced setion into pyramid views....	r1751	fork = repo.fork.repo_name if repo.fork else _('Nothing')
		Session().commit()
marcink repo-forks: security, check for access to fork_id parameter to prevent...	r2173	h.flash(
		_('Marked repo %s as fork of %s') % (self.db_repo_name, fork),
		category='success')
marcink repo-settings: moved advanced setion into pyramid views....	r1751	except RepositoryError as e:
		log.exception("Repository Error occurred")
		h.flash(str(e), category='error')
marcink repo-forks: security, check for access to fork_id parameter to prevent...	r2173	except Exception:
marcink repo-settings: moved advanced setion into pyramid views....	r1751	log.exception("Exception while editing fork")
		h.flash(_('An error occurred during this operation'),
		category='error')

		raise HTTPFound(
		h.route_path('edit_repo_advanced', repo_name=self.db_repo_name))

		@LoginRequired()
		@HasRepoPermissionAnyDecorator('repository.admin')
		@CSRFRequired()
		@view_config(
		route_name='edit_repo_advanced_locking', request_method='POST',
		renderer='rhodecode:templates/admin/repos/repo_edit.mako')
		def edit_advanced_locking(self):
		"""
		Toggle locking of repository
		"""
		_ = self.request.translate
		set_lock = self.request.POST.get('set_lock')
		set_unlock = self.request.POST.get('set_unlock')

		try:
		if set_lock:
		Repository.lock(self.db_repo, self._rhodecode_user.user_id,
		lock_reason=Repository.LOCK_WEB)
		h.flash(_('Locked repository'), category='success')
		elif set_unlock:
		Repository.unlock(self.db_repo)
		h.flash(_('Unlocked repository'), category='success')
		except Exception as e:
		log.exception("Exception during unlocking")
		h.flash(_('An error occurred during unlocking'), category='error')

		raise HTTPFound(
		h.route_path('edit_repo_advanced', repo_name=self.db_repo_name))
marcink repo-settings: add hidden view to force re-install hooks....	r2678
		@LoginRequired()
		@HasRepoPermissionAnyDecorator('repository.admin')
		@view_config(
		route_name='edit_repo_advanced_hooks', request_method='GET',
		renderer='rhodecode:templates/admin/repos/repo_edit.mako')
		def edit_advanced_install_hooks(self):
		"""
		Install Hooks for repository
		"""
		_ = self.request.translate
		self.load_default_context()
		self.rhodecode_vcs_repo.install_hooks(force=True)
marcink code: small cleanups of code	r2746	h.flash(_('installed updated hooks into this repository'),
		category='success')
marcink repo-settings: add hidden view to force re-install hooks....	r2678	raise HTTPFound(
		h.route_path('edit_repo_advanced', repo_name=self.db_repo_name))