##// END OF EJS Templates
users: in case of multiple personal groups, return the first instead of an error....
marcink -
r3039:12ce4f25 stable
parent child Browse files
Show More
@@ -1,4695 +1,4697 b''
1 1 # -*- coding: utf-8 -*-
2 2
3 3 # Copyright (C) 2010-2018 RhodeCode GmbH
4 4 #
5 5 # This program is free software: you can redistribute it and/or modify
6 6 # it under the terms of the GNU Affero General Public License, version 3
7 7 # (only), as published by the Free Software Foundation.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU Affero General Public License
15 15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
16 16 #
17 17 # This program is dual-licensed. If you wish to learn more about the
18 18 # RhodeCode Enterprise Edition, including its added features, Support services,
19 19 # and proprietary license terms, please see https://rhodecode.com/licenses/
20 20
21 21 """
22 22 Database Models for RhodeCode Enterprise
23 23 """
24 24
25 25 import re
26 26 import os
27 27 import time
28 28 import hashlib
29 29 import logging
30 30 import datetime
31 31 import warnings
32 32 import ipaddress
33 33 import functools
34 34 import traceback
35 35 import collections
36 36
37 37 from sqlalchemy import (
38 38 or_, and_, not_, func, TypeDecorator, event,
39 39 Index, Sequence, UniqueConstraint, ForeignKey, CheckConstraint, Column,
40 40 Boolean, String, Unicode, UnicodeText, DateTime, Integer, LargeBinary,
41 41 Text, Float, PickleType)
42 42 from sqlalchemy.sql.expression import true, false
43 43 from sqlalchemy.sql.functions import coalesce, count # noqa
44 44 from sqlalchemy.orm import (
45 45 relationship, joinedload, class_mapper, validates, aliased)
46 46 from sqlalchemy.ext.declarative import declared_attr
47 47 from sqlalchemy.ext.hybrid import hybrid_property
48 48 from sqlalchemy.exc import IntegrityError # noqa
49 49 from sqlalchemy.dialects.mysql import LONGTEXT
50 50 from zope.cachedescriptors.property import Lazy as LazyProperty
51 51
52 52 from pyramid.threadlocal import get_current_request
53 53
54 54 from rhodecode.translation import _
55 55 from rhodecode.lib.vcs import get_vcs_instance
56 56 from rhodecode.lib.vcs.backends.base import EmptyCommit, Reference
57 57 from rhodecode.lib.utils2 import (
58 58 str2bool, safe_str, get_commit_safe, safe_unicode, sha1_safe,
59 59 time_to_datetime, aslist, Optional, safe_int, get_clone_url, AttributeDict,
60 60 glob2re, StrictAttributeDict, cleaned_uri)
61 61 from rhodecode.lib.jsonalchemy import MutationObj, MutationList, JsonType, \
62 62 JsonRaw
63 63 from rhodecode.lib.ext_json import json
64 64 from rhodecode.lib.caching_query import FromCache
65 65 from rhodecode.lib.encrypt import AESCipher
66 66
67 67 from rhodecode.model.meta import Base, Session
68 68
69 69 URL_SEP = '/'
70 70 log = logging.getLogger(__name__)
71 71
72 72 # =============================================================================
73 73 # BASE CLASSES
74 74 # =============================================================================
75 75
76 76 # this is propagated from .ini file rhodecode.encrypted_values.secret or
77 77 # beaker.session.secret if first is not set.
78 78 # and initialized at environment.py
79 79 ENCRYPTION_KEY = None
80 80
81 81 # used to sort permissions by types, '#' used here is not allowed to be in
82 82 # usernames, and it's very early in sorted string.printable table.
83 83 PERMISSION_TYPE_SORT = {
84 84 'admin': '####',
85 85 'write': '###',
86 86 'read': '##',
87 87 'none': '#',
88 88 }
89 89
90 90
91 91 def display_user_sort(obj):
92 92 """
93 93 Sort function used to sort permissions in .permissions() function of
94 94 Repository, RepoGroup, UserGroup. Also it put the default user in front
95 95 of all other resources
96 96 """
97 97
98 98 if obj.username == User.DEFAULT_USER:
99 99 return '#####'
100 100 prefix = PERMISSION_TYPE_SORT.get(obj.permission.split('.')[-1], '')
101 101 return prefix + obj.username
102 102
103 103
104 104 def display_user_group_sort(obj):
105 105 """
106 106 Sort function used to sort permissions in .permissions() function of
107 107 Repository, RepoGroup, UserGroup. Also it put the default user in front
108 108 of all other resources
109 109 """
110 110
111 111 prefix = PERMISSION_TYPE_SORT.get(obj.permission.split('.')[-1], '')
112 112 return prefix + obj.users_group_name
113 113
114 114
115 115 def _hash_key(k):
116 116 return sha1_safe(k)
117 117
118 118
119 119 def in_filter_generator(qry, items, limit=500):
120 120 """
121 121 Splits IN() into multiple with OR
122 122 e.g.::
123 123 cnt = Repository.query().filter(
124 124 or_(
125 125 *in_filter_generator(Repository.repo_id, range(100000))
126 126 )).count()
127 127 """
128 128 if not items:
129 129 # empty list will cause empty query which might cause security issues
130 130 # this can lead to hidden unpleasant results
131 131 items = [-1]
132 132
133 133 parts = []
134 134 for chunk in xrange(0, len(items), limit):
135 135 parts.append(
136 136 qry.in_(items[chunk: chunk + limit])
137 137 )
138 138
139 139 return parts
140 140
141 141
142 142 base_table_args = {
143 143 'extend_existing': True,
144 144 'mysql_engine': 'InnoDB',
145 145 'mysql_charset': 'utf8',
146 146 'sqlite_autoincrement': True
147 147 }
148 148
149 149
150 150 class EncryptedTextValue(TypeDecorator):
151 151 """
152 152 Special column for encrypted long text data, use like::
153 153
154 154 value = Column("encrypted_value", EncryptedValue(), nullable=False)
155 155
156 156 This column is intelligent so if value is in unencrypted form it return
157 157 unencrypted form, but on save it always encrypts
158 158 """
159 159 impl = Text
160 160
161 161 def process_bind_param(self, value, dialect):
162 162 if not value:
163 163 return value
164 164 if value.startswith('enc$aes$') or value.startswith('enc$aes_hmac$'):
165 165 # protect against double encrypting if someone manually starts
166 166 # doing
167 167 raise ValueError('value needs to be in unencrypted format, ie. '
168 168 'not starting with enc$aes')
169 169 return 'enc$aes_hmac$%s' % AESCipher(
170 170 ENCRYPTION_KEY, hmac=True).encrypt(value)
171 171
172 172 def process_result_value(self, value, dialect):
173 173 import rhodecode
174 174
175 175 if not value:
176 176 return value
177 177
178 178 parts = value.split('$', 3)
179 179 if not len(parts) == 3:
180 180 # probably not encrypted values
181 181 return value
182 182 else:
183 183 if parts[0] != 'enc':
184 184 # parts ok but without our header ?
185 185 return value
186 186 enc_strict_mode = str2bool(rhodecode.CONFIG.get(
187 187 'rhodecode.encrypted_values.strict') or True)
188 188 # at that stage we know it's our encryption
189 189 if parts[1] == 'aes':
190 190 decrypted_data = AESCipher(ENCRYPTION_KEY).decrypt(parts[2])
191 191 elif parts[1] == 'aes_hmac':
192 192 decrypted_data = AESCipher(
193 193 ENCRYPTION_KEY, hmac=True,
194 194 strict_verification=enc_strict_mode).decrypt(parts[2])
195 195 else:
196 196 raise ValueError(
197 197 'Encryption type part is wrong, must be `aes` '
198 198 'or `aes_hmac`, got `%s` instead' % (parts[1]))
199 199 return decrypted_data
200 200
201 201
202 202 class BaseModel(object):
203 203 """
204 204 Base Model for all classes
205 205 """
206 206
207 207 @classmethod
208 208 def _get_keys(cls):
209 209 """return column names for this model """
210 210 return class_mapper(cls).c.keys()
211 211
212 212 def get_dict(self):
213 213 """
214 214 return dict with keys and values corresponding
215 215 to this model data """
216 216
217 217 d = {}
218 218 for k in self._get_keys():
219 219 d[k] = getattr(self, k)
220 220
221 221 # also use __json__() if present to get additional fields
222 222 _json_attr = getattr(self, '__json__', None)
223 223 if _json_attr:
224 224 # update with attributes from __json__
225 225 if callable(_json_attr):
226 226 _json_attr = _json_attr()
227 227 for k, val in _json_attr.iteritems():
228 228 d[k] = val
229 229 return d
230 230
231 231 def get_appstruct(self):
232 232 """return list with keys and values tuples corresponding
233 233 to this model data """
234 234
235 235 lst = []
236 236 for k in self._get_keys():
237 237 lst.append((k, getattr(self, k),))
238 238 return lst
239 239
240 240 def populate_obj(self, populate_dict):
241 241 """populate model with data from given populate_dict"""
242 242
243 243 for k in self._get_keys():
244 244 if k in populate_dict:
245 245 setattr(self, k, populate_dict[k])
246 246
247 247 @classmethod
248 248 def query(cls):
249 249 return Session().query(cls)
250 250
251 251 @classmethod
252 252 def get(cls, id_):
253 253 if id_:
254 254 return cls.query().get(id_)
255 255
256 256 @classmethod
257 257 def get_or_404(cls, id_):
258 258 from pyramid.httpexceptions import HTTPNotFound
259 259
260 260 try:
261 261 id_ = int(id_)
262 262 except (TypeError, ValueError):
263 263 raise HTTPNotFound()
264 264
265 265 res = cls.query().get(id_)
266 266 if not res:
267 267 raise HTTPNotFound()
268 268 return res
269 269
270 270 @classmethod
271 271 def getAll(cls):
272 272 # deprecated and left for backward compatibility
273 273 return cls.get_all()
274 274
275 275 @classmethod
276 276 def get_all(cls):
277 277 return cls.query().all()
278 278
279 279 @classmethod
280 280 def delete(cls, id_):
281 281 obj = cls.query().get(id_)
282 282 Session().delete(obj)
283 283
284 284 @classmethod
285 285 def identity_cache(cls, session, attr_name, value):
286 286 exist_in_session = []
287 287 for (item_cls, pkey), instance in session.identity_map.items():
288 288 if cls == item_cls and getattr(instance, attr_name) == value:
289 289 exist_in_session.append(instance)
290 290 if exist_in_session:
291 291 if len(exist_in_session) == 1:
292 292 return exist_in_session[0]
293 293 log.exception(
294 294 'multiple objects with attr %s and '
295 295 'value %s found with same name: %r',
296 296 attr_name, value, exist_in_session)
297 297
298 298 def __repr__(self):
299 299 if hasattr(self, '__unicode__'):
300 300 # python repr needs to return str
301 301 try:
302 302 return safe_str(self.__unicode__())
303 303 except UnicodeDecodeError:
304 304 pass
305 305 return '<DB:%s>' % (self.__class__.__name__)
306 306
307 307
308 308 class RhodeCodeSetting(Base, BaseModel):
309 309 __tablename__ = 'rhodecode_settings'
310 310 __table_args__ = (
311 311 UniqueConstraint('app_settings_name'),
312 312 base_table_args
313 313 )
314 314
315 315 SETTINGS_TYPES = {
316 316 'str': safe_str,
317 317 'int': safe_int,
318 318 'unicode': safe_unicode,
319 319 'bool': str2bool,
320 320 'list': functools.partial(aslist, sep=',')
321 321 }
322 322 DEFAULT_UPDATE_URL = 'https://rhodecode.com/api/v1/info/versions'
323 323 GLOBAL_CONF_KEY = 'app_settings'
324 324
325 325 app_settings_id = Column("app_settings_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
326 326 app_settings_name = Column("app_settings_name", String(255), nullable=True, unique=None, default=None)
327 327 _app_settings_value = Column("app_settings_value", String(4096), nullable=True, unique=None, default=None)
328 328 _app_settings_type = Column("app_settings_type", String(255), nullable=True, unique=None, default=None)
329 329
330 330 def __init__(self, key='', val='', type='unicode'):
331 331 self.app_settings_name = key
332 332 self.app_settings_type = type
333 333 self.app_settings_value = val
334 334
335 335 @validates('_app_settings_value')
336 336 def validate_settings_value(self, key, val):
337 337 assert type(val) == unicode
338 338 return val
339 339
340 340 @hybrid_property
341 341 def app_settings_value(self):
342 342 v = self._app_settings_value
343 343 _type = self.app_settings_type
344 344 if _type:
345 345 _type = self.app_settings_type.split('.')[0]
346 346 # decode the encrypted value
347 347 if 'encrypted' in self.app_settings_type:
348 348 cipher = EncryptedTextValue()
349 349 v = safe_unicode(cipher.process_result_value(v, None))
350 350
351 351 converter = self.SETTINGS_TYPES.get(_type) or \
352 352 self.SETTINGS_TYPES['unicode']
353 353 return converter(v)
354 354
355 355 @app_settings_value.setter
356 356 def app_settings_value(self, val):
357 357 """
358 358 Setter that will always make sure we use unicode in app_settings_value
359 359
360 360 :param val:
361 361 """
362 362 val = safe_unicode(val)
363 363 # encode the encrypted value
364 364 if 'encrypted' in self.app_settings_type:
365 365 cipher = EncryptedTextValue()
366 366 val = safe_unicode(cipher.process_bind_param(val, None))
367 367 self._app_settings_value = val
368 368
369 369 @hybrid_property
370 370 def app_settings_type(self):
371 371 return self._app_settings_type
372 372
373 373 @app_settings_type.setter
374 374 def app_settings_type(self, val):
375 375 if val.split('.')[0] not in self.SETTINGS_TYPES:
376 376 raise Exception('type must be one of %s got %s'
377 377 % (self.SETTINGS_TYPES.keys(), val))
378 378 self._app_settings_type = val
379 379
380 380 def __unicode__(self):
381 381 return u"<%s('%s:%s[%s]')>" % (
382 382 self.__class__.__name__,
383 383 self.app_settings_name, self.app_settings_value,
384 384 self.app_settings_type
385 385 )
386 386
387 387
388 388 class RhodeCodeUi(Base, BaseModel):
389 389 __tablename__ = 'rhodecode_ui'
390 390 __table_args__ = (
391 391 UniqueConstraint('ui_key'),
392 392 base_table_args
393 393 )
394 394
395 395 HOOK_REPO_SIZE = 'changegroup.repo_size'
396 396 # HG
397 397 HOOK_PRE_PULL = 'preoutgoing.pre_pull'
398 398 HOOK_PULL = 'outgoing.pull_logger'
399 399 HOOK_PRE_PUSH = 'prechangegroup.pre_push'
400 400 HOOK_PRETX_PUSH = 'pretxnchangegroup.pre_push'
401 401 HOOK_PUSH = 'changegroup.push_logger'
402 402 HOOK_PUSH_KEY = 'pushkey.key_push'
403 403
404 404 # TODO: johbo: Unify way how hooks are configured for git and hg,
405 405 # git part is currently hardcoded.
406 406
407 407 # SVN PATTERNS
408 408 SVN_BRANCH_ID = 'vcs_svn_branch'
409 409 SVN_TAG_ID = 'vcs_svn_tag'
410 410
411 411 ui_id = Column(
412 412 "ui_id", Integer(), nullable=False, unique=True, default=None,
413 413 primary_key=True)
414 414 ui_section = Column(
415 415 "ui_section", String(255), nullable=True, unique=None, default=None)
416 416 ui_key = Column(
417 417 "ui_key", String(255), nullable=True, unique=None, default=None)
418 418 ui_value = Column(
419 419 "ui_value", String(255), nullable=True, unique=None, default=None)
420 420 ui_active = Column(
421 421 "ui_active", Boolean(), nullable=True, unique=None, default=True)
422 422
423 423 def __repr__(self):
424 424 return '<%s[%s]%s=>%s]>' % (self.__class__.__name__, self.ui_section,
425 425 self.ui_key, self.ui_value)
426 426
427 427
428 428 class RepoRhodeCodeSetting(Base, BaseModel):
429 429 __tablename__ = 'repo_rhodecode_settings'
430 430 __table_args__ = (
431 431 UniqueConstraint(
432 432 'app_settings_name', 'repository_id',
433 433 name='uq_repo_rhodecode_setting_name_repo_id'),
434 434 base_table_args
435 435 )
436 436
437 437 repository_id = Column(
438 438 "repository_id", Integer(), ForeignKey('repositories.repo_id'),
439 439 nullable=False)
440 440 app_settings_id = Column(
441 441 "app_settings_id", Integer(), nullable=False, unique=True,
442 442 default=None, primary_key=True)
443 443 app_settings_name = Column(
444 444 "app_settings_name", String(255), nullable=True, unique=None,
445 445 default=None)
446 446 _app_settings_value = Column(
447 447 "app_settings_value", String(4096), nullable=True, unique=None,
448 448 default=None)
449 449 _app_settings_type = Column(
450 450 "app_settings_type", String(255), nullable=True, unique=None,
451 451 default=None)
452 452
453 453 repository = relationship('Repository')
454 454
455 455 def __init__(self, repository_id, key='', val='', type='unicode'):
456 456 self.repository_id = repository_id
457 457 self.app_settings_name = key
458 458 self.app_settings_type = type
459 459 self.app_settings_value = val
460 460
461 461 @validates('_app_settings_value')
462 462 def validate_settings_value(self, key, val):
463 463 assert type(val) == unicode
464 464 return val
465 465
466 466 @hybrid_property
467 467 def app_settings_value(self):
468 468 v = self._app_settings_value
469 469 type_ = self.app_settings_type
470 470 SETTINGS_TYPES = RhodeCodeSetting.SETTINGS_TYPES
471 471 converter = SETTINGS_TYPES.get(type_) or SETTINGS_TYPES['unicode']
472 472 return converter(v)
473 473
474 474 @app_settings_value.setter
475 475 def app_settings_value(self, val):
476 476 """
477 477 Setter that will always make sure we use unicode in app_settings_value
478 478
479 479 :param val:
480 480 """
481 481 self._app_settings_value = safe_unicode(val)
482 482
483 483 @hybrid_property
484 484 def app_settings_type(self):
485 485 return self._app_settings_type
486 486
487 487 @app_settings_type.setter
488 488 def app_settings_type(self, val):
489 489 SETTINGS_TYPES = RhodeCodeSetting.SETTINGS_TYPES
490 490 if val not in SETTINGS_TYPES:
491 491 raise Exception('type must be one of %s got %s'
492 492 % (SETTINGS_TYPES.keys(), val))
493 493 self._app_settings_type = val
494 494
495 495 def __unicode__(self):
496 496 return u"<%s('%s:%s:%s[%s]')>" % (
497 497 self.__class__.__name__, self.repository.repo_name,
498 498 self.app_settings_name, self.app_settings_value,
499 499 self.app_settings_type
500 500 )
501 501
502 502
503 503 class RepoRhodeCodeUi(Base, BaseModel):
504 504 __tablename__ = 'repo_rhodecode_ui'
505 505 __table_args__ = (
506 506 UniqueConstraint(
507 507 'repository_id', 'ui_section', 'ui_key',
508 508 name='uq_repo_rhodecode_ui_repository_id_section_key'),
509 509 base_table_args
510 510 )
511 511
512 512 repository_id = Column(
513 513 "repository_id", Integer(), ForeignKey('repositories.repo_id'),
514 514 nullable=False)
515 515 ui_id = Column(
516 516 "ui_id", Integer(), nullable=False, unique=True, default=None,
517 517 primary_key=True)
518 518 ui_section = Column(
519 519 "ui_section", String(255), nullable=True, unique=None, default=None)
520 520 ui_key = Column(
521 521 "ui_key", String(255), nullable=True, unique=None, default=None)
522 522 ui_value = Column(
523 523 "ui_value", String(255), nullable=True, unique=None, default=None)
524 524 ui_active = Column(
525 525 "ui_active", Boolean(), nullable=True, unique=None, default=True)
526 526
527 527 repository = relationship('Repository')
528 528
529 529 def __repr__(self):
530 530 return '<%s[%s:%s]%s=>%s]>' % (
531 531 self.__class__.__name__, self.repository.repo_name,
532 532 self.ui_section, self.ui_key, self.ui_value)
533 533
534 534
535 535 class User(Base, BaseModel):
536 536 __tablename__ = 'users'
537 537 __table_args__ = (
538 538 UniqueConstraint('username'), UniqueConstraint('email'),
539 539 Index('u_username_idx', 'username'),
540 540 Index('u_email_idx', 'email'),
541 541 base_table_args
542 542 )
543 543
544 544 DEFAULT_USER = 'default'
545 545 DEFAULT_USER_EMAIL = 'anonymous@rhodecode.org'
546 546 DEFAULT_GRAVATAR_URL = 'https://secure.gravatar.com/avatar/{md5email}?d=identicon&s={size}'
547 547
548 548 user_id = Column("user_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
549 549 username = Column("username", String(255), nullable=True, unique=None, default=None)
550 550 password = Column("password", String(255), nullable=True, unique=None, default=None)
551 551 active = Column("active", Boolean(), nullable=True, unique=None, default=True)
552 552 admin = Column("admin", Boolean(), nullable=True, unique=None, default=False)
553 553 name = Column("firstname", String(255), nullable=True, unique=None, default=None)
554 554 lastname = Column("lastname", String(255), nullable=True, unique=None, default=None)
555 555 _email = Column("email", String(255), nullable=True, unique=None, default=None)
556 556 last_login = Column("last_login", DateTime(timezone=False), nullable=True, unique=None, default=None)
557 557 last_activity = Column('last_activity', DateTime(timezone=False), nullable=True, unique=None, default=None)
558 558
559 559 extern_type = Column("extern_type", String(255), nullable=True, unique=None, default=None)
560 560 extern_name = Column("extern_name", String(255), nullable=True, unique=None, default=None)
561 561 _api_key = Column("api_key", String(255), nullable=True, unique=None, default=None)
562 562 inherit_default_permissions = Column("inherit_default_permissions", Boolean(), nullable=False, unique=None, default=True)
563 563 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
564 564 _user_data = Column("user_data", LargeBinary(), nullable=True) # JSON data
565 565
566 566 user_log = relationship('UserLog')
567 567 user_perms = relationship('UserToPerm', primaryjoin="User.user_id==UserToPerm.user_id", cascade='all')
568 568
569 569 repositories = relationship('Repository')
570 570 repository_groups = relationship('RepoGroup')
571 571 user_groups = relationship('UserGroup')
572 572
573 573 user_followers = relationship('UserFollowing', primaryjoin='UserFollowing.follows_user_id==User.user_id', cascade='all')
574 574 followings = relationship('UserFollowing', primaryjoin='UserFollowing.user_id==User.user_id', cascade='all')
575 575
576 576 repo_to_perm = relationship('UserRepoToPerm', primaryjoin='UserRepoToPerm.user_id==User.user_id', cascade='all')
577 577 repo_group_to_perm = relationship('UserRepoGroupToPerm', primaryjoin='UserRepoGroupToPerm.user_id==User.user_id', cascade='all')
578 578 user_group_to_perm = relationship('UserUserGroupToPerm', primaryjoin='UserUserGroupToPerm.user_id==User.user_id', cascade='all')
579 579
580 580 group_member = relationship('UserGroupMember', cascade='all')
581 581
582 582 notifications = relationship('UserNotification', cascade='all')
583 583 # notifications assigned to this user
584 584 user_created_notifications = relationship('Notification', cascade='all')
585 585 # comments created by this user
586 586 user_comments = relationship('ChangesetComment', cascade='all')
587 587 # user profile extra info
588 588 user_emails = relationship('UserEmailMap', cascade='all')
589 589 user_ip_map = relationship('UserIpMap', cascade='all')
590 590 user_auth_tokens = relationship('UserApiKeys', cascade='all')
591 591 user_ssh_keys = relationship('UserSshKeys', cascade='all')
592 592
593 593 # gists
594 594 user_gists = relationship('Gist', cascade='all')
595 595 # user pull requests
596 596 user_pull_requests = relationship('PullRequest', cascade='all')
597 597 # external identities
598 598 extenal_identities = relationship(
599 599 'ExternalIdentity',
600 600 primaryjoin="User.user_id==ExternalIdentity.local_user_id",
601 601 cascade='all')
602 602 # review rules
603 603 user_review_rules = relationship('RepoReviewRuleUser', cascade='all')
604 604
605 605 def __unicode__(self):
606 606 return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
607 607 self.user_id, self.username)
608 608
609 609 @hybrid_property
610 610 def email(self):
611 611 return self._email
612 612
613 613 @email.setter
614 614 def email(self, val):
615 615 self._email = val.lower() if val else None
616 616
617 617 @hybrid_property
618 618 def first_name(self):
619 619 from rhodecode.lib import helpers as h
620 620 if self.name:
621 621 return h.escape(self.name)
622 622 return self.name
623 623
624 624 @hybrid_property
625 625 def last_name(self):
626 626 from rhodecode.lib import helpers as h
627 627 if self.lastname:
628 628 return h.escape(self.lastname)
629 629 return self.lastname
630 630
631 631 @hybrid_property
632 632 def api_key(self):
633 633 """
634 634 Fetch if exist an auth-token with role ALL connected to this user
635 635 """
636 636 user_auth_token = UserApiKeys.query()\
637 637 .filter(UserApiKeys.user_id == self.user_id)\
638 638 .filter(or_(UserApiKeys.expires == -1,
639 639 UserApiKeys.expires >= time.time()))\
640 640 .filter(UserApiKeys.role == UserApiKeys.ROLE_ALL).first()
641 641 if user_auth_token:
642 642 user_auth_token = user_auth_token.api_key
643 643
644 644 return user_auth_token
645 645
646 646 @api_key.setter
647 647 def api_key(self, val):
648 648 # don't allow to set API key this is deprecated for now
649 649 self._api_key = None
650 650
651 651 @property
652 652 def reviewer_pull_requests(self):
653 653 return PullRequestReviewers.query() \
654 654 .options(joinedload(PullRequestReviewers.pull_request)) \
655 655 .filter(PullRequestReviewers.user_id == self.user_id) \
656 656 .all()
657 657
658 658 @property
659 659 def firstname(self):
660 660 # alias for future
661 661 return self.name
662 662
663 663 @property
664 664 def emails(self):
665 665 other = UserEmailMap.query()\
666 666 .filter(UserEmailMap.user == self) \
667 667 .order_by(UserEmailMap.email_id.asc()) \
668 668 .all()
669 669 return [self.email] + [x.email for x in other]
670 670
671 671 @property
672 672 def auth_tokens(self):
673 673 auth_tokens = self.get_auth_tokens()
674 674 return [x.api_key for x in auth_tokens]
675 675
676 676 def get_auth_tokens(self):
677 677 return UserApiKeys.query()\
678 678 .filter(UserApiKeys.user == self)\
679 679 .order_by(UserApiKeys.user_api_key_id.asc())\
680 680 .all()
681 681
682 682 @LazyProperty
683 683 def feed_token(self):
684 684 return self.get_feed_token()
685 685
686 686 def get_feed_token(self, cache=True):
687 687 feed_tokens = UserApiKeys.query()\
688 688 .filter(UserApiKeys.user == self)\
689 689 .filter(UserApiKeys.role == UserApiKeys.ROLE_FEED)
690 690 if cache:
691 691 feed_tokens = feed_tokens.options(
692 692 FromCache("sql_cache_short", "get_user_feed_token_%s" % self.user_id))
693 693
694 694 feed_tokens = feed_tokens.all()
695 695 if feed_tokens:
696 696 return feed_tokens[0].api_key
697 697 return 'NO_FEED_TOKEN_AVAILABLE'
698 698
699 699 @classmethod
700 700 def get(cls, user_id, cache=False):
701 701 if not user_id:
702 702 return
703 703
704 704 user = cls.query()
705 705 if cache:
706 706 user = user.options(
707 707 FromCache("sql_cache_short", "get_users_%s" % user_id))
708 708 return user.get(user_id)
709 709
710 710 @classmethod
711 711 def extra_valid_auth_tokens(cls, user, role=None):
712 712 tokens = UserApiKeys.query().filter(UserApiKeys.user == user)\
713 713 .filter(or_(UserApiKeys.expires == -1,
714 714 UserApiKeys.expires >= time.time()))
715 715 if role:
716 716 tokens = tokens.filter(or_(UserApiKeys.role == role,
717 717 UserApiKeys.role == UserApiKeys.ROLE_ALL))
718 718 return tokens.all()
719 719
720 720 def authenticate_by_token(self, auth_token, roles=None, scope_repo_id=None):
721 721 from rhodecode.lib import auth
722 722
723 723 log.debug('Trying to authenticate user: %s via auth-token, '
724 724 'and roles: %s', self, roles)
725 725
726 726 if not auth_token:
727 727 return False
728 728
729 729 crypto_backend = auth.crypto_backend()
730 730
731 731 roles = (roles or []) + [UserApiKeys.ROLE_ALL]
732 732 tokens_q = UserApiKeys.query()\
733 733 .filter(UserApiKeys.user_id == self.user_id)\
734 734 .filter(or_(UserApiKeys.expires == -1,
735 735 UserApiKeys.expires >= time.time()))
736 736
737 737 tokens_q = tokens_q.filter(UserApiKeys.role.in_(roles))
738 738
739 739 plain_tokens = []
740 740 hash_tokens = []
741 741
742 742 for token in tokens_q.all():
743 743 # verify scope first
744 744 if token.repo_id:
745 745 # token has a scope, we need to verify it
746 746 if scope_repo_id != token.repo_id:
747 747 log.debug(
748 748 'Scope mismatch: token has a set repo scope: %s, '
749 749 'and calling scope is:%s, skipping further checks',
750 750 token.repo, scope_repo_id)
751 751 # token has a scope, and it doesn't match, skip token
752 752 continue
753 753
754 754 if token.api_key.startswith(crypto_backend.ENC_PREF):
755 755 hash_tokens.append(token.api_key)
756 756 else:
757 757 plain_tokens.append(token.api_key)
758 758
759 759 is_plain_match = auth_token in plain_tokens
760 760 if is_plain_match:
761 761 return True
762 762
763 763 for hashed in hash_tokens:
764 764 # TODO(marcink): this is expensive to calculate, but most secure
765 765 match = crypto_backend.hash_check(auth_token, hashed)
766 766 if match:
767 767 return True
768 768
769 769 return False
770 770
771 771 @property
772 772 def ip_addresses(self):
773 773 ret = UserIpMap.query().filter(UserIpMap.user == self).all()
774 774 return [x.ip_addr for x in ret]
775 775
776 776 @property
777 777 def username_and_name(self):
778 778 return '%s (%s %s)' % (self.username, self.first_name, self.last_name)
779 779
780 780 @property
781 781 def username_or_name_or_email(self):
782 782 full_name = self.full_name if self.full_name is not ' ' else None
783 783 return self.username or full_name or self.email
784 784
785 785 @property
786 786 def full_name(self):
787 787 return '%s %s' % (self.first_name, self.last_name)
788 788
789 789 @property
790 790 def full_name_or_username(self):
791 791 return ('%s %s' % (self.first_name, self.last_name)
792 792 if (self.first_name and self.last_name) else self.username)
793 793
794 794 @property
795 795 def full_contact(self):
796 796 return '%s %s <%s>' % (self.first_name, self.last_name, self.email)
797 797
798 798 @property
799 799 def short_contact(self):
800 800 return '%s %s' % (self.first_name, self.last_name)
801 801
802 802 @property
803 803 def is_admin(self):
804 804 return self.admin
805 805
806 806 def AuthUser(self, **kwargs):
807 807 """
808 808 Returns instance of AuthUser for this user
809 809 """
810 810 from rhodecode.lib.auth import AuthUser
811 811 return AuthUser(user_id=self.user_id, username=self.username, **kwargs)
812 812
813 813 @hybrid_property
814 814 def user_data(self):
815 815 if not self._user_data:
816 816 return {}
817 817
818 818 try:
819 819 return json.loads(self._user_data)
820 820 except TypeError:
821 821 return {}
822 822
823 823 @user_data.setter
824 824 def user_data(self, val):
825 825 if not isinstance(val, dict):
826 826 raise Exception('user_data must be dict, got %s' % type(val))
827 827 try:
828 828 self._user_data = json.dumps(val)
829 829 except Exception:
830 830 log.error(traceback.format_exc())
831 831
832 832 @classmethod
833 833 def get_by_username(cls, username, case_insensitive=False,
834 834 cache=False, identity_cache=False):
835 835 session = Session()
836 836
837 837 if case_insensitive:
838 838 q = cls.query().filter(
839 839 func.lower(cls.username) == func.lower(username))
840 840 else:
841 841 q = cls.query().filter(cls.username == username)
842 842
843 843 if cache:
844 844 if identity_cache:
845 845 val = cls.identity_cache(session, 'username', username)
846 846 if val:
847 847 return val
848 848 else:
849 849 cache_key = "get_user_by_name_%s" % _hash_key(username)
850 850 q = q.options(
851 851 FromCache("sql_cache_short", cache_key))
852 852
853 853 return q.scalar()
854 854
855 855 @classmethod
856 856 def get_by_auth_token(cls, auth_token, cache=False):
857 857 q = UserApiKeys.query()\
858 858 .filter(UserApiKeys.api_key == auth_token)\
859 859 .filter(or_(UserApiKeys.expires == -1,
860 860 UserApiKeys.expires >= time.time()))
861 861 if cache:
862 862 q = q.options(
863 863 FromCache("sql_cache_short", "get_auth_token_%s" % auth_token))
864 864
865 865 match = q.first()
866 866 if match:
867 867 return match.user
868 868
869 869 @classmethod
870 870 def get_by_email(cls, email, case_insensitive=False, cache=False):
871 871
872 872 if case_insensitive:
873 873 q = cls.query().filter(func.lower(cls.email) == func.lower(email))
874 874
875 875 else:
876 876 q = cls.query().filter(cls.email == email)
877 877
878 878 email_key = _hash_key(email)
879 879 if cache:
880 880 q = q.options(
881 881 FromCache("sql_cache_short", "get_email_key_%s" % email_key))
882 882
883 883 ret = q.scalar()
884 884 if ret is None:
885 885 q = UserEmailMap.query()
886 886 # try fetching in alternate email map
887 887 if case_insensitive:
888 888 q = q.filter(func.lower(UserEmailMap.email) == func.lower(email))
889 889 else:
890 890 q = q.filter(UserEmailMap.email == email)
891 891 q = q.options(joinedload(UserEmailMap.user))
892 892 if cache:
893 893 q = q.options(
894 894 FromCache("sql_cache_short", "get_email_map_key_%s" % email_key))
895 895 ret = getattr(q.scalar(), 'user', None)
896 896
897 897 return ret
898 898
899 899 @classmethod
900 900 def get_from_cs_author(cls, author):
901 901 """
902 902 Tries to get User objects out of commit author string
903 903
904 904 :param author:
905 905 """
906 906 from rhodecode.lib.helpers import email, author_name
907 907 # Valid email in the attribute passed, see if they're in the system
908 908 _email = email(author)
909 909 if _email:
910 910 user = cls.get_by_email(_email, case_insensitive=True)
911 911 if user:
912 912 return user
913 913 # Maybe we can match by username?
914 914 _author = author_name(author)
915 915 user = cls.get_by_username(_author, case_insensitive=True)
916 916 if user:
917 917 return user
918 918
919 919 def update_userdata(self, **kwargs):
920 920 usr = self
921 921 old = usr.user_data
922 922 old.update(**kwargs)
923 923 usr.user_data = old
924 924 Session().add(usr)
925 925 log.debug('updated userdata with ', kwargs)
926 926
927 927 def update_lastlogin(self):
928 928 """Update user lastlogin"""
929 929 self.last_login = datetime.datetime.now()
930 930 Session().add(self)
931 931 log.debug('updated user %s lastlogin', self.username)
932 932
933 933 def update_password(self, new_password):
934 934 from rhodecode.lib.auth import get_crypt_password
935 935
936 936 self.password = get_crypt_password(new_password)
937 937 Session().add(self)
938 938
939 939 @classmethod
940 940 def get_first_super_admin(cls):
941 941 user = User.query().filter(User.admin == true()).first()
942 942 if user is None:
943 943 raise Exception('FATAL: Missing administrative account!')
944 944 return user
945 945
946 946 @classmethod
947 947 def get_all_super_admins(cls):
948 948 """
949 949 Returns all admin accounts sorted by username
950 950 """
951 951 return User.query().filter(User.admin == true())\
952 952 .order_by(User.username.asc()).all()
953 953
954 954 @classmethod
955 955 def get_default_user(cls, cache=False, refresh=False):
956 956 user = User.get_by_username(User.DEFAULT_USER, cache=cache)
957 957 if user is None:
958 958 raise Exception('FATAL: Missing default account!')
959 959 if refresh:
960 960 # The default user might be based on outdated state which
961 961 # has been loaded from the cache.
962 962 # A call to refresh() ensures that the
963 963 # latest state from the database is used.
964 964 Session().refresh(user)
965 965 return user
966 966
967 967 def _get_default_perms(self, user, suffix=''):
968 968 from rhodecode.model.permission import PermissionModel
969 969 return PermissionModel().get_default_perms(user.user_perms, suffix)
970 970
971 971 def get_default_perms(self, suffix=''):
972 972 return self._get_default_perms(self, suffix)
973 973
974 974 def get_api_data(self, include_secrets=False, details='full'):
975 975 """
976 976 Common function for generating user related data for API
977 977
978 978 :param include_secrets: By default secrets in the API data will be replaced
979 979 by a placeholder value to prevent exposing this data by accident. In case
980 980 this data shall be exposed, set this flag to ``True``.
981 981
982 982 :param details: details can be 'basic|full' basic gives only a subset of
983 983 the available user information that includes user_id, name and emails.
984 984 """
985 985 user = self
986 986 user_data = self.user_data
987 987 data = {
988 988 'user_id': user.user_id,
989 989 'username': user.username,
990 990 'firstname': user.name,
991 991 'lastname': user.lastname,
992 992 'email': user.email,
993 993 'emails': user.emails,
994 994 }
995 995 if details == 'basic':
996 996 return data
997 997
998 998 auth_token_length = 40
999 999 auth_token_replacement = '*' * auth_token_length
1000 1000
1001 1001 extras = {
1002 1002 'auth_tokens': [auth_token_replacement],
1003 1003 'active': user.active,
1004 1004 'admin': user.admin,
1005 1005 'extern_type': user.extern_type,
1006 1006 'extern_name': user.extern_name,
1007 1007 'last_login': user.last_login,
1008 1008 'last_activity': user.last_activity,
1009 1009 'ip_addresses': user.ip_addresses,
1010 1010 'language': user_data.get('language')
1011 1011 }
1012 1012 data.update(extras)
1013 1013
1014 1014 if include_secrets:
1015 1015 data['auth_tokens'] = user.auth_tokens
1016 1016 return data
1017 1017
1018 1018 def __json__(self):
1019 1019 data = {
1020 1020 'full_name': self.full_name,
1021 1021 'full_name_or_username': self.full_name_or_username,
1022 1022 'short_contact': self.short_contact,
1023 1023 'full_contact': self.full_contact,
1024 1024 }
1025 1025 data.update(self.get_api_data())
1026 1026 return data
1027 1027
1028 1028
1029 1029 class UserApiKeys(Base, BaseModel):
1030 1030 __tablename__ = 'user_api_keys'
1031 1031 __table_args__ = (
1032 1032 Index('uak_api_key_idx', 'api_key', unique=True),
1033 1033 Index('uak_api_key_expires_idx', 'api_key', 'expires'),
1034 1034 base_table_args
1035 1035 )
1036 1036 __mapper_args__ = {}
1037 1037
1038 1038 # ApiKey role
1039 1039 ROLE_ALL = 'token_role_all'
1040 1040 ROLE_HTTP = 'token_role_http'
1041 1041 ROLE_VCS = 'token_role_vcs'
1042 1042 ROLE_API = 'token_role_api'
1043 1043 ROLE_FEED = 'token_role_feed'
1044 1044 ROLE_PASSWORD_RESET = 'token_password_reset'
1045 1045
1046 1046 ROLES = [ROLE_ALL, ROLE_HTTP, ROLE_VCS, ROLE_API, ROLE_FEED]
1047 1047
1048 1048 user_api_key_id = Column("user_api_key_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1049 1049 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1050 1050 api_key = Column("api_key", String(255), nullable=False, unique=True)
1051 1051 description = Column('description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
1052 1052 expires = Column('expires', Float(53), nullable=False)
1053 1053 role = Column('role', String(255), nullable=True)
1054 1054 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1055 1055
1056 1056 # scope columns
1057 1057 repo_id = Column(
1058 1058 'repo_id', Integer(), ForeignKey('repositories.repo_id'),
1059 1059 nullable=True, unique=None, default=None)
1060 1060 repo = relationship('Repository', lazy='joined')
1061 1061
1062 1062 repo_group_id = Column(
1063 1063 'repo_group_id', Integer(), ForeignKey('groups.group_id'),
1064 1064 nullable=True, unique=None, default=None)
1065 1065 repo_group = relationship('RepoGroup', lazy='joined')
1066 1066
1067 1067 user = relationship('User', lazy='joined')
1068 1068
1069 1069 def __unicode__(self):
1070 1070 return u"<%s('%s')>" % (self.__class__.__name__, self.role)
1071 1071
1072 1072 def __json__(self):
1073 1073 data = {
1074 1074 'auth_token': self.api_key,
1075 1075 'role': self.role,
1076 1076 'scope': self.scope_humanized,
1077 1077 'expired': self.expired
1078 1078 }
1079 1079 return data
1080 1080
1081 1081 def get_api_data(self, include_secrets=False):
1082 1082 data = self.__json__()
1083 1083 if include_secrets:
1084 1084 return data
1085 1085 else:
1086 1086 data['auth_token'] = self.token_obfuscated
1087 1087 return data
1088 1088
1089 1089 @hybrid_property
1090 1090 def description_safe(self):
1091 1091 from rhodecode.lib import helpers as h
1092 1092 return h.escape(self.description)
1093 1093
1094 1094 @property
1095 1095 def expired(self):
1096 1096 if self.expires == -1:
1097 1097 return False
1098 1098 return time.time() > self.expires
1099 1099
1100 1100 @classmethod
1101 1101 def _get_role_name(cls, role):
1102 1102 return {
1103 1103 cls.ROLE_ALL: _('all'),
1104 1104 cls.ROLE_HTTP: _('http/web interface'),
1105 1105 cls.ROLE_VCS: _('vcs (git/hg/svn protocol)'),
1106 1106 cls.ROLE_API: _('api calls'),
1107 1107 cls.ROLE_FEED: _('feed access'),
1108 1108 }.get(role, role)
1109 1109
1110 1110 @property
1111 1111 def role_humanized(self):
1112 1112 return self._get_role_name(self.role)
1113 1113
1114 1114 def _get_scope(self):
1115 1115 if self.repo:
1116 1116 return repr(self.repo)
1117 1117 if self.repo_group:
1118 1118 return repr(self.repo_group) + ' (recursive)'
1119 1119 return 'global'
1120 1120
1121 1121 @property
1122 1122 def scope_humanized(self):
1123 1123 return self._get_scope()
1124 1124
1125 1125 @property
1126 1126 def token_obfuscated(self):
1127 1127 if self.api_key:
1128 1128 return self.api_key[:4] + "****"
1129 1129
1130 1130
1131 1131 class UserEmailMap(Base, BaseModel):
1132 1132 __tablename__ = 'user_email_map'
1133 1133 __table_args__ = (
1134 1134 Index('uem_email_idx', 'email'),
1135 1135 UniqueConstraint('email'),
1136 1136 base_table_args
1137 1137 )
1138 1138 __mapper_args__ = {}
1139 1139
1140 1140 email_id = Column("email_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1141 1141 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1142 1142 _email = Column("email", String(255), nullable=True, unique=False, default=None)
1143 1143 user = relationship('User', lazy='joined')
1144 1144
1145 1145 @validates('_email')
1146 1146 def validate_email(self, key, email):
1147 1147 # check if this email is not main one
1148 1148 main_email = Session().query(User).filter(User.email == email).scalar()
1149 1149 if main_email is not None:
1150 1150 raise AttributeError('email %s is present is user table' % email)
1151 1151 return email
1152 1152
1153 1153 @hybrid_property
1154 1154 def email(self):
1155 1155 return self._email
1156 1156
1157 1157 @email.setter
1158 1158 def email(self, val):
1159 1159 self._email = val.lower() if val else None
1160 1160
1161 1161
1162 1162 class UserIpMap(Base, BaseModel):
1163 1163 __tablename__ = 'user_ip_map'
1164 1164 __table_args__ = (
1165 1165 UniqueConstraint('user_id', 'ip_addr'),
1166 1166 base_table_args
1167 1167 )
1168 1168 __mapper_args__ = {}
1169 1169
1170 1170 ip_id = Column("ip_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1171 1171 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1172 1172 ip_addr = Column("ip_addr", String(255), nullable=True, unique=False, default=None)
1173 1173 active = Column("active", Boolean(), nullable=True, unique=None, default=True)
1174 1174 description = Column("description", String(10000), nullable=True, unique=None, default=None)
1175 1175 user = relationship('User', lazy='joined')
1176 1176
1177 1177 @hybrid_property
1178 1178 def description_safe(self):
1179 1179 from rhodecode.lib import helpers as h
1180 1180 return h.escape(self.description)
1181 1181
1182 1182 @classmethod
1183 1183 def _get_ip_range(cls, ip_addr):
1184 1184 net = ipaddress.ip_network(safe_unicode(ip_addr), strict=False)
1185 1185 return [str(net.network_address), str(net.broadcast_address)]
1186 1186
1187 1187 def __json__(self):
1188 1188 return {
1189 1189 'ip_addr': self.ip_addr,
1190 1190 'ip_range': self._get_ip_range(self.ip_addr),
1191 1191 }
1192 1192
1193 1193 def __unicode__(self):
1194 1194 return u"<%s('user_id:%s=>%s')>" % (self.__class__.__name__,
1195 1195 self.user_id, self.ip_addr)
1196 1196
1197 1197
1198 1198 class UserSshKeys(Base, BaseModel):
1199 1199 __tablename__ = 'user_ssh_keys'
1200 1200 __table_args__ = (
1201 1201 Index('usk_ssh_key_fingerprint_idx', 'ssh_key_fingerprint'),
1202 1202
1203 1203 UniqueConstraint('ssh_key_fingerprint'),
1204 1204
1205 1205 base_table_args
1206 1206 )
1207 1207 __mapper_args__ = {}
1208 1208
1209 1209 ssh_key_id = Column('ssh_key_id', Integer(), nullable=False, unique=True, default=None, primary_key=True)
1210 1210 ssh_key_data = Column('ssh_key_data', String(10240), nullable=False, unique=None, default=None)
1211 1211 ssh_key_fingerprint = Column('ssh_key_fingerprint', String(255), nullable=False, unique=None, default=None)
1212 1212
1213 1213 description = Column('description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
1214 1214
1215 1215 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1216 1216 accessed_on = Column('accessed_on', DateTime(timezone=False), nullable=True, default=None)
1217 1217 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
1218 1218
1219 1219 user = relationship('User', lazy='joined')
1220 1220
1221 1221 def __json__(self):
1222 1222 data = {
1223 1223 'ssh_fingerprint': self.ssh_key_fingerprint,
1224 1224 'description': self.description,
1225 1225 'created_on': self.created_on
1226 1226 }
1227 1227 return data
1228 1228
1229 1229 def get_api_data(self):
1230 1230 data = self.__json__()
1231 1231 return data
1232 1232
1233 1233
1234 1234 class UserLog(Base, BaseModel):
1235 1235 __tablename__ = 'user_logs'
1236 1236 __table_args__ = (
1237 1237 base_table_args,
1238 1238 )
1239 1239
1240 1240 VERSION_1 = 'v1'
1241 1241 VERSION_2 = 'v2'
1242 1242 VERSIONS = [VERSION_1, VERSION_2]
1243 1243
1244 1244 user_log_id = Column("user_log_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1245 1245 user_id = Column("user_id", Integer(), ForeignKey('users.user_id',ondelete='SET NULL'), nullable=True, unique=None, default=None)
1246 1246 username = Column("username", String(255), nullable=True, unique=None, default=None)
1247 1247 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id', ondelete='SET NULL'), nullable=True, unique=None, default=None)
1248 1248 repository_name = Column("repository_name", String(255), nullable=True, unique=None, default=None)
1249 1249 user_ip = Column("user_ip", String(255), nullable=True, unique=None, default=None)
1250 1250 action = Column("action", Text().with_variant(Text(1200000), 'mysql'), nullable=True, unique=None, default=None)
1251 1251 action_date = Column("action_date", DateTime(timezone=False), nullable=True, unique=None, default=None)
1252 1252
1253 1253 version = Column("version", String(255), nullable=True, default=VERSION_1)
1254 1254 user_data = Column('user_data_json', MutationObj.as_mutable(JsonType(dialect_map=dict(mysql=LONGTEXT()))))
1255 1255 action_data = Column('action_data_json', MutationObj.as_mutable(JsonType(dialect_map=dict(mysql=LONGTEXT()))))
1256 1256
1257 1257 def __unicode__(self):
1258 1258 return u"<%s('id:%s:%s')>" % (
1259 1259 self.__class__.__name__, self.repository_name, self.action)
1260 1260
1261 1261 def __json__(self):
1262 1262 return {
1263 1263 'user_id': self.user_id,
1264 1264 'username': self.username,
1265 1265 'repository_id': self.repository_id,
1266 1266 'repository_name': self.repository_name,
1267 1267 'user_ip': self.user_ip,
1268 1268 'action_date': self.action_date,
1269 1269 'action': self.action,
1270 1270 }
1271 1271
1272 1272 @hybrid_property
1273 1273 def entry_id(self):
1274 1274 return self.user_log_id
1275 1275
1276 1276 @property
1277 1277 def action_as_day(self):
1278 1278 return datetime.date(*self.action_date.timetuple()[:3])
1279 1279
1280 1280 user = relationship('User')
1281 1281 repository = relationship('Repository', cascade='')
1282 1282
1283 1283
1284 1284 class UserGroup(Base, BaseModel):
1285 1285 __tablename__ = 'users_groups'
1286 1286 __table_args__ = (
1287 1287 base_table_args,
1288 1288 )
1289 1289
1290 1290 users_group_id = Column("users_group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1291 1291 users_group_name = Column("users_group_name", String(255), nullable=False, unique=True, default=None)
1292 1292 user_group_description = Column("user_group_description", String(10000), nullable=True, unique=None, default=None)
1293 1293 users_group_active = Column("users_group_active", Boolean(), nullable=True, unique=None, default=None)
1294 1294 inherit_default_permissions = Column("users_group_inherit_default_permissions", Boolean(), nullable=False, unique=None, default=True)
1295 1295 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=False, default=None)
1296 1296 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1297 1297 _group_data = Column("group_data", LargeBinary(), nullable=True) # JSON data
1298 1298
1299 1299 members = relationship('UserGroupMember', cascade="all, delete, delete-orphan", lazy="joined")
1300 1300 users_group_to_perm = relationship('UserGroupToPerm', cascade='all')
1301 1301 users_group_repo_to_perm = relationship('UserGroupRepoToPerm', cascade='all')
1302 1302 users_group_repo_group_to_perm = relationship('UserGroupRepoGroupToPerm', cascade='all')
1303 1303 user_user_group_to_perm = relationship('UserUserGroupToPerm', cascade='all')
1304 1304 user_group_user_group_to_perm = relationship('UserGroupUserGroupToPerm ', primaryjoin="UserGroupUserGroupToPerm.target_user_group_id==UserGroup.users_group_id", cascade='all')
1305 1305
1306 1306 user_group_review_rules = relationship('RepoReviewRuleUserGroup', cascade='all')
1307 1307 user = relationship('User', primaryjoin="User.user_id==UserGroup.user_id")
1308 1308
1309 1309 @classmethod
1310 1310 def _load_group_data(cls, column):
1311 1311 if not column:
1312 1312 return {}
1313 1313
1314 1314 try:
1315 1315 return json.loads(column) or {}
1316 1316 except TypeError:
1317 1317 return {}
1318 1318
1319 1319 @hybrid_property
1320 1320 def description_safe(self):
1321 1321 from rhodecode.lib import helpers as h
1322 1322 return h.escape(self.user_group_description)
1323 1323
1324 1324 @hybrid_property
1325 1325 def group_data(self):
1326 1326 return self._load_group_data(self._group_data)
1327 1327
1328 1328 @group_data.expression
1329 1329 def group_data(self, **kwargs):
1330 1330 return self._group_data
1331 1331
1332 1332 @group_data.setter
1333 1333 def group_data(self, val):
1334 1334 try:
1335 1335 self._group_data = json.dumps(val)
1336 1336 except Exception:
1337 1337 log.error(traceback.format_exc())
1338 1338
1339 1339 @classmethod
1340 1340 def _load_sync(cls, group_data):
1341 1341 if group_data:
1342 1342 return group_data.get('extern_type')
1343 1343
1344 1344 @property
1345 1345 def sync(self):
1346 1346 return self._load_sync(self.group_data)
1347 1347
1348 1348 def __unicode__(self):
1349 1349 return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
1350 1350 self.users_group_id,
1351 1351 self.users_group_name)
1352 1352
1353 1353 @classmethod
1354 1354 def get_by_group_name(cls, group_name, cache=False,
1355 1355 case_insensitive=False):
1356 1356 if case_insensitive:
1357 1357 q = cls.query().filter(func.lower(cls.users_group_name) ==
1358 1358 func.lower(group_name))
1359 1359
1360 1360 else:
1361 1361 q = cls.query().filter(cls.users_group_name == group_name)
1362 1362 if cache:
1363 1363 q = q.options(
1364 1364 FromCache("sql_cache_short", "get_group_%s" % _hash_key(group_name)))
1365 1365 return q.scalar()
1366 1366
1367 1367 @classmethod
1368 1368 def get(cls, user_group_id, cache=False):
1369 1369 if not user_group_id:
1370 1370 return
1371 1371
1372 1372 user_group = cls.query()
1373 1373 if cache:
1374 1374 user_group = user_group.options(
1375 1375 FromCache("sql_cache_short", "get_users_group_%s" % user_group_id))
1376 1376 return user_group.get(user_group_id)
1377 1377
1378 1378 def permissions(self, with_admins=True, with_owner=True):
1379 1379 """
1380 1380 Permissions for user groups
1381 1381 """
1382 1382 _admin_perm = 'usergroup.admin'
1383 1383
1384 1384 owner_row = []
1385 1385 if with_owner:
1386 1386 usr = AttributeDict(self.user.get_dict())
1387 1387 usr.owner_row = True
1388 1388 usr.permission = _admin_perm
1389 1389 owner_row.append(usr)
1390 1390
1391 1391 super_admin_ids = []
1392 1392 super_admin_rows = []
1393 1393 if with_admins:
1394 1394 for usr in User.get_all_super_admins():
1395 1395 super_admin_ids.append(usr.user_id)
1396 1396 # if this admin is also owner, don't double the record
1397 1397 if usr.user_id == owner_row[0].user_id:
1398 1398 owner_row[0].admin_row = True
1399 1399 else:
1400 1400 usr = AttributeDict(usr.get_dict())
1401 1401 usr.admin_row = True
1402 1402 usr.permission = _admin_perm
1403 1403 super_admin_rows.append(usr)
1404 1404
1405 1405 q = UserUserGroupToPerm.query().filter(UserUserGroupToPerm.user_group == self)
1406 1406 q = q.options(joinedload(UserUserGroupToPerm.user_group),
1407 1407 joinedload(UserUserGroupToPerm.user),
1408 1408 joinedload(UserUserGroupToPerm.permission),)
1409 1409
1410 1410 # get owners and admins and permissions. We do a trick of re-writing
1411 1411 # objects from sqlalchemy to named-tuples due to sqlalchemy session
1412 1412 # has a global reference and changing one object propagates to all
1413 1413 # others. This means if admin is also an owner admin_row that change
1414 1414 # would propagate to both objects
1415 1415 perm_rows = []
1416 1416 for _usr in q.all():
1417 1417 usr = AttributeDict(_usr.user.get_dict())
1418 1418 # if this user is also owner/admin, mark as duplicate record
1419 1419 if usr.user_id == owner_row[0].user_id or usr.user_id in super_admin_ids:
1420 1420 usr.duplicate_perm = True
1421 1421 usr.permission = _usr.permission.permission_name
1422 1422 perm_rows.append(usr)
1423 1423
1424 1424 # filter the perm rows by 'default' first and then sort them by
1425 1425 # admin,write,read,none permissions sorted again alphabetically in
1426 1426 # each group
1427 1427 perm_rows = sorted(perm_rows, key=display_user_sort)
1428 1428
1429 1429 return super_admin_rows + owner_row + perm_rows
1430 1430
1431 1431 def permission_user_groups(self):
1432 1432 q = UserGroupUserGroupToPerm.query().filter(UserGroupUserGroupToPerm.target_user_group == self)
1433 1433 q = q.options(joinedload(UserGroupUserGroupToPerm.user_group),
1434 1434 joinedload(UserGroupUserGroupToPerm.target_user_group),
1435 1435 joinedload(UserGroupUserGroupToPerm.permission),)
1436 1436
1437 1437 perm_rows = []
1438 1438 for _user_group in q.all():
1439 1439 usr = AttributeDict(_user_group.user_group.get_dict())
1440 1440 usr.permission = _user_group.permission.permission_name
1441 1441 perm_rows.append(usr)
1442 1442
1443 1443 perm_rows = sorted(perm_rows, key=display_user_group_sort)
1444 1444 return perm_rows
1445 1445
1446 1446 def _get_default_perms(self, user_group, suffix=''):
1447 1447 from rhodecode.model.permission import PermissionModel
1448 1448 return PermissionModel().get_default_perms(user_group.users_group_to_perm, suffix)
1449 1449
1450 1450 def get_default_perms(self, suffix=''):
1451 1451 return self._get_default_perms(self, suffix)
1452 1452
1453 1453 def get_api_data(self, with_group_members=True, include_secrets=False):
1454 1454 """
1455 1455 :param include_secrets: See :meth:`User.get_api_data`, this parameter is
1456 1456 basically forwarded.
1457 1457
1458 1458 """
1459 1459 user_group = self
1460 1460 data = {
1461 1461 'users_group_id': user_group.users_group_id,
1462 1462 'group_name': user_group.users_group_name,
1463 1463 'group_description': user_group.user_group_description,
1464 1464 'active': user_group.users_group_active,
1465 1465 'owner': user_group.user.username,
1466 1466 'sync': user_group.sync,
1467 1467 'owner_email': user_group.user.email,
1468 1468 }
1469 1469
1470 1470 if with_group_members:
1471 1471 users = []
1472 1472 for user in user_group.members:
1473 1473 user = user.user
1474 1474 users.append(user.get_api_data(include_secrets=include_secrets))
1475 1475 data['users'] = users
1476 1476
1477 1477 return data
1478 1478
1479 1479
1480 1480 class UserGroupMember(Base, BaseModel):
1481 1481 __tablename__ = 'users_groups_members'
1482 1482 __table_args__ = (
1483 1483 base_table_args,
1484 1484 )
1485 1485
1486 1486 users_group_member_id = Column("users_group_member_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1487 1487 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
1488 1488 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
1489 1489
1490 1490 user = relationship('User', lazy='joined')
1491 1491 users_group = relationship('UserGroup')
1492 1492
1493 1493 def __init__(self, gr_id='', u_id=''):
1494 1494 self.users_group_id = gr_id
1495 1495 self.user_id = u_id
1496 1496
1497 1497
1498 1498 class RepositoryField(Base, BaseModel):
1499 1499 __tablename__ = 'repositories_fields'
1500 1500 __table_args__ = (
1501 1501 UniqueConstraint('repository_id', 'field_key'), # no-multi field
1502 1502 base_table_args,
1503 1503 )
1504 1504
1505 1505 PREFIX = 'ex_' # prefix used in form to not conflict with already existing fields
1506 1506
1507 1507 repo_field_id = Column("repo_field_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
1508 1508 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
1509 1509 field_key = Column("field_key", String(250))
1510 1510 field_label = Column("field_label", String(1024), nullable=False)
1511 1511 field_value = Column("field_value", String(10000), nullable=False)
1512 1512 field_desc = Column("field_desc", String(1024), nullable=False)
1513 1513 field_type = Column("field_type", String(255), nullable=False, unique=None)
1514 1514 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
1515 1515
1516 1516 repository = relationship('Repository')
1517 1517
1518 1518 @property
1519 1519 def field_key_prefixed(self):
1520 1520 return 'ex_%s' % self.field_key
1521 1521
1522 1522 @classmethod
1523 1523 def un_prefix_key(cls, key):
1524 1524 if key.startswith(cls.PREFIX):
1525 1525 return key[len(cls.PREFIX):]
1526 1526 return key
1527 1527
1528 1528 @classmethod
1529 1529 def get_by_key_name(cls, key, repo):
1530 1530 row = cls.query()\
1531 1531 .filter(cls.repository == repo)\
1532 1532 .filter(cls.field_key == key).scalar()
1533 1533 return row
1534 1534
1535 1535
1536 1536 class Repository(Base, BaseModel):
1537 1537 __tablename__ = 'repositories'
1538 1538 __table_args__ = (
1539 1539 Index('r_repo_name_idx', 'repo_name', mysql_length=255),
1540 1540 base_table_args,
1541 1541 )
1542 1542 DEFAULT_CLONE_URI = '{scheme}://{user}@{netloc}/{repo}'
1543 1543 DEFAULT_CLONE_URI_ID = '{scheme}://{user}@{netloc}/_{repoid}'
1544 1544 DEFAULT_CLONE_URI_SSH = 'ssh://{sys_user}@{hostname}/{repo}'
1545 1545
1546 1546 STATE_CREATED = 'repo_state_created'
1547 1547 STATE_PENDING = 'repo_state_pending'
1548 1548 STATE_ERROR = 'repo_state_error'
1549 1549
1550 1550 LOCK_AUTOMATIC = 'lock_auto'
1551 1551 LOCK_API = 'lock_api'
1552 1552 LOCK_WEB = 'lock_web'
1553 1553 LOCK_PULL = 'lock_pull'
1554 1554
1555 1555 NAME_SEP = URL_SEP
1556 1556
1557 1557 repo_id = Column(
1558 1558 "repo_id", Integer(), nullable=False, unique=True, default=None,
1559 1559 primary_key=True)
1560 1560 _repo_name = Column(
1561 1561 "repo_name", Text(), nullable=False, default=None)
1562 1562 _repo_name_hash = Column(
1563 1563 "repo_name_hash", String(255), nullable=False, unique=True)
1564 1564 repo_state = Column("repo_state", String(255), nullable=True)
1565 1565
1566 1566 clone_uri = Column(
1567 1567 "clone_uri", EncryptedTextValue(), nullable=True, unique=False,
1568 1568 default=None)
1569 1569 push_uri = Column(
1570 1570 "push_uri", EncryptedTextValue(), nullable=True, unique=False,
1571 1571 default=None)
1572 1572 repo_type = Column(
1573 1573 "repo_type", String(255), nullable=False, unique=False, default=None)
1574 1574 user_id = Column(
1575 1575 "user_id", Integer(), ForeignKey('users.user_id'), nullable=False,
1576 1576 unique=False, default=None)
1577 1577 private = Column(
1578 1578 "private", Boolean(), nullable=True, unique=None, default=None)
1579 1579 enable_statistics = Column(
1580 1580 "statistics", Boolean(), nullable=True, unique=None, default=True)
1581 1581 enable_downloads = Column(
1582 1582 "downloads", Boolean(), nullable=True, unique=None, default=True)
1583 1583 description = Column(
1584 1584 "description", String(10000), nullable=True, unique=None, default=None)
1585 1585 created_on = Column(
1586 1586 'created_on', DateTime(timezone=False), nullable=True, unique=None,
1587 1587 default=datetime.datetime.now)
1588 1588 updated_on = Column(
1589 1589 'updated_on', DateTime(timezone=False), nullable=True, unique=None,
1590 1590 default=datetime.datetime.now)
1591 1591 _landing_revision = Column(
1592 1592 "landing_revision", String(255), nullable=False, unique=False,
1593 1593 default=None)
1594 1594 enable_locking = Column(
1595 1595 "enable_locking", Boolean(), nullable=False, unique=None,
1596 1596 default=False)
1597 1597 _locked = Column(
1598 1598 "locked", String(255), nullable=True, unique=False, default=None)
1599 1599 _changeset_cache = Column(
1600 1600 "changeset_cache", LargeBinary(), nullable=True) # JSON data
1601 1601
1602 1602 fork_id = Column(
1603 1603 "fork_id", Integer(), ForeignKey('repositories.repo_id'),
1604 1604 nullable=True, unique=False, default=None)
1605 1605 group_id = Column(
1606 1606 "group_id", Integer(), ForeignKey('groups.group_id'), nullable=True,
1607 1607 unique=False, default=None)
1608 1608
1609 1609 user = relationship('User', lazy='joined')
1610 1610 fork = relationship('Repository', remote_side=repo_id, lazy='joined')
1611 1611 group = relationship('RepoGroup', lazy='joined')
1612 1612 repo_to_perm = relationship(
1613 1613 'UserRepoToPerm', cascade='all',
1614 1614 order_by='UserRepoToPerm.repo_to_perm_id')
1615 1615 users_group_to_perm = relationship('UserGroupRepoToPerm', cascade='all')
1616 1616 stats = relationship('Statistics', cascade='all', uselist=False)
1617 1617
1618 1618 followers = relationship(
1619 1619 'UserFollowing',
1620 1620 primaryjoin='UserFollowing.follows_repo_id==Repository.repo_id',
1621 1621 cascade='all')
1622 1622 extra_fields = relationship(
1623 1623 'RepositoryField', cascade="all, delete, delete-orphan")
1624 1624 logs = relationship('UserLog')
1625 1625 comments = relationship(
1626 1626 'ChangesetComment', cascade="all, delete, delete-orphan")
1627 1627 pull_requests_source = relationship(
1628 1628 'PullRequest',
1629 1629 primaryjoin='PullRequest.source_repo_id==Repository.repo_id',
1630 1630 cascade="all, delete, delete-orphan")
1631 1631 pull_requests_target = relationship(
1632 1632 'PullRequest',
1633 1633 primaryjoin='PullRequest.target_repo_id==Repository.repo_id',
1634 1634 cascade="all, delete, delete-orphan")
1635 1635 ui = relationship('RepoRhodeCodeUi', cascade="all")
1636 1636 settings = relationship('RepoRhodeCodeSetting', cascade="all")
1637 1637 integrations = relationship('Integration',
1638 1638 cascade="all, delete, delete-orphan")
1639 1639
1640 1640 scoped_tokens = relationship('UserApiKeys', cascade="all")
1641 1641
1642 1642 def __unicode__(self):
1643 1643 return u"<%s('%s:%s')>" % (self.__class__.__name__, self.repo_id,
1644 1644 safe_unicode(self.repo_name))
1645 1645
1646 1646 @hybrid_property
1647 1647 def description_safe(self):
1648 1648 from rhodecode.lib import helpers as h
1649 1649 return h.escape(self.description)
1650 1650
1651 1651 @hybrid_property
1652 1652 def landing_rev(self):
1653 1653 # always should return [rev_type, rev]
1654 1654 if self._landing_revision:
1655 1655 _rev_info = self._landing_revision.split(':')
1656 1656 if len(_rev_info) < 2:
1657 1657 _rev_info.insert(0, 'rev')
1658 1658 return [_rev_info[0], _rev_info[1]]
1659 1659 return [None, None]
1660 1660
1661 1661 @landing_rev.setter
1662 1662 def landing_rev(self, val):
1663 1663 if ':' not in val:
1664 1664 raise ValueError('value must be delimited with `:` and consist '
1665 1665 'of <rev_type>:<rev>, got %s instead' % val)
1666 1666 self._landing_revision = val
1667 1667
1668 1668 @hybrid_property
1669 1669 def locked(self):
1670 1670 if self._locked:
1671 1671 user_id, timelocked, reason = self._locked.split(':')
1672 1672 lock_values = int(user_id), timelocked, reason
1673 1673 else:
1674 1674 lock_values = [None, None, None]
1675 1675 return lock_values
1676 1676
1677 1677 @locked.setter
1678 1678 def locked(self, val):
1679 1679 if val and isinstance(val, (list, tuple)):
1680 1680 self._locked = ':'.join(map(str, val))
1681 1681 else:
1682 1682 self._locked = None
1683 1683
1684 1684 @hybrid_property
1685 1685 def changeset_cache(self):
1686 1686 from rhodecode.lib.vcs.backends.base import EmptyCommit
1687 1687 dummy = EmptyCommit().__json__()
1688 1688 if not self._changeset_cache:
1689 1689 return dummy
1690 1690 try:
1691 1691 return json.loads(self._changeset_cache)
1692 1692 except TypeError:
1693 1693 return dummy
1694 1694 except Exception:
1695 1695 log.error(traceback.format_exc())
1696 1696 return dummy
1697 1697
1698 1698 @changeset_cache.setter
1699 1699 def changeset_cache(self, val):
1700 1700 try:
1701 1701 self._changeset_cache = json.dumps(val)
1702 1702 except Exception:
1703 1703 log.error(traceback.format_exc())
1704 1704
1705 1705 @hybrid_property
1706 1706 def repo_name(self):
1707 1707 return self._repo_name
1708 1708
1709 1709 @repo_name.setter
1710 1710 def repo_name(self, value):
1711 1711 self._repo_name = value
1712 1712 self._repo_name_hash = hashlib.sha1(safe_str(value)).hexdigest()
1713 1713
1714 1714 @classmethod
1715 1715 def normalize_repo_name(cls, repo_name):
1716 1716 """
1717 1717 Normalizes os specific repo_name to the format internally stored inside
1718 1718 database using URL_SEP
1719 1719
1720 1720 :param cls:
1721 1721 :param repo_name:
1722 1722 """
1723 1723 return cls.NAME_SEP.join(repo_name.split(os.sep))
1724 1724
1725 1725 @classmethod
1726 1726 def get_by_repo_name(cls, repo_name, cache=False, identity_cache=False):
1727 1727 session = Session()
1728 1728 q = session.query(cls).filter(cls.repo_name == repo_name)
1729 1729
1730 1730 if cache:
1731 1731 if identity_cache:
1732 1732 val = cls.identity_cache(session, 'repo_name', repo_name)
1733 1733 if val:
1734 1734 return val
1735 1735 else:
1736 1736 cache_key = "get_repo_by_name_%s" % _hash_key(repo_name)
1737 1737 q = q.options(
1738 1738 FromCache("sql_cache_short", cache_key))
1739 1739
1740 1740 return q.scalar()
1741 1741
1742 1742 @classmethod
1743 1743 def get_by_id_or_repo_name(cls, repoid):
1744 1744 if isinstance(repoid, (int, long)):
1745 1745 try:
1746 1746 repo = cls.get(repoid)
1747 1747 except ValueError:
1748 1748 repo = None
1749 1749 else:
1750 1750 repo = cls.get_by_repo_name(repoid)
1751 1751 return repo
1752 1752
1753 1753 @classmethod
1754 1754 def get_by_full_path(cls, repo_full_path):
1755 1755 repo_name = repo_full_path.split(cls.base_path(), 1)[-1]
1756 1756 repo_name = cls.normalize_repo_name(repo_name)
1757 1757 return cls.get_by_repo_name(repo_name.strip(URL_SEP))
1758 1758
1759 1759 @classmethod
1760 1760 def get_repo_forks(cls, repo_id):
1761 1761 return cls.query().filter(Repository.fork_id == repo_id)
1762 1762
1763 1763 @classmethod
1764 1764 def base_path(cls):
1765 1765 """
1766 1766 Returns base path when all repos are stored
1767 1767
1768 1768 :param cls:
1769 1769 """
1770 1770 q = Session().query(RhodeCodeUi)\
1771 1771 .filter(RhodeCodeUi.ui_key == cls.NAME_SEP)
1772 1772 q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
1773 1773 return q.one().ui_value
1774 1774
1775 1775 @classmethod
1776 1776 def get_all_repos(cls, user_id=Optional(None), group_id=Optional(None),
1777 1777 case_insensitive=True):
1778 1778 q = Repository.query()
1779 1779
1780 1780 if not isinstance(user_id, Optional):
1781 1781 q = q.filter(Repository.user_id == user_id)
1782 1782
1783 1783 if not isinstance(group_id, Optional):
1784 1784 q = q.filter(Repository.group_id == group_id)
1785 1785
1786 1786 if case_insensitive:
1787 1787 q = q.order_by(func.lower(Repository.repo_name))
1788 1788 else:
1789 1789 q = q.order_by(Repository.repo_name)
1790 1790 return q.all()
1791 1791
1792 1792 @property
1793 1793 def forks(self):
1794 1794 """
1795 1795 Return forks of this repo
1796 1796 """
1797 1797 return Repository.get_repo_forks(self.repo_id)
1798 1798
1799 1799 @property
1800 1800 def parent(self):
1801 1801 """
1802 1802 Returns fork parent
1803 1803 """
1804 1804 return self.fork
1805 1805
1806 1806 @property
1807 1807 def just_name(self):
1808 1808 return self.repo_name.split(self.NAME_SEP)[-1]
1809 1809
1810 1810 @property
1811 1811 def groups_with_parents(self):
1812 1812 groups = []
1813 1813 if self.group is None:
1814 1814 return groups
1815 1815
1816 1816 cur_gr = self.group
1817 1817 groups.insert(0, cur_gr)
1818 1818 while 1:
1819 1819 gr = getattr(cur_gr, 'parent_group', None)
1820 1820 cur_gr = cur_gr.parent_group
1821 1821 if gr is None:
1822 1822 break
1823 1823 groups.insert(0, gr)
1824 1824
1825 1825 return groups
1826 1826
1827 1827 @property
1828 1828 def groups_and_repo(self):
1829 1829 return self.groups_with_parents, self
1830 1830
1831 1831 @LazyProperty
1832 1832 def repo_path(self):
1833 1833 """
1834 1834 Returns base full path for that repository means where it actually
1835 1835 exists on a filesystem
1836 1836 """
1837 1837 q = Session().query(RhodeCodeUi).filter(
1838 1838 RhodeCodeUi.ui_key == self.NAME_SEP)
1839 1839 q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
1840 1840 return q.one().ui_value
1841 1841
1842 1842 @property
1843 1843 def repo_full_path(self):
1844 1844 p = [self.repo_path]
1845 1845 # we need to split the name by / since this is how we store the
1846 1846 # names in the database, but that eventually needs to be converted
1847 1847 # into a valid system path
1848 1848 p += self.repo_name.split(self.NAME_SEP)
1849 1849 return os.path.join(*map(safe_unicode, p))
1850 1850
1851 1851 @property
1852 1852 def cache_keys(self):
1853 1853 """
1854 1854 Returns associated cache keys for that repo
1855 1855 """
1856 1856 invalidation_namespace = CacheKey.REPO_INVALIDATION_NAMESPACE.format(
1857 1857 repo_id=self.repo_id)
1858 1858 return CacheKey.query()\
1859 1859 .filter(CacheKey.cache_args == invalidation_namespace)\
1860 1860 .order_by(CacheKey.cache_key)\
1861 1861 .all()
1862 1862
1863 1863 @property
1864 1864 def cached_diffs_relative_dir(self):
1865 1865 """
1866 1866 Return a relative to the repository store path of cached diffs
1867 1867 used for safe display for users, who shouldn't know the absolute store
1868 1868 path
1869 1869 """
1870 1870 return os.path.join(
1871 1871 os.path.dirname(self.repo_name),
1872 1872 self.cached_diffs_dir.split(os.path.sep)[-1])
1873 1873
1874 1874 @property
1875 1875 def cached_diffs_dir(self):
1876 1876 path = self.repo_full_path
1877 1877 return os.path.join(
1878 1878 os.path.dirname(path),
1879 1879 '.__shadow_diff_cache_repo_{}'.format(self.repo_id))
1880 1880
1881 1881 def cached_diffs(self):
1882 1882 diff_cache_dir = self.cached_diffs_dir
1883 1883 if os.path.isdir(diff_cache_dir):
1884 1884 return os.listdir(diff_cache_dir)
1885 1885 return []
1886 1886
1887 1887 def shadow_repos(self):
1888 1888 shadow_repos_pattern = '.__shadow_repo_{}'.format(self.repo_id)
1889 1889 return [
1890 1890 x for x in os.listdir(os.path.dirname(self.repo_full_path))
1891 1891 if x.startswith(shadow_repos_pattern)]
1892 1892
1893 1893 def get_new_name(self, repo_name):
1894 1894 """
1895 1895 returns new full repository name based on assigned group and new new
1896 1896
1897 1897 :param group_name:
1898 1898 """
1899 1899 path_prefix = self.group.full_path_splitted if self.group else []
1900 1900 return self.NAME_SEP.join(path_prefix + [repo_name])
1901 1901
1902 1902 @property
1903 1903 def _config(self):
1904 1904 """
1905 1905 Returns db based config object.
1906 1906 """
1907 1907 from rhodecode.lib.utils import make_db_config
1908 1908 return make_db_config(clear_session=False, repo=self)
1909 1909
1910 1910 def permissions(self, with_admins=True, with_owner=True):
1911 1911 """
1912 1912 Permissions for repositories
1913 1913 """
1914 1914 _admin_perm = 'repository.admin'
1915 1915
1916 1916 owner_row = []
1917 1917 if with_owner:
1918 1918 usr = AttributeDict(self.user.get_dict())
1919 1919 usr.owner_row = True
1920 1920 usr.permission = _admin_perm
1921 1921 usr.permission_id = None
1922 1922 owner_row.append(usr)
1923 1923
1924 1924 super_admin_ids = []
1925 1925 super_admin_rows = []
1926 1926 if with_admins:
1927 1927 for usr in User.get_all_super_admins():
1928 1928 super_admin_ids.append(usr.user_id)
1929 1929 # if this admin is also owner, don't double the record
1930 1930 if usr.user_id == owner_row[0].user_id:
1931 1931 owner_row[0].admin_row = True
1932 1932 else:
1933 1933 usr = AttributeDict(usr.get_dict())
1934 1934 usr.admin_row = True
1935 1935 usr.permission = _admin_perm
1936 1936 usr.permission_id = None
1937 1937 super_admin_rows.append(usr)
1938 1938
1939 1939 q = UserRepoToPerm.query().filter(UserRepoToPerm.repository == self)
1940 1940 q = q.options(joinedload(UserRepoToPerm.repository),
1941 1941 joinedload(UserRepoToPerm.user),
1942 1942 joinedload(UserRepoToPerm.permission),)
1943 1943
1944 1944 # get owners and admins and permissions. We do a trick of re-writing
1945 1945 # objects from sqlalchemy to named-tuples due to sqlalchemy session
1946 1946 # has a global reference and changing one object propagates to all
1947 1947 # others. This means if admin is also an owner admin_row that change
1948 1948 # would propagate to both objects
1949 1949 perm_rows = []
1950 1950 for _usr in q.all():
1951 1951 usr = AttributeDict(_usr.user.get_dict())
1952 1952 # if this user is also owner/admin, mark as duplicate record
1953 1953 if usr.user_id == owner_row[0].user_id or usr.user_id in super_admin_ids:
1954 1954 usr.duplicate_perm = True
1955 1955 # also check if this permission is maybe used by branch_permissions
1956 1956 if _usr.branch_perm_entry:
1957 1957 usr.branch_rules = [x.branch_rule_id for x in _usr.branch_perm_entry]
1958 1958
1959 1959 usr.permission = _usr.permission.permission_name
1960 1960 usr.permission_id = _usr.repo_to_perm_id
1961 1961 perm_rows.append(usr)
1962 1962
1963 1963 # filter the perm rows by 'default' first and then sort them by
1964 1964 # admin,write,read,none permissions sorted again alphabetically in
1965 1965 # each group
1966 1966 perm_rows = sorted(perm_rows, key=display_user_sort)
1967 1967
1968 1968 return super_admin_rows + owner_row + perm_rows
1969 1969
1970 1970 def permission_user_groups(self):
1971 1971 q = UserGroupRepoToPerm.query().filter(
1972 1972 UserGroupRepoToPerm.repository == self)
1973 1973 q = q.options(joinedload(UserGroupRepoToPerm.repository),
1974 1974 joinedload(UserGroupRepoToPerm.users_group),
1975 1975 joinedload(UserGroupRepoToPerm.permission),)
1976 1976
1977 1977 perm_rows = []
1978 1978 for _user_group in q.all():
1979 1979 usr = AttributeDict(_user_group.users_group.get_dict())
1980 1980 usr.permission = _user_group.permission.permission_name
1981 1981 perm_rows.append(usr)
1982 1982
1983 1983 perm_rows = sorted(perm_rows, key=display_user_group_sort)
1984 1984 return perm_rows
1985 1985
1986 1986 def get_api_data(self, include_secrets=False):
1987 1987 """
1988 1988 Common function for generating repo api data
1989 1989
1990 1990 :param include_secrets: See :meth:`User.get_api_data`.
1991 1991
1992 1992 """
1993 1993 # TODO: mikhail: Here there is an anti-pattern, we probably need to
1994 1994 # move this methods on models level.
1995 1995 from rhodecode.model.settings import SettingsModel
1996 1996 from rhodecode.model.repo import RepoModel
1997 1997
1998 1998 repo = self
1999 1999 _user_id, _time, _reason = self.locked
2000 2000
2001 2001 data = {
2002 2002 'repo_id': repo.repo_id,
2003 2003 'repo_name': repo.repo_name,
2004 2004 'repo_type': repo.repo_type,
2005 2005 'clone_uri': repo.clone_uri or '',
2006 2006 'push_uri': repo.push_uri or '',
2007 2007 'url': RepoModel().get_url(self),
2008 2008 'private': repo.private,
2009 2009 'created_on': repo.created_on,
2010 2010 'description': repo.description_safe,
2011 2011 'landing_rev': repo.landing_rev,
2012 2012 'owner': repo.user.username,
2013 2013 'fork_of': repo.fork.repo_name if repo.fork else None,
2014 2014 'fork_of_id': repo.fork.repo_id if repo.fork else None,
2015 2015 'enable_statistics': repo.enable_statistics,
2016 2016 'enable_locking': repo.enable_locking,
2017 2017 'enable_downloads': repo.enable_downloads,
2018 2018 'last_changeset': repo.changeset_cache,
2019 2019 'locked_by': User.get(_user_id).get_api_data(
2020 2020 include_secrets=include_secrets) if _user_id else None,
2021 2021 'locked_date': time_to_datetime(_time) if _time else None,
2022 2022 'lock_reason': _reason if _reason else None,
2023 2023 }
2024 2024
2025 2025 # TODO: mikhail: should be per-repo settings here
2026 2026 rc_config = SettingsModel().get_all_settings()
2027 2027 repository_fields = str2bool(
2028 2028 rc_config.get('rhodecode_repository_fields'))
2029 2029 if repository_fields:
2030 2030 for f in self.extra_fields:
2031 2031 data[f.field_key_prefixed] = f.field_value
2032 2032
2033 2033 return data
2034 2034
2035 2035 @classmethod
2036 2036 def lock(cls, repo, user_id, lock_time=None, lock_reason=None):
2037 2037 if not lock_time:
2038 2038 lock_time = time.time()
2039 2039 if not lock_reason:
2040 2040 lock_reason = cls.LOCK_AUTOMATIC
2041 2041 repo.locked = [user_id, lock_time, lock_reason]
2042 2042 Session().add(repo)
2043 2043 Session().commit()
2044 2044
2045 2045 @classmethod
2046 2046 def unlock(cls, repo):
2047 2047 repo.locked = None
2048 2048 Session().add(repo)
2049 2049 Session().commit()
2050 2050
2051 2051 @classmethod
2052 2052 def getlock(cls, repo):
2053 2053 return repo.locked
2054 2054
2055 2055 def is_user_lock(self, user_id):
2056 2056 if self.lock[0]:
2057 2057 lock_user_id = safe_int(self.lock[0])
2058 2058 user_id = safe_int(user_id)
2059 2059 # both are ints, and they are equal
2060 2060 return all([lock_user_id, user_id]) and lock_user_id == user_id
2061 2061
2062 2062 return False
2063 2063
2064 2064 def get_locking_state(self, action, user_id, only_when_enabled=True):
2065 2065 """
2066 2066 Checks locking on this repository, if locking is enabled and lock is
2067 2067 present returns a tuple of make_lock, locked, locked_by.
2068 2068 make_lock can have 3 states None (do nothing) True, make lock
2069 2069 False release lock, This value is later propagated to hooks, which
2070 2070 do the locking. Think about this as signals passed to hooks what to do.
2071 2071
2072 2072 """
2073 2073 # TODO: johbo: This is part of the business logic and should be moved
2074 2074 # into the RepositoryModel.
2075 2075
2076 2076 if action not in ('push', 'pull'):
2077 2077 raise ValueError("Invalid action value: %s" % repr(action))
2078 2078
2079 2079 # defines if locked error should be thrown to user
2080 2080 currently_locked = False
2081 2081 # defines if new lock should be made, tri-state
2082 2082 make_lock = None
2083 2083 repo = self
2084 2084 user = User.get(user_id)
2085 2085
2086 2086 lock_info = repo.locked
2087 2087
2088 2088 if repo and (repo.enable_locking or not only_when_enabled):
2089 2089 if action == 'push':
2090 2090 # check if it's already locked !, if it is compare users
2091 2091 locked_by_user_id = lock_info[0]
2092 2092 if user.user_id == locked_by_user_id:
2093 2093 log.debug(
2094 2094 'Got `push` action from user %s, now unlocking', user)
2095 2095 # unlock if we have push from user who locked
2096 2096 make_lock = False
2097 2097 else:
2098 2098 # we're not the same user who locked, ban with
2099 2099 # code defined in settings (default is 423 HTTP Locked) !
2100 2100 log.debug('Repo %s is currently locked by %s', repo, user)
2101 2101 currently_locked = True
2102 2102 elif action == 'pull':
2103 2103 # [0] user [1] date
2104 2104 if lock_info[0] and lock_info[1]:
2105 2105 log.debug('Repo %s is currently locked by %s', repo, user)
2106 2106 currently_locked = True
2107 2107 else:
2108 2108 log.debug('Setting lock on repo %s by %s', repo, user)
2109 2109 make_lock = True
2110 2110
2111 2111 else:
2112 2112 log.debug('Repository %s do not have locking enabled', repo)
2113 2113
2114 2114 log.debug('FINAL locking values make_lock:%s,locked:%s,locked_by:%s',
2115 2115 make_lock, currently_locked, lock_info)
2116 2116
2117 2117 from rhodecode.lib.auth import HasRepoPermissionAny
2118 2118 perm_check = HasRepoPermissionAny('repository.write', 'repository.admin')
2119 2119 if make_lock and not perm_check(repo_name=repo.repo_name, user=user):
2120 2120 # if we don't have at least write permission we cannot make a lock
2121 2121 log.debug('lock state reset back to FALSE due to lack '
2122 2122 'of at least read permission')
2123 2123 make_lock = False
2124 2124
2125 2125 return make_lock, currently_locked, lock_info
2126 2126
2127 2127 @property
2128 2128 def last_db_change(self):
2129 2129 return self.updated_on
2130 2130
2131 2131 @property
2132 2132 def clone_uri_hidden(self):
2133 2133 clone_uri = self.clone_uri
2134 2134 if clone_uri:
2135 2135 import urlobject
2136 2136 url_obj = urlobject.URLObject(cleaned_uri(clone_uri))
2137 2137 if url_obj.password:
2138 2138 clone_uri = url_obj.with_password('*****')
2139 2139 return clone_uri
2140 2140
2141 2141 @property
2142 2142 def push_uri_hidden(self):
2143 2143 push_uri = self.push_uri
2144 2144 if push_uri:
2145 2145 import urlobject
2146 2146 url_obj = urlobject.URLObject(cleaned_uri(push_uri))
2147 2147 if url_obj.password:
2148 2148 push_uri = url_obj.with_password('*****')
2149 2149 return push_uri
2150 2150
2151 2151 def clone_url(self, **override):
2152 2152 from rhodecode.model.settings import SettingsModel
2153 2153
2154 2154 uri_tmpl = None
2155 2155 if 'with_id' in override:
2156 2156 uri_tmpl = self.DEFAULT_CLONE_URI_ID
2157 2157 del override['with_id']
2158 2158
2159 2159 if 'uri_tmpl' in override:
2160 2160 uri_tmpl = override['uri_tmpl']
2161 2161 del override['uri_tmpl']
2162 2162
2163 2163 ssh = False
2164 2164 if 'ssh' in override:
2165 2165 ssh = True
2166 2166 del override['ssh']
2167 2167
2168 2168 # we didn't override our tmpl from **overrides
2169 2169 if not uri_tmpl:
2170 2170 rc_config = SettingsModel().get_all_settings(cache=True)
2171 2171 if ssh:
2172 2172 uri_tmpl = rc_config.get(
2173 2173 'rhodecode_clone_uri_ssh_tmpl') or self.DEFAULT_CLONE_URI_SSH
2174 2174 else:
2175 2175 uri_tmpl = rc_config.get(
2176 2176 'rhodecode_clone_uri_tmpl') or self.DEFAULT_CLONE_URI
2177 2177
2178 2178 request = get_current_request()
2179 2179 return get_clone_url(request=request,
2180 2180 uri_tmpl=uri_tmpl,
2181 2181 repo_name=self.repo_name,
2182 2182 repo_id=self.repo_id, **override)
2183 2183
2184 2184 def set_state(self, state):
2185 2185 self.repo_state = state
2186 2186 Session().add(self)
2187 2187 #==========================================================================
2188 2188 # SCM PROPERTIES
2189 2189 #==========================================================================
2190 2190
2191 2191 def get_commit(self, commit_id=None, commit_idx=None, pre_load=None):
2192 2192 return get_commit_safe(
2193 2193 self.scm_instance(), commit_id, commit_idx, pre_load=pre_load)
2194 2194
2195 2195 def get_changeset(self, rev=None, pre_load=None):
2196 2196 warnings.warn("Use get_commit", DeprecationWarning)
2197 2197 commit_id = None
2198 2198 commit_idx = None
2199 2199 if isinstance(rev, basestring):
2200 2200 commit_id = rev
2201 2201 else:
2202 2202 commit_idx = rev
2203 2203 return self.get_commit(commit_id=commit_id, commit_idx=commit_idx,
2204 2204 pre_load=pre_load)
2205 2205
2206 2206 def get_landing_commit(self):
2207 2207 """
2208 2208 Returns landing commit, or if that doesn't exist returns the tip
2209 2209 """
2210 2210 _rev_type, _rev = self.landing_rev
2211 2211 commit = self.get_commit(_rev)
2212 2212 if isinstance(commit, EmptyCommit):
2213 2213 return self.get_commit()
2214 2214 return commit
2215 2215
2216 2216 def update_commit_cache(self, cs_cache=None, config=None):
2217 2217 """
2218 2218 Update cache of last changeset for repository, keys should be::
2219 2219
2220 2220 short_id
2221 2221 raw_id
2222 2222 revision
2223 2223 parents
2224 2224 message
2225 2225 date
2226 2226 author
2227 2227
2228 2228 :param cs_cache:
2229 2229 """
2230 2230 from rhodecode.lib.vcs.backends.base import BaseChangeset
2231 2231 if cs_cache is None:
2232 2232 # use no-cache version here
2233 2233 scm_repo = self.scm_instance(cache=False, config=config)
2234 2234
2235 2235 empty = scm_repo.is_empty()
2236 2236 if not empty:
2237 2237 cs_cache = scm_repo.get_commit(
2238 2238 pre_load=["author", "date", "message", "parents"])
2239 2239 else:
2240 2240 cs_cache = EmptyCommit()
2241 2241
2242 2242 if isinstance(cs_cache, BaseChangeset):
2243 2243 cs_cache = cs_cache.__json__()
2244 2244
2245 2245 def is_outdated(new_cs_cache):
2246 2246 if (new_cs_cache['raw_id'] != self.changeset_cache['raw_id'] or
2247 2247 new_cs_cache['revision'] != self.changeset_cache['revision']):
2248 2248 return True
2249 2249 return False
2250 2250
2251 2251 # check if we have maybe already latest cached revision
2252 2252 if is_outdated(cs_cache) or not self.changeset_cache:
2253 2253 _default = datetime.datetime.utcnow()
2254 2254 last_change = cs_cache.get('date') or _default
2255 2255 if self.updated_on and self.updated_on > last_change:
2256 2256 # we check if last update is newer than the new value
2257 2257 # if yes, we use the current timestamp instead. Imagine you get
2258 2258 # old commit pushed 1y ago, we'd set last update 1y to ago.
2259 2259 last_change = _default
2260 2260 log.debug('updated repo %s with new cs cache %s',
2261 2261 self.repo_name, cs_cache)
2262 2262 self.updated_on = last_change
2263 2263 self.changeset_cache = cs_cache
2264 2264 Session().add(self)
2265 2265 Session().commit()
2266 2266 else:
2267 2267 log.debug('Skipping update_commit_cache for repo:`%s` '
2268 2268 'commit already with latest changes', self.repo_name)
2269 2269
2270 2270 @property
2271 2271 def tip(self):
2272 2272 return self.get_commit('tip')
2273 2273
2274 2274 @property
2275 2275 def author(self):
2276 2276 return self.tip.author
2277 2277
2278 2278 @property
2279 2279 def last_change(self):
2280 2280 return self.scm_instance().last_change
2281 2281
2282 2282 def get_comments(self, revisions=None):
2283 2283 """
2284 2284 Returns comments for this repository grouped by revisions
2285 2285
2286 2286 :param revisions: filter query by revisions only
2287 2287 """
2288 2288 cmts = ChangesetComment.query()\
2289 2289 .filter(ChangesetComment.repo == self)
2290 2290 if revisions:
2291 2291 cmts = cmts.filter(ChangesetComment.revision.in_(revisions))
2292 2292 grouped = collections.defaultdict(list)
2293 2293 for cmt in cmts.all():
2294 2294 grouped[cmt.revision].append(cmt)
2295 2295 return grouped
2296 2296
2297 2297 def statuses(self, revisions=None):
2298 2298 """
2299 2299 Returns statuses for this repository
2300 2300
2301 2301 :param revisions: list of revisions to get statuses for
2302 2302 """
2303 2303 statuses = ChangesetStatus.query()\
2304 2304 .filter(ChangesetStatus.repo == self)\
2305 2305 .filter(ChangesetStatus.version == 0)
2306 2306
2307 2307 if revisions:
2308 2308 # Try doing the filtering in chunks to avoid hitting limits
2309 2309 size = 500
2310 2310 status_results = []
2311 2311 for chunk in xrange(0, len(revisions), size):
2312 2312 status_results += statuses.filter(
2313 2313 ChangesetStatus.revision.in_(
2314 2314 revisions[chunk: chunk+size])
2315 2315 ).all()
2316 2316 else:
2317 2317 status_results = statuses.all()
2318 2318
2319 2319 grouped = {}
2320 2320
2321 2321 # maybe we have open new pullrequest without a status?
2322 2322 stat = ChangesetStatus.STATUS_UNDER_REVIEW
2323 2323 status_lbl = ChangesetStatus.get_status_lbl(stat)
2324 2324 for pr in PullRequest.query().filter(PullRequest.source_repo == self).all():
2325 2325 for rev in pr.revisions:
2326 2326 pr_id = pr.pull_request_id
2327 2327 pr_repo = pr.target_repo.repo_name
2328 2328 grouped[rev] = [stat, status_lbl, pr_id, pr_repo]
2329 2329
2330 2330 for stat in status_results:
2331 2331 pr_id = pr_repo = None
2332 2332 if stat.pull_request:
2333 2333 pr_id = stat.pull_request.pull_request_id
2334 2334 pr_repo = stat.pull_request.target_repo.repo_name
2335 2335 grouped[stat.revision] = [str(stat.status), stat.status_lbl,
2336 2336 pr_id, pr_repo]
2337 2337 return grouped
2338 2338
2339 2339 # ==========================================================================
2340 2340 # SCM CACHE INSTANCE
2341 2341 # ==========================================================================
2342 2342
2343 2343 def scm_instance(self, **kwargs):
2344 2344 import rhodecode
2345 2345
2346 2346 # Passing a config will not hit the cache currently only used
2347 2347 # for repo2dbmapper
2348 2348 config = kwargs.pop('config', None)
2349 2349 cache = kwargs.pop('cache', None)
2350 2350 full_cache = str2bool(rhodecode.CONFIG.get('vcs_full_cache'))
2351 2351 # if cache is NOT defined use default global, else we have a full
2352 2352 # control over cache behaviour
2353 2353 if cache is None and full_cache and not config:
2354 2354 return self._get_instance_cached()
2355 2355 return self._get_instance(cache=bool(cache), config=config)
2356 2356
2357 2357 def _get_instance_cached(self):
2358 2358 from rhodecode.lib import rc_cache
2359 2359
2360 2360 cache_namespace_uid = 'cache_repo_instance.{}'.format(self.repo_id)
2361 2361 invalidation_namespace = CacheKey.REPO_INVALIDATION_NAMESPACE.format(
2362 2362 repo_id=self.repo_id)
2363 2363 region = rc_cache.get_or_create_region('cache_repo_longterm', cache_namespace_uid)
2364 2364
2365 2365 @region.conditional_cache_on_arguments(namespace=cache_namespace_uid)
2366 2366 def get_instance_cached(repo_id, context_id):
2367 2367 return self._get_instance()
2368 2368
2369 2369 # we must use thread scoped cache here,
2370 2370 # because each thread of gevent needs it's own not shared connection and cache
2371 2371 # we also alter `args` so the cache key is individual for every green thread.
2372 2372 inv_context_manager = rc_cache.InvalidationContext(
2373 2373 uid=cache_namespace_uid, invalidation_namespace=invalidation_namespace,
2374 2374 thread_scoped=True)
2375 2375 with inv_context_manager as invalidation_context:
2376 2376 args = (self.repo_id, inv_context_manager.cache_key)
2377 2377 # re-compute and store cache if we get invalidate signal
2378 2378 if invalidation_context.should_invalidate():
2379 2379 instance = get_instance_cached.refresh(*args)
2380 2380 else:
2381 2381 instance = get_instance_cached(*args)
2382 2382
2383 2383 log.debug(
2384 2384 'Repo instance fetched in %.3fs', inv_context_manager.compute_time)
2385 2385 return instance
2386 2386
2387 2387 def _get_instance(self, cache=True, config=None):
2388 2388 config = config or self._config
2389 2389 custom_wire = {
2390 2390 'cache': cache # controls the vcs.remote cache
2391 2391 }
2392 2392 repo = get_vcs_instance(
2393 2393 repo_path=safe_str(self.repo_full_path),
2394 2394 config=config,
2395 2395 with_wire=custom_wire,
2396 2396 create=False,
2397 2397 _vcs_alias=self.repo_type)
2398 2398
2399 2399 return repo
2400 2400
2401 2401 def __json__(self):
2402 2402 return {'landing_rev': self.landing_rev}
2403 2403
2404 2404 def get_dict(self):
2405 2405
2406 2406 # Since we transformed `repo_name` to a hybrid property, we need to
2407 2407 # keep compatibility with the code which uses `repo_name` field.
2408 2408
2409 2409 result = super(Repository, self).get_dict()
2410 2410 result['repo_name'] = result.pop('_repo_name', None)
2411 2411 return result
2412 2412
2413 2413
2414 2414 class RepoGroup(Base, BaseModel):
2415 2415 __tablename__ = 'groups'
2416 2416 __table_args__ = (
2417 2417 UniqueConstraint('group_name', 'group_parent_id'),
2418 2418 CheckConstraint('group_id != group_parent_id'),
2419 2419 base_table_args,
2420 2420 )
2421 2421 __mapper_args__ = {'order_by': 'group_name'}
2422 2422
2423 2423 CHOICES_SEPARATOR = '/' # used to generate select2 choices for nested groups
2424 2424
2425 2425 group_id = Column("group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
2426 2426 group_name = Column("group_name", String(255), nullable=False, unique=True, default=None)
2427 2427 group_parent_id = Column("group_parent_id", Integer(), ForeignKey('groups.group_id'), nullable=True, unique=None, default=None)
2428 2428 group_description = Column("group_description", String(10000), nullable=True, unique=None, default=None)
2429 2429 enable_locking = Column("enable_locking", Boolean(), nullable=False, unique=None, default=False)
2430 2430 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=False, default=None)
2431 2431 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
2432 2432 updated_on = Column('updated_on', DateTime(timezone=False), nullable=True, unique=None, default=datetime.datetime.now)
2433 2433 personal = Column('personal', Boolean(), nullable=True, unique=None, default=None)
2434 2434
2435 2435 repo_group_to_perm = relationship('UserRepoGroupToPerm', cascade='all', order_by='UserRepoGroupToPerm.group_to_perm_id')
2436 2436 users_group_to_perm = relationship('UserGroupRepoGroupToPerm', cascade='all')
2437 2437 parent_group = relationship('RepoGroup', remote_side=group_id)
2438 2438 user = relationship('User')
2439 2439 integrations = relationship('Integration',
2440 2440 cascade="all, delete, delete-orphan")
2441 2441
2442 2442 def __init__(self, group_name='', parent_group=None):
2443 2443 self.group_name = group_name
2444 2444 self.parent_group = parent_group
2445 2445
2446 2446 def __unicode__(self):
2447 2447 return u"<%s('id:%s:%s')>" % (
2448 2448 self.__class__.__name__, self.group_id, self.group_name)
2449 2449
2450 2450 @hybrid_property
2451 2451 def description_safe(self):
2452 2452 from rhodecode.lib import helpers as h
2453 2453 return h.escape(self.group_description)
2454 2454
2455 2455 @classmethod
2456 2456 def _generate_choice(cls, repo_group):
2457 2457 from webhelpers.html import literal as _literal
2458 2458 _name = lambda k: _literal(cls.CHOICES_SEPARATOR.join(k))
2459 2459 return repo_group.group_id, _name(repo_group.full_path_splitted)
2460 2460
2461 2461 @classmethod
2462 2462 def groups_choices(cls, groups=None, show_empty_group=True):
2463 2463 if not groups:
2464 2464 groups = cls.query().all()
2465 2465
2466 2466 repo_groups = []
2467 2467 if show_empty_group:
2468 2468 repo_groups = [(-1, u'-- %s --' % _('No parent'))]
2469 2469
2470 2470 repo_groups.extend([cls._generate_choice(x) for x in groups])
2471 2471
2472 2472 repo_groups = sorted(
2473 2473 repo_groups, key=lambda t: t[1].split(cls.CHOICES_SEPARATOR)[0])
2474 2474 return repo_groups
2475 2475
2476 2476 @classmethod
2477 2477 def url_sep(cls):
2478 2478 return URL_SEP
2479 2479
2480 2480 @classmethod
2481 2481 def get_by_group_name(cls, group_name, cache=False, case_insensitive=False):
2482 2482 if case_insensitive:
2483 2483 gr = cls.query().filter(func.lower(cls.group_name)
2484 2484 == func.lower(group_name))
2485 2485 else:
2486 2486 gr = cls.query().filter(cls.group_name == group_name)
2487 2487 if cache:
2488 2488 name_key = _hash_key(group_name)
2489 2489 gr = gr.options(
2490 2490 FromCache("sql_cache_short", "get_group_%s" % name_key))
2491 2491 return gr.scalar()
2492 2492
2493 2493 @classmethod
2494 2494 def get_user_personal_repo_group(cls, user_id):
2495 2495 user = User.get(user_id)
2496 2496 if user.username == User.DEFAULT_USER:
2497 2497 return None
2498 2498
2499 2499 return cls.query()\
2500 2500 .filter(cls.personal == true()) \
2501 .filter(cls.user == user).scalar()
2501 .filter(cls.user == user) \
2502 .order_by(cls.group_id.asc()) \
2503 .first()
2502 2504
2503 2505 @classmethod
2504 2506 def get_all_repo_groups(cls, user_id=Optional(None), group_id=Optional(None),
2505 2507 case_insensitive=True):
2506 2508 q = RepoGroup.query()
2507 2509
2508 2510 if not isinstance(user_id, Optional):
2509 2511 q = q.filter(RepoGroup.user_id == user_id)
2510 2512
2511 2513 if not isinstance(group_id, Optional):
2512 2514 q = q.filter(RepoGroup.group_parent_id == group_id)
2513 2515
2514 2516 if case_insensitive:
2515 2517 q = q.order_by(func.lower(RepoGroup.group_name))
2516 2518 else:
2517 2519 q = q.order_by(RepoGroup.group_name)
2518 2520 return q.all()
2519 2521
2520 2522 @property
2521 2523 def parents(self):
2522 2524 parents_recursion_limit = 10
2523 2525 groups = []
2524 2526 if self.parent_group is None:
2525 2527 return groups
2526 2528 cur_gr = self.parent_group
2527 2529 groups.insert(0, cur_gr)
2528 2530 cnt = 0
2529 2531 while 1:
2530 2532 cnt += 1
2531 2533 gr = getattr(cur_gr, 'parent_group', None)
2532 2534 cur_gr = cur_gr.parent_group
2533 2535 if gr is None:
2534 2536 break
2535 2537 if cnt == parents_recursion_limit:
2536 2538 # this will prevent accidental infinit loops
2537 2539 log.error(('more than %s parents found for group %s, stopping '
2538 2540 'recursive parent fetching' % (parents_recursion_limit, self)))
2539 2541 break
2540 2542
2541 2543 groups.insert(0, gr)
2542 2544 return groups
2543 2545
2544 2546 @property
2545 2547 def last_db_change(self):
2546 2548 return self.updated_on
2547 2549
2548 2550 @property
2549 2551 def children(self):
2550 2552 return RepoGroup.query().filter(RepoGroup.parent_group == self)
2551 2553
2552 2554 @property
2553 2555 def name(self):
2554 2556 return self.group_name.split(RepoGroup.url_sep())[-1]
2555 2557
2556 2558 @property
2557 2559 def full_path(self):
2558 2560 return self.group_name
2559 2561
2560 2562 @property
2561 2563 def full_path_splitted(self):
2562 2564 return self.group_name.split(RepoGroup.url_sep())
2563 2565
2564 2566 @property
2565 2567 def repositories(self):
2566 2568 return Repository.query()\
2567 2569 .filter(Repository.group == self)\
2568 2570 .order_by(Repository.repo_name)
2569 2571
2570 2572 @property
2571 2573 def repositories_recursive_count(self):
2572 2574 cnt = self.repositories.count()
2573 2575
2574 2576 def children_count(group):
2575 2577 cnt = 0
2576 2578 for child in group.children:
2577 2579 cnt += child.repositories.count()
2578 2580 cnt += children_count(child)
2579 2581 return cnt
2580 2582
2581 2583 return cnt + children_count(self)
2582 2584
2583 2585 def _recursive_objects(self, include_repos=True):
2584 2586 all_ = []
2585 2587
2586 2588 def _get_members(root_gr):
2587 2589 if include_repos:
2588 2590 for r in root_gr.repositories:
2589 2591 all_.append(r)
2590 2592 childs = root_gr.children.all()
2591 2593 if childs:
2592 2594 for gr in childs:
2593 2595 all_.append(gr)
2594 2596 _get_members(gr)
2595 2597
2596 2598 _get_members(self)
2597 2599 return [self] + all_
2598 2600
2599 2601 def recursive_groups_and_repos(self):
2600 2602 """
2601 2603 Recursive return all groups, with repositories in those groups
2602 2604 """
2603 2605 return self._recursive_objects()
2604 2606
2605 2607 def recursive_groups(self):
2606 2608 """
2607 2609 Returns all children groups for this group including children of children
2608 2610 """
2609 2611 return self._recursive_objects(include_repos=False)
2610 2612
2611 2613 def get_new_name(self, group_name):
2612 2614 """
2613 2615 returns new full group name based on parent and new name
2614 2616
2615 2617 :param group_name:
2616 2618 """
2617 2619 path_prefix = (self.parent_group.full_path_splitted if
2618 2620 self.parent_group else [])
2619 2621 return RepoGroup.url_sep().join(path_prefix + [group_name])
2620 2622
2621 2623 def permissions(self, with_admins=True, with_owner=True):
2622 2624 """
2623 2625 Permissions for repository groups
2624 2626 """
2625 2627 _admin_perm = 'group.admin'
2626 2628
2627 2629 owner_row = []
2628 2630 if with_owner:
2629 2631 usr = AttributeDict(self.user.get_dict())
2630 2632 usr.owner_row = True
2631 2633 usr.permission = _admin_perm
2632 2634 owner_row.append(usr)
2633 2635
2634 2636 super_admin_ids = []
2635 2637 super_admin_rows = []
2636 2638 if with_admins:
2637 2639 for usr in User.get_all_super_admins():
2638 2640 super_admin_ids.append(usr.user_id)
2639 2641 # if this admin is also owner, don't double the record
2640 2642 if usr.user_id == owner_row[0].user_id:
2641 2643 owner_row[0].admin_row = True
2642 2644 else:
2643 2645 usr = AttributeDict(usr.get_dict())
2644 2646 usr.admin_row = True
2645 2647 usr.permission = _admin_perm
2646 2648 super_admin_rows.append(usr)
2647 2649
2648 2650 q = UserRepoGroupToPerm.query().filter(UserRepoGroupToPerm.group == self)
2649 2651 q = q.options(joinedload(UserRepoGroupToPerm.group),
2650 2652 joinedload(UserRepoGroupToPerm.user),
2651 2653 joinedload(UserRepoGroupToPerm.permission),)
2652 2654
2653 2655 # get owners and admins and permissions. We do a trick of re-writing
2654 2656 # objects from sqlalchemy to named-tuples due to sqlalchemy session
2655 2657 # has a global reference and changing one object propagates to all
2656 2658 # others. This means if admin is also an owner admin_row that change
2657 2659 # would propagate to both objects
2658 2660 perm_rows = []
2659 2661 for _usr in q.all():
2660 2662 usr = AttributeDict(_usr.user.get_dict())
2661 2663 # if this user is also owner/admin, mark as duplicate record
2662 2664 if usr.user_id == owner_row[0].user_id or usr.user_id in super_admin_ids:
2663 2665 usr.duplicate_perm = True
2664 2666 usr.permission = _usr.permission.permission_name
2665 2667 perm_rows.append(usr)
2666 2668
2667 2669 # filter the perm rows by 'default' first and then sort them by
2668 2670 # admin,write,read,none permissions sorted again alphabetically in
2669 2671 # each group
2670 2672 perm_rows = sorted(perm_rows, key=display_user_sort)
2671 2673
2672 2674 return super_admin_rows + owner_row + perm_rows
2673 2675
2674 2676 def permission_user_groups(self):
2675 2677 q = UserGroupRepoGroupToPerm.query().filter(
2676 2678 UserGroupRepoGroupToPerm.group == self)
2677 2679 q = q.options(joinedload(UserGroupRepoGroupToPerm.group),
2678 2680 joinedload(UserGroupRepoGroupToPerm.users_group),
2679 2681 joinedload(UserGroupRepoGroupToPerm.permission),)
2680 2682
2681 2683 perm_rows = []
2682 2684 for _user_group in q.all():
2683 2685 usr = AttributeDict(_user_group.users_group.get_dict())
2684 2686 usr.permission = _user_group.permission.permission_name
2685 2687 perm_rows.append(usr)
2686 2688
2687 2689 perm_rows = sorted(perm_rows, key=display_user_group_sort)
2688 2690 return perm_rows
2689 2691
2690 2692 def get_api_data(self):
2691 2693 """
2692 2694 Common function for generating api data
2693 2695
2694 2696 """
2695 2697 group = self
2696 2698 data = {
2697 2699 'group_id': group.group_id,
2698 2700 'group_name': group.group_name,
2699 2701 'group_description': group.description_safe,
2700 2702 'parent_group': group.parent_group.group_name if group.parent_group else None,
2701 2703 'repositories': [x.repo_name for x in group.repositories],
2702 2704 'owner': group.user.username,
2703 2705 }
2704 2706 return data
2705 2707
2706 2708
2707 2709 class Permission(Base, BaseModel):
2708 2710 __tablename__ = 'permissions'
2709 2711 __table_args__ = (
2710 2712 Index('p_perm_name_idx', 'permission_name'),
2711 2713 base_table_args,
2712 2714 )
2713 2715
2714 2716 PERMS = [
2715 2717 ('hg.admin', _('RhodeCode Super Administrator')),
2716 2718
2717 2719 ('repository.none', _('Repository no access')),
2718 2720 ('repository.read', _('Repository read access')),
2719 2721 ('repository.write', _('Repository write access')),
2720 2722 ('repository.admin', _('Repository admin access')),
2721 2723
2722 2724 ('group.none', _('Repository group no access')),
2723 2725 ('group.read', _('Repository group read access')),
2724 2726 ('group.write', _('Repository group write access')),
2725 2727 ('group.admin', _('Repository group admin access')),
2726 2728
2727 2729 ('usergroup.none', _('User group no access')),
2728 2730 ('usergroup.read', _('User group read access')),
2729 2731 ('usergroup.write', _('User group write access')),
2730 2732 ('usergroup.admin', _('User group admin access')),
2731 2733
2732 2734 ('branch.none', _('Branch no permissions')),
2733 2735 ('branch.merge', _('Branch access by web merge')),
2734 2736 ('branch.push', _('Branch access by push')),
2735 2737 ('branch.push_force', _('Branch access by push with force')),
2736 2738
2737 2739 ('hg.repogroup.create.false', _('Repository Group creation disabled')),
2738 2740 ('hg.repogroup.create.true', _('Repository Group creation enabled')),
2739 2741
2740 2742 ('hg.usergroup.create.false', _('User Group creation disabled')),
2741 2743 ('hg.usergroup.create.true', _('User Group creation enabled')),
2742 2744
2743 2745 ('hg.create.none', _('Repository creation disabled')),
2744 2746 ('hg.create.repository', _('Repository creation enabled')),
2745 2747 ('hg.create.write_on_repogroup.true', _('Repository creation enabled with write permission to a repository group')),
2746 2748 ('hg.create.write_on_repogroup.false', _('Repository creation disabled with write permission to a repository group')),
2747 2749
2748 2750 ('hg.fork.none', _('Repository forking disabled')),
2749 2751 ('hg.fork.repository', _('Repository forking enabled')),
2750 2752
2751 2753 ('hg.register.none', _('Registration disabled')),
2752 2754 ('hg.register.manual_activate', _('User Registration with manual account activation')),
2753 2755 ('hg.register.auto_activate', _('User Registration with automatic account activation')),
2754 2756
2755 2757 ('hg.password_reset.enabled', _('Password reset enabled')),
2756 2758 ('hg.password_reset.hidden', _('Password reset hidden')),
2757 2759 ('hg.password_reset.disabled', _('Password reset disabled')),
2758 2760
2759 2761 ('hg.extern_activate.manual', _('Manual activation of external account')),
2760 2762 ('hg.extern_activate.auto', _('Automatic activation of external account')),
2761 2763
2762 2764 ('hg.inherit_default_perms.false', _('Inherit object permissions from default user disabled')),
2763 2765 ('hg.inherit_default_perms.true', _('Inherit object permissions from default user enabled')),
2764 2766 ]
2765 2767
2766 2768 # definition of system default permissions for DEFAULT user, created on
2767 2769 # system setup
2768 2770 DEFAULT_USER_PERMISSIONS = [
2769 2771 # object perms
2770 2772 'repository.read',
2771 2773 'group.read',
2772 2774 'usergroup.read',
2773 2775 # branch, for backward compat we need same value as before so forced pushed
2774 2776 'branch.push_force',
2775 2777 # global
2776 2778 'hg.create.repository',
2777 2779 'hg.repogroup.create.false',
2778 2780 'hg.usergroup.create.false',
2779 2781 'hg.create.write_on_repogroup.true',
2780 2782 'hg.fork.repository',
2781 2783 'hg.register.manual_activate',
2782 2784 'hg.password_reset.enabled',
2783 2785 'hg.extern_activate.auto',
2784 2786 'hg.inherit_default_perms.true',
2785 2787 ]
2786 2788
2787 2789 # defines which permissions are more important higher the more important
2788 2790 # Weight defines which permissions are more important.
2789 2791 # The higher number the more important.
2790 2792 PERM_WEIGHTS = {
2791 2793 'repository.none': 0,
2792 2794 'repository.read': 1,
2793 2795 'repository.write': 3,
2794 2796 'repository.admin': 4,
2795 2797
2796 2798 'group.none': 0,
2797 2799 'group.read': 1,
2798 2800 'group.write': 3,
2799 2801 'group.admin': 4,
2800 2802
2801 2803 'usergroup.none': 0,
2802 2804 'usergroup.read': 1,
2803 2805 'usergroup.write': 3,
2804 2806 'usergroup.admin': 4,
2805 2807
2806 2808 'branch.none': 0,
2807 2809 'branch.merge': 1,
2808 2810 'branch.push': 3,
2809 2811 'branch.push_force': 4,
2810 2812
2811 2813 'hg.repogroup.create.false': 0,
2812 2814 'hg.repogroup.create.true': 1,
2813 2815
2814 2816 'hg.usergroup.create.false': 0,
2815 2817 'hg.usergroup.create.true': 1,
2816 2818
2817 2819 'hg.fork.none': 0,
2818 2820 'hg.fork.repository': 1,
2819 2821 'hg.create.none': 0,
2820 2822 'hg.create.repository': 1
2821 2823 }
2822 2824
2823 2825 permission_id = Column("permission_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
2824 2826 permission_name = Column("permission_name", String(255), nullable=True, unique=None, default=None)
2825 2827 permission_longname = Column("permission_longname", String(255), nullable=True, unique=None, default=None)
2826 2828
2827 2829 def __unicode__(self):
2828 2830 return u"<%s('%s:%s')>" % (
2829 2831 self.__class__.__name__, self.permission_id, self.permission_name
2830 2832 )
2831 2833
2832 2834 @classmethod
2833 2835 def get_by_key(cls, key):
2834 2836 return cls.query().filter(cls.permission_name == key).scalar()
2835 2837
2836 2838 @classmethod
2837 2839 def get_default_repo_perms(cls, user_id, repo_id=None):
2838 2840 q = Session().query(UserRepoToPerm, Repository, Permission)\
2839 2841 .join((Permission, UserRepoToPerm.permission_id == Permission.permission_id))\
2840 2842 .join((Repository, UserRepoToPerm.repository_id == Repository.repo_id))\
2841 2843 .filter(UserRepoToPerm.user_id == user_id)
2842 2844 if repo_id:
2843 2845 q = q.filter(UserRepoToPerm.repository_id == repo_id)
2844 2846 return q.all()
2845 2847
2846 2848 @classmethod
2847 2849 def get_default_repo_branch_perms(cls, user_id, repo_id=None):
2848 2850 q = Session().query(UserToRepoBranchPermission, UserRepoToPerm, Permission) \
2849 2851 .join(
2850 2852 Permission,
2851 2853 UserToRepoBranchPermission.permission_id == Permission.permission_id) \
2852 2854 .join(
2853 2855 UserRepoToPerm,
2854 2856 UserToRepoBranchPermission.rule_to_perm_id == UserRepoToPerm.repo_to_perm_id) \
2855 2857 .filter(UserRepoToPerm.user_id == user_id)
2856 2858
2857 2859 if repo_id:
2858 2860 q = q.filter(UserToRepoBranchPermission.repository_id == repo_id)
2859 2861 return q.order_by(UserToRepoBranchPermission.rule_order).all()
2860 2862
2861 2863 @classmethod
2862 2864 def get_default_repo_perms_from_user_group(cls, user_id, repo_id=None):
2863 2865 q = Session().query(UserGroupRepoToPerm, Repository, Permission)\
2864 2866 .join(
2865 2867 Permission,
2866 2868 UserGroupRepoToPerm.permission_id == Permission.permission_id)\
2867 2869 .join(
2868 2870 Repository,
2869 2871 UserGroupRepoToPerm.repository_id == Repository.repo_id)\
2870 2872 .join(
2871 2873 UserGroup,
2872 2874 UserGroupRepoToPerm.users_group_id ==
2873 2875 UserGroup.users_group_id)\
2874 2876 .join(
2875 2877 UserGroupMember,
2876 2878 UserGroupRepoToPerm.users_group_id ==
2877 2879 UserGroupMember.users_group_id)\
2878 2880 .filter(
2879 2881 UserGroupMember.user_id == user_id,
2880 2882 UserGroup.users_group_active == true())
2881 2883 if repo_id:
2882 2884 q = q.filter(UserGroupRepoToPerm.repository_id == repo_id)
2883 2885 return q.all()
2884 2886
2885 2887 @classmethod
2886 2888 def get_default_repo_branch_perms_from_user_group(cls, user_id, repo_id=None):
2887 2889 q = Session().query(UserGroupToRepoBranchPermission, UserGroupRepoToPerm, Permission) \
2888 2890 .join(
2889 2891 Permission,
2890 2892 UserGroupToRepoBranchPermission.permission_id == Permission.permission_id) \
2891 2893 .join(
2892 2894 UserGroupRepoToPerm,
2893 2895 UserGroupToRepoBranchPermission.rule_to_perm_id == UserGroupRepoToPerm.users_group_to_perm_id) \
2894 2896 .join(
2895 2897 UserGroup,
2896 2898 UserGroupRepoToPerm.users_group_id == UserGroup.users_group_id) \
2897 2899 .join(
2898 2900 UserGroupMember,
2899 2901 UserGroupRepoToPerm.users_group_id == UserGroupMember.users_group_id) \
2900 2902 .filter(
2901 2903 UserGroupMember.user_id == user_id,
2902 2904 UserGroup.users_group_active == true())
2903 2905
2904 2906 if repo_id:
2905 2907 q = q.filter(UserGroupToRepoBranchPermission.repository_id == repo_id)
2906 2908 return q.order_by(UserGroupToRepoBranchPermission.rule_order).all()
2907 2909
2908 2910 @classmethod
2909 2911 def get_default_group_perms(cls, user_id, repo_group_id=None):
2910 2912 q = Session().query(UserRepoGroupToPerm, RepoGroup, Permission)\
2911 2913 .join(
2912 2914 Permission,
2913 2915 UserRepoGroupToPerm.permission_id == Permission.permission_id)\
2914 2916 .join(
2915 2917 RepoGroup,
2916 2918 UserRepoGroupToPerm.group_id == RepoGroup.group_id)\
2917 2919 .filter(UserRepoGroupToPerm.user_id == user_id)
2918 2920 if repo_group_id:
2919 2921 q = q.filter(UserRepoGroupToPerm.group_id == repo_group_id)
2920 2922 return q.all()
2921 2923
2922 2924 @classmethod
2923 2925 def get_default_group_perms_from_user_group(
2924 2926 cls, user_id, repo_group_id=None):
2925 2927 q = Session().query(UserGroupRepoGroupToPerm, RepoGroup, Permission)\
2926 2928 .join(
2927 2929 Permission,
2928 2930 UserGroupRepoGroupToPerm.permission_id ==
2929 2931 Permission.permission_id)\
2930 2932 .join(
2931 2933 RepoGroup,
2932 2934 UserGroupRepoGroupToPerm.group_id == RepoGroup.group_id)\
2933 2935 .join(
2934 2936 UserGroup,
2935 2937 UserGroupRepoGroupToPerm.users_group_id ==
2936 2938 UserGroup.users_group_id)\
2937 2939 .join(
2938 2940 UserGroupMember,
2939 2941 UserGroupRepoGroupToPerm.users_group_id ==
2940 2942 UserGroupMember.users_group_id)\
2941 2943 .filter(
2942 2944 UserGroupMember.user_id == user_id,
2943 2945 UserGroup.users_group_active == true())
2944 2946 if repo_group_id:
2945 2947 q = q.filter(UserGroupRepoGroupToPerm.group_id == repo_group_id)
2946 2948 return q.all()
2947 2949
2948 2950 @classmethod
2949 2951 def get_default_user_group_perms(cls, user_id, user_group_id=None):
2950 2952 q = Session().query(UserUserGroupToPerm, UserGroup, Permission)\
2951 2953 .join((Permission, UserUserGroupToPerm.permission_id == Permission.permission_id))\
2952 2954 .join((UserGroup, UserUserGroupToPerm.user_group_id == UserGroup.users_group_id))\
2953 2955 .filter(UserUserGroupToPerm.user_id == user_id)
2954 2956 if user_group_id:
2955 2957 q = q.filter(UserUserGroupToPerm.user_group_id == user_group_id)
2956 2958 return q.all()
2957 2959
2958 2960 @classmethod
2959 2961 def get_default_user_group_perms_from_user_group(
2960 2962 cls, user_id, user_group_id=None):
2961 2963 TargetUserGroup = aliased(UserGroup, name='target_user_group')
2962 2964 q = Session().query(UserGroupUserGroupToPerm, UserGroup, Permission)\
2963 2965 .join(
2964 2966 Permission,
2965 2967 UserGroupUserGroupToPerm.permission_id ==
2966 2968 Permission.permission_id)\
2967 2969 .join(
2968 2970 TargetUserGroup,
2969 2971 UserGroupUserGroupToPerm.target_user_group_id ==
2970 2972 TargetUserGroup.users_group_id)\
2971 2973 .join(
2972 2974 UserGroup,
2973 2975 UserGroupUserGroupToPerm.user_group_id ==
2974 2976 UserGroup.users_group_id)\
2975 2977 .join(
2976 2978 UserGroupMember,
2977 2979 UserGroupUserGroupToPerm.user_group_id ==
2978 2980 UserGroupMember.users_group_id)\
2979 2981 .filter(
2980 2982 UserGroupMember.user_id == user_id,
2981 2983 UserGroup.users_group_active == true())
2982 2984 if user_group_id:
2983 2985 q = q.filter(
2984 2986 UserGroupUserGroupToPerm.user_group_id == user_group_id)
2985 2987
2986 2988 return q.all()
2987 2989
2988 2990
2989 2991 class UserRepoToPerm(Base, BaseModel):
2990 2992 __tablename__ = 'repo_to_perm'
2991 2993 __table_args__ = (
2992 2994 UniqueConstraint('user_id', 'repository_id', 'permission_id'),
2993 2995 base_table_args
2994 2996 )
2995 2997
2996 2998 repo_to_perm_id = Column("repo_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
2997 2999 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
2998 3000 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
2999 3001 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
3000 3002
3001 3003 user = relationship('User')
3002 3004 repository = relationship('Repository')
3003 3005 permission = relationship('Permission')
3004 3006
3005 3007 branch_perm_entry = relationship('UserToRepoBranchPermission', cascade="all, delete, delete-orphan", lazy='joined')
3006 3008
3007 3009 @classmethod
3008 3010 def create(cls, user, repository, permission):
3009 3011 n = cls()
3010 3012 n.user = user
3011 3013 n.repository = repository
3012 3014 n.permission = permission
3013 3015 Session().add(n)
3014 3016 return n
3015 3017
3016 3018 def __unicode__(self):
3017 3019 return u'<%s => %s >' % (self.user, self.repository)
3018 3020
3019 3021
3020 3022 class UserUserGroupToPerm(Base, BaseModel):
3021 3023 __tablename__ = 'user_user_group_to_perm'
3022 3024 __table_args__ = (
3023 3025 UniqueConstraint('user_id', 'user_group_id', 'permission_id'),
3024 3026 base_table_args
3025 3027 )
3026 3028
3027 3029 user_user_group_to_perm_id = Column("user_user_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3028 3030 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3029 3031 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3030 3032 user_group_id = Column("user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3031 3033
3032 3034 user = relationship('User')
3033 3035 user_group = relationship('UserGroup')
3034 3036 permission = relationship('Permission')
3035 3037
3036 3038 @classmethod
3037 3039 def create(cls, user, user_group, permission):
3038 3040 n = cls()
3039 3041 n.user = user
3040 3042 n.user_group = user_group
3041 3043 n.permission = permission
3042 3044 Session().add(n)
3043 3045 return n
3044 3046
3045 3047 def __unicode__(self):
3046 3048 return u'<%s => %s >' % (self.user, self.user_group)
3047 3049
3048 3050
3049 3051 class UserToPerm(Base, BaseModel):
3050 3052 __tablename__ = 'user_to_perm'
3051 3053 __table_args__ = (
3052 3054 UniqueConstraint('user_id', 'permission_id'),
3053 3055 base_table_args
3054 3056 )
3055 3057
3056 3058 user_to_perm_id = Column("user_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3057 3059 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3058 3060 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3059 3061
3060 3062 user = relationship('User')
3061 3063 permission = relationship('Permission', lazy='joined')
3062 3064
3063 3065 def __unicode__(self):
3064 3066 return u'<%s => %s >' % (self.user, self.permission)
3065 3067
3066 3068
3067 3069 class UserGroupRepoToPerm(Base, BaseModel):
3068 3070 __tablename__ = 'users_group_repo_to_perm'
3069 3071 __table_args__ = (
3070 3072 UniqueConstraint('repository_id', 'users_group_id', 'permission_id'),
3071 3073 base_table_args
3072 3074 )
3073 3075
3074 3076 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3075 3077 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3076 3078 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3077 3079 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
3078 3080
3079 3081 users_group = relationship('UserGroup')
3080 3082 permission = relationship('Permission')
3081 3083 repository = relationship('Repository')
3082 3084 user_group_branch_perms = relationship('UserGroupToRepoBranchPermission', cascade='all')
3083 3085
3084 3086 @classmethod
3085 3087 def create(cls, users_group, repository, permission):
3086 3088 n = cls()
3087 3089 n.users_group = users_group
3088 3090 n.repository = repository
3089 3091 n.permission = permission
3090 3092 Session().add(n)
3091 3093 return n
3092 3094
3093 3095 def __unicode__(self):
3094 3096 return u'<UserGroupRepoToPerm:%s => %s >' % (self.users_group, self.repository)
3095 3097
3096 3098
3097 3099 class UserGroupUserGroupToPerm(Base, BaseModel):
3098 3100 __tablename__ = 'user_group_user_group_to_perm'
3099 3101 __table_args__ = (
3100 3102 UniqueConstraint('target_user_group_id', 'user_group_id', 'permission_id'),
3101 3103 CheckConstraint('target_user_group_id != user_group_id'),
3102 3104 base_table_args
3103 3105 )
3104 3106
3105 3107 user_group_user_group_to_perm_id = Column("user_group_user_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3106 3108 target_user_group_id = Column("target_user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3107 3109 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3108 3110 user_group_id = Column("user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3109 3111
3110 3112 target_user_group = relationship('UserGroup', primaryjoin='UserGroupUserGroupToPerm.target_user_group_id==UserGroup.users_group_id')
3111 3113 user_group = relationship('UserGroup', primaryjoin='UserGroupUserGroupToPerm.user_group_id==UserGroup.users_group_id')
3112 3114 permission = relationship('Permission')
3113 3115
3114 3116 @classmethod
3115 3117 def create(cls, target_user_group, user_group, permission):
3116 3118 n = cls()
3117 3119 n.target_user_group = target_user_group
3118 3120 n.user_group = user_group
3119 3121 n.permission = permission
3120 3122 Session().add(n)
3121 3123 return n
3122 3124
3123 3125 def __unicode__(self):
3124 3126 return u'<UserGroupUserGroup:%s => %s >' % (self.target_user_group, self.user_group)
3125 3127
3126 3128
3127 3129 class UserGroupToPerm(Base, BaseModel):
3128 3130 __tablename__ = 'users_group_to_perm'
3129 3131 __table_args__ = (
3130 3132 UniqueConstraint('users_group_id', 'permission_id',),
3131 3133 base_table_args
3132 3134 )
3133 3135
3134 3136 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3135 3137 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3136 3138 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3137 3139
3138 3140 users_group = relationship('UserGroup')
3139 3141 permission = relationship('Permission')
3140 3142
3141 3143
3142 3144 class UserRepoGroupToPerm(Base, BaseModel):
3143 3145 __tablename__ = 'user_repo_group_to_perm'
3144 3146 __table_args__ = (
3145 3147 UniqueConstraint('user_id', 'group_id', 'permission_id'),
3146 3148 base_table_args
3147 3149 )
3148 3150
3149 3151 group_to_perm_id = Column("group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3150 3152 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3151 3153 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=False, unique=None, default=None)
3152 3154 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3153 3155
3154 3156 user = relationship('User')
3155 3157 group = relationship('RepoGroup')
3156 3158 permission = relationship('Permission')
3157 3159
3158 3160 @classmethod
3159 3161 def create(cls, user, repository_group, permission):
3160 3162 n = cls()
3161 3163 n.user = user
3162 3164 n.group = repository_group
3163 3165 n.permission = permission
3164 3166 Session().add(n)
3165 3167 return n
3166 3168
3167 3169
3168 3170 class UserGroupRepoGroupToPerm(Base, BaseModel):
3169 3171 __tablename__ = 'users_group_repo_group_to_perm'
3170 3172 __table_args__ = (
3171 3173 UniqueConstraint('users_group_id', 'group_id'),
3172 3174 base_table_args
3173 3175 )
3174 3176
3175 3177 users_group_repo_group_to_perm_id = Column("users_group_repo_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3176 3178 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
3177 3179 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=False, unique=None, default=None)
3178 3180 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
3179 3181
3180 3182 users_group = relationship('UserGroup')
3181 3183 permission = relationship('Permission')
3182 3184 group = relationship('RepoGroup')
3183 3185
3184 3186 @classmethod
3185 3187 def create(cls, user_group, repository_group, permission):
3186 3188 n = cls()
3187 3189 n.users_group = user_group
3188 3190 n.group = repository_group
3189 3191 n.permission = permission
3190 3192 Session().add(n)
3191 3193 return n
3192 3194
3193 3195 def __unicode__(self):
3194 3196 return u'<UserGroupRepoGroupToPerm:%s => %s >' % (self.users_group, self.group)
3195 3197
3196 3198
3197 3199 class Statistics(Base, BaseModel):
3198 3200 __tablename__ = 'statistics'
3199 3201 __table_args__ = (
3200 3202 base_table_args
3201 3203 )
3202 3204
3203 3205 stat_id = Column("stat_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3204 3206 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=True, default=None)
3205 3207 stat_on_revision = Column("stat_on_revision", Integer(), nullable=False)
3206 3208 commit_activity = Column("commit_activity", LargeBinary(1000000), nullable=False)#JSON data
3207 3209 commit_activity_combined = Column("commit_activity_combined", LargeBinary(), nullable=False)#JSON data
3208 3210 languages = Column("languages", LargeBinary(1000000), nullable=False)#JSON data
3209 3211
3210 3212 repository = relationship('Repository', single_parent=True)
3211 3213
3212 3214
3213 3215 class UserFollowing(Base, BaseModel):
3214 3216 __tablename__ = 'user_followings'
3215 3217 __table_args__ = (
3216 3218 UniqueConstraint('user_id', 'follows_repository_id'),
3217 3219 UniqueConstraint('user_id', 'follows_user_id'),
3218 3220 base_table_args
3219 3221 )
3220 3222
3221 3223 user_following_id = Column("user_following_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3222 3224 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
3223 3225 follows_repo_id = Column("follows_repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=True, unique=None, default=None)
3224 3226 follows_user_id = Column("follows_user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
3225 3227 follows_from = Column('follows_from', DateTime(timezone=False), nullable=True, unique=None, default=datetime.datetime.now)
3226 3228
3227 3229 user = relationship('User', primaryjoin='User.user_id==UserFollowing.user_id')
3228 3230
3229 3231 follows_user = relationship('User', primaryjoin='User.user_id==UserFollowing.follows_user_id')
3230 3232 follows_repository = relationship('Repository', order_by='Repository.repo_name')
3231 3233
3232 3234 @classmethod
3233 3235 def get_repo_followers(cls, repo_id):
3234 3236 return cls.query().filter(cls.follows_repo_id == repo_id)
3235 3237
3236 3238
3237 3239 class CacheKey(Base, BaseModel):
3238 3240 __tablename__ = 'cache_invalidation'
3239 3241 __table_args__ = (
3240 3242 UniqueConstraint('cache_key'),
3241 3243 Index('key_idx', 'cache_key'),
3242 3244 base_table_args,
3243 3245 )
3244 3246
3245 3247 CACHE_TYPE_FEED = 'FEED'
3246 3248 CACHE_TYPE_README = 'README'
3247 3249 # namespaces used to register process/thread aware caches
3248 3250 REPO_INVALIDATION_NAMESPACE = 'repo_cache:{repo_id}'
3249 3251 SETTINGS_INVALIDATION_NAMESPACE = 'system_settings'
3250 3252
3251 3253 cache_id = Column("cache_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
3252 3254 cache_key = Column("cache_key", String(255), nullable=True, unique=None, default=None)
3253 3255 cache_args = Column("cache_args", String(255), nullable=True, unique=None, default=None)
3254 3256 cache_active = Column("cache_active", Boolean(), nullable=True, unique=None, default=False)
3255 3257
3256 3258 def __init__(self, cache_key, cache_args=''):
3257 3259 self.cache_key = cache_key
3258 3260 self.cache_args = cache_args
3259 3261 self.cache_active = False
3260 3262
3261 3263 def __unicode__(self):
3262 3264 return u"<%s('%s:%s[%s]')>" % (
3263 3265 self.__class__.__name__,
3264 3266 self.cache_id, self.cache_key, self.cache_active)
3265 3267
3266 3268 def _cache_key_partition(self):
3267 3269 prefix, repo_name, suffix = self.cache_key.partition(self.cache_args)
3268 3270 return prefix, repo_name, suffix
3269 3271
3270 3272 def get_prefix(self):
3271 3273 """
3272 3274 Try to extract prefix from existing cache key. The key could consist
3273 3275 of prefix, repo_name, suffix
3274 3276 """
3275 3277 # this returns prefix, repo_name, suffix
3276 3278 return self._cache_key_partition()[0]
3277 3279
3278 3280 def get_suffix(self):
3279 3281 """
3280 3282 get suffix that might have been used in _get_cache_key to
3281 3283 generate self.cache_key. Only used for informational purposes
3282 3284 in repo_edit.mako.
3283 3285 """
3284 3286 # prefix, repo_name, suffix
3285 3287 return self._cache_key_partition()[2]
3286 3288
3287 3289 @classmethod
3288 3290 def delete_all_cache(cls):
3289 3291 """
3290 3292 Delete all cache keys from database.
3291 3293 Should only be run when all instances are down and all entries
3292 3294 thus stale.
3293 3295 """
3294 3296 cls.query().delete()
3295 3297 Session().commit()
3296 3298
3297 3299 @classmethod
3298 3300 def set_invalidate(cls, cache_uid, delete=False):
3299 3301 """
3300 3302 Mark all caches of a repo as invalid in the database.
3301 3303 """
3302 3304
3303 3305 try:
3304 3306 qry = Session().query(cls).filter(cls.cache_args == cache_uid)
3305 3307 if delete:
3306 3308 qry.delete()
3307 3309 log.debug('cache objects deleted for cache args %s',
3308 3310 safe_str(cache_uid))
3309 3311 else:
3310 3312 qry.update({"cache_active": False})
3311 3313 log.debug('cache objects marked as invalid for cache args %s',
3312 3314 safe_str(cache_uid))
3313 3315
3314 3316 Session().commit()
3315 3317 except Exception:
3316 3318 log.exception(
3317 3319 'Cache key invalidation failed for cache args %s',
3318 3320 safe_str(cache_uid))
3319 3321 Session().rollback()
3320 3322
3321 3323 @classmethod
3322 3324 def get_active_cache(cls, cache_key):
3323 3325 inv_obj = cls.query().filter(cls.cache_key == cache_key).scalar()
3324 3326 if inv_obj:
3325 3327 return inv_obj
3326 3328 return None
3327 3329
3328 3330
3329 3331 class ChangesetComment(Base, BaseModel):
3330 3332 __tablename__ = 'changeset_comments'
3331 3333 __table_args__ = (
3332 3334 Index('cc_revision_idx', 'revision'),
3333 3335 base_table_args,
3334 3336 )
3335 3337
3336 3338 COMMENT_OUTDATED = u'comment_outdated'
3337 3339 COMMENT_TYPE_NOTE = u'note'
3338 3340 COMMENT_TYPE_TODO = u'todo'
3339 3341 COMMENT_TYPES = [COMMENT_TYPE_NOTE, COMMENT_TYPE_TODO]
3340 3342
3341 3343 comment_id = Column('comment_id', Integer(), nullable=False, primary_key=True)
3342 3344 repo_id = Column('repo_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False)
3343 3345 revision = Column('revision', String(40), nullable=True)
3344 3346 pull_request_id = Column("pull_request_id", Integer(), ForeignKey('pull_requests.pull_request_id'), nullable=True)
3345 3347 pull_request_version_id = Column("pull_request_version_id", Integer(), ForeignKey('pull_request_versions.pull_request_version_id'), nullable=True)
3346 3348 line_no = Column('line_no', Unicode(10), nullable=True)
3347 3349 hl_lines = Column('hl_lines', Unicode(512), nullable=True)
3348 3350 f_path = Column('f_path', Unicode(1000), nullable=True)
3349 3351 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=False)
3350 3352 text = Column('text', UnicodeText().with_variant(UnicodeText(25000), 'mysql'), nullable=False)
3351 3353 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
3352 3354 modified_at = Column('modified_at', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
3353 3355 renderer = Column('renderer', Unicode(64), nullable=True)
3354 3356 display_state = Column('display_state', Unicode(128), nullable=True)
3355 3357
3356 3358 comment_type = Column('comment_type', Unicode(128), nullable=True, default=COMMENT_TYPE_NOTE)
3357 3359 resolved_comment_id = Column('resolved_comment_id', Integer(), ForeignKey('changeset_comments.comment_id'), nullable=True)
3358 3360 resolved_comment = relationship('ChangesetComment', remote_side=comment_id, backref='resolved_by')
3359 3361 author = relationship('User', lazy='joined')
3360 3362 repo = relationship('Repository')
3361 3363 status_change = relationship('ChangesetStatus', cascade="all, delete, delete-orphan", lazy='joined')
3362 3364 pull_request = relationship('PullRequest', lazy='joined')
3363 3365 pull_request_version = relationship('PullRequestVersion')
3364 3366
3365 3367 @classmethod
3366 3368 def get_users(cls, revision=None, pull_request_id=None):
3367 3369 """
3368 3370 Returns user associated with this ChangesetComment. ie those
3369 3371 who actually commented
3370 3372
3371 3373 :param cls:
3372 3374 :param revision:
3373 3375 """
3374 3376 q = Session().query(User)\
3375 3377 .join(ChangesetComment.author)
3376 3378 if revision:
3377 3379 q = q.filter(cls.revision == revision)
3378 3380 elif pull_request_id:
3379 3381 q = q.filter(cls.pull_request_id == pull_request_id)
3380 3382 return q.all()
3381 3383
3382 3384 @classmethod
3383 3385 def get_index_from_version(cls, pr_version, versions):
3384 3386 num_versions = [x.pull_request_version_id for x in versions]
3385 3387 try:
3386 3388 return num_versions.index(pr_version) +1
3387 3389 except (IndexError, ValueError):
3388 3390 return
3389 3391
3390 3392 @property
3391 3393 def outdated(self):
3392 3394 return self.display_state == self.COMMENT_OUTDATED
3393 3395
3394 3396 def outdated_at_version(self, version):
3395 3397 """
3396 3398 Checks if comment is outdated for given pull request version
3397 3399 """
3398 3400 return self.outdated and self.pull_request_version_id != version
3399 3401
3400 3402 def older_than_version(self, version):
3401 3403 """
3402 3404 Checks if comment is made from previous version than given
3403 3405 """
3404 3406 if version is None:
3405 3407 return self.pull_request_version_id is not None
3406 3408
3407 3409 return self.pull_request_version_id < version
3408 3410
3409 3411 @property
3410 3412 def resolved(self):
3411 3413 return self.resolved_by[0] if self.resolved_by else None
3412 3414
3413 3415 @property
3414 3416 def is_todo(self):
3415 3417 return self.comment_type == self.COMMENT_TYPE_TODO
3416 3418
3417 3419 @property
3418 3420 def is_inline(self):
3419 3421 return self.line_no and self.f_path
3420 3422
3421 3423 def get_index_version(self, versions):
3422 3424 return self.get_index_from_version(
3423 3425 self.pull_request_version_id, versions)
3424 3426
3425 3427 def __repr__(self):
3426 3428 if self.comment_id:
3427 3429 return '<DB:Comment #%s>' % self.comment_id
3428 3430 else:
3429 3431 return '<DB:Comment at %#x>' % id(self)
3430 3432
3431 3433 def get_api_data(self):
3432 3434 comment = self
3433 3435 data = {
3434 3436 'comment_id': comment.comment_id,
3435 3437 'comment_type': comment.comment_type,
3436 3438 'comment_text': comment.text,
3437 3439 'comment_status': comment.status_change,
3438 3440 'comment_f_path': comment.f_path,
3439 3441 'comment_lineno': comment.line_no,
3440 3442 'comment_author': comment.author,
3441 3443 'comment_created_on': comment.created_on
3442 3444 }
3443 3445 return data
3444 3446
3445 3447 def __json__(self):
3446 3448 data = dict()
3447 3449 data.update(self.get_api_data())
3448 3450 return data
3449 3451
3450 3452
3451 3453 class ChangesetStatus(Base, BaseModel):
3452 3454 __tablename__ = 'changeset_statuses'
3453 3455 __table_args__ = (
3454 3456 Index('cs_revision_idx', 'revision'),
3455 3457 Index('cs_version_idx', 'version'),
3456 3458 UniqueConstraint('repo_id', 'revision', 'version'),
3457 3459 base_table_args
3458 3460 )
3459 3461
3460 3462 STATUS_NOT_REVIEWED = DEFAULT = 'not_reviewed'
3461 3463 STATUS_APPROVED = 'approved'
3462 3464 STATUS_REJECTED = 'rejected'
3463 3465 STATUS_UNDER_REVIEW = 'under_review'
3464 3466
3465 3467 STATUSES = [
3466 3468 (STATUS_NOT_REVIEWED, _("Not Reviewed")), # (no icon) and default
3467 3469 (STATUS_APPROVED, _("Approved")),
3468 3470 (STATUS_REJECTED, _("Rejected")),
3469 3471 (STATUS_UNDER_REVIEW, _("Under Review")),
3470 3472 ]
3471 3473
3472 3474 changeset_status_id = Column('changeset_status_id', Integer(), nullable=False, primary_key=True)
3473 3475 repo_id = Column('repo_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False)
3474 3476 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None)
3475 3477 revision = Column('revision', String(40), nullable=False)
3476 3478 status = Column('status', String(128), nullable=False, default=DEFAULT)
3477 3479 changeset_comment_id = Column('changeset_comment_id', Integer(), ForeignKey('changeset_comments.comment_id'))
3478 3480 modified_at = Column('modified_at', DateTime(), nullable=False, default=datetime.datetime.now)
3479 3481 version = Column('version', Integer(), nullable=False, default=0)
3480 3482 pull_request_id = Column("pull_request_id", Integer(), ForeignKey('pull_requests.pull_request_id'), nullable=True)
3481 3483
3482 3484 author = relationship('User', lazy='joined')
3483 3485 repo = relationship('Repository')
3484 3486 comment = relationship('ChangesetComment', lazy='joined')
3485 3487 pull_request = relationship('PullRequest', lazy='joined')
3486 3488
3487 3489 def __unicode__(self):
3488 3490 return u"<%s('%s[v%s]:%s')>" % (
3489 3491 self.__class__.__name__,
3490 3492 self.status, self.version, self.author
3491 3493 )
3492 3494
3493 3495 @classmethod
3494 3496 def get_status_lbl(cls, value):
3495 3497 return dict(cls.STATUSES).get(value)
3496 3498
3497 3499 @property
3498 3500 def status_lbl(self):
3499 3501 return ChangesetStatus.get_status_lbl(self.status)
3500 3502
3501 3503 def get_api_data(self):
3502 3504 status = self
3503 3505 data = {
3504 3506 'status_id': status.changeset_status_id,
3505 3507 'status': status.status,
3506 3508 }
3507 3509 return data
3508 3510
3509 3511 def __json__(self):
3510 3512 data = dict()
3511 3513 data.update(self.get_api_data())
3512 3514 return data
3513 3515
3514 3516
3515 3517 class _PullRequestBase(BaseModel):
3516 3518 """
3517 3519 Common attributes of pull request and version entries.
3518 3520 """
3519 3521
3520 3522 # .status values
3521 3523 STATUS_NEW = u'new'
3522 3524 STATUS_OPEN = u'open'
3523 3525 STATUS_CLOSED = u'closed'
3524 3526
3525 3527 title = Column('title', Unicode(255), nullable=True)
3526 3528 description = Column(
3527 3529 'description', UnicodeText().with_variant(UnicodeText(10240), 'mysql'),
3528 3530 nullable=True)
3529 3531 description_renderer = Column('description_renderer', Unicode(64), nullable=True)
3530 3532
3531 3533 # new/open/closed status of pull request (not approve/reject/etc)
3532 3534 status = Column('status', Unicode(255), nullable=False, default=STATUS_NEW)
3533 3535 created_on = Column(
3534 3536 'created_on', DateTime(timezone=False), nullable=False,
3535 3537 default=datetime.datetime.now)
3536 3538 updated_on = Column(
3537 3539 'updated_on', DateTime(timezone=False), nullable=False,
3538 3540 default=datetime.datetime.now)
3539 3541
3540 3542 @declared_attr
3541 3543 def user_id(cls):
3542 3544 return Column(
3543 3545 "user_id", Integer(), ForeignKey('users.user_id'), nullable=False,
3544 3546 unique=None)
3545 3547
3546 3548 # 500 revisions max
3547 3549 _revisions = Column(
3548 3550 'revisions', UnicodeText().with_variant(UnicodeText(20500), 'mysql'))
3549 3551
3550 3552 @declared_attr
3551 3553 def source_repo_id(cls):
3552 3554 # TODO: dan: rename column to source_repo_id
3553 3555 return Column(
3554 3556 'org_repo_id', Integer(), ForeignKey('repositories.repo_id'),
3555 3557 nullable=False)
3556 3558
3557 3559 source_ref = Column('org_ref', Unicode(255), nullable=False)
3558 3560
3559 3561 @declared_attr
3560 3562 def target_repo_id(cls):
3561 3563 # TODO: dan: rename column to target_repo_id
3562 3564 return Column(
3563 3565 'other_repo_id', Integer(), ForeignKey('repositories.repo_id'),
3564 3566 nullable=False)
3565 3567
3566 3568 target_ref = Column('other_ref', Unicode(255), nullable=False)
3567 3569 _shadow_merge_ref = Column('shadow_merge_ref', Unicode(255), nullable=True)
3568 3570
3569 3571 # TODO: dan: rename column to last_merge_source_rev
3570 3572 _last_merge_source_rev = Column(
3571 3573 'last_merge_org_rev', String(40), nullable=True)
3572 3574 # TODO: dan: rename column to last_merge_target_rev
3573 3575 _last_merge_target_rev = Column(
3574 3576 'last_merge_other_rev', String(40), nullable=True)
3575 3577 _last_merge_status = Column('merge_status', Integer(), nullable=True)
3576 3578 merge_rev = Column('merge_rev', String(40), nullable=True)
3577 3579
3578 3580 reviewer_data = Column(
3579 3581 'reviewer_data_json', MutationObj.as_mutable(
3580 3582 JsonType(dialect_map=dict(mysql=UnicodeText(16384)))))
3581 3583
3582 3584 @property
3583 3585 def reviewer_data_json(self):
3584 3586 return json.dumps(self.reviewer_data)
3585 3587
3586 3588 @hybrid_property
3587 3589 def description_safe(self):
3588 3590 from rhodecode.lib import helpers as h
3589 3591 return h.escape(self.description)
3590 3592
3591 3593 @hybrid_property
3592 3594 def revisions(self):
3593 3595 return self._revisions.split(':') if self._revisions else []
3594 3596
3595 3597 @revisions.setter
3596 3598 def revisions(self, val):
3597 3599 self._revisions = ':'.join(val)
3598 3600
3599 3601 @hybrid_property
3600 3602 def last_merge_status(self):
3601 3603 return safe_int(self._last_merge_status)
3602 3604
3603 3605 @last_merge_status.setter
3604 3606 def last_merge_status(self, val):
3605 3607 self._last_merge_status = val
3606 3608
3607 3609 @declared_attr
3608 3610 def author(cls):
3609 3611 return relationship('User', lazy='joined')
3610 3612
3611 3613 @declared_attr
3612 3614 def source_repo(cls):
3613 3615 return relationship(
3614 3616 'Repository',
3615 3617 primaryjoin='%s.source_repo_id==Repository.repo_id' % cls.__name__)
3616 3618
3617 3619 @property
3618 3620 def source_ref_parts(self):
3619 3621 return self.unicode_to_reference(self.source_ref)
3620 3622
3621 3623 @declared_attr
3622 3624 def target_repo(cls):
3623 3625 return relationship(
3624 3626 'Repository',
3625 3627 primaryjoin='%s.target_repo_id==Repository.repo_id' % cls.__name__)
3626 3628
3627 3629 @property
3628 3630 def target_ref_parts(self):
3629 3631 return self.unicode_to_reference(self.target_ref)
3630 3632
3631 3633 @property
3632 3634 def shadow_merge_ref(self):
3633 3635 return self.unicode_to_reference(self._shadow_merge_ref)
3634 3636
3635 3637 @shadow_merge_ref.setter
3636 3638 def shadow_merge_ref(self, ref):
3637 3639 self._shadow_merge_ref = self.reference_to_unicode(ref)
3638 3640
3639 3641 def unicode_to_reference(self, raw):
3640 3642 """
3641 3643 Convert a unicode (or string) to a reference object.
3642 3644 If unicode evaluates to False it returns None.
3643 3645 """
3644 3646 if raw:
3645 3647 refs = raw.split(':')
3646 3648 return Reference(*refs)
3647 3649 else:
3648 3650 return None
3649 3651
3650 3652 def reference_to_unicode(self, ref):
3651 3653 """
3652 3654 Convert a reference object to unicode.
3653 3655 If reference is None it returns None.
3654 3656 """
3655 3657 if ref:
3656 3658 return u':'.join(ref)
3657 3659 else:
3658 3660 return None
3659 3661
3660 3662 def get_api_data(self, with_merge_state=True):
3661 3663 from rhodecode.model.pull_request import PullRequestModel
3662 3664
3663 3665 pull_request = self
3664 3666 if with_merge_state:
3665 3667 merge_status = PullRequestModel().merge_status(pull_request)
3666 3668 merge_state = {
3667 3669 'status': merge_status[0],
3668 3670 'message': safe_unicode(merge_status[1]),
3669 3671 }
3670 3672 else:
3671 3673 merge_state = {'status': 'not_available',
3672 3674 'message': 'not_available'}
3673 3675
3674 3676 merge_data = {
3675 3677 'clone_url': PullRequestModel().get_shadow_clone_url(pull_request),
3676 3678 'reference': (
3677 3679 pull_request.shadow_merge_ref._asdict()
3678 3680 if pull_request.shadow_merge_ref else None),
3679 3681 }
3680 3682
3681 3683 data = {
3682 3684 'pull_request_id': pull_request.pull_request_id,
3683 3685 'url': PullRequestModel().get_url(pull_request),
3684 3686 'title': pull_request.title,
3685 3687 'description': pull_request.description,
3686 3688 'status': pull_request.status,
3687 3689 'created_on': pull_request.created_on,
3688 3690 'updated_on': pull_request.updated_on,
3689 3691 'commit_ids': pull_request.revisions,
3690 3692 'review_status': pull_request.calculated_review_status(),
3691 3693 'mergeable': merge_state,
3692 3694 'source': {
3693 3695 'clone_url': pull_request.source_repo.clone_url(),
3694 3696 'repository': pull_request.source_repo.repo_name,
3695 3697 'reference': {
3696 3698 'name': pull_request.source_ref_parts.name,
3697 3699 'type': pull_request.source_ref_parts.type,
3698 3700 'commit_id': pull_request.source_ref_parts.commit_id,
3699 3701 },
3700 3702 },
3701 3703 'target': {
3702 3704 'clone_url': pull_request.target_repo.clone_url(),
3703 3705 'repository': pull_request.target_repo.repo_name,
3704 3706 'reference': {
3705 3707 'name': pull_request.target_ref_parts.name,
3706 3708 'type': pull_request.target_ref_parts.type,
3707 3709 'commit_id': pull_request.target_ref_parts.commit_id,
3708 3710 },
3709 3711 },
3710 3712 'merge': merge_data,
3711 3713 'author': pull_request.author.get_api_data(include_secrets=False,
3712 3714 details='basic'),
3713 3715 'reviewers': [
3714 3716 {
3715 3717 'user': reviewer.get_api_data(include_secrets=False,
3716 3718 details='basic'),
3717 3719 'reasons': reasons,
3718 3720 'review_status': st[0][1].status if st else 'not_reviewed',
3719 3721 }
3720 3722 for obj, reviewer, reasons, mandatory, st in
3721 3723 pull_request.reviewers_statuses()
3722 3724 ]
3723 3725 }
3724 3726
3725 3727 return data
3726 3728
3727 3729
3728 3730 class PullRequest(Base, _PullRequestBase):
3729 3731 __tablename__ = 'pull_requests'
3730 3732 __table_args__ = (
3731 3733 base_table_args,
3732 3734 )
3733 3735
3734 3736 pull_request_id = Column(
3735 3737 'pull_request_id', Integer(), nullable=False, primary_key=True)
3736 3738
3737 3739 def __repr__(self):
3738 3740 if self.pull_request_id:
3739 3741 return '<DB:PullRequest #%s>' % self.pull_request_id
3740 3742 else:
3741 3743 return '<DB:PullRequest at %#x>' % id(self)
3742 3744
3743 3745 reviewers = relationship('PullRequestReviewers',
3744 3746 cascade="all, delete, delete-orphan")
3745 3747 statuses = relationship('ChangesetStatus',
3746 3748 cascade="all, delete, delete-orphan")
3747 3749 comments = relationship('ChangesetComment',
3748 3750 cascade="all, delete, delete-orphan")
3749 3751 versions = relationship('PullRequestVersion',
3750 3752 cascade="all, delete, delete-orphan",
3751 3753 lazy='dynamic')
3752 3754
3753 3755 @classmethod
3754 3756 def get_pr_display_object(cls, pull_request_obj, org_pull_request_obj,
3755 3757 internal_methods=None):
3756 3758
3757 3759 class PullRequestDisplay(object):
3758 3760 """
3759 3761 Special object wrapper for showing PullRequest data via Versions
3760 3762 It mimics PR object as close as possible. This is read only object
3761 3763 just for display
3762 3764 """
3763 3765
3764 3766 def __init__(self, attrs, internal=None):
3765 3767 self.attrs = attrs
3766 3768 # internal have priority over the given ones via attrs
3767 3769 self.internal = internal or ['versions']
3768 3770
3769 3771 def __getattr__(self, item):
3770 3772 if item in self.internal:
3771 3773 return getattr(self, item)
3772 3774 try:
3773 3775 return self.attrs[item]
3774 3776 except KeyError:
3775 3777 raise AttributeError(
3776 3778 '%s object has no attribute %s' % (self, item))
3777 3779
3778 3780 def __repr__(self):
3779 3781 return '<DB:PullRequestDisplay #%s>' % self.attrs.get('pull_request_id')
3780 3782
3781 3783 def versions(self):
3782 3784 return pull_request_obj.versions.order_by(
3783 3785 PullRequestVersion.pull_request_version_id).all()
3784 3786
3785 3787 def is_closed(self):
3786 3788 return pull_request_obj.is_closed()
3787 3789
3788 3790 @property
3789 3791 def pull_request_version_id(self):
3790 3792 return getattr(pull_request_obj, 'pull_request_version_id', None)
3791 3793
3792 3794 attrs = StrictAttributeDict(pull_request_obj.get_api_data())
3793 3795
3794 3796 attrs.author = StrictAttributeDict(
3795 3797 pull_request_obj.author.get_api_data())
3796 3798 if pull_request_obj.target_repo:
3797 3799 attrs.target_repo = StrictAttributeDict(
3798 3800 pull_request_obj.target_repo.get_api_data())
3799 3801 attrs.target_repo.clone_url = pull_request_obj.target_repo.clone_url
3800 3802
3801 3803 if pull_request_obj.source_repo:
3802 3804 attrs.source_repo = StrictAttributeDict(
3803 3805 pull_request_obj.source_repo.get_api_data())
3804 3806 attrs.source_repo.clone_url = pull_request_obj.source_repo.clone_url
3805 3807
3806 3808 attrs.source_ref_parts = pull_request_obj.source_ref_parts
3807 3809 attrs.target_ref_parts = pull_request_obj.target_ref_parts
3808 3810 attrs.revisions = pull_request_obj.revisions
3809 3811
3810 3812 attrs.shadow_merge_ref = org_pull_request_obj.shadow_merge_ref
3811 3813 attrs.reviewer_data = org_pull_request_obj.reviewer_data
3812 3814 attrs.reviewer_data_json = org_pull_request_obj.reviewer_data_json
3813 3815
3814 3816 return PullRequestDisplay(attrs, internal=internal_methods)
3815 3817
3816 3818 def is_closed(self):
3817 3819 return self.status == self.STATUS_CLOSED
3818 3820
3819 3821 def __json__(self):
3820 3822 return {
3821 3823 'revisions': self.revisions,
3822 3824 }
3823 3825
3824 3826 def calculated_review_status(self):
3825 3827 from rhodecode.model.changeset_status import ChangesetStatusModel
3826 3828 return ChangesetStatusModel().calculated_review_status(self)
3827 3829
3828 3830 def reviewers_statuses(self):
3829 3831 from rhodecode.model.changeset_status import ChangesetStatusModel
3830 3832 return ChangesetStatusModel().reviewers_statuses(self)
3831 3833
3832 3834 @property
3833 3835 def workspace_id(self):
3834 3836 from rhodecode.model.pull_request import PullRequestModel
3835 3837 return PullRequestModel()._workspace_id(self)
3836 3838
3837 3839 def get_shadow_repo(self):
3838 3840 workspace_id = self.workspace_id
3839 3841 vcs_obj = self.target_repo.scm_instance()
3840 3842 shadow_repository_path = vcs_obj._get_shadow_repository_path(
3841 3843 self.target_repo.repo_id, workspace_id)
3842 3844 if os.path.isdir(shadow_repository_path):
3843 3845 return vcs_obj._get_shadow_instance(shadow_repository_path)
3844 3846
3845 3847
3846 3848 class PullRequestVersion(Base, _PullRequestBase):
3847 3849 __tablename__ = 'pull_request_versions'
3848 3850 __table_args__ = (
3849 3851 base_table_args,
3850 3852 )
3851 3853
3852 3854 pull_request_version_id = Column(
3853 3855 'pull_request_version_id', Integer(), nullable=False, primary_key=True)
3854 3856 pull_request_id = Column(
3855 3857 'pull_request_id', Integer(),
3856 3858 ForeignKey('pull_requests.pull_request_id'), nullable=False)
3857 3859 pull_request = relationship('PullRequest')
3858 3860
3859 3861 def __repr__(self):
3860 3862 if self.pull_request_version_id:
3861 3863 return '<DB:PullRequestVersion #%s>' % self.pull_request_version_id
3862 3864 else:
3863 3865 return '<DB:PullRequestVersion at %#x>' % id(self)
3864 3866
3865 3867 @property
3866 3868 def reviewers(self):
3867 3869 return self.pull_request.reviewers
3868 3870
3869 3871 @property
3870 3872 def versions(self):
3871 3873 return self.pull_request.versions
3872 3874
3873 3875 def is_closed(self):
3874 3876 # calculate from original
3875 3877 return self.pull_request.status == self.STATUS_CLOSED
3876 3878
3877 3879 def calculated_review_status(self):
3878 3880 return self.pull_request.calculated_review_status()
3879 3881
3880 3882 def reviewers_statuses(self):
3881 3883 return self.pull_request.reviewers_statuses()
3882 3884
3883 3885
3884 3886 class PullRequestReviewers(Base, BaseModel):
3885 3887 __tablename__ = 'pull_request_reviewers'
3886 3888 __table_args__ = (
3887 3889 base_table_args,
3888 3890 )
3889 3891
3890 3892 @hybrid_property
3891 3893 def reasons(self):
3892 3894 if not self._reasons:
3893 3895 return []
3894 3896 return self._reasons
3895 3897
3896 3898 @reasons.setter
3897 3899 def reasons(self, val):
3898 3900 val = val or []
3899 3901 if any(not isinstance(x, basestring) for x in val):
3900 3902 raise Exception('invalid reasons type, must be list of strings')
3901 3903 self._reasons = val
3902 3904
3903 3905 pull_requests_reviewers_id = Column(
3904 3906 'pull_requests_reviewers_id', Integer(), nullable=False,
3905 3907 primary_key=True)
3906 3908 pull_request_id = Column(
3907 3909 "pull_request_id", Integer(),
3908 3910 ForeignKey('pull_requests.pull_request_id'), nullable=False)
3909 3911 user_id = Column(
3910 3912 "user_id", Integer(), ForeignKey('users.user_id'), nullable=True)
3911 3913 _reasons = Column(
3912 3914 'reason', MutationList.as_mutable(
3913 3915 JsonType('list', dialect_map=dict(mysql=UnicodeText(16384)))))
3914 3916
3915 3917 mandatory = Column("mandatory", Boolean(), nullable=False, default=False)
3916 3918 user = relationship('User')
3917 3919 pull_request = relationship('PullRequest')
3918 3920
3919 3921 rule_data = Column(
3920 3922 'rule_data_json',
3921 3923 JsonType(dialect_map=dict(mysql=UnicodeText(16384))))
3922 3924
3923 3925 def rule_user_group_data(self):
3924 3926 """
3925 3927 Returns the voting user group rule data for this reviewer
3926 3928 """
3927 3929
3928 3930 if self.rule_data and 'vote_rule' in self.rule_data:
3929 3931 user_group_data = {}
3930 3932 if 'rule_user_group_entry_id' in self.rule_data:
3931 3933 # means a group with voting rules !
3932 3934 user_group_data['id'] = self.rule_data['rule_user_group_entry_id']
3933 3935 user_group_data['name'] = self.rule_data['rule_name']
3934 3936 user_group_data['vote_rule'] = self.rule_data['vote_rule']
3935 3937
3936 3938 return user_group_data
3937 3939
3938 3940 def __unicode__(self):
3939 3941 return u"<%s('id:%s')>" % (self.__class__.__name__,
3940 3942 self.pull_requests_reviewers_id)
3941 3943
3942 3944
3943 3945 class Notification(Base, BaseModel):
3944 3946 __tablename__ = 'notifications'
3945 3947 __table_args__ = (
3946 3948 Index('notification_type_idx', 'type'),
3947 3949 base_table_args,
3948 3950 )
3949 3951
3950 3952 TYPE_CHANGESET_COMMENT = u'cs_comment'
3951 3953 TYPE_MESSAGE = u'message'
3952 3954 TYPE_MENTION = u'mention'
3953 3955 TYPE_REGISTRATION = u'registration'
3954 3956 TYPE_PULL_REQUEST = u'pull_request'
3955 3957 TYPE_PULL_REQUEST_COMMENT = u'pull_request_comment'
3956 3958
3957 3959 notification_id = Column('notification_id', Integer(), nullable=False, primary_key=True)
3958 3960 subject = Column('subject', Unicode(512), nullable=True)
3959 3961 body = Column('body', UnicodeText().with_variant(UnicodeText(50000), 'mysql'), nullable=True)
3960 3962 created_by = Column("created_by", Integer(), ForeignKey('users.user_id'), nullable=True)
3961 3963 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
3962 3964 type_ = Column('type', Unicode(255))
3963 3965
3964 3966 created_by_user = relationship('User')
3965 3967 notifications_to_users = relationship('UserNotification', lazy='joined',
3966 3968 cascade="all, delete, delete-orphan")
3967 3969
3968 3970 @property
3969 3971 def recipients(self):
3970 3972 return [x.user for x in UserNotification.query()\
3971 3973 .filter(UserNotification.notification == self)\
3972 3974 .order_by(UserNotification.user_id.asc()).all()]
3973 3975
3974 3976 @classmethod
3975 3977 def create(cls, created_by, subject, body, recipients, type_=None):
3976 3978 if type_ is None:
3977 3979 type_ = Notification.TYPE_MESSAGE
3978 3980
3979 3981 notification = cls()
3980 3982 notification.created_by_user = created_by
3981 3983 notification.subject = subject
3982 3984 notification.body = body
3983 3985 notification.type_ = type_
3984 3986 notification.created_on = datetime.datetime.now()
3985 3987
3986 3988 # For each recipient link the created notification to his account
3987 3989 for u in recipients:
3988 3990 assoc = UserNotification()
3989 3991 assoc.user_id = u.user_id
3990 3992 assoc.notification = notification
3991 3993
3992 3994 # if created_by is inside recipients mark his notification
3993 3995 # as read
3994 3996 if u.user_id == created_by.user_id:
3995 3997 assoc.read = True
3996 3998 Session().add(assoc)
3997 3999
3998 4000 Session().add(notification)
3999 4001
4000 4002 return notification
4001 4003
4002 4004
4003 4005 class UserNotification(Base, BaseModel):
4004 4006 __tablename__ = 'user_to_notification'
4005 4007 __table_args__ = (
4006 4008 UniqueConstraint('user_id', 'notification_id'),
4007 4009 base_table_args
4008 4010 )
4009 4011
4010 4012 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), primary_key=True)
4011 4013 notification_id = Column("notification_id", Integer(), ForeignKey('notifications.notification_id'), primary_key=True)
4012 4014 read = Column('read', Boolean, default=False)
4013 4015 sent_on = Column('sent_on', DateTime(timezone=False), nullable=True, unique=None)
4014 4016
4015 4017 user = relationship('User', lazy="joined")
4016 4018 notification = relationship('Notification', lazy="joined",
4017 4019 order_by=lambda: Notification.created_on.desc(),)
4018 4020
4019 4021 def mark_as_read(self):
4020 4022 self.read = True
4021 4023 Session().add(self)
4022 4024
4023 4025
4024 4026 class Gist(Base, BaseModel):
4025 4027 __tablename__ = 'gists'
4026 4028 __table_args__ = (
4027 4029 Index('g_gist_access_id_idx', 'gist_access_id'),
4028 4030 Index('g_created_on_idx', 'created_on'),
4029 4031 base_table_args
4030 4032 )
4031 4033
4032 4034 GIST_PUBLIC = u'public'
4033 4035 GIST_PRIVATE = u'private'
4034 4036 DEFAULT_FILENAME = u'gistfile1.txt'
4035 4037
4036 4038 ACL_LEVEL_PUBLIC = u'acl_public'
4037 4039 ACL_LEVEL_PRIVATE = u'acl_private'
4038 4040
4039 4041 gist_id = Column('gist_id', Integer(), primary_key=True)
4040 4042 gist_access_id = Column('gist_access_id', Unicode(250))
4041 4043 gist_description = Column('gist_description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
4042 4044 gist_owner = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=True)
4043 4045 gist_expires = Column('gist_expires', Float(53), nullable=False)
4044 4046 gist_type = Column('gist_type', Unicode(128), nullable=False)
4045 4047 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
4046 4048 modified_at = Column('modified_at', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
4047 4049 acl_level = Column('acl_level', Unicode(128), nullable=True)
4048 4050
4049 4051 owner = relationship('User')
4050 4052
4051 4053 def __repr__(self):
4052 4054 return '<Gist:[%s]%s>' % (self.gist_type, self.gist_access_id)
4053 4055
4054 4056 @hybrid_property
4055 4057 def description_safe(self):
4056 4058 from rhodecode.lib import helpers as h
4057 4059 return h.escape(self.gist_description)
4058 4060
4059 4061 @classmethod
4060 4062 def get_or_404(cls, id_):
4061 4063 from pyramid.httpexceptions import HTTPNotFound
4062 4064
4063 4065 res = cls.query().filter(cls.gist_access_id == id_).scalar()
4064 4066 if not res:
4065 4067 raise HTTPNotFound()
4066 4068 return res
4067 4069
4068 4070 @classmethod
4069 4071 def get_by_access_id(cls, gist_access_id):
4070 4072 return cls.query().filter(cls.gist_access_id == gist_access_id).scalar()
4071 4073
4072 4074 def gist_url(self):
4073 4075 from rhodecode.model.gist import GistModel
4074 4076 return GistModel().get_url(self)
4075 4077
4076 4078 @classmethod
4077 4079 def base_path(cls):
4078 4080 """
4079 4081 Returns base path when all gists are stored
4080 4082
4081 4083 :param cls:
4082 4084 """
4083 4085 from rhodecode.model.gist import GIST_STORE_LOC
4084 4086 q = Session().query(RhodeCodeUi)\
4085 4087 .filter(RhodeCodeUi.ui_key == URL_SEP)
4086 4088 q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
4087 4089 return os.path.join(q.one().ui_value, GIST_STORE_LOC)
4088 4090
4089 4091 def get_api_data(self):
4090 4092 """
4091 4093 Common function for generating gist related data for API
4092 4094 """
4093 4095 gist = self
4094 4096 data = {
4095 4097 'gist_id': gist.gist_id,
4096 4098 'type': gist.gist_type,
4097 4099 'access_id': gist.gist_access_id,
4098 4100 'description': gist.gist_description,
4099 4101 'url': gist.gist_url(),
4100 4102 'expires': gist.gist_expires,
4101 4103 'created_on': gist.created_on,
4102 4104 'modified_at': gist.modified_at,
4103 4105 'content': None,
4104 4106 'acl_level': gist.acl_level,
4105 4107 }
4106 4108 return data
4107 4109
4108 4110 def __json__(self):
4109 4111 data = dict(
4110 4112 )
4111 4113 data.update(self.get_api_data())
4112 4114 return data
4113 4115 # SCM functions
4114 4116
4115 4117 def scm_instance(self, **kwargs):
4116 4118 full_repo_path = os.path.join(self.base_path(), self.gist_access_id)
4117 4119 return get_vcs_instance(
4118 4120 repo_path=safe_str(full_repo_path), create=False)
4119 4121
4120 4122
4121 4123 class ExternalIdentity(Base, BaseModel):
4122 4124 __tablename__ = 'external_identities'
4123 4125 __table_args__ = (
4124 4126 Index('local_user_id_idx', 'local_user_id'),
4125 4127 Index('external_id_idx', 'external_id'),
4126 4128 base_table_args
4127 4129 )
4128 4130
4129 4131 external_id = Column('external_id', Unicode(255), default=u'',
4130 4132 primary_key=True)
4131 4133 external_username = Column('external_username', Unicode(1024), default=u'')
4132 4134 local_user_id = Column('local_user_id', Integer(),
4133 4135 ForeignKey('users.user_id'), primary_key=True)
4134 4136 provider_name = Column('provider_name', Unicode(255), default=u'',
4135 4137 primary_key=True)
4136 4138 access_token = Column('access_token', String(1024), default=u'')
4137 4139 alt_token = Column('alt_token', String(1024), default=u'')
4138 4140 token_secret = Column('token_secret', String(1024), default=u'')
4139 4141
4140 4142 @classmethod
4141 4143 def by_external_id_and_provider(cls, external_id, provider_name,
4142 4144 local_user_id=None):
4143 4145 """
4144 4146 Returns ExternalIdentity instance based on search params
4145 4147
4146 4148 :param external_id:
4147 4149 :param provider_name:
4148 4150 :return: ExternalIdentity
4149 4151 """
4150 4152 query = cls.query()
4151 4153 query = query.filter(cls.external_id == external_id)
4152 4154 query = query.filter(cls.provider_name == provider_name)
4153 4155 if local_user_id:
4154 4156 query = query.filter(cls.local_user_id == local_user_id)
4155 4157 return query.first()
4156 4158
4157 4159 @classmethod
4158 4160 def user_by_external_id_and_provider(cls, external_id, provider_name):
4159 4161 """
4160 4162 Returns User instance based on search params
4161 4163
4162 4164 :param external_id:
4163 4165 :param provider_name:
4164 4166 :return: User
4165 4167 """
4166 4168 query = User.query()
4167 4169 query = query.filter(cls.external_id == external_id)
4168 4170 query = query.filter(cls.provider_name == provider_name)
4169 4171 query = query.filter(User.user_id == cls.local_user_id)
4170 4172 return query.first()
4171 4173
4172 4174 @classmethod
4173 4175 def by_local_user_id(cls, local_user_id):
4174 4176 """
4175 4177 Returns all tokens for user
4176 4178
4177 4179 :param local_user_id:
4178 4180 :return: ExternalIdentity
4179 4181 """
4180 4182 query = cls.query()
4181 4183 query = query.filter(cls.local_user_id == local_user_id)
4182 4184 return query
4183 4185
4184 4186
4185 4187 class Integration(Base, BaseModel):
4186 4188 __tablename__ = 'integrations'
4187 4189 __table_args__ = (
4188 4190 base_table_args
4189 4191 )
4190 4192
4191 4193 integration_id = Column('integration_id', Integer(), primary_key=True)
4192 4194 integration_type = Column('integration_type', String(255))
4193 4195 enabled = Column('enabled', Boolean(), nullable=False)
4194 4196 name = Column('name', String(255), nullable=False)
4195 4197 child_repos_only = Column('child_repos_only', Boolean(), nullable=False,
4196 4198 default=False)
4197 4199
4198 4200 settings = Column(
4199 4201 'settings_json', MutationObj.as_mutable(
4200 4202 JsonType(dialect_map=dict(mysql=UnicodeText(16384)))))
4201 4203 repo_id = Column(
4202 4204 'repo_id', Integer(), ForeignKey('repositories.repo_id'),
4203 4205 nullable=True, unique=None, default=None)
4204 4206 repo = relationship('Repository', lazy='joined')
4205 4207
4206 4208 repo_group_id = Column(
4207 4209 'repo_group_id', Integer(), ForeignKey('groups.group_id'),
4208 4210 nullable=True, unique=None, default=None)
4209 4211 repo_group = relationship('RepoGroup', lazy='joined')
4210 4212
4211 4213 @property
4212 4214 def scope(self):
4213 4215 if self.repo:
4214 4216 return repr(self.repo)
4215 4217 if self.repo_group:
4216 4218 if self.child_repos_only:
4217 4219 return repr(self.repo_group) + ' (child repos only)'
4218 4220 else:
4219 4221 return repr(self.repo_group) + ' (recursive)'
4220 4222 if self.child_repos_only:
4221 4223 return 'root_repos'
4222 4224 return 'global'
4223 4225
4224 4226 def __repr__(self):
4225 4227 return '<Integration(%r, %r)>' % (self.integration_type, self.scope)
4226 4228
4227 4229
4228 4230 class RepoReviewRuleUser(Base, BaseModel):
4229 4231 __tablename__ = 'repo_review_rules_users'
4230 4232 __table_args__ = (
4231 4233 base_table_args
4232 4234 )
4233 4235
4234 4236 repo_review_rule_user_id = Column('repo_review_rule_user_id', Integer(), primary_key=True)
4235 4237 repo_review_rule_id = Column("repo_review_rule_id", Integer(), ForeignKey('repo_review_rules.repo_review_rule_id'))
4236 4238 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False)
4237 4239 mandatory = Column("mandatory", Boolean(), nullable=False, default=False)
4238 4240 user = relationship('User')
4239 4241
4240 4242 def rule_data(self):
4241 4243 return {
4242 4244 'mandatory': self.mandatory
4243 4245 }
4244 4246
4245 4247
4246 4248 class RepoReviewRuleUserGroup(Base, BaseModel):
4247 4249 __tablename__ = 'repo_review_rules_users_groups'
4248 4250 __table_args__ = (
4249 4251 base_table_args
4250 4252 )
4251 4253
4252 4254 VOTE_RULE_ALL = -1
4253 4255
4254 4256 repo_review_rule_users_group_id = Column('repo_review_rule_users_group_id', Integer(), primary_key=True)
4255 4257 repo_review_rule_id = Column("repo_review_rule_id", Integer(), ForeignKey('repo_review_rules.repo_review_rule_id'))
4256 4258 users_group_id = Column("users_group_id", Integer(),ForeignKey('users_groups.users_group_id'), nullable=False)
4257 4259 mandatory = Column("mandatory", Boolean(), nullable=False, default=False)
4258 4260 vote_rule = Column("vote_rule", Integer(), nullable=True, default=VOTE_RULE_ALL)
4259 4261 users_group = relationship('UserGroup')
4260 4262
4261 4263 def rule_data(self):
4262 4264 return {
4263 4265 'mandatory': self.mandatory,
4264 4266 'vote_rule': self.vote_rule
4265 4267 }
4266 4268
4267 4269 @property
4268 4270 def vote_rule_label(self):
4269 4271 if not self.vote_rule or self.vote_rule == self.VOTE_RULE_ALL:
4270 4272 return 'all must vote'
4271 4273 else:
4272 4274 return 'min. vote {}'.format(self.vote_rule)
4273 4275
4274 4276
4275 4277 class RepoReviewRule(Base, BaseModel):
4276 4278 __tablename__ = 'repo_review_rules'
4277 4279 __table_args__ = (
4278 4280 base_table_args
4279 4281 )
4280 4282
4281 4283 repo_review_rule_id = Column(
4282 4284 'repo_review_rule_id', Integer(), primary_key=True)
4283 4285 repo_id = Column(
4284 4286 "repo_id", Integer(), ForeignKey('repositories.repo_id'))
4285 4287 repo = relationship('Repository', backref='review_rules')
4286 4288
4287 4289 review_rule_name = Column('review_rule_name', String(255))
4288 4290 _branch_pattern = Column("branch_pattern", UnicodeText().with_variant(UnicodeText(255), 'mysql'), default=u'*') # glob
4289 4291 _target_branch_pattern = Column("target_branch_pattern", UnicodeText().with_variant(UnicodeText(255), 'mysql'), default=u'*') # glob
4290 4292 _file_pattern = Column("file_pattern", UnicodeText().with_variant(UnicodeText(255), 'mysql'), default=u'*') # glob
4291 4293
4292 4294 use_authors_for_review = Column("use_authors_for_review", Boolean(), nullable=False, default=False)
4293 4295 forbid_author_to_review = Column("forbid_author_to_review", Boolean(), nullable=False, default=False)
4294 4296 forbid_commit_author_to_review = Column("forbid_commit_author_to_review", Boolean(), nullable=False, default=False)
4295 4297 forbid_adding_reviewers = Column("forbid_adding_reviewers", Boolean(), nullable=False, default=False)
4296 4298
4297 4299 rule_users = relationship('RepoReviewRuleUser')
4298 4300 rule_user_groups = relationship('RepoReviewRuleUserGroup')
4299 4301
4300 4302 def _validate_pattern(self, value):
4301 4303 re.compile('^' + glob2re(value) + '$')
4302 4304
4303 4305 @hybrid_property
4304 4306 def source_branch_pattern(self):
4305 4307 return self._branch_pattern or '*'
4306 4308
4307 4309 @source_branch_pattern.setter
4308 4310 def source_branch_pattern(self, value):
4309 4311 self._validate_pattern(value)
4310 4312 self._branch_pattern = value or '*'
4311 4313
4312 4314 @hybrid_property
4313 4315 def target_branch_pattern(self):
4314 4316 return self._target_branch_pattern or '*'
4315 4317
4316 4318 @target_branch_pattern.setter
4317 4319 def target_branch_pattern(self, value):
4318 4320 self._validate_pattern(value)
4319 4321 self._target_branch_pattern = value or '*'
4320 4322
4321 4323 @hybrid_property
4322 4324 def file_pattern(self):
4323 4325 return self._file_pattern or '*'
4324 4326
4325 4327 @file_pattern.setter
4326 4328 def file_pattern(self, value):
4327 4329 self._validate_pattern(value)
4328 4330 self._file_pattern = value or '*'
4329 4331
4330 4332 def matches(self, source_branch, target_branch, files_changed):
4331 4333 """
4332 4334 Check if this review rule matches a branch/files in a pull request
4333 4335
4334 4336 :param source_branch: source branch name for the commit
4335 4337 :param target_branch: target branch name for the commit
4336 4338 :param files_changed: list of file paths changed in the pull request
4337 4339 """
4338 4340
4339 4341 source_branch = source_branch or ''
4340 4342 target_branch = target_branch or ''
4341 4343 files_changed = files_changed or []
4342 4344
4343 4345 branch_matches = True
4344 4346 if source_branch or target_branch:
4345 4347 if self.source_branch_pattern == '*':
4346 4348 source_branch_match = True
4347 4349 else:
4348 4350 if self.source_branch_pattern.startswith('re:'):
4349 4351 source_pattern = self.source_branch_pattern[3:]
4350 4352 else:
4351 4353 source_pattern = '^' + glob2re(self.source_branch_pattern) + '$'
4352 4354 source_branch_regex = re.compile(source_pattern)
4353 4355 source_branch_match = bool(source_branch_regex.search(source_branch))
4354 4356 if self.target_branch_pattern == '*':
4355 4357 target_branch_match = True
4356 4358 else:
4357 4359 if self.target_branch_pattern.startswith('re:'):
4358 4360 target_pattern = self.target_branch_pattern[3:]
4359 4361 else:
4360 4362 target_pattern = '^' + glob2re(self.target_branch_pattern) + '$'
4361 4363 target_branch_regex = re.compile(target_pattern)
4362 4364 target_branch_match = bool(target_branch_regex.search(target_branch))
4363 4365
4364 4366 branch_matches = source_branch_match and target_branch_match
4365 4367
4366 4368 files_matches = True
4367 4369 if self.file_pattern != '*':
4368 4370 files_matches = False
4369 4371 if self.file_pattern.startswith('re:'):
4370 4372 file_pattern = self.file_pattern[3:]
4371 4373 else:
4372 4374 file_pattern = glob2re(self.file_pattern)
4373 4375 file_regex = re.compile(file_pattern)
4374 4376 for filename in files_changed:
4375 4377 if file_regex.search(filename):
4376 4378 files_matches = True
4377 4379 break
4378 4380
4379 4381 return branch_matches and files_matches
4380 4382
4381 4383 @property
4382 4384 def review_users(self):
4383 4385 """ Returns the users which this rule applies to """
4384 4386
4385 4387 users = collections.OrderedDict()
4386 4388
4387 4389 for rule_user in self.rule_users:
4388 4390 if rule_user.user.active:
4389 4391 if rule_user.user not in users:
4390 4392 users[rule_user.user.username] = {
4391 4393 'user': rule_user.user,
4392 4394 'source': 'user',
4393 4395 'source_data': {},
4394 4396 'data': rule_user.rule_data()
4395 4397 }
4396 4398
4397 4399 for rule_user_group in self.rule_user_groups:
4398 4400 source_data = {
4399 4401 'user_group_id': rule_user_group.users_group.users_group_id,
4400 4402 'name': rule_user_group.users_group.users_group_name,
4401 4403 'members': len(rule_user_group.users_group.members)
4402 4404 }
4403 4405 for member in rule_user_group.users_group.members:
4404 4406 if member.user.active:
4405 4407 key = member.user.username
4406 4408 if key in users:
4407 4409 # skip this member as we have him already
4408 4410 # this prevents from override the "first" matched
4409 4411 # users with duplicates in multiple groups
4410 4412 continue
4411 4413
4412 4414 users[key] = {
4413 4415 'user': member.user,
4414 4416 'source': 'user_group',
4415 4417 'source_data': source_data,
4416 4418 'data': rule_user_group.rule_data()
4417 4419 }
4418 4420
4419 4421 return users
4420 4422
4421 4423 def user_group_vote_rule(self, user_id):
4422 4424
4423 4425 rules = []
4424 4426 if not self.rule_user_groups:
4425 4427 return rules
4426 4428
4427 4429 for user_group in self.rule_user_groups:
4428 4430 user_group_members = [x.user_id for x in user_group.users_group.members]
4429 4431 if user_id in user_group_members:
4430 4432 rules.append(user_group)
4431 4433 return rules
4432 4434
4433 4435 def __repr__(self):
4434 4436 return '<RepoReviewerRule(id=%r, repo=%r)>' % (
4435 4437 self.repo_review_rule_id, self.repo)
4436 4438
4437 4439
4438 4440 class ScheduleEntry(Base, BaseModel):
4439 4441 __tablename__ = 'schedule_entries'
4440 4442 __table_args__ = (
4441 4443 UniqueConstraint('schedule_name', name='s_schedule_name_idx'),
4442 4444 UniqueConstraint('task_uid', name='s_task_uid_idx'),
4443 4445 base_table_args,
4444 4446 )
4445 4447
4446 4448 schedule_types = ['crontab', 'timedelta', 'integer']
4447 4449 schedule_entry_id = Column('schedule_entry_id', Integer(), primary_key=True)
4448 4450
4449 4451 schedule_name = Column("schedule_name", String(255), nullable=False, unique=None, default=None)
4450 4452 schedule_description = Column("schedule_description", String(10000), nullable=True, unique=None, default=None)
4451 4453 schedule_enabled = Column("schedule_enabled", Boolean(), nullable=False, unique=None, default=True)
4452 4454
4453 4455 _schedule_type = Column("schedule_type", String(255), nullable=False, unique=None, default=None)
4454 4456 schedule_definition = Column('schedule_definition_json', MutationObj.as_mutable(JsonType(default=lambda: "", dialect_map=dict(mysql=LONGTEXT()))))
4455 4457
4456 4458 schedule_last_run = Column('schedule_last_run', DateTime(timezone=False), nullable=True, unique=None, default=None)
4457 4459 schedule_total_run_count = Column('schedule_total_run_count', Integer(), nullable=True, unique=None, default=0)
4458 4460
4459 4461 # task
4460 4462 task_uid = Column("task_uid", String(255), nullable=False, unique=None, default=None)
4461 4463 task_dot_notation = Column("task_dot_notation", String(4096), nullable=False, unique=None, default=None)
4462 4464 task_args = Column('task_args_json', MutationObj.as_mutable(JsonType(default=list, dialect_map=dict(mysql=LONGTEXT()))))
4463 4465 task_kwargs = Column('task_kwargs_json', MutationObj.as_mutable(JsonType(default=dict, dialect_map=dict(mysql=LONGTEXT()))))
4464 4466
4465 4467 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
4466 4468 updated_on = Column('updated_on', DateTime(timezone=False), nullable=True, unique=None, default=None)
4467 4469
4468 4470 @hybrid_property
4469 4471 def schedule_type(self):
4470 4472 return self._schedule_type
4471 4473
4472 4474 @schedule_type.setter
4473 4475 def schedule_type(self, val):
4474 4476 if val not in self.schedule_types:
4475 4477 raise ValueError('Value must be on of `{}` and got `{}`'.format(
4476 4478 val, self.schedule_type))
4477 4479
4478 4480 self._schedule_type = val
4479 4481
4480 4482 @classmethod
4481 4483 def get_uid(cls, obj):
4482 4484 args = obj.task_args
4483 4485 kwargs = obj.task_kwargs
4484 4486 if isinstance(args, JsonRaw):
4485 4487 try:
4486 4488 args = json.loads(args)
4487 4489 except ValueError:
4488 4490 args = tuple()
4489 4491
4490 4492 if isinstance(kwargs, JsonRaw):
4491 4493 try:
4492 4494 kwargs = json.loads(kwargs)
4493 4495 except ValueError:
4494 4496 kwargs = dict()
4495 4497
4496 4498 dot_notation = obj.task_dot_notation
4497 4499 val = '.'.join(map(safe_str, [
4498 4500 sorted(dot_notation), args, sorted(kwargs.items())]))
4499 4501 return hashlib.sha1(val).hexdigest()
4500 4502
4501 4503 @classmethod
4502 4504 def get_by_schedule_name(cls, schedule_name):
4503 4505 return cls.query().filter(cls.schedule_name == schedule_name).scalar()
4504 4506
4505 4507 @classmethod
4506 4508 def get_by_schedule_id(cls, schedule_id):
4507 4509 return cls.query().filter(cls.schedule_entry_id == schedule_id).scalar()
4508 4510
4509 4511 @property
4510 4512 def task(self):
4511 4513 return self.task_dot_notation
4512 4514
4513 4515 @property
4514 4516 def schedule(self):
4515 4517 from rhodecode.lib.celerylib.utils import raw_2_schedule
4516 4518 schedule = raw_2_schedule(self.schedule_definition, self.schedule_type)
4517 4519 return schedule
4518 4520
4519 4521 @property
4520 4522 def args(self):
4521 4523 try:
4522 4524 return list(self.task_args or [])
4523 4525 except ValueError:
4524 4526 return list()
4525 4527
4526 4528 @property
4527 4529 def kwargs(self):
4528 4530 try:
4529 4531 return dict(self.task_kwargs or {})
4530 4532 except ValueError:
4531 4533 return dict()
4532 4534
4533 4535 def _as_raw(self, val):
4534 4536 if hasattr(val, 'de_coerce'):
4535 4537 val = val.de_coerce()
4536 4538 if val:
4537 4539 val = json.dumps(val)
4538 4540
4539 4541 return val
4540 4542
4541 4543 @property
4542 4544 def schedule_definition_raw(self):
4543 4545 return self._as_raw(self.schedule_definition)
4544 4546
4545 4547 @property
4546 4548 def args_raw(self):
4547 4549 return self._as_raw(self.task_args)
4548 4550
4549 4551 @property
4550 4552 def kwargs_raw(self):
4551 4553 return self._as_raw(self.task_kwargs)
4552 4554
4553 4555 def __repr__(self):
4554 4556 return '<DB:ScheduleEntry({}:{})>'.format(
4555 4557 self.schedule_entry_id, self.schedule_name)
4556 4558
4557 4559
4558 4560 @event.listens_for(ScheduleEntry, 'before_update')
4559 4561 def update_task_uid(mapper, connection, target):
4560 4562 target.task_uid = ScheduleEntry.get_uid(target)
4561 4563
4562 4564
4563 4565 @event.listens_for(ScheduleEntry, 'before_insert')
4564 4566 def set_task_uid(mapper, connection, target):
4565 4567 target.task_uid = ScheduleEntry.get_uid(target)
4566 4568
4567 4569
4568 4570 class _BaseBranchPerms(BaseModel):
4569 4571 @classmethod
4570 4572 def compute_hash(cls, value):
4571 4573 return sha1_safe(value)
4572 4574
4573 4575 @hybrid_property
4574 4576 def branch_pattern(self):
4575 4577 return self._branch_pattern or '*'
4576 4578
4577 4579 @hybrid_property
4578 4580 def branch_hash(self):
4579 4581 return self._branch_hash
4580 4582
4581 4583 def _validate_glob(self, value):
4582 4584 re.compile('^' + glob2re(value) + '$')
4583 4585
4584 4586 @branch_pattern.setter
4585 4587 def branch_pattern(self, value):
4586 4588 self._validate_glob(value)
4587 4589 self._branch_pattern = value or '*'
4588 4590 # set the Hash when setting the branch pattern
4589 4591 self._branch_hash = self.compute_hash(self._branch_pattern)
4590 4592
4591 4593 def matches(self, branch):
4592 4594 """
4593 4595 Check if this the branch matches entry
4594 4596
4595 4597 :param branch: branch name for the commit
4596 4598 """
4597 4599
4598 4600 branch = branch or ''
4599 4601
4600 4602 branch_matches = True
4601 4603 if branch:
4602 4604 branch_regex = re.compile('^' + glob2re(self.branch_pattern) + '$')
4603 4605 branch_matches = bool(branch_regex.search(branch))
4604 4606
4605 4607 return branch_matches
4606 4608
4607 4609
4608 4610 class UserToRepoBranchPermission(Base, _BaseBranchPerms):
4609 4611 __tablename__ = 'user_to_repo_branch_permissions'
4610 4612 __table_args__ = (
4611 4613 {'extend_existing': True, 'mysql_engine': 'InnoDB',
4612 4614 'mysql_charset': 'utf8', 'sqlite_autoincrement': True,}
4613 4615 )
4614 4616
4615 4617 branch_rule_id = Column('branch_rule_id', Integer(), primary_key=True)
4616 4618
4617 4619 repository_id = Column('repository_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
4618 4620 repo = relationship('Repository', backref='user_branch_perms')
4619 4621
4620 4622 permission_id = Column('permission_id', Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
4621 4623 permission = relationship('Permission')
4622 4624
4623 4625 rule_to_perm_id = Column('rule_to_perm_id', Integer(), ForeignKey('repo_to_perm.repo_to_perm_id'), nullable=False, unique=None, default=None)
4624 4626 user_repo_to_perm = relationship('UserRepoToPerm')
4625 4627
4626 4628 rule_order = Column('rule_order', Integer(), nullable=False)
4627 4629 _branch_pattern = Column('branch_pattern', UnicodeText().with_variant(UnicodeText(2048), 'mysql'), default=u'*') # glob
4628 4630 _branch_hash = Column('branch_hash', UnicodeText().with_variant(UnicodeText(2048), 'mysql'))
4629 4631
4630 4632 def __unicode__(self):
4631 4633 return u'<UserBranchPermission(%s => %r)>' % (
4632 4634 self.user_repo_to_perm, self.branch_pattern)
4633 4635
4634 4636
4635 4637 class UserGroupToRepoBranchPermission(Base, _BaseBranchPerms):
4636 4638 __tablename__ = 'user_group_to_repo_branch_permissions'
4637 4639 __table_args__ = (
4638 4640 {'extend_existing': True, 'mysql_engine': 'InnoDB',
4639 4641 'mysql_charset': 'utf8', 'sqlite_autoincrement': True,}
4640 4642 )
4641 4643
4642 4644 branch_rule_id = Column('branch_rule_id', Integer(), primary_key=True)
4643 4645
4644 4646 repository_id = Column('repository_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
4645 4647 repo = relationship('Repository', backref='user_group_branch_perms')
4646 4648
4647 4649 permission_id = Column('permission_id', Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
4648 4650 permission = relationship('Permission')
4649 4651
4650 4652 rule_to_perm_id = Column('rule_to_perm_id', Integer(), ForeignKey('users_group_repo_to_perm.users_group_to_perm_id'), nullable=False, unique=None, default=None)
4651 4653 user_group_repo_to_perm = relationship('UserGroupRepoToPerm')
4652 4654
4653 4655 rule_order = Column('rule_order', Integer(), nullable=False)
4654 4656 _branch_pattern = Column('branch_pattern', UnicodeText().with_variant(UnicodeText(2048), 'mysql'), default=u'*') # glob
4655 4657 _branch_hash = Column('branch_hash', UnicodeText().with_variant(UnicodeText(2048), 'mysql'))
4656 4658
4657 4659 def __unicode__(self):
4658 4660 return u'<UserBranchPermission(%s => %r)>' % (
4659 4661 self.user_group_repo_to_perm, self.branch_pattern)
4660 4662
4661 4663
4662 4664 class DbMigrateVersion(Base, BaseModel):
4663 4665 __tablename__ = 'db_migrate_version'
4664 4666 __table_args__ = (
4665 4667 base_table_args,
4666 4668 )
4667 4669
4668 4670 repository_id = Column('repository_id', String(250), primary_key=True)
4669 4671 repository_path = Column('repository_path', Text)
4670 4672 version = Column('version', Integer)
4671 4673
4672 4674 @classmethod
4673 4675 def set_version(cls, version):
4674 4676 """
4675 4677 Helper for forcing a different version, usually for debugging purposes via ishell.
4676 4678 """
4677 4679 ver = DbMigrateVersion.query().first()
4678 4680 ver.version = version
4679 4681 Session().commit()
4680 4682
4681 4683
4682 4684 class DbSession(Base, BaseModel):
4683 4685 __tablename__ = 'db_session'
4684 4686 __table_args__ = (
4685 4687 base_table_args,
4686 4688 )
4687 4689
4688 4690 def __repr__(self):
4689 4691 return '<DB:DbSession({})>'.format(self.id)
4690 4692
4691 4693 id = Column('id', Integer())
4692 4694 namespace = Column('namespace', String(255), primary_key=True)
4693 4695 accessed = Column('accessed', DateTime, nullable=False)
4694 4696 created = Column('created', DateTime, nullable=False)
4695 4697 data = Column('data', PickleType, nullable=False)
General Comments 0
You need to be logged in to leave comments. Login now