views.py
192 lines
| 6.8 KiB
| text/x-python
|
PythonLexer
| r1 | # -*- coding: utf-8 -*- | |||
| # Copyright (C) 2012-2016 RhodeCode GmbH | ||||
| # | ||||
| # This program is free software: you can redistribute it and/or modify | ||||
| # it under the terms of the GNU Affero General Public License, version 3 | ||||
| # (only), as published by the Free Software Foundation. | ||||
| # | ||||
| # This program is distributed in the hope that it will be useful, | ||||
| # but WITHOUT ANY WARRANTY; without even the implied warranty of | ||||
| # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | ||||
| # GNU General Public License for more details. | ||||
| # | ||||
| # You should have received a copy of the GNU Affero General Public License | ||||
| # along with this program. If not, see <http://www.gnu.org/licenses/>. | ||||
| # | ||||
| # This program is dual-licensed. If you wish to learn more about the | ||||
| # RhodeCode Enterprise Edition, including its added features, Support services, | ||||
| # and proprietary license terms, please see https://rhodecode.com/licenses/ | ||||
| import colander | ||||
| import formencode.htmlfill | ||||
| import logging | ||||
| from pyramid.httpexceptions import HTTPFound | ||||
| from pyramid.renderers import render | ||||
| from pyramid.response import Response | ||||
| from rhodecode.authentication.base import get_auth_cache_manager | ||||
| from rhodecode.authentication.interface import IAuthnPluginRegistry | ||||
| from rhodecode.lib import auth | ||||
| from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator | ||||
| from rhodecode.model.forms import AuthSettingsForm | ||||
| from rhodecode.model.meta import Session | ||||
| from rhodecode.model.settings import SettingsModel | ||||
| r51 | from rhodecode.translation import _ | |||
| r1 | ||||
| log = logging.getLogger(__name__) | ||||
| class AuthnPluginViewBase(object): | ||||
| def __init__(self, context, request): | ||||
| self.request = request | ||||
| self.context = context | ||||
| self.plugin = context.plugin | ||||
Martin Bornhold
|
r173 | self._rhodecode_user = request.user | ||
| r1 | ||||
|
Martin Bornhold
|
r173 | @LoginRequired() | ||
| @HasPermissionAllDecorator('hg.admin') | ||||
| r90 | def settings_get(self, defaults=None, errors=None): | |||
| r1 | """ | |||
| View that displays the plugin settings as a form. | ||||
| """ | ||||
| r90 | defaults = defaults or {} | |||
| errors = errors or {} | ||||
| r1 | schema = self.plugin.get_settings_schema() | |||
| r237 | # Compute default values for the form. Priority is: | |||
| # 1. Passed to this method 2. DB value 3. Schema default | ||||
| r90 | for node in schema: | |||
|
Martin Bornhold
|
r285 | if node.name not in defaults: | ||
| defaults[node.name] = self.plugin.get_setting_by_name( | ||||
| node.name, node.default) | ||||
| r1 | ||||
| template_context = { | ||||
| r90 | 'defaults': defaults, | |||
| r84 | 'errors': errors, | |||
| 'plugin': self.context.plugin, | ||||
| r1 | 'resource': self.context, | |||
| } | ||||
| r84 | return template_context | |||
| r1 | ||||
|
Martin Bornhold
|
r173 | @LoginRequired() | ||
| @HasPermissionAllDecorator('hg.admin') | ||||
| @auth.CSRFRequired() | ||||
| r1 | def settings_post(self): | |||
| """ | ||||
| View that validates and stores the plugin settings. | ||||
| """ | ||||
| schema = self.plugin.get_settings_schema() | ||||
|
Martin Bornhold
|
r291 | data = self.request.params | ||
| r1 | try: | |||
|
Martin Bornhold
|
r291 | valid_data = schema.deserialize(data) | ||
| r1 | except colander.Invalid, e: | |||
| # Display error message and display form again. | ||||
| self.request.session.flash( | ||||
| _('Errors exist when saving plugin settings. ' | ||||
| r84 | 'Please check the form inputs.'), | |||
| r1 | queue='error') | |||
|
Martin Bornhold
|
r291 | defaults = {key: data[key] for key in data if key in schema} | ||
| r90 | return self.settings_get(errors=e.asdict(), defaults=defaults) | |||
| r1 | ||||
| # Store validated data. | ||||
| for name, value in valid_data.items(): | ||||
| self.plugin.create_or_update_setting(name, value) | ||||
| Session.commit() | ||||
| # Display success message and redirect. | ||||
| self.request.session.flash( | ||||
| _('Auth settings updated successfully.'), | ||||
| queue='success') | ||||
| redirect_to = self.request.resource_path( | ||||
| self.context, route_name='auth_home') | ||||
| return HTTPFound(redirect_to) | ||||
| # TODO: Ongoing migration in these views. | ||||
| # - Maybe we should also use a colander schema for these views. | ||||
| class AuthSettingsView(object): | ||||
| def __init__(self, context, request): | ||||
| self.context = context | ||||
| self.request = request | ||||
| # TODO: Move this into a utility function. It is needed in all view | ||||
| # classes during migration. Maybe a mixin? | ||||
| # Some of the decorators rely on this attribute to be present on the | ||||
| # class of the decorated method. | ||||
| self._rhodecode_user = request.user | ||||
| @LoginRequired() | ||||
| @HasPermissionAllDecorator('hg.admin') | ||||
| r90 | def index(self, defaults=None, errors=None, prefix_error=False): | |||
| defaults = defaults or {} | ||||
| r1 | authn_registry = self.request.registry.getUtility(IAuthnPluginRegistry) | |||
| r52 | enabled_plugins = SettingsModel().get_auth_plugins() | |||
| r1 | ||||
| # Create template context and render it. | ||||
| template_context = { | ||||
| 'resource': self.context, | ||||
| 'available_plugins': authn_registry.get_plugins(), | ||||
| 'enabled_plugins': enabled_plugins, | ||||
| } | ||||
| html = render('rhodecode:templates/admin/auth/auth_settings.html', | ||||
| template_context, | ||||
| request=self.request) | ||||
| # Create form default values and fill the form. | ||||
| form_defaults = { | ||||
| 'auth_plugins': ','.join(enabled_plugins) | ||||
| } | ||||
| form_defaults.update(defaults) | ||||
| html = formencode.htmlfill.render( | ||||
| html, | ||||
| defaults=form_defaults, | ||||
| errors=errors, | ||||
| prefix_error=prefix_error, | ||||
| encoding="UTF-8", | ||||
| force_defaults=False) | ||||
| return Response(html) | ||||
| @LoginRequired() | ||||
| @HasPermissionAllDecorator('hg.admin') | ||||
| @auth.CSRFRequired() | ||||
| def auth_settings(self): | ||||
| try: | ||||
| form = AuthSettingsForm()() | ||||
| form_result = form.to_python(self.request.params) | ||||
| plugins = ','.join(form_result['auth_plugins']) | ||||
| setting = SettingsModel().create_or_update_setting( | ||||
| 'auth_plugins', plugins) | ||||
| Session().add(setting) | ||||
| Session().commit() | ||||
| cache_manager = get_auth_cache_manager() | ||||
| cache_manager.clear() | ||||
| self.request.session.flash( | ||||
| _('Auth settings updated successfully.'), | ||||
| queue='success') | ||||
| except formencode.Invalid as errors: | ||||
| e = errors.error_dict or {} | ||||
| self.request.session.flash( | ||||
| _('Errors exist when saving plugin setting. ' | ||||
| 'Please check the form inputs.'), | ||||
| queue='error') | ||||
| return self.index( | ||||
| defaults=errors.value, | ||||
| errors=e, | ||||
| prefix_error=False) | ||||
| except Exception: | ||||
| log.exception('Exception in auth_settings') | ||||
| self.request.session.flash( | ||||
| _('Error occurred during update of auth settings.'), | ||||
| queue='error') | ||||
| redirect_to = self.request.resource_path( | ||||
| self.context, route_name='auth_home') | ||||
| return HTTPFound(redirect_to) | ||||
