views.py
190 lines
| 6.8 KiB
| text/x-python
|
PythonLexer
r1 | # -*- coding: utf-8 -*- | |||
# Copyright (C) 2012-2016 RhodeCode GmbH | ||||
# | ||||
# This program is free software: you can redistribute it and/or modify | ||||
# it under the terms of the GNU Affero General Public License, version 3 | ||||
# (only), as published by the Free Software Foundation. | ||||
# | ||||
# This program is distributed in the hope that it will be useful, | ||||
# but WITHOUT ANY WARRANTY; without even the implied warranty of | ||||
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | ||||
# GNU General Public License for more details. | ||||
# | ||||
# You should have received a copy of the GNU Affero General Public License | ||||
# along with this program. If not, see <http://www.gnu.org/licenses/>. | ||||
# | ||||
# This program is dual-licensed. If you wish to learn more about the | ||||
# RhodeCode Enterprise Edition, including its added features, Support services, | ||||
# and proprietary license terms, please see https://rhodecode.com/licenses/ | ||||
import colander | ||||
import formencode.htmlfill | ||||
import logging | ||||
from pyramid.httpexceptions import HTTPFound | ||||
from pyramid.renderers import render | ||||
from pyramid.response import Response | ||||
from rhodecode.authentication.base import get_auth_cache_manager | ||||
from rhodecode.authentication.interface import IAuthnPluginRegistry | ||||
from rhodecode.lib import auth | ||||
from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator | ||||
from rhodecode.model.forms import AuthSettingsForm | ||||
from rhodecode.model.meta import Session | ||||
from rhodecode.model.settings import SettingsModel | ||||
r51 | from rhodecode.translation import _ | |||
r1 | ||||
log = logging.getLogger(__name__) | ||||
class AuthnPluginViewBase(object): | ||||
def __init__(self, context, request): | ||||
self.request = request | ||||
self.context = context | ||||
self.plugin = context.plugin | ||||
Martin Bornhold
|
r173 | self._rhodecode_user = request.user | ||
r1 | ||||
Martin Bornhold
|
r173 | @LoginRequired() | ||
@HasPermissionAllDecorator('hg.admin') | ||||
r90 | def settings_get(self, defaults=None, errors=None): | |||
r1 | """ | |||
View that displays the plugin settings as a form. | ||||
""" | ||||
r90 | defaults = defaults or {} | |||
errors = errors or {} | ||||
r1 | schema = self.plugin.get_settings_schema() | |||
r237 | # Compute default values for the form. Priority is: | |||
# 1. Passed to this method 2. DB value 3. Schema default | ||||
r90 | for node in schema: | |||
Martin Bornhold
|
r285 | if node.name not in defaults: | ||
defaults[node.name] = self.plugin.get_setting_by_name( | ||||
node.name, node.default) | ||||
r1 | ||||
template_context = { | ||||
r90 | 'defaults': defaults, | |||
r84 | 'errors': errors, | |||
'plugin': self.context.plugin, | ||||
r1 | 'resource': self.context, | |||
} | ||||
r84 | return template_context | |||
r1 | ||||
Martin Bornhold
|
r173 | @LoginRequired() | ||
@HasPermissionAllDecorator('hg.admin') | ||||
@auth.CSRFRequired() | ||||
r1 | def settings_post(self): | |||
""" | ||||
View that validates and stores the plugin settings. | ||||
""" | ||||
schema = self.plugin.get_settings_schema() | ||||
try: | ||||
valid_data = schema.deserialize(self.request.params) | ||||
except colander.Invalid, e: | ||||
# Display error message and display form again. | ||||
self.request.session.flash( | ||||
_('Errors exist when saving plugin settings. ' | ||||
r84 | 'Please check the form inputs.'), | |||
r1 | queue='error') | |||
r90 | defaults = schema.flatten(self.request.params) | |||
return self.settings_get(errors=e.asdict(), defaults=defaults) | ||||
r1 | ||||
# Store validated data. | ||||
for name, value in valid_data.items(): | ||||
self.plugin.create_or_update_setting(name, value) | ||||
Session.commit() | ||||
# Display success message and redirect. | ||||
self.request.session.flash( | ||||
_('Auth settings updated successfully.'), | ||||
queue='success') | ||||
redirect_to = self.request.resource_path( | ||||
self.context, route_name='auth_home') | ||||
return HTTPFound(redirect_to) | ||||
# TODO: Ongoing migration in these views. | ||||
# - Maybe we should also use a colander schema for these views. | ||||
class AuthSettingsView(object): | ||||
def __init__(self, context, request): | ||||
self.context = context | ||||
self.request = request | ||||
# TODO: Move this into a utility function. It is needed in all view | ||||
# classes during migration. Maybe a mixin? | ||||
# Some of the decorators rely on this attribute to be present on the | ||||
# class of the decorated method. | ||||
self._rhodecode_user = request.user | ||||
@LoginRequired() | ||||
@HasPermissionAllDecorator('hg.admin') | ||||
r90 | def index(self, defaults=None, errors=None, prefix_error=False): | |||
defaults = defaults or {} | ||||
r1 | authn_registry = self.request.registry.getUtility(IAuthnPluginRegistry) | |||
r52 | enabled_plugins = SettingsModel().get_auth_plugins() | |||
r1 | ||||
# Create template context and render it. | ||||
template_context = { | ||||
'resource': self.context, | ||||
'available_plugins': authn_registry.get_plugins(), | ||||
'enabled_plugins': enabled_plugins, | ||||
} | ||||
html = render('rhodecode:templates/admin/auth/auth_settings.html', | ||||
template_context, | ||||
request=self.request) | ||||
# Create form default values and fill the form. | ||||
form_defaults = { | ||||
'auth_plugins': ','.join(enabled_plugins) | ||||
} | ||||
form_defaults.update(defaults) | ||||
html = formencode.htmlfill.render( | ||||
html, | ||||
defaults=form_defaults, | ||||
errors=errors, | ||||
prefix_error=prefix_error, | ||||
encoding="UTF-8", | ||||
force_defaults=False) | ||||
return Response(html) | ||||
@LoginRequired() | ||||
@HasPermissionAllDecorator('hg.admin') | ||||
@auth.CSRFRequired() | ||||
def auth_settings(self): | ||||
try: | ||||
form = AuthSettingsForm()() | ||||
form_result = form.to_python(self.request.params) | ||||
plugins = ','.join(form_result['auth_plugins']) | ||||
setting = SettingsModel().create_or_update_setting( | ||||
'auth_plugins', plugins) | ||||
Session().add(setting) | ||||
Session().commit() | ||||
cache_manager = get_auth_cache_manager() | ||||
cache_manager.clear() | ||||
self.request.session.flash( | ||||
_('Auth settings updated successfully.'), | ||||
queue='success') | ||||
except formencode.Invalid as errors: | ||||
e = errors.error_dict or {} | ||||
self.request.session.flash( | ||||
_('Errors exist when saving plugin setting. ' | ||||
'Please check the form inputs.'), | ||||
queue='error') | ||||
return self.index( | ||||
defaults=errors.value, | ||||
errors=e, | ||||
prefix_error=False) | ||||
except Exception: | ||||
log.exception('Exception in auth_settings') | ||||
self.request.session.flash( | ||||
_('Error occurred during update of auth settings.'), | ||||
queue='error') | ||||
redirect_to = self.request.resource_path( | ||||
self.context, route_name='auth_home') | ||||
return HTTPFound(redirect_to) | ||||