u/pc/rhodecode-enterprise-ce-fork-pc Commit - r3367:2e466d45

forks: don't expose fork link if we don't have permission to read it, and also don't pre-select in pull request.

marcink -

r3367:2e466d45 default

parent child

rhodecode/apps/_base/__init__.py

0 +6 0

             # -*- coding: utf-8 -*-
             # Copyright (C) 2016-2019 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import time
             import logging
             import operator
             from pyramid.httpexceptions import HTTPFound, HTTPForbidden, HTTPBadRequest
             from rhodecode.lib import helpers as h, diffs
             from rhodecode.lib.utils2 import (
                 StrictAttributeDict, safe_int, datetime_to_time, safe_unicode)
             from rhodecode.lib.vcs.exceptions import RepositoryRequirementError
             from rhodecode.model import repo
             from rhodecode.model import repo_group
             from rhodecode.model import user_group
             from rhodecode.model import user
             from rhodecode.model.db import User
             from rhodecode.model.scm import ScmModel
             from rhodecode.model.settings import VcsSettingsModel
             log = logging.getLogger(__name__)
             ADMIN_PREFIX = '/_admin'
             STATIC_FILE_PREFIX = '/_static'
             URL_NAME_REQUIREMENTS = {
                 # group name can have a slash in them, but they must not end with a slash
                 'group_name': r'.*?[^/]',
                 'repo_group_name': r'.*?[^/]',
                 # repo names can have a slash in them, but they must not end with a slash
                 'repo_name': r'.*?[^/]',
                 # file path eats up everything at the end
                 'f_path': r'.*',
                 # reference types
                 'source_ref_type': '(branch|book|tag|rev|\%\(source_ref_type\)s)',
                 'target_ref_type': '(branch|book|tag|rev|\%\(target_ref_type\)s)',
             }
             def add_route_with_slash(config,name, pattern, **kw):
                 config.add_route(name, pattern, **kw)
                 if not pattern.endswith('/'):
                     config.add_route(name + '_slash', pattern + '/', **kw)
             def add_route_requirements(route_path, requirements=None):
                 """
                 Adds regex requirements to pyramid routes using a mapping dict
                 e.g::
                     add_route_requirements('{repo_name}/settings')
                 """
                 requirements = requirements or URL_NAME_REQUIREMENTS
                 for key, regex in requirements.items():
                     route_path = route_path.replace('{%s}' % key, '{%s:%s}' % (key, regex))
                 return route_path
             def get_format_ref_id(repo):
                 """Returns a `repo` specific reference formatter function"""
                 if h.is_svn(repo):
                     return _format_ref_id_svn
                 else:
                     return _format_ref_id
             def _format_ref_id(name, raw_id):
                 """Default formatting of a given reference `name`"""
                 return name
             def _format_ref_id_svn(name, raw_id):
                 """Special way of formatting a reference for Subversion including path"""
                 return '%s@%s' % (name, raw_id)
             class TemplateArgs(StrictAttributeDict):
                 pass
             class BaseAppView(object):
                 def __init__(self, context, request):
                     self.request = request
                     self.context = context
                     self.session = request.session
                     if not hasattr(request, 'user'):
                         # NOTE(marcink): edge case, we ended up in matched route
                         # but probably of web-app context, e.g API CALL/VCS CALL
                         if hasattr(request, 'vcs_call') or hasattr(request, 'rpc_method'):
                             log.warning('Unable to process request `%s` in this scope', request)
                             raise HTTPBadRequest()
                     self._rhodecode_user = request.user  # auth user
                     self._rhodecode_db_user = self._rhodecode_user.get_instance()
                     self._maybe_needs_password_change(
                         request.matched_route.name, self._rhodecode_db_user)
                 def _maybe_needs_password_change(self, view_name, user_obj):
                     log.debug('Checking if user %s needs password change on view %s',
                               user_obj, view_name)
                     skip_user_views = [
                         'logout', 'login',
                         'my_account_password', 'my_account_password_update'
                     ]
                     if not user_obj:
                         return
                     if user_obj.username == User.DEFAULT_USER:
                         return
                     now = time.time()
                     should_change = user_obj.user_data.get('force_password_change')
                     change_after = safe_int(should_change) or 0
                     if should_change and now > change_after:
                         log.debug('User %s requires password change', user_obj)
                         h.flash('You are required to change your password', 'warning',
                                 ignore_duplicate=True)
                         if view_name not in skip_user_views:
                             raise HTTPFound(
                                 self.request.route_path('my_account_password'))
                 def _log_creation_exception(self, e, repo_name):
                     _ = self.request.translate
                     reason = None
                     if len(e.args) == 2:
                         reason = e.args[1]
                     if reason == 'INVALID_CERTIFICATE':
                         log.exception(
                             'Exception creating a repository: invalid certificate')
                         msg = (_('Error creating repository %s: invalid certificate')
                                % repo_name)
                     else:
                         log.exception("Exception creating a repository")
                         msg = (_('Error creating repository %s')
                                % repo_name)
                     return msg
                 def _get_local_tmpl_context(self, include_app_defaults=True):
                     c = TemplateArgs()
                     c.auth_user = self.request.user
                     # TODO(marcink): migrate the usage of c.rhodecode_user to c.auth_user
                     c.rhodecode_user = self.request.user
                     if include_app_defaults:
                         from rhodecode.lib.base import attach_context_attributes
                         attach_context_attributes(c, self.request, self.request.user.user_id)
                     return c
                 def _get_template_context(self, tmpl_args, **kwargs):
                     local_tmpl_args = {
                         'defaults': {},
                         'errors': {},
                         'c': tmpl_args
                     }
                     local_tmpl_args.update(kwargs)
                     return local_tmpl_args
                 def load_default_context(self):
                     """
                     example:
                     def load_default_context(self):
                         c = self._get_local_tmpl_context()
                         c.custom_var = 'foobar'
                         return c
                     """
                     raise NotImplementedError('Needs implementation in view class')
             class RepoAppView(BaseAppView):
                 def __init__(self, context, request):
                     super(RepoAppView, self).__init__(context, request)
                     self.db_repo = request.db_repo
                     self.db_repo_name = self.db_repo.repo_name
                     self.db_repo_pull_requests = ScmModel().get_pull_requests(self.db_repo)
                 def _handle_missing_requirements(self, error):
                     log.error(
                         'Requirements are missing for repository %s: %s',
                         self.db_repo_name, safe_unicode(error))
                 def _get_local_tmpl_context(self, include_app_defaults=True):
                     _ = self.request.translate
                     c = super(RepoAppView, self)._get_local_tmpl_context(
                         include_app_defaults=include_app_defaults)
                     # register common vars for this type of view
                     c.rhodecode_db_repo = self.db_repo
                     c.repo_name = self.db_repo_name
                     c.repository_pull_requests = self.db_repo_pull_requests
                     self.path_filter = PathFilter(None)
                     c.repository_requirements_missing = {}
                     try:
                         self.rhodecode_vcs_repo = self.db_repo.scm_instance()
                         if self.rhodecode_vcs_repo:
                             path_perms = self.rhodecode_vcs_repo.get_path_permissions(
                                 c.auth_user.username)
                             self.path_filter = PathFilter(path_perms)
                     except RepositoryRequirementError as e:
                         c.repository_requirements_missing = {'error': str(e)}
                         self._handle_missing_requirements(e)
                         self.rhodecode_vcs_repo = None
                     c.path_filter = self.path_filter  # used by atom_feed_entry.mako
                     if self.rhodecode_vcs_repo is None:
                         # unable to fetch this repo as vcs instance, report back to user
                         h.flash(_(
                             "The repository `%(repo_name)s` cannot be loaded in filesystem. "
                             "Please check if it exist, or is not damaged.") %
                                 {'repo_name': c.repo_name},
                                 category='error', ignore_duplicate=True)
                         if c.repository_requirements_missing:
                             route = self.request.matched_route.name
                             if route.startswith(('edit_repo', 'repo_summary')):
                                 # allow summary and edit repo on missing requirements
                                 return c
                             raise HTTPFound(
                                 h.route_path('repo_summary', repo_name=self.db_repo_name))
                         else:  # redirect if we don't show missing requirements
                             raise HTTPFound(h.route_path('home'))
+                    c.has_origin_repo_read_perm = False
+                    if self.db_repo.fork:
+                        c.has_origin_repo_read_perm = h.HasRepoPermissionAny(
+                            'repository.write', 'repository.read', 'repository.admin')(
+                            self.db_repo.fork.repo_name, 'summary fork link')
                     return c
                 def _get_f_path_unchecked(self, matchdict, default=None):
                     """
                     Should only be used by redirects, everything else should call _get_f_path
                     """
                     f_path = matchdict.get('f_path')
                     if f_path:
                         # fix for multiple initial slashes that causes errors for GIT
                         return f_path.lstrip('/')
                     return default
                 def _get_f_path(self, matchdict, default=None):
                     f_path_match = self._get_f_path_unchecked(matchdict, default)
                     return self.path_filter.assert_path_permissions(f_path_match)
                 def _get_general_setting(self, target_repo, settings_key, default=False):
                     settings_model = VcsSettingsModel(repo=target_repo)
                     settings = settings_model.get_general_settings()
                     return settings.get(settings_key, default)
             class PathFilter(object):
                 # Expects and instance of BasePathPermissionChecker or None
                 def __init__(self, permission_checker):
                     self.permission_checker = permission_checker
                 def assert_path_permissions(self, path):
                     if path and self.permission_checker and not self.permission_checker.has_access(path):
                         raise HTTPForbidden()
                     return path
                 def filter_patchset(self, patchset):
                     if not self.permission_checker or not patchset:
                         return patchset, False
                     had_filtered = False
                     filtered_patchset = []
                     for patch in patchset:
                         filename = patch.get('filename', None)
                         if not filename or self.permission_checker.has_access(filename):
                             filtered_patchset.append(patch)
                         else:
                             had_filtered = True
                     if had_filtered:
                         if isinstance(patchset, diffs.LimitedDiffContainer):
                             filtered_patchset = diffs.LimitedDiffContainer(patchset.diff_limit, patchset.cur_diff_size, filtered_patchset)
                         return filtered_patchset, True
                     else:
                         return patchset, False
                 def render_patchset_filtered(self, diffset, patchset, source_ref=None, target_ref=None):
                     filtered_patchset, has_hidden_changes = self.filter_patchset(patchset)
                     result = diffset.render_patchset(
                         filtered_patchset, source_ref=source_ref, target_ref=target_ref)
                     result.has_hidden_changes = has_hidden_changes
                     return result
                 def get_raw_patch(self, diff_processor):
                     if self.permission_checker is None:
                         return diff_processor.as_raw()
                     elif self.permission_checker.has_full_access:
                         return diff_processor.as_raw()
                     else:
                         return '# Repository has user-specific filters, raw patch generation is disabled.'
                 @property
                 def is_enabled(self):
                     return self.permission_checker is not None
             class RepoGroupAppView(BaseAppView):
                 def __init__(self, context, request):
                     super(RepoGroupAppView, self).__init__(context, request)
                     self.db_repo_group = request.db_repo_group
                     self.db_repo_group_name = self.db_repo_group.group_name
                 def _revoke_perms_on_yourself(self, form_result):
                     _updates = filter(lambda u: self._rhodecode_user.user_id == int(u[0]),
                                       form_result['perm_updates'])
                     _additions = filter(lambda u: self._rhodecode_user.user_id == int(u[0]),
                                         form_result['perm_additions'])
                     _deletions = filter(lambda u: self._rhodecode_user.user_id == int(u[0]),
                                         form_result['perm_deletions'])
                     admin_perm = 'group.admin'
                     if _updates and _updates[0][1] != admin_perm or \
                        _additions and _additions[0][1] != admin_perm or \
                        _deletions and _deletions[0][1] != admin_perm:
                         return True
                     return False
             class UserGroupAppView(BaseAppView):
                 def __init__(self, context, request):
                     super(UserGroupAppView, self).__init__(context, request)
                     self.db_user_group = request.db_user_group
                     self.db_user_group_name = self.db_user_group.users_group_name
             class UserAppView(BaseAppView):
                 def __init__(self, context, request):
                     super(UserAppView, self).__init__(context, request)
                     self.db_user = request.db_user
                     self.db_user_id = self.db_user.user_id
                     _ = self.request.translate
                     if not request.db_user_supports_default:
                         if self.db_user.username == User.DEFAULT_USER:
                             h.flash(_("Editing user `{}` is disabled.".format(
                                 User.DEFAULT_USER)), category='warning')
                             raise HTTPFound(h.route_path('users'))
             class DataGridAppView(object):
                 """
                 Common class to have re-usable grid rendering components
                 """
                 def _extract_ordering(self, request, column_map=None):
                     column_map = column_map or {}
                     column_index = safe_int(request.GET.get('order[0][column]'))
                     order_dir = request.GET.get(
                         'order[0][dir]', 'desc')
                     order_by = request.GET.get(
                         'columns[%s][data][sort]' % column_index, 'name_raw')
                     # translate datatable to DB columns
                     order_by = column_map.get(order_by) or order_by
                     search_q = request.GET.get('search[value]')
                     return search_q, order_by, order_dir
                 def _extract_chunk(self, request):
                     start = safe_int(request.GET.get('start'), 0)
                     length = safe_int(request.GET.get('length'), 25)
                     draw = safe_int(request.GET.get('draw'))
                     return draw, start, length
                 def _get_order_col(self, order_by, model):
                     if isinstance(order_by, basestring):
                         try:
                             return operator.attrgetter(order_by)(model)
                         except AttributeError:
                             return None
                     else:
                         return order_by
             class BaseReferencesView(RepoAppView):
                 """
                 Base for reference view for branches, tags and bookmarks.
                 """
                 def load_default_context(self):
                     c = self._get_local_tmpl_context()
                     return c
                 def load_refs_context(self, ref_items, partials_template):
                     _render = self.request.get_partial_renderer(partials_template)
                     pre_load = ["author", "date", "message"]
                     is_svn = h.is_svn(self.rhodecode_vcs_repo)
                     is_hg = h.is_hg(self.rhodecode_vcs_repo)
                     format_ref_id = get_format_ref_id(self.rhodecode_vcs_repo)
                     closed_refs = {}
                     if is_hg:
                         closed_refs = self.rhodecode_vcs_repo.branches_closed
                     data = []
                     for ref_name, commit_id in ref_items:
                         commit = self.rhodecode_vcs_repo.get_commit(
                             commit_id=commit_id, pre_load=pre_load)
                         closed = ref_name in closed_refs
                         # TODO: johbo: Unify generation of reference links
                         use_commit_id = '/' in ref_name or is_svn
                         if use_commit_id:
                             files_url = h.route_path(
                                 'repo_files',
                                 repo_name=self.db_repo_name,
                                 f_path=ref_name if is_svn else '',
                                 commit_id=commit_id)
                         else:
                             files_url = h.route_path(
                                 'repo_files',
                                 repo_name=self.db_repo_name,
                                 f_path=ref_name if is_svn else '',
                                 commit_id=ref_name,
                                 _query=dict(at=ref_name))
                         data.append({
                             "name": _render('name', ref_name, files_url, closed),
                             "name_raw": ref_name,
                             "date": _render('date', commit.date),
                             "date_raw": datetime_to_time(commit.date),
                             "author": _render('author', commit.author),
                             "commit": _render(
                                 'commit', commit.message, commit.raw_id, commit.idx),
                             "commit_raw": commit.idx,
                             "compare": _render(
                                 'compare', format_ref_id(ref_name, commit.raw_id)),
                         })
                     return data
             class RepoRoutePredicate(object):
                 def __init__(self, val, config):
                     self.val = val
                 def text(self):
                     return 'repo_route = %s' % self.val
                 phash = text
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     repo_name = info['match']['repo_name']
                     repo_model = repo.RepoModel()
                     by_name_match = repo_model.get_by_repo_name(repo_name, cache=False)
                     def redirect_if_creating(route_info, db_repo):
                         skip_views = ['edit_repo_advanced_delete']
                         route = route_info['route']
                         # we should skip delete view so we can actually "remove" repositories
                         # if they get stuck in creating state.
                         if route.name in skip_views:
                             return
                         if db_repo.repo_state in [repo.Repository.STATE_PENDING]:
                             repo_creating_url = request.route_path(
                                 'repo_creating', repo_name=db_repo.repo_name)
                             raise HTTPFound(repo_creating_url)
                     if by_name_match:
                         # register this as request object we can re-use later
                         request.db_repo = by_name_match
                         redirect_if_creating(info, by_name_match)
                         return True
                     by_id_match = repo_model.get_repo_by_id(repo_name)
                     if by_id_match:
                         request.db_repo = by_id_match
                         redirect_if_creating(info, by_id_match)
                         return True
                     return False
             class RepoForbidArchivedRoutePredicate(object):
                 def __init__(self, val, config):
                     self.val = val
                 def text(self):
                     return 'repo_forbid_archived = %s' % self.val
                 phash = text
                 def __call__(self, info, request):
                     _ = request.translate
                     rhodecode_db_repo = request.db_repo
                     log.debug(
                         '%s checking if archived flag for repo for %s',
                         self.__class__.__name__, rhodecode_db_repo.repo_name)
                     if rhodecode_db_repo.archived:
                         log.warning('Current view is not supported for archived repo:%s',
                                     rhodecode_db_repo.repo_name)
                         h.flash(
                             h.literal(_('Action not supported for archived repository.')),
                             category='warning')
                         summary_url = request.route_path(
                             'repo_summary', repo_name=rhodecode_db_repo.repo_name)
                         raise HTTPFound(summary_url)
                     return True
             class RepoTypeRoutePredicate(object):
                 def __init__(self, val, config):
                     self.val = val or ['hg', 'git', 'svn']
                 def text(self):
                     return 'repo_accepted_type = %s' % self.val
                 phash = text
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     rhodecode_db_repo = request.db_repo
                     log.debug(
                         '%s checking repo type for %s in %s',
                         self.__class__.__name__, rhodecode_db_repo.repo_type, self.val)
                     if rhodecode_db_repo.repo_type in self.val:
                         return True
                     else:
                         log.warning('Current view is not supported for repo type:%s',
                                     rhodecode_db_repo.repo_type)
                         return False
             class RepoGroupRoutePredicate(object):
                 def __init__(self, val, config):
                     self.val = val
                 def text(self):
                     return 'repo_group_route = %s' % self.val
                 phash = text
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     repo_group_name = info['match']['repo_group_name']
                     repo_group_model = repo_group.RepoGroupModel()
                     by_name_match = repo_group_model.get_by_group_name(repo_group_name, cache=False)
                     if by_name_match:
                         # register this as request object we can re-use later
                         request.db_repo_group = by_name_match
                         return True
                     return False
             class UserGroupRoutePredicate(object):
                 def __init__(self, val, config):
                     self.val = val
                 def text(self):
                     return 'user_group_route = %s' % self.val
                 phash = text
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     user_group_id = info['match']['user_group_id']
                     user_group_model = user_group.UserGroup()
                     by_id_match = user_group_model.get(user_group_id, cache=False)
                     if by_id_match:
                         # register this as request object we can re-use later
                         request.db_user_group = by_id_match
                         return True
                     return False
             class UserRoutePredicateBase(object):
                 supports_default = None
                 def __init__(self, val, config):
                     self.val = val
                 def text(self):
                     raise NotImplementedError()
                 def __call__(self, info, request):
                     if hasattr(request, 'vcs_call'):
                         # skip vcs calls
                         return
                     user_id = info['match']['user_id']
                     user_model = user.User()
                     by_id_match = user_model.get(user_id, cache=False)
                     if by_id_match:
                         # register this as request object we can re-use later
                         request.db_user = by_id_match
                         request.db_user_supports_default = self.supports_default
                         return True
                     return False
             class UserRoutePredicate(UserRoutePredicateBase):
                 supports_default = False
                 def text(self):
                     return 'user_route = %s' % self.val
                 phash = text
             class UserRouteWithDefaultPredicate(UserRoutePredicateBase):
                 supports_default = True
                 def text(self):
                     return 'user_with_default_route = %s' % self.val
                 phash = text
             def includeme(config):
                 config.add_route_predicate(
                     'repo_route', RepoRoutePredicate)
                 config.add_route_predicate(
                     'repo_accepted_types', RepoTypeRoutePredicate)
                 config.add_route_predicate(
                     'repo_forbid_when_archived', RepoForbidArchivedRoutePredicate)
                 config.add_route_predicate(
                     'repo_group_route', RepoGroupRoutePredicate)
                 config.add_route_predicate(
                     'user_group_route', UserGroupRoutePredicate)
                 config.add_route_predicate(
                     'user_route_with_default', UserRouteWithDefaultPredicate)
                 config.add_route_predicate(
                     'user_route', UserRoutePredicate)

rhodecode/apps/repository/views/repo_pull_requests.py

0 +2 -1

             # -*- coding: utf-8 -*-
             # Copyright (C) 2011-2019 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import logging
             import collections
             import formencode
             import formencode.htmlfill
             import peppercorn
             from pyramid.httpexceptions import (
                 HTTPFound, HTTPNotFound, HTTPForbidden, HTTPBadRequest)
             from pyramid.view import view_config
             from pyramid.renderers import render
             from rhodecode import events
             from rhodecode.apps._base import RepoAppView, DataGridAppView
             from rhodecode.lib import helpers as h, diffs, codeblocks, channelstream
             from rhodecode.lib.base import vcs_operation_context
             from rhodecode.lib.diffs import load_cached_diff, cache_diff, diff_cache_exist
             from rhodecode.lib.ext_json import json
             from rhodecode.lib.auth import (
                 LoginRequired, HasRepoPermissionAny, HasRepoPermissionAnyDecorator,
                 NotAnonymous, CSRFRequired)
             from rhodecode.lib.utils2 import str2bool, safe_str, safe_unicode
             from rhodecode.lib.vcs.backends.base import EmptyCommit, UpdateFailureReason
             from rhodecode.lib.vcs.exceptions import (CommitDoesNotExistError,
                 RepositoryRequirementError, EmptyRepositoryError)
             from rhodecode.model.changeset_status import ChangesetStatusModel
             from rhodecode.model.comment import CommentsModel
             from rhodecode.model.db import (func, or_, PullRequest, PullRequestVersion,
                 ChangesetComment, ChangesetStatus, Repository)
             from rhodecode.model.forms import PullRequestForm
             from rhodecode.model.meta import Session
             from rhodecode.model.pull_request import PullRequestModel, MergeCheck
             from rhodecode.model.scm import ScmModel
             log = logging.getLogger(__name__)
             class RepoPullRequestsView(RepoAppView, DataGridAppView):
                 def load_default_context(self):
                     c = self._get_local_tmpl_context(include_app_defaults=True)
                     c.REVIEW_STATUS_APPROVED = ChangesetStatus.STATUS_APPROVED
                     c.REVIEW_STATUS_REJECTED = ChangesetStatus.STATUS_REJECTED
                     # backward compat., we use for OLD PRs a plain renderer
                     c.renderer = 'plain'
                     return c
                 def _get_pull_requests_list(
                         self, repo_name, source, filter_type, opened_by, statuses):
                     draw, start, limit = self._extract_chunk(self.request)
                     search_q, order_by, order_dir = self._extract_ordering(self.request)
                     _render = self.request.get_partial_renderer(
                         'rhodecode:templates/data_table/_dt_elements.mako')
                     # pagination
                     if filter_type == 'awaiting_review':
                         pull_requests = PullRequestModel().get_awaiting_review(
                             repo_name, source=source, opened_by=opened_by,
                             statuses=statuses, offset=start, length=limit,
                             order_by=order_by, order_dir=order_dir)
                         pull_requests_total_count = PullRequestModel().count_awaiting_review(
                             repo_name, source=source, statuses=statuses,
                             opened_by=opened_by)
                     elif filter_type == 'awaiting_my_review':
                         pull_requests = PullRequestModel().get_awaiting_my_review(
                             repo_name, source=source, opened_by=opened_by,
                             user_id=self._rhodecode_user.user_id, statuses=statuses,
                             offset=start, length=limit, order_by=order_by,
                             order_dir=order_dir)
                         pull_requests_total_count = PullRequestModel().count_awaiting_my_review(
                             repo_name, source=source, user_id=self._rhodecode_user.user_id,
                             statuses=statuses, opened_by=opened_by)
                     else:
                         pull_requests = PullRequestModel().get_all(
                             repo_name, source=source, opened_by=opened_by,
                             statuses=statuses, offset=start, length=limit,
                             order_by=order_by, order_dir=order_dir)
                         pull_requests_total_count = PullRequestModel().count_all(
                             repo_name, source=source, statuses=statuses,
                             opened_by=opened_by)
                     data = []
                     comments_model = CommentsModel()
                     for pr in pull_requests:
                         comments = comments_model.get_all_comments(
                             self.db_repo.repo_id, pull_request=pr)
                         data.append({
                             'name': _render('pullrequest_name',
                                             pr.pull_request_id, pr.target_repo.repo_name),
                             'name_raw': pr.pull_request_id,
                             'status': _render('pullrequest_status',
                                               pr.calculated_review_status()),
                             'title': _render(
                                 'pullrequest_title', pr.title, pr.description),
                             'description': h.escape(pr.description),
                             'updated_on': _render('pullrequest_updated_on',
                                                   h.datetime_to_time(pr.updated_on)),
                             'updated_on_raw': h.datetime_to_time(pr.updated_on),
                             'created_on': _render('pullrequest_updated_on',
                                                   h.datetime_to_time(pr.created_on)),
                             'created_on_raw': h.datetime_to_time(pr.created_on),
                             'author': _render('pullrequest_author',
                                               pr.author.full_contact, ),
                             'author_raw': pr.author.full_name,
                             'comments': _render('pullrequest_comments', len(comments)),
                             'comments_raw': len(comments),
                             'closed': pr.is_closed(),
                         })
                     data = ({
                         'draw': draw,
                         'data': data,
                         'recordsTotal': pull_requests_total_count,
                         'recordsFiltered': pull_requests_total_count,
                     })
                     return data
                 def get_recache_flag(self):
                     for flag_name in ['force_recache', 'force-recache', 'no-cache']:
                         flag_val = self.request.GET.get(flag_name)
                         if str2bool(flag_val):
                             return True
                     return False
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='pullrequest_show_all', request_method='GET',
                     renderer='rhodecode:templates/pullrequests/pullrequests.mako')
                 def pull_request_list(self):
                     c = self.load_default_context()
                     req_get = self.request.GET
                     c.source = str2bool(req_get.get('source'))
                     c.closed = str2bool(req_get.get('closed'))
                     c.my = str2bool(req_get.get('my'))
                     c.awaiting_review = str2bool(req_get.get('awaiting_review'))
                     c.awaiting_my_review = str2bool(req_get.get('awaiting_my_review'))
                     c.active = 'open'
                     if c.my:
                         c.active = 'my'
                     if c.closed:
                         c.active = 'closed'
                     if c.awaiting_review and not c.source:
                         c.active = 'awaiting'
                     if c.source and not c.awaiting_review:
                         c.active = 'source'
                     if c.awaiting_my_review:
                         c.active = 'awaiting_my'
                     return self._get_template_context(c)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='pullrequest_show_all_data', request_method='GET',
                     renderer='json_ext', xhr=True)
                 def pull_request_list_data(self):
                     self.load_default_context()
                     # additional filters
                     req_get = self.request.GET
                     source = str2bool(req_get.get('source'))
                     closed = str2bool(req_get.get('closed'))
                     my = str2bool(req_get.get('my'))
                     awaiting_review = str2bool(req_get.get('awaiting_review'))
                     awaiting_my_review = str2bool(req_get.get('awaiting_my_review'))
                     filter_type = 'awaiting_review' if awaiting_review \
                         else 'awaiting_my_review' if awaiting_my_review \
                         else None
                     opened_by = None
                     if my:
                         opened_by = [self._rhodecode_user.user_id]
                     statuses = [PullRequest.STATUS_NEW, PullRequest.STATUS_OPEN]
                     if closed:
                         statuses = [PullRequest.STATUS_CLOSED]
                     data = self._get_pull_requests_list(
                         repo_name=self.db_repo_name, source=source,
                         filter_type=filter_type, opened_by=opened_by, statuses=statuses)
                     return data
                 def _is_diff_cache_enabled(self, target_repo):
                     caching_enabled = self._get_general_setting(
                         target_repo, 'rhodecode_diff_cache')
                     log.debug('Diff caching enabled: %s', caching_enabled)
                     return caching_enabled
                 def _get_diffset(self, source_repo_name, source_repo,
                                  source_ref_id, target_ref_id,
                                  target_commit, source_commit, diff_limit, file_limit,
                                  fulldiff, hide_whitespace_changes, diff_context):
                     vcs_diff = PullRequestModel().get_diff(
                         source_repo, source_ref_id, target_ref_id,
                         hide_whitespace_changes, diff_context)
                     diff_processor = diffs.DiffProcessor(
                         vcs_diff, format='newdiff', diff_limit=diff_limit,
                         file_limit=file_limit, show_full_diff=fulldiff)
                     _parsed = diff_processor.prepare()
                     diffset = codeblocks.DiffSet(
                         repo_name=self.db_repo_name,
                         source_repo_name=source_repo_name,
                         source_node_getter=codeblocks.diffset_node_getter(target_commit),
                         target_node_getter=codeblocks.diffset_node_getter(source_commit),
                     )
                     diffset = self.path_filter.render_patchset_filtered(
                         diffset, _parsed, target_commit.raw_id, source_commit.raw_id)
                     return diffset
                 def _get_range_diffset(self, source_scm, source_repo,
                                        commit1, commit2, diff_limit, file_limit,
                                        fulldiff, hide_whitespace_changes, diff_context):
                     vcs_diff = source_scm.get_diff(
                         commit1, commit2,
                         ignore_whitespace=hide_whitespace_changes,
                         context=diff_context)
                     diff_processor = diffs.DiffProcessor(
                         vcs_diff, format='newdiff', diff_limit=diff_limit,
                         file_limit=file_limit, show_full_diff=fulldiff)
                     _parsed = diff_processor.prepare()
                     diffset = codeblocks.DiffSet(
                         repo_name=source_repo.repo_name,
                         source_node_getter=codeblocks.diffset_node_getter(commit1),
                         target_node_getter=codeblocks.diffset_node_getter(commit2))
                     diffset = self.path_filter.render_patchset_filtered(
                         diffset, _parsed, commit1.raw_id, commit2.raw_id)
                     return diffset
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='pullrequest_show', request_method='GET',
                     renderer='rhodecode:templates/pullrequests/pullrequest_show.mako')
                 def pull_request_show(self):
                     pull_request_id = self.request.matchdict['pull_request_id']
                     c = self.load_default_context()
                     version = self.request.GET.get('version')
                     from_version = self.request.GET.get('from_version') or version
                     merge_checks = self.request.GET.get('merge_checks')
                     c.fulldiff = str2bool(self.request.GET.get('fulldiff'))
                     # fetch global flags of ignore ws or context lines
                     diff_context = diffs.get_diff_context(self.request)
                     hide_whitespace_changes = diffs.get_diff_whitespace_flag(self.request)
                     force_refresh = str2bool(self.request.GET.get('force_refresh'))
                     (pull_request_latest,
                      pull_request_at_ver,
                      pull_request_display_obj,
                      at_version) = PullRequestModel().get_pr_version(
                         pull_request_id, version=version)
                     pr_closed = pull_request_latest.is_closed()
                     if pr_closed and (version or from_version):
                         # not allow to browse versions
                         raise HTTPFound(h.route_path(
                             'pullrequest_show', repo_name=self.db_repo_name,
                             pull_request_id=pull_request_id))
                     versions = pull_request_display_obj.versions()
                     # used to store per-commit range diffs
                     c.changes = collections.OrderedDict()
                     c.range_diff_on = self.request.GET.get('range-diff') == "1"
                     c.at_version = at_version
                     c.at_version_num = (at_version
                                         if at_version and at_version != 'latest'
                                         else None)
                     c.at_version_pos = ChangesetComment.get_index_from_version(
                         c.at_version_num, versions)
                     (prev_pull_request_latest,
                      prev_pull_request_at_ver,
                      prev_pull_request_display_obj,
                      prev_at_version) = PullRequestModel().get_pr_version(
                         pull_request_id, version=from_version)
                     c.from_version = prev_at_version
                     c.from_version_num = (prev_at_version
                                           if prev_at_version and prev_at_version != 'latest'
                                           else None)
                     c.from_version_pos = ChangesetComment.get_index_from_version(
                         c.from_version_num, versions)
                     # define if we're in COMPARE mode or VIEW at version mode
                     compare = at_version != prev_at_version
                     # pull_requests repo_name we opened it against
                     # ie. target_repo must match
                     if self.db_repo_name != pull_request_at_ver.target_repo.repo_name:
                         raise HTTPNotFound()
                     c.shadow_clone_url = PullRequestModel().get_shadow_clone_url(
                         pull_request_at_ver)
                     c.pull_request = pull_request_display_obj
                     c.renderer = pull_request_at_ver.description_renderer or c.renderer
                     c.pull_request_latest = pull_request_latest
                     if compare or (at_version and not at_version == 'latest'):
                         c.allowed_to_change_status = False
                         c.allowed_to_update = False
                         c.allowed_to_merge = False
                         c.allowed_to_delete = False
                         c.allowed_to_comment = False
                         c.allowed_to_close = False
                     else:
                         can_change_status = PullRequestModel().check_user_change_status(
                             pull_request_at_ver, self._rhodecode_user)
                         c.allowed_to_change_status = can_change_status and not pr_closed
                         c.allowed_to_update = PullRequestModel().check_user_update(
                             pull_request_latest, self._rhodecode_user) and not pr_closed
                         c.allowed_to_merge = PullRequestModel().check_user_merge(
                             pull_request_latest, self._rhodecode_user) and not pr_closed
                         c.allowed_to_delete = PullRequestModel().check_user_delete(
                             pull_request_latest, self._rhodecode_user) and not pr_closed
                         c.allowed_to_comment = not pr_closed
                         c.allowed_to_close = c.allowed_to_merge and not pr_closed
                     c.forbid_adding_reviewers = False
                     c.forbid_author_to_review = False
                     c.forbid_commit_author_to_review = False
                     if pull_request_latest.reviewer_data and \
                                     'rules' in pull_request_latest.reviewer_data:
                         rules = pull_request_latest.reviewer_data['rules'] or {}
                         try:
                             c.forbid_adding_reviewers = rules.get(
                                 'forbid_adding_reviewers')
                             c.forbid_author_to_review = rules.get(
                                 'forbid_author_to_review')
                             c.forbid_commit_author_to_review = rules.get(
                                 'forbid_commit_author_to_review')
                         except Exception:
                             pass
                     # check merge capabilities
                     _merge_check = MergeCheck.validate(
                         pull_request_latest, auth_user=self._rhodecode_user,
                         translator=self.request.translate,
                         force_shadow_repo_refresh=force_refresh)
                     c.pr_merge_errors = _merge_check.error_details
                     c.pr_merge_possible = not _merge_check.failed
                     c.pr_merge_message = _merge_check.merge_msg
                     c.pr_merge_info = MergeCheck.get_merge_conditions(
                         pull_request_latest, translator=self.request.translate)
                     c.pull_request_review_status = _merge_check.review_status
                     if merge_checks:
                         self.request.override_renderer = \
                             'rhodecode:templates/pullrequests/pullrequest_merge_checks.mako'
                         return self._get_template_context(c)
                     comments_model = CommentsModel()
                     # reviewers and statuses
                     c.pull_request_reviewers = pull_request_at_ver.reviewers_statuses()
                     allowed_reviewers = [x[0].user_id for x in c.pull_request_reviewers]
                     # GENERAL COMMENTS with versions #
                     q = comments_model._all_general_comments_of_pull_request(pull_request_latest)
                     q = q.order_by(ChangesetComment.comment_id.asc())
                     general_comments = q
                     # pick comments we want to render at current version
                     c.comment_versions = comments_model.aggregate_comments(
                         general_comments, versions, c.at_version_num)
                     c.comments = c.comment_versions[c.at_version_num]['until']
                     # INLINE COMMENTS with versions  #
                     q = comments_model._all_inline_comments_of_pull_request(pull_request_latest)
                     q = q.order_by(ChangesetComment.comment_id.asc())
                     inline_comments = q
                     c.inline_versions = comments_model.aggregate_comments(
                         inline_comments, versions, c.at_version_num, inline=True)
                     # inject latest version
                     latest_ver = PullRequest.get_pr_display_object(
                         pull_request_latest, pull_request_latest)
                     c.versions = versions + [latest_ver]
                     # if we use version, then do not show later comments
                     # than current version
                     display_inline_comments = collections.defaultdict(
                         lambda: collections.defaultdict(list))
                     for co in inline_comments:
                         if c.at_version_num:
                             # pick comments that are at least UPTO given version, so we
                             # don't render comments for higher version
                             should_render = co.pull_request_version_id and \
                                             co.pull_request_version_id <= c.at_version_num
                         else:
                             # showing all, for 'latest'
                             should_render = True
                         if should_render:
                             display_inline_comments[co.f_path][co.line_no].append(co)
                     # load diff data into template context, if we use compare mode then
                     # diff is calculated based on changes between versions of PR
                     source_repo = pull_request_at_ver.source_repo
                     source_ref_id = pull_request_at_ver.source_ref_parts.commit_id
                     target_repo = pull_request_at_ver.target_repo
                     target_ref_id = pull_request_at_ver.target_ref_parts.commit_id
                     if compare:
                         # in compare switch the diff base to latest commit from prev version
                         target_ref_id = prev_pull_request_display_obj.revisions[0]
                     # despite opening commits for bookmarks/branches/tags, we always
                     # convert this to rev to prevent changes after bookmark or branch change
                     c.source_ref_type = 'rev'
                     c.source_ref = source_ref_id
                     c.target_ref_type = 'rev'
                     c.target_ref = target_ref_id
                     c.source_repo = source_repo
                     c.target_repo = target_repo
                     c.commit_ranges = []
                     source_commit = EmptyCommit()
                     target_commit = EmptyCommit()
                     c.missing_requirements = False
                     source_scm = source_repo.scm_instance()
                     target_scm = target_repo.scm_instance()
                     shadow_scm = None
                     try:
                         shadow_scm = pull_request_latest.get_shadow_repo()
                     except Exception:
                         log.debug('Failed to get shadow repo', exc_info=True)
                     # try first the existing source_repo, and then shadow
                     # repo if we can obtain one
                     commits_source_repo = source_scm or shadow_scm
                     c.commits_source_repo = commits_source_repo
                     c.ancestor = None  # set it to None, to hide it from PR view
                     # empty version means latest, so we keep this to prevent
                     # double caching
                     version_normalized = version or 'latest'
                     from_version_normalized = from_version or 'latest'
                     cache_path = self.rhodecode_vcs_repo.get_create_shadow_cache_pr_path(target_repo)
                     cache_file_path = diff_cache_exist(
                         cache_path, 'pull_request', pull_request_id, version_normalized,
                         from_version_normalized, source_ref_id, target_ref_id,
                         hide_whitespace_changes, diff_context, c.fulldiff)
                     caching_enabled = self._is_diff_cache_enabled(c.target_repo)
                     force_recache = self.get_recache_flag()
                     cached_diff = None
                     if caching_enabled:
                         cached_diff = load_cached_diff(cache_file_path)
                     has_proper_commit_cache = (
                             cached_diff and cached_diff.get('commits')
                             and len(cached_diff.get('commits', [])) == 5
                             and cached_diff.get('commits')[0]
                             and cached_diff.get('commits')[3])
                     if not force_recache and not c.range_diff_on and has_proper_commit_cache:
                         diff_commit_cache = \
                             (ancestor_commit, commit_cache, missing_requirements,
                              source_commit, target_commit) = cached_diff['commits']
                     else:
                         diff_commit_cache = \
                             (ancestor_commit, commit_cache, missing_requirements,
                              source_commit, target_commit) = self.get_commits(
                                 commits_source_repo,
                                 pull_request_at_ver,
                                 source_commit,
                                 source_ref_id,
                                 source_scm,
                                 target_commit,
                                 target_ref_id,
                                 target_scm)
                     # register our commit range
                     for comm in commit_cache.values():
                         c.commit_ranges.append(comm)
                     c.missing_requirements = missing_requirements
                     c.ancestor_commit = ancestor_commit
                     c.statuses = source_repo.statuses(
                         [x.raw_id for x in c.commit_ranges])
                     # auto collapse if we have more than limit
                     collapse_limit = diffs.DiffProcessor._collapse_commits_over
                     c.collapse_all_commits = len(c.commit_ranges) > collapse_limit
                     c.compare_mode = compare
                     # diff_limit is the old behavior, will cut off the whole diff
                     # if the limit is applied  otherwise will just hide the
                     # big files from the front-end
                     diff_limit = c.visual.cut_off_limit_diff
                     file_limit = c.visual.cut_off_limit_file
                     c.missing_commits = False
                     if (c.missing_requirements
                         or isinstance(source_commit, EmptyCommit)
                         or source_commit == target_commit):
                         c.missing_commits = True
                     else:
                         c.inline_comments = display_inline_comments
                         has_proper_diff_cache = cached_diff and cached_diff.get('commits')
                         if not force_recache and has_proper_diff_cache:
                             c.diffset = cached_diff['diff']
                             (ancestor_commit, commit_cache, missing_requirements,
                              source_commit, target_commit) = cached_diff['commits']
                         else:
                             c.diffset = self._get_diffset(
                                 c.source_repo.repo_name, commits_source_repo,
                                 source_ref_id, target_ref_id,
                                 target_commit, source_commit,
                                 diff_limit, file_limit, c.fulldiff,
                                 hide_whitespace_changes, diff_context)
                             # save cached diff
                             if caching_enabled:
                                 cache_diff(cache_file_path, c.diffset, diff_commit_cache)
                         c.limited_diff = c.diffset.limited_diff
                         # calculate removed files that are bound to comments
                         comment_deleted_files = [
                             fname for fname in display_inline_comments
                             if fname not in c.diffset.file_stats]
                         c.deleted_files_comments = collections.defaultdict(dict)
                         for fname, per_line_comments in display_inline_comments.items():
                             if fname in comment_deleted_files:
                                 c.deleted_files_comments[fname]['stats'] = 0
                                 c.deleted_files_comments[fname]['comments'] = list()
                                 for lno, comments in per_line_comments.items():
                                     c.deleted_files_comments[fname]['comments'].extend(comments)
                         # maybe calculate the range diff
                         if c.range_diff_on:
                             # TODO(marcink): set whitespace/context
                             context_lcl = 3
                             ign_whitespace_lcl = False
                             for commit in c.commit_ranges:
                                 commit2 = commit
                                 commit1 = commit.first_parent
                                 range_diff_cache_file_path = diff_cache_exist(
                                     cache_path, 'diff', commit.raw_id,
                                     ign_whitespace_lcl, context_lcl, c.fulldiff)
                                 cached_diff = None
                                 if caching_enabled:
                                     cached_diff = load_cached_diff(range_diff_cache_file_path)
                                 has_proper_diff_cache = cached_diff and cached_diff.get('diff')
                                 if not force_recache and has_proper_diff_cache:
                                     diffset = cached_diff['diff']
                                 else:
                                     diffset = self._get_range_diffset(
                                         source_scm, source_repo,
                                         commit1, commit2, diff_limit, file_limit,
                                         c.fulldiff, ign_whitespace_lcl, context_lcl
                                     )
                                 # save cached diff
                                 if caching_enabled:
                                     cache_diff(range_diff_cache_file_path, diffset, None)
                                 c.changes[commit.raw_id] = diffset
                     # this is a hack to properly display links, when creating PR, the
                     # compare view and others uses different notation, and
                     # compare_commits.mako renders links based on the target_repo.
                     # We need to swap that here to generate it properly on the html side
                     c.target_repo = c.source_repo
                     c.commit_statuses = ChangesetStatus.STATUSES
                     c.show_version_changes = not pr_closed
                     if c.show_version_changes:
                         cur_obj = pull_request_at_ver
                         prev_obj = prev_pull_request_at_ver
                         old_commit_ids = prev_obj.revisions
                         new_commit_ids = cur_obj.revisions
                         commit_changes = PullRequestModel()._calculate_commit_id_changes(
                             old_commit_ids, new_commit_ids)
                         c.commit_changes_summary = commit_changes
                         # calculate the diff for commits between versions
                         c.commit_changes = []
                         mark = lambda cs, fw: list(
                             h.itertools.izip_longest([], cs, fillvalue=fw))
                         for c_type, raw_id in mark(commit_changes.added, 'a') \
                                             + mark(commit_changes.removed, 'r') \
                                             + mark(commit_changes.common, 'c'):
                             if raw_id in commit_cache:
                                 commit = commit_cache[raw_id]
                             else:
                                 try:
                                     commit = commits_source_repo.get_commit(raw_id)
                                 except CommitDoesNotExistError:
                                     # in case we fail extracting still use "dummy" commit
                                     # for display in commit diff
                                     commit = h.AttributeDict(
                                         {'raw_id': raw_id,
                                          'message': 'EMPTY or MISSING COMMIT'})
                             c.commit_changes.append([c_type, commit])
                         # current user review statuses for each version
                         c.review_versions = {}
                         if self._rhodecode_user.user_id in allowed_reviewers:
                             for co in general_comments:
                                 if co.author.user_id == self._rhodecode_user.user_id:
                                     status = co.status_change
                                     if status:
                                         _ver_pr = status[0].comment.pull_request_version_id
                                         c.review_versions[_ver_pr] = status[0]
                     return self._get_template_context(c)
                 def get_commits(
                         self, commits_source_repo, pull_request_at_ver, source_commit,
                         source_ref_id, source_scm, target_commit, target_ref_id, target_scm):
                     commit_cache = collections.OrderedDict()
                     missing_requirements = False
                     try:
                         pre_load = ["author", "branch", "date", "message", "parents"]
                         show_revs = pull_request_at_ver.revisions
                         for rev in show_revs:
                             comm = commits_source_repo.get_commit(
                                 commit_id=rev, pre_load=pre_load)
                             commit_cache[comm.raw_id] = comm
                         # Order here matters, we first need to get target, and then
                         # the source
                         target_commit = commits_source_repo.get_commit(
                             commit_id=safe_str(target_ref_id))
                         source_commit = commits_source_repo.get_commit(
                             commit_id=safe_str(source_ref_id))
                     except CommitDoesNotExistError:
                         log.warning(
                             'Failed to get commit from `{}` repo'.format(
                                 commits_source_repo), exc_info=True)
                     except RepositoryRequirementError:
                         log.warning(
                             'Failed to get all required data from repo', exc_info=True)
                         missing_requirements = True
                     ancestor_commit = None
                     try:
                         ancestor_id = source_scm.get_common_ancestor(
                             source_commit.raw_id, target_commit.raw_id, target_scm)
                         ancestor_commit = source_scm.get_commit(ancestor_id)
                     except Exception:
                         ancestor_commit = None
                     return ancestor_commit, commit_cache, missing_requirements, source_commit, target_commit
                 def assure_not_empty_repo(self):
                     _ = self.request.translate
                     try:
                         self.db_repo.scm_instance().get_commit()
                     except EmptyRepositoryError:
                         h.flash(h.literal(_('There are no commits yet')),
                                 category='warning')
                         raise HTTPFound(
                             h.route_path('repo_summary', repo_name=self.db_repo.repo_name))
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='pullrequest_new', request_method='GET',
                     renderer='rhodecode:templates/pullrequests/pullrequest.mako')
                 def pull_request_new(self):
                     _ = self.request.translate
                     c = self.load_default_context()
                     self.assure_not_empty_repo()
                     source_repo = self.db_repo
                     commit_id = self.request.GET.get('commit')
                     branch_ref = self.request.GET.get('branch')
                     bookmark_ref = self.request.GET.get('bookmark')
                     try:
                         source_repo_data = PullRequestModel().generate_repo_data(
                             source_repo, commit_id=commit_id,
                             branch=branch_ref, bookmark=bookmark_ref,
                             translator=self.request.translate)
                     except CommitDoesNotExistError as e:
                         log.exception(e)
                         h.flash(_('Commit does not exist'), 'error')
                         raise HTTPFound(
                             h.route_path('pullrequest_new', repo_name=source_repo.repo_name))
                     default_target_repo = source_repo
-                    if source_repo.parent:
+                    if source_repo.parent and c.has_origin_repo_read_perm:
                         parent_vcs_obj = source_repo.parent.scm_instance()
                         if parent_vcs_obj and not parent_vcs_obj.is_empty():
                             # change default if we have a parent repo
                             default_target_repo = source_repo.parent
                     target_repo_data = PullRequestModel().generate_repo_data(
                         default_target_repo, translator=self.request.translate)
                     selected_source_ref = source_repo_data['refs']['selected_ref']
                     title_source_ref = ''
                     if selected_source_ref:
                         title_source_ref = selected_source_ref.split(':', 2)[1]
                     c.default_title = PullRequestModel().generate_pullrequest_title(
                         source=source_repo.repo_name,
                         source_ref=title_source_ref,
                         target=default_target_repo.repo_name
                     )
                     c.default_repo_data = {
                         'source_repo_name': source_repo.repo_name,
                         'source_refs_json': json.dumps(source_repo_data),
                         'target_repo_name': default_target_repo.repo_name,
                         'target_refs_json': json.dumps(target_repo_data),
                     }
                     c.default_source_ref = selected_source_ref
                     return self._get_template_context(c)
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='pullrequest_repo_refs', request_method='GET',
                     renderer='json_ext', xhr=True)
                 def pull_request_repo_refs(self):
                     self.load_default_context()
                     target_repo_name = self.request.matchdict['target_repo_name']
                     repo = Repository.get_by_repo_name(target_repo_name)
                     if not repo:
                         raise HTTPNotFound()
                     target_perm = HasRepoPermissionAny(
                         'repository.read', 'repository.write', 'repository.admin')(
                         target_repo_name)
                     if not target_perm:
                         raise HTTPNotFound()
                     return PullRequestModel().generate_repo_data(
                         repo, translator=self.request.translate)
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @view_config(
                     route_name='pullrequest_repo_targets', request_method='GET',
                     renderer='json_ext', xhr=True)
                 def pullrequest_repo_targets(self):
                     _ = self.request.translate
                     filter_query = self.request.GET.get('query')
                     # get the parents
                     parent_target_repos = []
                     if self.db_repo.parent:
                         parents_query = Repository.query() \
                             .order_by(func.length(Repository.repo_name)) \
                             .filter(Repository.fork_id == self.db_repo.parent.repo_id)
                         if filter_query:
                             ilike_expression = u'%{}%'.format(safe_unicode(filter_query))
                             parents_query = parents_query.filter(
                                 Repository.repo_name.ilike(ilike_expression))
                         parents = parents_query.limit(20).all()
                         for parent in parents:
                             parent_vcs_obj = parent.scm_instance()
                             if parent_vcs_obj and not parent_vcs_obj.is_empty():
                                 parent_target_repos.append(parent)
                     # get other forks, and repo itself
                     query = Repository.query() \
                         .order_by(func.length(Repository.repo_name)) \
                         .filter(
                             or_(Repository.repo_id == self.db_repo.repo_id,  # repo itself
                                 Repository.fork_id == self.db_repo.repo_id)  # forks of this repo
                         )  \
                         .filter(~Repository.repo_id.in_([x.repo_id for x in parent_target_repos]))
                     if filter_query:
                         ilike_expression = u'%{}%'.format(safe_unicode(filter_query))
                         query = query.filter(Repository.repo_name.ilike(ilike_expression))
                     limit = max(20 - len(parent_target_repos), 5)  # not less then 5
                     target_repos = query.limit(limit).all()
                     all_target_repos = target_repos + parent_target_repos
                     repos = []
+                    # This checks permissions to the repositories
                     for obj in ScmModel().get_repos(all_target_repos):
                         repos.append({
                             'id': obj['name'],
                             'text': obj['name'],
                             'type': 'repo',
                             'repo_id': obj['dbrepo']['repo_id'],
                             'repo_type': obj['dbrepo']['repo_type'],
                             'private': obj['dbrepo']['private'],
                         })
                     data = {
                         'more': False,
                         'results': [{
                             'text': _('Repositories'),
                             'children': repos
                         }] if repos else []
                     }
                     return data
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='pullrequest_create', request_method='POST',
                     renderer=None)
                 def pull_request_create(self):
                     _ = self.request.translate
                     self.assure_not_empty_repo()
                     self.load_default_context()
                     controls = peppercorn.parse(self.request.POST.items())
                     try:
                         form = PullRequestForm(
                             self.request.translate, self.db_repo.repo_id)()
                         _form = form.to_python(controls)
                     except formencode.Invalid as errors:
                         if errors.error_dict.get('revisions'):
                             msg = 'Revisions: %s' % errors.error_dict['revisions']
                         elif errors.error_dict.get('pullrequest_title'):
                             msg = errors.error_dict.get('pullrequest_title')
                         else:
                             msg = _('Error creating pull request: {}').format(errors)
                         log.exception(msg)
                         h.flash(msg, 'error')
                         # would rather just go back to form ...
                         raise HTTPFound(
                             h.route_path('pullrequest_new', repo_name=self.db_repo_name))
                     source_repo = _form['source_repo']
                     source_ref = _form['source_ref']
                     target_repo = _form['target_repo']
                     target_ref = _form['target_ref']
                     commit_ids = _form['revisions'][::-1]
                     # find the ancestor for this pr
                     source_db_repo = Repository.get_by_repo_name(_form['source_repo'])
                     target_db_repo = Repository.get_by_repo_name(_form['target_repo'])
                     # re-check permissions again here
                     # source_repo we must have read permissions
                     source_perm = HasRepoPermissionAny(
                         'repository.read',
                         'repository.write', 'repository.admin')(source_db_repo.repo_name)
                     if not source_perm:
                         msg = _('Not Enough permissions to source repo `{}`.'.format(
                             source_db_repo.repo_name))
                         h.flash(msg, category='error')
                         # copy the args back to redirect
                         org_query = self.request.GET.mixed()
                         raise HTTPFound(
                             h.route_path('pullrequest_new', repo_name=self.db_repo_name,
                                          _query=org_query))
                     # target repo we must have read permissions, and also later on
                     # we want to check branch permissions here
                     target_perm = HasRepoPermissionAny(
                         'repository.read',
                         'repository.write', 'repository.admin')(target_db_repo.repo_name)
                     if not target_perm:
                         msg = _('Not Enough permissions to target repo `{}`.'.format(
                             target_db_repo.repo_name))
                         h.flash(msg, category='error')
                         # copy the args back to redirect
                         org_query = self.request.GET.mixed()
                         raise HTTPFound(
                             h.route_path('pullrequest_new', repo_name=self.db_repo_name,
                                          _query=org_query))
                     source_scm = source_db_repo.scm_instance()
                     target_scm = target_db_repo.scm_instance()
                     source_commit = source_scm.get_commit(source_ref.split(':')[-1])
                     target_commit = target_scm.get_commit(target_ref.split(':')[-1])
                     ancestor = source_scm.get_common_ancestor(
                         source_commit.raw_id, target_commit.raw_id, target_scm)
                     # recalculate target ref based on ancestor
                     target_ref_type, target_ref_name, __ = _form['target_ref'].split(':')
                     target_ref = ':'.join((target_ref_type, target_ref_name, ancestor))
                     get_default_reviewers_data, validate_default_reviewers = \
                         PullRequestModel().get_reviewer_functions()
                     # recalculate reviewers logic, to make sure we can validate this
                     reviewer_rules = get_default_reviewers_data(
                         self._rhodecode_db_user, source_db_repo,
                         source_commit, target_db_repo, target_commit)
                     given_reviewers = _form['review_members']
                     reviewers = validate_default_reviewers(
                         given_reviewers, reviewer_rules)
                     pullrequest_title = _form['pullrequest_title']
                     title_source_ref = source_ref.split(':', 2)[1]
                     if not pullrequest_title:
                         pullrequest_title = PullRequestModel().generate_pullrequest_title(
                             source=source_repo,
                             source_ref=title_source_ref,
                             target=target_repo
                         )
                     description = _form['pullrequest_desc']
                     description_renderer = _form['description_renderer']
                     try:
                         pull_request = PullRequestModel().create(
                             created_by=self._rhodecode_user.user_id,
                             source_repo=source_repo,
                             source_ref=source_ref,
                             target_repo=target_repo,
                             target_ref=target_ref,
                             revisions=commit_ids,
                             reviewers=reviewers,
                             title=pullrequest_title,
                             description=description,
                             description_renderer=description_renderer,
                             reviewer_data=reviewer_rules,
                             auth_user=self._rhodecode_user
                         )
                         Session().commit()
                         h.flash(_('Successfully opened new pull request'),
                                 category='success')
                     except Exception:
                         msg = _('Error occurred during creation of this pull request.')
                         log.exception(msg)
                         h.flash(msg, category='error')
                         # copy the args back to redirect
                         org_query = self.request.GET.mixed()
                         raise HTTPFound(
                             h.route_path('pullrequest_new', repo_name=self.db_repo_name,
                                          _query=org_query))
                     raise HTTPFound(
                         h.route_path('pullrequest_show', repo_name=target_repo,
                                      pull_request_id=pull_request.pull_request_id))
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='pullrequest_update', request_method='POST',
                     renderer='json_ext')
                 def pull_request_update(self):
                     pull_request = PullRequest.get_or_404(
                         self.request.matchdict['pull_request_id'])
                     _ = self.request.translate
                     self.load_default_context()
                     if pull_request.is_closed():
                         log.debug('update: forbidden because pull request is closed')
                         msg = _(u'Cannot update closed pull requests.')
                         h.flash(msg, category='error')
                         return True
                     # only owner or admin can update it
                     allowed_to_update = PullRequestModel().check_user_update(
                         pull_request, self._rhodecode_user)
                     if allowed_to_update:
                         controls = peppercorn.parse(self.request.POST.items())
                         if 'review_members' in controls:
                             self._update_reviewers(
                                 pull_request, controls['review_members'],
                                 pull_request.reviewer_data)
                         elif str2bool(self.request.POST.get('update_commits', 'false')):
                             self._update_commits(pull_request)
                         elif str2bool(self.request.POST.get('edit_pull_request', 'false')):
                             self._edit_pull_request(pull_request)
                         else:
                             raise HTTPBadRequest()
                         return True
                     raise HTTPForbidden()
                 def _edit_pull_request(self, pull_request):
                     _ = self.request.translate
                     try:
                         PullRequestModel().edit(
                             pull_request,
                             self.request.POST.get('title'),
                             self.request.POST.get('description'),
                             self.request.POST.get('description_renderer'),
                             self._rhodecode_user)
                     except ValueError:
                         msg = _(u'Cannot update closed pull requests.')
                         h.flash(msg, category='error')
                         return
                     else:
                         Session().commit()
                     msg = _(u'Pull request title & description updated.')
                     h.flash(msg, category='success')
                     return
                 def _update_commits(self, pull_request):
                     _ = self.request.translate
                     resp = PullRequestModel().update_commits(pull_request)
                     if resp.executed:
                         if resp.target_changed and resp.source_changed:
                             changed = 'target and source repositories'
                         elif resp.target_changed and not resp.source_changed:
                             changed = 'target repository'
                         elif not resp.target_changed and resp.source_changed:
                             changed = 'source repository'
                         else:
                             changed = 'nothing'
                         msg = _(
                             u'Pull request updated to "{source_commit_id}" with '
                             u'{count_added} added, {count_removed} removed commits. '
                             u'Source of changes: {change_source}')
                         msg = msg.format(
                             source_commit_id=pull_request.source_ref_parts.commit_id,
                             count_added=len(resp.changes.added),
                             count_removed=len(resp.changes.removed),
                             change_source=changed)
                         h.flash(msg, category='success')
                         channel = '/repo${}$/pr/{}'.format(
                             pull_request.target_repo.repo_name,
                             pull_request.pull_request_id)
                         message = msg + (
                             ' - <a onclick="window.location.reload()">'
                             '<strong>{}</strong></a>'.format(_('Reload page')))
                         channelstream.post_message(
                             channel, message, self._rhodecode_user.username,
                             registry=self.request.registry)
                     else:
                         msg = PullRequestModel.UPDATE_STATUS_MESSAGES[resp.reason]
                         warning_reasons = [
                             UpdateFailureReason.NO_CHANGE,
                             UpdateFailureReason.WRONG_REF_TYPE,
                         ]
                         category = 'warning' if resp.reason in warning_reasons else 'error'
                         h.flash(msg, category=category)
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='pullrequest_merge', request_method='POST',
                     renderer='json_ext')
                 def pull_request_merge(self):
                     """
                     Merge will perform a server-side merge of the specified
                     pull request, if the pull request is approved and mergeable.
                     After successful merging, the pull request is automatically
                     closed, with a relevant comment.
                     """
                     pull_request = PullRequest.get_or_404(
                         self.request.matchdict['pull_request_id'])
                     self.load_default_context()
                     check = MergeCheck.validate(
                         pull_request, auth_user=self._rhodecode_user,
                         translator=self.request.translate)
                     merge_possible = not check.failed
                     for err_type, error_msg in check.errors:
                         h.flash(error_msg, category=err_type)
                     if merge_possible:
                         log.debug("Pre-conditions checked, trying to merge.")
                         extras = vcs_operation_context(
                             self.request.environ, repo_name=pull_request.target_repo.repo_name,
                             username=self._rhodecode_db_user.username, action='push',
                             scm=pull_request.target_repo.repo_type)
                         self._merge_pull_request(
                             pull_request, self._rhodecode_db_user, extras)
                     else:
                         log.debug("Pre-conditions failed, NOT merging.")
                     raise HTTPFound(
                         h.route_path('pullrequest_show',
                                      repo_name=pull_request.target_repo.repo_name,
                                      pull_request_id=pull_request.pull_request_id))
                 def _merge_pull_request(self, pull_request, user, extras):
                     _ = self.request.translate
                     merge_resp = PullRequestModel().merge_repo(pull_request, user, extras=extras)
                     if merge_resp.executed:
                         log.debug("The merge was successful, closing the pull request.")
                         PullRequestModel().close_pull_request(
                             pull_request.pull_request_id, user)
                         Session().commit()
                         msg = _('Pull request was successfully merged and closed.')
                         h.flash(msg, category='success')
                     else:
                         log.debug(
                             "The merge was not successful. Merge response: %s", merge_resp)
                         msg = merge_resp.merge_status_message
                         h.flash(msg, category='error')
                 def _update_reviewers(self, pull_request, review_members, reviewer_rules):
                     _ = self.request.translate
                     get_default_reviewers_data, validate_default_reviewers = \
                         PullRequestModel().get_reviewer_functions()
                     try:
                         reviewers = validate_default_reviewers(review_members, reviewer_rules)
                     except ValueError as e:
                         log.error('Reviewers Validation: {}'.format(e))
                         h.flash(e, category='error')
                         return
                     PullRequestModel().update_reviewers(
                         pull_request, reviewers, self._rhodecode_user)
                     h.flash(_('Pull request reviewers updated.'), category='success')
                     Session().commit()
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='pullrequest_delete', request_method='POST',
                     renderer='json_ext')
                 def pull_request_delete(self):
                     _ = self.request.translate
                     pull_request = PullRequest.get_or_404(
                         self.request.matchdict['pull_request_id'])
                     self.load_default_context()
                     pr_closed = pull_request.is_closed()
                     allowed_to_delete = PullRequestModel().check_user_delete(
                         pull_request, self._rhodecode_user) and not pr_closed
                     # only owner can delete it !
                     if allowed_to_delete:
                         PullRequestModel().delete(pull_request, self._rhodecode_user)
                         Session().commit()
                         h.flash(_('Successfully deleted pull request'),
                                 category='success')
                         raise HTTPFound(h.route_path('pullrequest_show_all',
                                                      repo_name=self.db_repo_name))
                     log.warning('user %s tried to delete pull request without access',
                                 self._rhodecode_user)
                     raise HTTPNotFound()
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='pullrequest_comment_create', request_method='POST',
                     renderer='json_ext')
                 def pull_request_comment_create(self):
                     _ = self.request.translate
                     pull_request = PullRequest.get_or_404(
                         self.request.matchdict['pull_request_id'])
                     pull_request_id = pull_request.pull_request_id
                     if pull_request.is_closed():
                         log.debug('comment: forbidden because pull request is closed')
                         raise HTTPForbidden()
                     allowed_to_comment = PullRequestModel().check_user_comment(
                         pull_request, self._rhodecode_user)
                     if not allowed_to_comment:
                         log.debug(
                             'comment: forbidden because pull request is from forbidden repo')
                         raise HTTPForbidden()
                     c = self.load_default_context()
                     status = self.request.POST.get('changeset_status', None)
                     text = self.request.POST.get('text')
                     comment_type = self.request.POST.get('comment_type')
                     resolves_comment_id = self.request.POST.get('resolves_comment_id', None)
                     close_pull_request = self.request.POST.get('close_pull_request')
                     # the logic here should work like following, if we submit close
                     # pr comment, use `close_pull_request_with_comment` function
                     # else handle regular comment logic
                     if close_pull_request:
                         # only owner or admin or person with write permissions
                         allowed_to_close = PullRequestModel().check_user_update(
                             pull_request, self._rhodecode_user)
                         if not allowed_to_close:
                             log.debug('comment: forbidden because not allowed to close '
                                       'pull request %s', pull_request_id)
                             raise HTTPForbidden()
                         comment, status = PullRequestModel().close_pull_request_with_comment(
                             pull_request, self._rhodecode_user, self.db_repo, message=text,
                             auth_user=self._rhodecode_user)
                         Session().flush()
                         events.trigger(
                             events.PullRequestCommentEvent(pull_request, comment))
                     else:
                         # regular comment case, could be inline, or one with status.
                         # for that one we check also permissions
                         allowed_to_change_status = PullRequestModel().check_user_change_status(
                             pull_request, self._rhodecode_user)
                         if status and allowed_to_change_status:
                             message = (_('Status change %(transition_icon)s %(status)s')
                                        % {'transition_icon': '>',
                                           'status': ChangesetStatus.get_status_lbl(status)})
                             text = text or message
                         comment = CommentsModel().create(
                             text=text,
                             repo=self.db_repo.repo_id,
                             user=self._rhodecode_user.user_id,
                             pull_request=pull_request,
                             f_path=self.request.POST.get('f_path'),
                             line_no=self.request.POST.get('line'),
                             status_change=(ChangesetStatus.get_status_lbl(status)
                                            if status and allowed_to_change_status else None),
                             status_change_type=(status
                                                 if status and allowed_to_change_status else None),
                             comment_type=comment_type,
                             resolves_comment_id=resolves_comment_id,
                             auth_user=self._rhodecode_user
                         )
                         if allowed_to_change_status:
                             # calculate old status before we change it
                             old_calculated_status = pull_request.calculated_review_status()
                             # get status if set !
                             if status:
                                 ChangesetStatusModel().set_status(
                                     self.db_repo.repo_id,
                                     status,
                                     self._rhodecode_user.user_id,
                                     comment,
                                     pull_request=pull_request
                                 )
                             Session().flush()
                             # this is somehow required to get access to some relationship
                             # loaded on comment
                             Session().refresh(comment)
                             events.trigger(
                                 events.PullRequestCommentEvent(pull_request, comment))
                             # we now calculate the status of pull request, and based on that
                             # calculation we set the commits status
                             calculated_status = pull_request.calculated_review_status()
                             if old_calculated_status != calculated_status:
                                 PullRequestModel()._trigger_pull_request_hook(
                                     pull_request, self._rhodecode_user, 'review_status_change')
                     Session().commit()
                     data = {
                         'target_id': h.safeid(h.safe_unicode(
                             self.request.POST.get('f_path'))),
                     }
                     if comment:
                         c.co = comment
                         rendered_comment = render(
                             'rhodecode:templates/changeset/changeset_comment_block.mako',
                             self._get_template_context(c), self.request)
                         data.update(comment.get_dict())
                         data.update({'rendered_text': rendered_comment})
                     return data
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator(
                     'repository.read', 'repository.write', 'repository.admin')
                 @CSRFRequired()
                 @view_config(
                     route_name='pullrequest_comment_delete', request_method='POST',
                     renderer='json_ext')
                 def pull_request_comment_delete(self):
                     pull_request = PullRequest.get_or_404(
                         self.request.matchdict['pull_request_id'])
                     comment = ChangesetComment.get_or_404(
                         self.request.matchdict['comment_id'])
                     comment_id = comment.comment_id
                     if pull_request.is_closed():
                         log.debug('comment: forbidden because pull request is closed')
                         raise HTTPForbidden()
                     if not comment:
                         log.debug('Comment with id:%s not found, skipping', comment_id)
                         # comment already deleted in another call probably
                         return True
                     if comment.pull_request.is_closed():
                         # don't allow deleting comments on closed pull request
                         raise HTTPForbidden()
                     is_repo_admin = h.HasRepoPermissionAny('repository.admin')(self.db_repo_name)
                     super_admin = h.HasPermissionAny('hg.admin')()
                     comment_owner = comment.author.user_id == self._rhodecode_user.user_id
                     is_repo_comment = comment.repo.repo_name == self.db_repo_name
                     comment_repo_admin = is_repo_admin and is_repo_comment
                     if super_admin or comment_owner or comment_repo_admin:
                         old_calculated_status = comment.pull_request.calculated_review_status()
                         CommentsModel().delete(comment=comment, auth_user=self._rhodecode_user)
                         Session().commit()
                         calculated_status = comment.pull_request.calculated_review_status()
                         if old_calculated_status != calculated_status:
                             PullRequestModel()._trigger_pull_request_hook(
                                 comment.pull_request, self._rhodecode_user, 'review_status_change')
                         return True
                     else:
                         log.warning('No permissions for user %s to delete comment_id: %s',
                                     self._rhodecode_db_user, comment_id)
                         raise HTTPNotFound()

rhodecode/templates/base/base.mako

0 +1 -1

             ## -*- coding: utf-8 -*-
             <%inherit file="root.mako"/>
             <%include file="/ejs_templates/templates.html"/>
             <div class="outerwrapper">
               <!-- HEADER -->
               <div class="header">
                   <div id="header-inner" class="wrapper">
                       <div id="logo">
                           <div class="logo-wrapper">
                               <a href="${h.route_path('home')}"><img src="${h.asset('images/rhodecode-logo-white-216x60.png')}" alt="RhodeCode"/></a>
                           </div>
                           %if c.rhodecode_name:
                            <div class="branding">- ${h.branding(c.rhodecode_name)}</div>
                           %endif
                       </div>
                       <!-- MENU BAR NAV -->
                       ${self.menu_bar_nav()}
                       <!-- END MENU BAR NAV -->
                   </div>
               </div>
               ${self.menu_bar_subnav()}
               <!-- END HEADER -->
               <!-- CONTENT -->
               <div id="content" class="wrapper">
                   <rhodecode-toast id="notifications"></rhodecode-toast>
                   <div class="main">
                       ${next.main()}
                   </div>
               </div>
               <!-- END CONTENT -->
             </div>
             <!-- FOOTER -->
             <div id="footer">
                <div id="footer-inner" class="title wrapper">
                    <div>
                        <p class="footer-link-right">
                            % if c.visual.show_version:
                                RhodeCode Enterprise ${c.rhodecode_version} ${c.rhodecode_edition}
                            % endif
                            &copy; 2010-${h.datetime.today().year}, <a href="${h.route_url('rhodecode_official')}" target="_blank">RhodeCode GmbH</a>. All rights reserved.
                            % if c.visual.rhodecode_support_url:
                               <a href="${c.visual.rhodecode_support_url}" target="_blank">${_('Support')}</a>
                            % endif
                        </p>
                        <% sid = 'block' if request.GET.get('showrcid') else 'none' %>
                        <p class="server-instance" style="display:${sid}">
                            ## display hidden instance ID if specially defined
                            % if c.rhodecode_instanceid:
                                ${_('RhodeCode instance id: %s') % c.rhodecode_instanceid}
                            % endif
                        </p>
                    </div>
                </div>
             </div>
             <!-- END FOOTER -->
             ### MAKO DEFS ###
             <%def name="menu_bar_subnav()">
             </%def>
             <%def name="breadcrumbs(class_='breadcrumbs')">
                 <div class="${class_}">
                 ${self.breadcrumbs_links()}
                 </div>
             </%def>
             <%def name="admin_menu()">
               <ul class="admin_menu submenu">
                   <li><a href="${h.route_path('admin_audit_logs')}">${_('Admin audit logs')}</a></li>
                   <li><a href="${h.route_path('repos')}">${_('Repositories')}</a></li>
                   <li><a href="${h.route_path('repo_groups')}">${_('Repository groups')}</a></li>
                   <li><a href="${h.route_path('users')}">${_('Users')}</a></li>
                   <li><a href="${h.route_path('user_groups')}">${_('User groups')}</a></li>
                   <li><a href="${h.route_path('admin_permissions_application')}">${_('Permissions')}</a></li>
                   <li><a href="${h.route_path('auth_home', traverse='')}">${_('Authentication')}</a></li>
                   <li><a href="${h.route_path('global_integrations_home')}">${_('Integrations')}</a></li>
                   <li><a href="${h.route_path('admin_defaults_repositories')}">${_('Defaults')}</a></li>
                   <li class="last"><a href="${h.route_path('admin_settings')}">${_('Settings')}</a></li>
               </ul>
             </%def>
             <%def name="dt_info_panel(elements)">
                 <dl class="dl-horizontal">
                 %for dt, dd, title, show_items in elements:
                   <dt>${dt}:</dt>
                   <dd title="${h.tooltip(title)}">
                   %if callable(dd):
                       ## allow lazy evaluation of elements
                       ${dd()}
                   %else:
                       ${dd}
                   %endif
                   %if show_items:
                       <span class="btn-collapse" data-toggle="item-${h.md5_safe(dt)[:6]}-details">${_('Show More')} </span>
                   %endif
                   </dd>
                   %if show_items:
                       <div class="collapsable-content" data-toggle="item-${h.md5_safe(dt)[:6]}-details" style="display: none">
                       %for item in show_items:
                           <dt></dt>
                           <dd>${item}</dd>
                       %endfor
                       </div>
                   %endif
                 %endfor
                 </dl>
             </%def>
             <%def name="gravatar(email, size=16)">
               <%
                 if (size > 16):
                     gravatar_class = 'gravatar gravatar-large'
                 else:
                     gravatar_class = 'gravatar'
               %>
               <%doc>
                 TODO: johbo: For now we serve double size images to make it smooth
                 for retina. This is how it worked until now. Should be replaced
                 with a better solution at some point.
               </%doc>
               <img class="${gravatar_class}" src="${h.gravatar_url(email, size * 2)}" height="${size}" width="${size}">
             </%def>
             <%def name="gravatar_with_user(contact, size=16, show_disabled=False)">
               <% email = h.email_or_none(contact) %>
               <div class="rc-user tooltip" title="${h.tooltip(h.author_string(email))}">
                 ${self.gravatar(email, size)}
                 <span class="${'user user-disabled' if show_disabled else 'user'}"> ${h.link_to_user(contact)}</span>
               </div>
             </%def>
             ## admin menu used for people that have some admin resources
             <%def name="admin_menu_simple(repositories=None, repository_groups=None, user_groups=None)">
               <ul class="submenu">
                %if repositories:
                   <li class="local-admin-repos"><a href="${h.route_path('repos')}">${_('Repositories')}</a></li>
                %endif
                %if repository_groups:
                   <li class="local-admin-repo-groups"><a href="${h.route_path('repo_groups')}">${_('Repository groups')}</a></li>
                %endif
                %if user_groups:
                   <li class="local-admin-user-groups"><a href="${h.route_path('user_groups')}">${_('User groups')}</a></li>
                %endif
               </ul>
             </%def>
             <%def name="repo_page_title(repo_instance)">
             <div class="title-content">
                 <div class="title-main">
                     ## SVN/HG/GIT icons
                     %if h.is_hg(repo_instance):
                         <i class="icon-hg"></i>
                     %endif
                     %if h.is_git(repo_instance):
                         <i class="icon-git"></i>
                     %endif
                     %if h.is_svn(repo_instance):
                         <i class="icon-svn"></i>
                     %endif
                     ## public/private
                     %if repo_instance.private:
                         <i class="icon-repo-private"></i>
                     %else:
                         <i class="icon-repo-public"></i>
                     %endif
                     ## repo name with group name
                     ${h.breadcrumb_repo_link(c.rhodecode_db_repo)}
                 </div>
                 ## FORKED
                 %if repo_instance.fork:
                 <p>
                     <i class="icon-code-fork"></i> ${_('Fork of')}
-                    <a href="${h.route_path('repo_summary',repo_name=repo_instance.fork.repo_name)}">${repo_instance.fork.repo_name}</a>
+                    ${h.link_to_if(c.has_origin_repo_read_perm,repo_instance.fork.repo_name, h.route_path('repo_summary', repo_name=repo_instance.fork.repo_name))}
                 </p>
                 %endif
                 ## IMPORTED FROM REMOTE
                 %if repo_instance.clone_uri:
                 <p>
                    <i class="icon-code-fork"></i> ${_('Clone from')}
                    <a href="${h.safe_str(h.hide_credentials(repo_instance.clone_uri))}">${h.hide_credentials(repo_instance.clone_uri)}</a>
                 </p>
                 %endif
                 ## LOCKING STATUS
                  %if repo_instance.locked[0]:
                    <p class="locking_locked">
                        <i class="icon-repo-lock"></i>
                        ${_('Repository locked by %(user)s') % {'user': h.person_by_id(repo_instance.locked[0])}}
                    </p>
                  %elif repo_instance.enable_locking:
                      <p class="locking_unlocked">
                          <i class="icon-repo-unlock"></i>
                          ${_('Repository not locked. Pull repository to lock it.')}
                      </p>
                  %endif
             </div>
             </%def>
             <%def name="repo_menu(active=None)">
                 <%
                 def is_active(selected):
                     if selected == active:
                         return "active"
                 %>
               <!--- CONTEXT BAR -->
               <div id="context-bar">
                 <div class="wrapper">
                   <ul id="context-pages" class="navigation horizontal-list">
                     <li class="${is_active('summary')}"><a class="menulink" href="${h.route_path('repo_summary', repo_name=c.repo_name)}"><div class="menulabel">${_('Summary')}</div></a></li>
                     <li class="${is_active('changelog')}"><a class="menulink" href="${h.route_path('repo_changelog', repo_name=c.repo_name)}"><div class="menulabel">${_('Changelog')}</div></a></li>
                     <li class="${is_active('files')}"><a class="menulink" href="${h.route_path('repo_files', repo_name=c.repo_name, commit_id=c.rhodecode_db_repo.landing_rev[1], f_path='')}"><div class="menulabel">${_('Files')}</div></a></li>
                     <li class="${is_active('compare')}"><a class="menulink" href="${h.route_path('repo_compare_select',repo_name=c.repo_name)}"><div class="menulabel">${_('Compare')}</div></a></li>
                     ## TODO: anderson: ideally it would have a function on the scm_instance "enable_pullrequest() and enable_fork()"
                     %if c.rhodecode_db_repo.repo_type in ['git','hg']:
                       <li class="${is_active('showpullrequest')}">
                         <a class="menulink" href="${h.route_path('pullrequest_show_all', repo_name=c.repo_name)}" title="${h.tooltip(_('Show Pull Requests for %s') % c.repo_name)}">
                           %if c.repository_pull_requests:
                             <span class="pr_notifications">${c.repository_pull_requests}</span>
                           %endif
                           <div class="menulabel">${_('Pull Requests')}</div>
                         </a>
                       </li>
                     %endif
                     <li class="${is_active('options')}">
                       <a class="menulink dropdown">
                           <div class="menulabel">${_('Options')} <div class="show_more"></div></div>
                       </a>
                       <ul class="submenu">
                          %if h.HasRepoPermissionAll('repository.admin')(c.repo_name):
                                <li><a href="${h.route_path('edit_repo',repo_name=c.repo_name)}">${_('Settings')}</a></li>
                          %endif
                           %if c.rhodecode_db_repo.fork:
                            <li>
                                <a title="${h.tooltip(_('Compare fork with %s' % c.rhodecode_db_repo.fork.repo_name))}"
                                   href="${h.route_path('repo_compare',
                                         repo_name=c.rhodecode_db_repo.fork.repo_name,
                                         source_ref_type=c.rhodecode_db_repo.landing_rev[0],
                                         source_ref=c.rhodecode_db_repo.landing_rev[1],
                                         target_repo=c.repo_name,target_ref_type='branch' if request.GET.get('branch') else c.rhodecode_db_repo.landing_rev[0],
                                         target_ref=request.GET.get('branch') or c.rhodecode_db_repo.landing_rev[1],
                                         _query=dict(merge=1))}"
                                 >
                                ${_('Compare fork')}
                                </a>
                            </li>
                           %endif
                           <li><a href="${h.route_path('search_repo',repo_name=c.repo_name)}">${_('Search')}</a></li>
                           %if h.HasRepoPermissionAny('repository.write','repository.admin')(c.repo_name) and c.rhodecode_db_repo.enable_locking:
                             %if c.rhodecode_db_repo.locked[0]:
                               <li><a class="locking_del" href="${h.route_path('repo_edit_toggle_locking',repo_name=c.repo_name)}">${_('Unlock')}</a></li>
                             %else:
                               <li><a class="locking_add" href="${h.route_path('repo_edit_toggle_locking',repo_name=c.repo_name)}">${_('Lock')}</a></li>
                             %endif
                           %endif
                           %if c.rhodecode_user.username != h.DEFAULT_USER:
                             %if c.rhodecode_db_repo.repo_type in ['git','hg']:
                               <li><a href="${h.route_path('repo_fork_new',repo_name=c.repo_name)}">${_('Fork')}</a></li>
                               <li><a href="${h.route_path('pullrequest_new',repo_name=c.repo_name)}">${_('Create Pull Request')}</a></li>
                             %endif
                           %endif
                          </ul>
                     </li>
                   </ul>
                 </div>
                 <div class="clear"></div>
               </div>
                 % if c.rhodecode_db_repo.archived:
                 <div class="alert alert-warning text-center">
                     <strong>${_('This repository has been archived. It is now read-only.')}</strong>
                 </div>
                 % endif
               <!--- END CONTEXT BAR -->
             </%def>
             <%def name="usermenu(active=False)">
                 ## USER MENU
                 <li id="quick_login_li" class="${'active' if active else ''}">
                   <a id="quick_login_link" class="menulink childs">
                     ${gravatar(c.rhodecode_user.email, 20)}
                     <span class="user">
                       %if c.rhodecode_user.username != h.DEFAULT_USER:
                         <span class="menu_link_user">${c.rhodecode_user.username}</span><div class="show_more"></div>
                       %else:
                         <span>${_('Sign in')}</span>
                       %endif
                     </span>
                   </a>
               <div class="user-menu submenu">
                   <div id="quick_login">
                     %if c.rhodecode_user.username == h.DEFAULT_USER:
                         <h4>${_('Sign in to your account')}</h4>
                         ${h.form(h.route_path('login', _query={'came_from': h.current_route_path(request)}), needs_csrf_token=False)}
                         <div class="form form-vertical">
                             <div class="fields">
                                 <div class="field">
                                     <div class="label">
                                         <label for="username">${_('Username')}:</label>
                                     </div>
                                     <div class="input">
                                         ${h.text('username',class_='focus',tabindex=1)}
                                     </div>
                                 </div>
                                 <div class="field">
                                     <div class="label">
                                         <label for="password">${_('Password')}:</label>
                                         %if h.HasPermissionAny('hg.password_reset.enabled')():
                                           <span class="forgot_password">${h.link_to(_('(Forgot password?)'),h.route_path('reset_password'), class_='pwd_reset')}</span>
                                         %endif
                                     </div>
                                     <div class="input">
                                         ${h.password('password',class_='focus',tabindex=2)}
                                     </div>
                                 </div>
                                 <div class="buttons">
                                     <div class="register">
                                     %if h.HasPermissionAny('hg.admin', 'hg.register.auto_activate', 'hg.register.manual_activate')():
                                      ${h.link_to(_("Don't have an account?"),h.route_path('register'))} <br/>
                                     %endif
                                     ${h.link_to(_("Using external auth? Sign In here."),h.route_path('login'))}
                                     </div>
                                     <div class="submit">
                                         ${h.submit('sign_in',_('Sign In'),class_="btn btn-small",tabindex=3)}
                                     </div>
                                 </div>
                             </div>
                         </div>
                         ${h.end_form()}
                     %else:
                         <div class="">
                             <div class="big_gravatar">${gravatar(c.rhodecode_user.email, 48)}</div>
                             <div class="full_name">${c.rhodecode_user.full_name_or_username}</div>
                             <div class="email">${c.rhodecode_user.email}</div>
                         </div>
                         <div class="">
                         <ol class="links">
                           <li>${h.link_to(_(u'My account'),h.route_path('my_account_profile'))}</li>
                           % if c.rhodecode_user.personal_repo_group:
                           <li>${h.link_to(_(u'My personal group'), h.route_path('repo_group_home', repo_group_name=c.rhodecode_user.personal_repo_group.group_name))}</li>
                           % endif
                           <li>${h.link_to(_(u'Pull Requests'), h.route_path('my_account_pullrequests'))}</li>
                           <li class="logout">
                           ${h.secure_form(h.route_path('logout'), request=request)}
                               ${h.submit('log_out', _(u'Sign Out'),class_="btn btn-primary")}
                           ${h.end_form()}
                           </li>
                         </ol>
                         </div>
                     %endif
                   </div>
               </div>
                   %if c.rhodecode_user.username != h.DEFAULT_USER:
                     <div class="pill_container">
                       <a class="menu_link_notifications ${'empty' if c.unread_notifications == 0 else ''}" href="${h.route_path('notifications_show_all')}">${c.unread_notifications}</a>
                     </div>
                   % endif
                 </li>
             </%def>
             <%def name="menu_items(active=None)">
                 <%
                 def is_active(selected):
                     if selected == active:
                         return "active"
                     return ""
                 %>
                 <ul id="quick" class="main_nav navigation horizontal-list">
                    ## notice box for important system messages
                    <li style="display: none">
                       <a class="notice-box" href="#openNotice" onclick="showNoticeBox(); return false">
                         <div class="menulabel-notice" >
                         </div>
                       </a>
                    </li>
                     ## Main filter
                    <li>
                     <div class="menulabel main_filter_box">
                         <div class="main_filter_input_box">
                             <input class="main_filter_input" id="main_filter" size="15" type="text" name="main_filter" placeholder="${_('search / go to...')}" value=""/>
                         </div>
                         <div class="main_filter_help_box">
                             <a href="#showFilterHelp" onclick="showMainFilterBox(); return false">?</a>
                         </div>
                     </div>
                     <div id="main_filter_help" style="display: none">
             Use '/' key to quickly access this field.
             Enter name of repository, or repository group for quick search.
             Prefix query to allow special search:
             user:admin, to search for usernames
             user_group:devops, to search for user groups
             commit:efced4, to search for commits
                     </div>
                    </li>
                   ## ROOT MENU
                   %if c.rhodecode_user.username != h.DEFAULT_USER:
                     <li class="${is_active('journal')}">
                       <a class="menulink" title="${_('Show activity journal')}" href="${h.route_path('journal')}">
                         <div class="menulabel">${_('Journal')}</div>
                       </a>
                     </li>
                   %else:
                     <li class="${is_active('journal')}">
                       <a class="menulink" title="${_('Show Public activity journal')}" href="${h.route_path('journal_public')}">
                         <div class="menulabel">${_('Public journal')}</div>
                       </a>
                     </li>
                   %endif
                     <li class="${is_active('gists')}">
                       <a class="menulink childs" title="${_('Show Gists')}" href="${h.route_path('gists_show')}">
                         <div class="menulabel">${_('Gists')}</div>
                       </a>
                     </li>
                   <li class="${is_active('search')}">
                       <a class="menulink" title="${_('Search in repositories you have access to')}" href="${h.route_path('search')}">
                         <div class="menulabel">${_('Search')}</div>
                       </a>
                   </li>
                   % if h.HasPermissionAll('hg.admin')('access admin main page'):
                     <li class="${is_active('admin')}">
                       <a class="menulink childs" title="${_('Admin settings')}" href="#" onclick="return false;">
                         <div class="menulabel">${_('Admin')} <div class="show_more"></div></div>
                       </a>
                       ${admin_menu()}
                     </li>
                   % elif c.rhodecode_user.repositories_admin or c.rhodecode_user.repository_groups_admin or c.rhodecode_user.user_groups_admin:
                   <li class="${is_active('admin')}">
                       <a class="menulink childs" title="${_('Delegated Admin settings')}">
                         <div class="menulabel">${_('Admin')} <div class="show_more"></div></div>
                       </a>
                       ${admin_menu_simple(c.rhodecode_user.repositories_admin,
                                           c.rhodecode_user.repository_groups_admin,
                                           c.rhodecode_user.user_groups_admin or h.HasPermissionAny('hg.usergroup.create.true')())}
                   </li>
                   % endif
                   ## render extra user menu
                   ${usermenu(active=(active=='my_account'))}
                   % if c.debug_style:
                   <li>
                       <a class="menulink" title="${_('Style')}" href="${h.route_path('debug_style_home')}">
                         <div class="menulabel">${_('[Style]')}</div>
                       </a>
                   </li>
                   % endif
                 </ul>
                 <script type="text/javascript">
                     var visualShowPublicIcon = "${c.visual.show_public_icon}" == "True";
                     var formatRepoResult = function(result, container, query, escapeMarkup) {
                         return function(data, escapeMarkup) {
                             if (!data.repo_id){
                               return data.text; // optgroup text Repositories
                             }
                             var tmpl = '';
                             var repoType = data['repo_type'];
                             var repoName = data['text'];
                             if(data && data.type == 'repo'){
                                 if(repoType === 'hg'){
                                     tmpl += '<i class="icon-hg"></i> ';
                                 }
                                 else if(repoType === 'git'){
                                     tmpl += '<i class="icon-git"></i> ';
                                 }
                                 else if(repoType === 'svn'){
                                     tmpl += '<i class="icon-svn"></i> ';
                                 }
                                 if(data['private']){
                                     tmpl += '<i class="icon-lock" ></i> ';
                                 }
                                 else if(visualShowPublicIcon){
                                     tmpl += '<i class="icon-unlock-alt"></i> ';
                                 }
                             }
                             tmpl += escapeMarkup(repoName);
                             return tmpl;
                         }(result, escapeMarkup);
                     };
                     var autocompleteMainFilterFormatResult = function (data, value, org_formatter) {
                         if (value.split(':').length === 2) {
                             value = value.split(':')[1]
                         }
                         var searchType = data['type'];
                         var valueDisplay = data['value_display'];
                         var escapeRegExChars = function (value) {
                         return value.replace(/[\-\[\]\/\{\}\(\)\*\+\?\.\\\^\$\|]/g, "\\$&");
                         };
                         var pattern = '(' + escapeRegExChars(value) + ')';
                         // highlight match
                         valueDisplay = Select2.util.escapeMarkup(valueDisplay);
                         valueDisplay = valueDisplay.replace(new RegExp(pattern, 'gi'), '<strong>$1<\/strong>');
                         var icon = '';
                         if (searchType === 'hint') {
                             icon += '<i class="icon-folder-close"></i> ';
                         }
                         else if (searchType === 'search') {
                             icon += '<i class="icon-more"></i> ';
                         }
                         else if (searchType === 'repo') {
                             if (data['repo_type'] === 'hg') {
                                 icon += '<i class="icon-hg"></i> ';
                             }
                             else if (data['repo_type'] === 'git') {
                                 icon += '<i class="icon-git"></i> ';
                             }
                             else if (data['repo_type'] === 'svn') {
                                 icon += '<i class="icon-svn"></i> ';
                             }
                             if (data['private']) {
                                 icon += '<i class="icon-lock" ></i> ';
                             }
                             else if (visualShowPublicIcon) {
                                 icon += '<i class="icon-unlock-alt"></i> ';
                             }
                         }
                         else if (searchType === 'repo_group') {
                             icon += '<i class="icon-folder-close"></i> ';
                         }
                         else if (searchType === 'user_group') {
                             icon += '<i class="icon-group"></i> ';
                         }
                         else if (searchType === 'user') {
                             icon += '<img class="gravatar" src="{0}"/>'.format(data['icon_link']);
                         }
                         else if (searchType === 'commit') {
                             icon += '<i class="icon-tag"></i>';
                         }
                         var tmpl = '<div class="ac-container-wrap">{0}{1}</div>';
                         return tmpl.format(icon, valueDisplay);
                     };
                     var handleSelect = function(element, suggestion) {
                         if (suggestion.type === "hint") {
                             // we skip action
                             $('#main_filter').focus();
                         } else {
                           window.location = suggestion['url'];
                         }
                     };
                     var autocompleteMainFilterResult = function (suggestion, originalQuery, queryLowerCase) {
                         if (queryLowerCase.split(':').length === 2) {
                             queryLowerCase = queryLowerCase.split(':')[1]
                         }
                         return suggestion.value_display.toLowerCase().indexOf(queryLowerCase) !== -1;
                     };
                     $('#main_filter').autocomplete({
                         serviceUrl: pyroutes.url('goto_switcher_data'),
                         params: {"search_context": templateContext.search_context},
                         minChars:2,
                         maxHeight:400,
                         deferRequestBy: 300, //miliseconds
                         tabDisabled: true,
                         autoSelectFirst: true,
                         formatResult: autocompleteMainFilterFormatResult,
                         lookupFilter: autocompleteMainFilterResult,
                         onSelect: function (element, suggestion) {
                             handleSelect(element, suggestion);
                             return false;
                         },
                         onSearchError: function (element, query, jqXHR, textStatus, errorThrown) {
                             if (jqXHR !== 'abort') {
                                 alert("Error during search.\nError code: {0}".format(textStatus));
                                 window.location = '';
                             }
                         }
                     });
                     showMainFilterBox = function () {
                         $('#main_filter_help').toggle();
                     }
                 </script>
                 <script src="${h.asset('js/rhodecode/base/keyboard-bindings.js', ver=c.rhodecode_version_hash)}"></script>
             </%def>
             <div class="modal" id="help_kb" tabindex="-1" role="dialog" aria-labelledby="myModalLabel" aria-hidden="true">
                 <div class="modal-dialog">
                   <div class="modal-content">
                     <div class="modal-header">
                       <button type="button" class="close" data-dismiss="modal" aria-hidden="true">&times;</button>
                       <h4 class="modal-title" id="myModalLabel">${_('Keyboard shortcuts')}</h4>
                     </div>
                     <div class="modal-body">
                           <div class="block-left">
                             <table class="keyboard-mappings">
                                 <tbody>
                               <tr>
                                 <th></th>
                                 <th>${_('Site-wide shortcuts')}</th>
                               </tr>
                               <%
                                  elems = [
                                      ('/', 'Use quick search box'),
                                      ('g h', 'Goto home page'),
                                      ('g g', 'Goto my private gists page'),
                                      ('g G', 'Goto my public gists page'),
                                      ('n r', 'New repository page'),
                                      ('n g', 'New gist page'),
                                  ]
                               %>
                               %for key, desc in elems:
                               <tr>
                                 <td class="keys">
                                   <span class="key tag">${key}</span>
                                 </td>
                                 <td>${desc}</td>
                               </tr>
                             %endfor
                             </tbody>
                               </table>
                           </div>
                           <div class="block-left">
                             <table class="keyboard-mappings">
                             <tbody>
                               <tr>
                                 <th></th>
                                 <th>${_('Repositories')}</th>
                               </tr>
                               <%
                                  elems = [
                                      ('g s', 'Goto summary page'),
                                      ('g c', 'Goto changelog page'),
                                      ('g f', 'Goto files page'),
                                      ('g F', 'Goto files page with file search activated'),
                                      ('g p', 'Goto pull requests page'),
                                      ('g o', 'Goto repository settings'),
                                      ('g O', 'Goto repository permissions settings'),
                                  ]
                               %>
                               %for key, desc in elems:
                               <tr>
                                 <td class="keys">
                                   <span class="key tag">${key}</span>
                                 </td>
                                 <td>${desc}</td>
                               </tr>
                             %endfor
                             </tbody>
                           </table>
                         </div>
                     </div>
                     <div class="modal-footer">
                     </div>
                   </div><!-- /.modal-content -->
                 </div><!-- /.modal-dialog -->
             </div><!-- /.modal -->

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages