u/pc/rhodecode-enterprise-ce-fork-pc Commit - r2437:31460ef8

api: add consistent permissions_summary data for both user and user_groups that expose...

marcink -

r2437:31460ef8 default

parent child

rhodecode/api/views/user_api.py

0 +3 -1

                 user = get_user_or_error(userid)
                 data = user.get_api_data(include_secrets=True)
-                data['permissions'] = AuthUser(user_id=user.user_id).permissions
+                permissions = AuthUser(user_id=user.user_id).permissions
+                data['permissions'] = permissions  # TODO(marcink): should be deprecated
+                data['permissions_summary'] = permissions
                 return data

rhodecode/api/views/user_group_api.py

0 +2 -1

                 data = user_group.get_api_data()
                 data["permissions"] = permissions
+                data["Permissions_summary"] = UserGroupModel().get_perms_summary(
+                    user_group.users_group_id)
                 return data

rhodecode/apps/user_group/views/__init__.py

0 +4 -31

                 LoginRequired, HasUserGroupPermissionAnyDecorator, CSRFRequired)
             from rhodecode.lib import helpers as h, audit_logger
             from rhodecode.lib.utils2 import str2bool
-            from rhodecode.model.db import (
+            from rhodecode.model.db import User
-                joinedload, User, UserGroupRepoToPerm, UserGroupRepoGroupToPerm)
             from rhodecode.model.meta import Session
             from rhodecode.model.user_group import UserGroupModel
                     PermissionModel().set_global_permission_choices(
                         c, gettext_translator=self.request.translate)
                     return c
-                def _get_perms_summary(self, user_group_id):
-                    permissions = {
-                        'repositories': {},
-                        'repositories_groups': {},
-                    ugroup_repo_perms = UserGroupRepoToPerm.query()\
-                        .options(joinedload(UserGroupRepoToPerm.permission))\
-                        .options(joinedload(UserGroupRepoToPerm.repository))\
-                        .filter(UserGroupRepoToPerm.users_group_id == user_group_id)\
-                        .all()
-                    for gr in ugroup_repo_perms:
-                        permissions['repositories'][gr.repository.repo_name]  \
-                            = gr.permission.permission_name
-                    ugroup_group_perms = UserGroupRepoGroupToPerm.query()\
-                        .options(joinedload(UserGroupRepoGroupToPerm.permission))\
-                        .options(joinedload(UserGroupRepoGroupToPerm.group))\
-                        .filter(UserGroupRepoGroupToPerm.users_group_id == user_group_id)\
-                        .all()
-                    for gr in ugroup_group_perms:
-                        permissions['repositories_groups'][gr.group.group_name] \
-                            = gr.permission.permission_name
-                    return permissions
                 @LoginRequired()
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 @view_config(
                     c = self.load_default_context()
                     c.user_group = self.db_user_group
                     c.active = 'perms_summary'
-                    c.permissions = self._get_perms_summary(c.user_group.users_group_id)
+                    c.permissions = UserGroupModel().get_perms_summary(
+                        c.user_group.users_group_id)
                     return self._get_template_context(c)
                 @LoginRequired()
                 def user_group_perms_summary_json(self):
                     self.load_default_context()
                     user_group = self.db_user_group
-                    return self._get_perms_summary(user_group.users_group_id)
+                    return UserGroupModel().get_perms_summary(user_group.users_group_id)
                 def _revoke_perms_on_yourself(self, form_result):
                     _updates = filter(lambda u: self._rhodecode_user.user_id == int(u[0]),

rhodecode/model/user_group.py

0 +27 -1

@@ -29,7 +29,7 b' from rhodecode.lib.utils2 import ('
29	from rhodecode.model import BaseModel	29	from rhodecode.model import BaseModel
30	from rhodecode.model.scm import UserGroupList	30	from rhodecode.model.scm import UserGroupList
31	from rhodecode.model.db import (	31	from rhodecode.model.db import (
32	true, func, User, UserGroupMember, UserGroup,	32	joinedload, true, func, User, UserGroupMember, UserGroup,
33	UserGroupRepoToPerm, Permission, UserGroupToPerm, UserUserGroupToPerm,	33	UserGroupRepoToPerm, Permission, UserGroupToPerm, UserUserGroupToPerm,
34	UserGroupUserGroupToPerm, UserGroupRepoGroupToPerm)	34	UserGroupUserGroupToPerm, UserGroupRepoGroupToPerm)
35		35
@@ -502,6 +502,32 b' class UserGroupModel(BaseModel):'
502	user_group, target_user_group),	502	user_group, target_user_group),
503	namespace='security.repogroup')	503	namespace='security.repogroup')
504		504
		505	def get_perms_summary(self, user_group_id):
		506	permissions = {
		507	'repositories': {},
		508	'repositories_groups': {},
		509	}
		510	ugroup_repo_perms = UserGroupRepoToPerm.query()\
		511	.options(joinedload(UserGroupRepoToPerm.permission))\
		512	.options(joinedload(UserGroupRepoToPerm.repository))\
		513	.filter(UserGroupRepoToPerm.users_group_id == user_group_id)\
		514	.all()
		515
		516	for gr in ugroup_repo_perms:
		517	permissions['repositories'][gr.repository.repo_name] \
		518	= gr.permission.permission_name
		519
		520	ugroup_group_perms = UserGroupRepoGroupToPerm.query()\
		521	.options(joinedload(UserGroupRepoGroupToPerm.permission))\
		522	.options(joinedload(UserGroupRepoGroupToPerm.group))\
		523	.filter(UserGroupRepoGroupToPerm.users_group_id == user_group_id)\
		524	.all()
		525
		526	for gr in ugroup_group_perms:
		527	permissions['repositories_groups'][gr.group.group_name] \
		528	= gr.permission.permission_name
		529	return permissions
		530
505	def enforce_groups(self, user, groups, extern_type=None):	531	def enforce_groups(self, user, groups, extern_type=None):
506	user = self._get_user(user)	532	user = self._get_user(user)
507	current_groups = user.group_member	533	current_groups = user.group_member

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages