u/pc/rhodecode-enterprise-ce-fork-pc Commit - r793:fc8d2069

integrations: add recursive repo group scope to allow integrations...

dan -

r793:fc8d2069 default

parent child

rhodecode/integrations/views.py

0 +23 -16

             # -*- coding: utf-8 -*-
             # Copyright (C) 2012-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import pylons
             import deform
             import logging
             import colander
             import peppercorn
             import webhelpers.paginate
             from pyramid.httpexceptions import HTTPFound, HTTPForbidden, HTTPBadRequest
             from pyramid.renderers import render
             from pyramid.response import Response
             from rhodecode.lib import auth
             from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator
             from rhodecode.lib.utils2 import safe_int
             from rhodecode.lib.helpers import Page
             from rhodecode.model.db import Repository, RepoGroup, Session, Integration
             from rhodecode.model.scm import ScmModel
             from rhodecode.model.integration import IntegrationModel
             from rhodecode.admin.navigation import navigation_list
             from rhodecode.translation import _
             from rhodecode.integrations import integration_type_registry
             from rhodecode.model.validation_schema.schemas.integration_schema import (
-                make_integration_schema)
+                make_integration_schema, IntegrationScopeType)
             log = logging.getLogger(__name__)
             class IntegrationSettingsViewBase(object):
                 """ Base Integration settings view used by both repo / global settings """
                 def __init__(self, context, request):
                     self.context = context
                     self.request = request
                     self._load_general_context()
                     if not self.perm_check(request.user):
                         raise HTTPForbidden()
                 def _load_general_context(self):
                     """
                     This avoids boilerplate for repo/global+list/edit+views/templates
                     by doing all possible contexts at the same time however it should
                     be split up into separate functions once more "contexts" exist
                     """
                     self.IntegrationType = None
                     self.repo = None
                     self.repo_group = None
                     self.integration = None
                     self.integrations = {}
                     request = self.request
                     if 'repo_name' in request.matchdict:  # in repo settings context
                         repo_name = request.matchdict['repo_name']
                         self.repo = Repository.get_by_repo_name(repo_name)
                     if 'repo_group_name' in request.matchdict: # in group settings context
                         repo_group_name = request.matchdict['repo_group_name']
                         self.repo_group = RepoGroup.get_by_group_name(repo_group_name)
                     if 'integration' in request.matchdict:  # integration type context
                         integration_type = request.matchdict['integration']
                         self.IntegrationType = integration_type_registry[integration_type]
                     if 'integration_id' in request.matchdict:  # single integration context
                         integration_id = request.matchdict['integration_id']
                         self.integration = Integration.get(integration_id)
                         # extra perms check just in case
                         if not self._has_perms_for_integration(self.integration):
                             raise HTTPForbidden()
                     self.settings = self.integration and self.integration.settings or {}
                     self.admin_view = not (self.repo or self.repo_group)
                 def _has_perms_for_integration(self, integration):
                     perms = self.request.user.permissions
                     if 'hg.admin' in perms['global']:
                         return True
                     if integration.repo:
                         return perms['repositories'].get(
                             integration.repo.repo_name) == 'repository.admin'
                     if integration.repo_group:
                         return perms['repositories_groups'].get(
                             integration.repo_group.group_name) == 'group.admin'
                     return False
                 def _template_c_context(self):
                     # TODO: dan: this is a stopgap in order to inherit from current pylons
                     # based admin/repo settings templates - this should be removed entirely
                     # after port to pyramid
                     c = pylons.tmpl_context
                     c.active = 'integrations'
                     c.rhodecode_user = self.request.user
                     c.repo = self.repo
                     c.repo_group = self.repo_group
                     c.repo_name = self.repo and self.repo.repo_name or None
                     c.repo_group_name = self.repo_group and self.repo_group.group_name or None
                     if self.repo:
                         c.repo_info = self.repo
                         c.rhodecode_db_repo = self.repo
                         c.repository_pull_requests = ScmModel().get_pull_requests(self.repo)
                     else:
                         c.navlist = navigation_list(self.request)
                     return c
                 def _form_schema(self):
                     schema = make_integration_schema(IntegrationType=self.IntegrationType,
                                                      settings=self.settings)
                     # returns a clone, important if mutating the schema later
                     return schema.bind(
                         permissions=self.request.user.permissions,
                         no_scope=not self.admin_view)
                 def _form_defaults(self):
                     defaults = {}
                     if self.integration:
                         defaults['settings'] = self.integration.settings or {}
                         defaults['options'] = {
                             'name': self.integration.name,
                             'enabled': self.integration.enabled,
-                            'scope': self.integration.scope,
+                            'scope': {
+                                'repo': self.integration.repo,
+                                'repo_group': self.integration.repo_group,
+                                'child_repos_only': self.integration.child_repos_only,
+                            },
                         }
                     else:
                         if self.repo:
                             scope = _('{repo_name} repository').format(
                                 repo_name=self.repo.repo_name)
                         elif self.repo_group:
                             scope = _('{repo_group_name} repo group').format(
                                 repo_group_name=self.repo_group.group_name)
                         else:
                             scope = _('Global')
                         defaults['options'] = {
                             'enabled': True,
                             'name': _('{name} integration').format(
                                 name=self.IntegrationType.display_name),
                         }
-                        if self.repo:
+                        defaults['options']['scope'] = {
-                            defaults['options']['scope'] = self.repo
+                            'repo': self.repo,
-                        elif self.repo_group:
+                            'repo_group': self.repo_group,
-                            defaults['options']['scope'] = self.repo_group
                     return defaults
                 def _delete_integration(self, integration):
                     Session().delete(self.integration)
                     Session().commit()
                     self.request.session.flash(
                         _('Integration {integration_name} deleted successfully.').format(
                             integration_name=self.integration.name),
                         queue='success')
                     if self.repo:
                         redirect_to = self.request.route_url(
                             'repo_integrations_home', repo_name=self.repo.repo_name)
                     elif self.repo_group:
                         redirect_to = self.request.route_url(
                             'repo_group_integrations_home',
                             repo_group_name=self.repo_group.group_name)
                     else:
                         redirect_to = self.request.route_url('global_integrations_home')
                     raise HTTPFound(redirect_to)
                 def settings_get(self, defaults=None, form=None):
                     """
                     View that displays the integration settings as a form.
                     """
                     defaults = defaults or self._form_defaults()
                     schema = self._form_schema()
                     if self.integration:
                         buttons = ('submit', 'delete')
                     else:
                         buttons = ('submit',)
                     form = form or deform.Form(schema, appstruct=defaults, buttons=buttons)
                     template_context = {
                         'form': form,
                         'current_IntegrationType': self.IntegrationType,
                         'integration': self.integration,
                         'c': self._template_c_context(),
                     }
                     return template_context
                 @auth.CSRFRequired()
                 def settings_post(self):
                     """
                     View that validates and stores the integration settings.
                     """
                     controls = self.request.POST.items()
                     pstruct = peppercorn.parse(controls)
                     if self.integration and pstruct.get('delete'):
                         return self._delete_integration(self.integration)
                     schema = self._form_schema()
                     skip_settings_validation = False
                     if self.integration and 'enabled' not in pstruct.get('options', {}):
                         skip_settings_validation = True
                         schema['settings'].validator = None
                         for field in schema['settings'].children:
                             field.validator = None
                             field.missing = ''
                     if self.integration:
                         buttons = ('submit', 'delete')
                     else:
                         buttons = ('submit',)
                     form = deform.Form(schema, buttons=buttons)
                     if not self.admin_view:
                         # scope is read only field in these cases, and has to be added
                         options = pstruct.setdefault('options', {})
                         if 'scope' not in options:
-                            if self.repo:
+                            options['scope'] = IntegrationScopeType().serialize(None, {
-                                options['scope'] = 'repo:{}'.format(self.repo.repo_name)
+                                'repo': self.repo,
-                            elif self.repo_group:
+                                'repo_group': self.repo_group,
-                                options['scope'] = 'repogroup:{}'.format(
+                            })
-                                    self.repo_group.group_name)
                     try:
                         valid_data = form.validate_pstruct(pstruct)
                     except deform.ValidationFailure as e:
                         self.request.session.flash(
                             _('Errors exist when saving integration settings. '
                               'Please check the form inputs.'),
                             queue='error')
                         return self.settings_get(form=e)
                     if not self.integration:
                         self.integration = Integration()
                         self.integration.integration_type = self.IntegrationType.key
                         Session().add(self.integration)
                     scope = valid_data['options']['scope']
                     IntegrationModel().update_integration(self.integration,
                         name=valid_data['options']['name'],
                         enabled=valid_data['options']['enabled'],
                         settings=valid_data['settings'],
-                        scope=scope)
+                        repo=scope['repo'],
+                        repo_group=scope['repo_group'],
+                        child_repos_only=scope['child_repos_only'],
+                    )
                     self.integration.settings = valid_data['settings']
                     Session().commit()
                     # Display success message and redirect.
                     self.request.session.flash(
                         _('Integration {integration_name} updated successfully.').format(
                             integration_name=self.IntegrationType.display_name),
                         queue='success')
                     # if integration scope changes, we must redirect to the right place
                     # keeping in mind if the original view was for /repo/ or /_admin/
                     admin_view = not (self.repo or self.repo_group)
-                    if isinstance(self.integration.scope, Repository) and not admin_view:
+                    if self.integration.repo and not admin_view:
                         redirect_to = self.request.route_path(
                             'repo_integrations_edit',
-                            repo_name=self.integration.scope.repo_name,
+                            repo_name=self.integration.repo.repo_name,
                             integration=self.integration.integration_type,
                             integration_id=self.integration.integration_id)
-                    elif isinstance(self.integration.scope, RepoGroup) and not admin_view:
+                    elif self.integration.repo_group and not admin_view:
                         redirect_to = self.request.route_path(
                             'repo_group_integrations_edit',
-                            repo_group_name=self.integration.scope.group_name,
+                            repo_group_name=self.integration.repo_group.group_name,
                             integration=self.integration.integration_type,
                             integration_id=self.integration.integration_id)
                     else:
                         redirect_to = self.request.route_path(
                             'global_integrations_edit',
                             integration=self.integration.integration_type,
                             integration_id=self.integration.integration_id)
                     return HTTPFound(redirect_to)
                 def index(self):
                     """ List integrations """
                     if self.repo:
                         scope = self.repo
                     elif self.repo_group:
                         scope = self.repo_group
                     else:
                         scope = 'all'
                     integrations = []
                     for integration in IntegrationModel().get_integrations(
                                     scope=scope, IntegrationType=self.IntegrationType):
                         # extra permissions check *just in case*
                         if not self._has_perms_for_integration(integration):
                             continue
                         integrations.append(integration)
                     sort_arg = self.request.GET.get('sort', 'name:asc')
                     if ':' in sort_arg:
                         sort_field, sort_dir = sort_arg.split(':')
                     else:
                         sort_field = sort_arg, 'asc'
                     assert sort_field in ('name', 'integration_type', 'enabled', 'scope')
                     integrations.sort(
                         key=lambda x: getattr(x[1], sort_field), reverse=(sort_dir=='desc'))
                     page_url = webhelpers.paginate.PageURL(
                         self.request.path, self.request.GET)
                     page = safe_int(self.request.GET.get('page', 1), 1)
                     integrations = Page(integrations, page=page, items_per_page=10,
                                            url=page_url)
                     template_context = {
                         'sort_field': sort_field,
                         'rev_sort_dir': sort_dir != 'desc' and 'desc' or 'asc',
                         'current_IntegrationType': self.IntegrationType,
                         'integrations_list': integrations,
                         'available_integrations': integration_type_registry,
                         'c': self._template_c_context(),
                         'request': self.request,
                     }
                     return template_context
                 def new_integration(self):
                     template_context = {
                         'available_integrations': integration_type_registry,
                         'c': self._template_c_context(),
                     }
                     return template_context
             class GlobalIntegrationsView(IntegrationSettingsViewBase):
                 def perm_check(self, user):
                     return auth.HasPermissionAll('hg.admin').check_permissions(user=user)
             class RepoIntegrationsView(IntegrationSettingsViewBase):
                 def perm_check(self, user):
                     return auth.HasRepoPermissionAll('repository.admin'
                         )(repo_name=self.repo.repo_name, user=user)
             class RepoGroupIntegrationsView(IntegrationSettingsViewBase):
                 def perm_check(self, user):
                     return auth.HasRepoGroupPermissionAll('group.admin'
                         )(group_name=self.repo_group.group_name, user=user)

rhodecode/model/db.py

0 +6 -24

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             Database Models for RhodeCode Enterprise
             """
             import os
             import sys
             import time
             import hashlib
             import logging
             import datetime
             import warnings
             import ipaddress
             import functools
             import traceback
             import collections
             from sqlalchemy import *
             from sqlalchemy.exc import IntegrityError
             from sqlalchemy.ext.declarative import declared_attr
             from sqlalchemy.ext.hybrid import hybrid_property
             from sqlalchemy.orm import (
                 relationship, joinedload, class_mapper, validates, aliased)
             from sqlalchemy.sql.expression import true
             from beaker.cache import cache_region, region_invalidate
             from webob.exc import HTTPNotFound
             from zope.cachedescriptors.property import Lazy as LazyProperty
             from pylons import url
             from pylons.i18n.translation import lazy_ugettext as _
             from rhodecode.lib.vcs import get_backend, get_vcs_instance
             from rhodecode.lib.vcs.utils.helpers import get_scm
             from rhodecode.lib.vcs.exceptions import VCSError
             from rhodecode.lib.vcs.backends.base import (
                 EmptyCommit, Reference, MergeFailureReason)
             from rhodecode.lib.utils2 import (
                 str2bool, safe_str, get_commit_safe, safe_unicode, remove_prefix, md5_safe,
                 time_to_datetime, aslist, Optional, safe_int, get_clone_url, AttributeDict)
             from rhodecode.lib.jsonalchemy import MutationObj, JsonType, JSONDict
             from rhodecode.lib.ext_json import json
             from rhodecode.lib.caching_query import FromCache
             from rhodecode.lib.encrypt import AESCipher
             from rhodecode.model.meta import Base, Session
             URL_SEP = '/'
             log = logging.getLogger(__name__)
             # =============================================================================
             # BASE CLASSES
             # =============================================================================
             # this is propagated from .ini file rhodecode.encrypted_values.secret or
             # beaker.session.secret if first is not set.
             # and initialized at environment.py
             ENCRYPTION_KEY = None
             # used to sort permissions by types, '#' used here is not allowed to be in
             # usernames, and it's very early in sorted string.printable table.
             PERMISSION_TYPE_SORT = {
                 'admin': '####',
                 'write': '###',
                 'read':  '##',
                 'none':  '#',
             }
             def display_sort(obj):
                 """
                 Sort function used to sort permissions in .permissions() function of
                 Repository, RepoGroup, UserGroup. Also it put the default user in front
                 of all other resources
                 """
                 if obj.username == User.DEFAULT_USER:
                     return '#####'
                 prefix = PERMISSION_TYPE_SORT.get(obj.permission.split('.')[-1], '')
                 return prefix + obj.username
             def _hash_key(k):
                 return md5_safe(k)
             class EncryptedTextValue(TypeDecorator):
                 """
                 Special column for encrypted long text data, use like::
                     value = Column("encrypted_value", EncryptedValue(), nullable=False)
                 This column is intelligent so if value is in unencrypted form it return
                 unencrypted form, but on save it always encrypts
                 """
                 impl = Text
                 def process_bind_param(self, value, dialect):
                     if not value:
                         return value
                     if value.startswith('enc$aes$') or value.startswith('enc$aes_hmac$'):
                         # protect against double encrypting if someone manually starts
                         # doing
                         raise ValueError('value needs to be in unencrypted format, ie. '
                                          'not starting with enc$aes')
                     return 'enc$aes_hmac$%s' % AESCipher(
                         ENCRYPTION_KEY, hmac=True).encrypt(value)
                 def process_result_value(self, value, dialect):
                     import rhodecode
                     if not value:
                         return value
                     parts = value.split('$', 3)
                     if not len(parts) == 3:
                         # probably not encrypted values
                         return value
                     else:
                         if parts[0] != 'enc':
                             # parts ok but without our header ?
                             return value
                         enc_strict_mode = str2bool(rhodecode.CONFIG.get(
                             'rhodecode.encrypted_values.strict') or True)
                         # at that stage we know it's our encryption
                         if parts[1] == 'aes':
                             decrypted_data = AESCipher(ENCRYPTION_KEY).decrypt(parts[2])
                         elif parts[1] == 'aes_hmac':
                             decrypted_data = AESCipher(
                                 ENCRYPTION_KEY, hmac=True,
                                 strict_verification=enc_strict_mode).decrypt(parts[2])
                         else:
                             raise ValueError(
                                 'Encryption type part is wrong, must be `aes` '
                                 'or `aes_hmac`, got `%s` instead' % (parts[1]))
                         return decrypted_data
             class BaseModel(object):
                 """
                 Base Model for all classes
                 """
                 @classmethod
                 def _get_keys(cls):
                     """return column names for this model """
                     return class_mapper(cls).c.keys()
                 def get_dict(self):
                     """
                     return dict with keys and values corresponding
                     to this model data """
                     d = {}
                     for k in self._get_keys():
                         d[k] = getattr(self, k)
                     # also use __json__() if present to get additional fields
                     _json_attr = getattr(self, '__json__', None)
                     if _json_attr:
                         # update with attributes from __json__
                         if callable(_json_attr):
                             _json_attr = _json_attr()
                         for k, val in _json_attr.iteritems():
                             d[k] = val
                     return d
                 def get_appstruct(self):
                     """return list with keys and values tuples corresponding
                     to this model data """
                     l = []
                     for k in self._get_keys():
                         l.append((k, getattr(self, k),))
                     return l
                 def populate_obj(self, populate_dict):
                     """populate model with data from given populate_dict"""
                     for k in self._get_keys():
                         if k in populate_dict:
                             setattr(self, k, populate_dict[k])
                 @classmethod
                 def query(cls):
                     return Session().query(cls)
                 @classmethod
                 def get(cls, id_):
                     if id_:
                         return cls.query().get(id_)
                 @classmethod
                 def get_or_404(cls, id_):
                     try:
                         id_ = int(id_)
                     except (TypeError, ValueError):
                         raise HTTPNotFound
                     res = cls.query().get(id_)
                     if not res:
                         raise HTTPNotFound
                     return res
                 @classmethod
                 def getAll(cls):
                     # deprecated and left for backward compatibility
                     return cls.get_all()
                 @classmethod
                 def get_all(cls):
                     return cls.query().all()
                 @classmethod
                 def delete(cls, id_):
                     obj = cls.query().get(id_)
                     Session().delete(obj)
                 @classmethod
                 def identity_cache(cls, session, attr_name, value):
                     exist_in_session = []
                     for (item_cls, pkey), instance in session.identity_map.items():
                         if cls == item_cls and getattr(instance, attr_name) == value:
                             exist_in_session.append(instance)
                     if exist_in_session:
                         if len(exist_in_session) == 1:
                             return exist_in_session[0]
                         log.exception(
                             'multiple objects with attr %s and '
                             'value %s found with same name: %r',
                             attr_name, value, exist_in_session)
                 def __repr__(self):
                     if hasattr(self, '__unicode__'):
                         # python repr needs to return str
                         try:
                             return safe_str(self.__unicode__())
                         except UnicodeDecodeError:
                             pass
                     return '<DB:%s>' % (self.__class__.__name__)
             class RhodeCodeSetting(Base, BaseModel):
                 __tablename__ = 'rhodecode_settings'
                 __table_args__ = (
                     UniqueConstraint('app_settings_name'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 SETTINGS_TYPES = {
                     'str': safe_str,
                     'int': safe_int,
                     'unicode': safe_unicode,
                     'bool': str2bool,
                     'list': functools.partial(aslist, sep=',')
                 }
                 DEFAULT_UPDATE_URL = 'https://rhodecode.com/api/v1/info/versions'
                 GLOBAL_CONF_KEY = 'app_settings'
                 app_settings_id = Column("app_settings_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 app_settings_name = Column("app_settings_name", String(255), nullable=True, unique=None, default=None)
                 _app_settings_value = Column("app_settings_value", String(4096), nullable=True, unique=None, default=None)
                 _app_settings_type = Column("app_settings_type", String(255), nullable=True, unique=None, default=None)
                 def __init__(self, key='', val='', type='unicode'):
                     self.app_settings_name = key
                     self.app_settings_type = type
                     self.app_settings_value = val
                 @validates('_app_settings_value')
                 def validate_settings_value(self, key, val):
                     assert type(val) == unicode
                     return val
                 @hybrid_property
                 def app_settings_value(self):
                     v = self._app_settings_value
                     _type = self.app_settings_type
                     if _type:
                         _type = self.app_settings_type.split('.')[0]
                         # decode the encrypted value
                         if 'encrypted' in self.app_settings_type:
                             cipher = EncryptedTextValue()
                             v = safe_unicode(cipher.process_result_value(v, None))
                     converter = self.SETTINGS_TYPES.get(_type) or \
                         self.SETTINGS_TYPES['unicode']
                     return converter(v)
                 @app_settings_value.setter
                 def app_settings_value(self, val):
                     """
                     Setter that will always make sure we use unicode in app_settings_value
                     :param val:
                     """
                     val = safe_unicode(val)
                     # encode the encrypted value
                     if 'encrypted' in self.app_settings_type:
                         cipher = EncryptedTextValue()
                         val = safe_unicode(cipher.process_bind_param(val, None))
                     self._app_settings_value = val
                 @hybrid_property
                 def app_settings_type(self):
                     return self._app_settings_type
                 @app_settings_type.setter
                 def app_settings_type(self, val):
                     if val.split('.')[0] not in self.SETTINGS_TYPES:
                         raise Exception('type must be one of %s got %s'
                                         % (self.SETTINGS_TYPES.keys(), val))
                     self._app_settings_type = val
                 def __unicode__(self):
                     return u"<%s('%s:%s[%s]')>" % (
                         self.__class__.__name__,
                         self.app_settings_name, self.app_settings_value,
                         self.app_settings_type
                     )
             class RhodeCodeUi(Base, BaseModel):
                 __tablename__ = 'rhodecode_ui'
                 __table_args__ = (
                     UniqueConstraint('ui_key'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 HOOK_REPO_SIZE = 'changegroup.repo_size'
                 # HG
                 HOOK_PRE_PULL = 'preoutgoing.pre_pull'
                 HOOK_PULL = 'outgoing.pull_logger'
                 HOOK_PRE_PUSH = 'prechangegroup.pre_push'
                 HOOK_PUSH = 'changegroup.push_logger'
                 # TODO: johbo: Unify way how hooks are configured for git and hg,
                 # git part is currently hardcoded.
                 # SVN PATTERNS
                 SVN_BRANCH_ID = 'vcs_svn_branch'
                 SVN_TAG_ID = 'vcs_svn_tag'
                 ui_id = Column(
                     "ui_id", Integer(), nullable=False, unique=True, default=None,
                     primary_key=True)
                 ui_section = Column(
                     "ui_section", String(255), nullable=True, unique=None, default=None)
                 ui_key = Column(
                     "ui_key", String(255), nullable=True, unique=None, default=None)
                 ui_value = Column(
                     "ui_value", String(255), nullable=True, unique=None, default=None)
                 ui_active = Column(
                     "ui_active", Boolean(), nullable=True, unique=None, default=True)
                 def __repr__(self):
                     return '<%s[%s]%s=>%s]>' % (self.__class__.__name__, self.ui_section,
                                                 self.ui_key, self.ui_value)
             class RepoRhodeCodeSetting(Base, BaseModel):
                 __tablename__ = 'repo_rhodecode_settings'
                 __table_args__ = (
                     UniqueConstraint(
                         'app_settings_name', 'repository_id',
                         name='uq_repo_rhodecode_setting_name_repo_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 repository_id = Column(
                     "repository_id", Integer(), ForeignKey('repositories.repo_id'),
                     nullable=False)
                 app_settings_id = Column(
                     "app_settings_id", Integer(), nullable=False, unique=True,
                     default=None, primary_key=True)
                 app_settings_name = Column(
                     "app_settings_name", String(255), nullable=True, unique=None,
                     default=None)
                 _app_settings_value = Column(
                     "app_settings_value", String(4096), nullable=True, unique=None,
                     default=None)
                 _app_settings_type = Column(
                     "app_settings_type", String(255), nullable=True, unique=None,
                     default=None)
                 repository = relationship('Repository')
                 def __init__(self, repository_id, key='', val='', type='unicode'):
                     self.repository_id = repository_id
                     self.app_settings_name = key
                     self.app_settings_type = type
                     self.app_settings_value = val
                 @validates('_app_settings_value')
                 def validate_settings_value(self, key, val):
                     assert type(val) == unicode
                     return val
                 @hybrid_property
                 def app_settings_value(self):
                     v = self._app_settings_value
                     type_ = self.app_settings_type
                     SETTINGS_TYPES = RhodeCodeSetting.SETTINGS_TYPES
                     converter = SETTINGS_TYPES.get(type_) or SETTINGS_TYPES['unicode']
                     return converter(v)
                 @app_settings_value.setter
                 def app_settings_value(self, val):
                     """
                     Setter that will always make sure we use unicode in app_settings_value
                     :param val:
                     """
                     self._app_settings_value = safe_unicode(val)
                 @hybrid_property
                 def app_settings_type(self):
                     return self._app_settings_type
                 @app_settings_type.setter
                 def app_settings_type(self, val):
                     SETTINGS_TYPES = RhodeCodeSetting.SETTINGS_TYPES
                     if val not in SETTINGS_TYPES:
                         raise Exception('type must be one of %s got %s'
                                         % (SETTINGS_TYPES.keys(), val))
                     self._app_settings_type = val
                 def __unicode__(self):
                     return u"<%s('%s:%s:%s[%s]')>" % (
                         self.__class__.__name__, self.repository.repo_name,
                         self.app_settings_name, self.app_settings_value,
                         self.app_settings_type
                     )
             class RepoRhodeCodeUi(Base, BaseModel):
                 __tablename__ = 'repo_rhodecode_ui'
                 __table_args__ = (
                     UniqueConstraint(
                         'repository_id', 'ui_section', 'ui_key',
                         name='uq_repo_rhodecode_ui_repository_id_section_key'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 repository_id = Column(
                     "repository_id", Integer(), ForeignKey('repositories.repo_id'),
                     nullable=False)
                 ui_id = Column(
                     "ui_id", Integer(), nullable=False, unique=True, default=None,
                     primary_key=True)
                 ui_section = Column(
                     "ui_section", String(255), nullable=True, unique=None, default=None)
                 ui_key = Column(
                     "ui_key", String(255), nullable=True, unique=None, default=None)
                 ui_value = Column(
                     "ui_value", String(255), nullable=True, unique=None, default=None)
                 ui_active = Column(
                     "ui_active", Boolean(), nullable=True, unique=None, default=True)
                 repository = relationship('Repository')
                 def __repr__(self):
                     return '<%s[%s:%s]%s=>%s]>' % (
                         self.__class__.__name__, self.repository.repo_name,
                         self.ui_section, self.ui_key, self.ui_value)
             class User(Base, BaseModel):
                 __tablename__ = 'users'
                 __table_args__ = (
                     UniqueConstraint('username'), UniqueConstraint('email'),
                     Index('u_username_idx', 'username'),
                     Index('u_email_idx', 'email'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 DEFAULT_USER = 'default'
                 DEFAULT_USER_EMAIL = 'anonymous@rhodecode.org'
                 DEFAULT_GRAVATAR_URL = 'https://secure.gravatar.com/avatar/{md5email}?d=identicon&s={size}'
                 user_id = Column("user_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 username = Column("username", String(255), nullable=True, unique=None, default=None)
                 password = Column("password", String(255), nullable=True, unique=None, default=None)
                 active = Column("active", Boolean(), nullable=True, unique=None, default=True)
                 admin = Column("admin", Boolean(), nullable=True, unique=None, default=False)
                 name = Column("firstname", String(255), nullable=True, unique=None, default=None)
                 lastname = Column("lastname", String(255), nullable=True, unique=None, default=None)
                 _email = Column("email", String(255), nullable=True, unique=None, default=None)
                 last_login = Column("last_login", DateTime(timezone=False), nullable=True, unique=None, default=None)
                 extern_type = Column("extern_type", String(255), nullable=True, unique=None, default=None)
                 extern_name = Column("extern_name", String(255), nullable=True, unique=None, default=None)
                 api_key = Column("api_key", String(255), nullable=True, unique=None, default=None)
                 inherit_default_permissions = Column("inherit_default_permissions", Boolean(), nullable=False, unique=None, default=True)
                 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 _user_data = Column("user_data", LargeBinary(), nullable=True)  # JSON data
                 user_log = relationship('UserLog')
                 user_perms = relationship('UserToPerm', primaryjoin="User.user_id==UserToPerm.user_id", cascade='all')
                 repositories = relationship('Repository')
                 repository_groups = relationship('RepoGroup')
                 user_groups = relationship('UserGroup')
                 user_followers = relationship('UserFollowing', primaryjoin='UserFollowing.follows_user_id==User.user_id', cascade='all')
                 followings = relationship('UserFollowing', primaryjoin='UserFollowing.user_id==User.user_id', cascade='all')
                 repo_to_perm = relationship('UserRepoToPerm', primaryjoin='UserRepoToPerm.user_id==User.user_id', cascade='all')
                 repo_group_to_perm = relationship('UserRepoGroupToPerm', primaryjoin='UserRepoGroupToPerm.user_id==User.user_id', cascade='all')
                 user_group_to_perm = relationship('UserUserGroupToPerm', primaryjoin='UserUserGroupToPerm.user_id==User.user_id', cascade='all')
                 group_member = relationship('UserGroupMember', cascade='all')
                 notifications = relationship('UserNotification', cascade='all')
                 # notifications assigned to this user
                 user_created_notifications = relationship('Notification', cascade='all')
                 # comments created by this user
                 user_comments = relationship('ChangesetComment', cascade='all')
                 # user profile extra info
                 user_emails = relationship('UserEmailMap', cascade='all')
                 user_ip_map = relationship('UserIpMap', cascade='all')
                 user_auth_tokens = relationship('UserApiKeys', cascade='all')
                 # gists
                 user_gists = relationship('Gist', cascade='all')
                 # user pull requests
                 user_pull_requests = relationship('PullRequest', cascade='all')
                 # external identities
                 extenal_identities = relationship(
                     'ExternalIdentity',
                     primaryjoin="User.user_id==ExternalIdentity.local_user_id",
                     cascade='all')
                 def __unicode__(self):
                     return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
                                                   self.user_id, self.username)
                 @hybrid_property
                 def email(self):
                     return self._email
                 @email.setter
                 def email(self, val):
                     self._email = val.lower() if val else None
                 @property
                 def firstname(self):
                     # alias for future
                     return self.name
                 @property
                 def emails(self):
                     other = UserEmailMap.query().filter(UserEmailMap.user==self).all()
                     return [self.email] + [x.email for x in other]
                 @property
                 def auth_tokens(self):
                     return [self.api_key] + [x.api_key for x in self.extra_auth_tokens]
                 @property
                 def extra_auth_tokens(self):
                     return UserApiKeys.query().filter(UserApiKeys.user == self).all()
                 @property
                 def feed_token(self):
                     feed_tokens = UserApiKeys.query()\
                         .filter(UserApiKeys.user == self)\
                         .filter(UserApiKeys.role == UserApiKeys.ROLE_FEED)\
                         .all()
                     if feed_tokens:
                         return feed_tokens[0].api_key
                     else:
                         # use the main token so we don't end up with nothing...
                         return self.api_key
                 @classmethod
                 def extra_valid_auth_tokens(cls, user, role=None):
                     tokens = UserApiKeys.query().filter(UserApiKeys.user == user)\
                             .filter(or_(UserApiKeys.expires == -1,
                                         UserApiKeys.expires >= time.time()))
                     if role:
                         tokens = tokens.filter(or_(UserApiKeys.role == role,
                                                    UserApiKeys.role == UserApiKeys.ROLE_ALL))
                     return tokens.all()
                 @property
                 def ip_addresses(self):
                     ret = UserIpMap.query().filter(UserIpMap.user == self).all()
                     return [x.ip_addr for x in ret]
                 @property
                 def username_and_name(self):
                     return '%s (%s %s)' % (self.username, self.firstname, self.lastname)
                 @property
                 def username_or_name_or_email(self):
                     full_name = self.full_name if self.full_name is not ' ' else None
                     return self.username or full_name or self.email
                 @property
                 def full_name(self):
                     return '%s %s' % (self.firstname, self.lastname)
                 @property
                 def full_name_or_username(self):
                     return ('%s %s' % (self.firstname, self.lastname)
                             if (self.firstname and self.lastname) else self.username)
                 @property
                 def full_contact(self):
                     return '%s %s <%s>' % (self.firstname, self.lastname, self.email)
                 @property
                 def short_contact(self):
                     return '%s %s' % (self.firstname, self.lastname)
                 @property
                 def is_admin(self):
                     return self.admin
                 @property
                 def AuthUser(self):
                     """
                     Returns instance of AuthUser for this user
                     """
                     from rhodecode.lib.auth import AuthUser
                     return AuthUser(user_id=self.user_id, api_key=self.api_key,
                                     username=self.username)
                 @hybrid_property
                 def user_data(self):
                     if not self._user_data:
                         return {}
                     try:
                         return json.loads(self._user_data)
                     except TypeError:
                         return {}
                 @user_data.setter
                 def user_data(self, val):
                     if not isinstance(val, dict):
                         raise Exception('user_data must be dict, got %s' % type(val))
                     try:
                         self._user_data = json.dumps(val)
                     except Exception:
                         log.error(traceback.format_exc())
                 @classmethod
                 def get_by_username(cls, username, case_insensitive=False,
                                     cache=False, identity_cache=False):
                     session = Session()
                     if case_insensitive:
                         q = cls.query().filter(
                             func.lower(cls.username) == func.lower(username))
                     else:
                         q = cls.query().filter(cls.username == username)
                     if cache:
                         if identity_cache:
                             val = cls.identity_cache(session, 'username', username)
                             if val:
                                 return val
                         else:
                             q = q.options(
                                 FromCache("sql_cache_short",
                                           "get_user_by_name_%s" % _hash_key(username)))
                     return q.scalar()
                 @classmethod
                 def get_by_auth_token(cls, auth_token, cache=False, fallback=True):
                     q = cls.query().filter(cls.api_key == auth_token)
                     if cache:
                         q = q.options(FromCache("sql_cache_short",
                                                 "get_auth_token_%s" % auth_token))
                     res = q.scalar()
                     if fallback and not res:
                         #fallback to additional keys
                         _res = UserApiKeys.query()\
                             .filter(UserApiKeys.api_key == auth_token)\
                             .filter(or_(UserApiKeys.expires == -1,
                                         UserApiKeys.expires >= time.time()))\
                             .first()
                         if _res:
                             res = _res.user
                     return res
                 @classmethod
                 def get_by_email(cls, email, case_insensitive=False, cache=False):
                     if case_insensitive:
                         q = cls.query().filter(func.lower(cls.email) == func.lower(email))
                     else:
                         q = cls.query().filter(cls.email == email)
                     if cache:
                         q = q.options(FromCache("sql_cache_short",
                                                 "get_email_key_%s" % _hash_key(email)))
                     ret = q.scalar()
                     if ret is None:
                         q = UserEmailMap.query()
                         # try fetching in alternate email map
                         if case_insensitive:
                             q = q.filter(func.lower(UserEmailMap.email) == func.lower(email))
                         else:
                             q = q.filter(UserEmailMap.email == email)
                         q = q.options(joinedload(UserEmailMap.user))
                         if cache:
                             q = q.options(FromCache("sql_cache_short",
                                                     "get_email_map_key_%s" % email))
                         ret = getattr(q.scalar(), 'user', None)
                     return ret
                 @classmethod
                 def get_from_cs_author(cls, author):
                     """
                     Tries to get User objects out of commit author string
                     :param author:
                     """
                     from rhodecode.lib.helpers import email, author_name
                     # Valid email in the attribute passed, see if they're in the system
                     _email = email(author)
                     if _email:
                         user = cls.get_by_email(_email, case_insensitive=True)
                         if user:
                             return user
                     # Maybe we can match by username?
                     _author = author_name(author)
                     user = cls.get_by_username(_author, case_insensitive=True)
                     if user:
                         return user
                 def update_userdata(self, **kwargs):
                     usr = self
                     old = usr.user_data
                     old.update(**kwargs)
                     usr.user_data = old
                     Session().add(usr)
                     log.debug('updated userdata with ', kwargs)
                 def update_lastlogin(self):
                     """Update user lastlogin"""
                     self.last_login = datetime.datetime.now()
                     Session().add(self)
                     log.debug('updated user %s lastlogin', self.username)
                 def update_lastactivity(self):
                     """Update user lastactivity"""
                     usr = self
                     old = usr.user_data
                     old.update({'last_activity': time.time()})
                     usr.user_data = old
                     Session().add(usr)
                     log.debug('updated user %s lastactivity', usr.username)
                 def update_password(self, new_password, change_api_key=False):
                     from rhodecode.lib.auth import get_crypt_password,generate_auth_token
                     self.password = get_crypt_password(new_password)
                     if change_api_key:
                         self.api_key = generate_auth_token(self.username)
                     Session().add(self)
                 @classmethod
                 def get_first_super_admin(cls):
                     user = User.query().filter(User.admin == true()).first()
                     if user is None:
                         raise Exception('FATAL: Missing administrative account!')
                     return user
                 @classmethod
                 def get_all_super_admins(cls):
                     """
                     Returns all admin accounts sorted by username
                     """
                     return User.query().filter(User.admin == true())\
                         .order_by(User.username.asc()).all()
                 @classmethod
                 def get_default_user(cls, cache=False):
                     user = User.get_by_username(User.DEFAULT_USER, cache=cache)
                     if user is None:
                         raise Exception('FATAL: Missing default account!')
                     return user
                 def _get_default_perms(self, user, suffix=''):
                     from rhodecode.model.permission import PermissionModel
                     return PermissionModel().get_default_perms(user.user_perms, suffix)
                 def get_default_perms(self, suffix=''):
                     return self._get_default_perms(self, suffix)
                 def get_api_data(self, include_secrets=False, details='full'):
                     """
                     Common function for generating user related data for API
                     :param include_secrets: By default secrets in the API data will be replaced
                        by a placeholder value to prevent exposing this data by accident. In case
                        this data shall be exposed, set this flag to ``True``.
                     :param details: details can be 'basic|full' basic gives only a subset of
                        the available user information that includes user_id, name and emails.
                     """
                     user = self
                     user_data = self.user_data
                     data = {
                         'user_id': user.user_id,
                         'username': user.username,
                         'firstname': user.name,
                         'lastname': user.lastname,
                         'email': user.email,
                         'emails': user.emails,
                     }
                     if details == 'basic':
                         return data
                     api_key_length = 40
                     api_key_replacement = '*' * api_key_length
                     extras = {
                         'api_key': api_key_replacement,
                         'api_keys': [api_key_replacement],
                         'active': user.active,
                         'admin': user.admin,
                         'extern_type': user.extern_type,
                         'extern_name': user.extern_name,
                         'last_login': user.last_login,
                         'ip_addresses': user.ip_addresses,
                         'language': user_data.get('language')
                     }
                     data.update(extras)
                     if include_secrets:
                         data['api_key'] = user.api_key
                         data['api_keys'] = user.auth_tokens
                     return data
                 def __json__(self):
                     data = {
                         'full_name': self.full_name,
                         'full_name_or_username': self.full_name_or_username,
                         'short_contact': self.short_contact,
                         'full_contact': self.full_contact,
                     }
                     data.update(self.get_api_data())
                     return data
             class UserApiKeys(Base, BaseModel):
                 __tablename__ = 'user_api_keys'
                 __table_args__ = (
                     Index('uak_api_key_idx', 'api_key'),
                     Index('uak_api_key_expires_idx', 'api_key', 'expires'),
                     UniqueConstraint('api_key'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 __mapper_args__ = {}
                 # ApiKey role
                 ROLE_ALL = 'token_role_all'
                 ROLE_HTTP = 'token_role_http'
                 ROLE_VCS = 'token_role_vcs'
                 ROLE_API = 'token_role_api'
                 ROLE_FEED = 'token_role_feed'
                 ROLES = [ROLE_ALL, ROLE_HTTP, ROLE_VCS, ROLE_API, ROLE_FEED]
                 user_api_key_id = Column("user_api_key_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
                 api_key = Column("api_key", String(255), nullable=False, unique=True)
                 description = Column('description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
                 expires = Column('expires', Float(53), nullable=False)
                 role = Column('role', String(255), nullable=True)
                 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 user = relationship('User', lazy='joined')
                 @classmethod
                 def _get_role_name(cls, role):
                     return {
                         cls.ROLE_ALL: _('all'),
                         cls.ROLE_HTTP: _('http/web interface'),
                         cls.ROLE_VCS: _('vcs (git/hg/svn protocol)'),
                         cls.ROLE_API: _('api calls'),
                         cls.ROLE_FEED: _('feed access'),
                     }.get(role, role)
                 @property
                 def expired(self):
                     if self.expires == -1:
                         return False
                     return time.time() > self.expires
                 @property
                 def role_humanized(self):
                     return self._get_role_name(self.role)
             class UserEmailMap(Base, BaseModel):
                 __tablename__ = 'user_email_map'
                 __table_args__ = (
                     Index('uem_email_idx', 'email'),
                     UniqueConstraint('email'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 __mapper_args__ = {}
                 email_id = Column("email_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
                 _email = Column("email", String(255), nullable=True, unique=False, default=None)
                 user = relationship('User', lazy='joined')
                 @validates('_email')
                 def validate_email(self, key, email):
                     # check if this email is not main one
                     main_email = Session().query(User).filter(User.email == email).scalar()
                     if main_email is not None:
                         raise AttributeError('email %s is present is user table' % email)
                     return email
                 @hybrid_property
                 def email(self):
                     return self._email
                 @email.setter
                 def email(self, val):
                     self._email = val.lower() if val else None
             class UserIpMap(Base, BaseModel):
                 __tablename__ = 'user_ip_map'
                 __table_args__ = (
                     UniqueConstraint('user_id', 'ip_addr'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 __mapper_args__ = {}
                 ip_id = Column("ip_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
                 ip_addr = Column("ip_addr", String(255), nullable=True, unique=False, default=None)
                 active = Column("active", Boolean(), nullable=True, unique=None, default=True)
                 description = Column("description", String(10000), nullable=True, unique=None, default=None)
                 user = relationship('User', lazy='joined')
                 @classmethod
                 def _get_ip_range(cls, ip_addr):
                     net = ipaddress.ip_network(ip_addr, strict=False)
                     return [str(net.network_address), str(net.broadcast_address)]
                 def __json__(self):
                     return {
                       'ip_addr': self.ip_addr,
                       'ip_range': self._get_ip_range(self.ip_addr),
                     }
                 def __unicode__(self):
                     return u"<%s('user_id:%s=>%s')>" % (self.__class__.__name__,
                                                         self.user_id, self.ip_addr)
             class UserLog(Base, BaseModel):
                 __tablename__ = 'user_logs'
                 __table_args__ = (
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 user_log_id = Column("user_log_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
                 username = Column("username", String(255), nullable=True, unique=None, default=None)
                 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=True)
                 repository_name = Column("repository_name", String(255), nullable=True, unique=None, default=None)
                 user_ip = Column("user_ip", String(255), nullable=True, unique=None, default=None)
                 action = Column("action", Text().with_variant(Text(1200000), 'mysql'), nullable=True, unique=None, default=None)
                 action_date = Column("action_date", DateTime(timezone=False), nullable=True, unique=None, default=None)
                 def __unicode__(self):
                     return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
                                                   self.repository_name,
                                                   self.action)
                 @property
                 def action_as_day(self):
                     return datetime.date(*self.action_date.timetuple()[:3])
                 user = relationship('User')
                 repository = relationship('Repository', cascade='')
             class UserGroup(Base, BaseModel):
                 __tablename__ = 'users_groups'
                 __table_args__ = (
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 users_group_id = Column("users_group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 users_group_name = Column("users_group_name", String(255), nullable=False, unique=True, default=None)
                 user_group_description = Column("user_group_description", String(10000), nullable=True, unique=None, default=None)
                 users_group_active = Column("users_group_active", Boolean(), nullable=True, unique=None, default=None)
                 inherit_default_permissions = Column("users_group_inherit_default_permissions", Boolean(), nullable=False, unique=None, default=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=False, default=None)
                 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 _group_data = Column("group_data", LargeBinary(), nullable=True)  # JSON data
                 members = relationship('UserGroupMember', cascade="all, delete, delete-orphan", lazy="joined")
                 users_group_to_perm = relationship('UserGroupToPerm', cascade='all')
                 users_group_repo_to_perm = relationship('UserGroupRepoToPerm', cascade='all')
                 users_group_repo_group_to_perm = relationship('UserGroupRepoGroupToPerm', cascade='all')
                 user_user_group_to_perm = relationship('UserUserGroupToPerm', cascade='all')
                 user_group_user_group_to_perm = relationship('UserGroupUserGroupToPerm ', primaryjoin="UserGroupUserGroupToPerm.target_user_group_id==UserGroup.users_group_id", cascade='all')
                 user = relationship('User')
                 @hybrid_property
                 def group_data(self):
                     if not self._group_data:
                         return {}
                     try:
                         return json.loads(self._group_data)
                     except TypeError:
                         return {}
                 @group_data.setter
                 def group_data(self, val):
                     try:
                         self._group_data = json.dumps(val)
                     except Exception:
                         log.error(traceback.format_exc())
                 def __unicode__(self):
                     return u"<%s('id:%s:%s')>" % (self.__class__.__name__,
                                                   self.users_group_id,
                                                   self.users_group_name)
                 @classmethod
                 def get_by_group_name(cls, group_name, cache=False,
                                       case_insensitive=False):
                     if case_insensitive:
                         q = cls.query().filter(func.lower(cls.users_group_name) ==
                                                func.lower(group_name))
                     else:
                         q = cls.query().filter(cls.users_group_name == group_name)
                     if cache:
                         q = q.options(FromCache(
                                         "sql_cache_short",
                                         "get_group_%s" % _hash_key(group_name)))
                     return q.scalar()
                 @classmethod
                 def get(cls, user_group_id, cache=False):
                     user_group = cls.query()
                     if cache:
                         user_group = user_group.options(FromCache("sql_cache_short",
                                                 "get_users_group_%s" % user_group_id))
                     return user_group.get(user_group_id)
                 def permissions(self, with_admins=True, with_owner=True):
                     q = UserUserGroupToPerm.query().filter(UserUserGroupToPerm.user_group == self)
                     q = q.options(joinedload(UserUserGroupToPerm.user_group),
                                   joinedload(UserUserGroupToPerm.user),
                                   joinedload(UserUserGroupToPerm.permission),)
                     # get owners and admins and permissions. We do a trick of re-writing
                     # objects from sqlalchemy to named-tuples due to sqlalchemy session
                     # has a global reference and changing one object propagates to all
                     # others. This means if admin is also an owner admin_row that change
                     # would propagate to both objects
                     perm_rows = []
                     for _usr in q.all():
                         usr = AttributeDict(_usr.user.get_dict())
                         usr.permission = _usr.permission.permission_name
                         perm_rows.append(usr)
                     # filter the perm rows by 'default' first and then sort them by
                     # admin,write,read,none permissions sorted again alphabetically in
                     # each group
                     perm_rows = sorted(perm_rows, key=display_sort)
                     _admin_perm = 'usergroup.admin'
                     owner_row = []
                     if with_owner:
                         usr = AttributeDict(self.user.get_dict())
                         usr.owner_row = True
                         usr.permission = _admin_perm
                         owner_row.append(usr)
                     super_admin_rows = []
                     if with_admins:
                         for usr in User.get_all_super_admins():
                             # if this admin is also owner, don't double the record
                             if usr.user_id == owner_row[0].user_id:
                                 owner_row[0].admin_row = True
                             else:
                                 usr = AttributeDict(usr.get_dict())
                                 usr.admin_row = True
                                 usr.permission = _admin_perm
                                 super_admin_rows.append(usr)
                     return super_admin_rows + owner_row + perm_rows
                 def permission_user_groups(self):
                     q = UserGroupUserGroupToPerm.query().filter(UserGroupUserGroupToPerm.target_user_group == self)
                     q = q.options(joinedload(UserGroupUserGroupToPerm.user_group),
                                   joinedload(UserGroupUserGroupToPerm.target_user_group),
                                   joinedload(UserGroupUserGroupToPerm.permission),)
                     perm_rows = []
                     for _user_group in q.all():
                         usr = AttributeDict(_user_group.user_group.get_dict())
                         usr.permission = _user_group.permission.permission_name
                         perm_rows.append(usr)
                     return perm_rows
                 def _get_default_perms(self, user_group, suffix=''):
                     from rhodecode.model.permission import PermissionModel
                     return PermissionModel().get_default_perms(user_group.users_group_to_perm, suffix)
                 def get_default_perms(self, suffix=''):
                     return self._get_default_perms(self, suffix)
                 def get_api_data(self, with_group_members=True, include_secrets=False):
                     """
                     :param include_secrets: See :meth:`User.get_api_data`, this parameter is
                        basically forwarded.
                     """
                     user_group = self
                     data = {
                         'users_group_id': user_group.users_group_id,
                         'group_name': user_group.users_group_name,
                         'group_description': user_group.user_group_description,
                         'active': user_group.users_group_active,
                         'owner': user_group.user.username,
                     }
                     if with_group_members:
                         users = []
                         for user in user_group.members:
                             user = user.user
                             users.append(user.get_api_data(include_secrets=include_secrets))
                         data['users'] = users
                     return data
             class UserGroupMember(Base, BaseModel):
                 __tablename__ = 'users_groups_members'
                 __table_args__ = (
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 users_group_member_id = Column("users_group_member_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 user = relationship('User', lazy='joined')
                 users_group = relationship('UserGroup')
                 def __init__(self, gr_id='', u_id=''):
                     self.users_group_id = gr_id
                     self.user_id = u_id
             class RepositoryField(Base, BaseModel):
                 __tablename__ = 'repositories_fields'
                 __table_args__ = (
                     UniqueConstraint('repository_id', 'field_key'),  # no-multi field
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 PREFIX = 'ex_'  # prefix used in form to not conflict with already existing fields
                 repo_field_id = Column("repo_field_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
                 field_key = Column("field_key", String(250))
                 field_label = Column("field_label", String(1024), nullable=False)
                 field_value = Column("field_value", String(10000), nullable=False)
                 field_desc = Column("field_desc", String(1024), nullable=False)
                 field_type = Column("field_type", String(255), nullable=False, unique=None)
                 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 repository = relationship('Repository')
                 @property
                 def field_key_prefixed(self):
                     return 'ex_%s' % self.field_key
                 @classmethod
                 def un_prefix_key(cls, key):
                     if key.startswith(cls.PREFIX):
                         return key[len(cls.PREFIX):]
                     return key
                 @classmethod
                 def get_by_key_name(cls, key, repo):
                     row = cls.query()\
                             .filter(cls.repository == repo)\
                             .filter(cls.field_key == key).scalar()
                     return row
             class Repository(Base, BaseModel):
                 __tablename__ = 'repositories'
                 __table_args__ = (
                     Index('r_repo_name_idx', 'repo_name', mysql_length=255),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 DEFAULT_CLONE_URI = '{scheme}://{user}@{netloc}/{repo}'
                 DEFAULT_CLONE_URI_ID = '{scheme}://{user}@{netloc}/_{repoid}'
                 STATE_CREATED = 'repo_state_created'
                 STATE_PENDING = 'repo_state_pending'
                 STATE_ERROR = 'repo_state_error'
                 LOCK_AUTOMATIC = 'lock_auto'
                 LOCK_API = 'lock_api'
                 LOCK_WEB = 'lock_web'
                 LOCK_PULL = 'lock_pull'
                 NAME_SEP = URL_SEP
                 repo_id = Column(
                     "repo_id", Integer(), nullable=False, unique=True, default=None,
                     primary_key=True)
                 _repo_name = Column(
                     "repo_name", Text(), nullable=False, default=None)
                 _repo_name_hash = Column(
                     "repo_name_hash", String(255), nullable=False, unique=True)
                 repo_state = Column("repo_state", String(255), nullable=True)
                 clone_uri = Column(
                     "clone_uri", EncryptedTextValue(), nullable=True, unique=False,
                     default=None)
                 repo_type = Column(
                     "repo_type", String(255), nullable=False, unique=False, default=None)
                 user_id = Column(
                     "user_id", Integer(), ForeignKey('users.user_id'), nullable=False,
                     unique=False, default=None)
                 private = Column(
                     "private", Boolean(), nullable=True, unique=None, default=None)
                 enable_statistics = Column(
                     "statistics", Boolean(), nullable=True, unique=None, default=True)
                 enable_downloads = Column(
                     "downloads", Boolean(), nullable=True, unique=None, default=True)
                 description = Column(
                     "description", String(10000), nullable=True, unique=None, default=None)
                 created_on = Column(
                     'created_on', DateTime(timezone=False), nullable=True, unique=None,
                     default=datetime.datetime.now)
                 updated_on = Column(
                     'updated_on', DateTime(timezone=False), nullable=True, unique=None,
                     default=datetime.datetime.now)
                 _landing_revision = Column(
                     "landing_revision", String(255), nullable=False, unique=False,
                     default=None)
                 enable_locking = Column(
                     "enable_locking", Boolean(), nullable=False, unique=None,
                     default=False)
                 _locked = Column(
                     "locked", String(255), nullable=True, unique=False, default=None)
                 _changeset_cache = Column(
                     "changeset_cache", LargeBinary(), nullable=True)  # JSON data
                 fork_id = Column(
                     "fork_id", Integer(), ForeignKey('repositories.repo_id'),
                     nullable=True, unique=False, default=None)
                 group_id = Column(
                     "group_id", Integer(), ForeignKey('groups.group_id'), nullable=True,
                     unique=False, default=None)
                 user = relationship('User', lazy='joined')
                 fork = relationship('Repository', remote_side=repo_id, lazy='joined')
                 group = relationship('RepoGroup', lazy='joined')
                 repo_to_perm = relationship(
                     'UserRepoToPerm', cascade='all',
                     order_by='UserRepoToPerm.repo_to_perm_id')
                 users_group_to_perm = relationship('UserGroupRepoToPerm', cascade='all')
                 stats = relationship('Statistics', cascade='all', uselist=False)
                 followers = relationship(
                     'UserFollowing',
                     primaryjoin='UserFollowing.follows_repo_id==Repository.repo_id',
                     cascade='all')
                 extra_fields = relationship(
                     'RepositoryField', cascade="all, delete, delete-orphan")
                 logs = relationship('UserLog')
                 comments = relationship(
                     'ChangesetComment', cascade="all, delete, delete-orphan")
                 pull_requests_source = relationship(
                     'PullRequest',
                     primaryjoin='PullRequest.source_repo_id==Repository.repo_id',
                     cascade="all, delete, delete-orphan")
                 pull_requests_target = relationship(
                     'PullRequest',
                     primaryjoin='PullRequest.target_repo_id==Repository.repo_id',
                     cascade="all, delete, delete-orphan")
                 ui = relationship('RepoRhodeCodeUi', cascade="all")
                 settings = relationship('RepoRhodeCodeSetting', cascade="all")
                 integrations = relationship('Integration',
                                             cascade="all, delete, delete-orphan")
                 def __unicode__(self):
                     return u"<%s('%s:%s')>" % (self.__class__.__name__, self.repo_id,
                                                safe_unicode(self.repo_name))
                 @hybrid_property
                 def landing_rev(self):
                     # always should return [rev_type, rev]
                     if self._landing_revision:
                         _rev_info = self._landing_revision.split(':')
                         if len(_rev_info) < 2:
                             _rev_info.insert(0, 'rev')
                         return [_rev_info[0], _rev_info[1]]
                     return [None, None]
                 @landing_rev.setter
                 def landing_rev(self, val):
                     if ':' not in val:
                         raise ValueError('value must be delimited with `:` and consist '
                                          'of <rev_type>:<rev>, got %s instead' % val)
                     self._landing_revision = val
                 @hybrid_property
                 def locked(self):
                     if self._locked:
                         user_id, timelocked, reason = self._locked.split(':')
                         lock_values = int(user_id), timelocked, reason
                     else:
                         lock_values = [None, None, None]
                     return lock_values
                 @locked.setter
                 def locked(self, val):
                     if val and isinstance(val, (list, tuple)):
                         self._locked = ':'.join(map(str, val))
                     else:
                         self._locked = None
                 @hybrid_property
                 def changeset_cache(self):
                     from rhodecode.lib.vcs.backends.base import EmptyCommit
                     dummy = EmptyCommit().__json__()
                     if not self._changeset_cache:
                         return dummy
                     try:
                         return json.loads(self._changeset_cache)
                     except TypeError:
                         return dummy
                     except Exception:
                         log.error(traceback.format_exc())
                         return dummy
                 @changeset_cache.setter
                 def changeset_cache(self, val):
                     try:
                         self._changeset_cache = json.dumps(val)
                     except Exception:
                         log.error(traceback.format_exc())
                 @hybrid_property
                 def repo_name(self):
                     return self._repo_name
                 @repo_name.setter
                 def repo_name(self, value):
                     self._repo_name = value
                     self._repo_name_hash = hashlib.sha1(safe_str(value)).hexdigest()
                 @classmethod
                 def normalize_repo_name(cls, repo_name):
                     """
                     Normalizes os specific repo_name to the format internally stored inside
                     database using URL_SEP
                     :param cls:
                     :param repo_name:
                     """
                     return cls.NAME_SEP.join(repo_name.split(os.sep))
                 @classmethod
                 def get_by_repo_name(cls, repo_name, cache=False, identity_cache=False):
                     session = Session()
                     q = session.query(cls).filter(cls.repo_name == repo_name)
                     if cache:
                         if identity_cache:
                             val = cls.identity_cache(session, 'repo_name', repo_name)
                             if val:
                                 return val
                         else:
                             q = q.options(
                                 FromCache("sql_cache_short",
                                           "get_repo_by_name_%s" % _hash_key(repo_name)))
                     return q.scalar()
                 @classmethod
                 def get_by_full_path(cls, repo_full_path):
                     repo_name = repo_full_path.split(cls.base_path(), 1)[-1]
                     repo_name = cls.normalize_repo_name(repo_name)
                     return cls.get_by_repo_name(repo_name.strip(URL_SEP))
                 @classmethod
                 def get_repo_forks(cls, repo_id):
                     return cls.query().filter(Repository.fork_id == repo_id)
                 @classmethod
                 def base_path(cls):
                     """
                     Returns base path when all repos are stored
                     :param cls:
                     """
                     q = Session().query(RhodeCodeUi)\
                         .filter(RhodeCodeUi.ui_key == cls.NAME_SEP)
                     q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
                     return q.one().ui_value
                 @classmethod
                 def is_valid(cls, repo_name):
                     """
                     returns True if given repo name is a valid filesystem repository
                     :param cls:
                     :param repo_name:
                     """
                     from rhodecode.lib.utils import is_valid_repo
                     return is_valid_repo(repo_name, cls.base_path())
                 @classmethod
                 def get_all_repos(cls, user_id=Optional(None), group_id=Optional(None),
                                   case_insensitive=True):
                     q = Repository.query()
                     if not isinstance(user_id, Optional):
                         q = q.filter(Repository.user_id == user_id)
                     if not isinstance(group_id, Optional):
                         q = q.filter(Repository.group_id == group_id)
                     if case_insensitive:
                         q = q.order_by(func.lower(Repository.repo_name))
                     else:
                         q = q.order_by(Repository.repo_name)
                     return q.all()
                 @property
                 def forks(self):
                     """
                     Return forks of this repo
                     """
                     return Repository.get_repo_forks(self.repo_id)
                 @property
                 def parent(self):
                     """
                     Returns fork parent
                     """
                     return self.fork
                 @property
                 def just_name(self):
                     return self.repo_name.split(self.NAME_SEP)[-1]
                 @property
                 def groups_with_parents(self):
                     groups = []
                     if self.group is None:
                         return groups
                     cur_gr = self.group
                     groups.insert(0, cur_gr)
                     while 1:
                         gr = getattr(cur_gr, 'parent_group', None)
                         cur_gr = cur_gr.parent_group
                         if gr is None:
                             break
                         groups.insert(0, gr)
                     return groups
                 @property
                 def groups_and_repo(self):
                     return self.groups_with_parents, self
                 @LazyProperty
                 def repo_path(self):
                     """
                     Returns base full path for that repository means where it actually
                     exists on a filesystem
                     """
                     q = Session().query(RhodeCodeUi).filter(
                         RhodeCodeUi.ui_key == self.NAME_SEP)
                     q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
                     return q.one().ui_value
                 @property
                 def repo_full_path(self):
                     p = [self.repo_path]
                     # we need to split the name by / since this is how we store the
                     # names in the database, but that eventually needs to be converted
                     # into a valid system path
                     p += self.repo_name.split(self.NAME_SEP)
                     return os.path.join(*map(safe_unicode, p))
                 @property
                 def cache_keys(self):
                     """
                     Returns associated cache keys for that repo
                     """
                     return CacheKey.query()\
                         .filter(CacheKey.cache_args == self.repo_name)\
                         .order_by(CacheKey.cache_key)\
                         .all()
                 def get_new_name(self, repo_name):
                     """
                     returns new full repository name based on assigned group and new new
                     :param group_name:
                     """
                     path_prefix = self.group.full_path_splitted if self.group else []
                     return self.NAME_SEP.join(path_prefix + [repo_name])
                 @property
                 def _config(self):
                     """
                     Returns db based config object.
                     """
                     from rhodecode.lib.utils import make_db_config
                     return make_db_config(clear_session=False, repo=self)
                 def permissions(self, with_admins=True, with_owner=True):
                     q = UserRepoToPerm.query().filter(UserRepoToPerm.repository == self)
                     q = q.options(joinedload(UserRepoToPerm.repository),
                                   joinedload(UserRepoToPerm.user),
                                   joinedload(UserRepoToPerm.permission),)
                     # get owners and admins and permissions. We do a trick of re-writing
                     # objects from sqlalchemy to named-tuples due to sqlalchemy session
                     # has a global reference and changing one object propagates to all
                     # others. This means if admin is also an owner admin_row that change
                     # would propagate to both objects
                     perm_rows = []
                     for _usr in q.all():
                         usr = AttributeDict(_usr.user.get_dict())
                         usr.permission = _usr.permission.permission_name
                         perm_rows.append(usr)
                     # filter the perm rows by 'default' first and then sort them by
                     # admin,write,read,none permissions sorted again alphabetically in
                     # each group
                     perm_rows = sorted(perm_rows, key=display_sort)
                     _admin_perm = 'repository.admin'
                     owner_row = []
                     if with_owner:
                         usr = AttributeDict(self.user.get_dict())
                         usr.owner_row = True
                         usr.permission = _admin_perm
                         owner_row.append(usr)
                     super_admin_rows = []
                     if with_admins:
                         for usr in User.get_all_super_admins():
                             # if this admin is also owner, don't double the record
                             if usr.user_id == owner_row[0].user_id:
                                 owner_row[0].admin_row = True
                             else:
                                 usr = AttributeDict(usr.get_dict())
                                 usr.admin_row = True
                                 usr.permission = _admin_perm
                                 super_admin_rows.append(usr)
                     return super_admin_rows + owner_row + perm_rows
                 def permission_user_groups(self):
                     q = UserGroupRepoToPerm.query().filter(
                         UserGroupRepoToPerm.repository == self)
                     q = q.options(joinedload(UserGroupRepoToPerm.repository),
                                   joinedload(UserGroupRepoToPerm.users_group),
                                   joinedload(UserGroupRepoToPerm.permission),)
                     perm_rows = []
                     for _user_group in q.all():
                         usr = AttributeDict(_user_group.users_group.get_dict())
                         usr.permission = _user_group.permission.permission_name
                         perm_rows.append(usr)
                     return perm_rows
                 def get_api_data(self, include_secrets=False):
                     """
                     Common function for generating repo api data
                     :param include_secrets: See :meth:`User.get_api_data`.
                     """
                     # TODO: mikhail: Here there is an anti-pattern, we probably need to
                     # move this methods on models level.
                     from rhodecode.model.settings import SettingsModel
                     repo = self
                     _user_id, _time, _reason = self.locked
                     data = {
                         'repo_id': repo.repo_id,
                         'repo_name': repo.repo_name,
                         'repo_type': repo.repo_type,
                         'clone_uri': repo.clone_uri or '',
                         'url': url('summary_home', repo_name=self.repo_name, qualified=True),
                         'private': repo.private,
                         'created_on': repo.created_on,
                         'description': repo.description,
                         'landing_rev': repo.landing_rev,
                         'owner': repo.user.username,
                         'fork_of': repo.fork.repo_name if repo.fork else None,
                         'enable_statistics': repo.enable_statistics,
                         'enable_locking': repo.enable_locking,
                         'enable_downloads': repo.enable_downloads,
                         'last_changeset': repo.changeset_cache,
                         'locked_by': User.get(_user_id).get_api_data(
                             include_secrets=include_secrets) if _user_id else None,
                         'locked_date': time_to_datetime(_time) if _time else None,
                         'lock_reason': _reason if _reason else None,
                     }
                     # TODO: mikhail: should be per-repo settings here
                     rc_config = SettingsModel().get_all_settings()
                     repository_fields = str2bool(
                         rc_config.get('rhodecode_repository_fields'))
                     if repository_fields:
                         for f in self.extra_fields:
                             data[f.field_key_prefixed] = f.field_value
                     return data
                 @classmethod
                 def lock(cls, repo, user_id, lock_time=None, lock_reason=None):
                     if not lock_time:
                         lock_time = time.time()
                     if not lock_reason:
                         lock_reason = cls.LOCK_AUTOMATIC
                     repo.locked = [user_id, lock_time, lock_reason]
                     Session().add(repo)
                     Session().commit()
                 @classmethod
                 def unlock(cls, repo):
                     repo.locked = None
                     Session().add(repo)
                     Session().commit()
                 @classmethod
                 def getlock(cls, repo):
                     return repo.locked
                 def is_user_lock(self, user_id):
                     if self.lock[0]:
                         lock_user_id = safe_int(self.lock[0])
                         user_id = safe_int(user_id)
                         # both are ints, and they are equal
                         return all([lock_user_id, user_id]) and lock_user_id == user_id
                     return False
                 def get_locking_state(self, action, user_id, only_when_enabled=True):
                     """
                     Checks locking on this repository, if locking is enabled and lock is
                     present returns a tuple of make_lock, locked, locked_by.
                     make_lock can have 3 states None (do nothing) True, make lock
                     False release lock, This value is later propagated to hooks, which
                     do the locking. Think about this as signals passed to hooks what to do.
                     """
                     # TODO: johbo: This is part of the business logic and should be moved
                     # into the RepositoryModel.
                     if action not in ('push', 'pull'):
                         raise ValueError("Invalid action value: %s" % repr(action))
                     # defines if locked error should be thrown to user
                     currently_locked = False
                     # defines if new lock should be made, tri-state
                     make_lock = None
                     repo = self
                     user = User.get(user_id)
                     lock_info = repo.locked
                     if repo and (repo.enable_locking or not only_when_enabled):
                         if action == 'push':
                             # check if it's already locked !, if it is compare users
                             locked_by_user_id = lock_info[0]
                             if user.user_id == locked_by_user_id:
                                 log.debug(
                                     'Got `push` action from user %s, now unlocking', user)
                                 # unlock if we have push from user who locked
                                 make_lock = False
                             else:
                                 # we're not the same user who locked, ban with
                                 # code defined in settings (default is 423 HTTP Locked) !
                                 log.debug('Repo %s is currently locked by %s', repo, user)
                                 currently_locked = True
                         elif action == 'pull':
                             # [0] user [1] date
                             if lock_info[0] and lock_info[1]:
                                 log.debug('Repo %s is currently locked by %s', repo, user)
                                 currently_locked = True
                             else:
                                 log.debug('Setting lock on repo %s by %s', repo, user)
                                 make_lock = True
                     else:
                         log.debug('Repository %s do not have locking enabled', repo)
                     log.debug('FINAL locking values make_lock:%s,locked:%s,locked_by:%s',
                               make_lock, currently_locked, lock_info)
                     from rhodecode.lib.auth import HasRepoPermissionAny
                     perm_check = HasRepoPermissionAny('repository.write', 'repository.admin')
                     if make_lock and not perm_check(repo_name=repo.repo_name, user=user):
                         # if we don't have at least write permission we cannot make a lock
                         log.debug('lock state reset back to FALSE due to lack '
                                   'of at least read permission')
                         make_lock = False
                     return make_lock, currently_locked, lock_info
                 @property
                 def last_db_change(self):
                     return self.updated_on
                 @property
                 def clone_uri_hidden(self):
                     clone_uri = self.clone_uri
                     if clone_uri:
                         import urlobject
                         url_obj = urlobject.URLObject(clone_uri)
                         if url_obj.password:
                             clone_uri = url_obj.with_password('*****')
                     return clone_uri
                 def clone_url(self, **override):
                     qualified_home_url = url('home', qualified=True)
                     uri_tmpl = None
                     if 'with_id' in override:
                         uri_tmpl = self.DEFAULT_CLONE_URI_ID
                         del override['with_id']
                     if 'uri_tmpl' in override:
                         uri_tmpl = override['uri_tmpl']
                         del override['uri_tmpl']
                     # we didn't override our tmpl from **overrides
                     if not uri_tmpl:
                         uri_tmpl = self.DEFAULT_CLONE_URI
                         try:
                             from pylons import tmpl_context as c
                             uri_tmpl = c.clone_uri_tmpl
                         except Exception:
                             # in any case if we call this outside of request context,
                             # ie, not having tmpl_context set up
                             pass
                     return get_clone_url(uri_tmpl=uri_tmpl,
                                          qualifed_home_url=qualified_home_url,
                                          repo_name=self.repo_name,
                                          repo_id=self.repo_id, **override)
                 def set_state(self, state):
                     self.repo_state = state
                     Session().add(self)
                 #==========================================================================
                 # SCM PROPERTIES
                 #==========================================================================
                 def get_commit(self, commit_id=None, commit_idx=None, pre_load=None):
                     return get_commit_safe(
                         self.scm_instance(), commit_id, commit_idx, pre_load=pre_load)
                 def get_changeset(self, rev=None, pre_load=None):
                     warnings.warn("Use get_commit", DeprecationWarning)
                     commit_id = None
                     commit_idx = None
                     if isinstance(rev, basestring):
                         commit_id = rev
                     else:
                         commit_idx = rev
                     return self.get_commit(commit_id=commit_id, commit_idx=commit_idx,
                                            pre_load=pre_load)
                 def get_landing_commit(self):
                     """
                     Returns landing commit, or if that doesn't exist returns the tip
                     """
                     _rev_type, _rev = self.landing_rev
                     commit = self.get_commit(_rev)
                     if isinstance(commit, EmptyCommit):
                         return self.get_commit()
                     return commit
                 def update_commit_cache(self, cs_cache=None, config=None):
                     """
                     Update cache of last changeset for repository, keys should be::
                         short_id
                         raw_id
                         revision
                         parents
                         message
                         date
                         author
                     :param cs_cache:
                     """
                     from rhodecode.lib.vcs.backends.base import BaseChangeset
                     if cs_cache is None:
                         # use no-cache version here
                         scm_repo = self.scm_instance(cache=False, config=config)
                         if scm_repo:
                             cs_cache = scm_repo.get_commit(
                                 pre_load=["author", "date", "message", "parents"])
                         else:
                             cs_cache = EmptyCommit()
                     if isinstance(cs_cache, BaseChangeset):
                         cs_cache = cs_cache.__json__()
                     def is_outdated(new_cs_cache):
                         if (new_cs_cache['raw_id'] != self.changeset_cache['raw_id'] or
                             new_cs_cache['revision'] != self.changeset_cache['revision']):
                             return True
                         return False
                     # check if we have maybe already latest cached revision
                     if is_outdated(cs_cache) or not self.changeset_cache:
                         _default = datetime.datetime.fromtimestamp(0)
                         last_change = cs_cache.get('date') or _default
                         log.debug('updated repo %s with new cs cache %s',
                                   self.repo_name, cs_cache)
                         self.updated_on = last_change
                         self.changeset_cache = cs_cache
                         Session().add(self)
                         Session().commit()
                     else:
                         log.debug('Skipping update_commit_cache for repo:`%s` '
                                   'commit already with latest changes', self.repo_name)
                 @property
                 def tip(self):
                     return self.get_commit('tip')
                 @property
                 def author(self):
                     return self.tip.author
                 @property
                 def last_change(self):
                     return self.scm_instance().last_change
                 def get_comments(self, revisions=None):
                     """
                     Returns comments for this repository grouped by revisions
                     :param revisions: filter query by revisions only
                     """
                     cmts = ChangesetComment.query()\
                         .filter(ChangesetComment.repo == self)
                     if revisions:
                         cmts = cmts.filter(ChangesetComment.revision.in_(revisions))
                     grouped = collections.defaultdict(list)
                     for cmt in cmts.all():
                         grouped[cmt.revision].append(cmt)
                     return grouped
                 def statuses(self, revisions=None):
                     """
                     Returns statuses for this repository
                     :param revisions: list of revisions to get statuses for
                     """
                     statuses = ChangesetStatus.query()\
                         .filter(ChangesetStatus.repo == self)\
                         .filter(ChangesetStatus.version == 0)
                     if revisions:
                         # Try doing the filtering in chunks to avoid hitting limits
                         size = 500
                         status_results = []
                         for chunk in xrange(0, len(revisions), size):
                             status_results += statuses.filter(
                                 ChangesetStatus.revision.in_(
                                     revisions[chunk: chunk+size])
                             ).all()
                     else:
                         status_results = statuses.all()
                     grouped = {}
                     # maybe we have open new pullrequest without a status?
                     stat = ChangesetStatus.STATUS_UNDER_REVIEW
                     status_lbl = ChangesetStatus.get_status_lbl(stat)
                     for pr in PullRequest.query().filter(PullRequest.source_repo == self).all():
                         for rev in pr.revisions:
                             pr_id = pr.pull_request_id
                             pr_repo = pr.target_repo.repo_name
                             grouped[rev] = [stat, status_lbl, pr_id, pr_repo]
                     for stat in status_results:
                         pr_id = pr_repo = None
                         if stat.pull_request:
                             pr_id = stat.pull_request.pull_request_id
                             pr_repo = stat.pull_request.target_repo.repo_name
                         grouped[stat.revision] = [str(stat.status), stat.status_lbl,
                                                   pr_id, pr_repo]
                     return grouped
                 # ==========================================================================
                 # SCM CACHE INSTANCE
                 # ==========================================================================
                 def scm_instance(self, **kwargs):
                     import rhodecode
                     # Passing a config will not hit the cache currently only used
                     # for repo2dbmapper
                     config = kwargs.pop('config', None)
                     cache = kwargs.pop('cache', None)
                     full_cache = str2bool(rhodecode.CONFIG.get('vcs_full_cache'))
                     # if cache is NOT defined use default global, else we have a full
                     # control over cache behaviour
                     if cache is None and full_cache and not config:
                         return self._get_instance_cached()
                     return self._get_instance(cache=bool(cache), config=config)
                 def _get_instance_cached(self):
                     @cache_region('long_term')
                     def _get_repo(cache_key):
                         return self._get_instance()
                     invalidator_context = CacheKey.repo_context_cache(
                         _get_repo, self.repo_name, None, thread_scoped=True)
                     with invalidator_context as context:
                         context.invalidate()
                         repo = context.compute()
                     return repo
                 def _get_instance(self, cache=True, config=None):
                     config = config or self._config
                     custom_wire = {
                         'cache': cache  # controls the vcs.remote cache
                     }
                     repo = get_vcs_instance(
                         repo_path=safe_str(self.repo_full_path),
                         config=config,
                         with_wire=custom_wire,
                         create=False)
                     return repo
                 def __json__(self):
                     return {'landing_rev': self.landing_rev}
                 def get_dict(self):
                     # Since we transformed `repo_name` to a hybrid property, we need to
                     # keep compatibility with the code which uses `repo_name` field.
                     result = super(Repository, self).get_dict()
                     result['repo_name'] = result.pop('_repo_name', None)
                     return result
             class RepoGroup(Base, BaseModel):
                 __tablename__ = 'groups'
                 __table_args__ = (
                     UniqueConstraint('group_name', 'group_parent_id'),
                     CheckConstraint('group_id != group_parent_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 __mapper_args__ = {'order_by': 'group_name'}
                 CHOICES_SEPARATOR = '/'  # used to generate select2 choices for nested groups
                 group_id = Column("group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 group_name = Column("group_name", String(255), nullable=False, unique=True, default=None)
                 group_parent_id = Column("group_parent_id", Integer(), ForeignKey('groups.group_id'), nullable=True, unique=None, default=None)
                 group_description = Column("group_description", String(10000), nullable=True, unique=None, default=None)
                 enable_locking = Column("enable_locking", Boolean(), nullable=False, unique=None, default=False)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=False, default=None)
                 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 repo_group_to_perm = relationship('UserRepoGroupToPerm', cascade='all', order_by='UserRepoGroupToPerm.group_to_perm_id')
                 users_group_to_perm = relationship('UserGroupRepoGroupToPerm', cascade='all')
                 parent_group = relationship('RepoGroup', remote_side=group_id)
                 user = relationship('User')
                 integrations = relationship('Integration',
                                             cascade="all, delete, delete-orphan")
                 def __init__(self, group_name='', parent_group=None):
                     self.group_name = group_name
                     self.parent_group = parent_group
                 def __unicode__(self):
                     return u"<%s('id:%s:%s')>" % (self.__class__.__name__, self.group_id,
                                                   self.group_name)
                 @classmethod
                 def _generate_choice(cls, repo_group):
                     from webhelpers.html import literal as _literal
                     _name = lambda k: _literal(cls.CHOICES_SEPARATOR.join(k))
                     return repo_group.group_id, _name(repo_group.full_path_splitted)
                 @classmethod
                 def groups_choices(cls, groups=None, show_empty_group=True):
                     if not groups:
                         groups = cls.query().all()
                     repo_groups = []
                     if show_empty_group:
                         repo_groups = [('-1', u'-- %s --' % _('No parent'))]
                     repo_groups.extend([cls._generate_choice(x) for x in groups])
                     repo_groups = sorted(
                         repo_groups, key=lambda t: t[1].split(cls.CHOICES_SEPARATOR)[0])
                     return repo_groups
                 @classmethod
                 def url_sep(cls):
                     return URL_SEP
                 @classmethod
                 def get_by_group_name(cls, group_name, cache=False, case_insensitive=False):
                     if case_insensitive:
                         gr = cls.query().filter(func.lower(cls.group_name)
                                                 == func.lower(group_name))
                     else:
                         gr = cls.query().filter(cls.group_name == group_name)
                     if cache:
                         gr = gr.options(FromCache(
                                         "sql_cache_short",
                                         "get_group_%s" % _hash_key(group_name)))
                     return gr.scalar()
                 @classmethod
                 def get_all_repo_groups(cls, user_id=Optional(None), group_id=Optional(None),
                                         case_insensitive=True):
                     q = RepoGroup.query()
                     if not isinstance(user_id, Optional):
                         q = q.filter(RepoGroup.user_id == user_id)
                     if not isinstance(group_id, Optional):
                         q = q.filter(RepoGroup.group_parent_id == group_id)
                     if case_insensitive:
                         q = q.order_by(func.lower(RepoGroup.group_name))
                     else:
                         q = q.order_by(RepoGroup.group_name)
                     return q.all()
                 @property
                 def parents(self):
                     parents_recursion_limit = 10
                     groups = []
                     if self.parent_group is None:
                         return groups
                     cur_gr = self.parent_group
                     groups.insert(0, cur_gr)
                     cnt = 0
                     while 1:
                         cnt += 1
                         gr = getattr(cur_gr, 'parent_group', None)
                         cur_gr = cur_gr.parent_group
                         if gr is None:
                             break
                         if cnt == parents_recursion_limit:
                             # this will prevent accidental infinit loops
                             log.error(('more than %s parents found for group %s, stopping '
                                        'recursive parent fetching' % (parents_recursion_limit, self)))
                             break
                         groups.insert(0, gr)
                     return groups
                 @property
                 def children(self):
                     return RepoGroup.query().filter(RepoGroup.parent_group == self)
                 @property
                 def name(self):
                     return self.group_name.split(RepoGroup.url_sep())[-1]
                 @property
                 def full_path(self):
                     return self.group_name
                 @property
                 def full_path_splitted(self):
                     return self.group_name.split(RepoGroup.url_sep())
                 @property
                 def repositories(self):
                     return Repository.query()\
                             .filter(Repository.group == self)\
                             .order_by(Repository.repo_name)
                 @property
                 def repositories_recursive_count(self):
                     cnt = self.repositories.count()
                     def children_count(group):
                         cnt = 0
                         for child in group.children:
                             cnt += child.repositories.count()
                             cnt += children_count(child)
                         return cnt
                     return cnt + children_count(self)
                 def _recursive_objects(self, include_repos=True):
                     all_ = []
                     def _get_members(root_gr):
                         if include_repos:
                             for r in root_gr.repositories:
                                 all_.append(r)
                         childs = root_gr.children.all()
                         if childs:
                             for gr in childs:
                                 all_.append(gr)
                                 _get_members(gr)
                     _get_members(self)
                     return [self] + all_
                 def recursive_groups_and_repos(self):
                     """
                     Recursive return all groups, with repositories in those groups
                     """
                     return self._recursive_objects()
                 def recursive_groups(self):
                     """
                     Returns all children groups for this group including children of children
                     """
                     return self._recursive_objects(include_repos=False)
                 def get_new_name(self, group_name):
                     """
                     returns new full group name based on parent and new name
                     :param group_name:
                     """
                     path_prefix = (self.parent_group.full_path_splitted if
                                    self.parent_group else [])
                     return RepoGroup.url_sep().join(path_prefix + [group_name])
                 def permissions(self, with_admins=True, with_owner=True):
                     q = UserRepoGroupToPerm.query().filter(UserRepoGroupToPerm.group == self)
                     q = q.options(joinedload(UserRepoGroupToPerm.group),
                                   joinedload(UserRepoGroupToPerm.user),
                                   joinedload(UserRepoGroupToPerm.permission),)
                     # get owners and admins and permissions. We do a trick of re-writing
                     # objects from sqlalchemy to named-tuples due to sqlalchemy session
                     # has a global reference and changing one object propagates to all
                     # others. This means if admin is also an owner admin_row that change
                     # would propagate to both objects
                     perm_rows = []
                     for _usr in q.all():
                         usr = AttributeDict(_usr.user.get_dict())
                         usr.permission = _usr.permission.permission_name
                         perm_rows.append(usr)
                     # filter the perm rows by 'default' first and then sort them by
                     # admin,write,read,none permissions sorted again alphabetically in
                     # each group
                     perm_rows = sorted(perm_rows, key=display_sort)
                     _admin_perm = 'group.admin'
                     owner_row = []
                     if with_owner:
                         usr = AttributeDict(self.user.get_dict())
                         usr.owner_row = True
                         usr.permission = _admin_perm
                         owner_row.append(usr)
                     super_admin_rows = []
                     if with_admins:
                         for usr in User.get_all_super_admins():
                             # if this admin is also owner, don't double the record
                             if usr.user_id == owner_row[0].user_id:
                                 owner_row[0].admin_row = True
                             else:
                                 usr = AttributeDict(usr.get_dict())
                                 usr.admin_row = True
                                 usr.permission = _admin_perm
                                 super_admin_rows.append(usr)
                     return super_admin_rows + owner_row + perm_rows
                 def permission_user_groups(self):
                     q = UserGroupRepoGroupToPerm.query().filter(UserGroupRepoGroupToPerm.group == self)
                     q = q.options(joinedload(UserGroupRepoGroupToPerm.group),
                                   joinedload(UserGroupRepoGroupToPerm.users_group),
                                   joinedload(UserGroupRepoGroupToPerm.permission),)
                     perm_rows = []
                     for _user_group in q.all():
                         usr = AttributeDict(_user_group.users_group.get_dict())
                         usr.permission = _user_group.permission.permission_name
                         perm_rows.append(usr)
                     return perm_rows
                 def get_api_data(self):
                     """
                     Common function for generating api data
                     """
                     group = self
                     data = {
                         'group_id': group.group_id,
                         'group_name': group.group_name,
                         'group_description': group.group_description,
                         'parent_group': group.parent_group.group_name if group.parent_group else None,
                         'repositories': [x.repo_name for x in group.repositories],
                         'owner': group.user.username,
                     }
                     return data
             class Permission(Base, BaseModel):
                 __tablename__ = 'permissions'
                 __table_args__ = (
                     Index('p_perm_name_idx', 'permission_name'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 PERMS = [
                     ('hg.admin', _('RhodeCode Super Administrator')),
                     ('repository.none', _('Repository no access')),
                     ('repository.read', _('Repository read access')),
                     ('repository.write', _('Repository write access')),
                     ('repository.admin', _('Repository admin access')),
                     ('group.none', _('Repository group no access')),
                     ('group.read', _('Repository group read access')),
                     ('group.write', _('Repository group write access')),
                     ('group.admin', _('Repository group admin access')),
                     ('usergroup.none', _('User group no access')),
                     ('usergroup.read', _('User group read access')),
                     ('usergroup.write', _('User group write access')),
                     ('usergroup.admin', _('User group admin access')),
                     ('hg.repogroup.create.false', _('Repository Group creation disabled')),
                     ('hg.repogroup.create.true', _('Repository Group creation enabled')),
                     ('hg.usergroup.create.false', _('User Group creation disabled')),
                     ('hg.usergroup.create.true', _('User Group creation enabled')),
                     ('hg.create.none', _('Repository creation disabled')),
                     ('hg.create.repository', _('Repository creation enabled')),
                     ('hg.create.write_on_repogroup.true', _('Repository creation enabled with write permission to a repository group')),
                     ('hg.create.write_on_repogroup.false', _('Repository creation disabled with write permission to a repository group')),
                     ('hg.fork.none', _('Repository forking disabled')),
                     ('hg.fork.repository', _('Repository forking enabled')),
                     ('hg.register.none', _('Registration disabled')),
                     ('hg.register.manual_activate', _('User Registration with manual account activation')),
                     ('hg.register.auto_activate', _('User Registration with automatic account activation')),
                     ('hg.extern_activate.manual', _('Manual activation of external account')),
                     ('hg.extern_activate.auto', _('Automatic activation of external account')),
                     ('hg.inherit_default_perms.false', _('Inherit object permissions from default user disabled')),
                     ('hg.inherit_default_perms.true', _('Inherit object permissions from default user enabled')),
                 ]
                 # definition of system default permissions for DEFAULT user
                 DEFAULT_USER_PERMISSIONS = [
                     'repository.read',
                     'group.read',
                     'usergroup.read',
                     'hg.create.repository',
                     'hg.repogroup.create.false',
                     'hg.usergroup.create.false',
                     'hg.create.write_on_repogroup.true',
                     'hg.fork.repository',
                     'hg.register.manual_activate',
                     'hg.extern_activate.auto',
                     'hg.inherit_default_perms.true',
                 ]
                 # defines which permissions are more important higher the more important
                 # Weight defines which permissions are more important.
                 # The higher number the more important.
                 PERM_WEIGHTS = {
                     'repository.none': 0,
                     'repository.read': 1,
                     'repository.write': 3,
                     'repository.admin': 4,
                     'group.none': 0,
                     'group.read': 1,
                     'group.write': 3,
                     'group.admin': 4,
                     'usergroup.none': 0,
                     'usergroup.read': 1,
                     'usergroup.write': 3,
                     'usergroup.admin': 4,
                     'hg.repogroup.create.false': 0,
                     'hg.repogroup.create.true': 1,
                     'hg.usergroup.create.false': 0,
                     'hg.usergroup.create.true': 1,
                     'hg.fork.none': 0,
                     'hg.fork.repository': 1,
                     'hg.create.none': 0,
                     'hg.create.repository': 1
                 }
                 permission_id = Column("permission_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 permission_name = Column("permission_name", String(255), nullable=True, unique=None, default=None)
                 permission_longname = Column("permission_longname", String(255), nullable=True, unique=None, default=None)
                 def __unicode__(self):
                     return u"<%s('%s:%s')>" % (
                         self.__class__.__name__, self.permission_id, self.permission_name
                     )
                 @classmethod
                 def get_by_key(cls, key):
                     return cls.query().filter(cls.permission_name == key).scalar()
                 @classmethod
                 def get_default_repo_perms(cls, user_id, repo_id=None):
                     q = Session().query(UserRepoToPerm, Repository, Permission)\
                         .join((Permission, UserRepoToPerm.permission_id == Permission.permission_id))\
                         .join((Repository, UserRepoToPerm.repository_id == Repository.repo_id))\
                         .filter(UserRepoToPerm.user_id == user_id)
                     if repo_id:
                         q = q.filter(UserRepoToPerm.repository_id == repo_id)
                     return q.all()
                 @classmethod
                 def get_default_repo_perms_from_user_group(cls, user_id, repo_id=None):
                     q = Session().query(UserGroupRepoToPerm, Repository, Permission)\
                         .join(
                             Permission,
                             UserGroupRepoToPerm.permission_id == Permission.permission_id)\
                         .join(
                             Repository,
                             UserGroupRepoToPerm.repository_id == Repository.repo_id)\
                         .join(
                             UserGroup,
                             UserGroupRepoToPerm.users_group_id ==
                             UserGroup.users_group_id)\
                         .join(
                             UserGroupMember,
                             UserGroupRepoToPerm.users_group_id ==
                             UserGroupMember.users_group_id)\
                         .filter(
                             UserGroupMember.user_id == user_id,
                             UserGroup.users_group_active == true())
                     if repo_id:
                         q = q.filter(UserGroupRepoToPerm.repository_id == repo_id)
                     return q.all()
                 @classmethod
                 def get_default_group_perms(cls, user_id, repo_group_id=None):
                     q = Session().query(UserRepoGroupToPerm, RepoGroup, Permission)\
                         .join((Permission, UserRepoGroupToPerm.permission_id == Permission.permission_id))\
                         .join((RepoGroup, UserRepoGroupToPerm.group_id == RepoGroup.group_id))\
                         .filter(UserRepoGroupToPerm.user_id == user_id)
                     if repo_group_id:
                         q = q.filter(UserRepoGroupToPerm.group_id == repo_group_id)
                     return q.all()
                 @classmethod
                 def get_default_group_perms_from_user_group(
                         cls, user_id, repo_group_id=None):
                     q = Session().query(UserGroupRepoGroupToPerm, RepoGroup, Permission)\
                         .join(
                             Permission,
                             UserGroupRepoGroupToPerm.permission_id ==
                             Permission.permission_id)\
                         .join(
                             RepoGroup,
                             UserGroupRepoGroupToPerm.group_id == RepoGroup.group_id)\
                         .join(
                             UserGroup,
                             UserGroupRepoGroupToPerm.users_group_id ==
                             UserGroup.users_group_id)\
                         .join(
                             UserGroupMember,
                             UserGroupRepoGroupToPerm.users_group_id ==
                             UserGroupMember.users_group_id)\
                         .filter(
                             UserGroupMember.user_id == user_id,
                             UserGroup.users_group_active == true())
                     if repo_group_id:
                         q = q.filter(UserGroupRepoGroupToPerm.group_id == repo_group_id)
                     return q.all()
                 @classmethod
                 def get_default_user_group_perms(cls, user_id, user_group_id=None):
                     q = Session().query(UserUserGroupToPerm, UserGroup, Permission)\
                         .join((Permission, UserUserGroupToPerm.permission_id == Permission.permission_id))\
                         .join((UserGroup, UserUserGroupToPerm.user_group_id == UserGroup.users_group_id))\
                         .filter(UserUserGroupToPerm.user_id == user_id)
                     if user_group_id:
                         q = q.filter(UserUserGroupToPerm.user_group_id == user_group_id)
                     return q.all()
                 @classmethod
                 def get_default_user_group_perms_from_user_group(
                         cls, user_id, user_group_id=None):
                     TargetUserGroup = aliased(UserGroup, name='target_user_group')
                     q = Session().query(UserGroupUserGroupToPerm, UserGroup, Permission)\
                         .join(
                             Permission,
                             UserGroupUserGroupToPerm.permission_id ==
                             Permission.permission_id)\
                         .join(
                             TargetUserGroup,
                             UserGroupUserGroupToPerm.target_user_group_id ==
                             TargetUserGroup.users_group_id)\
                         .join(
                             UserGroup,
                             UserGroupUserGroupToPerm.user_group_id ==
                             UserGroup.users_group_id)\
                         .join(
                             UserGroupMember,
                             UserGroupUserGroupToPerm.user_group_id ==
                             UserGroupMember.users_group_id)\
                         .filter(
                             UserGroupMember.user_id == user_id,
                             UserGroup.users_group_active == true())
                     if user_group_id:
                         q = q.filter(
                             UserGroupUserGroupToPerm.user_group_id == user_group_id)
                     return q.all()
             class UserRepoToPerm(Base, BaseModel):
                 __tablename__ = 'repo_to_perm'
                 __table_args__ = (
                     UniqueConstraint('user_id', 'repository_id', 'permission_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 repo_to_perm_id = Column("repo_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
                 user = relationship('User')
                 repository = relationship('Repository')
                 permission = relationship('Permission')
                 @classmethod
                 def create(cls, user, repository, permission):
                     n = cls()
                     n.user = user
                     n.repository = repository
                     n.permission = permission
                     Session().add(n)
                     return n
                 def __unicode__(self):
                     return u'<%s => %s >' % (self.user, self.repository)
             class UserUserGroupToPerm(Base, BaseModel):
                 __tablename__ = 'user_user_group_to_perm'
                 __table_args__ = (
                     UniqueConstraint('user_id', 'user_group_id', 'permission_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 user_user_group_to_perm_id = Column("user_user_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 user_group_id = Column("user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 user = relationship('User')
                 user_group = relationship('UserGroup')
                 permission = relationship('Permission')
                 @classmethod
                 def create(cls, user, user_group, permission):
                     n = cls()
                     n.user = user
                     n.user_group = user_group
                     n.permission = permission
                     Session().add(n)
                     return n
                 def __unicode__(self):
                     return u'<%s => %s >' % (self.user, self.user_group)
             class UserToPerm(Base, BaseModel):
                 __tablename__ = 'user_to_perm'
                 __table_args__ = (
                     UniqueConstraint('user_id', 'permission_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 user_to_perm_id = Column("user_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 user = relationship('User')
                 permission = relationship('Permission', lazy='joined')
                 def __unicode__(self):
                     return u'<%s => %s >' % (self.user, self.permission)
             class UserGroupRepoToPerm(Base, BaseModel):
                 __tablename__ = 'users_group_repo_to_perm'
                 __table_args__ = (
                     UniqueConstraint('repository_id', 'users_group_id', 'permission_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
                 users_group = relationship('UserGroup')
                 permission = relationship('Permission')
                 repository = relationship('Repository')
                 @classmethod
                 def create(cls, users_group, repository, permission):
                     n = cls()
                     n.users_group = users_group
                     n.repository = repository
                     n.permission = permission
                     Session().add(n)
                     return n
                 def __unicode__(self):
                     return u'<UserGroupRepoToPerm:%s => %s >' % (self.users_group, self.repository)
             class UserGroupUserGroupToPerm(Base, BaseModel):
                 __tablename__ = 'user_group_user_group_to_perm'
                 __table_args__ = (
                     UniqueConstraint('target_user_group_id', 'user_group_id', 'permission_id'),
                     CheckConstraint('target_user_group_id != user_group_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 user_group_user_group_to_perm_id = Column("user_group_user_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 target_user_group_id = Column("target_user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 user_group_id = Column("user_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 target_user_group = relationship('UserGroup', primaryjoin='UserGroupUserGroupToPerm.target_user_group_id==UserGroup.users_group_id')
                 user_group = relationship('UserGroup', primaryjoin='UserGroupUserGroupToPerm.user_group_id==UserGroup.users_group_id')
                 permission = relationship('Permission')
                 @classmethod
                 def create(cls, target_user_group, user_group, permission):
                     n = cls()
                     n.target_user_group = target_user_group
                     n.user_group = user_group
                     n.permission = permission
                     Session().add(n)
                     return n
                 def __unicode__(self):
                     return u'<UserGroupUserGroup:%s => %s >' % (self.target_user_group, self.user_group)
             class UserGroupToPerm(Base, BaseModel):
                 __tablename__ = 'users_group_to_perm'
                 __table_args__ = (
                     UniqueConstraint('users_group_id', 'permission_id',),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 users_group = relationship('UserGroup')
                 permission = relationship('Permission')
             class UserRepoGroupToPerm(Base, BaseModel):
                 __tablename__ = 'user_repo_group_to_perm'
                 __table_args__ = (
                     UniqueConstraint('user_id', 'group_id', 'permission_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 group_to_perm_id = Column("group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 user = relationship('User')
                 group = relationship('RepoGroup')
                 permission = relationship('Permission')
                 @classmethod
                 def create(cls, user, repository_group, permission):
                     n = cls()
                     n.user = user
                     n.group = repository_group
                     n.permission = permission
                     Session().add(n)
                     return n
             class UserGroupRepoGroupToPerm(Base, BaseModel):
                 __tablename__ = 'users_group_repo_group_to_perm'
                 __table_args__ = (
                     UniqueConstraint('users_group_id', 'group_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 users_group_repo_group_to_perm_id = Column("users_group_repo_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 users_group = relationship('UserGroup')
                 permission = relationship('Permission')
                 group = relationship('RepoGroup')
                 @classmethod
                 def create(cls, user_group, repository_group, permission):
                     n = cls()
                     n.users_group = user_group
                     n.group = repository_group
                     n.permission = permission
                     Session().add(n)
                     return n
                 def __unicode__(self):
                     return u'<UserGroupRepoGroupToPerm:%s => %s >' % (self.users_group, self.group)
             class Statistics(Base, BaseModel):
                 __tablename__ = 'statistics'
                 __table_args__ = (
                      UniqueConstraint('repository_id'),
                      {'extend_existing': True, 'mysql_engine': 'InnoDB',
                       'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 stat_id = Column("stat_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=True, default=None)
                 stat_on_revision = Column("stat_on_revision", Integer(), nullable=False)
                 commit_activity = Column("commit_activity", LargeBinary(1000000), nullable=False)#JSON data
                 commit_activity_combined = Column("commit_activity_combined", LargeBinary(), nullable=False)#JSON data
                 languages = Column("languages", LargeBinary(1000000), nullable=False)#JSON data
                 repository = relationship('Repository', single_parent=True)
             class UserFollowing(Base, BaseModel):
                 __tablename__ = 'user_followings'
                 __table_args__ = (
                     UniqueConstraint('user_id', 'follows_repository_id'),
                     UniqueConstraint('user_id', 'follows_user_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 user_following_id = Column("user_following_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 follows_repo_id = Column("follows_repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=True, unique=None, default=None)
                 follows_user_id = Column("follows_user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
                 follows_from = Column('follows_from', DateTime(timezone=False), nullable=True, unique=None, default=datetime.datetime.now)
                 user = relationship('User', primaryjoin='User.user_id==UserFollowing.user_id')
                 follows_user = relationship('User', primaryjoin='User.user_id==UserFollowing.follows_user_id')
                 follows_repository = relationship('Repository', order_by='Repository.repo_name')
                 @classmethod
                 def get_repo_followers(cls, repo_id):
                     return cls.query().filter(cls.follows_repo_id == repo_id)
             class CacheKey(Base, BaseModel):
                 __tablename__ = 'cache_invalidation'
                 __table_args__ = (
                     UniqueConstraint('cache_key'),
                     Index('key_idx', 'cache_key'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 CACHE_TYPE_ATOM = 'ATOM'
                 CACHE_TYPE_RSS = 'RSS'
                 CACHE_TYPE_README = 'README'
                 cache_id = Column("cache_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 cache_key = Column("cache_key", String(255), nullable=True, unique=None, default=None)
                 cache_args = Column("cache_args", String(255), nullable=True, unique=None, default=None)
                 cache_active = Column("cache_active", Boolean(), nullable=True, unique=None, default=False)
                 def __init__(self, cache_key, cache_args=''):
                     self.cache_key = cache_key
                     self.cache_args = cache_args
                     self.cache_active = False
                 def __unicode__(self):
                     return u"<%s('%s:%s[%s]')>" % (
                         self.__class__.__name__,
                         self.cache_id, self.cache_key, self.cache_active)
                 def _cache_key_partition(self):
                     prefix, repo_name, suffix = self.cache_key.partition(self.cache_args)
                     return prefix, repo_name, suffix
                 def get_prefix(self):
                     """
                     Try to extract prefix from existing cache key. The key could consist
                     of prefix, repo_name, suffix
                     """
                     # this returns prefix, repo_name, suffix
                     return self._cache_key_partition()[0]
                 def get_suffix(self):
                     """
                     get suffix that might have been used in _get_cache_key to
                     generate self.cache_key. Only used for informational purposes
                     in repo_edit.html.
                     """
                     # prefix, repo_name, suffix
                     return self._cache_key_partition()[2]
                 @classmethod
                 def delete_all_cache(cls):
                     """
                     Delete all cache keys from database.
                     Should only be run when all instances are down and all entries
                     thus stale.
                     """
                     cls.query().delete()
                     Session().commit()
                 @classmethod
                 def get_cache_key(cls, repo_name, cache_type):
                     """
                     Generate a cache key for this process of RhodeCode instance.
                     Prefix most likely will be process id or maybe explicitly set
                     instance_id from .ini file.
                     """
                     import rhodecode
                     prefix = safe_unicode(rhodecode.CONFIG.get('instance_id') or '')
                     repo_as_unicode = safe_unicode(repo_name)
                     key = u'{}_{}'.format(repo_as_unicode, cache_type) \
                         if cache_type else repo_as_unicode
                     return u'{}{}'.format(prefix, key)
                 @classmethod
                 def set_invalidate(cls, repo_name, delete=False):
                     """
                     Mark all caches of a repo as invalid in the database.
                     """
                     try:
                         qry = Session().query(cls).filter(cls.cache_args == repo_name)
                         if delete:
                             log.debug('cache objects deleted for repo %s',
                                       safe_str(repo_name))
                             qry.delete()
                         else:
                             log.debug('cache objects marked as invalid for repo %s',
                                       safe_str(repo_name))
                             qry.update({"cache_active": False})
                         Session().commit()
                     except Exception:
                         log.exception(
                             'Cache key invalidation failed for repository %s',
                             safe_str(repo_name))
                         Session().rollback()
                 @classmethod
                 def get_active_cache(cls, cache_key):
                     inv_obj = cls.query().filter(cls.cache_key == cache_key).scalar()
                     if inv_obj:
                         return inv_obj
                     return None
                 @classmethod
                 def repo_context_cache(cls, compute_func, repo_name, cache_type,
                                        thread_scoped=False):
                     """
                     @cache_region('long_term')
                     def _heavy_calculation(cache_key):
                         return 'result'
                     cache_context = CacheKey.repo_context_cache(
                         _heavy_calculation, repo_name, cache_type)
                     with cache_context as context:
                         context.invalidate()
                         computed = context.compute()
                     assert computed == 'result'
                     """
                     from rhodecode.lib import caches
                     return caches.InvalidationContext(
                         compute_func, repo_name, cache_type, thread_scoped=thread_scoped)
             class ChangesetComment(Base, BaseModel):
                 __tablename__ = 'changeset_comments'
                 __table_args__ = (
                     Index('cc_revision_idx', 'revision'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 COMMENT_OUTDATED = u'comment_outdated'
                 comment_id = Column('comment_id', Integer(), nullable=False, primary_key=True)
                 repo_id = Column('repo_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False)
                 revision = Column('revision', String(40), nullable=True)
                 pull_request_id = Column("pull_request_id", Integer(), ForeignKey('pull_requests.pull_request_id'), nullable=True)
                 pull_request_version_id = Column("pull_request_version_id", Integer(), ForeignKey('pull_request_versions.pull_request_version_id'), nullable=True)
                 line_no = Column('line_no', Unicode(10), nullable=True)
                 hl_lines = Column('hl_lines', Unicode(512), nullable=True)
                 f_path = Column('f_path', Unicode(1000), nullable=True)
                 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=False)
                 text = Column('text', UnicodeText().with_variant(UnicodeText(25000), 'mysql'), nullable=False)
                 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 modified_at = Column('modified_at', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 renderer = Column('renderer', Unicode(64), nullable=True)
                 display_state = Column('display_state',  Unicode(128), nullable=True)
                 author = relationship('User', lazy='joined')
                 repo = relationship('Repository')
                 status_change = relationship('ChangesetStatus', cascade="all, delete, delete-orphan")
                 pull_request = relationship('PullRequest', lazy='joined')
                 pull_request_version = relationship('PullRequestVersion')
                 @classmethod
                 def get_users(cls, revision=None, pull_request_id=None):
                     """
                     Returns user associated with this ChangesetComment. ie those
                     who actually commented
                     :param cls:
                     :param revision:
                     """
                     q = Session().query(User)\
                             .join(ChangesetComment.author)
                     if revision:
                         q = q.filter(cls.revision == revision)
                     elif pull_request_id:
                         q = q.filter(cls.pull_request_id == pull_request_id)
                     return q.all()
                 def render(self, mentions=False):
                     from rhodecode.lib import helpers as h
                     return h.render(self.text, renderer=self.renderer, mentions=mentions)
                 def __repr__(self):
                     if self.comment_id:
                         return '<DB:ChangesetComment #%s>' % self.comment_id
                     else:
                         return '<DB:ChangesetComment at %#x>' % id(self)
             class ChangesetStatus(Base, BaseModel):
                 __tablename__ = 'changeset_statuses'
                 __table_args__ = (
                     Index('cs_revision_idx', 'revision'),
                     Index('cs_version_idx', 'version'),
                     UniqueConstraint('repo_id', 'revision', 'version'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 STATUS_NOT_REVIEWED = DEFAULT = 'not_reviewed'
                 STATUS_APPROVED = 'approved'
                 STATUS_REJECTED = 'rejected'
                 STATUS_UNDER_REVIEW = 'under_review'
                 STATUSES = [
                     (STATUS_NOT_REVIEWED, _("Not Reviewed")),  # (no icon) and default
                     (STATUS_APPROVED, _("Approved")),
                     (STATUS_REJECTED, _("Rejected")),
                     (STATUS_UNDER_REVIEW, _("Under Review")),
                 ]
                 changeset_status_id = Column('changeset_status_id', Integer(), nullable=False, primary_key=True)
                 repo_id = Column('repo_id', Integer(), ForeignKey('repositories.repo_id'), nullable=False)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None)
                 revision = Column('revision', String(40), nullable=False)
                 status = Column('status', String(128), nullable=False, default=DEFAULT)
                 changeset_comment_id = Column('changeset_comment_id', Integer(), ForeignKey('changeset_comments.comment_id'))
                 modified_at = Column('modified_at', DateTime(), nullable=False, default=datetime.datetime.now)
                 version = Column('version', Integer(), nullable=False, default=0)
                 pull_request_id = Column("pull_request_id", Integer(), ForeignKey('pull_requests.pull_request_id'), nullable=True)
                 author = relationship('User', lazy='joined')
                 repo = relationship('Repository')
                 comment = relationship('ChangesetComment', lazy='joined')
                 pull_request = relationship('PullRequest', lazy='joined')
                 def __unicode__(self):
                     return u"<%s('%s[%s]:%s')>" % (
                         self.__class__.__name__,
                         self.status, self.version, self.author
                     )
                 @classmethod
                 def get_status_lbl(cls, value):
                     return dict(cls.STATUSES).get(value)
                 @property
                 def status_lbl(self):
                     return ChangesetStatus.get_status_lbl(self.status)
             class _PullRequestBase(BaseModel):
                 """
                 Common attributes of pull request and version entries.
                 """
                 # .status values
                 STATUS_NEW = u'new'
                 STATUS_OPEN = u'open'
                 STATUS_CLOSED = u'closed'
                 title = Column('title', Unicode(255), nullable=True)
                 description = Column(
                     'description', UnicodeText().with_variant(UnicodeText(10240), 'mysql'),
                     nullable=True)
                 # new/open/closed status of pull request (not approve/reject/etc)
                 status = Column('status', Unicode(255), nullable=False, default=STATUS_NEW)
                 created_on = Column(
                     'created_on', DateTime(timezone=False), nullable=False,
                     default=datetime.datetime.now)
                 updated_on = Column(
                     'updated_on', DateTime(timezone=False), nullable=False,
                     default=datetime.datetime.now)
                 @declared_attr
                 def user_id(cls):
                     return Column(
                         "user_id", Integer(), ForeignKey('users.user_id'), nullable=False,
                         unique=None)
                 # 500 revisions max
                 _revisions = Column(
                     'revisions', UnicodeText().with_variant(UnicodeText(20500), 'mysql'))
                 @declared_attr
                 def source_repo_id(cls):
                     # TODO: dan: rename column to source_repo_id
                     return Column(
                         'org_repo_id', Integer(), ForeignKey('repositories.repo_id'),
                         nullable=False)
                 source_ref = Column('org_ref', Unicode(255), nullable=False)
                 @declared_attr
                 def target_repo_id(cls):
                     # TODO: dan: rename column to target_repo_id
                     return Column(
                         'other_repo_id', Integer(), ForeignKey('repositories.repo_id'),
                         nullable=False)
                 target_ref = Column('other_ref', Unicode(255), nullable=False)
                 # TODO: dan: rename column to last_merge_source_rev
                 _last_merge_source_rev = Column(
                     'last_merge_org_rev', String(40), nullable=True)
                 # TODO: dan: rename column to last_merge_target_rev
                 _last_merge_target_rev = Column(
                     'last_merge_other_rev', String(40), nullable=True)
                 _last_merge_status = Column('merge_status', Integer(), nullable=True)
                 merge_rev = Column('merge_rev', String(40), nullable=True)
                 @hybrid_property
                 def revisions(self):
                     return self._revisions.split(':') if self._revisions else []
                 @revisions.setter
                 def revisions(self, val):
                     self._revisions = ':'.join(val)
                 @declared_attr
                 def author(cls):
                     return relationship('User', lazy='joined')
                 @declared_attr
                 def source_repo(cls):
                     return relationship(
                         'Repository',
                         primaryjoin='%s.source_repo_id==Repository.repo_id' % cls.__name__)
                 @property
                 def source_ref_parts(self):
                     refs = self.source_ref.split(':')
                     return Reference(refs[0], refs[1], refs[2])
                 @declared_attr
                 def target_repo(cls):
                     return relationship(
                         'Repository',
                         primaryjoin='%s.target_repo_id==Repository.repo_id' % cls.__name__)
                 @property
                 def target_ref_parts(self):
                     refs = self.target_ref.split(':')
                     return Reference(refs[0], refs[1], refs[2])
             class PullRequest(Base, _PullRequestBase):
                 __tablename__ = 'pull_requests'
                 __table_args__ = (
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 pull_request_id = Column(
                     'pull_request_id', Integer(), nullable=False, primary_key=True)
                 def __repr__(self):
                     if self.pull_request_id:
                         return '<DB:PullRequest #%s>' % self.pull_request_id
                     else:
                         return '<DB:PullRequest at %#x>' % id(self)
                 reviewers = relationship('PullRequestReviewers',
                                          cascade="all, delete, delete-orphan")
                 statuses = relationship('ChangesetStatus')
                 comments = relationship('ChangesetComment',
                                         cascade="all, delete, delete-orphan")
                 versions = relationship('PullRequestVersion',
                                         cascade="all, delete, delete-orphan")
                 def is_closed(self):
                     return self.status == self.STATUS_CLOSED
                 def get_api_data(self):
                     from rhodecode.model.pull_request import PullRequestModel
                     pull_request = self
                     merge_status = PullRequestModel().merge_status(pull_request)
                     data = {
                         'pull_request_id': pull_request.pull_request_id,
                         'url': url('pullrequest_show', repo_name=self.target_repo.repo_name,
                                                    pull_request_id=self.pull_request_id,
                                                    qualified=True),
                         'title': pull_request.title,
                         'description': pull_request.description,
                         'status': pull_request.status,
                         'created_on': pull_request.created_on,
                         'updated_on': pull_request.updated_on,
                         'commit_ids': pull_request.revisions,
                         'review_status': pull_request.calculated_review_status(),
                         'mergeable': {
                             'status': merge_status[0],
                             'message': unicode(merge_status[1]),
                         },
                         'source': {
                             'clone_url': pull_request.source_repo.clone_url(),
                             'repository': pull_request.source_repo.repo_name,
                             'reference': {
                                 'name': pull_request.source_ref_parts.name,
                                 'type': pull_request.source_ref_parts.type,
                                 'commit_id': pull_request.source_ref_parts.commit_id,
                             },
                         },
                         'target': {
                             'clone_url': pull_request.target_repo.clone_url(),
                             'repository': pull_request.target_repo.repo_name,
                             'reference': {
                                 'name': pull_request.target_ref_parts.name,
                                 'type': pull_request.target_ref_parts.type,
                                 'commit_id': pull_request.target_ref_parts.commit_id,
                             },
                         },
                         'author': pull_request.author.get_api_data(include_secrets=False,
                                                                    details='basic'),
                         'reviewers': [
                             {
                                 'user': reviewer.get_api_data(include_secrets=False,
                                                               details='basic'),
                                 'review_status': st[0][1].status if st else 'not_reviewed',
                             }
                             for reviewer, st in pull_request.reviewers_statuses()
                         ]
                     }
                     return data
                 def __json__(self):
                     return {
                         'revisions': self.revisions,
                     }
                 def calculated_review_status(self):
                     # TODO: anderson: 13.05.15 Used only on templates/my_account_pullrequests.html
                     # because it's tricky on how to use ChangesetStatusModel from there
                     warnings.warn("Use calculated_review_status from ChangesetStatusModel", DeprecationWarning)
                     from rhodecode.model.changeset_status import ChangesetStatusModel
                     return ChangesetStatusModel().calculated_review_status(self)
                 def reviewers_statuses(self):
                     warnings.warn("Use reviewers_statuses from ChangesetStatusModel", DeprecationWarning)
                     from rhodecode.model.changeset_status import ChangesetStatusModel
                     return ChangesetStatusModel().reviewers_statuses(self)
             class PullRequestVersion(Base, _PullRequestBase):
                 __tablename__ = 'pull_request_versions'
                 __table_args__ = (
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 pull_request_version_id = Column(
                     'pull_request_version_id', Integer(), nullable=False, primary_key=True)
                 pull_request_id = Column(
                     'pull_request_id', Integer(),
                     ForeignKey('pull_requests.pull_request_id'), nullable=False)
                 pull_request = relationship('PullRequest')
                 def __repr__(self):
                     if self.pull_request_version_id:
                         return '<DB:PullRequestVersion #%s>' % self.pull_request_version_id
                     else:
                         return '<DB:PullRequestVersion at %#x>' % id(self)
             class PullRequestReviewers(Base, BaseModel):
                 __tablename__ = 'pull_request_reviewers'
                 __table_args__ = (
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 def __init__(self, user=None, pull_request=None):
                     self.user = user
                     self.pull_request = pull_request
                 pull_requests_reviewers_id = Column(
                     'pull_requests_reviewers_id', Integer(), nullable=False,
                     primary_key=True)
                 pull_request_id = Column(
                     "pull_request_id", Integer(),
                     ForeignKey('pull_requests.pull_request_id'), nullable=False)
                 user_id = Column(
                     "user_id", Integer(), ForeignKey('users.user_id'), nullable=True)
                 user = relationship('User')
                 pull_request = relationship('PullRequest')
             class Notification(Base, BaseModel):
                 __tablename__ = 'notifications'
                 __table_args__ = (
                     Index('notification_type_idx', 'type'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 TYPE_CHANGESET_COMMENT = u'cs_comment'
                 TYPE_MESSAGE = u'message'
                 TYPE_MENTION = u'mention'
                 TYPE_REGISTRATION = u'registration'
                 TYPE_PULL_REQUEST = u'pull_request'
                 TYPE_PULL_REQUEST_COMMENT = u'pull_request_comment'
                 notification_id = Column('notification_id', Integer(), nullable=False, primary_key=True)
                 subject = Column('subject', Unicode(512), nullable=True)
                 body = Column('body', UnicodeText().with_variant(UnicodeText(50000), 'mysql'), nullable=True)
                 created_by = Column("created_by", Integer(), ForeignKey('users.user_id'), nullable=True)
                 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 type_ = Column('type', Unicode(255))
                 created_by_user = relationship('User')
                 notifications_to_users = relationship('UserNotification', lazy='joined',
                                                       cascade="all, delete, delete-orphan")
                 @property
                 def recipients(self):
                     return [x.user for x in UserNotification.query()\
                             .filter(UserNotification.notification == self)\
                             .order_by(UserNotification.user_id.asc()).all()]
                 @classmethod
                 def create(cls, created_by, subject, body, recipients, type_=None):
                     if type_ is None:
                         type_ = Notification.TYPE_MESSAGE
                     notification = cls()
                     notification.created_by_user = created_by
                     notification.subject = subject
                     notification.body = body
                     notification.type_ = type_
                     notification.created_on = datetime.datetime.now()
                     for u in recipients:
                         assoc = UserNotification()
                         assoc.notification = notification
                         # if created_by is inside recipients mark his notification
                         # as read
                         if u.user_id == created_by.user_id:
                             assoc.read = True
                         u.notifications.append(assoc)
                     Session().add(notification)
                     return notification
                 @property
                 def description(self):
                     from rhodecode.model.notification import NotificationModel
                     return NotificationModel().make_description(self)
             class UserNotification(Base, BaseModel):
                 __tablename__ = 'user_to_notification'
                 __table_args__ = (
                     UniqueConstraint('user_id', 'notification_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 user_id = Column('user_id', Integer(), ForeignKey('users.user_id'), primary_key=True)
                 notification_id = Column("notification_id", Integer(), ForeignKey('notifications.notification_id'), primary_key=True)
                 read = Column('read', Boolean, default=False)
                 sent_on = Column('sent_on', DateTime(timezone=False), nullable=True, unique=None)
                 user = relationship('User', lazy="joined")
                 notification = relationship('Notification', lazy="joined",
                                             order_by=lambda: Notification.created_on.desc(),)
                 def mark_as_read(self):
                     self.read = True
                     Session().add(self)
             class Gist(Base, BaseModel):
                 __tablename__ = 'gists'
                 __table_args__ = (
                     Index('g_gist_access_id_idx', 'gist_access_id'),
                     Index('g_created_on_idx', 'created_on'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 GIST_PUBLIC = u'public'
                 GIST_PRIVATE = u'private'
                 DEFAULT_FILENAME = u'gistfile1.txt'
                 ACL_LEVEL_PUBLIC = u'acl_public'
                 ACL_LEVEL_PRIVATE = u'acl_private'
                 gist_id = Column('gist_id', Integer(), primary_key=True)
                 gist_access_id = Column('gist_access_id', Unicode(250))
                 gist_description = Column('gist_description', UnicodeText().with_variant(UnicodeText(1024), 'mysql'))
                 gist_owner = Column('user_id', Integer(), ForeignKey('users.user_id'), nullable=True)
                 gist_expires = Column('gist_expires', Float(53), nullable=False)
                 gist_type = Column('gist_type', Unicode(128), nullable=False)
                 created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 modified_at = Column('modified_at', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)
                 acl_level = Column('acl_level', Unicode(128), nullable=True)
                 owner = relationship('User')
                 def __repr__(self):
                     return '<Gist:[%s]%s>' % (self.gist_type, self.gist_access_id)
                 @classmethod
                 def get_or_404(cls, id_):
                     res = cls.query().filter(cls.gist_access_id == id_).scalar()
                     if not res:
                         raise HTTPNotFound
                     return res
                 @classmethod
                 def get_by_access_id(cls, gist_access_id):
                     return cls.query().filter(cls.gist_access_id == gist_access_id).scalar()
                 def gist_url(self):
                     import rhodecode
                     alias_url = rhodecode.CONFIG.get('gist_alias_url')
                     if alias_url:
                         return alias_url.replace('{gistid}', self.gist_access_id)
                     return url('gist', gist_id=self.gist_access_id, qualified=True)
                 @classmethod
                 def base_path(cls):
                     """
                     Returns base path when all gists are stored
                     :param cls:
                     """
                     from rhodecode.model.gist import GIST_STORE_LOC
                     q = Session().query(RhodeCodeUi)\
                         .filter(RhodeCodeUi.ui_key == URL_SEP)
                     q = q.options(FromCache("sql_cache_short", "repository_repo_path"))
                     return os.path.join(q.one().ui_value, GIST_STORE_LOC)
                 def get_api_data(self):
                     """
                     Common function for generating gist related data for API
                     """
                     gist = self
                     data = {
                         'gist_id': gist.gist_id,
                         'type': gist.gist_type,
                         'access_id': gist.gist_access_id,
                         'description': gist.gist_description,
                         'url': gist.gist_url(),
                         'expires': gist.gist_expires,
                         'created_on': gist.created_on,
                         'modified_at': gist.modified_at,
                         'content': None,
                         'acl_level': gist.acl_level,
                     }
                     return data
                 def __json__(self):
                     data = dict(
                     )
                     data.update(self.get_api_data())
                     return data
                 # SCM functions
                 def scm_instance(self, **kwargs):
                     full_repo_path = os.path.join(self.base_path(), self.gist_access_id)
                     return get_vcs_instance(
                         repo_path=safe_str(full_repo_path), create=False)
             class DbMigrateVersion(Base, BaseModel):
                 __tablename__ = 'db_migrate_version'
                 __table_args__ = (
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True},
                 )
                 repository_id = Column('repository_id', String(250), primary_key=True)
                 repository_path = Column('repository_path', Text)
                 version = Column('version', Integer)
             class ExternalIdentity(Base, BaseModel):
                 __tablename__ = 'external_identities'
                 __table_args__ = (
                     Index('local_user_id_idx', 'local_user_id'),
                     Index('external_id_idx', 'external_id'),
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8'})
                 external_id = Column('external_id', Unicode(255), default=u'',
                                      primary_key=True)
                 external_username = Column('external_username', Unicode(1024), default=u'')
                 local_user_id = Column('local_user_id', Integer(),
                                        ForeignKey('users.user_id'), primary_key=True)
                 provider_name = Column('provider_name', Unicode(255), default=u'',
                                        primary_key=True)
                 access_token = Column('access_token', String(1024), default=u'')
                 alt_token = Column('alt_token', String(1024), default=u'')
                 token_secret = Column('token_secret', String(1024), default=u'')
                 @classmethod
                 def by_external_id_and_provider(cls, external_id, provider_name,
                                                 local_user_id=None):
                     """
                     Returns ExternalIdentity instance based on search params
                     :param external_id:
                     :param provider_name:
                     :return: ExternalIdentity
                     """
                     query = cls.query()
                     query = query.filter(cls.external_id == external_id)
                     query = query.filter(cls.provider_name == provider_name)
                     if local_user_id:
                         query = query.filter(cls.local_user_id == local_user_id)
                     return query.first()
                 @classmethod
                 def user_by_external_id_and_provider(cls, external_id, provider_name):
                     """
                     Returns User instance based on search params
                     :param external_id:
                     :param provider_name:
                     :return: User
                     """
                     query = User.query()
                     query = query.filter(cls.external_id == external_id)
                     query = query.filter(cls.provider_name == provider_name)
                     query = query.filter(User.user_id == cls.local_user_id)
                     return query.first()
                 @classmethod
                 def by_local_user_id(cls, local_user_id):
                     """
                     Returns all tokens for user
                     :param local_user_id:
                     :return: ExternalIdentity
                     """
                     query = cls.query()
                     query = query.filter(cls.local_user_id == local_user_id)
                     return query
             class Integration(Base, BaseModel):
                 __tablename__ = 'integrations'
                 __table_args__ = (
                     {'extend_existing': True, 'mysql_engine': 'InnoDB',
                      'mysql_charset': 'utf8', 'sqlite_autoincrement': True}
                 )
                 integration_id = Column('integration_id', Integer(), primary_key=True)
                 integration_type = Column('integration_type', String(255))
                 enabled = Column('enabled', Boolean(), nullable=False)
                 name = Column('name', String(255), nullable=False)
                 child_repos_only = Column('child_repos_only', Boolean(), nullable=False,
                     default=False)
                 settings = Column(
                     'settings_json', MutationObj.as_mutable(
                         JsonType(dialect_map=dict(mysql=UnicodeText(16384)))))
                 repo_id = Column(
                     'repo_id', Integer(), ForeignKey('repositories.repo_id'),
                     nullable=True, unique=None, default=None)
                 repo = relationship('Repository', lazy='joined')
                 repo_group_id = Column(
                     'repo_group_id', Integer(), ForeignKey('groups.group_id'),
                     nullable=True, unique=None, default=None)
                 repo_group = relationship('RepoGroup', lazy='joined')
-                @hybrid_property
+                @property
                 def scope(self):
                     if self.repo:
-                        return self.repo
+                        return repr(self.repo)
                     if self.repo_group:
-                        return self.repo_group
+                        if self.child_repos_only:
+                            return repr(self.repo_group) + ' (child repos only)'
+                        else:
+                            return repr(self.repo_group) + ' (recursive)'
                     if self.child_repos_only:
                         return 'root_repos'
                     return 'global'
-                @scope.setter
-                def scope(self, value):
-                    self.repo = None
-                    self.repo_id = None
-                    self.repo_group_id = None
-                    self.repo_group = None
-                    self.child_repos_only = False
-                    if isinstance(value, Repository):
-                        self.repo_id = value.repo_id
-                        self.repo = value
-                    elif isinstance(value, RepoGroup):
-                        self.repo_group_id = value.group_id
-                        self.repo_group = value
-                    elif value == 'root_repos':
-                        self.child_repos_only = True
-                    elif value == 'global':
-                        pass
-                    else:
-                        raise Exception("invalid scope: %s, must be one of "
-                            "['global', 'root_repos', <RepoGroup>. <Repository>]" % value)
                 def __repr__(self):
                     return '<Integration(%r, %r)>' % (self.integration_type, self.scope)

rhodecode/model/integration.py

0 +24 -15

             # -*- coding: utf-8 -*-
             # Copyright (C) 2011-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             Model for integrations
             """
             import logging
             import traceback
             from pylons import tmpl_context as c
             from pylons.i18n.translation import _, ungettext
             from sqlalchemy import or_, and_
             from sqlalchemy.sql.expression import false, true
             from mako import exceptions
             import rhodecode
             from rhodecode import events
             from rhodecode.lib import helpers as h
             from rhodecode.lib.caching_query import FromCache
             from rhodecode.lib.utils import PartialRenderer
             from rhodecode.model import BaseModel
             from rhodecode.model.db import Integration, User, Repository, RepoGroup
             from rhodecode.model.meta import Session
             from rhodecode.integrations import integration_type_registry
             from rhodecode.integrations.types.base import IntegrationTypeBase
             log = logging.getLogger(__name__)
             class IntegrationModel(BaseModel):
                 cls = Integration
                 def __get_integration(self, integration):
                     if isinstance(integration, Integration):
                         return integration
                     elif isinstance(integration, (int, long)):
                         return self.sa.query(Integration).get(integration)
                     else:
                         if integration:
                             raise Exception('integration must be int, long or Instance'
                                             ' of Integration got %s' % type(integration))
-                def create(self, IntegrationType, name, enabled, scope, settings):
+                def create(self, IntegrationType, name, enabled, repo, repo_group,
+                    child_repos_only, settings):
                     """ Create an IntegrationType integration """
                     integration = Integration()
                     integration.integration_type = IntegrationType.key
                     self.sa.add(integration)
-                    self.update_integration(integration, name, enabled, scope, settings)
+                    self.update_integration(integration, name, enabled, repo, repo_group,
+                                            child_repos_only, settings)
                     self.sa.commit()
                     return integration
-                def update_integration(self, integration, name, enabled, scope, settings):
+                def update_integration(self, integration, name, enabled, repo, repo_group,
-                    """
+                    child_repos_only, settings):
-                    :param scope: one of ['global', 'root_repos', <RepoGroup>. <Repository>]
-                    """
                     integration = self.__get_integration(integration)
-                    integration.scope = scope
+                    integration.repo = repo
+                    integration.repo_group = repo_group
+                    integration.child_repos_only = child_repos_only
                     integration.name = name
                     integration.enabled = enabled
                     integration.settings = settings
                     return integration
                 def delete(self, integration):
                     integration = self.__get_integration(integration)
                     if integration:
                         self.sa.delete(integration)
                         return True
                     return False
                 def get_integration_handler(self, integration):
                     TypeClass = integration_type_registry.get(integration.integration_type)
                     if not TypeClass:
                         log.error('No class could be found for integration type: {}'.format(
                             integration.integration_type))
                         return None
                     return TypeClass(integration.settings)
                 def send_event(self, integration, event):
                     """ Send an event to an integration """
                     handler = self.get_integration_handler(integration)
                     if handler:
                         handler.send_event(event)
                 def get_integrations(self, scope, IntegrationType=None):
                     """
                     Return integrations for a scope, which must be one of:
                     'all' - every integration, global/repogroup/repo
                     'global' - global integrations only
                     <Repository> instance - integrations for this repo only
                     <RepoGroup> instance - integrations for this repogroup only
                     """
                     if isinstance(scope, Repository):
                         query = self.sa.query(Integration).filter(
                             Integration.repo==scope)
                     elif isinstance(scope, RepoGroup):
                         query = self.sa.query(Integration).filter(
                             Integration.repo_group==scope)
                     elif scope == 'global':
                         # global integrations
                         query = self.sa.query(Integration).filter(
                             and_(Integration.repo_id==None, Integration.repo_group_id==None)
                         )
-                    elif scope == 'root_repos':
+                    elif scope == 'root-repos':
                         query = self.sa.query(Integration).filter(
                             and_(Integration.repo_id==None,
                                  Integration.repo_group_id==None,
                                  Integration.child_repos_only==True)
                         )
                     elif scope == 'all':
                         query = self.sa.query(Integration)
                     else:
                         raise Exception(
                             "invalid `scope`, must be one of: "
                             "['global', 'all', <Repository>, <RepoGroup>]")
                     if IntegrationType is not None:
                         query = query.filter(
                             Integration.integration_type==IntegrationType.key)
                     result = []
                     for integration in query.all():
                         IntType = integration_type_registry.get(integration.integration_type)
                         result.append((IntType, integration))
                     return result
                 def get_for_event(self, event, cache=False):
                     """
                     Get integrations that match an event
                     """
                     query = self.sa.query(
                         Integration
                     ).filter(
                         Integration.enabled==True
                     )
                     global_integrations_filter = and_(
                         Integration.repo_id==None,
                         Integration.repo_group_id==None,
                         Integration.child_repos_only==False,
                     )
                     if isinstance(event, events.RepoEvent):
                         root_repos_integrations_filter = and_(
                             Integration.repo_id==None,
                             Integration.repo_group_id==None,
                             Integration.child_repos_only==True,
                         )
                         clauses = [
                             global_integrations_filter,
                         ]
                         # repo integrations
                         if event.repo.repo_id: # pre create events dont have a repo_id yet
                             clauses.append(
                                 Integration.repo_id==event.repo.repo_id
                             )
                         if event.repo.group:
                             clauses.append(
-                                Integration.repo_group_id == event.repo.group.group_id
+                                and_(
+                                    Integration.repo_group_id==event.repo.group.group_id,
+                                    Integration.child_repos_only==True
+                                )
                             )
-                            # repo group cascade to kids (maybe implement this sometime?)
+                            # repo group cascade to kids
-                            # clauses.append(Integration.repo_group_id.in_(
+                            clauses.append(
-                            #     [group.group_id for group in
+                                and_(
-                            #     event.repo.groups_with_parents]
+                                    Integration.repo_group_id.in_(
-                            # ))
+                                        [group.group_id for group in
+                                        event.repo.groups_with_parents]
+                                    ),
+                                    Integration.child_repos_only==False
+                                )
+                            )
                         if not event.repo.group: # root repo
                             clauses.append(root_repos_integrations_filter)
                         query = query.filter(or_(*clauses))
                         if cache:
                             query = query.options(FromCache(
                                 "sql_cache_short",
                                 "get_enabled_repo_integrations_%i" % event.repo.repo_id))
                     else: # only global integrations
                         query = query.filter(global_integrations_filter)
                         if cache:
                             query = query.options(FromCache(
                                 "sql_cache_short", "get_enabled_global_integrations"))
                     result = query.all()
                     return result

rhodecode/model/validation_schema/schemas/integration_schema.py

0 +73 -34

             # -*- coding: utf-8 -*-
             # Copyright (C) 2016-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import os
             import deform
             import colander
             from rhodecode.translation import _
             from rhodecode.model.db import Repository, RepoGroup
             from rhodecode.model.validation_schema import validators, preparers
             def integration_scope_choices(permissions):
                 """
                 Return list of (value, label) choices for integration scopes depending on
                 the permissions
                 """
                 result = [('', _('Pick a scope:'))]
                 if 'hg.admin' in permissions['global']:
                     result.extend([
                        ('global', _('Global (all repositories)')),
-                       ('root_repos', _('Top level repositories only')),
+                       ('root-repos', _('Top level repositories only')),
                     ])
                 repo_choices = [
                     ('repo:%s' % repo_name, '/' + repo_name)
                     for repo_name, repo_perm
                     in permissions['repositories'].items()
                     if repo_perm == 'repository.admin'
                 ]
                 repogroup_choices = [
-                    ('repogroup:%s' % repo_group_name, '/' + repo_group_name + ' (group)')
+                    ('repogroup:%s' % repo_group_name, '/' + repo_group_name + '/ (child repos only)')
+                    for repo_group_name, repo_group_perm
+                    in permissions['repositories_groups'].items()
+                    if repo_group_perm == 'group.admin'
+                ]
+                repogroup_recursive_choices = [
+                    ('repogroup-recursive:%s' % repo_group_name, '/' + repo_group_name + '/ (recursive)')
                     for repo_group_name, repo_group_perm
                     in permissions['repositories_groups'].items()
                     if repo_group_perm == 'group.admin'
                 ]
                 result.extend(
-                    sorted(repogroup_choices + repo_choices,
+                    sorted(repogroup_recursive_choices + repogroup_choices + repo_choices,
                         key=lambda (choice, label): choice.split(':', 1)[1]
                     )
                 )
                 return result
             @colander.deferred
             def deferred_integration_scopes_validator(node, kw):
                 perms = kw.get('permissions')
                 def _scope_validator(_node, scope):
                     is_super_admin = 'hg.admin' in perms['global']
-                    if scope in ('global', 'root_repos'):
+                    if scope.get('repo'):
+                        if (is_super_admin or perms['repositories'].get(
+                            scope['repo'].repo_name) == 'repository.admin'):
+                            return True
+                        msg = _('Only repo admins can create integrations')
+                        raise colander.Invalid(_node, msg)
+                    elif scope.get('repo_group'):
+                        if (is_super_admin or perms['repositories_groups'].get(
+                            scope['repo_group'].group_name) == 'group.admin'):
+                            return True
+                        msg = _('Only repogroup admins can create integrations')
+                        raise colander.Invalid(_node, msg)
+                    else:
                         if is_super_admin:
                             return True
                         msg = _('Only superadmins can create global integrations')
                         raise colander.Invalid(_node, msg)
-                    elif isinstance(scope, Repository):
-                        if (is_super_admin or perms['repositories'].get(
-                                                    scope.repo_name) == 'repository.admin'):
-                            return True
-                        msg = _('Only repo admins can create integrations')
-                        raise colander.Invalid(_node, msg)
-                    elif isinstance(scope, RepoGroup):
-                        if (is_super_admin or perms['repositories_groups'].get(
-                                                        scope.group_name) == 'group.admin'):
-                            return True
-                        msg = _('Only repogroup admins can create integrations')
-                        raise colander.Invalid(_node, msg)
-                    msg = _('Invalid integration scope: %s' % scope)
-                    raise colander.Invalid(node, msg)
                 return _scope_validator
             @colander.deferred
             def deferred_integration_scopes_widget(node, kw):
                 if kw.get('no_scope'):
                     return deform.widget.TextInputWidget(readonly=True)
                 choices = integration_scope_choices(kw.get('permissions'))
                 widget = deform.widget.Select2Widget(values=choices)
                 return widget
-            class IntegrationScope(colander.SchemaType):
+            class IntegrationScopeType(colander.SchemaType):
                 def serialize(self, node, appstruct):
                     if appstruct is colander.null:
                         return colander.null
-                    if isinstance(appstruct, Repository):
+                    if appstruct.get('repo'):
-                        return 'repo:%s' % appstruct.repo_name
+                        return 'repo:%s' % appstruct['repo'].repo_name
-                    elif isinstance(appstruct, RepoGroup):
+                    elif appstruct.get('repo_group'):
-                        return 'repogroup:%s' % appstruct.group_name
+                        if appstruct.get('child_repos_only'):
-                    elif appstruct in ('global', 'root_repos'):
+                            return 'repogroup:%s' % appstruct['repo_group'].group_name
-                        return appstruct
+                        else:
+                            return 'repogroup-recursive:%s' % (
+                                appstruct['repo_group'].group_name)
+                    else:
+                        if appstruct.get('child_repos_only'):
+                            return 'root-repos'
+                        else:
+                            return 'global'
                     raise colander.Invalid(node, '%r is not a valid scope' % appstruct)
                 def deserialize(self, node, cstruct):
                     if cstruct is colander.null:
                         return colander.null
                     if cstruct.startswith('repo:'):
                         repo = Repository.get_by_repo_name(cstruct.split(':')[1])
                         if repo:
-                            return repo
+                            return {
+                                'repo': repo,
+                                'repo_group': None,
+                                'child_repos_only': None,
+                            }
+                    elif cstruct.startswith('repogroup-recursive:'):
+                        repo_group = RepoGroup.get_by_group_name(cstruct.split(':')[1])
+                        if repo_group:
+                            return {
+                                'repo': None,
+                                'repo_group': repo_group,
+                                'child_repos_only': False
+                            }
                     elif cstruct.startswith('repogroup:'):
                         repo_group = RepoGroup.get_by_group_name(cstruct.split(':')[1])
                         if repo_group:
-                            return repo_group
+                            return {
-                    elif cstruct in ('global', 'root_repos'):
+                                'repo': None,
-                        return cstruct
+                                'repo_group': repo_group,
+                                'child_repos_only': True
+                            }
+                    elif cstruct == 'global':
+                        return {
+                            'repo': None,
+                            'repo_group': None,
+                            'child_repos_only': False
+                        }
+                    elif cstruct == 'root-repos':
+                        return {
+                            'repo': None,
+                            'repo_group': None,
+                            'child_repos_only': True
+                        }
                     raise colander.Invalid(node, '%r is not a valid scope' % cstruct)
             class IntegrationOptionsSchemaBase(colander.MappingSchema):
                 name = colander.SchemaNode(
                     colander.String(),
                     description=_('Short name for this integration.'),
                     missing=colander.required,
                     title=_('Integration name'),
                 )
                 scope = colander.SchemaNode(
-                    IntegrationScope(),
+                    IntegrationScopeType(),
                     description=_(
-                        'Scope of the integration. Group scope means the integration '
+                        'Scope of the integration. Recursive means the integration '
-                        ' runs on all child repos of that group.'),
+                        ' runs on all repos of that group and children recursively.'),
                     title=_('Integration scope'),
                     validator=deferred_integration_scopes_validator,
                     widget=deferred_integration_scopes_widget,
                     missing=colander.required,
                 )
                 enabled = colander.SchemaNode(
                     colander.Bool(),
                     default=True,
                     description=_('Enable or disable this integration.'),
                     missing=False,
                     title=_('Enabled'),
                 )
             def make_integration_schema(IntegrationType, settings=None):
                 """
                 Return a colander schema for an integration type
                 :param IntegrationType: the integration type class
                 :param settings: existing integration settings dict (optional)
                 """
                 settings = settings or {}
                 settings_schema = IntegrationType(settings=settings).settings_schema()
                 class IntegrationSchema(colander.Schema):
                     options = IntegrationOptionsSchemaBase()
                 schema = IntegrationSchema()
                 schema['options'].title = _('General integration options')
                 settings_schema.name = 'settings'
                 settings_schema.title = _('{integration_type} settings').format(
                     integration_type=IntegrationType.display_name)
                 schema.add(settings_schema)
                 return schema

rhodecode/templates/admin/integrations/list.html

0 +7 -4

             ## -*- coding: utf-8 -*-
             <%inherit file="base.html"/>
             <%def name="breadcrumbs_links()">
               %if c.repo:
                 ${h.link_to('Settings',h.url('edit_repo', repo_name=c.repo.repo_name))}
               %elif c.repo_group:
                 ${h.link_to(_('Admin'),h.url('admin_home'))}
                 &raquo;
                 ${h.link_to(_('Repository Groups'),h.url('repo_groups'))}
                 &raquo;
                 ${h.link_to(c.repo_group.group_name,h.url('edit_repo_group', group_name=c.repo_group.group_name))}
               %else:
                 ${h.link_to(_('Admin'),h.url('admin_home'))}
                 &raquo;
                 ${h.link_to(_('Settings'),h.url('admin_settings'))}
               %endif
               %if current_IntegrationType:
                 &raquo;
                 %if c.repo:
                 ${h.link_to(_('Integrations'),
                   request.route_url(route_name='repo_integrations_home',
                                     repo_name=c.repo.repo_name))}
                 %elif c.repo_group:
                 ${h.link_to(_('Integrations'),
                   request.route_url(route_name='repo_group_integrations_home',
                                     repo_group_name=c.repo_group.group_name))}
                 %else:
                 ${h.link_to(_('Integrations'),
                   request.route_url(route_name='global_integrations_home'))}
                 %endif
                 &raquo;
                 ${current_IntegrationType.display_name}
               %else:
                 &raquo;
                 ${_('Integrations')}
               %endif
             </%def>
             <div class="panel panel-default">
               <div class="panel-heading">
                 <h3 class="panel-title">
                   %if c.repo:
                     ${_('Current Integrations for Repository: {repo_name}').format(repo_name=c.repo.repo_name)}
                   %elif c.repo_group:
                     ${_('Current Integrations for repository group: {repo_group_name}').format(repo_group_name=c.repo_group.group_name)}
                   %else:
                       ${_('Current Integrations')}
                   %endif
                   </h3>
               </div>
               <div class="panel-body">
                 <%
                 if c.repo:
                   home_url = request.route_path('repo_integrations_home',
                                                 repo_name=c.repo.repo_name)
                 elif c.repo_group:
                   home_url = request.route_path('repo_group_integrations_home',
                                                 repo_group_name=c.repo_group.group_name)
                 else:
                   home_url = request.route_path('global_integrations_home')
                 %>
                 <a href="${home_url}" class="btn ${not current_IntegrationType and 'btn-primary' or ''}">${_('All')}</a>
                 %for integration_key, IntegrationType in available_integrations.items():
                     <%
                     if c.repo:
                       list_url = request.route_path('repo_integrations_list',
                                                     repo_name=c.repo.repo_name,
                                                     integration=integration_key)
                     elif c.repo_group:
                       list_url = request.route_path('repo_group_integrations_list',
                                                     repo_group_name=c.repo_group.group_name,
                                                     integration=integration_key)
                     else:
                       list_url = request.route_path('global_integrations_list',
                                                    integration=integration_key)
                     %>
                   <a href="${list_url}"
                      class="btn ${current_IntegrationType and integration_key == current_IntegrationType.key and 'btn-primary' or ''}">
                     ${IntegrationType.display_name}
                   </a>
                 %endfor
                 <%
                 if c.repo:
                   create_url = h.route_path('repo_integrations_new', repo_name=c.repo.repo_name)
                 elif c.repo_group:
                   create_url = h.route_path('repo_group_integrations_new', repo_group_name=c.repo_group.group_name)
                 else:
                   create_url = h.route_path('global_integrations_new')
                 %>
                 <p class="pull-right">
                   <a href="${create_url}" class="btn btn-small btn-success">${_(u'Create new integration')}</a>
                 </p>
                 <table class="rctable integrations">
                   <thead>
                     <tr>
                         <th><a href="?sort=enabled:${rev_sort_dir}">${_('Enabled')}</a></th>
                         <th><a href="?sort=name:${rev_sort_dir}">${_('Name')}</a></th>
                         <th colspan="2"><a href="?sort=integration_type:${rev_sort_dir}">${_('Type')}</a></th>
                         <th><a href="?sort=scope:${rev_sort_dir}">${_('Scope')}</a></th>
                         <th>${_('Actions')}</th>
                         <th></th>
                     </tr>
                   </thead>
                   <tbody>
               %if not integrations_list:
                     <tr>
                       <td colspan="7">
                       <% integration_type = current_IntegrationType and current_IntegrationType.display_name or '' %>
                         %if c.repo:
                           ${_('No {type} integrations for repo {repo} exist yet.').format(type=integration_type, repo=c.repo.repo_name)}
                         %elif c.repo_group:
                           ${_('No {type} integrations for repogroup {repogroup} exist yet.').format(type=integration_type, repogroup=c.repo_group.group_name)}
                         %else:
                           ${_('No {type} integrations exist yet.').format(type=integration_type)}
                         %endif
                         %if current_IntegrationType:
                         <%
                         if c.repo:
                           create_url = h.route_path('repo_integrations_create', repo_name=c.repo.repo_name, integration=current_IntegrationType.key)
                         elif c.repo_group:
                           create_url = h.route_path('repo_group_integrations_create', repo_group_name=c.repo_group.group_name, integration=current_IntegrationType.key)
                         else:
                           create_url = h.route_path('global_integrations_create', integration=current_IntegrationType.key)
                         %>
                         %endif
                         <a href="${create_url}">${_(u'Create one')}</a>
                       </td>
                     </tr>
               %endif
               %for IntegrationType, integration in integrations_list:
                     <tr id="integration_${integration.integration_id}">
                       <td class="td-enabled">
                         %if integration.enabled:
                         <div class="flag_status approved pull-left"></div>
                         %else:
                         <div class="flag_status rejected pull-left"></div>
                         %endif
                       </td>
                       <td class="td-description">
                         ${integration.name}
                       </td>
                       <td class="td-icon">
                         %if integration.integration_type in available_integrations:
                         <div class="integration-icon">
                           ${available_integrations[integration.integration_type].icon|n}
                         </div>
                         %else:
                           ?
                         %endif
                       </td>
                       <td class="td-type">
                         ${integration.integration_type}
                       </td>
                       <td class="td-scope">
                         %if integration.repo:
                         <a href="${h.url('summary_home', repo_name=integration.repo.repo_name)}">
                           ${_('repo')}:${integration.repo.repo_name}
                         </a>
                         %elif integration.repo_group:
                         <a href="${h.url('repo_group_home', group_name=integration.repo_group.group_name)}">
                           ${_('repogroup')}:${integration.repo_group.group_name}
+                          %if integration.child_repos_only:
+                          ${_('child repos only')}
+                          %else:
+                          ${_('cascade to all')}
+                          %endif
                         </a>
                         %else:
-                          %if integration.scope == 'root_repos':
+                          %if integration.child_repos_only:
                           ${_('top level repos only')}
-                          %elif integration.scope == 'global':
+                          %else:
                           ${_('global')}
-                          %else:
-                          ${_('unknown scope')}: ${integration.scope}
                           %endif
                       </td>
                       %endif
                       <td class="td-action">
                       %if not IntegrationType:
                       ${_('unknown integration')}
                       %else:
                         <%
                         if c.repo:
                           edit_url = request.route_path('repo_integrations_edit',
                                                         repo_name=c.repo.repo_name,
                                                         integration=integration.integration_type,
                                                         integration_id=integration.integration_id)
                         elif c.repo_group:
                           edit_url = request.route_path('repo_group_integrations_edit',
                                                         repo_group_name=c.repo_group.group_name,
                                                         integration=integration.integration_type,
                                                         integration_id=integration.integration_id)
                         else:
                           edit_url = request.route_path('global_integrations_edit',
                                                        integration=integration.integration_type,
                                                        integration_id=integration.integration_id)
                         %>
                         <div class="grid_edit">
                           <a href="${edit_url}">${_('Edit')}</a>
                         </div>
                         <div class="grid_delete">
                           <a href="${edit_url}"
                              class="btn btn-link btn-danger delete_integration_entry"
                              data-desc="${integration.name}"
                              data-uid="${integration.integration_id}">
                               ${_('Delete')}
                           </a>
                         </div>
                       %endif
                       </td>
                     </tr>
                 %endfor
                   <tr id="last-row"></tr>
                   </tbody>
                 </table>
                 <div class="integrations-paginator">
                   <div class="pagination-wh pagination-left">
                   ${integrations_list.pager('$link_previous ~2~ $link_next')}
                   </div>
                 </div>
               </div>
             </div>
             <script type="text/javascript">
               var delete_integration = function(entry) {
                 if (confirm("Confirm to remove this integration: "+$(entry).data('desc'))) {
                   var request = $.ajax({
                     type: "POST",
                     url: $(entry).attr('href'),
                     data: {
                       'delete': 'delete',
                       'csrf_token': CSRF_TOKEN
                     },
                     success: function(){
                       location.reload();
                     },
                     error: function(data, textStatus, errorThrown){
                       alert("Error while deleting entry.\nError code {0} ({1}). URL: {2}".format(data.status,data.statusText,$(entry)[0].url));
                     }
                   });
                 };
               }
               $('.delete_integration_entry').on('click', function(e){
                 e.preventDefault();
                 delete_integration(this);
               });
             </script>

rhodecode/tests/functional/test_integrations.py

0 +3 -1

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import mock
             import pytest
             from webob.exc import HTTPNotFound
             import rhodecode
             from rhodecode.model.db import Integration
             from rhodecode.model.meta import Session
             from rhodecode.tests import assert_session_flash, url, TEST_USER_ADMIN_LOGIN
             from rhodecode.tests.utils import AssertResponse
             from rhodecode.integrations import integration_type_registry
             from rhodecode.config.routing import ADMIN_PREFIX
             @pytest.mark.usefixtures('app', 'autologin_user')
             class TestIntegrationsView(object):
                 pass
             class TestGlobalIntegrationsView(TestIntegrationsView):
                 def test_index_no_integrations(self, app):
                     url = ADMIN_PREFIX + '/integrations'
                     response = app.get(url)
                     assert response.status_code == 200
                     assert 'exist yet' in response.body
                 def test_index_with_integrations(self, app, global_integration_stub):
                     url = ADMIN_PREFIX + '/integrations'
                     response = app.get(url)
                     assert response.status_code == 200
                     assert 'exist yet' not in response.body
                     assert global_integration_stub.name in response.body
                 def test_new_integration_page(self, app):
                     url = ADMIN_PREFIX + '/integrations/new'
                     response = app.get(url)
                     assert response.status_code == 200
                     for integration_key in integration_type_registry:
                         nurl = (ADMIN_PREFIX + '/integrations/{integration}/new').format(
                                 integration=integration_key)
                         assert nurl in response.body
                 @pytest.mark.parametrize(
                     'IntegrationType', integration_type_registry.values())
                 def test_get_create_integration_page(self, app, IntegrationType):
                     url = ADMIN_PREFIX + '/integrations/{integration_key}/new'.format(
                         integration_key=IntegrationType.key)
                     response = app.get(url)
                     assert response.status_code == 200
                     assert IntegrationType.display_name in response.body
                 def test_post_integration_page(self, app, StubIntegrationType, csrf_token,
                                                test_repo_group, backend_random):
                     url = ADMIN_PREFIX + '/integrations/{integration_key}/new'.format(
                         integration_key=StubIntegrationType.key)
                     _post_integration_test_helper(app, url, csrf_token, admin_view=True,
                         repo=backend_random.repo, repo_group=test_repo_group)
             class TestRepoGroupIntegrationsView(TestIntegrationsView):
                 def test_index_no_integrations(self, app, test_repo_group):
                     url = '/{repo_group_name}/settings/integrations'.format(
                         repo_group_name=test_repo_group.group_name)
                     response = app.get(url)
                     assert response.status_code == 200
                     assert 'exist yet' in response.body
                 def test_index_with_integrations(self, app, test_repo_group,
                                                  repogroup_integration_stub):
                     url = '/{repo_group_name}/settings/integrations'.format(
                         repo_group_name=test_repo_group.group_name)
                     stub_name = repogroup_integration_stub.name
                     response = app.get(url)
                     assert response.status_code == 200
                     assert 'exist yet' not in response.body
                     assert stub_name in response.body
                 def test_new_integration_page(self, app, test_repo_group):
                     repo_group_name = test_repo_group.group_name
                     url = '/{repo_group_name}/settings/integrations/new'.format(
                         repo_group_name=test_repo_group.group_name)
                     response = app.get(url)
                     assert response.status_code == 200
                     for integration_key in integration_type_registry:
                         nurl = ('/{repo_group_name}/settings/integrations'
                                 '/{integration}/new').format(
                                 repo_group_name=repo_group_name,
                                 integration=integration_key)
                         assert nurl in response.body
                 @pytest.mark.parametrize(
                     'IntegrationType', integration_type_registry.values())
                 def test_get_create_integration_page(self, app, test_repo_group,
                                                      IntegrationType):
                     repo_group_name = test_repo_group.group_name
                     url = ('/{repo_group_name}/settings/integrations/{integration_key}/new'
                            ).format(repo_group_name=repo_group_name,
                                     integration_key=IntegrationType.key)
                     response = app.get(url)
                     assert response.status_code == 200
                     assert IntegrationType.display_name in response.body
                 def test_post_integration_page(self, app, test_repo_group, backend_random,
                                                StubIntegrationType, csrf_token):
                     repo_group_name = test_repo_group.group_name
                     url = ('/{repo_group_name}/settings/integrations/{integration_key}/new'
                            ).format(repo_group_name=repo_group_name,
                                     integration_key=StubIntegrationType.key)
                     _post_integration_test_helper(app, url, csrf_token, admin_view=False,
                         repo=backend_random.repo, repo_group=test_repo_group)
             class TestRepoIntegrationsView(TestIntegrationsView):
                 def test_index_no_integrations(self, app, backend_random):
                     url = '/{repo_name}/settings/integrations'.format(
                         repo_name=backend_random.repo.repo_name)
                     response = app.get(url)
                     assert response.status_code == 200
                     assert 'exist yet' in response.body
                 def test_index_with_integrations(self, app, repo_integration_stub):
                     url = '/{repo_name}/settings/integrations'.format(
                         repo_name=repo_integration_stub.repo.repo_name)
                     stub_name = repo_integration_stub.name
                     response = app.get(url)
                     assert response.status_code == 200
                     assert stub_name in response.body
                     assert 'exist yet' not in response.body
                 def test_new_integration_page(self, app, backend_random):
                     repo_name = backend_random.repo.repo_name
                     url = '/{repo_name}/settings/integrations/new'.format(
                         repo_name=repo_name)
                     response = app.get(url)
                     assert response.status_code == 200
                     for integration_key in integration_type_registry:
                         nurl = ('/{repo_name}/settings/integrations'
                                 '/{integration}/new').format(
                                 repo_name=repo_name,
                                 integration=integration_key)
                         assert nurl in response.body
                 @pytest.mark.parametrize(
                     'IntegrationType', integration_type_registry.values())
                 def test_get_create_integration_page(self, app, backend_random,
                                                      IntegrationType):
                     repo_name = backend_random.repo.repo_name
                     url = '/{repo_name}/settings/integrations/{integration_key}/new'.format(
                         repo_name=repo_name, integration_key=IntegrationType.key)
                     response = app.get(url)
                     assert response.status_code == 200
                     assert IntegrationType.display_name in response.body
                 def test_post_integration_page(self, app, backend_random, test_repo_group,
                                                StubIntegrationType, csrf_token):
                     repo_name = backend_random.repo.repo_name
                     url = '/{repo_name}/settings/integrations/{integration_key}/new'.format(
                         repo_name=repo_name, integration_key=StubIntegrationType.key)
                     _post_integration_test_helper(app, url, csrf_token, admin_view=False,
                         repo=backend_random.repo, repo_group=test_repo_group)
             def _post_integration_test_helper(app, url, csrf_token, repo, repo_group,
                                               admin_view):
                 """
                 Posts form data to create integration at the url given then deletes it and
                 checks if the redirect url is correct.
                 """
                 app.post(url, params={}, status=403) # missing csrf check
                 response = app.post(url, params={'csrf_token': csrf_token})
                 assert response.status_code == 200
                 assert 'Errors exist' in response.body
                 scopes_destinations = [
                     ('global',
                         ADMIN_PREFIX + '/integrations'),
-                    ('root_repos',
+                    ('root-repos',
                             ADMIN_PREFIX + '/integrations'),
                     ('repo:%s' % repo.repo_name,
                             '/%s/settings/integrations' % repo.repo_name),
                     ('repogroup:%s' % repo_group.group_name,
                             '/%s/settings/integrations' % repo_group.group_name),
+                    ('repogroup-recursive:%s' % repo_group.group_name,
+                            '/%s/settings/integrations' % repo_group.group_name),
                 ]
                 for scope, destination in scopes_destinations:
                     if admin_view:
                         destination = ADMIN_PREFIX + '/integrations'
                     form_data = [
                         ('csrf_token', csrf_token),
                         ('__start__', 'options:mapping'),
                         ('name', 'test integration'),
                         ('scope', scope),
                         ('enabled', 'true'),
                         ('__end__', 'options:mapping'),
                         ('__start__', 'settings:mapping'),
                         ('test_int_field', '34'),
                         ('test_string_field', ''), # empty value on purpose as it's required
                         ('__end__', 'settings:mapping'),
                     ]
                     errors_response = app.post(url, form_data)
                     assert 'Errors exist' in errors_response.body
                     form_data[-2] = ('test_string_field', 'data!')
                     assert Session().query(Integration).count() == 0
                     created_response = app.post(url, form_data)
                     assert Session().query(Integration).count() == 1
                     delete_response = app.post(
                         created_response.location,
                         params={'csrf_token': csrf_token, 'delete': 'delete'})
                     assert Session().query(Integration).count() == 0
                     assert delete_response.location.endswith(destination)

rhodecode/tests/integrations/test_integration.py

0 +90 -60

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import time
             import pytest
             from rhodecode import events
             from rhodecode.tests.fixture import Fixture
             from rhodecode.model.db import Session, Integration
             from rhodecode.model.integration import IntegrationModel
             from rhodecode.integrations.types.base import IntegrationTypeBase
             class TestDeleteScopesDeletesIntegrations(object):
                 def test_delete_repo_with_integration_deletes_integration(self,
                     repo_integration_stub):
                     Session().delete(repo_integration_stub.repo)
                     Session().commit()
                     Session().expire_all()
                     integration = Integration.get(repo_integration_stub.integration_id)
                     assert integration is None
                 def test_delete_repo_group_with_integration_deletes_integration(self,
                     repogroup_integration_stub):
                     Session().delete(repogroup_integration_stub.repo_group)
                     Session().commit()
                     Session().expire_all()
                     integration = Integration.get(repogroup_integration_stub.integration_id)
                     assert integration is None
             @pytest.fixture
             def integration_repos(request, StubIntegrationType, stub_integration_settings):
                 """
                 Create repositories and integrations for testing, and destroy them after
+                Structure:
+                    root_repo
+                    parent_group/
+                        parent_repo
+                        child_group/
+                            child_repo
+                    other_group/
+                        other_repo
                 """
                 fixture = Fixture()
-                repo_group_1_id = 'int_test_repo_group_1_%s' % time.time()
-                repo_group_1 = fixture.create_repo_group(repo_group_1_id)
+                parent_group_id = 'int_test_parent_group_%s' % time.time()
-                repo_group_2_id = 'int_test_repo_group_2_%s' % time.time()
+                parent_group = fixture.create_repo_group(parent_group_id)
-                repo_group_2 = fixture.create_repo_group(repo_group_2_id)
+                other_group_id = 'int_test_other_group_%s' % time.time()
+                other_group = fixture.create_repo_group(other_group_id)
-                repo_1_id = 'int_test_repo_1_%s' % time.time()
+                child_group_id = (
-                repo_1 = fixture.create_repo(repo_1_id, repo_group=repo_group_1)
+                    parent_group_id + '/' + 'int_test_child_group_%s' % time.time())
-                repo_2_id = 'int_test_repo_2_%s' % time.time()
+                child_group = fixture.create_repo_group(child_group_id)
-                repo_2 = fixture.create_repo(repo_2_id, repo_group=repo_group_2)
+                parent_repo_id = 'int_test_parent_repo_%s' % time.time()
+                parent_repo = fixture.create_repo(parent_repo_id, repo_group=parent_group)
+                child_repo_id = 'int_test_child_repo_%s' % time.time()
+                child_repo = fixture.create_repo(child_repo_id, repo_group=child_group)
+                other_repo_id = 'int_test_other_repo_%s' % time.time()
+                other_repo = fixture.create_repo(other_repo_id, repo_group=other_group)
                 root_repo_id = 'int_test_repo_root_%s' % time.time()
                 root_repo = fixture.create_repo(root_repo_id)
-                integration_global = IntegrationModel().create(
+                integrations = {}
-                    StubIntegrationType, settings=stub_integration_settings,
+                for name, repo, repo_group, child_repos_only in [
-                    enabled=True, name='test global integration', scope='global')
+                        ('global', None, None, None),
-                integration_root_repos = IntegrationModel().create(
+                        ('root_repos', None, None, True),
-                    StubIntegrationType, settings=stub_integration_settings,
+                        ('parent_repo', parent_repo, None, None),
-                    enabled=True, name='test root repos integration', scope='root_repos')
+                        ('child_repo', child_repo, None, None),
-                integration_repo_1 = IntegrationModel().create(
+                        ('other_repo', other_repo, None, None),
-                    StubIntegrationType, settings=stub_integration_settings,
+                        ('root_repo', root_repo, None, None),
-                    enabled=True, name='test repo 1 integration', scope=repo_1)
+                        ('parent_group', None, parent_group, True),
-                integration_repo_group_1 = IntegrationModel().create(
+                        ('parent_group_recursive', None, parent_group, False),
-                    StubIntegrationType, settings=stub_integration_settings,
+                        ('child_group', None, child_group, True),
-                    enabled=True, name='test repo group 1 integration', scope=repo_group_1)
+                        ('child_group_recursive', None, child_group, False),
-                integration_repo_2 = IntegrationModel().create(
+                        ('other_group', None, other_group, True),
-                    StubIntegrationType, settings=stub_integration_settings,
+                        ('other_group_recursive', None, other_group, False),
-                    enabled=True, name='test repo 2 integration', scope=repo_2)
+                    ]:
-                integration_repo_group_2 = IntegrationModel().create(
+                    integrations[name] = IntegrationModel().create(
-                    StubIntegrationType, settings=stub_integration_settings,
+                        StubIntegrationType, settings=stub_integration_settings,
-                    enabled=True, name='test repo group 2 integration', scope=repo_group_2)
+                        enabled=True, name='test %s integration' % name,
+                        repo=repo, repo_group=repo_group, child_repos_only=child_repos_only)
                 Session().commit()
                 def _cleanup():
-                    Session().delete(integration_global)
+                    for integration in integrations.values():
-                    Session().delete(integration_root_repos)
+                        Session.delete(integration)
-                    Session().delete(integration_repo_1)
-                    Session().delete(integration_repo_group_1)
-                    Session().delete(integration_repo_2)
-                    Session().delete(integration_repo_group_2)
                     fixture.destroy_repo(root_repo)
-                    fixture.destroy_repo(repo_1)
+                    fixture.destroy_repo(child_repo)
-                    fixture.destroy_repo(repo_2)
+                    fixture.destroy_repo(parent_repo)
-                    fixture.destroy_repo_group(repo_group_1)
+                    fixture.destroy_repo(other_repo)
-                    fixture.destroy_repo_group(repo_group_2)
+                    fixture.destroy_repo_group(child_group)
+                    fixture.destroy_repo_group(parent_group)
+                    fixture.destroy_repo_group(other_group)
                 request.addfinalizer(_cleanup)
                 return {
+                    'integrations': integrations,
                     'repos': {
-                        'repo_1': repo_1,
-                        'repo_2': repo_2,
                         'root_repo': root_repo,
-                    },
+                        'other_repo': other_repo,
-                    'repo_groups': {
+                        'parent_repo': parent_repo,
-                        'repo_group_1': repo_group_1,
+                            'child_repo': child_repo,
-                        'repo_group_2': repo_group_2,
-                    },
-                    'integrations': {
-                        'global': integration_global,
-                        'root_repos': integration_root_repos,
-                        'repo_1': integration_repo_1,
-                        'repo_2': integration_repo_2,
-                        'repo_group_1': integration_repo_group_1,
-                        'repo_group_2': integration_repo_group_2,
                     }
                 }
             def test_enabled_integration_repo_scopes(integration_repos):
                 integrations = integration_repos['integrations']
                 repos = integration_repos['repos']
                 triggered_integrations = IntegrationModel().get_for_event(
                     events.RepoEvent(repos['root_repo']))
                 assert triggered_integrations == [
                     integrations['global'],
-                    integrations['root_repos']
+                    integrations['root_repos'],
+                    integrations['root_repo'],
+                ]
+                triggered_integrations = IntegrationModel().get_for_event(
+                    events.RepoEvent(repos['other_repo']))
+                assert triggered_integrations == [
+                    integrations['global'],
+                    integrations['other_repo'],
+                    integrations['other_group'],
+                    integrations['other_group_recursive'],
                 ]
                 triggered_integrations = IntegrationModel().get_for_event(
-                    events.RepoEvent(repos['repo_1']))
+                    events.RepoEvent(repos['parent_repo']))
                 assert triggered_integrations == [
                     integrations['global'],
-                    integrations['repo_1'],
+                    integrations['parent_repo'],
-                    integrations['repo_group_1']
+                    integrations['parent_group'],
+                    integrations['parent_group_recursive'],
                 ]
                 triggered_integrations = IntegrationModel().get_for_event(
-                    events.RepoEvent(repos['repo_2']))
+                    events.RepoEvent(repos['child_repo']))
                 assert triggered_integrations == [
                     integrations['global'],
-                    integrations['repo_2'],
+                    integrations['child_repo'],
-                    integrations['repo_group_2'],
+                    integrations['parent_group_recursive'],
+                    integrations['child_group'],
+                    integrations['child_group_recursive'],
                 ]
             def test_disabled_integration_repo_scopes(integration_repos):
                 integrations = integration_repos['integrations']
                 repos = integration_repos['repos']
                 for integration in integrations.values():
                     integration.enabled = False
                 Session().commit()
                 triggered_integrations = IntegrationModel().get_for_event(
                     events.RepoEvent(repos['root_repo']))
                 assert triggered_integrations == []
                 triggered_integrations = IntegrationModel().get_for_event(
-                    events.RepoEvent(repos['repo_1']))
+                    events.RepoEvent(repos['parent_repo']))
                 assert triggered_integrations == []
                 triggered_integrations = IntegrationModel().get_for_event(
-                    events.RepoEvent(repos['repo_2']))
+                    events.RepoEvent(repos['child_repo']))
                 assert triggered_integrations == []
+                triggered_integrations = IntegrationModel().get_for_event(
+                    events.RepoEvent(repos['other_repo']))
+                assert triggered_integrations == []
             def test_enabled_non_repo_integrations(integration_repos):
                 integrations = integration_repos['integrations']
                 triggered_integrations = IntegrationModel().get_for_event(
                     events.UserPreCreate({}))
                 assert triggered_integrations == [integrations['global']]

rhodecode/tests/models/schemas/test_integration_schema.py

0 +86 -35

             # -*- coding: utf-8 -*-
             # Copyright (C) 2016-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import colander
             import pytest
             from rhodecode.model import validation_schema
             from rhodecode.integrations import integration_type_registry
             from rhodecode.integrations.types.base import IntegrationTypeBase
             from rhodecode.model.validation_schema.schemas.integration_schema import (
                 make_integration_schema
             )
             @pytest.mark.usefixtures('app', 'autologin_user')
             class TestIntegrationSchema(object):
                 def test_deserialize_integration_schema_perms(self, backend_random,
                                                               test_repo_group,
                                                               StubIntegrationType):
                     repo = backend_random.repo
                     repo_group = test_repo_group
                     empty_perms_dict = {
                         'global': [],
                         'repositories': {},
                         'repositories_groups': {},
                     }
-                    perms_tests = {
+                    perms_tests = [
-                        ('repo:%s' % repo.repo_name, repo): [
-                            ({},  False),
+                            'repo:%s' % repo.repo_name,
-                            ({'global': ['hg.admin']},  True),
-                            ({'global': []},  False),
+                                'child_repos_only': None,
-                            ({'repositories': {repo.repo_name: 'repository.admin'}}, True),
+                                'repo_group': None,
-                            ({'repositories': {repo.repo_name: 'repository.read'}}, False),
+                                'repo': repo,
-                            ({'repositories': {repo.repo_name: 'repository.write'}}, False),
+                            },
-                            ({'repositories': {repo.repo_name: 'repository.none'}}, False),
-                        ],
+                                ({},  False),
-                        ('repogroup:%s' % repo_group.group_name, repo_group): [
+                                ({'global': ['hg.admin']},  True),
-                            ({},  False),
+                                ({'global': []},  False),
-                            ({'global': ['hg.admin']},  True),
+                                ({'repositories': {repo.repo_name: 'repository.admin'}}, True),
-                            ({'global': []},  False),
+                                ({'repositories': {repo.repo_name: 'repository.read'}}, False),
-                            ({'repositories_groups':
+                                ({'repositories': {repo.repo_name: 'repository.write'}}, False),
-                                {repo_group.group_name: 'group.admin'}}, True),
+                                ({'repositories': {repo.repo_name: 'repository.none'}}, False),
-                            ({'repositories_groups':
-                                {repo_group.group_name: 'group.read'}}, False),
+                        ),
-                            ({'repositories_groups':
-                                {repo_group.group_name: 'group.write'}}, False),
+                            'repogroup:%s' % repo_group.group_name,
-                            ({'repositories_groups':
-                                {repo_group.group_name: 'group.none'}}, False),
+                                'repo': None,
-                        ],
+                                'repo_group': repo_group,
-                        ('global', 'global'): [
+                                'child_repos_only': True,
-                            ({},  False),
+                            },
-                            ({'global': ['hg.admin']},  True),
-                            ({'global': []},  False),
+                                ({},  False),
-                        ],
+                                ({'global': ['hg.admin']},  True),
-                        ('root_repos', 'root_repos'): [
+                                ({'global': []},  False),
-                            ({},  False),
+                                ({'repositories_groups':
-                            ({'global': ['hg.admin']},  True),
+                                    {repo_group.group_name: 'group.admin'}}, True),
-                            ({'global': []},  False),
+                                ({'repositories_groups':
-                        ],
+                                    {repo_group.group_name: 'group.read'}}, False),
+                                ({'repositories_groups':
+                                    {repo_group.group_name: 'group.write'}}, False),
+                                ({'repositories_groups':
+                                    {repo_group.group_name: 'group.none'}}, False),
+                            ]
+                        ),
+                        (
+                            'repogroup-recursive:%s' % repo_group.group_name,
+                            {
+                                'repo': None,
+                                'repo_group': repo_group,
+                                'child_repos_only': False,
+                            },
+                            [
+                                ({},  False),
+                                ({'global': ['hg.admin']},  True),
+                                ({'global': []},  False),
+                                ({'repositories_groups':
+                                    {repo_group.group_name: 'group.admin'}}, True),
+                                ({'repositories_groups':
+                                    {repo_group.group_name: 'group.read'}}, False),
+                                ({'repositories_groups':
+                                    {repo_group.group_name: 'group.write'}}, False),
+                                ({'repositories_groups':
+                                    {repo_group.group_name: 'group.none'}}, False),
+                            ]
+                        ),
+                        (
+                            'global',
+                            {
+                                'repo': None,
+                                'repo_group': None,
+                                'child_repos_only': False,
+                            }, [
+                                ({},  False),
+                                ({'global': ['hg.admin']},  True),
+                                ({'global': []},  False),
+                            ]
+                        ),
+                        (
+                            'root-repos',
+                            {
+                                'repo': None,
+                                'repo_group': None,
+                                'child_repos_only': True,
+                            }, [
+                                ({},  False),
+                                ({'global': ['hg.admin']},  True),
+                                ({'global': []},  False),
+                            ]
+                        ),
+                    ]
-                    for (scope_input, scope_output), perms_allowed in perms_tests.items():
+                    for scope_input, scope_output, perms_allowed in perms_tests:
                         for perms_update, allowed in perms_allowed:
                             perms = dict(empty_perms_dict, **perms_update)
                             schema = make_integration_schema(
                                 IntegrationType=StubIntegrationType
                             ).bind(permissions=perms)
                             input_data = {
                                 'options': {
                                     'enabled': 'true',
                                     'scope': scope_input,
                                     'name': 'test integration',
                                 },
                                 'settings': {
                                     'test_string_field': 'stringy',
                                     'test_int_field': '100',
                                 }
                             }
                             if not allowed:
                                 with pytest.raises(colander.Invalid):
                                     schema.deserialize(input_data)
                             else:
                                 assert schema.deserialize(input_data) == {
                                     'options': {
                                         'enabled': True,
                                         'scope': scope_output,
                                         'name': 'test integration',
                                     },
                                     'settings': {
                                         'test_string_field': 'stringy',
                                         'test_int_field': 100,
                                     }
                                 }

rhodecode/tests/plugin.py

0 +23 -4

             # -*- coding: utf-8 -*-
             # Copyright (C) 2010-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import collections
             import datetime
             import hashlib
             import os
             import re
             import pprint
             import shutil
             import socket
             import subprocess
             import time
             import uuid
             import mock
             import pyramid.testing
             import pytest
             import colander
             import requests
             from webtest.app import TestApp
             import rhodecode
             from rhodecode.model.changeset_status import ChangesetStatusModel
             from rhodecode.model.comment import ChangesetCommentsModel
             from rhodecode.model.db import (
                 PullRequest, Repository, RhodeCodeSetting, ChangesetStatus, RepoGroup,
                 UserGroup, RepoRhodeCodeUi, RepoRhodeCodeSetting, RhodeCodeUi, Integration)
             from rhodecode.model.meta import Session
             from rhodecode.model.pull_request import PullRequestModel
             from rhodecode.model.repo import RepoModel
             from rhodecode.model.repo_group import RepoGroupModel
             from rhodecode.model.user import UserModel
             from rhodecode.model.settings import VcsSettingsModel
             from rhodecode.model.user_group import UserGroupModel
             from rhodecode.model.integration import IntegrationModel
             from rhodecode.integrations import integration_type_registry
             from rhodecode.integrations.types.base import IntegrationTypeBase
             from rhodecode.lib.utils import repo2db_mapper
             from rhodecode.lib.vcs import create_vcsserver_proxy
             from rhodecode.lib.vcs.backends import get_backend
             from rhodecode.lib.vcs.nodes import FileNode
             from rhodecode.tests import (
                 login_user_session, get_new_dir, utils, TESTS_TMP_PATH,
                 TEST_USER_ADMIN_LOGIN, TEST_USER_REGULAR_LOGIN, TEST_USER_REGULAR2_LOGIN,
                 TEST_USER_REGULAR_PASS)
             from rhodecode.tests.fixture import Fixture
             def _split_comma(value):
                 return value.split(',')
             def pytest_addoption(parser):
                 parser.addoption(
                     '--keep-tmp-path', action='store_true',
                     help="Keep the test temporary directories")
                 parser.addoption(
                     '--backends', action='store', type=_split_comma,
                     default=['git', 'hg', 'svn'],
                     help="Select which backends to test for backend specific tests.")
                 parser.addoption(
                     '--dbs', action='store', type=_split_comma,
                     default=['sqlite'],
                     help="Select which database to test for database specific tests. "
                          "Possible options are sqlite,postgres,mysql")
                 parser.addoption(
                     '--appenlight', '--ae', action='store_true',
                     help="Track statistics in appenlight.")
                 parser.addoption(
                     '--appenlight-api-key', '--ae-key',
                     help="API key for Appenlight.")
                 parser.addoption(
                     '--appenlight-url', '--ae-url',
                     default="https://ae.rhodecode.com",
                     help="Appenlight service URL, defaults to https://ae.rhodecode.com")
                 parser.addoption(
                     '--sqlite-connection-string', action='store',
                     default='', help="Connection string for the dbs tests with SQLite")
                 parser.addoption(
                     '--postgres-connection-string', action='store',
                     default='', help="Connection string for the dbs tests with Postgres")
                 parser.addoption(
                     '--mysql-connection-string', action='store',
                     default='', help="Connection string for the dbs tests with MySQL")
                 parser.addoption(
                     '--repeat', type=int, default=100,
                     help="Number of repetitions in performance tests.")
             def pytest_configure(config):
                 # Appy the kombu patch early on, needed for test discovery on Python 2.7.11
                 from rhodecode.config import patches
                 patches.kombu_1_5_1_python_2_7_11()
             def pytest_collection_modifyitems(session, config, items):
                 # nottest marked, compare nose, used for transition from nose to pytest
                 remaining = [
                     i for i in items if getattr(i.obj, '__test__', True)]
                 items[:] = remaining
             def pytest_generate_tests(metafunc):
                 # Support test generation based on --backend parameter
                 if 'backend_alias' in metafunc.fixturenames:
                     backends = get_backends_from_metafunc(metafunc)
                     scope = None
                     if not backends:
                         pytest.skip("Not enabled for any of selected backends")
                     metafunc.parametrize('backend_alias', backends, scope=scope)
                 elif hasattr(metafunc.function, 'backends'):
                     backends = get_backends_from_metafunc(metafunc)
                     if not backends:
                         pytest.skip("Not enabled for any of selected backends")
             def get_backends_from_metafunc(metafunc):
                 requested_backends = set(metafunc.config.getoption('--backends'))
                 if hasattr(metafunc.function, 'backends'):
                     # Supported backends by this test function, created from
                     # pytest.mark.backends
                     backends = metafunc.function.backends.args
                 elif hasattr(metafunc.cls, 'backend_alias'):
                     # Support class attribute "backend_alias", this is mainly
                     # for legacy reasons for tests not yet using pytest.mark.backends
                     backends = [metafunc.cls.backend_alias]
                 else:
                     backends = metafunc.config.getoption('--backends')
                 return requested_backends.intersection(backends)
             @pytest.fixture(scope='session', autouse=True)
             def activate_example_rcextensions(request):
                 """
                 Patch in an example rcextensions module which verifies passed in kwargs.
                 """
                 from rhodecode.tests.other import example_rcextensions
                 old_extensions = rhodecode.EXTENSIONS
                 rhodecode.EXTENSIONS = example_rcextensions
                 @request.addfinalizer
                 def cleanup():
                     rhodecode.EXTENSIONS = old_extensions
             @pytest.fixture
             def capture_rcextensions():
                 """
                 Returns the recorded calls to entry points in rcextensions.
                 """
                 calls = rhodecode.EXTENSIONS.calls
                 calls.clear()
                 # Note: At this moment, it is still the empty dict, but that will
                 # be filled during the test run and since it is a reference this
                 # is enough to make it work.
                 return calls
             @pytest.fixture(scope='session')
             def http_environ_session():
                 """
                 Allow to use "http_environ" in session scope.
                 """
                 return http_environ(
                     http_host_stub=http_host_stub())
             @pytest.fixture
             def http_host_stub():
                 """
                 Value of HTTP_HOST in the test run.
                 """
                 return 'test.example.com:80'
             @pytest.fixture
             def http_environ(http_host_stub):
                 """
                 HTTP extra environ keys.
                 User by the test application and as well for setting up the pylons
                 environment. In the case of the fixture "app" it should be possible
                 to override this for a specific test case.
                 """
                 return {
                     'SERVER_NAME': http_host_stub.split(':')[0],
                     'SERVER_PORT': http_host_stub.split(':')[1],
                     'HTTP_HOST': http_host_stub,
                 }
             @pytest.fixture(scope='function')
             def app(request, pylonsapp, http_environ):
                 app = TestApp(
                     pylonsapp,
                     extra_environ=http_environ)
                 if request.cls:
                     request.cls.app = app
                 return app
             @pytest.fixture()
             def app_settings(pylonsapp, pylons_config):
                 """
                 Settings dictionary used to create the app.
                 Parses the ini file and passes the result through the sanitize and apply
                 defaults mechanism in `rhodecode.config.middleware`.
                 """
                 from paste.deploy.loadwsgi import loadcontext, APP
                 from rhodecode.config.middleware import (
                     sanitize_settings_and_apply_defaults)
                 context = loadcontext(APP, 'config:' + pylons_config)
                 settings = sanitize_settings_and_apply_defaults(context.config())
                 return settings
             LoginData = collections.namedtuple('LoginData', ('csrf_token', 'user'))
             def _autologin_user(app, *args):
                 session = login_user_session(app, *args)
                 csrf_token = rhodecode.lib.auth.get_csrf_token(session)
                 return LoginData(csrf_token, session['rhodecode_user'])
             @pytest.fixture
             def autologin_user(app):
                 """
                 Utility fixture which makes sure that the admin user is logged in
                 """
                 return _autologin_user(app)
             @pytest.fixture
             def autologin_regular_user(app):
                 """
                 Utility fixture which makes sure that the regular user is logged in
                 """
                 return _autologin_user(
                     app, TEST_USER_REGULAR_LOGIN, TEST_USER_REGULAR_PASS)
             @pytest.fixture(scope='function')
             def csrf_token(request, autologin_user):
                 return autologin_user.csrf_token
             @pytest.fixture(scope='function')
             def xhr_header(request):
                 return {'HTTP_X_REQUESTED_WITH': 'XMLHttpRequest'}
             @pytest.fixture
             def real_crypto_backend(monkeypatch):
                 """
                 Switch the production crypto backend on for this test.
                 During the test run the crypto backend is replaced with a faster
                 implementation based on the MD5 algorithm.
                 """
                 monkeypatch.setattr(rhodecode, 'is_test', False)
             @pytest.fixture(scope='class')
             def index_location(request, pylonsapp):
                 index_location = pylonsapp.config['app_conf']['search.location']
                 if request.cls:
                     request.cls.index_location = index_location
                 return index_location
             @pytest.fixture(scope='session', autouse=True)
             def tests_tmp_path(request):
                 """
                 Create temporary directory to be used during the test session.
                 """
                 if not os.path.exists(TESTS_TMP_PATH):
                     os.makedirs(TESTS_TMP_PATH)
                 if not request.config.getoption('--keep-tmp-path'):
                     @request.addfinalizer
                     def remove_tmp_path():
                         shutil.rmtree(TESTS_TMP_PATH)
                 return TESTS_TMP_PATH
             @pytest.fixture(scope='session', autouse=True)
             def patch_pyro_request_scope_proxy_factory(request):
                 """
                 Patch the pyro proxy factory to always use the same dummy request object
                 when under test. This will return the same pyro proxy on every call.
                 """
                 dummy_request = pyramid.testing.DummyRequest()
                 def mocked_call(self, request=None):
                     return self.getProxy(request=dummy_request)
                 patcher = mock.patch(
                     'rhodecode.lib.vcs.client.RequestScopeProxyFactory.__call__',
                     new=mocked_call)
                 patcher.start()
                 @request.addfinalizer
                 def undo_patching():
                     patcher.stop()
             @pytest.fixture
             def test_repo_group(request):
                 """
                 Create a temporary repository group, and destroy it after
                 usage automatically
                 """
                 fixture = Fixture()
                 repogroupid = 'test_repo_group_%s' % int(time.time())
                 repo_group = fixture.create_repo_group(repogroupid)
                 def _cleanup():
                     fixture.destroy_repo_group(repogroupid)
                 request.addfinalizer(_cleanup)
                 return repo_group
             @pytest.fixture
             def test_user_group(request):
                 """
                 Create a temporary user group, and destroy it after
                 usage automatically
                 """
                 fixture = Fixture()
                 usergroupid = 'test_user_group_%s' % int(time.time())
                 user_group = fixture.create_user_group(usergroupid)
                 def _cleanup():
                     fixture.destroy_user_group(user_group)
                 request.addfinalizer(_cleanup)
                 return user_group
             @pytest.fixture(scope='session')
             def test_repo(request):
                 container = TestRepoContainer()
                 request.addfinalizer(container._cleanup)
                 return container
             class TestRepoContainer(object):
                 """
                 Container for test repositories which are used read only.
                 Repositories will be created on demand and re-used during the lifetime
                 of this object.
                 Usage to get the svn test repository "minimal"::
                    test_repo = TestContainer()
                    repo = test_repo('minimal', 'svn')
                 """
                 dump_extractors = {
                     'git': utils.extract_git_repo_from_dump,
                     'hg': utils.extract_hg_repo_from_dump,
                     'svn': utils.extract_svn_repo_from_dump,
                 }
                 def __init__(self):
                     self._cleanup_repos = []
                     self._fixture = Fixture()
                     self._repos = {}
                 def __call__(self, dump_name, backend_alias):
                     key = (dump_name, backend_alias)
                     if key not in self._repos:
                         repo = self._create_repo(dump_name, backend_alias)
                         self._repos[key] = repo.repo_id
                     return Repository.get(self._repos[key])
                 def _create_repo(self, dump_name, backend_alias):
                     repo_name = '%s-%s' % (backend_alias, dump_name)
                     backend_class = get_backend(backend_alias)
                     dump_extractor = self.dump_extractors[backend_alias]
                     repo_path = dump_extractor(dump_name, repo_name)
                     vcs_repo = backend_class(repo_path)
                     repo2db_mapper({repo_name: vcs_repo})
                     repo = RepoModel().get_by_repo_name(repo_name)
                     self._cleanup_repos.append(repo_name)
                     return repo
                 def _cleanup(self):
                     for repo_name in reversed(self._cleanup_repos):
                         self._fixture.destroy_repo(repo_name)
             @pytest.fixture
             def backend(request, backend_alias, pylonsapp, test_repo):
                 """
                 Parametrized fixture which represents a single backend implementation.
                 It respects the option `--backends` to focus the test run on specific
                 backend implementations.
                 It also supports `pytest.mark.xfail_backends` to mark tests as failing
                 for specific backends. This is intended as a utility for incremental
                 development of a new backend implementation.
                 """
                 if backend_alias not in request.config.getoption('--backends'):
                     pytest.skip("Backend %s not selected." % (backend_alias, ))
                 utils.check_xfail_backends(request.node, backend_alias)
                 utils.check_skip_backends(request.node, backend_alias)
                 repo_name = 'vcs_test_%s' % (backend_alias, )
                 backend = Backend(
                     alias=backend_alias,
                     repo_name=repo_name,
                     test_name=request.node.name,
                     test_repo_container=test_repo)
                 request.addfinalizer(backend.cleanup)
                 return backend
             @pytest.fixture
             def backend_git(request, pylonsapp, test_repo):
                 return backend(request, 'git', pylonsapp, test_repo)
             @pytest.fixture
             def backend_hg(request, pylonsapp, test_repo):
                 return backend(request, 'hg', pylonsapp, test_repo)
             @pytest.fixture
             def backend_svn(request, pylonsapp, test_repo):
                 return backend(request, 'svn', pylonsapp, test_repo)
             @pytest.fixture
             def backend_random(backend_git):
                 """
                 Use this to express that your tests need "a backend.
                 A few of our tests need a backend, so that we can run the code. This
                 fixture is intended to be used for such cases. It will pick one of the
                 backends and run the tests.
                 The fixture `backend` would run the test multiple times for each
                 available backend which is a pure waste of time if the test is
                 independent of the backend type.
                 """
                 # TODO: johbo: Change this to pick a random backend
                 return backend_git
             @pytest.fixture
             def backend_stub(backend_git):
                 """
                 Use this to express that your tests need a backend stub
                 TODO: mikhail: Implement a real stub logic instead of returning
                 a git backend
                 """
                 return backend_git
             @pytest.fixture
             def repo_stub(backend_stub):
                 """
                 Use this to express that your tests need a repository stub
                 """
                 return backend_stub.create_repo()
             class Backend(object):
                 """
                 Represents the test configuration for one supported backend
                 Provides easy access to different test repositories based on
                 `__getitem__`. Such repositories will only be created once per test
                 session.
                 """
                 invalid_repo_name = re.compile(r'[^0-9a-zA-Z]+')
                 _master_repo = None
                 _commit_ids = {}
                 def __init__(self, alias, repo_name, test_name, test_repo_container):
                     self.alias = alias
                     self.repo_name = repo_name
                     self._cleanup_repos = []
                     self._test_name = test_name
                     self._test_repo_container = test_repo_container
                     # TODO: johbo: Used as a delegate interim. Not yet sure if Backend or
                     # Fixture will survive in the end.
                     self._fixture = Fixture()
                 def __getitem__(self, key):
                     return self._test_repo_container(key, self.alias)
                 @property
                 def repo(self):
                     """
                     Returns the "current" repository. This is the vcs_test repo or the
                     last repo which has been created with `create_repo`.
                     """
                     from rhodecode.model.db import Repository
                     return Repository.get_by_repo_name(self.repo_name)
                 @property
                 def default_branch_name(self):
                     VcsRepository = get_backend(self.alias)
                     return VcsRepository.DEFAULT_BRANCH_NAME
                 @property
                 def default_head_id(self):
                     """
                     Returns the default head id of the underlying backend.
                     This will be the default branch name in case the backend does have a
                     default branch. In the other cases it will point to a valid head
                     which can serve as the base to create a new commit on top of it.
                     """
                     vcsrepo = self.repo.scm_instance()
                     head_id = (
                         vcsrepo.DEFAULT_BRANCH_NAME or
                         vcsrepo.commit_ids[-1])
                     return head_id
                 @property
                 def commit_ids(self):
                     """
                     Returns the list of commits for the last created repository
                     """
                     return self._commit_ids
                 def create_master_repo(self, commits):
                     """
                     Create a repository and remember it as a template.
                     This allows to easily create derived repositories to construct
                     more complex scenarios for diff, compare and pull requests.
                     Returns a commit map which maps from commit message to raw_id.
                     """
                     self._master_repo = self.create_repo(commits=commits)
                     return self._commit_ids
                 def create_repo(
                         self, commits=None, number_of_commits=0, heads=None,
                         name_suffix=u'', **kwargs):
                     """
                     Create a repository and record it for later cleanup.
                     :param commits: Optional. A sequence of dict instances.
                        Will add a commit per entry to the new repository.
                     :param number_of_commits: Optional. If set to a number, this number of
                        commits will be added to the new repository.
                     :param heads: Optional. Can be set to a sequence of of commit
                        names which shall be pulled in from the master repository.
                     """
                     self.repo_name = self._next_repo_name() + name_suffix
                     repo = self._fixture.create_repo(
                         self.repo_name, repo_type=self.alias, **kwargs)
                     self._cleanup_repos.append(repo.repo_name)
                     commits = commits or [
                         {'message': 'Commit %s of %s' % (x, self.repo_name)}
                         for x in xrange(number_of_commits)]
                     self._add_commits_to_repo(repo.scm_instance(), commits)
                     if heads:
                         self.pull_heads(repo, heads)
                     return repo
                 def pull_heads(self, repo, heads):
                     """
                     Make sure that repo contains all commits mentioned in `heads`
                     """
                     vcsmaster = self._master_repo.scm_instance()
                     vcsrepo = repo.scm_instance()
                     vcsrepo.config.clear_section('hooks')
                     commit_ids = [self._commit_ids[h] for h in heads]
                     vcsrepo.pull(vcsmaster.path, commit_ids=commit_ids)
                 def create_fork(self):
                     repo_to_fork = self.repo_name
                     self.repo_name = self._next_repo_name()
                     repo = self._fixture.create_fork(repo_to_fork, self.repo_name)
                     self._cleanup_repos.append(self.repo_name)
                     return repo
                 def new_repo_name(self, suffix=u''):
                     self.repo_name = self._next_repo_name() + suffix
                     self._cleanup_repos.append(self.repo_name)
                     return self.repo_name
                 def _next_repo_name(self):
                     return u"%s_%s" % (
                         self.invalid_repo_name.sub(u'_', self._test_name),
                         len(self._cleanup_repos))
                 def ensure_file(self, filename, content='Test content\n'):
                     assert self._cleanup_repos, "Avoid writing into vcs_test repos"
                     commits = [
                         {'added': [
                             FileNode(filename, content=content),
                         ]},
                     ]
                     self._add_commits_to_repo(self.repo.scm_instance(), commits)
                 def enable_downloads(self):
                     repo = self.repo
                     repo.enable_downloads = True
                     Session().add(repo)
                     Session().commit()
                 def cleanup(self):
                     for repo_name in reversed(self._cleanup_repos):
                         self._fixture.destroy_repo(repo_name)
                 def _add_commits_to_repo(self, repo, commits):
                     commit_ids = _add_commits_to_repo(repo, commits)
                     if not commit_ids:
                         return
                     self._commit_ids = commit_ids
                     # Creating refs for Git to allow fetching them from remote repository
                     if self.alias == 'git':
                         refs = {}
                         for message in self._commit_ids:
                             # TODO: mikhail: do more special chars replacements
                             ref_name = 'refs/test-refs/{}'.format(
                                 message.replace(' ', ''))
                             refs[ref_name] = self._commit_ids[message]
                         self._create_refs(repo, refs)
                 def _create_refs(self, repo, refs):
                     for ref_name in refs:
                         repo.set_refs(ref_name, refs[ref_name])
             @pytest.fixture
             def vcsbackend(request, backend_alias, tests_tmp_path, pylonsapp, test_repo):
                 """
                 Parametrized fixture which represents a single vcs backend implementation.
                 See the fixture `backend` for more details. This one implements the same
                 concept, but on vcs level. So it does not provide model instances etc.
                 Parameters are generated dynamically, see :func:`pytest_generate_tests`
                 for how this works.
                 """
                 if backend_alias not in request.config.getoption('--backends'):
                     pytest.skip("Backend %s not selected." % (backend_alias, ))
                 utils.check_xfail_backends(request.node, backend_alias)
                 utils.check_skip_backends(request.node, backend_alias)
                 repo_name = 'vcs_test_%s' % (backend_alias, )
                 repo_path = os.path.join(tests_tmp_path, repo_name)
                 backend = VcsBackend(
                     alias=backend_alias,
                     repo_path=repo_path,
                     test_name=request.node.name,
                     test_repo_container=test_repo)
                 request.addfinalizer(backend.cleanup)
                 return backend
             @pytest.fixture
             def vcsbackend_git(request, tests_tmp_path, pylonsapp, test_repo):
                 return vcsbackend(request, 'git', tests_tmp_path, pylonsapp, test_repo)
             @pytest.fixture
             def vcsbackend_hg(request, tests_tmp_path, pylonsapp, test_repo):
                 return vcsbackend(request, 'hg', tests_tmp_path, pylonsapp, test_repo)
             @pytest.fixture
             def vcsbackend_svn(request, tests_tmp_path, pylonsapp, test_repo):
                 return vcsbackend(request, 'svn', tests_tmp_path, pylonsapp, test_repo)
             @pytest.fixture
             def vcsbackend_random(vcsbackend_git):
                 """
                 Use this to express that your tests need "a vcsbackend".
                 The fixture `vcsbackend` would run the test multiple times for each
                 available vcs backend which is a pure waste of time if the test is
                 independent of the vcs backend type.
                 """
                 # TODO: johbo: Change this to pick a random backend
                 return vcsbackend_git
             @pytest.fixture
             def vcsbackend_stub(vcsbackend_git):
                 """
                 Use this to express that your test just needs a stub of a vcsbackend.
                 Plan is to eventually implement an in-memory stub to speed tests up.
                 """
                 return vcsbackend_git
             class VcsBackend(object):
                 """
                 Represents the test configuration for one supported vcs backend.
                 """
                 invalid_repo_name = re.compile(r'[^0-9a-zA-Z]+')
                 def __init__(self, alias, repo_path, test_name, test_repo_container):
                     self.alias = alias
                     self._repo_path = repo_path
                     self._cleanup_repos = []
                     self._test_name = test_name
                     self._test_repo_container = test_repo_container
                 def __getitem__(self, key):
                     return self._test_repo_container(key, self.alias).scm_instance()
                 @property
                 def repo(self):
                     """
                     Returns the "current" repository. This is the vcs_test repo of the last
                     repo which has been created.
                     """
                     Repository = get_backend(self.alias)
                     return Repository(self._repo_path)
                 @property
                 def backend(self):
                     """
                     Returns the backend implementation class.
                     """
                     return get_backend(self.alias)
                 def create_repo(self, commits=None, number_of_commits=0, _clone_repo=None):
                     repo_name = self._next_repo_name()
                     self._repo_path = get_new_dir(repo_name)
                     repo_class = get_backend(self.alias)
                     src_url = None
                     if _clone_repo:
                         src_url = _clone_repo.path
                     repo = repo_class(self._repo_path, create=True, src_url=src_url)
                     self._cleanup_repos.append(repo)
                     commits = commits or [
                         {'message': 'Commit %s of %s' % (x, repo_name)}
                         for x in xrange(number_of_commits)]
                     _add_commits_to_repo(repo, commits)
                     return repo
                 def clone_repo(self, repo):
                     return self.create_repo(_clone_repo=repo)
                 def cleanup(self):
                     for repo in self._cleanup_repos:
                         shutil.rmtree(repo.path)
                 def new_repo_path(self):
                     repo_name = self._next_repo_name()
                     self._repo_path = get_new_dir(repo_name)
                     return self._repo_path
                 def _next_repo_name(self):
                     return "%s_%s" % (
                         self.invalid_repo_name.sub('_', self._test_name),
                         len(self._cleanup_repos))
                 def add_file(self, repo, filename, content='Test content\n'):
                     imc = repo.in_memory_commit
                     imc.add(FileNode(filename, content=content))
                     imc.commit(
                         message=u'Automatic commit from vcsbackend fixture',
                         author=u'Automatic')
                 def ensure_file(self, filename, content='Test content\n'):
                     assert self._cleanup_repos, "Avoid writing into vcs_test repos"
                     self.add_file(self.repo, filename, content)
             def _add_commits_to_repo(vcs_repo, commits):
                 commit_ids = {}
                 if not commits:
                     return commit_ids
                 imc = vcs_repo.in_memory_commit
                 commit = None
                 for idx, commit in enumerate(commits):
                     message = unicode(commit.get('message', 'Commit %s' % idx))
                     for node in commit.get('added', []):
                         imc.add(FileNode(node.path, content=node.content))
                     for node in commit.get('changed', []):
                         imc.change(FileNode(node.path, content=node.content))
                     for node in commit.get('removed', []):
                         imc.remove(FileNode(node.path))
                     parents = [
                         vcs_repo.get_commit(commit_id=commit_ids[p])
                         for p in commit.get('parents', [])]
                     operations = ('added', 'changed', 'removed')
                     if not any((commit.get(o) for o in operations)):
                         imc.add(FileNode('file_%s' % idx, content=message))
                     commit = imc.commit(
                         message=message,
                         author=unicode(commit.get('author', 'Automatic')),
                         date=commit.get('date'),
                         branch=commit.get('branch'),
                         parents=parents)
                     commit_ids[commit.message] = commit.raw_id
                 return commit_ids
             @pytest.fixture
             def reposerver(request):
                 """
                 Allows to serve a backend repository
                 """
                 repo_server = RepoServer()
                 request.addfinalizer(repo_server.cleanup)
                 return repo_server
             class RepoServer(object):
                 """
                 Utility to serve a local repository for the duration of a test case.
                 Supports only Subversion so far.
                 """
                 url = None
                 def __init__(self):
                     self._cleanup_servers = []
                 def serve(self, vcsrepo):
                     if vcsrepo.alias != 'svn':
                         raise TypeError("Backend %s not supported" % vcsrepo.alias)
                     proc = subprocess.Popen(
                         ['svnserve', '-d', '--foreground', '--listen-host', 'localhost',
                          '--root', vcsrepo.path])
                     self._cleanup_servers.append(proc)
                     self.url = 'svn://localhost'
                 def cleanup(self):
                     for proc in self._cleanup_servers:
                         proc.terminate()
             @pytest.fixture
             def pr_util(backend, request):
                 """
                 Utility for tests of models and for functional tests around pull requests.
                 It gives an instance of :class:`PRTestUtility` which provides various
                 utility methods around one pull request.
                 This fixture uses `backend` and inherits its parameterization.
                 """
                 util = PRTestUtility(backend)
                 @request.addfinalizer
                 def cleanup():
                     util.cleanup()
                 return util
             class PRTestUtility(object):
                 pull_request = None
                 pull_request_id = None
                 mergeable_patcher = None
                 mergeable_mock = None
                 notification_patcher = None
                 def __init__(self, backend):
                     self.backend = backend
                 def create_pull_request(
                         self, commits=None, target_head=None, source_head=None,
                         revisions=None, approved=False, author=None, mergeable=False,
                         enable_notifications=True, name_suffix=u'', reviewers=None,
                         title=u"Test", description=u"Description"):
                     self.set_mergeable(mergeable)
                     if not enable_notifications:
                         # mock notification side effect
                         self.notification_patcher = mock.patch(
                             'rhodecode.model.notification.NotificationModel.create')
                         self.notification_patcher.start()
                     if not self.pull_request:
                         if not commits:
                             commits = [
                                 {'message': 'c1'},
                                 {'message': 'c2'},
                                 {'message': 'c3'},
                             ]
                             target_head = 'c1'
                             source_head = 'c2'
                             revisions = ['c2']
                         self.commit_ids = self.backend.create_master_repo(commits)
                         self.target_repository = self.backend.create_repo(
                             heads=[target_head], name_suffix=name_suffix)
                         self.source_repository = self.backend.create_repo(
                             heads=[source_head], name_suffix=name_suffix)
                         self.author = author or UserModel().get_by_username(
                             TEST_USER_ADMIN_LOGIN)
                         model = PullRequestModel()
                         self.create_parameters = {
                             'created_by': self.author,
                             'source_repo': self.source_repository.repo_name,
                             'source_ref': self._default_branch_reference(source_head),
                             'target_repo': self.target_repository.repo_name,
                             'target_ref': self._default_branch_reference(target_head),
                             'revisions': [self.commit_ids[r] for r in revisions],
                             'reviewers': reviewers or self._get_reviewers(),
                             'title': title,
                             'description': description,
                         }
                         self.pull_request = model.create(**self.create_parameters)
                         assert model.get_versions(self.pull_request) == []
                         self.pull_request_id = self.pull_request.pull_request_id
                         if approved:
                             self.approve()
                         Session().add(self.pull_request)
                         Session().commit()
                     return self.pull_request
                 def approve(self):
                     self.create_status_votes(
                         ChangesetStatus.STATUS_APPROVED,
                         *self.pull_request.reviewers)
                 def close(self):
                     PullRequestModel().close_pull_request(self.pull_request, self.author)
                 def _default_branch_reference(self, commit_message):
                     reference = '%s:%s:%s' % (
                         'branch',
                         self.backend.default_branch_name,
                         self.commit_ids[commit_message])
                     return reference
                 def _get_reviewers(self):
                     model = UserModel()
                     return [
                         model.get_by_username(TEST_USER_REGULAR_LOGIN),
                         model.get_by_username(TEST_USER_REGULAR2_LOGIN),
                     ]
                 def update_source_repository(self, head=None):
                     heads = [head or 'c3']
                     self.backend.pull_heads(self.source_repository, heads=heads)
                 def add_one_commit(self, head=None):
                     self.update_source_repository(head=head)
                     old_commit_ids = set(self.pull_request.revisions)
                     PullRequestModel().update_commits(self.pull_request)
                     commit_ids = set(self.pull_request.revisions)
                     new_commit_ids = commit_ids - old_commit_ids
                     assert len(new_commit_ids) == 1
                     return new_commit_ids.pop()
                 def remove_one_commit(self):
                     assert len(self.pull_request.revisions) == 2
                     source_vcs = self.source_repository.scm_instance()
                     removed_commit_id = source_vcs.commit_ids[-1]
                     # TODO: johbo: Git and Mercurial have an inconsistent vcs api here,
                     # remove the if once that's sorted out.
                     if self.backend.alias == "git":
                         kwargs = {'branch_name': self.backend.default_branch_name}
                     else:
                         kwargs = {}
                     source_vcs.strip(removed_commit_id, **kwargs)
                     PullRequestModel().update_commits(self.pull_request)
                     assert len(self.pull_request.revisions) == 1
                     return removed_commit_id
                 def create_comment(self, linked_to=None):
                     comment = ChangesetCommentsModel().create(
                         text=u"Test comment",
                         repo=self.target_repository.repo_name,
                         user=self.author,
                         pull_request=self.pull_request)
                     assert comment.pull_request_version_id is None
                     if linked_to:
                         PullRequestModel()._link_comments_to_version(linked_to)
                     return comment
                 def create_inline_comment(
                         self, linked_to=None, line_no=u'n1', file_path='file_1'):
                     comment = ChangesetCommentsModel().create(
                         text=u"Test comment",
                         repo=self.target_repository.repo_name,
                         user=self.author,
                         line_no=line_no,
                         f_path=file_path,
                         pull_request=self.pull_request)
                     assert comment.pull_request_version_id is None
                     if linked_to:
                         PullRequestModel()._link_comments_to_version(linked_to)
                     return comment
                 def create_version_of_pull_request(self):
                     pull_request = self.create_pull_request()
                     version = PullRequestModel()._create_version_from_snapshot(
                         pull_request)
                     return version
                 def create_status_votes(self, status, *reviewers):
                     for reviewer in reviewers:
                         ChangesetStatusModel().set_status(
                             repo=self.pull_request.target_repo,
                             status=status,
                             user=reviewer.user_id,
                             pull_request=self.pull_request)
                 def set_mergeable(self, value):
                     if not self.mergeable_patcher:
                         self.mergeable_patcher = mock.patch.object(
                             VcsSettingsModel, 'get_general_settings')
                         self.mergeable_mock = self.mergeable_patcher.start()
                     self.mergeable_mock.return_value = {
                         'rhodecode_pr_merge_enabled': value}
                 def cleanup(self):
                     # In case the source repository is already cleaned up, the pull
                     # request will already be deleted.
                     pull_request = PullRequest().get(self.pull_request_id)
                     if pull_request:
                         PullRequestModel().delete(pull_request)
                         Session().commit()
                     if self.notification_patcher:
                         self.notification_patcher.stop()
                     if self.mergeable_patcher:
                         self.mergeable_patcher.stop()
             @pytest.fixture
             def user_admin(pylonsapp):
                 """
                 Provides the default admin test user as an instance of `db.User`.
                 """
                 user = UserModel().get_by_username(TEST_USER_ADMIN_LOGIN)
                 return user
             @pytest.fixture
             def user_regular(pylonsapp):
                 """
                 Provides the default regular test user as an instance of `db.User`.
                 """
                 user = UserModel().get_by_username(TEST_USER_REGULAR_LOGIN)
                 return user
             @pytest.fixture
             def user_util(request, pylonsapp):
                 """
                 Provides a wired instance of `UserUtility` with integrated cleanup.
                 """
                 utility = UserUtility(test_name=request.node.name)
                 request.addfinalizer(utility.cleanup)
                 return utility
             # TODO: johbo: Split this up into utilities per domain or something similar
             class UserUtility(object):
                 def __init__(self, test_name="test"):
                     self._test_name = test_name
                     self.fixture = Fixture()
                     self.repo_group_ids = []
                     self.user_ids = []
                     self.user_group_ids = []
                     self.user_repo_permission_ids = []
                     self.user_group_repo_permission_ids = []
                     self.user_repo_group_permission_ids = []
                     self.user_group_repo_group_permission_ids = []
                     self.user_user_group_permission_ids = []
                     self.user_group_user_group_permission_ids = []
                     self.user_permissions = []
                 def create_repo_group(
                         self, owner=TEST_USER_ADMIN_LOGIN, auto_cleanup=True):
                     group_name = "{prefix}_repogroup_{count}".format(
                         prefix=self._test_name,
                         count=len(self.repo_group_ids))
                     repo_group = self.fixture.create_repo_group(
                         group_name, cur_user=owner)
                     if auto_cleanup:
                         self.repo_group_ids.append(repo_group.group_id)
                     return repo_group
                 def create_user(self, auto_cleanup=True, **kwargs):
                     user_name = "{prefix}_user_{count}".format(
                         prefix=self._test_name,
                         count=len(self.user_ids))
                     user = self.fixture.create_user(user_name, **kwargs)
                     if auto_cleanup:
                         self.user_ids.append(user.user_id)
                     return user
                 def create_user_with_group(self):
                     user = self.create_user()
                     user_group = self.create_user_group(members=[user])
                     return user, user_group
                 def create_user_group(self, members=None, auto_cleanup=True, **kwargs):
                     group_name = "{prefix}_usergroup_{count}".format(
                         prefix=self._test_name,
                         count=len(self.user_group_ids))
                     user_group = self.fixture.create_user_group(group_name, **kwargs)
                     if auto_cleanup:
                         self.user_group_ids.append(user_group.users_group_id)
                     if members:
                         for user in members:
                             UserGroupModel().add_user_to_group(user_group, user)
                     return user_group
                 def grant_user_permission(self, user_name, permission_name):
                     self._inherit_default_user_permissions(user_name, False)
                     self.user_permissions.append((user_name, permission_name))
                 def grant_user_permission_to_repo_group(
                         self, repo_group, user, permission_name):
                     permission = RepoGroupModel().grant_user_permission(
                         repo_group, user, permission_name)
                     self.user_repo_group_permission_ids.append(
                         (repo_group.group_id, user.user_id))
                     return permission
                 def grant_user_group_permission_to_repo_group(
                         self, repo_group, user_group, permission_name):
                     permission = RepoGroupModel().grant_user_group_permission(
                         repo_group, user_group, permission_name)
                     self.user_group_repo_group_permission_ids.append(
                         (repo_group.group_id, user_group.users_group_id))
                     return permission
                 def grant_user_permission_to_repo(
                         self, repo, user, permission_name):
                     permission = RepoModel().grant_user_permission(
                         repo, user, permission_name)
                     self.user_repo_permission_ids.append(
                         (repo.repo_id, user.user_id))
                     return permission
                 def grant_user_group_permission_to_repo(
                         self, repo, user_group, permission_name):
                     permission = RepoModel().grant_user_group_permission(
                         repo, user_group, permission_name)
                     self.user_group_repo_permission_ids.append(
                         (repo.repo_id, user_group.users_group_id))
                     return permission
                 def grant_user_permission_to_user_group(
                         self, target_user_group, user, permission_name):
                     permission = UserGroupModel().grant_user_permission(
                         target_user_group, user, permission_name)
                     self.user_user_group_permission_ids.append(
                         (target_user_group.users_group_id, user.user_id))
                     return permission
                 def grant_user_group_permission_to_user_group(
                         self, target_user_group, user_group, permission_name):
                     permission = UserGroupModel().grant_user_group_permission(
                         target_user_group, user_group, permission_name)
                     self.user_group_user_group_permission_ids.append(
                         (target_user_group.users_group_id, user_group.users_group_id))
                     return permission
                 def revoke_user_permission(self, user_name, permission_name):
                     self._inherit_default_user_permissions(user_name, True)
                     UserModel().revoke_perm(user_name, permission_name)
                 def _inherit_default_user_permissions(self, user_name, value):
                     user = UserModel().get_by_username(user_name)
                     user.inherit_default_permissions = value
                     Session().add(user)
                     Session().commit()
                 def cleanup(self):
                     self._cleanup_permissions()
                     self._cleanup_repo_groups()
                     self._cleanup_user_groups()
                     self._cleanup_users()
                 def _cleanup_permissions(self):
                     if self.user_permissions:
                         for user_name, permission_name in self.user_permissions:
                             self.revoke_user_permission(user_name, permission_name)
                     for permission in self.user_repo_permission_ids:
                         RepoModel().revoke_user_permission(*permission)
                     for permission in self.user_group_repo_permission_ids:
                         RepoModel().revoke_user_group_permission(*permission)
                     for permission in self.user_repo_group_permission_ids:
                         RepoGroupModel().revoke_user_permission(*permission)
                     for permission in self.user_group_repo_group_permission_ids:
                         RepoGroupModel().revoke_user_group_permission(*permission)
                     for permission in self.user_user_group_permission_ids:
                         UserGroupModel().revoke_user_permission(*permission)
                     for permission in self.user_group_user_group_permission_ids:
                         UserGroupModel().revoke_user_group_permission(*permission)
                 def _cleanup_repo_groups(self):
                     def _repo_group_compare(first_group_id, second_group_id):
                         """
                         Gives higher priority to the groups with the most complex paths
                         """
                         first_group = RepoGroup.get(first_group_id)
                         second_group = RepoGroup.get(second_group_id)
                         first_group_parts = (
                             len(first_group.group_name.split('/')) if first_group else 0)
                         second_group_parts = (
                             len(second_group.group_name.split('/')) if second_group else 0)
                         return cmp(second_group_parts, first_group_parts)
                     sorted_repo_group_ids = sorted(
                         self.repo_group_ids, cmp=_repo_group_compare)
                     for repo_group_id in sorted_repo_group_ids:
                         self.fixture.destroy_repo_group(repo_group_id)
                 def _cleanup_user_groups(self):
                     def _user_group_compare(first_group_id, second_group_id):
                         """
                         Gives higher priority to the groups with the most complex paths
                         """
                         first_group = UserGroup.get(first_group_id)
                         second_group = UserGroup.get(second_group_id)
                         first_group_parts = (
                             len(first_group.users_group_name.split('/'))
                             if first_group else 0)
                         second_group_parts = (
                             len(second_group.users_group_name.split('/'))
                             if second_group else 0)
                         return cmp(second_group_parts, first_group_parts)
                     sorted_user_group_ids = sorted(
                         self.user_group_ids, cmp=_user_group_compare)
                     for user_group_id in sorted_user_group_ids:
                         self.fixture.destroy_user_group(user_group_id)
                 def _cleanup_users(self):
                     for user_id in self.user_ids:
                         self.fixture.destroy_user(user_id)
             # TODO: Think about moving this into a pytest-pyro package and make it a
             # pytest plugin
             @pytest.hookimpl(tryfirst=True, hookwrapper=True)
             def pytest_runtest_makereport(item, call):
                 """
                 Adding the remote traceback if the exception has this information.
                 Pyro4 attaches this information as the attribute `_pyroTraceback`
                 to the exception instance.
                 """
                 outcome = yield
                 report = outcome.get_result()
                 if call.excinfo:
                     _add_pyro_remote_traceback(report, call.excinfo.value)
             def _add_pyro_remote_traceback(report, exc):
                 pyro_traceback = getattr(exc, '_pyroTraceback', None)
                 if pyro_traceback:
                     traceback = ''.join(pyro_traceback)
                     section = 'Pyro4 remote traceback ' + report.when
                     report.sections.append((section, traceback))
             @pytest.fixture(scope='session')
             def testrun():
                 return {
                     'uuid': uuid.uuid4(),
                     'start': datetime.datetime.utcnow().isoformat(),
                     'timestamp': int(time.time()),
                 }
             @pytest.fixture(autouse=True)
             def collect_appenlight_stats(request, testrun):
                 """
                 This fixture reports memory consumtion of single tests.
                 It gathers data based on `psutil` and sends them to Appenlight. The option
                 ``--ae`` has te be used to enable this fixture and the API key for your
                 application has to be provided in ``--ae-key``.
                 """
                 try:
                     # cygwin cannot have yet psutil support.
                     import psutil
                 except ImportError:
                     return
                 if not request.config.getoption('--appenlight'):
                     return
                 else:
                     # Only request the pylonsapp fixture if appenlight tracking is
                     # enabled. This will speed up a test run of unit tests by 2 to 3
                     # seconds if appenlight is not enabled.
                     pylonsapp = request.getfuncargvalue("pylonsapp")
                 url = '{}/api/logs'.format(request.config.getoption('--appenlight-url'))
                 client = AppenlightClient(
                     url=url,
                     api_key=request.config.getoption('--appenlight-api-key'),
                     namespace=request.node.nodeid,
                     request=str(testrun['uuid']),
                     testrun=testrun)
                 client.collect({
                     'message': "Starting",
                 })
                 server_and_port = pylonsapp.config['vcs.server']
                 server = create_vcsserver_proxy(server_and_port)
                 with server:
                     vcs_pid = server.get_pid()
                     server.run_gc()
                 vcs_process = psutil.Process(vcs_pid)
                 mem = vcs_process.memory_info()
                 client.tag_before('vcsserver.rss', mem.rss)
                 client.tag_before('vcsserver.vms', mem.vms)
                 test_process = psutil.Process()
                 mem = test_process.memory_info()
                 client.tag_before('test.rss', mem.rss)
                 client.tag_before('test.vms', mem.vms)
                 client.tag_before('time', time.time())
                 @request.addfinalizer
                 def send_stats():
                     client.tag_after('time', time.time())
                     with server:
                         gc_stats = server.run_gc()
                     for tag, value in gc_stats.items():
                         client.tag_after(tag, value)
                     mem = vcs_process.memory_info()
                     client.tag_after('vcsserver.rss', mem.rss)
                     client.tag_after('vcsserver.vms', mem.vms)
                     mem = test_process.memory_info()
                     client.tag_after('test.rss', mem.rss)
                     client.tag_after('test.vms', mem.vms)
                     client.collect({
                         'message': "Finished",
                     })
                     client.send_stats()
                 return client
             class AppenlightClient():
                 url_template = '{url}?protocol_version=0.5'
                 def __init__(
                         self, url, api_key, add_server=True, add_timestamp=True,
                         namespace=None, request=None, testrun=None):
                     self.url = self.url_template.format(url=url)
                     self.api_key = api_key
                     self.add_server = add_server
                     self.add_timestamp = add_timestamp
                     self.namespace = namespace
                     self.request = request
                     self.server = socket.getfqdn(socket.gethostname())
                     self.tags_before = {}
                     self.tags_after = {}
                     self.stats = []
                     self.testrun = testrun or {}
                 def tag_before(self, tag, value):
                     self.tags_before[tag] = value
                 def tag_after(self, tag, value):
                     self.tags_after[tag] = value
                 def collect(self, data):
                     if self.add_server:
                         data.setdefault('server', self.server)
                     if self.add_timestamp:
                         data.setdefault('date', datetime.datetime.utcnow().isoformat())
                     if self.namespace:
                         data.setdefault('namespace', self.namespace)
                     if self.request:
                         data.setdefault('request', self.request)
                     self.stats.append(data)
                 def send_stats(self):
                     tags = [
                         ('testrun', self.request),
                         ('testrun.start', self.testrun['start']),
                         ('testrun.timestamp', self.testrun['timestamp']),
                         ('test', self.namespace),
                     ]
                     for key, value in self.tags_before.items():
                         tags.append((key + '.before', value))
                         try:
                             delta = self.tags_after[key] - value
                             tags.append((key + '.delta', delta))
                         except Exception:
                             pass
                     for key, value in self.tags_after.items():
                         tags.append((key + '.after', value))
                     self.collect({
                         'message': "Collected tags",
                         'tags': tags,
                     })
                     response = requests.post(
                         self.url,
                         headers={
                             'X-appenlight-api-key': self.api_key},
                         json=self.stats,
                     )
                     if not response.status_code == 200:
                         pprint.pprint(self.stats)
                         print response.headers
                         print response.text
                         raise Exception('Sending to appenlight failed')
             @pytest.fixture
             def gist_util(request, pylonsapp):
                 """
                 Provides a wired instance of `GistUtility` with integrated cleanup.
                 """
                 utility = GistUtility()
                 request.addfinalizer(utility.cleanup)
                 return utility
             class GistUtility(object):
                 def __init__(self):
                     self.fixture = Fixture()
                     self.gist_ids = []
                 def create_gist(self, **kwargs):
                     gist = self.fixture.create_gist(**kwargs)
                     self.gist_ids.append(gist.gist_id)
                     return gist
                 def cleanup(self):
                     for id_ in self.gist_ids:
                         self.fixture.destroy_gists(str(id_))
             @pytest.fixture
             def enabled_backends(request):
                 backends = request.config.option.backends
                 return backends[:]
             @pytest.fixture
             def settings_util(request):
                 """
                 Provides a wired instance of `SettingsUtility` with integrated cleanup.
                 """
                 utility = SettingsUtility()
                 request.addfinalizer(utility.cleanup)
                 return utility
             class SettingsUtility(object):
                 def __init__(self):
                     self.rhodecode_ui_ids = []
                     self.rhodecode_setting_ids = []
                     self.repo_rhodecode_ui_ids = []
                     self.repo_rhodecode_setting_ids = []
                 def create_repo_rhodecode_ui(
                         self, repo, section, value, key=None, active=True, cleanup=True):
                     key = key or hashlib.sha1(
                         '{}{}{}'.format(section, value, repo.repo_id)).hexdigest()
                     setting = RepoRhodeCodeUi()
                     setting.repository_id = repo.repo_id
                     setting.ui_section = section
                     setting.ui_value = value
                     setting.ui_key = key
                     setting.ui_active = active
                     Session().add(setting)
                     Session().commit()
                     if cleanup:
                         self.repo_rhodecode_ui_ids.append(setting.ui_id)
                     return setting
                 def create_rhodecode_ui(
                         self, section, value, key=None, active=True, cleanup=True):
                     key = key or hashlib.sha1('{}{}'.format(section, value)).hexdigest()
                     setting = RhodeCodeUi()
                     setting.ui_section = section
                     setting.ui_value = value
                     setting.ui_key = key
                     setting.ui_active = active
                     Session().add(setting)
                     Session().commit()
                     if cleanup:
                         self.rhodecode_ui_ids.append(setting.ui_id)
                     return setting
                 def create_repo_rhodecode_setting(
                         self, repo, name, value, type_, cleanup=True):
                     setting = RepoRhodeCodeSetting(
                         repo.repo_id, key=name, val=value, type=type_)
                     Session().add(setting)
                     Session().commit()
                     if cleanup:
                         self.repo_rhodecode_setting_ids.append(setting.app_settings_id)
                     return setting
                 def create_rhodecode_setting(self, name, value, type_, cleanup=True):
                     setting = RhodeCodeSetting(key=name, val=value, type=type_)
                     Session().add(setting)
                     Session().commit()
                     if cleanup:
                         self.rhodecode_setting_ids.append(setting.app_settings_id)
                     return setting
                 def cleanup(self):
                     for id_ in self.rhodecode_ui_ids:
                         setting = RhodeCodeUi.get(id_)
                         Session().delete(setting)
                     for id_ in self.rhodecode_setting_ids:
                         setting = RhodeCodeSetting.get(id_)
                         Session().delete(setting)
                     for id_ in self.repo_rhodecode_ui_ids:
                         setting = RepoRhodeCodeUi.get(id_)
                         Session().delete(setting)
                     for id_ in self.repo_rhodecode_setting_ids:
                         setting = RepoRhodeCodeSetting.get(id_)
                         Session().delete(setting)
                     Session().commit()
             @pytest.fixture
             def no_notifications(request):
                 notification_patcher = mock.patch(
                     'rhodecode.model.notification.NotificationModel.create')
                 notification_patcher.start()
                 request.addfinalizer(notification_patcher.stop)
             @pytest.fixture
             def silence_action_logger(request):
                 notification_patcher = mock.patch(
                     'rhodecode.lib.utils.action_logger')
                 notification_patcher.start()
                 request.addfinalizer(notification_patcher.stop)
             @pytest.fixture(scope='session')
             def repeat(request):
                 """
                 The number of repetitions is based on this fixture.
                 Slower calls may divide it by 10 or 100. It is chosen in a way so that the
                 tests are not too slow in our default test suite.
                 """
                 return request.config.getoption('--repeat')
             @pytest.fixture
             def rhodecode_fixtures():
                 return Fixture()
             @pytest.fixture
             def request_stub():
                 """
                 Stub request object.
                 """
                 request = pyramid.testing.DummyRequest()
                 request.scheme = 'https'
                 return request
             @pytest.fixture
             def config_stub(request, request_stub):
                 """
                 Set up pyramid.testing and return the Configurator.
                 """
                 config = pyramid.testing.setUp(request=request_stub)
                 @request.addfinalizer
                 def cleanup():
                     pyramid.testing.tearDown()
                 return config
             @pytest.fixture
             def StubIntegrationType():
                 class _StubIntegrationType(IntegrationTypeBase):
                     """ Test integration type class """
                     key = 'test'
                     display_name = 'Test integration type'
                     description = 'A test integration type for testing'
                     icon = 'test_icon_html_image'
                     def __init__(self, settings):
                         super(_StubIntegrationType, self).__init__(settings)
                         self.sent_events = [] # for testing
                     def send_event(self, event):
                         self.sent_events.append(event)
                     def settings_schema(self):
                         class SettingsSchema(colander.Schema):
                             test_string_field = colander.SchemaNode(
                                 colander.String(),
                                 missing=colander.required,
                                 title='test string field',
                             )
                             test_int_field = colander.SchemaNode(
                                 colander.Int(),
                                 title='some integer setting',
                             )
                         return SettingsSchema()
                 integration_type_registry.register_integration_type(_StubIntegrationType)
                 return _StubIntegrationType
             @pytest.fixture
             def stub_integration_settings():
                 return {
                     'test_string_field': 'some data',
                     'test_int_field': 100,
                 }
             @pytest.fixture
             def repo_integration_stub(request, repo_stub, StubIntegrationType,
                     stub_integration_settings):
                 integration = IntegrationModel().create(
                     StubIntegrationType, settings=stub_integration_settings, enabled=True,
-                    name='test repo integration', scope=repo_stub)
+                    name='test repo integration',
+                    repo=repo_stub, repo_group=None, child_repos_only=None)
                 @request.addfinalizer
                 def cleanup():
                     IntegrationModel().delete(integration)
                 return integration
             @pytest.fixture
             def repogroup_integration_stub(request, test_repo_group, StubIntegrationType,
                 stub_integration_settings):
                 integration = IntegrationModel().create(
                     StubIntegrationType, settings=stub_integration_settings, enabled=True,
-                    name='test repogroup integration', scope=test_repo_group)
+                    name='test repogroup integration',
+                    repo=None, repo_group=test_repo_group, child_repos_only=True)
+                @request.addfinalizer
+                def cleanup():
+                    IntegrationModel().delete(integration)
+                return integration
+            @pytest.fixture
+            def repogroup_recursive_integration_stub(request, test_repo_group,
+                StubIntegrationType, stub_integration_settings):
+                integration = IntegrationModel().create(
+                    StubIntegrationType, settings=stub_integration_settings, enabled=True,
+                    name='test recursive repogroup integration',
+                    repo=None, repo_group=test_repo_group, child_repos_only=False)
                 @request.addfinalizer
                 def cleanup():
                     IntegrationModel().delete(integration)
                 return integration
             @pytest.fixture
             def global_integration_stub(request, StubIntegrationType,
                 stub_integration_settings):
                 integration = IntegrationModel().create(
                     StubIntegrationType, settings=stub_integration_settings, enabled=True,
-                    name='test global integration', scope='global')
+                    name='test global integration',
+                    repo=None, repo_group=None, child_repos_only=None)
                 @request.addfinalizer
                 def cleanup():
                     IntegrationModel().delete(integration)
                 return integration
             @pytest.fixture
             def root_repos_integration_stub(request, StubIntegrationType,
                 stub_integration_settings):
                 integration = IntegrationModel().create(
                     StubIntegrationType, settings=stub_integration_settings, enabled=True,
-                    name='test global integration', scope='root_repos')
+                    name='test global integration',
+                    repo=None, repo_group=None, child_repos_only=True)
                 @request.addfinalizer
                 def cleanup():
                     IntegrationModel().delete(integration)
                 return integration

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages