upstream/kallithea Files · rhodecode/controllers/admin/permissions.py

Major refactoring, removed when possible calls to app globals....

Major refactoring, removed when possible calls to app globals. Refactored models to fetch the paths needed for scans from database directly small fixes in base

marcink - - Load All Authors

File last commit:

r902:07a6e8c6 beta


                r1036:405b80e4

beta

Download file

             permissions.py
        
                    171 lines
            
             | 6.6 KiB
            
                | text/x-python
            
             |
                PythonLexer
            
             / rhodecode / controllers / admin / permissions.py
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        marcink
    
Cleaned up scm model codes,Admin/admin permissions controller codes

              r760
            
      # -*- coding: utf-8 -*-

      """

        marcink
    
some docs updates on controller

              r853
            
          rhodecode.controllers.admin.permissions

          ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

        marcink
    
Cleaned up scm model codes,Admin/admin permissions controller codes

              r760
            
          permissions controller for Rhodecode

          :created_on: Apr 27, 2010

          :author: marcink

        marcink
    
fixed copyright year to 2011

              r902
            
          :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>    

        marcink
    
Cleaned up scm model codes,Admin/admin permissions controller codes

              r760
            
          :license: GPLv3, see COPYING for more details.

      """

        marcink
    
renamed project to rhodecode

              r547
            
      # This program is free software; you can redistribute it and/or

      # modify it under the terms of the GNU General Public License

      # as published by the Free Software Foundation; version 2

      # of the License or (at your opinion) any later version of the license.

      # 

      # This program is distributed in the hope that it will be useful,

      # but WITHOUT ANY WARRANTY; without even the implied warranty of

      # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

      # GNU General Public License for more details.

      # 

      # You should have received a copy of the GNU General Public License

      # along with this program; if not, write to the Free Software

      # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,

      # MA  02110-1301, USA.

      from formencode import htmlfill

      from pylons import request, session, tmpl_context as c, url

      from pylons.controllers.util import abort, redirect

      from pylons.i18n.translation import _

      from rhodecode.lib import helpers as h

      from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator

        marcink
    
implements #60, ldap configuration and authentication....

              r705
            
      from rhodecode.lib.auth_ldap import LdapImportError

        marcink
    
renamed project to rhodecode

              r547
            
      from rhodecode.lib.base import BaseController, render

        marcink
    
implements #60, ldap configuration and authentication....

              r705
            
      from rhodecode.model.forms import LdapSettingsForm, DefaultPermissionsForm

        marcink
    
#50 on point cache invalidation changes....

              r692
            
      from rhodecode.model.permission import PermissionModel

        marcink
    
implements #60, ldap configuration and authentication....

              r705
            
      from rhodecode.model.settings import SettingsModel

        marcink
    
Code refactoring,models renames...

              r629
            
      from rhodecode.model.user import UserModel

        marcink
    
renamed project to rhodecode

              r547
            
      import formencode

      import logging

      import traceback

      log = logging.getLogger(__name__)

      class PermissionsController(BaseController):

          """REST Controller styled on the Atom Publishing Protocol"""

          # To properly map this controller, ensure your config/routing.py

          # file has a resource setup:

          #     map.resource('permission', 'permissions')

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
          @LoginRequired()

          @HasPermissionAllDecorator('hg.admin')

          def __before__(self):

              c.admin_user = session.get('admin_user')

              c.admin_username = session.get('admin_username')

              super(PermissionsController, self).__before__()

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
              self.perms_choices = [('repository.none', _('None'),),

                                    ('repository.read', _('Read'),),

                                    ('repository.write', _('Write'),),

                                    ('repository.admin', _('Admin'),)]

              self.register_choices = [

        marcink
    
#49 Enabled anonymous access for web interface controllable from permissions pannel

              r673
            
                  ('hg.register.none',

                      _('disabled')),

        marcink
    
renamed project to rhodecode

              r547
            
                  ('hg.register.manual_activate',

        marcink
    
#49 Enabled anonymous access for web interface controllable from permissions pannel

              r673
            
                      _('allowed with manual account activation')),

        marcink
    
renamed project to rhodecode

              r547
            
                  ('hg.register.auto_activate',

        marcink
    
#49 Enabled anonymous access for web interface controllable from permissions pannel

              r673
            
                      _('allowed with automatic account activation')), ]

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
              self.create_choices = [('hg.create.none', _('Disabled')),

        marcink
    
Code refactoring,models renames...

              r629
            
                                     ('hg.create.repository', _('Enabled'))]

        marcink
    
renamed project to rhodecode

              r547
            
        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
          def index(self, format='html'):

              """GET /permissions: All items in the collection"""

              # url('permissions')

          def create(self):

              """POST /permissions: Create a new item"""

              # url('permissions')

          def new(self, format='html'):

              """GET /permissions/new: Form to create a new item"""

              # url('new_permission')

          def update(self, id):

              """PUT /permissions/id: Update an existing item"""

              # Forms posted to this method should contain a hidden field:

              #    <input type="hidden" name="_method" value="PUT" />

              # Or using helpers:

              #    h.form(url('permission', id=ID),

              #           method='put')

              # url('permission', id=ID)

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
              permission_model = PermissionModel()

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
              _form = DefaultPermissionsForm([x[0] for x in self.perms_choices],

                                             [x[0] for x in self.register_choices],

                                             [x[0] for x in self.create_choices])()

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
              try:

                  form_result = _form.to_python(dict(request.POST))

                  form_result.update({'perm_user_name':id})

                  permission_model.update(form_result)

        marcink
    
implements #60, ldap configuration and authentication....

              r705
            
                  h.flash(_('Default permissions updated successfully'),

        marcink
    
renamed project to rhodecode

              r547
            
                          category='success')

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
refactor codes and setup for python 2.5...

              r564
            
              except formencode.Invalid, errors:

        marcink
    
renamed project to rhodecode

              r547
            
                  c.perms_choices = self.perms_choices

                  c.register_choices = self.register_choices

                  c.create_choices = self.create_choices

        marcink
    
implements #60, ldap configuration and authentication....

              r705
            
                  defaults = errors.value

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
                  return htmlfill.render(

                      render('admin/permissions/permissions.html'),

        marcink
    
implements #60, ldap configuration and authentication....

              r705
            
                      defaults=defaults,

        marcink
    
renamed project to rhodecode

              r547
            
                      errors=errors.error_dict or {},

                      prefix_error=False,

        marcink
    
Code refactoring,models renames...

              r629
            
                      encoding="UTF-8")

        marcink
    
renamed project to rhodecode

              r547
            
              except Exception:

                  log.error(traceback.format_exc())

        marcink
    
fixed spelling mistakes, and some minor docs bugs

              r860
            
                  h.flash(_('error occurred during update of permissions'),

        marcink
    
renamed project to rhodecode

              r547
            
                          category='error')

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
              return redirect(url('edit_permission', id=id))

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
          def delete(self, id):

              """DELETE /permissions/id: Delete an existing item"""

              # Forms posted to this method should contain a hidden field:

              #    <input type="hidden" name="_method" value="DELETE" />

              # Or using helpers:

              #    h.form(url('permission', id=ID),

              #           method='delete')

              # url('permission', id=ID)

          def show(self, id, format='html'):

              """GET /permissions/id: Show a specific item"""

              # url('permission', id=ID)

          def edit(self, id, format='html'):

              """GET /permissions/id/edit: Form to edit an existing item"""

              #url('edit_permission', id=ID)

              c.perms_choices = self.perms_choices

              c.register_choices = self.register_choices

              c.create_choices = self.create_choices

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
              if id == 'default':

        marcink
    
#49 Enabled anonymous access for web interface controllable from permissions pannel

              r673
            
                  default_user = UserModel().get_by_username('default')

                  defaults = {'_method':'put',

                              'anonymous':default_user.active}

        marcink
    
fixes #77 moved out ldap config to it's own section

              r769
            
        marcink
    
#49 Enabled anonymous access for web interface controllable from permissions pannel

              r673
            
                  for p in default_user.user_perms:

        marcink
    
renamed project to rhodecode

              r547
            
                      if p.permission.permission_name.startswith('repository.'):

        marcink
    
Code refactoring,models renames...

              r629
            
                          defaults['default_perm'] = p.permission.permission_name

        marcink
    
renamed project to rhodecode

              r547
            
                      if p.permission.permission_name.startswith('hg.register.'):

                          defaults['default_register'] = p.permission.permission_name

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
                      if p.permission.permission_name.startswith('hg.create.'):

                          defaults['default_create'] = p.permission.permission_name

        marcink
    
Code refactoring,models renames...

              r629
            
        marcink
    
renamed project to rhodecode

              r547
            
                  return htmlfill.render(

                              render('admin/permissions/permissions.html'),

                              defaults=defaults,

                              encoding="UTF-8",

        marcink
    
Code refactoring,models renames...

              r629
            
                              force_defaults=True,)

        marcink
    
renamed project to rhodecode

              r547
            
              else:

                  return redirect(url('admin_home'))

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

marcink Cleaned up scm model codes,Admin/admin permissions controller codes	r760	# -- coding: utf-8 --
		"""
marcink some docs updates on controller	r853	rhodecode.controllers.admin.permissions
		~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

marcink Cleaned up scm model codes,Admin/admin permissions controller codes	r760	permissions controller for Rhodecode

		:created_on: Apr 27, 2010
		:author: marcink
marcink fixed copyright year to 2011	r902	:copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
marcink Cleaned up scm model codes,Admin/admin permissions controller codes	r760	:license: GPLv3, see COPYING for more details.
		"""
marcink renamed project to rhodecode	r547	# This program is free software; you can redistribute it and/or
		# modify it under the terms of the GNU General Public License
		# as published by the Free Software Foundation; version 2
		# of the License or (at your opinion) any later version of the license.
		#
		# This program is distributed in the hope that it will be useful,
		# but WITHOUT ANY WARRANTY; without even the implied warranty of
		# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
		# GNU General Public License for more details.
		#
		# You should have received a copy of the GNU General Public License
		# along with this program; if not, write to the Free Software
		# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
		# MA 02110-1301, USA.

		from formencode import htmlfill
		from pylons import request, session, tmpl_context as c, url
		from pylons.controllers.util import abort, redirect
		from pylons.i18n.translation import _
		from rhodecode.lib import helpers as h
		from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator
marcink implements #60, ldap configuration and authentication....	r705	from rhodecode.lib.auth_ldap import LdapImportError
marcink renamed project to rhodecode	r547	from rhodecode.lib.base import BaseController, render
marcink implements #60, ldap configuration and authentication....	r705	from rhodecode.model.forms import LdapSettingsForm, DefaultPermissionsForm
marcink #50 on point cache invalidation changes....	r692	from rhodecode.model.permission import PermissionModel
marcink implements #60, ldap configuration and authentication....	r705	from rhodecode.model.settings import SettingsModel
marcink Code refactoring,models renames...	r629	from rhodecode.model.user import UserModel
marcink renamed project to rhodecode	r547	import formencode
		import logging
		import traceback

		log = logging.getLogger(__name__)

		class PermissionsController(BaseController):
		"""REST Controller styled on the Atom Publishing Protocol"""
		# To properly map this controller, ensure your config/routing.py
		# file has a resource setup:
		# map.resource('permission', 'permissions')
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	@LoginRequired()
		@HasPermissionAllDecorator('hg.admin')
		def __before__(self):
		c.admin_user = session.get('admin_user')
		c.admin_username = session.get('admin_username')
		super(PermissionsController, self).__before__()
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	self.perms_choices = [('repository.none', _('None'),),
		('repository.read', _('Read'),),
		('repository.write', _('Write'),),
		('repository.admin', _('Admin'),)]
		self.register_choices = [
marcink #49 Enabled anonymous access for web interface controllable from permissions pannel	r673	('hg.register.none',
		_('disabled')),
marcink renamed project to rhodecode	r547	('hg.register.manual_activate',
marcink #49 Enabled anonymous access for web interface controllable from permissions pannel	r673	_('allowed with manual account activation')),
marcink renamed project to rhodecode	r547	('hg.register.auto_activate',
marcink #49 Enabled anonymous access for web interface controllable from permissions pannel	r673	_('allowed with automatic account activation')), ]
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	self.create_choices = [('hg.create.none', _('Disabled')),
marcink Code refactoring,models renames...	r629	('hg.create.repository', _('Enabled'))]
marcink renamed project to rhodecode	r547
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	def index(self, format='html'):
		"""GET /permissions: All items in the collection"""
		# url('permissions')

		def create(self):
		"""POST /permissions: Create a new item"""
		# url('permissions')

		def new(self, format='html'):
		"""GET /permissions/new: Form to create a new item"""
		# url('new_permission')

		def update(self, id):
		"""PUT /permissions/id: Update an existing item"""
		# Forms posted to this method should contain a hidden field:
		# <input type="hidden" name="_method" value="PUT" />
		# Or using helpers:
		# h.form(url('permission', id=ID),
		# method='put')
		# url('permission', id=ID)
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	permission_model = PermissionModel()
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	_form = DefaultPermissionsForm([x[0] for x in self.perms_choices],
		[x[0] for x in self.register_choices],
		[x[0] for x in self.create_choices])()
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	try:
		form_result = _form.to_python(dict(request.POST))
		form_result.update({'perm_user_name':id})
		permission_model.update(form_result)
marcink implements #60, ldap configuration and authentication....	r705	h.flash(_('Default permissions updated successfully'),
marcink renamed project to rhodecode	r547	category='success')
marcink Code refactoring,models renames...	r629
marcink refactor codes and setup for python 2.5...	r564	except formencode.Invalid, errors:
marcink renamed project to rhodecode	r547	c.perms_choices = self.perms_choices
		c.register_choices = self.register_choices
		c.create_choices = self.create_choices
marcink implements #60, ldap configuration and authentication....	r705	defaults = errors.value
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	return htmlfill.render(
		render('admin/permissions/permissions.html'),
marcink implements #60, ldap configuration and authentication....	r705	defaults=defaults,
marcink renamed project to rhodecode	r547	errors=errors.error_dict or {},
		prefix_error=False,
marcink Code refactoring,models renames...	r629	encoding="UTF-8")
marcink renamed project to rhodecode	r547	except Exception:
		log.error(traceback.format_exc())
marcink fixed spelling mistakes, and some minor docs bugs	r860	h.flash(_('error occurred during update of permissions'),
marcink renamed project to rhodecode	r547	category='error')
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	return redirect(url('edit_permission', id=id))
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547

		def delete(self, id):
		"""DELETE /permissions/id: Delete an existing item"""
		# Forms posted to this method should contain a hidden field:
		# <input type="hidden" name="_method" value="DELETE" />
		# Or using helpers:
		# h.form(url('permission', id=ID),
		# method='delete')
		# url('permission', id=ID)

		def show(self, id, format='html'):
		"""GET /permissions/id: Show a specific item"""
		# url('permission', id=ID)

		def edit(self, id, format='html'):
		"""GET /permissions/id/edit: Form to edit an existing item"""
		#url('edit_permission', id=ID)
		c.perms_choices = self.perms_choices
		c.register_choices = self.register_choices
		c.create_choices = self.create_choices
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	if id == 'default':
marcink #49 Enabled anonymous access for web interface controllable from permissions pannel	r673	default_user = UserModel().get_by_username('default')
		defaults = {'_method':'put',
		'anonymous':default_user.active}
marcink fixes #77 moved out ldap config to it's own section	r769
marcink #49 Enabled anonymous access for web interface controllable from permissions pannel	r673	for p in default_user.user_perms:
marcink renamed project to rhodecode	r547	if p.permission.permission_name.startswith('repository.'):
marcink Code refactoring,models renames...	r629	defaults['default_perm'] = p.permission.permission_name

marcink renamed project to rhodecode	r547	if p.permission.permission_name.startswith('hg.register.'):
		defaults['default_register'] = p.permission.permission_name
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	if p.permission.permission_name.startswith('hg.create.'):
		defaults['default_create'] = p.permission.permission_name
marcink Code refactoring,models renames...	r629
marcink renamed project to rhodecode	r547	return htmlfill.render(
		render('admin/permissions/permissions.html'),
		defaults=defaults,
		encoding="UTF-8",
marcink Code refactoring,models renames...	r629	force_defaults=True,)
marcink renamed project to rhodecode	r547	else:
		return redirect(url('admin_home'))