upstream/kallithea Files · rhodecode/model/permission.py

backported redirection loop fix from beta ref:

marcink - - Load All Authors

File last commit:

r3791:e3857cbb default


                r3804:b95f383f

default

Download file

             permission.py
        
                    101 lines
            
             | 3.8 KiB
            
                | text/x-python
            
             |
                PythonLexer
            
             / rhodecode / model / permission.py
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        marcink
    
Models code cleanups

              r759
            
      # -*- coding: utf-8 -*-

      """

        marcink
    
docs updates

              r811
            
          rhodecode.model.permission

          ~~~~~~~~~~~~~~~~~~~~~~~~~~

        marcink
    
#50 on point cache invalidation changes....

              r692
            
        marcink
    
Models code cleanups

              r759
            
          permissions model for RhodeCode

        marcink
    
source code cleanup: remove trailing white space, normalize file endings

              r1203
            
        marcink
    
Models code cleanups

              r759
            
          :created_on: Aug 20, 2010

          :author: marcink

        marcink
    
2012 copyrights

              r1824
            
          :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>

        marcink
    
Models code cleanups

              r759
            
          :license: GPLv3, see COPYING for more details.

      """

        marcink
    
fixed license  issue #149

              r1206
            
      # This program is free software: you can redistribute it and/or modify

      # it under the terms of the GNU General Public License as published by

      # the Free Software Foundation, either version 3 of the License, or

      # (at your option) any later version.

        marcink
    
source code cleanup: remove trailing white space, normalize file endings

              r1203
            
      #

        marcink
    
#50 on point cache invalidation changes....

              r692
            
      # This program is distributed in the hope that it will be useful,

      # but WITHOUT ANY WARRANTY; without even the implied warranty of

      # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

      # GNU General Public License for more details.

        marcink
    
source code cleanup: remove trailing white space, normalize file endings

              r1203
            
      #

        marcink
    
#50 on point cache invalidation changes....

              r692
            
      # You should have received a copy of the GNU General Public License

        marcink
    
fixed license  issue #149

              r1206
            
      # along with this program.  If not, see <http://www.gnu.org/licenses/>.

        marcink
    
Models code cleanups

              r759
            
      import logging

      import traceback

      from sqlalchemy.exc import DatabaseError

        marcink
    
#50 on point cache invalidation changes....

              r692
            
        marcink
    
fixed Example celery config to ampq,...

              r752
            
      from rhodecode.model import BaseModel

        marcink
    
Update permissions from admin permissions menu, also overwrites defaults...

              r2425
            
      from rhodecode.model.db import User, Permission, UserToPerm, UserRepoToPerm,\

          UserRepoGroupToPerm

        marcink
    
make the permission update function idempotent

              r3791
            
      from rhodecode.lib.utils2 import str2bool

        marcink
    
moved caching query to libs

              r1669
            
        marcink
    
#50 on point cache invalidation changes....

              r692
            
      log = logging.getLogger(__name__)

        marcink
    
fixed Example celery config to ampq,...

              r752
            
      class PermissionModel(BaseModel):

        marcink
    
notification to commit author + gardening

              r1716
            
          """

          Permissions model for RhodeCode

        marcink
    
docs updates

              r811
            
          """

        marcink
    
#50 on point cache invalidation changes....

              r692
            
        marcink
    
Added associated classes into child models

              r2522
            
          cls = Permission

        marcink
    
#50 on point cache invalidation changes....

              r692
            
          def update(self, form_result):

        marcink
    
make the permission update function idempotent

              r3791
            
              perm_user = User.get_by_username(username=form_result['perm_user_name'])

              u2p = self.sa.query(UserToPerm).filter(UserToPerm.user == perm_user).all()

        marcink
    
#50 on point cache invalidation changes....

              r692
            
              try:

        marcink
    
make the permission update function idempotent

              r3791
            
                  def _make_new(usr, perm_name):

                      new = UserToPerm()

                      new.user = usr

                      new.permission = Permission.get_by_key(perm_name)

                      return new

                  # clear current entries, to make this function idempotent

                  # it will fix even if we define more permissions or permissions

                  # are somehow missing

        marcink
    
#50 on point cache invalidation changes....

              r692
            
                  for p in u2p:

        marcink
    
make the permission update function idempotent

              r3791
            
                      self.sa.delete(p)

                  #create fresh set of permissions

                  for def_perm_key in ['default_repo_perm', 'default_group_perm',

                                       'default_register', 'default_create',

                                       'default_fork']:

                      p = _make_new(perm_user, form_result[def_perm_key])

                      self.sa.add(p)

        marcink
    
RhodeCode now has a option to explicitly set forking permissions. ref #508...

              r2709
            
        marcink
    
#50 on point cache invalidation changes....

              r692
            
                  #stage 2 update all default permissions for repos if checked

        marcink
    
implemented #663 Admin/permission: specify default repogroup perms...

              r3052
            
                  if form_result['overwrite_default_repo'] == True:

                      _def_name = form_result['default_repo_perm'].split('repository.')[-1]

        marcink
    
make the permission update function idempotent

              r3791
            
                      _def = Permission.get_by_key('repository.' + _def_name)

        marcink
    
Update permissions from admin permissions menu, also overwrites defaults...

              r2425
            
                      # repos

        marcink
    
refactoring of models names for repoGroup permissions

              r1633
            
                      for r2p in self.sa.query(UserRepoToPerm)\

        marcink
    
Update permissions from admin permissions menu, also overwrites defaults...

              r2425
            
                                     .filter(UserRepoToPerm.user == perm_user)\

                                     .all():

        marcink
    
Global permission update with "overwrite existing settings" shouldn't override private repositories....

              r3220
            
                          #don't reset PRIVATE repositories

        Mads Kiilerich
    
follow Python conventions for boolean values...

              r3625
            
                          if not r2p.repository.private:

        marcink
    
Global permission update with "overwrite existing settings" shouldn't override private repositories....

              r3220
            
                              r2p.permission = _def

                              self.sa.add(r2p)

        marcink
    
implemented #663 Admin/permission: specify default repogroup perms...

              r3052
            
                  if form_result['overwrite_default_group'] == True:

                      _def_name = form_result['default_group_perm'].split('group.')[-1]

        marcink
    
Update permissions from admin permissions menu, also overwrites defaults...

              r2425
            
                      # groups

        marcink
    
make the permission update function idempotent

              r3791
            
                      _def = Permission.get_by_key('group.' + _def_name)

        marcink
    
Update permissions from admin permissions menu, also overwrites defaults...

              r2425
            
                      for g2p in self.sa.query(UserRepoGroupToPerm)\

                                     .filter(UserRepoGroupToPerm.user == perm_user)\

                                     .all():

                          g2p.permission = _def

                          self.sa.add(g2p)

        marcink
    
#50 on point cache invalidation changes....

              r692
            
        marcink
    
notification to commit author + gardening

              r1716
            
                  # stage 3 set anonymous access

        marcink
    
#50 on point cache invalidation changes....

              r692
            
                  if perm_user.username == 'default':

        marcink
    
make the permission update function idempotent

              r3791
            
                      perm_user.active = str2bool(form_result['anonymous'])

        marcink
    
#50 on point cache invalidation changes....

              r692
            
                      self.sa.add(perm_user)

        marcink
    
make the permission update function idempotent

              r3791
            
                  self.sa.commit()

        marcink
    
Models code cleanups

              r759
            
              except (DatabaseError,):

        marcink
    
#50 on point cache invalidation changes....

              r692
            
                  log.error(traceback.format_exc())

        marcink
    
make the permission update function idempotent

              r3791
            
                  self.sa.rollback()

        marcink
    
#50 on point cache invalidation changes....

              r692
            
                  raise

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

marcink Models code cleanups	r759	# -- coding: utf-8 --
		"""
marcink docs updates	r811	rhodecode.model.permission
		~~~~~~~~~~~~~~~~~~~~~~~~~~
marcink #50 on point cache invalidation changes....	r692
marcink Models code cleanups	r759	permissions model for RhodeCode
marcink source code cleanup: remove trailing white space, normalize file endings	r1203
marcink Models code cleanups	r759	:created_on: Aug 20, 2010
		:author: marcink
marcink 2012 copyrights	r1824	:copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
marcink Models code cleanups	r759	:license: GPLv3, see COPYING for more details.
		"""
marcink fixed license issue #149	r1206	# This program is free software: you can redistribute it and/or modify
		# it under the terms of the GNU General Public License as published by
		# the Free Software Foundation, either version 3 of the License, or
		# (at your option) any later version.
marcink source code cleanup: remove trailing white space, normalize file endings	r1203	#
marcink #50 on point cache invalidation changes....	r692	# This program is distributed in the hope that it will be useful,
		# but WITHOUT ANY WARRANTY; without even the implied warranty of
		# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
		# GNU General Public License for more details.
marcink source code cleanup: remove trailing white space, normalize file endings	r1203	#
marcink #50 on point cache invalidation changes....	r692	# You should have received a copy of the GNU General Public License
marcink fixed license issue #149	r1206	# along with this program. If not, see <http://www.gnu.org/licenses/>.
marcink Models code cleanups	r759
		import logging
		import traceback

		from sqlalchemy.exc import DatabaseError
marcink #50 on point cache invalidation changes....	r692
marcink fixed Example celery config to ampq,...	r752	from rhodecode.model import BaseModel
marcink Update permissions from admin permissions menu, also overwrites defaults...	r2425	from rhodecode.model.db import User, Permission, UserToPerm, UserRepoToPerm,\
		UserRepoGroupToPerm
marcink make the permission update function idempotent	r3791	from rhodecode.lib.utils2 import str2bool
marcink moved caching query to libs	r1669
marcink #50 on point cache invalidation changes....	r692	log = logging.getLogger(__name__)


marcink fixed Example celery config to ampq,...	r752	class PermissionModel(BaseModel):
marcink notification to commit author + gardening	r1716	"""
		Permissions model for RhodeCode
marcink docs updates	r811	"""
marcink #50 on point cache invalidation changes....	r692
marcink Added associated classes into child models	r2522	cls = Permission

marcink #50 on point cache invalidation changes....	r692	def update(self, form_result):
marcink make the permission update function idempotent	r3791	perm_user = User.get_by_username(username=form_result['perm_user_name'])
		u2p = self.sa.query(UserToPerm).filter(UserToPerm.user == perm_user).all()
marcink #50 on point cache invalidation changes....	r692
		try:
marcink make the permission update function idempotent	r3791	def _make_new(usr, perm_name):
		new = UserToPerm()
		new.user = usr
		new.permission = Permission.get_by_key(perm_name)
		return new
		# clear current entries, to make this function idempotent
		# it will fix even if we define more permissions or permissions
		# are somehow missing
marcink #50 on point cache invalidation changes....	r692	for p in u2p:
marcink make the permission update function idempotent	r3791	self.sa.delete(p)
		#create fresh set of permissions
		for def_perm_key in ['default_repo_perm', 'default_group_perm',
		'default_register', 'default_create',
		'default_fork']:
		p = _make_new(perm_user, form_result[def_perm_key])
		self.sa.add(p)
marcink RhodeCode now has a option to explicitly set forking permissions. ref #508...	r2709
marcink #50 on point cache invalidation changes....	r692	#stage 2 update all default permissions for repos if checked
marcink implemented #663 Admin/permission: specify default repogroup perms...	r3052	if form_result['overwrite_default_repo'] == True:
		_def_name = form_result['default_repo_perm'].split('repository.')[-1]
marcink make the permission update function idempotent	r3791	_def = Permission.get_by_key('repository.' + _def_name)
marcink Update permissions from admin permissions menu, also overwrites defaults...	r2425	# repos
marcink refactoring of models names for repoGroup permissions	r1633	for r2p in self.sa.query(UserRepoToPerm)\
marcink Update permissions from admin permissions menu, also overwrites defaults...	r2425	.filter(UserRepoToPerm.user == perm_user)\
		.all():
marcink Global permission update with "overwrite existing settings" shouldn't override private repositories....	r3220
		#don't reset PRIVATE repositories
Mads Kiilerich follow Python conventions for boolean values...	r3625	if not r2p.repository.private:
marcink Global permission update with "overwrite existing settings" shouldn't override private repositories....	r3220	r2p.permission = _def
		self.sa.add(r2p)
marcink implemented #663 Admin/permission: specify default repogroup perms...	r3052
		if form_result['overwrite_default_group'] == True:
		_def_name = form_result['default_group_perm'].split('group.')[-1]
marcink Update permissions from admin permissions menu, also overwrites defaults...	r2425	# groups
marcink make the permission update function idempotent	r3791	_def = Permission.get_by_key('group.' + _def_name)
marcink Update permissions from admin permissions menu, also overwrites defaults...	r2425	for g2p in self.sa.query(UserRepoGroupToPerm)\
		.filter(UserRepoGroupToPerm.user == perm_user)\
		.all():
		g2p.permission = _def
		self.sa.add(g2p)
marcink #50 on point cache invalidation changes....	r692
marcink notification to commit author + gardening	r1716	# stage 3 set anonymous access
marcink #50 on point cache invalidation changes....	r692	if perm_user.username == 'default':
marcink make the permission update function idempotent	r3791	perm_user.active = str2bool(form_result['anonymous'])
marcink #50 on point cache invalidation changes....	r692	self.sa.add(perm_user)

marcink make the permission update function idempotent	r3791	self.sa.commit()
marcink Models code cleanups	r759	except (DatabaseError,):
marcink #50 on point cache invalidation changes....	r692	log.error(traceback.format_exc())
marcink make the permission update function idempotent	r3791	self.sa.rollback()
marcink #50 on point cache invalidation changes....	r692	raise