users_groups.py
232 lines
| 9.2 KiB
| text/x-python
|
PythonLexer
r956 | # -*- coding: utf-8 -*- | |||
""" | ||||
rhodecode.controllers.admin.users_groups | ||||
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ | ||||
Users Groups crud controller for pylons | ||||
r1203 | ||||
r956 | :created_on: Jan 25, 2011 | |||
:author: marcink | ||||
r1824 | :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com> | |||
r956 | :license: GPLv3, see COPYING for more details. | |||
""" | ||||
r1206 | # This program is free software: you can redistribute it and/or modify | |||
# it under the terms of the GNU General Public License as published by | ||||
# the Free Software Foundation, either version 3 of the License, or | ||||
# (at your option) any later version. | ||||
r1203 | # | |||
r956 | # This program is distributed in the hope that it will be useful, | |||
# but WITHOUT ANY WARRANTY; without even the implied warranty of | ||||
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | ||||
# GNU General Public License for more details. | ||||
r1203 | # | |||
r956 | # You should have received a copy of the GNU General Public License | |||
r1206 | # along with this program. If not, see <http://www.gnu.org/licenses/>. | |||
r956 | ||||
import logging | ||||
import traceback | ||||
import formencode | ||||
from formencode import htmlfill | ||||
from pylons import request, session, tmpl_context as c, url, config | ||||
from pylons.controllers.util import abort, redirect | ||||
from pylons.i18n.translation import _ | ||||
r2109 | from rhodecode.lib import helpers as h | |||
r1435 | from rhodecode.lib.exceptions import UsersGroupsAssignedException | |||
r2109 | from rhodecode.lib.utils2 import safe_unicode | |||
r1117 | from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator | |||
r956 | from rhodecode.lib.base import BaseController, render | |||
r1749 | from rhodecode.model.users_group import UsersGroupModel | |||
r1271 | from rhodecode.model.db import User, UsersGroup, Permission, UsersGroupToPerm | |||
r1749 | from rhodecode.model.forms import UsersGroupForm | |||
from rhodecode.model.meta import Session | ||||
r2375 | from rhodecode.lib.utils import action_logger | |||
r956 | ||||
log = logging.getLogger(__name__) | ||||
r1245 | ||||
r956 | class UsersGroupsController(BaseController): | |||
"""REST Controller styled on the Atom Publishing Protocol""" | ||||
# To properly map this controller, ensure your config/routing.py | ||||
# file has a resource setup: | ||||
# map.resource('users_group', 'users_groups') | ||||
@LoginRequired() | ||||
@HasPermissionAllDecorator('hg.admin') | ||||
def __before__(self): | ||||
c.admin_user = session.get('admin_user') | ||||
c.admin_username = session.get('admin_username') | ||||
super(UsersGroupsController, self).__before__() | ||||
c.available_permissions = config['available_permissions'] | ||||
def index(self, format='html'): | ||||
"""GET /users_groups: All items in the collection""" | ||||
# url('users_groups') | ||||
r2662 | c.users_groups_list = UsersGroup().query().all() | |||
r956 | return render('admin/users_groups/users_groups.html') | |||
def create(self): | ||||
"""POST /users_groups: Create a new item""" | ||||
# url('users_groups') | ||||
r1436 | ||||
r959 | users_group_form = UsersGroupForm()() | |||
try: | ||||
form_result = users_group_form.to_python(dict(request.POST)) | ||||
r1749 | UsersGroupModel().create(name=form_result['users_group_name'], | |||
active=form_result['users_group_active']) | ||||
r2375 | gr = form_result['users_group_name'] | |||
action_logger(self.rhodecode_user, | ||||
'admin_created_users_group:%s' % gr, | ||||
None, self.ip_addr, self.sa) | ||||
h.flash(_('created users group %s') % gr, category='success') | ||||
r2662 | Session().commit() | |||
r959 | except formencode.Invalid, errors: | |||
return htmlfill.render( | ||||
render('admin/users_groups/users_group_add.html'), | ||||
defaults=errors.value, | ||||
errors=errors.error_dict or {}, | ||||
prefix_error=False, | ||||
encoding="UTF-8") | ||||
except Exception: | ||||
log.error(traceback.format_exc()) | ||||
h.flash(_('error occurred during creation of users group %s') \ | ||||
% request.POST.get('users_group_name'), category='error') | ||||
return redirect(url('users_groups')) | ||||
r956 | ||||
def new(self, format='html'): | ||||
"""GET /users_groups/new: Form to create a new item""" | ||||
# url('new_users_group') | ||||
r959 | return render('admin/users_groups/users_group_add.html') | |||
r956 | ||||
def update(self, id): | ||||
"""PUT /users_groups/id: Update an existing item""" | ||||
# Forms posted to this method should contain a hidden field: | ||||
# <input type="hidden" name="_method" value="PUT" /> | ||||
# Or using helpers: | ||||
# h.form(url('users_group', id=ID), | ||||
# method='put') | ||||
# url('users_group', id=ID) | ||||
r1436 | c.users_group = UsersGroup.get(id) | |||
r1952 | c.group_members_obj = [x.user for x in c.users_group.members] | |||
c.group_members = [(x.user_id, x.username) for x in | ||||
c.group_members_obj] | ||||
r972 | ||||
c.available_members = [(x.user_id, x.username) for x in | ||||
r2662 | User.query().all()] | |||
r1818 | ||||
r1749 | available_members = [safe_unicode(x[0]) for x in c.available_members] | |||
r1818 | ||||
r972 | users_group_form = UsersGroupForm(edit=True, | |||
old_data=c.users_group.get_dict(), | ||||
r1749 | available_members=available_members)() | |||
r972 | ||||
try: | ||||
form_result = users_group_form.to_python(request.POST) | ||||
r1749 | UsersGroupModel().update(c.users_group, form_result) | |||
r2375 | gr = form_result['users_group_name'] | |||
action_logger(self.rhodecode_user, | ||||
'admin_updated_users_group:%s' % gr, | ||||
None, self.ip_addr, self.sa) | ||||
h.flash(_('updated users group %s') % gr, category='success') | ||||
r2662 | Session().commit() | |||
r972 | except formencode.Invalid, errors: | |||
r1271 | e = errors.error_dict or {} | |||
perm = Permission.get_by_key('hg.create.repository') | ||||
e.update({'create_repo_perm': | ||||
r1749 | UsersGroupModel().has_perm(id, perm)}) | |||
r1271 | ||||
r972 | return htmlfill.render( | |||
render('admin/users_groups/users_group_edit.html'), | ||||
defaults=errors.value, | ||||
r1271 | errors=e, | |||
r972 | prefix_error=False, | |||
encoding="UTF-8") | ||||
except Exception: | ||||
log.error(traceback.format_exc()) | ||||
h.flash(_('error occurred during update of users group %s') \ | ||||
% request.POST.get('users_group_name'), category='error') | ||||
return redirect(url('users_groups')) | ||||
r956 | def delete(self, id): | |||
"""DELETE /users_groups/id: Delete an existing item""" | ||||
# Forms posted to this method should contain a hidden field: | ||||
# <input type="hidden" name="_method" value="DELETE" /> | ||||
# Or using helpers: | ||||
# h.form(url('users_group', id=ID), | ||||
# method='delete') | ||||
# url('users_group', id=ID) | ||||
r1436 | ||||
r973 | try: | |||
r1749 | UsersGroupModel().delete(id) | |||
r2662 | Session().commit() | |||
r973 | h.flash(_('successfully deleted users group'), category='success') | |||
r1435 | except UsersGroupsAssignedException, e: | |||
h.flash(e, category='error') | ||||
r973 | except Exception: | |||
r2063 | log.error(traceback.format_exc()) | |||
r973 | h.flash(_('An error occurred during deletion of users group'), | |||
category='error') | ||||
return redirect(url('users_groups')) | ||||
r956 | ||||
def show(self, id, format='html'): | ||||
"""GET /users_groups/id: Show a specific item""" | ||||
# url('users_group', id=ID) | ||||
def edit(self, id, format='html'): | ||||
"""GET /users_groups/id/edit: Form to edit an existing item""" | ||||
# url('edit_users_group', id=ID) | ||||
r972 | ||||
r2662 | c.users_group = UsersGroup.get(id) | |||
r972 | if not c.users_group: | |||
return redirect(url('users_groups')) | ||||
c.users_group.permissions = {} | ||||
r1952 | c.group_members_obj = [x.user for x in c.users_group.members] | |||
c.group_members = [(x.user_id, x.username) for x in | ||||
c.group_members_obj] | ||||
r972 | c.available_members = [(x.user_id, x.username) for x in | |||
r2662 | User.query().all()] | |||
r972 | defaults = c.users_group.get_dict() | |||
r1271 | perm = Permission.get_by_key('hg.create.repository') | |||
defaults.update({'create_repo_perm': | ||||
r1749 | UsersGroupModel().has_perm(c.users_group, perm)}) | |||
r972 | return htmlfill.render( | |||
render('admin/users_groups/users_group_edit.html'), | ||||
defaults=defaults, | ||||
encoding="UTF-8", | ||||
force_defaults=False | ||||
) | ||||
r1271 | ||||
def update_perm(self, id): | ||||
"""PUT /users_perm/id: Update an existing item""" | ||||
# url('users_group_perm', id=ID, method='put') | ||||
grant_perm = request.POST.get('create_repo_perm', False) | ||||
if grant_perm: | ||||
perm = Permission.get_by_key('hg.create.none') | ||||
r1749 | UsersGroupModel().revoke_perm(id, perm) | |||
r1271 | ||||
perm = Permission.get_by_key('hg.create.repository') | ||||
r1749 | UsersGroupModel().grant_perm(id, perm) | |||
r1271 | h.flash(_("Granted 'repository create' permission to user"), | |||
category='success') | ||||
r1818 | ||||
r2662 | Session().commit() | |||
r1271 | else: | |||
perm = Permission.get_by_key('hg.create.repository') | ||||
r1749 | UsersGroupModel().revoke_perm(id, perm) | |||
r1271 | ||||
perm = Permission.get_by_key('hg.create.none') | ||||
r1749 | UsersGroupModel().grant_perm(id, perm) | |||
r1271 | h.flash(_("Revoked 'repository create' permission to user"), | |||
category='success') | ||||
r2662 | Session().commit() | |||
r1271 | return redirect(url('edit_users_group', id=id)) | |||