upstream/kallithea Commit - r458:00f883ab

1

""" this is forms validation classes

1

""" this is forms validation classes

2

http://formencode.org/module-formencode.validators.html

2

http://formencode.org/module-formencode.validators.html

3

for list off all availible validators

3

for list off all availible validators

4

5

we can create our own validators

5

we can create our own validators

6

7

The table below outlines the options which can be used in a schema in addition to the validators themselves

7

The table below outlines the options which can be used in a schema in addition to the validators themselves

8

pre_validators [] These validators will be applied before the schema

8

pre_validators [] These validators will be applied before the schema

9

chained_validators [] These validators will be applied after the schema

9

chained_validators [] These validators will be applied after the schema

10

allow_extra_fields False If True, then it is not an error when keys that aren't associated with a validator are present

10

allow_extra_fields False If True, then it is not an error when keys that aren't associated with a validator are present

11

filter_extra_fields False If True, then keys that aren't associated with a validator are removed

11

filter_extra_fields False If True, then keys that aren't associated with a validator are removed

12

if_key_missing NoDefault If this is given, then any keys that aren't available but are expected will be replaced with this value (and then validated). This does not override a present .if_missing attribute on validators. NoDefault is a special FormEncode class to mean that no default values has been specified and therefore missing keys shouldn't take a default value.

12

if_key_missing NoDefault If this is given, then any keys that aren't available but are expected will be replaced with this value (and then validated). This does not override a present .if_missing attribute on validators. NoDefault is a special FormEncode class to mean that no default values has been specified and therefore missing keys shouldn't take a default value.

13

ignore_key_missing False If True, then missing keys will be missing in the result, if the validator doesn't have .if_missing on it already

13

ignore_key_missing False If True, then missing keys will be missing in the result, if the validator doesn't have .if_missing on it already

14

15

16

<name> = formencode.validators.<name of validator>

16

<name> = formencode.validators.<name of validator>

17

<name> must equal form name

17

<name> must equal form name

18

list=[1,2,3,4,5]

18

list=[1,2,3,4,5]

19

for SELECT use formencode.All(OneOf(list), Int())

19

for SELECT use formencode.All(OneOf(list), Int())

20

21

"""

21

"""

22

from formencode import All

22

from formencode import All

23

from formencode.validators import UnicodeString, OneOf, Int, Number, Regex, \

23

from formencode.validators import UnicodeString, OneOf, Int, Number, Regex, \

24

Email, Bool, StringBoolean

24

Email, Bool, StringBoolean

25

from pylons import session

25

from pylons import session

26

from pylons.i18n.translation import _

26

from pylons.i18n.translation import _

27

from pylons_app.lib.auth import check_password, get_crypt_password

27

from pylons_app.lib.auth import check_password, get_crypt_password

28

from pylons_app.model import meta

28

from pylons_app.model import meta

29

from pylons_app.model.user_model import UserModel

29

from pylons_app.model.user_model import UserModel

30

from pylons_app.model.db import User, Repository

30

from pylons_app.model.db import User, Repository

31

from sqlalchemy.exc import OperationalError

31

from sqlalchemy.exc import OperationalError

32

from sqlalchemy.orm.exc import NoResultFound, MultipleResultsFound

32

from sqlalchemy.orm.exc import NoResultFound, MultipleResultsFound

33

from webhelpers.pylonslib.secure_form import authentication_token

33

from webhelpers.pylonslib.secure_form import authentication_token

34

import formencode

34

import formencode

35

import logging

35

import logging

36

import os

36

import os

37

import pylons_app.lib.helpers as h

37

import pylons_app.lib.helpers as h

38

log = logging.getLogger(__name__)

38

log = logging.getLogger(__name__)

39

40

41

#this is needed to translate the messages using _() in validators

41

#this is needed to translate the messages using _() in validators

42

class State_obj(object):

42

class State_obj(object):

43

_ = staticmethod(_)

43

_ = staticmethod(_)

44

45

#===============================================================================

45

#===============================================================================

46

# VALIDATORS

46

# VALIDATORS

47

#===============================================================================

47

#===============================================================================

48

class ValidAuthToken(formencode.validators.FancyValidator):

48

class ValidAuthToken(formencode.validators.FancyValidator):

49

messages = {'invalid_token':_('Token mismatch')}

49

messages = {'invalid_token':_('Token mismatch')}

50

51

def validate_python(self, value, state):

51

def validate_python(self, value, state):

52

53

if value != authentication_token():

53

if value != authentication_token():

54

raise formencode.Invalid(self.message('invalid_token', state,

54

raise formencode.Invalid(self.message('invalid_token', state,

55

search_number=value), value, state)

55

search_number=value), value, state)

56

57

def ValidUsername(edit, old_data):

57

def ValidUsername(edit, old_data):

58

class _ValidUsername(formencode.validators.FancyValidator):

58

class _ValidUsername(formencode.validators.FancyValidator):

59

60

def validate_python(self, value, state):

60

def validate_python(self, value, state):

61

if value in ['default', 'new_user']:

61

if value in ['default', 'new_user']:

62

raise formencode.Invalid(_('Invalid username'), value, state)

62

raise formencode.Invalid(_('Invalid username'), value, state)

63

#check if user is uniq

63

#check if user is uniq

64

sa = meta.Session

64

sa = meta.Session

65

old_un = None

65

old_un = None

66

if edit:

66

if edit:

67

old_un = sa.query(User).get(old_data.get('user_id')).username

67

old_un = sa.query(User).get(old_data.get('user_id')).username

68

69

if old_un != value or not edit:

69

if old_un != value or not edit:

70

if sa.query(User).filter(User.username == value).scalar():

70

if sa.query(User).filter(User.username == value).scalar():

71

raise formencode.Invalid(_('This username already exists') ,

71

raise formencode.Invalid(_('This username already exists') ,

72

value, state)

72

value, state)

73

meta.Session.remove()

73

meta.Session.remove()

74

75

return _ValidUsername

75

return _ValidUsername

76

77

class ValidPassword(formencode.validators.FancyValidator):

77

class ValidPassword(formencode.validators.FancyValidator):

78

79

def to_python(self, value, state):

79

def to_python(self, value, state):

80

if value:

80

if value:

81

return get_crypt_password(value)

81

return get_crypt_password(value)

82

83

class ValidAuth(formencode.validators.FancyValidator):

83

class ValidAuth(formencode.validators.FancyValidator):

84

messages = {

84

messages = {

85

'invalid_password':_('invalid password'),

85

'invalid_password':_('invalid password'),

86

'invalid_login':_('invalid user name'),

86

'invalid_login':_('invalid user name'),

87

'disabled_account':_('Your acccount is disabled')

87

'disabled_account':_('Your acccount is disabled')

88

89

}

89

}

90

#error mapping

90

#error mapping

91

e_dict = {'username':messages['invalid_login'],

91

e_dict = {'username':messages['invalid_login'],

92

'password':messages['invalid_password']}

92

'password':messages['invalid_password']}

93

e_dict_disable = {'username':messages['disabled_account']}

93

e_dict_disable = {'username':messages['disabled_account']}

94

95

def validate_python(self, value, state):

95

def validate_python(self, value, state):

96

password = value['password']

96

password = value['password']

97

username = value['username']

97

username = value['username']

98

try:

98

user = UserModel().get_user_by_name(username)

99

user = UserModel().get_user_by_name(username)

99

if user is None:

100

except (NoResultFound, MultipleResultsFound, OperationalError) as e:

101

log.error(e)

102

user = None

103

raise formencode.Invalid(self.message('invalid_password',

100

raise formencode.Invalid(self.message('invalid_password',

104

state=State_obj), value, state,

101

state=State_obj), value, state,

105

error_dict=self.e_dict)

102

error_dict=self.e_dict)

106

if user:

103

if user:

107

if user.active:

104

if user.active:

108

if user.username == username and check_password(password,

105

if user.username == username and check_password(password,

109

user.password):

106

user.password):

110

return value

107

return value

111

else:

108

else:

112

log.warning('user %s not authenticated', username)

109

log.warning('user %s not authenticated', username)

113

raise formencode.Invalid(self.message('invalid_password',

110

raise formencode.Invalid(self.message('invalid_password',

114

state=State_obj), value, state,

111

state=State_obj), value, state,

115

error_dict=self.e_dict)

112

error_dict=self.e_dict)

116

else:

113

else:

117

log.warning('user %s is disabled', username)

114

log.warning('user %s is disabled', username)

118

raise formencode.Invalid(self.message('disabled_account',

115

raise formencode.Invalid(self.message('disabled_account',

119

state=State_obj),

116

state=State_obj),

120

value, state,

117

value, state,

121

error_dict=self.e_dict_disable)

118

error_dict=self.e_dict_disable)

122

119

123

class ValidRepoUser(formencode.validators.FancyValidator):

120

class ValidRepoUser(formencode.validators.FancyValidator):

124

121

125

def to_python(self, value, state):

122

def to_python(self, value, state):

126

try:

123

try:

127

self.user_db = meta.Session.query(User)\

124

self.user_db = meta.Session.query(User)\

128

.filter(User.active == True)\

125

.filter(User.active == True)\

129

.filter(User.username == value).one()

126

.filter(User.username == value).one()

130

except Exception:

127

except Exception:

131

raise formencode.Invalid(_('This username is not valid'),

128

raise formencode.Invalid(_('This username is not valid'),

132

value, state)

129

value, state)

133

finally:

130

finally:

134

meta.Session.remove()

131

meta.Session.remove()

135

132

136

return self.user_db.user_id

133

return self.user_db.user_id

137

134

138

def ValidRepoName(edit, old_data):

135

def ValidRepoName(edit, old_data):

139

class _ValidRepoName(formencode.validators.FancyValidator):

136

class _ValidRepoName(formencode.validators.FancyValidator):

140

137

141

def to_python(self, value, state):

138

def to_python(self, value, state):

142

slug = h.repo_name_slug(value)

139

slug = h.repo_name_slug(value)

143

if slug in ['_admin']:

140

if slug in ['_admin']:

144

raise formencode.Invalid(_('This repository name is disallowed'),

141

raise formencode.Invalid(_('This repository name is disallowed'),

145

value, state)

142

value, state)

146

if old_data.get('repo_name') != value or not edit:

143

if old_data.get('repo_name') != value or not edit:

147

sa = meta.Session

144

sa = meta.Session

148

if sa.query(Repository).filter(Repository.repo_name == slug).scalar():

145

if sa.query(Repository).filter(Repository.repo_name == slug).scalar():

149

raise formencode.Invalid(_('This repository already exists') ,

146

raise formencode.Invalid(_('This repository already exists') ,

150

value, state)

147

value, state)

151

meta.Session.remove()

148

meta.Session.remove()

152

return slug

149

return slug

153

150

154

151

155

return _ValidRepoName

152

return _ValidRepoName

156

153

157

class ValidPerms(formencode.validators.FancyValidator):

154

class ValidPerms(formencode.validators.FancyValidator):

158

messages = {'perm_new_user_name':_('This username is not valid')}

155

messages = {'perm_new_user_name':_('This username is not valid')}

159

156

160

def to_python(self, value, state):

157

def to_python(self, value, state):

161

perms_update = []

158

perms_update = []

162

perms_new = []

159

perms_new = []

163

#build a list of permission to update and new permission to create

160

#build a list of permission to update and new permission to create

164

for k, v in value.items():

161

for k, v in value.items():

165

if k.startswith('perm_'):

162

if k.startswith('perm_'):

166

if k.startswith('perm_new_user'):

163

if k.startswith('perm_new_user'):

167

new_perm = value.get('perm_new_user', False)

164

new_perm = value.get('perm_new_user', False)

168

new_user = value.get('perm_new_user_name', False)

165

new_user = value.get('perm_new_user_name', False)

169

if new_user and new_perm:

166

if new_user and new_perm:

170

if (new_user, new_perm) not in perms_new:

167

if (new_user, new_perm) not in perms_new:

171

perms_new.append((new_user, new_perm))

168

perms_new.append((new_user, new_perm))

172

else:

169

else:

173

usr = k[5:]

170

usr = k[5:]

174

if usr == 'default':

171

if usr == 'default':

175

if value['private']:

172

if value['private']:

176

#set none for default when updating to private repo

173

#set none for default when updating to private repo

177

v = 'repository.none'

174

v = 'repository.none'

178

perms_update.append((usr, v))

175

perms_update.append((usr, v))

179

value['perms_updates'] = perms_update

176

value['perms_updates'] = perms_update

180

value['perms_new'] = perms_new

177

value['perms_new'] = perms_new

181

sa = meta.Session

178

sa = meta.Session

182

for k, v in perms_new:

179

for k, v in perms_new:

183

try:

180

try:

184

self.user_db = sa.query(User)\

181

self.user_db = sa.query(User)\

185

.filter(User.active == True)\

182

.filter(User.active == True)\

186

.filter(User.username == k).one()

183

.filter(User.username == k).one()

187

except Exception:

184

except Exception:

188

msg = self.message('perm_new_user_name',

185

msg = self.message('perm_new_user_name',

189

state=State_obj)

186

state=State_obj)

190

raise formencode.Invalid(msg, value, state, error_dict={'perm_new_user_name':msg})

187

raise formencode.Invalid(msg, value, state, error_dict={'perm_new_user_name':msg})

191

return value

188

return value

192

189

193

class ValidSettings(formencode.validators.FancyValidator):

190

class ValidSettings(formencode.validators.FancyValidator):

194

191

195

def to_python(self, value, state):

192

def to_python(self, value, state):

196

#settings form can't edit user

193

#settings form can't edit user

197

if value.has_key('user'):

194

if value.has_key('user'):

198

del['value']['user']

195

del['value']['user']

199

196

200

return value

197

return value

201

198

202

class ValidPath(formencode.validators.FancyValidator):

199

class ValidPath(formencode.validators.FancyValidator):

203

def to_python(self, value, state):

200

def to_python(self, value, state):

204

isdir = os.path.isdir(value.replace('*', ''))

201

isdir = os.path.isdir(value.replace('*', ''))

205

if (value.endswith('/*') or value.endswith('/**')) and isdir:

202

if (value.endswith('/*') or value.endswith('/**')) and isdir:

206

return value

203

return value

207

elif not isdir:

204

elif not isdir:

208

msg = _('This is not a valid path')

205

msg = _('This is not a valid path')

209

else:

206

else:

210

msg = _('You need to specify * or ** at the end of path (ie. /tmp/*)')

207

msg = _('You need to specify * or ** at the end of path (ie. /tmp/*)')

211

208

212

raise formencode.Invalid(msg, value, state,

209

raise formencode.Invalid(msg, value, state,

213

error_dict={'paths_root_path':msg})

210

error_dict={'paths_root_path':msg})

214

211

215

#===============================================================================

212

#===============================================================================

216

# FORMS

213

# FORMS

217

#===============================================================================

214

#===============================================================================

218

class LoginForm(formencode.Schema):

215

class LoginForm(formencode.Schema):

219

allow_extra_fields = True

216

allow_extra_fields = True

220

filter_extra_fields = True

217

filter_extra_fields = True

221

username = UnicodeString(

218

username = UnicodeString(

222

strip=True,

219

strip=True,

223

min=3,

220

min=3,

224

not_empty=True,

221

not_empty=True,

225

messages={

222

messages={

226

'empty':_('Please enter a login'),

223

'empty':_('Please enter a login'),

227

'tooShort':_('Enter a value %(min)i characters long or more')}

224

'tooShort':_('Enter a value %(min)i characters long or more')}

228

)

225

)

229

226

230

password = UnicodeString(

227

password = UnicodeString(

231

strip=True,

228

strip=True,

232

min=3,

229

min=3,

233

not_empty=True,

230

not_empty=True,

234

messages={

231

messages={

235

'empty':_('Please enter a password'),

232

'empty':_('Please enter a password'),

236

'tooShort':_('Enter a value %(min)i characters long or more')}

233

'tooShort':_('Enter a value %(min)i characters long or more')}

237

)

234

)

238

235

239

236

240

#chained validators have access to all data

237

#chained validators have access to all data

241

chained_validators = [ValidAuth]

238

chained_validators = [ValidAuth]

242

239

243

def UserForm(edit=False, old_data={}):

240

def UserForm(edit=False, old_data={}):

244

class _UserForm(formencode.Schema):

241

class _UserForm(formencode.Schema):

245

allow_extra_fields = True

242

allow_extra_fields = True

246

filter_extra_fields = True

243

filter_extra_fields = True

247

username = All(UnicodeString(strip=True, min=3, not_empty=True), ValidUsername(edit, old_data))

244

username = All(UnicodeString(strip=True, min=3, not_empty=True), ValidUsername(edit, old_data))

248

if edit:

245

if edit:

249

new_password = All(UnicodeString(strip=True, min=3, not_empty=False), ValidPassword)

246

new_password = All(UnicodeString(strip=True, min=3, not_empty=False), ValidPassword)

250

admin = StringBoolean(if_missing=False)

247

admin = StringBoolean(if_missing=False)

251

else:

248

else:

252

password = All(UnicodeString(strip=True, min=8, not_empty=True), ValidPassword)

249

password = All(UnicodeString(strip=True, min=8, not_empty=True), ValidPassword)

253

active = StringBoolean(if_missing=False)

250

active = StringBoolean(if_missing=False)

254

name = UnicodeString(strip=True, min=3, not_empty=True)

251

name = UnicodeString(strip=True, min=3, not_empty=True)

255

lastname = UnicodeString(strip=True, min=3, not_empty=True)

252

lastname = UnicodeString(strip=True, min=3, not_empty=True)

256

email = Email(not_empty=True)

253

email = Email(not_empty=True)

257

254

258

return _UserForm

255

return _UserForm

259

256

260

RegisterForm = UserForm

257

RegisterForm = UserForm

261

258

262

259

263

def RepoForm(edit=False, old_data={}):

260

def RepoForm(edit=False, old_data={}):

264

class _RepoForm(formencode.Schema):

261

class _RepoForm(formencode.Schema):

265

allow_extra_fields = True

262

allow_extra_fields = True

266

filter_extra_fields = False

263

filter_extra_fields = False

267

repo_name = All(UnicodeString(strip=True, min=1, not_empty=True), ValidRepoName(edit, old_data))

264

repo_name = All(UnicodeString(strip=True, min=1, not_empty=True), ValidRepoName(edit, old_data))

268

description = UnicodeString(strip=True, min=3, not_empty=True)

265

description = UnicodeString(strip=True, min=3, not_empty=True)

269

private = StringBoolean(if_missing=False)

266

private = StringBoolean(if_missing=False)

270

267

271

if edit:

268

if edit:

272

user = All(Int(not_empty=True), ValidRepoUser)

269

user = All(Int(not_empty=True), ValidRepoUser)

273

270

274

chained_validators = [ValidPerms]

271

chained_validators = [ValidPerms]

275

return _RepoForm

272

return _RepoForm

276

273

277

def RepoSettingsForm(edit=False, old_data={}):

274

def RepoSettingsForm(edit=False, old_data={}):

278

class _RepoForm(formencode.Schema):

275

class _RepoForm(formencode.Schema):

279

allow_extra_fields = True

276

allow_extra_fields = True

280

filter_extra_fields = False

277

filter_extra_fields = False

281

repo_name = All(UnicodeString(strip=True, min=1, not_empty=True), ValidRepoName(edit, old_data))

278

repo_name = All(UnicodeString(strip=True, min=1, not_empty=True), ValidRepoName(edit, old_data))

282

description = UnicodeString(strip=True, min=3, not_empty=True)

279

description = UnicodeString(strip=True, min=3, not_empty=True)

283

private = StringBoolean(if_missing=False)

280

private = StringBoolean(if_missing=False)

284

281

285

chained_validators = [ValidPerms, ValidSettings]

282

chained_validators = [ValidPerms, ValidSettings]

286

return _RepoForm

283

return _RepoForm

287

284

288

285

289

def ApplicationSettingsForm():

286

def ApplicationSettingsForm():

290

class _ApplicationSettingsForm(formencode.Schema):

287

class _ApplicationSettingsForm(formencode.Schema):

291

allow_extra_fields = True

288

allow_extra_fields = True

292

filter_extra_fields = False

289

filter_extra_fields = False

293

hg_app_title = UnicodeString(strip=True, min=3, not_empty=True)

290

hg_app_title = UnicodeString(strip=True, min=3, not_empty=True)

294

hg_app_realm = UnicodeString(strip=True, min=3, not_empty=True)

291

hg_app_realm = UnicodeString(strip=True, min=3, not_empty=True)

295

292

296

return _ApplicationSettingsForm

293

return _ApplicationSettingsForm

297

294

298

def ApplicationUiSettingsForm():

295

def ApplicationUiSettingsForm():

299

class _ApplicationUiSettingsForm(formencode.Schema):

296

class _ApplicationUiSettingsForm(formencode.Schema):

300

allow_extra_fields = True

297

allow_extra_fields = True

301

filter_extra_fields = False

298

filter_extra_fields = False

302

web_push_ssl = OneOf(['true', 'false'], if_missing='false')

299

web_push_ssl = OneOf(['true', 'false'], if_missing='false')

303

paths_root_path = All(ValidPath(), UnicodeString(strip=True, min=3, not_empty=True))

300

paths_root_path = All(ValidPath(), UnicodeString(strip=True, min=3, not_empty=True))

304

hooks_changegroup_update = OneOf(['True', 'False'], if_missing=False)

301

hooks_changegroup_update = OneOf(['True', 'False'], if_missing=False)

305

hooks_changegroup_repo_size = OneOf(['True', 'False'], if_missing=False)

302

hooks_changegroup_repo_size = OneOf(['True', 'False'], if_missing=False)

306

303

307

return _ApplicationUiSettingsForm

304

return _ApplicationUiSettingsForm

308

305

309

def DefaultPermissionsForm(perms_choices, register_choices, create_choices):

306

def DefaultPermissionsForm(perms_choices, register_choices, create_choices):

310

class _DefaultPermissionsForm(formencode.Schema):

307

class _DefaultPermissionsForm(formencode.Schema):

311

allow_extra_fields = True

308

allow_extra_fields = True

312

filter_extra_fields = True

309

filter_extra_fields = True

313

overwrite_default = OneOf(['true', 'false'], if_missing='false')

310

overwrite_default = OneOf(['true', 'false'], if_missing='false')

314

default_perm = OneOf(perms_choices)

311

default_perm = OneOf(perms_choices)

315

default_register = OneOf(register_choices)

312

default_register = OneOf(register_choices)

316

default_create = OneOf(create_choices)

313

default_create = OneOf(create_choices)

317

314

318

return _DefaultPermissionsForm

315

return _DefaultPermissionsForm

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

             """ this is forms validation classes
             http://formencode.org/module-formencode.validators.html
             for list off all availible validators
             we can create our own validators
             The table below outlines the options which can be used in a schema in addition to the validators themselves
             pre_validators          []     These validators will be applied before the schema
             chained_validators      []     These validators will be applied after the schema
             allow_extra_fields      False     If True, then it is not an error when keys that aren't associated with a validator are present
             filter_extra_fields     False     If True, then keys that aren't associated with a validator are removed
             if_key_missing          NoDefault If this is given, then any keys that aren't available but are expected will be replaced with this value (and then validated). This does not override a present .if_missing attribute on validators. NoDefault is a special FormEncode class to mean that no default values has been specified and therefore missing keys shouldn't take a default value.
             ignore_key_missing      False     If True, then missing keys will be missing in the result, if the validator doesn't have .if_missing on it already
             <name> = formencode.validators.<name of validator>
             <name> must equal form name
             list=[1,2,3,4,5]
             for SELECT use formencode.All(OneOf(list), Int())
             """
             from formencode import All
             from formencode.validators import UnicodeString, OneOf, Int, Number, Regex, \
                 Email, Bool, StringBoolean
             from pylons import session
             from pylons.i18n.translation import _
             from pylons_app.lib.auth import check_password, get_crypt_password
             from pylons_app.model import meta
             from pylons_app.model.user_model import UserModel
             from pylons_app.model.db import User, Repository
             from sqlalchemy.exc import OperationalError
             from sqlalchemy.orm.exc import NoResultFound, MultipleResultsFound
             from webhelpers.pylonslib.secure_form import authentication_token
             import formencode
             import logging
             import os
             import pylons_app.lib.helpers as h
             log = logging.getLogger(__name__)
             #this is needed to translate the messages using _() in validators
             class State_obj(object):
                 _ = staticmethod(_)
             #===============================================================================
             # VALIDATORS
             #===============================================================================
             class ValidAuthToken(formencode.validators.FancyValidator):
                 messages = {'invalid_token':_('Token mismatch')}
                 def validate_python(self, value, state):
                     if value != authentication_token():
                         raise formencode.Invalid(self.message('invalid_token', state,
                                                         search_number=value), value, state)
             def ValidUsername(edit, old_data):
                 class _ValidUsername(formencode.validators.FancyValidator):
                     def validate_python(self, value, state):
                         if value in ['default', 'new_user']:
                             raise formencode.Invalid(_('Invalid username'), value, state)
                         #check if user is uniq
                         sa = meta.Session
                         old_un = None
                         if edit:
                             old_un = sa.query(User).get(old_data.get('user_id')).username
                         if old_un != value or not edit:
                             if sa.query(User).filter(User.username == value).scalar():
                                 raise formencode.Invalid(_('This username already exists') ,
                                                          value, state)
                         meta.Session.remove()
                 return _ValidUsername
             class ValidPassword(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     if value:
                         return get_crypt_password(value)
             class ValidAuth(formencode.validators.FancyValidator):
                 messages = {
                         'invalid_password':_('invalid password'),
                         'invalid_login':_('invalid user name'),
                         'disabled_account':_('Your acccount is disabled')
                         }
                 #error mapping
                 e_dict = {'username':messages['invalid_login'],
                           'password':messages['invalid_password']}
                 e_dict_disable = {'username':messages['disabled_account']}
                 def validate_python(self, value, state):
                     password = value['password']
                     username = value['username']
-                    try:
+                    user = UserModel().get_user_by_name(username)
-                        user = UserModel().get_user_by_name(username)
+                    if user is None:
-                    except (NoResultFound, MultipleResultsFound, OperationalError) as e:
-                        log.error(e)
-                        user = None
                         raise formencode.Invalid(self.message('invalid_password',
                                                  state=State_obj), value, state,
                                                  error_dict=self.e_dict)
                     if user:
                         if user.active:
                             if user.username == username and check_password(password,
                                                                             user.password):
                                 return value
                             else:
                                 log.warning('user %s not authenticated', username)
                                 raise formencode.Invalid(self.message('invalid_password',
                                                          state=State_obj), value, state,
                                                          error_dict=self.e_dict)
                         else:
                             log.warning('user %s is disabled', username)
                             raise formencode.Invalid(self.message('disabled_account',
                                                      state=State_obj),
                                                      value, state,
                                                      error_dict=self.e_dict_disable)
             class ValidRepoUser(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     try:
                         self.user_db = meta.Session.query(User)\
                             .filter(User.active == True)\
                             .filter(User.username == value).one()
                     except Exception:
                         raise formencode.Invalid(_('This username is not valid'),
                                                  value, state)
                     finally:
                         meta.Session.remove()
                     return self.user_db.user_id
             def ValidRepoName(edit, old_data):
                 class _ValidRepoName(formencode.validators.FancyValidator):
                     def to_python(self, value, state):
                         slug = h.repo_name_slug(value)
                         if slug in ['_admin']:
                             raise formencode.Invalid(_('This repository name is disallowed'),
                                                      value, state)
                         if old_data.get('repo_name') != value or not edit:
                             sa = meta.Session
                             if sa.query(Repository).filter(Repository.repo_name == slug).scalar():
                                 raise formencode.Invalid(_('This repository already exists') ,
                                                          value, state)
                             meta.Session.remove()
                         return slug
                 return _ValidRepoName
             class ValidPerms(formencode.validators.FancyValidator):
                 messages = {'perm_new_user_name':_('This username is not valid')}
                 def to_python(self, value, state):
                     perms_update = []
                     perms_new = []
                     #build a list of permission to update and new permission to create
                     for k, v in value.items():
                         if k.startswith('perm_'):
                             if  k.startswith('perm_new_user'):
                                 new_perm = value.get('perm_new_user', False)
                                 new_user = value.get('perm_new_user_name', False)
                                 if new_user and new_perm:
                                     if (new_user, new_perm) not in perms_new:
                                         perms_new.append((new_user, new_perm))
                             else:
                                 usr = k[5:]
                                 if usr == 'default':
                                     if value['private']:
                                         #set none for default when updating to private repo
                                         v = 'repository.none'
                                 perms_update.append((usr, v))
                     value['perms_updates'] = perms_update
                     value['perms_new'] = perms_new
                     sa = meta.Session
                     for k, v in perms_new:
                         try:
                             self.user_db = sa.query(User)\
                                 .filter(User.active == True)\
                                 .filter(User.username == k).one()
                         except Exception:
                             msg = self.message('perm_new_user_name',
                                                  state=State_obj)
                             raise formencode.Invalid(msg, value, state, error_dict={'perm_new_user_name':msg})
                     return value
             class ValidSettings(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     #settings  form can't edit user
                     if value.has_key('user'):
                         del['value']['user']
                     return value
             class ValidPath(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     isdir = os.path.isdir(value.replace('*', ''))
                     if (value.endswith('/*') or value.endswith('/**')) and isdir:
                         return value
                     elif not isdir:
                         msg = _('This is not a valid path')
                     else:
                         msg = _('You need to specify * or ** at the end of path (ie. /tmp/*)')
                     raise formencode.Invalid(msg, value, state,
                                                  error_dict={'paths_root_path':msg})
             #===============================================================================
             # FORMS
             #===============================================================================
             class LoginForm(formencode.Schema):
                 allow_extra_fields = True
                 filter_extra_fields = True
                 username = UnicodeString(
                                          strip=True,
                                          min=3,
                                          not_empty=True,
                                          messages={
                                                    'empty':_('Please enter a login'),
                                                    'tooShort':_('Enter a value %(min)i characters long or more')}
                                         )
                 password = UnicodeString(
                                         strip=True,
                                         min=3,
                                         not_empty=True,
                                         messages={
                                                   'empty':_('Please enter a password'),
                                                   'tooShort':_('Enter a value %(min)i characters long or more')}
                                             )
                 #chained validators have access to all data
                 chained_validators = [ValidAuth]
             def UserForm(edit=False, old_data={}):
                 class _UserForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     username = All(UnicodeString(strip=True, min=3, not_empty=True), ValidUsername(edit, old_data))
                     if edit:
                         new_password = All(UnicodeString(strip=True, min=3, not_empty=False), ValidPassword)
                         admin = StringBoolean(if_missing=False)
                     else:
                         password = All(UnicodeString(strip=True, min=8, not_empty=True), ValidPassword)
                     active = StringBoolean(if_missing=False)
                     name = UnicodeString(strip=True, min=3, not_empty=True)
                     lastname = UnicodeString(strip=True, min=3, not_empty=True)
                     email = Email(not_empty=True)
                 return _UserForm
             RegisterForm = UserForm
             def RepoForm(edit=False, old_data={}):
                 class _RepoForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     repo_name = All(UnicodeString(strip=True, min=1, not_empty=True), ValidRepoName(edit, old_data))
                     description = UnicodeString(strip=True, min=3, not_empty=True)
                     private = StringBoolean(if_missing=False)
                     if edit:
                         user = All(Int(not_empty=True), ValidRepoUser)
                     chained_validators = [ValidPerms]
                 return _RepoForm
             def RepoSettingsForm(edit=False, old_data={}):
                 class _RepoForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     repo_name = All(UnicodeString(strip=True, min=1, not_empty=True), ValidRepoName(edit, old_data))
                     description = UnicodeString(strip=True, min=3, not_empty=True)
                     private = StringBoolean(if_missing=False)
                     chained_validators = [ValidPerms, ValidSettings]
                 return _RepoForm
             def ApplicationSettingsForm():
                 class _ApplicationSettingsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     hg_app_title = UnicodeString(strip=True, min=3, not_empty=True)
                     hg_app_realm = UnicodeString(strip=True, min=3, not_empty=True)
                 return _ApplicationSettingsForm
             def ApplicationUiSettingsForm():
                 class _ApplicationUiSettingsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     web_push_ssl = OneOf(['true', 'false'], if_missing='false')
                     paths_root_path = All(ValidPath(), UnicodeString(strip=True, min=3, not_empty=True))
                     hooks_changegroup_update = OneOf(['True', 'False'], if_missing=False)
                     hooks_changegroup_repo_size = OneOf(['True', 'False'], if_missing=False)
                 return _ApplicationUiSettingsForm
             def DefaultPermissionsForm(perms_choices, register_choices, create_choices):
                 class _DefaultPermissionsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     overwrite_default = OneOf(['true', 'false'], if_missing='false')
                     default_perm = OneOf(perms_choices)
                     default_register = OneOf(register_choices)
                     default_create = OneOf(create_choices)
                 return _DefaultPermissionsForm