upstream/kallithea Commit - r1518:55856097

merge beta fixes into stable

marcink -

r1518:55856097 default

parent child

rhodecode/model/repo.py

0 +4 -1

             # -*- coding: utf-8 -*-
             """
                 rhodecode.model.repo
                 ~~~~~~~~~~~~~~~~~~~~
                 Repository model for rhodecode
                 :created_on: Jun 5, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import os
             import shutil
             import logging
             import traceback
             from datetime import datetime
             from sqlalchemy.orm import joinedload, make_transient
             from vcs.utils.lazy import LazyProperty
             from vcs.backends import get_backend
             from rhodecode.lib import safe_str
             from rhodecode.model import BaseModel
             from rhodecode.model.caching_query import FromCache
             from rhodecode.model.db import Repository, RepoToPerm, User, Permission, \
                 Statistics, UsersGroup, UsersGroupRepoToPerm, RhodeCodeUi, Group
             from rhodecode.model.user import UserModel
             log = logging.getLogger(__name__)
             class RepoModel(BaseModel):
                 @LazyProperty
                 def repos_path(self):
                     """Get's the repositories root path from database
                     """
                     q = self.sa.query(RhodeCodeUi).filter(RhodeCodeUi.ui_key == '/').one()
                     return q.ui_value
                 def get(self, repo_id, cache=False):
                     repo = self.sa.query(Repository)\
                         .filter(Repository.repo_id == repo_id)
                     if cache:
                         repo = repo.options(FromCache("sql_cache_short",
                                                       "get_repo_%s" % repo_id))
                     return repo.scalar()
                 def get_by_repo_name(self, repo_name, cache=False):
                     repo = self.sa.query(Repository)\
                         .filter(Repository.repo_name == repo_name)
                     if cache:
                         repo = repo.options(FromCache("sql_cache_short",
                                                       "get_repo_%s" % repo_name))
                     return repo.scalar()
                 def get_users_js(self):
                     users = self.sa.query(User).filter(User.active == True).all()
                     u_tmpl = '''{id:%s, fname:"%s", lname:"%s", nname:"%s"},'''
                     users_array = '[%s]' % '\n'.join([u_tmpl % (u.user_id, u.name,
                                                                 u.lastname, u.username)
                                                     for u in users])
                     return users_array
                 def get_users_groups_js(self):
                     users_groups = self.sa.query(UsersGroup)\
                         .filter(UsersGroup.users_group_active == True).all()
                     g_tmpl = '''{id:%s, grname:"%s",grmembers:"%s"},'''
                     users_groups_array = '[%s]' % '\n'.join([g_tmpl % \
                                                 (gr.users_group_id, gr.users_group_name,
                                                  len(gr.members))
                                                     for gr in users_groups])
                     return users_groups_array
                 def update(self, repo_name, form_data):
                     try:
                         cur_repo = self.get_by_repo_name(repo_name, cache=False)
                         #update permissions
                         for member, perm, member_type in form_data['perms_updates']:
                             if member_type == 'user':
                                 r2p = self.sa.query(RepoToPerm)\
                                         .filter(RepoToPerm.user == User.by_username(member))\
                                         .filter(RepoToPerm.repository == cur_repo)\
                                         .one()
                                 r2p.permission = self.sa.query(Permission)\
                                                     .filter(Permission.permission_name ==
                                                             perm).scalar()
                                 self.sa.add(r2p)
                             else:
                                 g2p = self.sa.query(UsersGroupRepoToPerm)\
                                         .filter(UsersGroupRepoToPerm.users_group ==
                                                 UsersGroup.get_by_group_name(member))\
                                         .filter(UsersGroupRepoToPerm.repository ==
                                                 cur_repo).one()
                                 g2p.permission = self.sa.query(Permission)\
                                                     .filter(Permission.permission_name ==
                                                             perm).scalar()
                                 self.sa.add(g2p)
                         #set new permissions
                         for member, perm, member_type in form_data['perms_new']:
                             if member_type == 'user':
                                 r2p = RepoToPerm()
                                 r2p.repository = cur_repo
                                 r2p.user = User.by_username(member)
                                 r2p.permission = self.sa.query(Permission)\
                                                     .filter(Permission.
                                                             permission_name == perm)\
                                                             .scalar()
                                 self.sa.add(r2p)
                             else:
                                 g2p = UsersGroupRepoToPerm()
                                 g2p.repository = cur_repo
                                 g2p.users_group = UsersGroup.get_by_group_name(member)
                                 g2p.permission = self.sa.query(Permission)\
                                                     .filter(Permission.
                                                             permission_name == perm)\
                                                             .scalar()
                                 self.sa.add(g2p)
                         #update current repo
                         for k, v in form_data.items():
                             if k == 'user':
                                 cur_repo.user = User.by_username(v)
                             elif k == 'repo_name':
                                 cur_repo.repo_name = form_data['repo_name_full']
                             elif k == 'repo_group':
                                 cur_repo.group_id = v
                             else:
                                 setattr(cur_repo, k, v)
                         self.sa.add(cur_repo)
                         if repo_name != form_data['repo_name_full']:
                             # rename repository
                             self.__rename_repo(old=repo_name,
                                                new=form_data['repo_name_full'])
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def create(self, form_data, cur_user, just_db=False, fork=False):
                     try:
                         if fork:
                             repo_name = form_data['fork_name']
                             org_name = form_data['repo_name']
                             org_full_name = org_name
                         else:
                             org_name = repo_name = form_data['repo_name']
                             repo_name_full = form_data['repo_name_full']
                         new_repo = Repository()
                         new_repo.enable_statistics = False
                         for k, v in form_data.items():
                             if k == 'repo_name':
                                 if fork:
                                     v = repo_name
                                 else:
                                     v = repo_name_full
                             if k == 'repo_group':
                                 k = 'group_id'
+                            if k == 'description':
+                                v = v or repo_name
                             setattr(new_repo, k, v)
                         if fork:
                             parent_repo = self.sa.query(Repository)\
                                     .filter(Repository.repo_name == org_full_name).one()
                             new_repo.fork = parent_repo
                         new_repo.user_id = cur_user.user_id
                         self.sa.add(new_repo)
                         #create default permission
                         repo_to_perm = RepoToPerm()
                         default = 'repository.read'
                         for p in UserModel(self.sa).get_by_username('default',
                                                                 cache=False).user_perms:
                             if p.permission.permission_name.startswith('repository.'):
                                 default = p.permission.permission_name
                                 break
                         default_perm = 'repository.none' if form_data['private'] else default
                         repo_to_perm.permission_id = self.sa.query(Permission)\
                                 .filter(Permission.permission_name == default_perm)\
                                 .one().permission_id
                         repo_to_perm.repository = new_repo
                         repo_to_perm.user_id = UserModel(self.sa)\
                             .get_by_username('default', cache=False).user_id
                         self.sa.add(repo_to_perm)
                         if not just_db:
                             self.__create_repo(repo_name, form_data['repo_type'],
                                                form_data['repo_group'],
                                                form_data['clone_uri'])
                         self.sa.commit()
                         #now automatically start following this repository as owner
                         from rhodecode.model.scm import ScmModel
                         ScmModel(self.sa).toggle_following_repo(new_repo.repo_id,
                                                          cur_user.user_id)
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def create_fork(self, form_data, cur_user):
                     from rhodecode.lib.celerylib import tasks, run_task
                     run_task(tasks.create_repo_fork, form_data, cur_user)
                 def delete(self, repo):
                     try:
                         self.sa.delete(repo)
                         self.__delete_repo(repo)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def delete_perm_user(self, form_data, repo_name):
                     try:
                         self.sa.query(RepoToPerm)\
                             .filter(RepoToPerm.repository \
                                     == self.get_by_repo_name(repo_name))\
                             .filter(RepoToPerm.user_id == form_data['user_id']).delete()
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def delete_perm_users_group(self, form_data, repo_name):
                     try:
                         self.sa.query(UsersGroupRepoToPerm)\
                             .filter(UsersGroupRepoToPerm.repository \
                                     == self.get_by_repo_name(repo_name))\
                             .filter(UsersGroupRepoToPerm.users_group_id \
                                     == form_data['users_group_id']).delete()
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def delete_stats(self, repo_name):
                     try:
                         self.sa.query(Statistics)\
                             .filter(Statistics.repository == \
                                     self.get_by_repo_name(repo_name)).delete()
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def __create_repo(self, repo_name, alias, new_parent_id, clone_uri=False):
                     """
                     makes repository on filesystem. It's group aware means it'll create
                     a repository within a group, and alter the paths accordingly of
                     group location
                     :param repo_name:
                     :param alias:
                     :param parent_id:
                     :param clone_uri:
                     """
                     from rhodecode.lib.utils import is_valid_repo
                     if new_parent_id:
                         paths = Group.get(new_parent_id).full_path.split(Group.url_sep())
                         new_parent_path = os.sep.join(paths)
                     else:
                         new_parent_path = ''
                     repo_path = os.path.join(*map(lambda x:safe_str(x),
                                             [self.repos_path, new_parent_path, repo_name]))
                     if is_valid_repo(repo_path, self.repos_path) is False:
                         log.info('creating repo %s in %s @ %s', repo_name, repo_path,
                                  clone_uri)
                         backend = get_backend(alias)
                         backend(repo_path, create=True, src_url=clone_uri)
                 def __rename_repo(self, old, new):
                     """
                     renames repository on filesystem
                     :param old: old name
                     :param new: new name
                     """
                     log.info('renaming repo from %s to %s', old, new)
                     old_path = os.path.join(self.repos_path, old)
                     new_path = os.path.join(self.repos_path, new)
                     if os.path.isdir(new_path):
                         raise Exception('Was trying to rename to already existing dir %s' \
                         		     % new_path)
                     shutil.move(old_path, new_path)
                 def __delete_repo(self, repo):
                     """
                     removes repo from filesystem, the removal is acctually made by
                     added rm__ prefix into dir, and rename internat .hg/.git dirs so this
                     repository is no longer valid for rhodecode, can be undeleted later on
                     by reverting the renames on this repository
                     :param repo: repo object
                     """
                     rm_path = os.path.join(self.repos_path, repo.repo_name)
                     log.info("Removing %s", rm_path)
                     #disable hg/git
                     alias = repo.repo_type
                     shutil.move(os.path.join(rm_path, '.%s' % alias),
                                 os.path.join(rm_path, 'rm__.%s' % alias))
                     #disable repo
                     shutil.move(rm_path, os.path.join(self.repos_path, 'rm__%s__%s' \
                                                       % (datetime.today()\
                                                          .strftime('%Y%m%d_%H%M%S_%f'),
                                                         repo.repo_name)))

rhodecode/model/user.py

0 +2 -1

             # -*- coding: utf-8 -*-
             """
                 rhodecode.model.user
                 ~~~~~~~~~~~~~~~~~~~~
                 users model for RhodeCode
                 :created_on: Apr 9, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import logging
             import traceback
             from pylons.i18n.translation import _
+            from rhodecode.lib import safe_unicode
             from rhodecode.model import BaseModel
             from rhodecode.model.caching_query import FromCache
             from rhodecode.model.db import User, RepoToPerm, Repository, Permission, \
                 UserToPerm, UsersGroupRepoToPerm, UsersGroupToPerm, UsersGroupMember
             from rhodecode.lib.exceptions import DefaultUserException, \
                 UserOwnsReposException
             from sqlalchemy.exc import DatabaseError
             from rhodecode.lib import generate_api_key
             from sqlalchemy.orm import joinedload
             log = logging.getLogger(__name__)
             PERM_WEIGHTS = {'repository.none': 0,
                             'repository.read': 1,
                             'repository.write': 3,
                             'repository.admin': 3}
             class UserModel(BaseModel):
                 def get(self, user_id, cache=False):
                     user = self.sa.query(User)
                     if cache:
                         user = user.options(FromCache("sql_cache_short",
                                                       "get_user_%s" % user_id))
                     return user.get(user_id)
                 def get_by_username(self, username, cache=False, case_insensitive=False):
                     if case_insensitive:
                         user = self.sa.query(User).filter(User.username.ilike(username))
                     else:
                         user = self.sa.query(User)\
                             .filter(User.username == username)
                     if cache:
                         user = user.options(FromCache("sql_cache_short",
                                                       "get_user_%s" % username))
                     return user.scalar()
                 def get_by_api_key(self, api_key, cache=False):
                     user = self.sa.query(User)\
                             .filter(User.api_key == api_key)
                     if cache:
                         user = user.options(FromCache("sql_cache_short",
                                                       "get_user_%s" % api_key))
                     return user.scalar()
                 def create(self, form_data):
                     try:
                         new_user = User()
                         for k, v in form_data.items():
                             setattr(new_user, k, v)
                         new_user.api_key = generate_api_key(form_data['username'])
                         self.sa.add(new_user)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def create_ldap(self, username, password, user_dn, attrs):
                     """
                     Checks if user is in database, if not creates this user marked
                     as ldap user
                     :param username:
                     :param password:
                     :param user_dn:
                     :param attrs:
                     """
                     from rhodecode.lib.auth import get_crypt_password
                     log.debug('Checking for such ldap account in RhodeCode database')
                     if self.get_by_username(username, case_insensitive=True) is None:
                         try:
                             new_user = User()
                             # add ldap account always lowercase
                             new_user.username = username.lower()
                             new_user.password = get_crypt_password(password)
                             new_user.api_key = generate_api_key(username)
                             new_user.email = attrs['email']
                             new_user.active = True
-                            new_user.ldap_dn = user_dn
+                            new_user.ldap_dn = safe_unicode(user_dn)
                             new_user.name = attrs['name']
                             new_user.lastname = attrs['lastname']
                             self.sa.add(new_user)
                             self.sa.commit()
                             return True
                         except (DatabaseError,):
                             log.error(traceback.format_exc())
                             self.sa.rollback()
                             raise
                     log.debug('this %s user exists skipping creation of ldap account',
                               username)
                     return False
                 def create_registration(self, form_data):
                     from rhodecode.lib.celerylib import tasks, run_task
                     try:
                         new_user = User()
                         for k, v in form_data.items():
                             if k != 'admin':
                                 setattr(new_user, k, v)
                         self.sa.add(new_user)
                         self.sa.commit()
                         body = ('New user registration\n'
                                 'username: %s\n'
                                 'email: %s\n')
                         body = body % (form_data['username'], form_data['email'])
                         run_task(tasks.send_email, None,
                                  _('[RhodeCode] New User registration'),
                                  body)
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def update(self, user_id, form_data):
                     try:
                         user = self.get(user_id, cache=False)
                         if user.username == 'default':
                             raise DefaultUserException(
                                             _("You can't Edit this user since it's"
                                               " crucial for entire application"))
                         for k, v in form_data.items():
                             if k == 'new_password' and v != '':
                                 user.password = v
                                 user.api_key = generate_api_key(user.username)
                             else:
                                 setattr(user, k, v)
                         self.sa.add(user)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def update_my_account(self, user_id, form_data):
                     try:
                         user = self.get(user_id, cache=False)
                         if user.username == 'default':
                             raise DefaultUserException(
                                             _("You can't Edit this user since it's"
                                               " crucial for entire application"))
                         for k, v in form_data.items():
                             if k == 'new_password' and v != '':
                                 user.password = v
                                 user.api_key = generate_api_key(user.username)
                             else:
                                 if k not in ['admin', 'active']:
                                     setattr(user, k, v)
                         self.sa.add(user)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def delete(self, user_id):
                     try:
                         user = self.get(user_id, cache=False)
                         if user.username == 'default':
                             raise DefaultUserException(
                                             _("You can't remove this user since it's"
                                               " crucial for entire application"))
                         if user.repositories:
                             raise UserOwnsReposException(_('This user still owns %s '
                                                            'repositories and cannot be '
                                                            'removed. Switch owners or '
                                                            'remove those repositories') \
                                                            % user.repositories)
                         self.sa.delete(user)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def reset_password_link(self, data):
                     from rhodecode.lib.celerylib import tasks, run_task
                     run_task(tasks.send_password_link, data['email'])
                 def reset_password(self, data):
                     from rhodecode.lib.celerylib import tasks, run_task
                     run_task(tasks.reset_user_password, data['email'])
                 def fill_data(self, auth_user, user_id=None, api_key=None):
                     """
                     Fetches auth_user by user_id,or api_key if present.
                     Fills auth_user attributes with those taken from database.
                     Additionally set's is_authenitated if lookup fails
                     present in database
                     :param auth_user: instance of user to set attributes
                     :param user_id: user id to fetch by
                     :param api_key: api key to fetch by
                     """
                     if user_id is None and api_key is None:
                         raise Exception('You need to pass user_id or api_key')
                     try:
                         if api_key:
                             dbuser = self.get_by_api_key(api_key)
                         else:
                             dbuser = self.get(user_id)
                         if dbuser is not None:
                             log.debug('filling %s data', dbuser)
                             for k, v in dbuser.get_dict().items():
                                 setattr(auth_user, k, v)
                     except:
                         log.error(traceback.format_exc())
                         auth_user.is_authenticated = False
                     return auth_user
                 def fill_perms(self, user):
                     """
                     Fills user permission attribute with permissions taken from database
                     works for permissions given for repositories, and for permissions that
                     are granted to groups
                     :param user: user instance to fill his perms
                     """
                     user.permissions['repositories'] = {}
                     user.permissions['global'] = set()
                     #======================================================================
                     # fetch default permissions
                     #======================================================================
                     default_user = self.get_by_username('default', cache=True)
                     default_perms = self.sa.query(RepoToPerm, Repository, Permission)\
                         .join((Repository, RepoToPerm.repository_id ==
                                Repository.repo_id))\
                         .join((Permission, RepoToPerm.permission_id ==
                                Permission.permission_id))\
                         .filter(RepoToPerm.user == default_user).all()
                     if user.is_admin:
                         #==================================================================
                         # #admin have all default rights set to admin
                         #==================================================================
                         user.permissions['global'].add('hg.admin')
                         for perm in default_perms:
                             p = 'repository.admin'
                             user.permissions['repositories'][perm.RepoToPerm.
                                                              repository.repo_name] = p
                     else:
                         #==================================================================
                         # set default permissions
                         #==================================================================
                         uid = user.user_id
                         #default global
                         default_global_perms = self.sa.query(UserToPerm)\
                             .filter(UserToPerm.user == default_user)
                         for perm in default_global_perms:
                             user.permissions['global'].add(perm.permission.permission_name)
                         #default for repositories
                         for perm in default_perms:
                             if perm.Repository.private and not (perm.Repository.user_id ==
                                                                 uid):
                                 #diself.sable defaults for private repos,
                                 p = 'repository.none'
                             elif perm.Repository.user_id == uid:
                                 #set admin if owner
                                 p = 'repository.admin'
                             else:
                                 p = perm.Permission.permission_name
                             user.permissions['repositories'][perm.RepoToPerm.
                                                              repository.repo_name] = p
                         #==================================================================
                         # overwrite default with user permissions if any
                         #==================================================================
                         #user global
                         user_perms = self.sa.query(UserToPerm)\
                                 .options(joinedload(UserToPerm.permission))\
                                 .filter(UserToPerm.user_id == uid).all()
                         for perm in user_perms:
                             user.permissions['global'].add(perm.permission.
                                                            permission_name)
                         #user repositories
                         user_repo_perms = self.sa.query(RepoToPerm, Permission,
                                                         Repository)\
                             .join((Repository, RepoToPerm.repository_id ==
                                    Repository.repo_id))\
                             .join((Permission, RepoToPerm.permission_id ==
                                    Permission.permission_id))\
                             .filter(RepoToPerm.user_id == uid).all()
                         for perm in user_repo_perms:
                             # set admin if owner
                             if perm.Repository.user_id == uid:
                                 p = 'repository.admin'
                             else:
                                 p = perm.Permission.permission_name
                             user.permissions['repositories'][perm.RepoToPerm.
                                                              repository.repo_name] = p
                         #==================================================================
                         # check if user is part of groups for this repository and fill in
                         # (or replace with higher) permissions
                         #==================================================================
                         #users group global
                         user_perms_from_users_groups = self.sa.query(UsersGroupToPerm)\
                             .options(joinedload(UsersGroupToPerm.permission))\
                             .join((UsersGroupMember, UsersGroupToPerm.users_group_id ==
                                    UsersGroupMember.users_group_id))\
                             .filter(UsersGroupMember.user_id == uid).all()
                         for perm in user_perms_from_users_groups:
                             user.permissions['global'].add(perm.permission.permission_name)
                         #users group repositories
                         user_repo_perms_from_users_groups = self.sa.query(
                                                             UsersGroupRepoToPerm,
                                                             Permission, Repository,)\
                             .join((Repository, UsersGroupRepoToPerm.repository_id ==
                                    Repository.repo_id))\
                             .join((Permission, UsersGroupRepoToPerm.permission_id ==
                                    Permission.permission_id))\
                             .join((UsersGroupMember, UsersGroupRepoToPerm.users_group_id ==
                                    UsersGroupMember.users_group_id))\
                             .filter(UsersGroupMember.user_id == uid).all()
                         for perm in user_repo_perms_from_users_groups:
                             p = perm.Permission.permission_name
                             cur_perm = user.permissions['repositories'][perm.
                                                                 UsersGroupRepoToPerm.
                                                                 repository.repo_name]
                             #overwrite permission only if it's greater than permission
                             # given from other sources
                             if PERM_WEIGHTS[p] > PERM_WEIGHTS[cur_perm]:
                                 user.permissions['repositories'][perm.UsersGroupRepoToPerm.
                                                                  repository.repo_name] = p
                     return user

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages