upstream/kallithea Commit - r1793:631caf88

implements ...

marcink -

r1793:631caf88 beta

parent child

docs/api/api.rst

0 +22 -5

                         }
                 error:  null
-            add_user_to_users_groups
+            add_user_to_users_group
-            ------------------------
+            -----------------------
             Adds a user to a users group. This command can be executed only using api_key
             belonging to user with admin rights
             	                                "active" :     "<bool>",
             	                                "admin" :      "<bool>",
             	                                "ldap" :       "<ldap_dn>",
-            	                                "permission" : "repository_(read|write|admin)"
+            	                                "permission" : "repository.(read|write|admin)"
             	                              },
                                               …
                                               {
                                                 "id" :       "<usersgroupid>",
                                                 "name" :     "<usersgroupname>",
                                                 "active":    "<bool>",
-                                                "permission" : "repository_(read|write|admin)"
+                                                "permission" : "repository.(read|write|admin)"
                                               },
                                               …
                                             ]
                 args:     {
                             "repo_name" :  "<reponame>",
                             "user_name" :  "<username>",
-                            "perm" :       "(None|repository_(read|write|admin))",
+                            "perm" :       "(None|repository.(read|write|admin))",
                           }
             OUTPUT::
                 result: None
                 error:  null
+            add_users_group_to_repo
+            -----------------------
+            Add a users group to a repository. This command can be executed only using
+            api_key belonging to user with admin rights. If "perm" is None, group will
+            be removed from the repository.
+            INPUT::
+                api_key : "<api_key>"
+                method :  "add_users_group_to_repo"
+                args:     {
+                            "repo_name" :  "<reponame>",
+                            "group_name" :  "<groupname>",
+                            "perm" :       "(None|repository.(read|write|admin))",
+                          }
  No newline at end of file

rhodecode/controllers/api/__init__.py

0 +25 -21

             log = logging.getLogger('JSONRPC')
             class JSONRPCError(BaseException):
                 def __init__(self, message):
                 return resp
             class JSONRPCController(WSGIController):
                 """
                  A WSGI-speaking JSON-RPC controller class
                  See the specification:
                  <http://json-rpc.org/wiki/specification>`.
                  Valid controller return values should be json-serializable objects.
                  Sub-classes should catch their exceptions and raise JSONRPCError
                  if they want to pass meaningful errors to the client.
                  """
                 def _get_method_args(self):
                     try:
                         json_body = json.loads(urllib.unquote_plus(raw_body))
                     except ValueError, e:
-                        #catch JSON errors Here
+                        # catch JSON errors Here
                         return jsonrpc_error(message="JSON parse error ERR:%s RAW:%r" \
                                              % (e, urllib.unquote_plus(raw_body)))
                         self._req_api_key = json_body['api_key']
                         self._req_id = json_body['id']
                         self._req_method = json_body['method']
-                        self._req_params = json_body['args']
+                        self._request_params = json_body['args']
                         log.debug('method: %s, params: %s',
                                   self._req_method,
-                                  self._req_params)
+                                  self._request_params)
                     except KeyError, e:
                         return jsonrpc_error(message='Incorrect JSON query missing %s' % e)
                     # self.kargs and dispatch control to WGIController
                     argspec = inspect.getargspec(self._func)
                     arglist = argspec[0][1:]
-                    defaults = argspec[3] or []
+                    defaults = map(type, argspec[3] or [])
                     default_empty = types.NotImplementedType
-                    kwarglist = list(izip_longest(reversed(arglist), reversed(defaults),
+                    # kw arguments required by this method
-                                            fillvalue=default_empty))
+                    func_kwargs = dict(izip_longest(reversed(arglist), reversed(defaults),
+                                                    fillvalue=default_empty))
                     # this is little trick to inject logged in user for
                     # perms decorators to work they expect the controller class to have
                     # rhodecode_user attribute set
                     self.rhodecode_user = auth_u
                                              (self._func.__name__, USER_SESSION_ATTR))
                     # get our arglist and check if we provided them as args
-                    for arg, default in kwarglist:
+                    for arg, default in func_kwargs.iteritems():
                         if arg == USER_SESSION_ATTR:
                             # USER_SESSION_ATTR is something translated from api key and
                             # this is checked before so we don't need validate it
                             continue
                         # skip the required param check if it's default value is
                         # NotImplementedType (default_empty)
-                        if not self._req_params or (type(default) == default_empty
+                        if (default == default_empty and arg not in self._request_params):
-                                                    and arg not in self._req_params):
+                            return jsonrpc_error(
-                            return jsonrpc_error(message=('Missing non optional %s arg '
+                                message=(
-                                                          'in JSON DATA') % arg)
+                                    'Missing non optional `%s` arg in JSON DATA' % arg
+                                )
+                            )
-                    self._rpc_args = {USER_SESSION_ATTR:u}
+                    self._rpc_args = {USER_SESSION_ATTR: u}
-                    self._rpc_args.update(self._req_params)
+                    self._rpc_args.update(self._request_params)
                     self._rpc_args['action'] = self._req_method
                     self._rpc_args['environ'] = environ
                     status = []
                     headers = []
                     exc_info = []
                     def change_content(new_status, new_headers, new_exc_info=None):
                         status.append(new_status)
                         headers.extend(new_headers)

rhodecode/controllers/api/api.py

0 +154 -79

@@ -60,41 +60,47 b' class ApiController(JSONRPCController):'
60	""""	60	""""
61	Get a user by username	61	Get a user by username
62		62
63	:param apiuser	63	:param apiuser:
64	:param username	64	:param username:
65	"""	65	"""
66		66
67	user = User.get_by_username(username)	67	user = User.get_by_username(username)
68	if not user:	68	if not user:
69	return None	69	return None
70		70
71	return dict(id=~~user~~.~~user_id~~,	71	return dict(
		72	id=user.user_id,
		73	username=user.username,
		74	firstname=user.name,
		75	lastname=user.lastname,
		76	email=user.email,
		77	active=user.active,
		78	admin=user.admin,
		79	ldap=user.ldap_dn
		80	)
		81
		82	@HasPermissionAllDecorator('hg.admin')
		83	def get_users(self, apiuser):
		84	""""
		85	Get all users
		86
		87	:param apiuser:
		88	"""
		89
		90	result = []
		91	for user in User.getAll():
		92	result.append(
		93	dict(
		94	id=user.user_id,
72	username=user.username,	95	username=user.username,
73	firstname=user.name,	96	firstname=user.name,
74	lastname=user.lastname,	97	lastname=user.lastname,
75	email=user.email,	98	email=user.email,
76	active=user.active,	99	active=user.active,
77	admin=user.admin,	100	admin=user.admin,
78	ldap=user.ldap_dn)	101	ldap=user.ldap_dn
79		102	)
80	@HasPermissionAllDecorator('hg.admin')	103	)
81	def get_users(self, apiuser):
82	""""
83	Get all users
84
85	:param apiuser
86	"""
87
88	result = []
89	for user in User.getAll():
90	result.append(dict(id=user.user_id,
91	username=user.username,
92	firstname=user.name,
93	lastname=user.lastname,
94	email=user.email,
95	active=user.active,
96	admin=user.admin,
97	ldap=user.ldap_dn))
98	return result	104	return result
99		105
100	@HasPermissionAllDecorator('hg.admin')	106	@HasPermissionAllDecorator('hg.admin')
@@ -131,8 +137,8 b' class ApiController(JSONRPCController):'
131	""""	137	""""
132	Get users group by name	138	Get users group by name
133		139
134	:param apiuser	140	:param apiuser:
135	:param group_name	141	:param group_name:
136	"""	142	"""
137		143
138	users_group = UsersGroup.get_by_group_name(group_name)	144	users_group = UsersGroup.get_by_group_name(group_name)
@@ -161,7 +167,7 b' class ApiController(JSONRPCController):'
161	""""	167	""""
162	Get all users groups	168	Get all users groups
163		169
164	:param apiuser	170	:param apiuser:
165	"""	171	"""
166		172
167	result = []	173	result = []
@@ -210,9 +216,9 b' class ApiController(JSONRPCController):'
210	""""	216	""""
211	Add a user to a group	217	Add a user to a group
212		218
213	:param apiuser	219	:param apiuser:
214	:param group_name	220	:param group_name:
215	:param user_name	221	:param user_name:
216	"""	222	"""
217		223
218	try:	224	try:
@@ -238,8 +244,8 b' class ApiController(JSONRPCController):'
238	""""	244	""""
239	Get repository by name	245	Get repository by name
240		246
241	:param apiuser	247	:param apiuser:
242	:param repo_name	248	:param repo_name:
243	"""	249	"""
244		250
245	repo = Repository.get_by_repo_name(repo_name)	251	repo = Repository.get_by_repo_name(repo_name)
@@ -250,45 +256,59 b' class ApiController(JSONRPCController):'
250	for user in repo.repo_to_perm:	256	for user in repo.repo_to_perm:
251	perm = user.permission.permission_name	257	perm = user.permission.permission_name
252	user = user.user	258	user = user.user
253	members.append(~~dict~~(~~type_~~=~~"user"~~,	259	members.append(
254	id=user.user_id,	260	dict(
255	username=user.username,	261	type_="user",
256	~~firstname~~=user.~~name~~,	262	id=user.user_id,
257	~~last~~name=user.~~last~~name,	263	username=user.username,
258	~~email~~=user.~~email~~,	264	firstname=user.name,
259	~~activ~~e=user.~~activ~~e,	265	lastname=user.lastname,
260	~~admin~~=user.~~admin~~,	266	email=user.email,
261	~~ldap~~=user.~~ldap_dn~~,	267	active=user.active,
262	permission=perm))	268	admin=user.admin,
		269	ldap=user.ldap_dn,
		270	permission=perm
		271	)
		272	)
263	for users_group in repo.users_group_to_perm:	273	for users_group in repo.users_group_to_perm:
264	perm = users_group.permission.permission_name	274	perm = users_group.permission.permission_name
265	users_group = users_group.users_group	275	users_group = users_group.users_group
266	members.append(~~dict~~(~~type_~~=~~"users_group"~~,	276	members.append(
267	id=users_group.users_group_id,	277	dict(
268	~~name~~=users_group.~~users_group_name~~,	278	type_="users_group",
269	~~active~~=users_group.users_group_~~active~~,	279	id=users_group.users_group_id,
270	permission=perm))	280	name=users_group.users_group_name,
		281	active=users_group.users_group_active,
		282	permission=perm
		283	)
		284	)
271		285
272	return dict(id=~~repo~~.~~repo_id~~,	286	return dict(
273	~~name~~=repo.repo_~~name~~,	287	id=repo.repo_id,
274	~~typ~~e=repo.repo_~~typ~~e,	288	name=repo.repo_name,
275	description=repo.description,	289	type=repo.repo_type,
276	members=members)	290	description=repo.description,
		291	members=members
		292	)
277		293
278	@HasPermissionAnyDecorator('hg.admin')	294	@HasPermissionAnyDecorator('hg.admin')
279	def get_repos(self, apiuser):	295	def get_repos(self, apiuser):
280	""""	296	""""
281	Get all repositories	297	Get all repositories
282		298
283	:param apiuser	299	:param apiuser:
284	"""	300	"""
285		301
286	result = []	302	result = []
287	for repository in Repository.getAll():	303	for repository in Repository.getAll():
288	result.append(~~dict~~(id=~~repository~~.~~repo_id~~,	304	result.append(
289	name=repository.repo_name,	305	dict(
290	~~type~~=repository.repo_~~type~~,	306	id=repository.repo_id,
291	~~description~~=repository.~~description~~))	307	name=repository.repo_name,
		308	type=repository.repo_type,
		309	description=repository.description
		310	)
		311	)
292	return result	312	return result
293		313
294	@HasPermissionAnyDecorator('hg.admin', 'hg.create.repository')	314	@HasPermissionAnyDecorator('hg.admin', 'hg.create.repository')
@@ -297,12 +317,12 b' class ApiController(JSONRPCController):'
297	"""	317	"""
298	Create a repository	318	Create a repository
299		319
300	:param apiuser	320	:param apiuser:
301	:param name	321	:param name:
302	:param description	322	:param description:
303	:param type	323	:param type:
304	:param private	324	:param private:
305	:param owner_name	325	:param owner_name:
306	"""	326	"""
307		327
308	try:	328	try:
@@ -321,18 +341,27 b' class ApiController(JSONRPCController):'
321	for g in groups:	341	for g in groups:
322	group = RepoGroup.get_by_group_name(g)	342	group = RepoGroup.get_by_group_name(g)
323	if not group:	343	if not group:
324	group = ReposGroupModel().create(~~dict~~(~~group_name~~=g,	344	group = ReposGroupModel().create(
325	group_description='',	345	dict(
326	group_~~parent_id~~=~~parent_id~~))	346	group_name=g,
		347	group_description='',
		348	group_parent_id=parent_id
		349	)
		350	)
327	parent_id = group.group_id	351	parent_id = group.group_id
328		352
329	RepoModel().create(~~dict~~(~~repo_name~~=~~real_name~~,	353	RepoModel().create(
330	repo_name_full=name,	354	dict(
331	description=description,	355	repo_name=real_name,
332	private=private,	356	repo_name_full=name,
333	repo_type=repo_type,	357	description=description,
334	repo_group=parent_id,	358	private=private,
335	clone_uri=None), owner)	359	repo_type=repo_type,
		360	repo_group=parent_id,
		361	clone_uri=None
		362	),
		363	owner
		364	)
336	Session.commit()	365	Session.commit()
337	except Exception:	366	except Exception:
338	log.error(traceback.format_exc())	367	log.error(traceback.format_exc())
@@ -343,16 +372,16 b' class ApiController(JSONRPCController):'
343	"""	372	"""
344	Add permission for a user to a repository	373	Add permission for a user to a repository
345		374
346	:param apiuser	375	:param apiuser:
347	:param repo_name	376	:param repo_name:
348	:param user_name	377	:param user_name:
349	:param perm	378	:param perm:
350	"""	379	"""
351		380
352	try:	381	try:
353	repo = Repository.get_by_repo_name(repo_name)	382	repo = Repository.get_by_repo_name(repo_name)
354	if repo is None:	383	if repo is None:
355	raise JSONRPCError('unknown repository %s' % repo)	384	raise JSONRPCError('unknown repository %s' % repo)
356		385
357	try:	386	try:
358	user = User.get_by_username(user_name)	387	user = User.get_by_username(user_name)
@@ -362,8 +391,54 b' class ApiController(JSONRPCController):'
362	RepositoryPermissionModel()\	391	RepositoryPermissionModel()\
363	.update_or_delete_user_permission(repo, user, perm)	392	.update_or_delete_user_permission(repo, user, perm)
364	Session.commit()	393	Session.commit()
		394
		395	return dict(
		396	msg='Added perm: %s for %s in repo: %s' % (
		397	perm, user_name, repo_name
		398	)
		399	)
365	except Exception:	400	except Exception:
366	log.error(traceback.format_exc())	401	log.error(traceback.format_exc())
367	raise JSONRPCError('failed to edit permission %(repo)s for %(user)s'	402	raise JSONRPCError(
368	% dict(user=user_name, repo=repo_name))	403	'failed to edit permission %(repo)s for %(user)s' % dict(
		404	user=user_name, repo=repo_name
		405	)
		406	)
		407
		408	@HasPermissionAnyDecorator('hg.admin')
		409	def add_users_group_to_repo(self, apiuser, repo_name, group_name, perm):
		410	"""
		411	Add permission for a users group to a repository
		412
		413	:param apiuser:
		414	:param repo_name:
		415	:param group_name:
		416	:param perm:
		417	"""
		418
		419	try:
		420	repo = Repository.get_by_repo_name(repo_name)
		421	if repo is None:
		422	raise JSONRPCError('unknown repository %s' % repo)
369		423
		424	try:
		425	user_group = UsersGroup.get_by_group_name(group_name)
		426	except NoResultFound:
		427	raise JSONRPCError('unknown users group %s' % user_group)
		428
		429	RepositoryPermissionModel()\
		430	.update_or_delete_users_group_permission(repo, user_group,
		431	perm)
		432	Session.commit()
		433	return dict(
		434	msg='Added perm: %s for %s in repo: %s' % (
		435	perm, group_name, repo_name
		436	)
		437	)
		438	except Exception:
		439	log.error(traceback.format_exc())
		440	raise JSONRPCError(
		441	'failed to edit permission %(repo)s for %(usergr)s' % dict(
		442	usergr=group_name, repo=repo_name
		443	)
		444	)

rhodecode/model/repo_permission.py

0 +45 -2

@@ -6,8 +6,9 b''
6	repository permission model for RhodeCode	6	repository permission model for RhodeCode
7		7
8	:created_on: Oct 1, 2011	8	:created_on: Oct 1, 2011
9	:author: nvinot	9	:author: nvinot, marcink
10	:copyright: (C) 2011-2011 Nicolas Vinot <aeris@imirhil.fr>	10	:copyright: (C) 2011-2011 Nicolas Vinot <aeris@imirhil.fr>
		11	:copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
11	:license: GPLv3, see COPYING for more details.	12	:license: GPLv3, see COPYING for more details.
12	"""	13	"""
13	# This program is free software: you can redistribute it and/or modify	14	# This program is free software: you can redistribute it and/or modify
@@ -25,7 +26,7 b''
25		26
26	import logging	27	import logging
27	from rhodecode.model import BaseModel	28	from rhodecode.model import BaseModel
28	from rhodecode.model.db import UserRepoToPerm, Permission	29	from rhodecode.model.db import UserRepoToPerm, UsersGroupRepoToPerm, Permission
29		30
30	log = logging.getLogger(__name__)	31	log = logging.getLogger(__name__)
31		32
@@ -39,6 +40,15 b' class RepositoryPermissionModel(BaseMode'
39	.scalar()	40	.scalar()
40		41
41	def update_user_permission(self, repository, user, permission):	42	def update_user_permission(self, repository, user, permission):
		43
		44	#TODO: REMOVE THIS !!
		45	################################
		46	import ipdb;ipdb.set_trace()
		47	print 'setting ipdb debuggin for rhodecode.model.repo_permission.RepositoryPermissionModel.update_user_permission'
		48	################################
		49
		50
		51
42	permission = Permission.get_by_key(permission)	52	permission = Permission.get_by_key(permission)
43	current = self.get_user_permission(repository, user)	53	current = self.get_user_permission(repository, user)
44	if current:	54	if current:
@@ -56,8 +66,41 b' class RepositoryPermissionModel(BaseMode'
56	if current:	66	if current:
57	self.sa.delete(current)	67	self.sa.delete(current)
58		68
		69	def get_users_group_permission(self, repository, users_group):
		70	return UsersGroupRepoToPerm.query() \
		71	.filter(UsersGroupRepoToPerm.users_group == users_group) \
		72	.filter(UsersGroupRepoToPerm.repository == repository) \
		73	.scalar()
		74
		75	def update_users_group_permission(self, repository, users_group,
		76	permission):
		77	permission = Permission.get_by_key(permission)
		78	current = self.get_users_group_permission(repository, users_group)
		79	if current:
		80	if not current.permission is permission:
		81	current.permission = permission
		82	else:
		83	p = UsersGroupRepoToPerm()
		84	p.users_group = users_group
		85	p.repository = repository
		86	p.permission = permission
		87	self.sa.add(p)
		88
		89	def delete_users_group_permission(self, repository, users_group):
		90	current = self.get_users_group_permission(repository, users_group)
		91	if current:
		92	self.sa.delete(current)
		93
59	def update_or_delete_user_permission(self, repository, user, permission):	94	def update_or_delete_user_permission(self, repository, user, permission):
60	if permission:	95	if permission:
61	self.update_user_permission(repository, user, permission)	96	self.update_user_permission(repository, user, permission)
62	else:	97	else:
63	self.delete_user_permission(repository, user)	98	self.delete_user_permission(repository, user)
		99
		100	def update_or_delete_users_group_permission(self, repository, user_group,
		101	permission):
		102	if permission:
		103	self.update_users_group_permission(repository, user_group,
		104	permission)
		105	else:
		106	self.delete_users_group_permission(repository, user_group) No newline at end of file

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages