upstream/kallithea Commit - r1639:95c3e33e

merged upto rev

marcink -

r1639:95c3e33e default

parent child

rhodecode/model/repo_permission.py

0 created 644 +63 0

@@ -0,0 +1,63 b''
	1	# -- coding: utf-8 --
	2	"""
	3	rhodecode.model.users_group
	4	~~~~~~~~~~~~~~~~~~~~~~~~~~~
	5
	6	repository permission model for RhodeCode
	7
	8	:created_on: Oct 1, 2011
	9	:author: nvinot
	10	:copyright: (C) 2011-2011 Nicolas Vinot <aeris@imirhil.fr>
	11	:license: GPLv3, see COPYING for more details.
	12	"""
	13	# This program is free software: you can redistribute it and/or modify
	14	# it under the terms of the GNU General Public License as published by
	15	# the Free Software Foundation, either version 3 of the License, or
	16	# (at your option) any later version.
	17	#
	18	# This program is distributed in the hope that it will be useful,
	19	# but WITHOUT ANY WARRANTY; without even the implied warranty of
	20	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	21	# GNU General Public License for more details.
	22	#
	23	# You should have received a copy of the GNU General Public License
	24	# along with this program. If not, see <http://www.gnu.org/licenses/>.
	25
	26	import logging
	27	from rhodecode.model.db import BaseModel, RepoToPerm, Permission
	28	from rhodecode.model.meta import Session
	29
	30	log = logging.getLogger(__name__)
	31
	32	class RepositoryPermissionModel(BaseModel):
	33	def get_user_permission(self, repository, user):
	34	return RepoToPerm.query() \
	35	.filter(RepoToPerm.user == user) \
	36	.filter(RepoToPerm.repository == repository) \
	37	.scalar()
	38
	39	def update_user_permission(self, repository, user, permission):
	40	permission = Permission.get_by_key(permission)
	41	current = self.get_user_permission(repository, user)
	42	if current:
	43	if not current.permission is permission:
	44	current.permission = permission
	45	else:
	46	p = RepoToPerm()
	47	p.user = user
	48	p.repository = repository
	49	p.permission = permission
	50	Session.add(p)
	51	Session.commit()
	52
	53	def delete_user_permission(self, repository, user):
	54	current = self.get_user_permission(repository, user)
	55	if current:
	56	Session.delete(current)
	57	Session.commit()
	58
	59	def update_or_delete_user_permission(self, repository, user, permission):
	60	if permission:
	61	self.update_user_permission(repository, user, permission)
	62	else:
	63	self.delete_user_permission(repository, user)

rhodecode/model/users_group.py

0 created 644 +89 0

@@ -0,0 +1,89 b''
	1	# -- coding: utf-8 --
	2	"""
	3	rhodecode.model.users_group
	4	~~~~~~~~~~~~~~~~~~~~~~~~~~~
	5
	6	users group model for RhodeCode
	7
	8	:created_on: Oct 1, 2011
	9	:author: nvinot
	10	:copyright: (C) 2011-2011 Nicolas Vinot <aeris@imirhil.fr>
	11	:license: GPLv3, see COPYING for more details.
	12	"""
	13	# This program is free software: you can redistribute it and/or modify
	14	# it under the terms of the GNU General Public License as published by
	15	# the Free Software Foundation, either version 3 of the License, or
	16	# (at your option) any later version.
	17	#
	18	# This program is distributed in the hope that it will be useful,
	19	# but WITHOUT ANY WARRANTY; without even the implied warranty of
	20	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	21	# GNU General Public License for more details.
	22	#
	23	# You should have received a copy of the GNU General Public License
	24	# along with this program. If not, see <http://www.gnu.org/licenses/>.
	25
	26	import logging
	27	import traceback
	28
	29	from rhodecode.model import BaseModel
	30	from rhodecode.model.caching_query import FromCache
	31	from rhodecode.model.db import UsersGroupMember, UsersGroup
	32
	33	log = logging.getLogger(__name__)
	34
	35	class UsersGroupModel(BaseModel):
	36
	37	def get(self, users_group_id, cache = False):
	38	users_group = UsersGroup.query()
	39	if cache:
	40	users_group = users_group.options(FromCache("sql_cache_short",
	41	"get_users_group_%s" % users_group_id))
	42	return users_group.get(users_group_id)
	43
	44	def get_by_name(self, name, cache = False, case_insensitive = False):
	45	users_group = UsersGroup.query()
	46	if case_insensitive:
	47	users_group = users_group.filter(UsersGroup.users_group_name.ilike(name))
	48	else:
	49	users_group = users_group.filter(UsersGroup.users_group_name == name)
	50	if cache:
	51	users_group = users_group.options(FromCache("sql_cache_short",
	52	"get_users_group_%s" % name))
	53	return users_group.scalar()
	54
	55	def create(self, form_data):
	56	try:
	57	new_users_group = UsersGroup()
	58	for k, v in form_data.items():
	59	setattr(new_users_group, k, v)
	60
	61	self.sa.add(new_users_group)
	62	self.sa.commit()
	63	return new_users_group
	64	except:
	65	log.error(traceback.format_exc())
	66	self.sa.rollback()
	67	raise
	68
	69	def add_user_to_group(self, users_group, user):
	70	for m in users_group.members:
	71	u = m.user
	72	if u.user_id == user.user_id:
	73	return m
	74
	75	try:
	76	users_group_member = UsersGroupMember()
	77	users_group_member.user = user
	78	users_group_member.users_group = users_group
	79
	80	users_group.members.append(users_group_member)
	81	user.group_member.append(users_group_member)
	82
	83	self.sa.add(users_group_member)
	84	self.sa.commit()
	85	return users_group_member
	86	except:
	87	log.error(traceback.format_exc())
	88	self.sa.rollback()
	89	raise

development.ini

0 +2 0

             ################################################################################
             ################################################################################
             # RhodeCode - Pylons environment configuration                                 #
             #                                                                              #
             # The %(here)s variable will be replaced with the parent directory of this file#
             ################################################################################
             [DEFAULT]
             debug = true
             pdebug = false
             ################################################################################
             ## Uncomment and replace with the address which should receive                ##
             ## any error reports after application crash                                  ##
             ## Additionally those settings will be used by RhodeCode mailing system       ##
             ################################################################################
             #email_to = admin@localhost
             #error_email_from = paste_error@localhost
             #app_email_from = rhodecode-noreply@localhost
             #error_message =
             #smtp_server = mail.server.com
             #smtp_username =
             #smtp_password =
             #smtp_port =
             #smtp_use_tls = false
             #smtp_use_ssl = true
+            # Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
+            #smtp_auth =
             [server:main]
             ##nr of threads to spawn
             threadpool_workers = 5
             ##max request before thread respawn
             threadpool_max_requests = 6
             ##option to use threads of process
             use_threadpool = true
             use = egg:Paste#http
             host = 0.0.0.0
             port = 5000
             [app:main]
             use = egg:rhodecode
             full_stack = true
             static_files = true
             lang=en
             cache_dir = %(here)s/data
             index_dir = %(here)s/data/index
             app_instance_uuid = develop
             cut_off_limit = 256000
             force_https = false
             commit_parse_limit = 25
             use_gravatar = true
             ####################################
             ###        CELERY CONFIG        ####
             ####################################
             use_celery = false
             broker.host = localhost
             broker.vhost = rabbitmqhost
             broker.port = 5672
             broker.user = rabbitmq
             broker.password = qweqwe
             celery.imports = rhodecode.lib.celerylib.tasks
             celery.result.backend = amqp
             celery.result.dburi = amqp://
             celery.result.serialier = json
             #celery.send.task.error.emails = true
             #celery.amqp.task.result.expires = 18000
             celeryd.concurrency = 2
             #celeryd.log.file = celeryd.log
             celeryd.log.level = debug
             celeryd.max.tasks.per.child = 1
             #tasks will never be sent to the queue, but executed locally instead.
             celery.always.eager = false
             ####################################
             ###         BEAKER CACHE        ####
             ####################################
             beaker.cache.data_dir=%(here)s/data/cache/data
             beaker.cache.lock_dir=%(here)s/data/cache/lock
             beaker.cache.regions=super_short_term,short_term,long_term,sql_cache_short,sql_cache_med,sql_cache_long
             beaker.cache.super_short_term.type=memory
             beaker.cache.super_short_term.expire=10
             beaker.cache.short_term.type=memory
             beaker.cache.short_term.expire=60
             beaker.cache.long_term.type=memory
             beaker.cache.long_term.expire=36000
             beaker.cache.sql_cache_short.type=memory
             beaker.cache.sql_cache_short.expire=10
             beaker.cache.sql_cache_med.type=memory
             beaker.cache.sql_cache_med.expire=360
             beaker.cache.sql_cache_long.type=file
             beaker.cache.sql_cache_long.expire=3600
             ####################################
             ###       BEAKER SESSION        ####
             ####################################
             ## Type of storage used for the session, current types are
             ## dbm, file, memcached, database, and memory.
             ## The storage uses the Container API
             ##that is also used by the cache system.
             beaker.session.type = file
             beaker.session.key = rhodecode
             beaker.session.secret = g654dcno0-9873jhgfreyu
             beaker.session.timeout = 36000
             ##auto save the session to not to use .save()
             beaker.session.auto = False
             ##true exire at browser close
             #beaker.session.cookie_expires = 3600
             ################################################################################
             ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT*  ##
             ## Debug mode will enable the interactive debugging tool, allowing ANYONE to  ##
             ## execute malicious code after an exception is raised.                       ##
             ################################################################################
             #set debug = false
             ##################################
             ###       LOGVIEW CONFIG       ###
             ##################################
             logview.sqlalchemy = #faa
             logview.pylons.templating = #bfb
             logview.pylons.util = #eee
             #########################################################
             ### DB CONFIGS - EACH DB WILL HAVE IT'S OWN CONFIG    ###
             #########################################################
             #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db
             sqlalchemy.db1.url = postgresql://postgres:qwe@localhost/rhodecode
             sqlalchemy.db1.echo = false
             sqlalchemy.db1.pool_recycle = 3600
             sqlalchemy.convert_unicode = true
             ################################
             ### LOGGING CONFIGURATION   ####
             ################################
             [loggers]
             keys = root, routes, rhodecode, sqlalchemy, beaker, templates
             [handlers]
             keys = console, console_sql
             [formatters]
             keys = generic, color_formatter, color_formatter_sql
             #############
             ## LOGGERS ##
             #############
             [logger_root]
             level = NOTSET
             handlers = console
             [logger_routes]
             level = DEBUG
             handlers =
             qualname = routes.middleware
             # "level = DEBUG" logs the route matched and routing variables.
             propagate = 1
             [logger_beaker]
             level = DEBUG
             handlers =
             qualname = beaker.container
             propagate = 1
             [logger_templates]
             level = INFO
             handlers =
             qualname = pylons.templating
             propagate = 1
             [logger_rhodecode]
             level = DEBUG
             handlers =
             qualname = rhodecode
             propagate = 1
             [logger_sqlalchemy]
             level = INFO
             handlers = console_sql
             qualname = sqlalchemy.engine
             propagate = 0
             ##############
             ## HANDLERS ##
             ##############
             [handler_console]
             class = StreamHandler
             args = (sys.stderr,)
             level = DEBUG
             formatter = color_formatter
             [handler_console_sql]
             class = StreamHandler
             args = (sys.stderr,)
             level = DEBUG
             formatter = color_formatter_sql
             ################
             ## FORMATTERS ##
             ################
             [formatter_generic]
             format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
             datefmt = %Y-%m-%d %H:%M:%S
             [formatter_color_formatter]
             class=rhodecode.lib.colored_formatter.ColorFormatter
             format= %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
             datefmt = %Y-%m-%d %H:%M:%S
             [formatter_color_formatter_sql]
             class=rhodecode.lib.colored_formatter.ColorFormatterSql
             format= %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
             datefmt = %Y-%m-%d %H:%M:%S

docs/api/api.rst

0 +304 -53

@@ -1,111 +1,362 b''
1	.. _api:	1	.. _api:
2		2
3		3
4	API	4	API
5	===	5	===
6		6
7		7
8	Starting from RhodeCode version 1.2 a simple API was implemented.	8	Starting from RhodeCode version 1.2 a simple API was implemented.
9	There's a single schema for calling all api methods. API is implemented	9	There's a single schema for calling all api methods. API is implemented
10	with JSON protocol both ways. An url to send API request in RhodeCode is	10	with JSON protocol both ways. An url to send API request in RhodeCode is
11	<your_server>/_admin/api	11	<your_server>/_admin/api
12		12
13		13
14	All clients need to send JSON data in such format::	14	All clients need to send JSON data in such format::
15		15
16	{	16	{
17	"api_key":"<api_key>",	17	"api_key":"<api_key>",
18	"method":"<method_name>",	18	"method":"<method_name>",
19	"args":{"<arg_key>":"<arg_val>"}	19	"args":{"<arg_key>":"<arg_val>"}
20	}	20	}
21		21
22	Example call for autopulling remotes repos using curl::	22	Example call for autopulling remotes repos using curl::
23	curl https://server.com/_admin/api -X POST -H 'content-type:text/plain' --data-binary '{"api_key":"xe7cdb2v278e4evbdf5vs04v832v0efvcbcve4a3","method":"pull","args":{"repo":"CPython"}}'	23	curl https://server.com/_admin/api -X POST -H 'content-type:text/plain' --data-binary '{"api_key":"xe7cdb2v278e4evbdf5vs04v832v0efvcbcve4a3","method":"pull","args":{"repo":"CPython"}}'
24		24
25	Simply provide	25	Simply provide
26	- api_key for access and permission validation.	26	- api_key for access and permission validation.
27	- method is name of method to call	27	- method is name of method to call
28	- args is an key:value list of arguments to pass to method	28	- args is an key:value list of arguments to pass to method
29		29
30	.. note::	30	.. note::
31		31
32	api_key can be found in your user account page	32	api_key can be found in your user account page
33		33
34		34
35	RhodeCode API will return always a JSON formatted answer::	35	RhodeCode API will return always a JSON formatted answer::
36		36
37	{	37	{
38	"result": "<result>",	38	"result": "<result>",
39	"error": null	39	"error": null
40	}	40	}
41		41
42	All responses from API will be `HTTP/1.0 200 OK`, if there's an error while	42	All responses from API will be `HTTP/1.0 200 OK`, if there's an error while
43	calling api error key from response will contain failure description	43	calling api error key from response will contain failure description
44	and result will be null.	44	and result will be null.
45		45
46	API METHODS	46	API METHODS
47	+++++++++++	47	+++++++++++
48		48
49		49
50	pull	50	pull
51	----	51	----
52		52
53	Pulls given repo from remote location. Can be used to automatically keep	53	Pulls given repo from remote location. Can be used to automatically keep
54	remote repos up to date. This command can be executed only using api_key	54	remote repos up to date. This command can be executed only using api_key
55	belonging to user with admin rights
56
57	INPUT::
58
59	api_key:"<api_key>"
60	method: "pull"
61	args: {"repo":<repo_name>}
62
63	OUTPUT::
64
65	result:"Pulled from <repo_name>"
66	error:null
67
68
69	create_user
70	-----------
71
72	Creates new user in RhodeCode. This command can be executed only using api_key
73	belonging to user with admin rights	55	belonging to user with admin rights
74		56
75	INPUT::	57	INPUT::
76		58
77	api_key:"<api_key>"	59	api_key : "<api_key>"
78	method~~: "create_user~~"	60	method : "pull"
79	args: {"username": "<username>",	61	args : {
80	~~"password": "<password>",~~	62	"repo" : "<repo_name>"
81	"active": "<bool>",	63	}
82	"admin": "<bool>",	64
83	"name": "<firstname>",	65	OUTPUT::
84	"lastname": "<lastname>",	66
85	"email": "<useremail>"}	67	result : "Pulled from <repo_name>"
		68	error : null
		69
		70
		71	get_users
		72	---------
		73
		74	Lists all existing users. This command can be executed only using api_key
		75	belonging to user with admin rights.
		76
		77	INPUT::
		78
		79	api_key : "<api_key>"
		80	method : "get_users"
		81	args : { }
		82
		83	OUTPUT::
		84
		85	result: [
		86	{
		87	"id" : "<id>",
		88	"username" : "<username>",
		89	"firstname": "<firstname>",
		90	"lastname" : "<lastname>",
		91	"email" : "<email>",
		92	"active" : "<bool>",
		93	"admin" : "<bool>",
		94	"ldap" : "<ldap_dn>"
		95	},
		96	…
		97	]
		98	error: null
		99
		100	create_user
		101	-----------
		102
		103	Creates new user in RhodeCode. This command can be executed only using api_key
		104	belonging to user with admin rights.
		105
		106	INPUT::
		107
		108	api_key : "<api_key>"
		109	method : "create_user"
		110	args : {
		111	"username" : "<username>",
		112	"password" : "<password>",
		113	"firstname" : "<firstname>",
		114	"lastname" : "<lastname>",
		115	"email" : "<useremail>"
		116	"active" : "<bool> = True",
		117	"admin" : "<bool> = False",
		118	"ldap_dn" : "<ldap_dn> = None"
		119	}
86		120
87	OUTPUT::	121	OUTPUT::
88		122
89	result:{"id": <newuserid>,	123	result: {
90	"msg":"created new user <username>"}	124	"msg" : "created new user <username>"
91	error:null	125	}
92		126	error: null
93		127
		128	get_users_groups
		129	----------------
		130
		131	Lists all existing users groups. This command can be executed only using api_key
		132	belonging to user with admin rights.
		133
		134	INPUT::
		135
		136	api_key : "<api_key>"
		137	method : "get_users_groups"
		138	args : { }
		139
		140	OUTPUT::
		141
		142	result : [
		143	{
		144	"id" : "<id>",
		145	"name" : "<name>",
		146	"active": "<bool>",
		147	"members" : [
		148	{
		149	"id" : "<userid>",
		150	"username" : "<username>",
		151	"firstname": "<firstname>",
		152	"lastname" : "<lastname>",
		153	"email" : "<email>",
		154	"active" : "<bool>",
		155	"admin" : "<bool>",
		156	"ldap" : "<ldap_dn>"
		157	},
		158	…
		159	]
		160	}
		161	]
		162	error : null
		163
		164	get_users_group
		165	---------------
		166
		167	Gets an existing users group. This command can be executed only using api_key
		168	belonging to user with admin rights.
		169
		170	INPUT::
		171
		172	api_key : "<api_key>"
		173	method : "get_users_group"
		174	args : {
		175	"group_name" : "<name>"
		176	}
		177
		178	OUTPUT::
		179
		180	result : None if group not exist
		181	{
		182	"id" : "<id>",
		183	"name" : "<name>",
		184	"active": "<bool>",
		185	"members" : [
		186	{ "id" : "<userid>",
		187	"username" : "<username>",
		188	"firstname": "<firstname>",
		189	"lastname" : "<lastname>",
		190	"email" : "<email>",
		191	"active" : "<bool>",
		192	"admin" : "<bool>",
		193	"ldap" : "<ldap_dn>"
		194	},
		195	…
		196	]
		197	}
		198	error : null
		199
94	create_users_group	200	create_users_group
95	------------------	201	------------------
96		202
97	creates new users group. This command can be executed only using api_key	203	Creates new users group. This command can be executed only using api_key
98	belonging to user with admin rights	204	belonging to user with admin rights
99		205
100	INPUT::	206	INPUT::
101		207
102	api_key:"<api_key>"	208	api_key : "<api_key>"
103	method: "create_user"	209	method : "create_users_group"
104	args: {"name": "<groupname>",	210	args: {
105	~~"active":"<bool>"}~~	211	"name": "<name>",
		212	"active":"<bool> = True"
		213	}
		214
		215	OUTPUT::
		216
		217	result: {
		218	"id": "<newusersgroupid>",
		219	"msg": "created new users group <name>"
		220	}
		221	error: null
		222
		223	add_user_to_users_groups
		224	------------------------
		225
		226	Adds a user to a users group. This command can be executed only using api_key
		227	belonging to user with admin rights
		228
		229	INPUT::
		230
		231	api_key : "<api_key>"
		232	method : "add_user_users_group"
		233	args: {
		234	"group_name" : "<groupname>",
		235	"user_name" : "<username>"
		236	}
		237
		238	OUTPUT::
		239
		240	result: {
		241	"id": "<newusersgroupmemberid>",
		242	"msg": "created new users group member"
		243	}
		244	error: null
		245
		246	get_repos
		247	---------
		248
		249	Lists all existing repositories. This command can be executed only using api_key
		250	belonging to user with admin rights
		251
		252	INPUT::
		253
		254	api_key : "<api_key>"
		255	method : "get_repos"
		256	args: { }
106		257
107	OUTPUT::	258	OUTPUT::
108		259
109	result:{"id": <newusersgroupid>,	260	result: [
110	"msg":"created new users group <groupname>"}	261	{
111	error:null	262	"id" : "<id>",
		263	"name" : "<name>"
		264	"type" : "<type>",
		265	"description" : "<description>"
		266	},
		267	…
		268	]
		269	error: null
		270
		271	get_repo
		272	--------
		273
		274	Gets an existing repository. This command can be executed only using api_key
		275	belonging to user with admin rights
		276
		277	INPUT::
		278
		279	api_key : "<api_key>"
		280	method : "get_repo"
		281	args: {
		282	"name" : "<name>"
		283	}
		284
		285	OUTPUT::
		286
		287	result: None if repository not exist
		288	{
		289	"id" : "<id>",
		290	"name" : "<name>"
		291	"type" : "<type>",
		292	"description" : "<description>",
		293	"members" : [
		294	{ "id" : "<userid>",
		295	"username" : "<username>",
		296	"firstname": "<firstname>",
		297	"lastname" : "<lastname>",
		298	"email" : "<email>",
		299	"active" : "<bool>",
		300	"admin" : "<bool>",
		301	"ldap" : "<ldap_dn>",
		302	"permission" : "repository_(read\|write\|admin)"
		303	},
		304	…
		305	{
		306	"id" : "<usersgroupid>",
		307	"name" : "<usersgroupname>",
		308	"active": "<bool>",
		309	"permission" : "repository_(read\|write\|admin)"
		310	},
		311	…
		312	]
		313	}
		314	error: null
		315
		316	create_repo
		317	-----------
		318
		319	Creates a repository. This command can be executed only using api_key
		320	belonging to user with admin rights.
		321	If repository name contains "/", all needed repository groups will be created.
		322	For example "foo/bar/baz" will create groups "foo", "bar" (with "foo" as parent),
		323	and create "baz" repository with "bar" as group.
		324
		325	INPUT::
		326
		327	api_key : "<api_key>"
		328	method : "create_repo"
		329	args: {
		330	"name" : "<name>",
		331	"owner_name" : "<ownername>",
		332	"description" : "<description> = ''",
		333	"repo_type" : "<type> = 'hg'",
		334	"private" : "<bool> = False"
		335	}
		336
		337	OUTPUT::
		338
		339	result: None
		340	error: null
		341
		342	add_user_to_repo
		343	----------------
		344
		345	Add a user to a repository. This command can be executed only using api_key
		346	belonging to user with admin rights.
		347	If "perm" is None, user will be removed from the repository.
		348
		349	INPUT::
		350
		351	api_key : "<api_key>"
		352	method : "add_user_to_repo"
		353	args: {
		354	"repo_name" : "<reponame>",
		355	"user_name" : "<username>",
		356	"perm" : "(None\|repository_(read\|write\|admin))",
		357	}
		358
		359	OUTPUT::
		360
		361	result: None
		362	error: null

production.ini

0 +2 0

             ################################################################################
             ################################################################################
             # RhodeCode - Pylons environment configuration                                 #
             #                                                                              #
             # The %(here)s variable will be replaced with the parent directory of this file#
             ################################################################################
             [DEFAULT]
             debug = true
             pdebug = false
             ################################################################################
             ## Uncomment and replace with the address which should receive                ##
             ## any error reports after application crash                                  ##
             ## Additionally those settings will be used by RhodeCode mailing system       ##
             ################################################################################
             #email_to = admin@localhost
             #error_email_from = paste_error@localhost
             #app_email_from = rhodecode-noreply@localhost
             #error_message =
             #smtp_server = mail.server.com
             #smtp_username =
             #smtp_password =
             #smtp_port =
             #smtp_use_tls = false
             #smtp_use_ssl = true
+            # Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
+            #smtp_auth =
             [server:main]
             ##nr of threads to spawn
             threadpool_workers = 5
             ##max request before thread respawn
             threadpool_max_requests = 10
             ##option to use threads of process
             use_threadpool = true
             use = egg:Paste#http
             host = 127.0.0.1
             port = 8001
             [app:main]
             use = egg:rhodecode
             full_stack = true
             static_files = true
             lang=en
             cache_dir = %(here)s/data
             index_dir = %(here)s/data/index
             app_instance_uuid = prod1234
             cut_off_limit = 256000
             force_https = false
             commit_parse_limit = 50
             use_gravatar = true
             ####################################
             ###        CELERY CONFIG        ####
             ####################################
             use_celery = false
             broker.host = localhost
             broker.vhost = rabbitmqhost
             broker.port = 5672
             broker.user = rabbitmq
             broker.password = qweqwe
             celery.imports = rhodecode.lib.celerylib.tasks
             celery.result.backend = amqp
             celery.result.dburi = amqp://
             celery.result.serialier = json
             #celery.send.task.error.emails = true
             #celery.amqp.task.result.expires = 18000
             celeryd.concurrency = 2
             #celeryd.log.file = celeryd.log
             celeryd.log.level = debug
             celeryd.max.tasks.per.child = 1
             #tasks will never be sent to the queue, but executed locally instead.
             celery.always.eager = false
             ####################################
             ###         BEAKER CACHE        ####
             ####################################
             beaker.cache.data_dir=%(here)s/data/cache/data
             beaker.cache.lock_dir=%(here)s/data/cache/lock
             beaker.cache.regions=super_short_term,short_term,long_term,sql_cache_short,sql_cache_med,sql_cache_long
             beaker.cache.super_short_term.type=memory
             beaker.cache.super_short_term.expire=10
             beaker.cache.short_term.type=memory
             beaker.cache.short_term.expire=60
             beaker.cache.long_term.type=memory
             beaker.cache.long_term.expire=36000
             beaker.cache.sql_cache_short.type=memory
             beaker.cache.sql_cache_short.expire=10
             beaker.cache.sql_cache_med.type=memory
             beaker.cache.sql_cache_med.expire=360
             beaker.cache.sql_cache_long.type=file
             beaker.cache.sql_cache_long.expire=3600
             ####################################
             ###       BEAKER SESSION        ####
             ####################################
             ## Type of storage used for the session, current types are
             ## dbm, file, memcached, database, and memory.
             ## The storage uses the Container API
             ##that is also used by the cache system.
             beaker.session.type = file
             beaker.session.key = rhodecode
             beaker.session.secret = g654dcno0-9873jhgfreyu
             beaker.session.timeout = 36000
             ##auto save the session to not to use .save()
             beaker.session.auto = False
             ##true exire at browser close
             #beaker.session.cookie_expires = 3600
             ################################################################################
             ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT*  ##
             ## Debug mode will enable the interactive debugging tool, allowing ANYONE to  ##
             ## execute malicious code after an exception is raised.                       ##
             ################################################################################
             set debug = false
             ##################################
             ###       LOGVIEW CONFIG       ###
             ##################################
             logview.sqlalchemy = #faa
             logview.pylons.templating = #bfb
             logview.pylons.util = #eee
             #########################################################
             ### DB CONFIGS - EACH DB WILL HAVE IT'S OWN CONFIG    ###
             #########################################################
             #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db
             sqlalchemy.db1.url = postgresql://postgres:qwe@localhost/rhodecode
             sqlalchemy.db1.echo = false
             sqlalchemy.db1.pool_recycle = 3600
             sqlalchemy.convert_unicode = true
             ################################
             ### LOGGING CONFIGURATION   ####
             ################################
             [loggers]
             keys = root, routes, rhodecode, sqlalchemy, beaker, templates
             [handlers]
             keys = console, console_sql
             [formatters]
             keys = generic, color_formatter, color_formatter_sql
             #############
             ## LOGGERS ##
             #############
             [logger_root]
             level = NOTSET
             handlers = console
             [logger_routes]
             level = DEBUG
             handlers =
             qualname = routes.middleware
             # "level = DEBUG" logs the route matched and routing variables.
             propagate = 1
             [logger_beaker]
             level = DEBUG
             handlers =
             qualname = beaker.container
             propagate = 1
             [logger_templates]
             level = INFO
             handlers =
             qualname = pylons.templating
             propagate = 1
             [logger_rhodecode]
             level = DEBUG
             handlers =
             qualname = rhodecode
             propagate = 1
             [logger_sqlalchemy]
             level = INFO
             handlers = console_sql
             qualname = sqlalchemy.engine
             propagate = 0
             ##############
             ## HANDLERS ##
             ##############
             [handler_console]
             class = StreamHandler
             args = (sys.stderr,)
             level = INFO
             formatter = generic
             [handler_console_sql]
             class = StreamHandler
             args = (sys.stderr,)
             level = WARN
             formatter = generic
             ################
             ## FORMATTERS ##
             ################
             [formatter_generic]
             format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
             datefmt = %Y-%m-%d %H:%M:%S
             [formatter_color_formatter]
             class=rhodecode.lib.colored_formatter.ColorFormatter
             format= %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
             datefmt = %Y-%m-%d %H:%M:%S
             [formatter_color_formatter_sql]
             class=rhodecode.lib.colored_formatter.ColorFormatterSql
             format= %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
             datefmt = %Y-%m-%d %H:%M:%S

rhodecode/config/deployment.ini_tmpl

0 +3 -1

             ################################################################################
             ################################################################################
             # RhodeCode - Pylons environment configuration                                 #
             #                                                                              #
             # The %(here)s variable will be replaced with the parent directory of this file#
             ################################################################################
             [DEFAULT]
             debug = true
             pdebug = false
             ################################################################################
             ## Uncomment and replace with the address which should receive                ##
             ## any error reports after application crash                                  ##
             ## Additionally those settings will be used by RhodeCode mailing system       ##
             ################################################################################
             #email_to = admin@localhost
             #error_email_from = paste_error@localhost
             #app_email_from = rhodecode-noreply@localhost
             #error_message =
             #smtp_server = mail.server.com
             #smtp_username =
             #smtp_password =
             #smtp_port =
             #smtp_use_tls = false
             #smtp_use_ssl = true
+            # Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
+            #smtp_auth =
             [server:main]
             ##nr of threads to spawn
             threadpool_workers = 5
             ##max request before thread respawn
             threadpool_max_requests = 10
             ##option to use threads of process
             use_threadpool = true
             use = egg:Paste#http
             host = 127.0.0.1
             port = 5000
             [app:main]
             use = egg:rhodecode
             full_stack = true
             static_files = true
             lang=en
             cache_dir = %(here)s/data
             index_dir = %(here)s/data/index
             app_instance_uuid = ${app_instance_uuid}
             cut_off_limit = 256000
             force_https = false
             commit_parse_limit = 50
             use_gravatar = true
             ####################################
             ###        CELERY CONFIG        ####
             ####################################
             use_celery = false
             broker.host = localhost
             broker.vhost = rabbitmqhost
             broker.port = 5672
             broker.user = rabbitmq
             broker.password = qweqwe
             celery.imports = rhodecode.lib.celerylib.tasks
             celery.result.backend = amqp
             celery.result.dburi = amqp://
             celery.result.serialier = json
             #celery.send.task.error.emails = true
             #celery.amqp.task.result.expires = 18000
             celeryd.concurrency = 2
             #celeryd.log.file = celeryd.log
             celeryd.log.level = debug
             celeryd.max.tasks.per.child = 1
             #tasks will never be sent to the queue, but executed locally instead.
             celery.always.eager = false
             ####################################
             ###         BEAKER CACHE        ####
             ####################################
             beaker.cache.data_dir=%(here)s/data/cache/data
             beaker.cache.lock_dir=%(here)s/data/cache/lock
             beaker.cache.regions=super_short_term,short_term,long_term,sql_cache_short,sql_cache_med,sql_cache_long
             beaker.cache.super_short_term.type=memory
             beaker.cache.super_short_term.expire=10
             beaker.cache.short_term.type=memory
             beaker.cache.short_term.expire=60
             beaker.cache.long_term.type=memory
             beaker.cache.long_term.expire=36000
             beaker.cache.sql_cache_short.type=memory
             beaker.cache.sql_cache_short.expire=10
             beaker.cache.sql_cache_med.type=memory
             beaker.cache.sql_cache_med.expire=360
             beaker.cache.sql_cache_long.type=file
             beaker.cache.sql_cache_long.expire=3600
             ####################################
             ###       BEAKER SESSION        ####
             ####################################
             ## Type of storage used for the session, current types are
             ## dbm, file, memcached, database, and memory.
             ## The storage uses the Container API
             ##that is also used by the cache system.
             beaker.session.type = file
             beaker.session.key = rhodecode
             beaker.session.secret = ${app_instance_secret}
             beaker.session.timeout = 36000
             ##auto save the session to not to use .save()
             beaker.session.auto = False
             ##true exire at browser close
             #beaker.session.cookie_expires = 3600
             ################################################################################
             ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT*  ##
             ## Debug mode will enable the interactive debugging tool, allowing ANYONE to  ##
             ## execute malicious code after an exception is raised.                       ##
             ################################################################################
             set debug = false
             ##################################
             ###       LOGVIEW CONFIG       ###
             ##################################
             logview.sqlalchemy = #faa
             logview.pylons.templating = #bfb
             logview.pylons.util = #eee
             #########################################################
             ### DB CONFIGS - EACH DB WILL HAVE IT'S OWN CONFIG    ###
             #########################################################
             # SQLITE [default]
             sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db
-            # POSTGRES
+            # POSTGRESQL
             # sqlalchemy.db1.url = postgresql://user:pass@localhost/rhodecode
             # MySQL
             # sqlalchemy.db1.url = mysql://user:pass@localhost/rhodecode
             sqlalchemy.db1.echo = false
             sqlalchemy.db1.pool_recycle = 3600
             sqlalchemy.convert_unicode = true
             ################################
             ### LOGGING CONFIGURATION   ####
             ################################
             [loggers]
             keys = root, routes, rhodecode, sqlalchemy, beaker, templates
             [handlers]
             keys = console, console_sql
             [formatters]
             keys = generic, color_formatter, color_formatter_sql
             #############
             ## LOGGERS ##
             #############
             [logger_root]
             level = NOTSET
             handlers = console
             [logger_routes]
             level = DEBUG
             handlers =
             qualname = routes.middleware
             # "level = DEBUG" logs the route matched and routing variables.
             propagate = 1
             [logger_beaker]
             level = DEBUG
             handlers =
             qualname = beaker.container
             propagate = 1
             [logger_templates]
             level = INFO
             handlers =
             qualname = pylons.templating
             propagate = 1
             [logger_rhodecode]
             level = DEBUG
             handlers =
             qualname = rhodecode
             propagate = 1
             [logger_sqlalchemy]
             level = INFO
             handlers = console_sql
             qualname = sqlalchemy.engine
             propagate = 0
             ##############
             ## HANDLERS ##
             ##############
             [handler_console]
             class = StreamHandler
             args = (sys.stderr,)
             level = INFO
             formatter = color_formatter
             [handler_console_sql]
             class = StreamHandler
             args = (sys.stderr,)
             level = WARN
             formatter = color_formatter_sql
             ################
             ## FORMATTERS ##
             ################
             [formatter_generic]
             format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
             datefmt = %Y-%m-%d %H:%M:%S
             [formatter_color_formatter]
             class=rhodecode.lib.colored_formatter.ColorFormatter
             format= %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
             datefmt = %Y-%m-%d %H:%M:%S
             [formatter_color_formatter_sql]
             class=rhodecode.lib.colored_formatter.ColorFormatterSql
             format= %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
             datefmt = %Y-%m-%d %H:%M:%S

rhodecode/controllers/admin/repos.py

0 +2 -26

             # -*- coding: utf-8 -*-
             """
                 rhodecode.controllers.admin.repos
                 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                 Admin controller for RhodeCode
                 :created_on: Apr 7, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import logging
             import traceback
             import formencode
-            from operator import itemgetter
             from formencode import htmlfill
             from paste.httpexceptions import HTTPInternalServerError
             from pylons import request, response, session, tmpl_context as c, url
             from pylons.controllers.util import abort, redirect
             from pylons.i18n.translation import _
             from rhodecode.lib import helpers as h
             from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator, \
                 HasPermissionAnyDecorator
             from rhodecode.lib.base import BaseController, render
             from rhodecode.lib.utils import invalidate_cache, action_logger, repo_name_slug
             from rhodecode.lib.helpers import get_token
             from rhodecode.model.db import User, Repository, UserFollowing, Group
             from rhodecode.model.forms import RepoForm
             from rhodecode.model.scm import ScmModel
             from rhodecode.model.repo import RepoModel
             from sqlalchemy.exc import IntegrityError
             log = logging.getLogger(__name__)
             class ReposController(BaseController):
                 """
                 REST Controller styled on the Atom Publishing Protocol"""
                 # To properly map this controller, ensure your config/routing.py
                 # file has a resource setup:
                 #     map.resource('repo', 'repos')
                 @LoginRequired()
                 @HasPermissionAnyDecorator('hg.admin', 'hg.create.repository')
                 def __before__(self):
                     c.admin_user = session.get('admin_user')
                     c.admin_username = session.get('admin_username')
                     super(ReposController, self).__before__()
                 def __load_defaults(self):
                     c.repo_groups = Group.groups_choices()
                     c.repo_groups_choices = map(lambda k: unicode(k[0]), c.repo_groups)
                     repo_model = RepoModel()
                     c.users_array = repo_model.get_users_js()
                     c.users_groups_array = repo_model.get_users_groups_js()
                 def __load_data(self, repo_name=None):
                     """
                     Load defaults settings for edit, and update
                     :param repo_name:
                     """
                     self.__load_defaults()
                     c.repo_info = db_repo = Repository.get_by_repo_name(repo_name)
                     repo = db_repo.scm_instance
                     if c.repo_info is None:
                         h.flash(_('%s repository is not mapped to db perhaps'
                                   ' it was created or renamed from the filesystem'
                                   ' please run the application again'
                                   ' in order to rescan repositories') % repo_name,
                                   category='error')
                         return redirect(url('repos'))
                     c.default_user_id = User.get_by_username('default').user_id
-                    c.in_public_journal = self.sa.query(UserFollowing)\
+                    c.in_public_journal = UserFollowing.query()\
                         .filter(UserFollowing.user_id == c.default_user_id)\
                         .filter(UserFollowing.follows_repository == c.repo_info).scalar()
                     if c.repo_info.stats:
                         last_rev = c.repo_info.stats.stat_on_revision
                     else:
                         last_rev = 0
                     c.stats_revision = last_rev
                     c.repo_last_rev = repo.count() - 1 if repo.revisions else 0
                     if last_rev == 0 or c.repo_last_rev == 0:
                         c.stats_percentage = 0
                     else:
                         c.stats_percentage = '%.2f' % ((float((last_rev)) /
                                                         c.repo_last_rev) * 100)
-                    defaults = c.repo_info.get_dict()
+                    defaults = RepoModel()._get_defaults(repo_name)
-                    group, repo_name = c.repo_info.groups_and_repo
-                    defaults['repo_name'] = repo_name
-                    defaults['repo_group'] = getattr(group[-1] if group else None,
-                                                     'group_id', None)
-                    #fill owner
-                    if c.repo_info.user:
-                        defaults.update({'user': c.repo_info.user.username})
-                    else:
-                        replacement_user = self.sa.query(User)\
-                        .filter(User.admin == True).first().username
-                        defaults.update({'user': replacement_user})
-                    #fill repository users
-                    for p in c.repo_info.repo_to_perm:
-                        defaults.update({'u_perm_%s' % p.user.username:
-                                         p.permission.permission_name})
-                    #fill repository groups
-                    for p in c.repo_info.users_group_to_perm:
-                        defaults.update({'g_perm_%s' % p.users_group.users_group_name:
-                                         p.permission.permission_name})
                     return defaults
                 @HasPermissionAllDecorator('hg.admin')
                 def index(self, format='html'):
                     """GET /repos: All items in the collection"""
                     # url('repos')
                     c.repos_list = ScmModel().get_repos(Repository.query()
                                                         .order_by(Repository.repo_name)
                                                         .all(), sort_key='name_sort')
                     return render('admin/repos/repos.html')
                 @HasPermissionAnyDecorator('hg.admin', 'hg.create.repository')
                 def create(self):
                     """
                     POST /repos: Create a new item"""
                     # url('repos')
                     repo_model = RepoModel()
                     self.__load_defaults()
                     form_result = {}
                     try:
                         form_result = RepoForm(repo_groups=c.repo_groups_choices)()\
                                         .to_python(dict(request.POST))
                         repo_model.create(form_result, self.rhodecode_user)
                         if form_result['clone_uri']:
                             h.flash(_('created repository %s from %s') \
                                 % (form_result['repo_name'], form_result['clone_uri']),
                                 category='success')
                         else:
                             h.flash(_('created repository %s') % form_result['repo_name'],
                                 category='success')
                         if request.POST.get('user_created'):
                             #created by regular non admin user
                             action_logger(self.rhodecode_user, 'user_created_repo',
                                           form_result['repo_name_full'], '', self.sa)
                         else:
                             action_logger(self.rhodecode_user, 'admin_created_repo',
                                           form_result['repo_name_full'], '', self.sa)
                     except formencode.Invalid, errors:
                         c.new_repo = errors.value['repo_name']
                         if request.POST.get('user_created'):
                             r = render('admin/repos/repo_add_create_repository.html')
                         else:
                             r = render('admin/repos/repo_add.html')
                         return htmlfill.render(
                             r,
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8")
                     except Exception:
                         log.error(traceback.format_exc())
                         msg = _('error occurred during creation of repository %s') \
                                 % form_result.get('repo_name')
                         h.flash(msg, category='error')
                     if request.POST.get('user_created'):
                         return redirect(url('home'))
                     return redirect(url('repos'))
                 @HasPermissionAllDecorator('hg.admin')
                 def new(self, format='html'):
                     """GET /repos/new: Form to create a new item"""
                     new_repo = request.GET.get('repo', '')
                     c.new_repo = repo_name_slug(new_repo)
                     self.__load_defaults()
                     return render('admin/repos/repo_add.html')
                 @HasPermissionAllDecorator('hg.admin')
                 def update(self, repo_name):
                     """
                     PUT /repos/repo_name: Update an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="PUT" />
                     # Or using helpers:
                     #    h.form(url('repo', repo_name=ID),
                     #           method='put')
                     # url('repo', repo_name=ID)
                     self.__load_defaults()
                     repo_model = RepoModel()
                     changed_name = repo_name
                     _form = RepoForm(edit=True, old_data={'repo_name': repo_name},
                                      repo_groups=c.repo_groups_choices)()
                     try:
                         form_result = _form.to_python(dict(request.POST))
                         repo = repo_model.update(repo_name, form_result)
                         invalidate_cache('get_repo_cached_%s' % repo_name)
                         h.flash(_('Repository %s updated successfully' % repo_name),
                                 category='success')
                         changed_name = repo.repo_name
                         action_logger(self.rhodecode_user, 'admin_updated_repo',
                                           changed_name, '', self.sa)
                     except formencode.Invalid, errors:
                         defaults = self.__load_data(repo_name)
                         defaults.update(errors.value)
                         return htmlfill.render(
                             render('admin/repos/repo_edit.html'),
                             defaults=defaults,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8")
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('error occurred during update of repository %s') \
                                 % repo_name, category='error')
                     return redirect(url('edit_repo', repo_name=changed_name))
                 @HasPermissionAllDecorator('hg.admin')
                 def delete(self, repo_name):
                     """
                     DELETE /repos/repo_name: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('repo', repo_name=ID),
                     #           method='delete')
                     # url('repo', repo_name=ID)
                     repo_model = RepoModel()
                     repo = repo_model.get_by_repo_name(repo_name)
                     if not repo:
                         h.flash(_('%s repository is not mapped to db perhaps'
                                   ' it was moved or renamed  from the filesystem'
                                   ' please run the application again'
                                   ' in order to rescan repositories') % repo_name,
                                   category='error')
                         return redirect(url('repos'))
                     try:
                         action_logger(self.rhodecode_user, 'admin_deleted_repo',
                                           repo_name, '', self.sa)
                         repo_model.delete(repo)
                         invalidate_cache('get_repo_cached_%s' % repo_name)
                         h.flash(_('deleted repository %s') % repo_name, category='success')
                     except IntegrityError, e:
                         if e.message.find('repositories_fork_id_fkey'):
                             log.error(traceback.format_exc())
                             h.flash(_('Cannot delete %s it still contains attached '
                                       'forks') % repo_name,
                                     category='warning')
                         else:
                             log.error(traceback.format_exc())
                             h.flash(_('An error occurred during '
                                       'deletion of %s') % repo_name,
                                     category='error')
                     except Exception, e:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during deletion of %s') % repo_name,
                                 category='error')
                     return redirect(url('repos'))
                 @HasPermissionAllDecorator('hg.admin')
                 def delete_perm_user(self, repo_name):
                     """
                     DELETE an existing repository permission user
                     :param repo_name:
                     """
                     try:
                         repo_model = RepoModel()
                         repo_model.delete_perm_user(request.POST, repo_name)
                     except Exception, e:
                         h.flash(_('An error occurred during deletion of repository user'),
                                 category='error')
                         raise HTTPInternalServerError()
                 @HasPermissionAllDecorator('hg.admin')
                 def delete_perm_users_group(self, repo_name):
                     """
                     DELETE an existing repository permission users group
                     :param repo_name:
                     """
                     try:
                         repo_model = RepoModel()
                         repo_model.delete_perm_users_group(request.POST, repo_name)
                     except Exception, e:
                         h.flash(_('An error occurred during deletion of repository'
                                   ' users groups'),
                                 category='error')
                         raise HTTPInternalServerError()
                 @HasPermissionAllDecorator('hg.admin')
                 def repo_stats(self, repo_name):
                     """
                     DELETE an existing repository statistics
                     :param repo_name:
                     """
                     try:
                         repo_model = RepoModel()
                         repo_model.delete_stats(repo_name)
                     except Exception, e:
                         h.flash(_('An error occurred during deletion of repository stats'),
                                 category='error')
                     return redirect(url('edit_repo', repo_name=repo_name))
                 @HasPermissionAllDecorator('hg.admin')
                 def repo_cache(self, repo_name):
                     """
                     INVALIDATE existing repository cache
                     :param repo_name:
                     """
                     try:
                         ScmModel().mark_for_invalidation(repo_name)
                     except Exception, e:
                         h.flash(_('An error occurred during cache invalidation'),
                                 category='error')
                     return redirect(url('edit_repo', repo_name=repo_name))
                 @HasPermissionAllDecorator('hg.admin')
                 def repo_public_journal(self, repo_name):
                     """
                     Set's this repository to be visible in public journal,
                     in other words assing default user to follow this repo
                     :param repo_name:
                     """
                     cur_token = request.POST.get('auth_token')
                     token = get_token()
                     if cur_token == token:
                         try:
                             repo_id = Repository.get_by_repo_name(repo_name).repo_id
                             user_id = User.get_by_username('default').user_id
                             self.scm_model.toggle_following_repo(repo_id, user_id)
                             h.flash(_('Updated repository visibility in public journal'),
                                     category='success')
                         except:
                             h.flash(_('An error occurred during setting this'
                                       ' repository in public journal'),
                                     category='error')
                     else:
                         h.flash(_('Token mismatch'), category='error')
                     return redirect(url('edit_repo', repo_name=repo_name))
                 @HasPermissionAllDecorator('hg.admin')
                 def repo_pull(self, repo_name):
                     """
                     Runs task to update given repository with remote changes,
                     ie. make pull on remote location
                     :param repo_name:
                     """
                     try:
                         ScmModel().pull_changes(repo_name, self.rhodecode_user.username)
                         h.flash(_('Pulled from remote location'), category='success')
                     except Exception, e:
                         h.flash(_('An error occurred during pull from remote location'),
                                 category='error')
                     return redirect(url('edit_repo', repo_name=repo_name))
                 @HasPermissionAllDecorator('hg.admin')
                 def show(self, repo_name, format='html'):
                     """GET /repos/repo_name: Show a specific item"""
                     # url('repo', repo_name=ID)
                 @HasPermissionAllDecorator('hg.admin')
                 def edit(self, repo_name, format='html'):
                     """GET /repos/repo_name/edit: Form to edit an existing item"""
                     # url('edit_repo', repo_name=ID)
                     defaults = self.__load_data(repo_name)
                     return htmlfill.render(
                         render('admin/repos/repo_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )

rhodecode/controllers/api/api.py

0 +313 -37

@@ -1,98 +1,374 b''
1	import traceback	1	import traceback
2	import logging	2	import logging
3		3
4	from rhodecode.controllers.api import JSONRPCController, JSONRPCError	4	from rhodecode.controllers.api import JSONRPCController, JSONRPCError
5	from rhodecode.lib.auth import HasPermissionAllDecorator	5	from rhodecode.lib.auth import HasPermissionAllDecorator, \
		6	HasPermissionAnyDecorator
6	from rhodecode.model.scm import ScmModel	7	from rhodecode.model.scm import ScmModel
7		8
8	from rhodecode.model.db import User, UsersGroup, Repository	9	from rhodecode.model.db import User, UsersGroup, Group, Repository
		10	from rhodecode.model.repo import RepoModel
		11	from rhodecode.model.user import UserModel
		12	from rhodecode.model.repo_permission import RepositoryPermissionModel
		13	from rhodecode.model.users_group import UsersGroupModel
		14	from rhodecode.model import users_group
		15	from rhodecode.model.repos_group import ReposGroupModel
		16	from sqlalchemy.orm.exc import NoResultFound
9		17
10	log = logging.getLogger(__name__)	18	log = logging.getLogger(__name__)
11		19
12		20
13	class ApiController(JSONRPCController):	21	class ApiController(JSONRPCController):
14	"""	22	"""
15	API Controller	23	API Controller
16		24
17		25
18	Each method needs to have USER as argument this is then based on given	26	Each method needs to have USER as argument this is then based on given
19	API_KEY propagated as instance of user object	27	API_KEY propagated as instance of user object
20		28
21	Preferably this should be first argument also	29	Preferably this should be first argument also
22		30
23		31
24	Each function should also raise JSONRPCError for any	32	Each function should also raise JSONRPCError for any
25	errors that happens	33	errors that happens
26		34
27	"""	35	"""
28		36
29	@HasPermissionAllDecorator('hg.admin')	37	@HasPermissionAllDecorator('hg.admin')
30	def pull(self, apiuser, repo):	38	def pull(self, apiuser, repo):
31	"""	39	"""
32	Dispatch pull action on given repo	40	Dispatch pull action on given repo
33		41
34		42
35	:param user:	43	:param user:
36	:param repo:	44	:param repo:
37	"""	45	"""
38		46
39	if Repository.is_valid(repo) is False:	47	if Repository.is_valid(repo) is False:
40	raise JSONRPCError('Unknown repo "%s"' % repo)	48	raise JSONRPCError('Unknown repo "%s"' % repo)
41		49
42	try:	50	try:
43	ScmModel().pull_changes(repo, self.rhodecode_user.username)	51	ScmModel().pull_changes(repo, self.rhodecode_user.username)
44	return 'Pulled from %s' % repo	52	return 'Pulled from %s' % repo
45	except Exception:	53	except Exception:
46	raise JSONRPCError('Unable to pull changes from "%s"' % repo)	54	raise JSONRPCError('Unable to pull changes from "%s"' % repo)
47		55
		56	@HasPermissionAllDecorator('hg.admin')
		57	def get_user(self, apiuser, username):
		58	""""
		59	Get a user by username
		60
		61	:param apiuser
		62	:param username
		63	"""
		64
		65	user = User.get_by_username(username)
		66	if not user:
		67	return None
		68
		69	return dict(id=user.user_id,
		70	username=user.username,
		71	firstname=user.name,
		72	lastname=user.lastname,
		73	email=user.email,
		74	active=user.active,
		75	admin=user.admin,
		76	ldap=user.ldap_dn)
48		77
49	@HasPermissionAllDecorator('hg.admin')	78	@HasPermissionAllDecorator('hg.admin')
50	def create_user(self, apiuser, username, password, active, admin, name,	79	def get_users(self, apiuser):
51	lastname, email):	80	""""
		81	Get all users
		82
		83	:param apiuser
52	~~"""~~	84	"""
53	Creates new user	85
54		86	result = []
		87	for user in User.getAll():
		88	result.append(dict(id=user.user_id,
		89	username=user.username,
		90	firstname=user.name,
		91	lastname=user.lastname,
		92	email=user.email,
		93	active=user.active,
		94	admin=user.admin,
		95	ldap=user.ldap_dn))
		96	return result
		97
		98	@HasPermissionAllDecorator('hg.admin')
		99	def create_user(self, apiuser, username, password, firstname,
		100	lastname, email, active=True, admin=False, ldap_dn=None):
		101	"""
		102	Create new user
		103
55	:param apiuser:	104	:param apiuser:
56	:param username:	105	:param username:
57	:param password:	106	:param password:
58	:param active:
59	:param admin:
60	:param name:	107	:param name:
61	:param lastname:	108	:param lastname:
62	:param email:	109	:param email:
		110	:param active:
		111	:param admin:
		112	:param ldap_dn:
63	"""	113	"""
64		114
65	form_data = dict(username=username,	115	if self.get_user(apiuser, username):
66	password=password,	116	raise JSONRPCError("user %s already exist" % username)
67	active=active,	117
68	admin=admin,
69	name=name,
70	lastname=lastname,
71	email=email)
72	try:	118	try:
73	u = User.create(form_data)	119	form_data = dict(username=username,
74	return {'id':u.user_id,	120	password=password,
75	'msg':'created new user %s' % name}	121	active=active,
		122	admin=admin,
		123	name=firstname,
		124	lastname=lastname,
		125	email=email,
		126	ldap_dn=ldap_dn)
		127	UserModel().create_ldap(username, password, ldap_dn, form_data)
		128	return dict(msg='created new user %s' % username)
76	except Exception:	129	except Exception:
77	log.error(traceback.format_exc())	130	log.error(traceback.format_exc())
78	raise JSONRPCError('failed to create user %s' % name)	131	raise JSONRPCError('failed to create user %s' % username)
		132
		133	@HasPermissionAllDecorator('hg.admin')
		134	def get_users_group(self, apiuser, group_name):
		135	""""
		136	Get users group by name
		137
		138	:param apiuser
		139	:param group_name
		140	"""
		141
		142	users_group = UsersGroup.get_by_group_name(group_name)
		143	if not users_group:
		144	return None
79		145
		146	members = []
		147	for user in users_group.members:
		148	user = user.user
		149	members.append(dict(id=user.user_id,
		150	username=user.username,
		151	firstname=user.name,
		152	lastname=user.lastname,
		153	email=user.email,
		154	active=user.active,
		155	admin=user.admin,
		156	ldap=user.ldap_dn))
		157
		158	return dict(id=users_group.users_group_id,
		159	name=users_group.users_group_name,
		160	active=users_group.users_group_active,
		161	members=members)
80		162
81	@HasPermissionAllDecorator('hg.admin')	163	@HasPermissionAllDecorator('hg.admin')
82	def ~~create~~_users_group(self, apiuser, ~~name~~, ~~active~~):	164	def get_users_groups(self, apiuser):
		165	""""
		166	Get all users groups
		167
		168	:param apiuser
		169	"""
		170
		171	result = []
		172	for users_group in UsersGroup.getAll():
		173	members = []
		174	for user in users_group.members:
		175	user = user.user
		176	members.append(dict(id=user.user_id,
		177	username=user.username,
		178	firstname=user.name,
		179	lastname=user.lastname,
		180	email=user.email,
		181	active=user.active,
		182	admin=user.admin,
		183	ldap=user.ldap_dn))
		184
		185	result.append(dict(id=users_group.users_group_id,
		186	name=users_group.users_group_name,
		187	active=users_group.users_group_active,
		188	members=members))
		189	return result
		190
		191	@HasPermissionAllDecorator('hg.admin')
		192	def create_users_group(self, apiuser, name, active=True):
83	"""	193	"""
84	Creates an new usergroup	194	Creates an new usergroup
85		195
86	:param name:	196	:param name:
87	:param active:	197	:param active:
88	"""	198	"""
89	form_data = {'users_group_name':name,	199
90	'users_group_active':active}	200	if self.get_users_group(apiuser, name):
		201	raise JSONRPCError("users group %s already exist" % name)
		202
91	try:	203	try:
		204	form_data = dict(users_group_name=name,
		205	users_group_active=active)
92	ug = UsersGroup.create(form_data)	206	ug = UsersGroup.create(form_data)
93	return {'id':ug.users_group_id,	207	return dict(id=ug.users_group_id,
94	'msg':'created new users group %s' % name}	208	msg='created new users group %s' % name)
95	except Exception:	209	except Exception:
96	log.error(traceback.format_exc())	210	log.error(traceback.format_exc())
97	raise JSONRPCError('failed to create group %s' % name)	211	raise JSONRPCError('failed to create group %s' % name)
98	No newline at end of file	212
		213	@HasPermissionAllDecorator('hg.admin')
		214	def add_user_to_users_group(self, apiuser, group_name, user_name):
		215	""""
		216	Add a user to a group
		217
		218	:param apiuser
		219	:param group_name
		220	:param user_name
		221	"""
		222
		223	try:
		224	users_group = UsersGroup.get_by_group_name(group_name)
		225	if not users_group:
		226	raise JSONRPCError('unknown users group %s' % group_name)
		227
		228	try:
		229	user = User.get_by_username(user_name)
		230	except NoResultFound:
		231	raise JSONRPCError('unknown user %s' % user_name)
		232
		233	ugm = UsersGroupModel().add_user_to_group(users_group, user)
		234
		235	return dict(id=ugm.users_group_member_id,
		236	msg='created new users group member')
		237	except Exception:
		238	log.error(traceback.format_exc())
		239	raise JSONRPCError('failed to create users group member')
		240
		241	@HasPermissionAnyDecorator('hg.admin')
		242	def get_repo(self, apiuser, repo_name):
		243	""""
		244	Get repository by name
		245
		246	:param apiuser
		247	:param repo_name
		248	"""
		249
		250	try:
		251	repo = Repository.get_by_repo_name(repo_name)
		252	except NoResultFound:
		253	return None
		254
		255	members = []
		256	for user in repo.repo_to_perm:
		257	perm = user.permission.permission_name
		258	user = user.user
		259	members.append(dict(type_="user",
		260	id=user.user_id,
		261	username=user.username,
		262	firstname=user.name,
		263	lastname=user.lastname,
		264	email=user.email,
		265	active=user.active,
		266	admin=user.admin,
		267	ldap=user.ldap_dn,
		268	permission=perm))
		269	for users_group in repo.users_group_to_perm:
		270	perm = users_group.permission.permission_name
		271	users_group = users_group.users_group
		272	members.append(dict(type_="users_group",
		273	id=users_group.users_group_id,
		274	name=users_group.users_group_name,
		275	active=users_group.users_group_active,
		276	permission=perm))
		277
		278	return dict(id=repo.repo_id,
		279	name=repo.repo_name,
		280	type=repo.repo_type,
		281	description=repo.description,
		282	members=members)
		283
		284	@HasPermissionAnyDecorator('hg.admin')
		285	def get_repos(self, apiuser):
		286	""""
		287	Get all repositories
		288
		289	:param apiuser
		290	"""
		291
		292	result = []
		293	for repository in Repository.getAll():
		294	result.append(dict(id=repository.repo_id,
		295	name=repository.repo_name,
		296	type=repository.repo_type,
		297	description=repository.description))
		298	return result
		299
		300	@HasPermissionAnyDecorator('hg.admin', 'hg.create.repository')
		301	def create_repo(self, apiuser, name, owner_name, description='',
		302	repo_type='hg', private=False):
		303	"""
		304	Create a repository
		305
		306	:param apiuser
		307	:param name
		308	:param description
		309	:param type
		310	:param private
		311	:param owner_name
		312	"""
		313
		314	try:
		315	try:
		316	owner = User.get_by_username(owner_name)
		317	except NoResultFound:
		318	raise JSONRPCError('unknown user %s' % owner)
		319
		320	if self.get_repo(apiuser, name):
		321	raise JSONRPCError("repo %s already exist" % name)
		322
		323	groups = name.split('/')
		324	real_name = groups[-1]
		325	groups = groups[:-1]
		326	parent_id = None
		327	for g in groups:
		328	group = Group.get_by_group_name(g)
		329	if not group:
		330	group = ReposGroupModel().create(dict(group_name=g,
		331	group_description='',
		332	group_parent_id=parent_id))
		333	parent_id = group.group_id
		334
		335	RepoModel().create(dict(repo_name=real_name,
		336	repo_name_full=name,
		337	description=description,
		338	private=private,
		339	repo_type=repo_type,
		340	repo_group=parent_id,
		341	clone_uri=None), owner)
		342	except Exception:
		343	log.error(traceback.format_exc())
		344	raise JSONRPCError('failed to create repository %s' % name)
		345
		346	@HasPermissionAnyDecorator('hg.admin')
		347	def add_user_to_repo(self, apiuser, repo_name, user_name, perm):
		348	"""
		349	Add permission for a user to a repository
		350
		351	:param apiuser
		352	:param repo_name
		353	:param user_name
		354	:param perm
		355	"""
		356
		357	try:
		358	try:
		359	repo = Repository.get_by_repo_name(repo_name)
		360	except NoResultFound:
		361	raise JSONRPCError('unknown repository %s' % repo)
		362
		363	try:
		364	user = User.get_by_username(user_name)
		365	except NoResultFound:
		366	raise JSONRPCError('unknown user %s' % user)
		367
		368	RepositoryPermissionModel()\
		369	.update_or_delete_user_permission(repo, user, perm)
		370	except Exception:
		371	log.error(traceback.format_exc())
		372	raise JSONRPCError('failed to edit permission %(repo)s for %(user)s'
		373	% dict(user=user_name, repo=repo_name))
		374

rhodecode/controllers/settings.py

0 +20 -26

             # -*- coding: utf-8 -*-
             """
                 rhodecode.controllers.settings
                 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                 Settings controller for rhodecode
                 :created_on: Jun 30, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import logging
             import traceback
             import formencode
             from formencode import htmlfill
             from pylons import tmpl_context as c, request, url
             from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
             import rhodecode.lib.helpers as h
             from rhodecode.lib.auth import LoginRequired, HasRepoPermissionAllDecorator, \
                 HasRepoPermissionAnyDecorator, NotAnonymous
             from rhodecode.lib.base import BaseRepoController, render
             from rhodecode.lib.utils import invalidate_cache, action_logger
             from rhodecode.model.forms import RepoSettingsForm, RepoForkForm
             from rhodecode.model.repo import RepoModel
-            from rhodecode.model.db import User
+            from rhodecode.model.db import Group
             log = logging.getLogger(__name__)
             class SettingsController(BaseRepoController):
                 @LoginRequired()
                 def __before__(self):
                     super(SettingsController, self).__before__()
+                def __load_defaults(self):
+                    c.repo_groups = Group.groups_choices()
+                    c.repo_groups_choices = map(lambda k: unicode(k[0]), c.repo_groups)
+                    repo_model = RepoModel()
+                    c.users_array = repo_model.get_users_js()
+                    c.users_groups_array = repo_model.get_users_groups_js()
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def index(self, repo_name):
                     repo_model = RepoModel()
                     c.repo_info = repo = repo_model.get_by_repo_name(repo_name)
                     if not repo:
                         h.flash(_('%s repository is not mapped to db perhaps'
                                   ' it was created or renamed from the file system'
                                   ' please run the application again'
                                   ' in order to rescan repositories') % repo_name,
                                   category='error')
                         return redirect(url('home'))
-                    c.users_array = repo_model.get_users_js()
+                    self.__load_defaults()
-                    c.users_groups_array = repo_model.get_users_groups_js()
-                    defaults = c.repo_info.get_dict()
-                    #fill owner
+                    defaults = RepoModel()._get_defaults(repo_name)
-                    if c.repo_info.user:
-                        defaults.update({'user': c.repo_info.user.username})
-                    else:
-                        replacement_user = self.sa.query(User)\
-                        .filter(User.admin == True).first().username
-                        defaults.update({'user': replacement_user})
-                    #fill repository users
-                    for p in c.repo_info.repo_to_perm:
-                        defaults.update({'u_perm_%s' % p.user.username:
-                                         p.permission.permission_name})
-                    #fill repository groups
-                    for p in c.repo_info.users_group_to_perm:
-                        defaults.update({'g_perm_%s' % p.users_group.users_group_name:
-                                         p.permission.permission_name})
                     return htmlfill.render(
                         render('settings/repo_settings.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def update(self, repo_name):
                     repo_model = RepoModel()
                     changed_name = repo_name
+                    self.__load_defaults()
                     _form = RepoSettingsForm(edit=True,
-                                             old_data={'repo_name': repo_name})()
+                                             old_data={'repo_name': repo_name},
+                                             repo_groups=c.repo_groups_choices)()
                     try:
                         form_result = _form.to_python(dict(request.POST))
                         repo_model.update(repo_name, form_result)
                         invalidate_cache('get_repo_cached_%s' % repo_name)
                         h.flash(_('Repository %s updated successfully' % repo_name),
                                 category='success')
-                        changed_name = form_result['repo_name']
+                        changed_name = form_result['repo_name_full']
                         action_logger(self.rhodecode_user, 'user_updated_repo',
-                                          changed_name, '', self.sa)
+                                      changed_name, '', self.sa)
                     except formencode.Invalid, errors:
                         c.repo_info = repo_model.get_by_repo_name(repo_name)
                         c.users_array = repo_model.get_users_js()
                         errors.value.update({'user': c.repo_info.user.username})
                         return htmlfill.render(
                             render('settings/repo_settings.html'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8")
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('error occurred during update of repository %s') \
                                 % repo_name, category='error')
                     return redirect(url('repo_settings_home', repo_name=changed_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def delete(self, repo_name):
                     """DELETE /repos/repo_name: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('repo_settings_delete', repo_name=ID),
                     #           method='delete')
                     # url('repo_settings_delete', repo_name=ID)
                     repo_model = RepoModel()
                     repo = repo_model.get_by_repo_name(repo_name)
                     if not repo:
                         h.flash(_('%s repository is not mapped to db perhaps'
                                   ' it was moved or renamed  from the filesystem'
                                   ' please run the application again'
                                   ' in order to rescan repositories') % repo_name,
                                   category='error')
                         return redirect(url('home'))
                     try:
                         action_logger(self.rhodecode_user, 'user_deleted_repo',
                                           repo_name, '', self.sa)
                         repo_model.delete(repo)
                         invalidate_cache('get_repo_cached_%s' % repo_name)
                         h.flash(_('deleted repository %s') % repo_name, category='success')
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during deletion of %s') % repo_name,
                                 category='error')
                     return redirect(url('home'))
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def fork(self, repo_name):
                     repo_model = RepoModel()
                     c.repo_info = repo = repo_model.get_by_repo_name(repo_name)
                     if not repo:
                         h.flash(_('%s repository is not mapped to db perhaps'
                                   ' it was created or renamed from the file system'
                                   ' please run the application again'
                                   ' in order to rescan repositories') % repo_name,
                                   category='error')
                         return redirect(url('home'))
                     return render('settings/repo_fork.html')
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def fork_create(self, repo_name):
                     repo_model = RepoModel()
                     c.repo_info = repo_model.get_by_repo_name(repo_name)
                     _form = RepoForkForm(old_data={'repo_type': c.repo_info.repo_type})()
                     form_result = {}
                     try:
                         form_result = _form.to_python(dict(request.POST))
                         form_result.update({'repo_name': repo_name})
                         repo_model.create_fork(form_result, self.rhodecode_user)
                         h.flash(_('forked %s repository as %s') \
                                   % (repo_name, form_result['fork_name']),
                                 category='success')
                         action_logger(self.rhodecode_user,
                                       'user_forked_repo:%s' % form_result['fork_name'],
                                        repo_name, '', self.sa)
                     except formencode.Invalid, errors:
                         c.new_repo = errors.value['fork_name']
                         r = render('settings/repo_fork.html')
                         return htmlfill.render(
                             r,
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8")
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during repository forking %s') %
                                 repo_name, category='error')
                     return redirect(url('home'))

rhodecode/lib/__init__.py

0 +1 -2

             # -*- coding: utf-8 -*-
             """
                 rhodecode.lib.__init__
                 ~~~~~~~~~~~~~~~~~~~~~~~
                 Some simple helper functions
                 :created_on: Jan 5, 2011
                 :author: marcink
                 :copyright: (C) 2009-2010 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import os
             def __get_lem():
                 from pygments import lexers
                 from string import lower
                 from collections import defaultdict
                 d = defaultdict(lambda: [])
                 def __clean(s):
                     s = s.lstrip('*')
                     s = s.lstrip('.')
                     if s.find('[') != -1:
                         exts = []
                         start, stop = s.find('['), s.find(']')
                         for suffix in s[start + 1:stop]:
                             exts.append(s[:s.find('[')] + suffix)
                         return map(lower, exts)
                     else:
                         return map(lower, [s])
                 for lx, t in sorted(lexers.LEXERS.items()):
                     m = map(__clean, t[-2])
                     if m:
                         m = reduce(lambda x, y: x + y, m)
                         for ext in m:
                             desc = lx.replace('Lexer', '')
                             d[ext].append(desc)
                 return dict(d)
             # language map is also used by whoosh indexer, which for those specified
             # extensions will index it's content
             LANGUAGES_EXTENSIONS_MAP = __get_lem()
             # Additional mappings that are not present in the pygments lexers
             # NOTE: that this will overide any mappings in LANGUAGES_EXTENSIONS_MAP
             ADDITIONAL_MAPPINGS = {'xaml': 'XAML'}
             LANGUAGES_EXTENSIONS_MAP.update(ADDITIONAL_MAPPINGS)
             def str2bool(_str):
                 """
                 returs True/False value from given string, it tries to translate the
                 string into boolean
                 :param _str: string value to translate into boolean
                 :rtype: boolean
                 :returns: boolean from given string
                 """
                 if _str is None:
                     return False
                 if _str in (True, False):
                     return _str
                 _str = str(_str).strip().lower()
                 return _str in ('t', 'true', 'y', 'yes', 'on', '1')
             def convert_line_endings(line, mode):
                 """
                 Converts a given line  "line end" accordingly to given mode
                 Available modes are::
 - Unix
 - Mac
 - DOS
                 :param line: given line to convert
                 :param mode: mode to convert to
                 :rtype: str
                 :return: converted line according to mode
                 """
                 from string import replace
                 if mode == 0:
                         line = replace(line, '\r\n', '\n')
                         line = replace(line, '\r', '\n')
                 elif mode == 1:
                         line = replace(line, '\r\n', '\r')
                         line = replace(line, '\n', '\r')
                 elif mode == 2:
                         import re
                         line = re.sub("\r(?!\n)|(?<!\r)\n", "\r\n", line)
                 return line
             def detect_mode(line, default):
                 """
                 Detects line break for given line, if line break couldn't be found
                 given default value is returned
                 :param line: str line
                 :param default: default
                 :rtype: int
                 :return: value of line end on of 0 - Unix, 1 - Mac, 2 - DOS
                 """
                 if line.endswith('\r\n'):
                     return 2
                 elif line.endswith('\n'):
                     return 0
                 elif line.endswith('\r'):
                     return 1
                 else:
                     return default
             def generate_api_key(username, salt=None):
                 """
                 Generates unique API key for given username, if salt is not given
                 it'll be generated from some random string
                 :param username: username as string
                 :param salt: salt to hash generate KEY
                 :rtype: str
                 :returns: sha1 hash from username+salt
                 """
                 from tempfile import _RandomNameSequence
                 import hashlib
                 if salt is None:
                     salt = _RandomNameSequence().next()
                 return hashlib.sha1(username + salt).hexdigest()
             def safe_unicode(str_, from_encoding='utf8'):
                 """
                 safe unicode function. Does few trick to turn str_ into unicode
                 In case of UnicodeDecode error we try to return it with encoding detected
                 by chardet library if it fails fallback to unicode with errors replaced
                 :param str_: string to decode
                 :rtype: unicode
                 :returns: unicode object
                 """
                 if isinstance(str_, unicode):
                     return str_
                 try:
                     return unicode(str_)
                 except UnicodeDecodeError:
                     pass
                 try:
                     return unicode(str_, from_encoding)
                 except UnicodeDecodeError:
                     pass
                 try:
                     import chardet
                     encoding = chardet.detect(str_)['encoding']
                     if encoding is None:
                         raise Exception()
                     return str_.decode(encoding)
                 except (ImportError, UnicodeDecodeError, Exception):
                     return unicode(str_, from_encoding, 'replace')
             def safe_str(unicode_, to_encoding='utf8'):
                 """
                 safe str function. Does few trick to turn unicode_ into string
                 In case of UnicodeEncodeError we try to return it with encoding detected
                 by chardet library if it fails fallback to string with errors replaced
                 :param unicode_: unicode to encode
                 :rtype: str
                 :returns: str object
                 """
                 if isinstance(unicode_, str):
                     return unicode_
                 try:
                     return unicode_.encode(to_encoding)
                 except UnicodeEncodeError:
                     pass
                 try:
                     import chardet
                     encoding = chardet.detect(unicode_)['encoding']
                     print encoding
                     if encoding is None:
                         raise UnicodeEncodeError()
                     return unicode_.encode(encoding)
                 except (ImportError, UnicodeEncodeError):
                     return unicode_.encode(to_encoding, 'replace')
                 return safe_str
             def engine_from_config(configuration, prefix='sqlalchemy.', **kwargs):
                 """
                 Custom engine_from_config functions that makes sure we use NullPool for
                 file based sqlite databases. This prevents errors on sqlite. This only
                 applies to sqlalchemy versions < 0.7.0
                 """
                 import sqlalchemy
                 from sqlalchemy import engine_from_config as efc
                 import logging
                 if int(sqlalchemy.__version__.split('.')[1]) < 7:
                     # This solution should work for sqlalchemy < 0.7.0, and should use
                     # proxy=TimerProxy() for execution time profiling
                     from sqlalchemy.pool import NullPool
                     url = configuration[prefix + 'url']
                     if url.startswith('sqlite'):
                         kwargs.update({'poolclass': NullPool})
                     return efc(configuration, prefix, **kwargs)
                 else:
                     import time
                     from sqlalchemy import event
                     from sqlalchemy.engine import Engine
                     log = logging.getLogger('sqlalchemy.engine')
                     BLACK, RED, GREEN, YELLOW, BLUE, MAGENTA, CYAN, WHITE = xrange(30, 38)
                     engine = efc(configuration, prefix, **kwargs)
                     def color_sql(sql):
                         COLOR_SEQ = "\033[1;%dm"
                         COLOR_SQL = YELLOW
                         normal = '\x1b[0m'
                         return ''.join([COLOR_SEQ % COLOR_SQL, sql, normal])
                     if configuration['debug']:
                         #attach events only for debug configuration
                         def before_cursor_execute(conn, cursor, statement,
                                                 parameters, context, executemany):
                             context._query_start_time = time.time()
                             log.info(color_sql(">>>>> STARTING QUERY >>>>>"))
                         def after_cursor_execute(conn, cursor, statement,
                                                 parameters, context, executemany):
                             total = time.time() - context._query_start_time
                             log.info(color_sql("<<<<< TOTAL TIME: %f <<<<<" % total))
                         event.listen(engine, "before_cursor_execute",
                                      before_cursor_execute)
                         event.listen(engine, "after_cursor_execute",
                                      after_cursor_execute)
                 return engine
             def age(curdate):
                 """
                 turns a datetime into an age string.
                 :param curdate: datetime object
                 :rtype: unicode
                 :returns: unicode words describing age
                 """
                 from datetime import datetime
                 from webhelpers.date import time_ago_in_words
                 _ = lambda s:s
                 if not curdate:
                     return ''
                 agescales = [(_(u"year"), 3600 * 24 * 365),
                              (_(u"month"), 3600 * 24 * 30),
                              (_(u"day"), 3600 * 24),
                              (_(u"hour"), 3600),
                              (_(u"minute"), 60),
                              (_(u"second"), 1), ]
                 age = datetime.now() - curdate
                 age_seconds = (age.days * agescales[2][1]) + age.seconds
                 pos = 1
                 for scale in agescales:
                     if scale[1] <= age_seconds:
                         if pos == 6:pos = 5
                         return '%s %s' % (time_ago_in_words(curdate,
                                                             agescales[pos][0]), _('ago'))
                     pos += 1
                 return _(u'just now')
             def uri_filter(uri):
                 """
                 Removes user:password from given url string
                 :param uri:
                 :rtype: unicode
                 :returns: filtered list of strings
                 """
                 if not uri:
                     return ''
                 proto = ''
                 for pat in ('https://', 'http://'):
                     if uri.startswith(pat):
                         uri = uri[len(pat):]
                         proto = pat
                         break
                 # remove passwords and username
                 uri = uri[uri.find('@') + 1:]
                 # get the port
                 cred_pos = uri.find(':')
                 if cred_pos == -1:
                     host, port = uri, None
                 else:
                     host, port = uri[:cred_pos], uri[cred_pos + 1:]
                 return filter(None, [proto, host, port])
             def credentials_filter(uri):
                 """
                 Returns a url with removed credentials
                 :param uri:
                 """
                 uri = uri_filter(uri)
                 #check if we have port
                 if len(uri) > 2 and uri[2]:
                     uri[2] = ':' + uri[2]
                 return ''.join(uri)
             def get_changeset_safe(repo, rev):
                 """
                 Safe version of get_changeset if this changeset doesn't exists for a
                 repo it returns a Dummy one instead
                 :param repo:
                 :param rev:
                 """
                 from vcs.backends.base import BaseRepository
                 from vcs.exceptions import RepositoryError
                 if not isinstance(repo, BaseRepository):
                     raise Exception('You must pass an Repository '
                                     'object as first argument got %s', type(repo))
                 try:
                     cs = repo.get_changeset(rev)
                 except RepositoryError:
                     from rhodecode.lib.utils import EmptyChangeset
                     cs = EmptyChangeset(requested_revision=rev)
                 return cs
             def get_current_revision(quiet=False):
                 """
                 Returns tuple of (number, id) from repository containing this package
                 or None if repository could not be found.
                 :param quiet: prints error for fetching revision if True
                 """
                 try:
                     from vcs import get_repo
                     from vcs.utils.helpers import get_scm
-                    from vcs.exceptions import RepositoryError, VCSError
                     repopath = os.path.join(os.path.dirname(__file__), '..', '..')
                     scm = get_scm(repopath)[0]
                     repo = get_repo(path=repopath, alias=scm)
                     tip = repo.get_changeset()
                     return (tip.revision, tip.short_id)
-                except (ImportError, RepositoryError, VCSError), err:
+                except Exception, err:
                     if not quiet:
                         print ("Cannot retrieve rhodecode's revision. Original error "
                                "was: %s" % err)
                     return None

rhodecode/lib/auth_ldap.py

0 +10 -6

             # -*- coding: utf-8 -*-
             """
                 rhodecode.controllers.changelog
                 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                 RhodeCode authentication library for LDAP
                 :created_on: Created on Nov 17, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import logging
             from rhodecode.lib.exceptions import LdapConnectionError, LdapUsernameError, \
                 LdapPasswordError
             log = logging.getLogger(__name__)
             try:
                 import ldap
             except ImportError:
                 # means that python-ldap is not installed
                 pass
             class AuthLdap(object):
                 def __init__(self, server, base_dn, port=389, bind_dn='', bind_pass='',
                              tls_kind='PLAIN', tls_reqcert='DEMAND', ldap_version=3,
                              ldap_filter='(&(objectClass=user)(!(objectClass=computer)))',
                              search_scope='SUBTREE',
                              attr_login='uid'):
                     self.ldap_version = ldap_version
                     ldap_server_type = 'ldap'
                     self.TLS_KIND = tls_kind
                     if self.TLS_KIND == 'LDAPS':
                         port = port or 689
                         ldap_server_type = ldap_server_type + 's'
-                    self.TLS_REQCERT = ldap.__dict__['OPT_X_TLS_' + tls_reqcert]
+                    OPT_X_TLS_DEMAND = 2
+                    self.TLS_REQCERT = getattr(ldap, 'OPT_X_TLS_%s' % tls_reqcert,
+                                               OPT_X_TLS_DEMAND)
                     self.LDAP_SERVER_ADDRESS = server
                     self.LDAP_SERVER_PORT = port
                     #USE FOR READ ONLY BIND TO LDAP SERVER
                     self.LDAP_BIND_DN = bind_dn
                     self.LDAP_BIND_PASS = bind_pass
                     self.LDAP_SERVER = "%s://%s:%s" % (ldap_server_type,
-                                                           self.LDAP_SERVER_ADDRESS,
+                                                       self.LDAP_SERVER_ADDRESS,
-                                                           self.LDAP_SERVER_PORT)
+                                                       self.LDAP_SERVER_PORT)
                     self.BASE_DN = base_dn
                     self.LDAP_FILTER = ldap_filter
-                    self.SEARCH_SCOPE = ldap.__dict__['SCOPE_' + search_scope]
+                    self.SEARCH_SCOPE = getattr(ldap, 'SCOPE_%s' % search_scope)
                     self.attr_login = attr_login
                 def authenticate_ldap(self, username, password):
                     """Authenticate a user via LDAP and return his/her LDAP properties.
                     Raises AuthenticationError if the credentials are rejected, or
                     EnvironmentError if the LDAP server can't be reached.
                     :param username: username
                     :param password: password
                     """
                     from rhodecode.lib.helpers import chop_at
                     uid = chop_at(username, "@%s" % self.LDAP_SERVER_ADDRESS)
                     if "," in username:
                         raise LdapUsernameError("invalid character in username: ,")
                     try:
-                        ldap.set_option(ldap.OPT_X_TLS_CACERTDIR, '/etc/openldap/cacerts')
+                        if hasattr(ldap,'OPT_X_TLS_CACERTDIR'):
+                            ldap.set_option(ldap.OPT_X_TLS_CACERTDIR,
+                                            '/etc/openldap/cacerts')
                         ldap.set_option(ldap.OPT_REFERRALS, ldap.OPT_OFF)
                         ldap.set_option(ldap.OPT_RESTART, ldap.OPT_ON)
                         ldap.set_option(ldap.OPT_TIMEOUT, 20)
                         ldap.set_option(ldap.OPT_NETWORK_TIMEOUT, 10)
                         ldap.set_option(ldap.OPT_TIMELIMIT, 15)
                         if self.TLS_KIND != 'PLAIN':
                             ldap.set_option(ldap.OPT_X_TLS_REQUIRE_CERT, self.TLS_REQCERT)
                         server = ldap.initialize(self.LDAP_SERVER)
                         if self.ldap_version == 2:
                             server.protocol = ldap.VERSION2
                         else:
                             server.protocol = ldap.VERSION3
                         if self.TLS_KIND == 'START_TLS':
                             server.start_tls_s()
                         if self.LDAP_BIND_DN and self.LDAP_BIND_PASS:
                             server.simple_bind_s(self.LDAP_BIND_DN, self.LDAP_BIND_PASS)
                         filt = '(&%s(%s=%s))' % (self.LDAP_FILTER, self.attr_login,
                                                  username)
                         log.debug("Authenticating %r filt %s at %s", self.BASE_DN,
                                   filt, self.LDAP_SERVER)
                         lobjects = server.search_ext_s(self.BASE_DN, self.SEARCH_SCOPE,
                                                        filt)
                         if not lobjects:
                             raise ldap.NO_SUCH_OBJECT()
                         for (dn, _attrs) in lobjects:
                             if dn is None:
                                 continue
                             try:
                                 server.simple_bind_s(dn, password)
                                 attrs = server.search_ext_s(dn, ldap.SCOPE_BASE,
                                                             '(objectClass=*)')[0][1]
                                 break
                             except ldap.INVALID_CREDENTIALS, e:
                                 log.debug("LDAP rejected password for user '%s' (%s): %s",
                                           uid, username, dn)
                         else:
                             log.debug("No matching LDAP objects for authentication "
                                       "of '%s' (%s)", uid, username)
                             raise LdapPasswordError()
                     except ldap.NO_SUCH_OBJECT, e:
                         log.debug("LDAP says no such user '%s' (%s)", uid, username)
                         raise LdapUsernameError()
                     except ldap.SERVER_DOWN, e:
                         raise LdapConnectionError("LDAP can't access "
                                                   "authentication server")
                     return (dn, attrs)

rhodecode/lib/celerylib/tasks.py

0 +2 -1

             # -*- coding: utf-8 -*-
             """
                 rhodecode.lib.celerylib.tasks
                 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                 RhodeCode task modules, containing all task that suppose to be run
                 by celery daemon
                 :created_on: Oct 6, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             from celery.decorators import task
             import os
             import traceback
             import logging
             from os.path import dirname as dn, join as jn
             from time import mktime
             from operator import itemgetter
             from string import lower
             from pylons import config, url
             from pylons.i18n.translation import _
             from rhodecode.lib import LANGUAGES_EXTENSIONS_MAP, safe_str
             from rhodecode.lib.celerylib import run_task, locked_task, str2bool, \
                 __get_lockkey, LockHeld, DaemonLock
             from rhodecode.lib.helpers import person
             from rhodecode.lib.smtp_mailer import SmtpMailer
             from rhodecode.lib.utils import add_cache
             from rhodecode.lib.compat import json, OrderedDict
             from rhodecode.model import init_model
             from rhodecode.model import meta
             from rhodecode.model.db import RhodeCodeUi, Statistics, Repository
             from vcs.backends import get_repo
             from sqlalchemy import engine_from_config
             add_cache(config)
             __all__ = ['whoosh_index', 'get_commits_stats',
                        'reset_user_password', 'send_email']
             CELERY_ON = str2bool(config['app_conf'].get('use_celery'))
             def get_session():
                 if CELERY_ON:
                     engine = engine_from_config(config, 'sqlalchemy.db1.')
                     init_model(engine)
                 sa = meta.Session()
                 return sa
             def get_repos_path():
                 sa = get_session()
                 q = sa.query(RhodeCodeUi).filter(RhodeCodeUi.ui_key == '/').one()
                 return q.ui_value
             @task(ignore_result=True)
             @locked_task
             def whoosh_index(repo_location, full_index):
                 #log = whoosh_index.get_logger()
                 from rhodecode.lib.indexers.daemon import WhooshIndexingDaemon
                 index_location = config['index_dir']
                 WhooshIndexingDaemon(index_location=index_location,
                                      repo_location=repo_location, sa=get_session())\
                                      .run(full_index=full_index)
             @task(ignore_result=True)
             def get_commits_stats(repo_name, ts_min_y, ts_max_y):
                 try:
                     log = get_commits_stats.get_logger()
                 except:
                     log = logging.getLogger(__name__)
                 lockkey = __get_lockkey('get_commits_stats', repo_name, ts_min_y,
                                         ts_max_y)
                 lockkey_path = config['here']
                 log.info('running task with lockkey %s', lockkey)
                 try:
                     lock = l = DaemonLock(file_=jn(lockkey_path, lockkey))
                     #for js data compatibilty cleans the key for person from '
                     akc = lambda k: person(k).replace('"', "")
                     co_day_auth_aggr = {}
                     commits_by_day_aggregate = {}
                     repos_path = get_repos_path()
                     repo = get_repo(safe_str(os.path.join(repos_path, repo_name)))
                     repo_size = len(repo.revisions)
                     #return if repo have no revisions
                     if repo_size < 1:
                         lock.release()
                         return True
                     skip_date_limit = True
                     parse_limit = int(config['app_conf'].get('commit_parse_limit'))
                     last_rev = 0
                     last_cs = None
                     timegetter = itemgetter('time')
                     sa = get_session()
                     dbrepo = sa.query(Repository)\
                         .filter(Repository.repo_name == repo_name).scalar()
                     cur_stats = sa.query(Statistics)\
                         .filter(Statistics.repository == dbrepo).scalar()
                     if cur_stats is not None:
                         last_rev = cur_stats.stat_on_revision
                     if last_rev == repo.get_changeset().revision and repo_size > 1:
                         #pass silently without any work if we're not on first revision or
                         #current state of parsing revision(from db marker) is the
                         #last revision
                         lock.release()
                         return True
                     if cur_stats:
                         commits_by_day_aggregate = OrderedDict(json.loads(
                                                     cur_stats.commit_activity_combined))
                         co_day_auth_aggr = json.loads(cur_stats.commit_activity)
                     log.debug('starting parsing %s', parse_limit)
                     lmktime = mktime
                     last_rev = last_rev + 1 if last_rev > 0 else last_rev
                     for cs in repo[last_rev:last_rev + parse_limit]:
                         last_cs = cs  # remember last parsed changeset
                         k = lmktime([cs.date.timetuple()[0], cs.date.timetuple()[1],
                                       cs.date.timetuple()[2], 0, 0, 0, 0, 0, 0])
                         if akc(cs.author) in co_day_auth_aggr:
                             try:
                                 l = [timegetter(x) for x in
                                      co_day_auth_aggr[akc(cs.author)]['data']]
                                 time_pos = l.index(k)
                             except ValueError:
                                 time_pos = False
                             if time_pos >= 0 and time_pos is not False:
                                 datadict = \
                                     co_day_auth_aggr[akc(cs.author)]['data'][time_pos]
                                 datadict["commits"] += 1
                                 datadict["added"] += len(cs.added)
                                 datadict["changed"] += len(cs.changed)
                                 datadict["removed"] += len(cs.removed)
                             else:
                                 if k >= ts_min_y and k <= ts_max_y or skip_date_limit:
                                     datadict = {"time": k,
                                                 "commits": 1,
                                                 "added": len(cs.added),
                                                 "changed": len(cs.changed),
                                                 "removed": len(cs.removed),
                                                }
                                     co_day_auth_aggr[akc(cs.author)]['data']\
                                         .append(datadict)
                         else:
                             if k >= ts_min_y and k <= ts_max_y or skip_date_limit:
                                 co_day_auth_aggr[akc(cs.author)] = {
                                                     "label": akc(cs.author),
                                                     "data": [{"time":k,
                                                              "commits":1,
                                                              "added":len(cs.added),
                                                              "changed":len(cs.changed),
                                                              "removed":len(cs.removed),
                                                              }],
                                                     "schema": ["commits"],
                                                     }
                         #gather all data by day
                         if k in commits_by_day_aggregate:
                             commits_by_day_aggregate[k] += 1
                         else:
                             commits_by_day_aggregate[k] = 1
                     overview_data = sorted(commits_by_day_aggregate.items(),
                                            key=itemgetter(0))
                     if not co_day_auth_aggr:
                         co_day_auth_aggr[akc(repo.contact)] = {
                             "label": akc(repo.contact),
                             "data": [0, 1],
                             "schema": ["commits"],
                         }
                     stats = cur_stats if cur_stats else Statistics()
                     stats.commit_activity = json.dumps(co_day_auth_aggr)
                     stats.commit_activity_combined = json.dumps(overview_data)
                     log.debug('last revison %s', last_rev)
                     leftovers = len(repo.revisions[last_rev:])
                     log.debug('revisions to parse %s', leftovers)
                     if last_rev == 0 or leftovers < parse_limit:
                         log.debug('getting code trending stats')
                         stats.languages = json.dumps(__get_codes_stats(repo_name))
                     try:
                         stats.repository = dbrepo
                         stats.stat_on_revision = last_cs.revision if last_cs else 0
                         sa.add(stats)
                         sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         sa.rollback()
                         lock.release()
                         return False
                     #final release
                     lock.release()
                     #execute another task if celery is enabled
                     if len(repo.revisions) > 1 and CELERY_ON:
                         run_task(get_commits_stats, repo_name, ts_min_y, ts_max_y)
                     return True
                 except LockHeld:
                     log.info('LockHeld')
                     return 'Task with key %s already running' % lockkey
             @task(ignore_result=True)
             def send_password_link(user_email):
                 try:
                     log = reset_user_password.get_logger()
                 except:
                     log = logging.getLogger(__name__)
                 from rhodecode.lib import auth
                 from rhodecode.model.db import User
                 try:
                     sa = get_session()
                     user = sa.query(User).filter(User.email == user_email).scalar()
                     if user:
                         link = url('reset_password_confirmation', key=user.api_key,
                                    qualified=True)
                         tmpl = """
             Hello %s
             We received a request to create a new password for your account.
             You can generate it by clicking following URL:
             %s
             If you didn't request new password please ignore this email.
                         """
                         run_task(send_email, user_email,
                                  "RhodeCode password reset link",
                                  tmpl % (user.short_contact, link))
                         log.info('send new password mail to %s', user_email)
                 except:
                     log.error('Failed to update user password')
                     log.error(traceback.format_exc())
                     return False
                 return True
             @task(ignore_result=True)
             def reset_user_password(user_email):
                 try:
                     log = reset_user_password.get_logger()
                 except:
                     log = logging.getLogger(__name__)
                 from rhodecode.lib import auth
                 from rhodecode.model.db import User
                 try:
                     try:
                         sa = get_session()
                         user = sa.query(User).filter(User.email == user_email).scalar()
                         new_passwd = auth.PasswordGenerator().gen_password(8,
                                          auth.PasswordGenerator.ALPHABETS_BIG_SMALL)
                         if user:
                             user.password = auth.get_crypt_password(new_passwd)
                             user.api_key = auth.generate_api_key(user.username)
                             sa.add(user)
                             sa.commit()
                             log.info('change password for %s', user_email)
                         if new_passwd is None:
                             raise Exception('unable to generate new password')
                     except:
                         log.error(traceback.format_exc())
                         sa.rollback()
                     run_task(send_email, user_email,
                              "Your new RhodeCode password",
                              'Your new RhodeCode password:%s' % (new_passwd))
                     log.info('send new password mail to %s', user_email)
                 except:
                     log.error('Failed to update user password')
                     log.error(traceback.format_exc())
                 return True
             @task(ignore_result=True)
             def send_email(recipients, subject, body):
                 """
                 Sends an email with defined parameters from the .ini files.
                 :param recipients: list of recipients, it this is empty the defined email
                     address from field 'email_to' is used instead
                 :param subject: subject of the mail
                 :param body: body of the mail
                 """
                 try:
                     log = send_email.get_logger()
                 except:
                     log = logging.getLogger(__name__)
                 email_config = config
                 if not recipients:
                     recipients = [email_config.get('email_to')]
                 mail_from = email_config.get('app_email_from')
                 user = email_config.get('smtp_username')
                 passwd = email_config.get('smtp_password')
                 mail_server = email_config.get('smtp_server')
                 mail_port = email_config.get('smtp_port')
                 tls = str2bool(email_config.get('smtp_use_tls'))
                 ssl = str2bool(email_config.get('smtp_use_ssl'))
                 debug = str2bool(config.get('debug'))
+                smtp_auth = email_config.get('smtp_auth')
                 try:
-                    m = SmtpMailer(mail_from, user, passwd, mail_server,
+                    m = SmtpMailer(mail_from, user, passwd, mail_server,smtp_auth,
                                    mail_port, ssl, tls, debug=debug)
                     m.send(recipients, subject, body)
                 except:
                     log.error('Mail sending failed')
                     log.error(traceback.format_exc())
                     return False
                 return True
             @task(ignore_result=True)
             def create_repo_fork(form_data, cur_user):
                 from rhodecode.model.repo import RepoModel
                 from vcs import get_backend
                 try:
                     log = create_repo_fork.get_logger()
                 except:
                     log = logging.getLogger(__name__)
                 repo_model = RepoModel(get_session())
                 repo_model.create(form_data, cur_user, just_db=True, fork=True)
                 repo_name = form_data['repo_name']
                 repos_path = get_repos_path()
                 repo_path = os.path.join(repos_path, repo_name)
                 repo_fork_path = os.path.join(repos_path, form_data['fork_name'])
                 alias = form_data['repo_type']
                 log.info('creating repo fork %s as %s', repo_name, repo_path)
                 backend = get_backend(alias)
                 backend(str(repo_fork_path), create=True, src_url=str(repo_path))
             def __get_codes_stats(repo_name):
                 repos_path = get_repos_path()
                 repo = get_repo(safe_str(os.path.join(repos_path, repo_name)))
                 tip = repo.get_changeset()
                 code_stats = {}
                 def aggregate(cs):
                     for f in cs[2]:
                         ext = lower(f.extension)
                         if ext in LANGUAGES_EXTENSIONS_MAP.keys() and not f.is_binary:
                             if ext in code_stats:
                                 code_stats[ext] += 1
                             else:
                                 code_stats[ext] = 1
                 map(aggregate, tip.walk('/'))
                 return code_stats or {}

rhodecode/lib/middleware/simplegit.py

0 +2 0

             # -*- coding: utf-8 -*-
             """
                 rhodecode.lib.middleware.simplegit
                 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                 SimpleGit middleware for handling git protocol request (push/clone etc.)
                 It's implemented with basic auth function
                 :created_on: Apr 28, 2010
                 :author: marcink
                 :copyright: (C) 2009-2010 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import os
             import logging
             import traceback
             from dulwich import server as dulserver
             class SimpleGitUploadPackHandler(dulserver.UploadPackHandler):
                 def handle(self):
                     write = lambda x: self.proto.write_sideband(1, x)
                     graph_walker = dulserver.ProtocolGraphWalker(self,
                                                                  self.repo.object_store,
                                                                  self.repo.get_peeled)
                     objects_iter = self.repo.fetch_objects(
                       graph_walker.determine_wants, graph_walker, self.progress,
                       get_tagged=self.get_tagged)
                     # Do they want any objects?
                     if objects_iter is None or len(objects_iter) == 0:
                         return
                     self.progress("counting objects: %d, done.\n" % len(objects_iter))
                     dulserver.write_pack_objects(dulserver.ProtocolFile(None, write),
                                               objects_iter, len(objects_iter))
                     messages = []
                     messages.append('thank you for using rhodecode')
                     for msg in messages:
                         self.progress(msg + "\n")
                     # we are done
                     self.proto.write("0000")
             dulserver.DEFAULT_HANDLERS = {
               'git-upload-pack': SimpleGitUploadPackHandler,
               'git-receive-pack': dulserver.ReceivePackHandler,
             }
             from dulwich.repo import Repo
             from dulwich.web import HTTPGitApplication
             from paste.auth.basic import AuthBasicAuthenticator
             from paste.httpheaders import REMOTE_USER, AUTH_TYPE
             from rhodecode.lib import safe_str
             from rhodecode.lib.auth import authfunc, HasPermissionAnyMiddleware
             from rhodecode.lib.utils import invalidate_cache, is_valid_repo
             from rhodecode.model.db import User
             from webob.exc import HTTPNotFound, HTTPForbidden, HTTPInternalServerError
             log = logging.getLogger(__name__)
             def is_git(environ):
                 """Returns True if request's target is git server.
                 ``HTTP_USER_AGENT`` would then have git client version given.
                 :param environ:
                 """
                 http_user_agent = environ.get('HTTP_USER_AGENT')
                 if http_user_agent and http_user_agent.startswith('git'):
                     return True
                 return False
             class SimpleGit(object):
                 def __init__(self, application, config):
                     self.application = application
                     self.config = config
                     # base path of repo locations
                     self.basepath = self.config['base_path']
                     #authenticate this mercurial request using authfunc
                     self.authenticate = AuthBasicAuthenticator('', authfunc)
                 def __call__(self, environ, start_response):
                     if not is_git(environ):
                         return self.application(environ, start_response)
                     proxy_key = 'HTTP_X_REAL_IP'
                     def_key = 'REMOTE_ADDR'
                     ipaddr = environ.get(proxy_key, environ.get(def_key, '0.0.0.0'))
                     username = None
                     # skip passing error to error controller
                     environ['pylons.status_code_redirect'] = True
                     #======================================================================
                     # EXTRACT REPOSITORY NAME FROM ENV
                     #======================================================================
                     try:
                         repo_name = self.__get_repository(environ)
                         log.debug('Extracted repo name is %s' % repo_name)
                     except:
                         return HTTPInternalServerError()(environ, start_response)
                     #======================================================================
                     # GET ACTION PULL or PUSH
                     #======================================================================
                     action = self.__get_action(environ)
                     #======================================================================
                     # CHECK ANONYMOUS PERMISSION
                     #======================================================================
                     if action in ['pull', 'push']:
                         anonymous_user = self.__get_user('default')
                         username = anonymous_user.username
                         anonymous_perm = self.__check_permission(action,
                                                                  anonymous_user,
                                                                  repo_name)
                         if anonymous_perm is not True or anonymous_user.active is False:
                             if anonymous_perm is not True:
                                 log.debug('Not enough credentials to access this '
                                           'repository as anonymous user')
                             if anonymous_user.active is False:
                                 log.debug('Anonymous access is disabled, running '
                                           'authentication')
                             #==============================================================
                             # DEFAULT PERM FAILED OR ANONYMOUS ACCESS IS DISABLED SO WE
                             # NEED TO AUTHENTICATE AND ASK FOR AUTH USER PERMISSIONS
                             #==============================================================
                             if not REMOTE_USER(environ):
                                 self.authenticate.realm = \
                                     safe_str(self.config['rhodecode_realm'])
                                 result = self.authenticate(environ)
                                 if isinstance(result, str):
                                     AUTH_TYPE.update(environ, 'basic')
                                     REMOTE_USER.update(environ, result)
                                 else:
                                     return result.wsgi_application(environ, start_response)
                             #==============================================================
                             # CHECK PERMISSIONS FOR THIS REQUEST USING GIVEN USERNAME FROM
                             # BASIC AUTH
                             #==============================================================
                             if action in ['pull', 'push']:
                                 username = REMOTE_USER(environ)
                                 try:
                                     user = self.__get_user(username)
+                                    if user is None:
+                                        return HTTPForbidden()(environ, start_response)
                                     username = user.username
                                 except:
                                     log.error(traceback.format_exc())
                                     return HTTPInternalServerError()(environ,
                                                                      start_response)
                                 #check permissions for this repository
                                 perm = self.__check_permission(action, user,
                                                                repo_name)
                                 if perm is not True:
                                     return HTTPForbidden()(environ, start_response)
                     extras = {'ip': ipaddr,
                               'username': username,
                               'action': action,
                               'repository': repo_name}
                     #===================================================================
                     # GIT REQUEST HANDLING
                     #===================================================================
                     repo_path = safe_str(os.path.join(self.basepath, repo_name))
                     log.debug('Repository path is %s' % repo_path)
                     # quick check if that dir exists...
                     if is_valid_repo(repo_name, self.basepath) is False:
                         return HTTPNotFound()(environ, start_response)
                     try:
                         #invalidate cache on push
                         if action == 'push':
                             self.__invalidate_cache(repo_name)
                         app = self.__make_app(repo_name, repo_path)
                         return app(environ, start_response)
                     except Exception:
                         log.error(traceback.format_exc())
                         return HTTPInternalServerError()(environ, start_response)
                 def __make_app(self, repo_name, repo_path):
                     """
                     Make an wsgi application using dulserver
                     :param repo_name: name of the repository
                     :param repo_path: full path to the repository
                     """
                     _d = {'/' + repo_name: Repo(repo_path)}
                     backend = dulserver.DictBackend(_d)
                     gitserve = HTTPGitApplication(backend)
                     return gitserve
                 def __check_permission(self, action, user, repo_name):
                     """
                     Checks permissions using action (push/pull) user and repository
                     name
                     :param action: push or pull action
                     :param user: user instance
                     :param repo_name: repository name
                     """
                     if action == 'push':
                         if not HasPermissionAnyMiddleware('repository.write',
                                                           'repository.admin')(user,
                                                                               repo_name):
                             return False
                     else:
                         #any other action need at least read permission
                         if not HasPermissionAnyMiddleware('repository.read',
                                                           'repository.write',
                                                           'repository.admin')(user,
                                                                               repo_name):
                             return False
                     return True
                 def __get_repository(self, environ):
                     """
                     Get's repository name out of PATH_INFO header
                     :param environ: environ where PATH_INFO is stored
                     """
                     try:
                         repo_name = '/'.join(environ['PATH_INFO'].split('/')[1:])
                         if repo_name.endswith('/'):
                             repo_name = repo_name.rstrip('/')
                     except:
                         log.error(traceback.format_exc())
                         raise
                     repo_name = repo_name.split('/')[0]
                     return repo_name
                 def __get_user(self, username):
                     return User.get_by_username(username)
                 def __get_action(self, environ):
                     """Maps git request commands into a pull or push command.
                     :param environ:
                     """
                     service = environ['QUERY_STRING'].split('=')
                     if len(service) > 1:
                         service_cmd = service[1]
                         mapping = {'git-receive-pack': 'push',
                                    'git-upload-pack': 'pull',
                                    }
                         return mapping.get(service_cmd,
                                            service_cmd if service_cmd else 'other')
                     else:
                         return 'other'
                 def __invalidate_cache(self, repo_name):
                     """we know that some change was made to repositories and we should
                     invalidate the cache to see the changes right away but only for
                     push requests"""
                     invalidate_cache('get_repo_cached_%s' % repo_name)

rhodecode/lib/middleware/simplehg.py

0 +2 0

             # -*- coding: utf-8 -*-
             """
                 rhodecode.lib.middleware.simplehg
                 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                 SimpleHG middleware for handling mercurial protocol request
                 (push/clone etc.). It's implemented with basic auth function
                 :created_on: Apr 28, 2010
                 :author: marcink
                 :copyright: (C) 2009-2010 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import os
             import logging
             import traceback
             from mercurial.error import RepoError
             from mercurial.hgweb import hgweb_mod
             from paste.auth.basic import AuthBasicAuthenticator
             from paste.httpheaders import REMOTE_USER, AUTH_TYPE
             from rhodecode.lib import safe_str
             from rhodecode.lib.auth import authfunc, HasPermissionAnyMiddleware
             from rhodecode.lib.utils import make_ui, invalidate_cache, \
                 is_valid_repo, ui_sections
             from rhodecode.model.db import User
             from webob.exc import HTTPNotFound, HTTPForbidden, HTTPInternalServerError
             log = logging.getLogger(__name__)
             def is_mercurial(environ):
                 """Returns True if request's target is mercurial server - header
                 ``HTTP_ACCEPT`` of such request would start with ``application/mercurial``.
                 """
                 http_accept = environ.get('HTTP_ACCEPT')
                 if http_accept and http_accept.startswith('application/mercurial'):
                     return True
                 return False
             class SimpleHg(object):
                 def __init__(self, application, config):
                     self.application = application
                     self.config = config
                     # base path of repo locations
                     self.basepath = self.config['base_path']
                     #authenticate this mercurial request using authfunc
                     self.authenticate = AuthBasicAuthenticator('', authfunc)
                     self.ipaddr = '0.0.0.0'
                 def __call__(self, environ, start_response):
                     if not is_mercurial(environ):
                         return self.application(environ, start_response)
                     proxy_key = 'HTTP_X_REAL_IP'
                     def_key = 'REMOTE_ADDR'
                     ipaddr = environ.get(proxy_key, environ.get(def_key, '0.0.0.0'))
                     # skip passing error to error controller
                     environ['pylons.status_code_redirect'] = True
                     #======================================================================
                     # EXTRACT REPOSITORY NAME FROM ENV
                     #======================================================================
                     try:
                         repo_name = environ['REPO_NAME'] = self.__get_repository(environ)
                         log.debug('Extracted repo name is %s' % repo_name)
                     except:
                         return HTTPInternalServerError()(environ, start_response)
                     #======================================================================
                     # GET ACTION PULL or PUSH
                     #======================================================================
                     action = self.__get_action(environ)
                     #======================================================================
                     # CHECK ANONYMOUS PERMISSION
                     #======================================================================
                     if action in ['pull', 'push']:
                         anonymous_user = self.__get_user('default')
                         username = anonymous_user.username
                         anonymous_perm = self.__check_permission(action,
                                                                  anonymous_user,
                                                                  repo_name)
                         if anonymous_perm is not True or anonymous_user.active is False:
                             if anonymous_perm is not True:
                                 log.debug('Not enough credentials to access this '
                                           'repository as anonymous user')
                             if anonymous_user.active is False:
                                 log.debug('Anonymous access is disabled, running '
                                           'authentication')
                             #==============================================================
                             # DEFAULT PERM FAILED OR ANONYMOUS ACCESS IS DISABLED SO WE
                             # NEED TO AUTHENTICATE AND ASK FOR AUTH USER PERMISSIONS
                             #==============================================================
                             if not REMOTE_USER(environ):
                                 self.authenticate.realm = \
                                     safe_str(self.config['rhodecode_realm'])
                                 result = self.authenticate(environ)
                                 if isinstance(result, str):
                                     AUTH_TYPE.update(environ, 'basic')
                                     REMOTE_USER.update(environ, result)
                                 else:
                                     return result.wsgi_application(environ, start_response)
                             #==============================================================
                             # CHECK PERMISSIONS FOR THIS REQUEST USING GIVEN USERNAME FROM
                             # BASIC AUTH
                             #==============================================================
                             if action in ['pull', 'push']:
                                 username = REMOTE_USER(environ)
                                 try:
                                     user = self.__get_user(username)
+                                    if user is None:
+                                        return HTTPForbidden()(environ, start_response)
                                     username = user.username
                                 except:
                                     log.error(traceback.format_exc())
                                     return HTTPInternalServerError()(environ,
                                                                      start_response)
                                 #check permissions for this repository
                                 perm = self.__check_permission(action, user,
                                                                repo_name)
                                 if perm is not True:
                                     return HTTPForbidden()(environ, start_response)
                     extras = {'ip': ipaddr,
                               'username': username,
                               'action': action,
                               'repository': repo_name}
                     #======================================================================
                     # MERCURIAL REQUEST HANDLING
                     #======================================================================
                     repo_path = safe_str(os.path.join(self.basepath, repo_name))
                     log.debug('Repository path is %s' % repo_path)
                     baseui = make_ui('db')
                     self.__inject_extras(repo_path, baseui, extras)
                     # quick check if that dir exists...
                     if is_valid_repo(repo_name, self.basepath) is False:
                         return HTTPNotFound()(environ, start_response)
                     try:
                         #invalidate cache on push
                         if action == 'push':
                             self.__invalidate_cache(repo_name)
                         app = self.__make_app(repo_path, baseui, extras)
                         return app(environ, start_response)
                     except RepoError, e:
                         if str(e).find('not found') != -1:
                             return HTTPNotFound()(environ, start_response)
                     except Exception:
                         log.error(traceback.format_exc())
                         return HTTPInternalServerError()(environ, start_response)
                 def __make_app(self, repo_name, baseui, extras):
                     """
                     Make an wsgi application using hgweb, and inject generated baseui
                     instance, additionally inject some extras into ui object
                     """
                     return hgweb_mod.hgweb(repo_name, name=repo_name, baseui=baseui)
                 def __check_permission(self, action, user, repo_name):
                     """
                     Checks permissions using action (push/pull) user and repository
                     name
                     :param action: push or pull action
                     :param user: user instance
                     :param repo_name: repository name
                     """
                     if action == 'push':
                         if not HasPermissionAnyMiddleware('repository.write',
                                                           'repository.admin')(user,
                                                                               repo_name):
                             return False
                     else:
                         #any other action need at least read permission
                         if not HasPermissionAnyMiddleware('repository.read',
                                                           'repository.write',
                                                           'repository.admin')(user,
                                                                               repo_name):
                             return False
                     return True
                 def __get_repository(self, environ):
                     """
                     Get's repository name out of PATH_INFO header
                     :param environ: environ where PATH_INFO is stored
                     """
                     try:
                         repo_name = '/'.join(environ['PATH_INFO'].split('/')[1:])
                         if repo_name.endswith('/'):
                             repo_name = repo_name.rstrip('/')
                     except:
                         log.error(traceback.format_exc())
                         raise
                     return repo_name
                 def __get_user(self, username):
                     return User.get_by_username(username)
                 def __get_action(self, environ):
                     """
                     Maps mercurial request commands into a clone,pull or push command.
                     This should always return a valid command string
                     :param environ:
                     """
                     mapping = {'changegroup': 'pull',
                                'changegroupsubset': 'pull',
                                'stream_out': 'pull',
                                'listkeys': 'pull',
                                'unbundle': 'push',
                                'pushkey': 'push', }
                     for qry in environ['QUERY_STRING'].split('&'):
                         if qry.startswith('cmd'):
                             cmd = qry.split('=')[-1]
                             if cmd in mapping:
                                 return mapping[cmd]
                             else:
                                 return 'pull'
                 def __invalidate_cache(self, repo_name):
                     """we know that some change was made to repositories and we should
                     invalidate the cache to see the changes right away but only for
                     push requests"""
                     invalidate_cache('get_repo_cached_%s' % repo_name)
                 def __inject_extras(self, repo_path, baseui, extras={}):
                     """
                     Injects some extra params into baseui instance
                     also overwrites global settings with those takes from local hgrc file
                     :param baseui: baseui instance
                     :param extras: dict with extra params to put into baseui
                     """
                     hgrc = os.path.join(repo_path, '.hg', 'hgrc')
                     # make our hgweb quiet so it doesn't print output
                     baseui.setconfig('ui', 'quiet', 'true')
                     #inject some additional parameters that will be available in ui
                     #for hooks
                     for k, v in extras.items():
                         baseui.setconfig('rhodecode_extras', k, v)
                     repoui = make_ui('file', hgrc, False)
                     if repoui:
                         #overwrite our ui instance with the section from hgrc file
                         for section in ui_sections:
                             for k, v in repoui.configitems(section):
                                 baseui.setconfig(section, k, v)

rhodecode/lib/smtp_mailer.py

0 +10 -6

             # -*- coding: utf-8 -*-
             """
                 rhodecode.lib.smtp_mailer
                 ~~~~~~~~~~~~~~~~~~~~~~~~~
                 Simple smtp mailer used in RhodeCode
                 :created_on: Sep 13, 2010
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import logging
             import smtplib
             import mimetypes
             from socket import sslerror
             from email.mime.multipart import MIMEMultipart
             from email.mime.image import MIMEImage
             from email.mime.audio import MIMEAudio
             from email.mime.base import MIMEBase
             from email.mime.text import MIMEText
             from email.utils import formatdate
             from email import encoders
             class SmtpMailer(object):
                 """SMTP mailer class
-                mailer = SmtpMailer(mail_from, user, passwd, mail_server,
+                mailer = SmtpMailer(mail_from, user, passwd, mail_server, smtp_auth
                                     mail_port, ssl, tls)
                 mailer.send(recipients, subject, body, attachment_files)
                 :param recipients might be a list of string or single string
                 :param attachment_files is a dict of {filename:location}
                     it tries to guess the mimetype and attach the file
                 """
-                def __init__(self, mail_from, user, passwd, mail_server,
+                def __init__(self, mail_from, user, passwd, mail_server, smtp_auth=None,
-                                mail_port=None, ssl=False, tls=False, debug=False):
+                             mail_port=None, ssl=False, tls=False, debug=False):
                     self.mail_from = mail_from
                     self.mail_server = mail_server
                     self.mail_port = mail_port
                     self.user = user
                     self.passwd = passwd
                     self.ssl = ssl
                     self.tls = tls
                     self.debug = debug
+                    self.auth = smtp_auth
                 def send(self, recipients=[], subject='', body='', attachment_files=None):
                     if isinstance(recipients, basestring):
                         recipients = [recipients]
                     if self.ssl:
                         smtp_serv = smtplib.SMTP_SSL(self.mail_server, self.mail_port)
                     else:
                         smtp_serv = smtplib.SMTP(self.mail_server, self.mail_port)
                     if self.tls:
                         smtp_serv.ehlo()
                         smtp_serv.starttls()
                     if self.debug:
                         smtp_serv.set_debuglevel(1)
                     smtp_serv.ehlo()
+                    if self.auth:
+                        smtp_serv.esmtp_features["auth"] = self.auth
-                    #if server requires authorization you must provide login and password
+                    # if server requires authorization you must provide login and password
-                    #but only if we have them
+                    # but only if we have them
                     if self.user and self.passwd:
                         smtp_serv.login(self.user, self.passwd)
                     date_ = formatdate(localtime=True)
                     msg = MIMEMultipart()
                     msg.set_type('multipart/alternative')
                     msg.preamble = 'You will not see this in a MIME-aware mail reader.\n'
                     text_msg = MIMEText(body)
                     text_msg.set_type('text/plain')
                     text_msg.set_param('charset', 'UTF-8')
                     msg['From'] = self.mail_from
                     msg['To'] = ','.join(recipients)
                     msg['Date'] = date_
                     msg['Subject'] = subject
                     msg.attach(text_msg)
                     if attachment_files:
                         self.__atach_files(msg, attachment_files)
                     smtp_serv.sendmail(self.mail_from, recipients, msg.as_string())
                     logging.info('MAIL SEND TO: %s' % recipients)
                     try:
                         smtp_serv.quit()
                     except sslerror:
                         # sslerror is raised in tls connections on closing sometimes
                         pass
                 def __atach_files(self, msg, attachment_files):
                     if isinstance(attachment_files, dict):
                         for f_name, msg_file in attachment_files.items():
                             ctype, encoding = mimetypes.guess_type(f_name)
                             logging.info("guessing file %s type based on %s", ctype,
                                          f_name)
                             if ctype is None or encoding is not None:
                                 # No guess could be made, or the file is encoded
                                 # (compressed), so use a generic bag-of-bits type.
                                 ctype = 'application/octet-stream'
                             maintype, subtype = ctype.split('/', 1)
                             if maintype == 'text':
                                 # Note: we should handle calculating the charset
                                 file_part = MIMEText(self.get_content(msg_file),
                                                      _subtype=subtype)
                             elif maintype == 'image':
                                 file_part = MIMEImage(self.get_content(msg_file),
                                                       _subtype=subtype)
                             elif maintype == 'audio':
                                 file_part = MIMEAudio(self.get_content(msg_file),
                                                       _subtype=subtype)
                             else:
                                 file_part = MIMEBase(maintype, subtype)
                                 file_part.set_payload(self.get_content(msg_file))
                                 # Encode the payload using Base64
                                 encoders.encode_base64(msg)
                             # Set the filename parameter
                             file_part.add_header('Content-Disposition', 'attachment',
                                                  filename=f_name)
                             file_part.add_header('Content-Type', ctype, name=f_name)
                             msg.attach(file_part)
                     else:
                         raise Exception('Attachment files should be'
                                         'a dict in format {"filename":"filepath"}')
                 def get_content(self, msg_file):
                     """Get content based on type, if content is a string do open first
                     else just read because it's a probably open file object
                     :param msg_file:
                     """
                     if isinstance(msg_file, str):
                         return open(msg_file, "rb").read()
                     else:
-                        #just for safe seek to 0
+                        # just for safe seek to 0
                         msg_file.seek(0)
                         return msg_file.read()

rhodecode/model/db.py

0 +77 -59

             # -*- coding: utf-8 -*-
             """
                 rhodecode.model.db
                 ~~~~~~~~~~~~~~~~~~
                 Database Models for RhodeCode
                 :created_on: Apr 08, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import os
             import logging
             import datetime
             import traceback
             from datetime import date
             from sqlalchemy import *
-            from sqlalchemy.exc import DatabaseError
             from sqlalchemy.ext.hybrid import hybrid_property
-            from sqlalchemy.orm import relationship, backref, joinedload, class_mapper, \
+            from sqlalchemy.orm import relationship, joinedload, class_mapper, validates
-                validates
-            from sqlalchemy.orm.interfaces import MapperExtension
             from beaker.cache import cache_region, region_invalidate
             from vcs import get_backend
             from vcs.utils.helpers import get_scm
             from vcs.exceptions import VCSError
             from vcs.utils.lazy import LazyProperty
             from rhodecode.lib import str2bool, safe_str, get_changeset_safe, \
                 generate_api_key, safe_unicode
             from rhodecode.lib.exceptions import UsersGroupsAssignedException
             from rhodecode.lib.compat import json
             from rhodecode.model.meta import Base, Session
             from rhodecode.model.caching_query import FromCache
             log = logging.getLogger(__name__)
             #==============================================================================
             # BASE CLASSES
             #==============================================================================
             class ModelSerializer(json.JSONEncoder):
                 """
                 Simple Serializer for JSON,
                 usage::
                     to make object customized for serialization implement a __json__
                     method that will return a dict for serialization into json
                 example::
                     class Task(object):
                         def __init__(self, name, value):
                             self.name = name
                             self.value = value
                         def __json__(self):
                             return dict(name=self.name,
                                         value=self.value)
                 """
                 def default(self, obj):
                     if hasattr(obj, '__json__'):
                         return obj.__json__()
                     else:
                         return json.JSONEncoder.default(self, obj)
             class BaseModel(object):
                 """Base Model for all classess
                 """
                 @classmethod
                 def _get_keys(cls):
                     """return column names for this model """
                     return class_mapper(cls).c.keys()
                 def get_dict(self):
                     """return dict with keys and values corresponding
                     to this model data """
                     d = {}
                     for k in self._get_keys():
                         d[k] = getattr(self, k)
                     return d
                 def get_appstruct(self):
                     """return list with keys and values tupples corresponding
                     to this model data """
                     l = []
                     for k in self._get_keys():
                         l.append((k, getattr(self, k),))
                     return l
                 def populate_obj(self, populate_dict):
                     """populate model with data from given populate_dict"""
                     for k in self._get_keys():
                         if k in populate_dict:
                             setattr(self, k, populate_dict[k])
                 @classmethod
                 def query(cls):
                     return Session.query(cls)
                 @classmethod
                 def get(cls, id_):
                     if id_:
-                        return Session.query(cls).get(id_)
+                        return cls.query().get(id_)
+                @classmethod
+                def getAll(cls):
+                    return cls.query().all()
                 @classmethod
                 def delete(cls, id_):
-                    obj = Session.query(cls).get(id_)
+                    obj = cls.query().get(id_)
                     Session.delete(obj)
                     Session.commit()
             class RhodeCodeSettings(Base, BaseModel):
                 __tablename__ = 'rhodecode_settings'
                 __table_args__ = (UniqueConstraint('app_settings_name'), {'extend_existing':True})
                 app_settings_id = Column("app_settings_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 app_settings_name = Column("app_settings_name", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 _app_settings_value = Column("app_settings_value", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 def __init__(self, k='', v=''):
                     self.app_settings_name = k
                     self.app_settings_value = v
                 @validates('_app_settings_value')
                 def validate_settings_value(self, key, val):
                     assert type(val) == unicode
                     return val
                 @hybrid_property
                 def app_settings_value(self):
                     v = self._app_settings_value
                     if v == 'ldap_active':
                         v = str2bool(v)
                     return v
                 @app_settings_value.setter
-                def app_settings_value(self,val):
+                def app_settings_value(self, val):
                     """
                     Setter that will always make sure we use unicode in app_settings_value
                     :param val:
                     """
                     self._app_settings_value = safe_unicode(val)
                 def __repr__(self):
                     return "<%s('%s:%s')>" % (self.__class__.__name__,
                                               self.app_settings_name, self.app_settings_value)
                 @classmethod
                 def get_by_name(cls, ldap_key):
-                    return Session.query(cls)\
+                    return cls.query()\
                         .filter(cls.app_settings_name == ldap_key).scalar()
                 @classmethod
                 def get_app_settings(cls, cache=False):
-                    ret = Session.query(cls)
+                    ret = cls.query()
                     if cache:
                         ret = ret.options(FromCache("sql_cache_short", "get_hg_settings"))
                     if not ret:
                         raise Exception('Could not get application settings !')
                     settings = {}
                     for each in ret:
                         settings['rhodecode_' + each.app_settings_name] = \
                             each.app_settings_value
                     return settings
                 @classmethod
                 def get_ldap_settings(cls, cache=False):
-                    ret = Session.query(cls)\
+                    ret = cls.query()\
                             .filter(cls.app_settings_name.startswith('ldap_')).all()
                     fd = {}
                     for row in ret:
                         fd.update({row.app_settings_name:row.app_settings_value})
                     return fd
             class RhodeCodeUi(Base, BaseModel):
                 __tablename__ = 'rhodecode_ui'
                 __table_args__ = (UniqueConstraint('ui_key'), {'extend_existing':True})
                 HOOK_UPDATE = 'changegroup.update'
                 HOOK_REPO_SIZE = 'changegroup.repo_size'
                 HOOK_PUSH = 'pretxnchangegroup.push_logger'
                 HOOK_PULL = 'preoutgoing.pull_logger'
                 ui_id = Column("ui_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 ui_section = Column("ui_section", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 ui_key = Column("ui_key", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 ui_value = Column("ui_value", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 ui_active = Column("ui_active", Boolean(), nullable=True, unique=None, default=True)
                 @classmethod
                 def get_by_key(cls, key):
-                    return Session.query(cls).filter(cls.ui_key == key)
+                    return cls.query().filter(cls.ui_key == key)
                 @classmethod
                 def get_builtin_hooks(cls):
                     q = cls.query()
                     q = q.filter(cls.ui_key.in_([cls.HOOK_UPDATE,
                                                 cls.HOOK_REPO_SIZE,
                                                 cls.HOOK_PUSH, cls.HOOK_PULL]))
                     return q.all()
                 @classmethod
                 def get_custom_hooks(cls):
                     q = cls.query()
                     q = q.filter(~cls.ui_key.in_([cls.HOOK_UPDATE,
                                                 cls.HOOK_REPO_SIZE,
                                                 cls.HOOK_PUSH, cls.HOOK_PULL]))
                     q = q.filter(cls.ui_section == 'hooks')
                     return q.all()
                 @classmethod
                 def create_or_update_hook(cls, key, val):
                     new_ui = cls.get_by_key(key).scalar() or cls()
                     new_ui.ui_section = 'hooks'
                     new_ui.ui_active = True
                     new_ui.ui_key = key
                     new_ui.ui_value = val
                     Session.add(new_ui)
                     Session.commit()
             class User(Base, BaseModel):
                 __tablename__ = 'users'
                 __table_args__ = (UniqueConstraint('username'), UniqueConstraint('email'), {'extend_existing':True})
                 user_id = Column("user_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 username = Column("username", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 password = Column("password", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 active = Column("active", Boolean(), nullable=True, unique=None, default=None)
                 admin = Column("admin", Boolean(), nullable=True, unique=None, default=False)
                 name = Column("name", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 lastname = Column("lastname", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 email = Column("email", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 last_login = Column("last_login", DateTime(timezone=False), nullable=True, unique=None, default=None)
                 ldap_dn = Column("ldap_dn", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 api_key = Column("api_key", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 user_log = relationship('UserLog', cascade='all')
                 user_perms = relationship('UserToPerm', primaryjoin="User.user_id==UserToPerm.user_id", cascade='all')
                 repositories = relationship('Repository')
                 user_followers = relationship('UserFollowing', primaryjoin='UserFollowing.follows_user_id==User.user_id', cascade='all')
                 repo_to_perm = relationship('RepoToPerm', primaryjoin='RepoToPerm.user_id==User.user_id', cascade='all')
                 group_member = relationship('UsersGroupMember', cascade='all')
                 @property
                 def full_contact(self):
                     return '%s %s <%s>' % (self.name, self.lastname, self.email)
                 @property
                 def short_contact(self):
                     return '%s %s' % (self.name, self.lastname)
                 @property
                 def is_admin(self):
                     return self.admin
                 def __repr__(self):
                     try:
                         return "<%s('id:%s:%s')>" % (self.__class__.__name__,
                                                          self.user_id, self.username)
                     except:
                         return self.__class__.__name__
                 @classmethod
                 def get_by_username(cls, username, case_insensitive=False):
                     if case_insensitive:
                         return Session.query(cls).filter(cls.username.ilike(username)).scalar()
                     else:
                         return Session.query(cls).filter(cls.username == username).scalar()
                 @classmethod
                 def get_by_api_key(cls, api_key):
-                    return Session.query(cls).filter(cls.api_key == api_key).one()
+                    return cls.query().filter(cls.api_key == api_key).one()
                 def update_lastlogin(self):
                     """Update user lastlogin"""
                     self.last_login = datetime.datetime.now()
                     Session.add(self)
                     Session.commit()
                     log.debug('updated user %s lastlogin', self.username)
                 @classmethod
                 def create(cls, form_data):
                     from rhodecode.lib.auth import get_crypt_password
                     try:
                         new_user = cls()
                         for k, v in form_data.items():
                             if k == 'password':
                                 v = get_crypt_password(v)
                             setattr(new_user, k, v)
                         new_user.api_key = generate_api_key(form_data['username'])
                         Session.add(new_user)
                         Session.commit()
                         return new_user
                     except:
                         log.error(traceback.format_exc())
                         Session.rollback()
                         raise
             class UserLog(Base, BaseModel):
                 __tablename__ = 'user_logs'
                 __table_args__ = {'extend_existing':True}
                 user_log_id = Column("user_log_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
                 repository_name = Column("repository_name", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 user_ip = Column("user_ip", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 action = Column("action", UnicodeText(length=1200000, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 action_date = Column("action_date", DateTime(timezone=False), nullable=True, unique=None, default=None)
                 @property
                 def action_as_day(self):
                     return date(*self.action_date.timetuple()[:3])
                 user = relationship('User')
                 repository = relationship('Repository')
             class UsersGroup(Base, BaseModel):
                 __tablename__ = 'users_groups'
                 __table_args__ = {'extend_existing':True}
                 users_group_id = Column("users_group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 users_group_name = Column("users_group_name", String(length=255, convert_unicode=False, assert_unicode=None), nullable=False, unique=True, default=None)
                 users_group_active = Column("users_group_active", Boolean(), nullable=True, unique=None, default=None)
                 members = relationship('UsersGroupMember', cascade="all, delete, delete-orphan", lazy="joined")
                 def __repr__(self):
                     return '<userGroup(%s)>' % (self.users_group_name)
                 @classmethod
                 def get_by_group_name(cls, group_name, cache=False, case_insensitive=False):
                     if case_insensitive:
-                        gr = Session.query(cls)\
+                        gr = cls.query()\
-                        .filter(cls.users_group_name.ilike(group_name))
+                            .filter(cls.users_group_name.ilike(group_name))
                     else:
-                        gr = Session.query(UsersGroup)\
+                        gr = cls.query()\
-                            .filter(UsersGroup.users_group_name == group_name)
+                            .filter(cls.users_group_name == group_name)
                     if cache:
                         gr = gr.options(FromCache("sql_cache_short",
                                                       "get_user_%s" % group_name))
                     return gr.scalar()
                 @classmethod
                 def get(cls, users_group_id, cache=False):
-                    users_group = Session.query(cls)
+                    users_group = cls.query()
                     if cache:
                         users_group = users_group.options(FromCache("sql_cache_short",
                                                 "get_users_group_%s" % users_group_id))
                     return users_group.get(users_group_id)
                 @classmethod
                 def create(cls, form_data):
                     try:
                         new_users_group = cls()
                         for k, v in form_data.items():
                             setattr(new_users_group, k, v)
                         Session.add(new_users_group)
                         Session.commit()
                         return new_users_group
                     except:
                         log.error(traceback.format_exc())
                         Session.rollback()
                         raise
                 @classmethod
                 def update(cls, users_group_id, form_data):
                     try:
                         users_group = cls.get(users_group_id, cache=False)
                         for k, v in form_data.items():
                             if k == 'users_group_members':
                                 users_group.members = []
                                 Session.flush()
                                 members_list = []
                                 if v:
+                                    v = [v] if isinstance(v, basestring) else v
                                     for u_id in set(v):
-                                        members_list.append(UsersGroupMember(
+                                        member = UsersGroupMember(users_group_id, u_id)
-                                                                        users_group_id,
+                                        members_list.append(member)
-                                                                        u_id))
                                 setattr(users_group, 'members', members_list)
                             setattr(users_group, k, v)
                         Session.add(users_group)
                         Session.commit()
                     except:
                         log.error(traceback.format_exc())
                         Session.rollback()
                         raise
                 @classmethod
                 def delete(cls, users_group_id):
                     try:
                         # check if this group is not assigned to repo
                         assigned_groups = UsersGroupRepoToPerm.query()\
                             .filter(UsersGroupRepoToPerm.users_group_id ==
                                     users_group_id).all()
                         if assigned_groups:
                             raise UsersGroupsAssignedException('Group assigned to %s' %
                                                                assigned_groups)
                         users_group = cls.get(users_group_id, cache=False)
                         Session.delete(users_group)
                         Session.commit()
                     except:
                         log.error(traceback.format_exc())
                         Session.rollback()
                         raise
             class UsersGroupMember(Base, BaseModel):
                 __tablename__ = 'users_groups_members'
                 __table_args__ = {'extend_existing':True}
                 users_group_member_id = Column("users_group_member_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 user = relationship('User', lazy='joined')
                 users_group = relationship('UsersGroup')
                 def __init__(self, gr_id='', u_id=''):
                     self.users_group_id = gr_id
                     self.user_id = u_id
+                @staticmethod
+                def add_user_to_group(group, user):
+                    ugm = UsersGroupMember()
+                    ugm.users_group = group
+                    ugm.user = user
+                    Session.add(ugm)
+                    Session.commit()
+                    return ugm
             class Repository(Base, BaseModel):
                 __tablename__ = 'repositories'
                 __table_args__ = (UniqueConstraint('repo_name'), {'extend_existing':True},)
                 repo_id = Column("repo_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 repo_name = Column("repo_name", String(length=255, convert_unicode=False, assert_unicode=None), nullable=False, unique=True, default=None)
                 clone_uri = Column("clone_uri", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=False, default=None)
                 repo_type = Column("repo_type", String(length=255, convert_unicode=False, assert_unicode=None), nullable=False, unique=False, default='hg')
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=False, default=None)
                 private = Column("private", Boolean(), nullable=True, unique=None, default=None)
                 enable_statistics = Column("statistics", Boolean(), nullable=True, unique=None, default=True)
                 enable_downloads = Column("downloads", Boolean(), nullable=True, unique=None, default=True)
                 description = Column("description", String(length=10000, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 created_on = Column('created_on', DateTime(timezone=False), nullable=True, unique=None, default=datetime.datetime.now)
                 fork_id = Column("fork_id", Integer(), ForeignKey('repositories.repo_id'), nullable=True, unique=False, default=None)
                 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=True, unique=False, default=None)
                 user = relationship('User')
                 fork = relationship('Repository', remote_side=repo_id)
                 group = relationship('Group')
                 repo_to_perm = relationship('RepoToPerm', cascade='all', order_by='RepoToPerm.repo_to_perm_id')
                 users_group_to_perm = relationship('UsersGroupRepoToPerm', cascade='all')
                 stats = relationship('Statistics', cascade='all', uselist=False)
                 followers = relationship('UserFollowing', primaryjoin='UserFollowing.follows_repo_id==Repository.repo_id', cascade='all')
                 logs = relationship('UserLog', cascade='all')
                 def __repr__(self):
                     return "<%s('%s:%s')>" % (self.__class__.__name__,
                                               self.repo_id, self.repo_name)
                 @classmethod
                 def url_sep(cls):
                     return '/'
                 @classmethod
                 def get_by_repo_name(cls, repo_name):
                     q = Session.query(cls).filter(cls.repo_name == repo_name)
                     q = q.options(joinedload(Repository.fork))\
                             .options(joinedload(Repository.user))\
-                            .options(joinedload(Repository.group))\
+                            .options(joinedload(Repository.group))
                     return q.one()
                 @classmethod
                 def get_repo_forks(cls, repo_id):
-                    return Session.query(cls).filter(Repository.fork_id == repo_id)
+                    return cls.query().filter(Repository.fork_id == repo_id)
                 @classmethod
                 def base_path(cls):
                     """
                     Returns base path when all repos are stored
                     :param cls:
                     """
                     q = Session.query(RhodeCodeUi).filter(RhodeCodeUi.ui_key ==
                                                           cls.url_sep())
                     q.options(FromCache("sql_cache_short", "repository_repo_path"))
                     return q.one().ui_value
                 @property
                 def just_name(self):
                     return self.repo_name.split(Repository.url_sep())[-1]
                 @property
                 def groups_with_parents(self):
                     groups = []
                     if self.group is None:
                         return groups
                     cur_gr = self.group
                     groups.insert(0, cur_gr)
                     while 1:
                         gr = getattr(cur_gr, 'parent_group', None)
                         cur_gr = cur_gr.parent_group
                         if gr is None:
                             break
                         groups.insert(0, gr)
                     return groups
                 @property
                 def groups_and_repo(self):
                     return self.groups_with_parents, self.just_name
                 @LazyProperty
                 def repo_path(self):
                     """
                     Returns base full path for that repository means where it actually
                     exists on a filesystem
                     """
                     q = Session.query(RhodeCodeUi).filter(RhodeCodeUi.ui_key ==
                                                           Repository.url_sep())
                     q.options(FromCache("sql_cache_short", "repository_repo_path"))
                     return q.one().ui_value
                 @property
                 def repo_full_path(self):
                     p = [self.repo_path]
                     # we need to split the name by / since this is how we store the
                     # names in the database, but that eventually needs to be converted
                     # into a valid system path
                     p += self.repo_name.split(Repository.url_sep())
                     return os.path.join(*p)
                 def get_new_name(self, repo_name):
                     """
                     returns new full repository name based on assigned group and new new
                     :param group_name:
                     """
                     path_prefix = self.group.full_path_splitted if self.group else []
                     return Repository.url_sep().join(path_prefix + [repo_name])
                 @property
                 def _ui(self):
                     """
                     Creates an db based ui object for this repository
                     """
                     from mercurial import ui
                     from mercurial import config
                     baseui = ui.ui()
                     #clean the baseui object
                     baseui._ocfg = config.config()
                     baseui._ucfg = config.config()
                     baseui._tcfg = config.config()
-                    ret = Session.query(RhodeCodeUi)\
+                    ret = RhodeCodeUi.query()\
                         .options(FromCache("sql_cache_short", "repository_repo_ui")).all()
                     hg_ui = ret
                     for ui_ in hg_ui:
                         if ui_.ui_active:
                             log.debug('settings ui from db[%s]%s:%s', ui_.ui_section,
                                       ui_.ui_key, ui_.ui_value)
                             baseui.setconfig(ui_.ui_section, ui_.ui_key, ui_.ui_value)
                     return baseui
                 @classmethod
                 def is_valid(cls, repo_name):
                     """
                     returns True if given repo name is a valid filesystem repository
                     @param cls:
                     @param repo_name:
                     """
                     from rhodecode.lib.utils import is_valid_repo
                     return is_valid_repo(repo_name, cls.base_path())
                 #==========================================================================
                 # SCM PROPERTIES
                 #==========================================================================
                 def get_changeset(self, rev):
                     return get_changeset_safe(self.scm_instance, rev)
                 @property
                 def tip(self):
                     return self.get_changeset('tip')
                 @property
                 def author(self):
                     return self.tip.author
                 @property
                 def last_change(self):
                     return self.scm_instance.last_change
                 #==========================================================================
                 # SCM CACHE INSTANCE
                 #==========================================================================
                 @property
                 def invalidate(self):
                     """
                     Returns Invalidation object if this repo should be invalidated
                     None otherwise. `cache_active = False` means that this cache
                     state is not valid and needs to be invalidated
                     """
-                    return Session.query(CacheInvalidation)\
+                    return CacheInvalidation.query()\
                         .filter(CacheInvalidation.cache_key == self.repo_name)\
                         .filter(CacheInvalidation.cache_active == False)\
                         .scalar()
                 def set_invalidate(self):
                     """
                     set a cache for invalidation for this instance
                     """
-                    inv = Session.query(CacheInvalidation)\
+                    inv = CacheInvalidation.query()\
                         .filter(CacheInvalidation.cache_key == self.repo_name)\
                         .scalar()
                     if inv is None:
                         inv = CacheInvalidation(self.repo_name)
                     inv.cache_active = True
                     Session.add(inv)
                     Session.commit()
                 @LazyProperty
                 def scm_instance(self):
                     return self.__get_instance()
                 @property
                 def scm_instance_cached(self):
                     @cache_region('long_term')
                     def _c(repo_name):
                         return self.__get_instance()
                     # TODO: remove this trick when beaker 1.6 is released
                     # and have fixed this issue with not supporting unicode keys
                     rn = safe_str(self.repo_name)
                     inv = self.invalidate
                     if inv is not None:
                         region_invalidate(_c, None, rn)
                         # update our cache
                         inv.cache_active = True
                         Session.add(inv)
                         Session.commit()
                     return _c(rn)
                 def __get_instance(self):
                     repo_full_path = self.repo_full_path
                     try:
                         alias = get_scm(repo_full_path)[0]
                         log.debug('Creating instance of %s repository', alias)
                         backend = get_backend(alias)
                     except VCSError:
                         log.error(traceback.format_exc())
                         log.error('Perhaps this repository is in db and not in '
                                   'filesystem run rescan repositories with '
                                   '"destroy old data " option from admin panel')
                         return
                     if alias == 'hg':
                         repo = backend(safe_str(repo_full_path), create=False,
                                        baseui=self._ui)
                         #skip hidden web repository
                         if repo._get_hidden():
                             return
                     else:
                         repo = backend(repo_full_path, create=False)
                     return repo
             class Group(Base, BaseModel):
                 __tablename__ = 'groups'
                 __table_args__ = (UniqueConstraint('group_name', 'group_parent_id'),
                                   CheckConstraint('group_id != group_parent_id'), {'extend_existing':True},)
                 __mapper_args__ = {'order_by':'group_name'}
                 group_id = Column("group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 group_name = Column("group_name", String(length=255, convert_unicode=False, assert_unicode=None), nullable=False, unique=True, default=None)
                 group_parent_id = Column("group_parent_id", Integer(), ForeignKey('groups.group_id'), nullable=True, unique=None, default=None)
                 group_description = Column("group_description", String(length=10000, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 parent_group = relationship('Group', remote_side=group_id)
                 def __init__(self, group_name='', parent_group=None):
                     self.group_name = group_name
                     self.parent_group = parent_group
                 def __repr__(self):
                     return "<%s('%s:%s')>" % (self.__class__.__name__, self.group_id,
                                               self.group_name)
                 @classmethod
                 def groups_choices(cls):
                     from webhelpers.html import literal as _literal
                     repo_groups = [('', '')]
                     sep = ' &raquo; '
                     _name = lambda k: _literal(sep.join(k))
                     repo_groups.extend([(x.group_id, _name(x.full_path_splitted))
                                           for x in cls.query().all()])
-                    repo_groups = sorted(repo_groups,key=lambda t: t[1].split(sep)[0])
+                    repo_groups = sorted(repo_groups, key=lambda t: t[1].split(sep)[0])
                     return repo_groups
                 @classmethod
                 def url_sep(cls):
                     return '/'
                 @classmethod
-                def get_by_group_name(cls, group_name):
+                def get_by_group_name(cls, group_name, cache=False, case_insensitive=False):
-                    return cls.query().filter(cls.group_name == group_name).scalar()
+                    if case_insensitive:
+                        gr = cls.query()\
+                            .filter(cls.group_name.ilike(group_name))
+                    else:
+                        gr = cls.query()\
+                            .filter(cls.group_name == group_name)
+                    if cache:
+                        gr = gr.options(FromCache("sql_cache_short",
+                                                      "get_group_%s" % group_name))
+                    return gr.scalar()
                 @property
                 def parents(self):
                     parents_recursion_limit = 5
                     groups = []
                     if self.parent_group is None:
                         return groups
                     cur_gr = self.parent_group
                     groups.insert(0, cur_gr)
                     cnt = 0
                     while 1:
                         cnt += 1
                         gr = getattr(cur_gr, 'parent_group', None)
                         cur_gr = cur_gr.parent_group
                         if gr is None:
                             break
                         if cnt == parents_recursion_limit:
                             # this will prevent accidental infinit loops
                             log.error('group nested more than %s' %
                                       parents_recursion_limit)
                             break
                         groups.insert(0, gr)
                     return groups
                 @property
                 def children(self):
-                    return Session.query(Group).filter(Group.parent_group == self)
+                    return Group.query().filter(Group.parent_group == self)
                 @property
                 def name(self):
                     return self.group_name.split(Group.url_sep())[-1]
                 @property
                 def full_path(self):
                     return self.group_name
                 @property
                 def full_path_splitted(self):
                     return self.group_name.split(Group.url_sep())
                 @property
                 def repositories(self):
-                    return Session.query(Repository).filter(Repository.group == self)
+                    return Repository.query().filter(Repository.group == self)
                 @property
                 def repositories_recursive_count(self):
                     cnt = self.repositories.count()
                     def children_count(group):
                         cnt = 0
                         for child in group.children:
                             cnt += child.repositories.count()
                             cnt += children_count(child)
                         return cnt
                     return cnt + children_count(self)
                 def get_new_name(self, group_name):
                     """
                     returns new full group name based on parent and new name
                     :param group_name:
                     """
-                    path_prefix = self.parent_group.full_path_splitted if self.parent_group else []
+                    path_prefix = (self.parent_group.full_path_splitted if
+                                   self.parent_group else [])
                     return Group.url_sep().join(path_prefix + [group_name])
             class Permission(Base, BaseModel):
                 __tablename__ = 'permissions'
                 __table_args__ = {'extend_existing':True}
                 permission_id = Column("permission_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 permission_name = Column("permission_name", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 permission_longname = Column("permission_longname", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 def __repr__(self):
                     return "<%s('%s:%s')>" % (self.__class__.__name__,
                                               self.permission_id, self.permission_name)
                 @classmethod
                 def get_by_key(cls, key):
-                    return Session.query(cls).filter(cls.permission_name == key).scalar()
+                    return cls.query().filter(cls.permission_name == key).scalar()
             class RepoToPerm(Base, BaseModel):
                 __tablename__ = 'repo_to_perm'
                 __table_args__ = (UniqueConstraint('user_id', 'repository_id'), {'extend_existing':True})
                 repo_to_perm_id = Column("repo_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
                 user = relationship('User')
                 permission = relationship('Permission')
                 repository = relationship('Repository')
             class UserToPerm(Base, BaseModel):
                 __tablename__ = 'user_to_perm'
                 __table_args__ = (UniqueConstraint('user_id', 'permission_id'), {'extend_existing':True})
                 user_to_perm_id = Column("user_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 user = relationship('User')
                 permission = relationship('Permission')
                 @classmethod
                 def has_perm(cls, user_id, perm):
                     if not isinstance(perm, Permission):
                         raise Exception('perm needs to be an instance of Permission class')
-                    return Session.query(cls).filter(cls.user_id == user_id)\
+                    return cls.query().filter(cls.user_id == user_id)\
                         .filter(cls.permission == perm).scalar() is not None
                 @classmethod
                 def grant_perm(cls, user_id, perm):
                     if not isinstance(perm, Permission):
                         raise Exception('perm needs to be an instance of Permission class')
                     new = cls()
                     new.user_id = user_id
                     new.permission = perm
                     try:
                         Session.add(new)
                         Session.commit()
                     except:
                         Session.rollback()
                 @classmethod
                 def revoke_perm(cls, user_id, perm):
                     if not isinstance(perm, Permission):
                         raise Exception('perm needs to be an instance of Permission class')
                     try:
-                        Session.query(cls).filter(cls.user_id == user_id)\
+                        cls.query().filter(cls.user_id == user_id)\
                             .filter(cls.permission == perm).delete()
                         Session.commit()
                     except:
                         Session.rollback()
             class UsersGroupRepoToPerm(Base, BaseModel):
                 __tablename__ = 'users_group_repo_to_perm'
                 __table_args__ = (UniqueConstraint('repository_id', 'users_group_id', 'permission_id'), {'extend_existing':True})
                 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)
                 users_group = relationship('UsersGroup')
                 permission = relationship('Permission')
                 repository = relationship('Repository')
                 def __repr__(self):
                     return '<userGroup:%s => %s >' % (self.users_group, self.repository)
             class UsersGroupToPerm(Base, BaseModel):
                 __tablename__ = 'users_group_to_perm'
                 users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 users_group = relationship('UsersGroup')
                 permission = relationship('Permission')
                 @classmethod
                 def has_perm(cls, users_group_id, perm):
                     if not isinstance(perm, Permission):
                         raise Exception('perm needs to be an instance of Permission class')
-                    return Session.query(cls).filter(cls.users_group_id ==
+                    return cls.query().filter(cls.users_group_id ==
                                                      users_group_id)\
                                                      .filter(cls.permission == perm)\
                                                      .scalar() is not None
                 @classmethod
                 def grant_perm(cls, users_group_id, perm):
                     if not isinstance(perm, Permission):
                         raise Exception('perm needs to be an instance of Permission class')
                     new = cls()
                     new.users_group_id = users_group_id
                     new.permission = perm
                     try:
                         Session.add(new)
                         Session.commit()
                     except:
                         Session.rollback()
                 @classmethod
                 def revoke_perm(cls, users_group_id, perm):
                     if not isinstance(perm, Permission):
                         raise Exception('perm needs to be an instance of Permission class')
                     try:
-                        Session.query(cls).filter(cls.users_group_id == users_group_id)\
+                        cls.query().filter(cls.users_group_id == users_group_id)\
                             .filter(cls.permission == perm).delete()
                         Session.commit()
                     except:
                         Session.rollback()
             class GroupToPerm(Base, BaseModel):
                 __tablename__ = 'group_to_perm'
                 __table_args__ = (UniqueConstraint('group_id', 'permission_id'), {'extend_existing':True})
                 group_to_perm_id = Column("group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)
                 group_id = Column("group_id", Integer(), ForeignKey('groups.group_id'), nullable=False, unique=None, default=None)
                 user = relationship('User')
                 permission = relationship('Permission')
                 group = relationship('Group')
             class Statistics(Base, BaseModel):
                 __tablename__ = 'statistics'
                 __table_args__ = (UniqueConstraint('repository_id'), {'extend_existing':True})
                 stat_id = Column("stat_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=True, default=None)
                 stat_on_revision = Column("stat_on_revision", Integer(), nullable=False)
                 commit_activity = Column("commit_activity", LargeBinary(1000000), nullable=False)#JSON data
                 commit_activity_combined = Column("commit_activity_combined", LargeBinary(), nullable=False)#JSON data
                 languages = Column("languages", LargeBinary(1000000), nullable=False)#JSON data
                 repository = relationship('Repository', single_parent=True)
             class UserFollowing(Base, BaseModel):
                 __tablename__ = 'user_followings'
                 __table_args__ = (UniqueConstraint('user_id', 'follows_repository_id'),
                                   UniqueConstraint('user_id', 'follows_user_id')
                                   , {'extend_existing':True})
                 user_following_id = Column("user_following_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)
                 follows_repo_id = Column("follows_repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=True, unique=None, default=None)
                 follows_user_id = Column("follows_user_id", Integer(), ForeignKey('users.user_id'), nullable=True, unique=None, default=None)
                 follows_from = Column('follows_from', DateTime(timezone=False), nullable=True, unique=None, default=datetime.datetime.now)
                 user = relationship('User', primaryjoin='User.user_id==UserFollowing.user_id')
                 follows_user = relationship('User', primaryjoin='User.user_id==UserFollowing.follows_user_id')
                 follows_repository = relationship('Repository', order_by='Repository.repo_name')
                 @classmethod
                 def get_repo_followers(cls, repo_id):
-                    return Session.query(cls).filter(cls.follows_repo_id == repo_id)
+                    return cls.query().filter(cls.follows_repo_id == repo_id)
             class CacheInvalidation(Base, BaseModel):
                 __tablename__ = 'cache_invalidation'
                 __table_args__ = (UniqueConstraint('cache_key'), {'extend_existing':True})
                 cache_id = Column("cache_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)
                 cache_key = Column("cache_key", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 cache_args = Column("cache_args", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)
                 cache_active = Column("cache_active", Boolean(), nullable=True, unique=None, default=False)
                 def __init__(self, cache_key, cache_args=''):
                     self.cache_key = cache_key
                     self.cache_args = cache_args
                     self.cache_active = False
                 def __repr__(self):
                     return "<%s('%s:%s')>" % (self.__class__.__name__,
                                               self.cache_id, self.cache_key)
             class DbMigrateVersion(Base, BaseModel):
                 __tablename__ = 'db_migrate_version'
                 __table_args__ = {'extend_existing':True}
                 repository_id = Column('repository_id', String(250), primary_key=True)
                 repository_path = Column('repository_path', Text)
                 version = Column('version', Integer)

rhodecode/model/forms.py

0 +19 -13

             """ this is forms validation classes
             http://formencode.org/module-formencode.validators.html
             for list off all availible validators
             we can create our own validators
             The table below outlines the options which can be used in a schema in addition to the validators themselves
             pre_validators          []     These validators will be applied before the schema
             chained_validators      []     These validators will be applied after the schema
             allow_extra_fields      False     If True, then it is not an error when keys that aren't associated with a validator are present
             filter_extra_fields     False     If True, then keys that aren't associated with a validator are removed
             if_key_missing          NoDefault If this is given, then any keys that aren't available but are expected will be replaced with this value (and then validated). This does not override a present .if_missing attribute on validators. NoDefault is a special FormEncode class to mean that no default values has been specified and therefore missing keys shouldn't take a default value.
             ignore_key_missing      False     If True, then missing keys will be missing in the result, if the validator doesn't have .if_missing on it already
             <name> = formencode.validators.<name of validator>
             <name> must equal form name
             list=[1,2,3,4,5]
             for SELECT use formencode.All(OneOf(list), Int())
             """
             import os
             import re
             import logging
             import traceback
             import formencode
             from formencode import All
             from formencode.validators import UnicodeString, OneOf, Int, Number, Regex, \
                 Email, Bool, StringBoolean, Set
             from pylons.i18n.translation import _
             from webhelpers.pylonslib.secure_form import authentication_token
             from rhodecode.config.routing import ADMIN_PREFIX
             from rhodecode.lib.utils import repo_name_slug
             from rhodecode.lib.auth import authenticate, get_crypt_password
             from rhodecode.lib.exceptions import LdapImportError
             from rhodecode.model.user import UserModel
             from rhodecode.model.repo import RepoModel
             from rhodecode.model.db import User, UsersGroup, Group
             from rhodecode import BACKENDS
             log = logging.getLogger(__name__)
             #this is needed to translate the messages using _() in validators
             class State_obj(object):
                 _ = staticmethod(_)
             #==============================================================================
             # VALIDATORS
             #==============================================================================
             class ValidAuthToken(formencode.validators.FancyValidator):
                 messages = {'invalid_token':_('Token mismatch')}
                 def validate_python(self, value, state):
                     if value != authentication_token():
                         raise formencode.Invalid(self.message('invalid_token', state,
                                                         search_number=value), value, state)
             def ValidUsername(edit, old_data):
                 class _ValidUsername(formencode.validators.FancyValidator):
                     def validate_python(self, value, state):
                         if value in ['default', 'new_user']:
                             raise formencode.Invalid(_('Invalid username'), value, state)
                         #check if user is unique
                         old_un = None
                         if edit:
                             old_un = UserModel().get(old_data.get('user_id')).username
                         if old_un != value or not edit:
                             if User.get_by_username(value, case_insensitive=True):
                                 raise formencode.Invalid(_('This username already '
                                                            'exists') , value, state)
                         if re.match(r'^[a-zA-Z0-9]{1}[a-zA-Z0-9\-\_\.]+$', value) is None:
                             raise formencode.Invalid(_('Username may only contain '
                                                        'alphanumeric characters '
                                                        'underscores, periods or dashes '
                                                        'and must begin with alphanumeric '
                                                        'character'), value, state)
                 return _ValidUsername
             def ValidUsersGroup(edit, old_data):
                 class _ValidUsersGroup(formencode.validators.FancyValidator):
                     def validate_python(self, value, state):
                         if value in ['default']:
                             raise formencode.Invalid(_('Invalid group name'), value, state)
                         #check if group is unique
                         old_ugname = None
                         if edit:
                             old_ugname = UsersGroup.get(
                                         old_data.get('users_group_id')).users_group_name
                         if old_ugname != value or not edit:
                             if UsersGroup.get_by_group_name(value, cache=False,
                                                            case_insensitive=True):
                                 raise formencode.Invalid(_('This users group '
                                                            'already exists') , value,
                                                          state)
                         if re.match(r'^[a-zA-Z0-9]{1}[a-zA-Z0-9\-\_\.]+$', value) is None:
                             raise formencode.Invalid(_('Group name may only contain '
                                                        'alphanumeric characters '
                                                        'underscores, periods or dashes '
                                                        'and must begin with alphanumeric '
                                                        'character'), value, state)
                 return _ValidUsersGroup
             def ValidReposGroup(edit, old_data):
                 class _ValidReposGroup(formencode.validators.FancyValidator):
                     def validate_python(self, value, state):
                         #TODO WRITE VALIDATIONS
                         group_name = value.get('group_name')
                         group_parent_id = int(value.get('group_parent_id') or -1)
                         # slugify repo group just in case :)
                         slug = repo_name_slug(group_name)
                         # check for parent of self
                         if edit and old_data['group_id'] == group_parent_id:
                                 e_dict = {'group_parent_id':_('Cannot assign this group '
                                                               'as parent')}
                                 raise formencode.Invalid('', value, state,
                                                          error_dict=e_dict)
                         old_gname = None
                         if edit:
                             old_gname = Group.get(
                                         old_data.get('group_id')).group_name
                         if old_gname != group_name or not edit:
                             # check filesystem
                             gr = Group.query().filter(Group.group_name == slug)\
                                 .filter(Group.group_parent_id == group_parent_id).scalar()
                             if gr:
                                 e_dict = {'group_name':_('This group already exists')}
                                 raise formencode.Invalid('', value, state,
                                                          error_dict=e_dict)
                 return _ValidReposGroup
             class ValidPassword(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     if value:
                         if value.get('password'):
                             try:
                                 value['password'] = get_crypt_password(value['password'])
                             except UnicodeEncodeError:
                                 e_dict = {'password':_('Invalid characters in password')}
                                 raise formencode.Invalid('', value, state, error_dict=e_dict)
                         if value.get('password_confirmation'):
                             try:
                                 value['password_confirmation'] = \
                                     get_crypt_password(value['password_confirmation'])
                             except UnicodeEncodeError:
                                 e_dict = {'password_confirmation':_('Invalid characters in password')}
                                 raise formencode.Invalid('', value, state, error_dict=e_dict)
                         if value.get('new_password'):
                             try:
                                 value['new_password'] = \
                                     get_crypt_password(value['new_password'])
                             except UnicodeEncodeError:
                                 e_dict = {'new_password':_('Invalid characters in password')}
                                 raise formencode.Invalid('', value, state, error_dict=e_dict)
                         return value
             class ValidPasswordsMatch(formencode.validators.FancyValidator):
                 def validate_python(self, value, state):
-                    if value['password'] != value['password_confirmation']:
+                    pass_val = value.get('password') or value.get('new_password')
+                    if pass_val != value['password_confirmation']:
                         e_dict = {'password_confirmation':
                                _('Passwords do not match')}
                         raise formencode.Invalid('', value, state, error_dict=e_dict)
             class ValidAuth(formencode.validators.FancyValidator):
                 messages = {
-                        'invalid_password':_('invalid password'),
+                    'invalid_password':_('invalid password'),
-                        'invalid_login':_('invalid user name'),
+                    'invalid_login':_('invalid user name'),
-                        'disabled_account':_('Your account is disabled')
+                    'disabled_account':_('Your account is disabled')
+                }
-                #error mapping
+                # error mapping
                 e_dict = {'username':messages['invalid_login'],
                           'password':messages['invalid_password']}
                 e_dict_disable = {'username':messages['disabled_account']}
                 def validate_python(self, value, state):
                     password = value['password']
                     username = value['username']
                     user = User.get_by_username(username)
                     if authenticate(username, password):
                         return value
                     else:
                         if user and user.active is False:
                             log.warning('user %s is disabled', username)
                             raise formencode.Invalid(self.message('disabled_account',
                                                      state=State_obj),
                                                      value, state,
                                                      error_dict=self.e_dict_disable)
                         else:
                             log.warning('user %s not authenticated', username)
                             raise formencode.Invalid(self.message('invalid_password',
                                                      state=State_obj), value, state,
                                                      error_dict=self.e_dict)
             class ValidRepoUser(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     try:
                         User.query().filter(User.active == True)\
                             .filter(User.username == value).one()
                     except Exception:
                         raise formencode.Invalid(_('This username is not valid'),
                                                  value, state)
                     return value
             def ValidRepoName(edit, old_data):
                 class _ValidRepoName(formencode.validators.FancyValidator):
                     def to_python(self, value, state):
                         repo_name = value.get('repo_name')
                         slug = repo_name_slug(repo_name)
                         if slug in [ADMIN_PREFIX, '']:
                             e_dict = {'repo_name': _('This repository name is disallowed')}
                             raise formencode.Invalid('', value, state, error_dict=e_dict)
                         if value.get('repo_group'):
                             gr = Group.get(value.get('repo_group'))
                             group_path = gr.full_path
                             # value needs to be aware of group name in order to check
                             # db key This is an actual just the name to store in the
                             # database
                             repo_name_full = group_path + Group.url_sep() + repo_name
                         else:
                             group_path = ''
                             repo_name_full = repo_name
                         value['repo_name_full'] = repo_name_full
                         rename = old_data.get('repo_name') != repo_name_full
                         create = not edit
                         if  rename or create:
                             if group_path != '':
                                 if RepoModel().get_by_repo_name(repo_name_full,):
                                     e_dict = {'repo_name':_('This repository already '
                                                             'exists in a group "%s"') %
                                               gr.group_name}
                                     raise formencode.Invalid('', value, state,
                                                              error_dict=e_dict)
                             elif Group.get_by_group_name(repo_name_full):
                                     e_dict = {'repo_name':_('There is a group with this'
                                                             ' name already "%s"') %
                                               repo_name_full}
                                     raise formencode.Invalid('', value, state,
                                                              error_dict=e_dict)
                             elif RepoModel().get_by_repo_name(repo_name_full):
                                     e_dict = {'repo_name':_('This repository '
                                                             'already exists')}
                                     raise formencode.Invalid('', value, state,
                                                              error_dict=e_dict)
                         return value
                 return _ValidRepoName
             def ValidForkName():
                 class _ValidForkName(formencode.validators.FancyValidator):
                     def to_python(self, value, state):
                         repo_name = value.get('fork_name')
                         slug = repo_name_slug(repo_name)
                         if slug in [ADMIN_PREFIX, '']:
                             e_dict = {'repo_name': _('This repository name is disallowed')}
                             raise formencode.Invalid('', value, state, error_dict=e_dict)
                         if RepoModel().get_by_repo_name(repo_name):
                             e_dict = {'fork_name':_('This repository '
                                                     'already exists')}
                             raise formencode.Invalid('', value, state,
                                                      error_dict=e_dict)
                         return value
                 return _ValidForkName
             def SlugifyName():
                 class _SlugifyName(formencode.validators.FancyValidator):
                     def to_python(self, value, state):
                         return repo_name_slug(value)
                 return _SlugifyName
             def ValidCloneUri():
                 from mercurial.httprepo import httprepository, httpsrepository
                 from rhodecode.lib.utils import make_ui
                 class _ValidCloneUri(formencode.validators.FancyValidator):
                     def to_python(self, value, state):
                         if not value:
                             pass
                         elif value.startswith('https'):
                             try:
                                 httpsrepository(make_ui('db'), value).capabilities
                             except Exception, e:
                                 log.error(traceback.format_exc())
                                 raise formencode.Invalid(_('invalid clone url'), value,
                                                          state)
                         elif value.startswith('http'):
                             try:
                                 httprepository(make_ui('db'), value).capabilities
                             except Exception, e:
                                 log.error(traceback.format_exc())
                                 raise formencode.Invalid(_('invalid clone url'), value,
                                                          state)
                         else:
                             raise formencode.Invalid(_('Invalid clone url, provide a '
                                                        'valid clone http\s url'), value,
                                                      state)
                         return value
                 return _ValidCloneUri
             def ValidForkType(old_data):
                 class _ValidForkType(formencode.validators.FancyValidator):
                     def to_python(self, value, state):
                         if old_data['repo_type'] != value:
                             raise formencode.Invalid(_('Fork have to be the same '
                                                        'type as original'), value, state)
                         return value
                 return _ValidForkType
             class ValidPerms(formencode.validators.FancyValidator):
                 messages = {'perm_new_member_name':_('This username or users group name'
                                                      ' is not valid')}
                 def to_python(self, value, state):
                     perms_update = []
                     perms_new = []
                     #build a list of permission to update and new permission to create
                     for k, v in value.items():
                         #means new added member to permissions
                         if k.startswith('perm_new_member'):
                             new_perm = value.get('perm_new_member', False)
                             new_member = value.get('perm_new_member_name', False)
                             new_type = value.get('perm_new_member_type')
                             if new_member and new_perm:
                                 if (new_member, new_perm, new_type) not in perms_new:
                                     perms_new.append((new_member, new_perm, new_type))
                         elif k.startswith('u_perm_') or k.startswith('g_perm_'):
                             member = k[7:]
                             t = {'u':'user',
                                  'g':'users_group'}[k[0]]
                             if member == 'default':
                                 if value['private']:
                                     #set none for default when updating to private repo
                                     v = 'repository.none'
                             perms_update.append((member, v, t))
                     value['perms_updates'] = perms_update
                     value['perms_new'] = perms_new
                     #update permissions
                     for k, v, t in perms_new:
                         try:
                             if t is 'user':
                                 self.user_db = User.query()\
                                     .filter(User.active == True)\
                                     .filter(User.username == k).one()
                             if t is 'users_group':
                                 self.user_db = UsersGroup.query()\
                                     .filter(UsersGroup.users_group_active == True)\
                                     .filter(UsersGroup.users_group_name == k).one()
                         except Exception:
                             msg = self.message('perm_new_member_name',
                                                  state=State_obj)
                             raise formencode.Invalid(msg, value, state,
                                                      error_dict={'perm_new_member_name':msg})
                     return value
             class ValidSettings(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     #settings  form can't edit user
                     if value.has_key('user'):
                         del['value']['user']
                     return value
             class ValidPath(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     if not os.path.isdir(value):
                         msg = _('This is not a valid path')
                         raise formencode.Invalid(msg, value, state,
                                                  error_dict={'paths_root_path':msg})
                     return value
             def UniqSystemEmail(old_data):
                 class _UniqSystemEmail(formencode.validators.FancyValidator):
                     def to_python(self, value, state):
                         value = value.lower()
                         if old_data.get('email') != value:
                             user = User.query().filter(User.email == value).scalar()
                             if user:
                                 raise formencode.Invalid(
                                                 _("This e-mail address is already taken"),
                                                 value, state)
                         return value
                 return _UniqSystemEmail
             class ValidSystemEmail(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     value = value.lower()
                     user = User.query().filter(User.email == value).scalar()
                     if  user is None:
                         raise formencode.Invalid(_("This e-mail address doesn't exist.") ,
                                                  value, state)
                     return value
             class LdapLibValidator(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     try:
                         import ldap
                     except ImportError:
                         raise LdapImportError
                     return value
             class AttrLoginValidator(formencode.validators.FancyValidator):
                 def to_python(self, value, state):
                     if not value or not isinstance(value, (str, unicode)):
                         raise formencode.Invalid(_("The LDAP Login attribute of the CN "
                                                    "must be specified - this is the name "
                                                    "of the attribute that is equivalent "
                                                    "to 'username'"),
                                                  value, state)
                     return value
             #===============================================================================
             # FORMS
             #===============================================================================
             class LoginForm(formencode.Schema):
                 allow_extra_fields = True
                 filter_extra_fields = True
                 username = UnicodeString(
                                          strip=True,
                                          min=1,
                                          not_empty=True,
                                          messages={
                                             'empty':_('Please enter a login'),
                                             'tooShort':_('Enter a value %(min)i characters long or more')}
                                         )
                 password = UnicodeString(
                                         strip=True,
                                         min=3,
                                         not_empty=True,
                                         messages={
                                             'empty':_('Please enter a password'),
                                             'tooShort':_('Enter %(min)i characters or more')}
                                             )
-                #chained validators have access to all data
                 chained_validators = [ValidAuth]
             def UserForm(edit=False, old_data={}):
                 class _UserForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     username = All(UnicodeString(strip=True, min=1, not_empty=True),
                                    ValidUsername(edit, old_data))
                     if edit:
                         new_password = All(UnicodeString(strip=True, min=6, not_empty=False))
+                        password_confirmation = All(UnicodeString(strip=True, min=6, not_empty=False))
                         admin = StringBoolean(if_missing=False)
                     else:
                         password = All(UnicodeString(strip=True, min=6, not_empty=True))
+                        password_confirmation = All(UnicodeString(strip=True, min=6, not_empty=False))
                     active = StringBoolean(if_missing=False)
                     name = UnicodeString(strip=True, min=1, not_empty=True)
                     lastname = UnicodeString(strip=True, min=1, not_empty=True)
                     email = All(Email(not_empty=True), UniqSystemEmail(old_data))
-                    chained_validators = [ValidPassword]
+                    chained_validators = [ValidPasswordsMatch, ValidPassword]
                 return _UserForm
             def UsersGroupForm(edit=False, old_data={}, available_members=[]):
                 class _UsersGroupForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     users_group_name = All(UnicodeString(strip=True, min=1, not_empty=True),
                                    ValidUsersGroup(edit, old_data))
                     users_group_active = StringBoolean(if_missing=False)
                     if edit:
                         users_group_members = OneOf(available_members, hideList=False,
                                                     testValueList=True,
                                                     if_missing=None, not_empty=False)
                 return _UsersGroupForm
             def ReposGroupForm(edit=False, old_data={}, available_groups=[]):
                 class _ReposGroupForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     group_name = All(UnicodeString(strip=True, min=1, not_empty=True),
                                            SlugifyName())
                     group_description = UnicodeString(strip=True, min=1,
                                                             not_empty=True)
                     group_parent_id = OneOf(available_groups, hideList=False,
                                                     testValueList=True,
                                                     if_missing=None, not_empty=False)
                     chained_validators = [ValidReposGroup(edit, old_data)]
                 return _ReposGroupForm
             def RegisterForm(edit=False, old_data={}):
                 class _RegisterForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     username = All(ValidUsername(edit, old_data),
                                    UnicodeString(strip=True, min=1, not_empty=True))
                     password = All(UnicodeString(strip=True, min=6, not_empty=True))
                     password_confirmation = All(UnicodeString(strip=True, min=6, not_empty=True))
                     active = StringBoolean(if_missing=False)
                     name = UnicodeString(strip=True, min=1, not_empty=True)
                     lastname = UnicodeString(strip=True, min=1, not_empty=True)
                     email = All(Email(not_empty=True), UniqSystemEmail(old_data))
                     chained_validators = [ValidPasswordsMatch, ValidPassword]
                 return _RegisterForm
             def PasswordResetForm():
                 class _PasswordResetForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     email = All(ValidSystemEmail(), Email(not_empty=True))
                 return _PasswordResetForm
             def RepoForm(edit=False, old_data={}, supported_backends=BACKENDS.keys(),
                          repo_groups=[]):
                 class _RepoForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     repo_name = All(UnicodeString(strip=True, min=1, not_empty=True),
                                     SlugifyName())
                     clone_uri = All(UnicodeString(strip=True, min=1, not_empty=False),
                                     ValidCloneUri()())
                     repo_group = OneOf(repo_groups, hideList=True)
                     repo_type = OneOf(supported_backends)
                     description = UnicodeString(strip=True, min=1, not_empty=True)
                     private = StringBoolean(if_missing=False)
                     enable_statistics = StringBoolean(if_missing=False)
                     enable_downloads = StringBoolean(if_missing=False)
                     if edit:
                         #this is repo owner
                         user = All(UnicodeString(not_empty=True), ValidRepoUser)
                     chained_validators = [ValidRepoName(edit, old_data), ValidPerms]
                 return _RepoForm
             def RepoForkForm(edit=False, old_data={}, supported_backends=BACKENDS.keys()):
                 class _RepoForkForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     fork_name = All(UnicodeString(strip=True, min=1, not_empty=True),
                                     SlugifyName())
                     description = UnicodeString(strip=True, min=1, not_empty=True)
                     private = StringBoolean(if_missing=False)
                     repo_type = All(ValidForkType(old_data), OneOf(supported_backends))
                     chained_validators = [ValidForkName()]
                 return _RepoForkForm
-            def RepoSettingsForm(edit=False, old_data={}):
+            def RepoSettingsForm(edit=False, old_data={}, supported_backends=BACKENDS.keys(),
+                                 repo_groups=[]):
                 class _RepoForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     repo_name = All(UnicodeString(strip=True, min=1, not_empty=True),
                                     SlugifyName())
                     description = UnicodeString(strip=True, min=1, not_empty=True)
+                    repo_group = OneOf(repo_groups, hideList=True)
                     private = StringBoolean(if_missing=False)
-                    chained_validators = [ValidRepoName(edit, old_data), ValidPerms, ValidSettings]
+                    chained_validators = [ValidRepoName(edit, old_data), ValidPerms,
+                                          ValidSettings]
                 return _RepoForm
             def ApplicationSettingsForm():
                 class _ApplicationSettingsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     rhodecode_title = UnicodeString(strip=True, min=1, not_empty=True)
                     rhodecode_realm = UnicodeString(strip=True, min=1, not_empty=True)
                     rhodecode_ga_code = UnicodeString(strip=True, min=1, not_empty=False)
                 return _ApplicationSettingsForm
             def ApplicationUiSettingsForm():
                 class _ApplicationUiSettingsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = False
                     web_push_ssl = OneOf(['true', 'false'], if_missing='false')
                     paths_root_path = All(ValidPath(), UnicodeString(strip=True, min=1, not_empty=True))
                     hooks_changegroup_update = OneOf(['True', 'False'], if_missing=False)
                     hooks_changegroup_repo_size = OneOf(['True', 'False'], if_missing=False)
                     hooks_pretxnchangegroup_push_logger = OneOf(['True', 'False'], if_missing=False)
                     hooks_preoutgoing_pull_logger = OneOf(['True', 'False'], if_missing=False)
                 return _ApplicationUiSettingsForm
             def DefaultPermissionsForm(perms_choices, register_choices, create_choices):
                 class _DefaultPermissionsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     overwrite_default = StringBoolean(if_missing=False)
                     anonymous = OneOf(['True', 'False'], if_missing=False)
                     default_perm = OneOf(perms_choices)
                     default_register = OneOf(register_choices)
                     default_create = OneOf(create_choices)
                 return _DefaultPermissionsForm
             def LdapSettingsForm(tls_reqcert_choices, search_scope_choices, tls_kind_choices):
                 class _LdapSettingsForm(formencode.Schema):
                     allow_extra_fields = True
                     filter_extra_fields = True
                     pre_validators = [LdapLibValidator]
                     ldap_active = StringBoolean(if_missing=False)
                     ldap_host = UnicodeString(strip=True,)
                     ldap_port = Number(strip=True,)
                     ldap_tls_kind = OneOf(tls_kind_choices)
                     ldap_tls_reqcert = OneOf(tls_reqcert_choices)
                     ldap_dn_user = UnicodeString(strip=True,)
                     ldap_dn_pass = UnicodeString(strip=True,)
                     ldap_base_dn = UnicodeString(strip=True,)
                     ldap_filter = UnicodeString(strip=True,)
                     ldap_search_scope = OneOf(search_scope_choices)
                     ldap_attr_login = All(AttrLoginValidator, UnicodeString(strip=True,))
                     ldap_attr_firstname = UnicodeString(strip=True,)
                     ldap_attr_lastname = UnicodeString(strip=True,)
                     ldap_attr_email = UnicodeString(strip=True,)
                 return _LdapSettingsForm

rhodecode/model/repo.py

0 +45 -4

             # -*- coding: utf-8 -*-
             """
                 rhodecode.model.repo
                 ~~~~~~~~~~~~~~~~~~~~
                 Repository model for rhodecode
                 :created_on: Jun 5, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import os
             import shutil
             import logging
             import traceback
             from datetime import datetime
             from sqlalchemy.orm import joinedload, make_transient
             from vcs.utils.lazy import LazyProperty
             from vcs.backends import get_backend
             from rhodecode.lib import safe_str
             from rhodecode.model import BaseModel
             from rhodecode.model.caching_query import FromCache
             from rhodecode.model.db import Repository, RepoToPerm, User, Permission, \
                 Statistics, UsersGroup, UsersGroupRepoToPerm, RhodeCodeUi, Group
             from rhodecode.model.user import UserModel
             log = logging.getLogger(__name__)
             class RepoModel(BaseModel):
                 @LazyProperty
                 def repos_path(self):
                     """Get's the repositories root path from database
                     """
                     q = self.sa.query(RhodeCodeUi).filter(RhodeCodeUi.ui_key == '/').one()
                     return q.ui_value
                 def get(self, repo_id, cache=False):
                     repo = self.sa.query(Repository)\
                         .filter(Repository.repo_id == repo_id)
                     if cache:
                         repo = repo.options(FromCache("sql_cache_short",
                                                       "get_repo_%s" % repo_id))
                     return repo.scalar()
                 def get_by_repo_name(self, repo_name, cache=False):
                     repo = self.sa.query(Repository)\
                         .filter(Repository.repo_name == repo_name)
                     if cache:
                         repo = repo.options(FromCache("sql_cache_short",
                                                       "get_repo_%s" % repo_name))
                     return repo.scalar()
                 def get_users_js(self):
                     users = self.sa.query(User).filter(User.active == True).all()
                     u_tmpl = '''{id:%s, fname:"%s", lname:"%s", nname:"%s"},'''
                     users_array = '[%s]' % '\n'.join([u_tmpl % (u.user_id, u.name,
                                                                 u.lastname, u.username)
                                                     for u in users])
                     return users_array
                 def get_users_groups_js(self):
                     users_groups = self.sa.query(UsersGroup)\
                         .filter(UsersGroup.users_group_active == True).all()
                     g_tmpl = '''{id:%s, grname:"%s",grmembers:"%s"},'''
                     users_groups_array = '[%s]' % '\n'.join([g_tmpl % \
                                                 (gr.users_group_id, gr.users_group_name,
                                                  len(gr.members))
                                                     for gr in users_groups])
                     return users_groups_array
+                def _get_defaults(self, repo_name):
+                    """
+                    Get's information about repository, and returns a dict for
+                    usage in forms
+                    :param repo_name:
+                    """
+                    repo_info = Repository.get_by_repo_name(repo_name)
+                    if repo_info is None:
+                        return None
+                    defaults = repo_info.get_dict()
+                    group, repo_name = repo_info.groups_and_repo
+                    defaults['repo_name'] = repo_name
+                    defaults['repo_group'] = getattr(group[-1] if group else None,
+                                                     'group_id', None)
+                    # fill owner
+                    if repo_info.user:
+                        defaults.update({'user': repo_info.user.username})
+                    else:
+                        replacement_user = User.query().filter(User.admin ==
+                                                               True).first().username
+                        defaults.update({'user': replacement_user})
+                    # fill repository users
+                    for p in repo_info.repo_to_perm:
+                        defaults.update({'u_perm_%s' % p.user.username:
+                                         p.permission.permission_name})
+                    # fill repository groups
+                    for p in repo_info.users_group_to_perm:
+                        defaults.update({'g_perm_%s' % p.users_group.users_group_name:
+                                         p.permission.permission_name})
+                    return defaults
                 def update(self, repo_name, form_data):
                     try:
                         cur_repo = self.get_by_repo_name(repo_name, cache=False)
                         # update permissions
                         for member, perm, member_type in form_data['perms_updates']:
                             if member_type == 'user':
                                 r2p = self.sa.query(RepoToPerm)\
                                         .filter(RepoToPerm.user == User.get_by_username(member))\
                                         .filter(RepoToPerm.repository == cur_repo)\
                                         .one()
                                 r2p.permission = self.sa.query(Permission)\
                                                     .filter(Permission.permission_name ==
                                                             perm).scalar()
                                 self.sa.add(r2p)
                             else:
                                 g2p = self.sa.query(UsersGroupRepoToPerm)\
                                         .filter(UsersGroupRepoToPerm.users_group ==
                                                 UsersGroup.get_by_group_name(member))\
                                         .filter(UsersGroupRepoToPerm.repository ==
                                                 cur_repo).one()
                                 g2p.permission = self.sa.query(Permission)\
                                                     .filter(Permission.permission_name ==
                                                             perm).scalar()
                                 self.sa.add(g2p)
                         # set new permissions
                         for member, perm, member_type in form_data['perms_new']:
                             if member_type == 'user':
                                 r2p = RepoToPerm()
                                 r2p.repository = cur_repo
                                 r2p.user = User.get_by_username(member)
                                 r2p.permission = self.sa.query(Permission)\
                                                     .filter(Permission.
                                                             permission_name == perm)\
                                                             .scalar()
                                 self.sa.add(r2p)
                             else:
                                 g2p = UsersGroupRepoToPerm()
                                 g2p.repository = cur_repo
                                 g2p.users_group = UsersGroup.get_by_group_name(member)
                                 g2p.permission = self.sa.query(Permission)\
                                                     .filter(Permission.
                                                             permission_name == perm)\
                                                             .scalar()
                                 self.sa.add(g2p)
                         # update current repo
                         for k, v in form_data.items():
                             if k == 'user':
                                 cur_repo.user = User.get_by_username(v)
                             elif k == 'repo_name':
                                 pass
                             elif k == 'repo_group':
-                                cur_repo.group_id = v
+                                cur_repo.group = Group.get(v)
                             else:
                                 setattr(cur_repo, k, v)
                         new_name = cur_repo.get_new_name(form_data['repo_name'])
                         cur_repo.repo_name = new_name
                         self.sa.add(cur_repo)
                         if repo_name != new_name:
                             # rename repository
                             self.__rename_repo(old=repo_name, new=new_name)
                         self.sa.commit()
                         return cur_repo
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def create(self, form_data, cur_user, just_db=False, fork=False):
                     try:
                         if fork:
                             repo_name = form_data['fork_name']
                             org_name = form_data['repo_name']
                             org_full_name = org_name
                         else:
                             org_name = repo_name = form_data['repo_name']
                             repo_name_full = form_data['repo_name_full']
                         new_repo = Repository()
                         new_repo.enable_statistics = False
                         for k, v in form_data.items():
                             if k == 'repo_name':
                                 if fork:
                                     v = repo_name
                                 else:
                                     v = repo_name_full
                             if k == 'repo_group':
                                 k = 'group_id'
                             if k == 'description':
                                 v = v or repo_name
                             setattr(new_repo, k, v)
                         if fork:
                             parent_repo = self.sa.query(Repository)\
                                     .filter(Repository.repo_name == org_full_name).one()
                             new_repo.fork = parent_repo
                         new_repo.user_id = cur_user.user_id
                         self.sa.add(new_repo)
                         #create default permission
                         repo_to_perm = RepoToPerm()
                         default = 'repository.read'
                         for p in User.get_by_username('default').user_perms:
                             if p.permission.permission_name.startswith('repository.'):
                                 default = p.permission.permission_name
                                 break
                         default_perm = 'repository.none' if form_data['private'] else default
                         repo_to_perm.permission_id = self.sa.query(Permission)\
                                 .filter(Permission.permission_name == default_perm)\
                                 .one().permission_id
                         repo_to_perm.repository = new_repo
                         repo_to_perm.user_id = User.get_by_username('default').user_id
                         self.sa.add(repo_to_perm)
                         if not just_db:
                             self.__create_repo(repo_name, form_data['repo_type'],
                                                form_data['repo_group'],
                                                form_data['clone_uri'])
                         self.sa.commit()
                         #now automatically start following this repository as owner
                         from rhodecode.model.scm import ScmModel
                         ScmModel(self.sa).toggle_following_repo(new_repo.repo_id,
                                                          cur_user.user_id)
                         return new_repo
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def create_fork(self, form_data, cur_user):
                     from rhodecode.lib.celerylib import tasks, run_task
                     run_task(tasks.create_repo_fork, form_data, cur_user)
                 def delete(self, repo):
                     try:
                         self.sa.delete(repo)
                         self.__delete_repo(repo)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def delete_perm_user(self, form_data, repo_name):
                     try:
                         self.sa.query(RepoToPerm)\
                             .filter(RepoToPerm.repository \
                                     == self.get_by_repo_name(repo_name))\
                             .filter(RepoToPerm.user_id == form_data['user_id']).delete()
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def delete_perm_users_group(self, form_data, repo_name):
                     try:
                         self.sa.query(UsersGroupRepoToPerm)\
                             .filter(UsersGroupRepoToPerm.repository \
                                     == self.get_by_repo_name(repo_name))\
                             .filter(UsersGroupRepoToPerm.users_group_id \
                                     == form_data['users_group_id']).delete()
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def delete_stats(self, repo_name):
                     try:
                         self.sa.query(Statistics)\
                             .filter(Statistics.repository == \
                                     self.get_by_repo_name(repo_name)).delete()
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def __create_repo(self, repo_name, alias, new_parent_id, clone_uri=False):
                     """
                     makes repository on filesystem. It's group aware means it'll create
                     a repository within a group, and alter the paths accordingly of
                     group location
                     :param repo_name:
                     :param alias:
                     :param parent_id:
                     :param clone_uri:
                     """
-                    from rhodecode.lib.utils import is_valid_repo,is_valid_repos_group
+                    from rhodecode.lib.utils import is_valid_repo, is_valid_repos_group
                     if new_parent_id:
                         paths = Group.get(new_parent_id).full_path.split(Group.url_sep())
                         new_parent_path = os.sep.join(paths)
                     else:
                         new_parent_path = ''
                     repo_path = os.path.join(*map(lambda x:safe_str(x),
                                             [self.repos_path, new_parent_path, repo_name]))
                     # check if this path is not a repository
                     if is_valid_repo(repo_path, self.repos_path):
                         raise Exception('This path %s is a valid repository' % repo_path)
                     # check if this path is a group
                     if is_valid_repos_group(repo_path, self.repos_path):
                         raise Exception('This path %s is a valid group' % repo_path)
                     log.info('creating repo %s in %s @ %s', repo_name, repo_path,
                              clone_uri)
                     backend = get_backend(alias)
                     backend(repo_path, create=True, src_url=clone_uri)
                 def __rename_repo(self, old, new):
                     """
                     renames repository on filesystem
                     :param old: old name
                     :param new: new name
                     """
                     log.info('renaming repo from %s to %s', old, new)
                     old_path = os.path.join(self.repos_path, old)
                     new_path = os.path.join(self.repos_path, new)
                     if os.path.isdir(new_path):
                         raise Exception('Was trying to rename to already existing dir %s' \
                         		     % new_path)
                     shutil.move(old_path, new_path)
                 def __delete_repo(self, repo):
                     """
                     removes repo from filesystem, the removal is acctually made by
                     added rm__ prefix into dir, and rename internat .hg/.git dirs so this
                     repository is no longer valid for rhodecode, can be undeleted later on
                     by reverting the renames on this repository
                     :param repo: repo object
                     """
                     rm_path = os.path.join(self.repos_path, repo.repo_name)
                     log.info("Removing %s", rm_path)
                     #disable hg/git
                     alias = repo.repo_type
                     shutil.move(os.path.join(rm_path, '.%s' % alias),
                                 os.path.join(rm_path, 'rm__.%s' % alias))
                     #disable repo
                     shutil.move(rm_path, os.path.join(self.repos_path, 'rm__%s__%s' \
                                                       % (datetime.today()\
                                                          .strftime('%Y%m%d_%H%M%S_%f'),
                                                         repo.repo_name)))

rhodecode/model/repos_group.py

0 +2 -2

             # -*- coding: utf-8 -*-
             """
                 rhodecode.model.user_group
                 ~~~~~~~~~~~~~~~~~~~~~~~~~~
                 users groups model for RhodeCode
                 :created_on: Jan 25, 2011
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import os
             import logging
             import traceback
             import shutil
             from pylons.i18n.translation import _
             from vcs.utils.lazy import LazyProperty
             from rhodecode.model import BaseModel
             from rhodecode.model.caching_query import FromCache
             from rhodecode.model.db import Group, RhodeCodeUi
             log = logging.getLogger(__name__)
             class ReposGroupModel(BaseModel):
                 @LazyProperty
                 def repos_path(self):
                     """
                     Get's the repositories root path from database
                     """
                     q = RhodeCodeUi.get_by_key('/').one()
                     return q.ui_value
                 def __create_group(self, group_name):
                     """
                     makes repositories group on filesystem
                     :param repo_name:
                     :param parent_id:
                     """
                     create_path = os.path.join(self.repos_path, group_name)
                     log.debug('creating new group in %s', create_path)
                     if os.path.isdir(create_path):
                         raise Exception('That directory already exists !')
                     os.makedirs(create_path)
                 def __rename_group(self, old, new):
                     """
                     Renames a group on filesystem
                     :param group_name:
                     """
                     if old == new:
                         log.debug('skipping group rename')
                         return
                     log.debug('renaming repos group from %s to %s', old, new)
                     old_path = os.path.join(self.repos_path, old)
                     new_path = os.path.join(self.repos_path, new)
                     log.debug('renaming repos paths from %s to %s', old_path, new_path)
                     if os.path.isdir(new_path):
                         raise Exception('Was trying to rename to already '
                                         'existing dir %s' % new_path)
                     shutil.move(old_path, new_path)
                 def __delete_group(self, group):
                     """
                     Deletes a group from a filesystem
                     :param group: instance of group from database
                     """
                     paths = group.full_path.split(Group.url_sep())
                     paths = os.sep.join(paths)
                     rm_path = os.path.join(self.repos_path, paths)
                     if os.path.isdir(rm_path):
                         # delete only if that path really exists
                         os.rmdir(rm_path)
                 def create(self, form_data):
                     try:
                         new_repos_group = Group()
                         new_repos_group.group_description = form_data['group_description']
                         new_repos_group.parent_group = Group.get(form_data['group_parent_id'])
                         new_repos_group.group_name = new_repos_group.get_new_name(form_data['group_name'])
                         self.sa.add(new_repos_group)
                         self.__create_group(new_repos_group.group_name)
                         self.sa.commit()
                         return new_repos_group
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def update(self, repos_group_id, form_data):
                     try:
                         repos_group = Group.get(repos_group_id)
                         old_path = repos_group.full_path
-                        #change properties
+                        # change properties
                         repos_group.group_description = form_data['group_description']
                         repos_group.parent_group = Group.get(form_data['group_parent_id'])
                         repos_group.group_name = repos_group.get_new_name(form_data['group_name'])
                         new_path = repos_group.full_path
                         self.sa.add(repos_group)
                         self.__rename_group(old_path, new_path)
                         # we need to get all repositories from this new group and
                         # rename them accordingly to new group path
                         for r in repos_group.repositories:
                             r.repo_name = r.get_new_name(r.just_name)
                             self.sa.add(r)
                         self.sa.commit()
                         return repos_group
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def delete(self, users_group_id):
                     try:
                         users_group = Group.get(users_group_id)
                         self.sa.delete(users_group)
                         self.__delete_group(users_group)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise

rhodecode/model/user.py

0 +3 -1

             # -*- coding: utf-8 -*-
             """
                 rhodecode.model.user
                 ~~~~~~~~~~~~~~~~~~~~
                 users model for RhodeCode
                 :created_on: Apr 9, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import logging
             import traceback
             from pylons.i18n.translation import _
             from rhodecode.lib import safe_unicode
             from rhodecode.model import BaseModel
             from rhodecode.model.caching_query import FromCache
             from rhodecode.model.db import User, RepoToPerm, Repository, Permission, \
                 UserToPerm, UsersGroupRepoToPerm, UsersGroupToPerm, UsersGroupMember
             from rhodecode.lib.exceptions import DefaultUserException, \
                 UserOwnsReposException
             from sqlalchemy.exc import DatabaseError
             from rhodecode.lib import generate_api_key
             from sqlalchemy.orm import joinedload
             log = logging.getLogger(__name__)
             PERM_WEIGHTS = {'repository.none': 0,
                             'repository.read': 1,
                             'repository.write': 3,
                             'repository.admin': 3}
             class UserModel(BaseModel):
                 def get(self, user_id, cache=False):
                     user = self.sa.query(User)
                     if cache:
                         user = user.options(FromCache("sql_cache_short",
                                                       "get_user_%s" % user_id))
                     return user.get(user_id)
                 def get_by_username(self, username, cache=False, case_insensitive=False):
                     if case_insensitive:
                         user = self.sa.query(User).filter(User.username.ilike(username))
                     else:
                         user = self.sa.query(User)\
                             .filter(User.username == username)
                     if cache:
                         user = user.options(FromCache("sql_cache_short",
                                                       "get_user_%s" % username))
                     return user.scalar()
                 def get_by_api_key(self, api_key, cache=False):
                     user = self.sa.query(User)\
                             .filter(User.api_key == api_key)
                     if cache:
                         user = user.options(FromCache("sql_cache_short",
                                                       "get_user_%s" % api_key))
                     return user.scalar()
                 def create(self, form_data):
                     try:
                         new_user = User()
                         for k, v in form_data.items():
                             setattr(new_user, k, v)
                         new_user.api_key = generate_api_key(form_data['username'])
                         self.sa.add(new_user)
                         self.sa.commit()
+                        return new_user
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def create_ldap(self, username, password, user_dn, attrs):
                     """
                     Checks if user is in database, if not creates this user marked
                     as ldap user
                     :param username:
                     :param password:
                     :param user_dn:
                     :param attrs:
                     """
                     from rhodecode.lib.auth import get_crypt_password
                     log.debug('Checking for such ldap account in RhodeCode database')
                     if self.get_by_username(username, case_insensitive=True) is None:
                         try:
                             new_user = User()
                             # add ldap account always lowercase
                             new_user.username = username.lower()
                             new_user.password = get_crypt_password(password)
                             new_user.api_key = generate_api_key(username)
                             new_user.email = attrs['email']
                             new_user.active = True
                             new_user.ldap_dn = safe_unicode(user_dn)
                             new_user.name = attrs['name']
                             new_user.lastname = attrs['lastname']
                             self.sa.add(new_user)
                             self.sa.commit()
                             return True
                         except (DatabaseError,):
                             log.error(traceback.format_exc())
                             self.sa.rollback()
                             raise
                     log.debug('this %s user exists skipping creation of ldap account',
                               username)
                     return False
                 def create_registration(self, form_data):
                     from rhodecode.lib.celerylib import tasks, run_task
                     try:
                         new_user = User()
                         for k, v in form_data.items():
                             if k != 'admin':
                                 setattr(new_user, k, v)
                         self.sa.add(new_user)
                         self.sa.commit()
                         body = ('New user registration\n'
                                 'username: %s\n'
                                 'email: %s\n')
                         body = body % (form_data['username'], form_data['email'])
                         run_task(tasks.send_email, None,
                                  _('[RhodeCode] New User registration'),
                                  body)
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def update(self, user_id, form_data):
                     try:
                         user = self.get(user_id, cache=False)
                         if user.username == 'default':
                             raise DefaultUserException(
                                             _("You can't Edit this user since it's"
                                               " crucial for entire application"))
                         for k, v in form_data.items():
                             if k == 'new_password' and v != '':
                                 user.password = v
                                 user.api_key = generate_api_key(user.username)
                             else:
                                 setattr(user, k, v)
                         self.sa.add(user)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def update_my_account(self, user_id, form_data):
                     try:
                         user = self.get(user_id, cache=False)
                         if user.username == 'default':
                             raise DefaultUserException(
                                             _("You can't Edit this user since it's"
                                               " crucial for entire application"))
                         for k, v in form_data.items():
                             if k == 'new_password' and v != '':
                                 user.password = v
                                 user.api_key = generate_api_key(user.username)
                             else:
                                 if k not in ['admin', 'active']:
                                     setattr(user, k, v)
                         self.sa.add(user)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def delete(self, user_id):
                     try:
                         user = self.get(user_id, cache=False)
                         if user.username == 'default':
                             raise DefaultUserException(
                                             _("You can't remove this user since it's"
                                               " crucial for entire application"))
                         if user.repositories:
                             raise UserOwnsReposException(_('This user still owns %s '
                                                            'repositories and cannot be '
                                                            'removed. Switch owners or '
                                                            'remove those repositories') \
                                                            % user.repositories)
                         self.sa.delete(user)
                         self.sa.commit()
                     except:
                         log.error(traceback.format_exc())
                         self.sa.rollback()
                         raise
                 def reset_password_link(self, data):
                     from rhodecode.lib.celerylib import tasks, run_task
                     run_task(tasks.send_password_link, data['email'])
                 def reset_password(self, data):
                     from rhodecode.lib.celerylib import tasks, run_task
                     run_task(tasks.reset_user_password, data['email'])
                 def fill_data(self, auth_user, user_id=None, api_key=None):
                     """
                     Fetches auth_user by user_id,or api_key if present.
                     Fills auth_user attributes with those taken from database.
                     Additionally set's is_authenitated if lookup fails
                     present in database
                     :param auth_user: instance of user to set attributes
                     :param user_id: user id to fetch by
                     :param api_key: api key to fetch by
                     """
                     if user_id is None and api_key is None:
                         raise Exception('You need to pass user_id or api_key')
                     try:
                         if api_key:
                             dbuser = self.get_by_api_key(api_key)
                         else:
                             dbuser = self.get(user_id)
                         if dbuser is not None:
                             log.debug('filling %s data', dbuser)
                             for k, v in dbuser.get_dict().items():
                                 setattr(auth_user, k, v)
                     except:
                         log.error(traceback.format_exc())
                         auth_user.is_authenticated = False
                     return auth_user
                 def fill_perms(self, user):
                     """
                     Fills user permission attribute with permissions taken from database
                     works for permissions given for repositories, and for permissions that
                     are granted to groups
                     :param user: user instance to fill his perms
                     """
                     user.permissions['repositories'] = {}
                     user.permissions['global'] = set()
                     #======================================================================
                     # fetch default permissions
                     #======================================================================
                     default_user = self.get_by_username('default', cache=True)
                     default_perms = self.sa.query(RepoToPerm, Repository, Permission)\
                         .join((Repository, RepoToPerm.repository_id ==
                                Repository.repo_id))\
                         .join((Permission, RepoToPerm.permission_id ==
                                Permission.permission_id))\
                         .filter(RepoToPerm.user == default_user).all()
                     if user.is_admin:
                         #==================================================================
                         # #admin have all default rights set to admin
                         #==================================================================
                         user.permissions['global'].add('hg.admin')
                         for perm in default_perms:
                             p = 'repository.admin'
                             user.permissions['repositories'][perm.RepoToPerm.
                                                              repository.repo_name] = p
                     else:
                         #==================================================================
                         # set default permissions
                         #==================================================================
                         uid = user.user_id
                         #default global
                         default_global_perms = self.sa.query(UserToPerm)\
                             .filter(UserToPerm.user == default_user)
                         for perm in default_global_perms:
                             user.permissions['global'].add(perm.permission.permission_name)
                         #default for repositories
                         for perm in default_perms:
                             if perm.Repository.private and not (perm.Repository.user_id ==
                                                                 uid):
                                 #diself.sable defaults for private repos,
                                 p = 'repository.none'
                             elif perm.Repository.user_id == uid:
                                 #set admin if owner
                                 p = 'repository.admin'
                             else:
                                 p = perm.Permission.permission_name
                             user.permissions['repositories'][perm.RepoToPerm.
                                                              repository.repo_name] = p
                         #==================================================================
                         # overwrite default with user permissions if any
                         #==================================================================
                         #user global
                         user_perms = self.sa.query(UserToPerm)\
                                 .options(joinedload(UserToPerm.permission))\
                                 .filter(UserToPerm.user_id == uid).all()
                         for perm in user_perms:
                             user.permissions['global'].add(perm.permission.
                                                            permission_name)
                         #user repositories
                         user_repo_perms = self.sa.query(RepoToPerm, Permission,
                                                         Repository)\
                             .join((Repository, RepoToPerm.repository_id ==
                                    Repository.repo_id))\
                             .join((Permission, RepoToPerm.permission_id ==
                                    Permission.permission_id))\
                             .filter(RepoToPerm.user_id == uid).all()
                         for perm in user_repo_perms:
                             # set admin if owner
                             if perm.Repository.user_id == uid:
                                 p = 'repository.admin'
                             else:
                                 p = perm.Permission.permission_name
                             user.permissions['repositories'][perm.RepoToPerm.
                                                              repository.repo_name] = p
                         #==================================================================
                         # check if user is part of groups for this repository and fill in
                         # (or replace with higher) permissions
                         #==================================================================
                         #users group global
                         user_perms_from_users_groups = self.sa.query(UsersGroupToPerm)\
                             .options(joinedload(UsersGroupToPerm.permission))\
                             .join((UsersGroupMember, UsersGroupToPerm.users_group_id ==
                                    UsersGroupMember.users_group_id))\
                             .filter(UsersGroupMember.user_id == uid).all()
                         for perm in user_perms_from_users_groups:
                             user.permissions['global'].add(perm.permission.permission_name)
                         #users group repositories
                         user_repo_perms_from_users_groups = self.sa.query(
                                                             UsersGroupRepoToPerm,
                                                             Permission, Repository,)\
                             .join((Repository, UsersGroupRepoToPerm.repository_id ==
                                    Repository.repo_id))\
                             .join((Permission, UsersGroupRepoToPerm.permission_id ==
                                    Permission.permission_id))\
                             .join((UsersGroupMember, UsersGroupRepoToPerm.users_group_id ==
                                    UsersGroupMember.users_group_id))\
                             .filter(UsersGroupMember.user_id == uid).all()
                         for perm in user_repo_perms_from_users_groups:
                             p = perm.Permission.permission_name
                             cur_perm = user.permissions['repositories'][perm.
                                                                 UsersGroupRepoToPerm.
                                                                 repository.repo_name]
                             #overwrite permission only if it's greater than permission
                             # given from other sources
                             if PERM_WEIGHTS[p] > PERM_WEIGHTS[cur_perm]:
                                 user.permissions['repositories'][perm.UsersGroupRepoToPerm.
                                                                  repository.repo_name] = p
                     return user

rhodecode/templates/admin/repos_groups/repos_groups_add.html

0 +3 -3

             ## -*- coding: utf-8 -*-
             <%inherit file="/base/base.html"/>
             <%def name="title()">
                 ${_('Add repos group')} - ${c.rhodecode_name}
             </%def>
             <%def name="breadcrumbs_links()">
                 ${h.link_to(_('Admin'),h.url('admin_home'))}
                 &raquo;
                 ${h.link_to(_('Repos groups'),h.url('repos_groups'))}
                 &raquo;
                 ${_('add new repos group')}
             </%def>
             <%def name="page_nav()">
                 ${self.menu('admin')}
             </%def>
             <%def name="main()">
             <div class="box">
                 <!-- box / title -->
                 <div class="title">
                     ${self.breadcrumbs()}
                 </div>
                 <!-- end box / title -->
                 ${h.form(url('repos_groups'))}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                          <div class="field">
                             <div class="label">
-                                <label for="users_group_name">${_('Group name')}:</label>
+                                <label for="group_name">${_('Group name')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('group_name',class_='medium')}
                             </div>
                          </div>
                         <div class="field">
                             <div class="label label-textarea">
-                                <label for="description">${_('Description')}:</label>
+                                <label for="group_description">${_('Description')}:</label>
                             </div>
                             <div class="textarea text-area editor">
                                 ${h.textarea('group_description',cols=23,rows=5,class_="medium")}
                             </div>
                          </div>
                          <div class="field">
                              <div class="label">
-                                 <label for="repo_group">${_('Group parent')}:</label>
+                                 <label for="group_parent_id">${_('Group parent')}:</label>
                              </div>
                              <div class="input">
                                  ${h.select('group_parent_id','',c.repo_groups,class_="medium")}
                              </div>
                          </div>
                         <div class="buttons">
                           ${h.submit('save',_('save'),class_="ui-button")}
                         </div>
                     </div>
                 </div>
                 ${h.end_form()}
             </div>
             </%def>

rhodecode/templates/admin/repos_groups/repos_groups_edit.html

0 +3 -3

             ## -*- coding: utf-8 -*-
             <%inherit file="/base/base.html"/>
             <%def name="title()">
                 ${_('Edit repos group')} ${c.repos_group.name} - ${c.rhodecode_name}
             </%def>
             <%def name="breadcrumbs_links()">
                 ${h.link_to(_('Admin'),h.url('admin_home'))}
                 &raquo;
                 ${h.link_to(_('Repos groups'),h.url('repos_groups'))}
                 &raquo;
                 ${_('edit repos group')} "${c.repos_group.name}"
             </%def>
             <%def name="page_nav()">
                 ${self.menu('admin')}
             </%def>
             <%def name="main()">
             <div class="box">
                 <!-- box / title -->
                 <div class="title">
                     ${self.breadcrumbs()}
                 </div>
                 <!-- end box / title -->
                 ${h.form(url('repos_group',id=c.repos_group.group_id),method='put')}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                          <div class="field">
                             <div class="label">
-                                <label for="users_group_name">${_('Group name')}:</label>
+                                <label for="group_name">${_('Group name')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('group_name',class_='medium')}
                             </div>
                          </div>
             	        <div class="field">
             	            <div class="label label-textarea">
-            	                <label for="description">${_('Description')}:</label>
+            	                <label for="group_description">${_('Description')}:</label>
             	            </div>
             	            <div class="textarea text-area editor">
             	                ${h.textarea('group_description',cols=23,rows=5,class_="medium")}
             	            </div>
             	         </div>
             	         <div class="field">
             	             <div class="label">
-            	                 <label for="repo_group">${_('Group parent')}:</label>
+            	                 <label for="group_parent_id">${_('Group parent')}:</label>
             	             </div>
             	             <div class="input">
             	                 ${h.select('group_parent_id','',c.repo_groups,class_="medium")}
             	             </div>
             	         </div>
                         <div class="buttons">
                           ${h.submit('save',_('save'),class_="ui-button")}
                         </div>
                     </div>
                 </div>
                 ${h.end_form()}
             </div>
             </%def>

rhodecode/templates/admin/settings/settings.html

0 +6 -6

             ## -*- coding: utf-8 -*-
             <%inherit file="/base/base.html"/>
             <%def name="title()">
                 ${_('Settings administration')} - ${c.rhodecode_name}
             </%def>
             <%def name="breadcrumbs_links()">
                 ${h.link_to(_('Admin'),h.url('admin_home'))} &raquo; ${_('Settings')}
             </%def>
             <%def name="page_nav()">
             	${self.menu('admin')}
             </%def>
             <%def name="main()">
             <div class="box">
                 <!-- box / title -->
                 <div class="title">
                     ${self.breadcrumbs()}
                 </div>
                 <!-- end box / title -->
                 <h3>${_('Remap and rescan repositories')}</h3>
                 ${h.form(url('admin_setting', setting_id='mapping'),method='put')}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
             			<div class="field">
             		        <div class="label label-checkbox">
             		            <label for="destroy">${_('rescan option')}:</label>
             		        </div>
             		        <div class="checkboxes">
             		            <div class="checkbox">
             		                ${h.checkbox('destroy',True)}
-            		                <label for="checkbox-1">
+            		                <label for="destroy">
             		                <span class="tooltip" title="${h.tooltip(_('In case a repository was deleted from filesystem and there are leftovers in the database check this option to scan obsolete data in database and remove it.'))}">
             		                ${_('destroy old data')}</span> </label>
             		            </div>
             		        </div>
             			</div>
                         <div class="buttons">
                         ${h.submit('rescan',_('Rescan repositories'),class_="ui-button")}
                         </div>
                     </div>
                 </div>
                 ${h.end_form()}
                 <h3>${_('Whoosh indexing')}</h3>
                 ${h.form(url('admin_setting', setting_id='whoosh'),method='put')}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                         <div class="field">
                             <div class="label label-checkbox">
-                                <label for="destroy">${_('index build option')}:</label>
+                                <label>${_('index build option')}:</label>
                             </div>
                             <div class="checkboxes">
                                 <div class="checkbox">
                                     ${h.checkbox('full_index',True)}
-                                    <label for="checkbox-1">${_('build from scratch')}</label>
+                                    <label for="full_index">${_('build from scratch')}</label>
                                 </div>
                             </div>
                         </div>
                         <div class="buttons">
                         ${h.submit('reindex',_('Reindex'),class_="ui-button")}
                         </div>
                     </div>
                 </div>
                 ${h.end_form()}
                 <h3>${_('Global application settings')}</h3>
                 ${h.form(url('admin_setting', setting_id='global'),method='put')}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                          <div class="field">
                             <div class="label">
                                 <label for="rhodecode_title">${_('Application name')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('rhodecode_title',size=30)}
                             </div>
                          </div>
                         <div class="field">
                             <div class="label">
                                 <label for="rhodecode_realm">${_('Realm text')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('rhodecode_realm',size=30)}
                             </div>
                         </div>
                         <div class="field">
                             <div class="label">
-                                <label for="ga_code">${_('GA code')}:</label>
+                                <label for="rhodecode_ga_code">${_('GA code')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('rhodecode_ga_code',size=30)}
                             </div>
                         </div>
                         <div class="buttons">
                             ${h.submit('save',_('Save settings'),class_="ui-button")}
                             ${h.reset('reset',_('Reset'),class_="ui-button")}
                        </div>
                     </div>
                 </div>
                 ${h.end_form()}
                 <h3>${_('Mercurial settings')}</h3>
                 ${h.form(url('admin_setting', setting_id='mercurial'),method='put')}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                          <div class="field">
                             <div class="label label-checkbox">
-                                <label for="web_push_ssl">${_('Web')}:</label>
+                                <label>${_('Web')}:</label>
                             </div>
                             <div class="checkboxes">
             					<div class="checkbox">
             						${h.checkbox('web_push_ssl','true')}
             						<label for="web_push_ssl">${_('require ssl for pushing')}</label>
             					</div>
             				</div>
                          </div>
                          <div class="field">
                             <div class="label label-checkbox">
-                                <label for="web_push_ssl">${_('Hooks')}:</label>
+                                <label>${_('Hooks')}:</label>
                             </div>
                             <div class="input">
                                 ${h.link_to(_('advanced setup'),url('admin_edit_setting',setting_id='hooks'))}
                             </div>
                             <div class="checkboxes">
             					<div class="checkbox">
             						${h.checkbox('hooks_changegroup_update','True')}
             						<label for="hooks_changegroup_update">${_('Update repository after push (hg update)')}</label>
             					</div>
             					<div class="checkbox">
             						${h.checkbox('hooks_changegroup_repo_size','True')}
             						<label for="hooks_changegroup_repo_size">${_('Show repository size after push')}</label>
             					</div>
                                 <div class="checkbox">
                                     ${h.checkbox('hooks_pretxnchangegroup_push_logger','True')}
                                     <label for="hooks_pretxnchangegroup_push_logger">${_('Log user push commands')}</label>
                                 </div>
                                 <div class="checkbox">
                                     ${h.checkbox('hooks_preoutgoing_pull_logger','True')}
                                     <label for="hooks_preoutgoing_pull_logger">${_('Log user pull commands')}</label>
                                 </div>
             				</div>
                          </div>
                         <div class="field">
                             <div class="label">
                                 <label for="paths_root_path">${_('Repositories location')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('paths_root_path',size=30,readonly="readonly")}
             					<span id="path_unlock" class="tooltip"
             						title="${h.tooltip(_('This a crucial application setting. If you are really sure you need to change this, you must restart application in order to make this setting take effect. Click this label to unlock.'))}">
             		                ${_('unlock')}</span>
                             </div>
                         </div>
                         <div class="buttons">
                             ${h.submit('save',_('Save settings'),class_="ui-button")}
                             ${h.reset('reset',_('Reset'),class_="ui-button")}
                        </div>
                     </div>
                 </div>
                 ${h.end_form()}
                 <script type="text/javascript">
                     YAHOO.util.Event.onDOMReady(function(){
                         YAHOO.util.Event.addListener('path_unlock','click',function(){
                             YAHOO.util.Dom.get('paths_root_path').removeAttribute('readonly');
                         });
                     });
                 </script>
             </div>
             </%def>

rhodecode/templates/admin/users/user_add.html

0 +10 -1

             ## -*- coding: utf-8 -*-
             <%inherit file="/base/base.html"/>
             <%def name="title()">
                 ${_('Add user')} - ${c.rhodecode_name}
             </%def>
             <%def name="breadcrumbs_links()">
                 ${h.link_to(_('Admin'),h.url('admin_home'))}
                 &raquo;
                 ${h.link_to(_('Users'),h.url('users'))}
                 &raquo;
                 ${_('add new user')}
             </%def>
             <%def name="page_nav()">
             	${self.menu('admin')}
             </%def>
             <%def name="main()">
             <div class="box">
                 <!-- box / title -->
                 <div class="title">
                     ${self.breadcrumbs()}
                 </div>
                 <!-- end box / title -->
                 ${h.form(url('users'))}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                          <div class="field">
                             <div class="label">
                                 <label for="username">${_('Username')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('username',class_='small')}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label">
                                 <label for="password">${_('Password')}:</label>
                             </div>
                             <div class="input">
                                 ${h.password('password',class_='small')}
                             </div>
                          </div>
+                         <div class="field">
+                            <div class="label">
+                                <label for="password_confirmation">${_('Password confirmation')}:</label>
+                            </div>
+                            <div class="input">
+                                ${h.password('password_confirmation',class_="small",autocomplete="off")}
+                            </div>
+                         </div>
                          <div class="field">
                             <div class="label">
                                 <label for="name">${_('First Name')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('name',class_='small')}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label">
                                 <label for="lastname">${_('Last Name')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('lastname',class_='small')}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label">
                                 <label for="email">${_('Email')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('email',class_='small')}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label label-checkbox">
                                 <label for="active">${_('Active')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${h.checkbox('active',value=True)}
                             </div>
                          </div>
                         <div class="buttons">
                           ${h.submit('save',_('save'),class_="ui-button")}
                         </div>
                 	</div>
                 </div>
                 ${h.end_form()}
             </div>
             </%def>

rhodecode/templates/admin/users/user_edit.html

0 +11 -2

             ## -*- coding: utf-8 -*-
             <%inherit file="/base/base.html"/>
             <%def name="title()">
                 ${_('Edit user')} ${c.user.username} - ${c.rhodecode_name}
             </%def>
             <%def name="breadcrumbs_links()">
                 ${h.link_to(_('Admin'),h.url('admin_home'))}
                 &raquo;
                 ${h.link_to(_('Users'),h.url('users'))}
                 &raquo;
                 ${_('edit')} "${c.user.username}"
             </%def>
             <%def name="page_nav()">
             	${self.menu('admin')}
             </%def>
             <%def name="main()">
             <div class="box box-left">
                 <!-- box / title -->
                 <div class="title">
                     ${self.breadcrumbs()}
                 </div>
                 <!-- end box / title -->
                 ${h.form(url('update_user', id=c.user.user_id),method='put')}
                 <div class="form">
                     <div class="field">
                        <div class="gravatar_box">
                            <div class="gravatar"><img alt="gravatar" src="${h.gravatar_url(c.user.email)}"/></div>
                            <p>
                            <strong>${_('Change your avatar at')} <a href="http://gravatar.com">gravatar.com</a></strong><br/>
                            ${_('Using')} ${c.user.email}
                            </p>
                        </div>
                     </div>
                     <div class="field">
                         <div class="label">
                             <label>${_('API key')}</label> ${c.user.api_key}
                         </div>
                     </div>
                     <div class="fields">
                          <div class="field">
                             <div class="label">
                                 <label for="username">${_('Username')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('username',class_='medium')}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label">
                                 <label for="ldap_dn">${_('LDAP DN')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('ldap_dn',class_='medium')}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label">
                                 <label for="new_password">${_('New password')}:</label>
                             </div>
                             <div class="input">
                                 ${h.password('new_password',class_='medium',autocomplete="off")}
                             </div>
                          </div>
+                         <div class="field">
+                            <div class="label">
+                                <label for="password_confirmation">${_('New password confirmation')}:</label>
+                            </div>
+                            <div class="input">
+                                ${h.password('password_confirmation',class_="medium",autocomplete="off")}
+                            </div>
+                         </div>
                          <div class="field">
                             <div class="label">
                                 <label for="name">${_('First Name')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('name',class_='medium')}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label">
                                 <label for="lastname">${_('Last Name')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('lastname',class_='medium')}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label">
                                 <label for="email">${_('Email')}:</label>
                             </div>
                             <div class="input">
                                 ${h.text('email',class_='medium')}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label label-checkbox">
                                 <label for="active">${_('Active')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${h.checkbox('active',value=True)}
                             </div>
                          </div>
                          <div class="field">
                             <div class="label label-checkbox">
                                 <label for="admin">${_('Admin')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${h.checkbox('admin',value=True)}
                             </div>
                          </div>
                         <div class="buttons">
                           ${h.submit('save',_('Save'),class_="ui-button")}
                           ${h.reset('reset',_('Reset'),class_="ui-button")}
                         </div>
                 	</div>
                 </div>
                 ${h.end_form()}
             </div>
             <div class="box box-right">
                 <!-- box / title -->
                 <div class="title">
                     <h5>${_('Permissions')}</h5>
                 </div>
                 ${h.form(url('user_perm', id=c.user.user_id),method='put')}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                          <div class="field">
                             <div class="label label-checkbox">
-                                <label for="">${_('Create repositories')}:</label>
+                                <label for="create_repo_perm">${_('Create repositories')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${h.checkbox('create_repo_perm',value=True)}
                             </div>
                          </div>
                         <div class="buttons">
                           ${h.submit('save',_('Save'),class_="ui-button")}
                           ${h.reset('reset',_('Reset'),class_="ui-button")}
                         </div>
                     </div>
                 </div>
                 ${h.end_form()}
             </div>
             </%def>

rhodecode/templates/admin/users/user_edit_my_account.html

0 +13 -2

             ## -*- coding: utf-8 -*-
             <%inherit file="/base/base.html"/>
             <%def name="title()">
                 ${_('My account')} ${c.rhodecode_user.username} - ${c.rhodecode_name}
             </%def>
             <%def name="breadcrumbs_links()">
                 ${_('My Account')}
             </%def>
             <%def name="page_nav()">
             	${self.menu('admin')}
             </%def>
             <%def name="main()">
             <div class="box box-left">
                 <!-- box / title -->
                 <div class="title">
                     ${self.breadcrumbs()}
                 </div>
                 <!-- end box / title -->
                 <div>
                 ${h.form(url('admin_settings_my_account_update'),method='put')}
             	    <div class="form">
                          <div class="field">
                             <div class="gravatar_box">
                                 <div class="gravatar"><img alt="gravatar" src="${h.gravatar_url(c.user.email)}"/></div>
                                 <p>
                                 <strong>${_('Change your avatar at')} <a href="http://gravatar.com">gravatar.com</a></strong><br/>
                                 ${_('Using')} ${c.user.email}
                                 </p>
                             </div>
                          </div>
             	        <div class="field">
             	            <div class="label">
             	                <label>${_('API key')}</label> ${c.user.api_key}
             	            </div>
             	        </div>
             	        <div class="fields">
             	             <div class="field">
             	                <div class="label">
             	                    <label for="username">${_('Username')}:</label>
             	                </div>
             	                <div class="input">
             	                    ${h.text('username',class_="medium")}
             	                </div>
             	             </div>
             	             <div class="field">
             	                <div class="label">
             	                    <label for="new_password">${_('New password')}:</label>
             	                </div>
             	                <div class="input">
             	                    ${h.password('new_password',class_="medium",autocomplete="off")}
             	                </div>
             	             </div>
+                             <div class="field">
+                                <div class="label">
+                                    <label for="password_confirmation">${_('New password confirmation')}:</label>
+                                </div>
+                                <div class="input">
+                                    ${h.password('password_confirmation',class_="medium",autocomplete="off")}
+                                </div>
+                             </div>
             	             <div class="field">
             	                <div class="label">
             	                    <label for="name">${_('First Name')}:</label>
             	                </div>
             	                <div class="input">
             	                    ${h.text('name',class_="medium")}
             	                </div>
             	             </div>
             	             <div class="field">
             	                <div class="label">
             	                    <label for="lastname">${_('Last Name')}:</label>
             	                </div>
             	                <div class="input">
             	                    ${h.text('lastname',class_="medium")}
             	                </div>
             	             </div>
             	             <div class="field">
             	                <div class="label">
             	                    <label for="email">${_('Email')}:</label>
             	                </div>
             	                <div class="input">
             	                    ${h.text('email',class_="medium")}
             	                </div>
             	             </div>
             	            <div class="buttons">
             	              ${h.submit('save',_('Save'),class_="ui-button")}
             	              ${h.reset('reset',_('Reset'),class_="ui-button")}
             	            </div>
             	    	</div>
             	    </div>
                 ${h.end_form()}
                 </div>
             </div>
             <div class="box box-right">
                 <!-- box / title -->
                 <div class="title">
                     <h5>${_('My repositories')}
                     <input class="top-right-rounded-corner top-left-rounded-corner bottom-left-rounded-corner bottom-right-rounded-corner" id="q_filter" size="15" type="text" name="filter" value="${_('quick filter...')}"/>
                     </h5>
                      %if h.HasPermissionAny('hg.admin','hg.create.repository')():
                      <ul class="links">
                        <li>
                          <span>${h.link_to(_('ADD REPOSITORY'),h.url('admin_settings_create_repository'))}</span>
                        </li>
                      </ul>
                      %endif
                 </div>
                 <!-- end box / title -->
                 <div class="table">
             	    <table>
             	    <thead>
                         <tr>
                         <th class="left">${_('Name')}</th>
                         <th class="left">${_('revision')}</th>
                         <th colspan="2" class="left">${_('action')}</th>
             	    </thead>
             	     <tbody>
             	     %if c.user_repos:
             		     %for repo in c.user_repos:
             		        <tr>
             		            <td>
                                  %if repo['dbrepo']['repo_type'] =='hg':
                                    <img class="icon" title="${_('Mercurial repository')}" alt="${_('Mercurial repository')}" src="${h.url("/images/icons/hgicon.png")}"/>
                                  %elif repo['dbrepo']['repo_type'] =='git':
                                    <img class="icon" title="${_('Git repository')}" alt="${_('Git repository')}" src="${h.url("/images/icons/giticon.png")}"/>
                                  %else:
                                  %endif
             		             %if repo['dbrepo']['private']:
             		                <img class="icon" alt="${_('private')}" src="${h.url("/images/icons/lock.png")}"/>
             		             %else:
             		                <img class="icon" alt="${_('public')}" src="${h.url("/images/icons/lock_open.png")}"/>
             		             %endif
             		            ${h.link_to(repo['name'], h.url('summary_home',repo_name=repo['name']),class_="repo_name")}
             		            %if repo['dbrepo_fork']:
             		            	<a href="${h.url('summary_home',repo_name=repo['dbrepo_fork']['repo_name'])}">
             		            	<img class="icon" alt="${_('public')}"
             		            	title="${_('Fork of')} ${repo['dbrepo_fork']['repo_name']}"
             		            	src="${h.url('/images/icons/arrow_divide.png')}"/></a>
             		            %endif
             		            </td>
             		            <td><span class="tooltip" title="${repo['last_change']}">${("r%s:%s") % (repo['rev'],h.short_id(repo['tip']))}</span></td>
             		            <td><a href="${h.url('repo_settings_home',repo_name=repo['name'])}" title="${_('edit')}"><img class="icon" alt="${_('private')}" src="${h.url('/images/icons/application_form_edit.png')}"/></a></td>
             		            <td>
             	                  ${h.form(url('repo_settings_delete', repo_name=repo['name']),method='delete')}
             	                    ${h.submit('remove_%s' % repo['name'],'',class_="delete_icon action_button",onclick="return confirm('Confirm to delete this repository');")}
             	                  ${h.end_form()}
             		            </td>
             		        </tr>
             		     %endfor
             	     %else:
+                        <div style="padding:5px 0px 10px 0px;">
             	     	${_('No repositories yet')}
             	     	%if h.HasPermissionAny('hg.admin','hg.create.repository')():
-            	     		${h.link_to(_('create one now'),h.url('admin_settings_create_repository'))}
+            	     		${h.link_to(_('create one now'),h.url('admin_settings_create_repository'),class_="ui-button-small")}
             	     	%endif
+                        </div>
             	     %endif
             	     </tbody>
             	     </table>
                 </div>
             </div>
                 <script type="text/javascript">
                  var D = YAHOO.util.Dom;
                  var E = YAHOO.util.Event;
                  var S = YAHOO.util.Selector;
                  var q_filter = D.get('q_filter');
                  var F = YAHOO.namespace('q_filter');
                  E.on(q_filter,'click',function(){
                     q_filter.value = '';
                  });
                  F.filterTimeout = null;
                  F.updateFilter  = function() {
                     // Reset timeout
                     F.filterTimeout = null;
                     var obsolete = [];
                     var nodes = S.query('div.table tr td a.repo_name');
                     var req = q_filter.value.toLowerCase();
                     for (n in nodes){
                         D.setStyle(nodes[n].parentNode.parentNode,'display','')
                     }
                     if (req){
                         for (n in nodes){
                             if (nodes[n].innerHTML.toLowerCase().indexOf(req) == -1) {
                                 obsolete.push(nodes[n]);
                             }
                         }
                         if(obsolete){
                             for (n in obsolete){
                                 D.setStyle(obsolete[n].parentNode.parentNode,'display','none');
                             }
                         }
                     }
                  }
                  E.on(q_filter,'keyup',function(e){
                      clearTimeout(F.filterTimeout);
                      F.filterTimeout = setTimeout(F.updateFilter,600);
                  });
                 </script>
             </%def>

rhodecode/templates/admin/users_groups/users_group_edit.html

0 +1 -1

             ## -*- coding: utf-8 -*-
             <%inherit file="/base/base.html"/>
             <%def name="title()">
                 ${_('Edit users group')} ${c.users_group.users_group_name} - ${c.rhodecode_name}
             </%def>
             <%def name="breadcrumbs_links()">
                 ${h.link_to(_('Admin'),h.url('admin_home'))}
                 &raquo;
                 ${h.link_to(_('UsersGroups'),h.url('users_groups'))}
                 &raquo;
                 ${_('edit')} "${c.users_group.users_group_name}"
             </%def>
             <%def name="page_nav()">
                 ${self.menu('admin')}
             </%def>
             <%def name="main()">
             <div class="box box-left">
                 <!-- box / title -->
                 <div class="title">
                     ${self.breadcrumbs()}
                 </div>
                 <!-- end box / title -->
                 ${h.form(url('users_group', id=c.users_group.users_group_id),method='put', id='edit_users_group')}
                 <div class="form">
                     <!-- fields -->
             	        <div class="fields">
             	             <div class="field">
             	                <div class="label">
             	                    <label for="users_group_name">${_('Group name')}:</label>
             	                </div>
             	                <div class="input">
             	                    ${h.text('users_group_name',class_='small')}
             	                </div>
             	             </div>
             	             <div class="field">
             	                <div class="label label-checkbox">
             	                    <label for="users_group_active">${_('Active')}:</label>
             	                </div>
             	                <div class="checkboxes">
             	                    ${h.checkbox('users_group_active',value=True)}
             	                </div>
             	             </div>
             	            <div class="field">
                                 <div class="label">
                                     <label for="users_group_active">${_('Members')}:</label>
                                 </div>
                                 <div class="select">
             	                    <table>
             	                            <tr>
             	                                <td>
             	                                    <div>
             	                                        <div style="float:left">
             	                                            <div class="text" style="padding: 0px 0px 6px;">${_('Choosen group members')}</div>
             	                                            ${h.select('users_group_members',[x[0] for x in c.group_members],c.group_members,multiple=True,size=8,style="min-width:210px")}
             	                                           <div  id="remove_all_elements" style="cursor:pointer;text-align:center">
             	                                               ${_('Remove all elements')}
             	                                               <img alt="remove" style="vertical-align:text-bottom" src="${h.url("/images/icons/arrow_right.png")}"/>
             	                                           </div>
             	                                        </div>
             	                                        <div style="float:left;width:20px;padding-top:50px">
             	                                            <img alt="add" id="add_element"
             	                                                style="padding:2px;cursor:pointer"
             	                                                src="${h.url("/images/icons/arrow_left.png")}"/>
             	                                            <br />
             	                                            <img alt="remove" id="remove_element"
             	                                                style="padding:2px;cursor:pointer"
             	                                                src="${h.url("/images/icons/arrow_right.png")}"/>
             	                                        </div>
             	                                        <div style="float:left">
             	                                             <div class="text" style="padding: 0px 0px 6px;">${_('Available members')}</div>
             	                                             ${h.select('available_members',[],c.available_members,multiple=True,size=8,style="min-width:210px")}
             	                                             <div id="add_all_elements" style="cursor:pointer;text-align:center">
             	                                                   <img alt="add" style="vertical-align:text-bottom" src="${h.url("/images/icons/arrow_left.png")}"/>
             	                                                    ${_('Add all elements')}
             	                                             </div>
             	                                        </div>
             	                                    </div>
             	                                </td>
             	                            </tr>
             	                    </table>
                                 </div>
                             </div>
                             <div class="buttons">
                               ${h.submit('save',_('save'),class_="ui-button")}
                             </div>
                         </div>
                 </div>
             ${h.end_form()}
             </div>
             <script type="text/javascript">
                 YAHOO.util.Event.onDOMReady(function(){
                         var D = YAHOO.util.Dom;
                         var E = YAHOO.util.Event;
                         //definition of containers ID's
                         var available_container = 'available_members';
                         var selected_container = 'users_group_members';
                         //form containing containers id
                         var form_id = 'edit_users_group';
                         //temp container for selected storage.
                         var cache = new Array();
                         var av_cache = new Array();
                         var c =  D.get(selected_container);
                         var ac = D.get(available_container);
                         //get only selected options for further fullfilment
                         for(var i = 0;node =c.options[i];i++){
                             if(node.selected){
                                 //push selected to my temp storage left overs :)
                                 cache.push(node);
                             }
                         }
                         //clear 'selected' select
                         //c.options.length = 0;
                         //fill it with remembered options
                         //for(var i = 0;node = cache[i];i++){
                         //   c.options[i]=new Option(node.text, node.value, false, false);
                         //}
                         //get all available options to cache
                         for(var i = 0;node =ac.options[i];i++){
                                 //push selected to my temp storage left overs :)
                                 av_cache.push(node);
                         }
                         //fill available only with those not in choosen
                         ac.options.length=0;
                         tmp_cache = new Array();
                         for(var i = 0;node = av_cache[i];i++){
                         	var add = true;
             	            for(var i2 = 0;node_2 = cache[i2];i2++){
             	                if(node.value == node_2.value){
             	                	add=false;
             	                	break;
             	                }
             	            }
             	            if(add){
             	            	tmp_cache.push(new Option(node.text, node.value, false, false));
             	            }
                         }
                         for(var i = 0;node = tmp_cache[i];i++){
                             ac.options[i] = node;
                         }
                         function prompts_action_callback(e){
                             var choosen = D.get(selected_container);
                             var available = D.get(available_container);
                             //get checked and unchecked options from field
                             function get_checked(from_field){
                                 //temp container for storage.
                                 var sel_cache = new Array();
                                 var oth_cache = new Array();
                                 for(var i = 0;node = from_field.options[i];i++){
                                     if(node.selected){
                                         //push selected fields :)
                                         sel_cache.push(node);
                                     }
                                     else{
                                     	oth_cache.push(node)
                                     }
                                 }
                                 return [sel_cache,oth_cache]
                             }
                             //fill the field with given options
                             function fill_with(field,options){
                             	//clear firtst
                             	field.options.length=0;
                                 for(var i = 0;node = options[i];i++){
                                         field.options[i]=new Option(node.text, node.value,
                                                 false, false);
                                 }
                             }
                             //adds to current field
                             function add_to(field,options){
                                 for(var i = 0;node = options[i];i++){
                                         field.appendChild(new Option(node.text, node.value,
                                                 false, false));
                                 }
                             }
                             // add action
                             if (this.id=='add_element'){
                                 var c = get_checked(available);
                                 add_to(choosen,c[0]);
                                 fill_with(available,c[1]);
                             }
                             // remove action
                             if (this.id=='remove_element'){
                                 var c = get_checked(choosen);
                                 add_to(available,c[0]);
                                 fill_with(choosen,c[1]);
                             }
                             // add all elements
                             if(this.id=='add_all_elements'){
                                 for(var i=0; node = available.options[i];i++){
                                         choosen.appendChild(new Option(node.text,
                                                 node.value, false, false));
                                 }
                                 available.options.length = 0;
                             }
                             //remove all elements
                             if(this.id=='remove_all_elements'){
                                 for(var i=0; node = choosen.options[i];i++){
                                     available.appendChild(new Option(node.text,
                                             node.value, false, false));
                                 }
                                 choosen.options.length = 0;
                             }
                         }
                         E.addListener(['add_element','remove_element',
                                        'add_all_elements','remove_all_elements'],'click',
                                        prompts_action_callback)
                         E.addListener(form_id,'submit',function(){
                             var choosen = D.get(selected_container);
                             for (var i = 0; i < choosen.options.length; i++) {
                                 choosen.options[i].selected = 'selected';
                             }
                         })
                     });
             </script>
             <div class="box box-right">
                 <!-- box / title -->
                 <div class="title">
                     <h5>${_('Permissions')}</h5>
                 </div>
                 ${h.form(url('users_group_perm', id=c.users_group.users_group_id), method='put')}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                          <div class="field">
                             <div class="label label-checkbox">
-                                <label for="">${_('Create repositories')}:</label>
+                                <label for="create_repo_perm">${_('Create repositories')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${h.checkbox('create_repo_perm',value=True)}
                             </div>
                          </div>
                         <div class="buttons">
                           ${h.submit('save',_('Save'),class_="ui-button")}
                           ${h.reset('reset',_('Reset'),class_="ui-button")}
                         </div>
                     </div>
                 </div>
                 ${h.end_form()}
             </div>
             </%def>

rhodecode/templates/settings/repo_settings.html

0 +8 -1

             ## -*- coding: utf-8 -*-
             <%inherit file="/base/base.html"/>
             <%def name="title()">
                 ${c.repo_name} ${_('Settings')} - ${c.rhodecode_name}
             </%def>
             <%def name="breadcrumbs_links()">
                 ${h.link_to(u'Home',h.url('/'))}
                 &raquo;
                 ${h.link_to(c.repo_info.repo_name,h.url('summary_home',repo_name=c.repo_info.repo_name))}
                 &raquo;
                 ${_('Settings')}
             </%def>
             <%def name="page_nav()">
                 ${self.menu('settings')}
             </%def>
             <%def name="main()">
             <div class="box">
                 <!-- box / title -->
                 <div class="title">
                     ${self.breadcrumbs()}
                 </div>
                 ${h.form(url('repo_settings_update', repo_name=c.repo_info.repo_name),method='put')}
                 <div class="form">
                     <!-- fields -->
                     <div class="fields">
                         <div class="field">
                             <div class="label">
                                 <label for="repo_name">${_('Name')}:</label>
                             </div>
                             <div class="input input-medium">
                                 ${h.text('repo_name',class_="small")}
                             </div>
                          </div>
+                        <div class="field">
+                            <div class="label">
+                                <label for="repo_group">${_('Repository group')}:</label>
+                            </div>
+                            <div class="input">
+                                ${h.select('repo_group','',c.repo_groups,class_="medium")}
+                            </div>
+                        </div>
                         <div class="field">
                             <div class="label label-textarea">
                                 <label for="description">${_('Description')}:</label>
                             </div>
                             <div class="textarea text-area editor">
                                 ${h.textarea('description',cols=23,rows=5)}
                             </div>
                         </div>
                         <div class="field">
                             <div class="label label-checkbox">
                                 <label for="private">${_('Private')}:</label>
                             </div>
                             <div class="checkboxes">
                                 ${h.checkbox('private',value="True")}
                             </div>
                         </div>
                          <div class="field">
                             <div class="label">
                                 <label for="">${_('Permissions')}:</label>
                             </div>
                             <div class="input">
                                 <%include file="../admin/repos/repo_edit_perms.html"/>
                             </div>
                         <div class="buttons">
                           ${h.submit('save','Save',class_="ui-button")}
                           ${h.reset('reset','Reset',class_="ui-button")}
                         </div>
                     </div>
                 </div>
                 ${h.end_form()}
             </div>
             </div>
             </%def>

rhodecode/tests/__init__.py

0 0 -2

             """Pylons application test package
             This package assumes the Pylons environment is already loaded, such as
             when this script is imported from the `nosetests --with-pylons=test.ini`
             command.
             This module initializes the application via ``websetup`` (`paster
             setup-app`) and provides the base testing objects.
             """
             import os
             from os.path import join as jn
             from unittest import TestCase
             from paste.deploy import loadapp
             from paste.script.appinstall import SetupCommand
             from pylons import config, url
             from routes.util import URLGenerator
             from webtest import TestApp
             from rhodecode.model import meta
             import logging
             log = logging.getLogger(__name__)
             import pylons.test
             __all__ = ['environ', 'url', 'TestController', 'TESTS_TMP_PATH', 'HG_REPO',
                        'GIT_REPO', 'NEW_HG_REPO', 'NEW_GIT_REPO', 'HG_FORK', 'GIT_FORK',
                        'TEST_USER_ADMIN_LOGIN', 'TEST_USER_ADMIN_PASS' ]
             # Invoke websetup with the current config file
             #SetupCommand('setup-app').run([config_file])
             ##RUNNING DESIRED TESTS
             # nosetests -x rhodecode.tests.functional.test_admin_settings:TestSettingsController.test_my_account
             # nosetests --pdb --pdb-failures
             environ = {}
             #SOME GLOBALS FOR TESTS
             from tempfile import _RandomNameSequence
             TESTS_TMP_PATH = jn('/', 'tmp', 'rc_test_%s' % _RandomNameSequence().next())
             TEST_USER_ADMIN_LOGIN = 'test_admin'
             TEST_USER_ADMIN_PASS = 'test12'
             HG_REPO = 'vcs_test_hg'
             GIT_REPO = 'vcs_test_git'
             NEW_HG_REPO = 'vcs_test_hg_new'
             NEW_GIT_REPO = 'vcs_test_git_new'
             HG_FORK = 'vcs_test_hg_fork'
             GIT_FORK = 'vcs_test_git_fork'
             class TestController(TestCase):
                 def __init__(self, *args, **kwargs):
                     wsgiapp = pylons.test.pylonsapp
                     config = wsgiapp.config
                     self.app = TestApp(wsgiapp)
                     url._push_object(URLGenerator(config['routes.map'], environ))
                     self.sa = meta.Session
                     self.index_location = config['app_conf']['index_dir']
                     TestCase.__init__(self, *args, **kwargs)
                 def log_user(self, username=TEST_USER_ADMIN_LOGIN,
                              password=TEST_USER_ADMIN_PASS):
                     response = self.app.post(url(controller='login', action='index'),
                                              {'username':username,
                                               'password':password})
                     if 'invalid user name' in response.body:
                         self.fail('could not login using %s %s' % (username, password))
                     self.assertEqual(response.status, '302 Found')
                     self.assertEqual(response.session['rhodecode_user'].username, username)
                     return response.follow()
                 def checkSessionFlash(self, response, msg):
                     self.assertTrue('flash' in response.session)
                     self.assertTrue(msg in response.session['flash'][0][1])

rhodecode/tests/functional/test_admin_settings.py

0 +4 0

             # -*- coding: utf-8 -*-
             from rhodecode.lib.auth import get_crypt_password, check_password
             from rhodecode.model.db import User, RhodeCodeSettings
             from rhodecode.tests import *
             class TestAdminSettingsController(TestController):
                 def test_index(self):
                     response = self.app.get(url('admin_settings'))
                     # Test response...
                 def test_index_as_xml(self):
                     response = self.app.get(url('formatted_admin_settings', format='xml'))
                 def test_create(self):
                     response = self.app.post(url('admin_settings'))
                 def test_new(self):
                     response = self.app.get(url('admin_new_setting'))
                 def test_new_as_xml(self):
                     response = self.app.get(url('formatted_admin_new_setting', format='xml'))
                 def test_update(self):
                     response = self.app.put(url('admin_setting', setting_id=1))
                 def test_update_browser_fakeout(self):
                     response = self.app.post(url('admin_setting', setting_id=1), params=dict(_method='put'))
                 def test_delete(self):
                     response = self.app.delete(url('admin_setting', setting_id=1))
                 def test_delete_browser_fakeout(self):
                     response = self.app.post(url('admin_setting', setting_id=1), params=dict(_method='delete'))
                 def test_show(self):
                     response = self.app.get(url('admin_setting', setting_id=1))
                 def test_show_as_xml(self):
                     response = self.app.get(url('formatted_admin_setting', setting_id=1, format='xml'))
                 def test_edit(self):
                     response = self.app.get(url('admin_edit_setting', setting_id=1))
                 def test_edit_as_xml(self):
                     response = self.app.get(url('formatted_admin_edit_setting',
                                                 setting_id=1, format='xml'))
                 def test_ga_code_active(self):
                     self.log_user()
                     old_title = 'RhodeCode'
                     old_realm = 'RhodeCode authentication'
                     new_ga_code = 'ga-test-123456789'
                     response = self.app.post(url('admin_setting', setting_id='global'),
                                                  params=dict(
                                                              _method='put',
                                                              rhodecode_title=old_title,
                                                              rhodecode_realm=old_realm,
                                                              rhodecode_ga_code=new_ga_code
                                                              ))
                     self.checkSessionFlash(response, 'Updated application settings')
                     self.assertEqual(RhodeCodeSettings
                                      .get_app_settings()['rhodecode_ga_code'], new_ga_code)
                     response = response.follow()
                     self.assertTrue("""_gaq.push(['_setAccount', '%s']);""" % new_ga_code
                                     in response.body)
                 def test_ga_code_inactive(self):
                     self.log_user()
                     old_title = 'RhodeCode'
                     old_realm = 'RhodeCode authentication'
                     new_ga_code = ''
                     response = self.app.post(url('admin_setting', setting_id='global'),
                                                  params=dict(
                                                              _method='put',
                                                              rhodecode_title=old_title,
                                                              rhodecode_realm=old_realm,
                                                              rhodecode_ga_code=new_ga_code
                                                              ))
                     self.assertTrue('Updated application settings' in
                                     response.session['flash'][0][1])
                     self.assertEqual(RhodeCodeSettings
                                     .get_app_settings()['rhodecode_ga_code'], new_ga_code)
                     response = response.follow()
                     self.assertTrue("""_gaq.push(['_setAccount', '%s']);""" % new_ga_code
                                     not in response.body)
                 def test_title_change(self):
                     self.log_user()
                     old_title = 'RhodeCode'
                     new_title = old_title + '_changed'
                     old_realm = 'RhodeCode authentication'
                     for new_title in ['Changed', 'Żółwik', old_title]:
                         response = self.app.post(url('admin_setting', setting_id='global'),
                                                      params=dict(
                                                                  _method='put',
                                                                  rhodecode_title=new_title,
                                                                  rhodecode_realm=old_realm,
                                                                  rhodecode_ga_code=''
                                                                  ))
                         self.checkSessionFlash(response, 'Updated application settings')
                         self.assertEqual(RhodeCodeSettings
                                          .get_app_settings()['rhodecode_title'],
                                          new_title.decode('utf-8'))
                         response = response.follow()
                         self.assertTrue("""<h1><a href="/">%s</a></h1>""" % new_title
                                     in response.body)
                 def test_my_account(self):
                     self.log_user()
                     response = self.app.get(url('admin_settings_my_account'))
                     self.assertTrue('value="test_admin' in response.body)
                 def test_my_account_update(self):
                     self.log_user()
                     new_email = 'new@mail.pl'
                     new_name = 'NewName'
                     new_lastname = 'NewLastname'
                     new_password = 'test123'
                     response = self.app.post(url('admin_settings_my_account_update'),
                                              params=dict(_method='put',
                                                          username='test_admin',
                                                          new_password=new_password,
+                                                         password_confirmation = new_password,
                                                          password='',
                                                          name=new_name,
                                                          lastname=new_lastname,
                                                          email=new_email,))
                     response.follow()
                     assert 'Your account was updated successfully' in response.session['flash'][0][1], 'no flash message about success of change'
                     user = self.sa.query(User).filter(User.username == 'test_admin').one()
                     assert user.email == new_email , 'incorrect user email after update got %s vs %s' % (user.email, new_email)
                     assert user.name == new_name, 'updated field mismatch %s vs %s' % (user.name, new_name)
                     assert user.lastname == new_lastname, 'updated field mismatch %s vs %s' % (user.lastname, new_lastname)
                     assert check_password(new_password, user.password) is True, 'password field mismatch %s vs %s' % (user.password, new_password)
                     #bring back the admin settings
                     old_email = 'test_admin@mail.com'
                     old_name = 'RhodeCode'
                     old_lastname = 'Admin'
                     old_password = 'test12'
                     response = self.app.post(url('admin_settings_my_account_update'), params=dict(
                                                                         _method='put',
                                                                         username='test_admin',
                                                                         new_password=old_password,
+                                                                        password_confirmation = old_password,
                                                                         password='',
                                                                         name=old_name,
                                                                         lastname=old_lastname,
                                                                         email=old_email,))
                     response.follow()
                     self.checkSessionFlash(response,
                                            'Your account was updated successfully')
                     user = self.sa.query(User).filter(User.username == 'test_admin').one()
                     assert user.email == old_email , 'incorrect user email after update got %s vs %s' % (user.email, old_email)
                     assert user.email == old_email , 'incorrect user email after update got %s vs %s' % (user.email, old_email)
                     assert user.name == old_name, 'updated field mismatch %s vs %s' % (user.name, old_name)
                     assert user.lastname == old_lastname, 'updated field mismatch %s vs %s' % (user.lastname, old_lastname)
                     assert check_password(old_password, user.password) is True , 'password updated field mismatch %s vs %s' % (user.password, old_password)
                 def test_my_account_update_err_email_exists(self):
                     self.log_user()
                     new_email = 'test_regular@mail.com'#already exisitn email
                     response = self.app.post(url('admin_settings_my_account_update'), params=dict(
                                                                         _method='put',
                                                                         username='test_admin',
                                                                         new_password='test12',
+                                                                        password_confirmation = 'test122',
                                                                         name='NewName',
                                                                         lastname='NewLastname',
                                                                         email=new_email,))
                     assert 'This e-mail address is already taken' in response.body, 'Missing error message about existing email'
                 def test_my_account_update_err(self):
                     self.log_user('test_regular2', 'test12')
                     new_email = 'newmail.pl'
                     response = self.app.post(url('admin_settings_my_account_update'), params=dict(
                                                                         _method='put',
                                                                         username='test_admin',
                                                                         new_password='test12',
+                                                                        password_confirmation = 'test122',
                                                                         name='NewName',
                                                                         lastname='NewLastname',
                                                                         email=new_email,))
                     assert 'An email address must contain a single @' in response.body, 'Missing error message about wrong email'
                     assert 'This username already exists' in response.body, 'Missing error message about existing user'

rhodecode/tests/functional/test_admin_users.py

0 +3 0

             from rhodecode.tests import *
             from rhodecode.model.db import User
             from rhodecode.lib.auth import check_password
             from sqlalchemy.orm.exc import NoResultFound
             class TestAdminUsersController(TestController):
                 def test_index(self):
                     response = self.app.get(url('users'))
                     # Test response...
                 def test_index_as_xml(self):
                     response = self.app.get(url('formatted_users', format='xml'))
                 def test_create(self):
                     self.log_user()
                     username = 'newtestuser'
                     password = 'test12'
+                    password_confirmation = password
                     name = 'name'
                     lastname = 'lastname'
                     email = 'mail@mail.com'
                     response = self.app.post(url('users'), {'username':username,
                                                            'password':password,
+                                                           'password_confirmation':password_confirmation,
                                                            'name':name,
                                                            'active':True,
                                                            'lastname':lastname,
                                                            'email':email})
                     assert '''created user %s''' % (username) in response.session['flash'][0], 'No flash message about new user'
                     new_user = self.sa.query(User).filter(User.username == username).one()
                     assert new_user.username == username, 'wrong info about username'
                     assert check_password(password, new_user.password) == True , 'wrong info about password'
                     assert new_user.name == name, 'wrong info about name'
                     assert new_user.lastname == lastname, 'wrong info about lastname'
                     assert new_user.email == email, 'wrong info about email'
                     response.follow()
                     response = response.follow()
                     assert """edit">newtestuser</a>""" in response.body
                 def test_create_err(self):
                     self.log_user()
                     username = 'new_user'
                     password = ''
                     name = 'name'
                     lastname = 'lastname'
                     email = 'errmail.com'
                     response = self.app.post(url('users'), {'username':username,
                                                            'password':password,
                                                            'name':name,
                                                            'active':False,
                                                            'lastname':lastname,
                                                            'email':email})
                     assert """<span class="error-message">Invalid username</span>""" in response.body
                     assert """<span class="error-message">Please enter a value</span>""" in response.body
                     assert """<span class="error-message">An email address must contain a single @</span>""" in response.body
                     def get_user():
                         self.sa.query(User).filter(User.username == username).one()
                     self.assertRaises(NoResultFound, get_user), 'found user in database'
                 def test_new(self):
                     response = self.app.get(url('new_user'))
                 def test_new_as_xml(self):
                     response = self.app.get(url('formatted_new_user', format='xml'))
                 def test_update(self):
                     response = self.app.put(url('user', id=1))
                 def test_update_browser_fakeout(self):
                     response = self.app.post(url('user', id=1), params=dict(_method='put'))
                 def test_delete(self):
                     self.log_user()
                     username = 'newtestuserdeleteme'
                     password = 'test12'
                     name = 'name'
                     lastname = 'lastname'
                     email = 'todeletemail@mail.com'
                     response = self.app.post(url('users'), {'username':username,
                                                            'password':password,
+                                                           'password_confirmation':password,
                                                            'name':name,
                                                            'active':True,
                                                            'lastname':lastname,
                                                            'email':email})
                     response = response.follow()
                     new_user = self.sa.query(User).filter(User.username == username).one()
                     response = self.app.delete(url('user', id=new_user.user_id))
                     assert """successfully deleted user""" in response.session['flash'][0], 'No info about user deletion'
                 def test_delete_browser_fakeout(self):
                     response = self.app.post(url('user', id=1), params=dict(_method='delete'))
                 def test_show(self):
                     response = self.app.get(url('user', id=1))
                 def test_show_as_xml(self):
                     response = self.app.get(url('formatted_user', id=1, format='xml'))
                 def test_edit(self):
                     response = self.app.get(url('edit_user', id=1))
                 def test_edit_as_xml(self):
                     response = self.app.get(url('formatted_edit_user', id=1, format='xml'))

rhodecode/tests/test_hg_operations.py

0 +22 -33

             # -*- coding: utf-8 -*-
             """
                 rhodecode.tests.test_hg_operations
                 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                 Test suite for making push/pull operations
                 :created_on: Dec 30, 2010
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import os
             import time
             import sys
             import shutil
             import logging
             from os.path import join as jn
             from os.path import dirname as dn
             from tempfile import _RandomNameSequence
             from subprocess import Popen, PIPE
             from paste.deploy import appconfig
             from pylons import config
             from sqlalchemy import engine_from_config
             from rhodecode.lib.utils import add_cache
             from rhodecode.model import init_model
             from rhodecode.model import meta
             from rhodecode.model.db import User, Repository, UserLog
             from rhodecode.lib.auth import get_crypt_password
             from rhodecode.tests import TESTS_TMP_PATH, NEW_HG_REPO, HG_REPO
             from rhodecode.config.environment import load_environment
             rel_path = dn(dn(dn(os.path.abspath(__file__))))
-            conf = appconfig('config:development.ini', relative_to=rel_path)
+            conf = appconfig('config:%s' % sys.argv[1], relative_to=rel_path)
             load_environment(conf.global_conf, conf.local_conf)
             add_cache(conf)
             USER = 'test_admin'
             PASS = 'test12'
             HOST = '127.0.0.1:5000'
-            DEBUG = True if sys.argv[1:] else False
+            DEBUG = False
             print 'DEBUG:', DEBUG
             log = logging.getLogger(__name__)
+            engine = engine_from_config(conf, 'sqlalchemy.db1.')
+            init_model(engine)
+            sa = meta.Session
             class Command(object):
                 def __init__(self, cwd):
                     self.cwd = cwd
                 def execute(self, cmd, *args):
                     """Runs command on the system with given ``args``.
                     """
                     command = cmd + ' ' + ' '.join(args)
                     log.debug('Executing %s' % command)
                     if DEBUG:
                         print command
                     p = Popen(command, shell=True, stdout=PIPE, stderr=PIPE, cwd=self.cwd)
                     stdout, stderr = p.communicate()
                     if DEBUG:
                         print stdout, stderr
                     return stdout, stderr
             def test_wrapp(func):
                 def __wrapp(*args, **kwargs):
                     print '>>>%s' % func.__name__
                     try:
                         res = func(*args, **kwargs)
                     except Exception, e:
                         print ('###############\n-'
                                '--%s failed %s--\n'
                                '###############\n' % (func.__name__, e))
                         sys.exit()
                     print '++OK++'
                     return res
                 return __wrapp
-            def get_session():
-                engine = engine_from_config(conf, 'sqlalchemy.db1.')
-                init_model(engine)
-                sa = meta.Session
-                return sa
             def create_test_user(force=True):
                 print '\tcreating test user'
-                sa = get_session()
-                user = sa.query(User).filter(User.username == USER).scalar()
+                user = User.get_by_username(USER)
                 if force and user is not None:
                     print '\tremoving current user'
-                    for repo in sa.query(Repository).filter(Repository.user == user).all():
+                    for repo in Repository.query().filter(Repository.user == user).all():
                         sa.delete(repo)
                     sa.delete(user)
                     sa.commit()
                 if user is None or force:
                     print '\tcreating new one'
                     new_usr = User()
                     new_usr.username = USER
                     new_usr.password = get_crypt_password(PASS)
                     new_usr.email = 'mail@mail.com'
                     new_usr.name = 'test'
                     new_usr.lastname = 'lasttestname'
                     new_usr.active = True
                     new_usr.admin = True
                     sa.add(new_usr)
                     sa.commit()
                 print '\tdone'
             def create_test_repo(force=True):
                 from rhodecode.model.repo import RepoModel
-                sa = get_session()
-                user = sa.query(User).filter(User.username == USER).scalar()
+                user = User.get_by_username(USER)
                 if user is None:
                     raise Exception('user not found')
                 repo = sa.query(Repository).filter(Repository.repo_name == HG_REPO).scalar()
                 if repo is None:
                     print '\trepo not found creating'
                     form_data = {'repo_name':HG_REPO,
                                  'repo_type':'hg',
                                  'private':False,
                                  'clone_uri':'' }
                     rm = RepoModel(sa)
                     rm.base_path = '/home/hg'
                     rm.create(form_data, user)
             def set_anonymous_access(enable=True):
-                sa = get_session()
+                user = User.get_by_username('default')
-                user = sa.query(User).filter(User.username == 'default').one()
-                sa.expire(user)
                 user.active = enable
                 sa.add(user)
                 sa.commit()
-                sa.remove()
-                import time;time.sleep(3)
                 print '\tanonymous access is now:', enable
+                if enable != User.get_by_username('default').active:
+                    raise Exception('Cannot set anonymous access')
             def get_anonymous_access():
-                sa = get_session()
+                user = User.get_by_username('default')
-                obj1 = sa.query(User).filter(User.username == 'default').one()
+                return user.active
-                sa.expire(obj1)
-                return obj1.active
             #==============================================================================
             # TESTS
             #==============================================================================
             @test_wrapp
             def test_clone_with_credentials(no_errors=False):
                 cwd = path = jn(TESTS_TMP_PATH, HG_REPO)
                 try:
                     shutil.rmtree(path, ignore_errors=True)
                     os.makedirs(path)
                     #print 'made dirs %s' % jn(path)
                 except OSError:
                     raise
                 print '\tchecking if anonymous access is enabled'
                 anonymous_access = get_anonymous_access()
                 if anonymous_access:
                     print '\tenabled, disabling it '
                     set_anonymous_access(enable=False)
                     time.sleep(1)
                 clone_url = 'http://%(user)s:%(pass)s@%(host)s/%(cloned_repo)s %(dest)s' % \
                               {'user':USER,
                                'pass':PASS,
                                'host':HOST,
                                'cloned_repo':HG_REPO,
                                'dest':path}
                 stdout, stderr = Command(cwd).execute('hg clone', clone_url)
                 if no_errors is False:
                     assert """adding file changes""" in stdout, 'no messages about cloning'
                     assert """abort""" not in stderr , 'got error from clone'
             @test_wrapp
             def test_clone_anonymous():
                 cwd = path = jn(TESTS_TMP_PATH, HG_REPO)
                 try:
                     shutil.rmtree(path, ignore_errors=True)
                     os.makedirs(path)
                     #print 'made dirs %s' % jn(path)
                 except OSError:
                     raise
                 print '\tchecking if anonymous access is enabled'
                 anonymous_access = get_anonymous_access()
                 if not anonymous_access:
                     print '\tnot enabled, enabling it '
                     set_anonymous_access(enable=True)
                     time.sleep(1)
                 clone_url = 'http://%(host)s/%(cloned_repo)s %(dest)s' % \
                               {'user':USER,
                                'pass':PASS,
                                'host':HOST,
                                'cloned_repo':HG_REPO,
                                'dest':path}
                 stdout, stderr = Command(cwd).execute('hg clone', clone_url)
                 assert """adding file changes""" in stdout, 'no messages about cloning'
                 assert """abort""" not in stderr , 'got error from clone'
                 #disable if it was enabled
                 if not anonymous_access:
                     print '\tdisabling anonymous access'
                     set_anonymous_access(enable=False)
             @test_wrapp
             def test_clone_wrong_credentials():
                 cwd = path = jn(TESTS_TMP_PATH, HG_REPO)
                 try:
                     shutil.rmtree(path, ignore_errors=True)
                     os.makedirs(path)
                     #print 'made dirs %s' % jn(path)
                 except OSError:
                     raise
                 print '\tchecking if anonymous access is enabled'
                 anonymous_access = get_anonymous_access()
                 if anonymous_access:
                     print '\tenabled, disabling it '
                     set_anonymous_access(enable=False)
                 clone_url = 'http://%(user)s:%(pass)s@%(host)s/%(cloned_repo)s %(dest)s' % \
                               {'user':USER + 'error',
                                'pass':PASS,
                                'host':HOST,
                                'cloned_repo':HG_REPO,
                                'dest':path}
                 stdout, stderr = Command(cwd).execute('hg clone', clone_url)
                 if not """abort: authorization failed"""  in stderr:
                     raise Exception('Failure')
             @test_wrapp
             def test_pull():
                 pass
             @test_wrapp
             def test_push_modify_file(f_name='setup.py'):
                 cwd = path = jn(TESTS_TMP_PATH, HG_REPO)
                 modified_file = jn(TESTS_TMP_PATH, HG_REPO, f_name)
                 for i in xrange(5):
                     cmd = """echo 'added_line%s' >> %s""" % (i, modified_file)
                     Command(cwd).execute(cmd)
                     cmd = """hg ci -m 'changed file %s' %s """ % (i, modified_file)
                     Command(cwd).execute(cmd)
                 Command(cwd).execute('hg push %s' % jn(TESTS_TMP_PATH, HG_REPO))
             @test_wrapp
             def test_push_new_file(commits=15, with_clone=True):
                 if with_clone:
                     test_clone_with_credentials(no_errors=True)
                 cwd = path = jn(TESTS_TMP_PATH, HG_REPO)
                 added_file = jn(path, '%ssetupążźć.py' % _RandomNameSequence().next())
                 Command(cwd).execute('touch %s' % added_file)
                 Command(cwd).execute('hg add %s' % added_file)
                 for i in xrange(commits):
                     cmd = """echo 'added_line%s' >> %s""" % (i, added_file)
                     Command(cwd).execute(cmd)
                     cmd = """hg ci -m 'commited new %s' -u '%s' %s """ % (i,
                                             'Marcin Kuźminski <marcin@python-blog.com>',
                                             added_file)
                     Command(cwd).execute(cmd)
                 push_url = 'http://%(user)s:%(pass)s@%(host)s/%(cloned_repo)s' % \
                               {'user':USER,
                                'pass':PASS,
                                'host':HOST,
                                'cloned_repo':HG_REPO,
                                'dest':jn(TESTS_TMP_PATH, HG_REPO)}
                 Command(cwd).execute('hg push --verbose --debug %s' % push_url)
             @test_wrapp
             def test_push_wrong_credentials():
                 cwd = path = jn(TESTS_TMP_PATH, HG_REPO)
                 clone_url = 'http://%(user)s:%(pass)s@%(host)s/%(cloned_repo)s' % \
                               {'user':USER + 'xxx',
                                'pass':PASS,
                                'host':HOST,
                                'cloned_repo':HG_REPO,
                                'dest':jn(TESTS_TMP_PATH, HG_REPO)}
                 modified_file = jn(TESTS_TMP_PATH, HG_REPO, 'setup.py')
                 for i in xrange(5):
                     cmd = """echo 'added_line%s' >> %s""" % (i, modified_file)
                     Command(cwd).execute(cmd)
                     cmd = """hg ci -m 'commited %s' %s """ % (i, modified_file)
                     Command(cwd).execute(cmd)
                 Command(cwd).execute('hg push %s' % clone_url)
             @test_wrapp
             def test_push_wrong_path():
                 cwd = path = jn(TESTS_TMP_PATH, HG_REPO)
                 added_file = jn(path, 'somefile.py')
                 try:
                     shutil.rmtree(path, ignore_errors=True)
                     os.makedirs(path)
                     print '\tmade dirs %s' % jn(path)
                 except OSError:
                     raise
                 Command(cwd).execute("""echo '' > %s""" % added_file)
                 Command(cwd).execute("""hg init %s""" % path)
                 Command(cwd).execute("""hg add %s""" % added_file)
                 for i in xrange(2):
                     cmd = """echo 'added_line%s' >> %s""" % (i, added_file)
                     Command(cwd).execute(cmd)
                     cmd = """hg ci -m 'commited new %s' %s """ % (i, added_file)
                     Command(cwd).execute(cmd)
                 clone_url = 'http://%(user)s:%(pass)s@%(host)s/%(cloned_repo)s' % \
                               {'user':USER,
                                'pass':PASS,
                                'host':HOST,
                                'cloned_repo':HG_REPO + '_error',
                                'dest':jn(TESTS_TMP_PATH, HG_REPO)}
                 stdout, stderr = Command(cwd).execute('hg push %s' % clone_url)
                 if not """abort: HTTP Error 403: Forbidden"""  in stderr:
                     raise Exception('Failure')
             @test_wrapp
             def get_logs():
-                sa = get_session()
+                return UserLog.query().all()
-                return len(sa.query(UserLog).all())
             @test_wrapp
             def test_logs(initial):
-                sa = get_session()
+                logs = UserLog.query().all()
-                logs = sa.query(UserLog).all()
+                operations = 4
-                operations = 7
+                if len(initial) + operations != len(logs):
-                if initial + operations != len(logs):
+                    raise Exception("missing number of logs initial:%s vs current:%s" % \
-                    raise Exception("missing number of logs %s vs %s" % (initial, len(logs)))
+                                        (len(initial), len(logs)))
             if __name__ == '__main__':
                 create_test_user(force=False)
                 create_test_repo()
                 initial_logs = get_logs()
+                print 'initial activity logs: %s' % len(initial_logs)
-            #    test_push_modify_file()
+                #test_push_modify_file()
                 test_clone_with_credentials()
                 test_clone_wrong_credentials()
                 test_push_new_file(commits=2, with_clone=True)
                 test_clone_anonymous()
                 test_push_wrong_path()
                 test_push_wrong_credentials()
                 test_logs(initial_logs)

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages