upstream/kallithea Commit - r1758:a87aa385

fixed repo_create permission by adding missing commit statements...

marcink -

r1758:a87aa385 beta

parent child

rhodecode/controllers/admin/users.py

0 +2 -2

                         user_model.grant_perm(id, perm)
                         h.flash(_("Granted 'repository create' permission to user"),
                                 category='success')
+                        Session.commit()
                     else:
                         perm = Permission.get_by_key('hg.create.repository')
                         user_model.revoke_perm(id, perm)
                         user_model.grant_perm(id, perm)
                         h.flash(_("Revoked 'repository create' permission to user"),
                                 category='success')
+                        Session.commit()
                     return redirect(url('edit_user', id=id))

rhodecode/lib/db_manage.py

0 +14 -6

@@ -245,12 +245,20 b' class DbManage(object):'
245	self.create_user(username, password, email, True)	245	self.create_user(username, password, email, True)
246	else:	246	else:
247	log.info('creating admin and regular test users')	247	log.info('creating admin and regular test users')
248	self.create_user('test_admin', 'test12',	248	from rhodecode.tests import TEST_USER_ADMIN_LOGIN,\
249	'test_admin@mail.com', True)	249	TEST_USER_ADMIN_PASS ,TEST_USER_ADMIN_EMAIL,TEST_USER_REGULAR_LOGIN,\
250	self.create_user('test_regular', 'test12',	250	TEST_USER_REGULAR_PASS,TEST_USER_REGULAR_EMAIL,\
251	'test_regular@mail.com', False)	251	TEST_USER_REGULAR2_LOGIN,TEST_USER_REGULAR2_PASS,\
252	self.create_user('test_regular2', 'test12',	252	TEST_USER_REGULAR2_EMAIL
253	'test_regular2@mail.com', False)	253
		254	self.create_user(TEST_USER_ADMIN_LOGIN, TEST_USER_ADMIN_PASS,
		255	TEST_USER_ADMIN_EMAIL, True)
		256
		257	self.create_user(TEST_USER_REGULAR_LOGIN, TEST_USER_REGULAR_PASS,
		258	TEST_USER_REGULAR_EMAIL, False)
		259
		260	self.create_user(TEST_USER_REGULAR2_LOGIN, TEST_USER_REGULAR2_PASS,
		261	TEST_USER_REGULAR2_EMAIL, False)
254		262
255	def create_ui_settings(self):	263	def create_ui_settings(self):
256	"""Creates ui settings, fills out hooks	264	"""Creates ui settings, fills out hooks

rhodecode/model/db.py

0 +17 -5

                         return json.JSONEncoder.default(self, obj)
             class BaseModel(object):
-                """Base Model for all classess
+                """
+                Base Model for all classess
                 """
                 @classmethod
                     """return column names for this model """
                     return class_mapper(cls).c.keys()
-                def get_dict(self):
+                def get_dict(self, serialized=False):
-                    """return dict with keys and values corresponding
+                    """
-                    to this model data """
+                    return dict with keys and values corresponding
+                    to this model data
+                    """
                     d = {}
                     for k in self._get_keys():
                         d[k] = getattr(self, k)
+                    # also use __json__() if present to get additional fields
+                    if hasattr(self, '__json__'):
+                        for k,val in self.__json__().iteritems():
+                            d[k] = val
                     return d
                 def get_appstruct(self):
                     log.debug('updated user %s lastlogin', self.username)
+                def __json__(self):
+                    return dict(email=self.email,
+                                full_name=self.full_name)
             class UserLog(Base, BaseModel):
                 __tablename__ = 'user_logs'
                 __table_args__ = {'extend_existing':True}

rhodecode/model/user.py

0 +15 -12

                         log.error(traceback.format_exc())
                         raise
-                def delete(self, user_id):
+                def delete(self, user):
+                    user = self.__get_user(user)
                     try:
-                        user = self.get(user_id, cache=False)
                         if user.username == 'default':
                             raise DefaultUserException(
                                             _("You can't remove this user since it's"
                     return user
                 def has_perm(self, user, perm):
                     if not isinstance(perm, Permission):
-                        raise Exception('perm needs to be an instance of Permission class')
+                        raise Exception('perm needs to be an instance of Permission class '
+                                        'got %s instead' % type(perm))
                     user = self.__get_user(user)
-                    return UserToPerm.query().filter(UserToPerm.user == user.user)\
+                    return UserToPerm.query().filter(UserToPerm.user == user)\
                         .filter(UserToPerm.permission == perm).scalar() is not None
                 def grant_perm(self, user, perm):
                     if not isinstance(perm, Permission):
-                        raise Exception('perm needs to be an instance of Permission class')
+                        raise Exception('perm needs to be an instance of Permission class '
+                                        'got %s instead' % type(perm))
                     user = self.__get_user(user)
                     new = UserToPerm()
-                    new.user = user.user
+                    new.user = user
                     new.permission = perm
                     self.sa.add(new)
                 def revoke_perm(self, user, perm):
                     if not isinstance(perm, Permission):
-                        raise Exception('perm needs to be an instance of Permission class')
+                        raise Exception('perm needs to be an instance of Permission class '
+                                        'got %s instead' % type(perm))
                     user = self.__get_user(user)
-                    obj = UserToPerm.query().filter(UserToPerm.user == user.user)\
+                    obj = UserToPerm.query().filter(UserToPerm.user == user)\
-                            .filter(UserToPerm.permission == perm).one()
+                            .filter(UserToPerm.permission == perm).scalar()
-                    self.sa.delete(obj)
+                    if obj:
+                        self.sa.delete(obj)

rhodecode/tests/__init__.py

0 +17 -3

@@ -31,9 +31,13 b' time.tzset()'
31		31
32	log = logging.getLogger(__name__)	32	log = logging.getLogger(__name__)
33		33
34	__all__ = ['environ', 'url', 'TestController', 'TESTS_TMP_PATH', 'HG_REPO',	34	__all__ = [
35	'GIT_REPO', 'NEW_HG_REPO', 'NEW_GIT_REPO', 'HG_FORK', 'GIT_FORK',	35	'environ', 'url', 'TestController', 'TESTS_TMP_PATH', 'HG_REPO',
36	'TEST_USER_ADMIN_LOGIN', 'TEST_USER_ADMIN_PASS' ]	36	'GIT_REPO', 'NEW_HG_REPO', 'NEW_GIT_REPO', 'HG_FORK', 'GIT_FORK',
		37	'TEST_USER_ADMIN_LOGIN', 'TEST_USER_REGULAR_LOGIN', 'TEST_USER_REGULAR_PASS',
		38	'TEST_USER_REGULAR_EMAIL', 'TEST_USER_REGULAR2_LOGIN',
		39	'TEST_USER_REGULAR2_PASS', 'TEST_USER_REGULAR2_EMAIL'
		40	]
37		41
38	# Invoke websetup with the current config file	42	# Invoke websetup with the current config file
39	# SetupCommand('setup-app').run([config_file])	43	# SetupCommand('setup-app').run([config_file])
@@ -48,6 +52,16 b' environ = {}'
48	TESTS_TMP_PATH = jn('/', 'tmp', 'rc_test_%s' % _RandomNameSequence().next())	52	TESTS_TMP_PATH = jn('/', 'tmp', 'rc_test_%s' % _RandomNameSequence().next())
49	TEST_USER_ADMIN_LOGIN = 'test_admin'	53	TEST_USER_ADMIN_LOGIN = 'test_admin'
50	TEST_USER_ADMIN_PASS = 'test12'	54	TEST_USER_ADMIN_PASS = 'test12'
		55	TEST_USER_ADMIN_EMAIL = 'test_admin@mail.com'
		56
		57	TEST_USER_REGULAR_LOGIN = 'test_regular'
		58	TEST_USER_REGULAR_PASS = 'test12'
		59	TEST_USER_REGULAR_EMAIL = 'test_regular@mail.com'
		60
		61	TEST_USER_REGULAR2_LOGIN = 'test_regular2'
		62	TEST_USER_REGULAR2_PASS = 'test12'
		63	TEST_USER_REGULAR2_EMAIL = 'test_regular2@mail.com'
		64
51	HG_REPO = 'vcs_test_hg'	65	HG_REPO = 'vcs_test_hg'
52	GIT_REPO = 'vcs_test_git'	66	GIT_REPO = 'vcs_test_git'
53		67

rhodecode/tests/functional/test_admin_users.py

0 +82 -25

@@ -1,11 +1,13 b''
1	from rhodecode.tests import *	1	from rhodecode.tests import *
2	from rhodecode.model.db import User	2	from rhodecode.model.db import User, Permission
3	from rhodecode.lib.auth import check_password	3	from rhodecode.lib.auth import check_password
4	from sqlalchemy.orm.exc import NoResultFound	4	from sqlalchemy.orm.exc import NoResultFound
		5	from rhodecode.model.user import UserModel
5		6
6	class TestAdminUsersController(TestController):	7	class TestAdminUsersController(TestController):
7		8
8	def test_index(self):	9	def test_index(self):
		10	self.log_user()
9	response = self.app.get(url('users'))	11	response = self.app.get(url('users'))
10	# Test response...	12	# Test response...
11		13
@@ -21,30 +23,31 b' class TestAdminUsersController(TestContr'
21	lastname = 'lastname'	23	lastname = 'lastname'
22	email = 'mail@mail.com'	24	email = 'mail@mail.com'
23		25
24	response = self.app.post(url('users'), {~~'username'~~:~~username~~,	26	response = self.app.post(url('users'),
25	'~~password~~':~~password~~,	27	{'username':username,
26	'password~~_confirmation~~':password~~_confirmation~~,	28	'password':password,
27	'~~name~~':~~name~~,	29	'password_confirmation':password_confirmation,
28	'~~activ~~e':~~Tru~~e,	30	'name':name,
29	'~~lastnam~~e':~~lastnam~~e,	31	'active':True,
30	'~~email~~':~~email~~})	32	'lastname':lastname,
		33	'email':email})
31		34
32		35
33	assert '''created user %s''' % (username) in response.session['flash'][0], 'No flash message about new user'	36	self.assertTrue('''created user %s''' % (username) in
		37	response.session['flash'][0])
34		38
35	new_user = self.Session.query(User).~~filter~~(~~User~~.~~username~~ == ~~username~~).~~one~~()	39	new_user = self.Session.query(User).\
36		40	filter(User.username == username).one()
37		41
38	assert new_user.username == username, ~~'wrong info about username'~~	42	self.assertEqual(new_user.username,username)
39	assert check_password(password, new_user.password) == True , ~~'wrong info about password'~~	43	self.assertEqual(check_password(password, new_user.password),True)
40	assert new_user.name == name, 'wrong info about name'	44	self.assertEqual(new_user.name,name)
41	assert new_user.lastname == lastname, ~~'wrong info about lastname'~~	45	self.assertEqual(new_user.lastname,lastname)
42	assert new_user.email == email, ~~'wrong info about email'~~	46	self.assertEqual(new_user.email,email)
43
44		47
45	response.follow()	48	response.follow()
46	response = response.follow()	49	response = response.follow()
47	assert """edit">newtestuser</a>""" in response.body	50	self.assertTrue("""edit">newtestuser</a>""" in response.body)
48		51
49	def test_create_err(self):	52	def test_create_err(self):
50	self.log_user()	53	self.log_user()
@@ -61,9 +64,9 b' class TestAdminUsersController(TestContr'
61	'lastname':lastname,	64	'lastname':lastname,
62	'email':email})	65	'email':email})
63		66
64	assert """<span class="error-message">Invalid username</span>""" in response.body	67	self.assertTrue("""<span class="error-message">Invalid username</span>""" in response.body)
65	assert """<span class="error-message">Please enter a value</span>""" in response.body	68	self.assertTrue("""<span class="error-message">Please enter a value</span>""" in response.body)
66	assert """<span class="error-message">An email address must contain a single @</span>""" in response.body	69	self.assertTrue("""<span class="error-message">An email address must contain a single @</span>""" in response.body)
67		70
68	def get_user():	71	def get_user():
69	self.Session.query(User).filter(User.username == username).one()	72	self.Session.query(User).filter(User.username == username).one()
@@ -71,6 +74,7 b' class TestAdminUsersController(TestContr'
71	self.assertRaises(NoResultFound, get_user), 'found user in database'	74	self.assertRaises(NoResultFound, get_user), 'found user in database'
72		75
73	def test_new(self):	76	def test_new(self):
		77	self.log_user()
74	response = self.app.get(url('new_user'))	78	response = self.app.get(url('new_user'))
75		79
76	def test_new_as_xml(self):	80	def test_new_as_xml(self):
@@ -100,14 +104,17 b' class TestAdminUsersController(TestContr'
100		104
101	response = response.follow()	105	response = response.follow()
102		106
103	new_user = self.Session.query(User).~~filter~~(~~User~~.~~username~~ == ~~username~~).~~one~~()	107	new_user = self.Session.query(User)\
		108	.filter(User.username == username).one()
104	response = self.app.delete(url('user', id=new_user.user_id))	109	response = self.app.delete(url('user', id=new_user.user_id))
105		110
106	assert """successfully deleted user""" in response.session['flash'][0], 'No info about user deletion'	111	self.assertTrue("""successfully deleted user""" in
		112	response.session['flash'][0])
107		113
108		114
109	def test_delete_browser_fakeout(self):	115	def test_delete_browser_fakeout(self):
110	response = self.app.post(url('user', id=1), ~~params~~=~~dict~~(~~_method~~=~~'delete'~~))	116	response = self.app.post(url('user', id=1),
		117	params=dict(_method='delete'))
111		118
112	def test_show(self):	119	def test_show(self):
113	response = self.app.get(url('user', id=1))	120	response = self.app.get(url('user', id=1))
@@ -116,7 +123,57 b' class TestAdminUsersController(TestContr'
116	response = self.app.get(url('formatted_user', id=1, format='xml'))	123	response = self.app.get(url('formatted_user', id=1, format='xml'))
117		124
118	def test_edit(self):	125	def test_edit(self):
119	response = self.app.get(url('edit_user', id=1))	126	self.log_user()
		127	user = User.get_by_username(TEST_USER_ADMIN_LOGIN)
		128	response = self.app.get(url('edit_user', id=user.user_id))
		129
		130
		131	def test_add_perm_create_repo(self):
		132	self.log_user()
		133	perm_none = Permission.get_by_key('hg.create.none')
		134	perm_create = Permission.get_by_key('hg.create.repository')
		135
		136	user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
		137
		138
		139	#User should have None permission on creation repository
		140	self.assertEqual(UserModel().has_perm(user, perm_none), False)
		141	self.assertEqual(UserModel().has_perm(user, perm_create), False)
		142
		143	response = self.app.post(url('user_perm', id=user.user_id),
		144	params=dict(_method='put',
		145	create_repo_perm=True))
		146
		147	perm_none = Permission.get_by_key('hg.create.none')
		148	perm_create = Permission.get_by_key('hg.create.repository')
		149
		150	user = User.get_by_username(TEST_USER_REGULAR_LOGIN)
		151	#User should have None permission on creation repository
		152	self.assertEqual(UserModel().has_perm(user, perm_none), False)
		153	self.assertEqual(UserModel().has_perm(user, perm_create), True)
		154
		155	def test_revoke_perm_create_repo(self):
		156	self.log_user()
		157	perm_none = Permission.get_by_key('hg.create.none')
		158	perm_create = Permission.get_by_key('hg.create.repository')
		159
		160	user = User.get_by_username(TEST_USER_REGULAR2_LOGIN)
		161
		162
		163	#User should have None permission on creation repository
		164	self.assertEqual(UserModel().has_perm(user, perm_none), False)
		165	self.assertEqual(UserModel().has_perm(user, perm_create), False)
		166
		167	response = self.app.post(url('user_perm', id=user.user_id),
		168	params=dict(_method='put'))
		169
		170	perm_none = Permission.get_by_key('hg.create.none')
		171	perm_create = Permission.get_by_key('hg.create.repository')
		172
		173	user = User.get_by_username(TEST_USER_REGULAR2_LOGIN)
		174	#User should have None permission on creation repository
		175	self.assertEqual(UserModel().has_perm(user, perm_none), True)
		176	self.assertEqual(UserModel().has_perm(user, perm_create), False)
120		177
121	def test_edit_as_xml(self):	178	def test_edit_as_xml(self):
122	response = self.app.get(url('formatted_edit_user', id=1, format='xml'))	179	response = self.app.get(url('formatted_edit_user', id=1, format='xml'))

rhodecode/tests/test_models.py

0 +56 -8

             from rhodecode.model.repos_group import ReposGroupModel
             from rhodecode.model.repo import RepoModel
             from rhodecode.model.db import RepoGroup, User, Notification, UserNotification, \
-                UsersGroup, UsersGroupMember
+                UsersGroup, UsersGroupMember, Permission
             from sqlalchemy.exc import IntegrityError
             from rhodecode.model.user import UserModel
                     self.assertEqual(r.repo_name, os.path.join('g2', 'g1', r.just_name))
             class TestUser(unittest.TestCase):
+                def __init__(self, methodName='runTest'):
+                    Session.remove()
+                    super(TestUser, self).__init__(methodName=methodName)
                 def test_create_and_remove(self):
                     usr = UserModel().create_or_update(username=u'test_user', password=u'qweqwe',
                                                  email=u'u232@rhodecode.org',
             class TestNotifications(unittest.TestCase):
                 def __init__(self, methodName='runTest'):
+                    Session.remove()
                     self.u1 = UserModel().create_or_update(username=u'u1',
                                                     password=u'qweqwe',
                                                     email=u'u1@rhodecode.org',
                     Session.commit()
                     self.assertEqual(Notification.query().all(), [])
+                def tearDown(self):
+                    self._clean_notifications()
                 def test_create_notification(self):
                     self.assertEqual([], Notification.query().all())
                     self.assertEqual(len(unotification), len(usrs))
                     self.assertEqual([x.user.user_id for x in unotification], usrs)
-                    self._clean_notifications()
                 def test_user_notifications(self):
                     self.assertEqual([], Notification.query().all())
                     self.assertEqual(sorted([x.notification for x in u3.notifications]),
                                      sorted([notification2, notification1]))
-                    self._clean_notifications()
                 def test_delete_notifications(self):
                     self.assertEqual([], Notification.query().all())
                                                          == notification).all()
                     self.assertEqual(un, [])
-                    self._clean_notifications()
                 def test_delete_association(self):
                                         .scalar()
                     self.assertNotEqual(u2notification, None)
-                    self._clean_notifications()
                 def test_notification_counter(self):
                     self._clean_notifications()
                     self.assertEqual([], Notification.query().all())
                                      .get_unread_cnt_for_user(self.u2), 1)
                     self.assertEqual(NotificationModel()
                                      .get_unread_cnt_for_user(self.u3), 2)
-                    self._clean_notifications()
+            class TestUsers(unittest.TestCase):
+                def __init__(self, methodName='runTest'):
+                    super(TestUsers, self).__init__(methodName=methodName)
+                def setUp(self):
+                    self.u1 = UserModel().create_or_update(username=u'u1',
+                                                    password=u'qweqwe',
+                                                    email=u'u1@rhodecode.org',
+                                                    name=u'u1', lastname=u'u1')
+                def tearDown(self):
+                    perm = Permission.query().all()
+                    for p in perm:
+                        UserModel().revoke_perm(self.u1, p)
+                    UserModel().delete(self.u1)
+                    Session.commit()
+                def test_add_perm(self):
+                    perm = Permission.query().all()[0]
+                    UserModel().grant_perm(self.u1, perm)
+                    Session.commit()
+                    self.assertEqual(UserModel().has_perm(self.u1, perm), True)
+                def test_has_perm(self):
+                    perm = Permission.query().all()
+                    for p in perm:
+                        has_p = UserModel().has_perm(self.u1, p)
+                        self.assertEqual(False, has_p)
+                def test_revoke_perm(self):
+                    perm = Permission.query().all()[0]
+                    UserModel().grant_perm(self.u1, perm)
+                    Session.commit()
+                    self.assertEqual(UserModel().has_perm(self.u1, perm), True)
+                    #revoke
+                    UserModel().revoke_perm(self.u1, perm)
+                    Session.commit()
+                    self.assertEqual(UserModel().has_perm(self.u1, perm),False)

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages