upstream/kallithea Commit - r1503:b02aa5f2

1

# -*- coding: utf-8 -*-

1

# -*- coding: utf-8 -*-

2

"""

2

"""

3

rhodecode.lib.db_manage

3

rhodecode.lib.db_manage

4

~~~~~~~~~~~~~~~~~~~~~~~

4

~~~~~~~~~~~~~~~~~~~~~~~

5

6

Database creation, and setup module for RhodeCode. Used for creation

6

Database creation, and setup module for RhodeCode. Used for creation

7

of database as well as for migration operations

7

of database as well as for migration operations

8

9

:created_on: Apr 10, 2010

9

:created_on: Apr 10, 2010

10

:author: marcink

10

:author: marcink

11

12

:license: GPLv3, see COPYING for more details.

12

:license: GPLv3, see COPYING for more details.

13

"""

13

"""

14

# This program is free software: you can redistribute it and/or modify

14

# This program is free software: you can redistribute it and/or modify

15

# it under the terms of the GNU General Public License as published by

15

# it under the terms of the GNU General Public License as published by

16

# the Free Software Foundation, either version 3 of the License, or

16

# the Free Software Foundation, either version 3 of the License, or

17

# (at your option) any later version.

17

# (at your option) any later version.

18

#

18

#

19

# This program is distributed in the hope that it will be useful,

19

# This program is distributed in the hope that it will be useful,

20

# but WITHOUT ANY WARRANTY; without even the implied warranty of

20

# but WITHOUT ANY WARRANTY; without even the implied warranty of

21

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

21

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

22

# GNU General Public License for more details.

22

# GNU General Public License for more details.

23

#

23

#

24

# You should have received a copy of the GNU General Public License

24

# You should have received a copy of the GNU General Public License

25

# along with this program. If not, see <http://www.gnu.org/licenses/>.

25

# along with this program. If not, see <http://www.gnu.org/licenses/>.

26

27

import os

27

import os

28

import sys

28

import sys

29

import uuid

29

import uuid

30

import logging

30

import logging

31

from os.path import dirname as dn, join as jn

31

from os.path import dirname as dn, join as jn

32

33

from rhodecode import __dbversion__

33

from rhodecode import __dbversion__

34

from rhodecode.model import meta

34

from rhodecode.model import meta

35

36

from rhodecode.lib.auth import get_crypt_password, generate_api_key

36

from rhodecode.lib.auth import get_crypt_password, generate_api_key

37

from rhodecode.lib.utils import ask_ok

37

from rhodecode.lib.utils import ask_ok

38

from rhodecode.model import init_model

38

from rhodecode.model import init_model

39

from rhodecode.model.db import User, Permission, RhodeCodeUi, \

39

from rhodecode.model.db import User, Permission, RhodeCodeUi, \

40

RhodeCodeSettings, UserToPerm, DbMigrateVersion

40

RhodeCodeSettings, UserToPerm, DbMigrateVersion

41

42

from sqlalchemy.engine import create_engine

42

from sqlalchemy.engine import create_engine

43

44

log = logging.getLogger(__name__)

44

log = logging.getLogger(__name__)

45

46

47

class DbManage(object):

47

class DbManage(object):

48

def __init__(self, log_sql, dbconf, root, tests=False):

48

def __init__(self, log_sql, dbconf, root, tests=False):

49

self.dbname = dbconf.split('/')[-1]

49

self.dbname = dbconf.split('/')[-1]

50

self.tests = tests

50

self.tests = tests

51

self.root = root

51

self.root = root

52

self.dburi = dbconf

52

self.dburi = dbconf

53

self.log_sql = log_sql

53

self.log_sql = log_sql

54

self.db_exists = False

54

self.db_exists = False

55

self.init_db()

55

self.init_db()

56

57

def init_db(self):

57

def init_db(self):

58

engine = create_engine(self.dburi, echo=self.log_sql)

58

engine = create_engine(self.dburi, echo=self.log_sql)

59

init_model(engine)

59

init_model(engine)

60

self.sa = meta.Session()

60

self.sa = meta.Session()

61

62

def create_tables(self, override=False):

62

def create_tables(self, override=False):

63

"""Create a auth database

63

"""Create a auth database

64

"""

64

"""

65

66

log.info("Any existing database is going to be destroyed")

66

log.info("Any existing database is going to be destroyed")

67

if self.tests:

67

if self.tests:

68

destroy = True

68

destroy = True

69

else:

69

else:

70

destroy = ask_ok('Are you sure to destroy old database ? [y/n]')

70

destroy = ask_ok('Are you sure to destroy old database ? [y/n]')

71

if not destroy:

71

if not destroy:

72

sys.exit()

72

sys.exit()

73

if destroy:

73

if destroy:

74

meta.Base.metadata.drop_all()

74

meta.Base.metadata.drop_all()

75

76

checkfirst = not override

76

checkfirst = not override

77

meta.Base.metadata.create_all(checkfirst=checkfirst)

77

meta.Base.metadata.create_all(checkfirst=checkfirst)

78

log.info('Created tables for %s', self.dbname)

78

log.info('Created tables for %s', self.dbname)

79

80

def set_db_version(self):

80

def set_db_version(self):

81

try:

81

try:

82

ver = DbMigrateVersion()

82

ver = DbMigrateVersion()

83

ver.version = __dbversion__

83

ver.version = __dbversion__

84

ver.repository_id = 'rhodecode_db_migrations'

84

ver.repository_id = 'rhodecode_db_migrations'

85

ver.repository_path = 'versions'

85

ver.repository_path = 'versions'

86

self.sa.add(ver)

86

self.sa.add(ver)

87

self.sa.commit()

87

self.sa.commit()

88

except:

88

except:

89

self.sa.rollback()

89

self.sa.rollback()

90

raise

90

raise

91

log.info('db version set to: %s', __dbversion__)

91

log.info('db version set to: %s', __dbversion__)

92

93

def upgrade(self):

93

def upgrade(self):

94

"""Upgrades given database schema to given revision following

94

"""Upgrades given database schema to given revision following

95

all needed steps, to perform the upgrade

95

all needed steps, to perform the upgrade

96

97

"""

97

"""

98

99

from rhodecode.lib.dbmigrate.migrate.versioning import api

99

from rhodecode.lib.dbmigrate.migrate.versioning import api

100

from rhodecode.lib.dbmigrate.migrate.exceptions import \

100

from rhodecode.lib.dbmigrate.migrate.exceptions import \

101

DatabaseNotControlledError

101

DatabaseNotControlledError

102

103

upgrade = ask_ok('You are about to perform database upgrade, make '

103

upgrade = ask_ok('You are about to perform database upgrade, make '

104

'sure You backed up your database before. '

104

'sure You backed up your database before. '

105

'Continue ? [y/n]')

105

'Continue ? [y/n]')

106

if not upgrade:

106

if not upgrade:

107

sys.exit('Nothing done')

107

sys.exit('Nothing done')

108

109

repository_path = jn(dn(dn(dn(os.path.realpath(__file__)))),

109

repository_path = jn(dn(dn(dn(os.path.realpath(__file__)))),

110

'rhodecode/lib/dbmigrate')

110

'rhodecode/lib/dbmigrate')

111

db_uri = self.dburi

111

db_uri = self.dburi

112

113

try:

113

try:

114

curr_version = api.db_version(db_uri, repository_path)

114

curr_version = api.db_version(db_uri, repository_path)

115

msg = ('Found current database under version'

115

msg = ('Found current database under version'

116

' control with version %s' % curr_version)

116

' control with version %s' % curr_version)

117

118

except (RuntimeError, DatabaseNotControlledError):

118

except (RuntimeError, DatabaseNotControlledError):

119

curr_version = 1

119

curr_version = 1

120

msg = ('Current database is not under version control. Setting'

120

msg = ('Current database is not under version control. Setting'

121

' as version %s' % curr_version)

121

' as version %s' % curr_version)

122

api.version_control(db_uri, repository_path, curr_version)

122

api.version_control(db_uri, repository_path, curr_version)

123

124

print (msg)

124

print (msg)

125

126

if curr_version == __dbversion__:

126

if curr_version == __dbversion__:

127

sys.exit('This database is already at the newest version')

127

sys.exit('This database is already at the newest version')

128

129

#======================================================================

129

#======================================================================

130

# UPGRADE STEPS

130

# UPGRADE STEPS

131

#======================================================================

131

#======================================================================

132

class UpgradeSteps(object):

132

class UpgradeSteps(object):

133

"""Those steps follow schema versions so for example schema

133

"""Those steps follow schema versions so for example schema

134

for example schema with seq 002 == step_2 and so on.

134

for example schema with seq 002 == step_2 and so on.

135

"""

135

"""

136

137

def __init__(self, klass):

137

def __init__(self, klass):

138

self.klass = klass

138

self.klass = klass

139

140

def step_0(self):

140

def step_0(self):

141

#step 0 is the schema upgrade, and than follow proper upgrades

141

#step 0 is the schema upgrade, and than follow proper upgrades

142

print ('attempting to do database upgrade to version %s' \

142

print ('attempting to do database upgrade to version %s' \

143

% __dbversion__)

143

% __dbversion__)

144

api.upgrade(db_uri, repository_path, __dbversion__)

144

api.upgrade(db_uri, repository_path, __dbversion__)

145

print ('Schema upgrade completed')

145

print ('Schema upgrade completed')

146

147

def step_1(self):

147

def step_1(self):

148

pass

148

pass

149

150

def step_2(self):

150

def step_2(self):

151

print ('Patching repo paths for newer version of RhodeCode')

151

print ('Patching repo paths for newer version of RhodeCode')

152

self.klass.fix_repo_paths()

152

self.klass.fix_repo_paths()

153

154

print ('Patching default user of RhodeCode')

154

print ('Patching default user of RhodeCode')

155

self.klass.fix_default_user()

155

self.klass.fix_default_user()

156

157

log.info('Changing ui settings')

157

log.info('Changing ui settings')

158

self.klass.create_ui_settings()

158

self.klass.create_ui_settings()

159

160

def step_3(self):

160

def step_3(self):

161

print ('Adding additional settings into RhodeCode db')

161

print ('Adding additional settings into RhodeCode db')

162

self.klass.fix_settings()

162

self.klass.fix_settings()

163

164

upgrade_steps = [0] + range(curr_version + 1, __dbversion__ + 1)

164

upgrade_steps = [0] + range(curr_version + 1, __dbversion__ + 1)

165

166

#CALL THE PROPER ORDER OF STEPS TO PERFORM FULL UPGRADE

166

#CALL THE PROPER ORDER OF STEPS TO PERFORM FULL UPGRADE

167

for step in upgrade_steps:

167

for step in upgrade_steps:

168

print ('performing upgrade step %s' % step)

168

print ('performing upgrade step %s' % step)

169

callable = getattr(UpgradeSteps(self), 'step_%s' % step)()

169

callable = getattr(UpgradeSteps(self), 'step_%s' % step)()

170

171

def fix_repo_paths(self):

171

def fix_repo_paths(self):

172

"""Fixes a old rhodecode version path into new one without a '*'

172

"""Fixes a old rhodecode version path into new one without a '*'

173

"""

173

"""

174

175

paths = self.sa.query(RhodeCodeUi)\

175

paths = self.sa.query(RhodeCodeUi)\

176

.filter(RhodeCodeUi.ui_key == '/')\

176

.filter(RhodeCodeUi.ui_key == '/')\

177

.scalar()

177

.scalar()

178

179

paths.ui_value = paths.ui_value.replace('*', '')

179

paths.ui_value = paths.ui_value.replace('*', '')

180

181

try:

181

try:

182

self.sa.add(paths)

182

self.sa.add(paths)

183

self.sa.commit()

183

self.sa.commit()

184

except:

184

except:

185

self.sa.rollback()

185

self.sa.rollback()

186

raise

186

raise

187

188

def fix_default_user(self):

188

def fix_default_user(self):

189

"""Fixes a old default user with some 'nicer' default values,

189

"""Fixes a old default user with some 'nicer' default values,

190

used mostly for anonymous access

190

used mostly for anonymous access

191

"""

191

"""

192

def_user = self.sa.query(User)\

192

def_user = self.sa.query(User)\

193

.filter(User.username == 'default')\

193

.filter(User.username == 'default')\

194

.one()

194

.one()

195

196

def_user.name = 'Anonymous'

196

def_user.name = 'Anonymous'

197

def_user.lastname = 'User'

197

def_user.lastname = 'User'

198

def_user.email = 'anonymous@rhodecode.org'

198

def_user.email = 'anonymous@rhodecode.org'

199

200

try:

200

try:

201

self.sa.add(def_user)

201

self.sa.add(def_user)

202

self.sa.commit()

202

self.sa.commit()

203

except:

203

except:

204

self.sa.rollback()

204

self.sa.rollback()

205

raise

205

raise

206

207

def fix_settings(self):

207

def fix_settings(self):

208

"""Fixes rhodecode settings adds ga_code key for google analytics

208

"""Fixes rhodecode settings adds ga_code key for google analytics

209

"""

209

"""

210

211

hgsettings3 = RhodeCodeSettings('ga_code', '')

211

hgsettings3 = RhodeCodeSettings('ga_code', '')

212

213

try:

213

try:

214

self.sa.add(hgsettings3)

214

self.sa.add(hgsettings3)

215

self.sa.commit()

215

self.sa.commit()

216

except:

216

except:

217

self.sa.rollback()

217

self.sa.rollback()

218

raise

218

raise

219

220

def admin_prompt(self, second=False):

220

def admin_prompt(self, second=False):

221

if not self.tests:

221

if not self.tests:

222

import getpass

222

import getpass

223

224

def get_password():

224

def get_password():

225

password = getpass.getpass('Specify admin password '

225

password = getpass.getpass('Specify admin password '

226

'(min 6 chars):')

226

'(min 6 chars):')

227

confirm = getpass.getpass('Confirm password:')

227

confirm = getpass.getpass('Confirm password:')

228

229

if password != confirm:

229

if password != confirm:

230

log.error('passwords mismatch')

230

log.error('passwords mismatch')

231

return False

231

return False

232

if len(password) < 6:

232

if len(password) < 6:

233

log.error('password is to short use at least 6 characters')

233

log.error('password is to short use at least 6 characters')

234

return False

234

return False

235

236

return password

236

return password

237

238

username = raw_input('Specify admin username:')

238

username = raw_input('Specify admin username:')

239

240

password = get_password()

240

password = get_password()

241

if not password:

241

if not password:

242

#second try

242

#second try

243

password = get_password()

243

password = get_password()

244

if not password:

244

if not password:

245

sys.exit()

245

sys.exit()

246

247

email = raw_input('Specify admin email:')

247

email = raw_input('Specify admin email:')

248

self.create_user(username, password, email, True)

248

self.create_user(username, password, email, True)

249

else:

249

else:

250

log.info('creating admin and regular test users')

250

log.info('creating admin and regular test users')

251

self.create_user('test_admin', 'test12',

251

self.create_user('test_admin', 'test12',

252

'test_admin@mail.com', True)

252

'test_admin@mail.com', True)

253

self.create_user('test_regular', 'test12',

253

self.create_user('test_regular', 'test12',

254

'test_regular@mail.com', False)

254

'test_regular@mail.com', False)

255

self.create_user('test_regular2', 'test12',

255

self.create_user('test_regular2', 'test12',

256

'test_regular2@mail.com', False)

256

'test_regular2@mail.com', False)

257

258

def create_ui_settings(self):

258

def create_ui_settings(self):

259

"""Creates ui settings, fills out hooks

259

"""Creates ui settings, fills out hooks

260

and disables dotencode

260

and disables dotencode

261

262

"""

262

"""

263

#HOOKS

263

#HOOKS

264

hooks1_key = RhodeCodeUi.HOOK_UPDATE

264

hooks1_key = RhodeCodeUi.HOOK_UPDATE

265

hooks1_ = self.sa.query(RhodeCodeUi)\

265

hooks1_ = self.sa.query(RhodeCodeUi)\

266

.filter(RhodeCodeUi.ui_key == hooks1_key).scalar()

266

.filter(RhodeCodeUi.ui_key == hooks1_key).scalar()

267

268

hooks1 = RhodeCodeUi() if hooks1_ is None else hooks1_

268

hooks1 = RhodeCodeUi() if hooks1_ is None else hooks1_

269

hooks1.ui_section = 'hooks'

269

hooks1.ui_section = 'hooks'

270

hooks1.ui_key = hooks1_key

270

hooks1.ui_key = hooks1_key

271

hooks1.ui_value = 'hg update >&2'

271

hooks1.ui_value = 'hg update >&2'

272

hooks1.ui_active = False

272

hooks1.ui_active = False

273

274

hooks2_key = RhodeCodeUi.HOOK_REPO_SIZE

274

hooks2_key = RhodeCodeUi.HOOK_REPO_SIZE

275

hooks2_ = self.sa.query(RhodeCodeUi)\

275

hooks2_ = self.sa.query(RhodeCodeUi)\

276

.filter(RhodeCodeUi.ui_key == hooks2_key).scalar()

276

.filter(RhodeCodeUi.ui_key == hooks2_key).scalar()

277

278

hooks2 = RhodeCodeUi() if hooks2_ is None else hooks2_

278

hooks2 = RhodeCodeUi() if hooks2_ is None else hooks2_

279

hooks2.ui_section = 'hooks'

279

hooks2.ui_section = 'hooks'

280

hooks2.ui_key = hooks2_key

280

hooks2.ui_key = hooks2_key

281

hooks2.ui_value = 'python:rhodecode.lib.hooks.repo_size'

281

hooks2.ui_value = 'python:rhodecode.lib.hooks.repo_size'

282

283

hooks3 = RhodeCodeUi()

283

hooks3 = RhodeCodeUi()

284

hooks3.ui_section = 'hooks'

284

hooks3.ui_section = 'hooks'

285

hooks3.ui_key = RhodeCodeUi.HOOK_PUSH

285

hooks3.ui_key = RhodeCodeUi.HOOK_PUSH

286

hooks3.ui_value = 'python:rhodecode.lib.hooks.log_push_action'

286

hooks3.ui_value = 'python:rhodecode.lib.hooks.log_push_action'

287

288

hooks4 = RhodeCodeUi()

288

hooks4 = RhodeCodeUi()

289

hooks4.ui_section = 'hooks'

289

hooks4.ui_section = 'hooks'

290

hooks4.ui_key = RhodeCodeUi.HOOK_PULL

290

hooks4.ui_key = RhodeCodeUi.HOOK_PULL

291

hooks4.ui_value = 'python:rhodecode.lib.hooks.log_pull_action'

291

hooks4.ui_value = 'python:rhodecode.lib.hooks.log_pull_action'

292

293

#For mercurial 1.7 set backward comapatibility with format

293

#For mercurial 1.7 set backward comapatibility with format

294

dotencode_disable = RhodeCodeUi()

294

dotencode_disable = RhodeCodeUi()

295

dotencode_disable.ui_section = 'format'

295

dotencode_disable.ui_section = 'format'

296

dotencode_disable.ui_key = 'dotencode'

296

dotencode_disable.ui_key = 'dotencode'

297

dotencode_disable.ui_value = 'false'

297

dotencode_disable.ui_value = 'false'

298

299

try:

299

try:

300

self.sa.add(hooks1)

300

self.sa.add(hooks1)

301

self.sa.add(hooks2)

301

self.sa.add(hooks2)

302

self.sa.add(hooks3)

302

self.sa.add(hooks3)

303

self.sa.add(hooks4)

303

self.sa.add(hooks4)

304

self.sa.add(dotencode_disable)

304

self.sa.add(dotencode_disable)

305

self.sa.commit()

305

self.sa.commit()

306

except:

306

except:

307

self.sa.rollback()

307

self.sa.rollback()

308

raise

308

raise

309

310

def create_ldap_options(self):

310

def create_ldap_options(self):

311

"""Creates ldap settings"""

311

"""Creates ldap settings"""

312

313

try:

313

try:

314

for k, v in [('ldap_active', 'false'), ('ldap_host', ''),

314

for k, v in [('ldap_active', 'false'), ('ldap_host', ''),

315

('ldap_port', '389'), ('ldap_tls_kind', 'PLAIN'),

315

('ldap_port', '389'), ('ldap_tls_kind', 'PLAIN'),

316

('ldap_tls_reqcert', ''), ('ldap_dn_user', ''),

316

('ldap_tls_reqcert', ''), ('ldap_dn_user', ''),

317

('ldap_dn_pass', ''), ('ldap_base_dn', ''),

317

('ldap_dn_pass', ''), ('ldap_base_dn', ''),

318

('ldap_filter', ''), ('ldap_search_scope', ''),

318

('ldap_filter', ''), ('ldap_search_scope', ''),

319

('ldap_attr_login', ''), ('ldap_attr_firstname', ''),

319

('ldap_attr_login', ''), ('ldap_attr_firstname', ''),

320

('ldap_attr_lastname', ''), ('ldap_attr_email', '')]:

320

('ldap_attr_lastname', ''), ('ldap_attr_email', '')]:

321

322

setting = RhodeCodeSettings(k, v)

322

setting = RhodeCodeSettings(k, v)

323

self.sa.add(setting)

323

self.sa.add(setting)

324

self.sa.commit()

324

self.sa.commit()

325

except:

325

except:

326

self.sa.rollback()

326

self.sa.rollback()

327

raise

327

raise

328

329

def config_prompt(self, test_repo_path='', retries=3):

329

def config_prompt(self, test_repo_path='', retries=3):

330

if retries == 3:

330

if retries == 3:

331

log.info('Setting up repositories config')

331

log.info('Setting up repositories config')

332

333

if not self.tests and not test_repo_path:

333

if not self.tests and not test_repo_path:

334

path = raw_input('Specify valid full path to your repositories'

334

path = raw_input('Specify valid full path to your repositories'

335

' you can change this later in application settings:')

335

' you can change this later in application settings:')

336

else:

336

else:

337

path = test_repo_path

337

path = test_repo_path

338

path_ok = True

338

path_ok = True

339

340

#check proper dir

340

#check proper dir

341

if not os.path.isdir(path):

341

if not os.path.isdir(path):

342

path_ok = False

342

path_ok = False

343

log.error('Given path %s is not a valid directory', path)

343

log.error('Given path %s is not a valid directory', path)

344

345

#check write access

345

#check write access

346

if not os.access(path, os.W_OK) and path_ok:

346

if not os.access(path, os.W_OK) and path_ok:

347

path_ok = False

347

path_ok = False

348

log.error('No write permission to given path %s', path)

348

log.error('No write permission to given path %s', path)

349

350

351

if retries == 0:

351

if retries == 0:

352

sys.exit('max retries reached')

352

sys.exit('max retries reached')

353

if path_ok is False:

353

if path_ok is False:

354

retries -= 1

354

retries -= 1

355

return self.config_prompt(test_repo_path, retries)

355

return self.config_prompt(test_repo_path, retries)

356

357

return path

357

return path

358

359

def create_settings(self, path):

359

def create_settings(self, path):

360

361

self.create_ui_settings()

361

self.create_ui_settings()

362

363

#HG UI OPTIONS

363

#HG UI OPTIONS

364

web1 = RhodeCodeUi()

364

web1 = RhodeCodeUi()

365

web1.ui_section = 'web'

365

web1.ui_section = 'web'

366

web1.ui_key = 'push_ssl'

366

web1.ui_key = 'push_ssl'

367

web1.ui_value = 'false'

367

web1.ui_value = 'false'

368

369

web2 = RhodeCodeUi()

369

web2 = RhodeCodeUi()

370

web2.ui_section = 'web'

370

web2.ui_section = 'web'

371

web2.ui_key = 'allow_archive'

371

web2.ui_key = 'allow_archive'

372

web2.ui_value = 'gz zip bz2'

372

web2.ui_value = 'gz zip bz2'

373

374

web3 = RhodeCodeUi()

374

web3 = RhodeCodeUi()

375

web3.ui_section = 'web'

375

web3.ui_section = 'web'

376

web3.ui_key = 'allow_push'

376

web3.ui_key = 'allow_push'

377

web3.ui_value = '*'

377

web3.ui_value = '*'

378

379

web4 = RhodeCodeUi()

379

web4 = RhodeCodeUi()

380

web4.ui_section = 'web'

380

web4.ui_section = 'web'

381

web4.ui_key = 'baseurl'

381

web4.ui_key = 'baseurl'

382

web4.ui_value = '/'

382

web4.ui_value = '/'

383

384

paths = RhodeCodeUi()

384

paths = RhodeCodeUi()

385

paths.ui_section = 'paths'

385

paths.ui_section = 'paths'

386

paths.ui_key = '/'

386

paths.ui_key = '/'

387

paths.ui_value = path

387

paths.ui_value = path

388

389

hgsettings1 = RhodeCodeSettings('realm', 'RhodeCode authentication')

389

hgsettings1 = RhodeCodeSettings('realm', 'RhodeCode authentication')

390

hgsettings2 = RhodeCodeSettings('title', 'RhodeCode')

390

hgsettings2 = RhodeCodeSettings('title', 'RhodeCode')

391

hgsettings3 = RhodeCodeSettings('ga_code', '')

391

hgsettings3 = RhodeCodeSettings('ga_code', '')

392

393

try:

393

try:

394

self.sa.add(web1)

394

self.sa.add(web1)

395

self.sa.add(web2)

395

self.sa.add(web2)

396

self.sa.add(web3)

396

self.sa.add(web3)

397

self.sa.add(web4)

397

self.sa.add(web4)

398

self.sa.add(paths)

398

self.sa.add(paths)

399

self.sa.add(hgsettings1)

399

self.sa.add(hgsettings1)

400

self.sa.add(hgsettings2)

400

self.sa.add(hgsettings2)

401

self.sa.add(hgsettings3)

401

self.sa.add(hgsettings3)

402

403

self.sa.commit()

403

self.sa.commit()

404

except:

404

except:

405

self.sa.rollback()

405

self.sa.rollback()

406

raise

406

raise

407

408

self.create_ldap_options()

408

self.create_ldap_options()

409

410

log.info('created ui config')

410

log.info('created ui config')

411

412

def create_user(self, username, password, email='', admin=False):

412

def create_user(self, username, password, email='', admin=False):

413

log.info('creating administrator user %s', username)

413

log.info('creating administrator user %s', username)

414

new_user = User()

414

415

~~new_user~~.~~username~~ = username

415

form_data = dict(username=username,

416

new_user.password = get_crypt_password(password)

416

password=password,

417

new_user.api_key = generate_api_key(username)

417

active=True,

418

new_user.name = 'RhodeCode'

418

admin=admin,

419

new_user.lastname = 'Admin'

419

name='RhodeCode',

420

new_user.email = email

420

lastname='Admin',

421

new_user.admin = admin

421

email=email)

422

new_user.active = True

422

User.create(form_data)

423

424

try:

425

self.sa.add(new_user)

426

self.sa.commit()

427

except:

428

self.sa.rollback()

429

raise

430

424

431

def create_default_user(self):

425

def create_default_user(self):

432

log.info('creating default user')

426

log.info('creating default user')

433

#create default user for handling default permissions.

427

#create default user for handling default permissions.

434

def_user = User()

435

def_user.username = 'default'

436

def_user.password = get_crypt_password(str(uuid.uuid1())[:8])

437

def_user.api_key = generate_api_key('default')

438

def_user.name = 'Anonymous'

439

def_user.lastname = 'User'

440

def_user.email = 'anonymous@rhodecode.org'

441

def_user.admin = False

442

def_user.active = False

443

try:

444

self.sa.add(def_user)

445

self.sa.commit()

446

except:

447

self.sa.rollback()

448

raise

449

428

429

form_data = dict(username='default',

430

password=str(uuid.uuid1())[:8],

431

active=False,

432

admin=False,

433

name='Anonymous',

434

lastname='User',

435

email='anonymous@rhodecode.org')

436

User.create(form_data)

437

450

def create_permissions(self):

438

def create_permissions(self):

451

#module.(access|create|change|delete)_[name]

439

#module.(access|create|change|delete)_[name]

452

#module.(read|write|owner)

440

#module.(read|write|owner)

453

perms = [('repository.none', 'Repository no access'),

441

perms = [('repository.none', 'Repository no access'),

454

('repository.read', 'Repository read access'),

442

('repository.read', 'Repository read access'),

455

('repository.write', 'Repository write access'),

443

('repository.write', 'Repository write access'),

456

('repository.admin', 'Repository admin access'),

444

('repository.admin', 'Repository admin access'),

457

('hg.admin', 'Hg Administrator'),

445

('hg.admin', 'Hg Administrator'),

458

('hg.create.repository', 'Repository create'),

446

('hg.create.repository', 'Repository create'),

459

('hg.create.none', 'Repository creation disabled'),

447

('hg.create.none', 'Repository creation disabled'),

460

('hg.register.none', 'Register disabled'),

448

('hg.register.none', 'Register disabled'),

461

('hg.register.manual_activate', 'Register new user with '

449

('hg.register.manual_activate', 'Register new user with '

462

'RhodeCode without manual'

450

'RhodeCode without manual'

463

'activation'),

451

'activation'),

464

452

465

('hg.register.auto_activate', 'Register new user with '

453

('hg.register.auto_activate', 'Register new user with '

466

'RhodeCode without auto '

454

'RhodeCode without auto '

467

'activation'),

455

'activation'),

468

]

456

]

469

457

470

for p in perms:

458

for p in perms:

471

new_perm = Permission()

459

new_perm = Permission()

472

new_perm.permission_name = p[0]

460

new_perm.permission_name = p[0]

473

new_perm.permission_longname = p[1]

461

new_perm.permission_longname = p[1]

474

try:

462

try:

475

self.sa.add(new_perm)

463

self.sa.add(new_perm)

476

self.sa.commit()

464

self.sa.commit()

477

except:

465

except:

478

self.sa.rollback()

466

self.sa.rollback()

479

raise

467

raise

480

468

481

def populate_default_permissions(self):

469

def populate_default_permissions(self):

482

log.info('creating default user permissions')

470

log.info('creating default user permissions')

483

471

484

default_user = self.sa.query(User)\

472

default_user = self.sa.query(User)\

485

.filter(User.username == 'default').scalar()

473

.filter(User.username == 'default').scalar()

486

474

487

reg_perm = UserToPerm()

475

reg_perm = UserToPerm()

488

reg_perm.user = default_user

476

reg_perm.user = default_user

489

reg_perm.permission = self.sa.query(Permission)\

477

reg_perm.permission = self.sa.query(Permission)\

490

.filter(Permission.permission_name == 'hg.register.manual_activate')\

478

.filter(Permission.permission_name == 'hg.register.manual_activate')\

491

.scalar()

479

.scalar()

492

480

493

create_repo_perm = UserToPerm()

481

create_repo_perm = UserToPerm()

494

create_repo_perm.user = default_user

482

create_repo_perm.user = default_user

495

create_repo_perm.permission = self.sa.query(Permission)\

483

create_repo_perm.permission = self.sa.query(Permission)\

496

.filter(Permission.permission_name == 'hg.create.repository')\

484

.filter(Permission.permission_name == 'hg.create.repository')\

497

.scalar()

485

.scalar()

498

486

499

default_repo_perm = UserToPerm()

487

default_repo_perm = UserToPerm()

500

default_repo_perm.user = default_user

488

default_repo_perm.user = default_user

501

default_repo_perm.permission = self.sa.query(Permission)\

489

default_repo_perm.permission = self.sa.query(Permission)\

502

.filter(Permission.permission_name == 'repository.read')\

490

.filter(Permission.permission_name == 'repository.read')\

503

.scalar()

491

.scalar()

504

492

505

try:

493

try:

506

self.sa.add(reg_perm)

494

self.sa.add(reg_perm)

507

self.sa.add(create_repo_perm)

495

self.sa.add(create_repo_perm)

508

self.sa.add(default_repo_perm)

496

self.sa.add(default_repo_perm)

509

self.sa.commit()

497

self.sa.commit()

510

except:

498

except:

511

self.sa.rollback()

499

self.sa.rollback()

512

raise

500

raise

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

             # -*- coding: utf-8 -*-
             """
                 rhodecode.lib.db_manage
                 ~~~~~~~~~~~~~~~~~~~~~~~
                 Database creation, and setup module for RhodeCode. Used for creation
                 of database as well as for migration operations
                 :created_on: Apr 10, 2010
                 :author: marcink
                 :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>
                 :license: GPLv3, see COPYING for more details.
             """
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             import os
             import sys
             import uuid
             import logging
             from os.path import dirname as dn, join as jn
             from rhodecode import __dbversion__
             from rhodecode.model import meta
             from rhodecode.lib.auth import get_crypt_password, generate_api_key
             from rhodecode.lib.utils import ask_ok
             from rhodecode.model import init_model
             from rhodecode.model.db import User, Permission, RhodeCodeUi, \
                 RhodeCodeSettings, UserToPerm, DbMigrateVersion
             from sqlalchemy.engine import create_engine
             log = logging.getLogger(__name__)
             class DbManage(object):
                 def __init__(self, log_sql, dbconf, root, tests=False):
                     self.dbname = dbconf.split('/')[-1]
                     self.tests = tests
                     self.root = root
                     self.dburi = dbconf
                     self.log_sql = log_sql
                     self.db_exists = False
                     self.init_db()
                 def init_db(self):
                     engine = create_engine(self.dburi, echo=self.log_sql)
                     init_model(engine)
                     self.sa = meta.Session()
                 def create_tables(self, override=False):
                     """Create a auth database
                     """
                     log.info("Any existing database is going to be destroyed")
                     if self.tests:
                         destroy = True
                     else:
                         destroy = ask_ok('Are you sure to destroy old database ? [y/n]')
                     if not destroy:
                         sys.exit()
                     if destroy:
                         meta.Base.metadata.drop_all()
                     checkfirst = not override
                     meta.Base.metadata.create_all(checkfirst=checkfirst)
                     log.info('Created tables for %s', self.dbname)
                 def set_db_version(self):
                     try:
                         ver = DbMigrateVersion()
                         ver.version = __dbversion__
                         ver.repository_id = 'rhodecode_db_migrations'
                         ver.repository_path = 'versions'
                         self.sa.add(ver)
                         self.sa.commit()
                     except:
                         self.sa.rollback()
                         raise
                     log.info('db version set to: %s', __dbversion__)
                 def upgrade(self):
                     """Upgrades given database schema to given revision following
                     all needed steps, to perform the upgrade
                     """
                     from rhodecode.lib.dbmigrate.migrate.versioning import api
                     from rhodecode.lib.dbmigrate.migrate.exceptions import \
                         DatabaseNotControlledError
                     upgrade = ask_ok('You are about to perform database upgrade, make '
                                      'sure You backed up your database before. '
                                      'Continue ? [y/n]')
                     if not upgrade:
                         sys.exit('Nothing done')
                     repository_path = jn(dn(dn(dn(os.path.realpath(__file__)))),
                                          'rhodecode/lib/dbmigrate')
                     db_uri = self.dburi
                     try:
                         curr_version = api.db_version(db_uri, repository_path)
                         msg = ('Found current database under version'
                              ' control with version %s' % curr_version)
                     except (RuntimeError, DatabaseNotControlledError):
                         curr_version = 1
                         msg = ('Current database is not under version control. Setting'
                                ' as version %s' % curr_version)
                         api.version_control(db_uri, repository_path, curr_version)
                     print (msg)
                     if curr_version == __dbversion__:
                         sys.exit('This database is already at the newest version')
                     #======================================================================
                     # UPGRADE STEPS
                     #======================================================================
                     class UpgradeSteps(object):
                         """Those steps follow schema versions so for example schema
                         for example schema with seq 002 == step_2 and so on.
                         """
                         def __init__(self, klass):
                             self.klass = klass
                         def step_0(self):
                             #step 0 is the schema upgrade, and than follow proper upgrades
                             print ('attempting to do database upgrade to version %s' \
                                             % __dbversion__)
                             api.upgrade(db_uri, repository_path, __dbversion__)
                             print ('Schema upgrade completed')
                         def step_1(self):
                             pass
                         def step_2(self):
                             print ('Patching repo paths for newer version of RhodeCode')
                             self.klass.fix_repo_paths()
                             print ('Patching default user of RhodeCode')
                             self.klass.fix_default_user()
                             log.info('Changing ui settings')
                             self.klass.create_ui_settings()
                         def step_3(self):
                             print ('Adding additional settings into RhodeCode db')
                             self.klass.fix_settings()
                     upgrade_steps = [0] + range(curr_version + 1, __dbversion__ + 1)
                     #CALL THE PROPER ORDER OF STEPS TO PERFORM FULL UPGRADE
                     for step in upgrade_steps:
                         print ('performing upgrade step %s' % step)
                         callable = getattr(UpgradeSteps(self), 'step_%s' % step)()
                 def fix_repo_paths(self):
                     """Fixes a old rhodecode version path into new one without a '*'
                     """
                     paths = self.sa.query(RhodeCodeUi)\
                             .filter(RhodeCodeUi.ui_key == '/')\
                             .scalar()
                     paths.ui_value = paths.ui_value.replace('*', '')
                     try:
                         self.sa.add(paths)
                         self.sa.commit()
                     except:
                         self.sa.rollback()
                         raise
                 def fix_default_user(self):
                     """Fixes a old default user with some 'nicer' default values,
                     used mostly for anonymous access
                     """
                     def_user = self.sa.query(User)\
                             .filter(User.username == 'default')\
                             .one()
                     def_user.name = 'Anonymous'
                     def_user.lastname = 'User'
                     def_user.email = 'anonymous@rhodecode.org'
                     try:
                         self.sa.add(def_user)
                         self.sa.commit()
                     except:
                         self.sa.rollback()
                         raise
                 def fix_settings(self):
                     """Fixes rhodecode settings adds ga_code key for google analytics
                     """
                     hgsettings3 = RhodeCodeSettings('ga_code', '')
                     try:
                         self.sa.add(hgsettings3)
                         self.sa.commit()
                     except:
                         self.sa.rollback()
                         raise
                 def admin_prompt(self, second=False):
                     if not self.tests:
                         import getpass
                         def get_password():
                             password = getpass.getpass('Specify admin password '
                                                        '(min 6 chars):')
                             confirm = getpass.getpass('Confirm password:')
                             if password != confirm:
                                 log.error('passwords mismatch')
                                 return False
                             if len(password) < 6:
                                 log.error('password is to short use at least 6 characters')
                                 return False
                             return password
                         username = raw_input('Specify admin username:')
                         password = get_password()
                         if not password:
                             #second try
                             password = get_password()
                             if not password:
                                 sys.exit()
                         email = raw_input('Specify admin email:')
                         self.create_user(username, password, email, True)
                     else:
                         log.info('creating admin and regular test users')
                         self.create_user('test_admin', 'test12',
                                          'test_admin@mail.com', True)
                         self.create_user('test_regular', 'test12',
                                          'test_regular@mail.com', False)
                         self.create_user('test_regular2', 'test12',
                                          'test_regular2@mail.com', False)
                 def create_ui_settings(self):
                     """Creates ui settings, fills out hooks
                     and disables dotencode
                     """
                     #HOOKS
                     hooks1_key = RhodeCodeUi.HOOK_UPDATE
                     hooks1_ = self.sa.query(RhodeCodeUi)\
                         .filter(RhodeCodeUi.ui_key == hooks1_key).scalar()
                     hooks1 = RhodeCodeUi() if hooks1_ is None else hooks1_
                     hooks1.ui_section = 'hooks'
                     hooks1.ui_key = hooks1_key
                     hooks1.ui_value = 'hg update >&2'
                     hooks1.ui_active = False
                     hooks2_key = RhodeCodeUi.HOOK_REPO_SIZE
                     hooks2_ = self.sa.query(RhodeCodeUi)\
                         .filter(RhodeCodeUi.ui_key == hooks2_key).scalar()
                     hooks2 = RhodeCodeUi() if hooks2_ is None else hooks2_
                     hooks2.ui_section = 'hooks'
                     hooks2.ui_key = hooks2_key
                     hooks2.ui_value = 'python:rhodecode.lib.hooks.repo_size'
                     hooks3 = RhodeCodeUi()
                     hooks3.ui_section = 'hooks'
                     hooks3.ui_key = RhodeCodeUi.HOOK_PUSH
                     hooks3.ui_value = 'python:rhodecode.lib.hooks.log_push_action'
                     hooks4 = RhodeCodeUi()
                     hooks4.ui_section = 'hooks'
                     hooks4.ui_key = RhodeCodeUi.HOOK_PULL
                     hooks4.ui_value = 'python:rhodecode.lib.hooks.log_pull_action'
                     #For mercurial 1.7 set backward comapatibility with format
                     dotencode_disable = RhodeCodeUi()
                     dotencode_disable.ui_section = 'format'
                     dotencode_disable.ui_key = 'dotencode'
                     dotencode_disable.ui_value = 'false'
                     try:
                         self.sa.add(hooks1)
                         self.sa.add(hooks2)
                         self.sa.add(hooks3)
                         self.sa.add(hooks4)
                         self.sa.add(dotencode_disable)
                         self.sa.commit()
                     except:
                         self.sa.rollback()
                         raise
                 def create_ldap_options(self):
                     """Creates ldap settings"""
                     try:
                         for k, v in [('ldap_active', 'false'), ('ldap_host', ''),
                                     ('ldap_port', '389'), ('ldap_tls_kind', 'PLAIN'),
                                     ('ldap_tls_reqcert', ''), ('ldap_dn_user', ''),
                                     ('ldap_dn_pass', ''), ('ldap_base_dn', ''),
                                     ('ldap_filter', ''), ('ldap_search_scope', ''),
                                     ('ldap_attr_login', ''), ('ldap_attr_firstname', ''),
                                     ('ldap_attr_lastname', ''), ('ldap_attr_email', '')]:
                             setting = RhodeCodeSettings(k, v)
                             self.sa.add(setting)
                         self.sa.commit()
                     except:
                         self.sa.rollback()
                         raise
                 def config_prompt(self, test_repo_path='', retries=3):
                     if retries == 3:
                         log.info('Setting up repositories config')
                     if not self.tests and not test_repo_path:
                         path = raw_input('Specify valid full path to your repositories'
                                     ' you can change this later in application settings:')
                     else:
                         path = test_repo_path
                     path_ok = True
                     #check proper dir
                     if not os.path.isdir(path):
                         path_ok = False
                         log.error('Given path %s is not a valid directory', path)
                     #check write access
                     if not os.access(path, os.W_OK) and path_ok:
                         path_ok = False
                         log.error('No write permission to given path %s', path)
                     if retries == 0:
                         sys.exit('max retries reached')
                     if path_ok is False:
                         retries -= 1
                         return self.config_prompt(test_repo_path, retries)
                     return path
                 def create_settings(self, path):
                     self.create_ui_settings()
                     #HG UI OPTIONS
                     web1 = RhodeCodeUi()
                     web1.ui_section = 'web'
                     web1.ui_key = 'push_ssl'
                     web1.ui_value = 'false'
                     web2 = RhodeCodeUi()
                     web2.ui_section = 'web'
                     web2.ui_key = 'allow_archive'
                     web2.ui_value = 'gz zip bz2'
                     web3 = RhodeCodeUi()
                     web3.ui_section = 'web'
                     web3.ui_key = 'allow_push'
                     web3.ui_value = '*'
                     web4 = RhodeCodeUi()
                     web4.ui_section = 'web'
                     web4.ui_key = 'baseurl'
                     web4.ui_value = '/'
                     paths = RhodeCodeUi()
                     paths.ui_section = 'paths'
                     paths.ui_key = '/'
                     paths.ui_value = path
                     hgsettings1 = RhodeCodeSettings('realm', 'RhodeCode authentication')
                     hgsettings2 = RhodeCodeSettings('title', 'RhodeCode')
                     hgsettings3 = RhodeCodeSettings('ga_code', '')
                     try:
                         self.sa.add(web1)
                         self.sa.add(web2)
                         self.sa.add(web3)
                         self.sa.add(web4)
                         self.sa.add(paths)
                         self.sa.add(hgsettings1)
                         self.sa.add(hgsettings2)
                         self.sa.add(hgsettings3)
                         self.sa.commit()
                     except:
                         self.sa.rollback()
                         raise
                     self.create_ldap_options()
                     log.info('created ui config')
                 def create_user(self, username, password, email='', admin=False):
                     log.info('creating administrator user %s', username)
-                    new_user = User()
-                    new_user.username = username
+                    form_data = dict(username=username,
-                    new_user.password = get_crypt_password(password)
+                                     password=password,
-                    new_user.api_key = generate_api_key(username)
+                                     active=True,
-                    new_user.name = 'RhodeCode'
+                                     admin=admin,
-                    new_user.lastname = 'Admin'
+                                     name='RhodeCode',
-                    new_user.email = email
+                                     lastname='Admin',
-                    new_user.admin = admin
+                                     email=email)
-                    new_user.active = True
+                    User.create(form_data)
-                    try:
-                        self.sa.add(new_user)
-                        self.sa.commit()
-                    except:
-                        self.sa.rollback()
-                        raise
                 def create_default_user(self):
                     log.info('creating default user')
                     #create default user for handling default permissions.
-                    def_user = User()
-                    def_user.username = 'default'
-                    def_user.password = get_crypt_password(str(uuid.uuid1())[:8])
-                    def_user.api_key = generate_api_key('default')
-                    def_user.name = 'Anonymous'
-                    def_user.lastname = 'User'
-                    def_user.email = 'anonymous@rhodecode.org'
-                    def_user.admin = False
-                    def_user.active = False
-                    try:
-                        self.sa.add(def_user)
-                        self.sa.commit()
-                    except:
-                        self.sa.rollback()
-                        raise
+                    form_data = dict(username='default',
+                                     password=str(uuid.uuid1())[:8],
+                                     active=False,
+                                     admin=False,
+                                     name='Anonymous',
+                                     lastname='User',
+                                     email='anonymous@rhodecode.org')
+                    User.create(form_data)
                 def create_permissions(self):
                     #module.(access|create|change|delete)_[name]
                     #module.(read|write|owner)
                     perms = [('repository.none', 'Repository no access'),
                              ('repository.read', 'Repository read access'),
                              ('repository.write', 'Repository write access'),
                              ('repository.admin', 'Repository admin access'),
                              ('hg.admin', 'Hg Administrator'),
                              ('hg.create.repository', 'Repository create'),
                              ('hg.create.none', 'Repository creation disabled'),
                              ('hg.register.none', 'Register disabled'),
                              ('hg.register.manual_activate', 'Register new user with '
                                                              'RhodeCode without manual'
                                                              'activation'),
                              ('hg.register.auto_activate', 'Register new user with '
                                                            'RhodeCode without auto '
                                                            'activation'),
                             ]
                     for p in perms:
                         new_perm = Permission()
                         new_perm.permission_name = p[0]
                         new_perm.permission_longname = p[1]
                         try:
                             self.sa.add(new_perm)
                             self.sa.commit()
                         except:
                             self.sa.rollback()
                             raise
                 def populate_default_permissions(self):
                     log.info('creating default user permissions')
                     default_user = self.sa.query(User)\
                     .filter(User.username == 'default').scalar()
                     reg_perm = UserToPerm()
                     reg_perm.user = default_user
                     reg_perm.permission = self.sa.query(Permission)\
                     .filter(Permission.permission_name == 'hg.register.manual_activate')\
                     .scalar()
                     create_repo_perm = UserToPerm()
                     create_repo_perm.user = default_user
                     create_repo_perm.permission = self.sa.query(Permission)\
                     .filter(Permission.permission_name == 'hg.create.repository')\
                     .scalar()
                     default_repo_perm = UserToPerm()
                     default_repo_perm.user = default_user
                     default_repo_perm.permission = self.sa.query(Permission)\
                     .filter(Permission.permission_name == 'repository.read')\
                     .scalar()
                     try:
                         self.sa.add(reg_perm)
                         self.sa.add(create_repo_perm)
                         self.sa.add(default_repo_perm)
                         self.sa.commit()
                     except:
                         self.sa.rollback()
                         raise