upstream/kallithea Commit - r5543:d9b78d8f

cleanup: replace redirect with WebOb exceptions...

Søren Løvborg -

r5543:d9b78d8f default

parent child

kallithea/controllers/admin/auth_settings.py

0 +2 -2

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.auth_settings
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             pluggable authentication controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Nov 26, 2010
             :author: akesterson
             """
             import logging
             import formencode.htmlfill
             import traceback
             from pylons import request, tmpl_context as c, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound
             from kallithea.lib import helpers as h
             from kallithea.lib.compat import formatted_json
             from kallithea.lib.base import BaseController, render
             from kallithea.lib.auth import LoginRequired, HasPermissionAllDecorator
             from kallithea.lib import auth_modules
             from kallithea.model.forms import AuthSettingsForm
             from kallithea.model.db import Setting
             from kallithea.model.meta import Session
             log = logging.getLogger(__name__)
             class AuthSettingsController(BaseController):
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 def __before__(self):
                     super(AuthSettingsController, self).__before__()
                 def __load_defaults(self):
                     c.available_plugins = [
                         'kallithea.lib.auth_modules.auth_internal',
                         'kallithea.lib.auth_modules.auth_container',
                         'kallithea.lib.auth_modules.auth_ldap',
                         'kallithea.lib.auth_modules.auth_crowd',
                         'kallithea.lib.auth_modules.auth_pam'
                     ]
                     c.enabled_plugins = Setting.get_auth_plugins()
                 def __render(self, defaults, errors):
                     c.defaults = {}
                     c.plugin_settings = {}
                     c.plugin_shortnames = {}
                     for module in c.enabled_plugins:
                         plugin = auth_modules.loadplugin(module)
                         plugin_name = plugin.name
                         c.plugin_shortnames[module] = plugin_name
                         c.plugin_settings[module] = plugin.plugin_settings()
                         for v in c.plugin_settings[module]:
                             fullname = ("auth_" + plugin_name + "_" + v["name"])
                             if "default" in v:
                                 c.defaults[fullname] = v["default"]
                             # Current values will be the default on the form, if there are any
                             setting = Setting.get_by_name(fullname)
                             if setting is not None:
                                 c.defaults[fullname] = setting.app_settings_value
                     # we want to show , separated list of enabled plugins
                     c.defaults['auth_plugins'] = ','.join(c.enabled_plugins)
                     if defaults:
                         c.defaults.update(defaults)
                     log.debug(formatted_json(defaults))
                     return formencode.htmlfill.render(
                         render('admin/auth/auth_settings.html'),
                         defaults=c.defaults,
                         errors=errors,
                         prefix_error=False,
                         encoding="UTF-8",
                         force_defaults=False)
                 def index(self):
                     self.__load_defaults()
                     return self.__render(defaults=None, errors=None)
                 def auth_settings(self):
                     """POST create and store auth settings"""
                     self.__load_defaults()
                     log.debug("POST Result: %s", formatted_json(dict(request.POST)))
                     # First, parse only the plugin list (not the plugin settings).
                     _auth_plugins_validator = AuthSettingsForm([]).fields['auth_plugins']
                     try:
                         new_enabled_plugins = _auth_plugins_validator.to_python(request.POST.get('auth_plugins'))
                     except formencode.Invalid:
                         # User provided an invalid plugin list. Just fall back to
                         # the list of currently enabled plugins. (We'll re-validate
                         # and show an error message to the user, below.)
                         pass
                     else:
                         # Hide plugins that the user has asked to be disabled, but
                         # do not show plugins that the user has asked to be enabled
                         # (yet), since that'll cause validation errors and/or wrong
                         # settings being applied (e.g. checkboxes being cleared),
                         # since the plugin settings will not be in the POST data.
                         c.enabled_plugins = [ p for p in c.enabled_plugins if p in new_enabled_plugins ]
                     # Next, parse everything including plugin settings.
                     _form = AuthSettingsForm(c.enabled_plugins)()
                     try:
                         form_result = _form.to_python(dict(request.POST))
                         for k, v in form_result.items():
                             if k == 'auth_plugins':
                                 # we want to store it comma separated inside our settings
                                 v = ','.join(v)
                             log.debug("%s = %s", k, str(v))
                             setting = Setting.create_or_update(k, v)
                             Session().add(setting)
                         Session().commit()
                         h.flash(_('Auth settings updated successfully'),
                                    category='success')
                     except formencode.Invalid as errors:
                         log.error(traceback.format_exc())
                         e = errors.error_dict or {}
                         return self.__render(
                             defaults=errors.value,
                             errors=e,
                         )
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('error occurred during update of auth settings'),
                                 category='error')
-                    return redirect(url('auth_home'))
+                    raise HTTPFound(location=url('auth_home'))

kallithea/controllers/admin/defaults.py

0 +2 -2

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.defaults
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             default settings controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 27, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             import formencode
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound
             from kallithea.lib import helpers as h
             from kallithea.lib.auth import LoginRequired, HasPermissionAllDecorator
             from kallithea.lib.base import BaseController, render
             from kallithea.model.forms import DefaultsForm
             from kallithea.model.meta import Session
             from kallithea import BACKENDS
             from kallithea.model.db import Setting
             log = logging.getLogger(__name__)
             class DefaultsController(BaseController):
                 """REST Controller styled on the Atom Publishing Protocol"""
                 # To properly map this controller, ensure your config/routing.py
                 # file has a resource setup:
                 #     map.resource('default', 'defaults')
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 def __before__(self):
                     super(DefaultsController, self).__before__()
                 def index(self, format='html'):
                     """GET /defaults: All items in the collection"""
                     # url('defaults')
                     c.backends = BACKENDS.keys()
                     defaults = Setting.get_default_repo_settings()
                     return htmlfill.render(
                         render('admin/defaults/defaults.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 def create(self):
                     """POST /defaults: Create a new item"""
                     # url('defaults')
                 def new(self, format='html'):
                     """GET /defaults/new: Form to create a new item"""
                     # url('new_default')
                 def update(self, id):
                     """PUT /defaults/id: Update an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="PUT" />
                     # Or using helpers:
                     #    h.form(url('default', id=ID),
                     #           method='put')
                     # url('default', id=ID)
                     _form = DefaultsForm()()
                     try:
                         form_result = _form.to_python(dict(request.POST))
                         for k, v in form_result.iteritems():
                             setting = Setting.create_or_update(k, v)
                             Session().add(setting)
                         Session().commit()
                         h.flash(_('Default settings updated successfully'),
                                 category='success')
                     except formencode.Invalid as errors:
                         defaults = errors.value
                         return htmlfill.render(
                             render('admin/defaults/defaults.html'),
                             defaults=defaults,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during update of defaults'),
                                 category='error')
-                    return redirect(url('defaults'))
+                    raise HTTPFound(location=url('defaults'))
                 def delete(self, id):
                     """DELETE /defaults/id: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('default', id=ID),
                     #           method='delete')
                     # url('default', id=ID)
                 def show(self, id, format='html'):
                     """GET /defaults/id: Show a specific item"""
                     # url('default', id=ID)
                 def edit(self, id, format='html'):
                     """GET /defaults/id/edit: Form to edit an existing item"""
                     # url('edit_default', id=ID)

kallithea/controllers/admin/gists.py

0 +5 -6

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.gists
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             gist controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: May 9, 2013
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import time
             import logging
             import traceback
             import formencode.htmlfill
             from pylons import request, response, tmpl_context as c, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound, HTTPNotFound, HTTPForbidden
             from kallithea.model.forms import GistForm
             from kallithea.model.gist import GistModel
             from kallithea.model.meta import Session
             from kallithea.model.db import Gist, User
             from kallithea.lib import helpers as h
             from kallithea.lib.base import BaseController, render
             from kallithea.lib.auth import LoginRequired, NotAnonymous
             from kallithea.lib.utils import jsonify
             from kallithea.lib.utils2 import safe_int, time_to_datetime
             from kallithea.lib.helpers import Page
-            from webob.exc import HTTPNotFound, HTTPForbidden
             from sqlalchemy.sql.expression import or_
             from kallithea.lib.vcs.exceptions import VCSError, NodeNotChangedError
             log = logging.getLogger(__name__)
             class GistsController(BaseController):
                 """REST Controller styled on the Atom Publishing Protocol"""
                 def __load_defaults(self, extra_values=None):
                     c.lifetime_values = [
                         (str(-1), _('Forever')),
                         (str(5), _('5 minutes')),
                         (str(60), _('1 hour')),
                         (str(60 * 24), _('1 day')),
                         (str(60 * 24 * 30), _('1 month')),
                     ]
                     if extra_values:
                         c.lifetime_values.append(extra_values)
                     c.lifetime_options = [(c.lifetime_values, _("Lifetime"))]
                 @LoginRequired()
                 def index(self):
                     """GET /admin/gists: All items in the collection"""
                     # url('gists')
                     not_default_user = c.authuser.username != User.DEFAULT_USER
                     c.show_private = request.GET.get('private') and not_default_user
                     c.show_public = request.GET.get('public') and not_default_user
                     gists = Gist().query()\
                         .filter(or_(Gist.gist_expires == -1, Gist.gist_expires >= time.time()))\
                         .order_by(Gist.created_on.desc())
                     # MY private
                     if c.show_private and not c.show_public:
                         gists = gists.filter(Gist.gist_type == Gist.GIST_PRIVATE)\
                                          .filter(Gist.gist_owner == c.authuser.user_id)
                     # MY public
                     elif c.show_public and not c.show_private:
                         gists = gists.filter(Gist.gist_type == Gist.GIST_PUBLIC)\
                                          .filter(Gist.gist_owner == c.authuser.user_id)
                     # MY public+private
                     elif c.show_private and c.show_public:
                         gists = gists.filter(or_(Gist.gist_type == Gist.GIST_PUBLIC,
                                                  Gist.gist_type == Gist.GIST_PRIVATE))\
                                          .filter(Gist.gist_owner == c.authuser.user_id)
                     # default show ALL public gists
                     if not c.show_public and not c.show_private:
                         gists = gists.filter(Gist.gist_type == Gist.GIST_PUBLIC)
                     c.gists = gists
                     p = safe_int(request.GET.get('page', 1), 1)
                     c.gists_pager = Page(c.gists, page=p, items_per_page=10)
                     return render('admin/gists/index.html')
                 @LoginRequired()
                 @NotAnonymous()
                 def create(self):
                     """POST /admin/gists: Create a new item"""
                     # url('gists')
                     self.__load_defaults()
                     gist_form = GistForm([x[0] for x in c.lifetime_values])()
                     try:
                         form_result = gist_form.to_python(dict(request.POST))
                         #TODO: multiple files support, from the form
                         filename = form_result['filename'] or Gist.DEFAULT_FILENAME
                         nodes = {
                             filename: {
                                 'content': form_result['content'],
                                 'lexer': form_result['mimetype']  # None is autodetect
                             }
                         }
                         _public = form_result['public']
                         gist_type = Gist.GIST_PUBLIC if _public else Gist.GIST_PRIVATE
                         gist = GistModel().create(
                             description=form_result['description'],
                             owner=c.authuser.user_id,
                             gist_mapping=nodes,
                             gist_type=gist_type,
                             lifetime=form_result['lifetime']
                         )
                         Session().commit()
                         new_gist_id = gist.gist_access_id
                     except formencode.Invalid as errors:
                         defaults = errors.value
                         return formencode.htmlfill.render(
                             render('admin/gists/new.html'),
                             defaults=defaults,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception as e:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during gist creation'), category='error')
-                        return redirect(url('new_gist'))
+                        raise HTTPFound(location=url('new_gist'))
-                    return redirect(url('gist', gist_id=new_gist_id))
+                    raise HTTPFound(location=url('gist', gist_id=new_gist_id))
                 @LoginRequired()
                 @NotAnonymous()
                 def new(self, format='html'):
                     """GET /admin/gists/new: Form to create a new item"""
                     # url('new_gist')
                     self.__load_defaults()
                     return render('admin/gists/new.html')
                 @LoginRequired()
                 @NotAnonymous()
                 def update(self, gist_id):
                     """PUT /admin/gists/gist_id: Update an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="PUT" />
                     # Or using helpers:
                     #    h.form(url('gist', gist_id=ID),
                     #           method='put')
                     # url('gist', gist_id=ID)
                 @LoginRequired()
                 @NotAnonymous()
                 def delete(self, gist_id):
                     """DELETE /admin/gists/gist_id: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('gist', gist_id=ID),
                     #           method='delete')
                     # url('gist', gist_id=ID)
                     gist = GistModel().get_gist(gist_id)
                     owner = gist.gist_owner == c.authuser.user_id
                     if h.HasPermissionAny('hg.admin')() or owner:
                         GistModel().delete(gist)
                         Session().commit()
                         h.flash(_('Deleted gist %s') % gist.gist_access_id, category='success')
                     else:
                         raise HTTPForbidden()
-                    return redirect(url('gists'))
+                    raise HTTPFound(location=url('gists'))
                 @LoginRequired()
                 def show(self, gist_id, revision='tip', format='html', f_path=None):
                     """GET /admin/gists/gist_id: Show a specific item"""
                     # url('gist', gist_id=ID)
                     c.gist = Gist.get_or_404(gist_id)
                     #check if this gist is not expired
                     if c.gist.gist_expires != -1:
                         if time.time() > c.gist.gist_expires:
                             log.error('Gist expired at %s',
                                       time_to_datetime(c.gist.gist_expires))
                             raise HTTPNotFound()
                     try:
                         c.file_changeset, c.files = GistModel().get_gist_files(gist_id,
                                                                         revision=revision)
                     except VCSError:
                         log.error(traceback.format_exc())
                         raise HTTPNotFound()
                     if format == 'raw':
                         content = '\n\n'.join([f.content for f in c.files if (f_path is None or f.path == f_path)])
                         response.content_type = 'text/plain'
                         return content
                     return render('admin/gists/show.html')
                 @LoginRequired()
                 @NotAnonymous()
                 def edit(self, gist_id, format='html'):
                     """GET /admin/gists/gist_id/edit: Form to edit an existing item"""
                     # url('edit_gist', gist_id=ID)
                     c.gist = Gist.get_or_404(gist_id)
                     #check if this gist is not expired
                     if c.gist.gist_expires != -1:
                         if time.time() > c.gist.gist_expires:
                             log.error('Gist expired at %s',
                                       time_to_datetime(c.gist.gist_expires))
                             raise HTTPNotFound()
                     try:
                         c.file_changeset, c.files = GistModel().get_gist_files(gist_id)
                     except VCSError:
                         log.error(traceback.format_exc())
                         raise HTTPNotFound()
                     self.__load_defaults(extra_values=('0', _('Unmodified')))
                     rendered = render('admin/gists/edit.html')
                     if request.POST:
                         rpost = request.POST
                         nodes = {}
                         for org_filename, filename, mimetype, content in zip(
                                                                 rpost.getall('org_files'),
                                                                 rpost.getall('files'),
                                                                 rpost.getall('mimetypes'),
                                                                 rpost.getall('contents')):
                             nodes[org_filename] = {
                                 'org_filename': org_filename,
                                 'filename': filename,
                                 'content': content,
                                 'lexer': mimetype,
                             }
                         try:
                             GistModel().update(
                                 gist=c.gist,
                                 description=rpost['description'],
                                 owner=c.gist.owner,
                                 gist_mapping=nodes,
                                 gist_type=c.gist.gist_type,
                                 lifetime=rpost['lifetime']
                             )
                             Session().commit()
                             h.flash(_('Successfully updated gist content'), category='success')
                         except NodeNotChangedError:
                             # raised if nothing was changed in repo itself. We anyway then
                             # store only DB stuff for gist
                             Session().commit()
                             h.flash(_('Successfully updated gist data'), category='success')
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred during update of gist %s') % gist_id,
                                     category='error')
-                        return redirect(url('gist', gist_id=gist_id))
+                        raise HTTPFound(location=url('gist', gist_id=gist_id))
                     return rendered
                 @LoginRequired()
                 @NotAnonymous()
                 @jsonify
                 def check_revision(self, gist_id):
                     c.gist = Gist.get_or_404(gist_id)
                     last_rev = c.gist.scm_instance.get_changeset()
                     success = True
                     revision = request.POST.get('revision')
                     ##TODO: maybe move this to model ?
                     if revision != last_rev.raw_id:
                         log.error('Last revision %s is different than submitted %s',
                                   revision, last_rev)
                         # our gist has newer version than we
                         success = False
                     return {'success': success}

kallithea/controllers/admin/my_account.py

0 +7 -7

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.my_account
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             my account controller for Kallithea admin
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: August 20, 2013
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             import formencode
             from sqlalchemy import func
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound
             from kallithea import EXTERN_TYPE_INTERNAL
             from kallithea.lib import helpers as h
             from kallithea.lib import auth_modules
             from kallithea.lib.auth import LoginRequired, NotAnonymous, AuthUser
             from kallithea.lib.base import BaseController, render
             from kallithea.lib.utils2 import generate_api_key, safe_int
             from kallithea.lib.compat import json
             from kallithea.model.db import Repository, UserEmailMap, User, UserFollowing
             from kallithea.model.forms import UserForm, PasswordChangeForm
             from kallithea.model.user import UserModel
             from kallithea.model.repo import RepoModel
             from kallithea.model.api_key import ApiKeyModel
             from kallithea.model.meta import Session
             log = logging.getLogger(__name__)
             class MyAccountController(BaseController):
                 """REST Controller styled on the Atom Publishing Protocol"""
                 # To properly map this controller, ensure your config/routing.py
                 # file has a resource setup:
                 #     map.resource('setting', 'settings', controller='admin/settings',
                 #         path_prefix='/admin', name_prefix='admin_')
                 @LoginRequired()
                 @NotAnonymous()
                 def __before__(self):
                     super(MyAccountController, self).__before__()
                 def __load_data(self):
                     c.user = User.get(self.authuser.user_id)
                     if c.user.username == User.DEFAULT_USER:
                         h.flash(_("You can't edit this user since it's"
                                   " crucial for entire application"), category='warning')
-                        return redirect(url('users'))
+                        raise HTTPFound(location=url('users'))
                     c.EXTERN_TYPE_INTERNAL = EXTERN_TYPE_INTERNAL
                 def _load_my_repos_data(self, watched=False):
                     if watched:
                         admin = False
                         repos_list = [x.follows_repository for x in
                                       Session().query(UserFollowing).filter(
                                           UserFollowing.user_id ==
                                           self.authuser.user_id).all()]
                     else:
                         admin = True
                         repos_list = Session().query(Repository)\
                                      .filter(Repository.user_id ==
                                              self.authuser.user_id)\
                                      .order_by(func.lower(Repository.repo_name)).all()
                     repos_data = RepoModel().get_repos_as_dict(repos_list=repos_list,
                                                                admin=admin)
                     #json used to render the grid
                     return json.dumps(repos_data)
                 def my_account(self):
                     """
                     GET /_admin/my_account Displays info about my account
                     """
                     # url('my_account')
                     c.active = 'profile'
                     self.__load_data()
                     c.perm_user = AuthUser(user_id=self.authuser.user_id)
                     c.ip_addr = self.ip_addr
                     managed_fields = auth_modules.get_managed_fields(c.user)
                     def_user_perms = User.get_default_user().AuthUser.permissions['global']
                     if 'hg.register.none' in def_user_perms:
                         managed_fields.extend(['username', 'firstname', 'lastname', 'email'])
                     c.readonly = lambda n: 'readonly' if n in managed_fields else None
                     defaults = c.user.get_dict()
                     update = False
                     if request.POST:
                         _form = UserForm(edit=True,
                                          old_data={'user_id': self.authuser.user_id,
                                                    'email': self.authuser.email})()
                         form_result = {}
                         try:
                             post_data = dict(request.POST)
                             post_data['new_password'] = ''
                             post_data['password_confirmation'] = ''
                             form_result = _form.to_python(post_data)
                             # skip updating those attrs for my account
                             skip_attrs = ['admin', 'active', 'extern_type', 'extern_name',
                                           'new_password', 'password_confirmation',
                                          ] + managed_fields
                             UserModel().update(self.authuser.user_id, form_result,
                                                skip_attrs=skip_attrs)
                             h.flash(_('Your account was updated successfully'),
                                     category='success')
                             Session().commit()
                             update = True
                         except formencode.Invalid as errors:
                             return htmlfill.render(
                                 render('admin/my_account/my_account.html'),
                                 defaults=errors.value,
                                 errors=errors.error_dict or {},
                                 prefix_error=False,
                                 encoding="UTF-8",
                                 force_defaults=False)
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred during update of user %s') \
                                     % form_result.get('username'), category='error')
                     if update:
-                        return redirect('my_account')
+                        raise HTTPFound(location='my_account')
                     return htmlfill.render(
                         render('admin/my_account/my_account.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 def my_account_password(self):
                     c.active = 'password'
                     self.__load_data()
                     managed_fields = auth_modules.get_managed_fields(c.user)
                     c.can_change_password = 'password' not in managed_fields
                     if request.POST and c.can_change_password:
                         _form = PasswordChangeForm(self.authuser.username)()
                         try:
                             form_result = _form.to_python(request.POST)
                             UserModel().update(self.authuser.user_id, form_result)
                             Session().commit()
                             h.flash(_("Successfully updated password"), category='success')
                         except formencode.Invalid as errors:
                             return htmlfill.render(
                                 render('admin/my_account/my_account.html'),
                                 defaults=errors.value,
                                 errors=errors.error_dict or {},
                                 prefix_error=False,
                                 encoding="UTF-8",
                                 force_defaults=False)
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred during update of user password'),
                                     category='error')
                     return render('admin/my_account/my_account.html')
                 def my_account_repos(self):
                     c.active = 'repos'
                     self.__load_data()
                     #json used to render the grid
                     c.data = self._load_my_repos_data()
                     return render('admin/my_account/my_account.html')
                 def my_account_watched(self):
                     c.active = 'watched'
                     self.__load_data()
                     #json used to render the grid
                     c.data = self._load_my_repos_data(watched=True)
                     return render('admin/my_account/my_account.html')
                 def my_account_perms(self):
                     c.active = 'perms'
                     self.__load_data()
                     c.perm_user = AuthUser(user_id=self.authuser.user_id)
                     c.ip_addr = self.ip_addr
                     return render('admin/my_account/my_account.html')
                 def my_account_emails(self):
                     c.active = 'emails'
                     self.__load_data()
                     c.user_email_map = UserEmailMap.query()\
                         .filter(UserEmailMap.user == c.user).all()
                     return render('admin/my_account/my_account.html')
                 def my_account_emails_add(self):
                     email = request.POST.get('new_email')
                     try:
                         UserModel().add_extra_email(self.authuser.user_id, email)
                         Session().commit()
                         h.flash(_("Added email %s to user") % email, category='success')
                     except formencode.Invalid as error:
                         msg = error.error_dict['email']
                         h.flash(msg, category='error')
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during email saving'),
                                 category='error')
-                    return redirect(url('my_account_emails'))
+                    raise HTTPFound(location=url('my_account_emails'))
                 def my_account_emails_delete(self):
                     email_id = request.POST.get('del_email_id')
                     user_model = UserModel()
                     user_model.delete_extra_email(self.authuser.user_id, email_id)
                     Session().commit()
                     h.flash(_("Removed email from user"), category='success')
-                    return redirect(url('my_account_emails'))
+                    raise HTTPFound(location=url('my_account_emails'))
                 def my_account_api_keys(self):
                     c.active = 'api_keys'
                     self.__load_data()
                     show_expired = True
                     c.lifetime_values = [
                         (str(-1), _('Forever')),
                         (str(5), _('5 minutes')),
                         (str(60), _('1 hour')),
                         (str(60 * 24), _('1 day')),
                         (str(60 * 24 * 30), _('1 month')),
                     ]
                     c.lifetime_options = [(c.lifetime_values, _("Lifetime"))]
                     c.user_api_keys = ApiKeyModel().get_api_keys(self.authuser.user_id,
                                                                  show_expired=show_expired)
                     return render('admin/my_account/my_account.html')
                 def my_account_api_keys_add(self):
                     lifetime = safe_int(request.POST.get('lifetime'), -1)
                     description = request.POST.get('description')
                     ApiKeyModel().create(self.authuser.user_id, description, lifetime)
                     Session().commit()
                     h.flash(_("API key successfully created"), category='success')
-                    return redirect(url('my_account_api_keys'))
+                    raise HTTPFound(location=url('my_account_api_keys'))
                 def my_account_api_keys_delete(self):
                     api_key = request.POST.get('del_api_key')
                     user_id = self.authuser.user_id
                     if request.POST.get('del_api_key_builtin'):
                         user = User.get(user_id)
                         if user is not None:
                             user.api_key = generate_api_key()
                             Session().add(user)
                             Session().commit()
                             h.flash(_("API key successfully reset"), category='success')
                     elif api_key:
                         ApiKeyModel().delete(api_key, self.authuser.user_id)
                         Session().commit()
                         h.flash(_("API key successfully deleted"), category='success')
-                    return redirect(url('my_account_api_keys'))
+                    raise HTTPFound(location=url('my_account_api_keys'))

kallithea/controllers/admin/permissions.py

0 +2 -2

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.permissions
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             permissions controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 27, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             import formencode
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound
             from kallithea.lib import helpers as h
             from kallithea.lib.auth import LoginRequired, HasPermissionAllDecorator
             from kallithea.lib.base import BaseController, render
             from kallithea.model.forms import DefaultPermissionsForm
             from kallithea.model.permission import PermissionModel
             from kallithea.model.db import User, UserIpMap
             from kallithea.model.meta import Session
             log = logging.getLogger(__name__)
             class PermissionsController(BaseController):
                 """REST Controller styled on the Atom Publishing Protocol"""
                 # To properly map this controller, ensure your config/routing.py
                 # file has a resource setup:
                 #     map.resource('permission', 'permissions')
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 def __before__(self):
                     super(PermissionsController, self).__before__()
                 def __load_data(self):
                     c.repo_perms_choices = [('repository.none', _('None'),),
                                                ('repository.read', _('Read'),),
                                                ('repository.write', _('Write'),),
                                                ('repository.admin', _('Admin'),)]
                     c.group_perms_choices = [('group.none', _('None'),),
                                              ('group.read', _('Read'),),
                                              ('group.write', _('Write'),),
                                              ('group.admin', _('Admin'),)]
                     c.user_group_perms_choices = [('usergroup.none', _('None'),),
                                                   ('usergroup.read', _('Read'),),
                                                   ('usergroup.write', _('Write'),),
                                                   ('usergroup.admin', _('Admin'),)]
                     c.register_choices = [
                         ('hg.register.none',
                             _('Disabled')),
                         ('hg.register.manual_activate',
                             _('Allowed with manual account activation')),
                         ('hg.register.auto_activate',
                             _('Allowed with automatic account activation')), ]
                     c.extern_activate_choices = [
                         ('hg.extern_activate.manual', _('Manual activation of external account')),
                         ('hg.extern_activate.auto', _('Automatic activation of external account')),
                     ]
                     c.repo_create_choices = [('hg.create.none', _('Disabled')),
                                              ('hg.create.repository', _('Enabled'))]
                     c.repo_create_on_write_choices = [
                         ('hg.create.write_on_repogroup.true', _('Enabled')),
                         ('hg.create.write_on_repogroup.false', _('Disabled')),
                     ]
                     c.user_group_create_choices = [('hg.usergroup.create.false', _('Disabled')),
                                                    ('hg.usergroup.create.true', _('Enabled'))]
                     c.repo_group_create_choices = [('hg.repogroup.create.false', _('Disabled')),
                                                    ('hg.repogroup.create.true', _('Enabled'))]
                     c.fork_choices = [('hg.fork.none', _('Disabled')),
                                       ('hg.fork.repository', _('Enabled'))]
                 def permission_globals(self):
                     c.active = 'globals'
                     self.__load_data()
                     if request.POST:
                         _form = DefaultPermissionsForm(
                             [x[0] for x in c.repo_perms_choices],
                             [x[0] for x in c.group_perms_choices],
                             [x[0] for x in c.user_group_perms_choices],
                             [x[0] for x in c.repo_create_choices],
                             [x[0] for x in c.repo_create_on_write_choices],
                             [x[0] for x in c.repo_group_create_choices],
                             [x[0] for x in c.user_group_create_choices],
                             [x[0] for x in c.fork_choices],
                             [x[0] for x in c.register_choices],
                             [x[0] for x in c.extern_activate_choices])()
                         try:
                             form_result = _form.to_python(dict(request.POST))
                             form_result.update({'perm_user_name': 'default'})
                             PermissionModel().update(form_result)
                             Session().commit()
                             h.flash(_('Global permissions updated successfully'),
                                     category='success')
                         except formencode.Invalid as errors:
                             defaults = errors.value
                             return htmlfill.render(
                                 render('admin/permissions/permissions.html'),
                                 defaults=defaults,
                                 errors=errors.error_dict or {},
                                 prefix_error=False,
                                 encoding="UTF-8",
                                 force_defaults=False)
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred during update of permissions'),
                                     category='error')
-                        return redirect(url('admin_permissions'))
+                        raise HTTPFound(location=url('admin_permissions'))
                     c.user = User.get_default_user()
                     defaults = {'anonymous': c.user.active}
                     for p in c.user.user_perms:
                         if p.permission.permission_name.startswith('repository.'):
                             defaults['default_repo_perm'] = p.permission.permission_name
                         if p.permission.permission_name.startswith('group.'):
                             defaults['default_group_perm'] = p.permission.permission_name
                         if p.permission.permission_name.startswith('usergroup.'):
                             defaults['default_user_group_perm'] = p.permission.permission_name
                         if p.permission.permission_name.startswith('hg.create.write_on_repogroup'):
                             defaults['create_on_write'] = p.permission.permission_name
                         elif p.permission.permission_name.startswith('hg.create.'):
                             defaults['default_repo_create'] = p.permission.permission_name
                         if p.permission.permission_name.startswith('hg.repogroup.'):
                             defaults['default_repo_group_create'] = p.permission.permission_name
                         if p.permission.permission_name.startswith('hg.usergroup.'):
                             defaults['default_user_group_create'] = p.permission.permission_name
                         if p.permission.permission_name.startswith('hg.register.'):
                             defaults['default_register'] = p.permission.permission_name
                         if p.permission.permission_name.startswith('hg.extern_activate.'):
                             defaults['default_extern_activate'] = p.permission.permission_name
                         if p.permission.permission_name.startswith('hg.fork.'):
                             defaults['default_fork'] = p.permission.permission_name
                     return htmlfill.render(
                         render('admin/permissions/permissions.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 def permission_ips(self):
                     c.active = 'ips'
                     c.user = User.get_default_user()
                     c.user_ip_map = UserIpMap.query()\
                                     .filter(UserIpMap.user == c.user).all()
                     return render('admin/permissions/permissions.html')
                 def permission_perms(self):
                     c.active = 'perms'
                     c.user = User.get_default_user()
                     c.perm_user = c.user.AuthUser
                     return render('admin/permissions/permissions.html')

kallithea/controllers/admin/repo_groups.py

0 +10 -11

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.repo_groups
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             Repository groups controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Mar 23, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             import formencode
             import itertools
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _, ungettext
-            from webob.exc import HTTPForbidden, HTTPNotFound, HTTPInternalServerError
+            from webob.exc import HTTPFound, HTTPForbidden, HTTPNotFound, HTTPInternalServerError
             import kallithea
             from kallithea.lib import helpers as h
             from kallithea.lib.compat import json
             from kallithea.lib.auth import LoginRequired, \
                 HasRepoGroupPermissionAnyDecorator, HasRepoGroupPermissionAll, \
                 HasPermissionAll
             from kallithea.lib.base import BaseController, render
             from kallithea.model.db import RepoGroup, Repository
             from kallithea.model.scm import RepoGroupList, AvailableRepoGroupChoices
             from kallithea.model.repo_group import RepoGroupModel
             from kallithea.model.forms import RepoGroupForm, RepoGroupPermsForm
             from kallithea.model.meta import Session
             from kallithea.model.repo import RepoModel
             from kallithea.lib.utils2 import safe_int
             from sqlalchemy.sql.expression import func
             log = logging.getLogger(__name__)
             class RepoGroupsController(BaseController):
                 @LoginRequired()
                 def __before__(self):
                     super(RepoGroupsController, self).__before__()
                 def __load_defaults(self, extras=(), exclude=()):
                     """extras is used for keeping current parent ignoring permissions
                     exclude is used for not moving group to itself TODO: also exclude descendants
                     Note: only admin can create top level groups
                     """
                     repo_groups = AvailableRepoGroupChoices([], ['group.admin'], extras)
                     exclude_group_ids = set(rg.group_id for rg in exclude)
                     c.repo_groups = [rg for rg in repo_groups
                                      if rg[0] not in exclude_group_ids]
                     repo_model = RepoModel()
                     c.users_array = repo_model.get_users_js()
                     c.user_groups_array = repo_model.get_user_groups_js()
                 def __load_data(self, group_id):
                     """
                     Load defaults settings for edit, and update
                     :param group_id:
                     """
                     repo_group = RepoGroup.get_or_404(group_id)
                     data = repo_group.get_dict()
                     data['group_name'] = repo_group.name
                     # fill repository group users
                     for p in repo_group.repo_group_to_perm:
                         data.update({'u_perm_%s' % p.user.username:
                                          p.permission.permission_name})
                     # fill repository group groups
                     for p in repo_group.users_group_to_perm:
                         data.update({'g_perm_%s' % p.users_group.users_group_name:
                                          p.permission.permission_name})
                     return data
                 def _revoke_perms_on_yourself(self, form_result):
                     _up = filter(lambda u: c.authuser.username == u[0],
                                  form_result['perms_updates'])
                     _new = filter(lambda u: c.authuser.username == u[0],
                                   form_result['perms_new'])
                     if _new and _new[0][1] != 'group.admin' or _up and _up[0][1] != 'group.admin':
                         return True
                     return False
                 def index(self, format='html'):
                     """GET /repo_groups: All items in the collection"""
                     # url('repos_groups')
                     _list = RepoGroup.query()\
                                 .order_by(func.lower(RepoGroup.group_name))\
                                 .all()
                     group_iter = RepoGroupList(_list, perm_set=['group.admin'])
                     repo_groups_data = []
                     total_records = len(group_iter)
                     _tmpl_lookup = kallithea.CONFIG['pylons.app_globals'].mako_lookup
                     template = _tmpl_lookup.get_template('data_table/_dt_elements.html')
                     repo_group_name = lambda repo_group_name, children_groups: (
                         template.get_def("repo_group_name")
                         .render(repo_group_name, children_groups, _=_, h=h, c=c)
                     )
                     repo_group_actions = lambda repo_group_id, repo_group_name, gr_count: (
                         template.get_def("repo_group_actions")
                         .render(repo_group_id, repo_group_name, gr_count, _=_, h=h, c=c,
                                 ungettext=ungettext)
                     )
                     for repo_gr in group_iter:
                         children_groups = map(h.safe_unicode,
                             itertools.chain((g.name for g in repo_gr.parents),
                                             (x.name for x in [repo_gr])))
                         repo_count = repo_gr.repositories.count()
                         repo_groups_data.append({
                             "raw_name": repo_gr.group_name,
                             "group_name": repo_group_name(repo_gr.group_name, children_groups),
                             "desc": h.escape(repo_gr.group_description),
                             "repos": repo_count,
                             "owner": h.person(repo_gr.user),
                             "action": repo_group_actions(repo_gr.group_id, repo_gr.group_name,
                                                          repo_count)
                         })
                     c.data = json.dumps({
                         "totalRecords": total_records,
                         "startIndex": 0,
                         "sort": None,
                         "dir": "asc",
                         "records": repo_groups_data
                     })
                     return render('admin/repo_groups/repo_groups.html')
                 def create(self):
                     """POST /repo_groups: Create a new item"""
                     # url('repos_groups')
                     self.__load_defaults()
                     # permissions for can create group based on parent_id are checked
                     # here in the Form
                     repo_group_form = RepoGroupForm(repo_groups=c.repo_groups)
                     try:
                         form_result = repo_group_form.to_python(dict(request.POST))
                         gr = RepoGroupModel().create(
                             group_name=form_result['group_name'],
                             group_description=form_result['group_description'],
                             parent=form_result['group_parent_id'],
                             owner=self.authuser.user_id, # TODO: make editable
                             copy_permissions=form_result['group_copy_permissions']
                         )
                         Session().commit()
                         #TODO: in futureaction_logger(, '', '', '', self.sa)
                     except formencode.Invalid as errors:
                         return htmlfill.render(
                             render('admin/repo_groups/repo_group_add.html'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during creation of repository group %s') \
                                 % request.POST.get('group_name'), category='error')
                         parent_group_id = form_result['group_parent_id']
                         #TODO: maybe we should get back to the main view, not the admin one
-                        return redirect(url('repos_groups', parent_group=parent_group_id))
+                        raise HTTPFound(location=url('repos_groups', parent_group=parent_group_id))
                     h.flash(_('Created repository group %s') % gr.group_name,
                             category='success')
-                    return redirect(url('repos_group_home', group_name=gr.group_name))
+                    raise HTTPFound(location=url('repos_group_home', group_name=gr.group_name))
                 def new(self):
                     """GET /repo_groups/new: Form to create a new item"""
                     # url('new_repos_group')
                     if HasPermissionAll('hg.admin')('group create'):
                         #we're global admin, we're ok and we can create TOP level groups
                         pass
                     else:
                         # we pass in parent group into creation form, thus we know
                         # what would be the group, we can check perms here !
                         group_id = safe_int(request.GET.get('parent_group'))
                         group = RepoGroup.get(group_id) if group_id else None
                         group_name = group.group_name if group else None
                         if HasRepoGroupPermissionAll('group.admin')(group_name, 'group create'):
                             pass
                         else:
                             raise HTTPForbidden()
                     self.__load_defaults()
                     return render('admin/repo_groups/repo_group_add.html')
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def update(self, group_name):
                     """PUT /repo_groups/group_name: Update an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="PUT" />
                     # Or using helpers:
                     #    h.form(url('repos_group', group_name=GROUP_NAME),
                     #           method='put')
                     # url('repos_group', group_name=GROUP_NAME)
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     self.__load_defaults(extras=[c.repo_group.parent_group],
                                          exclude=[c.repo_group])
                     # TODO: kill allow_empty_group - it is only used for redundant form validation!
                     if HasPermissionAll('hg.admin')('group edit'):
                         #we're global admin, we're ok and we can create TOP level groups
                         allow_empty_group = True
                     elif not c.repo_group.parent_group:
                         allow_empty_group = True
                     else:
                         allow_empty_group = False
                     repo_group_form = RepoGroupForm(
                         edit=True,
                         old_data=c.repo_group.get_dict(),
                         repo_groups=c.repo_groups,
                         can_create_in_root=allow_empty_group,
                     )()
                     try:
                         form_result = repo_group_form.to_python(dict(request.POST))
                         new_gr = RepoGroupModel().update(group_name, form_result)
                         Session().commit()
                         h.flash(_('Updated repository group %s') \
                                 % form_result['group_name'], category='success')
                         # we now have new name !
                         group_name = new_gr.group_name
                         #TODO: in future action_logger(, '', '', '', self.sa)
                     except formencode.Invalid as errors:
                         return htmlfill.render(
                             render('admin/repo_groups/repo_group_edit.html'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during update of repository group %s') \
                                 % request.POST.get('group_name'), category='error')
-                    return redirect(url('edit_repo_group', group_name=group_name))
+                    raise HTTPFound(location=url('edit_repo_group', group_name=group_name))
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def delete(self, group_name):
                     """DELETE /repo_groups/group_name: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('repos_group', group_name=GROUP_NAME),
                     #           method='delete')
                     # url('repos_group', group_name=GROUP_NAME)
                     gr = c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     repos = gr.repositories.all()
                     if repos:
                         h.flash(_('This group contains %s repositories and cannot be '
                                   'deleted') % len(repos), category='warning')
-                        return redirect(url('repos_groups'))
+                        raise HTTPFound(location=url('repos_groups'))
                     children = gr.children.all()
                     if children:
                         h.flash(_('This group contains %s subgroups and cannot be deleted'
                                   % (len(children))), category='warning')
-                        return redirect(url('repos_groups'))
+                        raise HTTPFound(location=url('repos_groups'))
                     try:
                         RepoGroupModel().delete(group_name)
                         Session().commit()
                         h.flash(_('Removed repository group %s') % group_name,
                                 category='success')
                         #TODO: in future action_logger(, '', '', '', self.sa)
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during deletion of repository group %s')
                                 % group_name, category='error')
                     if gr.parent_group:
-                        return redirect(url('repos_group_home', group_name=gr.parent_group.group_name))
+                        raise HTTPFound(location=url('repos_group_home', group_name=gr.parent_group.group_name))
-                    return redirect(url('repos_groups'))
+                    raise HTTPFound(location=url('repos_groups'))
                 def show_by_name(self, group_name):
                     """
                     This is a proxy that does a lookup group_name -> id, and shows
                     the group by id view instead
                     """
                     group_name = group_name.rstrip('/')
                     id_ = RepoGroup.get_by_group_name(group_name)
                     if id_:
                         return self.show(group_name)
                     raise HTTPNotFound
                 @HasRepoGroupPermissionAnyDecorator('group.read', 'group.write',
                                                      'group.admin')
                 def show(self, group_name):
                     """GET /repo_groups/group_name: Show a specific item"""
                     # url('repos_group', group_name=GROUP_NAME)
                     c.active = 'settings'
                     c.group = c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     c.group_repos = c.group.repositories.all()
                     #overwrite our cached list with current filter
                     c.repo_cnt = 0
                     groups = RepoGroup.query().order_by(RepoGroup.group_name)\
                         .filter(RepoGroup.group_parent_id == c.group.group_id).all()
                     c.groups = self.scm_model.get_repo_groups(groups)
                     c.repos_list = Repository.query()\
                                     .filter(Repository.group_id == c.group.group_id)\
                                     .order_by(func.lower(Repository.repo_name))\
                                     .all()
                     repos_data = RepoModel().get_repos_as_dict(repos_list=c.repos_list,
                                                                admin=False)
                     #json used to render the grid
                     c.data = json.dumps(repos_data)
                     return render('admin/repo_groups/repo_group_show.html')
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def edit(self, group_name):
                     """GET /repo_groups/group_name/edit: Form to edit an existing item"""
                     # url('edit_repo_group', group_name=GROUP_NAME)
                     c.active = 'settings'
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     self.__load_defaults(extras=[c.repo_group.parent_group],
                                          exclude=[c.repo_group])
                     defaults = self.__load_data(c.repo_group.group_id)
                     return htmlfill.render(
                         render('admin/repo_groups/repo_group_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def edit_repo_group_advanced(self, group_name):
                     """GET /repo_groups/group_name/edit: Form to edit an existing item"""
                     # url('edit_repo_group', group_name=GROUP_NAME)
                     c.active = 'advanced'
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     return render('admin/repo_groups/repo_group_edit.html')
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def edit_repo_group_perms(self, group_name):
                     """GET /repo_groups/group_name/edit: Form to edit an existing item"""
                     # url('edit_repo_group', group_name=GROUP_NAME)
                     c.active = 'perms'
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     self.__load_defaults()
                     defaults = self.__load_data(c.repo_group.group_id)
                     return htmlfill.render(
                         render('admin/repo_groups/repo_group_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def update_perms(self, group_name):
                     """
                     Update permissions for given repository group
                     :param group_name:
                     """
                     c.repo_group = RepoGroupModel()._get_repo_group(group_name)
                     valid_recursive_choices = ['none', 'repos', 'groups', 'all']
                     form_result = RepoGroupPermsForm(valid_recursive_choices)().to_python(request.POST)
                     if not c.authuser.is_admin:
                         if self._revoke_perms_on_yourself(form_result):
                             msg = _('Cannot revoke permission for yourself as admin')
                             h.flash(msg, category='warning')
-                            return redirect(url('edit_repo_group_perms', group_name=group_name))
+                            raise HTTPFound(location=url('edit_repo_group_perms', group_name=group_name))
                     recursive = form_result['recursive']
                     # iterate over all members(if in recursive mode) of this groups and
                     # set the permissions !
                     # this can be potentially heavy operation
                     RepoGroupModel()._update_permissions(c.repo_group,
                                                          form_result['perms_new'],
                                                          form_result['perms_updates'],
                                                          recursive)
                     #TODO: implement this
                     #action_logger(self.authuser, 'admin_changed_repo_permissions',
                     #              repo_name, self.ip_addr, self.sa)
                     Session().commit()
                     h.flash(_('Repository group permissions updated'), category='success')
-                    return redirect(url('edit_repo_group_perms', group_name=group_name))
+                    raise HTTPFound(location=url('edit_repo_group_perms', group_name=group_name))
                 @HasRepoGroupPermissionAnyDecorator('group.admin')
                 def delete_perms(self, group_name):
                     """
                     DELETE an existing repository group permission user
                     :param group_name:
                     """
                     try:
                         obj_type = request.POST.get('obj_type')
                         obj_id = None
                         if obj_type == 'user':
                             obj_id = safe_int(request.POST.get('user_id'))
                         elif obj_type == 'user_group':
                             obj_id = safe_int(request.POST.get('user_group_id'))
                         if not c.authuser.is_admin:
                             if obj_type == 'user' and c.authuser.user_id == obj_id:
                                 msg = _('Cannot revoke permission for yourself as admin')
                                 h.flash(msg, category='warning')
                                 raise Exception('revoke admin permission on self')
                         recursive = request.POST.get('recursive', 'none')
                         if obj_type == 'user':
                             RepoGroupModel().delete_permission(repo_group=group_name,
                                                                obj=obj_id, obj_type='user',
                                                                recursive=recursive)
                         elif obj_type == 'user_group':
                             RepoGroupModel().delete_permission(repo_group=group_name,
                                                                obj=obj_id,
                                                                obj_type='user_group',
                                                                recursive=recursive)
                         Session().commit()
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during revoking of permission'),
                                 category='error')
                         raise HTTPInternalServerError()

kallithea/controllers/admin/repos.py

0 +20 -21

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.repos
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             Repositories controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 7, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             import formencode
             from formencode import htmlfill
-            from webob.exc import HTTPInternalServerError, HTTPForbidden, HTTPNotFound
             from pylons import request, tmpl_context as c, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
             from sqlalchemy.sql.expression import func
+            from webob.exc import HTTPFound, HTTPInternalServerError, HTTPForbidden, HTTPNotFound
             from kallithea.lib import helpers as h
             from kallithea.lib.auth import LoginRequired, \
                 HasRepoPermissionAllDecorator, NotAnonymous, HasPermissionAny, \
                 HasRepoPermissionAnyDecorator
             from kallithea.lib.base import BaseRepoController, render
             from kallithea.lib.utils import action_logger, jsonify
             from kallithea.lib.vcs import RepositoryError
             from kallithea.model.meta import Session
             from kallithea.model.db import User, Repository, UserFollowing, RepoGroup,\
                 Setting, RepositoryField
             from kallithea.model.forms import RepoForm, RepoFieldForm, RepoPermsForm
             from kallithea.model.scm import ScmModel, AvailableRepoGroupChoices, RepoList
             from kallithea.model.repo import RepoModel
             from kallithea.lib.compat import json
             from kallithea.lib.exceptions import AttachedForksError
             from kallithea.lib.utils2 import safe_int
             log = logging.getLogger(__name__)
             class ReposController(BaseRepoController):
                 """
                 REST Controller styled on the Atom Publishing Protocol"""
                 # To properly map this controller, ensure your config/routing.py
                 # file has a resource setup:
                 #     map.resource('repo', 'repos')
                 @LoginRequired()
                 def __before__(self):
                     super(ReposController, self).__before__()
                 def _load_repo(self, repo_name):
                     repo_obj = Repository.get_by_repo_name(repo_name)
                     if repo_obj is None:
                         h.not_mapped_error(repo_name)
-                        return redirect(url('repos'))
+                        raise HTTPFound(location=url('repos'))
                     return repo_obj
                 def __load_defaults(self, repo=None):
                     top_perms = ['hg.create.repository']
                     repo_group_perms = ['group.admin']
                     if HasPermissionAny('hg.create.write_on_repogroup.true')():
                         repo_group_perms.append('group.write')
                     extras = [] if repo is None else [repo.group]
                     c.repo_groups = AvailableRepoGroupChoices(top_perms, repo_group_perms, extras)
                     c.landing_revs_choices, c.landing_revs = ScmModel().get_repo_landing_revs(repo)
                 def __load_data(self, repo_name=None):
                     """
                     Load defaults settings for edit, and update
                     :param repo_name:
                     """
                     c.repo_info = self._load_repo(repo_name)
                     self.__load_defaults(c.repo_info)
                     defaults = RepoModel()._get_defaults(repo_name)
                     defaults['clone_uri'] = c.repo_info.clone_uri_hidden # don't show password
                     return defaults
                 def index(self, format='html'):
                     """GET /repos: All items in the collection"""
                     # url('repos')
                     _list = Repository.query()\
                                     .order_by(func.lower(Repository.repo_name))\
                                     .all()
                     c.repos_list = RepoList(_list, perm_set=['repository.admin'])
                     repos_data = RepoModel().get_repos_as_dict(repos_list=c.repos_list,
                                                                admin=True,
                                                                super_user_actions=True)
                     #json used to render the grid
                     c.data = json.dumps(repos_data)
                     return render('admin/repos/repos.html')
                 @NotAnonymous()
                 def create(self):
                     """
                     POST /repos: Create a new item"""
                     # url('repos')
                     self.__load_defaults()
                     form_result = {}
                     task_id = None
                     try:
                         # CanWriteGroup validators checks permissions of this POST
                         form_result = RepoForm(repo_groups=c.repo_groups,
                                                landing_revs=c.landing_revs_choices)()\
                                         .to_python(dict(request.POST))
                         # create is done sometimes async on celery, db transaction
                         # management is handled there.
                         task = RepoModel().create(form_result, self.authuser.user_id)
                         from celery.result import BaseAsyncResult
                         if isinstance(task, BaseAsyncResult):
                             task_id = task.task_id
                     except formencode.Invalid as errors:
                         log.info(errors)
                         return htmlfill.render(
                             render('admin/repos/repo_add.html'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             force_defaults=False,
                             encoding="UTF-8")
                     except Exception:
                         log.error(traceback.format_exc())
                         msg = (_('Error creating repository %s')
                                % form_result.get('repo_name'))
                         h.flash(msg, category='error')
-                        return redirect(url('home'))
+                        raise HTTPFound(location=url('home'))
-                    return redirect(h.url('repo_creating_home',
+                    raise HTTPFound(location=h.url('repo_creating_home',
                                           repo_name=form_result['repo_name_full'],
                                           task_id=task_id))
                 @NotAnonymous()
                 def create_repository(self):
                     """GET /_admin/create_repository: Form to create a new item"""
                     self.__load_defaults()
                     if not c.repo_groups:
                         raise HTTPForbidden
                     parent_group = request.GET.get('parent_group')
                     ## apply the defaults from defaults page
                     defaults = Setting.get_default_repo_settings(strip_prefix=True)
                     if parent_group:
                         prg = RepoGroup.get(parent_group)
                         if prg is None or not any(rgc[0] == prg.group_id
                                                   for rgc in c.repo_groups):
                             raise HTTPForbidden
                         defaults.update({'repo_group': parent_group})
                     return htmlfill.render(
                         render('admin/repos/repo_add.html'),
                         defaults=defaults,
                         errors={},
                         prefix_error=False,
                         encoding="UTF-8",
                         force_defaults=False)
                 @LoginRequired()
                 @NotAnonymous()
                 def repo_creating(self, repo_name):
                     c.repo = repo_name
                     c.task_id = request.GET.get('task_id')
                     if not c.repo:
                         raise HTTPNotFound()
                     return render('admin/repos/repo_creating.html')
                 @LoginRequired()
                 @NotAnonymous()
                 @jsonify
                 def repo_check(self, repo_name):
                     c.repo = repo_name
                     task_id = request.GET.get('task_id')
                     if task_id and task_id not in ['None']:
                         from kallithea import CELERY_ON
                         from celery.result import AsyncResult
                         if CELERY_ON:
                             task = AsyncResult(task_id)
                             if task.failed():
                                 raise HTTPInternalServerError(task.traceback)
                     repo = Repository.get_by_repo_name(repo_name)
                     if repo and repo.repo_state == Repository.STATE_CREATED:
                         if repo.clone_uri:
                             h.flash(_('Created repository %s from %s')
                                     % (repo.repo_name, repo.clone_uri_hidden), category='success')
                         else:
                             repo_url = h.link_to(repo.repo_name,
                                                  h.url('summary_home',
                                                        repo_name=repo.repo_name))
                             fork = repo.fork
                             if fork is not None:
                                 fork_name = fork.repo_name
                                 h.flash(h.literal(_('Forked repository %s as %s')
                                         % (fork_name, repo_url)), category='success')
                             else:
                                 h.flash(h.literal(_('Created repository %s') % repo_url),
                                         category='success')
                         return {'result': True}
                     return {'result': False}
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def update(self, repo_name):
                     """
                     PUT /repos/repo_name: Update an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="PUT" />
                     # Or using helpers:
                     #    h.form(url('put_repo', repo_name=ID),
                     #           method='put')
                     # url('put_repo', repo_name=ID)
                     c.repo_info = self._load_repo(repo_name)
                     self.__load_defaults(c.repo_info)
                     c.active = 'settings'
                     c.repo_fields = RepositoryField.query()\
                         .filter(RepositoryField.repository == c.repo_info).all()
                     repo_model = RepoModel()
                     changed_name = repo_name
                     repo = Repository.get_by_repo_name(repo_name)
                     old_data = {
                         'repo_name': repo_name,
                         'repo_group': repo.group.get_dict() if repo.group else {},
                         'repo_type': repo.repo_type,
                     }
                     _form = RepoForm(edit=True, old_data=old_data,
                                      repo_groups=c.repo_groups,
                                      landing_revs=c.landing_revs_choices)()
                     try:
                         form_result = _form.to_python(dict(request.POST))
                         repo = repo_model.update(repo_name, **form_result)
                         ScmModel().mark_for_invalidation(repo_name)
                         h.flash(_('Repository %s updated successfully') % repo_name,
                                 category='success')
                         changed_name = repo.repo_name
                         action_logger(self.authuser, 'admin_updated_repo',
                                           changed_name, self.ip_addr, self.sa)
                         Session().commit()
                     except formencode.Invalid as errors:
                         log.info(errors)
                         defaults = self.__load_data(repo_name)
                         defaults.update(errors.value)
                         c.users_array = repo_model.get_users_js()
                         return htmlfill.render(
                             render('admin/repos/repo_edit.html'),
                             defaults=defaults,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during update of repository %s') \
                                 % repo_name, category='error')
-                    return redirect(url('edit_repo', repo_name=changed_name))
+                    raise HTTPFound(location=url('edit_repo', repo_name=changed_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def delete(self, repo_name):
                     """
                     DELETE /repos/repo_name: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('delete_repo', repo_name=ID),
                     #           method='delete')
                     # url('delete_repo', repo_name=ID)
                     repo_model = RepoModel()
                     repo = repo_model.get_by_repo_name(repo_name)
                     if not repo:
                         h.not_mapped_error(repo_name)
-                        return redirect(url('repos'))
+                        raise HTTPFound(location=url('repos'))
                     try:
                         _forks = repo.forks.count()
                         handle_forks = None
                         if _forks and request.POST.get('forks'):
                             do = request.POST['forks']
                             if do == 'detach_forks':
                                 handle_forks = 'detach'
                                 h.flash(_('Detached %s forks') % _forks, category='success')
                             elif do == 'delete_forks':
                                 handle_forks = 'delete'
                                 h.flash(_('Deleted %s forks') % _forks, category='success')
                         repo_model.delete(repo, forks=handle_forks)
                         action_logger(self.authuser, 'admin_deleted_repo',
                               repo_name, self.ip_addr, self.sa)
                         ScmModel().mark_for_invalidation(repo_name)
                         h.flash(_('Deleted repository %s') % repo_name, category='success')
                         Session().commit()
                     except AttachedForksError:
                         h.flash(_('Cannot delete repository %s which still has forks')
                                     % repo_name, category='warning')
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during deletion of %s') % repo_name,
                                 category='error')
                     if repo.group:
-                        return redirect(url('repos_group_home', group_name=repo.group.group_name))
+                        raise HTTPFound(location=url('repos_group_home', group_name=repo.group.group_name))
-                    return redirect(url('repos'))
+                    raise HTTPFound(location=url('repos'))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     # url('edit_repo', repo_name=ID)
                     defaults = self.__load_data(repo_name)
                     c.repo_fields = RepositoryField.query()\
                         .filter(RepositoryField.repository == c.repo_info).all()
                     repo_model = RepoModel()
                     c.users_array = repo_model.get_users_js()
                     c.active = 'settings'
                     return htmlfill.render(
                         render('admin/repos/repo_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_permissions(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     # url('edit_repo', repo_name=ID)
                     c.repo_info = self._load_repo(repo_name)
                     repo_model = RepoModel()
                     c.users_array = repo_model.get_users_js()
                     c.user_groups_array = repo_model.get_user_groups_js()
                     c.active = 'permissions'
                     defaults = RepoModel()._get_defaults(repo_name)
                     return htmlfill.render(
                         render('admin/repos/repo_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 def edit_permissions_update(self, repo_name):
                     form = RepoPermsForm()().to_python(request.POST)
                     RepoModel()._update_permissions(repo_name, form['perms_new'],
                                                     form['perms_updates'])
                     #TODO: implement this
                     #action_logger(self.authuser, 'admin_changed_repo_permissions',
                     #              repo_name, self.ip_addr, self.sa)
                     Session().commit()
                     h.flash(_('Repository permissions updated'), category='success')
-                    return redirect(url('edit_repo_perms', repo_name=repo_name))
+                    raise HTTPFound(location=url('edit_repo_perms', repo_name=repo_name))
                 def edit_permissions_revoke(self, repo_name):
                     try:
                         obj_type = request.POST.get('obj_type')
                         obj_id = None
                         if obj_type == 'user':
                             obj_id = safe_int(request.POST.get('user_id'))
                         elif obj_type == 'user_group':
                             obj_id = safe_int(request.POST.get('user_group_id'))
                         if obj_type == 'user':
                             RepoModel().revoke_user_permission(repo=repo_name, user=obj_id)
                         elif obj_type == 'user_group':
                             RepoModel().revoke_user_group_permission(
                                 repo=repo_name, group_name=obj_id
                             )
                         #TODO: implement this
                         #action_logger(self.authuser, 'admin_revoked_repo_permissions',
                         #              repo_name, self.ip_addr, self.sa)
                         Session().commit()
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during revoking of permission'),
                                 category='error')
                         raise HTTPInternalServerError()
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_fields(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     # url('edit_repo', repo_name=ID)
                     c.repo_info = self._load_repo(repo_name)
                     c.repo_fields = RepositoryField.query()\
                         .filter(RepositoryField.repository == c.repo_info).all()
                     c.active = 'fields'
                     if request.POST:
-                        return redirect(url('repo_edit_fields'))
+                        raise HTTPFound(location=url('repo_edit_fields'))
                     return render('admin/repos/repo_edit.html')
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def create_repo_field(self, repo_name):
                     try:
                         form_result = RepoFieldForm()().to_python(dict(request.POST))
                         new_field = RepositoryField()
                         new_field.repository = Repository.get_by_repo_name(repo_name)
                         new_field.field_key = form_result['new_field_key']
                         new_field.field_type = form_result['new_field_type']  # python type
                         new_field.field_value = form_result['new_field_value']  # set initial blank value
                         new_field.field_desc = form_result['new_field_desc']
                         new_field.field_label = form_result['new_field_label']
                         Session().add(new_field)
                         Session().commit()
                     except Exception as e:
                         log.error(traceback.format_exc())
                         msg = _('An error occurred during creation of field')
                         if isinstance(e, formencode.Invalid):
                             msg += ". " + e.msg
                         h.flash(msg, category='error')
-                    return redirect(url('edit_repo_fields', repo_name=repo_name))
+                    raise HTTPFound(location=url('edit_repo_fields', repo_name=repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def delete_repo_field(self, repo_name, field_id):
                     field = RepositoryField.get_or_404(field_id)
                     try:
                         Session().delete(field)
                         Session().commit()
                     except Exception as e:
                         log.error(traceback.format_exc())
                         msg = _('An error occurred during removal of field')
                         h.flash(msg, category='error')
-                    return redirect(url('edit_repo_fields', repo_name=repo_name))
+                    raise HTTPFound(location=url('edit_repo_fields', repo_name=repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_advanced(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     # url('edit_repo', repo_name=ID)
                     c.repo_info = self._load_repo(repo_name)
                     c.default_user_id = User.get_default_user().user_id
                     c.in_public_journal = UserFollowing.query()\
                         .filter(UserFollowing.user_id == c.default_user_id)\
                         .filter(UserFollowing.follows_repository == c.repo_info).scalar()
                     _repos = Repository.query().order_by(Repository.repo_name).all()
                     read_access_repos = RepoList(_repos)
                     c.repos_list = [(None, _('-- Not a fork --'))]
                     c.repos_list += [(x.repo_id, x.repo_name)
                                      for x in read_access_repos
                                      if x.repo_id != c.repo_info.repo_id]
                     defaults = {
                         'id_fork_of': c.repo_info.fork.repo_id if c.repo_info.fork else ''
                     }
                     c.active = 'advanced'
                     if request.POST:
-                        return redirect(url('repo_edit_advanced'))
+                        raise HTTPFound(location=url('repo_edit_advanced'))
                     return htmlfill.render(
                         render('admin/repos/repo_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_advanced_journal(self, repo_name):
                     """
                     Sets this repository to be visible in public journal,
                     in other words asking default user to follow this repo
                     :param repo_name:
                     """
                     try:
                         repo_id = Repository.get_by_repo_name(repo_name).repo_id
                         user_id = User.get_default_user().user_id
                         self.scm_model.toggle_following_repo(repo_id, user_id)
                         h.flash(_('Updated repository visibility in public journal'),
                                 category='success')
                         Session().commit()
                     except Exception:
                         h.flash(_('An error occurred during setting this'
                                   ' repository in public journal'),
                                 category='error')
-                    return redirect(url('edit_repo_advanced', repo_name=repo_name))
+                    raise HTTPFound(location=url('edit_repo_advanced', repo_name=repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_advanced_fork(self, repo_name):
                     """
                     Mark given repository as a fork of another
                     :param repo_name:
                     """
                     try:
                         fork_id = request.POST.get('id_fork_of')
                         repo = ScmModel().mark_as_fork(repo_name, fork_id,
                                                        self.authuser.username)
                         fork = repo.fork.repo_name if repo.fork else _('Nothing')
                         Session().commit()
                         h.flash(_('Marked repository %s as fork of %s') % (repo_name, fork),
                                 category='success')
                     except RepositoryError as e:
                         log.error(traceback.format_exc())
                         h.flash(str(e), category='error')
                     except Exception as e:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during this operation'),
                                 category='error')
-                    return redirect(url('edit_repo_advanced', repo_name=repo_name))
+                    raise HTTPFound(location=url('edit_repo_advanced', repo_name=repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_advanced_locking(self, repo_name):
                     """
                     Unlock repository when it is locked !
                     :param repo_name:
                     """
                     try:
                         repo = Repository.get_by_repo_name(repo_name)
                         if request.POST.get('set_lock'):
                             Repository.lock(repo, c.authuser.user_id)
                             h.flash(_('Repository has been locked'), category='success')
                         elif request.POST.get('set_unlock'):
                             Repository.unlock(repo)
                             h.flash(_('Repository has been unlocked'), category='success')
                     except Exception as e:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during unlocking'),
                                 category='error')
-                    return redirect(url('edit_repo_advanced', repo_name=repo_name))
+                    raise HTTPFound(location=url('edit_repo_advanced', repo_name=repo_name))
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 def toggle_locking(self, repo_name):
                     """
                     Toggle locking of repository by simple GET call to url
                     :param repo_name:
                     """
                     try:
                         repo = Repository.get_by_repo_name(repo_name)
                         if repo.enable_locking:
                             if repo.locked[0]:
                                 Repository.unlock(repo)
                                 h.flash(_('Repository has been unlocked'), category='success')
                             else:
                                 Repository.lock(repo, c.authuser.user_id)
                                 h.flash(_('Repository has been locked'), category='success')
                     except Exception as e:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during unlocking'),
                                 category='error')
-                    return redirect(url('summary_home', repo_name=repo_name))
+                    raise HTTPFound(location=url('summary_home', repo_name=repo_name))
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_caches(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     # url('edit_repo', repo_name=ID)
                     c.repo_info = self._load_repo(repo_name)
                     c.active = 'caches'
                     if request.POST:
                         try:
                             ScmModel().mark_for_invalidation(repo_name)
                             Session().commit()
                             h.flash(_('Cache invalidation successful'),
                                     category='success')
                         except Exception as e:
                             log.error(traceback.format_exc())
                             h.flash(_('An error occurred during cache invalidation'),
                                     category='error')
-                        return redirect(url('edit_repo_caches', repo_name=c.repo_name))
+                        raise HTTPFound(location=url('edit_repo_caches', repo_name=c.repo_name))
                     return render('admin/repos/repo_edit.html')
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_remote(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     # url('edit_repo', repo_name=ID)
                     c.repo_info = self._load_repo(repo_name)
                     c.active = 'remote'
                     if request.POST:
                         try:
                             ScmModel().pull_changes(repo_name, self.authuser.username)
                             h.flash(_('Pulled from remote location'), category='success')
                         except Exception as e:
                             log.error(traceback.format_exc())
                             h.flash(_('An error occurred during pull from remote location'),
                                     category='error')
-                        return redirect(url('edit_repo_remote', repo_name=c.repo_name))
+                        raise HTTPFound(location=url('edit_repo_remote', repo_name=c.repo_name))
                     return render('admin/repos/repo_edit.html')
                 @HasRepoPermissionAllDecorator('repository.admin')
                 def edit_statistics(self, repo_name):
                     """GET /repo_name/settings: Form to edit an existing item"""
                     # url('edit_repo', repo_name=ID)
                     c.repo_info = self._load_repo(repo_name)
                     repo = c.repo_info.scm_instance
                     if c.repo_info.stats:
                         # this is on what revision we ended up so we add +1 for count
                         last_rev = c.repo_info.stats.stat_on_revision + 1
                     else:
                         last_rev = 0
                     c.stats_revision = last_rev
                     c.repo_last_rev = repo.count() if repo.revisions else 0
                     if last_rev == 0 or c.repo_last_rev == 0:
                         c.stats_percentage = 0
                     else:
                         c.stats_percentage = '%.2f' % ((float((last_rev)) / c.repo_last_rev) * 100)
                     c.active = 'statistics'
                     if request.POST:
                         try:
                             RepoModel().delete_stats(repo_name)
                             Session().commit()
                         except Exception as e:
                             log.error(traceback.format_exc())
                             h.flash(_('An error occurred during deletion of repository stats'),
                                     category='error')
-                        return redirect(url('edit_repo_statistics', repo_name=c.repo_name))
+                        raise HTTPFound(location=url('edit_repo_statistics', repo_name=c.repo_name))
                     return render('admin/repos/repo_edit.html')

kallithea/controllers/admin/settings.py

0 +8 -8

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.settings
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             settings controller for Kallithea admin
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Jul 14, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             import formencode
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url, config
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound
             from kallithea.lib import helpers as h
             from kallithea.lib.auth import LoginRequired, HasPermissionAllDecorator
             from kallithea.lib.base import BaseController, render
             from kallithea.lib.celerylib import tasks, run_task
             from kallithea.lib.exceptions import HgsubversionImportError
             from kallithea.lib.utils import repo2db_mapper, set_app_settings
             from kallithea.model.db import Ui, Repository, Setting
             from kallithea.model.forms import ApplicationSettingsForm, \
                 ApplicationUiSettingsForm, ApplicationVisualisationForm
             from kallithea.model.scm import ScmModel
             from kallithea.model.notification import EmailNotificationModel
             from kallithea.model.meta import Session
             from kallithea.lib.utils2 import str2bool, safe_unicode
             log = logging.getLogger(__name__)
             class SettingsController(BaseController):
                 """REST Controller styled on the Atom Publishing Protocol"""
                 # To properly map this controller, ensure your config/routing.py
                 # file has a resource setup:
                 #     map.resource('setting', 'settings', controller='admin/settings',
                 #         path_prefix='/admin', name_prefix='admin_')
                 @LoginRequired()
                 def __before__(self):
                     super(SettingsController, self).__before__()
                 def _get_hg_ui_settings(self):
                     ret = Ui.query().all()
                     if not ret:
                         raise Exception('Could not get application ui settings !')
                     settings = {}
                     for each in ret:
                         k = each.ui_key
                         v = each.ui_value
                         if k == '/':
                             k = 'root_path'
                         if k == 'push_ssl':
                             v = str2bool(v)
                         if k.find('.') != -1:
                             k = k.replace('.', '_')
                         if each.ui_section in ['hooks', 'extensions']:
                             v = each.ui_active
                         settings[each.ui_section + '_' + k] = v
                     return settings
                 @HasPermissionAllDecorator('hg.admin')
                 def settings_vcs(self):
                     """GET /admin/settings: All items in the collection"""
                     # url('admin_settings')
                     c.active = 'vcs'
                     if request.POST:
                         application_form = ApplicationUiSettingsForm()()
                         try:
                             form_result = application_form.to_python(dict(request.POST))
                         except formencode.Invalid as errors:
                             return htmlfill.render(
                                  render('admin/settings/settings.html'),
                                  defaults=errors.value,
                                  errors=errors.error_dict or {},
                                  prefix_error=False,
                                  encoding="UTF-8",
                                  force_defaults=False)
                         try:
                             sett = Ui.get_by_key('push_ssl')
                             sett.ui_value = form_result['web_push_ssl']
                             Session().add(sett)
                             if c.visual.allow_repo_location_change:
                                 sett = Ui.get_by_key('/')
                                 sett.ui_value = form_result['paths_root_path']
                                 Session().add(sett)
                             #HOOKS
                             sett = Ui.get_by_key(Ui.HOOK_UPDATE)
                             sett.ui_active = form_result['hooks_changegroup_update']
                             Session().add(sett)
                             sett = Ui.get_by_key(Ui.HOOK_REPO_SIZE)
                             sett.ui_active = form_result['hooks_changegroup_repo_size']
                             Session().add(sett)
                             sett = Ui.get_by_key(Ui.HOOK_PUSH)
                             sett.ui_active = form_result['hooks_changegroup_push_logger']
                             Session().add(sett)
                             sett = Ui.get_by_key(Ui.HOOK_PULL)
                             sett.ui_active = form_result['hooks_outgoing_pull_logger']
                             Session().add(sett)
                             ## EXTENSIONS
                             sett = Ui.get_by_key('largefiles')
                             if not sett:
                                 #make one if it's not there !
                                 sett = Ui()
                                 sett.ui_key = 'largefiles'
                                 sett.ui_section = 'extensions'
                             sett.ui_active = form_result['extensions_largefiles']
                             Session().add(sett)
                             sett = Ui.get_by_key('hgsubversion')
                             if not sett:
                                 #make one if it's not there !
                                 sett = Ui()
                                 sett.ui_key = 'hgsubversion'
                                 sett.ui_section = 'extensions'
                             sett.ui_active = form_result['extensions_hgsubversion']
                             if sett.ui_active:
                                 try:
                                     import hgsubversion  # pragma: no cover
                                 except ImportError:
                                     raise HgsubversionImportError
                             Session().add(sett)
             #                sett = Ui.get_by_key('hggit')
             #                if not sett:
             #                    #make one if it's not there !
             #                    sett = Ui()
             #                    sett.ui_key = 'hggit'
             #                    sett.ui_section = 'extensions'
             #
             #                sett.ui_active = form_result['extensions_hggit']
             #                Session().add(sett)
                             Session().commit()
                             h.flash(_('Updated VCS settings'), category='success')
                         except HgsubversionImportError:
                             log.error(traceback.format_exc())
                             h.flash(_('Unable to activate hgsubversion support. '
                                       'The "hgsubversion" library is missing'),
                                     category='error')
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred while updating '
                                       'application settings'), category='error')
                     defaults = Setting.get_app_settings()
                     defaults.update(self._get_hg_ui_settings())
                     return htmlfill.render(
                         render('admin/settings/settings.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasPermissionAllDecorator('hg.admin')
                 def settings_mapping(self):
                     """GET /admin/settings/mapping: All items in the collection"""
                     # url('admin_settings_mapping')
                     c.active = 'mapping'
                     if request.POST:
                         rm_obsolete = request.POST.get('destroy', False)
                         install_git_hooks = request.POST.get('hooks', False)
                         overwrite_git_hooks = request.POST.get('hooks_overwrite', False);
                         invalidate_cache = request.POST.get('invalidate', False)
                         log.debug('rescanning repo location with destroy obsolete=%s, '
                                   'install git hooks=%s and '
                                   'overwrite git hooks=%s' % (rm_obsolete, install_git_hooks, overwrite_git_hooks))
                         if invalidate_cache:
                             log.debug('invalidating all repositories cache')
                             for repo in Repository.get_all():
                                 ScmModel().mark_for_invalidation(repo.repo_name)
                         filesystem_repos = ScmModel().repo_scan()
                         added, removed = repo2db_mapper(filesystem_repos, rm_obsolete,
                                                         install_git_hooks=install_git_hooks,
                                                         user=c.authuser.username,
                                                         overwrite_git_hooks=overwrite_git_hooks)
                         h.flash(h.literal(_('Repositories successfully rescanned. Added: %s. Removed: %s.') %
                             (', '.join(h.link_to(safe_unicode(repo_name), h.url('summary_home', repo_name=repo_name))
                              for repo_name in added) or '-',
                              ', '.join(h.escape(safe_unicode(repo_name)) for repo_name in removed) or '-')),
                             category='success')
-                        return redirect(url('admin_settings_mapping'))
+                        raise HTTPFound(location=url('admin_settings_mapping'))
                     defaults = Setting.get_app_settings()
                     defaults.update(self._get_hg_ui_settings())
                     return htmlfill.render(
                         render('admin/settings/settings.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasPermissionAllDecorator('hg.admin')
                 def settings_global(self):
                     """GET /admin/settings/global: All items in the collection"""
                     # url('admin_settings_global')
                     c.active = 'global'
                     if request.POST:
                         application_form = ApplicationSettingsForm()()
                         try:
                             form_result = application_form.to_python(dict(request.POST))
                         except formencode.Invalid as errors:
                             return htmlfill.render(
                                 render('admin/settings/settings.html'),
                                 defaults=errors.value,
                                 errors=errors.error_dict or {},
                                 prefix_error=False,
                                 encoding="UTF-8",
                                 force_defaults=False)
                         try:
                             sett1 = Setting.create_or_update('title',
                                                         form_result['title'])
                             Session().add(sett1)
                             sett2 = Setting.create_or_update('realm',
                                                         form_result['realm'])
                             Session().add(sett2)
                             sett3 = Setting.create_or_update('ga_code',
                                                         form_result['ga_code'])
                             Session().add(sett3)
                             sett4 = Setting.create_or_update('captcha_public_key',
                                                 form_result['captcha_public_key'])
                             Session().add(sett4)
                             sett5 = Setting.create_or_update('captcha_private_key',
                                                 form_result['captcha_private_key'])
                             Session().add(sett5)
                             Session().commit()
                             set_app_settings(config)
                             h.flash(_('Updated application settings'), category='success')
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred while updating '
                                       'application settings'),
                                       category='error')
-                        return redirect(url('admin_settings_global'))
+                        raise HTTPFound(location=url('admin_settings_global'))
                     defaults = Setting.get_app_settings()
                     defaults.update(self._get_hg_ui_settings())
                     return htmlfill.render(
                         render('admin/settings/settings.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasPermissionAllDecorator('hg.admin')
                 def settings_visual(self):
                     """GET /admin/settings/visual: All items in the collection"""
                     # url('admin_settings_visual')
                     c.active = 'visual'
                     if request.POST:
                         application_form = ApplicationVisualisationForm()()
                         try:
                             form_result = application_form.to_python(dict(request.POST))
                         except formencode.Invalid as errors:
                             return htmlfill.render(
                                 render('admin/settings/settings.html'),
                                 defaults=errors.value,
                                 errors=errors.error_dict or {},
                                 prefix_error=False,
                                 encoding="UTF-8",
                                 force_defaults=False)
                         try:
                             settings = [
                                 ('show_public_icon', 'show_public_icon', 'bool'),
                                 ('show_private_icon', 'show_private_icon', 'bool'),
                                 ('stylify_metatags', 'stylify_metatags', 'bool'),
                                 ('repository_fields', 'repository_fields', 'bool'),
                                 ('dashboard_items', 'dashboard_items', 'int'),
                                 ('admin_grid_items', 'admin_grid_items', 'int'),
                                 ('show_version', 'show_version', 'bool'),
                                 ('use_gravatar', 'use_gravatar', 'bool'),
                                 ('gravatar_url', 'gravatar_url', 'unicode'),
                                 ('clone_uri_tmpl', 'clone_uri_tmpl', 'unicode'),
                             ]
                             for setting, form_key, type_ in settings:
                                 sett = Setting.create_or_update(setting,
                                                     form_result[form_key], type_)
                                 Session().add(sett)
                             Session().commit()
                             set_app_settings(config)
                             h.flash(_('Updated visualisation settings'),
                                     category='success')
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred during updating '
                                       'visualisation settings'),
                                     category='error')
-                        return redirect(url('admin_settings_visual'))
+                        raise HTTPFound(location=url('admin_settings_visual'))
                     defaults = Setting.get_app_settings()
                     defaults.update(self._get_hg_ui_settings())
                     return htmlfill.render(
                         render('admin/settings/settings.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasPermissionAllDecorator('hg.admin')
                 def settings_email(self):
                     """GET /admin/settings/email: All items in the collection"""
                     # url('admin_settings_email')
                     c.active = 'email'
                     if request.POST:
                         test_email = request.POST.get('test_email')
                         test_email_subj = 'Kallithea test email'
                         test_body = ('Kallithea Email test, '
                                            'Kallithea version: %s' % c.kallithea_version)
                         if not test_email:
                             h.flash(_('Please enter email address'), category='error')
-                            return redirect(url('admin_settings_email'))
+                            raise HTTPFound(location=url('admin_settings_email'))
                         test_email_txt_body = EmailNotificationModel()\
                             .get_email_tmpl(EmailNotificationModel.TYPE_DEFAULT,
                                             'txt', body=test_body)
                         test_email_html_body = EmailNotificationModel()\
                             .get_email_tmpl(EmailNotificationModel.TYPE_DEFAULT,
                                             'html', body=test_body)
                         recipients = [test_email] if test_email else None
                         run_task(tasks.send_email, recipients, test_email_subj,
                                  test_email_txt_body, test_email_html_body)
                         h.flash(_('Send email task created'), category='success')
-                        return redirect(url('admin_settings_email'))
+                        raise HTTPFound(location=url('admin_settings_email'))
                     defaults = Setting.get_app_settings()
                     defaults.update(self._get_hg_ui_settings())
                     import kallithea
                     c.ini = kallithea.CONFIG
                     return htmlfill.render(
                         render('admin/settings/settings.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasPermissionAllDecorator('hg.admin')
                 def settings_hooks(self):
                     """GET /admin/settings/hooks: All items in the collection"""
                     # url('admin_settings_hooks')
                     c.active = 'hooks'
                     if request.POST:
                         if c.visual.allow_custom_hooks_settings:
                             ui_key = request.POST.get('new_hook_ui_key')
                             ui_value = request.POST.get('new_hook_ui_value')
                             hook_id = request.POST.get('hook_id')
                             try:
                                 ui_key = ui_key and ui_key.strip()
                                 if ui_value and ui_key:
                                     Ui.create_or_update_hook(ui_key, ui_value)
                                     h.flash(_('Added new hook'), category='success')
                                 elif hook_id:
                                     Ui.delete(hook_id)
                                     Session().commit()
                                 # check for edits
                                 update = False
                                 _d = request.POST.dict_of_lists()
                                 for k, v in zip(_d.get('hook_ui_key', []),
                                                 _d.get('hook_ui_value_new', [])):
                                     Ui.create_or_update_hook(k, v)
                                     update = True
                                 if update:
                                     h.flash(_('Updated hooks'), category='success')
                                 Session().commit()
                             except Exception:
                                 log.error(traceback.format_exc())
                                 h.flash(_('Error occurred during hook creation'),
                                         category='error')
-                            return redirect(url('admin_settings_hooks'))
+                            raise HTTPFound(location=url('admin_settings_hooks'))
                     defaults = Setting.get_app_settings()
                     defaults.update(self._get_hg_ui_settings())
                     c.hooks = Ui.get_builtin_hooks()
                     c.custom_hooks = Ui.get_custom_hooks()
                     return htmlfill.render(
                         render('admin/settings/settings.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasPermissionAllDecorator('hg.admin')
                 def settings_search(self):
                     """GET /admin/settings/search: All items in the collection"""
                     # url('admin_settings_search')
                     c.active = 'search'
                     if request.POST:
                         repo_location = self._get_hg_ui_settings()['paths_root_path']
                         full_index = request.POST.get('full_index', False)
                         run_task(tasks.whoosh_index, repo_location, full_index)
                         h.flash(_('Whoosh reindex task scheduled'), category='success')
-                        return redirect(url('admin_settings_search'))
+                        raise HTTPFound(location=url('admin_settings_search'))
                     defaults = Setting.get_app_settings()
                     defaults.update(self._get_hg_ui_settings())
                     return htmlfill.render(
                         render('admin/settings/settings.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasPermissionAllDecorator('hg.admin')
                 def settings_system(self):
                     """GET /admin/settings/system: All items in the collection"""
                     # url('admin_settings_system')
                     c.active = 'system'
                     defaults = Setting.get_app_settings()
                     defaults.update(self._get_hg_ui_settings())
                     import kallithea
                     c.ini = kallithea.CONFIG
                     c.update_url = defaults.get('update_url')
                     server_info = Setting.get_server_info()
                     for key, val in server_info.iteritems():
                         setattr(c, key, val)
                     return htmlfill.render(
                         render('admin/settings/settings.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @HasPermissionAllDecorator('hg.admin')
                 def settings_system_update(self):
                     """GET /admin/settings/system/updates: All items in the collection"""
                     # url('admin_settings_system_update')
                     import json
                     import urllib2
                     from kallithea.lib.verlib import NormalizedVersion
                     from kallithea import __version__
                     defaults = Setting.get_app_settings()
                     defaults.update(self._get_hg_ui_settings())
                     _update_url = defaults.get('update_url', '')
                     _update_url = "" # FIXME: disabled
                     _err = lambda s: '<div style="color:#ff8888; padding:4px 0px">%s</div>' % (s)
                     try:
                         import kallithea
                         ver = kallithea.__version__
                         log.debug('Checking for upgrade on `%s` server', _update_url)
                         opener = urllib2.build_opener()
                         opener.addheaders = [('User-agent', 'Kallithea-SCM/%s' % ver)]
                         response = opener.open(_update_url)
                         response_data = response.read()
                         data = json.loads(response_data)
                     except urllib2.URLError as e:
                         log.error(traceback.format_exc())
                         return _err('Failed to contact upgrade server: %r' % e)
                     except ValueError as e:
                         log.error(traceback.format_exc())
                         return _err('Bad data sent from update server')
                     latest = data['versions'][0]
                     c.update_url = _update_url
                     c.latest_data = latest
                     c.latest_ver = latest['version']
                     c.cur_ver = __version__
                     c.should_upgrade = False
                     if NormalizedVersion(c.latest_ver) > NormalizedVersion(c.cur_ver):
                         c.should_upgrade = True
                     c.important_notices = latest['general']
                     return render('admin/settings/settings_system_update.html'),

kallithea/controllers/admin/user_groups.py

0 +7 -7

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.user_groups
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             User Groups crud controller for pylons
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Jan 25, 2011
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             import formencode
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url, config
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound
             from sqlalchemy.orm import joinedload
             from sqlalchemy.sql.expression import func
             from webob.exc import HTTPInternalServerError
             import kallithea
             from kallithea.lib import helpers as h
             from kallithea.lib.exceptions import UserGroupsAssignedException, \
                 RepoGroupAssignmentError
             from kallithea.lib.utils2 import safe_unicode, safe_int
             from kallithea.lib.auth import LoginRequired, \
                 HasUserGroupPermissionAnyDecorator, HasPermissionAnyDecorator
             from kallithea.lib.base import BaseController, render
             from kallithea.model.scm import UserGroupList
             from kallithea.model.user_group import UserGroupModel
             from kallithea.model.repo import RepoModel
             from kallithea.model.db import User, UserGroup, UserGroupToPerm, \
                 UserGroupRepoToPerm, UserGroupRepoGroupToPerm
             from kallithea.model.forms import UserGroupForm, UserGroupPermsForm, \
                 CustomDefaultPermissionsForm
             from kallithea.model.meta import Session
             from kallithea.lib.utils import action_logger
             from kallithea.lib.compat import json
             log = logging.getLogger(__name__)
             class UserGroupsController(BaseController):
                 """REST Controller styled on the Atom Publishing Protocol"""
                 @LoginRequired()
                 def __before__(self):
                     super(UserGroupsController, self).__before__()
                     c.available_permissions = config['available_permissions']
                 def __load_data(self, user_group_id):
                     c.group_members_obj = sorted((x.user for x in c.user_group.members),
                                                  key=lambda u: u.username.lower())
                     c.group_members = [(x.user_id, x.username) for x in c.group_members_obj]
                     c.available_members = sorted(((x.user_id, x.username) for x in
                                                   User.query().all()),
                                                  key=lambda u: u[1].lower())
                 def __load_defaults(self, user_group_id):
                     """
                     Load defaults settings for edit, and update
                     :param user_group_id:
                     """
                     user_group = UserGroup.get_or_404(user_group_id)
                     data = user_group.get_dict()
                     return data
                 def index(self, format='html'):
                     """GET /users_groups: All items in the collection"""
                     # url('users_groups')
                     _list = UserGroup.query()\
                                     .order_by(func.lower(UserGroup.users_group_name))\
                                     .all()
                     group_iter = UserGroupList(_list, perm_set=['usergroup.admin'])
                     user_groups_data = []
                     total_records = len(group_iter)
                     _tmpl_lookup = kallithea.CONFIG['pylons.app_globals'].mako_lookup
                     template = _tmpl_lookup.get_template('data_table/_dt_elements.html')
                     user_group_name = lambda user_group_id, user_group_name: (
                         template.get_def("user_group_name")
                         .render(user_group_id, user_group_name, _=_, h=h, c=c)
                     )
                     user_group_actions = lambda user_group_id, user_group_name: (
                         template.get_def("user_group_actions")
                         .render(user_group_id, user_group_name, _=_, h=h, c=c)
                     )
                     for user_gr in group_iter:
                         user_groups_data.append({
                             "raw_name": user_gr.users_group_name,
                             "group_name": user_group_name(user_gr.users_group_id,
                                                           user_gr.users_group_name),
                             "desc": h.escape(user_gr.user_group_description),
                             "members": len(user_gr.members),
                             "active": h.boolicon(user_gr.users_group_active),
                             "owner": h.person(user_gr.user.username),
                             "action": user_group_actions(user_gr.users_group_id, user_gr.users_group_name)
                         })
                     c.data = json.dumps({
                         "totalRecords": total_records,
                         "startIndex": 0,
                         "sort": None,
                         "dir": "asc",
                         "records": user_groups_data
                     })
                     return render('admin/user_groups/user_groups.html')
                 @HasPermissionAnyDecorator('hg.admin', 'hg.usergroup.create.true')
                 def create(self):
                     """POST /users_groups: Create a new item"""
                     # url('users_groups')
                     users_group_form = UserGroupForm()()
                     try:
                         form_result = users_group_form.to_python(dict(request.POST))
                         ug = UserGroupModel().create(name=form_result['users_group_name'],
                                                      description=form_result['user_group_description'],
                                                      owner=self.authuser.user_id,
                                                      active=form_result['users_group_active'])
                         gr = form_result['users_group_name']
                         action_logger(self.authuser,
                                       'admin_created_users_group:%s' % gr,
                                       None, self.ip_addr, self.sa)
                         h.flash(h.literal(_('Created user group %s') % h.link_to(h.escape(gr), url('edit_users_group', id=ug.users_group_id))),
                             category='success')
                         Session().commit()
                     except formencode.Invalid as errors:
                         return htmlfill.render(
                             render('admin/user_groups/user_group_add.html'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during creation of user group %s') \
                                 % request.POST.get('users_group_name'), category='error')
-                    return redirect(url('users_groups'))
+                    raise HTTPFound(location=url('users_groups'))
                 @HasPermissionAnyDecorator('hg.admin', 'hg.usergroup.create.true')
                 def new(self, format='html'):
                     """GET /user_groups/new: Form to create a new item"""
                     # url('new_users_group')
                     return render('admin/user_groups/user_group_add.html')
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def update(self, id):
                     """PUT /user_groups/id: Update an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="PUT" />
                     # Or using helpers:
                     #    h.form(url('users_group', id=ID),
                     #           method='put')
                     # url('users_group', id=ID)
                     c.user_group = UserGroup.get_or_404(id)
                     c.active = 'settings'
                     self.__load_data(id)
                     available_members = [safe_unicode(x[0]) for x in c.available_members]
                     users_group_form = UserGroupForm(edit=True,
                                                      old_data=c.user_group.get_dict(),
                                                      available_members=available_members)()
                     try:
                         form_result = users_group_form.to_python(request.POST)
                         UserGroupModel().update(c.user_group, form_result)
                         gr = form_result['users_group_name']
                         action_logger(self.authuser,
                                       'admin_updated_users_group:%s' % gr,
                                       None, self.ip_addr, self.sa)
                         h.flash(_('Updated user group %s') % gr, category='success')
                         Session().commit()
                     except formencode.Invalid as errors:
                         ug_model = UserGroupModel()
                         defaults = errors.value
                         e = errors.error_dict or {}
                         defaults.update({
                             'create_repo_perm': ug_model.has_perm(id,
                                                                   'hg.create.repository'),
                             'fork_repo_perm': ug_model.has_perm(id,
                                                                 'hg.fork.repository'),
                             '_method': 'put'
                         })
                         return htmlfill.render(
                             render('admin/user_groups/user_group_edit.html'),
                             defaults=defaults,
                             errors=e,
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during update of user group %s') \
                                 % request.POST.get('users_group_name'), category='error')
-                    return redirect(url('edit_users_group', id=id))
+                    raise HTTPFound(location=url('edit_users_group', id=id))
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def delete(self, id):
                     """DELETE /user_groups/id: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('users_group', id=ID),
                     #           method='delete')
                     # url('users_group', id=ID)
                     usr_gr = UserGroup.get_or_404(id)
                     try:
                         UserGroupModel().delete(usr_gr)
                         Session().commit()
                         h.flash(_('Successfully deleted user group'), category='success')
                     except UserGroupsAssignedException as e:
                         h.flash(e, category='error')
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during deletion of user group'),
                                 category='error')
-                    return redirect(url('users_groups'))
+                    raise HTTPFound(location=url('users_groups'))
                 def show(self, id, format='html'):
                     """GET /user_groups/id: Show a specific item"""
                     # url('users_group', id=ID)
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit(self, id, format='html'):
                     """GET /user_groups/id/edit: Form to edit an existing item"""
                     # url('edit_users_group', id=ID)
                     c.user_group = UserGroup.get_or_404(id)
                     c.active = 'settings'
                     self.__load_data(id)
                     defaults = self.__load_defaults(id)
                     return htmlfill.render(
                         render('admin/user_groups/user_group_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit_perms(self, id):
                     c.user_group = UserGroup.get_or_404(id)
                     c.active = 'perms'
                     repo_model = RepoModel()
                     c.users_array = repo_model.get_users_js()
                     c.user_groups_array = repo_model.get_user_groups_js()
                     defaults = {}
                     # fill user group users
                     for p in c.user_group.user_user_group_to_perm:
                         defaults.update({'u_perm_%s' % p.user.username:
                                          p.permission.permission_name})
                     for p in c.user_group.user_group_user_group_to_perm:
                         defaults.update({'g_perm_%s' % p.user_group.users_group_name:
                                          p.permission.permission_name})
                     return htmlfill.render(
                         render('admin/user_groups/user_group_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def update_perms(self, id):
                     """
                     grant permission for given usergroup
                     :param id:
                     """
                     user_group = UserGroup.get_or_404(id)
                     form = UserGroupPermsForm()().to_python(request.POST)
                     # set the permissions !
                     try:
                         UserGroupModel()._update_permissions(user_group, form['perms_new'],
                                                              form['perms_updates'])
                     except RepoGroupAssignmentError:
                         h.flash(_('Target group cannot be the same'), category='error')
-                        return redirect(url('edit_user_group_perms', id=id))
+                        raise HTTPFound(location=url('edit_user_group_perms', id=id))
                     #TODO: implement this
                     #action_logger(self.authuser, 'admin_changed_repo_permissions',
                     #              repo_name, self.ip_addr, self.sa)
                     Session().commit()
                     h.flash(_('User group permissions updated'), category='success')
-                    return redirect(url('edit_user_group_perms', id=id))
+                    raise HTTPFound(location=url('edit_user_group_perms', id=id))
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def delete_perms(self, id):
                     """
                     DELETE an existing repository group permission user
                     :param group_name:
                     """
                     try:
                         obj_type = request.POST.get('obj_type')
                         obj_id = None
                         if obj_type == 'user':
                             obj_id = safe_int(request.POST.get('user_id'))
                         elif obj_type == 'user_group':
                             obj_id = safe_int(request.POST.get('user_group_id'))
                         if not c.authuser.is_admin:
                             if obj_type == 'user' and c.authuser.user_id == obj_id:
                                 msg = _('Cannot revoke permission for yourself as admin')
                                 h.flash(msg, category='warning')
                                 raise Exception('revoke admin permission on self')
                         if obj_type == 'user':
                             UserGroupModel().revoke_user_permission(user_group=id,
                                                                     user=obj_id)
                         elif obj_type == 'user_group':
                             UserGroupModel().revoke_user_group_permission(target_user_group=id,
                                                                           user_group=obj_id)
                         Session().commit()
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during revoking of permission'),
                                 category='error')
                         raise HTTPInternalServerError()
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit_default_perms(self, id):
                     c.user_group = UserGroup.get_or_404(id)
                     c.active = 'default_perms'
                     permissions = {
                         'repositories': {},
                         'repositories_groups': {}
                     }
                     ugroup_repo_perms = UserGroupRepoToPerm.query()\
                         .options(joinedload(UserGroupRepoToPerm.permission))\
                         .options(joinedload(UserGroupRepoToPerm.repository))\
                         .filter(UserGroupRepoToPerm.users_group_id == id)\
                         .all()
                     for gr in ugroup_repo_perms:
                         permissions['repositories'][gr.repository.repo_name]  \
                             = gr.permission.permission_name
                     ugroup_group_perms = UserGroupRepoGroupToPerm.query()\
                         .options(joinedload(UserGroupRepoGroupToPerm.permission))\
                         .options(joinedload(UserGroupRepoGroupToPerm.group))\
                         .filter(UserGroupRepoGroupToPerm.users_group_id == id)\
                         .all()
                     for gr in ugroup_group_perms:
                         permissions['repositories_groups'][gr.group.group_name] \
                             = gr.permission.permission_name
                     c.permissions = permissions
                     ug_model = UserGroupModel()
                     defaults = c.user_group.get_dict()
                     defaults.update({
                         'create_repo_perm': ug_model.has_perm(c.user_group,
                                                               'hg.create.repository'),
                         'create_user_group_perm': ug_model.has_perm(c.user_group,
                                                                     'hg.usergroup.create.true'),
                         'fork_repo_perm': ug_model.has_perm(c.user_group,
                                                             'hg.fork.repository'),
                     })
                     return htmlfill.render(
                         render('admin/user_groups/user_group_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False
                     )
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def update_default_perms(self, id):
                     """PUT /users_perm/id: Update an existing item"""
                     # url('users_group_perm', id=ID, method='put')
                     user_group = UserGroup.get_or_404(id)
                     try:
                         form = CustomDefaultPermissionsForm()()
                         form_result = form.to_python(request.POST)
                         inherit_perms = form_result['inherit_default_permissions']
                         user_group.inherit_default_permissions = inherit_perms
                         Session().add(user_group)
                         usergroup_model = UserGroupModel()
                         defs = UserGroupToPerm.query()\
                             .filter(UserGroupToPerm.users_group == user_group)\
                             .all()
                         for ug in defs:
                             Session().delete(ug)
                         if form_result['create_repo_perm']:
                             usergroup_model.grant_perm(id, 'hg.create.repository')
                         else:
                             usergroup_model.grant_perm(id, 'hg.create.none')
                         if form_result['create_user_group_perm']:
                             usergroup_model.grant_perm(id, 'hg.usergroup.create.true')
                         else:
                             usergroup_model.grant_perm(id, 'hg.usergroup.create.false')
                         if form_result['fork_repo_perm']:
                             usergroup_model.grant_perm(id, 'hg.fork.repository')
                         else:
                             usergroup_model.grant_perm(id, 'hg.fork.none')
                         h.flash(_("Updated permissions"), category='success')
                         Session().commit()
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during permissions saving'),
                                 category='error')
-                    return redirect(url('edit_user_group_default_perms', id=id))
+                    raise HTTPFound(location=url('edit_user_group_default_perms', id=id))
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit_advanced(self, id):
                     c.user_group = UserGroup.get_or_404(id)
                     c.active = 'advanced'
                     c.group_members_obj = sorted((x.user for x in c.user_group.members),
                                                  key=lambda u: u.username.lower())
                     return render('admin/user_groups/user_group_edit.html')
                 @HasUserGroupPermissionAnyDecorator('usergroup.admin')
                 def edit_members(self, id):
                     c.user_group = UserGroup.get_or_404(id)
                     c.active = 'members'
                     c.group_members_obj = sorted((x.user for x in c.user_group.members),
                                                  key=lambda u: u.username.lower())
                     c.group_members = [(x.user_id, x.username) for x in c.group_members_obj]
                     return render('admin/user_groups/user_group_edit.html')

kallithea/controllers/admin/users.py

0 +13 -14

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.admin.users
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             Users crud controller for pylons
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 4, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             import formencode
             from formencode import htmlfill
             from pylons import request, tmpl_context as c, url, config
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
             from sqlalchemy.sql.expression import func
-            from webob.exc import HTTPNotFound
+            from webob.exc import HTTPFound, HTTPNotFound
             import kallithea
             from kallithea.lib.exceptions import DefaultUserException, \
                 UserOwnsReposException, UserCreationError
             from kallithea.lib import helpers as h
             from kallithea.lib.auth import LoginRequired, HasPermissionAllDecorator, \
                 AuthUser
             from kallithea.lib import auth_modules
             from kallithea.lib.auth_modules import auth_internal
             from kallithea.lib.base import BaseController, render
             from kallithea.model.api_key import ApiKeyModel
             from kallithea.model.db import User, UserEmailMap, UserIpMap, UserToPerm
             from kallithea.model.forms import UserForm, CustomDefaultPermissionsForm
             from kallithea.model.user import UserModel
             from kallithea.model.meta import Session
             from kallithea.lib.utils import action_logger
             from kallithea.lib.compat import json
             from kallithea.lib.utils2 import datetime_to_time, safe_int, generate_api_key
             log = logging.getLogger(__name__)
             class UsersController(BaseController):
                 """REST Controller styled on the Atom Publishing Protocol"""
                 @LoginRequired()
                 @HasPermissionAllDecorator('hg.admin')
                 def __before__(self):
                     super(UsersController, self).__before__()
                     c.available_permissions = config['available_permissions']
                     c.EXTERN_TYPE_INTERNAL = kallithea.EXTERN_TYPE_INTERNAL
                 def index(self, format='html'):
                     """GET /users: All items in the collection"""
                     # url('users')
                     c.users_list = User.query().order_by(User.username)\
                                     .filter(User.username != User.DEFAULT_USER)\
                                     .order_by(func.lower(User.username))\
                                     .all()
                     users_data = []
                     total_records = len(c.users_list)
                     _tmpl_lookup = kallithea.CONFIG['pylons.app_globals'].mako_lookup
                     template = _tmpl_lookup.get_template('data_table/_dt_elements.html')
                     grav_tmpl = '<div class="gravatar">%s</div>'
                     username = lambda user_id, username: (
                             template.get_def("user_name")
                             .render(user_id, username, _=_, h=h, c=c))
                     user_actions = lambda user_id, username: (
                             template.get_def("user_actions")
                             .render(user_id, username, _=_, h=h, c=c))
                     for user in c.users_list:
                         users_data.append({
                             "gravatar": grav_tmpl % h.gravatar(user.email, size=20),
                             "raw_name": user.username,
                             "username": username(user.user_id, user.username),
                             "firstname": h.escape(user.name),
                             "lastname": h.escape(user.lastname),
                             "last_login": h.fmt_date(user.last_login),
                             "last_login_raw": datetime_to_time(user.last_login),
                             "active": h.boolicon(user.active),
                             "admin": h.boolicon(user.admin),
                             "extern_type": user.extern_type,
                             "extern_name": user.extern_name,
                             "action": user_actions(user.user_id, user.username),
                         })
                     c.data = json.dumps({
                         "totalRecords": total_records,
                         "startIndex": 0,
                         "sort": None,
                         "dir": "asc",
                         "records": users_data
                     })
                     return render('admin/users/users.html')
                 def create(self):
                     """POST /users: Create a new item"""
                     # url('users')
                     c.default_extern_type = auth_internal.KallitheaAuthPlugin.name
                     c.default_extern_name = auth_internal.KallitheaAuthPlugin.name
                     user_model = UserModel()
                     user_form = UserForm()()
                     try:
                         form_result = user_form.to_python(dict(request.POST))
                         user = user_model.create(form_result)
                         usr = form_result['username']
                         action_logger(self.authuser, 'admin_created_user:%s' % usr,
                                       None, self.ip_addr, self.sa)
                         h.flash(h.literal(_('Created user %s') % h.link_to(h.escape(usr), url('edit_user', id=user.user_id))),
                                 category='success')
                         Session().commit()
                     except formencode.Invalid as errors:
                         return htmlfill.render(
                             render('admin/users/user_add.html'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except UserCreationError as e:
                         h.flash(e, 'error')
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during creation of user %s') \
                                 % request.POST.get('username'), category='error')
-                    return redirect(url('users'))
+                    raise HTTPFound(location=url('users'))
                 def new(self, format='html'):
                     """GET /users/new: Form to create a new item"""
                     # url('new_user')
                     c.default_extern_type = auth_internal.KallitheaAuthPlugin.name
                     c.default_extern_name = auth_internal.KallitheaAuthPlugin.name
                     return render('admin/users/user_add.html')
                 def update(self, id):
                     """PUT /users/id: Update an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="PUT" />
                     # Or using helpers:
                     #    h.form(url('update_user', id=ID),
                     #           method='put')
                     # url('user', id=ID)
                     user_model = UserModel()
                     user = user_model.get(id)
                     _form = UserForm(edit=True, old_data={'user_id': id,
                                                           'email': user.email})()
                     form_result = {}
                     try:
                         form_result = _form.to_python(dict(request.POST))
                         skip_attrs = ['extern_type', 'extern_name',
                                      ] + auth_modules.get_managed_fields(user)
                         user_model.update(id, form_result, skip_attrs=skip_attrs)
                         usr = form_result['username']
                         action_logger(self.authuser, 'admin_updated_user:%s' % usr,
                                       None, self.ip_addr, self.sa)
                         h.flash(_('User updated successfully'), category='success')
                         Session().commit()
                     except formencode.Invalid as errors:
                         defaults = errors.value
                         e = errors.error_dict or {}
                         defaults.update({
                             'create_repo_perm': user_model.has_perm(id,
                                                                     'hg.create.repository'),
                             'fork_repo_perm': user_model.has_perm(id, 'hg.fork.repository'),
                             '_method': 'put'
                         })
                         return htmlfill.render(
                             self._render_edit_profile(user),
                             defaults=defaults,
                             errors=e,
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('Error occurred during update of user %s') \
                                 % form_result.get('username'), category='error')
-                    return redirect(url('edit_user', id=id))
+                    raise HTTPFound(location=url('edit_user', id=id))
                 def delete(self, id):
                     """DELETE /users/id: Delete an existing item"""
                     # Forms posted to this method should contain a hidden field:
                     #    <input type="hidden" name="_method" value="DELETE" />
                     # Or using helpers:
                     #    h.form(url('delete_user', id=ID),
                     #           method='delete')
                     # url('user', id=ID)
                     usr = User.get_or_404(id)
                     try:
                         UserModel().delete(usr)
                         Session().commit()
                         h.flash(_('Successfully deleted user'), category='success')
                     except (UserOwnsReposException, DefaultUserException) as e:
                         h.flash(e, category='warning')
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during deletion of user'),
                                 category='error')
-                    return redirect(url('users'))
+                    raise HTTPFound(location=url('users'))
                 def show(self, id, format='html'):
                     """GET /users/id: Show a specific item"""
                     # url('user', id=ID)
                     User.get_or_404(-1)
                 def _get_user_or_raise_if_default(self, id):
                     try:
                         return User.get_or_404(id, allow_default=False)
                     except DefaultUserException:
                         h.flash(_("The default user cannot be edited"), category='warning')
                         raise HTTPNotFound
                 def _render_edit_profile(self, user):
                     c.user = user
                     c.active = 'profile'
                     c.perm_user = AuthUser(dbuser=user)
                     c.ip_addr = self.ip_addr
                     managed_fields = auth_modules.get_managed_fields(user)
                     c.readonly = lambda n: 'readonly' if n in managed_fields else None
                     return render('admin/users/user_edit.html')
                 def edit(self, id, format='html'):
                     """GET /users/id/edit: Form to edit an existing item"""
                     # url('edit_user', id=ID)
                     user = self._get_user_or_raise_if_default(id)
                     defaults = user.get_dict()
                     return htmlfill.render(
                         self._render_edit_profile(user),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 def edit_advanced(self, id):
                     c.user = self._get_user_or_raise_if_default(id)
                     c.active = 'advanced'
                     c.perm_user = AuthUser(user_id=id)
                     c.ip_addr = self.ip_addr
                     umodel = UserModel()
                     defaults = c.user.get_dict()
                     defaults.update({
                         'create_repo_perm': umodel.has_perm(c.user, 'hg.create.repository'),
                         'create_user_group_perm': umodel.has_perm(c.user,
                                                                   'hg.usergroup.create.true'),
                         'fork_repo_perm': umodel.has_perm(c.user, 'hg.fork.repository'),
                     })
                     return htmlfill.render(
                         render('admin/users/user_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 def edit_api_keys(self, id):
                     c.user = self._get_user_or_raise_if_default(id)
                     c.active = 'api_keys'
                     show_expired = True
                     c.lifetime_values = [
                         (str(-1), _('Forever')),
                         (str(5), _('5 minutes')),
                         (str(60), _('1 hour')),
                         (str(60 * 24), _('1 day')),
                         (str(60 * 24 * 30), _('1 month')),
                     ]
                     c.lifetime_options = [(c.lifetime_values, _("Lifetime"))]
                     c.user_api_keys = ApiKeyModel().get_api_keys(c.user.user_id,
                                                                  show_expired=show_expired)
                     defaults = c.user.get_dict()
                     return htmlfill.render(
                         render('admin/users/user_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 def add_api_key(self, id):
                     c.user = self._get_user_or_raise_if_default(id)
                     lifetime = safe_int(request.POST.get('lifetime'), -1)
                     description = request.POST.get('description')
                     ApiKeyModel().create(c.user.user_id, description, lifetime)
                     Session().commit()
                     h.flash(_("API key successfully created"), category='success')
-                    return redirect(url('edit_user_api_keys', id=c.user.user_id))
+                    raise HTTPFound(location=url('edit_user_api_keys', id=c.user.user_id))
                 def delete_api_key(self, id):
                     c.user = self._get_user_or_raise_if_default(id)
                     api_key = request.POST.get('del_api_key')
                     if request.POST.get('del_api_key_builtin'):
                         user = User.get(c.user.user_id)
                         if user is not None:
                             user.api_key = generate_api_key()
                             Session().add(user)
                             Session().commit()
                             h.flash(_("API key successfully reset"), category='success')
                     elif api_key:
                         ApiKeyModel().delete(api_key, c.user.user_id)
                         Session().commit()
                         h.flash(_("API key successfully deleted"), category='success')
-                    return redirect(url('edit_user_api_keys', id=c.user.user_id))
+                    raise HTTPFound(location=url('edit_user_api_keys', id=c.user.user_id))
                 def update_account(self, id):
                     pass
                 def edit_perms(self, id):
                     c.user = self._get_user_or_raise_if_default(id)
                     c.active = 'perms'
                     c.perm_user = AuthUser(user_id=id)
                     c.ip_addr = self.ip_addr
                     umodel = UserModel()
                     defaults = c.user.get_dict()
                     defaults.update({
                         'create_repo_perm': umodel.has_perm(c.user, 'hg.create.repository'),
                         'create_user_group_perm': umodel.has_perm(c.user,
                                                                   'hg.usergroup.create.true'),
                         'fork_repo_perm': umodel.has_perm(c.user, 'hg.fork.repository'),
                     })
                     return htmlfill.render(
                         render('admin/users/user_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 def update_perms(self, id):
                     """PUT /users_perm/id: Update an existing item"""
                     # url('user_perm', id=ID, method='put')
                     user = self._get_user_or_raise_if_default(id)
                     try:
                         form = CustomDefaultPermissionsForm()()
                         form_result = form.to_python(request.POST)
                         inherit_perms = form_result['inherit_default_permissions']
                         user.inherit_default_permissions = inherit_perms
                         Session().add(user)
                         user_model = UserModel()
                         defs = UserToPerm.query()\
                             .filter(UserToPerm.user == user)\
                             .all()
                         for ug in defs:
                             Session().delete(ug)
                         if form_result['create_repo_perm']:
                             user_model.grant_perm(id, 'hg.create.repository')
                         else:
                             user_model.grant_perm(id, 'hg.create.none')
                         if form_result['create_user_group_perm']:
                             user_model.grant_perm(id, 'hg.usergroup.create.true')
                         else:
                             user_model.grant_perm(id, 'hg.usergroup.create.false')
                         if form_result['fork_repo_perm']:
                             user_model.grant_perm(id, 'hg.fork.repository')
                         else:
                             user_model.grant_perm(id, 'hg.fork.none')
                         h.flash(_("Updated permissions"), category='success')
                         Session().commit()
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during permissions saving'),
                                 category='error')
-                    return redirect(url('edit_user_perms', id=id))
+                    raise HTTPFound(location=url('edit_user_perms', id=id))
                 def edit_emails(self, id):
                     c.user = self._get_user_or_raise_if_default(id)
                     c.active = 'emails'
                     c.user_email_map = UserEmailMap.query()\
                         .filter(UserEmailMap.user == c.user).all()
                     defaults = c.user.get_dict()
                     return htmlfill.render(
                         render('admin/users/user_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 def add_email(self, id):
                     """POST /user_emails:Add an existing item"""
                     # url('user_emails', id=ID, method='put')
                     user = self._get_user_or_raise_if_default(id)
                     email = request.POST.get('new_email')
                     user_model = UserModel()
                     try:
                         user_model.add_extra_email(id, email)
                         Session().commit()
                         h.flash(_("Added email %s to user") % email, category='success')
                     except formencode.Invalid as error:
                         msg = error.error_dict['email']
                         h.flash(msg, category='error')
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during email saving'),
                                 category='error')
-                    return redirect(url('edit_user_emails', id=id))
+                    raise HTTPFound(location=url('edit_user_emails', id=id))
                 def delete_email(self, id):
                     """DELETE /user_emails_delete/id: Delete an existing item"""
                     # url('user_emails_delete', id=ID, method='delete')
                     user = self._get_user_or_raise_if_default(id)
                     email_id = request.POST.get('del_email_id')
                     user_model = UserModel()
                     user_model.delete_extra_email(id, email_id)
                     Session().commit()
                     h.flash(_("Removed email from user"), category='success')
-                    return redirect(url('edit_user_emails', id=id))
+                    raise HTTPFound(location=url('edit_user_emails', id=id))
                 def edit_ips(self, id):
                     c.user = self._get_user_or_raise_if_default(id)
                     c.active = 'ips'
                     c.user_ip_map = UserIpMap.query()\
                         .filter(UserIpMap.user == c.user).all()
                     c.inherit_default_ips = c.user.inherit_default_permissions
                     c.default_user_ip_map = UserIpMap.query()\
                         .filter(UserIpMap.user == User.get_default_user()).all()
                     defaults = c.user.get_dict()
                     return htmlfill.render(
                         render('admin/users/user_edit.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 def add_ip(self, id):
                     """POST /user_ips:Add an existing item"""
                     # url('user_ips', id=ID, method='put')
                     ip = request.POST.get('new_ip')
                     user_model = UserModel()
                     try:
                         user_model.add_extra_ip(id, ip)
                         Session().commit()
                         h.flash(_("Added IP address %s to user whitelist") % ip, category='success')
                     except formencode.Invalid as error:
                         msg = error.error_dict['ip']
                         h.flash(msg, category='error')
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred while adding IP address'),
                                 category='error')
                     if 'default_user' in request.POST:
-                        return redirect(url('admin_permissions_ips'))
+                        raise HTTPFound(location=url('admin_permissions_ips'))
-                    return redirect(url('edit_user_ips', id=id))
+                    raise HTTPFound(location=url('edit_user_ips', id=id))
                 def delete_ip(self, id):
                     """DELETE /user_ips_delete/id: Delete an existing item"""
                     # url('user_ips_delete', id=ID, method='delete')
                     ip_id = request.POST.get('del_ip_id')
                     user_model = UserModel()
                     user_model.delete_extra_ip(id, ip_id)
                     Session().commit()
                     h.flash(_("Removed IP address from user whitelist"), category='success')
                     if 'default_user' in request.POST:
-                        return redirect(url('admin_permissions_ips'))
+                        raise HTTPFound(location=url('admin_permissions_ips'))
-                    return redirect(url('edit_user_ips', id=id))
+                    raise HTTPFound(location=url('edit_user_ips', id=id))

kallithea/controllers/changelog.py

0 +7 -8

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.changelog
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             changelog controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 21, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             from pylons import request, url, session, tmpl_context as c
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
-            from webob.exc import HTTPNotFound, HTTPBadRequest
+            from webob.exc import HTTPFound, HTTPNotFound, HTTPBadRequest
             import kallithea.lib.helpers as h
             from kallithea.lib.auth import LoginRequired, HasRepoPermissionAnyDecorator
             from kallithea.lib.base import BaseRepoController, render
             from kallithea.lib.helpers import RepoPage
             from kallithea.lib.compat import json
             from kallithea.lib.graphmod import graph_data
             from kallithea.lib.vcs.exceptions import RepositoryError, ChangesetDoesNotExistError,\
                 ChangesetError, NodeDoesNotExistError, EmptyRepositoryError
             from kallithea.lib.utils2 import safe_int, safe_str
             log = logging.getLogger(__name__)
             def _load_changelog_summary():
                 p = safe_int(request.GET.get('page'), 1)
                 size = safe_int(request.GET.get('size'), 10)
                 def url_generator(**kw):
                     return url('changelog_summary_home',
                                repo_name=c.db_repo.repo_name, size=size, **kw)
                 collection = c.db_repo_scm_instance
                 c.repo_changesets = RepoPage(collection, page=p,
                                              items_per_page=size,
                                              url=url_generator)
                 page_revisions = [x.raw_id for x in list(c.repo_changesets)]
                 c.comments = c.db_repo.get_comments(page_revisions)
                 c.statuses = c.db_repo.statuses(page_revisions)
             class ChangelogController(BaseRepoController):
                 def __before__(self):
                     super(ChangelogController, self).__before__()
                     c.affected_files_cut_off = 60
                 @staticmethod
                 def __get_cs(rev, repo):
                     """
                     Safe way to get changeset. If error occur fail with error message.
                     :param rev: revision to fetch
                     :param repo: repo instance
                     """
                     try:
                         return c.db_repo_scm_instance.get_changeset(rev)
                     except EmptyRepositoryError as e:
                         h.flash(h.literal(_('There are no changesets yet')),
                                 category='error')
                     except RepositoryError as e:
                         log.error(traceback.format_exc())
                         h.flash(safe_str(e), category='error')
                     raise HTTPBadRequest()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def index(self, repo_name, revision=None, f_path=None):
                     # Fix URL after page size form submission via GET
                     # TODO: Somehow just don't send this extra junk in the GET URL
                     if request.GET.get('set'):
                         request.GET.pop('set', None)
                         if revision is None:
-                            return redirect(url('changelog_home', repo_name=repo_name, **request.GET))
+                            raise HTTPFound(location=url('changelog_home', repo_name=repo_name, **request.GET))
-                        return redirect(url('changelog_file_home', repo_name=repo_name, revision=revision, f_path=f_path, **request.GET))
+                        raise HTTPFound(location=url('changelog_file_home', repo_name=repo_name, revision=revision, f_path=f_path, **request.GET))
                     limit = 2000
                     default = 100
                     if request.GET.get('size'):
                         c.size = max(min(safe_int(request.GET.get('size')), limit), 1)
                         session['changelog_size'] = c.size
                         session.save()
                     else:
                         c.size = int(session.get('changelog_size', default))
                     # min size must be 1
                     c.size = max(c.size, 1)
                     p = safe_int(request.GET.get('page', 1), 1)
                     branch_name = request.GET.get('branch', None)
                     if (branch_name and
                         branch_name not in c.db_repo_scm_instance.branches and
                         branch_name not in c.db_repo_scm_instance.closed_branches and
                         not revision):
-                        return redirect(url('changelog_file_home', repo_name=c.repo_name,
+                        raise HTTPFound(location=url('changelog_file_home', repo_name=c.repo_name,
                                                 revision=branch_name, f_path=f_path or ''))
                     if revision == 'tip':
                         revision = None
                     c.changelog_for_path = f_path
                     try:
                         if f_path:
                             log.debug('generating changelog for path %s', f_path)
                             # get the history for the file !
                             tip_cs = c.db_repo_scm_instance.get_changeset()
                             try:
                                 collection = tip_cs.get_file_history(f_path)
                             except (NodeDoesNotExistError, ChangesetError):
                                 #this node is not present at tip !
                                 try:
                                     cs = self.__get_cs(revision, repo_name)
                                     collection = cs.get_file_history(f_path)
                                 except RepositoryError as e:
                                     h.flash(safe_str(e), category='warning')
-                                    redirect(h.url('changelog_home', repo_name=repo_name))
+                                    raise HTTPFound(location=h.url('changelog_home', repo_name=repo_name))
                             collection = list(reversed(collection))
                         else:
                             collection = c.db_repo_scm_instance.get_changesets(start=0, end=revision,
                                                                     branch_name=branch_name)
                         c.total_cs = len(collection)
                         c.pagination = RepoPage(collection, page=p, item_count=c.total_cs,
                                                 items_per_page=c.size, branch=branch_name,)
                         page_revisions = [x.raw_id for x in c.pagination]
                         c.comments = c.db_repo.get_comments(page_revisions)
                         c.statuses = c.db_repo.statuses(page_revisions)
                     except EmptyRepositoryError as e:
                         h.flash(safe_str(e), category='warning')
-                        return redirect(url('summary_home', repo_name=c.repo_name))
+                        raise HTTPFound(location=url('summary_home', repo_name=c.repo_name))
                     except (RepositoryError, ChangesetDoesNotExistError, Exception) as e:
                         log.error(traceback.format_exc())
                         h.flash(safe_str(e), category='error')
-                        return redirect(url('changelog_home', repo_name=c.repo_name))
+                        raise HTTPFound(location=url('changelog_home', repo_name=c.repo_name))
                     c.branch_name = branch_name
                     c.branch_filters = [('', _('None'))] + \
                         [(k, k) for k in c.db_repo_scm_instance.branches.keys()]
                     if c.db_repo_scm_instance.closed_branches:
                         prefix = _('(closed)') + ' '
                         c.branch_filters += [('-', '-')] + \
                             [(k, prefix + k) for k in c.db_repo_scm_instance.closed_branches.keys()]
                     revs = []
                     if not f_path:
                         revs = [x.revision for x in c.pagination]
                     c.jsdata = json.dumps(graph_data(c.db_repo_scm_instance, revs))
                     c.revision = revision # requested revision ref
                     c.first_revision = c.pagination[0] # pagination is never empty here!
                     return render('changelog/changelog.html')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def changelog_details(self, cs):
                     if request.environ.get('HTTP_X_PARTIAL_XHR'):
                         c.cs = c.db_repo_scm_instance.get_changeset(cs)
                         return render('changelog/changelog_details.html')
                     raise HTTPNotFound()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def changelog_summary(self, repo_name):
                     if request.environ.get('HTTP_X_PARTIAL_XHR'):
                         _load_changelog_summary()
                         return render('changelog/changelog_summary_data.html')
                     raise HTTPNotFound()

kallithea/controllers/changeset.py

0 +4 -5

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.changeset
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             changeset controller for pylons showing changes between
             revisions
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 25, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             from collections import defaultdict
-            from webob.exc import HTTPForbidden, HTTPBadRequest, HTTPNotFound
             from pylons import tmpl_context as c, request, response
             from pylons.i18n.translation import _
-            from pylons.controllers.util import redirect
+            from webob.exc import HTTPFound, HTTPForbidden, HTTPBadRequest, HTTPNotFound
             from kallithea.lib.utils import jsonify
             from kallithea.lib.vcs.exceptions import RepositoryError, \
                 ChangesetDoesNotExistError
             from kallithea.lib.compat import json
             import kallithea.lib.helpers as h
             from kallithea.lib.auth import LoginRequired, HasRepoPermissionAnyDecorator,\
                 NotAnonymous
             from kallithea.lib.base import BaseRepoController, render
             from kallithea.lib.utils import action_logger
             from kallithea.lib.compat import OrderedDict
             from kallithea.lib import diffs
             from kallithea.model.db import ChangesetComment, ChangesetStatus
             from kallithea.model.comment import ChangesetCommentsModel
             from kallithea.model.changeset_status import ChangesetStatusModel
             from kallithea.model.meta import Session
             from kallithea.model.repo import RepoModel
             from kallithea.lib.diffs import LimitedDiffContainer
             from kallithea.lib.exceptions import StatusChangeOnClosedPullRequestError
             from kallithea.lib.vcs.backends.base import EmptyChangeset
             from kallithea.lib.utils2 import safe_unicode
             from kallithea.lib.graphmod import graph_data
             log = logging.getLogger(__name__)
             def _update_with_GET(params, GET):
                 for k in ['diff1', 'diff2', 'diff']:
                     params[k] += GET.getall(k)
             def anchor_url(revision, path, GET):
                 fid = h.FID(revision, path)
                 return h.url.current(anchor=fid, **dict(GET))
             def get_ignore_ws(fid, GET):
                 ig_ws_global = GET.get('ignorews')
                 ig_ws = filter(lambda k: k.startswith('WS'), GET.getall(fid))
                 if ig_ws:
                     try:
                         return int(ig_ws[0].split(':')[-1])
                     except ValueError:
                         raise HTTPBadRequest()
                 return ig_ws_global
             def _ignorews_url(GET, fileid=None):
                 fileid = str(fileid) if fileid else None
                 params = defaultdict(list)
                 _update_with_GET(params, GET)
                 lbl = _('Show whitespace')
                 ig_ws = get_ignore_ws(fileid, GET)
                 ln_ctx = get_line_ctx(fileid, GET)
                 # global option
                 if fileid is None:
                     if ig_ws is None:
                         params['ignorews'] += [1]
                         lbl = _('Ignore whitespace')
                     ctx_key = 'context'
                     ctx_val = ln_ctx
                 # per file options
                 else:
                     if ig_ws is None:
                         params[fileid] += ['WS:1']
                         lbl = _('Ignore whitespace')
                     ctx_key = fileid
                     ctx_val = 'C:%s' % ln_ctx
                 # if we have passed in ln_ctx pass it along to our params
                 if ln_ctx:
                     params[ctx_key] += [ctx_val]
                 params['anchor'] = fileid
                 icon = h.literal('<i class="icon-strike"></i>')
                 return h.link_to(icon, h.url.current(**params), title=lbl, class_='tooltip')
             def get_line_ctx(fid, GET):
                 ln_ctx_global = GET.get('context')
                 if fid:
                     ln_ctx = filter(lambda k: k.startswith('C'), GET.getall(fid))
                 else:
                     _ln_ctx = filter(lambda k: k.startswith('C'), GET)
                     ln_ctx = GET.get(_ln_ctx[0]) if _ln_ctx  else ln_ctx_global
                     if ln_ctx:
                         ln_ctx = [ln_ctx]
                 if ln_ctx:
                     retval = ln_ctx[0].split(':')[-1]
                 else:
                     retval = ln_ctx_global
                 try:
                     return int(retval)
                 except Exception:
                     return 3
             def _context_url(GET, fileid=None):
                 """
                 Generates url for context lines
                 :param fileid:
                 """
                 fileid = str(fileid) if fileid else None
                 ig_ws = get_ignore_ws(fileid, GET)
                 ln_ctx = (get_line_ctx(fileid, GET) or 3) * 2
                 params = defaultdict(list)
                 _update_with_GET(params, GET)
                 # global option
                 if fileid is None:
                     if ln_ctx > 0:
                         params['context'] += [ln_ctx]
                     if ig_ws:
                         ig_ws_key = 'ignorews'
                         ig_ws_val = 1
                 # per file option
                 else:
                     params[fileid] += ['C:%s' % ln_ctx]
                     ig_ws_key = fileid
                     ig_ws_val = 'WS:%s' % 1
                 if ig_ws:
                     params[ig_ws_key] += [ig_ws_val]
                 lbl = _('Increase diff context to %(num)s lines') % {'num': ln_ctx}
                 params['anchor'] = fileid
                 icon = h.literal('<i class="icon-sort"></i>')
                 return h.link_to(icon, h.url.current(**params), title=lbl, class_='tooltip')
             class ChangesetController(BaseRepoController):
                 def __before__(self):
                     super(ChangesetController, self).__before__()
                     c.affected_files_cut_off = 60
                 def __load_data(self):
                     repo_model = RepoModel()
                     c.users_array = repo_model.get_users_js()
                     c.user_groups_array = repo_model.get_user_groups_js()
                 def _index(self, revision, method):
                     c.anchor_url = anchor_url
                     c.ignorews_url = _ignorews_url
                     c.context_url = _context_url
                     c.fulldiff = fulldiff = request.GET.get('fulldiff')
                     #get ranges of revisions if preset
                     rev_range = revision.split('...')[:2]
                     enable_comments = True
                     c.cs_repo = c.db_repo
                     try:
                         if len(rev_range) == 2:
                             enable_comments = False
                             rev_start = rev_range[0]
                             rev_end = rev_range[1]
                             rev_ranges = c.db_repo_scm_instance.get_changesets(start=rev_start,
                                                                          end=rev_end)
                         else:
                             rev_ranges = [c.db_repo_scm_instance.get_changeset(revision)]
                         c.cs_ranges = list(rev_ranges)
                         if not c.cs_ranges:
                             raise RepositoryError('Changeset range returned empty result')
                     except(ChangesetDoesNotExistError,), e:
                         log.debug(traceback.format_exc())
                         msg = _('Such revision does not exist for this repository')
                         h.flash(msg, category='error')
                         raise HTTPNotFound()
                     c.changes = OrderedDict()
                     c.lines_added = 0  # count of lines added
                     c.lines_deleted = 0  # count of lines removes
                     c.changeset_statuses = ChangesetStatus.STATUSES
                     comments = dict()
                     c.statuses = []
                     c.inline_comments = []
                     c.inline_cnt = 0
                     # Iterate over ranges (default changeset view is always one changeset)
                     for changeset in c.cs_ranges:
                         inlines = []
                         if method == 'show':
                             c.statuses.extend([ChangesetStatusModel().get_status(
                                         c.db_repo.repo_id, changeset.raw_id)])
                             # Changeset comments
                             comments.update((com.comment_id, com)
                                             for com in ChangesetCommentsModel()
                                             .get_comments(c.db_repo.repo_id,
                                                           revision=changeset.raw_id))
                             # Status change comments - mostly from pull requests
                             comments.update((st.changeset_comment_id, st.comment)
                                             for st in ChangesetStatusModel()
                                             .get_statuses(c.db_repo.repo_id,
                                                           changeset.raw_id, with_revisions=True)
                                             if st.changeset_comment_id is not None)
                             inlines = ChangesetCommentsModel()\
                                         .get_inline_comments(c.db_repo.repo_id,
                                                              revision=changeset.raw_id)
                             c.inline_comments.extend(inlines)
                         c.changes[changeset.raw_id] = []
                         cs2 = changeset.raw_id
                         cs1 = changeset.parents[0].raw_id if changeset.parents else EmptyChangeset().raw_id
                         context_lcl = get_line_ctx('', request.GET)
                         ign_whitespace_lcl = ign_whitespace_lcl = get_ignore_ws('', request.GET)
                         _diff = c.db_repo_scm_instance.get_diff(cs1, cs2,
                             ignore_whitespace=ign_whitespace_lcl, context=context_lcl)
                         diff_limit = self.cut_off_limit if not fulldiff else None
                         diff_processor = diffs.DiffProcessor(_diff,
                                                              vcs=c.db_repo_scm_instance.alias,
                                                              format='gitdiff',
                                                              diff_limit=diff_limit)
                         cs_changes = OrderedDict()
                         if method == 'show':
                             _parsed = diff_processor.prepare()
                             c.limited_diff = False
                             if isinstance(_parsed, LimitedDiffContainer):
                                 c.limited_diff = True
                             for f in _parsed:
                                 st = f['stats']
                                 c.lines_added += st['added']
                                 c.lines_deleted += st['deleted']
                                 fid = h.FID(changeset.raw_id, f['filename'])
                                 diff = diff_processor.as_html(enable_comments=enable_comments,
                                                               parsed_lines=[f])
                                 cs_changes[fid] = [cs1, cs2, f['operation'], f['filename'],
                                                    diff, st]
                         else:
                             # downloads/raw we only need RAW diff nothing else
                             diff = diff_processor.as_raw()
                             cs_changes[''] = [None, None, None, None, diff, None]
                         c.changes[changeset.raw_id] = cs_changes
                     #sort comments in creation order
                     c.comments = [com for com_id, com in sorted(comments.items())]
                     # count inline comments
                     for __, lines in c.inline_comments:
                         for comments in lines.values():
                             c.inline_cnt += len(comments)
                     if len(c.cs_ranges) == 1:
                         c.changeset = c.cs_ranges[0]
                         c.parent_tmpl = ''.join(['# Parent  %s\n' % x.raw_id
                                                  for x in c.changeset.parents])
                     if method == 'download':
                         response.content_type = 'text/plain'
                         response.content_disposition = 'attachment; filename=%s.diff' \
                                                         % revision[:12]
                         return diff
                     elif method == 'patch':
                         response.content_type = 'text/plain'
                         c.diff = safe_unicode(diff)
                         return render('changeset/patch_changeset.html')
                     elif method == 'raw':
                         response.content_type = 'text/plain'
                         return diff
                     elif method == 'show':
                         self.__load_data()
                         if len(c.cs_ranges) == 1:
                             return render('changeset/changeset.html')
                         else:
                             c.cs_ranges_org = None
                             c.cs_comments = {}
                             revs = [ctx.revision for ctx in reversed(c.cs_ranges)]
                             c.jsdata = json.dumps(graph_data(c.db_repo_scm_instance, revs))
                             return render('changeset/changeset_range.html')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def index(self, revision, method='show'):
                     return self._index(revision, method=method)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def changeset_raw(self, revision):
                     return self._index(revision, method='raw')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def changeset_patch(self, revision):
                     return self._index(revision, method='patch')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def changeset_download(self, revision):
                     return self._index(revision, method='download')
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def comment(self, repo_name, revision):
                     status = request.POST.get('changeset_status')
                     text = request.POST.get('text', '').strip()
                     c.comment = comment = ChangesetCommentsModel().create(
                         text=text,
                         repo=c.db_repo.repo_id,
                         user=c.authuser.user_id,
                         revision=revision,
                         f_path=request.POST.get('f_path'),
                         line_no=request.POST.get('line'),
                         status_change=(ChangesetStatus.get_status_lbl(status)
                                        if status else None)
                     )
                     # get status if set !
                     if status:
                         # if latest status was from pull request and it's closed
                         # disallow changing status !
                         # dont_allow_on_closed_pull_request = True !
                         try:
                             ChangesetStatusModel().set_status(
                                 c.db_repo.repo_id,
                                 status,
                                 c.authuser.user_id,
                                 comment,
                                 revision=revision,
                                 dont_allow_on_closed_pull_request=True
                             )
                         except StatusChangeOnClosedPullRequestError:
                             log.debug(traceback.format_exc())
                             msg = _('Changing status on a changeset associated with '
                                     'a closed pull request is not allowed')
                             h.flash(msg, category='warning')
-                            return redirect(h.url('changeset_home', repo_name=repo_name,
+                            raise HTTPFound(location=h.url('changeset_home', repo_name=repo_name,
                                                   revision=revision))
                     action_logger(self.authuser,
                                   'user_commented_revision:%s' % revision,
                                   c.db_repo, self.ip_addr, self.sa)
                     Session().commit()
                     if not request.environ.get('HTTP_X_PARTIAL_XHR'):
-                        return redirect(h.url('changeset_home', repo_name=repo_name,
+                        raise HTTPFound(location=h.url('changeset_home', repo_name=repo_name,
                                               revision=revision))
                     #only ajax below
                     data = {
                        'target_id': h.safeid(h.safe_unicode(request.POST.get('f_path'))),
                     }
                     if comment is not None:
                         data.update(comment.get_dict())
                         data.update({'rendered_text':
                                      render('changeset/changeset_comment_block.html')})
                     return data
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def preview_comment(self):
                     if not request.environ.get('HTTP_X_PARTIAL_XHR'):
                         raise HTTPBadRequest()
                     text = request.POST.get('text')
                     if text:
                         return h.rst_w_mentions(text)
                     return ''
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def delete_comment(self, repo_name, comment_id):
                     co = ChangesetComment.get(comment_id)
                     if not co:
                         raise HTTPBadRequest()
                     owner = co.author.user_id == c.authuser.user_id
                     repo_admin = h.HasRepoPermissionAny('repository.admin')
                     if h.HasPermissionAny('hg.admin')() or repo_admin or owner:
                         ChangesetCommentsModel().delete(comment=co)
                         Session().commit()
                         return True
                     else:
                         raise HTTPForbidden()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def changeset_info(self, repo_name, revision):
                     if request.is_xhr:
                         try:
                             return c.db_repo_scm_instance.get_changeset(revision)
                         except ChangesetDoesNotExistError as e:
                             return EmptyChangeset(message=str(e))
                     else:
                         raise HTTPBadRequest()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def changeset_children(self, repo_name, revision):
                     if request.is_xhr:
                         changeset = c.db_repo_scm_instance.get_changeset(revision)
                         result = {"results": []}
                         if changeset.children:
                             result = {"results": changeset.children}
                         return result
                     else:
                         raise HTTPBadRequest()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def changeset_parents(self, repo_name, revision):
                     if request.is_xhr:
                         changeset = c.db_repo_scm_instance.get_changeset(revision)
                         result = {"results": []}
                         if changeset.parents:
                             result = {"results": changeset.parents}
                         return result
                     else:
                         raise HTTPBadRequest()

kallithea/controllers/compare.py

0 +4 -5

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.compare
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             compare controller for pylons showing differences between two
             repos, branches, bookmarks or tips
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: May 6, 2012
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import re
-            from webob.exc import HTTPBadRequest
             from pylons import request, tmpl_context as c, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound, HTTPBadRequest
             from kallithea.lib.utils2 import safe_str
             from kallithea.lib.vcs.utils.hgcompat import unionrepo
             from kallithea.lib import helpers as h
             from kallithea.lib.base import BaseRepoController, render
             from kallithea.lib.auth import LoginRequired, HasRepoPermissionAnyDecorator
             from kallithea.lib import diffs
             from kallithea.model.db import Repository
             from kallithea.lib.diffs import LimitedDiffContainer
             from kallithea.controllers.changeset import _ignorews_url, _context_url
             from kallithea.lib.graphmod import graph_data
             from kallithea.lib.compat import json
             log = logging.getLogger(__name__)
             class CompareController(BaseRepoController):
                 def __before__(self):
                     super(CompareController, self).__before__()
                 @staticmethod
                 def _get_changesets(alias, org_repo, org_rev, other_repo, other_rev):
                     """
                     Returns lists of changesets that can be merged from org_repo@org_rev
                     to other_repo@other_rev
                     ... and the other way
                     ... and the ancestor that would be used for merge
                     :param org_repo: repo object, that is most likely the original repo we forked from
                     :param org_rev: the revision we want our compare to be made
                     :param other_repo: repo object, most likely the fork of org_repo. It has
                         all changesets that we need to obtain
                     :param other_rev: revision we want out compare to be made on other_repo
                     """
                     ancestor = None
                     if org_rev == other_rev:
                         org_changesets = []
                         other_changesets = []
                         ancestor = org_rev
                     elif alias == 'hg':
                         #case two independent repos
                         if org_repo != other_repo:
                             hgrepo = unionrepo.unionrepository(other_repo.baseui,
                                                                other_repo.path,
                                                                org_repo.path)
                             # all ancestors of other_rev will be in other_repo and
                             # rev numbers from hgrepo can be used in other_repo - org_rev ancestors cannot
                         #no remote compare do it on the same repository
                         else:
                             hgrepo = other_repo._repo
                         if org_repo.EMPTY_CHANGESET in (org_rev, other_rev):
                             # work around unexpected behaviour in Mercurial < 3.4
                             ancestor = org_repo.EMPTY_CHANGESET
                         else:
                             ancestors = hgrepo.revs("ancestor(id(%s), id(%s))", org_rev, other_rev)
                             if ancestors:
                                 # FIXME: picks arbitrary ancestor - but there is usually only one
                                 try:
                                     ancestor = hgrepo[ancestors.first()].hex()
                                 except AttributeError:
                                     # removed in hg 3.2
                                     ancestor = hgrepo[ancestors[0]].hex()
                         other_revs = hgrepo.revs("ancestors(id(%s)) and not ancestors(id(%s)) and not id(%s)",
                                                  other_rev, org_rev, org_rev)
                         other_changesets = [other_repo.get_changeset(rev) for rev in other_revs]
                         org_revs = hgrepo.revs("ancestors(id(%s)) and not ancestors(id(%s)) and not id(%s)",
                                                org_rev, other_rev, other_rev)
                         org_changesets = [org_repo.get_changeset(hgrepo[rev].hex()) for rev in org_revs]
                     elif alias == 'git':
                         if org_repo != other_repo:
                             from dulwich.repo import Repo
                             from dulwich.client import SubprocessGitClient
                             gitrepo = Repo(org_repo.path)
                             SubprocessGitClient(thin_packs=False).fetch(safe_str(other_repo.path), gitrepo)
                             gitrepo_remote = Repo(other_repo.path)
                             SubprocessGitClient(thin_packs=False).fetch(safe_str(org_repo.path), gitrepo_remote)
                             revs = []
                             for x in gitrepo_remote.get_walker(include=[other_rev],
                                                                exclude=[org_rev]):
                                 revs.append(x.commit.id)
                             other_changesets = [other_repo.get_changeset(rev) for rev in reversed(revs)]
                             if other_changesets:
                                 ancestor = other_changesets[0].parents[0].raw_id
                             else:
                                 # no changesets from other repo, ancestor is the other_rev
                                 ancestor = other_rev
                         else:
                             so, se = org_repo.run_git_command(
                                 ['log', '--reverse', '--pretty=format:%H',
                                  '-s', '%s..%s' % (org_rev, other_rev)]
                             )
                             other_changesets = [org_repo.get_changeset(cs)
                                           for cs in re.findall(r'[0-9a-fA-F]{40}', so)]
                             so, se = org_repo.run_git_command(
                                 ['merge-base', org_rev, other_rev]
                             )
                             ancestor = re.findall(r'[0-9a-fA-F]{40}', so)[0]
                         org_changesets = []
                     else:
                         raise Exception('Bad alias only git and hg is allowed')
                     return other_changesets, org_changesets, ancestor
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def index(self, repo_name):
                     c.compare_home = True
                     org_repo = c.db_repo.repo_name
                     other_repo = request.GET.get('other_repo', org_repo)
                     c.a_repo = Repository.get_by_repo_name(org_repo)
                     c.cs_repo = Repository.get_by_repo_name(other_repo)
                     c.a_ref_name = c.cs_ref_name = _('Select changeset')
                     return render('compare/compare_diff.html')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def compare(self, repo_name, org_ref_type, org_ref_name, other_ref_type, other_ref_name):
                     org_ref_name = org_ref_name.strip()
                     other_ref_name = other_ref_name.strip()
                     org_repo = c.db_repo.repo_name
                     other_repo = request.GET.get('other_repo', org_repo)
                     # If merge is True:
                     #   Show what org would get if merged with other:
                     #   List changesets that are ancestors of other but not of org.
                     #   New changesets in org is thus ignored.
                     #   Diff will be from common ancestor, and merges of org to other will thus be ignored.
                     # If merge is False:
                     #   Make a raw diff from org to other, no matter if related or not.
                     #   Changesets in one and not in the other will be ignored
                     merge = bool(request.GET.get('merge'))
                     # fulldiff disables cut_off_limit
                     c.fulldiff = request.GET.get('fulldiff')
                     # partial uses compare_cs.html template directly
                     partial = request.environ.get('HTTP_X_PARTIAL_XHR')
                     # as_form puts hidden input field with changeset revisions
                     c.as_form = partial and request.GET.get('as_form')
                     # swap url for compare_diff page - never partial and never as_form
                     c.swap_url = h.url('compare_url',
                         repo_name=other_repo,
                         org_ref_type=other_ref_type, org_ref_name=other_ref_name,
                         other_repo=org_repo,
                         other_ref_type=org_ref_type, other_ref_name=org_ref_name,
                         merge=merge or '')
                     # set callbacks for generating markup for icons
                     c.ignorews_url = _ignorews_url
                     c.context_url = _context_url
                     ignore_whitespace = request.GET.get('ignorews') == '1'
                     line_context = request.GET.get('context', 3)
                     org_repo = Repository.get_by_repo_name(org_repo)
                     other_repo = Repository.get_by_repo_name(other_repo)
                     if org_repo is None:
                         msg = 'Could not find org repo %s' % org_repo
                         log.error(msg)
                         h.flash(msg, category='error')
-                        return redirect(url('compare_home', repo_name=c.repo_name))
+                        raise HTTPFound(location=url('compare_home', repo_name=c.repo_name))
                     if other_repo is None:
                         msg = 'Could not find other repo %s' % other_repo
                         log.error(msg)
                         h.flash(msg, category='error')
-                        return redirect(url('compare_home', repo_name=c.repo_name))
+                        raise HTTPFound(location=url('compare_home', repo_name=c.repo_name))
                     if org_repo.scm_instance.alias != other_repo.scm_instance.alias:
                         msg = 'compare of two different kind of remote repos not available'
                         log.error(msg)
                         h.flash(msg, category='error')
-                        return redirect(url('compare_home', repo_name=c.repo_name))
+                        raise HTTPFound(location=url('compare_home', repo_name=c.repo_name))
                     c.a_rev = self._get_ref_rev(org_repo, org_ref_type, org_ref_name,
                         returnempty=True)
                     c.cs_rev = self._get_ref_rev(other_repo, other_ref_type, other_ref_name)
                     c.compare_home = False
                     c.a_repo = org_repo
                     c.a_ref_name = org_ref_name
                     c.a_ref_type = org_ref_type
                     c.cs_repo = other_repo
                     c.cs_ref_name = other_ref_name
                     c.cs_ref_type = other_ref_type
                     c.cs_ranges, c.cs_ranges_org, c.ancestor = self._get_changesets(
                         org_repo.scm_instance.alias, org_repo.scm_instance, c.a_rev,
                         other_repo.scm_instance, c.cs_rev)
                     raw_ids = [x.raw_id for x in c.cs_ranges]
                     c.cs_comments = other_repo.get_comments(raw_ids)
                     c.statuses = other_repo.statuses(raw_ids)
                     revs = [ctx.revision for ctx in reversed(c.cs_ranges)]
                     c.jsdata = json.dumps(graph_data(c.cs_repo.scm_instance, revs))
                     if partial:
                         return render('compare/compare_cs.html')
                     if merge and c.ancestor:
                         # case we want a simple diff without incoming changesets,
                         # previewing what will be merged.
                         # Make the diff on the other repo (which is known to have other_rev)
                         log.debug('Using ancestor %s as rev1 instead of %s',
                                   c.ancestor, c.a_rev)
                         rev1 = c.ancestor
                         org_repo = other_repo
                     else: # comparing tips, not necessarily linearly related
                         if merge:
                             log.error('Unable to find ancestor revision')
                         if org_repo != other_repo:
                             # TODO: we could do this by using hg unionrepo
                             log.error('cannot compare across repos %s and %s', org_repo, other_repo)
                             h.flash(_('Cannot compare repositories without using common ancestor'), category='error')
                             raise HTTPBadRequest
                         rev1 = c.a_rev
                     diff_limit = self.cut_off_limit if not c.fulldiff else None
                     log.debug('running diff between %s and %s in %s',
                               rev1, c.cs_rev, org_repo.scm_instance.path)
                     txtdiff = org_repo.scm_instance.get_diff(rev1=rev1, rev2=c.cs_rev,
                                                   ignore_whitespace=ignore_whitespace,
                                                   context=line_context)
                     diff_processor = diffs.DiffProcessor(txtdiff or '', format='gitdiff',
                                                          diff_limit=diff_limit)
                     _parsed = diff_processor.prepare()
                     c.limited_diff = False
                     if isinstance(_parsed, LimitedDiffContainer):
                         c.limited_diff = True
                     c.files = []
                     c.changes = {}
                     c.lines_added = 0
                     c.lines_deleted = 0
                     for f in _parsed:
                         st = f['stats']
                         if not st['binary']:
                             c.lines_added += st['added']
                             c.lines_deleted += st['deleted']
                         fid = h.FID('', f['filename'])
                         c.files.append([fid, f['operation'], f['filename'], f['stats']])
                         htmldiff = diff_processor.as_html(enable_comments=False, parsed_lines=[f])
                         c.changes[fid] = [f['operation'], f['filename'], htmldiff]
                     return render('compare/compare_diff.html')

kallithea/controllers/files.py

0 +17 -17

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.files
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~
             Files controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 21, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import os
             import logging
             import traceback
             import tempfile
             import shutil
             from pylons import request, response, tmpl_context as c, url
             from pylons.i18n.translation import _
-            from pylons.controllers.util import redirect
+            from webob.exc import HTTPFound
             from kallithea.lib.utils import jsonify, action_logger
             from kallithea.lib import diffs
             from kallithea.lib import helpers as h
             from kallithea.lib.compat import OrderedDict
             from kallithea.lib.utils2 import convert_line_endings, detect_mode, safe_str,\
                 str2bool
             from kallithea.lib.auth import LoginRequired, HasRepoPermissionAnyDecorator
             from kallithea.lib.base import BaseRepoController, render
             from kallithea.lib.vcs.backends.base import EmptyChangeset
             from kallithea.lib.vcs.conf import settings
             from kallithea.lib.vcs.exceptions import RepositoryError, \
                 ChangesetDoesNotExistError, EmptyRepositoryError, \
                 ImproperArchiveTypeError, VCSError, NodeAlreadyExistsError,\
                 NodeDoesNotExistError, ChangesetError, NodeError
             from kallithea.lib.vcs.nodes import FileNode
             from kallithea.model.repo import RepoModel
             from kallithea.model.scm import ScmModel
             from kallithea.model.db import Repository
             from kallithea.controllers.changeset import anchor_url, _ignorews_url,\
                 _context_url, get_line_ctx, get_ignore_ws
             from webob.exc import HTTPNotFound
             from kallithea.lib.exceptions import NonRelativePathError
             log = logging.getLogger(__name__)
             class FilesController(BaseRepoController):
                 def __before__(self):
                     super(FilesController, self).__before__()
                     c.cut_off_limit = self.cut_off_limit
                 def __get_cs(self, rev, silent_empty=False):
                     """
                     Safe way to get changeset if error occur it redirects to tip with
                     proper message
                     :param rev: revision to fetch
                     :silent_empty: return None if repository is empty
                     """
                     try:
                         return c.db_repo_scm_instance.get_changeset(rev)
                     except EmptyRepositoryError as e:
                         if silent_empty:
                             return None
                         url_ = url('files_add_home',
                                    repo_name=c.repo_name,
                                    revision=0, f_path='', anchor='edit')
                         add_new = h.link_to(_('Click here to add new file'), url_, class_="alert-link")
                         h.flash(h.literal(_('There are no files yet. %s') % add_new),
                                 category='warning')
                         raise HTTPNotFound()
                     except(ChangesetDoesNotExistError, LookupError), e:
                         msg = _('Such revision does not exist for this repository')
                         h.flash(msg, category='error')
                         raise HTTPNotFound()
                     except RepositoryError as e:
                         h.flash(safe_str(e), category='error')
                         raise HTTPNotFound()
                 def __get_filenode(self, cs, path):
                     """
                     Returns file_node or raise HTTP error.
                     :param cs: given changeset
                     :param path: path to lookup
                     """
                     try:
                         file_node = cs.get_node(path)
                         if file_node.is_dir():
                             raise RepositoryError('given path is a directory')
                     except(ChangesetDoesNotExistError,), e:
                         msg = _('Such revision does not exist for this repository')
                         h.flash(msg, category='error')
                         raise HTTPNotFound()
                     except RepositoryError as e:
                         h.flash(safe_str(e), category='error')
                         raise HTTPNotFound()
                     return file_node
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def index(self, repo_name, revision, f_path, annotate=False):
                     # redirect to given revision from form if given
                     post_revision = request.POST.get('at_rev', None)
                     if post_revision:
                         cs = self.__get_cs(post_revision) # FIXME - unused!
                     c.revision = revision
                     c.changeset = self.__get_cs(revision)
                     c.branch = request.GET.get('branch', None)
                     c.f_path = f_path
                     c.annotate = annotate
                     cur_rev = c.changeset.revision
                     # prev link
                     try:
                         prev_rev = c.db_repo_scm_instance.get_changeset(cur_rev).prev(c.branch)
                         c.url_prev = url('files_home', repo_name=c.repo_name,
                                      revision=prev_rev.raw_id, f_path=f_path)
                         if c.branch:
                             c.url_prev += '?branch=%s' % c.branch
                     except (ChangesetDoesNotExistError, VCSError):
                         c.url_prev = '#'
                     # next link
                     try:
                         next_rev = c.db_repo_scm_instance.get_changeset(cur_rev).next(c.branch)
                         c.url_next = url('files_home', repo_name=c.repo_name,
                                  revision=next_rev.raw_id, f_path=f_path)
                         if c.branch:
                             c.url_next += '?branch=%s' % c.branch
                     except (ChangesetDoesNotExistError, VCSError):
                         c.url_next = '#'
                     # files or dirs
                     try:
                         c.file = c.changeset.get_node(f_path)
                         if c.file.is_file():
                             c.load_full_history = False
                             file_last_cs = c.file.last_changeset
                             c.file_changeset = (c.changeset
                                                 if c.changeset.revision < file_last_cs.revision
                                                 else file_last_cs)
                             #determine if we're on branch head
                             _branches = c.db_repo_scm_instance.branches
                             c.on_branch_head = revision in _branches.keys() + _branches.values()
                             _hist = []
                             c.file_history = []
                             if c.load_full_history:
                                 c.file_history, _hist = self._get_node_history(c.changeset, f_path)
                             c.authors = []
                             for a in set([x.author for x in _hist]):
                                 c.authors.append((h.email(a), h.person(a)))
                         else:
                             c.authors = c.file_history = []
                     except RepositoryError as e:
                         h.flash(safe_str(e), category='error')
                         raise HTTPNotFound()
                     if request.environ.get('HTTP_X_PARTIAL_XHR'):
                         return render('files/files_ypjax.html')
                     # TODO: tags and bookmarks?
                     c.revision_options = [(c.changeset.raw_id,
                                           _('%s at %s') % (c.changeset.branch, h.short_id(c.changeset.raw_id)))] + \
                         [(n, b) for b, n in c.db_repo_scm_instance.branches.items()]
                     if c.db_repo_scm_instance.closed_branches:
                         prefix = _('(closed)') + ' '
                         c.revision_options += [('-', '-')] + \
                             [(n, prefix + b) for b, n in c.db_repo_scm_instance.closed_branches.items()]
                     return render('files/files.html')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def history(self, repo_name, revision, f_path):
                     changeset = self.__get_cs(revision)
                     f_path = f_path
                     _file = changeset.get_node(f_path)
                     if _file.is_file():
                         file_history, _hist = self._get_node_history(changeset, f_path)
                         res = []
                         for obj in file_history:
                             res.append({
                                 'text': obj[1],
                                 'children': [{'id': o[0], 'text': o[1]} for o in obj[0]]
                             })
                         data = {
                             'more': False,
                             'results': res
                         }
                         return data
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def authors(self, repo_name, revision, f_path):
                     changeset = self.__get_cs(revision)
                     f_path = f_path
                     _file = changeset.get_node(f_path)
                     if _file.is_file():
                         file_history, _hist = self._get_node_history(changeset, f_path)
                         c.authors = []
                         for a in set([x.author for x in _hist]):
                             c.authors.append((h.email(a), h.person(a)))
                         return render('files/files_history_box.html')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def rawfile(self, repo_name, revision, f_path):
                     cs = self.__get_cs(revision)
                     file_node = self.__get_filenode(cs, f_path)
                     response.content_disposition = 'attachment; filename=%s' % \
                         safe_str(f_path.split(Repository.url_sep())[-1])
                     response.content_type = file_node.mimetype
                     return file_node.content
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def raw(self, repo_name, revision, f_path):
                     cs = self.__get_cs(revision)
                     file_node = self.__get_filenode(cs, f_path)
                     raw_mimetype_mapping = {
                         # map original mimetype to a mimetype used for "show as raw"
                         # you can also provide a content-disposition to override the
                         # default "attachment" disposition.
                         # orig_type: (new_type, new_dispo)
                         # show images inline:
                         'image/x-icon': ('image/x-icon', 'inline'),
                         'image/png': ('image/png', 'inline'),
                         'image/gif': ('image/gif', 'inline'),
                         'image/jpeg': ('image/jpeg', 'inline'),
                         'image/svg+xml': ('image/svg+xml', 'inline'),
                     }
                     mimetype = file_node.mimetype
                     try:
                         mimetype, dispo = raw_mimetype_mapping[mimetype]
                     except KeyError:
                         # we don't know anything special about this, handle it safely
                         if file_node.is_binary:
                             # do same as download raw for binary files
                             mimetype, dispo = 'application/octet-stream', 'attachment'
                         else:
                             # do not just use the original mimetype, but force text/plain,
                             # otherwise it would serve text/html and that might be unsafe.
                             # Note: underlying vcs library fakes text/plain mimetype if the
                             # mimetype can not be determined and it thinks it is not
                             # binary.This might lead to erroneous text display in some
                             # cases, but helps in other cases, like with text files
                             # without extension.
                             mimetype, dispo = 'text/plain', 'inline'
                     if dispo == 'attachment':
                         dispo = 'attachment; filename=%s' % \
                                     safe_str(f_path.split(os.sep)[-1])
                     response.content_disposition = dispo
                     response.content_type = mimetype
                     return file_node.content
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 def delete(self, repo_name, revision, f_path):
                     repo = c.db_repo
                     if repo.enable_locking and repo.locked[0]:
                         h.flash(_('This repository has been locked by %s on %s')
                             % (h.person_by_id(repo.locked[0]),
                                h.fmt_date(h.time_to_datetime(repo.locked[1]))),
                             'warning')
-                        return redirect(h.url('files_home',
+                        raise HTTPFound(location=h.url('files_home',
                                               repo_name=repo_name, revision='tip'))
                     # check if revision is a branch identifier- basically we cannot
                     # create multiple heads via file editing
                     _branches = repo.scm_instance.branches
                     # check if revision is a branch name or branch hash
                     if revision not in _branches.keys() + _branches.values():
                         h.flash(_('You can only delete files with revision '
                                   'being a valid branch '), category='warning')
-                        return redirect(h.url('files_home',
+                        raise HTTPFound(location=h.url('files_home',
                                               repo_name=repo_name, revision='tip',
                                               f_path=f_path))
                     r_post = request.POST
                     c.cs = self.__get_cs(revision)
                     c.file = self.__get_filenode(c.cs, f_path)
                     c.default_message = _('Deleted file %s via Kallithea') % (f_path)
                     c.f_path = f_path
                     node_path = f_path
                     author = self.authuser.full_contact
                     if r_post:
                         message = r_post.get('message') or c.default_message
                         try:
                             nodes = {
                                 node_path: {
                                     'content': ''
                                 }
                             }
                             self.scm_model.delete_nodes(
                                 user=c.authuser.user_id, repo=c.db_repo,
                                 message=message,
                                 nodes=nodes,
                                 parent_cs=c.cs,
                                 author=author,
                             )
                             h.flash(_('Successfully deleted file %s') % f_path,
                                     category='success')
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred during commit'), category='error')
-                        return redirect(url('changeset_home',
+                        raise HTTPFound(location=url('changeset_home',
                                             repo_name=c.repo_name, revision='tip'))
                     return render('files/files_delete.html')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 def edit(self, repo_name, revision, f_path):
                     repo = c.db_repo
                     if repo.enable_locking and repo.locked[0]:
                         h.flash(_('This repository has been locked by %s on %s')
                             % (h.person_by_id(repo.locked[0]),
                                h.fmt_date(h.time_to_datetime(repo.locked[1]))),
                             'warning')
-                        return redirect(h.url('files_home',
+                        raise HTTPFound(location=h.url('files_home',
                                               repo_name=repo_name, revision='tip'))
                     # check if revision is a branch identifier- basically we cannot
                     # create multiple heads via file editing
                     _branches = repo.scm_instance.branches
                     # check if revision is a branch name or branch hash
                     if revision not in _branches.keys() + _branches.values():
                         h.flash(_('You can only edit files with revision '
                                   'being a valid branch '), category='warning')
-                        return redirect(h.url('files_home',
+                        raise HTTPFound(location=h.url('files_home',
                                               repo_name=repo_name, revision='tip',
                                               f_path=f_path))
                     r_post = request.POST
                     c.cs = self.__get_cs(revision)
                     c.file = self.__get_filenode(c.cs, f_path)
                     if c.file.is_binary:
-                        return redirect(url('files_home', repo_name=c.repo_name,
+                        raise HTTPFound(location=url('files_home', repo_name=c.repo_name,
                                         revision=c.cs.raw_id, f_path=f_path))
                     c.default_message = _('Edited file %s via Kallithea') % (f_path)
                     c.f_path = f_path
                     if r_post:
                         old_content = c.file.content
                         sl = old_content.splitlines(1)
                         first_line = sl[0] if sl else ''
                         # modes:  0 - Unix, 1 - Mac, 2 - DOS
                         mode = detect_mode(first_line, 0)
                         content = convert_line_endings(r_post.get('content', ''), mode)
                         message = r_post.get('message') or c.default_message
                         author = self.authuser.full_contact
                         if content == old_content:
                             h.flash(_('No changes'), category='warning')
-                            return redirect(url('changeset_home', repo_name=c.repo_name,
+                            raise HTTPFound(location=url('changeset_home', repo_name=c.repo_name,
                                                 revision='tip'))
                         try:
                             self.scm_model.commit_change(repo=c.db_repo_scm_instance,
                                                          repo_name=repo_name, cs=c.cs,
                                                          user=self.authuser.user_id,
                                                          author=author, message=message,
                                                          content=content, f_path=f_path)
                             h.flash(_('Successfully committed to %s') % f_path,
                                     category='success')
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred during commit'), category='error')
-                        return redirect(url('changeset_home',
+                        raise HTTPFound(location=url('changeset_home',
                                             repo_name=c.repo_name, revision='tip'))
                     return render('files/files_edit.html')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.write', 'repository.admin')
                 def add(self, repo_name, revision, f_path):
                     repo = Repository.get_by_repo_name(repo_name)
                     if repo.enable_locking and repo.locked[0]:
                         h.flash(_('This repository has been locked by %s on %s')
                             % (h.person_by_id(repo.locked[0]),
                                h.fmt_date(h.time_to_datetime(repo.locked[1]))),
                               'warning')
-                        return redirect(h.url('files_home',
+                        raise HTTPFound(location=h.url('files_home',
                                               repo_name=repo_name, revision='tip'))
                     r_post = request.POST
                     c.cs = self.__get_cs(revision, silent_empty=True)
                     if c.cs is None:
                         c.cs = EmptyChangeset(alias=c.db_repo_scm_instance.alias)
                     c.default_message = (_('Added file via Kallithea'))
                     c.f_path = f_path
                     if r_post:
                         unix_mode = 0
                         content = convert_line_endings(r_post.get('content', ''), unix_mode)
                         message = r_post.get('message') or c.default_message
                         filename = r_post.get('filename')
                         location = r_post.get('location', '')
                         file_obj = r_post.get('upload_file', None)
                         if file_obj is not None and hasattr(file_obj, 'filename'):
                             filename = file_obj.filename
                             content = file_obj.file
                             if hasattr(content, 'file'):
                                 # non posix systems store real file under file attr
                                 content = content.file
                         if not content:
                             h.flash(_('No content'), category='warning')
-                            return redirect(url('changeset_home', repo_name=c.repo_name,
+                            raise HTTPFound(location=url('changeset_home', repo_name=c.repo_name,
                                                 revision='tip'))
                         if not filename:
                             h.flash(_('No filename'), category='warning')
-                            return redirect(url('changeset_home', repo_name=c.repo_name,
+                            raise HTTPFound(location=url('changeset_home', repo_name=c.repo_name,
                                                 revision='tip'))
                         #strip all crap out of file, just leave the basename
                         filename = os.path.basename(filename)
                         node_path = os.path.join(location, filename)
                         author = self.authuser.full_contact
                         try:
                             nodes = {
                                 node_path: {
                                     'content': content
                                 }
                             }
                             self.scm_model.create_nodes(
                                 user=c.authuser.user_id, repo=c.db_repo,
                                 message=message,
                                 nodes=nodes,
                                 parent_cs=c.cs,
                                 author=author,
                             )
                             h.flash(_('Successfully committed to %s') % node_path,
                                     category='success')
                         except NonRelativePathError as e:
                             h.flash(_('Location must be relative path and must not '
                                       'contain .. in path'), category='warning')
-                            return redirect(url('changeset_home', repo_name=c.repo_name,
+                            raise HTTPFound(location=url('changeset_home', repo_name=c.repo_name,
                                                 revision='tip'))
                         except (NodeError, NodeAlreadyExistsError) as e:
                             h.flash(_(e), category='error')
                         except Exception:
                             log.error(traceback.format_exc())
                             h.flash(_('Error occurred during commit'), category='error')
-                        return redirect(url('changeset_home',
+                        raise HTTPFound(location=url('changeset_home',
                                             repo_name=c.repo_name, revision='tip'))
                     return render('files/files_add.html')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def archivefile(self, repo_name, fname):
                     fileformat = None
                     revision = None
                     ext = None
                     subrepos = request.GET.get('subrepos') == 'true'
                     for a_type, ext_data in settings.ARCHIVE_SPECS.items():
                         archive_spec = fname.split(ext_data[1])
                         if len(archive_spec) == 2 and archive_spec[1] == '':
                             fileformat = a_type or ext_data[1]
                             revision = archive_spec[0]
                             ext = ext_data[1]
                     try:
                         dbrepo = RepoModel().get_by_repo_name(repo_name)
                         if not dbrepo.enable_downloads:
                             return _('Downloads disabled') # TODO: do something else?
                         if c.db_repo_scm_instance.alias == 'hg':
                             # patch and reset hooks section of UI config to not run any
                             # hooks on fetching archives with subrepos
                             for k, v in c.db_repo_scm_instance._repo.ui.configitems('hooks'):
                                 c.db_repo_scm_instance._repo.ui.setconfig('hooks', k, None)
                         cs = c.db_repo_scm_instance.get_changeset(revision)
                         content_type = settings.ARCHIVE_SPECS[fileformat][0]
                     except ChangesetDoesNotExistError:
                         return _('Unknown revision %s') % revision
                     except EmptyRepositoryError:
                         return _('Empty repository')
                     except (ImproperArchiveTypeError, KeyError):
                         return _('Unknown archive type')
                     from kallithea import CONFIG
                     rev_name = cs.raw_id[:12]
                     archive_name = '%s-%s%s' % (safe_str(repo_name.replace('/', '_')),
                                                 safe_str(rev_name), ext)
                     archive_path = None
                     cached_archive_path = None
                     archive_cache_dir = CONFIG.get('archive_cache_dir')
                     if archive_cache_dir and not subrepos: # TOOD: subrepo caching?
                         if not os.path.isdir(archive_cache_dir):
                             os.makedirs(archive_cache_dir)
                         cached_archive_path = os.path.join(archive_cache_dir, archive_name)
                         if os.path.isfile(cached_archive_path):
                             log.debug('Found cached archive in %s', cached_archive_path)
                             archive_path = cached_archive_path
                         else:
                             log.debug('Archive %s is not yet cached', archive_name)
                     if archive_path is None:
                         # generate new archive
                         fd, archive_path = tempfile.mkstemp()
                         log.debug('Creating new temp archive in %s', archive_path)
                         with os.fdopen(fd, 'wb') as stream:
                             cs.fill_archive(stream=stream, kind=fileformat, subrepos=subrepos)
                             # stream (and thus fd) has been closed by cs.fill_archive
                         if cached_archive_path is not None:
                             # we generated the archive - move it to cache
                             log.debug('Storing new archive in %s', cached_archive_path)
                             shutil.move(archive_path, cached_archive_path)
                             archive_path = cached_archive_path
                     def get_chunked_archive(archive_path):
                         stream = open(archive_path, 'rb')
                         while True:
                             data = stream.read(16 * 1024)
                             if not data:
                                 break
                             yield data
                         stream.close()
                         if archive_path != cached_archive_path:
                             log.debug('Destroying temp archive %s', archive_path)
                             os.remove(archive_path)
                     action_logger(user=c.authuser,
                                   action='user_downloaded_archive:%s' % (archive_name),
                                   repo=repo_name, ipaddr=self.ip_addr, commit=True)
                     response.content_disposition = str('attachment; filename=%s' % (archive_name))
                     response.content_type = str(content_type)
                     return get_chunked_archive(archive_path)
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def diff(self, repo_name, f_path):
                     ignore_whitespace = request.GET.get('ignorews') == '1'
                     line_context = request.GET.get('context', 3)
                     diff2 = request.GET.get('diff2', '')
                     diff1 = request.GET.get('diff1', '') or diff2
                     c.action = request.GET.get('diff')
                     c.no_changes = diff1 == diff2
                     c.f_path = f_path
                     c.big_diff = False
                     c.anchor_url = anchor_url
                     c.ignorews_url = _ignorews_url
                     c.context_url = _context_url
                     c.changes = OrderedDict()
                     c.changes[diff2] = []
                     #special case if we want a show rev only, it's impl here
                     #to reduce JS and callbacks
                     if request.GET.get('show_rev'):
                         if str2bool(request.GET.get('annotate', 'False')):
                             _url = url('files_annotate_home', repo_name=c.repo_name,
                                        revision=diff1, f_path=c.f_path)
                         else:
                             _url = url('files_home', repo_name=c.repo_name,
                                        revision=diff1, f_path=c.f_path)
-                        return redirect(_url)
+                        raise HTTPFound(location=_url)
                     try:
                         if diff1 not in ['', None, 'None', '0' * 12, '0' * 40]:
                             c.changeset_1 = c.db_repo_scm_instance.get_changeset(diff1)
                             try:
                                 node1 = c.changeset_1.get_node(f_path)
                                 if node1.is_dir():
                                     raise NodeError('%s path is a %s not a file'
                                                     % (node1, type(node1)))
                             except NodeDoesNotExistError:
                                 c.changeset_1 = EmptyChangeset(cs=diff1,
                                                                revision=c.changeset_1.revision,
                                                                repo=c.db_repo_scm_instance)
                                 node1 = FileNode(f_path, '', changeset=c.changeset_1)
                         else:
                             c.changeset_1 = EmptyChangeset(repo=c.db_repo_scm_instance)
                             node1 = FileNode(f_path, '', changeset=c.changeset_1)
                         if diff2 not in ['', None, 'None', '0' * 12, '0' * 40]:
                             c.changeset_2 = c.db_repo_scm_instance.get_changeset(diff2)
                             try:
                                 node2 = c.changeset_2.get_node(f_path)
                                 if node2.is_dir():
                                     raise NodeError('%s path is a %s not a file'
                                                     % (node2, type(node2)))
                             except NodeDoesNotExistError:
                                 c.changeset_2 = EmptyChangeset(cs=diff2,
                                                                revision=c.changeset_2.revision,
                                                                repo=c.db_repo_scm_instance)
                                 node2 = FileNode(f_path, '', changeset=c.changeset_2)
                         else:
                             c.changeset_2 = EmptyChangeset(repo=c.db_repo_scm_instance)
                             node2 = FileNode(f_path, '', changeset=c.changeset_2)
                     except (RepositoryError, NodeError):
                         log.error(traceback.format_exc())
-                        return redirect(url('files_home', repo_name=c.repo_name,
+                        raise HTTPFound(location=url('files_home', repo_name=c.repo_name,
                                             f_path=f_path))
                     if c.action == 'download':
                         _diff = diffs.get_gitdiff(node1, node2,
                                                   ignore_whitespace=ignore_whitespace,
                                                   context=line_context)
                         diff = diffs.DiffProcessor(_diff, format='gitdiff')
                         diff_name = '%s_vs_%s.diff' % (diff1, diff2)
                         response.content_type = 'text/plain'
                         response.content_disposition = (
                             'attachment; filename=%s' % diff_name
                         )
                         return diff.as_raw()
                     elif c.action == 'raw':
                         _diff = diffs.get_gitdiff(node1, node2,
                                                   ignore_whitespace=ignore_whitespace,
                                                   context=line_context)
                         diff = diffs.DiffProcessor(_diff, format='gitdiff')
                         response.content_type = 'text/plain'
                         return diff.as_raw()
                     else:
                         fid = h.FID(diff2, node2.path)
                         line_context_lcl = get_line_ctx(fid, request.GET)
                         ign_whitespace_lcl = get_ignore_ws(fid, request.GET)
                         lim = request.GET.get('fulldiff') or self.cut_off_limit
                         _, cs1, cs2, diff, st = diffs.wrapped_diff(filenode_old=node1,
                                                      filenode_new=node2,
                                                      cut_off_limit=lim,
                                                      ignore_whitespace=ign_whitespace_lcl,
                                                      line_context=line_context_lcl,
                                                      enable_comments=False)
                         op = ''
                         filename = node1.path
                         cs_changes = {
                             'fid': [cs1, cs2, op, filename, diff, st]
                         }
                         c.changes = cs_changes
                     return render('files/file_diff.html')
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def diff_2way(self, repo_name, f_path):
                     diff1 = request.GET.get('diff1', '')
                     diff2 = request.GET.get('diff2', '')
                     try:
                         if diff1 not in ['', None, 'None', '0' * 12, '0' * 40]:
                             c.changeset_1 = c.db_repo_scm_instance.get_changeset(diff1)
                             try:
                                 node1 = c.changeset_1.get_node(f_path)
                                 if node1.is_dir():
                                     raise NodeError('%s path is a %s not a file'
                                                     % (node1, type(node1)))
                             except NodeDoesNotExistError:
                                 c.changeset_1 = EmptyChangeset(cs=diff1,
                                                                revision=c.changeset_1.revision,
                                                                repo=c.db_repo_scm_instance)
                                 node1 = FileNode(f_path, '', changeset=c.changeset_1)
                         else:
                             c.changeset_1 = EmptyChangeset(repo=c.db_repo_scm_instance)
                             node1 = FileNode(f_path, '', changeset=c.changeset_1)
                         if diff2 not in ['', None, 'None', '0' * 12, '0' * 40]:
                             c.changeset_2 = c.db_repo_scm_instance.get_changeset(diff2)
                             try:
                                 node2 = c.changeset_2.get_node(f_path)
                                 if node2.is_dir():
                                     raise NodeError('%s path is a %s not a file'
                                                     % (node2, type(node2)))
                             except NodeDoesNotExistError:
                                 c.changeset_2 = EmptyChangeset(cs=diff2,
                                                                revision=c.changeset_2.revision,
                                                                repo=c.db_repo_scm_instance)
                                 node2 = FileNode(f_path, '', changeset=c.changeset_2)
                         else:
                             c.changeset_2 = EmptyChangeset(repo=c.db_repo_scm_instance)
                             node2 = FileNode(f_path, '', changeset=c.changeset_2)
                     except ChangesetDoesNotExistError as e:
                         msg = _('Such revision does not exist for this repository')
                         h.flash(msg, category='error')
                         raise HTTPNotFound()
                     c.node1 = node1
                     c.node2 = node2
                     c.cs1 = c.changeset_1
                     c.cs2 = c.changeset_2
                     return render('files/diff_2way.html')
                 def _get_node_history(self, cs, f_path, changesets=None):
                     """
                     get changesets history for given node
                     :param cs: changeset to calculate history
                     :param f_path: path for node to calculate history for
                     :param changesets: if passed don't calculate history and take
                         changesets defined in this list
                     """
                     # calculate history based on tip
                     tip_cs = c.db_repo_scm_instance.get_changeset()
                     if changesets is None:
                         try:
                             changesets = tip_cs.get_file_history(f_path)
                         except (NodeDoesNotExistError, ChangesetError):
                             #this node is not present at tip !
                             changesets = cs.get_file_history(f_path)
                     hist_l = []
                     changesets_group = ([], _("Changesets"))
                     branches_group = ([], _("Branches"))
                     tags_group = ([], _("Tags"))
                     for chs in changesets:
                         #_branch = '(%s)' % chs.branch if (cs.repository.alias == 'hg') else ''
                         _branch = chs.branch
                         n_desc = '%s (%s)' % (h.show_id(chs), _branch)
                         changesets_group[0].append((chs.raw_id, n_desc,))
                     hist_l.append(changesets_group)
                     for name, chs in c.db_repo_scm_instance.branches.items():
                         branches_group[0].append((chs, name),)
                     hist_l.append(branches_group)
                     for name, chs in c.db_repo_scm_instance.tags.items():
                         tags_group[0].append((chs, name),)
                     hist_l.append(tags_group)
                     return hist_l, changesets
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def nodelist(self, repo_name, revision, f_path):
                     if request.environ.get('HTTP_X_PARTIAL_XHR'):
                         cs = self.__get_cs(revision)
                         _d, _f = ScmModel().get_nodes(repo_name, cs.raw_id, f_path,
                                                       flat=False)
                         return {'nodes': _d + _f}

kallithea/controllers/forks.py

0 +4 -4

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.forks
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~
             forks controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 23, 2011
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import formencode
             import traceback
             from formencode import htmlfill
             from pylons import tmpl_context as c, request, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound
             import kallithea.lib.helpers as h
             from kallithea.lib.helpers import Page
             from kallithea.lib.auth import LoginRequired, HasRepoPermissionAnyDecorator, \
                 NotAnonymous, HasRepoPermissionAny, HasPermissionAnyDecorator, HasPermissionAny
             from kallithea.lib.base import BaseRepoController, render
             from kallithea.model.db import Repository, UserFollowing, User, Ui
             from kallithea.model.repo import RepoModel
             from kallithea.model.forms import RepoForkForm
             from kallithea.model.scm import ScmModel, AvailableRepoGroupChoices
             from kallithea.lib.utils2 import safe_int
             log = logging.getLogger(__name__)
             class ForksController(BaseRepoController):
                 def __before__(self):
                     super(ForksController, self).__before__()
                 def __load_defaults(self):
                     repo_group_perms = ['group.admin']
                     if HasPermissionAny('hg.create.write_on_repogroup.true')():
                         repo_group_perms.append('group.write')
                     c.repo_groups = AvailableRepoGroupChoices(['hg.create.repository'], repo_group_perms)
                     c.landing_revs_choices, c.landing_revs = ScmModel().get_repo_landing_revs()
                     c.can_update = Ui.get_by_key(Ui.HOOK_UPDATE).ui_active
                 def __load_data(self, repo_name=None):
                     """
                     Load defaults settings for edit, and update
                     :param repo_name:
                     """
                     self.__load_defaults()
                     c.repo_info = db_repo = Repository.get_by_repo_name(repo_name)
                     repo = db_repo.scm_instance
                     if c.repo_info is None:
                         h.not_mapped_error(repo_name)
-                        return redirect(url('repos'))
+                        raise HTTPFound(location=url('repos'))
                     c.default_user_id = User.get_default_user().user_id
                     c.in_public_journal = UserFollowing.query()\
                         .filter(UserFollowing.user_id == c.default_user_id)\
                         .filter(UserFollowing.follows_repository == c.repo_info).scalar()
                     if c.repo_info.stats:
                         last_rev = c.repo_info.stats.stat_on_revision+1
                     else:
                         last_rev = 0
                     c.stats_revision = last_rev
                     c.repo_last_rev = repo.count() if repo.revisions else 0
                     if last_rev == 0 or c.repo_last_rev == 0:
                         c.stats_percentage = 0
                     else:
                         c.stats_percentage = '%.2f' % ((float((last_rev)) /
                                                         c.repo_last_rev) * 100)
                     defaults = RepoModel()._get_defaults(repo_name)
                     # alter the description to indicate a fork
                     defaults['description'] = ('fork of repository: %s \n%s'
                                                % (defaults['repo_name'],
                                                   defaults['description']))
                     # add suffix to fork
                     defaults['repo_name'] = '%s-fork' % defaults['repo_name']
                     return defaults
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def forks(self, repo_name):
                     p = safe_int(request.GET.get('page', 1), 1)
                     repo_id = c.db_repo.repo_id
                     d = []
                     for r in Repository.get_repo_forks(repo_id):
                         if not HasRepoPermissionAny(
                             'repository.read', 'repository.write', 'repository.admin'
                         )(r.repo_name, 'get forks check'):
                             continue
                         d.append(r)
                     c.forks_pager = Page(d, page=p, items_per_page=20)
                     if request.environ.get('HTTP_X_PARTIAL_XHR'):
                         return render('/forks/forks_data.html')
                     return render('/forks/forks.html')
                 @LoginRequired()
                 @NotAnonymous()
                 @HasPermissionAnyDecorator('hg.admin', 'hg.fork.repository')
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def fork(self, repo_name):
                     c.repo_info = Repository.get_by_repo_name(repo_name)
                     if not c.repo_info:
                         h.not_mapped_error(repo_name)
-                        return redirect(url('home'))
+                        raise HTTPFound(location=url('home'))
                     defaults = self.__load_data(repo_name)
                     return htmlfill.render(
                         render('forks/fork.html'),
                         defaults=defaults,
                         encoding="UTF-8",
                         force_defaults=False)
                 @LoginRequired()
                 @NotAnonymous()
                 @HasPermissionAnyDecorator('hg.admin', 'hg.fork.repository')
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def fork_create(self, repo_name):
                     self.__load_defaults()
                     c.repo_info = Repository.get_by_repo_name(repo_name)
                     _form = RepoForkForm(old_data={'repo_type': c.repo_info.repo_type},
                                          repo_groups=c.repo_groups,
                                          landing_revs=c.landing_revs_choices)()
                     form_result = {}
                     task_id = None
                     try:
                         form_result = _form.to_python(dict(request.POST))
                         # an approximation that is better than nothing
                         if not Ui.get_by_key(Ui.HOOK_UPDATE).ui_active:
                             form_result['update_after_clone'] = False
                         # create fork is done sometimes async on celery, db transaction
                         # management is handled there.
                         task = RepoModel().create_fork(form_result, self.authuser.user_id)
                         from celery.result import BaseAsyncResult
                         if isinstance(task, BaseAsyncResult):
                             task_id = task.task_id
                     except formencode.Invalid as errors:
                         return htmlfill.render(
                             render('forks/fork.html'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding="UTF-8",
                             force_defaults=False)
                     except Exception:
                         log.error(traceback.format_exc())
                         h.flash(_('An error occurred during repository forking %s') %
                                 repo_name, category='error')
-                    return redirect(h.url('repo_creating_home',
+                    raise HTTPFound(location=h.url('repo_creating_home',
                                           repo_name=form_result['repo_name_full'],
                                           task_id=task_id))

kallithea/controllers/login.py

0 +6 -7

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.login
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~
             Login controller for Kallithea
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 22, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import re
             import formencode
             from formencode import htmlfill
+            from pylons.i18n.translation import _
+            from pylons import request, session, tmpl_context as c, url
             from webob.exc import HTTPFound, HTTPBadRequest
-            from pylons.i18n.translation import _
-            from pylons.controllers.util import redirect
-            from pylons import request, session, tmpl_context as c, url
             import kallithea.lib.helpers as h
             from kallithea.lib.auth import AuthUser, HasPermissionAnyDecorator
             from kallithea.lib.base import BaseController, log_in_user, render
             from kallithea.lib.exceptions import UserCreationError
             from kallithea.lib.utils2 import safe_str
             from kallithea.model.db import User, Setting
             from kallithea.model.forms import \
                 LoginForm, RegisterForm, PasswordResetRequestForm, PasswordResetConfirmationForm
             from kallithea.model.user import UserModel
             from kallithea.model.meta import Session
             log = logging.getLogger(__name__)
             class LoginController(BaseController):
                 def __before__(self):
                     super(LoginController, self).__before__()
                 def _validate_came_from(self, came_from,
                         _re=re.compile(r"/(?!/)[-!#$%&'()*+,./:;=?@_~0-9A-Za-z]*$")):
                     """Return True if came_from is valid and can and should be used.
                     Determines if a URI reference is valid and relative to the origin;
                     or in RFC 3986 terms, whether it matches this production:
                       origin-relative-ref = path-absolute [ "?" query ] [ "#" fragment ]
                     with the exception that '%' escapes are not validated and '#' is
                     allowed inside the fragment part.
                     """
                     return _re.match(came_from) is not None
                 def index(self):
                     c.came_from = safe_str(request.GET.get('came_from', ''))
                     if c.came_from:
                         if not self._validate_came_from(c.came_from):
                             log.error('Invalid came_from (not server-relative): %r', c.came_from)
                             raise HTTPBadRequest()
                     else:
                         c.came_from = url('home')
                     not_default = self.authuser.username != User.DEFAULT_USER
                     ip_allowed = AuthUser.check_ip_allowed(self.authuser, self.ip_addr)
                     # redirect if already logged in
                     if self.authuser.is_authenticated and not_default and ip_allowed:
                         raise HTTPFound(location=c.came_from)
                     if request.POST:
                         # import Login Form validator class
                         login_form = LoginForm()
                         try:
                             c.form_result = login_form.to_python(dict(request.POST))
                             # form checks for username/password, now we're authenticated
                             username = c.form_result['username']
                             user = User.get_by_username(username, case_insensitive=True)
                         except formencode.Invalid as errors:
                             defaults = errors.value
                             # remove password from filling in form again
                             del defaults['password']
                             return htmlfill.render(
                                 render('/login.html'),
                                 defaults=errors.value,
                                 errors=errors.error_dict or {},
                                 prefix_error=False,
                                 encoding="UTF-8",
                                 force_defaults=False)
                         except UserCreationError as e:
                             # container auth or other auth functions that create users on
                             # the fly can throw this exception signaling that there's issue
                             # with user creation, explanation should be provided in
                             # Exception itself
                             h.flash(e, 'error')
                         else:
                             log_in_user(user, c.form_result['remember'],
                                 is_external_auth=False)
                             raise HTTPFound(location=c.came_from)
                     return render('/login.html')
                 @HasPermissionAnyDecorator('hg.admin', 'hg.register.auto_activate',
                                            'hg.register.manual_activate')
                 def register(self):
                     c.auto_active = 'hg.register.auto_activate' in User.get_default_user()\
                         .AuthUser.permissions['global']
                     settings = Setting.get_app_settings()
                     captcha_private_key = settings.get('captcha_private_key')
                     c.captcha_active = bool(captcha_private_key)
                     c.captcha_public_key = settings.get('captcha_public_key')
                     if request.POST:
                         register_form = RegisterForm()()
                         try:
                             form_result = register_form.to_python(dict(request.POST))
                             form_result['active'] = c.auto_active
                             if c.captcha_active:
                                 from kallithea.lib.recaptcha import submit
                                 response = submit(request.POST.get('recaptcha_challenge_field'),
                                                   request.POST.get('recaptcha_response_field'),
                                                   private_key=captcha_private_key,
                                                   remoteip=self.ip_addr)
                                 if c.captcha_active and not response.is_valid:
                                     _value = form_result
                                     _msg = _('Bad captcha')
                                     error_dict = {'recaptcha_field': _msg}
                                     raise formencode.Invalid(_msg, _value, None,
                                                              error_dict=error_dict)
                             UserModel().create_registration(form_result)
                             h.flash(_('You have successfully registered into Kallithea'),
                                     category='success')
                             Session().commit()
-                            return redirect(url('login_home'))
+                            raise HTTPFound(location=url('login_home'))
                         except formencode.Invalid as errors:
                             return htmlfill.render(
                                 render('/register.html'),
                                 defaults=errors.value,
                                 errors=errors.error_dict or {},
                                 prefix_error=False,
                                 encoding="UTF-8",
                                 force_defaults=False)
                         except UserCreationError as e:
                             # container auth or other auth functions that create users on
                             # the fly can throw this exception signaling that there's issue
                             # with user creation, explanation should be provided in
                             # Exception itself
                             h.flash(e, 'error')
                     return render('/register.html')
                 def password_reset(self):
                     settings = Setting.get_app_settings()
                     captcha_private_key = settings.get('captcha_private_key')
                     c.captcha_active = bool(captcha_private_key)
                     c.captcha_public_key = settings.get('captcha_public_key')
                     if request.POST:
                         password_reset_form = PasswordResetRequestForm()()
                         try:
                             form_result = password_reset_form.to_python(dict(request.POST))
                             if c.captcha_active:
                                 from kallithea.lib.recaptcha import submit
                                 response = submit(request.POST.get('recaptcha_challenge_field'),
                                                   request.POST.get('recaptcha_response_field'),
                                                   private_key=captcha_private_key,
                                                   remoteip=self.ip_addr)
                                 if c.captcha_active and not response.is_valid:
                                     _value = form_result
                                     _msg = _('Bad captcha')
                                     error_dict = {'recaptcha_field': _msg}
                                     raise formencode.Invalid(_msg, _value, None,
                                                              error_dict=error_dict)
                             redirect_link = UserModel().send_reset_password_email(form_result)
                             h.flash(_('A password reset confirmation code has been sent'),
                                         category='success')
-                            return redirect(redirect_link)
+                            raise HTTPFound(location=redirect_link)
                         except formencode.Invalid as errors:
                             return htmlfill.render(
                                 render('/password_reset.html'),
                                 defaults=errors.value,
                                 errors=errors.error_dict or {},
                                 prefix_error=False,
                                 encoding="UTF-8",
                                 force_defaults=False)
                     return render('/password_reset.html')
                 def password_reset_confirmation(self):
                     # This controller handles both GET and POST requests, though we
                     # only ever perform the actual password change on POST (since
                     # GET requests are not allowed to have side effects, and do not
                     # receive automatic CSRF protection).
                     # The template needs the email address outside of the form.
                     c.email = request.params.get('email')
                     if not request.POST:
                         return htmlfill.render(
                             render('/password_reset_confirmation.html'),
                             defaults=dict(request.params),
                             encoding='UTF-8')
                     form = PasswordResetConfirmationForm()()
                     try:
                         form_result = form.to_python(dict(request.POST))
                     except formencode.Invalid as errors:
                         return htmlfill.render(
                             render('/password_reset_confirmation.html'),
                             defaults=errors.value,
                             errors=errors.error_dict or {},
                             prefix_error=False,
                             encoding='UTF-8')
                     if not UserModel().verify_reset_password_token(
                         form_result['email'],
                         form_result['timestamp'],
                         form_result['token'],
                     ):
                         return htmlfill.render(
                             render('/password_reset_confirmation.html'),
                             defaults=form_result,
                             errors={'token': _('Invalid password reset token')},
                             prefix_error=False,
                             encoding='UTF-8')
                     UserModel().reset_password(form_result['email'], form_result['password'])
                     h.flash(_('Successfully updated password'), category='success')
-                    return redirect(url('login_home'))
+                    raise HTTPFound(location=url('login_home'))
                 def logout(self):
                     session.delete()
                     log.info('Logging out and deleting session for user')
-                    redirect(url('home'))
+                    raise HTTPFound(location=url('home'))
                 def authentication_token(self):
                     """Return the CSRF protection token for the session - just like it
                     could have been screen scraped from a page with a form.
                     Only intended for testing but might also be useful for other kinds
                     of automation.
                     """
                     return h.authentication_token()

kallithea/controllers/pullrequests.py

0 +9 -11

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.controllers.pullrequests
             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
             pull requests controller for Kallithea for initializing pull requests
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: May 7, 2012
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import logging
             import traceback
             import formencode
             import re
-            from webob.exc import HTTPNotFound, HTTPForbidden, HTTPBadRequest
             from pylons import request, tmpl_context as c, url
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
+            from webob.exc import HTTPFound, HTTPNotFound, HTTPForbidden, HTTPBadRequest
             from kallithea.lib.vcs.utils.hgcompat import unionrepo
             from kallithea.lib.compat import json
             from kallithea.lib.base import BaseRepoController, render
             from kallithea.lib.auth import LoginRequired, HasRepoPermissionAnyDecorator,\
                 NotAnonymous
             from kallithea.lib.helpers import Page
             from kallithea.lib import helpers as h
             from kallithea.lib import diffs
             from kallithea.lib.exceptions import UserInvalidException
             from kallithea.lib.utils import action_logger, jsonify
             from kallithea.lib.vcs.utils import safe_str
             from kallithea.lib.vcs.exceptions import EmptyRepositoryError
             from kallithea.lib.diffs import LimitedDiffContainer
             from kallithea.model.db import PullRequest, ChangesetStatus, ChangesetComment,\
                 PullRequestReviewers, User
             from kallithea.model.pull_request import PullRequestModel
             from kallithea.model.meta import Session
             from kallithea.model.repo import RepoModel
             from kallithea.model.comment import ChangesetCommentsModel
             from kallithea.model.changeset_status import ChangesetStatusModel
             from kallithea.model.forms import PullRequestForm, PullRequestPostForm
             from kallithea.lib.utils2 import safe_int
             from kallithea.controllers.changeset import _ignorews_url, _context_url
             from kallithea.controllers.compare import CompareController
             from kallithea.lib.graphmod import graph_data
             log = logging.getLogger(__name__)
             class PullrequestsController(BaseRepoController):
                 def _get_repo_refs(self, repo, rev=None, branch=None, branch_rev=None):
                     """return a structure with repo's interesting changesets, suitable for
                     the selectors in pullrequest.html
                     rev: a revision that must be in the list somehow and selected by default
                     branch: a branch that must be in the list and selected by default - even if closed
                     branch_rev: a revision of which peers should be preferred and available."""
                     # list named branches that has been merged to this named branch - it should probably merge back
                     peers = []
                     if rev:
                         rev = safe_str(rev)
                     if branch:
                         branch = safe_str(branch)
                     if branch_rev:
                         branch_rev = safe_str(branch_rev)
                         # a revset not restricting to merge() would be better
                         # (especially because it would get the branch point)
                         # ... but is currently too expensive
                         # including branches of children could be nice too
                         peerbranches = set()
                         for i in repo._repo.revs(
                             "sort(parents(branch(id(%s)) and merge()) - branch(id(%s)), -rev)",
                             branch_rev, branch_rev):
                             abranch = repo.get_changeset(i).branch
                             if abranch not in peerbranches:
                                 n = 'branch:%s:%s' % (abranch, repo.get_changeset(abranch).raw_id)
                                 peers.append((n, abranch))
                                 peerbranches.add(abranch)
                     selected = None
                     tiprev = repo.tags.get('tip')
                     tipbranch = None
                     branches = []
                     for abranch, branchrev in repo.branches.iteritems():
                         n = 'branch:%s:%s' % (abranch, branchrev)
                         desc = abranch
                         if branchrev == tiprev:
                             tipbranch = abranch
                             desc = '%s (current tip)' % desc
                         branches.append((n, desc))
                         if rev == branchrev:
                             selected = n
                         if branch == abranch:
                             if not rev:
                                 selected = n
                             branch = None
                     if branch:  # branch not in list - it is probably closed
                         branchrev = repo.closed_branches.get(branch)
                         if branchrev:
                             n = 'branch:%s:%s' % (branch, branchrev)
                             branches.append((n, _('%s (closed)') % branch))
                             selected = n
                             branch = None
                         if branch:
                             log.debug('branch %r not found in %s', branch, repo)
                     bookmarks = []
                     for bookmark, bookmarkrev in repo.bookmarks.iteritems():
                         n = 'book:%s:%s' % (bookmark, bookmarkrev)
                         bookmarks.append((n, bookmark))
                         if rev == bookmarkrev:
                             selected = n
                     tags = []
                     for tag, tagrev in repo.tags.iteritems():
                         if tag == 'tip':
                             continue
                         n = 'tag:%s:%s' % (tag, tagrev)
                         tags.append((n, tag))
                         if rev == tagrev:
                             selected = n
                     # prio 1: rev was selected as existing entry above
                     # prio 2: create special entry for rev; rev _must_ be used
                     specials = []
                     if rev and selected is None:
                         selected = 'rev:%s:%s' % (rev, rev)
                         specials = [(selected, '%s: %s' % (_("Changeset"), rev[:12]))]
                     # prio 3: most recent peer branch
                     if peers and not selected:
                         selected = peers[0][0]
                     # prio 4: tip revision
                     if not selected:
                         if h.is_hg(repo):
                             if tipbranch:
                                 selected = 'branch:%s:%s' % (tipbranch, tiprev)
                             else:
                                 selected = 'tag:null:' + repo.EMPTY_CHANGESET
                                 tags.append((selected, 'null'))
                         else:
                             if 'master' in repo.branches:
                                 selected = 'branch:master:%s' % repo.branches['master']
                             else:
                                 k, v = repo.branches.items()[0]
                                 selected = 'branch:%s:%s' % (k, v)
                     groups = [(specials, _("Special")),
                               (peers, _("Peer branches")),
                               (bookmarks, _("Bookmarks")),
                               (branches, _("Branches")),
                               (tags, _("Tags")),
                               ]
                     return [g for g in groups if g[0]], selected
                 def _get_is_allowed_change_status(self, pull_request):
                     if pull_request.is_closed():
                         return False
                     owner = self.authuser.user_id == pull_request.user_id
                     reviewer = self.authuser.user_id in [x.user_id for x in
                                                                pull_request.reviewers]
                     return self.authuser.admin or owner or reviewer
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def show_all(self, repo_name):
                     c.from_ = request.GET.get('from_') or ''
                     c.closed = request.GET.get('closed') or ''
                     c.pull_requests = PullRequestModel().get_all(repo_name, from_=c.from_, closed=c.closed)
                     c.repo_name = repo_name
                     p = safe_int(request.GET.get('page', 1), 1)
                     c.pullrequests_pager = Page(c.pull_requests, page=p, items_per_page=100)
                     return render('/pullrequests/pullrequest_show_all.html')
                 @LoginRequired()
                 @NotAnonymous()
                 def show_my(self):
                     c.closed = request.GET.get('closed') or ''
                     def _filter(pr):
                         s = sorted(pr, key=lambda o: o.created_on, reverse=True)
                         if not c.closed:
                             s = filter(lambda p: p.status != PullRequest.STATUS_CLOSED, s)
                         return s
                     c.my_pull_requests = _filter(PullRequest.query()\
                                             .filter(PullRequest.user_id ==
                                                     self.authuser.user_id)\
                                             .all())
                     c.participate_in_pull_requests = _filter(PullRequest.query()\
                                             .join(PullRequestReviewers)\
                                             .filter(PullRequestReviewers.user_id ==
                                                     self.authuser.user_id)\
                                                              )
                     return render('/pullrequests/pullrequest_show_my.html')
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def index(self):
                     org_repo = c.db_repo
                     org_scm_instance = org_repo.scm_instance
                     try:
                         org_scm_instance.get_changeset()
                     except EmptyRepositoryError as e:
                         h.flash(h.literal(_('There are no changesets yet')),
                                 category='warning')
-                        redirect(url('summary_home', repo_name=org_repo.repo_name))
+                        raise HTTPFound(location=url('summary_home', repo_name=org_repo.repo_name))
                     org_rev = request.GET.get('rev_end')
                     # rev_start is not directly useful - its parent could however be used
                     # as default for other and thus give a simple compare view
                     rev_start = request.GET.get('rev_start')
                     other_rev = None
                     if rev_start:
                         starters = org_repo.get_changeset(rev_start).parents
                         if starters:
                             other_rev = starters[0].raw_id
                         else:
                             other_rev = org_repo.scm_instance.EMPTY_CHANGESET
                     branch = request.GET.get('branch')
                     c.cs_repos = [(org_repo.repo_name, org_repo.repo_name)]
                     c.default_cs_repo = org_repo.repo_name
                     c.cs_refs, c.default_cs_ref = self._get_repo_refs(org_scm_instance, rev=org_rev, branch=branch)
                     default_cs_ref_type, default_cs_branch, default_cs_rev = c.default_cs_ref.split(':')
                     if default_cs_ref_type != 'branch':
                         default_cs_branch = org_repo.get_changeset(default_cs_rev).branch
                     # add org repo to other so we can open pull request against peer branches on itself
                     c.a_repos = [(org_repo.repo_name, '%s (self)' % org_repo.repo_name)]
                     if org_repo.parent:
                         # add parent of this fork also and select it.
                         # use the same branch on destination as on source, if available.
                         c.a_repos.append((org_repo.parent.repo_name, '%s (parent)' % org_repo.parent.repo_name))
                         c.a_repo = org_repo.parent
                         c.a_refs, c.default_a_ref = self._get_repo_refs(
                                 org_repo.parent.scm_instance, branch=default_cs_branch, rev=other_rev)
                     else:
                         c.a_repo = org_repo
                         c.a_refs, c.default_a_ref = self._get_repo_refs(org_scm_instance, rev=other_rev)
                     # gather forks and add to this list ... even though it is rare to
                     # request forks to pull from their parent
                     for fork in org_repo.forks:
                         c.a_repos.append((fork.repo_name, fork.repo_name))
                     return render('/pullrequests/pullrequest.html')
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def repo_info(self, repo_name):
                     repo = RepoModel()._get_repo(repo_name)
                     refs, selected_ref = self._get_repo_refs(repo.scm_instance)
                     return {
                         'description': repo.description.split('\n', 1)[0],
                         'selected_ref': selected_ref,
                         'refs': refs,
                         }
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def create(self, repo_name):
                     repo = RepoModel()._get_repo(repo_name)
                     try:
                         _form = PullRequestForm(repo.repo_id)().to_python(request.POST)
                     except formencode.Invalid as errors:
                         log.error(traceback.format_exc())
                         log.error(str(errors))
                         msg = _('Error creating pull request: %s') % errors.msg
                         h.flash(msg, 'error')
                         raise HTTPBadRequest
                     # heads up: org and other might seem backward here ...
                     org_repo_name = _form['org_repo']
                     org_ref = _form['org_ref'] # will have merge_rev as rev but symbolic name
                     org_repo = RepoModel()._get_repo(org_repo_name)
                     (org_ref_type,
                      org_ref_name,
                      org_rev) = org_ref.split(':')
                     if org_ref_type == 'rev':
                         org_ref_type = 'branch'
                         cs = org_repo.scm_instance.get_changeset(org_rev)
                         org_ref = '%s:%s:%s' % (org_ref_type, cs.branch, cs.raw_id)
                     other_repo_name = _form['other_repo']
                     other_ref = _form['other_ref'] # will have symbolic name and head revision
                     other_repo = RepoModel()._get_repo(other_repo_name)
                     (other_ref_type,
                      other_ref_name,
                      other_rev) = other_ref.split(':')
                     cs_ranges, _cs_ranges_not, ancestor_rev = \
                         CompareController._get_changesets(org_repo.scm_instance.alias,
                                                           other_repo.scm_instance, other_rev, # org and other "swapped"
                                                           org_repo.scm_instance, org_rev,
                                                           )
                     if ancestor_rev is None:
                         ancestor_rev = org_repo.scm_instance.EMPTY_CHANGESET
                     revisions = [cs_.raw_id for cs_ in cs_ranges]
                     # hack: ancestor_rev is not an other_rev but we want to show the
                     # requested destination and have the exact ancestor
                     other_ref = '%s:%s:%s' % (other_ref_type, other_ref_name, ancestor_rev)
                     reviewers = _form['review_members']
                     title = _form['pullrequest_title']
                     if not title:
                         if org_repo_name == other_repo_name:
                             title = '%s to %s' % (h.short_ref(org_ref_type, org_ref_name),
                                                   h.short_ref(other_ref_type, other_ref_name))
                         else:
                             title = '%s#%s to %s#%s' % (org_repo_name, h.short_ref(org_ref_type, org_ref_name),
                                                         other_repo_name, h.short_ref(other_ref_type, other_ref_name))
                     description = _form['pullrequest_desc'].strip() or _('No description')
                     try:
                         pull_request = PullRequestModel().create(
                             self.authuser.user_id, org_repo_name, org_ref, other_repo_name,
                             other_ref, revisions, reviewers, title, description
                         )
                         Session().commit()
                         h.flash(_('Successfully opened new pull request'),
                                 category='success')
                     except UserInvalidException as u:
                         h.flash(_('Invalid reviewer "%s" specified') % u, category='error')
                         raise HTTPBadRequest()
                     except Exception:
                         h.flash(_('Error occurred while creating pull request'),
                                 category='error')
                         log.error(traceback.format_exc())
-                        return redirect(url('pullrequest_home', repo_name=repo_name))
+                        raise HTTPFound(location=url('pullrequest_home', repo_name=repo_name))
-                    return redirect(pull_request.url())
+                    raise HTTPFound(location=pull_request.url())
                 def create_update(self, old_pull_request, updaterev, title, description, reviewers_ids):
                     org_repo = RepoModel()._get_repo(old_pull_request.org_repo.repo_name)
                     org_ref_type, org_ref_name, org_rev = old_pull_request.org_ref.split(':')
                     new_org_rev = self._get_ref_rev(org_repo, 'rev', updaterev)
                     other_repo = RepoModel()._get_repo(old_pull_request.other_repo.repo_name)
                     other_ref_type, other_ref_name, other_rev = old_pull_request.other_ref.split(':') # other_rev is ancestor
                     #assert other_ref_type == 'branch', other_ref_type # TODO: what if not?
                     new_other_rev = self._get_ref_rev(other_repo, other_ref_type, other_ref_name)
                     cs_ranges, _cs_ranges_not, ancestor_rev = CompareController._get_changesets(org_repo.scm_instance.alias,
                         other_repo.scm_instance, new_other_rev, # org and other "swapped"
                         org_repo.scm_instance, new_org_rev)
                     old_revisions = set(old_pull_request.revisions)
                     revisions = [cs.raw_id for cs in cs_ranges]
                     new_revisions = [r for r in revisions if r not in old_revisions]
                     lost = old_revisions.difference(revisions)
                     infos = ['This is an update of %s "%s".' %
                              (h.canonical_url('pullrequest_show', repo_name=old_pull_request.other_repo.repo_name,
                                   pull_request_id=old_pull_request.pull_request_id),
                               old_pull_request.title)]
                     if lost:
                         infos.append(_('Missing changesets since the previous pull request:'))
                         for r in old_pull_request.revisions:
                             if r in lost:
                                 rev_desc = org_repo.get_changeset(r).message.split('\n')[0]
                                 infos.append('  %s "%s"' % (h.short_id(r), rev_desc))
                     if new_revisions:
                         infos.append(_('New changesets on %s %s since the previous pull request:') % (org_ref_type, org_ref_name))
                         for r in reversed(revisions):
                             if r in new_revisions:
                                 rev_desc = org_repo.get_changeset(r).message.split('\n')[0]
                                 infos.append('  %s %s' % (h.short_id(r), h.shorter(rev_desc, 80)))
                         if ancestor_rev == other_rev:
                             infos.append(_("Ancestor didn't change - show diff since previous version:"))
                             infos.append(h.canonical_url('compare_url',
                                              repo_name=org_repo.repo_name, # other_repo is always same as repo_name
                                              org_ref_type='rev', org_ref_name=h.short_id(org_rev), # use old org_rev as base
                                              other_ref_type='rev', other_ref_name=h.short_id(new_org_rev),
                                              )) # note: linear diff, merge or not doesn't matter
                         else:
                             infos.append(_('This pull request is based on another %s revision and there is no simple diff.') % other_ref_name)
                     else:
                        infos.append(_('No changes found on %s %s since previous version.') % (org_ref_type, org_ref_name))
                        # TODO: fail?
                     # hack: ancestor_rev is not an other_ref but we want to show the
                     # requested destination and have the exact ancestor
                     new_other_ref = '%s:%s:%s' % (other_ref_type, other_ref_name, ancestor_rev)
                     new_org_ref = '%s:%s:%s' % (org_ref_type, org_ref_name, new_org_rev)
                     try:
                         title, old_v = re.match(r'(.*)\(v(\d+)\)\s*$', title).groups()
                         v = int(old_v) + 1
                     except (AttributeError, ValueError):
                         v = 2
                     title = '%s (v%s)' % (title.strip(), v)
                     # using a mail-like separator, insert new update info at the top of the list
                     descriptions = description.replace('\r\n', '\n').split('\n-- \n', 1)
                     description = descriptions[0].strip() + '\n\n-- \n' + '\n'.join(infos)
                     if len(descriptions) > 1:
                         description += '\n\n' + descriptions[1].strip()
                     try:
                         pull_request = PullRequestModel().create(
                             self.authuser.user_id,
                             old_pull_request.org_repo.repo_name, new_org_ref,
                             old_pull_request.other_repo.repo_name, new_other_ref,
                             revisions, reviewers_ids, title, description
                         )
                     except UserInvalidException as u:
                         h.flash(_('Invalid reviewer "%s" specified') % u, category='error')
                         raise HTTPBadRequest()
                     except Exception:
                         h.flash(_('Error occurred while creating pull request'),
                                 category='error')
                         log.error(traceback.format_exc())
-                        return redirect(old_pull_request.url())
+                        raise HTTPFound(location=old_pull_request.url())
                     ChangesetCommentsModel().create(
                         text=_('Closed, replaced by %s .') % pull_request.url(canonical=True),
                         repo=old_pull_request.other_repo.repo_id,
                         user=c.authuser.user_id,
                         pull_request=old_pull_request.pull_request_id,
                         closing_pr=True)
                     PullRequestModel().close_pull_request(old_pull_request.pull_request_id)
                     Session().commit()
                     h.flash(_('Pull request update created'),
                             category='success')
-                    return redirect(pull_request.url())
+                    raise HTTPFound(location=pull_request.url())
                 # pullrequest_post for PR editing
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def post(self, repo_name, pull_request_id):
                     pull_request = PullRequest.get_or_404(pull_request_id)
                     if pull_request.is_closed():
                         raise HTTPForbidden()
                     assert pull_request.other_repo.repo_name == repo_name
                     #only owner or admin can update it
                     owner = pull_request.owner.user_id == c.authuser.user_id
                     repo_admin = h.HasRepoPermissionAny('repository.admin')(c.repo_name)
                     if not (h.HasPermissionAny('hg.admin') or repo_admin or owner):
                         raise HTTPForbidden()
                     _form = PullRequestPostForm()().to_python(request.POST)
                     reviewers_ids = [int(s) for s in _form['review_members']]
                     if _form['updaterev']:
                         return self.create_update(pull_request,
                                                   _form['updaterev'],
                                                   _form['pullrequest_title'],
                                                   _form['pullrequest_desc'],
                                                   reviewers_ids)
                     old_description = pull_request.description
                     pull_request.title = _form['pullrequest_title']
                     pull_request.description = _form['pullrequest_desc'].strip() or _('No description')
                     pull_request.owner = User.get_by_username(_form['owner'])
                     user = User.get(c.authuser.user_id)
                     try:
                         PullRequestModel().mention_from_description(user, pull_request, old_description)
                         PullRequestModel().update_reviewers(user, pull_request_id, reviewers_ids)
                     except UserInvalidException as u:
                         h.flash(_('Invalid reviewer "%s" specified') % u, category='error')
                         raise HTTPBadRequest()
                     Session().commit()
                     h.flash(_('Pull request updated'), category='success')
-                    return redirect(pull_request.url())
+                    raise HTTPFound(location=pull_request.url())
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def delete(self, repo_name, pull_request_id):
                     pull_request = PullRequest.get_or_404(pull_request_id)
                     #only owner can delete it !
                     if pull_request.owner.user_id == c.authuser.user_id:
                         PullRequestModel().delete(pull_request)
                         Session().commit()
                         h.flash(_('Successfully deleted pull request'),
                                 category='success')
-                        return redirect(url('my_pullrequests'))
+                        raise HTTPFound(location=url('my_pullrequests'))
                     raise HTTPForbidden()
                 @LoginRequired()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 def show(self, repo_name, pull_request_id, extra=None):
                     repo_model = RepoModel()
                     c.users_array = repo_model.get_users_js()
                     c.user_groups_array = repo_model.get_user_groups_js()
                     c.pull_request = PullRequest.get_or_404(pull_request_id)
                     c.allowed_to_change_status = self._get_is_allowed_change_status(c.pull_request)
                     cc_model = ChangesetCommentsModel()
                     cs_model = ChangesetStatusModel()
                     # pull_requests repo_name we opened it against
                     # ie. other_repo must match
                     if repo_name != c.pull_request.other_repo.repo_name:
                         raise HTTPNotFound
                     # load compare data into template context
                     c.cs_repo = c.pull_request.org_repo
                     (c.cs_ref_type,
                      c.cs_ref_name,
                      c.cs_rev) = c.pull_request.org_ref.split(':')
                     c.a_repo = c.pull_request.other_repo
                     (c.a_ref_type,
                      c.a_ref_name,
                      c.a_rev) = c.pull_request.other_ref.split(':') # other_rev is ancestor
                     org_scm_instance = c.cs_repo.scm_instance # property with expensive cache invalidation check!!!
                     c.cs_repo = c.cs_repo
                     c.cs_ranges = [org_scm_instance.get_changeset(x) for x in c.pull_request.revisions]
                     c.cs_ranges_org = None # not stored and not important and moving target - could be calculated ...
                     revs = [ctx.revision for ctx in reversed(c.cs_ranges)]
                     c.jsdata = json.dumps(graph_data(org_scm_instance, revs))
                     c.is_range = False
                     if c.a_ref_type == 'rev': # this looks like a free range where target is ancestor
                         cs_a = org_scm_instance.get_changeset(c.a_rev)
                         root_parents = c.cs_ranges[0].parents
                         c.is_range = cs_a in root_parents
                         #c.merge_root = len(root_parents) > 1 # a range starting with a merge might deserve a warning
                     avail_revs = set()
                     avail_show = []
                     c.cs_branch_name = c.cs_ref_name
                     other_scm_instance = c.a_repo.scm_instance
                     c.update_msg = ""
                     c.update_msg_other = ""
                     if org_scm_instance.alias == 'hg' and c.a_ref_name != 'ancestor':
                         if c.cs_ref_type != 'branch':
                             c.cs_branch_name = org_scm_instance.get_changeset(c.cs_ref_name).branch # use ref_type ?
                         c.a_branch_name = c.a_ref_name
                         if c.a_ref_type != 'branch':
                             try:
                                 c.a_branch_name = other_scm_instance.get_changeset(c.a_ref_name).branch # use ref_type ?
                             except EmptyRepositoryError:
                                 c.a_branch_name = 'null' # not a branch name ... but close enough
                         # candidates: descendants of old head that are on the right branch
                         #             and not are the old head itself ...
                         #             and nothing at all if old head is a descendant of target ref name
                         if not c.is_range and other_scm_instance._repo.revs('present(%s)::&%s', c.cs_ranges[-1].raw_id, c.a_branch_name):
                             c.update_msg = _('This pull request has already been merged to %s.') % c.a_branch_name
                         elif c.pull_request.is_closed():
                             c.update_msg = _('This pull request has been closed and can not be updated.')
                         else: # look for descendants of PR head on source branch in org repo
                             avail_revs = org_scm_instance._repo.revs('%s:: & branch(%s)',
                                                                      revs[0], c.cs_branch_name)
                             if len(avail_revs) > 1: # more than just revs[0]
                                 # also show changesets that not are descendants but would be merged in
                                 targethead = other_scm_instance.get_changeset(c.a_branch_name).raw_id
                                 if org_scm_instance.path != other_scm_instance.path:
                                     # Note: org_scm_instance.path must come first so all
                                     # valid revision numbers are 100% org_scm compatible
                                     # - both for avail_revs and for revset results
                                     hgrepo = unionrepo.unionrepository(org_scm_instance.baseui,
                                                                        org_scm_instance.path,
                                                                        other_scm_instance.path)
                                 else:
                                     hgrepo = org_scm_instance._repo
                                 show = set(hgrepo.revs('::%ld & !::%s & !::%s',
                                                        avail_revs, revs[0], targethead))
                                 c.update_msg = _('This pull request can be updated with changes on %s:') % c.cs_branch_name
                             else:
                                 show = set()
                                 avail_revs = set() # drop revs[0]
                                 c.update_msg = _('No changesets found for updating this pull request.')
                             # TODO: handle branch heads that not are tip-most
                             brevs = org_scm_instance._repo.revs('%s - %ld - %s', c.cs_branch_name, avail_revs, revs[0])
                             if brevs:
                                 # also show changesets that are on branch but neither ancestors nor descendants
                                 show.update(org_scm_instance._repo.revs('::%ld - ::%ld - ::%s', brevs, avail_revs, c.a_branch_name))
                                 show.add(revs[0]) # make sure graph shows this so we can see how they relate
                                 c.update_msg_other = _('Note: Branch %s has another head: %s.') % (c.cs_branch_name,
                                     h.short_id(org_scm_instance.get_changeset((max(brevs))).raw_id))
                             avail_show = sorted(show, reverse=True)
                     elif org_scm_instance.alias == 'git':
                         c.update_msg = _("Git pull requests don't support updates yet.")
                     c.avail_revs = avail_revs
                     c.avail_cs = [org_scm_instance.get_changeset(r) for r in avail_show]
                     c.avail_jsdata = json.dumps(graph_data(org_scm_instance, avail_show))
                     raw_ids = [x.raw_id for x in c.cs_ranges]
                     c.cs_comments = c.cs_repo.get_comments(raw_ids)
                     c.statuses = c.cs_repo.statuses(raw_ids)
                     ignore_whitespace = request.GET.get('ignorews') == '1'
                     line_context = request.GET.get('context', 3)
                     c.ignorews_url = _ignorews_url
                     c.context_url = _context_url
                     c.fulldiff = request.GET.get('fulldiff')
                     diff_limit = self.cut_off_limit if not c.fulldiff else None
                     # we swap org/other ref since we run a simple diff on one repo
                     log.debug('running diff between %s and %s in %s',
                               c.a_rev, c.cs_rev, org_scm_instance.path)
                     txtdiff = org_scm_instance.get_diff(rev1=safe_str(c.a_rev), rev2=safe_str(c.cs_rev),
                                                   ignore_whitespace=ignore_whitespace,
                                                   context=line_context)
                     diff_processor = diffs.DiffProcessor(txtdiff or '', format='gitdiff',
                                                          diff_limit=diff_limit)
                     _parsed = diff_processor.prepare()
                     c.limited_diff = False
                     if isinstance(_parsed, LimitedDiffContainer):
                         c.limited_diff = True
                     c.files = []
                     c.changes = {}
                     c.lines_added = 0
                     c.lines_deleted = 0
                     for f in _parsed:
                         st = f['stats']
                         c.lines_added += st['added']
                         c.lines_deleted += st['deleted']
                         fid = h.FID('', f['filename'])
                         c.files.append([fid, f['operation'], f['filename'], f['stats']])
                         htmldiff = diff_processor.as_html(enable_comments=True,
                                                           parsed_lines=[f])
                         c.changes[fid] = [f['operation'], f['filename'], htmldiff]
                     # inline comments
                     c.inline_cnt = 0
                     c.inline_comments = cc_model.get_inline_comments(
                                             c.db_repo.repo_id,
                                             pull_request=pull_request_id)
                     # count inline comments
                     for __, lines in c.inline_comments:
                         for comments in lines.values():
                             c.inline_cnt += len(comments)
                     # comments
                     c.comments = cc_model.get_comments(c.db_repo.repo_id,
                                                        pull_request=pull_request_id)
                     # (badly named) pull-request status calculation based on reviewer votes
                     (c.pull_request_reviewers,
                      c.pull_request_pending_reviewers,
                      c.current_voting_result,
                      ) = cs_model.calculate_pull_request_result(c.pull_request)
                     c.changeset_statuses = ChangesetStatus.STATUSES
                     c.as_form = False
                     c.ancestor = None # there is one - but right here we don't know which
                     return render('/pullrequests/pullrequest_show.html')
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def comment(self, repo_name, pull_request_id):
                     pull_request = PullRequest.get_or_404(pull_request_id)
                     status = request.POST.get('changeset_status')
                     close_pr = request.POST.get('save_close')
                     f_path = request.POST.get('f_path')
                     line_no = request.POST.get('line')
                     if (status or close_pr) and (f_path or line_no):
                         # status votes and closing is only possible in general comments
                         raise HTTPBadRequest()
                     allowed_to_change_status = self._get_is_allowed_change_status(pull_request)
                     if not allowed_to_change_status:
                         if status or close_pr:
                             h.flash(_('No permission to change pull request status'), 'error')
                             raise HTTPForbidden()
                     text = request.POST.get('text', '').strip()
                     if close_pr:
                         text = _('Closing.') + '\n' + text
                     comment = ChangesetCommentsModel().create(
                         text=text,
                         repo=c.db_repo.repo_id,
                         user=c.authuser.user_id,
                         pull_request=pull_request_id,
                         f_path=f_path,
                         line_no=line_no,
                         status_change=(ChangesetStatus.get_status_lbl(status)
                                        if status and allowed_to_change_status else None),
                         closing_pr=close_pr
                     )
                     action_logger(self.authuser,
                                   'user_commented_pull_request:%s' % pull_request_id,
                                   c.db_repo, self.ip_addr, self.sa)
                     if status:
                         ChangesetStatusModel().set_status(
                             c.db_repo.repo_id,
                             status,
                             c.authuser.user_id,
                             comment,
                             pull_request=pull_request_id
                         )
                     if close_pr:
                         PullRequestModel().close_pull_request(pull_request_id)
                         action_logger(self.authuser,
                                       'user_closed_pull_request:%s' % pull_request_id,
                                       c.db_repo, self.ip_addr, self.sa)
                     Session().commit()
                     if not request.environ.get('HTTP_X_PARTIAL_XHR'):
-                        return redirect(pull_request.url())
+                        raise HTTPFound(location=pull_request.url())
                     data = {
                        'target_id': h.safeid(h.safe_unicode(request.POST.get('f_path'))),
                     }
                     if comment is not None:
                         c.comment = comment
                         data.update(comment.get_dict())
                         data.update({'rendered_text':
                                      render('changeset/changeset_comment_block.html')})
                     return data
                 @LoginRequired()
                 @NotAnonymous()
                 @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',
                                                'repository.admin')
                 @jsonify
                 def delete_comment(self, repo_name, comment_id):
                     co = ChangesetComment.get(comment_id)
                     if co.pull_request.is_closed():
                         #don't allow deleting comments on closed pull request
                         raise HTTPForbidden()
                     owner = co.author.user_id == c.authuser.user_id
                     repo_admin = h.HasRepoPermissionAny('repository.admin')(c.repo_name)
                     if h.HasPermissionAny('hg.admin') or repo_admin or owner:
                         ChangesetCommentsModel().delete(comment=co)
                         Session().commit()
                         return True
                     else:
                         raise HTTPForbidden()

kallithea/lib/auth.py

0 +2 -3

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.lib.auth
             ~~~~~~~~~~~~~~~~~~
             authentication and permission libraries
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Apr 4, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import time
             import os
             import logging
             import traceback
             import hashlib
             import itertools
             import collections
             from decorator import decorator
             from pylons import url, request, session
-            from pylons.controllers.util import redirect
             from pylons.i18n.translation import _
             from webhelpers.pylonslib import secure_form
             from sqlalchemy import or_
             from sqlalchemy.orm.exc import ObjectDeletedError
             from sqlalchemy.orm import joinedload
-            from webob.exc import HTTPBadRequest, HTTPForbidden, HTTPMethodNotAllowed
+            from webob.exc import HTTPFound, HTTPBadRequest, HTTPForbidden, HTTPMethodNotAllowed
             from kallithea import __platform__, is_windows, is_unix
             from kallithea.lib.vcs.utils.lazy import LazyProperty
             from kallithea.model import meta
             from kallithea.model.meta import Session
             from kallithea.model.user import UserModel
             from kallithea.model.db import User, Repository, Permission, \
                 UserToPerm, UserGroupRepoToPerm, UserGroupToPerm, UserGroupMember, \
                 RepoGroup, UserGroupRepoGroupToPerm, UserIpMap, UserGroupUserGroupToPerm, \
                 UserGroup, UserApiKeys
             from kallithea.lib.utils2 import safe_unicode, aslist
             from kallithea.lib.utils import get_repo_slug, get_repo_group_slug, \
                 get_user_group_slug, conditional_cache
             from kallithea.lib.caching_query import FromCache
             log = logging.getLogger(__name__)
             class PasswordGenerator(object):
                 """
                 This is a simple class for generating password from different sets of
                 characters
                 usage::
                     passwd_gen = PasswordGenerator()
                     #print 8-letter password containing only big and small letters
                         of alphabet
                     passwd_gen.gen_password(8, passwd_gen.ALPHABETS_BIG_SMALL)
                 """
                 ALPHABETS_NUM = r'''1234567890'''
                 ALPHABETS_SMALL = r'''qwertyuiopasdfghjklzxcvbnm'''
                 ALPHABETS_BIG = r'''QWERTYUIOPASDFGHJKLZXCVBNM'''
                 ALPHABETS_SPECIAL = r'''`-=[]\;',./~!@#$%^&*()_+{}|:"<>?'''
                 ALPHABETS_FULL = ALPHABETS_BIG + ALPHABETS_SMALL \
                     + ALPHABETS_NUM + ALPHABETS_SPECIAL
                 ALPHABETS_ALPHANUM = ALPHABETS_BIG + ALPHABETS_SMALL + ALPHABETS_NUM
                 ALPHABETS_BIG_SMALL = ALPHABETS_BIG + ALPHABETS_SMALL
                 ALPHABETS_ALPHANUM_BIG = ALPHABETS_BIG + ALPHABETS_NUM
                 ALPHABETS_ALPHANUM_SMALL = ALPHABETS_SMALL + ALPHABETS_NUM
                 def gen_password(self, length, alphabet=ALPHABETS_FULL):
                     assert len(alphabet) <= 256, alphabet
                     l = []
                     while len(l) < length:
                         i = ord(os.urandom(1))
                         if i < len(alphabet):
                             l.append(alphabet[i])
                     return ''.join(l)
             class KallitheaCrypto(object):
                 @classmethod
                 def hash_string(cls, str_):
                     """
                     Cryptographic function used for password hashing based on pybcrypt
                     or Python's own OpenSSL wrapper on windows
                     :param password: password to hash
                     """
                     if is_windows:
                         return hashlib.sha256(str_).hexdigest()
                     elif is_unix:
                         import bcrypt
                         return bcrypt.hashpw(str_, bcrypt.gensalt(10))
                     else:
                         raise Exception('Unknown or unsupported platform %s' \
                                         % __platform__)
                 @classmethod
                 def hash_check(cls, password, hashed):
                     """
                     Checks matching password with it's hashed value, runs different
                     implementation based on platform it runs on
                     :param password: password
                     :param hashed: password in hashed form
                     """
                     if is_windows:
                         return hashlib.sha256(password).hexdigest() == hashed
                     elif is_unix:
                         import bcrypt
                         return bcrypt.hashpw(password, hashed) == hashed
                     else:
                         raise Exception('Unknown or unsupported platform %s' \
                                         % __platform__)
             def get_crypt_password(password):
                 return KallitheaCrypto.hash_string(password)
             def check_password(password, hashed):
                 return KallitheaCrypto.hash_check(password, hashed)
             def _cached_perms_data(user_id, user_is_admin, user_inherit_default_permissions,
                                    explicit, algo):
                 RK = 'repositories'
                 GK = 'repositories_groups'
                 UK = 'user_groups'
                 GLOBAL = 'global'
                 PERM_WEIGHTS = Permission.PERM_WEIGHTS
                 permissions = {RK: {}, GK: {}, UK: {}, GLOBAL: set()}
                 def _choose_perm(new_perm, cur_perm):
                     new_perm_val = PERM_WEIGHTS[new_perm]
                     cur_perm_val = PERM_WEIGHTS[cur_perm]
                     if algo == 'higherwin':
                         if new_perm_val > cur_perm_val:
                             return new_perm
                         return cur_perm
                     elif algo == 'lowerwin':
                         if new_perm_val < cur_perm_val:
                             return new_perm
                         return cur_perm
                 #======================================================================
                 # fetch default permissions
                 #======================================================================
                 default_user = User.get_by_username('default', cache=True)
                 default_user_id = default_user.user_id
                 default_repo_perms = Permission.get_default_perms(default_user_id)
                 default_repo_groups_perms = Permission.get_default_group_perms(default_user_id)
                 default_user_group_perms = Permission.get_default_user_group_perms(default_user_id)
                 if user_is_admin:
                     #==================================================================
                     # admin users have all rights;
                     # based on default permissions, just set everything to admin
                     #==================================================================
                     permissions[GLOBAL].add('hg.admin')
                     permissions[GLOBAL].add('hg.create.write_on_repogroup.true')
                     # repositories
                     for perm in default_repo_perms:
                         r_k = perm.UserRepoToPerm.repository.repo_name
                         p = 'repository.admin'
                         permissions[RK][r_k] = p
                     # repository groups
                     for perm in default_repo_groups_perms:
                         rg_k = perm.UserRepoGroupToPerm.group.group_name
                         p = 'group.admin'
                         permissions[GK][rg_k] = p
                     # user groups
                     for perm in default_user_group_perms:
                         u_k = perm.UserUserGroupToPerm.user_group.users_group_name
                         p = 'usergroup.admin'
                         permissions[UK][u_k] = p
                     return permissions
                 #==================================================================
                 # SET DEFAULTS GLOBAL, REPOS, REPOSITORY GROUPS
                 #==================================================================
                 # default global permissions taken from the default user
                 default_global_perms = UserToPerm.query()\
                     .filter(UserToPerm.user_id == default_user_id)\
                     .options(joinedload(UserToPerm.permission))
                 for perm in default_global_perms:
                     permissions[GLOBAL].add(perm.permission.permission_name)
                 # defaults for repositories, taken from default user
                 for perm in default_repo_perms:
                     r_k = perm.UserRepoToPerm.repository.repo_name
                     if perm.Repository.private and not (perm.Repository.user_id == user_id):
                         # disable defaults for private repos,
                         p = 'repository.none'
                     elif perm.Repository.user_id == user_id:
                         # set admin if owner
                         p = 'repository.admin'
                     else:
                         p = perm.Permission.permission_name
                     permissions[RK][r_k] = p
                 # defaults for repository groups taken from default user permission
                 # on given group
                 for perm in default_repo_groups_perms:
                     rg_k = perm.UserRepoGroupToPerm.group.group_name
                     p = perm.Permission.permission_name
                     permissions[GK][rg_k] = p
                 # defaults for user groups taken from default user permission
                 # on given user group
                 for perm in default_user_group_perms:
                     u_k = perm.UserUserGroupToPerm.user_group.users_group_name
                     p = perm.Permission.permission_name
                     permissions[UK][u_k] = p
                 #======================================================================
                 # !! OVERRIDE GLOBALS !! with user permissions if any found
                 #======================================================================
                 # those can be configured from groups or users explicitly
                 _configurable = set([
                     'hg.fork.none', 'hg.fork.repository',
                     'hg.create.none', 'hg.create.repository',
                     'hg.usergroup.create.false', 'hg.usergroup.create.true'
                 ])
                 # USER GROUPS comes first
                 # user group global permissions
                 user_perms_from_users_groups = Session().query(UserGroupToPerm)\
                     .options(joinedload(UserGroupToPerm.permission))\
                     .join((UserGroupMember, UserGroupToPerm.users_group_id ==
                            UserGroupMember.users_group_id))\
                     .filter(UserGroupMember.user_id == user_id)\
                     .join((UserGroup, UserGroupMember.users_group_id ==
                            UserGroup.users_group_id))\
                     .filter(UserGroup.users_group_active == True)\
                     .order_by(UserGroupToPerm.users_group_id)\
                     .all()
                 # need to group here by groups since user can be in more than
                 # one group
                 _grouped = [[x, list(y)] for x, y in
                             itertools.groupby(user_perms_from_users_groups,
                                               lambda x:x.users_group)]
                 for gr, perms in _grouped:
                     # since user can be in multiple groups iterate over them and
                     # select the lowest permissions first (more explicit)
                     ##TODO: do this^^
                     if not gr.inherit_default_permissions:
                         # NEED TO IGNORE all configurable permissions and
                         # replace them with explicitly set
                         permissions[GLOBAL] = permissions[GLOBAL]\
                                                         .difference(_configurable)
                     for perm in perms:
                         permissions[GLOBAL].add(perm.permission.permission_name)
                 # user specific global permissions
                 user_perms = Session().query(UserToPerm)\
                         .options(joinedload(UserToPerm.permission))\
                         .filter(UserToPerm.user_id == user_id).all()
                 if not user_inherit_default_permissions:
                     # NEED TO IGNORE all configurable permissions and
                     # replace them with explicitly set
                     permissions[GLOBAL] = permissions[GLOBAL]\
                                                     .difference(_configurable)
                     for perm in user_perms:
                         permissions[GLOBAL].add(perm.permission.permission_name)
                 ## END GLOBAL PERMISSIONS
                 #======================================================================
                 # !! PERMISSIONS FOR REPOSITORIES !!
                 #======================================================================
                 #======================================================================
                 # check if user is part of user groups for this repository and
                 # fill in his permission from it. _choose_perm decides of which
                 # permission should be selected based on selected method
                 #======================================================================
                 # user group for repositories permissions
                 user_repo_perms_from_users_groups = \
                  Session().query(UserGroupRepoToPerm, Permission, Repository,)\
                     .join((Repository, UserGroupRepoToPerm.repository_id ==
                            Repository.repo_id))\
                     .join((Permission, UserGroupRepoToPerm.permission_id ==
                            Permission.permission_id))\
                     .join((UserGroup, UserGroupRepoToPerm.users_group_id ==
                            UserGroup.users_group_id))\
                     .filter(UserGroup.users_group_active == True)\
                     .join((UserGroupMember, UserGroupRepoToPerm.users_group_id ==
                            UserGroupMember.users_group_id))\
                     .filter(UserGroupMember.user_id == user_id)\
                     .all()
                 multiple_counter = collections.defaultdict(int)
                 for perm in user_repo_perms_from_users_groups:
                     r_k = perm.UserGroupRepoToPerm.repository.repo_name
                     multiple_counter[r_k] += 1
                     p = perm.Permission.permission_name
                     cur_perm = permissions[RK][r_k]
                     if perm.Repository.user_id == user_id:
                         # set admin if owner
                         p = 'repository.admin'
                     else:
                         if multiple_counter[r_k] > 1:
                             p = _choose_perm(p, cur_perm)
                     permissions[RK][r_k] = p
                 # user explicit permissions for repositories, overrides any specified
                 # by the group permission
                 user_repo_perms = Permission.get_default_perms(user_id)
                 for perm in user_repo_perms:
                     r_k = perm.UserRepoToPerm.repository.repo_name
                     cur_perm = permissions[RK][r_k]
                     # set admin if owner
                     if perm.Repository.user_id == user_id:
                         p = 'repository.admin'
                     else:
                         p = perm.Permission.permission_name
                         if not explicit:
                             p = _choose_perm(p, cur_perm)
                     permissions[RK][r_k] = p
                 #======================================================================
                 # !! PERMISSIONS FOR REPOSITORY GROUPS !!
                 #======================================================================
                 #======================================================================
                 # check if user is part of user groups for this repository groups and
                 # fill in his permission from it. _choose_perm decides of which
                 # permission should be selected based on selected method
                 #======================================================================
                 # user group for repo groups permissions
                 user_repo_group_perms_from_users_groups = \
                  Session().query(UserGroupRepoGroupToPerm, Permission, RepoGroup)\
                  .join((RepoGroup, UserGroupRepoGroupToPerm.group_id == RepoGroup.group_id))\
                  .join((Permission, UserGroupRepoGroupToPerm.permission_id
                         == Permission.permission_id))\
                  .join((UserGroup, UserGroupRepoGroupToPerm.users_group_id ==
                         UserGroup.users_group_id))\
                  .filter(UserGroup.users_group_active == True)\
                  .join((UserGroupMember, UserGroupRepoGroupToPerm.users_group_id
                         == UserGroupMember.users_group_id))\
                  .filter(UserGroupMember.user_id == user_id)\
                  .all()
                 multiple_counter = collections.defaultdict(int)
                 for perm in user_repo_group_perms_from_users_groups:
                     g_k = perm.UserGroupRepoGroupToPerm.group.group_name
                     multiple_counter[g_k] += 1
                     p = perm.Permission.permission_name
                     cur_perm = permissions[GK][g_k]
                     if multiple_counter[g_k] > 1:
                         p = _choose_perm(p, cur_perm)
                     permissions[GK][g_k] = p
                 # user explicit permissions for repository groups
                 user_repo_groups_perms = Permission.get_default_group_perms(user_id)
                 for perm in user_repo_groups_perms:
                     rg_k = perm.UserRepoGroupToPerm.group.group_name
                     p = perm.Permission.permission_name
                     cur_perm = permissions[GK][rg_k]
                     if not explicit:
                         p = _choose_perm(p, cur_perm)
                     permissions[GK][rg_k] = p
                 #======================================================================
                 # !! PERMISSIONS FOR USER GROUPS !!
                 #======================================================================
                 # user group for user group permissions
                 user_group_user_groups_perms = \
                  Session().query(UserGroupUserGroupToPerm, Permission, UserGroup)\
                  .join((UserGroup, UserGroupUserGroupToPerm.target_user_group_id
                         == UserGroup.users_group_id))\
                  .join((Permission, UserGroupUserGroupToPerm.permission_id
                         == Permission.permission_id))\
                  .join((UserGroupMember, UserGroupUserGroupToPerm.user_group_id
                         == UserGroupMember.users_group_id))\
                  .filter(UserGroupMember.user_id == user_id)\
                  .join((UserGroup, UserGroupMember.users_group_id ==
                         UserGroup.users_group_id), aliased=True, from_joinpoint=True)\
                  .filter(UserGroup.users_group_active == True)\
                  .all()
                 multiple_counter = collections.defaultdict(int)
                 for perm in user_group_user_groups_perms:
                     g_k = perm.UserGroupUserGroupToPerm.target_user_group.users_group_name
                     multiple_counter[g_k] += 1
                     p = perm.Permission.permission_name
                     cur_perm = permissions[UK][g_k]
                     if multiple_counter[g_k] > 1:
                         p = _choose_perm(p, cur_perm)
                     permissions[UK][g_k] = p
                 #user explicit permission for user groups
                 user_user_groups_perms = Permission.get_default_user_group_perms(user_id)
                 for perm in user_user_groups_perms:
                     u_k = perm.UserUserGroupToPerm.user_group.users_group_name
                     p = perm.Permission.permission_name
                     cur_perm = permissions[UK][u_k]
                     if not explicit:
                         p = _choose_perm(p, cur_perm)
                     permissions[UK][u_k] = p
                 return permissions
             def allowed_api_access(controller_name, whitelist=None, api_key=None):
                 """
                 Check if given controller_name is in whitelist API access
                 """
                 if not whitelist:
                     from kallithea import CONFIG
                     whitelist = aslist(CONFIG.get('api_access_controllers_whitelist'),
                                        sep=',')
                     log.debug('whitelist of API access is: %s', whitelist)
                 api_access_valid = controller_name in whitelist
                 if api_access_valid:
                     log.debug('controller:%s is in API whitelist', controller_name)
                 else:
                     msg = 'controller: %s is *NOT* in API whitelist' % (controller_name)
                     if api_key:
                         #if we use API key and don't have access it's a warning
                         log.warning(msg)
                     else:
                         log.debug(msg)
                 return api_access_valid
             class AuthUser(object):
                 """
                 Represents a Kallithea user, including various authentication and
                 authorization information. Typically used to store the current user,
                 but is also used as a generic user information data structure in
                 parts of the code, e.g. user management.
                 Constructed from a database `User` object, a user ID or cookie dict,
                 it looks up the user (if needed) and copies all attributes to itself,
                 adding various non-persistent data. If lookup fails but anonymous
                 access to Kallithea is enabled, the default user is loaded instead.
                 `AuthUser` does not by itself authenticate users and the constructor
                 sets the `is_authenticated` field to False, except when falling back
                 to the default anonymous user (if enabled). It's up to other parts
                 of the code to check e.g. if a supplied password is correct, and if
                 so, set `is_authenticated` to True.
                 However, `AuthUser` does refuse to load a user that is not `active`.
                 """
                 def __init__(self, user_id=None, dbuser=None,
                         is_external_auth=False):
                     self.is_authenticated = False
                     self.is_external_auth = is_external_auth
                     user_model = UserModel()
                     self.anonymous_user = User.get_default_user(cache=True)
                     # These attributes will be overriden by fill_data, below, unless the
                     # requested user cannot be found and the default anonymous user is
                     # not enabled.
                     self.user_id = None
                     self.username = None
                     self.api_key = None
                     self.name = ''
                     self.lastname = ''
                     self.email = ''
                     self.admin = False
                     self.inherit_default_permissions = False
                     # Look up database user, if necessary.
                     if user_id is not None:
                         log.debug('Auth User lookup by USER ID %s', user_id)
                         dbuser = user_model.get(user_id)
                     else:
                         # Note: dbuser is allowed to be None.
                         log.debug('Auth User lookup by database user %s', dbuser)
                     is_user_loaded = self._fill_data(dbuser)
                     # If user cannot be found, try falling back to anonymous.
                     if not is_user_loaded:
                         is_user_loaded =  self._fill_data(self.anonymous_user)
                     # The anonymous user is always "logged in".
                     if self.user_id == self.anonymous_user.user_id:
                         self.is_authenticated = True
                     if not self.username:
                         self.username = 'None'
                     log.debug('Auth User is now %s', self)
                 def _fill_data(self, dbuser):
                     """
                     Copies database fields from a `db.User` to this `AuthUser`. Does
                     not copy `api_keys` and `permissions` attributes.
                     Checks that `dbuser` is `active` (and not None) before copying;
                     returns True on success.
                     """
                     if dbuser is not None and dbuser.active:
                         log.debug('filling %s data', dbuser)
                         for k, v in dbuser.get_dict().iteritems():
                             assert k not in ['api_keys', 'permissions']
                             setattr(self, k, v)
                         return True
                     return False
                 @LazyProperty
                 def permissions(self):
                     return self.__get_perms(user=self, cache=False)
                 @property
                 def api_keys(self):
                     return self._get_api_keys()
                 def __get_perms(self, user, explicit=True, algo='higherwin', cache=False):
                     """
                     Fills user permission attribute with permissions taken from database
                     works for permissions given for repositories, and for permissions that
                     are granted to groups
                     :param user: `AuthUser` instance
                     :param explicit: In case there are permissions both for user and a group
                         that user is part of, explicit flag will define if user will
                         explicitly override permissions from group, if it's False it will
                         make decision based on the algo
                     :param algo: algorithm to decide what permission should be choose if
                         it's multiple defined, eg user in two different groups. It also
                         decides if explicit flag is turned off how to specify the permission
                         for case when user is in a group + have defined separate permission
                     """
                     user_id = user.user_id
                     user_is_admin = user.is_admin
                     user_inherit_default_permissions = user.inherit_default_permissions
                     log.debug('Getting PERMISSION tree')
                     compute = conditional_cache('short_term', 'cache_desc',
                                                 condition=cache, func=_cached_perms_data)
                     return compute(user_id, user_is_admin,
                                    user_inherit_default_permissions, explicit, algo)
                 def _get_api_keys(self):
                     api_keys = [self.api_key]
                     for api_key in UserApiKeys.query()\
                             .filter(UserApiKeys.user_id == self.user_id)\
                             .filter(or_(UserApiKeys.expires == -1,
                                         UserApiKeys.expires >= time.time())).all():
                         api_keys.append(api_key.api_key)
                     return api_keys
                 @property
                 def is_admin(self):
                     return self.admin
                 @property
                 def repositories_admin(self):
                     """
                     Returns list of repositories you're an admin of
                     """
                     return [x[0] for x in self.permissions['repositories'].iteritems()
                             if x[1] == 'repository.admin']
                 @property
                 def repository_groups_admin(self):
                     """
                     Returns list of repository groups you're an admin of
                     """
                     return [x[0] for x in self.permissions['repositories_groups'].iteritems()
                             if x[1] == 'group.admin']
                 @property
                 def user_groups_admin(self):
                     """
                     Returns list of user groups you're an admin of
                     """
                     return [x[0] for x in self.permissions['user_groups'].iteritems()
                             if x[1] == 'usergroup.admin']
                 @staticmethod
                 def check_ip_allowed(user, ip_addr):
                     """
                     Check if the given IP address (a `str`) is allowed for the given
                     user (an `AuthUser` or `db.User`).
                     """
                     allowed_ips = AuthUser.get_allowed_ips(user.user_id, cache=True,
                         inherit_from_default=user.inherit_default_permissions)
                     if check_ip_access(source_ip=ip_addr, allowed_ips=allowed_ips):
                         log.debug('IP:%s is in range of %s', ip_addr, allowed_ips)
                         return True
                     else:
                         log.info('Access for IP:%s forbidden, '
                                  'not in %s' % (ip_addr, allowed_ips))
                         return False
                 def __repr__(self):
                     return "<AuthUser('id:%s[%s] auth:%s')>"\
                         % (self.user_id, self.username, self.is_authenticated)
                 def set_authenticated(self, authenticated=True):
                     if self.user_id != self.anonymous_user.user_id:
                         self.is_authenticated = authenticated
                 def to_cookie(self):
                     """ Serializes this login session to a cookie `dict`. """
                     return {
                         'user_id': self.user_id,
                         'is_authenticated': self.is_authenticated,
                         'is_external_auth': self.is_external_auth,
                     }
                 @staticmethod
                 def from_cookie(cookie):
                     """
                     Deserializes an `AuthUser` from a cookie `dict`.
                     """
                     au = AuthUser(
                         user_id=cookie.get('user_id'),
                         is_external_auth=cookie.get('is_external_auth', False),
                     )
                     if not au.is_authenticated and au.user_id is not None:
                         # user is not authenticated and not empty
                         au.set_authenticated(cookie.get('is_authenticated'))
                     return au
                 @classmethod
                 def get_allowed_ips(cls, user_id, cache=False, inherit_from_default=False):
                     _set = set()
                     if inherit_from_default:
                         default_ips = UserIpMap.query().filter(UserIpMap.user ==
                                                         User.get_default_user(cache=True))
                         if cache:
                             default_ips = default_ips.options(FromCache("sql_cache_short",
                                                               "get_user_ips_default"))
                         # populate from default user
                         for ip in default_ips:
                             try:
                                 _set.add(ip.ip_addr)
                             except ObjectDeletedError:
                                 # since we use heavy caching sometimes it happens that we get
                                 # deleted objects here, we just skip them
                                 pass
                     user_ips = UserIpMap.query().filter(UserIpMap.user_id == user_id)
                     if cache:
                         user_ips = user_ips.options(FromCache("sql_cache_short",
                                                               "get_user_ips_%s" % user_id))
                     for ip in user_ips:
                         try:
                             _set.add(ip.ip_addr)
                         except ObjectDeletedError:
                             # since we use heavy caching sometimes it happens that we get
                             # deleted objects here, we just skip them
                             pass
                     return _set or set(['0.0.0.0/0', '::/0'])
             def set_available_permissions(config):
                 """
                 This function will propagate pylons globals with all available defined
                 permission given in db. We don't want to check each time from db for new
                 permissions since adding a new permission also requires application restart
                 ie. to decorate new views with the newly created permission
                 :param config: current pylons config instance
                 """
                 log.info('getting information about all available permissions')
                 try:
                     sa = meta.Session
                     all_perms = sa.query(Permission).all()
                     config['available_permissions'] = [x.permission_name for x in all_perms]
                 finally:
                     meta.Session.remove()
             #==============================================================================
             # CHECK DECORATORS
             #==============================================================================
             def redirect_to_login(message=None):
                 from kallithea.lib import helpers as h
                 p = request.path_qs
                 if message:
                     h.flash(h.literal(message), category='warning')
                 log.debug('Redirecting to login page, origin: %s', p)
-                return redirect(url('login_home', came_from=p))
+                raise HTTPFound(location=url('login_home', came_from=p))
             class LoginRequired(object):
                 """
                 Must be logged in to execute this function else
                 redirect to login page
                 :param api_access: if enabled this checks only for valid auth token
                     and grants access based on valid token
                 """
                 def __init__(self, api_access=False):
                     self.api_access = api_access
                 def __call__(self, func):
                     return decorator(self.__wrapper, func)
                 def __wrapper(self, func, *fargs, **fkwargs):
                     controller = fargs[0]
                     user = controller.authuser
                     loc = "%s:%s" % (controller.__class__.__name__, func.__name__)
                     log.debug('Checking access for user %s @ %s', user, loc)
                     if not AuthUser.check_ip_allowed(user, controller.ip_addr):
                         return redirect_to_login(_('IP %s not allowed') % controller.ip_addr)
                     # check if we used an API key and it's a valid one
                     api_key = request.GET.get('api_key')
                     if api_key is not None:
                         # explicit controller is enabled or API is in our whitelist
                         if self.api_access or allowed_api_access(loc, api_key=api_key):
                             if api_key in user.api_keys:
                                 log.info('user %s authenticated with API key ****%s @ %s',
                                          user, api_key[-4:], loc)
                                 return func(*fargs, **fkwargs)
                             else:
                                 log.warning('API key ****%s is NOT valid', api_key[-4:])
                                 return redirect_to_login(_('Invalid API key'))
                         else:
                             # controller does not allow API access
                             log.warning('API access to %s is not allowed', loc)
                             raise HTTPForbidden()
                     # Only allow the following HTTP request methods. (We sometimes use POST
                     # requests with a '_method' set to 'PUT' or 'DELETE'; but that is only
                     # used for the route lookup, and does not affect request.method.)
                     if request.method not in ['GET', 'HEAD', 'POST', 'PUT']:
                         raise HTTPMethodNotAllowed()
                     # Make sure CSRF token never appears in the URL. If so, invalidate it.
                     if secure_form.token_key in request.GET:
                         log.error('CSRF key leak detected')
                         session.pop(secure_form.token_key, None)
                         session.save()
                         from kallithea.lib import helpers as h
                         h.flash(_("CSRF token leak has been detected - all form tokens have been expired"),
                                 category='error')
                     # CSRF protection: Whenever a request has ambient authority (whether
                     # through a session cookie or its origin IP address), it must include
                     # the correct token, unless the HTTP method is GET or HEAD (and thus
                     # guaranteed to be side effect free. In practice, the only situation
                     # where we allow side effects without ambient authority is when the
                     # authority comes from an API key; and that is handled above.
                     if request.method not in ['GET', 'HEAD']:
                         token = request.POST.get(secure_form.token_key)
                         if not token or token != secure_form.authentication_token():
                             log.error('CSRF check failed')
                             raise HTTPForbidden()
                     # WebOb already ignores request payload parameters for anything other
                     # than POST/PUT, but double-check since other Kallithea code relies on
                     # this assumption.
                     if request.method not in ['POST', 'PUT'] and request.POST:
                         log.error('%r request with payload parameters; WebOb should have stopped this', request.method)
                         raise HTTPBadRequest()
                     # regular user authentication
                     if user.is_authenticated:
                         log.info('user %s authenticated with regular auth @ %s', user, loc)
                         return func(*fargs, **fkwargs)
                     else:
                         log.warning('user %s NOT authenticated with regular auth @ %s', user, loc)
                         return redirect_to_login()
             class NotAnonymous(object):
                 """
                 Must be logged in to execute this function else
                 redirect to login page"""
                 def __call__(self, func):
                     return decorator(self.__wrapper, func)
                 def __wrapper(self, func, *fargs, **fkwargs):
                     cls = fargs[0]
                     self.user = cls.authuser
                     log.debug('Checking if user is not anonymous @%s', cls)
                     anonymous = self.user.username == User.DEFAULT_USER
                     if anonymous:
                         return redirect_to_login(_('You need to be a registered user to '
                                 'perform this action'))
                     else:
                         return func(*fargs, **fkwargs)
             class PermsDecorator(object):
                 """Base class for controller decorators"""
                 def __init__(self, *required_perms):
                     self.required_perms = set(required_perms)
                     self.user_perms = None
                 def __call__(self, func):
                     return decorator(self.__wrapper, func)
                 def __wrapper(self, func, *fargs, **fkwargs):
                     cls = fargs[0]
                     self.user = cls.authuser
                     self.user_perms = self.user.permissions
                     log.debug('checking %s permissions %s for %s %s',
                       self.__class__.__name__, self.required_perms, cls, self.user)
                     if self.check_permissions():
                         log.debug('Permission granted for %s %s', cls, self.user)
                         return func(*fargs, **fkwargs)
                     else:
                         log.debug('Permission denied for %s %s', cls, self.user)
                         anonymous = self.user.username == User.DEFAULT_USER
                         if anonymous:
                             return redirect_to_login(_('You need to be signed in to view this page'))
                         else:
                             raise HTTPForbidden()
                 def check_permissions(self):
                     """Dummy function for overriding"""
                     raise Exception('You have to write this function in child class')
             class HasPermissionAllDecorator(PermsDecorator):
                 """
                 Checks for access permission for all given predicates. All of them
                 have to be meet in order to fulfill the request
                 """
                 def check_permissions(self):
                     if self.required_perms.issubset(self.user_perms.get('global')):
                         return True
                     return False
             class HasPermissionAnyDecorator(PermsDecorator):
                 """
                 Checks for access permission for any of given predicates. In order to
                 fulfill the request any of predicates must be meet
                 """
                 def check_permissions(self):
                     if self.required_perms.intersection(self.user_perms.get('global')):
                         return True
                     return False
             class HasRepoPermissionAllDecorator(PermsDecorator):
                 """
                 Checks for access permission for all given predicates for specific
                 repository. All of them have to be meet in order to fulfill the request
                 """
                 def check_permissions(self):
                     repo_name = get_repo_slug(request)
                     try:
                         user_perms = set([self.user_perms['repositories'][repo_name]])
                     except KeyError:
                         return False
                     if self.required_perms.issubset(user_perms):
                         return True
                     return False
             class HasRepoPermissionAnyDecorator(PermsDecorator):
                 """
                 Checks for access permission for any of given predicates for specific
                 repository. In order to fulfill the request any of predicates must be meet
                 """
                 def check_permissions(self):
                     repo_name = get_repo_slug(request)
                     try:
                         user_perms = set([self.user_perms['repositories'][repo_name]])
                     except KeyError:
                         return False
                     if self.required_perms.intersection(user_perms):
                         return True
                     return False
             class HasRepoGroupPermissionAllDecorator(PermsDecorator):
                 """
                 Checks for access permission for all given predicates for specific
                 repository group. All of them have to be meet in order to fulfill the request
                 """
                 def check_permissions(self):
                     group_name = get_repo_group_slug(request)
                     try:
                         user_perms = set([self.user_perms['repositories_groups'][group_name]])
                     except KeyError:
                         return False
                     if self.required_perms.issubset(user_perms):
                         return True
                     return False
             class HasRepoGroupPermissionAnyDecorator(PermsDecorator):
                 """
                 Checks for access permission for any of given predicates for specific
                 repository group. In order to fulfill the request any of predicates must be meet
                 """
                 def check_permissions(self):
                     group_name = get_repo_group_slug(request)
                     try:
                         user_perms = set([self.user_perms['repositories_groups'][group_name]])
                     except KeyError:
                         return False
                     if self.required_perms.intersection(user_perms):
                         return True
                     return False
             class HasUserGroupPermissionAllDecorator(PermsDecorator):
                 """
                 Checks for access permission for all given predicates for specific
                 user group. All of them have to be meet in order to fulfill the request
                 """
                 def check_permissions(self):
                     group_name = get_user_group_slug(request)
                     try:
                         user_perms = set([self.user_perms['user_groups'][group_name]])
                     except KeyError:
                         return False
                     if self.required_perms.issubset(user_perms):
                         return True
                     return False
             class HasUserGroupPermissionAnyDecorator(PermsDecorator):
                 """
                 Checks for access permission for any of given predicates for specific
                 user group. In order to fulfill the request any of predicates must be meet
                 """
                 def check_permissions(self):
                     group_name = get_user_group_slug(request)
                     try:
                         user_perms = set([self.user_perms['user_groups'][group_name]])
                     except KeyError:
                         return False
                     if self.required_perms.intersection(user_perms):
                         return True
                     return False
             #==============================================================================
             # CHECK FUNCTIONS
             #==============================================================================
             class PermsFunction(object):
                 """Base function for other check functions"""
                 def __init__(self, *perms):
                     self.required_perms = set(perms)
                     self.user_perms = None
                     self.repo_name = None
                     self.group_name = None
                 def __call__(self, check_location='', user=None):
                     if not user:
                         #TODO: remove this someday,put as user as attribute here
                         user = request.user
                     # init auth user if not already given
                     if not isinstance(user, AuthUser):
                         user = AuthUser(user.user_id)
                     cls_name = self.__class__.__name__
                     check_scope = {
                         'HasPermissionAll': '',
                         'HasPermissionAny': '',
                         'HasRepoPermissionAll': 'repo:%s' % self.repo_name,
                         'HasRepoPermissionAny': 'repo:%s' % self.repo_name,
                         'HasRepoGroupPermissionAll': 'group:%s' % self.group_name,
                         'HasRepoGroupPermissionAny': 'group:%s' % self.group_name,
                     }.get(cls_name, '?')
                     log.debug('checking cls:%s %s usr:%s %s @ %s', cls_name,
                               self.required_perms, user, check_scope,
                               check_location or 'unspecified location')
                     if not user:
                         log.debug('Empty request user')
                         return False
                     self.user_perms = user.permissions
                     if self.check_permissions():
                         log.debug('Permission to %s granted for user: %s @ %s',
                                   check_scope, user,
                                      check_location or 'unspecified location')
                         return True
                     else:
                         log.debug('Permission to %s denied for user: %s @ %s',
                                   check_scope, user,
                                      check_location or 'unspecified location')
                         return False
                 def check_permissions(self):
                     """Dummy function for overriding"""
                     raise Exception('You have to write this function in child class')
             class HasPermissionAll(PermsFunction):
                 def check_permissions(self):
                     if self.required_perms.issubset(self.user_perms.get('global')):
                         return True
                     return False
             class HasPermissionAny(PermsFunction):
                 def check_permissions(self):
                     if self.required_perms.intersection(self.user_perms.get('global')):
                         return True
                     return False
             class HasRepoPermissionAll(PermsFunction):
                 def __call__(self, repo_name=None, check_location='', user=None):
                     self.repo_name = repo_name
                     return super(HasRepoPermissionAll, self).__call__(check_location, user)
                 def check_permissions(self):
                     if not self.repo_name:
                         self.repo_name = get_repo_slug(request)
                     try:
                         self._user_perms = set(
                             [self.user_perms['repositories'][self.repo_name]]
                         )
                     except KeyError:
                         return False
                     if self.required_perms.issubset(self._user_perms):
                         return True
                     return False
             class HasRepoPermissionAny(PermsFunction):
                 def __call__(self, repo_name=None, check_location='', user=None):
                     self.repo_name = repo_name
                     return super(HasRepoPermissionAny, self).__call__(check_location, user)
                 def check_permissions(self):
                     if not self.repo_name:
                         self.repo_name = get_repo_slug(request)
                     try:
                         self._user_perms = set(
                             [self.user_perms['repositories'][self.repo_name]]
                         )
                     except KeyError:
                         return False
                     if self.required_perms.intersection(self._user_perms):
                         return True
                     return False
             class HasRepoGroupPermissionAny(PermsFunction):
                 def __call__(self, group_name=None, check_location='', user=None):
                     self.group_name = group_name
                     return super(HasRepoGroupPermissionAny, self).__call__(check_location, user)
                 def check_permissions(self):
                     try:
                         self._user_perms = set(
                             [self.user_perms['repositories_groups'][self.group_name]]
                         )
                     except KeyError:
                         return False
                     if self.required_perms.intersection(self._user_perms):
                         return True
                     return False
             class HasRepoGroupPermissionAll(PermsFunction):
                 def __call__(self, group_name=None, check_location='', user=None):
                     self.group_name = group_name
                     return super(HasRepoGroupPermissionAll, self).__call__(check_location, user)
                 def check_permissions(self):
                     try:
                         self._user_perms = set(
                             [self.user_perms['repositories_groups'][self.group_name]]
                         )
                     except KeyError:
                         return False
                     if self.required_perms.issubset(self._user_perms):
                         return True
                     return False
             class HasUserGroupPermissionAny(PermsFunction):
                 def __call__(self, user_group_name=None, check_location='', user=None):
                     self.user_group_name = user_group_name
                     return super(HasUserGroupPermissionAny, self).__call__(check_location, user)
                 def check_permissions(self):
                     try:
                         self._user_perms = set(
                             [self.user_perms['user_groups'][self.user_group_name]]
                         )
                     except KeyError:
                         return False
                     if self.required_perms.intersection(self._user_perms):
                         return True
                     return False
             class HasUserGroupPermissionAll(PermsFunction):
                 def __call__(self, user_group_name=None, check_location='', user=None):
                     self.user_group_name = user_group_name
                     return super(HasUserGroupPermissionAll, self).__call__(check_location, user)
                 def check_permissions(self):
                     try:
                         self._user_perms = set(
                             [self.user_perms['user_groups'][self.user_group_name]]
                         )
                     except KeyError:
                         return False
                     if self.required_perms.issubset(self._user_perms):
                         return True
                     return False
             #==============================================================================
             # SPECIAL VERSION TO HANDLE MIDDLEWARE AUTH
             #==============================================================================
             class HasPermissionAnyMiddleware(object):
                 def __init__(self, *perms):
                     self.required_perms = set(perms)
                 def __call__(self, user, repo_name):
                     # repo_name MUST be unicode, since we handle keys in permission
                     # dict by unicode
                     repo_name = safe_unicode(repo_name)
                     usr = AuthUser(user.user_id)
                     self.user_perms = set([usr.permissions['repositories'][repo_name]])
                     self.username = user.username
                     self.repo_name = repo_name
                     return self.check_permissions()
                 def check_permissions(self):
                     log.debug('checking VCS protocol '
                               'permissions %s for user:%s repository:%s', self.user_perms,
                                                             self.username, self.repo_name)
                     if self.required_perms.intersection(self.user_perms):
                         log.debug('Permission to repo: %s granted for user: %s @ %s',
                                   self.repo_name, self.username, 'PermissionMiddleware')
                         return True
                     log.debug('Permission to repo: %s denied for user: %s @ %s',
                               self.repo_name, self.username, 'PermissionMiddleware')
                     return False
             #==============================================================================
             # SPECIAL VERSION TO HANDLE API AUTH
             #==============================================================================
             class _BaseApiPerm(object):
                 def __init__(self, *perms):
                     self.required_perms = set(perms)
                 def __call__(self, check_location=None, user=None, repo_name=None,
                              group_name=None):
                     cls_name = self.__class__.__name__
                     check_scope = 'user:%s' % (user)
                     if repo_name:
                         check_scope += ', repo:%s' % (repo_name)
                     if group_name:
                         check_scope += ', repo group:%s' % (group_name)
                     log.debug('checking cls:%s %s %s @ %s',
                               cls_name, self.required_perms, check_scope, check_location)
                     if not user:
                         log.debug('Empty User passed into arguments')
                         return False
                     ## process user
                     if not isinstance(user, AuthUser):
                         user = AuthUser(user.user_id)
                     if not check_location:
                         check_location = 'unspecified'
                     if self.check_permissions(user.permissions, repo_name, group_name):
                         log.debug('Permission to %s granted for user: %s @ %s',
                                   check_scope, user, check_location)
                         return True
                     else:
                         log.debug('Permission to %s denied for user: %s @ %s',
                                   check_scope, user, check_location)
                         return False
                 def check_permissions(self, perm_defs, repo_name=None, group_name=None):
                     """
                     implement in child class should return True if permissions are ok,
                     False otherwise
                     :param perm_defs: dict with permission definitions
                     :param repo_name: repo name
                     """
                     raise NotImplementedError()
             class HasPermissionAllApi(_BaseApiPerm):
                 def check_permissions(self, perm_defs, repo_name=None, group_name=None):
                     if self.required_perms.issubset(perm_defs.get('global')):
                         return True
                     return False
             class HasPermissionAnyApi(_BaseApiPerm):
                 def check_permissions(self, perm_defs, repo_name=None, group_name=None):
                     if self.required_perms.intersection(perm_defs.get('global')):
                         return True
                     return False
             class HasRepoPermissionAllApi(_BaseApiPerm):
                 def check_permissions(self, perm_defs, repo_name=None, group_name=None):
                     try:
                         _user_perms = set([perm_defs['repositories'][repo_name]])
                     except KeyError:
                         log.warning(traceback.format_exc())
                         return False
                     if self.required_perms.issubset(_user_perms):
                         return True
                     return False
             class HasRepoPermissionAnyApi(_BaseApiPerm):
                 def check_permissions(self, perm_defs, repo_name=None, group_name=None):
                     try:
                         _user_perms = set([perm_defs['repositories'][repo_name]])
                     except KeyError:
                         log.warning(traceback.format_exc())
                         return False
                     if self.required_perms.intersection(_user_perms):
                         return True
                     return False
             class HasRepoGroupPermissionAnyApi(_BaseApiPerm):
                 def check_permissions(self, perm_defs, repo_name=None, group_name=None):
                     try:
                         _user_perms = set([perm_defs['repositories_groups'][group_name]])
                     except KeyError:
                         log.warning(traceback.format_exc())
                         return False
                     if self.required_perms.intersection(_user_perms):
                         return True
                     return False
             class HasRepoGroupPermissionAllApi(_BaseApiPerm):
                 def check_permissions(self, perm_defs, repo_name=None, group_name=None):
                     try:
                         _user_perms = set([perm_defs['repositories_groups'][group_name]])
                     except KeyError:
                         log.warning(traceback.format_exc())
                         return False
                     if self.required_perms.issubset(_user_perms):
                         return True
                     return False
             def check_ip_access(source_ip, allowed_ips=None):
                 """
                 Checks if source_ip is a subnet of any of allowed_ips.
                 :param source_ip:
                 :param allowed_ips: list of allowed ips together with mask
                 """
                 from kallithea.lib import ipaddr
                 log.debug('checking if ip:%s is subnet of %s', source_ip, allowed_ips)
                 if isinstance(allowed_ips, (tuple, list, set)):
                     for ip in allowed_ips:
                         if ipaddr.IPAddress(source_ip) in ipaddr.IPNetwork(ip):
                             log.debug('IP %s is network %s',
                                       ipaddr.IPAddress(source_ip), ipaddr.IPNetwork(ip))
                             return True
                 return False

kallithea/lib/base.py

0 +1 -2

             # -*- coding: utf-8 -*-
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU General Public License as published by
             # the Free Software Foundation, either version 3 of the License, or
             # (at your option) any later version.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             """
             kallithea.lib.base
             ~~~~~~~~~~~~~~~~~~
             The base Controller API
             Provides the BaseController class for subclassing. And usage in different
             controllers
             This file was forked by the Kallithea project in July 2014.
             Original author and date, and relevant copyright and licensing information is below:
             :created_on: Oct 06, 2010
             :author: marcink
             :copyright: (c) 2013 RhodeCode GmbH, and others.
             :license: GPLv3, see LICENSE.md for more details.
             """
             import datetime
             import logging
             import time
             import traceback
             import webob.exc
             import paste.httpexceptions
             import paste.auth.basic
             import paste.httpheaders
             from pylons import config, tmpl_context as c, request, session, url
             from pylons.controllers import WSGIController
-            from pylons.controllers.util import redirect
             from pylons.templating import render_mako as render  # don't remove this import
             from pylons.i18n.translation import _
             from kallithea import __version__, BACKENDS
             from kallithea.lib.utils2 import str2bool, safe_unicode, AttributeDict,\
                 safe_str, safe_int
             from kallithea.lib import auth_modules
             from kallithea.lib.auth import AuthUser, HasPermissionAnyMiddleware
             from kallithea.lib.utils import get_repo_slug
             from kallithea.lib.exceptions import UserCreationError
             from kallithea.lib.vcs.exceptions import RepositoryError, EmptyRepositoryError, ChangesetDoesNotExistError
             from kallithea.model import meta
             from kallithea.model.db import Repository, Ui, User, Setting
             from kallithea.model.notification import NotificationModel
             from kallithea.model.scm import ScmModel
             from kallithea.model.pull_request import PullRequestModel
             log = logging.getLogger(__name__)
             def _filter_proxy(ip):
                 """
                 HEADERS can have multiple ips inside the left-most being the original
                 client, and each successive proxy that passed the request adding the IP
                 address where it received the request from.
                 :param ip:
                 """
                 if ',' in ip:
                     _ips = ip.split(',')
                     _first_ip = _ips[0].strip()
                     log.debug('Got multiple IPs %s, using %s', ','.join(_ips), _first_ip)
                     return _first_ip
                 return ip
             def _get_ip_addr(environ):
                 proxy_key = 'HTTP_X_REAL_IP'
                 proxy_key2 = 'HTTP_X_FORWARDED_FOR'
                 def_key = 'REMOTE_ADDR'
                 ip = environ.get(proxy_key)
                 if ip:
                     return _filter_proxy(ip)
                 ip = environ.get(proxy_key2)
                 if ip:
                     return _filter_proxy(ip)
                 ip = environ.get(def_key, '0.0.0.0')
                 return _filter_proxy(ip)
             def _get_access_path(environ):
                 path = environ.get('PATH_INFO')
                 org_req = environ.get('pylons.original_request')
                 if org_req:
                     path = org_req.environ.get('PATH_INFO')
                 return path
             def log_in_user(user, remember, is_external_auth):
                 """
                 Log a `User` in and update session and cookies. If `remember` is True,
                 the session cookie is set to expire in a year; otherwise, it expires at
                 the end of the browser session.
                 Returns populated `AuthUser` object.
                 """
                 user.update_lastlogin()
                 meta.Session().commit()
                 auth_user = AuthUser(dbuser=user,
                                      is_external_auth=is_external_auth)
                 auth_user.set_authenticated()
                 # Start new session to prevent session fixation attacks.
                 session.invalidate()
                 session['authuser'] = cookie = auth_user.to_cookie()
                 # If they want to be remembered, update the cookie.
                 # NOTE: Assumes that beaker defaults to browser session cookie.
                 if remember:
                     t = datetime.datetime.now() + datetime.timedelta(days=365)
                     session._set_cookie_expires(t)
                 session.save()
                 log.info('user %s is now authenticated and stored in '
                          'session, session attrs %s', user.username, cookie)
                 # dumps session attrs back to cookie
                 session._update_cookie_out()
                 return auth_user
             class BasicAuth(paste.auth.basic.AuthBasicAuthenticator):
                 def __init__(self, realm, authfunc, auth_http_code=None):
                     self.realm = realm
                     self.authfunc = authfunc
                     self._rc_auth_http_code = auth_http_code
                 def build_authentication(self):
                     head = paste.httpheaders.WWW_AUTHENTICATE.tuples('Basic realm="%s"' % self.realm)
                     if self._rc_auth_http_code and self._rc_auth_http_code == '403':
                         # return 403 if alternative http return code is specified in
                         # Kallithea config
                         return paste.httpexceptions.HTTPForbidden(headers=head)
                     return paste.httpexceptions.HTTPUnauthorized(headers=head)
                 def authenticate(self, environ):
                     authorization = paste.httpheaders.AUTHORIZATION(environ)
                     if not authorization:
                         return self.build_authentication()
                     (authmeth, auth) = authorization.split(' ', 1)
                     if 'basic' != authmeth.lower():
                         return self.build_authentication()
                     auth = auth.strip().decode('base64')
                     _parts = auth.split(':', 1)
                     if len(_parts) == 2:
                         username, password = _parts
                         if self.authfunc(username, password, environ) is not None:
                             return username
                     return self.build_authentication()
                 __call__ = authenticate
             class BaseVCSController(object):
                 def __init__(self, application, config):
                     self.application = application
                     self.config = config
                     # base path of repo locations
                     self.basepath = self.config['base_path']
                     # authenticate this VCS request using the authentication modules
                     self.authenticate = BasicAuth('', auth_modules.authenticate,
                                                   config.get('auth_ret_code'))
                     self.ip_addr = '0.0.0.0'
                 def _handle_request(self, environ, start_response):
                     raise NotImplementedError()
                 def _get_by_id(self, repo_name):
                     """
                     Gets a special pattern _<ID> from clone url and tries to replace it
                     with a repository_name for support of _<ID> permanent URLs
                     :param repo_name:
                     """
                     data = repo_name.split('/')
                     if len(data) >= 2:
                         from kallithea.lib.utils import get_repo_by_id
                         by_id_match = get_repo_by_id(repo_name)
                         if by_id_match:
                             data[1] = by_id_match
                     return '/'.join(data)
                 def _invalidate_cache(self, repo_name):
                     """
                     Sets cache for this repository for invalidation on next access
                     :param repo_name: full repo name, also a cache key
                     """
                     ScmModel().mark_for_invalidation(repo_name)
                 def _check_permission(self, action, user, repo_name, ip_addr=None):
                     """
                     Checks permissions using action (push/pull) user and repository
                     name
                     :param action: push or pull action
                     :param user: `User` instance
                     :param repo_name: repository name
                     """
                     # check IP
                     ip_allowed = AuthUser.check_ip_allowed(user, ip_addr)
                     if ip_allowed:
                         log.info('Access for IP:%s allowed', ip_addr)
                     else:
                         return False
                     if action == 'push':
                         if not HasPermissionAnyMiddleware('repository.write',
                                                           'repository.admin')(user,
                                                                               repo_name):
                             return False
                     else:
                         #any other action need at least read permission
                         if not HasPermissionAnyMiddleware('repository.read',
                                                           'repository.write',
                                                           'repository.admin')(user,
                                                                               repo_name):
                             return False
                     return True
                 def _get_ip_addr(self, environ):
                     return _get_ip_addr(environ)
                 def _check_ssl(self, environ):
                     """
                     Checks the SSL check flag and returns False if SSL is not present
                     and required True otherwise
                     """
                     #check if we have SSL required  ! if not it's a bad request !
                     if str2bool(Ui.get_by_key('push_ssl').ui_value):
                         org_proto = environ.get('wsgi._org_proto', environ['wsgi.url_scheme'])
                         if org_proto != 'https':
                             log.debug('proto is %s and SSL is required BAD REQUEST !',
                                       org_proto)
                             return False
                     return True
                 def _check_locking_state(self, environ, action, repo, user_id):
                     """
                     Checks locking on this repository, if locking is enabled and lock is
                     present returns a tuple of make_lock, locked, locked_by.
                     make_lock can have 3 states None (do nothing) True, make lock
                     False release lock, This value is later propagated to hooks, which
                     do the locking. Think about this as signals passed to hooks what to do.
                     """
                     locked = False  # defines that locked error should be thrown to user
                     make_lock = None
                     repo = Repository.get_by_repo_name(repo)
                     user = User.get(user_id)
                     # this is kind of hacky, but due to how mercurial handles client-server
                     # server see all operation on changeset; bookmarks, phases and
                     # obsolescence marker in different transaction, we don't want to check
                     # locking on those
                     obsolete_call = environ['QUERY_STRING'] in ['cmd=listkeys',]
                     locked_by = repo.locked
                     if repo and repo.enable_locking and not obsolete_call:
                         if action == 'push':
                             #check if it's already locked !, if it is compare users
                             user_id, _date = repo.locked
                             if user.user_id == user_id:
                                 log.debug('Got push from user %s, now unlocking', user)
                                 # unlock if we have push from user who locked
                                 make_lock = False
                             else:
                                 # we're not the same user who locked, ban with 423 !
                                 locked = True
                         if action == 'pull':
                             if repo.locked[0] and repo.locked[1]:
                                 locked = True
                             else:
                                 log.debug('Setting lock on repo %s by %s', repo, user)
                                 make_lock = True
                     else:
                         log.debug('Repository %s do not have locking enabled', repo)
                     log.debug('FINAL locking values make_lock:%s,locked:%s,locked_by:%s',
                               make_lock, locked, locked_by)
                     return make_lock, locked, locked_by
                 def __call__(self, environ, start_response):
                     start = time.time()
                     try:
                         return self._handle_request(environ, start_response)
                     finally:
                         log = logging.getLogger('kallithea.' + self.__class__.__name__)
                         log.debug('Request time: %.3fs', time.time() - start)
                         meta.Session.remove()
             class BaseController(WSGIController):
                 def __before__(self):
                     """
                     __before__ is called before controller methods and after __call__
                     """
                     c.kallithea_version = __version__
                     rc_config = Setting.get_app_settings()
                     # Visual options
                     c.visual = AttributeDict({})
                     ## DB stored
                     c.visual.show_public_icon = str2bool(rc_config.get('show_public_icon'))
                     c.visual.show_private_icon = str2bool(rc_config.get('show_private_icon'))
                     c.visual.stylify_metatags = str2bool(rc_config.get('stylify_metatags'))
                     c.visual.dashboard_items = safe_int(rc_config.get('dashboard_items', 100))
                     c.visual.admin_grid_items = safe_int(rc_config.get('admin_grid_items', 100))
                     c.visual.repository_fields = str2bool(rc_config.get('repository_fields'))
                     c.visual.show_version = str2bool(rc_config.get('show_version'))
                     c.visual.use_gravatar = str2bool(rc_config.get('use_gravatar'))
                     c.visual.gravatar_url = rc_config.get('gravatar_url')
                     c.ga_code = rc_config.get('ga_code')
                     # TODO: replace undocumented backwards compatibility hack with db upgrade and rename ga_code
                     if c.ga_code and '<' not in c.ga_code:
                         c.ga_code = '''<script type="text/javascript">
                             var _gaq = _gaq || [];
                             _gaq.push(['_setAccount', '%s']);
                             _gaq.push(['_trackPageview']);
                             (function() {
                                 var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
                                 ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
                                 var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
                                 })();
                         </script>''' % c.ga_code
                     c.site_name = rc_config.get('title')
                     c.clone_uri_tmpl = rc_config.get('clone_uri_tmpl')
                     ## INI stored
                     c.visual.allow_repo_location_change = str2bool(config.get('allow_repo_location_change', True))
                     c.visual.allow_custom_hooks_settings = str2bool(config.get('allow_custom_hooks_settings', True))
                     c.instance_id = config.get('instance_id')
                     c.issues_url = config.get('bugtracker', url('issues_url'))
                     # END CONFIG VARS
                     c.repo_name = get_repo_slug(request)  # can be empty
                     c.backends = BACKENDS.keys()
                     c.unread_notifications = NotificationModel()\
                                     .get_unread_cnt_for_user(c.authuser.user_id)
                     self.cut_off_limit = safe_int(config.get('cut_off_limit'))
                     c.my_pr_count = PullRequestModel().get_pullrequest_cnt_for_user(c.authuser.user_id)
                     self.sa = meta.Session
                     self.scm_model = ScmModel(self.sa)
                 @staticmethod
                 def _determine_auth_user(api_key, session_authuser):
                     """
                     Create an `AuthUser` object given the API key (if any) and the
                     value of the authuser session cookie.
                     """
                     # Authenticate by API key
                     if api_key:
                         # when using API_KEY we are sure user exists.
                         return AuthUser(dbuser=User.get_by_api_key(api_key),
                                         is_external_auth=True)
                     # Authenticate by session cookie
                     # In ancient login sessions, 'authuser' may not be a dict.
                     # In that case, the user will have to log in again.
                     if isinstance(session_authuser, dict):
                         try:
                             return AuthUser.from_cookie(session_authuser)
                         except UserCreationError as e:
                             # container auth or other auth functions that create users on
                             # the fly can throw UserCreationError to signal issues with
                             # user creation. Explanation should be provided in the
                             # exception object.
                             from kallithea.lib import helpers as h
                             h.flash(e, 'error', logf=log.error)
                     # Authenticate by auth_container plugin (if enabled)
                     if any(
                         auth_modules.importplugin(name).is_container_auth
                         for name in Setting.get_auth_plugins()
                     ):
                         try:
                             user_info = auth_modules.authenticate('', '', request.environ)
                         except UserCreationError as e:
                             from kallithea.lib import helpers as h
                             h.flash(e, 'error', logf=log.error)
                         else:
                             if user_info is not None:
                                 username = user_info['username']
                                 user = User.get_by_username(username, case_insensitive=True)
                                 return log_in_user(user, remember=False,
                                                    is_external_auth=True)
                     # User is anonymous
                     return AuthUser()
                 def __call__(self, environ, start_response):
                     """Invoke the Controller"""
                     # WSGIController.__call__ dispatches to the Controller method
                     # the request is routed to. This routing information is
                     # available in environ['pylons.routes_dict']
                     try:
                         self.ip_addr = _get_ip_addr(environ)
                         # make sure that we update permissions each time we call controller
                         #set globals for auth user
                         self.authuser = c.authuser = request.user = self._determine_auth_user(
                             request.GET.get('api_key'),
                             session.get('authuser'),
                         )
                         log.info('IP: %s User: %s accessed %s',
                             self.ip_addr, self.authuser,
                             safe_unicode(_get_access_path(environ)),
                         )
                         return WSGIController.__call__(self, environ, start_response)
                     finally:
                         meta.Session.remove()
             class BaseRepoController(BaseController):
                 """
                 Base class for controllers responsible for loading all needed data for
                 repository loaded items are
                 c.db_repo_scm_instance: instance of scm repository
                 c.db_repo: instance of db
                 c.repository_followers: number of followers
                 c.repository_forks: number of forks
                 c.repository_following: weather the current user is following the current repo
                 """
                 def __before__(self):
                     super(BaseRepoController, self).__before__()
                     if c.repo_name:  # extracted from routes
                         _dbr = Repository.get_by_repo_name(c.repo_name)
                         if not _dbr:
                             return
                         log.debug('Found repository in database %s with state `%s`',
                                   safe_unicode(_dbr), safe_unicode(_dbr.repo_state))
                         route = getattr(request.environ.get('routes.route'), 'name', '')
                         # allow to delete repos that are somehow damages in filesystem
                         if route in ['delete_repo']:
                             return
                         if _dbr.repo_state in [Repository.STATE_PENDING]:
                             if route in ['repo_creating_home']:
                                 return
                             check_url = url('repo_creating_home', repo_name=c.repo_name)
-                            return redirect(check_url)
+                            raise webob.exc.HTTPFound(location=check_url)
                         dbr = c.db_repo = _dbr
                         c.db_repo_scm_instance = c.db_repo.scm_instance
                         if c.db_repo_scm_instance is None:
                             log.error('%s this repository is present in database but it '
                                       'cannot be created as an scm instance', c.repo_name)
                             from kallithea.lib import helpers as h
                             h.flash(h.literal(_('Repository not found in the filesystem')),
                                     category='error')
                             raise paste.httpexceptions.HTTPNotFound()
                         # some globals counter for menu
                         c.repository_followers = self.scm_model.get_followers(dbr)
                         c.repository_forks = self.scm_model.get_forks(dbr)
                         c.repository_pull_requests = self.scm_model.get_pull_requests(dbr)
                         c.repository_following = self.scm_model.is_following_repo(
                                                 c.repo_name, self.authuser.user_id)
                 @staticmethod
                 def _get_ref_rev(repo, ref_type, ref_name, returnempty=False):
                     """
                     Safe way to get changeset. If error occurs show error.
                     """
                     from kallithea.lib import helpers as h
                     try:
                         return repo.scm_instance.get_ref_revision(ref_type, ref_name)
                     except EmptyRepositoryError as e:
                         if returnempty:
                             return repo.scm_instance.EMPTY_CHANGESET
                         h.flash(h.literal(_('There are no changesets yet')),
                                 category='error')
                         raise webob.exc.HTTPNotFound()
                     except ChangesetDoesNotExistError as e:
                         h.flash(h.literal(_('Changeset not found')),
                                 category='error')
                         raise webob.exc.HTTPNotFound()
                     except RepositoryError as e:
                         log.error(traceback.format_exc())
                         h.flash(safe_str(e), category='error')
                         raise webob.exc.HTTPBadRequest()
             class WSGIResultCloseCallback(object):
                 """Wrap a WSGI result and let close call close after calling the
                 close method on the result.
                 """
                 def __init__(self, result, close):
                     self._result = result
                     self._close = close
                 def __iter__(self):
                     return iter(self._result)
                 def close(self):
                     if hasattr(self._result, 'close'):
                         self._result.close()
                     self._close()

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages