##// END OF EJS Templates
When using apply to children flag in repo group permission...
When using apply to children flag in repo group permission change prompt, RhodeCode only applied this to user groups if repository was private. Only thing that shouldn't be allowed is to change the DEFAULT user permission when repository is private.

File last commit:

r3700:3563bb7b merge default
r3974:39798d53 default
Show More
repo_permission.py
103 lines | 3.8 KiB | text/x-python | PythonLexer
# -*- coding: utf-8 -*-
"""
rhodecode.model.users_group
~~~~~~~~~~~~~~~~~~~~~~~~~~~
repository permission model for RhodeCode
:created_on: Oct 1, 2011
:author: nvinot, marcink
:copyright: (C) 2011-2011 Nicolas Vinot <aeris@imirhil.fr>
:copyright: (C) 2011-2012 Marcin Kuzminski <marcin@python-works.com>
:license: GPLv3, see COPYING for more details.
"""
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
import logging
from rhodecode.model import BaseModel
from rhodecode.model.db import UserRepoToPerm, UserGroupRepoToPerm, \
Permission
log = logging.getLogger(__name__)
class RepositoryPermissionModel(BaseModel):
cls = UserRepoToPerm
def get_user_permission(self, repository, user):
repository = self._get_repo(repository)
user = self._get_user(user)
return UserRepoToPerm.query() \
.filter(UserRepoToPerm.user == user) \
.filter(UserRepoToPerm.repository == repository) \
.scalar()
def update_user_permission(self, repository, user, permission):
permission = Permission.get_by_key(permission)
current = self.get_user_permission(repository, user)
if current:
if not current.permission is permission:
current.permission = permission
else:
p = UserRepoToPerm()
p.user = user
p.repository = repository
p.permission = permission
self.sa.add(p)
def delete_user_permission(self, repository, user):
current = self.get_user_permission(repository, user)
if current:
self.sa.delete(current)
def get_users_group_permission(self, repository, users_group):
return UserGroupRepoToPerm.query() \
.filter(UserGroupRepoToPerm.users_group == users_group) \
.filter(UserGroupRepoToPerm.repository == repository) \
.scalar()
def update_users_group_permission(self, repository, users_group,
permission):
permission = Permission.get_by_key(permission)
current = self.get_users_group_permission(repository, users_group)
if current:
if not current.permission is permission:
current.permission = permission
else:
p = UserGroupRepoToPerm()
p.users_group = users_group
p.repository = repository
p.permission = permission
self.sa.add(p)
def delete_users_group_permission(self, repository, users_group):
current = self.get_users_group_permission(repository, users_group)
if current:
self.sa.delete(current)
def update_or_delete_user_permission(self, repository, user, permission):
if permission:
self.update_user_permission(repository, user, permission)
else:
self.delete_user_permission(repository, user)
def update_or_delete_users_group_permission(self, repository, user_group,
permission):
if permission:
self.update_users_group_permission(repository, user_group,
permission)
else:
self.delete_users_group_permission(repository, user_group)