##// END OF EJS Templates
security bugfix simplehg wasn't checking for permissions on remote commands different than pull or push.
security bugfix simplehg wasn't checking for permissions on remote commands different than pull or push.

File last commit:

r547:1e757ac9 default
r605:72bed562 default
Show More
user_model.py
138 lines | 4.5 KiB | text/x-python | PythonLexer
#!/usr/bin/env python
# encoding: utf-8
# Model for users
# Copyright (C) 2009-2010 Marcin Kuzminski <marcin@python-works.com>
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; version 2
# of the License or (at your opinion) any later version of the license.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
# MA 02110-1301, USA.
"""
Created on April 9, 2010
Model for users
@author: marcink
"""
from rhodecode.lib import auth
from pylons.i18n.translation import _
from rhodecode.lib.celerylib import tasks, run_task
from rhodecode.model.db import User
from rhodecode.model.meta import Session
import traceback
import logging
log = logging.getLogger(__name__)
class DefaultUserException(Exception):pass
class UserModel(object):
def __init__(self, sa=None):
if not sa:
self.sa = Session()
else:
self.sa = sa
def get_default(self):
return self.sa.query(User).filter(User.username == 'default').scalar()
def get_user(self, id):
return self.sa.query(User).get(id)
def get_user_by_name(self, name):
return self.sa.query(User).filter(User.username == name).scalar()
def create(self, form_data):
try:
new_user = User()
for k, v in form_data.items():
setattr(new_user, k, v)
self.sa.add(new_user)
self.sa.commit()
except:
log.error(traceback.format_exc())
self.sa.rollback()
raise
def create_registration(self, form_data):
try:
new_user = User()
for k, v in form_data.items():
if k != 'admin':
setattr(new_user, k, v)
self.sa.add(new_user)
self.sa.commit()
except:
log.error(traceback.format_exc())
self.sa.rollback()
raise
def update(self, uid, form_data):
try:
new_user = self.sa.query(User).get(uid)
if new_user.username == 'default':
raise DefaultUserException(
_("You can't Edit this user since it's"
" crucial for entire application"))
for k, v in form_data.items():
if k == 'new_password' and v != '':
new_user.password = v
else:
setattr(new_user, k, v)
self.sa.add(new_user)
self.sa.commit()
except:
log.error(traceback.format_exc())
self.sa.rollback()
raise
def update_my_account(self, uid, form_data):
try:
new_user = self.sa.query(User).get(uid)
if new_user.username == 'default':
raise DefaultUserException(
_("You can't Edit this user since it's"
" crucial for entire application"))
for k, v in form_data.items():
if k == 'new_password' and v != '':
new_user.password = v
else:
if k not in ['admin', 'active']:
setattr(new_user, k, v)
self.sa.add(new_user)
self.sa.commit()
except:
log.error(traceback.format_exc())
self.sa.rollback()
raise
def delete(self, id):
try:
user = self.sa.query(User).get(id)
if user.username == 'default':
raise DefaultUserException(
_("You can't remove this user since it's"
" crucial for entire application"))
self.sa.delete(user)
self.sa.commit()
except:
log.error(traceback.format_exc())
self.sa.rollback()
raise
def reset_password(self, data):
run_task(tasks.reset_user_password, data['email'])