kallithea Files · rhodecode/model/permission

Files @ dd532af216d9

Branch filter:

Location: kallithea/rhodecode/model/permission_model.py - annotation

dd532af216d9 3.9 KiB text/x-python Show Source Show as Raw Download as Raw

Marcin Kuzminski

#49 Enabled anonymous access for web interface controllable from permissions pannel

1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
7e536d1af60d
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
7e536d1af60d
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
dd532af216d9
dd532af216d9
dd532af216d9
7e536d1af60d
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
dd532af216d9
dd532af216d9
1e757ac98988
7e536d1af60d
1e757ac98988
dd532af216d9
dd532af216d9
1e757ac98988
7e536d1af60d
1e757ac98988
dd532af216d9
dd532af216d9
1e757ac98988
1e757ac98988
1e757ac98988
dd532af216d9
dd532af216d9
dd532af216d9
dd532af216d9
1e757ac98988
7e536d1af60d
dd532af216d9
dd532af216d9
dd532af216d9
dd532af216d9
dd532af216d9
dd532af216d9
1e757ac98988
1e757ac98988
1e757ac98988
1e757ac98988
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d
7e536d1af60d

#!/usr/bin/env python
# encoding: utf-8
# Model for permissions
# Copyright (C) 2009-2010 Marcin Kuzminski <marcin@python-works.com>

# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; version 2
# of the License or (at your opinion) any later version of the license.
# 
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
# 
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
# MA  02110-1301, USA.
"""
Created on Aug 20, 2010
Model for permissions
@author: marcink
"""

from rhodecode.model.db import User, Permission, UserToPerm, RepoToPerm
from rhodecode.model.caching_query import FromCache
from rhodecode.model.meta import Session
import logging
import traceback
log = logging.getLogger(__name__)


class PermissionModel(object):

    def __init__(self, sa=None):
        if not sa:
            self.sa = Session()
        else:
            self.sa = sa

    def get_permission(self, permission_id, cache=False):
        perm = self.sa.query(Permission)
        if cache:
            perm = perm.options(FromCache("sql_cache_short",
                                          "get_permission_%s" % permission_id))
        return perm.get(permission_id)

    def get_permission_by_name(self, name, cache=False):
        perm = self.sa.query(Permission)\
            .filter(Permission.permission_name == name)
        if cache:
            perm = perm.options(FromCache("sql_cache_short",
                                          "get_permission_%s" % name))
        return perm.scalar()

    def update(self, form_result):
        perm_user = self.sa.query(User)\
                .filter(User.username == form_result['perm_user_name']).scalar()
        u2p = self.sa.query(UserToPerm).filter(UserToPerm.user == perm_user).all()
        if len(u2p) != 3:
            raise Exception('Defined: %s should be 3  permissions for default'
                            ' user. This should not happen please verify'
                            ' your database' % len(u2p))

        try:
            #stage 1 change defaults    
            for p in u2p:
                if p.permission.permission_name.startswith('repository.'):
                    p.permission = self.get_permission_by_name(
                                       form_result['default_perm'])
                    self.sa.add(p)

                if p.permission.permission_name.startswith('hg.register.'):
                    p.permission = self.get_permission_by_name(
                                       form_result['default_register'])
                    self.sa.add(p)

                if p.permission.permission_name.startswith('hg.create.'):
                    p.permission = self.get_permission_by_name(
                                        form_result['default_create'])
                    self.sa.add(p)
            #stage 2 update all default permissions for repos if checked
            if form_result['overwrite_default'] == 'true':
                for r2p in self.sa.query(RepoToPerm)\
                               .filter(RepoToPerm.user == perm_user).all():
                    r2p.permission = self.get_permission_by_name(
                                         form_result['default_perm'])
                    self.sa.add(r2p)

            #stage 3 set anonymous access
            if perm_user.username == 'default':
                perm_user.active = bool(form_result['anonymous'])
                self.sa.add(perm_user)


            self.sa.commit()
        except:
            log.error(traceback.format_exc())
            self.sa.rollback()
            raise