belonging to user with admin rights

INPUT::

    api_key : "<api_key>"

    method :  "create_users_group"

    args:     {

                "group_name":  "<groupname>",

                "active":"<bool> = True"

              }

OUTPUT::

    result: {

              "id":  "<newusersgroupid>",

              "msg": "created new users group <groupname>"

            }

    error:  null

add_user_to_users_group

-----------------------

belonging to user with admin rights

INPUT::

    api_key : "<api_key>"

    method :  "add_user_users_group"

    args:     {

                "group_name" :  "<groupname>",

                "username" :   "<username>"

              }

OUTPUT::

    result: {

              "id":  "<newusersgroupmemberid>",

            }

    error:  null

get_repo

--------

Gets an existing repository. This command can be executed only using api_key

belonging to user with admin rights

INPUT::

    api_key : "<api_key>"

    method :  "get_repo"

    args:     {

                "repo_name" : "<reponame>"

              }

OUTPUT::

    result: None if repository does not exist or

            {

                "id" :          "<id>",

        :param user:

        :param repo_name:

        """

        if Repository.is_valid(repo_name) is False:

            raise JSONRPCError('Unknown repo "%s"' % repo_name)

        try:

            ScmModel().pull_changes(repo_name, self.rhodecode_user.username)

            return 'Pulled from %s' % repo_name

        except Exception:

            raise JSONRPCError('Unable to pull changes from "%s"' % repo_name)

    @HasPermissionAllDecorator('hg.admin')

    def get_user(self, apiuser, username):

        """"

        Get a user by username

        :param apiuser:

        :param username:

        """

        user = User.get_by_username(username)

        return dict(

            id=user.user_id,

            username=user.username,

            firstname=user.name,

            lastname=user.lastname,

            email=user.email,

            active=user.active,

            admin=user.admin,

            ldap=user.ldap_dn

        )

    @HasPermissionAllDecorator('hg.admin')

    def get_users(self, apiuser):

        """"

        Get all users

        :param apiuser:

        """

        result = []

        for user in User.getAll():

            result.append(

                dict(

        try:

            ug = UsersGroupModel().create(name=group_name, active=active)

            Session.commit()

            return dict(id=ug.users_group_id,

                        msg='created new users group %s' % group_name)

        except Exception:

            log.error(traceback.format_exc())

            raise JSONRPCError('failed to create group %s' % group_name)

    @HasPermissionAllDecorator('hg.admin')

    def add_user_to_users_group(self, apiuser, group_name, username):

        """"

        Add a user to a group

        :param apiuser:

        :param group_name:

        :param username:

        """

        try:

            users_group = UsersGroup.get_by_group_name(group_name)

            if not users_group:

                raise JSONRPCError('unknown users group %s' % group_name)

                user = User.get_by_username(username)

                raise JSONRPCError('unknown user %s' % username)

            ugm = UsersGroupModel().add_user_to_group(users_group, user)

            Session.commit()

        except Exception:

            log.error(traceback.format_exc())

    @HasPermissionAnyDecorator('hg.admin')

    def get_repo(self, apiuser, repo_name):

        """"

        Get repository by name

        :param apiuser:

        :param repo_name:

        """

        repo = Repository.get_by_repo_name(repo_name)

        if repo is None:

            raise JSONRPCError('unknown repository %s' % repo)

        members = []

        for user in repo.repo_to_perm:

            perm = user.permission.permission_name

            user = user.user

            members.append(

                dict(

                    type_="user",

                    id=user.user_id,

                    username=user.username,

                    firstname=user.name,

                'files': _f,

                'dirs': _d,

            }

            return _map[ret_type]

        except KeyError:

            raise JSONRPCError('ret_type must be one of %s' % _map.keys())

        except Exception, e:

            raise JSONRPCError(e)

    @HasPermissionAnyDecorator('hg.admin', 'hg.create.repository')

    def create_repo(self, apiuser, repo_name, owner_name, description='',

                    repo_type='hg', private=False):

        """

        Create a repository

        :param apiuser:

        :param repo_name:

        :param description:

        :param type:

        :param private:

        :param owner_name:

        """

        try:

                owner = User.get_by_username(owner_name)

            if Repository.get_by_repo_name(repo_name):

                raise JSONRPCError("repo %s already exist" % repo_name)

            groups = repo_name.split('/')

            real_name = groups[-1]

            groups = groups[:-1]

            parent_id = None

            for g in groups:

                group = RepoGroup.get_by_group_name(g)

                if not group:

                    group = ReposGroupModel().create(g, '', parent_id)

                parent_id = group.group_id

            repo = RepoModel().create(

                dict(

                    repo_name=real_name,

                    repo_name_full=repo_name,

                    description=description,

                    private=private,

                    repo_type=repo_type,

                    repo_group=parent_id,

                    clone_uri=None

                ),

    :created_on: Oct 1, 2011

    :author: nvinot

    :copyright: (C) 2011-2011 Nicolas Vinot <aeris@imirhil.fr>

    :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>

    :license: GPLv3, see COPYING for more details.

"""

# This program is free software: you can redistribute it and/or modify

# it under the terms of the GNU General Public License as published by

# the Free Software Foundation, either version 3 of the License, or

# (at your option) any later version.

#

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

#

# You should have received a copy of the GNU General Public License

# along with this program.  If not, see <http://www.gnu.org/licenses/>.

import logging

import traceback

from rhodecode.model import BaseModel

from rhodecode.model.db import UsersGroupMember, UsersGroup,\

from rhodecode.lib.exceptions import UsersGroupsAssignedException

log = logging.getLogger(__name__)

class UsersGroupModel(BaseModel):

    def __get_users_group(self, users_group):

        return self._get_instance(UsersGroup, users_group,

                                  callback=UsersGroup.get_by_group_name)

    def __get_perm(self, permission):

        return self._get_instance(Permission, permission,

                                  callback=Permission.get_by_key)

    def get(self, users_group_id, cache=False):

        return UsersGroup.get(users_group_id)

    def get_by_name(self, name, cache=False, case_insensitive=False):

        return UsersGroup.get_by_group_name(name, cache, case_insensitive)

    def create(self, name, active=True):

        try:

            new = UsersGroup()

            new.users_group_name = name

            new.users_group_active = active

            self.sa.add(new)

            return new

        except:

            log.error(traceback.format_exc())

            raise

        Deletes repos group, unless force flag is used

        raises exception if there are members in that group, else deletes

        group and users

        :param users_group:

        :param force:

        """

        try:

            users_group = self.__get_users_group(users_group)

            # check if this group is not assigned to repo

            assigned_groups = UsersGroupRepoToPerm.query()\

                .filter(UsersGroupRepoToPerm.users_group == users_group).all()

            if assigned_groups and force is False:

                raise UsersGroupsAssignedException('RepoGroup assigned to %s' %

                                                   assigned_groups)

            self.sa.delete(users_group)

        except:

            log.error(traceback.format_exc())

            raise

    def add_user_to_group(self, users_group, user):

        for m in users_group.members:

            u = m.user

            if u.user_id == user.user_id:

        try:

            users_group_member = UsersGroupMember()

            users_group_member.user = user

            users_group_member.users_group = users_group

            users_group.members.append(users_group_member)

            user.group_member.append(users_group_member)

            self.sa.add(users_group_member)

            return users_group_member

        except:

            log.error(traceback.format_exc())

            raise

    def has_perm(self, users_group, perm):

        users_group = self.__get_users_group(users_group)

        perm = self.__get_perm(perm)

        return UsersGroupToPerm.query()\

            .filter(UsersGroupToPerm.users_group == users_group)\

            .filter(UsersGroupToPerm.permission == perm).scalar() is not None

    def grant_perm(self, users_group, perm):

        if not isinstance(perm, Permission):

            raise Exception('perm needs to be an instance of Permission class')

        users_group = self.__get_users_group(users_group)

        new = UsersGroupToPerm()

        new.users_group = users_group

        new.permission = perm

        self.sa.add(new)

    def revoke_perm(self, users_group, perm):

        users_group = self.__get_users_group(users_group)

        perm = self.__get_perm(perm)

        obj = UsersGroupToPerm.query()\