Changeset - 5706f6ab60cf
Parent rev.
Child rev.
[Not reviewed]
beta
0 7 0
Mads Kiilerich - 13 years ago 2013-02-27 17:18:41
madski@unity3d.com
follow-up on texts missing from 'users groups'/'repositories group' cleanup
7 files changed with 15 insertions and 15 deletions:
docs/changelog.rst
1
1
rhodecode/config/routing.py
1
1
rhodecode/model/db.py
4
4
rhodecode/model/repos_group.py
5
5
rhodecode/model/validators.py
2
2
rhodecode/templates/admin/permissions/permissions.html
1
1
rhodecode/templates/index_base.html
1
1
0 comments (0 inline, 0 general)
docs/changelog.rst
Show inline comments
 
@@ -511,25 +511,25 @@ fixes
 
+++++
 

			




	
	
	
		
 
- rewrote dbsession management for atomic operations, and better error handling

			




	
	
	
		
 
- fixed sorting of repo tables

			




	
	
	
		
 
- #326 escape of special html entities in diffs

			




	
	
	
		
 
- normalized user_name => username in api attributes

			




	
	
	
		
 
- fixes #298 ldap created users with mixed case emails created conflicts

			




	
	
	
		
 
  on saving a form

			




	
	
	
		
 
- fixes issue when owner of a repo couldn't revoke permissions for users

			




	
	
	
		
 
  and groups

			




	
	
	
		
 
- fixes #271 rare JSON serialization problem with statistics

			




	
	
	
		
 
- fixes #337 missing validation check for conflicting names of a group with a

			




	
	
	
		
 
  repositories group

			




	
	
	
		
 
  repository group

			




	
	
	
		
 
- #340 fixed session problem for mysql and celery tasks

			




	
	
	
		
 
- fixed #331 RhodeCode mangles repository names if the a repository group

			




	
	
	
		
 
  contains the "full path" to the repositories

			




	
	
	
		
 
- #355 RhodeCode doesn't store encrypted LDAP passwords

			




	
	
	
		
 

			




	
	
	
		
 
1.2.5 (**2012-01-28**)

			




	
	
	
		
 
----------------------

			




	
	
	
		
 

			




	
	
	
		
 
news

			




	
	
	
		
 
++++

			




	
	
	
		
 

			




	
	
	
		
 
fixes

			




        

    


    
    

    

        

                

                    rhodecode/config/routing.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -39,25 +39,25 @@ def make_map(config):

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            by_id = repo_name.split('_')

			




	
	
	
		
 
            if len(by_id) == 2 and by_id[1].isdigit() and by_id[0] == '':

			




	
	
	
		
 
                repo_name = Repository.get(by_id[1]).repo_name

			




	
	
	
		
 
                match_dict['repo_name'] = repo_name

			




	
	
	
		
 
        except:

			




	
	
	
		
 
            pass

			




	
	
	
		
 

			




	
	
	
		
 
        return is_valid_repo(repo_name, config['base_path'])

			




	
	
	
		
 

			




	
	
	
		
 
    def check_group(environ, match_dict):

			




	
	
	
		
 
        """

			




	
	
	
		
 
        check for valid repositories group for proper 404 handling

			




	
	
	
		
 
        check for valid repository group for proper 404 handling

			




	
	
	
		
 

			




	
	
	
		
 
        :param environ:

			




	
	
	
		
 
        :param match_dict:

			




	
	
	
		
 
        """

			




	
	
	
		
 
        repos_group_name = match_dict.get('group_name')

			




	
	
	
		
 
        return is_valid_repos_group(repos_group_name, config['base_path'])

			




	
	
	
		
 

			




	
	
	
		
 
    def check_int(environ, match_dict):

			




	
	
	
		
 
        return match_dict.get('id').isdigit()

			




	
	
	
		
 

			




	
	
	
		
 
    # The ErrorController route (handles 404/500 error pages); it should

			




	
	
	
		
 
    # likely stay at the top, ensuring it can always be resolved

			




        

    


    
    

    

        

                

                    rhodecode/model/db.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -1369,28 +1369,28 @@ class Permission(Base, BaseModel):

			




	
	
	
		
 
    __tablename__ = 'permissions'

			




	
	
	
		
 
    __table_args__ = (

			




	
	
	
		
 
        Index('p_perm_name_idx', 'permission_name'),

			




	
	
	
		
 
        {'extend_existing': True, 'mysql_engine': 'InnoDB',

			




	
	
	
		
 
         'mysql_charset': 'utf8'},

			




	
	
	
		
 
    )

			




	
	
	
		
 
    PERMS = [

			




	
	
	
		
 
        ('repository.none', _('Repository no access')),

			




	
	
	
		
 
        ('repository.read', _('Repository read access')),

			




	
	
	
		
 
        ('repository.write', _('Repository write access')),

			




	
	
	
		
 
        ('repository.admin', _('Repository admin access')),

			




	
	
	
		
 

			




	
	
	
		
 
        ('group.none', _('Repositories Group no access')),

			




	
	
	
		
 
        ('group.read', _('Repositories Group read access')),

			




	
	
	
		
 
        ('group.write', _('Repositories Group write access')),

			




	
	
	
		
 
        ('group.admin', _('Repositories Group admin access')),

			




	
	
	
		
 
        ('group.none', _('Repository group no access')),

			




	
	
	
		
 
        ('group.read', _('Repository group read access')),

			




	
	
	
		
 
        ('group.write', _('Repository group write access')),

			




	
	
	
		
 
        ('group.admin', _('Repository group admin access')),

			




	
	
	
		
 

			




	
	
	
		
 
        ('hg.admin', _('RhodeCode Administrator')),

			




	
	
	
		
 
        ('hg.create.none', _('Repository creation disabled')),

			




	
	
	
		
 
        ('hg.create.repository', _('Repository creation enabled')),

			




	
	
	
		
 
        ('hg.fork.none', _('Repository forking disabled')),

			




	
	
	
		
 
        ('hg.fork.repository', _('Repository forking enabled')),

			




	
	
	
		
 
        ('hg.register.none', _('Register disabled')),

			




	
	
	
		
 
        ('hg.register.manual_activate', _('Register new user with RhodeCode '

			




	
	
	
		
 
                                          'with manual activation')),

			




	
	
	
		
 

			




	
	
	
		
 
        ('hg.register.auto_activate', _('Register new user with RhodeCode '

			




	
	
	
		
 
                                        'with auto activation')),

			




        

    


    
    

    

        

                

                    rhodecode/model/repos_group.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -70,25 +70,25 @@ class ReposGroupModel(BaseModel):

			




	
	
	
		
 

			




	
	
	
		
 
        repo_group_to_perm.permission_id = self.sa.query(Permission)\

			




	
	
	
		
 
                .filter(Permission.permission_name == default_perm)\

			




	
	
	
		
 
                .one().permission_id

			




	
	
	
		
 

			




	
	
	
		
 
        repo_group_to_perm.group = new_group

			




	
	
	
		
 
        repo_group_to_perm.user_id = User.get_by_username('default').user_id

			




	
	
	
		
 

			




	
	
	
		
 
        self.sa.add(repo_group_to_perm)

			




	
	
	
		
 

			




	
	
	
		
 
    def __create_group(self, group_name):

			




	
	
	
		
 
        """

			




	
	
	
		
 
        makes repositories group on filesystem

			




	
	
	
		
 
        makes repository group on filesystem

			




	
	
	
		
 

			




	
	
	
		
 
        :param repo_name:

			




	
	
	
		
 
        :param parent_id:

			




	
	
	
		
 
        """

			




	
	
	
		
 

			




	
	
	
		
 
        create_path = os.path.join(self.repos_path, group_name)

			




	
	
	
		
 
        log.debug('creating new group in %s' % create_path)

			




	
	
	
		
 

			




	
	
	
		
 
        if os.path.isdir(create_path):

			




	
	
	
		
 
            raise Exception('That directory already exists !')

			




	
	
	
		
 

			




	
	
	
		
 
        os.makedirs(create_path)

			




	
	
		
 
@@ -318,25 +318,25 @@ class ReposGroupModel(BaseModel):

			




	
	
	
		
 
                elif obj_type == 'users_group':

			




	
	
	
		
 
                    RepoModel().revoke_users_group_permission(el, group_name=obj)

			




	
	
	
		
 
                else:

			




	
	
	
		
 
                    raise Exception('undefined object type %s' % obj_type)

			




	
	
	
		
 

			




	
	
	
		
 
            #if it's not recursive call

			




	
	
	
		
 
            # break the loop and don't proceed with other changes

			




	
	
	
		
 
            if not recursive:

			




	
	
	
		
 
                break

			




	
	
	
		
 

			




	
	
	
		
 
    def grant_user_permission(self, repos_group, user, perm):

			




	
	
	
		
 
        """

			




	
	
	
		
 
        Grant permission for user on given repositories group, or update

			




	
	
	
		
 
        Grant permission for user on given repository group, or update

			




	
	
	
		
 
        existing one if found

			




	
	
	
		
 

			




	
	
	
		
 
        :param repos_group: Instance of ReposGroup, repositories_group_id,

			




	
	
	
		
 
            or repositories_group name

			




	
	
	
		
 
        :param user: Instance of User, user_id or username

			




	
	
	
		
 
        :param perm: Instance of Permission, or permission_name

			




	
	
	
		
 
        """

			




	
	
	
		
 

			




	
	
	
		
 
        repos_group = self._get_repos_group(repos_group)

			




	
	
	
		
 
        user = self._get_user(user)

			




	
	
	
		
 
        permission = self._get_perm(perm)

			




	
	
	
		
 

			




	
	
		
 
@@ -347,45 +347,45 @@ class ReposGroupModel(BaseModel):

			




	
	
	
		
 
            .scalar()

			




	
	
	
		
 
        if obj is None:

			




	
	
	
		
 
            # create new !

			




	
	
	
		
 
            obj = UserRepoGroupToPerm()

			




	
	
	
		
 
        obj.group = repos_group

			




	
	
	
		
 
        obj.user = user

			




	
	
	
		
 
        obj.permission = permission

			




	
	
	
		
 
        self.sa.add(obj)

			




	
	
	
		
 
        log.debug('Granted perm %s to %s on %s' % (perm, user, repos_group))

			




	
	
	
		
 

			




	
	
	
		
 
    def revoke_user_permission(self, repos_group, user):

			




	
	
	
		
 
        """

			




	
	
	
		
 
        Revoke permission for user on given repositories group

			




	
	
	
		
 
        Revoke permission for user on given repository group

			




	
	
	
		
 

			




	
	
	
		
 
        :param repos_group: Instance of ReposGroup, repositories_group_id,

			




	
	
	
		
 
            or repositories_group name

			




	
	
	
		
 
        :param user: Instance of User, user_id or username

			




	
	
	
		
 
        """

			




	
	
	
		
 

			




	
	
	
		
 
        repos_group = self._get_repos_group(repos_group)

			




	
	
	
		
 
        user = self._get_user(user)

			




	
	
	
		
 

			




	
	
	
		
 
        obj = self.sa.query(UserRepoGroupToPerm)\

			




	
	
	
		
 
            .filter(UserRepoGroupToPerm.user == user)\

			




	
	
	
		
 
            .filter(UserRepoGroupToPerm.group == repos_group)\

			




	
	
	
		
 
            .scalar()

			




	
	
	
		
 
        if obj:

			




	
	
	
		
 
            self.sa.delete(obj)

			




	
	
	
		
 
            log.debug('Revoked perm on %s on %s' % (repos_group, user))

			




	
	
	
		
 

			




	
	
	
		
 
    def grant_users_group_permission(self, repos_group, group_name, perm):

			




	
	
	
		
 
        """

			




	
	
	
		
 
        Grant permission for user group on given repositories group, or update

			




	
	
	
		
 
        Grant permission for user group on given repository group, or update

			




	
	
	
		
 
        existing one if found

			




	
	
	
		
 

			




	
	
	
		
 
        :param repos_group: Instance of ReposGroup, repositories_group_id,

			




	
	
	
		
 
            or repositories_group name

			




	
	
	
		
 
        :param group_name: Instance of UserGroup, users_group_id,

			




	
	
	
		
 
            or user group name

			




	
	
	
		
 
        :param perm: Instance of Permission, or permission_name

			




	
	
	
		
 
        """

			




	
	
	
		
 
        repos_group = self._get_repos_group(repos_group)

			




	
	
	
		
 
        group_name = self.__get_users_group(group_name)

			




	
	
	
		
 
        permission = self._get_perm(perm)

			




	
	
	
		
 

			




	
	
		
 
@@ -398,25 +398,25 @@ class ReposGroupModel(BaseModel):

			




	
	
	
		
 
        if obj is None:

			




	
	
	
		
 
            # create new

			




	
	
	
		
 
            obj = UsersGroupRepoGroupToPerm()

			




	
	
	
		
 

			




	
	
	
		
 
        obj.group = repos_group

			




	
	
	
		
 
        obj.users_group = group_name

			




	
	
	
		
 
        obj.permission = permission

			




	
	
	
		
 
        self.sa.add(obj)

			




	
	
	
		
 
        log.debug('Granted perm %s to %s on %s' % (perm, group_name, repos_group))

			




	
	
	
		
 

			




	
	
	
		
 
    def revoke_users_group_permission(self, repos_group, group_name):

			




	
	
	
		
 
        """

			




	
	
	
		
 
        Revoke permission for user group on given repositories group

			




	
	
	
		
 
        Revoke permission for user group on given repository group

			




	
	
	
		
 

			




	
	
	
		
 
        :param repos_group: Instance of ReposGroup, repositories_group_id,

			




	
	
	
		
 
            or repositories_group name

			




	
	
	
		
 
        :param group_name: Instance of UserGroup, users_group_id,

			




	
	
	
		
 
            or user group name

			




	
	
	
		
 
        """

			




	
	
	
		
 
        repos_group = self._get_repos_group(repos_group)

			




	
	
	
		
 
        group_name = self.__get_users_group(group_name)

			




	
	
	
		
 

			




	
	
	
		
 
        obj = self.sa.query(UsersGroupRepoGroupToPerm)\

			




	
	
	
		
 
            .filter(UsersGroupRepoGroupToPerm.group == repos_group)\

			




	
	
	
		
 
            .filter(UsersGroupRepoGroupToPerm.users_group == group_name)\

			




        

    


    
    

    

        

                

                    rhodecode/model/validators.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -124,25 +124,25 @@ def ValidRepoUser():

			




	
	
	
		
 
                msg = M(self, 'invalid_username', state, username=value)

			




	
	
	
		
 
                raise formencode.Invalid(msg, value, state,

			




	
	
	
		
 
                    error_dict=dict(username=msg)

			




	
	
	
		
 
                )

			




	
	
	
		
 

			




	
	
	
		
 
    return _validator

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def ValidUsersGroup(edit=False, old_data={}):

			




	
	
	
		
 
    class _validator(formencode.validators.FancyValidator):

			




	
	
	
		
 
        messages = {

			




	
	
	
		
 
            'invalid_group': _(u'Invalid user group name'),

			




	
	
	
		
 
            'group_exist': _(u'Users group "%(usersgroup)s" already exists'),

			




	
	
	
		
 
            'group_exist': _(u'User group "%(usersgroup)s" already exists'),

			




	
	
	
		
 
            'invalid_usersgroup_name':

			




	
	
	
		
 
                _(u'user group name may only contain  alphanumeric '

			




	
	
	
		
 
                  'characters underscores, periods or dashes and must begin '

			




	
	
	
		
 
                  'with alphanumeric character')

			




	
	
	
		
 
        }

			




	
	
	
		
 

			




	
	
	
		
 
        def validate_python(self, value, state):

			




	
	
	
		
 
            if value in ['default']:

			




	
	
	
		
 
                msg = M(self, 'invalid_group', state)

			




	
	
	
		
 
                raise formencode.Invalid(msg, value, state,

			




	
	
	
		
 
                    error_dict=dict(users_group_name=msg)

			




	
	
	
		
 
                )

			




	
	
		
 
@@ -308,25 +308,25 @@ def ValidAuthToken():

			




	
	
	
		
 
    return _validator

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def ValidRepoName(edit=False, old_data={}):

			




	
	
	
		
 
    class _validator(formencode.validators.FancyValidator):

			




	
	
	
		
 
        messages = {

			




	
	
	
		
 
            'invalid_repo_name':

			




	
	
	
		
 
                _(u'Repository name %(repo)s is disallowed'),

			




	
	
	
		
 
            'repository_exists':

			




	
	
	
		
 
                _(u'Repository named %(repo)s already exists'),

			




	
	
	
		
 
            'repository_in_group_exists': _(u'Repository "%(repo)s" already '

			




	
	
	
		
 
                                            'exists in group "%(group)s"'),

			




	
	
	
		
 
            'same_group_exists': _(u'Repositories group with name "%(repo)s" '

			




	
	
	
		
 
            'same_group_exists': _(u'Repository group with name "%(repo)s" '

			




	
	
	
		
 
                                   'already exists')

			




	
	
	
		
 
        }

			




	
	
	
		
 

			




	
	
	
		
 
        def _to_python(self, value, state):

			




	
	
	
		
 
            repo_name = repo_name_slug(value.get('repo_name', ''))

			




	
	
	
		
 
            repo_group = value.get('repo_group')

			




	
	
	
		
 
            if repo_group:

			




	
	
	
		
 
                gr = RepoGroup.get(repo_group)

			




	
	
	
		
 
                group_path = gr.full_path

			




	
	
	
		
 
                group_name = gr.group_name

			




	
	
	
		
 
                # value needs to be aware of group name in order to check

			




	
	
	
		
 
                # db key This is an actual just the name to store in the

			




        

    


    
    

    

        

                

                    rhodecode/templates/admin/permissions/permissions.html
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -50,25 +50,25 @@

			




	
	
	
		
 
                    ${_('overwrite existing settings')}</span> </label>

			




	
	
	
		
 
                </div>

			




	
	
	
		
 
            </div>

			




	
	
	
		
 
            <div class="field">

			




	
	
	
		
 
                <div class="label">

			




	
	
	
		
 
                    <label for="default_group_perm">${_('Repository group')}:</label>

			




	
	
	
		
 
                </div>

			




	
	
	
		
 
                <div class="select">

			




	
	
	
		
 
                    ${h.select('default_group_perm','',c.group_perms_choices)}

			




	
	
	
		
 
                    ${h.checkbox('overwrite_default_group','true')}

			




	
	
	
		
 
                    <label for="overwrite_default_group">

			




	
	
	
		
 
                    <span class="tooltip"

			




	
	
	
		
 
                    title="${h.tooltip(_('All default permissions on each repository group will be reset to choosen permission, note that all custom default permission on repositories group will be lost'))}">

			




	
	
	
		
 
                    title="${h.tooltip(_('All default permissions on each repository group will be reset to choosen permission, note that all custom default permission on repository groups will be lost'))}">

			




	
	
	
		
 
                    ${_('overwrite existing settings')}</span> </label>

			




	
	
	
		
 

			




	
	
	
		
 
                </div>

			




	
	
	
		
 
            </div>

			




	
	
	
		
 
            <div class="field">

			




	
	
	
		
 
                <div class="label">

			




	
	
	
		
 
                    <label for="default_register">${_('Registration')}:</label>

			




	
	
	
		
 
                </div>

			




	
	
	
		
 
                <div class="select">

			




	
	
	
		
 
                    ${h.select('default_register','',c.register_choices)}

			




	
	
	
		
 
                </div>

			




	
	
	
		
 
            </div>

			




        

    


    
    

    

        

                

                    rhodecode/templates/index_base.html
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -39,25 +39,25 @@

			




	
	
	
		
 
                      <tr>

			




	
	
	
		
 
                          <th class="left"><a href="#">${_('Group name')}</a></th>

			




	
	
	
		
 
                          <th class="left"><a href="#">${_('Description')}</a></th>

			




	
	
	
		
 
                          ##<th class="left"><a href="#">${_('Number of repositories')}</a></th>

			




	
	
	
		
 
                      </tr>

			




	
	
	
		
 
                  </thead>

			




	
	
	
		
 

			




	
	
	
		
 
                  ## REPO GROUPS

			




	
	
	
		
 
                  % for gr in c.groups:

			




	
	
	
		
 
                    <tr>

			




	
	
	
		
 
                        <td>

			




	
	
	
		
 
                            <div style="white-space: nowrap">

			




	
	
	
		
 
                            <img class="icon" alt="${_('Repositories group')}" src="${h.url('/images/icons/database_link.png')}"/>

			




	
	
	
		
 
                            <img class="icon" alt="${_('Repository group')}" src="${h.url('/images/icons/database_link.png')}"/>

			




	
	
	
		
 
                            ${h.link_to(gr.name,url('repos_group_home',group_name=gr.group_name))}

			




	
	
	
		
 
                            </div>

			




	
	
	
		
 
                        </td>

			




	
	
	
		
 
                        %if c.visual.stylify_metatags:

			




	
	
	
		
 
                            <td>${h.urlify_text(h.desc_stylize(gr.group_description))}</td>

			




	
	
	
		
 
                        %else:

			




	
	
	
		
 
                            <td>${gr.group_description}</td>

			




	
	
	
		
 
                        %endif

			




	
	
	
		
 
                        ## this is commented out since for multi nested repos can be HEAVY!

			




	
	
	
		
 
                        ## in number of executed queries during traversing uncomment at will

			




	
	
	
		
 
                        ##<td><b>${gr.repositories_recursive_count}</b></td>

			




	
	
	
		
 
                    </tr>

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.