Changeset - 5f0e40fad7da
Parent rev.
Child rev.
[Not reviewed]
default
0 2 0
Mads Kiilerich - 11 years ago 2015-01-06 00:54:36
madski@unity3d.com
user: prevent deletion of users that are owners of a repo group

TODO: make it possible to reassign group ownership
2 files changed with 10 insertions and 2 deletions:
kallithea/model/db.py
1
kallithea/model/user.py
9
2
0 comments (0 inline, 0 general)
kallithea/model/db.py
Show inline comments
 
@@ -400,48 +400,49 @@ class User(Base, BaseModel):
 
    )
 
    DEFAULT_USER = 'default'
 
    DEFAULT_GRAVATAR_URL = 'https://secure.gravatar.com/avatar/{md5email}?d=identicon&s={size}'
 

			




	
	
	
		
 
    user_id = Column("user_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)

			




	
	
	
		
 
    username = Column("username", String(255, convert_unicode=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    password = Column("password", String(255, convert_unicode=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    active = Column("active", Boolean(), nullable=True, unique=None, default=True)

			




	
	
	
		
 
    admin = Column("admin", Boolean(), nullable=True, unique=None, default=False)

			




	
	
	
		
 
    name = Column("firstname", String(255, convert_unicode=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    lastname = Column("lastname", String(255, convert_unicode=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    _email = Column("email", String(255, convert_unicode=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    last_login = Column("last_login", DateTime(timezone=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    extern_type = Column("extern_type", String(255, convert_unicode=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    extern_name = Column("extern_name", String(255, convert_unicode=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    api_key = Column("api_key", String(255, convert_unicode=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    inherit_default_permissions = Column("inherit_default_permissions", Boolean(), nullable=False, unique=None, default=True)

			




	
	
	
		
 
    created_on = Column('created_on', DateTime(timezone=False), nullable=False, default=datetime.datetime.now)

			




	
	
	
		
 
    _user_data = Column("user_data", LargeBinary(), nullable=True)  # JSON data

			




	
	
	
		
 

			




	
	
	
		
 
    user_log = relationship('UserLog')

			




	
	
	
		
 
    user_perms = relationship('UserToPerm', primaryjoin="User.user_id==UserToPerm.user_id", cascade='all')

			




	
	
	
		
 

			




	
	
	
		
 
    repositories = relationship('Repository')

			




	
	
	
		
 
    repo_groups = relationship('RepoGroup')

			




	
	
	
		
 
    user_followers = relationship('UserFollowing', primaryjoin='UserFollowing.follows_user_id==User.user_id', cascade='all')

			




	
	
	
		
 
    followings = relationship('UserFollowing', primaryjoin='UserFollowing.user_id==User.user_id', cascade='all')

			




	
	
	
		
 

			




	
	
	
		
 
    repo_to_perm = relationship('UserRepoToPerm', primaryjoin='UserRepoToPerm.user_id==User.user_id', cascade='all')

			




	
	
	
		
 
    repo_group_to_perm = relationship('UserRepoGroupToPerm', primaryjoin='UserRepoGroupToPerm.user_id==User.user_id', cascade='all')

			




	
	
	
		
 

			




	
	
	
		
 
    group_member = relationship('UserGroupMember', cascade='all')

			




	
	
	
		
 

			




	
	
	
		
 
    notifications = relationship('UserNotification', cascade='all')

			




	
	
	
		
 
    # notifications assigned to this user

			




	
	
	
		
 
    user_created_notifications = relationship('Notification', cascade='all')

			




	
	
	
		
 
    # comments created by this user

			




	
	
	
		
 
    user_comments = relationship('ChangesetComment', cascade='all')

			




	
	
	
		
 
    #extra emails for this user

			




	
	
	
		
 
    user_emails = relationship('UserEmailMap', cascade='all')

			




	
	
	
		
 
    #extra api keys

			




	
	
	
		
 
    user_api_keys = relationship('UserApiKeys', cascade='all')

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
    @hybrid_property

			




	
	
	
		
 
    def email(self):

			




	
	
	
		
 
        return self._email

			




	
	
	
		
 

			




	
	
	
		
 
    @email.setter

			




        

    


    
    

    

        

                

                    kallithea/model/user.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -237,52 +237,59 @@ class UserModel(BaseModel):

			




	
	
	
		
 
                  " crucial for entire application")

			




	
	
	
		
 
            )

			




	
	
	
		
 

			




	
	
	
		
 
        for k, v in kwargs.items():

			




	
	
	
		
 
            if k == 'password' and v:

			




	
	
	
		
 
                v = get_crypt_password(v)

			




	
	
	
		
 

			




	
	
	
		
 
            setattr(user, k, v)

			




	
	
	
		
 
        self.sa.add(user)

			




	
	
	
		
 
        return user

			




	
	
	
		
 

			




	
	
	
		
 
    def delete(self, user, cur_user=None):

			




	
	
	
		
 
        if not cur_user:

			




	
	
	
		
 
            cur_user = getattr(get_current_authuser(), 'username', None)

			




	
	
	
		
 
        user = self._get_user(user)

			




	
	
	
		
 

			




	
	
	
		
 
        if user.username == User.DEFAULT_USER:

			




	
	
	
		
 
            raise DefaultUserException(

			




	
	
	
		
 
                _(u"You can't remove this user since it's"

			




	
	
	
		
 
                  " crucial for entire application")

			




	
	
	
		
 
            )

			




	
	
	
		
 
        if user.repositories:

			




	
	
	
		
 
            repos = [x.repo_name for x in user.repositories]

			




	
	
	
		
 
            raise UserOwnsReposException(

			




	
	
	
		
 
                _(u'user "%s" still owns %s repositories and cannot be '

			




	
	
	
		
 
                  'removed. Switch owners or remove those repositories. %s')

			




	
	
	
		
 
                _(u'User "%s" still owns %s repositories and cannot be '

			




	
	
	
		
 
                  'removed. Switch owners or remove those repositories: %s')

			




	
	
	
		
 
                % (user.username, len(repos), ', '.join(repos))

			




	
	
	
		
 
            )

			




	
	
	
		
 
        if user.repo_groups:

			




	
	
	
		
 
            repogroups = [x.group_name for x in user.repo_groups]

			




	
	
	
		
 
            raise UserOwnsReposException(

			




	
	
	
		
 
                _(u'User "%s" still owns %s repository groups and cannot be '

			




	
	
	
		
 
                  'removed. Switch owners or remove those repository groups: %s')

			




	
	
	
		
 
                % (user.username, len(repogroups), ', '.join(repogroups))

			




	
	
	
		
 
            )

			




	
	
	
		
 
        self.sa.delete(user)

			




	
	
	
		
 

			




	
	
	
		
 
        from kallithea.lib.hooks import log_delete_user

			




	
	
	
		
 
        log_delete_user(user.get_dict(), cur_user)

			




	
	
	
		
 

			




	
	
	
		
 
    def reset_password_link(self, data):

			




	
	
	
		
 
        from kallithea.lib.celerylib import tasks, run_task

			




	
	
	
		
 
        from kallithea.model.notification import EmailNotificationModel

			




	
	
	
		
 
        import kallithea.lib.helpers as h

			




	
	
	
		
 

			




	
	
	
		
 
        user_email = data['email']

			




	
	
	
		
 
        user = User.get_by_email(user_email)

			




	
	
	
		
 
        if user:

			




	
	
	
		
 
            log.debug('password reset user found %s' % user)

			




	
	
	
		
 
            link = h.canonical_url('reset_password_confirmation', key=user.api_key)

			




	
	
	
		
 
            reg_type = EmailNotificationModel.TYPE_PASSWORD_RESET

			




	
	
	
		
 
            body = EmailNotificationModel().get_email_tmpl(reg_type,

			




	
	
	
		
 
                                                           'txt',

			




	
	
	
		
 
                                                           user=user.short_contact,

			




	
	
	
		
 
                                                           reset_url=link)

			




	
	
	
		
 
            html_body = EmailNotificationModel().get_email_tmpl(reg_type,

			




	
	
	
		
 
                                                           'html',

			




	
	
	
		
 
                                                           user=user.short_contact,

			




	
	
	
		
 
                                                           reset_url=link)

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.