Changeset - a62af7d509ee
Parent rev.
Child rev.
[Not reviewed]
beta
0 4 0
Marcin Kuzminski - 14 years ago 2011-07-19 17:10:34
marcin@python-works.com
fixes #228 - added detection of assigned groups to prevent errors on sqlite
4 files changed with 23 insertions and 1 deletions:
rhodecode/controllers/admin/users_groups.py
3
rhodecode/lib/exceptions.py
3
rhodecode/model/db.py
4
rhodecode/model/users_group.py
13
1
0 comments (0 inline, 0 general)
rhodecode/controllers/admin/users_groups.py
Show inline comments
 
@@ -11,48 +11,49 @@
 
    :license: GPLv3, see COPYING for more details.
 
"""
 
# This program is free software: you can redistribute it and/or modify
 
# it under the terms of the GNU General Public License as published by
 
# the Free Software Foundation, either version 3 of the License, or
 
# (at your option) any later version.
 
#
 
# This program is distributed in the hope that it will be useful,
 
# but WITHOUT ANY WARRANTY; without even the implied warranty of
 
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 
# GNU General Public License for more details.
 
#
 
# You should have received a copy of the GNU General Public License
 
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
 

			




	
	
	
		
 
import logging

			




	
	
	
		
 
import traceback

			




	
	
	
		
 
import formencode

			




	
	
	
		
 

			




	
	
	
		
 
from formencode import htmlfill

			




	
	
	
		
 
from pylons import request, session, tmpl_context as c, url, config

			




	
	
	
		
 
from pylons.controllers.util import abort, redirect

			




	
	
	
		
 
from pylons.i18n.translation import _

			




	
	
	
		
 

			




	
	
	
		
 
from rhodecode.lib.exceptions import UsersGroupsAssignedException

			




	
	
	
		
 
from rhodecode.lib import helpers as h

			




	
	
	
		
 
from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator

			




	
	
	
		
 
from rhodecode.lib.base import BaseController, render

			




	
	
	
		
 

			




	
	
	
		
 
from rhodecode.model.db import User, UsersGroup, Permission, UsersGroupToPerm

			




	
	
	
		
 
from rhodecode.model.forms import UserForm, UsersGroupForm

			




	
	
	
		
 
from rhodecode.model.users_group import UsersGroupModel

			




	
	
	
		
 

			




	
	
	
		
 
log = logging.getLogger(__name__)

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class UsersGroupsController(BaseController):

			




	
	
	
		
 
    """REST Controller styled on the Atom Publishing Protocol"""

			




	
	
	
		
 
    # To properly map this controller, ensure your config/routing.py

			




	
	
	
		
 
    # file has a resource setup:

			




	
	
	
		
 
    #     map.resource('users_group', 'users_groups')

			




	
	
	
		
 

			




	
	
	
		
 
    @LoginRequired()

			




	
	
	
		
 
    @HasPermissionAllDecorator('hg.admin')

			




	
	
	
		
 
    def __before__(self):

			




	
	
	
		
 
        c.admin_user = session.get('admin_user')

			




	
	
	
		
 
        c.admin_username = session.get('admin_username')

			




	
	
	
		
 
        super(UsersGroupsController, self).__before__()

			




	
	
	
		
 
        c.available_permissions = config['available_permissions']

			




	
	
		
 
@@ -132,48 +133,50 @@ class UsersGroupsController(BaseControll

			




	
	
	
		
 
                render('admin/users_groups/users_group_edit.html'),

			




	
	
	
		
 
                defaults=errors.value,

			




	
	
	
		
 
                errors=e,

			




	
	
	
		
 
                prefix_error=False,

			




	
	
	
		
 
                encoding="UTF-8")

			




	
	
	
		
 
        except Exception:

			




	
	
	
		
 
            log.error(traceback.format_exc())

			




	
	
	
		
 
            h.flash(_('error occurred during update of users group %s') \

			




	
	
	
		
 
                    % request.POST.get('users_group_name'), category='error')

			




	
	
	
		
 

			




	
	
	
		
 
        return redirect(url('users_groups'))

			




	
	
	
		
 

			




	
	
	
		
 
    def delete(self, id):

			




	
	
	
		
 
        """DELETE /users_groups/id: Delete an existing item"""

			




	
	
	
		
 
        # Forms posted to this method should contain a hidden field:

			




	
	
	
		
 
        #    <input type="hidden" name="_method" value="DELETE" />

			




	
	
	
		
 
        # Or using helpers:

			




	
	
	
		
 
        #    h.form(url('users_group', id=ID),

			




	
	
	
		
 
        #           method='delete')

			




	
	
	
		
 
        # url('users_group', id=ID)

			




	
	
	
		
 
        users_group_model = UsersGroupModel()

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            users_group_model.delete(id)

			




	
	
	
		
 
            h.flash(_('successfully deleted users group'), category='success')

			




	
	
	
		
 
        except UsersGroupsAssignedException, e:

			




	
	
	
		
 
            h.flash(e, category='error')

			




	
	
	
		
 
        except Exception:

			




	
	
	
		
 
            h.flash(_('An error occurred during deletion of users group'),

			




	
	
	
		
 
                    category='error')

			




	
	
	
		
 
        return redirect(url('users_groups'))

			




	
	
	
		
 

			




	
	
	
		
 
    def show(self, id, format='html'):

			




	
	
	
		
 
        """GET /users_groups/id: Show a specific item"""

			




	
	
	
		
 
        # url('users_group', id=ID)

			




	
	
	
		
 

			




	
	
	
		
 
    def edit(self, id, format='html'):

			




	
	
	
		
 
        """GET /users_groups/id/edit: Form to edit an existing item"""

			




	
	
	
		
 
        # url('edit_users_group', id=ID)

			




	
	
	
		
 

			




	
	
	
		
 
        c.users_group = self.sa.query(UsersGroup).get(id)

			




	
	
	
		
 
        if not c.users_group:

			




	
	
	
		
 
            return redirect(url('users_groups'))

			




	
	
	
		
 

			




	
	
	
		
 
        c.users_group.permissions = {}

			




	
	
	
		
 
        c.group_members = [(x.user_id, x.user.username) for x in

			




	
	
	
		
 
                           c.users_group.members]

			




	
	
	
		
 
        c.available_members = [(x.user_id, x.username) for x in

			




	
	
	
		
 
                               self.sa.query(User).all()]

			




	
	
	
		
 
        defaults = c.users_group.get_dict()

			




	
	
	
		
 
        perm = Permission.get_by_key('hg.create.repository')

			




        

    


    
    

    

        

                

                    rhodecode/lib/exceptions.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -24,24 +24,27 @@

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class LdapUsernameError(Exception):

			




	
	
	
		
 
    pass

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class LdapPasswordError(Exception):

			




	
	
	
		
 
    pass

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class LdapConnectionError(Exception):

			




	
	
	
		
 
    pass

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class LdapImportError(Exception):

			




	
	
	
		
 
    pass

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class DefaultUserException(Exception):

			




	
	
	
		
 
    pass

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class UserOwnsReposException(Exception):

			




	
	
	
		
 
    pass

			




	
	
	
		
 

			




	
	
	
		
 
class UsersGroupsAssignedException(Exception):

			




	
	
	
		
 
    pass

			




        

    


    
    

    

        

                

                    rhodecode/model/db.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -265,48 +265,50 @@ class UserLog(Base, BaseModel):

			




	
	
	
		
 
    repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)

			




	
	
	
		
 
    repository_name = Column("repository_name", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    user_ip = Column("user_ip", String(length=255, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    action = Column("action", UnicodeText(length=1200000, convert_unicode=False, assert_unicode=None), nullable=True, unique=None, default=None)

			




	
	
	
		
 
    action_date = Column("action_date", DateTime(timezone=False), nullable=True, unique=None, default=None)

			




	
	
	
		
 

			




	
	
	
		
 
    @property

			




	
	
	
		
 
    def action_as_day(self):

			




	
	
	
		
 
        return date(*self.action_date.timetuple()[:3])

			




	
	
	
		
 

			




	
	
	
		
 
    user = relationship('User')

			




	
	
	
		
 
    repository = relationship('Repository')

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class UsersGroup(Base, BaseModel):

			




	
	
	
		
 
    __tablename__ = 'users_groups'

			




	
	
	
		
 
    __table_args__ = {'extend_existing':True}

			




	
	
	
		
 

			




	
	
	
		
 
    users_group_id = Column("users_group_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)

			




	
	
	
		
 
    users_group_name = Column("users_group_name", String(length=255, convert_unicode=False, assert_unicode=None), nullable=False, unique=True, default=None)

			




	
	
	
		
 
    users_group_active = Column("users_group_active", Boolean(), nullable=True, unique=None, default=None)

			




	
	
	
		
 

			




	
	
	
		
 
    members = relationship('UsersGroupMember', cascade="all, delete, delete-orphan", lazy="joined")

			




	
	
	
		
 

			




	
	
	
		
 
    def __repr__(self):

			




	
	
	
		
 
        return '<userGroup(%s)>' % (self.users_group_name)

			




	
	
	
		
 

			




	
	
	
		
 
    @classmethod

			




	
	
	
		
 
    def get_by_group_name(cls, group_name, cache=False, case_insensitive=False):

			




	
	
	
		
 
        if case_insensitive:

			




	
	
	
		
 
            gr = Session.query(cls)\

			




	
	
	
		
 
            .filter(cls.users_group_name.ilike(group_name))

			




	
	
	
		
 
        else:

			




	
	
	
		
 
            gr = Session.query(UsersGroup)\

			




	
	
	
		
 
                .filter(UsersGroup.users_group_name == group_name)

			




	
	
	
		
 
        if cache:

			




	
	
	
		
 
            gr = gr.options(FromCache("sql_cache_short",

			




	
	
	
		
 
                                          "get_user_%s" % group_name))

			




	
	
	
		
 
        return gr.scalar()

			




	
	
	
		
 

			




	
	
	
		
 
class UsersGroupMember(Base, BaseModel):

			




	
	
	
		
 
    __tablename__ = 'users_groups_members'

			




	
	
	
		
 
    __table_args__ = {'extend_existing':True}

			




	
	
	
		
 

			




	
	
	
		
 
    users_group_member_id = Column("users_group_member_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)

			




	
	
	
		
 
    users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)

			




	
	
	
		
 
    user_id = Column("user_id", Integer(), ForeignKey('users.user_id'), nullable=False, unique=None, default=None)

			




	
	
	
		
 

			




	
	
	
		
 
    user = relationship('User', lazy='joined')

			




	
	
	
		
 
    users_group = relationship('UsersGroup')

			




	
	
		
 
@@ -656,48 +658,50 @@ class UserToPerm(Base, BaseModel):

			




	
	
	
		
 
    @classmethod

			




	
	
	
		
 
    def revoke_perm(cls, user_id, perm):

			




	
	
	
		
 
        if not isinstance(perm, Permission):

			




	
	
	
		
 
            raise Exception('perm needs to be an instance of Permission class')

			




	
	
	
		
 

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            Session.query(cls).filter(cls.user_id == user_id)\

			




	
	
	
		
 
                .filter(cls.permission == perm).delete()

			




	
	
	
		
 
            Session.commit()

			




	
	
	
		
 
        except:

			




	
	
	
		
 
            Session.rollback()

			




	
	
	
		
 

			




	
	
	
		
 
class UsersGroupRepoToPerm(Base, BaseModel):

			




	
	
	
		
 
    __tablename__ = 'users_group_repo_to_perm'

			




	
	
	
		
 
    __table_args__ = (UniqueConstraint('repository_id', 'users_group_id', 'permission_id'), {'extend_existing':True})

			




	
	
	
		
 
    users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)

			




	
	
	
		
 
    users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)

			




	
	
	
		
 
    permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)

			




	
	
	
		
 
    repository_id = Column("repository_id", Integer(), ForeignKey('repositories.repo_id'), nullable=False, unique=None, default=None)

			




	
	
	
		
 

			




	
	
	
		
 
    users_group = relationship('UsersGroup')

			




	
	
	
		
 
    permission = relationship('Permission')

			




	
	
	
		
 
    repository = relationship('Repository')

			




	
	
	
		
 

			




	
	
	
		
 
    def __repr__(self):

			




	
	
	
		
 
        return '<userGroup:%s => %s >' % (self.users_group, self.repository)

			




	
	
	
		
 

			




	
	
	
		
 
class UsersGroupToPerm(Base, BaseModel):

			




	
	
	
		
 
    __tablename__ = 'users_group_to_perm'

			




	
	
	
		
 
    users_group_to_perm_id = Column("users_group_to_perm_id", Integer(), nullable=False, unique=True, default=None, primary_key=True)

			




	
	
	
		
 
    users_group_id = Column("users_group_id", Integer(), ForeignKey('users_groups.users_group_id'), nullable=False, unique=None, default=None)

			




	
	
	
		
 
    permission_id = Column("permission_id", Integer(), ForeignKey('permissions.permission_id'), nullable=False, unique=None, default=None)

			




	
	
	
		
 

			




	
	
	
		
 
    users_group = relationship('UsersGroup')

			




	
	
	
		
 
    permission = relationship('Permission')

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
    @classmethod

			




	
	
	
		
 
    def has_perm(cls, users_group_id, perm):

			




	
	
	
		
 
        if not isinstance(perm, Permission):

			




	
	
	
		
 
            raise Exception('perm needs to be an instance of Permission class')

			




	
	
	
		
 

			




	
	
	
		
 
        return Session.query(cls).filter(cls.users_group_id ==

			




	
	
	
		
 
                                         users_group_id)\

			




	
	
	
		
 
                                         .filter(cls.permission == perm)\

			




	
	
	
		
 
                                         .scalar() is not None

			




	
	
	
		
 

			




	
	
	
		
 
    @classmethod

			




	
	
	
		
 
    def grant_perm(cls, users_group_id, perm):

			




	
	
	
		
 
        if not isinstance(perm, Permission):

			




        

    


    
    

    

        

                

                    rhodecode/model/users_group.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -7,51 +7,53 @@

			




	
	
	
		
 

			




	
	
	
		
 
    :created_on: Jan 25, 2011

			




	
	
	
		
 
    :author: marcink

			




	
	
	
		
 
    :copyright: (C) 2009-2011 Marcin Kuzminski <marcin@python-works.com>

			




	
	
	
		
 
    :license: GPLv3, see COPYING for more details.

			




	
	
	
		
 
"""

			




	
	
	
		
 
# This program is free software: you can redistribute it and/or modify

			




	
	
	
		
 
# it under the terms of the GNU General Public License as published by

			




	
	
	
		
 
# the Free Software Foundation, either version 3 of the License, or

			




	
	
	
		
 
# (at your option) any later version.

			




	
	
	
		
 
#

			




	
	
	
		
 
# This program is distributed in the hope that it will be useful,

			




	
	
	
		
 
# but WITHOUT ANY WARRANTY; without even the implied warranty of

			




	
	
	
		
 
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

			




	
	
	
		
 
# GNU General Public License for more details.

			




	
	
	
		
 
#

			




	
	
	
		
 
# You should have received a copy of the GNU General Public License

			




	
	
	
		
 
# along with this program.  If not, see <http://www.gnu.org/licenses/>.

			




	
	
	
		
 

			




	
	
	
		
 
import logging

			




	
	
	
		
 
import traceback

			




	
	
	
		
 

			




	
	
	
		
 
from pylons.i18n.translation import _

			




	
	
	
		
 

			




	
	
	
		
 
from rhodecode.lib.exceptions import UsersGroupsAssignedException

			




	
	
	
		
 
from rhodecode.model import BaseModel

			




	
	
	
		
 
from rhodecode.model.caching_query import FromCache

			




	
	
	
		
 
from rhodecode.model.db import UsersGroup, UsersGroupMember

			




	
	
	
		
 
from rhodecode.model.db import UsersGroup, UsersGroupMember, \

			




	
	
	
		
 
    UsersGroupRepoToPerm

			




	
	
	
		
 

			




	
	
	
		
 
log = logging.getLogger(__name__)

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class UsersGroupModel(BaseModel):

			




	
	
	
		
 

			




	
	
	
		
 
    def get(self, users_group_id, cache=False):

			




	
	
	
		
 
        users_group = self.sa.query(UsersGroup)

			




	
	
	
		
 
        if cache:

			




	
	
	
		
 
            users_group = users_group.options(FromCache("sql_cache_short",

			




	
	
	
		
 
                                    "get_users_group_%s" % users_group_id))

			




	
	
	
		
 
        return users_group.get(users_group_id)

			




	
	
	
		
 

			




	
	
	
		
 
    def create(self, form_data):

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            new_users_group = UsersGroup()

			




	
	
	
		
 
            for k, v in form_data.items():

			




	
	
	
		
 
                setattr(new_users_group, k, v)

			




	
	
	
		
 

			




	
	
	
		
 
            self.sa.add(new_users_group)

			




	
	
	
		
 
            self.sa.commit()

			




	
	
	
		
 
        except:

			




	
	
	
		
 
            log.error(traceback.format_exc())

			




	
	
	
		
 
            self.sa.rollback()

			




	
	
		
 
@@ -63,31 +65,41 @@ class UsersGroupModel(BaseModel):

			




	
	
	
		
 
            users_group = self.get(users_group_id, cache=False)

			




	
	
	
		
 

			




	
	
	
		
 
            for k, v in form_data.items():

			




	
	
	
		
 
                if k == 'users_group_members':

			




	
	
	
		
 
                    users_group.members = []

			




	
	
	
		
 
                    self.sa.flush()

			




	
	
	
		
 
                    members_list = []

			




	
	
	
		
 
                    if v:

			




	
	
	
		
 
                        for u_id in set(v):

			




	
	
	
		
 
                            members_list.append(UsersGroupMember(

			




	
	
	
		
 
                                                            users_group_id,

			




	
	
	
		
 
                                                            u_id))

			




	
	
	
		
 
                    setattr(users_group, 'members', members_list)

			




	
	
	
		
 
                setattr(users_group, k, v)

			




	
	
	
		
 

			




	
	
	
		
 
            self.sa.add(users_group)

			




	
	
	
		
 
            self.sa.commit()

			




	
	
	
		
 
        except:

			




	
	
	
		
 
            log.error(traceback.format_exc())

			




	
	
	
		
 
            self.sa.rollback()

			




	
	
	
		
 
            raise

			




	
	
	
		
 

			




	
	
	
		
 
    def delete(self, users_group_id):

			




	
	
	
		
 
        try:

			




	
	
	
		
 

			




	
	
	
		
 
            # check if this group is not assigned to repo

			




	
	
	
		
 
            assigned_groups = UsersGroupRepoToPerm.query()\

			




	
	
	
		
 
                .filter(UsersGroupRepoToPerm.users_group_id ==

			




	
	
	
		
 
                        users_group_id).all()

			




	
	
	
		
 

			




	
	
	
		
 
            if assigned_groups:

			




	
	
	
		
 
                raise UsersGroupsAssignedException('Group assigned to %s' %

			




	
	
	
		
 
                                                   assigned_groups)

			




	
	
	
		
 

			




	
	
	
		
 
            users_group = self.get(users_group_id, cache=False)

			




	
	
	
		
 
            self.sa.delete(users_group)

			




	
	
	
		
 
            self.sa.commit()

			




	
	
	
		
 
        except:

			




	
	
	
		
 
            log.error(traceback.format_exc())

			




	
	
	
		
 
            self.sa.rollback()

			




	
	
	
		
 
            raise

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.