Changeset - b2b93614a7cd
Parent rev.
Child rev.
[Not reviewed]
beta
0 3 0
Marcin Kuzminski - 13 years ago 2012-11-23 21:57:40
marcin@python-works.com
Implemented #658 Changing username in LDAP-Mode should not be allowed.
Those username are autocreated, changing them will end up with new account creation after user logs
in again
3 files changed with 14 insertions and 2 deletions:
rhodecode/controllers/admin/users.py
7
1
rhodecode/model/user.py
3
1
rhodecode/templates/admin/users/user_edit.html
4
0 comments (0 inline, 0 general)
rhodecode/controllers/admin/users.py
Show inline comments
 
@@ -149,31 +149,36 @@ class UsersController(BaseController):
 
        return render('admin/users/user_add.html')
 

			




	
	
	
		
 
    def update(self, id):

			




	
	
	
		
 
        """PUT /users/id: Update an existing item"""

			




	
	
	
		
 
        # Forms posted to this method should contain a hidden field:

			




	
	
	
		
 
        #    <input type="hidden" name="_method" value="PUT" />

			




	
	
	
		
 
        # Or using helpers:

			




	
	
	
		
 
        #    h.form(url('update_user', id=ID),

			




	
	
	
		
 
        #           method='put')

			




	
	
	
		
 
        # url('user', id=ID)

			




	
	
	
		
 
        user_model = UserModel()

			




	
	
	
		
 
        c.user = user_model.get(id)

			




	
	
	
		
 
        c.ldap_dn = c.user.ldap_dn

			




	
	
	
		
 
        c.perm_user = AuthUser(user_id=id)

			




	
	
	
		
 
        _form = UserForm(edit=True, old_data={'user_id': id,

			




	
	
	
		
 
                                              'email': c.user.email})()

			




	
	
	
		
 
        form_result = {}

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            form_result = _form.to_python(dict(request.POST))

			




	
	
	
		
 
            user_model.update(id, form_result)

			




	
	
	
		
 
            skip_attrs = []

			




	
	
	
		
 
            if c.ldap_dn:

			




	
	
	
		
 
                #forbid updating username for ldap accounts

			




	
	
	
		
 
                skip_attrs = ['username']

			




	
	
	
		
 
            user_model.update(id, form_result, skip_attrs=skip_attrs)

			




	
	
	
		
 
            usr = form_result['username']

			




	
	
	
		
 
            action_logger(self.rhodecode_user, 'admin_updated_user:%s' % usr,

			




	
	
	
		
 
                          None, self.ip_addr, self.sa)

			




	
	
	
		
 
            h.flash(_('User updated successfully'), category='success')

			




	
	
	
		
 
            Session().commit()

			




	
	
	
		
 
        except formencode.Invalid, errors:

			




	
	
	
		
 
            c.user_email_map = UserEmailMap.query()\

			




	
	
	
		
 
                            .filter(UserEmailMap.user == c.user).all()

			




	
	
	
		
 
            defaults = errors.value

			




	
	
	
		
 
            e = errors.error_dict or {}

			




	
	
	
		
 
            defaults.update({

			




	
	
	
		
 
                'create_repo_perm': user_model.has_perm(id, 'hg.create.repository'),

			




	
	
		
 
@@ -224,24 +229,25 @@ class UsersController(BaseController):

			




	
	
	
		
 

			




	
	
	
		
 
        if c.user.username == 'default':

			




	
	
	
		
 
            h.flash(_("You can't edit this user"), category='warning')

			




	
	
	
		
 
            return redirect(url('users'))

			




	
	
	
		
 

			




	
	
	
		
 
        c.perm_user = AuthUser(user_id=id)

			




	
	
	
		
 
        c.user.permissions = {}

			




	
	
	
		
 
        c.granted_permissions = UserModel().fill_perms(c.user)\

			




	
	
	
		
 
            .permissions['global']

			




	
	
	
		
 
        c.user_email_map = UserEmailMap.query()\

			




	
	
	
		
 
                        .filter(UserEmailMap.user == c.user).all()

			




	
	
	
		
 
        user_model = UserModel()

			




	
	
	
		
 
        c.ldap_dn = c.user.ldap_dn

			




	
	
	
		
 
        defaults = c.user.get_dict()

			




	
	
	
		
 
        defaults.update({

			




	
	
	
		
 
            'create_repo_perm': user_model.has_perm(id, 'hg.create.repository'),

			




	
	
	
		
 
            'fork_repo_perm': user_model.has_perm(id, 'hg.fork.repository'),

			




	
	
	
		
 
        })

			




	
	
	
		
 

			




	
	
	
		
 
        return htmlfill.render(

			




	
	
	
		
 
            render('admin/users/user_edit.html'),

			




	
	
	
		
 
            defaults=defaults,

			




	
	
	
		
 
            encoding="UTF-8",

			




	
	
	
		
 
            force_defaults=False

			




	
	
	
		
 
        )

			




        

    


    
    

    

        

                

                    rhodecode/model/user.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -237,34 +237,36 @@ class UserModel(BaseModel):

			




	
	
	
		
 
                           new_user.email)

			




	
	
	
		
 
            edit_url = url('edit_user', id=new_user.user_id, qualified=True)

			




	
	
	
		
 
            kw = {'registered_user_url': edit_url}

			




	
	
	
		
 
            NotificationModel().create(created_by=new_user, subject=subject,

			




	
	
	
		
 
                                       body=body, recipients=None,

			




	
	
	
		
 
                                       type_=Notification.TYPE_REGISTRATION,

			




	
	
	
		
 
                                       email_kwargs=kw)

			




	
	
	
		
 

			




	
	
	
		
 
        except:

			




	
	
	
		
 
            log.error(traceback.format_exc())

			




	
	
	
		
 
            raise

			




	
	
	
		
 

			




	
	
	
		
 
    def update(self, user_id, form_data):

			




	
	
	
		
 
    def update(self, user_id, form_data, skip_attrs=[]):

			




	
	
	
		
 
        from rhodecode.lib.auth import get_crypt_password

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            user = self.get(user_id, cache=False)

			




	
	
	
		
 
            if user.username == 'default':

			




	
	
	
		
 
                raise DefaultUserException(

			




	
	
	
		
 
                                _("You can't Edit this user since it's"

			




	
	
	
		
 
                                  " crucial for entire application"))

			




	
	
	
		
 

			




	
	
	
		
 
            for k, v in form_data.items():

			




	
	
	
		
 
                if k in skip_attrs:

			




	
	
	
		
 
                    continue

			




	
	
	
		
 
                if k == 'new_password' and v:

			




	
	
	
		
 
                    user.password = get_crypt_password(v)

			




	
	
	
		
 
                    user.api_key = generate_api_key(user.username)

			




	
	
	
		
 
                else:

			




	
	
	
		
 
                    if k == 'firstname':

			




	
	
	
		
 
                        k = 'name'

			




	
	
	
		
 
                    setattr(user, k, v)

			




	
	
	
		
 
            self.sa.add(user)

			




	
	
	
		
 
        except:

			




	
	
	
		
 
            log.error(traceback.format_exc())

			




	
	
	
		
 
            raise

			




	
	
	
		
 

			




        

    


    
    

    

        

                

                    rhodecode/templates/admin/users/user_edit.html
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -41,25 +41,29 @@

			




	
	
	
		
 
        <div class="field">

			




	
	
	
		
 
            <div class="label">

			




	
	
	
		
 
                <label>${_('API key')}</label> ${c.user.api_key}

			




	
	
	
		
 
            </div>

			




	
	
	
		
 
        </div>

			




	
	
	
		
 

			




	
	
	
		
 
        <div class="fields">

			




	
	
	
		
 
             <div class="field">

			




	
	
	
		
 
                <div class="label">

			




	
	
	
		
 
                    <label for="username">${_('Username')}:</label>

			




	
	
	
		
 
                </div>

			




	
	
	
		
 
                <div class="input">

			




	
	
	
		
 
                    %if c.ldap_dn:

			




	
	
	
		
 
                        ${h.text('username',class_='medium disabled', readonly="readonly")}

			




	
	
	
		
 
                    %else:

			




	
	
	
		
 
                    ${h.text('username',class_='medium')}

			




	
	
	
		
 
                    %endif:

			




	
	
	
		
 
                </div>

			




	
	
	
		
 
             </div>

			




	
	
	
		
 

			




	
	
	
		
 
             <div class="field">

			




	
	
	
		
 
                <div class="label">

			




	
	
	
		
 
                    <label for="ldap_dn">${_('LDAP DN')}:</label>

			




	
	
	
		
 
                </div>

			




	
	
	
		
 
                <div class="input">

			




	
	
	
		
 
                    ${h.text('ldap_dn',class_='medium disabled',readonly="readonly")}

			




	
	
	
		
 
                </div>

			




	
	
	
		
 
             </div>

			




	
	
	
		
 

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.