#!/usr/bin/env python

# encoding: utf-8

# Model for permissions

# Copyright (C) 2009-2010 Marcin Kuzminski <marcin@python-works.com>

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; version 2

# of the License or (at your opinion) any later version of the license.

# 

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# 

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,

# MA  02110-1301, USA.

"""

Created on Aug 20, 2010

Model for permissions

@author: marcink

"""

from rhodecode.model.db import User, Permission, UserToPerm, RepoToPerm

from rhodecode.model.caching_query import FromCache

from rhodecode.model.meta import Session

import logging

import traceback

log = logging.getLogger(__name__)

class PermissionModel(object):

    def __init__(self):

        self.sa = Session()

    def get_permission(self, permission_id, cache=False):

        perm = self.sa.query(Permission)

        if cache:

            perm = perm.options(FromCache("sql_cache_short",

                                          "get_permission_%s" % permission_id))

        return perm.get(permission_id)

    def get_permission_by_name(self, name, cache=False):

        perm = self.sa.query(Permission)\

            .filter(Permission.permission_name == name)

        if cache:

            perm = perm.options(FromCache("sql_cache_short",

                                          "get_permission_%s" % name))

        return perm.scalar()

    def update(self, form_result):

        perm_user = self.sa.query(User)\

                .filter(User.username == form_result['perm_user_name']).scalar()

        u2p = self.sa.query(UserToPerm).filter(UserToPerm.user == perm_user).all()

        if len(u2p) != 3:

            raise Exception('Defined: %s should be 3  permissions for default'

                            ' user. This should not happen please verify'

                            ' your database' % len(u2p))

        try:

            #stage 1 change defaults    

            for p in u2p:

                if p.permission.permission_name.startswith('repository.'):

                    p.permission = self.get_permission_by_name(

                                       form_result['default_perm'])

                    self.sa.add(p)

                if p.permission.permission_name.startswith('hg.register.'):

                    p.permission = self.get_permission_by_name(

                                       form_result['default_register'])

                    self.sa.add(p)

                if p.permission.permission_name.startswith('hg.create.'):

                    p.permission = self.get_permission_by_name(

                                        form_result['default_create'])

                    self.sa.add(p)

            #stage 2 update all default permissions for repos if checked

                for r2p in self.sa.query(RepoToPerm)\

                               .filter(RepoToPerm.user == perm_user).all():

                    r2p.permission = self.get_permission_by_name(

                                         form_result['default_perm'])

                    self.sa.add(r2p)

            #stage 3 set anonymous access

            if perm_user.username == 'default':

                perm_user.active = bool(form_result['anonymous'])

                self.sa.add(perm_user)

            self.sa.commit()

        except:

            log.error(traceback.format_exc())

            self.sa.rollback()

            raise