kallithea: rhodecode/controllers/admin/permissions.py annotate

annotate rhodecode/controllers/admin/permissions.py @ 3179:cd50d1b5f35b

merged with beta

author	Marcin Kuzminski <marcin@python-works.com>
date	Mon, 21 Jan 2013 00:03:44 +0100
parents	a5f0bc867edc 9b92cf5a0cca
children	3563bb7b4b82

rev	line source
760 fb7a3b291e64 Cleaned up scm model codes,Admin/admin permissions controller codes Marcin Kuzminski <marcin@python-works.com> parents: 705 diff changeset	1 # -- coding: utf-8 --
fb7a3b291e64 Cleaned up scm model codes,Admin/admin permissions controller codes Marcin Kuzminski <marcin@python-works.com> parents: 705 diff changeset	2 """
853 f67868ef6cd2 some docs updates on controller Marcin Kuzminski <marcin@python-works.com> parents: 769 diff changeset	3 rhodecode.controllers.admin.permissions
f67868ef6cd2 some docs updates on controller Marcin Kuzminski <marcin@python-works.com> parents: 769 diff changeset	4 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
1203 6832ef664673 source code cleanup: remove trailing white space, normalize file endings Marcin Kuzminski <marcin@python-works.com> parents: 902 diff changeset	5
760 fb7a3b291e64 Cleaned up scm model codes,Admin/admin permissions controller codes Marcin Kuzminski <marcin@python-works.com> parents: 705 diff changeset	6 permissions controller for Rhodecode
1203 6832ef664673 source code cleanup: remove trailing white space, normalize file endings Marcin Kuzminski <marcin@python-works.com> parents: 902 diff changeset	7
760 fb7a3b291e64 Cleaned up scm model codes,Admin/admin permissions controller codes Marcin Kuzminski <marcin@python-works.com> parents: 705 diff changeset	8 :created_on: Apr 27, 2010
fb7a3b291e64 Cleaned up scm model codes,Admin/admin permissions controller codes Marcin Kuzminski <marcin@python-works.com> parents: 705 diff changeset	9 :author: marcink
1824 89efedac4e6c 2012 copyrights Marcin Kuzminski <marcin@python-works.com> parents: 1749 diff changeset	10 :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
760 fb7a3b291e64 Cleaned up scm model codes,Admin/admin permissions controller codes Marcin Kuzminski <marcin@python-works.com> parents: 705 diff changeset	11 :license: GPLv3, see COPYING for more details.
fb7a3b291e64 Cleaned up scm model codes,Admin/admin permissions controller codes Marcin Kuzminski <marcin@python-works.com> parents: 705 diff changeset	12 """
1206 a671db5bdd58 fixed license issue #149 Marcin Kuzminski <marcin@python-works.com> parents: 1203 diff changeset	13 # This program is free software: you can redistribute it and/or modify
a671db5bdd58 fixed license issue #149 Marcin Kuzminski <marcin@python-works.com> parents: 1203 diff changeset	14 # it under the terms of the GNU General Public License as published by
a671db5bdd58 fixed license issue #149 Marcin Kuzminski <marcin@python-works.com> parents: 1203 diff changeset	15 # the Free Software Foundation, either version 3 of the License, or
a671db5bdd58 fixed license issue #149 Marcin Kuzminski <marcin@python-works.com> parents: 1203 diff changeset	16 # (at your option) any later version.
1203 6832ef664673 source code cleanup: remove trailing white space, normalize file endings Marcin Kuzminski <marcin@python-works.com> parents: 902 diff changeset	17 #
252 3782a6d698af licensing updates, code cleanups Marcin Kuzminski <marcin@python-works.com> parents: 230 diff changeset	18 # This program is distributed in the hope that it will be useful,
3782a6d698af licensing updates, code cleanups Marcin Kuzminski <marcin@python-works.com> parents: 230 diff changeset	19 # but WITHOUT ANY WARRANTY; without even the implied warranty of
3782a6d698af licensing updates, code cleanups Marcin Kuzminski <marcin@python-works.com> parents: 230 diff changeset	20 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
3782a6d698af licensing updates, code cleanups Marcin Kuzminski <marcin@python-works.com> parents: 230 diff changeset	21 # GNU General Public License for more details.
1203 6832ef664673 source code cleanup: remove trailing white space, normalize file endings Marcin Kuzminski <marcin@python-works.com> parents: 902 diff changeset	22 #
252 3782a6d698af licensing updates, code cleanups Marcin Kuzminski <marcin@python-works.com> parents: 230 diff changeset	23 # You should have received a copy of the GNU General Public License
1206 a671db5bdd58 fixed license issue #149 Marcin Kuzminski <marcin@python-works.com> parents: 1203 diff changeset	24 # along with this program. If not, see <http://www.gnu.org/licenses/>.
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	25
1501 a828b83dfa4b Deprecated UserModel removals Marcin Kuzminski <marcin@python-works.com> parents: 1315 diff changeset	26 import logging
a828b83dfa4b Deprecated UserModel removals Marcin Kuzminski <marcin@python-works.com> parents: 1315 diff changeset	27 import traceback
a828b83dfa4b Deprecated UserModel removals Marcin Kuzminski <marcin@python-works.com> parents: 1315 diff changeset	28 import formencode
305 61be6dcd49a0 protected admin controllers Marcin Kuzminski <marcin@python-works.com> parents: 252 diff changeset	29 from formencode import htmlfill
1501 a828b83dfa4b Deprecated UserModel removals Marcin Kuzminski <marcin@python-works.com> parents: 1315 diff changeset	30
305 61be6dcd49a0 protected admin controllers Marcin Kuzminski <marcin@python-works.com> parents: 252 diff changeset	31 from pylons import request, session, tmpl_context as c, url
61be6dcd49a0 protected admin controllers Marcin Kuzminski <marcin@python-works.com> parents: 252 diff changeset	32 from pylons.controllers.util import abort, redirect
61be6dcd49a0 protected admin controllers Marcin Kuzminski <marcin@python-works.com> parents: 252 diff changeset	33 from pylons.i18n.translation import _
1501 a828b83dfa4b Deprecated UserModel removals Marcin Kuzminski <marcin@python-works.com> parents: 1315 diff changeset	34
547 1e757ac98988 renamed project to rhodecode Marcin Kuzminski <marcin@python-works.com> parents: 418 diff changeset	35 from rhodecode.lib import helpers as h
3125 9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	36 from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator,\
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	37 AuthUser
547 1e757ac98988 renamed project to rhodecode Marcin Kuzminski <marcin@python-works.com> parents: 418 diff changeset	38 from rhodecode.lib.base import BaseController, render
1501 a828b83dfa4b Deprecated UserModel removals Marcin Kuzminski <marcin@python-works.com> parents: 1315 diff changeset	39 from rhodecode.model.forms import DefaultPermissionsForm
692 cb0d9ce6ac5c #50 on point cache invalidation changes. Marcin Kuzminski <marcin@python-works.com> parents: 673 diff changeset	40 from rhodecode.model.permission import PermissionModel
3125 9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	41 from rhodecode.model.db import User, UserIpMap
1734 48d4fcf04a29 another major refactoring with session management Marcin Kuzminski <marcin@python-works.com> parents: 1530 diff changeset	42 from rhodecode.model.meta import Session
230 d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	43
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	44 log = logging.getLogger(__name__)
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	45
1245 5f2fbab7c429 PEP8ify - controllers Marcin Kuzminski <marcin@python-works.com> parents: 1206 diff changeset	46
230 d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	47 class PermissionsController(BaseController):
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	48 """REST Controller styled on the Atom Publishing Protocol"""
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	49 # To properly map this controller, ensure your config/routing.py
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	50 # file has a resource setup:
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	51 # map.resource('permission', 'permissions')
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	52
305 61be6dcd49a0 protected admin controllers Marcin Kuzminski <marcin@python-works.com> parents: 252 diff changeset	53 @LoginRequired()
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	54 @HasPermissionAllDecorator('hg.admin')
305 61be6dcd49a0 protected admin controllers Marcin Kuzminski <marcin@python-works.com> parents: 252 diff changeset	55 def __before__(self):
61be6dcd49a0 protected admin controllers Marcin Kuzminski <marcin@python-works.com> parents: 252 diff changeset	56 c.admin_user = session.get('admin_user')
61be6dcd49a0 protected admin controllers Marcin Kuzminski <marcin@python-works.com> parents: 252 diff changeset	57 c.admin_username = session.get('admin_username')
61be6dcd49a0 protected admin controllers Marcin Kuzminski <marcin@python-works.com> parents: 252 diff changeset	58 super(PermissionsController, self).__before__()
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	59
3052 d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	60 self.repo_perms_choices = [('repository.none', _('None'),),
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	61 ('repository.read', _('Read'),),
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	62 ('repository.write', _('Write'),),
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	63 ('repository.admin', _('Admin'),)]
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	64 self.group_perms_choices = [('group.none', _('None'),),
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	65 ('group.read', _('Read'),),
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	66 ('group.write', _('Write'),),
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	67 ('group.admin', _('Admin'),)]
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	68 self.register_choices = [
673 dd532af216d9 #49 Enabled anonymous access for web interface controllable from permissions pannel Marcin Kuzminski <marcin@python-works.com> parents: 664 diff changeset	69 ('hg.register.none',
dd532af216d9 #49 Enabled anonymous access for web interface controllable from permissions pannel Marcin Kuzminski <marcin@python-works.com> parents: 664 diff changeset	70 _('disabled')),
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	71 ('hg.register.manual_activate',
673 dd532af216d9 #49 Enabled anonymous access for web interface controllable from permissions pannel Marcin Kuzminski <marcin@python-works.com> parents: 664 diff changeset	72 _('allowed with manual account activation')),
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	73 ('hg.register.auto_activate',
673 dd532af216d9 #49 Enabled anonymous access for web interface controllable from permissions pannel Marcin Kuzminski <marcin@python-works.com> parents: 664 diff changeset	74 _('allowed with automatic account activation')), ]
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	75
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	76 self.create_choices = [('hg.create.none', _('Disabled')),
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	77 ('hg.create.repository', _('Enabled'))]
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	78
2709 d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	79 self.fork_choices = [('hg.fork.none', _('Disabled')),
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	80 ('hg.fork.repository', _('Enabled'))]
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	81
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	82 # set the global template variables
3052 d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	83 c.repo_perms_choices = self.repo_perms_choices
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	84 c.group_perms_choices = self.group_perms_choices
2709 d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	85 c.register_choices = self.register_choices
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	86 c.create_choices = self.create_choices
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	87 c.fork_choices = self.fork_choices
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	88
230 d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	89 def index(self, format='html'):
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	90 """GET /permissions: All items in the collection"""
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	91 # url('permissions')
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	92
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	93 def create(self):
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	94 """POST /permissions: Create a new item"""
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	95 # url('permissions')
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	96
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	97 def new(self, format='html'):
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	98 """GET /permissions/new: Form to create a new item"""
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	99 # url('new_permission')
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	100
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	101 def update(self, id):
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	102 """PUT /permissions/id: Update an existing item"""
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	103 # Forms posted to this method should contain a hidden field:
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	104 # <input type="hidden" name="_method" value="PUT" />
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	105 # Or using helpers:
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	106 # h.form(url('permission', id=ID),
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	107 # method='put')
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	108 # url('permission', id=ID)
3125 9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	109 if id == 'default':
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	110 c.user = default_user = User.get_by_username('default')
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	111 c.perm_user = AuthUser(user_id=default_user.user_id)
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	112 c.user_ip_map = UserIpMap.query()\
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	113 .filter(UserIpMap.user == default_user).all()
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	114 permission_model = PermissionModel()
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	115
3125 9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	116 _form = DefaultPermissionsForm(
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	117 [x[0] for x in self.repo_perms_choices],
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	118 [x[0] for x in self.group_perms_choices],
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	119 [x[0] for x in self.register_choices],
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	120 [x[0] for x in self.create_choices],
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	121 [x[0] for x in self.fork_choices])()
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	122
3125 9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	123 try:
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	124 form_result = _form.to_python(dict(request.POST))
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	125 form_result.update({'perm_user_name': id})
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	126 permission_model.update(form_result)
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	127 Session().commit()
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	128 h.flash(_('Default permissions updated successfully'),
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	129 category='success')
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	130
3125 9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	131 except formencode.Invalid, errors:
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	132 defaults = errors.value
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	133
3125 9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	134 return htmlfill.render(
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	135 render('admin/permissions/permissions.html'),
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	136 defaults=defaults,
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	137 errors=errors.error_dict or {},
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	138 prefix_error=False,
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	139 encoding="UTF-8")
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	140 except Exception:
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	141 log.error(traceback.format_exc())
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	142 h.flash(_('error occurred during update of permissions'),
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	143 category='error')
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	144
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	145 return redirect(url('edit_permission', id=id))
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	146
230 d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	147 def delete(self, id):
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	148 """DELETE /permissions/id: Delete an existing item"""
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	149 # Forms posted to this method should contain a hidden field:
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	150 # <input type="hidden" name="_method" value="DELETE" />
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	151 # Or using helpers:
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	152 # h.form(url('permission', id=ID),
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	153 # method='delete')
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	154 # url('permission', id=ID)
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	155
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	156 def show(self, id, format='html'):
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	157 """GET /permissions/id: Show a specific item"""
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	158 # url('permission', id=ID)
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	159
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	160 def edit(self, id, format='html'):
d982ed8e32d8 Admin templating updates, added rest permission controllers Marcin Kuzminski <marcin@python-works.com> parents: diff changeset	161 """GET /permissions/id/edit: Form to edit an existing item"""
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	162 #url('edit_permission', id=ID)
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	163
2709 d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	164 #this form can only edit default user permissions
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	165 if id == 'default':
3125 9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	166 c.user = default_user = User.get_by_username('default')
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	167 defaults = {'anonymous': default_user.active}
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	168 c.perm_user = AuthUser(user_id=default_user.user_id)
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	169 c.user_ip_map = UserIpMap.query()\
9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	170 .filter(UserIpMap.user == default_user).all()
673 dd532af216d9 #49 Enabled anonymous access for web interface controllable from permissions pannel Marcin Kuzminski <marcin@python-works.com> parents: 664 diff changeset	171 for p in default_user.user_perms:
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	172 if p.permission.permission_name.startswith('repository.'):
3052 d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	173 defaults['default_repo_perm'] = p.permission.permission_name
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	174
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	175 if p.permission.permission_name.startswith('group.'):
d3200c58764e implemented #663 Admin/permission: specify default repogroup perms Marcin Kuzminski <marcin@python-works.com> parents: 2709 diff changeset	176 defaults['default_group_perm'] = p.permission.permission_name
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	177
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	178 if p.permission.permission_name.startswith('hg.register.'):
3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	179 defaults['default_register'] = p.permission.permission_name
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	180
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	181 if p.permission.permission_name.startswith('hg.create.'):
3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	182 defaults['default_create'] = p.permission.permission_name
629 7e536d1af60d Code refactoring,models renames Marcin Kuzminski <marcin@python-works.com> parents: 564 diff changeset	183
2709 d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	184 if p.permission.permission_name.startswith('hg.fork.'):
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	185 defaults['default_fork'] = p.permission.permission_name
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	186
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	187 return htmlfill.render(
2709 d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	188 render('admin/permissions/permissions.html'),
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	189 defaults=defaults,
d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	190 encoding="UTF-8",
3125 9b92cf5a0cca Added UserIpMap interface for allowed IP addresses and IP restriction access Marcin Kuzminski <marcin@python-works.com> parents: 3052 diff changeset	191 force_defaults=False
2709 d2d35cf2b351 RhodeCode now has a option to explicitly set forking permissions. ref #508 Marcin Kuzminski <marcin@python-works.com> parents: 2662 diff changeset	192 )
417 3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	193 else:
3ed2d46a2ca7 permission refactoring, Marcin Kuzminski <marcin@python-works.com> parents: 323 diff changeset	194 return redirect(url('admin_home'))

Mercurial > kallithea

annotate rhodecode/controllers/admin/permissions.py @ 3179:cd50d1b5f35b