Mercurial > kallithea
view rhodecode/lib/base.py @ 1617:cf128ced8c85 beta
Improved container-based auth implementation and added support for a reverse-proxy setup (using the X-Forwarded-User header)
| author | Liad Shani <liadff@gmail.com> |
|---|---|
| date | Wed, 26 Oct 2011 21:59:22 +0200 |
| parents | 59ae82850e76 |
| children | 9353189b7675 |
line wrap: on
line source
"""The base Controller API Provides the BaseController class for subclassing. """ import logging from pylons import config, tmpl_context as c, request, session, url from pylons.controllers import WSGIController from pylons.controllers.util import redirect from pylons.templating import render_mako as render from paste.deploy.converters import asbool from rhodecode import __version__ from rhodecode.lib.auth import AuthUser, get_container_username from rhodecode.lib.utils import get_repo_slug from rhodecode.model import meta from rhodecode.model.scm import ScmModel from rhodecode import BACKENDS from rhodecode.model.db import Repository log = logging.getLogger(__name__) class BaseController(WSGIController): def __before__(self): c.rhodecode_version = __version__ c.rhodecode_name = config.get('rhodecode_title') c.ga_code = config.get('rhodecode_ga_code') c.repo_name = get_repo_slug(request) c.backends = BACKENDS.keys() self.cut_off_limit = int(config.get('cut_off_limit')) self.sa = meta.Session() self.scm_model = ScmModel(self.sa) #c.unread_journal = scm_model.get_unread_journal() def __call__(self, environ, start_response): """Invoke the Controller""" # WSGIController.__call__ dispatches to the Controller method # the request is routed to. This routing information is # available in environ['pylons.routes_dict'] try: # putting this here makes sure that we update permissions each time api_key = request.GET.get('api_key') user_id = getattr(session.get('rhodecode_user'), 'user_id', None) if asbool(config.get('container_auth_enabled', False)): username = get_container_username(environ) else: username = None self.rhodecode_user = c.rhodecode_user = AuthUser(user_id, api_key, username) if not self.rhodecode_user.is_authenticated: self.rhodecode_user.set_authenticated( getattr(session.get('rhodecode_user'), 'is_authenticated', False)) session['rhodecode_user'] = self.rhodecode_user session.save() return WSGIController.__call__(self, environ, start_response) finally: meta.Session.remove() class BaseRepoController(BaseController): """ Base class for controllers responsible for loading all needed data for those controllers, loaded items are c.rhodecode_repo: instance of scm repository (taken from cache) """ def __before__(self): super(BaseRepoController, self).__before__() if c.repo_name: c.rhodecode_db_repo = Repository.get_by_repo_name(c.repo_name) c.rhodecode_repo = c.rhodecode_db_repo.scm_instance if c.rhodecode_repo is None: log.error('%s this repository is present in database but it ' 'cannot be created as an scm instance', c.repo_name) redirect(url('home')) c.repository_followers = \ self.scm_model.get_followers(c.repo_name) c.repository_forks = self.scm_model.get_forks(c.repo_name)