Mercurial > kallithea
view rhodecode/model/permission_model.py @ 673:dd532af216d9 beta
#49 Enabled anonymous access for web interface controllable from permissions pannel
| author | Marcin Kuzminski <marcin@python-works.com> |
|---|---|
| date | Thu, 11 Nov 2010 01:05:43 +0100 |
| parents | 7e536d1af60d |
| children |
line wrap: on
line source
#!/usr/bin/env python # encoding: utf-8 # Model for permissions # Copyright (C) 2009-2010 Marcin Kuzminski <marcin@python-works.com> # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU General Public License # as published by the Free Software Foundation; version 2 # of the License or (at your opinion) any later version of the license. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, # MA 02110-1301, USA. """ Created on Aug 20, 2010 Model for permissions @author: marcink """ from rhodecode.model.db import User, Permission, UserToPerm, RepoToPerm from rhodecode.model.caching_query import FromCache from rhodecode.model.meta import Session import logging import traceback log = logging.getLogger(__name__) class PermissionModel(object): def __init__(self, sa=None): if not sa: self.sa = Session() else: self.sa = sa def get_permission(self, permission_id, cache=False): perm = self.sa.query(Permission) if cache: perm = perm.options(FromCache("sql_cache_short", "get_permission_%s" % permission_id)) return perm.get(permission_id) def get_permission_by_name(self, name, cache=False): perm = self.sa.query(Permission)\ .filter(Permission.permission_name == name) if cache: perm = perm.options(FromCache("sql_cache_short", "get_permission_%s" % name)) return perm.scalar() def update(self, form_result): perm_user = self.sa.query(User)\ .filter(User.username == form_result['perm_user_name']).scalar() u2p = self.sa.query(UserToPerm).filter(UserToPerm.user == perm_user).all() if len(u2p) != 3: raise Exception('Defined: %s should be 3 permissions for default' ' user. This should not happen please verify' ' your database' % len(u2p)) try: #stage 1 change defaults for p in u2p: if p.permission.permission_name.startswith('repository.'): p.permission = self.get_permission_by_name( form_result['default_perm']) self.sa.add(p) if p.permission.permission_name.startswith('hg.register.'): p.permission = self.get_permission_by_name( form_result['default_register']) self.sa.add(p) if p.permission.permission_name.startswith('hg.create.'): p.permission = self.get_permission_by_name( form_result['default_create']) self.sa.add(p) #stage 2 update all default permissions for repos if checked if form_result['overwrite_default'] == 'true': for r2p in self.sa.query(RepoToPerm)\ .filter(RepoToPerm.user == perm_user).all(): r2p.permission = self.get_permission_by_name( form_result['default_perm']) self.sa.add(r2p) #stage 3 set anonymous access if perm_user.username == 'default': perm_user.active = bool(form_result['anonymous']) self.sa.add(perm_user) self.sa.commit() except: log.error(traceback.format_exc()) self.sa.rollback() raise