--- a/rhodecode/__init__.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/__init__.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,16 +1,4 @@
 # -*- coding: utf-8 -*-
-"""
-    rhodecode.__init__
-    ~~~~~~~~~~~~~~~~~~
-
-    RhodeCode, a web based repository management based on pylons
-    versioning implementation: http://www.python.org/dev/peps/pep-0386/
-
-    :created_on: Apr 9, 2010
-    :author: marcink
-    :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -23,10 +11,23 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.__init__
+~~~~~~~~~~~~~~~~~~
+
+RhodeCode, a web based repository management based on pylons
+versioning implementation: http://www.python.org/dev/peps/pep-0386/
+
+:created_on: Apr 9, 2010
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
+
 import sys
 import platform
 
-VERSION = (1, 7, 1)
+VERSION = (2, 2, 5)
 BACKENDS = {
     'hg': 'Mercurial repository',
     'git': 'Git repository',
@@ -49,14 +50,21 @@
 except ImportError:
     pass
 
-__version__ = ('.'.join((str(each) for each in VERSION[:3])) +
-               '.'.join(VERSION[3:]))
-__dbversion__ = 14  # defines current db version for migrations
+__version__ = ('.'.join((str(each) for each in VERSION[:3])))
+__dbversion__ = 31  # defines current db version for migrations
 __platform__ = platform.system()
 __license__ = 'GPLv3'
 __py_version__ = sys.version_info
-__author__ = 'Marcin Kuzminski'
-__url__ = 'http://rhodecode.org'
+__author__ = 'RhodeCode GmbH'
+__url__ = 'http://rhodecode.com'
 
 is_windows = __platform__ in ['Windows']
 is_unix = not is_windows
+
+if len(VERSION) > 3:
+    __version__ += '.'+VERSION[3]
+
+    if len(VERSION) > 4:
+        __version__ += VERSION[4]
+    else:
+        __version__ += '0'

--- a/rhodecode/bin/__init__.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/bin/__init__.py	Wed Jul 02 19:03:13 2014 -0400
@@ -0,0 +1,24 @@
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.bin.__init__
+~~~~~~~~~~~~~~~~~~~~~~
+
+Binary scripts for RhodeCode
+
+:created_on: Jun 03, 2012
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""

--- a/rhodecode/bin/base.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/bin/base.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,6 +1,28 @@
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
 """
+rhodecode.bin.base
+~~~~~~~~~~~~~~~~~~
+
 Base utils for shell scripts
+
+:created_on: May 09, 2013
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
 """
+
 import os
 import sys
 import random
@@ -46,7 +68,7 @@
 
     if not method:
         raise Exception('please specify method name !')
-
+    apihost = apihost.rstrip('/')
     id_ = random.randrange(1, 9999)
     req = urllib2.Request('%s/_admin/api' % apihost,
                       data=json.dumps(_build_data(id_)),

--- a/rhodecode/bin/ldap_sync.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/bin/ldap_sync.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,3 +1,4 @@
+# -*- coding: utf-8 -*-
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -10,6 +11,17 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.bin.__init__
+~~~~~~~~~~~~~~~~~~~~~~
+
+LDAP sync script
+
+:created_on: Mar 06, 2013
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
 
 import ldap
 import urllib2
@@ -45,7 +57,7 @@
     """ User is not a member of the target group. """
 
 
-class RhodecodeAPI():
+class RhodecodeAPI(object):
 
     def __init__(self, url, key):
         self.url = url
@@ -90,7 +102,7 @@
             "group_name": name,
             "active": str(active)
         }
-        self.rhodecode_api_post("create_users_group", args)
+        self.rhodecode_api_post("create_user_group", args)
 
     def add_membership(self, group, username):
         """Add specific user to a group."""
@@ -98,7 +110,7 @@
             "usersgroupid": group,
             "userid": username
         }
-        result = self.rhodecode_api_post("add_user_to_users_group", args)
+        result = self.rhodecode_api_post("add_user_to_user_group", args)
         if not result["success"]:
             raise UserAlreadyInGroupError("User %s already in group %s." %
                                           (username, group))
@@ -109,7 +121,7 @@
             "usersgroupid": group,
             "userid": username
         }
-        result = self.rhodecode_api_post("remove_user_from_users_group", args)
+        result = self.rhodecode_api_post("remove_user_from_user_group", args)
         if not result["success"]:
             raise UserNotInGroupError("User %s not in group %s." %
                                       (username, group))
@@ -117,7 +129,7 @@
     def get_group_members(self, name):
         """Get the list of member usernames from a user group."""
         args = {"usersgroupid": name}
-        members = self.rhodecode_api_post("get_users_group", args)['members']
+        members = self.rhodecode_api_post("get_user_group", args)['members']
         member_list = []
         for member in members:
             member_list.append(member["username"])
@@ -126,7 +138,7 @@
     def get_group(self, name):
         """Return group info."""
         args = {"usersgroupid": name}
-        return self.rhodecode_api_post("get_users_group", args)
+        return self.rhodecode_api_post("get_user_group", args)
 
     def get_user(self, username):
         """Return user info."""
@@ -134,7 +146,7 @@
         return self.rhodecode_api_post("get_user", args)
 
 
-class LdapClient():
+class LdapClient(object):
 
     def __init__(self, uri, user, key, base_dn):
         self.client = ldap.initialize(uri, trace_level=0)
@@ -199,7 +211,7 @@
         groups = self.ldap_client.get_groups()
         for group in groups:
             try:
-                self.rhodecode_api.create_group(group)
+                self.rhodecode_api.create_repo_group(group)
                 added += 1
             except Exception:
                 existing += 1

--- a/rhodecode/bin/rhodecode_api.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/bin/rhodecode_api.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,15 +1,4 @@
 # -*- coding: utf-8 -*-
-"""
-    rhodecode.bin.api
-    ~~~~~~~~~~~~~~~~~
-
-    Api CLI client for RhodeCode
-
-    :created_on: Jun 3, 2012
-    :author: marcink
-    :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -22,6 +11,17 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.bin.api
+~~~~~~~~~~~~~~~~~
+
+Api CLI client for RhodeCode
+
+:created_on: Jun 3, 2012
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
 
 from __future__ import with_statement
 import sys
@@ -35,7 +35,7 @@
       "rhodecode-api [-h] [--format=FORMAT] [--apikey=APIKEY] [--apihost=APIHOST] "
       "[--config=CONFIG] [--save-config] "
       "METHOD <key:val> <key2:val> ...\n"
-      "Create config file: rhodecode-gist --apikey=<key> --apihost=http://rhodecode.server --save-config"
+      "Create config file: rhodecode-api --apikey=<key> --apihost=http://rhodecode.server --save-config"
     )
 
     parser = argparse.ArgumentParser(description='RhodeCode API cli',
@@ -106,15 +106,18 @@
         print 'Calling method %s => %s' % (method, apihost)
 
     json_resp = api_call(apikey, apihost, method, **margs)
+    error_prefix = ''
     if json_resp['error']:
+        error_prefix = 'ERROR:'
         json_data = json_resp['error']
     else:
         json_data = json_resp['result']
     if args.format == FORMAT_JSON:
         print json.dumps(json_data)
     elif args.format == FORMAT_PRETTY:
-        print 'Server response \n%s' % (
-                json.dumps(json_data, indent=4, sort_keys=True))
+        print 'Server response \n%s%s' % (
+            error_prefix, json.dumps(json_data, indent=4, sort_keys=True)
+        )
     return 0
 
 if __name__ == '__main__':

--- a/rhodecode/bin/rhodecode_backup.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/bin/rhodecode_backup.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,16 +1,4 @@
 # -*- coding: utf-8 -*-
-"""
-    rhodecode.bin.backup_manager
-    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-    Repositories backup manager, it allows to backups all
-    repositories and send it to backup server using RSA key via ssh.
-
-    :created_on: Feb 28, 2010
-    :author: marcink
-    :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -23,6 +11,18 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.bin.backup_manager
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+Repositories backup manager, it allows to backups all
+repositories and send it to backup server using RSA key via ssh.
+
+:created_on: Feb 28, 2010
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
 
 import os
 import sys

--- a/rhodecode/bin/rhodecode_config.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/bin/rhodecode_config.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,7 +1,29 @@
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
 """
-config generator
+rhodecode.bin.rhodecode_config
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+configuration generator for RhodeCode
 
+:created_on: Jun 18, 2013
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
 """
+
+
 from __future__ import with_statement
 import os
 import sys
@@ -71,13 +93,16 @@
         print parser.print_help()
         sys.exit(0)
     # defaults that can be overwritten by arguments
+    from rhodecode.model.license import LicenseModel
+    license_token = LicenseModel.generate_license_token()
     tmpl_stored_args = {
         'http_server': 'waitress',
         'lang': 'en',
         'database_engine': 'sqlite',
         'host': '127.0.0.1',
         'port': 5000,
-        'error_aggregation_service': None
+        'error_aggregation_service': None,
+        'license_token': license_token
     }
     if other:
         # parse arguments, we assume only first is correct

--- a/rhodecode/bin/rhodecode_gist.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/bin/rhodecode_gist.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,15 +1,4 @@
 # -*- coding: utf-8 -*-
-"""
-    rhodecode.bin.gist
-    ~~~~~~~~~~~~~~~~~~
-
-    Gist CLI client for RhodeCode
-
-    :created_on: May 9, 2013
-    :author: marcink
-    :copyright: (C) 2010-2013 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -22,6 +11,17 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.bin.rhodecode_gist
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+Gist CLI client for RhodeCode
+
+:created_on: May 9, 2013
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
 
 from __future__ import with_statement
 import os

--- a/rhodecode/config/__init__.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/config/__init__.py	Wed Jul 02 19:03:13 2014 -0400
@@ -0,0 +1,13 @@
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.

--- a/rhodecode/config/conf.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/config/conf.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,14 +1,26 @@
 # -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
 """
-    package.rhodecode.config.conf
-    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+rhodecode.config.conf
+~~~~~~~~~~~~~~~~~~~~~
 
-    Various config settings for RhodeCode
+Various config settings for RhodeCode
 
-    :created_on: Mar 7, 2012
-    :author: marcink
-    :copyright: (C) 2009-2010 Marcin Kuzminski <marcin@python-works.com>
-    :license: <name>, see LICENSE_FILE for more details.
+:created_on: Mar 7, 2012
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
 """
 from rhodecode import EXTENSIONS
 

--- a/rhodecode/config/environment.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/config/environment.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,8 +1,24 @@
-"""Pylons environment configuration"""
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+    Pylons environment configuration
+"""
 
 import os
 import logging
 import rhodecode
+import platform
 
 from mako.lookup import TemplateLookup
 from pylons.configuration import PylonsConfig
@@ -27,7 +43,8 @@
 log = logging.getLogger(__name__)
 
 
-def load_environment(global_conf, app_conf, initial=False):
+def load_environment(global_conf, app_conf, initial=False,
+                     test_env=None, test_index=None):
     """
     Configure the Pylons environment via the ``pylons.config``
     object
@@ -73,18 +90,22 @@
     config['pylons.strict_tmpl_context'] = True
     test = os.path.split(config['__file__'])[-1] == 'test.ini'
     if test:
+        if test_env is None:
+            test_env = not int(os.environ.get('RC_NO_TMP_PATH', 0))
+        if test_index is None:
+            test_index = not int(os.environ.get('RC_WHOOSH_TEST_DISABLE', 0))
         if os.environ.get('TEST_DB'):
             # swap config if we pass enviroment variable
             config['sqlalchemy.db1.url'] = os.environ.get('TEST_DB')
 
         from rhodecode.lib.utils import create_test_env, create_test_index
-        from rhodecode.tests import  TESTS_TMP_PATH
-        # set RC_NO_TMP_PATH=1 to disable re-creating the database and
-        # test repos
-        if not int(os.environ.get('RC_NO_TMP_PATH', 0)):
+        from rhodecode.tests import TESTS_TMP_PATH
+        #set RC_NO_TMP_PATH=1 to disable re-creating the database and
+        #test repos
+        if test_env:
             create_test_env(TESTS_TMP_PATH, config)
-        # set RC_WHOOSH_TEST_DISABLE=1 to disable whoosh index during tests
-        if not int(os.environ.get('RC_WHOOSH_TEST_DISABLE', 0)):
+        #set RC_WHOOSH_TEST_DISABLE=1 to disable whoosh index during tests
+        if test_index:
             create_test_index(TESTS_TMP_PATH, config, True)
 
     DbManage.check_waitress()
@@ -100,7 +121,7 @@
 
     instance_id = rhodecode.CONFIG.get('instance_id')
     if instance_id == '*':
-        instance_id = '%s-%s' % (os.uname()[1], os.getpid())
+        instance_id = '%s-%s' % (platform.uname()[1], os.getpid())
         rhodecode.CONFIG['instance_id'] = instance_id
 
     # CONFIGURATION OPTIONS HERE (note: all config options will override

--- a/rhodecode/config/middleware.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/config/middleware.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,4 +1,19 @@
-"""Pylons middleware initialization"""
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+    Pylons middleware initialization
+"""
 
 from beaker.middleware import SessionMiddleware
 from routes.middleware import RoutesMiddleware

--- a/rhodecode/config/post_receive_tmpl.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/config/post_receive_tmpl.py	Wed Jul 02 19:03:13 2014 -0400
@@ -6,8 +6,11 @@
     import rhodecode
     RC_HOOK_VER = '_TMPL_'
     os.environ['RC_HOOK_VER'] = RC_HOOK_VER
-    from rhodecode.lib.hooks import handle_git_post_receive
+    from rhodecode.lib.hooks import handle_git_post_receive as _handler
 except ImportError:
+    if os.environ.get('RC_DEBUG_GIT_HOOK'):
+        import traceback
+        print traceback.format_exc()
     rhodecode = None
 
 
@@ -24,7 +27,7 @@
     # runs git and later git executes this hook.
     # Environ gets some additional info from rhodecode system
     # like IP or username from basic-auth
-    handle_git_post_receive(repo_path, push_data, os.environ)
+    _handler(repo_path, push_data, os.environ)
     sys.exit(0)
 
 if __name__ == '__main__':

--- a/rhodecode/config/pre_receive_tmpl.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/config/pre_receive_tmpl.py	Wed Jul 02 19:03:13 2014 -0400
@@ -6,8 +6,11 @@
     import rhodecode
     RC_HOOK_VER = '_TMPL_'
     os.environ['RC_HOOK_VER'] = RC_HOOK_VER
-    from rhodecode.lib.hooks import handle_git_pre_receive
+    from rhodecode.lib.hooks import handle_git_pre_receive as _handler
 except ImportError:
+    if os.environ.get('RC_DEBUG_GIT_HOOK'):
+        import traceback
+        print traceback.format_exc()
     rhodecode = None
 
 
@@ -24,7 +27,7 @@
     # runs git and later git executes this hook.
     # Environ gets some additional info from rhodecode system
     # like IP or username from basic-auth
-    handle_git_pre_receive(repo_path, push_data, os.environ)
+    _handler(repo_path, push_data, os.environ)
     sys.exit(0)
 
 if __name__ == '__main__':

--- a/rhodecode/config/routing.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/config/routing.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,3 +1,16 @@
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
 """
 Routes configuration
 
@@ -5,6 +18,7 @@
 may take precedent over the more generic routes. For more information
 refer to the routes manual at http://routes.groovie.org/docs/
 """
+
 from __future__ import with_statement
 from routes import Mapper
 
@@ -15,12 +29,12 @@
 def make_map(config):
     """Create, configure and return the routes Mapper"""
     rmap = Mapper(directory=config['pylons.paths']['controllers'],
-                 always_scan=config['debug'])
+                  always_scan=config['debug'])
     rmap.minimization = False
     rmap.explicit = False
 
-    from rhodecode.lib.utils import is_valid_repo
-    from rhodecode.lib.utils import is_valid_repos_group
+    from rhodecode.lib.utils import (is_valid_repo, is_valid_repo_group,
+                                     get_repo_by_id)
 
     def check_repo(environ, match_dict):
         """
@@ -29,20 +43,16 @@
         :param environ:
         :param match_dict:
         """
-        from rhodecode.model.db import Repository
         repo_name = match_dict.get('repo_name')
 
         if match_dict.get('f_path'):
             #fix for multiple initial slashes that causes errors
             match_dict['f_path'] = match_dict['f_path'].lstrip('/')
 
-        try:
-            by_id = repo_name.split('_')
-            if len(by_id) == 2 and by_id[1].isdigit() and by_id[0] == '':
-                repo_name = Repository.get(by_id[1]).repo_name
-                match_dict['repo_name'] = repo_name
-        except Exception:
-            pass
+        by_id_match = get_repo_by_id(repo_name)
+        if by_id_match:
+            repo_name = by_id_match
+            match_dict['repo_name'] = repo_name
 
         return is_valid_repo(repo_name, config['base_path'])
 
@@ -53,8 +63,8 @@
         :param environ:
         :param match_dict:
         """
-        repos_group_name = match_dict.get('group_name')
-        return is_valid_repos_group(repos_group_name, config['base_path'])
+        repo_group_name = match_dict.get('group_name')
+        return is_valid_repo_group(repo_group_name, config['base_path'])
 
     def check_group_skip_path(environ, match_dict):
         """
@@ -64,9 +74,9 @@
         :param environ:
         :param match_dict:
         """
-        repos_group_name = match_dict.get('group_name')
-        return is_valid_repos_group(repos_group_name, config['base_path'],
-                                    skip_path_check=True)
+        repo_group_name = match_dict.get('group_name')
+        return is_valid_repo_group(repo_group_name, config['base_path'],
+                                   skip_path_check=True)
 
     def check_user_group(environ, match_dict):
         """
@@ -91,131 +101,82 @@
 
     #MAIN PAGE
     rmap.connect('home', '/', controller='home', action='index')
-    rmap.connect('repo_switcher', '/repos', controller='home',
-                 action='repo_switcher')
-    rmap.connect('branch_tag_switcher', '/branches-tags/{repo_name:.*?}',
-                 controller='home', action='branch_tag_switcher')
+    rmap.connect('repo_switcher_data', '/_repos', controller='home',
+                 action='repo_switcher_data')
+
     rmap.connect('rst_help',
                  "http://docutils.sourceforge.net/docs/user/rst/quickref.html",
                  _static=True)
-    rmap.connect('rhodecode_official', "http://rhodecode.org", _static=True)
+    rmap.connect('rhodecode_official', "https://rhodecode.com", _static=True)
+    rmap.connect('rc_issue_tracker', 'https://rhodecode.com/help/', _static=True)
 
-    #ADMIN REPOSITORY REST ROUTES
+    #ADMIN REPOSITORY ROUTES
     with rmap.submapper(path_prefix=ADMIN_PREFIX,
                         controller='admin/repos') as m:
         m.connect("repos", "/repos",
-             action="create", conditions=dict(method=["POST"]))
+                  action="create", conditions=dict(method=["POST"]))
         m.connect("repos", "/repos",
-             action="index", conditions=dict(method=["GET"]))
-        m.connect("formatted_repos", "/repos.{format}",
-             action="index",
-            conditions=dict(method=["GET"]))
+                  action="index", conditions=dict(method=["GET"]))
         m.connect("new_repo", "/create_repository",
                   action="create_repository", conditions=dict(method=["GET"]))
         m.connect("/repos/{repo_name:.*?}",
-             action="update", conditions=dict(method=["PUT"],
-                                              function=check_repo))
-        m.connect("/repos/{repo_name:.*?}",
-             action="delete", conditions=dict(method=["DELETE"],
-                                              function=check_repo))
-        m.connect("formatted_edit_repo", "/repos/{repo_name:.*?}.{format}/edit",
-             action="edit", conditions=dict(method=["GET"],
-                                            function=check_repo))
+                  action="update", conditions=dict(method=["PUT"],
+                  function=check_repo))
+        m.connect("delete_repo", "/repos/{repo_name:.*?}",
+                  action="delete", conditions=dict(method=["DELETE"],
+                  ))
         m.connect("repo", "/repos/{repo_name:.*?}",
-             action="show", conditions=dict(method=["GET"],
-                                            function=check_repo))
-        m.connect("formatted_repo", "/repos/{repo_name:.*?}.{format}",
-             action="show", conditions=dict(method=["GET"],
-                                            function=check_repo))
-        #add repo perm member
-        m.connect('set_repo_perm_member',
-                  "/repos/{repo_name:.*?}/grant_perm",
-                  action="set_repo_perm_member",
-                  conditions=dict(method=["POST"], function=check_repo))
-
-        #ajax delete repo perm user
-        m.connect('delete_repo_perm_member',
-                  "/repos/{repo_name:.*?}/revoke_perm",
-                  action="delete_repo_perm_member",
-                  conditions=dict(method=["DELETE"], function=check_repo))
+                  action="show", conditions=dict(method=["GET"],
+                  function=check_repo))
 
-        #settings actions
-        m.connect('repo_stats', "/repos_stats/{repo_name:.*?}",
-                  action="repo_stats", conditions=dict(method=["DELETE"],
-                                                       function=check_repo))
-        m.connect('repo_cache', "/repos_cache/{repo_name:.*?}",
-                  action="repo_cache", conditions=dict(method=["DELETE"],
-                                                       function=check_repo))
-        m.connect('repo_public_journal', "/repos_public_journal/{repo_name:.*?}",
-                  action="repo_public_journal", conditions=dict(method=["PUT"],
-                                                        function=check_repo))
-        m.connect('repo_pull', "/repo_pull/{repo_name:.*?}",
-                  action="repo_pull", conditions=dict(method=["PUT"],
-                                                      function=check_repo))
-        m.connect('repo_as_fork', "/repo_as_fork/{repo_name:.*?}",
-                  action="repo_as_fork", conditions=dict(method=["PUT"],
-                                                      function=check_repo))
-        m.connect('repo_locking', "/repo_locking/{repo_name:.*?}",
-                  action="repo_locking", conditions=dict(method=["PUT"],
-                                                      function=check_repo))
-        m.connect('toggle_locking', "/locking_toggle/{repo_name:.*?}",
-                  action="toggle_locking", conditions=dict(method=["GET"],
-                                                      function=check_repo))
-
-        #repo fields
-        m.connect('create_repo_fields', "/repo_fields/{repo_name:.*?}/new",
-                  action="create_repo_field", conditions=dict(method=["PUT"],
-                                                      function=check_repo))
-
-        m.connect('delete_repo_fields', "/repo_fields/{repo_name:.*?}/{field_id}",
-                  action="delete_repo_field", conditions=dict(method=["DELETE"],
-                                                      function=check_repo))
-
+    #ADMIN REPOSITORY GROUPS ROUTES
     with rmap.submapper(path_prefix=ADMIN_PREFIX,
-                        controller='admin/repos_groups') as m:
-        m.connect("repos_groups", "/repos_groups",
+                        controller='admin/repo_groups') as m:
+        m.connect("repos_groups", "/repo_groups",
                   action="create", conditions=dict(method=["POST"]))
-        m.connect("repos_groups", "/repos_groups",
+        m.connect("repos_groups", "/repo_groups",
                   action="index", conditions=dict(method=["GET"]))
-        m.connect("formatted_repos_groups", "/repos_groups.{format}",
-                  action="index", conditions=dict(method=["GET"]))
-        m.connect("new_repos_group", "/repos_groups/new",
+        m.connect("new_repos_group", "/repo_groups/new",
                   action="new", conditions=dict(method=["GET"]))
-        m.connect("formatted_new_repos_group", "/repos_groups/new.{format}",
-                  action="new", conditions=dict(method=["GET"]))
-        m.connect("update_repos_group", "/repos_groups/{group_name:.*?}",
+        m.connect("update_repos_group", "/repo_groups/{group_name:.*?}",
                   action="update", conditions=dict(method=["PUT"],
                                                    function=check_group))
-        #add repo group perm member
-        m.connect('set_repo_group_perm_member',
-                  "/repos_groups/{group_name:.*?}/grant_perm",
-                  action="set_repo_group_perm_member",
-                  conditions=dict(method=["POST"], function=check_group))
 
-        #ajax delete repo group perm
-        m.connect('delete_repo_group_perm_member',
-                  "/repos_groups/{group_name:.*?}/revoke_perm",
-                  action="delete_repo_group_perm_member",
-                  conditions=dict(method=["DELETE"], function=check_group))
-
-        m.connect("delete_repos_group", "/repos_groups/{group_name:.*?}",
-                  action="delete", conditions=dict(method=["DELETE"],
-                                                   function=check_group_skip_path))
-        m.connect("edit_repos_group", "/repos_groups/{group_name:.*?}/edit",
-                  action="edit", conditions=dict(method=["GET"],
-                                                 function=check_group))
-        m.connect("formatted_edit_repos_group",
-                  "/repos_groups/{group_name:.*?}.{format}/edit",
-                  action="edit", conditions=dict(method=["GET"],
-                                                 function=check_group))
-        m.connect("repos_group", "/repos_groups/{group_name:.*?}",
-                  action="show", conditions=dict(method=["GET"],
-                                                 function=check_group))
-        m.connect("formatted_repos_group", "/repos_groups/{group_name:.*?}.{format}",
+        m.connect("repos_group", "/repo_groups/{group_name:.*?}",
                   action="show", conditions=dict(method=["GET"],
                                                  function=check_group))
 
-    #ADMIN USER REST ROUTES
+        #EXTRAS REPO GROUP ROUTES
+        m.connect("edit_repo_group", "/repo_groups/{group_name:.*?}/edit",
+                  action="edit",
+                  conditions=dict(method=["GET"], function=check_group))
+        m.connect("edit_repo_group", "/repo_groups/{group_name:.*?}/edit",
+                  action="edit",
+                  conditions=dict(method=["PUT"], function=check_group))
+
+        m.connect("edit_repo_group_advanced", "/repo_groups/{group_name:.*?}/edit/advanced",
+                  action="edit_repo_group_advanced",
+                  conditions=dict(method=["GET"], function=check_group))
+        m.connect("edit_repo_group_advanced", "/repo_groups/{group_name:.*?}/edit/advanced",
+                  action="edit_repo_group_advanced",
+                  conditions=dict(method=["PUT"], function=check_group))
+
+        m.connect("edit_repo_group_perms", "/repo_groups/{group_name:.*?}/edit/permissions",
+                  action="edit_repo_group_perms",
+                  conditions=dict(method=["GET"], function=check_group))
+        m.connect("edit_repo_group_perms", "/repo_groups/{group_name:.*?}/edit/permissions",
+                  action="update_perms",
+                  conditions=dict(method=["PUT"], function=check_group))
+        m.connect("edit_repo_group_perms", "/repo_groups/{group_name:.*?}/edit/permissions",
+                  action="delete_perms",
+                  conditions=dict(method=["DELETE"], function=check_group))
+
+        m.connect("delete_repos_group", "/repo_groups/{group_name:.*?}",
+                  action="delete", conditions=dict(method=["DELETE"],
+                                                   function=check_group_skip_path))
+
+
+    #ADMIN USER ROUTES
     with rmap.submapper(path_prefix=ADMIN_PREFIX,
                         controller='admin/users') as m:
         m.connect("users", "/users",
@@ -226,131 +187,209 @@
                   action="index", conditions=dict(method=["GET"]))
         m.connect("new_user", "/users/new",
                   action="new", conditions=dict(method=["GET"]))
-        m.connect("formatted_new_user", "/users/new.{format}",
-                  action="new", conditions=dict(method=["GET"]))
         m.connect("update_user", "/users/{id}",
                   action="update", conditions=dict(method=["PUT"]))
         m.connect("delete_user", "/users/{id}",
                   action="delete", conditions=dict(method=["DELETE"]))
         m.connect("edit_user", "/users/{id}/edit",
                   action="edit", conditions=dict(method=["GET"]))
-        m.connect("formatted_edit_user",
-                  "/users/{id}.{format}/edit",
-                  action="edit", conditions=dict(method=["GET"]))
         m.connect("user", "/users/{id}",
                   action="show", conditions=dict(method=["GET"]))
-        m.connect("formatted_user", "/users/{id}.{format}",
-                  action="show", conditions=dict(method=["GET"]))
 
         #EXTRAS USER ROUTES
-        m.connect("user_perm", "/users_perm/{id}",
-                  action="update_perm", conditions=dict(method=["PUT"]))
-        m.connect("user_emails", "/users_emails/{id}",
+        m.connect("edit_user_advanced", "/users/{id}/edit/advanced",
+                  action="edit_advanced", conditions=dict(method=["GET"]))
+        m.connect("edit_user_advanced", "/users/{id}/edit/advanced",
+                  action="update_advanced", conditions=dict(method=["PUT"]))
+
+        m.connect("edit_user_api_keys", "/users/{id}/edit/api_keys",
+                  action="edit_api_keys", conditions=dict(method=["GET"]))
+        m.connect("edit_user_api_keys", "/users/{id}/edit/api_keys",
+                  action="add_api_key", conditions=dict(method=["PUT"]))
+        m.connect("edit_user_api_keys", "/users/{id}/edit/api_keys",
+                  action="delete_api_key", conditions=dict(method=["DELETE"]))
+
+        m.connect("edit_user_perms", "/users/{id}/edit/permissions",
+                  action="edit_perms", conditions=dict(method=["GET"]))
+        m.connect("edit_user_perms", "/users/{id}/edit/permissions",
+                  action="update_perms", conditions=dict(method=["PUT"]))
+
+        m.connect("edit_user_emails", "/users/{id}/edit/emails",
+                  action="edit_emails", conditions=dict(method=["GET"]))
+        m.connect("edit_user_emails", "/users/{id}/edit/emails",
                   action="add_email", conditions=dict(method=["PUT"]))
-        m.connect("user_emails_delete", "/users_emails/{id}",
+        m.connect("edit_user_emails", "/users/{id}/edit/emails",
                   action="delete_email", conditions=dict(method=["DELETE"]))
-        m.connect("user_ips", "/users_ips/{id}",
+
+        m.connect("edit_user_ips", "/users/{id}/edit/ips",
+                  action="edit_ips", conditions=dict(method=["GET"]))
+        m.connect("edit_user_ips", "/users/{id}/edit/ips",
                   action="add_ip", conditions=dict(method=["PUT"]))
-        m.connect("user_ips_delete", "/users_ips/{id}",
+        m.connect("edit_user_ips", "/users/{id}/edit/ips",
                   action="delete_ip", conditions=dict(method=["DELETE"]))
 
     #ADMIN USER GROUPS REST ROUTES
     with rmap.submapper(path_prefix=ADMIN_PREFIX,
-                        controller='admin/users_groups') as m:
-        m.connect("users_groups", "/users_groups",
+                        controller='admin/user_groups') as m:
+        m.connect("users_groups", "/user_groups",
                   action="create", conditions=dict(method=["POST"]))
-        m.connect("users_groups", "/users_groups",
-                  action="index", conditions=dict(method=["GET"]))
-        m.connect("formatted_users_groups", "/users_groups.{format}",
+        m.connect("users_groups", "/user_groups",
                   action="index", conditions=dict(method=["GET"]))
-        m.connect("new_users_group", "/users_groups/new",
-                  action="new", conditions=dict(method=["GET"]))
-        m.connect("formatted_new_users_group", "/users_groups/new.{format}",
+        m.connect("new_users_group", "/user_groups/new",
                   action="new", conditions=dict(method=["GET"]))
-        m.connect("update_users_group", "/users_groups/{id}",
+        m.connect("update_users_group", "/user_groups/{id}",
                   action="update", conditions=dict(method=["PUT"]))
-        m.connect("delete_users_group", "/users_groups/{id}",
+        m.connect("delete_users_group", "/user_groups/{id}",
                   action="delete", conditions=dict(method=["DELETE"]))
-        m.connect("edit_users_group", "/users_groups/{id}/edit",
+        m.connect("edit_users_group", "/user_groups/{id}/edit",
                   action="edit", conditions=dict(method=["GET"]),
                   function=check_user_group)
-        m.connect("formatted_edit_users_group",
-                  "/users_groups/{id}.{format}/edit",
-                  action="edit", conditions=dict(method=["GET"]))
-        m.connect("users_group", "/users_groups/{id}",
-                  action="show", conditions=dict(method=["GET"]))
-        m.connect("formatted_users_group", "/users_groups/{id}.{format}",
+        m.connect("users_group", "/user_groups/{id}",
                   action="show", conditions=dict(method=["GET"]))
 
-        #EXTRAS USER ROUTES
-        # update
-        m.connect("users_group_perm", "/users_groups/{id}/update_global_perm",
-                  action="update_perm", conditions=dict(method=["PUT"]))
+        #EXTRAS USER GROUP ROUTES
+        m.connect("edit_user_group_default_perms", "/user_groups/{id}/edit/default_perms",
+                  action="edit_default_perms", conditions=dict(method=["GET"]))
+        m.connect("edit_user_group_default_perms", "/user_groups/{id}/edit/default_perms",
+                  action="update_default_perms", conditions=dict(method=["PUT"]))
+
 
-        #add user group perm member
-        m.connect('set_user_group_perm_member', "/users_groups/{id}/grant_perm",
-             action="set_user_group_perm_member",
-             conditions=dict(method=["POST"]))
+        m.connect("edit_user_group_perms", "/user_groups/{id}/edit/perms",
+                  action="edit_perms", conditions=dict(method=["GET"]))
+        m.connect("edit_user_group_perms", "/user_groups/{id}/edit/perms",
+                  action="update_perms", conditions=dict(method=["PUT"]))
+        m.connect("edit_user_group_perms", "/user_groups/{id}/edit/perms",
+                  action="delete_perms", conditions=dict(method=["DELETE"]))
+
+        m.connect("edit_user_group_advanced", "/user_groups/{id}/edit/advanced",
+                  action="edit_advanced", conditions=dict(method=["GET"]))
+
+        m.connect("edit_user_group_members", "/user_groups/{id}/edit/members",
+                  action="edit_members", conditions=dict(method=["GET"]))
 
-        #ajax delete user group perm
-        m.connect('delete_user_group_perm_member', "/users_groups/{id}/revoke_perm",
-             action="delete_user_group_perm_member",
-             conditions=dict(method=["DELETE"]))
+
+
+    #ADMIN PERMISSIONS ROUTES
+    with rmap.submapper(path_prefix=ADMIN_PREFIX,
+                        controller='admin/permissions') as m:
+        m.connect("admin_permissions", "/permissions",
+                  action="permission_globals", conditions=dict(method=["POST"]))
+        m.connect("admin_permissions", "/permissions",
+                  action="permission_globals", conditions=dict(method=["GET"]))
 
-    #ADMIN GROUP REST ROUTES
-    rmap.resource('group', 'groups',
-                  controller='admin/groups', path_prefix=ADMIN_PREFIX)
+        m.connect("admin_permissions_ips", "/permissions/ips",
+                  action="permission_ips", conditions=dict(method=["POST"]))
+        m.connect("admin_permissions_ips", "/permissions/ips",
+                  action="permission_ips", conditions=dict(method=["GET"]))
 
-    #ADMIN PERMISSIONS REST ROUTES
-    rmap.resource('permission', 'permissions',
-                  controller='admin/permissions', path_prefix=ADMIN_PREFIX)
+        m.connect("admin_permissions_perms", "/permissions/perms",
+                  action="permission_perms", conditions=dict(method=["POST"]))
+        m.connect("admin_permissions_perms", "/permissions/perms",
+                  action="permission_perms", conditions=dict(method=["GET"]))
+
 
     #ADMIN DEFAULTS REST ROUTES
     rmap.resource('default', 'defaults',
                   controller='admin/defaults', path_prefix=ADMIN_PREFIX)
 
-    ##ADMIN LDAP SETTINGS
-    rmap.connect('ldap_settings', '%s/ldap' % ADMIN_PREFIX,
-                 controller='admin/ldap_settings', action='ldap_settings',
+    #ADMIN AUTH SETTINGS
+    rmap.connect('auth_settings', '%s/auth' % ADMIN_PREFIX,
+                 controller='admin/auth_settings', action='auth_settings',
                  conditions=dict(method=["POST"]))
+    rmap.connect('auth_home', '%s/auth' % ADMIN_PREFIX,
+                 controller='admin/auth_settings')
 
-    rmap.connect('ldap_home', '%s/ldap' % ADMIN_PREFIX,
-                 controller='admin/ldap_settings')
-
-    #ADMIN SETTINGS REST ROUTES
+    #ADMIN SETTINGS ROUTES
     with rmap.submapper(path_prefix=ADMIN_PREFIX,
                         controller='admin/settings') as m:
         m.connect("admin_settings", "/settings",
-                  action="create", conditions=dict(method=["POST"]))
+                  action="settings_vcs", conditions=dict(method=["POST"]))
         m.connect("admin_settings", "/settings",
-                  action="index", conditions=dict(method=["GET"]))
-        m.connect("formatted_admin_settings", "/settings.{format}",
-                  action="index", conditions=dict(method=["GET"]))
-        m.connect("admin_new_setting", "/settings/new",
-                  action="new", conditions=dict(method=["GET"]))
-        m.connect("formatted_admin_new_setting", "/settings/new.{format}",
-                  action="new", conditions=dict(method=["GET"]))
-        m.connect("/settings/{setting_id}",
-                  action="update", conditions=dict(method=["PUT"]))
-        m.connect("/settings/{setting_id}",
-                  action="delete", conditions=dict(method=["DELETE"]))
-        m.connect("admin_edit_setting", "/settings/{setting_id}/edit",
-                  action="edit", conditions=dict(method=["GET"]))
-        m.connect("formatted_admin_edit_setting",
-                  "/settings/{setting_id}.{format}/edit",
-                  action="edit", conditions=dict(method=["GET"]))
-        m.connect("admin_setting", "/settings/{setting_id}",
-                  action="show", conditions=dict(method=["GET"]))
-        m.connect("formatted_admin_setting", "/settings/{setting_id}.{format}",
-                  action="show", conditions=dict(method=["GET"]))
-        m.connect("admin_settings_my_account", "/my_account",
+                  action="settings_vcs", conditions=dict(method=["GET"]))
+
+        m.connect("admin_settings_mapping", "/settings/mapping",
+                  action="settings_mapping", conditions=dict(method=["POST"]))
+        m.connect("admin_settings_mapping", "/settings/mapping",
+                  action="settings_mapping", conditions=dict(method=["GET"]))
+
+        m.connect("admin_settings_global", "/settings/global",
+                  action="settings_global", conditions=dict(method=["POST"]))
+        m.connect("admin_settings_global", "/settings/global",
+                  action="settings_global", conditions=dict(method=["GET"]))
+
+        m.connect("admin_settings_visual", "/settings/visual",
+                  action="settings_visual", conditions=dict(method=["POST"]))
+        m.connect("admin_settings_visual", "/settings/visual",
+                  action="settings_visual", conditions=dict(method=["GET"]))
+
+        m.connect("admin_settings_email", "/settings/email",
+                  action="settings_email", conditions=dict(method=["POST"]))
+        m.connect("admin_settings_email", "/settings/email",
+                  action="settings_email", conditions=dict(method=["GET"]))
+
+        m.connect("admin_settings_hooks", "/settings/hooks",
+                  action="settings_hooks", conditions=dict(method=["POST"]))
+        m.connect("admin_settings_hooks", "/settings/hooks",
+                  action="settings_hooks", conditions=dict(method=["DELETE"]))
+        m.connect("admin_settings_hooks", "/settings/hooks",
+                  action="settings_hooks", conditions=dict(method=["GET"]))
+
+        m.connect("admin_settings_search", "/settings/search",
+                  action="settings_search", conditions=dict(method=["POST"]))
+        m.connect("admin_settings_search", "/settings/search",
+                  action="settings_search", conditions=dict(method=["GET"]))
+
+        m.connect("admin_settings_system", "/settings/system",
+                  action="settings_system", conditions=dict(method=["POST"]))
+        m.connect("admin_settings_system", "/settings/system",
+                  action="settings_system", conditions=dict(method=["GET"]))
+        m.connect("admin_settings_system_update", "/settings/system/updates",
+                  action="settings_system_update", conditions=dict(method=["GET"]))
+
+        m.connect("admin_settings_license", "/settings/license",
+                  action="settings_license", conditions=dict(method=["POST"]))
+        m.connect("admin_settings_license", "/settings/license",
+                  action="settings_license", conditions=dict(method=["GET"]))
+
+    #ADMIN MY ACCOUNT
+    with rmap.submapper(path_prefix=ADMIN_PREFIX,
+                        controller='admin/my_account') as m:
+
+        m.connect("my_account", "/my_account",
                   action="my_account", conditions=dict(method=["GET"]))
-        m.connect("admin_settings_my_account_update", "/my_account_update",
-                  action="my_account_update", conditions=dict(method=["PUT"]))
-        m.connect("admin_settings_my_repos", "/my_account/repos",
-                  action="my_account_my_repos", conditions=dict(method=["GET"]))
-        m.connect("admin_settings_my_pullrequests", "/my_account/pull_requests",
-                  action="my_account_my_pullrequests", conditions=dict(method=["GET"]))
+        m.connect("my_account", "/my_account",
+                  action="my_account", conditions=dict(method=["POST"]))
+
+        m.connect("my_account_password", "/my_account/password",
+                  action="my_account_password", conditions=dict(method=["GET"]))
+        m.connect("my_account_password", "/my_account/password",
+                  action="my_account_password", conditions=dict(method=["POST"]))
+
+        m.connect("my_account_repos", "/my_account/repos",
+                  action="my_account_repos", conditions=dict(method=["GET"]))
+
+        m.connect("my_account_watched", "/my_account/watched",
+                  action="my_account_watched", conditions=dict(method=["GET"]))
+
+        m.connect("my_account_pullrequests", "/my_account/pull_requests",
+                  action="my_account_pullrequests", conditions=dict(method=["GET"]))
+
+        m.connect("my_account_perms", "/my_account/perms",
+                  action="my_account_perms", conditions=dict(method=["GET"]))
+
+        m.connect("my_account_emails", "/my_account/emails",
+                  action="my_account_emails", conditions=dict(method=["GET"]))
+        m.connect("my_account_emails", "/my_account/emails",
+                  action="my_account_emails_add", conditions=dict(method=["POST"]))
+        m.connect("my_account_emails", "/my_account/emails",
+                  action="my_account_emails_delete", conditions=dict(method=["DELETE"]))
+
+        m.connect("my_account_api_keys", "/my_account/api_keys",
+                  action="my_account_api_keys", conditions=dict(method=["GET"]))
+        m.connect("my_account_api_keys", "/my_account/api_keys",
+                  action="my_account_api_keys_add", conditions=dict(method=["POST"]))
+        m.connect("my_account_api_keys", "/my_account/api_keys",
+                  action="my_account_api_keys_delete", conditions=dict(method=["DELETE"]))
 
     #NOTIFICATION REST ROUTES
     with rmap.submapper(path_prefix=ADMIN_PREFIX,
@@ -390,24 +429,28 @@
                   action="index", conditions=dict(method=["GET"]))
         m.connect("new_gist", "/gists/new",
                   action="new", conditions=dict(method=["GET"]))
-        m.connect("formatted_new_gist", "/gists/new.{format}",
-                  action="new", conditions=dict(method=["GET"]))
-        m.connect("formatted_gists", "/gists.{format}",
-                  action="index", conditions=dict(method=["GET"]))
+
+
         m.connect("/gists/{gist_id}",
                   action="update", conditions=dict(method=["PUT"]))
         m.connect("/gists/{gist_id}",
                   action="delete", conditions=dict(method=["DELETE"]))
         m.connect("edit_gist", "/gists/{gist_id}/edit",
-                  action="edit", conditions=dict(method=["GET"]))
-        m.connect("formatted_edit_gist",
-                  "/gists/{gist_id}/{format}/edit",
-                  action="edit", conditions=dict(method=["GET"]))
+                  action="edit", conditions=dict(method=["GET", "POST"]))
+        m.connect("edit_gist_check_revision", "/gists/{gist_id}/edit/check_revision",
+                  action="check_revision", conditions=dict(method=["POST"]))
+
+
         m.connect("gist", "/gists/{gist_id}",
                   action="show", conditions=dict(method=["GET"]))
-        m.connect("formatted_gist", "/gists/{gist_id}/{format}",
+        m.connect("gist_rev", "/gists/{gist_id}/{revision}",
+                  revision="tip",
                   action="show", conditions=dict(method=["GET"]))
-        m.connect("formatted_gist_file", "/gists/{gist_id}/{format}/{revision}/{f_path:.*}",
+        m.connect("formatted_gist", "/gists/{gist_id}/{revision}/{format}",
+                  revision="tip",
+                  action="show", conditions=dict(method=["GET"]))
+        m.connect("formatted_gist_file", "/gists/{gist_id}/{revision}/{format}/{f_path:.*}",
+                  revision='tip',
                   action="show", conditions=dict(method=["GET"]))
 
     #ADMIN MAIN PAGES
@@ -489,32 +532,109 @@
     #==========================================================================
     # REPOSITORY ROUTES
     #==========================================================================
+    rmap.connect('repo_creating_home', '/{repo_name:.*?}/repo_creating',
+                controller='admin/repos', action='repo_creating')
+    rmap.connect('repo_check_home', '/{repo_name:.*?}/crepo_check',
+                controller='admin/repos', action='repo_check')
+
     rmap.connect('summary_home', '/{repo_name:.*?}',
                 controller='summary',
                 conditions=dict(function=check_repo))
 
+    # must be here for proper group/repo catching
+    rmap.connect('repos_group_home', '/{group_name:.*}',
+                controller='admin/repo_groups', action="show_by_name",
+                conditions=dict(function=check_group))
+    rmap.connect('repo_stats_home', '/{repo_name:.*?}/statistics',
+                controller='summary', action='statistics',
+                conditions=dict(function=check_repo))
+
     rmap.connect('repo_size', '/{repo_name:.*?}/repo_size',
                 controller='summary', action='repo_size',
                 conditions=dict(function=check_repo))
 
-    rmap.connect('repos_group_home', '/{group_name:.*}',
-                controller='admin/repos_groups', action="show_by_name",
-                conditions=dict(function=check_group))
+    rmap.connect('branch_tag_switcher', '/{repo_name:.*?}/branches-tags',
+                 controller='home', action='branch_tag_switcher')
+    rmap.connect('repo_refs_data', '/{repo_name:.*?}/refs-data',
+                 controller='home', action='repo_refs_data')
 
     rmap.connect('changeset_home', '/{repo_name:.*?}/changeset/{revision}',
                 controller='changeset', revision='tip',
                 conditions=dict(function=check_repo))
+    rmap.connect('changeset_children', '/{repo_name:.*?}/changeset_children/{revision}',
+                controller='changeset', revision='tip', action="changeset_children",
+                conditions=dict(function=check_repo))
+    rmap.connect('changeset_parents', '/{repo_name:.*?}/changeset_parents/{revision}',
+                controller='changeset', revision='tip', action="changeset_parents",
+                conditions=dict(function=check_repo))
 
-    # no longer user, but kept for routes to work
-    rmap.connect("_edit_repo", "/{repo_name:.*?}/edit",
-                 controller='admin/repos', action="edit",
-                 conditions=dict(method=["GET"], function=check_repo)
-                 )
-
+    # repo edit options
     rmap.connect("edit_repo", "/{repo_name:.*?}/settings",
                  controller='admin/repos', action="edit",
-                 conditions=dict(method=["GET"], function=check_repo)
-                 )
+                 conditions=dict(method=["GET"], function=check_repo))
+
+    rmap.connect("edit_repo_perms", "/{repo_name:.*?}/settings/permissions",
+                 controller='admin/repos', action="edit_permissions",
+                 conditions=dict(method=["GET"], function=check_repo))
+    rmap.connect("edit_repo_perms_update", "/{repo_name:.*?}/settings/permissions",
+                 controller='admin/repos', action="edit_permissions_update",
+                 conditions=dict(method=["PUT"], function=check_repo))
+    rmap.connect("edit_repo_perms_revoke", "/{repo_name:.*?}/settings/permissions",
+                 controller='admin/repos', action="edit_permissions_revoke",
+                 conditions=dict(method=["DELETE"], function=check_repo))
+
+    rmap.connect("edit_repo_fields", "/{repo_name:.*?}/settings/fields",
+                 controller='admin/repos', action="edit_fields",
+                 conditions=dict(method=["GET"], function=check_repo))
+    rmap.connect('create_repo_fields', "/{repo_name:.*?}/settings/fields/new",
+                 controller='admin/repos', action="create_repo_field",
+                 conditions=dict(method=["PUT"], function=check_repo))
+    rmap.connect('delete_repo_fields', "/{repo_name:.*?}/settings/fields/{field_id}",
+                 controller='admin/repos', action="delete_repo_field",
+                 conditions=dict(method=["DELETE"], function=check_repo))
+
+
+    rmap.connect("edit_repo_advanced", "/{repo_name:.*?}/settings/advanced",
+                 controller='admin/repos', action="edit_advanced",
+                 conditions=dict(method=["GET"], function=check_repo))
+
+    rmap.connect("edit_repo_advanced_locking", "/{repo_name:.*?}/settings/advanced/locking",
+                 controller='admin/repos', action="edit_advanced_locking",
+                 conditions=dict(method=["PUT"], function=check_repo))
+    rmap.connect('toggle_locking', "/{repo_name:.*?}/settings/advanced/locking_toggle",
+                 controller='admin/repos', action="toggle_locking",
+                 conditions=dict(method=["GET"], function=check_repo))
+
+    rmap.connect("edit_repo_advanced_journal", "/{repo_name:.*?}/settings/advanced/journal",
+                 controller='admin/repos', action="edit_advanced_journal",
+                 conditions=dict(method=["PUT"], function=check_repo))
+
+    rmap.connect("edit_repo_advanced_fork", "/{repo_name:.*?}/settings/advanced/fork",
+                 controller='admin/repos', action="edit_advanced_fork",
+                 conditions=dict(method=["PUT"], function=check_repo))
+
+
+    rmap.connect("edit_repo_caches", "/{repo_name:.*?}/settings/caches",
+                 controller='admin/repos', action="edit_caches",
+                 conditions=dict(method=["GET"], function=check_repo))
+    rmap.connect("edit_repo_caches", "/{repo_name:.*?}/settings/caches",
+                 controller='admin/repos', action="edit_caches",
+                 conditions=dict(method=["PUT"], function=check_repo))
+
+
+    rmap.connect("edit_repo_remote", "/{repo_name:.*?}/settings/remote",
+                 controller='admin/repos', action="edit_remote",
+                 conditions=dict(method=["GET"], function=check_repo))
+    rmap.connect("edit_repo_remote", "/{repo_name:.*?}/settings/remote",
+                 controller='admin/repos', action="edit_remote",
+                 conditions=dict(method=["PUT"], function=check_repo))
+
+    rmap.connect("edit_repo_statistics", "/{repo_name:.*?}/settings/statistics",
+                 controller='admin/repos', action="edit_statistics",
+                 conditions=dict(method=["GET"], function=check_repo))
+    rmap.connect("edit_repo_statistics", "/{repo_name:.*?}/settings/statistics",
+                 controller='admin/repos', action="edit_statistics",
+                 conditions=dict(method=["PUT"], function=check_repo))
 
     #still working url for backward compat.
     rmap.connect('raw_changeset_home_depraced',
@@ -556,9 +676,14 @@
     rmap.connect('changeset_info', '/changeset_info/{repo_name:.*?}/{revision}',
                  controller='changeset', action='changeset_info')
 
+    rmap.connect('compare_home',
+                 '/{repo_name:.*?}/compare',
+                 controller='compare', action='index',
+                 conditions=dict(function=check_repo))
+
     rmap.connect('compare_url',
                  '/{repo_name:.*?}/compare/{org_ref_type}@{org_ref:.*?}...{other_ref_type}@{other_ref:.*?}',
-                 controller='compare', action='index',
+                 controller='compare', action='compare',
                  conditions=dict(function=check_repo),
                  requirements=dict(
                             org_ref_type='(branch|book|tag|rev|__other_ref_type__)',
@@ -648,6 +773,11 @@
                  controller='files', action='history', revision='tip', f_path='',
                  conditions=dict(function=check_repo))
 
+    rmap.connect('files_authors_home',
+                 '/{repo_name:.*?}/authors/{revision}/{f_path:.*}',
+                 controller='files', action='authors', revision='tip', f_path='',
+                 conditions=dict(function=check_repo))
+
     rmap.connect('files_diff_home', '/{repo_name:.*?}/diff/{f_path:.*}',
                 controller='files', action='diff', revision='tip', f_path='',
                 conditions=dict(function=check_repo))
@@ -681,6 +811,11 @@
                  controller='files', action='add', revision='tip',
                  f_path='', conditions=dict(function=check_repo))
 
+    rmap.connect('files_delete_home',
+                 '/{repo_name:.*?}/delete/{revision}/{f_path:.*}',
+                 controller='files', action='delete', revision='tip',
+                 f_path='', conditions=dict(function=check_repo))
+
     rmap.connect('files_archive_home', '/{repo_name:.*?}/archive/{fname}',
                 controller='files', action='archivefile',
                 conditions=dict(function=check_repo))

--- a/rhodecode/controllers/__init__.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/controllers/__init__.py	Wed Jul 02 19:03:13 2014 -0400
@@ -0,0 +1,13 @@
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.

--- a/rhodecode/controllers/admin/__init__.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/controllers/admin/__init__.py	Wed Jul 02 19:03:13 2014 -0400
@@ -0,0 +1,13 @@
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.

--- a/rhodecode/controllers/admin/admin.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/controllers/admin/admin.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,15 +1,4 @@
 # -*- coding: utf-8 -*-
-"""
-    rhodecode.controllers.admin.admin
-    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-    Controller for Admin panel of Rhodecode
-
-    :created_on: Apr 7, 2010
-    :author: marcink
-    :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -22,6 +11,18 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.controllers.admin.admin
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+Controller for Admin panel of Rhodecode
+
+:created_on: Apr 7, 2010
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
+
 
 import logging
 

--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/rhodecode/controllers/admin/auth_settings.py	Wed Jul 02 19:03:13 2014 -0400
@@ -0,0 +1,139 @@
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.controllers.admin.auth_settings
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+pluggable authentication controller for RhodeCode
+
+:created_on: Nov 26, 2010
+:author: akesterson
+"""
+
+import pprint
+import logging
+import formencode.htmlfill
+import traceback
+
+from pylons import request, response, session, tmpl_context as c, url
+from pylons.controllers.util import abort, redirect
+from pylons.i18n.translation import _
+
+from sqlalchemy.exc import DatabaseError
+
+from rhodecode.lib import helpers as h
+from rhodecode.lib.compat import json, formatted_json
+from rhodecode.lib.base import BaseController, render
+from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator
+from rhodecode.lib import auth_modules
+from rhodecode.model.forms import AuthSettingsForm
+from rhodecode.model.db import RhodeCodeSetting
+from rhodecode.model.meta import Session
+
+log = logging.getLogger(__name__)
+
+
+class AuthSettingsController(BaseController):
+
+    @LoginRequired()
+    @HasPermissionAllDecorator('hg.admin')
+    def __before__(self):
+        super(AuthSettingsController, self).__before__()
+
+    def __load_defaults(self):
+        c.available_plugins = [
+            'rhodecode.lib.auth_modules.auth_rhodecode',
+            'rhodecode.lib.auth_modules.auth_container',
+            'rhodecode.lib.auth_modules.auth_ldap',
+            'rhodecode.lib.auth_modules.auth_crowd',
+        ]
+        c.enabled_plugins = RhodeCodeSetting.get_auth_plugins()
+
+    def index(self, defaults=None, errors=None, prefix_error=False):
+        self.__load_defaults()
+        _defaults = {}
+        # default plugins loaded
+        formglobals = {
+            "auth_plugins": ["rhodecode.lib.auth_modules.auth_rhodecode"]
+        }
+        formglobals.update(RhodeCodeSetting.get_auth_settings())
+        formglobals["plugin_settings"] = {}
+        formglobals["auth_plugins_shortnames"] = {}
+        _defaults["auth_plugins"] = formglobals["auth_plugins"]
+
+        for module in formglobals["auth_plugins"]:
+            plugin = auth_modules.loadplugin(module)
+            plugin_name = plugin.name
+            formglobals["auth_plugins_shortnames"][module] = plugin_name
+            formglobals["plugin_settings"][module] = plugin.plugin_settings()
+            for v in formglobals["plugin_settings"][module]:
+                fullname = ("auth_" + plugin_name + "_" + v["name"])
+                if "default" in v:
+                    _defaults[fullname] = v["default"]
+                # Current values will be the default on the form, if there are any
+                setting = RhodeCodeSetting.get_by_name(fullname)
+                if setting:
+                    _defaults[fullname] = setting.app_settings_value
+        # we want to show , seperated list of enabled plugins
+        _defaults['auth_plugins'] = ','.join(_defaults['auth_plugins'])
+        if defaults:
+            _defaults.update(defaults)
+
+        formglobals["defaults"] = _defaults
+        # set template context variables
+        for k, v in formglobals.iteritems():
+            setattr(c, k, v)
+
+        log.debug(pprint.pformat(formglobals, indent=4))
+        log.debug(formatted_json(defaults))
+        return formencode.htmlfill.render(
+            render('admin/auth/auth_settings.html'),
+            defaults=_defaults,
+            errors=errors,
+            prefix_error=prefix_error,
+            encoding="UTF-8",
+            force_defaults=True,
+        )
+
+    def auth_settings(self):
+        """POST create and store auth settings"""
+        self.__load_defaults()
+        _form = AuthSettingsForm(c.enabled_plugins)()
+        log.debug("POST Result: %s" % formatted_json(dict(request.POST)))
+
+        try:
+            form_result = _form.to_python(dict(request.POST))
+            for k, v in form_result.items():
+                if k == 'auth_plugins':
+                    # we want to store it comma separated inside our settings
+                    v = ','.join(v)
+                log.debug("%s = %s" % (k, str(v)))
+                setting = RhodeCodeSetting.create_or_update(k, v)
+                Session().add(setting)
+            Session().commit()
+            h.flash(_('Auth settings updated successfully'),
+                       category='success')
+        except formencode.Invalid, errors:
+            log.error(traceback.format_exc())
+            e = errors.error_dict or {}
+            return self.index(
+                defaults=errors.value,
+                errors=e,
+                prefix_error=False)
+        except Exception:
+            log.error(traceback.format_exc())
+            h.flash(_('error occurred during update of auth settings'),
+                    category='error')
+
+        return redirect(url('auth_home'))

--- a/rhodecode/controllers/admin/defaults.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/controllers/admin/defaults.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,15 +1,4 @@
 # -*- coding: utf-8 -*-
-"""
-    rhodecode.controllers.admin.defaults
-    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-    default settings controller for Rhodecode
-
-    :created_on: Apr 27, 2010
-    :author: marcink
-    :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -22,6 +11,17 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.controllers.admin.defaults
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+default settings controller for Rhodecode
+
+:created_on: Apr 27, 2010
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
 
 import logging
 import traceback
@@ -89,8 +89,7 @@
         try:
             form_result = _form.to_python(dict(request.POST))
             for k, v in form_result.iteritems():
-                setting = RhodeCodeSetting.get_by_name_or_create(k)
-                setting.app_settings_value = v
+                setting = RhodeCodeSetting.create_or_update(k, v)
                 Session().add(setting)
             Session().commit()
             h.flash(_('Default settings updated successfully'),

--- a/rhodecode/controllers/admin/gists.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/controllers/admin/gists.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,15 +1,4 @@
 # -*- coding: utf-8 -*-
-"""
-    rhodecode.controllers.admin.gist
-    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-    gist controller for RhodeCode
-
-    :created_on: May 9, 2013
-    :author: marcink
-    :copyright: (C) 2010-2013 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -22,6 +11,18 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.controllers.admin.gist
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+gist controller for RhodeCode
+
+:created_on: May 9, 2013
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
+
 import time
 import logging
 import traceback
@@ -35,15 +36,16 @@
 from rhodecode.model.forms import GistForm
 from rhodecode.model.gist import GistModel
 from rhodecode.model.meta import Session
-from rhodecode.model.db import Gist
+from rhodecode.model.db import Gist, User
 from rhodecode.lib import helpers as h
 from rhodecode.lib.base import BaseController, render
 from rhodecode.lib.auth import LoginRequired, NotAnonymous
+from rhodecode.lib.utils import jsonify
 from rhodecode.lib.utils2 import safe_str, safe_int, time_to_datetime
 from rhodecode.lib.helpers import Page
 from webob.exc import HTTPNotFound, HTTPForbidden
 from sqlalchemy.sql.expression import or_
-from rhodecode.lib.vcs.exceptions import VCSError
+from rhodecode.lib.vcs.exceptions import VCSError, NodeNotChangedError
 
 log = logging.getLogger(__name__)
 
@@ -51,7 +53,7 @@
 class GistsController(BaseController):
     """REST Controller styled on the Atom Publishing Protocol"""
 
-    def __load_defaults(self):
+    def __load_defaults(self, extra_values=None):
         c.lifetime_values = [
             (str(-1), _('forever')),
             (str(5), _('5 minutes')),
@@ -59,27 +61,42 @@
             (str(60 * 24), _('1 day')),
             (str(60 * 24 * 30), _('1 month')),
         ]
+        if extra_values:
+            c.lifetime_values.append(extra_values)
         c.lifetime_options = [(c.lifetime_values, _("Lifetime"))]
 
     @LoginRequired()
-    def index(self, format='html'):
+    def index(self):
         """GET /admin/gists: All items in the collection"""
         # url('gists')
-        c.show_private = request.GET.get('private') and c.rhodecode_user.username != 'default'
-        c.show_public = request.GET.get('public') and c.rhodecode_user.username != 'default'
+        not_default_user = c.rhodecode_user.username != User.DEFAULT_USER
+        c.show_private = request.GET.get('private') and not_default_user
+        c.show_public = request.GET.get('public') and not_default_user
 
         gists = Gist().query()\
             .filter(or_(Gist.gist_expires == -1, Gist.gist_expires >= time.time()))\
             .order_by(Gist.created_on.desc())
-        if c.show_private:
-            c.gists = gists.filter(Gist.gist_type == Gist.GIST_PRIVATE)\
+
+        # MY private
+        if c.show_private and not c.show_public:
+            gists = gists.filter(Gist.gist_type == Gist.GIST_PRIVATE)\
                              .filter(Gist.gist_owner == c.rhodecode_user.user_id)
-        elif c.show_public:
-            c.gists = gists.filter(Gist.gist_type == Gist.GIST_PUBLIC)\
+        # MY public
+        elif c.show_public and not c.show_private:
+            gists = gists.filter(Gist.gist_type == Gist.GIST_PUBLIC)\
                              .filter(Gist.gist_owner == c.rhodecode_user.user_id)
 
-        else:
-            c.gists = gists.filter(Gist.gist_type == Gist.GIST_PUBLIC)
+        # MY public+private
+        elif c.show_private and c.show_public:
+            gists = gists.filter(or_(Gist.gist_type == Gist.GIST_PUBLIC,
+                                     Gist.gist_type == Gist.GIST_PRIVATE))\
+                             .filter(Gist.gist_owner == c.rhodecode_user.user_id)
+
+        # default show ALL public gists
+        if not c.show_public and not c.show_private:
+            gists = gists.filter(Gist.gist_type == Gist.GIST_PUBLIC)
+
+        c.gists = gists
         p = safe_int(request.GET.get('page', 1), 1)
         c.gists_pager = Page(c.gists, page=p, items_per_page=10)
         return render('admin/gists/index.html')
@@ -94,7 +111,7 @@
         try:
             form_result = gist_form.to_python(dict(request.POST))
             #TODO: multiple files support, from the form
-            filename = form_result['filename'] or 'gistfile1.txt'
+            filename = form_result['filename'] or Gist.DEFAULT_FILENAME
             nodes = {
                 filename: {
                     'content': form_result['content'],
@@ -105,7 +122,7 @@
             gist_type = Gist.GIST_PUBLIC if _public else Gist.GIST_PRIVATE
             gist = GistModel().create(
                 description=form_result['description'],
-                owner=c.rhodecode_user,
+                owner=c.rhodecode_user.user_id,
                 gist_mapping=nodes,
                 gist_type=gist_type,
                 lifetime=form_result['lifetime']
@@ -170,7 +187,7 @@
         return redirect(url('gists'))
 
     @LoginRequired()
-    def show(self, gist_id, format='html', revision='tip', f_path=None):
+    def show(self, gist_id, revision='tip', format='html', f_path=None):
         """GET /admin/gists/gist_id: Show a specific item"""
         # url('gist', gist_id=ID)
         c.gist = Gist.get_or_404(gist_id)
@@ -182,7 +199,8 @@
                           (time_to_datetime(c.gist.gist_expires)))
                 raise HTTPNotFound()
         try:
-            c.file_changeset, c.files = GistModel().get_gist_files(gist_id)
+            c.file_changeset, c.files = GistModel().get_gist_files(gist_id,
+                                                            revision=revision)
         except VCSError:
             log.error(traceback.format_exc())
             raise HTTPNotFound()
@@ -197,3 +215,78 @@
     def edit(self, gist_id, format='html'):
         """GET /admin/gists/gist_id/edit: Form to edit an existing item"""
         # url('edit_gist', gist_id=ID)
+        c.gist = Gist.get_or_404(gist_id)
+
+        #check if this gist is not expired
+        if c.gist.gist_expires != -1:
+            if time.time() > c.gist.gist_expires:
+                log.error('Gist expired at %s' %
+                          (time_to_datetime(c.gist.gist_expires)))
+                raise HTTPNotFound()
+        try:
+            c.file_changeset, c.files = GistModel().get_gist_files(gist_id)
+        except VCSError:
+            log.error(traceback.format_exc())
+            raise HTTPNotFound()
+
+        self.__load_defaults(extra_values=('0', _('unmodified')))
+        rendered = render('admin/gists/edit.html')
+
+        if request.POST:
+            rpost = request.POST
+            nodes = {}
+            for org_filename, filename, mimetype, content in zip(
+                                                    rpost.getall('org_files'),
+                                                    rpost.getall('files'),
+                                                    rpost.getall('mimetypes'),
+                                                    rpost.getall('contents')):
+
+                nodes[org_filename] = {
+                    'org_filename': org_filename,
+                    'filename': filename,
+                    'content': content,
+                    'lexer': mimetype,
+                }
+            try:
+                GistModel().update(
+                    gist=c.gist,
+                    description=rpost['description'],
+                    owner=c.gist.owner,
+                    gist_mapping=nodes,
+                    gist_type=c.gist.gist_type,
+                    lifetime=rpost['lifetime']
+                )
+
+                Session().commit()
+                h.flash(_('Successfully updated gist content'), category='success')
+            except NodeNotChangedError:
+                # raised if nothing was changed in repo itself. We anyway then
+                # store only DB stuff for gist
+                Session().commit()
+                h.flash(_('Successfully updated gist data'), category='success')
+            except Exception:
+                log.error(traceback.format_exc())
+                h.flash(_('Error occurred during update of gist %s') % gist_id,
+                        category='error')
+
+            return redirect(url('gist', gist_id=gist_id))
+
+        return rendered
+
+    @LoginRequired()
+    @NotAnonymous()
+    @jsonify
+    def check_revision(self, gist_id):
+        c.gist = Gist.get_or_404(gist_id)
+        last_rev = c.gist.scm_instance.get_changeset()
+        success = True
+        revision = request.POST.get('revision')
+
+        ##TODO: maybe move this to model ?
+        if revision != last_rev.raw_id:
+            log.error('Last revision %s is different then submited %s'
+                      % (revision, last_rev))
+            # our gist has newer version than we
+            success = False
+
+        return {'success': success}

--- a/rhodecode/controllers/admin/ldap_settings.py	Wed Jul 02 19:03:10 2014 -0400
+++ /dev/null	Thu Jan 01 00:00:00 1970 +0000
@@ -1,148 +0,0 @@
-# -*- coding: utf-8 -*-
-"""
-    rhodecode.controllers.admin.ldap_settings
-    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-    ldap controller for RhodeCode
-
-    :created_on: Nov 26, 2010
-    :author: marcink
-    :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-import logging
-import formencode
-import traceback
-
-from formencode import htmlfill
-
-from pylons import request, response, session, tmpl_context as c, url
-from pylons.controllers.util import abort, redirect
-from pylons.i18n.translation import _
-
-from sqlalchemy.exc import DatabaseError
-
-from rhodecode.lib.base import BaseController, render
-from rhodecode.lib import helpers as h
-from rhodecode.lib.auth import LoginRequired, HasPermissionAllDecorator
-from rhodecode.lib.exceptions import LdapImportError
-from rhodecode.model.forms import LdapSettingsForm
-from rhodecode.model.db import RhodeCodeSetting
-from rhodecode.model.meta import Session
-
-log = logging.getLogger(__name__)
-
-
-class LdapSettingsController(BaseController):
-
-    search_scope_choices = [('BASE', _('BASE'),),
-                            ('ONELEVEL', _('ONELEVEL'),),
-                            ('SUBTREE', _('SUBTREE'),),
-                            ]
-    search_scope_default = 'SUBTREE'
-
-    tls_reqcert_choices = [('NEVER', _('NEVER'),),
-                           ('ALLOW', _('ALLOW'),),
-                           ('TRY', _('TRY'),),
-                           ('DEMAND', _('DEMAND'),),
-                           ('HARD', _('HARD'),),
-                           ]
-    tls_reqcert_default = 'DEMAND'
-
-    tls_kind_choices = [('PLAIN', _('No encryption'),),
-                        ('LDAPS', _('LDAPS connection'),),
-                        ('START_TLS', _('START_TLS on LDAP connection'),)
-                        ]
-
-    tls_kind_default = 'PLAIN'
-
-    @LoginRequired()
-    @HasPermissionAllDecorator('hg.admin')
-    def __before__(self):
-        c.search_scope_choices = self.search_scope_choices
-        c.tls_reqcert_choices = self.tls_reqcert_choices
-        c.tls_kind_choices = self.tls_kind_choices
-
-        c.search_scope_cur = self.search_scope_default
-        c.tls_reqcert_cur = self.tls_reqcert_default
-        c.tls_kind_cur = self.tls_kind_default
-
-        super(LdapSettingsController, self).__before__()
-
-    def index(self):
-        defaults = RhodeCodeSetting.get_ldap_settings()
-        c.search_scope_cur = defaults.get('ldap_search_scope')
-        c.tls_reqcert_cur = defaults.get('ldap_tls_reqcert')
-        c.tls_kind_cur = defaults.get('ldap_tls_kind')
-
-        return htmlfill.render(
-                    render('admin/ldap/ldap.html'),
-                    defaults=defaults,
-                    encoding="UTF-8",
-                    force_defaults=True,)
-
-    def ldap_settings(self):
-        """POST ldap create and store ldap settings"""
-
-        _form = LdapSettingsForm([x[0] for x in self.tls_reqcert_choices],
-                                 [x[0] for x in self.search_scope_choices],
-                                 [x[0] for x in self.tls_kind_choices])()
-        # check the ldap lib
-        ldap_active = False
-        try:
-            import ldap
-            ldap_active = True
-        except ImportError:
-            pass
-
-        try:
-            form_result = _form.to_python(dict(request.POST))
-
-            try:
-
-                for k, v in form_result.items():
-                    if k.startswith('ldap_'):
-                        if k == 'ldap_active':
-                            v = v if ldap_active else False
-                        setting = RhodeCodeSetting.get_by_name(k)
-                        setting.app_settings_value = v
-                        Session().add(setting)
-
-                Session().commit()
-                h.flash(_('LDAP settings updated successfully'),
-                        category='success')
-                if not ldap_active:
-                    #if ldap is missing send an info to user
-                    h.flash(_('Unable to activate ldap. The "python-ldap" '
-                              'library is missing.'), category='warning')
-
-            except (DatabaseError,):
-                raise
-
-        except formencode.Invalid, errors:
-            e = errors.error_dict or {}
-
-            return htmlfill.render(
-                render('admin/ldap/ldap.html'),
-                defaults=errors.value,
-                errors=e,
-                prefix_error=False,
-                encoding="UTF-8")
-        except Exception:
-            log.error(traceback.format_exc())
-            h.flash(_('Error occurred during update of ldap settings'),
-                    category='error')
-
-        return redirect(url('ldap_home'))

--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/rhodecode/controllers/admin/my_account.py	Wed Jul 02 19:03:13 2014 -0400
@@ -0,0 +1,290 @@
+# -*- coding: utf-8 -*-
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.controllers.admin.my_account
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+my account controller for rhodecode admin
+
+:created_on: August 20, 2013
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
+
+import time
+import logging
+import traceback
+import formencode
+
+from sqlalchemy import func, or_
+from formencode import htmlfill
+from pylons import request, tmpl_context as c, url
+from pylons.controllers.util import redirect
+from pylons.i18n.translation import _
+
+from rhodecode.lib import helpers as h
+from rhodecode.lib.auth import LoginRequired, NotAnonymous, AuthUser
+from rhodecode.lib.base import BaseController, render
+from rhodecode.lib.utils2 import generate_api_key, safe_int
+from rhodecode.lib.compat import json
+from rhodecode.model.db import Repository, PullRequest, PullRequestReviewers, \
+    UserEmailMap, UserApiKeys, User, UserFollowing
+from rhodecode.model.forms import UserForm, PasswordChangeForm
+from rhodecode.model.user import UserModel
+from rhodecode.model.repo import RepoModel
+from rhodecode.model.api_key import ApiKeyModel
+from rhodecode.model.meta import Session
+
+log = logging.getLogger(__name__)
+
+
+class MyAccountController(BaseController):
+    """REST Controller styled on the Atom Publishing Protocol"""
+    # To properly map this controller, ensure your config/routing.py
+    # file has a resource setup:
+    #     map.resource('setting', 'settings', controller='admin/settings',
+    #         path_prefix='/admin', name_prefix='admin_')
+
+    @LoginRequired()
+    @NotAnonymous()
+    def __before__(self):
+        super(MyAccountController, self).__before__()
+
+    def __load_data(self):
+        c.user = User.get(self.rhodecode_user.user_id)
+        if c.user.username == User.DEFAULT_USER:
+            h.flash(_("You can't edit this user since it's"
+                      " crucial for entire application"), category='warning')
+            return redirect(url('users'))
+
+    def _load_my_repos_data(self, watched=False):
+        if watched:
+            admin = False
+            repos_list = [x.follows_repository for x in
+                          Session().query(UserFollowing).filter(
+                              UserFollowing.user_id ==
+                              self.rhodecode_user.user_id).all()]
+        else:
+            admin = True
+            repos_list = Session().query(Repository)\
+                         .filter(Repository.user_id ==
+                                 self.rhodecode_user.user_id)\
+                         .order_by(func.lower(Repository.repo_name)).all()
+
+        repos_data = RepoModel().get_repos_as_dict(repos_list=repos_list,
+                                                   admin=admin)
+        #json used to render the grid
+        return json.dumps(repos_data)
+
+    def my_account(self):
+        """
+        GET /_admin/my_account Displays info about my account
+        """
+        # url('my_account')
+        c.active = 'profile'
+        self.__load_data()
+        c.perm_user = AuthUser(user_id=self.rhodecode_user.user_id,
+                               ip_addr=self.ip_addr)
+        c.extern_type = c.user.extern_type
+        c.extern_name = c.user.extern_name
+
+        defaults = c.user.get_dict()
+        update = False
+        if request.POST:
+            _form = UserForm(edit=True,
+                             old_data={'user_id': self.rhodecode_user.user_id,
+                                       'email': self.rhodecode_user.email})()
+            form_result = {}
+            try:
+                post_data = dict(request.POST)
+                post_data['new_password'] = ''
+                post_data['password_confirmation'] = ''
+                form_result = _form.to_python(post_data)
+                # skip updating those attrs for my account
+                skip_attrs = ['admin', 'active', 'extern_type', 'extern_name',
+                              'new_password', 'password_confirmation']
+                #TODO: plugin should define if username can be updated
+                if c.extern_type != "rhodecode":
+                    # forbid updating username for external accounts
+                    skip_attrs.append('username')
+
+                UserModel().update(self.rhodecode_user.user_id, form_result,
+                                   skip_attrs=skip_attrs)
+                h.flash(_('Your account was updated successfully'),
+                        category='success')
+                Session().commit()
+                update = True
+
+            except formencode.Invalid, errors:
+                return htmlfill.render(
+                    render('admin/my_account/my_account.html'),
+                    defaults=errors.value,
+                    errors=errors.error_dict or {},
+                    prefix_error=False,
+                    encoding="UTF-8")
+            except Exception:
+                log.error(traceback.format_exc())
+                h.flash(_('Error occurred during update of user %s') \
+                        % form_result.get('username'), category='error')
+        if update:
+            return redirect('my_account')
+        return htmlfill.render(
+            render('admin/my_account/my_account.html'),
+            defaults=defaults,
+            encoding="UTF-8",
+            force_defaults=False
+        )
+
+    def my_account_password(self):
+        c.active = 'password'
+        self.__load_data()
+        if request.POST:
+            _form = PasswordChangeForm(self.rhodecode_user.username)()
+            try:
+                form_result = _form.to_python(request.POST)
+                UserModel().update(self.rhodecode_user.user_id, form_result)
+                Session().commit()
+                h.flash(_("Successfully updated password"), category='success')
+            except formencode.Invalid as errors:
+                return htmlfill.render(
+                    render('admin/my_account/my_account.html'),
+                    defaults=errors.value,
+                    errors=errors.error_dict or {},
+                    prefix_error=False,
+                    encoding="UTF-8")
+            except Exception:
+                log.error(traceback.format_exc())
+                h.flash(_('Error occurred during update of user password'),
+                        category='error')
+        return render('admin/my_account/my_account.html')
+
+    def my_account_repos(self):
+        c.active = 'repos'
+        self.__load_data()
+
+        #json used to render the grid
+        c.data = self._load_my_repos_data()
+        return render('admin/my_account/my_account.html')
+
+    def my_account_watched(self):
+        c.active = 'watched'
+        self.__load_data()
+
+        #json used to render the grid
+        c.data = self._load_my_repos_data(watched=True)
+        return render('admin/my_account/my_account.html')
+
+    def my_account_perms(self):
+        c.active = 'perms'
+        self.__load_data()
+        c.perm_user = AuthUser(user_id=self.rhodecode_user.user_id,
+                               ip_addr=self.ip_addr)
+
+        return render('admin/my_account/my_account.html')
+
+    def my_account_emails(self):
+        c.active = 'emails'
+        self.__load_data()
+
+        c.user_email_map = UserEmailMap.query()\
+            .filter(UserEmailMap.user == c.user).all()
+        return render('admin/my_account/my_account.html')
+
+    def my_account_emails_add(self):
+        email = request.POST.get('new_email')
+
+        try:
+            UserModel().add_extra_email(self.rhodecode_user.user_id, email)
+            Session().commit()
+            h.flash(_("Added email %s to user") % email, category='success')
+        except formencode.Invalid, error:
+            msg = error.error_dict['email']
+            h.flash(msg, category='error')
+        except Exception:
+            log.error(traceback.format_exc())
+            h.flash(_('An error occurred during email saving'),
+                    category='error')
+        return redirect(url('my_account_emails'))
+
+    def my_account_emails_delete(self):
+        email_id = request.POST.get('del_email_id')
+        user_model = UserModel()
+        user_model.delete_extra_email(self.rhodecode_user.user_id, email_id)
+        Session().commit()
+        h.flash(_("Removed email from user"), category='success')
+        return redirect(url('my_account_emails'))
+
+    def my_account_pullrequests(self):
+        c.active = 'pullrequests'
+        self.__load_data()
+        c.show_closed = request.GET.get('pr_show_closed')
+
+        def _filter(pr):
+            s = sorted(pr, key=lambda o: o.created_on, reverse=True)
+            if not c.show_closed:
+                s = filter(lambda p: p.status != PullRequest.STATUS_CLOSED, s)
+            return s
+
+        c.my_pull_requests = _filter(PullRequest.query()\
+                                .filter(PullRequest.user_id ==
+                                        self.rhodecode_user.user_id)\
+                                .all())
+        my_prs = [x.pull_request for x in PullRequestReviewers.query()
+                    .filter(PullRequestReviewers.user_id ==
+                        self.rhodecode_user.user_id).all()]
+        c.participate_in_pull_requests = _filter(my_prs)
+        return render('admin/my_account/my_account.html')
+
+    def my_account_api_keys(self):
+        c.active = 'api_keys'
+        self.__load_data()
+        show_expired = True
+        c.lifetime_values = [
+            (str(-1), _('forever')),
+            (str(5), _('5 minutes')),
+            (str(60), _('1 hour')),
+            (str(60 * 24), _('1 day')),
+            (str(60 * 24 * 30), _('1 month')),
+        ]
+        c.lifetime_options = [(c.lifetime_values, _("Lifetime"))]
+        c.user_api_keys = ApiKeyModel().get_api_keys(self.rhodecode_user.user_id,
+                                                     show_expired=show_expired)
+        return render('admin/my_account/my_account.html')
+
+    def my_account_api_keys_add(self):
+        lifetime = safe_int(request.POST.get('lifetime'), -1)
+        description = request.POST.get('description')
+        new_api_key = ApiKeyModel().create(self.rhodecode_user.user_id,
+                                           description, lifetime)
+        Session().commit()
+        h.flash(_("Api key successfully created"), category='success')
+        return redirect(url('my_account_api_keys'))
+
+    def my_account_api_keys_delete(self):
+        api_key = request.POST.get('del_api_key')
+        user_id = self.rhodecode_user.user_id
+        if request.POST.get('del_api_key_builtin'):
+            user = User.get(user_id)
+            if user:
+                user.api_key = generate_api_key(user.username)
+                Session().add(user)
+                Session().commit()
+                h.flash(_("Api key successfully reset"), category='success')
+        elif api_key:
+            ApiKeyModel().delete(api_key, self.rhodecode_user.user_id)
+            Session().commit()
+            h.flash(_("Api key successfully deleted"), category='success')
+
+        return redirect(url('my_account_api_keys'))

--- a/rhodecode/controllers/admin/notifications.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/controllers/admin/notifications.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,15 +1,4 @@
 # -*- coding: utf-8 -*-
-"""
-    rhodecode.controllers.admin.notifications
-    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-    notifications controller for RhodeCode
-
-    :created_on: Nov 23, 2010
-    :author: marcink
-    :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -22,6 +11,17 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.controllers.admin.notifications
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+notifications controller for RhodeCode
+
+:created_on: Nov 23, 2010
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
 
 import logging
 import traceback
@@ -29,6 +29,7 @@
 from pylons import request
 from pylons import tmpl_context as c, url
 from pylons.controllers.util import redirect, abort
+from webob.exc import HTTPBadRequest
 
 from rhodecode.model.db import Notification
 from rhodecode.model.notification import NotificationModel
@@ -111,13 +112,14 @@
             owner = all(un.user.user_id == c.rhodecode_user.user_id
                         for un in no.notifications_to_users)
             if h.HasPermissionAny('hg.admin')() or owner:
-                    NotificationModel().mark_read(c.rhodecode_user.user_id, no)
-                    Session().commit()
-                    return 'ok'
+                # deletes only notification2user
+                NotificationModel().mark_read(c.rhodecode_user.user_id, no)
+                Session().commit()
+                return 'ok'
         except Exception:
             Session().rollback()
             log.error(traceback.format_exc())
-        return 'fail'
+        raise HTTPBadRequest()
 
     def delete(self, notification_id):
         """DELETE /_admin/notifications/id: Delete an existing item"""
@@ -127,19 +129,19 @@
         #    h.form(url('notification', notification_id=ID),
         #           method='delete')
         # url('notification', notification_id=ID)
-
         try:
             no = Notification.get(notification_id)
-            owner = all(un.user.user_id == c.rhodecode_user.user_id
+            owner = any(un.user.user_id == c.rhodecode_user.user_id
                         for un in no.notifications_to_users)
             if h.HasPermissionAny('hg.admin')() or owner:
-                    NotificationModel().delete(c.rhodecode_user.user_id, no)
-                    Session().commit()
-                    return 'ok'
+                # deletes only notification2user
+                NotificationModel().delete(c.rhodecode_user.user_id, no)
+                Session().commit()
+                return 'ok'
         except Exception:
             Session().rollback()
             log.error(traceback.format_exc())
-        return 'fail'
+        raise HTTPBadRequest()
 
     def show(self, notification_id, format='html'):
         """GET /_admin/notifications/id: Show a specific item"""
@@ -149,8 +151,8 @@
 
         owner = any(un.user.user_id == c.rhodecode_user.user_id
                     for un in no.notifications_to_users)
-
-        if no and (h.HasPermissionAny('hg.admin', 'repository.admin')() or owner):
+        repo_admin = h.HasRepoPermissionAny('repository.admin')
+        if no and (h.HasPermissionAny('hg.admin')() or repo_admin or owner):
             unotification = NotificationModel()\
                             .get_user_notification(c.user.user_id, no)
 

--- a/rhodecode/controllers/admin/permissions.py	Wed Jul 02 19:03:10 2014 -0400
+++ b/rhodecode/controllers/admin/permissions.py	Wed Jul 02 19:03:13 2014 -0400
@@ -1,15 +1,4 @@
 # -*- coding: utf-8 -*-
-"""
-    rhodecode.controllers.admin.permissions
-    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-    permissions controller for Rhodecode
-
-    :created_on: Apr 27, 2010
-    :author: marcink
-    :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
-    :license: GPLv3, see COPYING for more details.
-"""
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
@@ -22,6 +11,18 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
+"""
+rhodecode.controllers.admin.permissions
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+permissions controller for Rhodecode
+
+:created_on: Apr 27, 2010
+:author: marcink
+:copyright: (c) 2013 RhodeCode GmbH.
+:license: GPLv3, see LICENSE for more details.
+"""
+
 
 import logging
 import traceback
@@ -55,6 +56,7 @@
     def __before__(self):
         super(PermissionsController, self).__before__()
 
+    def __load_data(self):
         c.repo_perms_choices = [('repository.none', _('None'),),
                                    ('repository.read', _('Read'),),
                                    ('repository.write', _('Write'),),
@@ -83,6 +85,11 @@
         c.repo_create_choices = [('hg.create.none', _('Disabled')),
                                  ('hg.create.repository', _('Enabled'))]
 
+        c.repo_create_on_write_choices = [
+            ('hg.create.write_on_repogroup.true', _('Enabled')),
+            ('hg.create.write_on_repogroup.false', _('Disabled')),
+        ]
+
         c.user_group_create_choices = [('hg.usergroup.create.false', _('Disabled')),
                                        ('hg.usergroup.create.true', _('Enabled'))]
 
@@ -92,50 +99,28 @@
         c.fork_choices = [('hg.fork.none', _('Disabled')),
                           ('hg.fork.repository', _('Enabled'))]
 
-    def index(self, format='html'):
-        """GET /permissions: All items in the collection"""
-        # url('permissions')
-
-    def create(self):
-        """POST /permissions: Create a new item"""
-        # url('permissions')
-
-    def new(self, format='html'):
-        """GET /permissions/new: Form to create a new item"""
-        # url('new_permission')
-
-    def update(self, id):
-        """PUT /permissions/id: Update an existing item"""
-        # Forms posted to this method should contain a hidden field:
-        #    <input type="hidden" name="_method" value="PUT" />
-        # Or using helpers:
-        #    h.form(url('permission', id=ID),
-        #           method='put')
-        # url('permission', id=ID)
-        if id == 'default':
-            c.user = default_user = User.get_default_user()
-            c.perm_user = AuthUser(user_id=default_user.user_id)
-            c.user_ip_map = UserIpMap.query()\
-                            .filter(UserIpMap.user == default_user).all()
-
+    def permission_globals(self):
+        c.active = 'globals'
+        self.__load_data()
+        if request.POST:
             _form = DefaultPermissionsForm(
-                    [x[0] for x in c.repo_perms_choices],
-                    [x[0] for x in c.group_perms_choices],
-                    [x[0] for x in c.user_group_perms_choices],
-                    [x[0] for x in c.repo_create_choices],
-                    [x[0] for x in c.repo_group_create_choices],
-                    [x[0] for x in c.user_group_create_choices],
-                    [x[0] for x in c.fork_choices],
-                    [x[0] for x in c.register_choices],
-                    [x[0] for x in c.extern_activate_choices],
-            )()
+                [x[0] for x in c.repo_perms_choices],
+                [x[0] for x in c.group_perms_choices],
+                [x[0] for x in c.user_group_perms_choices],
+                [x[0] for x in c.repo_create_choices],
+                [x[0] for x in c.repo_create_on_write_choices],
+                [x[0] for x in c.repo_group_create_choices],
+                [x[0] for x in c.user_group_create_choices],
+                [x[0] for x in c.fork_choices],
+                [x[0] for x in c.register_choices],
+                [x[0] for x in c.extern_activate_choices])()
 
             try:
                 form_result = _form.to_python(dict(request.POST))
-                form_result.update({'perm_user_name': id})
+                form_result.update({'perm_user_name': 'default'})
                 PermissionModel().update(form_result)
                 Session().commit()
-                h.flash(_('Default permissions updated successfully'),
+                h.flash(_('Global permissions updated successfully'),
                         category='success')
 
             except formencode.Invalid, errors:
@@ -152,66 +137,58 @@
                 h.flash(_('Error occurred during update of permissions'),
                         category='error')
 
-        return redirect(url('edit_permission', id=id))
+            return redirect(url('admin_permissions'))
+
+        c.user = User.get_default_user()
+        defaults = {'anonymous': c.user.active}
 
-    def delete(self, id):
-        """DELETE /permissions/id: Delete an existing item"""
-        # Forms posted to this method should contain a hidden field:
-        #    <input type="hidden" name="_method" value="DELETE" />
-        # Or using helpers:
-        #    h.form(url('permission', id=ID),
-        #           method='delete')
-        # url('permission', id=ID)
+        for p in c.user.user_perms:
+            if p.permission.permission_name.startswith('repository.'):
+                defaults['default_repo_perm'] = p.permission.permission_name
+
+            if p.permission.permission_name.startswith('group.'):
+                defaults['default_group_perm'] = p.permission.permission_name
 
-    def show(self, id, format='html'):
-        """GET /permissions/id: Show a specific item"""
-        # url('permission', id=ID)
-        Permission.get_or_404(-1)
+            if p.permission.permission_name.startswith('usergroup.'):
+                defaults['default_user_group_perm'] = p.permission.permission_name
 
-    def edit(self, id, format='html'):
-        """GET /permissions/id/edit: Form to edit an existing item"""
-        #url('edit_permission', id=ID)
+            if p.permission.permission_name.startswith('hg.create.write_on_repogroup'):
+                defaults['create_on_write'] = p.permission.permission_name
 
-        #this form can only edit default user permissions
-        if id == 'default':
-            c.user = User.get_default_user()
-            defaults = {'anonymous': c.user.active}
-            c.perm_user = c.user.AuthUser
-            c.user_ip_map = UserIpMap.query()\
-                            .filter(UserIpMap.user == c.user).all()
-            for p in c.user.user_perms:
-                if p.permission.permission_name.startswith('repository.'):
-                    defaults['default_repo_perm'] = p.permission.permission_name
+            elif p.permission.permission_name.startswith('hg.create.'):
+                defaults['default_repo_create'] = p.permission.permission_name
+
+            if p.permission.permission_name.startswith('hg.repogroup.'):
+                defaults['default_repo_group_create'] = p.permission.permission_name
+
+            if p.permission.permission_name.startswith('hg.usergroup.'):
+                defaults['default_user_group_create'] = p.permission.permission_name
 
-                if p.permission.permission_name.startswith('group.'):
-                    defaults['default_group_perm'] = p.permission.permission_name
-
-                if p.permission.permission_name.startswith('usergroup.'):
-                    defaults['default_user_group_perm'] = p.permission.permission_name
+            if p.permission.permission_name.startswith('hg.register.'):
+                defaults['default_register'] = p.permission.permission_name
 
-                if p.permission.permission_name.startswith('hg.create.'):
-                    defaults['default_repo_create'] = p.permission.permission_name
+            if p.permission.permission_name.startswith('hg.extern_activate.'):
+                defaults['default_extern_activate'] = p.permission.permission_name
 
-                if p.permission.permission_name.startswith('hg.repogroup.'):
-                    defaults['default_repo_group_create'] = p.permission.permission_name
-
-                if p.permission.permission_name.startswith('hg.usergroup.'):
-                    defaults['default_user_group_create'] = p.permission.permission_name
+            if p.permission.permission_name.startswith('hg.fork.'):
+                defaults['default_fork'] = p.permission.permission_name
 
-                if p.permission.permission_name.startswith('hg.register.'):
-                    defaults['default_register'] = p.permission.permission_name
-
-                if p.permission.permission_name.startswith('hg.extern_activate.'):
-                    defaults['default_extern_activate'] = p.permission.permission_name
-
-                if p.permission.permission_name.startswith('hg.fork.'):
-                    defaults['default_fork'] = p.permission.permission_name
+        return htmlfill.render(
+            render('admin/permissions/permissions.html'),
+            defaults=defaults,
+            encoding="UTF-8",
+            force_defaults=False)
 
-            return htmlfill.render(
-                render('admin/permissions/permissions.html'),
-                defaults=defaults,
-                encoding="UTF-8",
-                force_defaults=False
-            )
-        else:
-            return redirect(url('admin_home'))
+    def permission_ips(self):
+        c.active = 'ips'
+        c.user = User.get_default_user()
+        c.user_ip_map = UserIpMap.query()\
+                        .filter(UserIpMap.user == c.user).all()
+
+        return render('admin/permissions/permissions.html')
+
+    def permission_perms(self):
+        c.active = 'perms'
+        c.user = User.get_default_user()
+        c.perm_user = c.user.AuthUser
+        return render('admin/permissions/permissions.html')