Changeset - fdb78a140ae4
Parent rev.
Child rev.
[Not reviewed]
default
0 2 0
Marcin Kuzminski - 15 years ago 2010-09-28 02:31:10
marcin@python-works.com
fixes #35 hg-app does not respect SCRIPT_NAME
2 files changed with 10 insertions and 3 deletions:
pylons_app/controllers/summary.py
3
1
pylons_app/lib/auth.py
7
2
0 comments (0 inline, 0 general)
pylons_app/controllers/summary.py
Show inline comments
 
@@ -6,98 +6,100 @@
 
# This program is free software; you can redistribute it and/or
 
# modify it under the terms of the GNU General Public License
 
# as published by the Free Software Foundation; version 2
 
# of the License or (at your opinion) any later version of the license.
 
#
 
# This program is distributed in the hope that it will be useful,
 
# but WITHOUT ANY WARRANTY; without even the implied warranty of
 
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 
# GNU General Public License for more details.
 
#
 
# You should have received a copy of the GNU General Public License
 
# along with this program; if not, write to the Free Software
 
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
 
# MA  02110-1301, USA.
 
"""
 
Created on April 18, 2010
 
summary controller for pylons
 
@author: marcink
 
"""
 
from pylons import tmpl_context as c, request, url
 
from pylons_app.lib.auth import LoginRequired, HasRepoPermissionAnyDecorator
 
from pylons_app.lib.base import BaseController, render
 
from pylons_app.lib.utils import OrderedDict
 
from pylons_app.model.hg_model import HgModel
 
from pylons_app.model.db import Statistics
 
from webhelpers.paginate import Page
 
from pylons_app.lib.celerylib import run_task
 
from pylons_app.lib.celerylib.tasks import get_commits_stats
 
from datetime import datetime, timedelta
 
from time import mktime
 
import calendar
 
import logging
 
import json
 
log = logging.getLogger(__name__)
 

			




	
	
	
		
 
class SummaryController(BaseController):

			




	
	
	
		
 
    

			




	
	
	
		
 
    @LoginRequired()

			




	
	
	
		
 
    @HasRepoPermissionAnyDecorator('repository.read', 'repository.write',

			




	
	
	
		
 
                                   'repository.admin')           

			




	
	
	
		
 
    def __before__(self):

			




	
	
	
		
 
        super(SummaryController, self).__before__()

			




	
	
	
		
 
                

			




	
	
	
		
 
    def index(self):

			




	
	
	
		
 
        hg_model = HgModel()

			




	
	
	
		
 
        c.repo_info = hg_model.get_repo(c.repo_name)

			




	
	
	
		
 
        c.repo_changesets = Page(list(c.repo_info[:10]), page=1, items_per_page=20)

			




	
	
	
		
 
        e = request.environ

			




	
	
	
		
 
        uri = u'%(protocol)s://%(user)s@%(host)s/%(repo_name)s' % {

			




	
	
	
		
 
            

			




	
	
	
		
 
        uri = u'%(protocol)s://%(user)s@%(host)s%(prefix)s/%(repo_name)s' % {

			




	
	
	
		
 
                                        'protocol': e.get('wsgi.url_scheme'),

			




	
	
	
		
 
                                        'user':str(c.hg_app_user.username),

			




	
	
	
		
 
                                        'host':e.get('HTTP_HOST'),

			




	
	
	
		
 
                                        'prefix':e.get('SCRIPT_NAME'),

			




	
	
	
		
 
                                        'repo_name':c.repo_name, }

			




	
	
	
		
 
        c.clone_repo_url = uri

			




	
	
	
		
 
        c.repo_tags = OrderedDict()

			




	
	
	
		
 
        for name, hash in c.repo_info.tags.items()[:10]:

			




	
	
	
		
 
            c.repo_tags[name] = c.repo_info.get_changeset(hash)

			




	
	
	
		
 
        

			




	
	
	
		
 
        c.repo_branches = OrderedDict()

			




	
	
	
		
 
        for name, hash in c.repo_info.branches.items()[:10]:

			




	
	
	
		
 
            c.repo_branches[name] = c.repo_info.get_changeset(hash)

			




	
	
	
		
 
        

			




	
	
	
		
 
        td = datetime.today() + timedelta(days=1) 

			




	
	
	
		
 
        y, m, d = td.year, td.month, td.day

			




	
	
	
		
 
        

			




	
	
	
		
 
        ts_min_y = mktime((y - 1, (td - timedelta(days=calendar.mdays[m])).month,

			




	
	
	
		
 
                            d, 0, 0, 0, 0, 0, 0,))

			




	
	
	
		
 
        ts_min_m = mktime((y, (td - timedelta(days=calendar.mdays[m])).month,

			




	
	
	
		
 
                            d, 0, 0, 0, 0, 0, 0,))

			




	
	
	
		
 
        

			




	
	
	
		
 
        ts_max_y = mktime((y, m, d, 0, 0, 0, 0, 0, 0,))

			




	
	
	
		
 
            

			




	
	
	
		
 
        run_task(get_commits_stats, c.repo_info.name, ts_min_y, ts_max_y)

			




	
	
	
		
 
        c.ts_min = ts_min_m

			




	
	
	
		
 
        c.ts_max = ts_max_y

			




	
	
	
		
 
        

			




	
	
	
		
 
        stats = self.sa.query(Statistics)\

			




	
	
	
		
 
            .filter(Statistics.repository == c.repo_info.dbrepo)\

			




	
	
	
		
 
            .scalar()

			




	
	
	
		
 
        

			




	
	
	
		
 
        

			




	
	
	
		
 
        if stats and stats.languages:

			




	
	
	
		
 
            lang_stats = json.loads(stats.languages)

			




	
	
	
		
 
            c.commit_data = stats.commit_activity

			




	
	
	
		
 
            c.overview_data = stats.commit_activity_combined

			




	
	
	
		
 
            c.trending_languages = json.dumps(OrderedDict(

			




	
	
	
		
 
                                       sorted(lang_stats.items(), reverse=True,

			




	
	
	
		
 
                                            key=lambda k: k[1])[:2]

			




	
	
	
		
 
                                        )

			




	
	
	
		
 
                                    )

			




	
	
	
		
 
            print c.trending_languages

			




	
	
	
		
 
        else:

			




	
	
	
		
 
            c.commit_data = json.dumps({})

			




	
	
	
		
 
            c.overview_data = json.dumps([[ts_min_y, 0], [ts_max_y, 0] ])

			




	
	
	
		
 
            c.trending_languages = json.dumps({})

			




	
	
	
		
 
        

			




	
	
	
		
 
        return render('summary/summary.html')

			




	
	
	
		
 

			




        

    


    
    

    

        

                

                    pylons_app/lib/auth.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -210,100 +210,105 @@ def fill_perms(user):

			




	
	
	
		
 
                                                

			




	
	
	
		
 
        #=======================================================================

			




	
	
	
		
 
        # #overwrite default with user permissions if any

			




	
	
	
		
 
        #=======================================================================

			




	
	
	
		
 
        user_perms = sa.query(RepoToPerm, Permission, Repository)\

			




	
	
	
		
 
            .join((Repository, RepoToPerm.repository_id == Repository.repo_id))\

			




	
	
	
		
 
            .join((Permission, RepoToPerm.permission_id == Permission.permission_id))\

			




	
	
	
		
 
            .filter(RepoToPerm.user_id == user.user_id).all()

			




	
	
	
		
 
            

			




	
	
	
		
 
        for perm in user_perms:

			




	
	
	
		
 
            if perm.Repository.user_id == user.user_id:#set admin if owner

			




	
	
	
		
 
                p = 'repository.admin'

			




	
	
	
		
 
            else:

			




	
	
	
		
 
                p = perm.Permission.permission_name

			




	
	
	
		
 
            user.permissions['repositories'][perm.RepoToPerm.repository.repo_name] = p

			




	
	
	
		
 
    meta.Session.remove()         

			




	
	
	
		
 
    return user

			




	
	
	
		
 
    

			




	
	
	
		
 
def get_user(session):

			




	
	
	
		
 
    """

			




	
	
	
		
 
    Gets user from session, and wraps permissions into user

			




	
	
	
		
 
    @param session:

			




	
	
	
		
 
    """

			




	
	
	
		
 
    user = session.get('hg_app_user', AuthUser())

			




	
	
	
		
 
    if user.is_authenticated:

			




	
	
	
		
 
        user = fill_data(user)

			




	
	
	
		
 
    user = fill_perms(user)

			




	
	
	
		
 
    session['hg_app_user'] = user

			




	
	
	
		
 
    session.save()

			




	
	
	
		
 
    return user

			




	
	
	
		
 
        

			




	
	
	
		
 
#===============================================================================

			




	
	
	
		
 
# CHECK DECORATORS

			




	
	
	
		
 
#===============================================================================

			




	
	
	
		
 
class LoginRequired(object):

			




	
	
	
		
 
    """Must be logged in to execute this function else redirect to login page"""

			




	
	
	
		
 
   

			




	
	
	
		
 
    def __call__(self, func):

			




	
	
	
		
 
        return decorator(self.__wrapper, func)

			




	
	
	
		
 
    

			




	
	
	
		
 
    def __wrapper(self, func, *fargs, **fkwargs):

			




	
	
	
		
 
        user = session.get('hg_app_user', AuthUser())

			




	
	
	
		
 
        log.debug('Checking login required for user:%s', user.username)

			




	
	
	
		
 
        if user.is_authenticated:

			




	
	
	
		
 
            log.debug('user %s is authenticated', user.username)

			




	
	
	
		
 
            return func(*fargs, **fkwargs)

			




	
	
	
		
 
        else:

			




	
	
	
		
 
            log.warn('user %s not authenticated', user.username)

			




	
	
	
		
 

			




	
	
	
		
 
            p = request.environ.get('PATH_INFO')

			




	
	
	
		
 
            

			




	
	
	
		
 
            p = ''

			




	
	
	
		
 
            if request.environ.get('SCRIPT_NAME') != '/':

			




	
	
	
		
 
                p += request.environ.get('SCRIPT_NAME')

			




	
	
	
		
 
                

			




	
	
	
		
 
            p += request.environ.get('PATH_INFO')

			




	
	
	
		
 
            if request.environ.get('QUERY_STRING'):

			




	
	
	
		
 
                p += '?' + request.environ.get('QUERY_STRING')

			




	
	
	
		
 
                

			




	
	
	
		
 
            log.debug('redirecting to login page with %s', p)                

			




	
	
	
		
 
            return redirect(url('login_home', came_from=p))

			




	
	
	
		
 

			




	
	
	
		
 
class PermsDecorator(object):

			




	
	
	
		
 
    """Base class for decorators"""

			




	
	
	
		
 
    

			




	
	
	
		
 
    def __init__(self, *required_perms):

			




	
	
	
		
 
        available_perms = config['available_permissions']

			




	
	
	
		
 
        for perm in required_perms:

			




	
	
	
		
 
            if perm not in available_perms:

			




	
	
	
		
 
                raise Exception("'%s' permission is not defined" % perm)

			




	
	
	
		
 
        self.required_perms = set(required_perms)

			




	
	
	
		
 
        self.user_perms = None

			




	
	
	
		
 
        

			




	
	
	
		
 
    def __call__(self, func):

			




	
	
	
		
 
        return decorator(self.__wrapper, func)

			




	
	
	
		
 
    

			




	
	
	
		
 
    

			




	
	
	
		
 
    def __wrapper(self, func, *fargs, **fkwargs):

			




	
	
	
		
 
#        _wrapper.__name__ = func.__name__

			




	
	
	
		
 
#        _wrapper.__dict__.update(func.__dict__)

			




	
	
	
		
 
#        _wrapper.__doc__ = func.__doc__

			




	
	
	
		
 

			




	
	
	
		
 
        self.user_perms = session.get('hg_app_user', AuthUser()).permissions

			




	
	
	
		
 
        log.debug('checking %s permissions %s for %s',

			




	
	
	
		
 
           self.__class__.__name__, self.required_perms, func.__name__)

			




	
	
	
		
 
        

			




	
	
	
		
 
        if self.check_permissions():

			




	
	
	
		
 
            log.debug('Permission granted for %s', func.__name__)

			




	
	
	
		
 
            

			




	
	
	
		
 
            return func(*fargs, **fkwargs)

			




	
	
	
		
 
        

			




	
	
	
		
 
        else:

			




	
	
	
		
 
            log.warning('Permission denied for %s', func.__name__)

			




	
	
	
		
 
            #redirect with forbidden ret code

			




	
	
	
		
 
            return abort(403)

			




	
	
	
		
 

			




	
	
	
		
 
        

			




	
	
	
		
 
        

			




	
	
	
		
 
    def check_permissions(self):

			




	
	
	
		
 
        """Dummy function for overriding"""

			




	
	
	
		
 
        raise Exception('You have to write this function in child class')

			




	
	
	
		
 

			




	
	
	
		
 
class HasPermissionAllDecorator(PermsDecorator):

			




	
	
	
		
 
    """Checks for access permission for all given predicates. All of them 

			




	
	
	
		
 
    have to be meet in order to fulfill the request

			




	
	
	
		
 
    """

			




	
	
	
		
 
        

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        Server instance: clio-12432
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.
            – Support