def add_module(request, revision_id): """ Add new module to the PackageRevision """ revision = get_object_with_related_or_404(PackageRevision, pk=revision_id) if request.user.pk != revision.author.pk: log_msg = ("[security] Attempt to add a module to package (%s) by " "non-owner (%s)" % (id_number, request.user)) log.warning(log_msg) return HttpResponseForbidden( 'You are not the author of this %s' % escape( revision.package.get_type_name())) filename = request.POST.get('filename') mod = Module( filename=filename, author=request.user, code="""// %s.js - %s's module // author: %s""" % (filename, revision.package.full_name, request.user.get_profile()) ) try: mod.save() revision.module_add(mod) except FilenameExistException, err: mod.delete() return HttpResponseForbidden(escape(str(err)))
def package_add_module(r, id_number, type_id, revision_number=None, version_name=None): """ Add new module to the PackageRevision """ revision = get_package_revision(id_number, type_id, revision_number, version_name) if r.user.pk != revision.author.pk: log_msg = ("[security] Attempt to add a module to package (%s) by " "non-owner (%s)" % (id_number, r.user)) log.warning(log_msg) return HttpResponseForbidden( 'You are not the author of this %s' % escape( revision.package.get_type_name())) filename = pathify(r.POST.get('filename')) mod = Module( filename=filename, author=r.user, code="""// %s.js - %s's module // author: %s""" % (filename, revision.package.full_name, r.user.get_profile()) ) try: mod.save() revision.module_add(mod) except FilenameExistException, err: mod.delete() return HttpResponseForbidden(escape(str(err)))
def add_module(request, revision_id): """ Add new module to the PackageRevision """ revision = get_object_with_related_or_404(PackageRevision, pk=revision_id) if request.user.pk != revision.author.pk: log_msg = ("[security] Attempt to add a module to package (%s) by " "non-owner (%s)" % (id_number, request.user)) log.warning(log_msg) return HttpResponseForbidden('You are not the author of this %s' % escape(revision.package.get_type_name())) filename = request.POST.get('filename') mod = Module( filename=filename, author=request.user, code="""// %s.js - %s's module // author: %s""" % (filename, revision.package.full_name, request.user.get_profile())) try: mod.save() revision.module_add(mod) except FilenameExistException, err: mod.delete() return HttpResponseForbidden(escape(str(err)))
def package_add_module(r, id_number, type_id, revision_number=None, version_name=None): """ Add new module to the PackageRevision """ revision = get_package_revision(id_number, type_id, revision_number, version_name) if r.user.pk != revision.author.pk: log_msg = "User %s wanted to add a module to not his own Package %s." % (r.user, id_number) log = commonware.log.getLogger("f.jetpack") log.debug(log_msg) return HttpResponseForbidden("You are not the author of this %s" % escape(revision.package.get_type_name())) filename = slugify(r.POST.get("filename")) mod = Module( filename=filename, author=r.user, code="""// %s.js - %s's module // author: %s""" % (filename, revision.package.full_name, r.user.get_profile()), ) try: mod.save() revision.module_add(mod) except FilenameExistException, err: mod.delete() return HttpResponseForbidden(escape(str(err)))
def package_add_module(r, id_number, type_id, revision_number=None, version_name=None): """ Add new module to the PackageRevision """ revision = get_package_revision(id_number, type_id, revision_number, version_name) if r.user.pk != revision.author.pk: return HttpResponseForbidden( 'You are not the author of this %s' % escape( revision.package.get_type_name())) filename = slugify(r.POST.get('filename')) mod = Module( filename=filename, author=r.user, code="""// %s.js - %s's module // author: %s""" % (filename, revision.package.full_name, r.user.get_profile()) ) try: mod.save() revision.module_add(mod) except FilenameExistException, err: mod.delete() return HttpResponseForbidden(escape(str(err)))