def grant_users_group_permission(self, repo, group_name, perm):
"""
Grant permission for users group on given repository, or update
existing one if found
:param repo: Instance of Repository, repository_id, or repository name
:param group_name: Instance of UserGroup, users_group_id,
or users group name
:param perm: Instance of Permission, or permission_name
"""
repo = self.__get_repo(repo)
group_name = self.__get_users_group(group_name)
permission = self.__get_perm(perm)
# check if we have that permission already
obj = self.sa.query(UsersGroupRepoToPerm)\
.filter(UsersGroupRepoToPerm.users_group == group_name)\
.filter(UsersGroupRepoToPerm.repository == repo)\
.scalar()
if obj is None:
# create new
obj = UsersGroupRepoToPerm()
obj.repository = repo
obj.users_group = group_name
obj.permission = permission
self.sa.add(obj)
def grant_users_group_permission(self, repo, group_name, perm):
"""
Grant permission for users group on given repository, or update
existing one if found
:param repo: Instance of Repository, repository_id, or repository name
:param group_name: Instance of UserGroup, users_group_id,
or users group name
:param perm: Instance of Permission, or permission_name
"""
repo = self.__get_repo(repo)
group_name = self.__get_users_group(group_name)
permission = self.__get_perm(perm)
# check if we have that permission already
obj = (
self.sa.query(UsersGroupRepoToPerm)
.filter(UsersGroupRepoToPerm.users_group == group_name)
.filter(UsersGroupRepoToPerm.repository == repo)
.scalar()
)
if obj is None:
# create new
obj = UsersGroupRepoToPerm()
obj.repository = repo
obj.users_group = group_name
obj.permission = permission
self.sa.add(obj)
def update_users_group_permission(self, repository, users_group,
permission):
permission = Permission.get_by_key(permission)
current = self.get_users_group_permission(repository, users_group)
if current:
if not current.permission is permission:
current.permission = permission
else:
p = UsersGroupRepoToPerm()
p.users_group = users_group
p.repository = repository
p.permission = permission
self.sa.add(p)
def update_users_group_permission(self, repository, users_group, permission):
permission = Permission.get_by_key(permission)
current = self.get_users_group_permission(repository, users_group)
if current:
if not current.permission is permission:
current.permission = permission
else:
p = UsersGroupRepoToPerm()
p.users_group = users_group
p.repository = repository
p.permission = permission
self.sa.add(p)
Session.commit()
def update(self, repo_name, form_data):
try:
cur_repo = self.get_by_repo_name(repo_name, cache=False)
# update permissions
for member, perm, member_type in form_data["perms_updates"]:
if member_type == "user":
r2p = (
self.sa.query(RepoToPerm)
.filter(RepoToPerm.user == User.by_username(member))
.filter(RepoToPerm.repository == cur_repo)
.one()
)
r2p.permission = self.sa.query(Permission).filter(Permission.permission_name == perm).scalar()
self.sa.add(r2p)
else:
g2p = (
self.sa.query(UsersGroupRepoToPerm)
.filter(UsersGroupRepoToPerm.users_group == UsersGroup.get_by_group_name(member))
.filter(UsersGroupRepoToPerm.repository == cur_repo)
.one()
)
g2p.permission = self.sa.query(Permission).filter(Permission.permission_name == perm).scalar()
self.sa.add(g2p)
# set new permissions
for member, perm, member_type in form_data["perms_new"]:
if member_type == "user":
r2p = RepoToPerm()
r2p.repository = cur_repo
r2p.user = User.by_username(member)
r2p.permission = self.sa.query(Permission).filter(Permission.permission_name == perm).scalar()
self.sa.add(r2p)
else:
g2p = UsersGroupRepoToPerm()
g2p.repository = cur_repo
g2p.users_group = UsersGroup.get_by_group_name(member)
g2p.permission = self.sa.query(Permission).filter(Permission.permission_name == perm).scalar()
self.sa.add(g2p)
# update current repo
for k, v in form_data.items():
if k == "user":
cur_repo.user = User.by_username(v)
elif k == "repo_name":
cur_repo.repo_name = form_data["repo_name_full"]
elif k == "repo_group":
cur_repo.group_id = v
else:
setattr(cur_repo, k, v)
self.sa.add(cur_repo)
if repo_name != form_data["repo_name_full"]:
# rename repository
self.__rename_repo(old=repo_name, new=form_data["repo_name_full"])
self.sa.commit()
except:
log.error(traceback.format_exc())
self.sa.rollback()
raise
def update(self, repo_name, form_data):
try:
cur_repo = self.get_by_repo_name(repo_name, cache=False)
# update permissions
for member, perm, member_type in form_data['perms_updates']:
if member_type == 'user':
r2p = self.sa.query(RepoToPerm)\
.filter(RepoToPerm.user == User.get_by_username(member))\
.filter(RepoToPerm.repository == cur_repo)\
.one()
r2p.permission = self.sa.query(Permission)\
.filter(Permission.permission_name ==
perm).scalar()
self.sa.add(r2p)
else:
g2p = self.sa.query(UsersGroupRepoToPerm)\
.filter(UsersGroupRepoToPerm.users_group ==
UsersGroup.get_by_group_name(member))\
.filter(UsersGroupRepoToPerm.repository ==
cur_repo).one()
g2p.permission = self.sa.query(Permission)\
.filter(Permission.permission_name ==
perm).scalar()
self.sa.add(g2p)
# set new permissions
for member, perm, member_type in form_data['perms_new']:
if member_type == 'user':
r2p = RepoToPerm()
r2p.repository = cur_repo
r2p.user = User.get_by_username(member)
r2p.permission = self.sa.query(Permission)\
.filter(Permission.
permission_name == perm)\
.scalar()
self.sa.add(r2p)
else:
g2p = UsersGroupRepoToPerm()
g2p.repository = cur_repo
g2p.users_group = UsersGroup.get_by_group_name(member)
g2p.permission = self.sa.query(Permission)\
.filter(Permission.
permission_name == perm)\
.scalar()
self.sa.add(g2p)
# update current repo
for k, v in form_data.items():
if k == 'user':
cur_repo.user = User.get_by_username(v)
elif k == 'repo_name':
pass
elif k == 'repo_group':
cur_repo.group_id = v
else:
setattr(cur_repo, k, v)
new_name = cur_repo.get_new_name(form_data['repo_name'])
cur_repo.repo_name = new_name
self.sa.add(cur_repo)
if repo_name != new_name:
# rename repository
self.__rename_repo(old=repo_name, new=new_name)
self.sa.commit()
return cur_repo
except:
log.error(traceback.format_exc())
self.sa.rollback()
raise
