Add e-mail authorization to the repository notification flow. Also validates the creation of the other notification methods.

2014-07-28 14:58:12 -04:00 · 2014-07-28 14:58:12 -04:00 · 34fc279092
commit 34fc279092
parent 56fec63fcd
15 changed files with 483 additions and 34 deletions
--- a/data/database.py
+++ b/data/database.py
@ -382,10 +382,27 @@ class RepositoryNotification(BaseModel):
  config_json = TextField()


+class RepositoryAuthorizedEmail(BaseModel):
+  repository = ForeignKeyField(Repository, index=True)
+  email = CharField()
+  code = CharField(default=random_string_generator(), unique=True, index=True)
+  confirmed = BooleanField(default=False)
+
+  class Meta:
+    database = db
+    read_slaves = (read_slave,)
+    indexes = (
+      # create a unique index on email and repository
+      (('email', 'repository'), True),
+    )
+  
+
+
 all_models = [User, Repository, Image, AccessToken, Role, RepositoryPermission, Visibility,
              RepositoryTag, EmailConfirmation, FederatedLogin, LoginService, QueueItem,
              RepositoryBuild, Team, TeamMember, TeamRole, LogEntryKind, LogEntry,
              PermissionPrototype, ImageStorage, BuildTriggerService, RepositoryBuildTrigger,
              OAuthApplication, OAuthAuthorizationCode, OAuthAccessToken, NotificationKind,
              Notification, ImageStorageLocation, ImageStoragePlacement,
-              ExternalNotificationEvent, ExternalNotificationMethod, RepositoryNotification]
+              ExternalNotificationEvent, ExternalNotificationMethod, RepositoryNotification,
+              RepositoryAuthorizedEmail]
--- a/data/model/legacy.py
+++ b/data/model/legacy.py
@ -1763,3 +1763,39 @@ def check_health():
    return found_count > 0
  except:
    return False
+
+def get_email_authorized_for_repo(namespace, repository, email):
+  found = list(RepositoryAuthorizedEmail.select()
+            .join(Repository)
+            .where(Repository.namespace == namespace,
+                   Repository.name == repository,
+                   RepositoryAuthorizedEmail.email == email)
+            .switch(RepositoryAuthorizedEmail)
+            .limit(1))
+  if not found or len(found) < 1:
+    return None
+
+  return found[0]
+
+
+def create_email_authorization_for_repo(namespace_name, repository_name, email):
+  try:
+    repo = Repository.get(Repository.name == repository_name,
+                          Repository.namespace == namespace_name)
+  except Repository.DoesNotExist:
+    raise DataModelException('Invalid repository %s/%s' %
+                             (namespace_name, repository_name))
+
+  return RepositoryAuthorizedEmail.create(repository=repo, email=email, confirmed=False)
+
+
+def confirm_email_authorization_for_repo(code):
+  try:
+    found = RepositoryAuthorizedEmail.get(RepositoryAuthorizedEmail.code == code)
+  except RepositoryAuthorizedEmail.DoesNotExist:
+    raise DataModelException('Invalid confirmation code.')    
+
+  found.confirmed = True
+  found.save()
+
+  return found