Add tracking of the kind of temporary access tokens, so we can display if a pull/push by token is for a build worker

2015-02-17 12:35:16 -05:00 · 2015-02-17 12:35:16 -05:00 · 83e05d2342
commit 83e05d2342
parent 3e04e3cfd7
10 changed files with 88 additions and 14 deletions
--- a/data/model/legacy.py
+++ b/data/model/legacy.py
@ -15,7 +15,8 @@ from data.database import (User, Repository, Image, AccessToken, Role, Repositor
                           RepositoryNotification, RepositoryAuthorizedEmail, TeamMemberInvite,
                           DerivedImageStorage, ImageStorageTransformation, random_string_generator,
                           db, BUILD_PHASE, QuayUserField, ImageStorageSignature, QueueItem,
-                           ImageStorageSignatureKind, validate_database_url, db_for_update)
+                           ImageStorageSignatureKind, validate_database_url, db_for_update,
+                           AccessTokenKind)
 from peewee import JOIN_LEFT_OUTER, fn
 from util.validation import (validate_username, validate_email, validate_password,
                             INVALID_PASSWORD_MESSAGE)
@ -1902,10 +1903,14 @@ def get_private_repo_count(username):
          .count())


-def create_access_token(repository, role):
+def create_access_token(repository, role, kind=None, friendly_name=None):
  role = Role.get(Role.name == role)
+  kind_ref = None
+  if kind is not None:
+    kind_ref = AccessTokenKind.get(AccessTokenKind.name == kind)
+
  new_token = AccessToken.create(repository=repository, temporary=True,
-                                 role=role)
+                                 role=role, kind=kind_ref, friendly_name=friendly_name)
  return new_token


@ -2024,10 +2029,10 @@ def create_repository_build(repo, access_token, job_config_obj, dockerfile_id,
    pull_robot = lookup_robot(pull_robot_name)

  return RepositoryBuild.create(repository=repo, access_token=access_token,
-                                job_config=json.dumps(job_config_obj),
-                                display_name=display_name, trigger=trigger,
-                                resource_key=dockerfile_id,
-                                pull_robot=pull_robot)
+                                 job_config=json.dumps(job_config_obj),
+                                 display_name=display_name, trigger=trigger,
+                                 resource_key=dockerfile_id,
+                                 pull_robot=pull_robot)


 def get_pull_robot_name(trigger):