vbatts/quay
Archived
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Merge branch 'swaggerlikeus' of ssh://bitbucket.org/yackob03/quay into swaggerlikeus

Browse source
This commit is contained in:
jakedt 2014-03-18 16:48:24 -04:00
commit 89556172d5
8 changed files with 104 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
auth/auth.py
View file

@ -14,7 +14,7 @@ from data.model import oauth
from app import app from app import app
from permissions import QuayDeferredPermissionUser from permissions import QuayDeferredPermissionUser
from auth_context import (set_authenticated_user, set_validated_token, from auth_context import (set_authenticated_user, set_validated_token,
set_authenticated_user_deferred) set_authenticated_user_deferred, set_validated_oauth_token)
from util.http import abort from util.http import abort
@ -140,7 +140,9 @@ def process_oauth(f):
scope_set = scopes.scopes_from_scope_string(validated.scope) scope_set = scopes.scopes_from_scope_string(validated.scope)
logger.debug('Successfully validated oauth access token: %s with scope: %s', token, logger.debug('Successfully validated oauth access token: %s with scope: %s', token,
scope_set) scope_set)
set_authenticated_user(validated.authorized_user) set_authenticated_user(validated.authorized_user)
set_validated_oauth_token(validated)
new_identity = QuayDeferredPermissionUser(validated.authorized_user.username, 'username', new_identity = QuayDeferredPermissionUser(validated.authorized_user.username, 'username',
scope_set) scope_set)

9
auth/auth_context.py
View file

@ -35,6 +35,15 @@ def set_authenticated_user_deferred(username_or_robotname):
ctx.authenticated_username = username_or_robotname ctx.authenticated_username = username_or_robotname
def get_validated_oauth_token():
return getattr(_request_ctx_stack.top, 'validated_oauth_token', None)
def set_validated_oauth_token(token):
ctx = _request_ctx_stack.top
ctx.validated_oauth_token = token
def get_validated_token(): def get_validated_token():
return getattr(_request_ctx_stack.top, 'validated_token', None) return getattr(_request_ctx_stack.top, 'validated_token', None)

6
data/model/oauth.py
View file

@ -176,3 +176,9 @@ def validate_access_token(access_token):
return found return found
except OAuthAccessToken.DoesNotExist: except OAuthAccessToken.DoesNotExist:
return None return None
def get_application_for_client_id(client_id):
try:
return OAuthApplication.get(client_id=client_id)
except OAuthApplication.DoesNotExist:
return None

13
endpoints/api/__init__.py
View file

@ -16,7 +16,7 @@ from auth.permissions import (ReadRepositoryPermission,
ModifyRepositoryPermission, ModifyRepositoryPermission,
AdministerRepositoryPermission) AdministerRepositoryPermission)
from auth import scopes from auth import scopes
from auth.auth_context import get_authenticated_user from auth.auth_context import get_authenticated_user, get_validated_oauth_token
from auth.auth import process_oauth from auth.auth import process_oauth
@ -216,7 +216,16 @@ def request_error(exception=None, **kwargs):
raise InvalidRequest(message, data) raise InvalidRequest(message, data)
def log_action(kind, user_or_orgname, metadata={}, repo=None): def log_action(kind, user_or_orgname, metadata=None, repo=None):
if not metadata:
metadata = {}
oauth_token = get_validated_oauth_token()
if oauth_token:
metadata['oauth_token_id'] = oauth_token.id
metadata['oauth_token_application_id'] = oauth_token.application.client_id
metadata['oauth_token_application'] = oauth_token.application.name
performer = get_authenticated_user() performer = get_authenticated_user()
model.log_action(kind, user_or_orgname, performer=performer, ip=request.remote_addr, model.log_action(kind, user_or_orgname, performer=performer, ip=request.remote_addr,
metadata=metadata, repository=repo) metadata=metadata, repository=repo)

20
endpoints/api/organization.py
View file

@ -252,4 +252,22 @@ class OrganizationMember(ApiResource):
return {'member': member_dict} return {'member': member_dict}
raise Unauthorized() raise Unauthorized()
@resource('/v1/app/<client_id>')
class ApplicationInformation(ApiResource):
""" Resource that returns public information about a registered application. """
@nickname('getApplicationInformation')
def get(self, client_id):
""" Get information on the specified application. """
application = model.oauth.get_application_for_client_id(client_id)
if not application:
raise NotFound()
return {
'name': application.name,
'description': application.description,
'uri': application.application_uri,
'organization': org_view(application.organization, [])
}

4
static/directives/application-reference.html Normal file
View file

@ -0,0 +1,4 @@
<span class="application-reference-element">
<i class="fa fa-cloud"></i>
<a href="javascript:void(0)" ng-click="showAppDetails()">{{ title }}</a>
</span>

18
static/directives/logs-view.html
View file

@ -42,7 +42,7 @@
<thead> <thead>
<th>Description</th> <th>Description</th>
<th style="min-width: 226px">Date/Time</th> <th style="min-width: 226px">Date/Time</th>
<th>User/Token</th> <th>User/Token/App</th>
</thead> </thead>
<tbody> <tbody>
@ -53,14 +53,24 @@
</td> </td>
<td>{{ log.datetime }}</td> <td>{{ log.datetime }}</td>
<td> <td>
<span class="log-performer" ng-show="log.performer"> <span class="log-performer" ng-if="log.metadata.oauth_token_application">
<div>
<span class="application-reference" title="log.metadata.oauth_token_application"
client-id="log.metadata.oauth_token_application_id"></span>
</div>
<div style="text-align: center; font-size: 12px; color: #aaa; padding: 4px;">on behalf of</div>
<div>
<span class="entity-reference" entity="log.performer" namespace="organization.name"></span>
</div>
</span>
<span class="log-performer" ng-if="!log.metadata.oauth_token_application && log.performer">
<span class="entity-reference" entity="log.performer" namespace="organization.name"></span> <span class="entity-reference" entity="log.performer" namespace="organization.name"></span>
</span> </span>
<span class="log-performer" ng-show="!log.performer && log.metadata.token"> <span class="log-performer" ng-if="!log.performer && log.metadata.token">
<i class="fa fa-key"></i> <i class="fa fa-key"></i>
<span>{{ log.metadata.token }}</span> <span>{{ log.metadata.token }}</span>
</span> </span>
<span ng-show="!log.performer && !log.metadata.token"> <span ng-if="!log.performer && !log.metadata.token">
(anonymous) (anonymous)
</span> </span>
</td> </td>

38
static/js/app.js
View file

@ -921,6 +921,44 @@ quayApp.directive('entityReference', function () {
}); });
quayApp.directive('applicationReference', function () {
var directiveDefinitionObject = {
priority: 0,
templateUrl: '/static/directives/application-reference.html',
replace: false,
transclude: false,
restrict: 'C',
scope: {
'title': '=title',
'clientId': '=clientId'
},
controller: function($scope, $element, ApiService, $modal) {
$scope.showAppDetails = function() {
var params = {
'client_id': $scope.clientId
};
ApiService.getApplicationInformation(null, params).then(function(resp) {
// TODO: display the application information here.
}, function() {
bootbox.dialog({
"message": 'The application could not be found; it might have been deleted.',
"title": "Cannot find application",
"buttons": {
"close": {
"label": "Close",
"className": "btn-primary"
}
}
});
});
};
}
};
return directiveDefinitionObject;
});
quayApp.directive('markdownView', function () { quayApp.directive('markdownView', function () {
var directiveDefinitionObject = { var directiveDefinitionObject = {
priority: 0, priority: 0,