Add UUID to User model and use in cookie.

2014-11-11 17:22:37 -05:00 · 2014-11-11 17:22:37 -05:00 · 9d677b8eb3
commit 9d677b8eb3
parent b3886570eb
8 changed files with 91 additions and 61 deletions
--- a/data/database.py
+++ b/data/database.py
@ -26,7 +26,7 @@ SCHEME_RANDOM_FUNCTION = {
  'mysql+pymysql': fn.Rand,
  'sqlite': fn.Random,
  'postgresql': fn.Random,
-  'postgresql+psycopg2': fn.Random,  
+  'postgresql+psycopg2': fn.Random,
 }

 class CallableProxy(Proxy):
@ -137,6 +137,7 @@ class BaseModel(ReadSlaveModel):


 class User(BaseModel):
+  uuid = CharField(default=uuid_generator)
  username = CharField(unique=True, index=True)
  password_hash = CharField(null=True)
  email = CharField(unique=True, index=True,
@ -212,7 +213,7 @@ class FederatedLogin(BaseModel):
  user = QuayUserField(allows_robots=True, index=True)
  service = ForeignKeyField(LoginService, index=True)
  service_ident = CharField()
-  metadata_json = TextField(default='{}')  
+  metadata_json = TextField(default='{}')

  class Meta:
    database = db
@ -250,7 +251,7 @@ class Repository(BaseModel):
    # Therefore, we define our own deletion order here and use the dependency system to verify it.
    ordered_dependencies = [RepositoryAuthorizedEmail, RepositoryTag, Image, LogEntry,
                            RepositoryBuild, RepositoryBuildTrigger, RepositoryNotification,
-                            RepositoryPermission, AccessToken]                          
+                            RepositoryPermission, AccessToken]

    for query, fk in self.dependencies(search_nullable=True):
      model = fk.model_class
@ -457,7 +458,7 @@ class LogEntry(BaseModel):
  kind = ForeignKeyField(LogEntryKind, index=True)
  account = QuayUserField(index=True, related_name='account')
  performer = QuayUserField(allows_robots=True, index=True, null=True,
-                            related_name='performer')  
+                            related_name='performer')
  repository = ForeignKeyField(Repository, index=True, null=True)
  datetime = DateTimeField(default=datetime.now, index=True)
  ip = CharField(null=True)
@ -537,7 +538,7 @@ class RepositoryAuthorizedEmail(BaseModel):
      # create a unique index on email and repository
      (('email', 'repository'), True),
    )
-  
+


 all_models = [User, Repository, Image, AccessToken, Role, RepositoryPermission, Visibility,
--- a/data/migrations/versions/17f11e265e13_add_uuid_field_to_user.py
+++ b/data/migrations/versions/17f11e265e13_add_uuid_field_to_user.py
@ -0,0 +1,26 @@
+"""add uuid field to user
+
+Revision ID: 17f11e265e13
+Revises: 204abf14783d
+Create Date: 2014-11-11 14:32:54.866188
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = '17f11e265e13'
+down_revision = '204abf14783d'
+
+from alembic import op
+import sqlalchemy as sa
+from sqlalchemy.dialects import mysql
+
+def upgrade(tables):
+    ### commands auto generated by Alembic - please adjust! ###
+    op.add_column('user', sa.Column('uuid', sa.String(length=255), nullable=False))
+    ### end Alembic commands ###
+
+
+def downgrade(tables):
+    ### commands auto generated by Alembic - please adjust! ###
+    op.drop_column('user', 'uuid')
+    ### end Alembic commands ###
--- a/data/model/legacy.py
+++ b/data/model/legacy.py
@ -132,7 +132,7 @@ def create_user(username, password, email, auto_verify=False):

  created = _create_user(username, email)
  created.password_hash = hash_password(password)
-  created.verified = auto_verify  
+  created.verified = auto_verify
  created.save()

  return created
@ -194,7 +194,7 @@ def create_organization(name, email, creating_user):
    return new_org
  except InvalidUsernameException:
    msg = ('Invalid organization name: %s Organization names must consist ' +
-           'solely of lower case letters, numbers, and underscores. ' + 
+           'solely of lower case letters, numbers, and underscores. ' +
           '[a-z0-9_]') % name
    raise InvalidOrganizationException(msg)

@ -380,7 +380,7 @@ def remove_team(org_name, team_name, removed_by_username):
 def add_or_invite_to_team(inviter, team, user=None, email=None, requires_invite=True):
  # If the user is a member of the organization, then we simply add the
  # user directly to the team. Otherwise, an invite is created for the user/email.
-  # We return None if the user was directly added and the invite object if the user was invited.  
+  # We return None if the user was directly added and the invite object if the user was invited.
  if user and requires_invite:
    orgname = team.organization.username

@ -390,7 +390,7 @@ def add_or_invite_to_team(inviter, team, user=None, email=None, requires_invite=
      if not user.username.startswith(orgname + '+'):
        raise InvalidTeamMemberException('Cannot add the specified robot to this team, ' +
                                         'as it is not a member of the organization')
-    else:      
+    else:
      Org = User.alias()
      found = User.select(User.username)
      found = found.where(User.username == user.username).join(TeamMember).join(Team)
@ -525,7 +525,7 @@ def confirm_user_email(code):
    code = EmailConfirmation.get(EmailConfirmation.code == code,
                                 EmailConfirmation.email_confirm == True)
  except EmailConfirmation.DoesNotExist:
-    raise DataModelException('Invalid email confirmation code.')    
+    raise DataModelException('Invalid email confirmation code.')

  user = code.user
  user.verified = True
@ -534,11 +534,11 @@ def confirm_user_email(code):
  new_email = code.new_email
  if new_email:
    if find_user_by_email(new_email):
-      raise DataModelException('E-mail address already used.')    
-      
+      raise DataModelException('E-mail address already used.')
+
    old_email = user.email
    user.email = new_email
-  
+
  user.save()

  code.delete_instance()
@ -614,13 +614,20 @@ def get_namespace_by_user_id(namespace_user_db_id):
    raise InvalidUsernameException('User with id does not exist: %s' % namespace_user_db_id)


+def get_user_by_uuid(user_uuid):
+  try:
+    return User.get(User.uuid == user_uuid, User.organization == False)
+  except User.DoesNotExist:
+    return None
+
+
 def get_user_or_org_by_customer_id(customer_id):
  try:
    return User.get(User.stripe_id == customer_id)
  except User.DoesNotExist:
    return None

-def get_matching_teams(team_prefix, organization):  
+def get_matching_teams(team_prefix, organization):
  query = Team.select().where(Team.name ** (team_prefix + '%'),
                              Team.organization == organization)
  return query.limit(10)
@ -628,13 +635,13 @@ def get_matching_teams(team_prefix, organization):

 def get_matching_users(username_prefix, robot_namespace=None,
                       organization=None):
-  direct_user_query = (User.username ** (username_prefix + '%') & 
+  direct_user_query = (User.username ** (username_prefix + '%') &
                       (User.organization == False) & (User.robot == False))

  if robot_namespace:
    robot_prefix = format_robot_username(robot_namespace, username_prefix)
    direct_user_query = (direct_user_query |
-                         (User.username ** (robot_prefix + '%') & 
+                         (User.username ** (robot_prefix + '%') &
                          (User.robot == True)))

  query = (User
@ -1198,7 +1205,7 @@ def __translate_ancestry(old_ancestry, translations, repository, username, prefe
      translations[old_id] = image_in_repo.id
    return translations[old_id]

-  # Select all the ancestor Docker IDs in a single query.  
+  # Select all the ancestor Docker IDs in a single query.
  old_ids = [int(id_str) for id_str in old_ancestry.split('/')[1:-1]]
  query = Image.select(Image.id, Image.docker_image_id).where(Image.id << old_ids)
  old_images = {i.id: i.docker_image_id for i in  query}
@ -1592,7 +1599,7 @@ def garbage_collect_storage(storage_id_whitelist):
                                                  storage_id_whitelist,
                                                  (ImageStorage, ImageStoragePlacement,
                                                   ImageStorageLocation))
-    
+
    paths_to_remove = placements_query_to_paths_set(placements_to_remove.clone())

    # Remove the placements for orphaned storages
@ -1607,7 +1614,7 @@ def garbage_collect_storage(storage_id_whitelist):
    orphaned_storages = list(orphaned_storage_query(ImageStorage.select(ImageStorage.id),
                                                    storage_id_whitelist,
                                                    (ImageStorage.id,)))
-    if len(orphaned_storages) > 0:    
+    if len(orphaned_storages) > 0:
      (ImageStorage
       .delete()
       .where(ImageStorage.id << orphaned_storages)
@ -1967,7 +1974,7 @@ def create_repository_build(repo, access_token, job_config_obj, dockerfile_id,
 def get_pull_robot_name(trigger):
  if not trigger.pull_robot:
    return None
-  
+
  return trigger.pull_robot.username


@ -2146,14 +2153,14 @@ def list_notifications(user, kind_name=None, id_filter=None, include_dismissed=F
                                                       AdminTeamMember.team))
           .join(AdminUser, JOIN_LEFT_OUTER, on=(AdminTeamMember.user ==
                                                 AdminUser.id))
-           .where((Notification.target == user) | 
+           .where((Notification.target == user) |
                  ((AdminUser.id == user) & (TeamRole.name == 'admin')))
           .order_by(Notification.created)
           .desc())

  if not include_dismissed:
    query = query.switch(Notification).where(Notification.dismissed == False)
-  
+
  if kind_name:
    query = (query
      .switch(Notification)
@ -2278,7 +2285,7 @@ def confirm_email_authorization_for_repo(code):
             .where(RepositoryAuthorizedEmail.code == code)
             .get())
  except RepositoryAuthorizedEmail.DoesNotExist:
-    raise DataModelException('Invalid confirmation code.')    
+    raise DataModelException('Invalid confirmation code.')

  found.confirmed = True
  found.save()
@ -2310,7 +2317,7 @@ def lookup_team_invite(code, user=None):
    raise DataModelException('Invalid confirmation code.')

  if user and found.user != user:
-    raise DataModelException('Invalid confirmation code.')    
+    raise DataModelException('Invalid confirmation code.')

  return found

@ -2330,7 +2337,7 @@ def confirm_team_invite(code, user):

  # If the invite is for a specific user, we have to confirm that here.
  if found.user is not None and found.user != user:
-    message = """This invite is intended for user "%s". 
+    message = """This invite is intended for user "%s".
                 Please login to that account and try again.""" % found.user.username
    raise DataModelException(message)