/ - Diff - Synnefo - Greek Research and Technology Network's projects

Revision 3c22bad0

     from django.contrib.auth.models import AnonymousUser
     from django.core.exceptions import PermissionDenied
     from django.db import IntegrityError
     from django.db.models import Q
     from django.http import Http404
     from synnefo_branding.utils import render_to_string
-...
     from astakos.im.notifications import build_notification, NotificationError
     from astakos.im.models import (
         AstakosUser, Invitation, ProjectMembership, ProjectApplication, Project,
         UserSetting, new_chain)
     from astakos.im.quotas import (qh_sync_user,
                                    register_pending_apps, qh_sync_project)
         UserSetting, Chain, new_chain)
     from astakos.im.quotas import (qh_sync_user, get_pending_app_quota,
                                    register_pending_apps, qh_sync_project,
                                    qh_sync_locked_users, get_users_for_update,
                                    members_to_sync)
     from astakos.im.project_notif import (
         membership_change_notify, membership_enroll_notify,
         membership_request_notify, membership_leave_request_notify,
-...
             raise IOError(m)
     def get_project_for_update(project_id):
     def get_chain_for_update(chain_id):
         try:
             return Project.objects.get_for_update(id=project_id)
         except Project.DoesNotExist:
             m = _(astakos_messages.UNKNOWN_PROJECT_ID) % project_id
             return Chain.objects.get_for_update(chain=chain_id)
         except Chain.DoesNotExist:
             m = _(astakos_messages.UNKNOWN_PROJECT_ID) % chain_id
             raise IOError(m)
     def get_application_for_update(application_id):
     def get_chain_of_application_for_update(app_id):
         app = get_application(app_id)
         return Chain.objects.get_for_update(chain=app.chain_id)
     def get_application(application_id):
         try:
             return ProjectApplication.objects.get_for_update(id=application_id)
             return ProjectApplication.objects.get(id=application_id)
         except ProjectApplication.DoesNotExist:
             m = _(astakos_messages.UNKNOWN_PROJECT_APPLICATION_ID) % application_id
             raise IOError(m)
-...
             raise IOError(m)
     def get_membership_for_update(project_id, user_id):
     def get_membership(project_id, user_id):
         try:
             objs = ProjectMembership.objects
             return objs.get_for_update(project__id=project_id,
                                        person__id=user_id)
             objs = ProjectMembership.objects.select_related('project', 'person')
             return objs.get(project__id=project_id, person__id=user_id)
         except ProjectMembership.DoesNotExist:
             m = _(astakos_messages.NOT_MEMBERSHIP_REQUEST)
             raise IOError(m)
     def get_membership_for_update_by_id(project_id, memb_id):
     def get_membership_by_id(project_id, memb_id):
         try:
             objs = ProjectMembership.objects
             return objs.get_for_update(project__id=project_id,
                                        id=memb_id)
             objs = ProjectMembership.objects.select_related('project', 'person')
             return objs.get(project__id=project_id, id=memb_id)
         except ProjectMembership.DoesNotExist:
             m = _(astakos_messages.NOT_MEMBERSHIP_REQUEST)
             raise IOError(m)
-...
     def accept_membership(project_id, memb_id, request_user=None):
         project = get_project_for_update(project_id)
         accept_membership_checks(project, request_user)
         get_chain_for_update(project_id)
         membership = get_membership_for_update_by_id(project_id, memb_id)
         membership = get_membership_by_id(project_id, memb_id)
         if not membership.can_accept():
             m = _(astakos_messages.NOT_MEMBERSHIP_REQUEST)
             raise PermissionDenied(m)
         project = membership.project
         accept_membership_checks(project, request_user)
         user = membership.person
         membership.accept()
         qh_sync_user(user)
-...
     def reject_membership(project_id, memb_id, request_user=None):
         project = get_project_for_update(project_id)
         reject_membership_checks(project, request_user)
         membership = get_membership_for_update_by_id(project_id, memb_id)
         get_chain_for_update(project_id)
         membership = get_membership_by_id(project_id, memb_id)
         if not membership.can_reject():
             m = _(astakos_messages.NOT_MEMBERSHIP_REQUEST)
             raise PermissionDenied(m)
         project = membership.project
         reject_membership_checks(project, request_user)
         user = membership.person
         membership.reject()
         logger.info("Request of user %s for %s has been rejected." %
-...
     def cancel_membership(project_id, request_user):
         project = get_project_for_update(project_id)
         cancel_membership_checks(project)
         membership = get_membership_for_update(project_id, request_user.id)
         get_chain_for_update(project_id)
         membership = get_membership(project_id, request_user.id)
         if not membership.can_cancel():
             m = _(astakos_messages.NOT_MEMBERSHIP_REQUEST)
             raise PermissionDenied(m)
         project = membership.project
         cancel_membership_checks(project)
         membership.cancel()
         logger.info("Request of user %s for %s has been cancelled." %
                     (membership.person.log_display, project))
-...
     def remove_membership(project_id, memb_id, request_user=None):
         project = get_project_for_update(project_id)
         remove_membership_checks(project, request_user)
         membership = get_membership_for_update_by_id(project_id, memb_id)
         get_chain_for_update(project_id)
         membership = get_membership_by_id(project_id, memb_id)
         if not membership.can_remove():
             m = _(astakos_messages.NOT_ACCEPTED_MEMBERSHIP)
             raise PermissionDenied(m)
         project = membership.project
         remove_membership_checks(project, request_user)
         user = membership.person
         membership.remove()
         qh_sync_user(user)
-...
     def enroll_member(project_id, user, request_user=None):
         project = get_project_for_update(project_id)
         get_chain_for_update(project_id)
         project = get_project_by_id(project_id)
         accept_membership_checks(project, request_user)
         membership, created = ProjectMembership.objects.get_or_create(
-...
     def leave_project(project_id, request_user):
         project = get_project_for_update(project_id)
         leave_project_checks(project)
         membership = get_membership_for_update(project_id, request_user.id)
         get_chain_for_update(project_id)
         membership = get_membership(project_id, request_user.id)
         if not membership.can_leave():
             m = _(astakos_messages.NOT_ACCEPTED_MEMBERSHIP)
             raise PermissionDenied(m)
         project = membership.project
         leave_project_checks(project)
         auto_accepted = False
         leave_policy = project.application.member_leave_policy
         if leave_policy == AUTO_ACCEPT_POLICY:
             membership.remove()
             qh_sync_user(request_user)
             logger.info("User %s has left %s." %
                         (membership.person.log_display, project))
                         (request_user.log_display, project))
             auto_accepted = True
         else:
             membership.leave_request()
             logger.info("User %s requested to leave %s." %
                         (membership.person.log_display, project))
                         (request_user.log_display, project))
             membership_leave_request_notify(project, membership.person)
         return auto_accepted
-...
     def join_project(project_id, request_user):
         project = get_project_for_update(project_id)
         get_chain_for_update(project_id)
         project = get_project_by_id(project_id)
         join_project_checks(project)
         membership, created = ProjectMembership.objects.get_or_create(
-...
             membership.accept()
             qh_sync_user(request_user)
             logger.info("User %s joined %s." %
                         (membership.person.log_display, project))
                         (request_user.log_display, project))
             auto_accepted = True
         else:
             membership_request_notify(project, membership.person)
             logger.info("User %s requested to join %s." %
                         (membership.person.log_display, project))
                         (request_user.log_display, project))
         return auto_accepted
-...
         precursor = None
         if precursor_id is not None:
             objs = ProjectApplication.objects
             precursor = objs.get_for_update(id=precursor_id)
             get_chain_of_application_for_update(precursor_id)
             precursor = ProjectApplication.objects.get(id=precursor_id)
             if (request_user and
                 (not precursor.owner == request_user and
-...
             chain = precursor.chain
             application.chain = chain
             objs = ProjectApplication.objects
             q = objs.filter(chain=chain, state=ProjectApplication.PENDING)
             pending = q.select_for_update()
             pending = objs.filter(chain=chain, state=ProjectApplication.PENDING)
             for app in pending:
                 app.state = ProjectApplication.REPLACED
                 app.save()
-...
     def cancel_application(application_id, request_user=None, reason=""):
         application = get_application_for_update(application_id)
         get_chain_of_application_for_update(application_id)
         application = get_application(application_id)
         checkAllowed(application, request_user)
         if not application.can_cancel():
-...
     def dismiss_application(application_id, request_user=None, reason=""):
         application = get_application_for_update(application_id)
         get_chain_of_application_for_update(application_id)
         application = get_application(application_id)
         checkAllowed(application, request_user)
         if not application.can_dismiss():
-...
     def deny_application(application_id, request_user=None, reason=""):
         application = get_application_for_update(application_id)
         get_chain_of_application_for_update(application_id)
         application = get_application(application_id)
         checkAllowed(application, request_user, admin_only=True)
-...
         application_deny_notify(application)
     def approve_application(app_id, request_user=None, reason=""):
     def check_conflicting_projects(application):
         try:
             project = get_project_by_id(application.chain)
         except IOError:
             project = None
         new_project_name = application.name
         try:
             objects = ProjectApplication.objects
             application = objects.get_for_update(id=app_id)
         except ProjectApplication.DoesNotExist:
             m = _(astakos_messages.UNKNOWN_PROJECT_APPLICATION_ID % (app_id,))
             raise PermissionDenied(m)
             q = Q(name=new_project_name) & ~Q(state=Project.TERMINATED)
             conflicting_project = Project.objects.get(q)
             if (conflicting_project != project):
                 m = (_("cannot approve: project with name '%s' "
                        "already exists (id: %s)") % (
                         new_project_name, conflicting_project.id))
                 raise PermissionDenied(m) # invalid argument
         except Project.DoesNotExist:
             pass
         return project
     def approve_application(app_id, request_user=None, reason=""):
         get_chain_of_application_for_update(app_id)
         application = get_application(app_id)
         checkAllowed(application, request_user, admin_only=True)
-...
                   (application.id, application.state_display()))
             raise PermissionDenied(m)
         qh_release_pending_app(application.owner)
         project = application.approve(reason)
         qh_sync_project(project)
         project = check_conflicting_projects(application)
         # Pre-lock members and owner together in order to impose an ordering
         # on locking users
         members = members_to_sync(project) if project is not None else []
         uids_to_sync = [member.id for member in members]
         owner = application.owner
         uids_to_sync.append(owner.id)
         get_users_for_update(uids_to_sync)
         qh_release_pending_app(owner, locked=True)
         application.approve(reason)
         qh_sync_locked_users(members)
         logger.info("%s has been approved." % (application.log_display))
         application_approve_notify(application)
-...
     def terminate(project_id, request_user=None):
         project = get_project_for_update(project_id)
         get_chain_for_update(project_id)
         project = get_project_by_id(project_id)
         checkAllowed(project, request_user, admin_only=True)
         checkAlive(project)
-...
     def suspend(project_id, request_user=None):
         project = get_project_for_update(project_id)
         get_chain_for_update(project_id)
         project = get_project_by_id(project_id)
         checkAllowed(project, request_user, admin_only=True)
         checkAlive(project)
-...
     def resume(project_id, request_user=None):
         project = get_project_for_update(project_id)
         get_chain_for_update(project_id)
         project = get_project_by_id(project_id)
         checkAllowed(project, request_user, admin_only=True)
         if not project.is_suspended:
-...
         return usage
     def qh_add_pending_app(user, precursor=None, force=False, dry_run=False):
     def get_pending_app_diff(user, precursor):
         if precursor is None:
             diff = 1
         else:
-...
             q = objs.filter(chain=chain, state=ProjectApplication.PENDING)
             count = q.count()
             diff = 1 - count
         return diff
     def qh_add_pending_app(user, precursor=None, force=False):
         user = AstakosUser.forupdate.get_for_update(id=user.id)
         diff = get_pending_app_diff(user, precursor)
         return register_pending_apps(user, diff, force)
         return register_pending_apps(user, diff, force, dry_run)
     def check_pending_app_quota(user, precursor=None):
         diff = get_pending_app_diff(user, precursor)
         quota = get_pending_app_quota(user)
         limit = quota['limit']
         usage = quota['usage']
         if usage + diff > limit:
             return False, limit
         return True, None
     def qh_release_pending_app(user):
     def qh_release_pending_app(user, locked=False):
         if not locked:
             user = AstakosUser.forupdate.get_for_update(id=user.id)
         register_pending_apps(user, -1)

     from astakos.im.models import AstakosUser
     from astakos.im.quotas import (
         qh_sync_users, list_user_quotas, add_base_quota)
         qh_sync_users_diffs, list_user_quotas, add_base_quota)
     from astakos.im.functions import get_user_by_uuid
     from astakos.im.management.commands._common import is_uuid, is_email
     from snf_django.lib.db.transaction import commit_on_success_strict
-...
                                    output_format)
             elif verify or sync:
                 qh_limits, diff_q = qh_sync_users(users, sync=sync, diff_only=True)
                 qh_limits, diff_q = qh_sync_users_diffs(users, sync=sync)
                 if verify:
                     self.print_verify(qh_limits, diff_q)
                 if sync:

             return "application %s (%s) for project %s" % (
                 self.id, self.name, self.chain)
         def get_project(self):
             try:
                 project = Project.objects.get(id=self.chain, state=Project.APPROVED)
                 return Project
             except Project.DoesNotExist, e:
                 return None
         def state_display(self):
             return self.APPLICATION_STATE_DISPLAY.get(self.state, _('Unknown'))
-...
         def project_exists(self):
             return self.get_project() is not None
         def _get_project_for_update(self):
             try:
                 objects = Project.objects
                 project = objects.get_for_update(id=self.chain)
                 return project
             except Project.DoesNotExist:
                 return None
         def can_cancel(self):
             return self.state == self.PENDING
-...
             return self.state == self.PENDING
         def approve(self, reason):
             new_project_name = self.name
             if not self.can_approve():
                 m = _("cannot approve: project '%s' in state '%s'") % (
                         new_project_name, self.state)
                         self.name, self.state)
                 raise AssertionError(m) # invalid argument
             now = datetime.now()
             project = self._get_project_for_update()
             try:
                 q = Q(name=new_project_name) & ~Q(state=Project.TERMINATED)
                 conflicting_project = Project.objects.get(q)
                 if (conflicting_project != project):
                     m = (_("cannot approve: project with name '%s' "
                            "already exists (id: %s)") % (
                             new_project_name, conflicting_project.id))
                     raise PermissionDenied(m) # invalid argument
             except Project.DoesNotExist:
                 pass
             self.state = self.APPROVED
             self.response_date = now
             self.response = reason
             self.save()
             new_project = False
             project = self.get_project()
             if project is None:
                 new_project = True
                 project = Project(id=self.chain)
             project.name = new_project_name
             project.name = self.name
             project.application = self
             project.last_approval_date = now
             project.save()
             self.state = self.APPROVED
             self.response_date = now
             self.response = reason
             self.save()
             return project
         @property

     SYSTEM = 'system'
     PENDING_APP_RESOURCE = 'astakos.pending_app'
     def register_pending_apps(user, quantity, force=False, dry_run=False):
         provision = (user.uuid, SYSTEM, 'astakos.pending_app'), quantity
         name = "DRYRUN" if dry_run else ""
     def register_pending_apps(user, quantity, force=False):
         provision = (user.uuid, SYSTEM, PENDING_APP_RESOURCE), quantity
         try:
             s = qh.issue_commission(clientkey='astakos',
                                     force=force,
                                     name=name,
                                     provisions=[provision])
         except NoCapacityError as e:
             limit = e.data['limit']
             return False, limit
         accept = not dry_run
         qh.resolve_pending_commission('astakos', s, accept)
         qh.resolve_pending_commission('astakos', s)
         return True, None
     def get_pending_app_quota(user):
         quota = get_user_quotas(user)
         return quota[SYSTEM][PENDING_APP_RESOURCE]
     def add_base_quota(user, resource, capacity):
         resource = Resource.objects.get(name=resource)
         user = get_user_for_update(user.id)
         obj, created = AstakosUserQuota.objects.get_or_create(
             user=user, resource=resource, defaults={
                 'capacity': capacity,
-...
         if not created:
             obj.capacity = capacity
             obj.save()
         qh_sync_user(user)
         qh_sync_locked_user(user)
     def remove_base_quota(user, resource):
         user = get_user_for_update(user.id)
         AstakosUserQuota.objects.filter(
             user=user, resource__name=resource).delete()
         qh_sync_user(user)
         qh_sync_locked_user(user)
     def initial_quotas(users):
-...
     # Syncing to quotaholder
     def qh_sync_users(users, sync=True, diff_only=False):
     def get_users_for_update(user_ids):
         uids = sorted(user_ids)
         objs = AstakosUser.forupdate
         return list(objs.filter(id__in=uids).order_by('id').select_for_update())
     def get_user_for_update(user_id):
         return get_users_for_update([user_id])[0]
     def qh_sync_locked_users(users):
         astakos_quotas = astakos_users_quotas(users)
         _set_user_quota(astakos_quotas)
     def qh_sync_users(users):
         uids = [user.id for user in users]
         users = get_users_for_update(uids)
         qh_sync_locked_users(users)
     def qh_sync_users_diffs(users, sync=True):
         uids = [user.id for user in users]
         if sync:
             users = AstakosUser.forupdate.filter(id__in=uids).select_for_update()
             users = get_users_for_update(uids)
         astakos_quotas = astakos_users_quotas(users)
         qh_limits = get_users_quota_limits(users)
         diff_quotas = {}
         for holder, local in astakos_quotas.iteritems():
             registered = qh_limits.get(holder, None)
             if local != registered:
                 diff_quotas[holder] = dict(local)
         if sync:
             _set_user_quota(diff_quotas)
         return qh_limits, diff_quotas
         if diff_only:
             qh_limits = get_users_quota_limits(users)
             diff_quotas = {}
             for holder, local in astakos_quotas.iteritems():
                 registered = qh_limits.get(holder, None)
                 if local != registered:
                     diff_quotas[holder] = dict(local)
             if sync:
                 _set_user_quota(diff_quotas)
             return qh_limits, diff_quotas
         else:
             if sync:
                 _set_user_quota(astakos_quotas)
             return None
     def qh_sync_locked_user(user):
         qh_sync_locked_users([user])
     def qh_sync_user(user):
         qh_sync_users([user])
     def qh_sync_projects(projects):
         projects = list(projects)
         memberships = ProjectMembership.objects.filter(
             project__in=projects, state__in=ProjectMembership.ACTUALLY_ACCEPTED)
         users = set(m.person for m in memberships)
         qh_sync_users(users)
     def members_to_sync(project):
         objs = ProjectMembership.objects.select_related('person')
         memberships = objs.filter(project=project,
                                   state__in=ProjectMembership.ACTUALLY_ACCEPTED)
         return set(m.person for m in memberships)
     def qh_sync_project(project):
         qh_sync_projects([project])
         users = members_to_sync(project)
         qh_sync_users(users)
     def qh_add_resource_limit(resource, diff):
         objs = AstakosUser.forupdate.filter(Q(email_verified=True) &
                                             ~Q(policy=resource))
         users = objs.select_for_update()
         users = objs.order_by('id').select_for_update()
         uuids = [u.uuid for u in users]
         qh.add_resource_limit(holders=uuids, sources=[SYSTEM],
                               resources=[resource.name], diff=diff)
-...
     def qh_sync_new_resource(resource, limit):
         users = AstakosUser.forupdate.filter(
             email_verified=True).select_for_update()
             email_verified=True).order_by('id').select_for_update()
         resource_name = resource.name
         data = []

         send_feedback,
         logout as auth_logout,
         invite as invite_func,
         qh_add_pending_app,
         check_pending_app_quota,
         accept_membership, reject_membership, remove_membership, cancel_membership,
         leave_project, join_project, enroll_member, can_join_request,
         can_leave_request,
-...
     def project_add(request):
         user = request.user
         if not user.is_project_admin():
             ok, limit = qh_add_pending_app(user, dry_run=True)
             ok, limit = check_pending_app_quota(user)
             if not ok:
                 m = _(astakos_messages.PENDING_APPLICATION_LIMIT_ADD) % limit
                 messages.error(request, m)
-...
         if not user.is_project_admin():
             owner = app.owner
             ok, limit = qh_add_pending_app(owner, precursor=app, dry_run=True)
             ok, limit = check_pending_app_quota(owner, precursor=app)
             if not ok:
                 m = _(astakos_messages.PENDING_APPLICATION_LIMIT_MODIFY) % limit
                 messages.error(request, m)

     from astakos.im.models import AstakosUser, ProjectApplication
     from astakos.im.functions import (join_project, leave_project,
                                       submit_application, approve_application,
                                       get_user_by_id, qh_add_pending_app)
                                       get_user_by_id, check_pending_app_quota)
     from snf_django.lib.db.transaction import commit_on_success_strict
-...
                      if prec is not None
                      else None)
         ok, limit = qh_add_pending_app(owner, precursor=precursor, dry_run=True)
         ok, limit = check_pending_app_quota(owner, precursor=precursor)
         if not ok:
             raise PermissionDenied('Limit %s reached', limit)

Also available in: Unified diff