1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
|
import os
from django.conf import settings
from django.http import (HttpResponse, HttpResponseForbidden,
HttpResponseBadRequest)
from django.utils.translation import ugettext_lazy as _
from django.contrib.auth import login
from djangopypi.http import login_basic_auth, HttpResponseUnauthorized
from djangopypi.forms import ProjectForm, ReleaseForm
from djangopypi.models import Project, Release, Classifier, UPLOAD_TO
ALREADY_EXISTS_FMT = _(
"A file named '%s' already exists for %s. Please create a new release.")
def submit_project_or_release(user, post_data, files):
"""Registers/updates a project or release"""
try:
project = Project.objects.get(name=post_data['name'])
if project.owner != user:
return HttpResponseForbidden(
"That project is owned by someone else!")
except Project.DoesNotExist:
project = None
project_form = ProjectForm(post_data, instance=project)
if project_form.is_valid():
project = project_form.save(commit=False)
project.owner = user
project.save()
for c in post_data.getlist('classifiers'):
classifier, created = Classifier.objects.get_or_create(name=c)
project.classifiers.add(classifier)
if files:
allow_overwrite = getattr(settings,
"DJANGOPYPI_ALLOW_VERSION_OVERWRITE", False)
try:
release = Release.objects.get(version=post_data['version'],
project=project,
distribution=UPLOAD_TO + '/' +
files['distribution']._name)
if not allow_overwrite:
return HttpResponseForbidden(ALREADY_EXISTS_FMT % (
release.filename, release))
except Release.DoesNotExist:
release = None
# If the old file already exists, django will append a _ after the
# filename, however with .tar.gz files django does the "wrong"
# thing and saves it as project-0.1.2.tar_.gz. So remove it before
# django sees anything.
release_form = ReleaseForm(post_data, files, instance=release)
if release_form.is_valid():
if release and os.path.exists(release.distribution.path):
os.remove(release.distribution.path)
release = release_form.save(commit=False)
release.project = project
release.save()
else:
return HttpResponseBadRequest(
"ERRORS: %s" % release_form.errors)
else:
return HttpResponseBadRequest("ERRORS: %s" % project_form.errors)
return HttpResponse()
def register_or_upload(request, post_data, files):
user = login_basic_auth(request)
if not user:
return HttpResponseUnauthorized('pypi')
login(request, user)
if not request.user.is_authenticated():
return HttpResponseForbidden(
"Not logged in, or invalid username/password.")
return submit_project_or_release(user, post_data, files)
|