GitLab

Expose public URL information only to the object owners.

Change value from 8 to 16, to conform with the default
PITHOS_PUBLIC_URL_SECURITY setting.

Also deny GET requests for those actions

- Split actions partial in a separate template.
- Convert simple A html links to confirm forms and do action requests
  using POST.
- Use a common tempalte tag ``confirm_link`` to prompt user an
  additional step of action confirmation.
- Additionally show a reason field in project deny action.

if not set, None is passed

Refs: commit: 56f3c759

Do not include encoded serial in the public URL.

Change PITHOS_PUBLIC_URL_MIN_LENGTH setting to 
PITHOS_PUBLIC_URL_SECURITY.

Log public set/unset functions.

Admin is interested in projects `Pending for review'. They appeared
as `Unknown' in the project list before. With the current change,
the status of an admin being a member of a project is hidden,
since we don't present combined project/membership states.

never forget to pass vm create callback arguments

Refs #3492

- Introduce a generic PooledObject class to act both
  as a context manager for getting and putting back
  an object from a pool.

- Implement a class PooledHTTPConnection(PooledObject)
  as a sublcass of the one in (1)

- Eliminate httplib.HTTPConnection patching of close().
  Eliminate put/get_http_connection.
  The httplib.HTTPConnection object is no longer released
  back to the pool via a method on it.
  One must explicitly put it to the pool,
  or use the PooledObject context manager in (2) above.

- Update lib.astakos, lib.quotaholder.http,
  synnefo.api.delegate, pithos.api.delegate to use
  PooledHTTPConnection.

- Update tests

Public URLs should consist of a random part.
A public URL should be unique and should not be
equal to any deleted public URL.
Finally publishing a public object has no effect.
Therefore, to generate a new public URL for an
object, the object should be unpublished and 
published again.

# Fix send change email error message
# Remove double logging

Do not display unnecessary message:
"Please use either `--from-file' or `--set-capacity' options"
while importing quotas from file.

Refs #3452

We used to check the limit on applicant; however we would like to
to control pending applications per the original applicant, i.e the
owner. The check is ignored when the applicant is a project admin.

An admin can modify a project, i.e. create an application based on
a previous application. We distinguish the initial applicant, called
the `owner', from the user who submitted the current application,
called the `applicant'.

Show owner instead of applicant in project-list: the applicant can
vary among applications for a single project, but owner is likely
to be unique.

New ASTAKOS_PROJECTS_VISIBLE setting (defaults to False) added to
control whether the projects menu should be visible in astakos user
views.

- We force user quota information to be updated after the completion of
  vm/network create/destroy actions.

Add field `response' in ProjectApplication model.
Add option `-m' in project-control command.

Refs #3493

Distinquish between exceptions in the decorated function and exceptions
in accepting/rejecting the commissions. The first one determines whether
serials should be accepted or rejected, while the second one is an error
indicating that commissioning can not be completed.

Commit 469d099 introduced a typo which caused /plankton/shared_images/
to raise an UnboundLocalError.

Refs #3489

Call to as_sql() raises EmptyResultSet in a couple of occasions,
more importantly when filtering based on an empty list: filter(field__in=[]).

This makes it easier to maintain, since it is used in multiple applications
(astakos.im and quotaholder_app).

Inform specifically which users, if any, have been synced, instead of
listing the whole diff. The latter can be recovered by giving the
option --verify.

Refs #3479

Database stack limit issue was triggered by syncing quotas for
all users. It is much faster to compare quotas locally and send
for sync to quotaholder only those that differ.

Refs #3479

Looking up (entity, resource) pairs created a huge query formula
in disjunctive normal form, which apparently brought the db parser
to its limits.

It has been replaced by selecting the holdings by entity only.
This means that in theory we lock more holdings than needed (for any
resource for a given entity), but in practice we would need to
select these holdings anyway.

typo fix that caused unavailable ram options due to user quota limits to
still be shown as selectable values.

Get quotaholder holdings for all users in one call, to speed up
execution of 'snf-manage cyclades-usage-verify'.

Refs #3396
Refs #3397

- Use separate loading messages for each action to avoid confusion
  caused due to aynchronous progress
- Enforce resolving of unknown machine image ids before the main view
  gets rendered.

Fix early check for existing cookie contents

Refs #3460

Token value set in api action/request is always retrieved from the
current cookie contents. When cookie contents change is detected ui
redirects user to log in.

Cookie changes are detected each time the app tries to use the user
uuid/token information. A window interval (hardcoded to 10 seconds) was added
to access this information to ensure that cookie change logic will be
applied even when ui app gets idle (no api calls are made).