Merge branch 'master' into fix_default_branch_handling

Kami · web-flow · commit 7484c2720e46 · 2020-02-19T12:17:45.000+01:00
diff --git a/.travis.yml b/.travis.yml
@@ -14,7 +14,7 @@ matrix:
     - python: "3.5"
       env: DJANGO_VERSION=2.1
 install:
-  - pip install flake8
+  - pip install flake8 mock
   - pip install -q Django==$DJANGO_VERSION
   - python setup.py install
 before_script:
diff --git a/README.md b/README.md
@@ -225,6 +225,15 @@ COMP_EXECUTABLES = [
 ]
 ```
 
+### VCS Provider Specific Settings
+
+#### Github
+
+* ``GITHUB_OAUTH_TOKEN`` - Github oAuth token to use for authenticating against
+  the Github API. If not provided, it will default to unauthenticated API requests
+  which have low rate limits so an exception may be thrown when retrieving info
+  from the Github API due to the rate limit being reached.
+
 ## Getting help
 
 For help regarding the configuration of Codespeed, or to share any ideas or
diff --git a/codespeed/auth.py b/codespeed/auth.py
@@ -1,4 +1,5 @@
 import logging
+import types
 from functools import wraps
 from django.contrib.auth import authenticate, login
 from django.http import HttpResponse, HttpResponseForbidden
@@ -9,6 +10,20 @@
 logger = logging.getLogger(__name__)
 
 
+def is_authenticated(request):
+    # NOTE: We do type check so we also support newer versions of Django when
+    # is_authenticated and some other methods have been properties
+    if isinstance(request.user.is_authenticated, (types.FunctionType,
+                                                  types.MethodType)):
+        return request.user.is_authenticated()
+    elif isinstance(request.user.is_authenticated, bool):
+        return request.user.is_authenticated
+    else:
+        logger.info('Got unexpected type for request.user.is_authenticated '
+                    'variable')
+        return False
+
+
 def basic_auth_required(realm='default'):
     def _helper(func):
         @wraps(func)
@@ -18,7 +33,7 @@ def _decorator(request, *args, **kwargs):
             if settings.ALLOW_ANONYMOUS_POST:
                 logger.debug('allowing anonymous post')
                 allowed = True
-            elif hasattr(request, 'user') and request.user.is_authenticated():
+            elif hasattr(request, 'user') and is_authenticated(request=request):
                 allowed = True
             elif 'HTTP_AUTHORIZATION' in request.META:
                 logger.debug('checking for http authorization header')
diff --git a/codespeed/commits/github.py b/codespeed/commits/github.py
@@ -20,8 +20,8 @@
 import json
 
 import isodate
-from django.conf import settings
 from django.core.cache import cache
+from django.conf import settings
 
 from .exceptions import CommitLogError
 
@@ -103,11 +103,13 @@ def retrieve_revision(commit_id, username, project, revision=None):
     if revision:
         # Overwrite any existing data we might have for this revision since
         # we never want our records to be out of sync with the actual VCS:
-
-        # We need to convert the timezone-aware date to a naive (i.e.
-        # timezone-less) date in UTC to avoid killing MySQL:
-        revision.date = date.astimezone(
-            isodate.tzinfo.Utc()).replace(tzinfo=None)
+        if not getattr(settings, 'USE_TZ_AWARE_DATES', False):
+            # We need to convert the timezone-aware date to a naive (i.e.
+            # timezone-less) date in UTC to avoid killing MySQL:
+            logger.debug('USE_TZ_AWARE_DATES setting is set to False, '
+                         'converting datetime object to a naive one')
+            revision.date = date.astimezone(
+                isodate.tzinfo.Utc()).replace(tzinfo=None)
         revision.author = commit_json['author']['name']
         revision.message = commit_json['message']
         revision.full_clean()
diff --git a/codespeed/settings.py b/codespeed/settings.py
@@ -78,12 +78,22 @@
                          #     ('myexe', '21df2423ra'),
                          #     ('myexe', 'L'),]
 
+TIMELINE_EXECUTABLE_NAME_MAX_LEN = 22  # Maximum length of the executable name used in the
+                                       # Changes and Timeline view. If the name is longer, the name
+                                       # will be truncated and "..." will be added at the end.
+
+COMPARISON_EXECUTABLE_NAME_MAX_LEN = 20  # Maximum length of the executable name  used in the
+                                         # Coomparison view. If the name is longer, the name
+
 USE_MEDIAN_BANDS = True # True to enable median bands on Timeline view
 
 
 ALLOW_ANONYMOUS_POST = True  # Whether anonymous users can post results
 REQUIRE_SECURE_AUTH = True  # Whether auth needs to be over a secure channel
 
+US_TZ_AWARE_DATES = False  # True to use timezone aware datetime objects with Github provider.
+                           # NOTE: Some database backends may not support tz aware dates.
+
 GITHUB_OAUTH_TOKEN = None  # Github oAuth token to use when using Github repo type. If not
                            # specified, it will utilize unauthenticated requests which have
                            # low rate limits.
diff --git a/codespeed/tests/test_auth.py b/codespeed/tests/test_auth.py
@@ -0,0 +1,138 @@
+# -*- coding: utf-8 -*-
+
+import mock
+
+from django.test import TestCase, override_settings
+from django.http import HttpResponse
+from django.contrib.auth.models import AnonymousUser
+from django.test import RequestFactory
+
+from codespeed.auth import basic_auth_required
+from codespeed.views import add_result
+
+
+@override_settings(ALLOW_ANONYMOUS_POST=False)
+class AuthModuleTestCase(TestCase):
+    @override_settings(ALLOW_ANONYMOUS_POST=True)
+    def test_allow_anonymous_post_is_true(self):
+        wrapped_function = mock.Mock()
+        wrapped_function.__name__ = 'mock'
+        wrapped_function.return_value = 'success'
+
+        request = mock.Mock()
+        request.user = AnonymousUser()
+        request.META = {}
+
+        res = basic_auth_required()(wrapped_function)(request=request)
+        self.assertEqual(wrapped_function.call_count, 1)
+        self.assertEqual(res, 'success')
+
+    def test_basic_auth_required_django_pre_2_0_succesful_auth(self):
+        # request.user.is_authenticated is a method (pre Django 2.0)
+        user = mock.Mock()
+        user.is_authenticated = lambda: True
+
+        request = mock.Mock()
+        request.user = user
+
+        wrapped_function = mock.Mock()
+        wrapped_function.__name__ = 'mock'
+        wrapped_function.return_value = 'success'
+
+        res = basic_auth_required()(wrapped_function)(request=request)
+        self.assertEqual(wrapped_function.call_count, 1)
+        self.assertEqual(res, 'success')
+
+    def test_basic_auth_required_django_pre_2_0_failed_auth(self):
+        # request.user.is_authenticated is a method (pre Django 2.0)
+        user = mock.Mock()
+        user.is_authenticated = lambda: False
+
+        request = mock.Mock()
+        request.user = user
+        request.META = {}
+
+        wrapped_function = mock.Mock()
+        wrapped_function.__name__ = 'mock'
+
+        res = basic_auth_required()(wrapped_function)(request=request)
+        self.assertTrue(isinstance(res, HttpResponse))
+        self.assertEqual(res.status_code, 401)
+        self.assertEqual(wrapped_function.call_count, 0)
+
+        # Also test with actual AnonymousUser class which will have different
+        # implementation under different Django versions
+        request.user = AnonymousUser()
+
+        res = basic_auth_required()(wrapped_function)(request=request)
+        self.assertTrue(isinstance(res, HttpResponse))
+        self.assertEqual(res.status_code, 401)
+        self.assertEqual(wrapped_function.call_count, 0)
+
+    def test_basic_auth_required_django_post_2_0_successful_auth(self):
+        # request.user.is_authenticated is a property (post Django 2.0)
+        user = mock.Mock()
+        user.is_authenticated = True
+
+        request = mock.Mock()
+        request.user = user
+
+        wrapped_function = mock.Mock()
+        wrapped_function.__name__ = 'mock'
+        wrapped_function.return_value = 'success'
+
+        res = basic_auth_required()(wrapped_function)(request=request)
+        self.assertEqual(wrapped_function.call_count, 1)
+        self.assertEqual(res, 'success')
+
+    def test_basic_auth_required_django_post_2_0_failed_auth(self):
+        # request.user.is_authenticated is a property (post Django 2.0)
+        user = mock.Mock()
+        user.is_authenticated = False
+
+        request = mock.Mock()
+        request.user = user
+        request.META = {}
+
+        wrapped_function = mock.Mock()
+        wrapped_function.__name__ = 'mock'
+
+        res = basic_auth_required()(wrapped_function)(request=request)
+        self.assertTrue(isinstance(res, HttpResponse))
+        self.assertEqual(res.status_code, 401)
+        self.assertEqual(wrapped_function.call_count, 0)
+
+        # Also test with actual AnonymousUser class which will have different
+        # implementation under different Django versions
+        request.user = AnonymousUser()
+
+        res = basic_auth_required()(wrapped_function)(request=request)
+        self.assertTrue(isinstance(res, HttpResponse))
+        self.assertEqual(res.status_code, 401)
+        self.assertEqual(wrapped_function.call_count, 0)
+
+    @mock.patch('codespeed.views.save_result', mock.Mock())
+    def test_basic_auth_with_failed_auth_request_factory(self):
+        request_factory = RequestFactory()
+
+        request = request_factory.get('/timeline')
+        request.user = AnonymousUser()
+        request.method = 'POST'
+
+        response = add_result(request)
+        self.assertEqual(response.status_code, 403)
+
+    @mock.patch('codespeed.views.create_report_if_enough_data', mock.Mock())
+    @mock.patch('codespeed.views.save_result', mock.Mock(return_value=([1, 2, 3], None)))
+    def test_basic_auth_successefull_auth_request_factory(self):
+        request_factory = RequestFactory()
+
+        user = mock.Mock()
+        user.is_authenticated = True
+
+        request = request_factory.get('/result/add')
+        request.user = user
+        request.method = 'POST'
+
+        response = add_result(request)
+        self.assertEqual(response.status_code, 202)
diff --git a/codespeed/tests/test_views_data.py b/codespeed/tests/test_views_data.py
@@ -1,9 +1,12 @@
 # -*- coding: utf-8 -*-
 from django.test import TestCase
+from django.test import override_settings
 
 from codespeed.models import Project, Executable, Branch, Revision
 from codespeed.views import getbaselineexecutables
 from codespeed.views import getcomparisonexes
+from codespeed.views_data import get_sanitized_executable_name_for_timeline_view
+from codespeed.views_data import get_sanitized_executable_name_for_comparison_view
 
 
 class TestGetBaselineExecutables(TestCase):
@@ -137,3 +140,25 @@ def test_get_comparisionexes_custom_default_branch(self):
         self.assertEqual(exe_keys[1], '2+L+master')
         self.assertEqual(exe_keys[2], '1+L+custom')
         self.assertEqual(exe_keys[3], '2+L+custom')
+
+        
+class UtilityFunctionsTestCase(TestCase):
+    @override_settings(TIMELINE_EXECUTABLE_NAME_MAX_LEN=22)
+    def test_get_sanitized_executable_name_for_timeline_view(self):
+        executable = Executable(name='a' * 22)
+        name = get_sanitized_executable_name_for_timeline_view(executable)
+        self.assertEqual(name, 'a' * 22)
+
+        executable = Executable(name='a' * 25)
+        name = get_sanitized_executable_name_for_timeline_view(executable)
+        self.assertEqual(name, 'a' * 22 + '...')
+
+    @override_settings(COMPARISON_EXECUTABLE_NAME_MAX_LEN=20)
+    def test_get_sanitized_executable_name_for_comparision_view(self):
+        executable = Executable(name='b' * 20)
+        name = get_sanitized_executable_name_for_comparison_view(executable)
+        self.assertEqual(name, 'b' * 20)
+
+        executable = Executable(name='b' * 25)
+        name = get_sanitized_executable_name_for_comparison_view(executable)
+        self.assertEqual(name, 'b' * 20 + '...')
diff --git a/codespeed/views_data.py b/codespeed/views_data.py
@@ -58,13 +58,10 @@ def getbaselineexecutables():
     }]
     executables = Executable.objects.select_related('project')
     revs = Revision.objects.exclude(tag="").select_related('branch__project')
-    maxlen = 22
     for rev in revs:
         # Add executables that correspond to each tagged revision.
         for exe in [e for e in executables if e.project == rev.branch.project]:
-            exestring = str(exe)
-            if len(exestring) > maxlen:
-                exestring = str(exe)[0:maxlen] + "..."
+            exestring = get_sanitized_executable_name_for_timeline_view(exe)
             name = exestring + " " + rev.tag
             key = str(exe.id) + "+" + str(rev.id)
             baseline.append({
@@ -116,7 +113,6 @@ def getcomparisonexes():
     for proj in Project.objects.all():
         executables = []
         executablekeys = []
-        maxlen = 20
         # add all tagged revs for any project
         for exe in baselines:
             if exe['key'] != "none" and exe['executable'].project == proj:
@@ -134,9 +130,7 @@ def getcomparisonexes():
             # because we already added tagged revisions
             if rev.tag == "":
                 for exe in Executable.objects.filter(project=proj):
-                    exestring = str(exe)
-                    if len(exestring) > maxlen:
-                        exestring = str(exe)[0:maxlen] + "..."
+                    exestring = get_sanitized_executable_name_for_comparison_view(exe)
                     name = exestring + " latest"
                     if branch.name != proj.default_branch:
                         name += " in branch '" + branch.name + "'"
@@ -260,3 +254,47 @@ def get_stats_with_defaults(res):
     if res.q3 is not None:
         q3 = res.q3
     return q1, q3, val_max, val_min
+
+
+def get_sanitized_executable_name_for_timeline_view(executable):
+    """
+    Return sanitized executable name which is used in the sidebar in the
+    Timeline and Changes view.
+
+    If the name is longer than settings.TIMELINE_EXECUTABLE_NAME_MAX_LEN,
+    the name will be truncated to that length and "..." appended to it.
+
+    :param executable: Executable object.
+    :type executable: :class:``codespeed.models.Executable``
+
+    :return: ``str``
+    """
+    maxlen = getattr(settings, 'TIMELINE_EXECUTABLE_NAME_MAX_LEN', 20)
+
+    exestring = str(executable)
+    if len(exestring) > maxlen:
+        exestring = str(executable)[0:maxlen] + "..."
+
+    return exestring
+
+
+def get_sanitized_executable_name_for_comparison_view(executable):
+    """
+    Return sanitized executable name which is used in the sidebar in the
+    comparision view.
+
+    If the name is longer than settings.COMPARISON_EXECUTABLE_NAME_MAX_LEN,
+    the name will be truncated to that length and "..." appended to it.
+
+    :param executable: Executable object.
+    :type executable: :class:``codespeed.models.Executable``
+
+    :return: ``str``
+    """
+    maxlen = getattr(settings, 'COMPARISON_EXECUTABLE_NAME_MAX_LEN', 22)
+
+    exestring = str(executable)
+    if len(exestring) > maxlen:
+        exestring = str(executable)[0:maxlen] + "..."
+
+    return exestring
