Class: Katello::RootRepository

Inherits:

Model

• Object
• ApplicationRecord
• Model
• Katello::RootRepository

Includes:

Encryptable, Ext::LabelFromName

Defined in:

app/models/katello/root_repository.rb

Overview

rubocop:disable Metrics/ClassLength

Defined Under Namespace

Classes: Jail

Constant Summary

DOWNLOAD_IMMEDIATE =

'immediate'.freeze

DOWNLOAD_ON_DEMAND =

'on_demand'.freeze

DOWNLOAD_POLICIES =

[DOWNLOAD_IMMEDIATE, DOWNLOAD_ON_DEMAND].freeze

IGNORABLE_CONTENT_UNIT_TYPES =

%w(srpm).freeze

CHECKSUM_TYPES =

%w(sha1 sha256).freeze

SUBSCRIBABLE_TYPES =

[Repository::YUM_TYPE, Repository::OSTREE_TYPE, Repository::DEB_TYPE].freeze

SKIPABLE_METADATA_TYPES =

[Repository::YUM_TYPE, Repository::DEB_TYPE].freeze

CONTENT_ATTRIBUTE_RESTRICTIONS =

{
  :download_policy => [Repository::YUM_TYPE, Repository::DEB_TYPE, Repository::DOCKER_TYPE]
}.freeze

NO_DEFAULT_HTTP_PROXY =

'none'.freeze

GLOBAL_DEFAULT_HTTP_PROXY =

'global_default_http_proxy'.freeze

USE_SELECTED_HTTP_PROXY =

'use_selected_http_proxy'.freeze

HTTP_PROXY_POLICIES =

[
GLOBAL_DEFAULT_HTTP_PROXY,
NO_DEFAULT_HTTP_PROXY,
USE_SELECTED_HTTP_PROXY].freeze

RHEL6 =

'rhel-6'.freeze

RHEL7 =

'rhel-7'.freeze

RHEL8 =

'rhel-8'.freeze

RHEL9 =

'rhel-9'.freeze

ALLOWED_OS_VERSIONS =

[RHEL6, RHEL7, RHEL8, RHEL9].freeze

MIRRORING_POLICY_ADDITIVE =

'additive'.freeze

MIRRORING_POLICY_CONTENT =

'mirror_content_only'.freeze

MIRRORING_POLICY_COMPLETE =

'mirror_complete'.freeze

MIRRORING_POLICIES =

[MIRRORING_POLICY_ADDITIVE, MIRRORING_POLICY_COMPLETE, MIRRORING_POLICY_CONTENT].freeze

Class Method Summary

• .hosts_with_applicability ⇒ Object
• .in_organization(org) ⇒ Object
• .repositories ⇒ Object

Instance Method Summary

• #ansible_collection? ⇒ Boolean
• #calculate_updated_name ⇒ Object
• #content ⇒ Object
• #custom? ⇒ Boolean
• #custom_content_label ⇒ Object
• #custom_content_path ⇒ Object
• #deb? ⇒ Boolean
• #docker? ⇒ Boolean
• #docker_tags_whitelist ⇒ Object

  For API support during deprecation period.

• #ensure_compatible_download_policy ⇒ Object
• #ensure_content_attribute_restrictions ⇒ Object
• #ensure_docker_repo_unprotected ⇒ Object
• #ensure_no_checksum_on_demand ⇒ Object
• #ensure_no_download_policy ⇒ Object
• #ensure_valid_auth_url_token ⇒ Object
• #ensure_valid_authentication_token ⇒ Object
• #ensure_valid_collection_attributes ⇒ Object
• #ensure_valid_deb_constraints ⇒ Object
• #ensure_valid_docker_attributes ⇒ Object
• #ensure_valid_exclude_tags ⇒ Object
• #ensure_valid_ignorable_content ⇒ Object
• #ensure_valid_include_tags ⇒ Object
• #ensure_valid_mirroring_policy ⇒ Object
• #ensure_valid_os_versions ⇒ Object
• #ensure_valid_retain_package_versions_count ⇒ Object
• #ensure_valid_upstream_authorization ⇒ Object
• #file? ⇒ Boolean
• #format_arches ⇒ Object
• #generic? ⇒ Boolean
• #http_proxy ⇒ Object
• #library_instance ⇒ Object
• #metadata_generate_needed? ⇒ Boolean
• #on_demand? ⇒ Boolean
• #ostree? ⇒ Boolean
• #pulp_update_needed? ⇒ Boolean
• #raw_content_path ⇒ Object
• #repo_mapper ⇒ Object
• #repository_type ⇒ Object
• #substitutions ⇒ Object
• #using_mirrored_content? ⇒ Boolean
• #valid_mirroring_policies ⇒ Object
• #yum? ⇒ Boolean

Methods included from Ext::LabelFromName

included, #label_not_changed, #setup_label_from_name

Methods inherited from Model

#destroy!

Class Method Details

.hosts_with_applicability ⇒ Object

# File 'app/models/katello/root_repository.rb', line 191

def self.hosts_with_applicability
  ::Host.joins(:content_facet => :bound_repositories).where("#{Katello::Repository.table_name}.root_id" => self.select(:id))
end

.in_organization(org) ⇒ Object

# File 'app/models/katello/root_repository.rb', line 143

def self.in_organization(org)
  joins(:product).where("#{Katello::Product.table_name}.organization_id" => org)
end

.repositories ⇒ Object

# File 'app/models/katello/root_repository.rb', line 131

def self.repositories
  Repository.where(:root => self)
end

Instance Method Details

#ansible_collection? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 369

def ansible_collection?
  self.content_type == Repository::ANSIBLE_COLLECTION_TYPE
end

#calculate_updated_name ⇒ Object

# File 'app/models/katello/root_repository.rb', line 407

def calculate_updated_name
  fail _("Cannot calculate name for custom repos") if custom?
  repo_mapper.name
end

#content ⇒ Object

# File 'app/models/katello/root_repository.rb', line 340

def content
  Katello::Content.find_by(:cp_content_id => self.content_id, :organization_id => self.product.organization_id)
end

#custom? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 139

def custom?
  !redhat?
end

#custom_content_label ⇒ Object

# File 'app/models/katello/root_repository.rb', line 336

def custom_content_label
  "#{organization.label} #{product.label} #{label}".gsub(/\s/, "_")
end

#custom_content_path ⇒ Object

# File 'app/models/katello/root_repository.rb', line 325

def custom_content_path
  parts = []
  # We generate repo path only for custom product content. We add this
  # constant string to avoid collisions with RH content. RH content url
  # begins usually with something like "/content/dist/rhel/...".
  # There we prefix custom content/repo url with "/custom/..."
  parts << "custom"
  parts += [product.label, self.label]
  "/" + parts.map { |x| x.gsub(/[^-\w]/, "_") }.join("/")
end

#deb? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 365

def deb?
  self.content_type == Repository::DEB_TYPE
end

#docker? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 349

def docker?
  self.content_type == Repository::DOCKER_TYPE
end

#docker_tags_whitelist ⇒ Object

For API support during deprecation period.

# File 'app/models/katello/root_repository.rb', line 345

def docker_tags_whitelist
  include_tags
end

#ensure_compatible_download_policy ⇒ Object

# File 'app/models/katello/root_repository.rb', line 155

def ensure_compatible_download_policy
  if !url.blank? && URI(url).scheme == 'file' &&
      download_policy == ::Katello::RootRepository::DOWNLOAD_ON_DEMAND
    errors.add(:download_policy, _("Cannot sync file:// repositories with the On Demand Download Policy"))
  end
end

#ensure_content_attribute_restrictions ⇒ Object

# File 'app/models/katello/root_repository.rb', line 147

def ensure_content_attribute_restrictions
  CONTENT_ATTRIBUTE_RESTRICTIONS.each do |attribute, value|
    if self.send(attribute).present? && !value.include?(self.content_type)
      errors.add(attribute, _("Cannot set attribute %{attr} for content type %{type}") % {:attr => attribute, :type => self.content_type})
    end
  end
end

#ensure_docker_repo_unprotected ⇒ Object

# File 'app/models/katello/root_repository.rb', line 184

def ensure_docker_repo_unprotected
  unless unprotected
    errors.add(:base, _("Container Image Repositories are not protected at this time. " \
                         "They need to be published via http to be available to containers."))
  end
end

#ensure_no_checksum_on_demand ⇒ Object

# File 'app/models/katello/root_repository.rb', line 201

def ensure_no_checksum_on_demand
  if checksum_type.present? && download_policy == DOWNLOAD_ON_DEMAND
    errors.add(:checksum_type, _("Checksum type cannot be set for yum repositories with on demand download policy."))
  end
end

#ensure_no_download_policy ⇒ Object

# File 'app/models/katello/root_repository.rb', line 195

def ensure_no_download_policy
  if !yum? && download_policy.present?
    errors.add(:download_policy, _("cannot be set for non-yum repositories."))
  end
end

#ensure_valid_auth_url_token ⇒ Object

# File 'app/models/katello/root_repository.rb', line 288

def ensure_valid_auth_url_token
  if self.ansible_collection_auth_url.blank? && self.ansible_collection_auth_token.blank?
    self.ansible_collection_auth_url = nil
    self.ansible_collection_auth_token = nil
    return
  end

  if !self.ansible_collection_auth_url.blank? && self.ansible_collection_auth_token.blank?
    errors.add(:base, N_("Auth URL requires Auth token be set."))
  end
end

#ensure_valid_authentication_token ⇒ Object

# File 'app/models/katello/root_repository.rb', line 300

def ensure_valid_authentication_token
  if self.upstream_authentication_token.blank?
    self.upstream_authentication_token = nil
  end
end

#ensure_valid_collection_attributes ⇒ Object

# File 'app/models/katello/root_repository.rb', line 207

def ensure_valid_collection_attributes
  errors.add(:base, _("URL needs to have a trailing /")) if !url.blank? && url[-1] != '/'
  return unless ansible_collection_requirements
  begin
    requirements = YAML.safe_load(ansible_collection_requirements)
    if requirements.is_a?(Hash)
      errors.add(:base,  _("Requirements yaml should have a 'collections' key")) unless requirements.key?('collections')
    else
      errors.add(:base,  _('Requirements yaml should be a key-value pair structure.'))
    end
  rescue
    errors.add(:base, _('Requirements is not valid yaml.'))
  end
end

#ensure_valid_deb_constraints ⇒ Object

# File 'app/models/katello/root_repository.rb', line 306

def ensure_valid_deb_constraints
  return if self.deb_releases.blank? && self.url.blank?
  if self.deb_releases.blank?
    errors.add(:base, N_("When \"Upstream URL\" is set, \"Releases/Distributions\" must also be set!"))
  elsif self.url.blank? && !self.content
    errors.add(:base, N_("When \"Releases/Distributions\" is set, \"Upstream URL\" must also be set!"))
  end
end

#ensure_valid_docker_attributes ⇒ Object

# File 'app/models/katello/root_repository.rb', line 177

def ensure_valid_docker_attributes
  if (!url.blank? && docker_upstream_name.blank?)
    errors.add(:docker_upstream_name, N_("cannot be blank when Repository URL is provided."))
    errors.add(:base, _("Upstream Name cannot be blank when Repository URL is provided."))
  end
end

#ensure_valid_exclude_tags ⇒ Object

# File 'app/models/katello/root_repository.rb', line 242

def ensure_valid_exclude_tags
  return if exclude_tags.blank?
  unless exclude_tags.is_a?(Array)
    errors.add(:exclude_tags, N_("Invalid value specified for Container Image repositories."))
  end
end

#ensure_valid_ignorable_content ⇒ Object

# File 'app/models/katello/root_repository.rb', line 222

def ensure_valid_ignorable_content
  return if ignorable_content.blank?
  if !yum?
    errors.add(:ignorable_content, N_("Ignorable content can be only set for Yum repositories."))
  elsif !ignorable_content.is_a?(Array)
    errors.add(:ignorable_content, N_("Invalid value specified for ignorable content."))
  elsif ignorable_content.any? { |item| !IGNORABLE_CONTENT_UNIT_TYPES.include?(item) }
    errors.add(:ignorable_content, N_("Invalid value specified for ignorable content. Permissible values %s") % IGNORABLE_CONTENT_UNIT_TYPES.join(","))
  elsif self.mirroring_policy == MIRRORING_POLICY_COMPLETE
    errors.add(:ignorable_content, N_("Ignore %s can not be set in combination with 'Complete Mirroring' mirroring policy.") % IGNORABLE_CONTENT_UNIT_TYPES.join(","))
  end
end

#ensure_valid_include_tags ⇒ Object

# File 'app/models/katello/root_repository.rb', line 235

def ensure_valid_include_tags
  return if include_tags.blank?
  unless include_tags.is_a?(Array)
    errors.add(:include_tags, N_("Invalid value specified for Container Image repositories."))
  end
end

#ensure_valid_mirroring_policy ⇒ Object

# File 'app/models/katello/root_repository.rb', line 170

def ensure_valid_mirroring_policy
  unless valid_mirroring_policies.include?(self.mirroring_policy)
    errors.add(:mirroring_policy, _("Invalid mirroring policy for repository type %{type}, only %{policies} are valid.") %
      {:type => self.content_type, :policies => valid_mirroring_policies.join(', ')})
  end
end

#ensure_valid_os_versions ⇒ Object

# File 'app/models/katello/root_repository.rb', line 249

def ensure_valid_os_versions
  return if os_versions.empty?
  # os_versions here translate to candlepin as 'required tags'.
  # A host must provide ALL required tags in order for the repo to be enabled.
  # So os_versions such as ['rhel-7', 'rhel-8'] is not allowed, since the repo would always be disabled.
  unless yum?
    errors.add(:os_versions, N_("are only allowed for Yum repositories."))
  end
  if os_versions.length > 1
    errors.add(:os_versions, N_("invalid: Repositories can only require one OS version."))
  end
  os_versions.each do |tag|
    unless ALLOWED_OS_VERSIONS.include?(tag)
      errors.add(:os_versions, N_("must be one of: %s" % ALLOWED_OS_VERSIONS.join(', ')))
    end
  end
end

#ensure_valid_retain_package_versions_count ⇒ Object

# File 'app/models/katello/root_repository.rb', line 315

def ensure_valid_retain_package_versions_count
  return unless self.retain_package_versions_count
  unless yum?
    errors.add(:retain_package_versions_count, N_("is only allowed for Yum repositories."))
  end
  if self.retain_package_versions_count.to_i < 0
    errors.add(:retain_package_versions_count, N_("must not be a negative value."))
  end
end

#ensure_valid_upstream_authorization ⇒ Object

# File 'app/models/katello/root_repository.rb', line 267

def ensure_valid_upstream_authorization
  # Make sure that the upstream_username / upstream_password is really unset
  # in case if the string is maybe just ""
  if self.upstream_username.blank? && self.upstream_password.blank?
    self.upstream_username = nil
    self.upstream_password = nil
    if !self.url.blank? && self.url.start_with?('uln') && !self.content
      errors.add(:base, N_("Upstream username and upstream password cannot be blank for ULN repositories"))
    end
    return
  end

  if redhat?
    errors.add(:base, N_("Upstream username and password may only be set on custom repositories."))
  elsif self.upstream_username.blank?
    errors.add(:base, N_("Upstream password requires upstream username be set."))
  elsif !self.upstream_password
    errors.add(:base, N_("Upstream username requires upstream password be set.")) # requirement of pulp
  end
end

#file? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 353

def file?
  self.content_type == Repository::FILE_TYPE
end

#format_arches ⇒ Object

# File 'app/models/katello/root_repository.rb', line 429

def format_arches
  if content_type == ::Katello::Repository::DEB_TYPE
    self.deb_architectures&.gsub(" ", ",")
  else
    self.arch == "noarch" ? nil : self.arch
  end
end

#generic? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 373

def generic?
  Katello::RepositoryTypeManager.generic_repository_types(false).values.map(&:id).map(&:to_s).flatten.include? self.content_type
end

#http_proxy ⇒ Object

# File 'app/models/katello/root_repository.rb', line 419

def http_proxy
  case http_proxy_policy
  when NO_DEFAULT_HTTP_PROXY
    return nil
  when GLOBAL_DEFAULT_HTTP_PROXY
    return HttpProxy.default_global_content_proxy
  end
  super
end

#library_instance ⇒ Object

# File 'app/models/katello/root_repository.rb', line 127

def library_instance
  repositories.in_default_view.first
end

#metadata_generate_needed? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 377

def metadata_generate_needed?
  (%w(unprotected checksum_type container_repsoitory_name) & previous_changes.keys).any?
end

#on_demand? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 385

def on_demand?
  self.download_policy == DOWNLOAD_ON_DEMAND
end

#ostree? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 361

def ostree?
  self.content_type == Repository::OSTREE_TYPE
end

#pulp_update_needed? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 389

def pulp_update_needed?
  changeable_attributes = %w(url unprotected checksum_type docker_upstream_name download_policy mirroring_policy verify_ssl_on_sync
                             upstream_username upstream_password ignorable_content retain_package_versions_count
                             ssl_ca_cert_id ssl_client_cert_id ssl_client_key_id http_proxy_policy http_proxy_id download_concurrency)
  changeable_attributes += %w(name container_repository_name include_tags exclude_tags) if docker?
  changeable_attributes += %w(deb_releases deb_components deb_architectures gpg_key_id) if deb?
  changeable_attributes += %w(ansible_collection_requirements ansible_collection_auth_url ansible_collection_auth_token) if ansible_collection?
  changeable_attributes.any? { |key| previous_changes.key?(key) }
end

#raw_content_path ⇒ Object

# File 'app/models/katello/root_repository.rb', line 399

def raw_content_path
  self.content.content_url
end

#repo_mapper ⇒ Object

# File 'app/models/katello/root_repository.rb', line 403

def repo_mapper
  @repo_mapper ||= Katello::Candlepin::RepositoryMapper.new(self.product, self.content, self.substitutions)
end

#repository_type ⇒ Object

# File 'app/models/katello/root_repository.rb', line 135

def repository_type
  RepositoryTypeManager.find(self.content_type)
end

#substitutions ⇒ Object

# File 'app/models/katello/root_repository.rb', line 412

def substitutions
  {
    :releasever => self.minor,
    :basearch => self.arch
  }.compact
end

#using_mirrored_content? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 381

def using_mirrored_content?
  self.mirroring_policy != Katello::RootRepository::MIRRORING_POLICY_ADDITIVE
end

#valid_mirroring_policies ⇒ Object

# File 'app/models/katello/root_repository.rb', line 162

def valid_mirroring_policies
  if self.yum?
    MIRRORING_POLICIES
  else
    [MIRRORING_POLICY_ADDITIVE, MIRRORING_POLICY_CONTENT]
  end
end

#yum? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/katello/root_repository.rb', line 357

def yum?
  self.content_type == Repository::YUM_TYPE
end