Merge branch 'release_24.0' into release_24.1

jmchilton · Jun 12, 2024 · 070c6a2 · 070c6a2
2 parents 94513b8 + d295669
commit 070c6a2
Show file tree

Hide file tree

Showing 5 changed files with 31 additions and 14 deletions.
diff --git a/client/src/components/Form/FormElement.vue b/client/src/components/Form/FormElement.vue
@@ -3,9 +3,12 @@ import { library } from "@fortawesome/fontawesome-svg-core";
 import { faCaretSquareDown, faCaretSquareUp } from "@fortawesome/free-regular-svg-icons";
 import { faArrowsAltH, faExclamation, faTimes } from "@fortawesome/free-solid-svg-icons";
 import { FontAwesomeIcon } from "@fortawesome/vue-fontawesome";
+import { sanitize } from "dompurify";
 import type { ComputedRef } from "vue";
 import { computed, ref, useAttrs } from "vue";
 
+import { linkify } from "@/utils/utils";
+
 import type { FormParameterAttributes, FormParameterTypes, FormParameterValue } from "./parameterTypes";
 
 import FormBoolean from "./Elements/FormBoolean.vue";
@@ -181,7 +184,9 @@ const isOptional = computed(() => !isRequired.value && attrs.value["optional"] !
         :class="{ alert: hasAlert, 'alert-info': hasAlert }">
         <div v-if="hasAlert" class="ui-form-error">
             <FontAwesomeIcon class="mr-1" icon="fa-exclamation" />
-            <span class="ui-form-error-text" v-html="props.error || props.warning" />
+            <span
+                class="ui-form-error-text"
+                v-html="linkify(sanitize(props.error || props.warning, { USE_PROFILES: { html: true } }))" />
         </div>
 
         <div class="ui-form-title">

diff --git a/lib/galaxy/managers/users.py b/lib/galaxy/managers/users.py
@@ -144,15 +144,13 @@ def create(self, email=None, username=None, password=None, **kwargs):
         else:
             # Activation is off, every new user is active by default.
             user.active = True
-        self.session().add(user)
+        session = self.session()
+        session.add(user)
         try:
-            session = self.session()
-            with transaction(session):
-                session.commit()
-            # TODO:?? flush needed for permissions below? If not, make optional
+            # Creating a private role will commit the session
+            self.app.security_agent.create_user_role(user, self.app)
         except exc.IntegrityError as db_err:
             raise exceptions.Conflict(str(db_err))
-        self.app.security_agent.create_user_role(user, self.app)
         return user
 
     def delete(self, user, flush=True):
@@ -197,6 +195,10 @@ def purge(self, user, flush=True):
         if not user.deleted:
             raise exceptions.MessageException(f"User '{user.email}' has not been deleted, so they cannot be purged.")
         private_role = self.app.security_agent.get_private_user_role(user)
+        if private_role is None:
+            raise exceptions.InconsistentDatabase(
+                "User '%s' private role is missing while attempting to purge deleted user." % user.email
+            )
         # Delete History
         for active_history in user.active_histories:
             self.session().refresh(active_history)

diff --git a/lib/galaxy/model/security.py b/lib/galaxy/model/security.py
@@ -765,6 +765,9 @@ def create_private_user_role(self, user):
         return self.get_private_user_role(user)
 
     def get_private_user_role(self, user, auto_create=False):
+        if auto_create and user.id is None:
+            # New user, directly create private role
+            return self.create_private_user_role(user)
         stmt = (
             select(Role)
             .where(

diff --git a/lib/galaxy/tool_util/lint.py b/lib/galaxy/tool_util/lint.py
@@ -102,12 +102,21 @@ def name(cls) -> str:
         return cls.__name__
 
     @classmethod
-    def list_listers(cls) -> List[str]:
+    def list_linters(cls) -> List[str]:
         """
         list the names of all linter derived from Linter
         """
+        submodules.import_submodules(galaxy.tool_util.linters)
         return [s.__name__ for s in cls.__subclasses__()]
 
+    list_listers: Callable[[], List[str]]  # deprecated alias
+
+
+# Define the `list_listers` alias outside of the `Linter` class so that
+# @classmethod's change to `list_linters`s signature has taken effect and mypy
+# doesn't report an [assignment] error
+Linter.list_listers = Linter.list_linters
+
 
 class LintMessage:
     """

diff --git a/lib/galaxy/webapps/galaxy/api/workflows.py b/lib/galaxy/webapps/galaxy/api/workflows.py
@@ -22,7 +22,6 @@
     status,
 )
 from gxformat2._yaml import ordered_dump
-from markupsafe import escape
 from pydantic import (
     UUID1,
     UUID4,
@@ -86,7 +85,6 @@
 from galaxy.tools import recommendations
 from galaxy.tools.parameters import populate_state
 from galaxy.tools.parameters.workflow_utils import workflow_building_modes
-from galaxy.util.sanitize_html import sanitize_html
 from galaxy.web import (
     expose_api,
     expose_api_raw_anonymous_and_sessionless,
@@ -268,7 +266,7 @@ def create(self, trans: GalaxyWebTransaction, payload=None, **kwd):
                         )
                         import_source = "URL"
                     except Exception:
-                        raise exceptions.MessageException(f"Failed to open URL '{escape(archive_source)}'.")
+                        raise exceptions.MessageException(f"Failed to open URL '{archive_source}'.")
             elif hasattr(archive_file, "file"):
                 uploaded_file = archive_file.file
                 uploaded_file_name = uploaded_file.name
@@ -448,7 +446,7 @@ def update(self, trans: GalaxyWebTransaction, id, payload, **kwds):
             name_updated = new_workflow_name and new_workflow_name != stored_workflow.name
             steps_updated = "steps" in workflow_dict
             if name_updated and not steps_updated:
-                sanitized_name = sanitize_html(new_workflow_name or old_workflow.name)
+                sanitized_name = new_workflow_name or old_workflow.name
                 if not sanitized_name:
                     raise exceptions.MessageException("Workflow must have a valid name.")
                 workflow = old_workflow.copy(user=trans.user)
@@ -472,7 +470,7 @@ def update(self, trans: GalaxyWebTransaction, id, payload, **kwds):
                 require_flush = True
 
             if "annotation" in workflow_dict and not steps_updated:
-                newAnnotation = sanitize_html(workflow_dict["annotation"])
+                newAnnotation = workflow_dict["annotation"]
                 self.add_item_annotation(trans.sa_session, trans.user, stored_workflow, newAnnotation)
                 require_flush = True
 
@@ -599,7 +597,7 @@ def __api_import_from_archive(self, trans: GalaxyWebTransaction, archive_data, s
         workflow = workflow.latest_workflow
 
         response = {
-            "message": f"Workflow '{escape(workflow.name)}' imported successfully.",
+            "message": f"Workflow '{workflow.name}' imported successfully.",
             "status": "success",
             "id": trans.security.encode_id(workflow_id),
         }