1
Fork 0
mirror of https://github.com/pds-nest/nest.git synced 2024-11-22 21:14:18 +00:00

Add API repository functions

Now an user can create, edit, list, add conditions, start and stop a repository.
This commit is contained in:
Lorenzo Balugani 2021-04-25 16:33:12 +02:00
parent c7ec25b811
commit 6e4bb34a1b
10 changed files with 117 additions and 6 deletions

View file

@ -33,6 +33,11 @@ app.config['CORS_HEADERS'] = 'Content-Type'
app.add_url_rule("/doa", view_func=page_doa, methods=["GET", "POST"]) app.add_url_rule("/doa", view_func=page_doa, methods=["GET", "POST"])
app.add_url_rule("/api/login", view_func=page_login, methods=["POST"]) app.add_url_rule("/api/login", view_func=page_login, methods=["POST"])
app.add_url_rule("/api/user/create", view_func=page_user_create, methods=["POST"]) app.add_url_rule("/api/user/create", view_func=page_user_create, methods=["POST"])
app.add_url_rule("/api/user/remove", view_func=page_user_delete, methods=["POST"])
app.add_url_rule("/api/repository/list", view_func=page_repository_list, methods=["POST"])
app.add_url_rule("/api/repository/create", view_func=page_repository_create, methods=["POST"])
app.add_url_rule("/api/repository/edit", view_func=page_repository_edit, methods=["POST"])
app.add_url_rule("/api/repository/add_condition", view_func=page_repository_add_condition, methods=["POST"])
if __name__ == "__main__": if __name__ == "__main__":
Base.create_all() Base.create_all()

View file

@ -9,8 +9,9 @@ class Repository(Base.Model):
__tablename__ = "repository" __tablename__ = "repository"
id = Base.Column(Base.Integer, primary_key=True) id = Base.Column(Base.Integer, primary_key=True)
name = Base.Column(Base.String, nullable=False) name = Base.Column(Base.String, nullable=False)
start = Base.Column(Base.DateTime, nullable=False) start = Base.Column(Base.DateTime, nullable=True)
end = Base.Column(Base.DateTime, nullable=True) end = Base.Column(Base.DateTime, nullable=True)
isActive = Base.Column(Base.Boolean, nullable=False, default=False)
# Foreign Keys # Foreign Keys
owner_id = Base.Column(Base.String, Base.ForeignKey("user.email"), nullable=False) owner_id = Base.Column(Base.String, Base.ForeignKey("user.email"), nullable=False)
# Relationships # Relationships

View file

@ -13,3 +13,4 @@ from .Repository import Repository
from .Tweet import Tweet from .Tweet import Tweet
from .User import User from .User import User
from .Uses import Uses from .Uses import Uses
from .Enums import ConditionType, OperationType

View file

@ -9,6 +9,7 @@ from .database import *
import bcrypt import bcrypt
import functools import functools
from flask_jwt_extended import get_jwt_identity from flask_jwt_extended import get_jwt_identity
from flask import request, jsonify
def authenticate(username, password): def authenticate(username, password):
@ -61,3 +62,20 @@ def admin_or_403(f):
return f(*args, **kwargs) return f(*args, **kwargs)
return func return func
def repository_auth(f):
@functools.wraps(f)
def func(*args, **kwargs):
user = find_user(get_jwt_identity())
repository_id = request.json.get("id")
if not repository_id:
return jsonify({"result": "failure", "msg": "Missing one or more parameters."}), 400
repository = Repository.query.filter_by(id=repository_id)
if not repository:
return jsonify({"result": "failure", "msg": "Can't find repository."}), 404
if repository.owner_id != user.email:
return jsonify({"result": "failure",
"msg": "Stop right there, criminal scum! Nobody accesses protected data under MY watch!"}), 403
return f(*args, **kwargs)
return func

View file

@ -4,3 +4,4 @@ This module imports all the routes that return something to the frontend.
from .doa import page_doa from .doa import page_doa
from .users import * from .users import *
from .repository import *

View file

@ -0,0 +1,4 @@
from .repository_add_condition import page_repository_add_condition
from .repository_edit import page_repository_edit
from .repository_create import page_repository_create
from .repository_list import page_repository_list

View file

@ -0,0 +1,34 @@
from flask import render_template, abort, jsonify, request
from ...database import *
from flask_jwt_extended import jwt_required
from ...gestione import *
from flask_cors import cross_origin
@cross_origin()
@jwt_required()
@repository_auth
def page_repository_add_condition():
"""
API call that allows to add conditions to a repository.
:form id: Repository ID
:form type: The type of the condition. It can either be an 'hashtag', a 'location' or 'time'
:form content: The content of the condition (#PdS2021, Roma, 18:00)
:returns: a JSON string that tells whether or not the procedure was a success.
"""
type = request.json.get("type")
if not type or type not in dir(ConditionType):
return jsonify({"result": "failure", "msg": "Could not understand the type of the condition."}), 400
content = request.json.get("content")
if not content:
return jsonify({"result": "failure", "msg": "Could not find the content"}), 400
condition = Condition.query.filter(Condition.content.ilike(str(content))).filter_by(type=ConditionType.__getattr__(str(type)).value).first()
if not condition:
condition = Condition(content=content, type=ConditionType.__getattr__(str(type)).value)
Base.session.add(condition)
repository = Repository.query.filter_by(request.json.get("id"))
if Uses.query.filter_by(cid=condition.id, rid=repository.id):
return jsonify({"result": "failure", "msg": "This condition is already connected to the repository."}), 406
Base.session.add(Uses(cid=condition.id, rid=repository.id))
Base.session.commit()
return jsonify({"result": "success", "content": "Condition added successfully."}), 200

View file

@ -12,13 +12,14 @@ def page_repository_create():
""" """
API call that allows an user to create a new repository. API call that allows an user to create a new repository.
:form name: The name of the repository. :form name: The name of the repository.
:returns: If the user is logged in and :returns: If the user is logged in and has provided the repository name, a JSON string is returned containing
the return status of the operation and the repository in json format.
""" """
user = find_user(get_jwt_identity()) user = find_user(get_jwt_identity())
name = request.json.get("name") name = request.json.get("name")
if not name: if not name:
return jsonify({"result": "failure", "msg": "Missing one or more parameters"}), 40 return jsonify({"result": "failure", "msg": "Missing one or more parameters"}), 400
repository = Repository(name=name, start=datetime.datetime.now(), owner_id=user.email) repository = Repository(name=name, owner_id=user.email)
Base.session.add(repository) Base.session.add(repository)
Base.session.commit() Base.session.commit()
return jsonify({"result":"success", "content":repository.to_json()}), 200 return jsonify({"result": "success", "content": repository.to_json()}), 200

View file

@ -0,0 +1,28 @@
from flask import render_template, abort, jsonify, request
from ...database import *
from flask_jwt_extended import jwt_required
from ...gestione import *
from flask_cors import cross_origin
import datetime
@cross_origin()
@jwt_required()
@repository_auth
def page_repository_edit():
"""
This API call allows to edit a repository.
:form name: If present, it changes the repository name.
:form close: If present, it closes the repository.
:returns: A JSON formatted string that either contains an error or the updated representation of the repository.
"""
repository = Repository.query.filter_by(id=request.json['id'])
if 'name' in request.json:
repository.name = request.json['name']
if 'close' in request.json and not repository.end and repository.isActive:
repository.end = datetime.datetime.now()
repository.isActive = False
if 'open' in request.json and not repository.isActive and not repository.end:
repository.isActive = True
Base.session.commit()
return jsonify({"result": "success", "content":repository.to_json()})

View file

@ -0,0 +1,18 @@
from flask import render_template, abort, jsonify, request
from ...database import *
from flask_jwt_extended import jwt_required
from ...gestione import *
from flask_cors import cross_origin
@cross_origin()
@jwt_required()
def page_repository_list():
"""
API call that returns the list of repositories.
:returns: a JSON-formatted string that contains under the "content" field the list of repositories that belong to
the user ("owner") and a list of repositories that he can spectate ("spectator").
"""
user = find_user(get_jwt_identity())
return {"result": "success", "content": {"owner": [r.to_json() for r in user.owner_of],
"spectator": [r.repository.to_json() for r in user.authorizations]}}