brewman/brewman/brewman/routers/auth/user.py

import uuid

from typing import List, Optional

import brewman.schemas.auth as schemas

from fastapi import APIRouter, Depends, HTTPException, Security, status
from sqlalchemy.exc import SQLAlchemyError
from sqlalchemy.orm import Session

from ...core.security import get_current_active_user as get_user
from ...db.session import SessionLocal
from ...models.auth import Role, User
from ...schemas.auth import UserToken


router = APIRouter()


# Dependency
def get_db():
    try:
        db = SessionLocal()
        yield db
    finally:
        db.close()


@router.post("", response_model=schemas.User)
def save(
    data: schemas.UserIn,
    db: Session = Depends(get_db),
    user: UserToken = Security(get_user, scopes=["users"]),
):
    try:
        item = User(name=data.name, password=data.password, locked_out=data.locked_out)
        db.add(item)
        add_roles(item, data.roles, db)
        db.commit()
        return user_info(item, db, user)
    except SQLAlchemyError as e:
        db.rollback()
        raise HTTPException(
            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
            detail=str(e),
        )
    except Exception:
        db.rollback()
        raise


@router.get("/me", response_model=schemas.User)
def show_me(
    db: Session = Depends(get_db),
    user: UserToken = Depends(get_user),
):
    item = db.query(User).filter(User.id == user.id_).first()
    return user_info(item, db, user)


@router.put("/me", response_model=schemas.User)
def update_me(
    data: schemas.UserIn,
    db: Session = Depends(get_db),
    user: UserToken = Depends(get_user),
):
    try:
        item: User = db.query(User).filter(User.id == user.id_).first()
        if "users" in user.permissions:
            item.name = data.name
            item.locked_out = data.locked_out
            add_roles(item, data.roles, db)
        if data.password and item.password != data.password:
            item.password = data.password
        db.commit()
        return user_info(item, db, user)
    except SQLAlchemyError as e:
        db.rollback()
        raise HTTPException(
            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
            detail=str(e),
        )
    except Exception:
        db.rollback()
        raise


@router.put("/{id_}", response_model=schemas.User)
def update(
    id_: uuid.UUID,
    data: schemas.UserIn,
    db: Session = Depends(get_db),
    user: UserToken = Security(get_user, scopes=["users"]),
):
    try:
        item: User = db.query(User).filter(User.id == id_).first()
        item.name = data.name
        if data.password and item.password != data.password:
            item.password = data.password
        item.locked_out = data.locked_out
        add_roles(item, data.roles, db)
        db.commit()
        return user_info(item, db, user)
    except SQLAlchemyError as e:
        db.rollback()
        raise HTTPException(
            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
            detail=str(e),
        )
    except Exception:
        db.rollback()
        raise


def add_roles(user: User, roles: List[schemas.RoleItem], db: Session):
    for role in roles:
        ug = [g for g in user.roles if g.id == role.id_]
        ug = None if len(ug) == 0 else ug[0]
        if role.enabled and ug is None:
            user.roles.append(db.query(Role).filter(Role.id == role.id_).one())
        elif not role.enabled and ug:
            user.roles.remove(ug)


@router.delete("/{id_}")
def delete(
    id_: uuid.UUID,
    db: Session = Depends(get_db),
    user: UserToken = Security(get_user, scopes=["users"]),
):
    try:
        item: User = db.query(User).filter(User.id == id_).first()
        if item is None:
            raise HTTPException(
                status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
                detail="User not found",
            )
        else:
            raise HTTPException(
                status_code=status.HTTP_501_NOT_IMPLEMENTED,
                detail="User deletion not implemented",
            )
    except Exception:
        db.rollback()
        raise


@router.get("")
def show_blank(
    db: Session = Depends(get_db),
    user: UserToken = Security(get_user, scopes=["users"]),
):
    return user_info(None, db, user)


@router.get("/list", response_model=List[schemas.UserList])
async def show_list(
    db: Session = Depends(get_db),
    user: UserToken = Security(get_user, scopes=["users"]),
):
    return [
        {
            "id": item.id,
            "name": item.name,
            "lockedOut": item.locked_out,
            "roles": [p.name for p in sorted(item.roles, key=lambda p: p.name)],
        }
        for item in db.query(User).order_by(User.name).all()
    ]


@router.get("/active")
async def show_active(
    db: Session = Depends(get_db), user: UserToken = Depends(get_user)
):
    return [
        {"name": item.name}
        for item in db.query(User).filter(User.locked_out == False).order_by(User.name)
    ]


@router.get("/{id_}", response_model=schemas.User)
def show_id(
    id_: uuid.UUID,
    db: Session = Depends(get_db),
    user: UserToken = Security(get_user, scopes=["users"]),
):
    item = db.query(User).filter(User.id == id_).first()
    return user_info(item, db, user)


def user_info(item: Optional[User], db: Session, user: UserToken):
    if item is None:
        return {
            "name": "",
            "lockedOut": False,
            "roles": [
                {"id": r.id, "name": r.name, "enabled": False}
                for r in db.query(Role).order_by(Role.name).all()
            ],
        }
    else:
        return {
            "id": item.id,
            "name": item.name,
            "password": "",
            "lockedOut": item.locked_out,
            "roles": [
                {
                    "id": r.id,
                    "name": r.name,
                    "enabled": True if r in item.roles else False,
                }
                for r in db.query(Role).order_by(Role.name).all()
            ]
            if "advanced-delete" in user.permissions
            else [],
        }
Added route for user management Removed route for user groups and related views / templates User management created. Updated journal to full angular with routes Added User service in angular Added Journal Route. Changed auth in BaseCtrl to use Permission service and do away with function. 2012-10-11 18:01:04 +00:00			`import uuid`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`from typing import List, Optional`
Fixed password change not allowed for non Privilaged users. Fixed storing utc dates in message tables. Created utc class for time-aware dates. Updated home to show age of Threads and open in new window available. Modified message detail template to show editable by privileged user. Added subscribers to thread detail. Improved markup for message-detail to use less space. Improved the chosen directive for when there is no create option. Added method 'Names' to user resource for use in message subscribers. Payment and Receipt clear typeahead on adding ledgers. TODO: Implement thread read status per user. TODO: Implemented edit post functionality for privileged user. TODO: Implement thread filtering on main page for subscribers Signed-off-by: Tanshu <tanshu@gmail.com> 2013-06-06 11:26:05 +00:00
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`import brewman.schemas.auth as schemas`

			`from fastapi import APIRouter, Depends, HTTPException, Security, status`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`from sqlalchemy.exc import SQLAlchemyError`
			`from sqlalchemy.orm import Session`

			`from ...core.security import get_current_active_user as get_user`
			`from ...db.session import SessionLocal`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`from ...models.auth import Role, User`
			`from ...schemas.auth import UserToken`

Moving to FastAPI Config is not properly working with .env file as of now Cost Centre is mostly working, going to work on Accounts now 2020-05-08 04:52:25 +00:00
			`router = APIRouter()`

Fixed password change not allowed for non Privilaged users. Fixed storing utc dates in message tables. Created utc class for time-aware dates. Updated home to show age of Threads and open in new window available. Modified message detail template to show editable by privileged user. Added subscribers to thread detail. Improved markup for message-detail to use less space. Improved the chosen directive for when there is no create option. Added method 'Names' to user resource for use in message subscribers. Payment and Receipt clear typeahead on adding ledgers. TODO: Implement thread read status per user. TODO: Implemented edit post functionality for privileged user. TODO: Implement thread filtering on main page for subscribers Signed-off-by: Tanshu <tanshu@gmail.com> 2013-06-06 11:26:05 +00:00
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`# Dependency`
			`def get_db():`
			`try:`
			`db = SessionLocal()`
			`yield db`
			`finally:`
			`db.close()`


Renamed groups to roles in the frontend Working: Account Cost Centre Employee Product Group Product Role User Client 2020-05-11 20:01:21 +00:00			`@router.post("", response_model=schemas.User)`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`def save(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`data: schemas.UserIn,`
			`db: Session = Depends(get_db),`
			`user: UserToken = Security(get_user, scopes=["users"]),`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`):`
			`try:`
Clients should now work. Blacked a lot of files 2020-05-10 17:08:35 +00:00			`item = User(name=data.name, password=data.password, locked_out=data.locked_out)`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`db.add(item)`
			`add_roles(item, data.roles, db)`
			`db.commit()`
			`return user_info(item, db, user)`
			`except SQLAlchemyError as e:`
			`db.rollback()`
			`raise HTTPException(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,`
			`detail=str(e),`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`)`
			`except Exception:`
			`db.rollback()`
Bumped the version to 7 Fixed double exception being thrown Currency pipe broke the accounts pipe 2020-06-01 03:31:31 +00:00			`raise`
Fix: Handle uploading of new fingerprint file Chore: Used Black formatter 2019-04-06 04:13:12 +00:00
Fixed: Create user Fixed: Delete client 2013-10-30 05:53:48 +00:00
Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`@router.get("/me", response_model=schemas.User)`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`def show_me(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`db: Session = Depends(get_db),`
			`user: UserToken = Depends(get_user),`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`):`
Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`item = db.query(User).filter(User.id == user.id_).first()`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`return user_info(item, db, user)`


			`@router.put("/me", response_model=schemas.User)`
			`def update_me(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`data: schemas.UserIn,`
			`db: Session = Depends(get_db),`
			`user: UserToken = Depends(get_user),`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`):`
			`try:`
Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`item: User = db.query(User).filter(User.id == user.id_).first()`
Renamed groups to roles in the frontend Working: Account Cost Centre Employee Product Group Product Role User Client 2020-05-11 20:01:21 +00:00			`if "users" in user.permissions:`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`item.name = data.name`
			`item.locked_out = data.locked_out`
			`add_roles(item, data.roles, db)`
			`if data.password and item.password != data.password:`
			`item.password = data.password`
			`db.commit()`
			`return user_info(item, db, user)`
			`except SQLAlchemyError as e:`
			`db.rollback()`
			`raise HTTPException(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,`
			`detail=str(e),`
Fix: Handle uploading of new fingerprint file Chore: Used Black formatter 2019-04-06 04:13:12 +00:00			`)`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`except Exception:`
			`db.rollback()`
Bumped the version to 7 Fixed double exception being thrown Currency pipe broke the accounts pipe 2020-06-01 03:31:31 +00:00			`raise`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00

			`@router.put("/{id_}", response_model=schemas.User)`
			`def update(`
			`id_: uuid.UUID,`
			`data: schemas.UserIn,`
			`db: Session = Depends(get_db),`
			`user: UserToken = Security(get_user, scopes=["users"]),`
			`):`
			`try:`
Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`item: User = db.query(User).filter(User.id == id_).first()`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`item.name = data.name`
			`if data.password and item.password != data.password:`
			`item.password = data.password`
			`item.locked_out = data.locked_out`
			`add_roles(item, data.roles, db)`
			`db.commit()`
			`return user_info(item, db, user)`
			`except SQLAlchemyError as e:`
			`db.rollback()`
			`raise HTTPException(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,`
			`detail=str(e),`
Fix: Handle uploading of new fingerprint file Chore: Used Black formatter 2019-04-06 04:13:12 +00:00			`)`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`except Exception:`
			`db.rollback()`
Bumped the version to 7 Fixed double exception being thrown Currency pipe broke the accounts pipe 2020-06-01 03:31:31 +00:00			`raise`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00

			`def add_roles(user: User, roles: List[schemas.RoleItem], db: Session):`
			`for role in roles:`
Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`ug = [g for g in user.roles if g.id == role.id_]`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`ug = None if len(ug) == 0 else ug[0]`
			`if role.enabled and ug is None:`
Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`user.roles.append(db.query(Role).filter(Role.id == role.id_).one())`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`elif not role.enabled and ug:`
			`user.roles.remove(ug)`


			`@router.delete("/{id_}")`
			`def delete(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`id_: uuid.UUID,`
			`db: Session = Depends(get_db),`
			`user: UserToken = Security(get_user, scopes=["users"]),`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`):`
			`try:`
Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`item: User = db.query(User).filter(User.id == id_).first()`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`if item is None:`
			`raise HTTPException(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,`
			`detail="User not found",`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`)`
Added styles and dirty check for attendance. UserCtrl is minifiable. User route now works with names. Fixed Payment / Receipt partials broken due to autocomplete changes. 2012-11-29 13:09:26 +00:00			`else:`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`raise HTTPException(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`status_code=status.HTTP_501_NOT_IMPLEMENTED,`
			`detail="User deletion not implemented",`
Fix: Handle uploading of new fingerprint file Chore: Used Black formatter 2019-04-06 04:13:12 +00:00			`)`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`except Exception:`
			`db.rollback()`
Bumped the version to 7 Fixed double exception being thrown Currency pipe broke the accounts pipe 2020-06-01 03:31:31 +00:00			`raise`
Fix: Handle uploading of new fingerprint file Chore: Used Black formatter 2019-04-06 04:13:12 +00:00
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00
Renamed groups to roles in the frontend Working: Account Cost Centre Employee Product Group Product Role User Client 2020-05-11 20:01:21 +00:00			`@router.get("")`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`def show_blank(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`db: Session = Depends(get_db),`
			`user: UserToken = Security(get_user, scopes=["users"]),`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`):`
			`return user_info(None, db, user)`


			`@router.get("/list", response_model=List[schemas.UserList])`
Clients should now work. Blacked a lot of files 2020-05-10 17:08:35 +00:00			`async def show_list(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`db: Session = Depends(get_db),`
			`user: UserToken = Security(get_user, scopes=["users"]),`
Clients should now work. Blacked a lot of files 2020-05-10 17:08:35 +00:00			`):`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`return [`
Clients should now work. Blacked a lot of files 2020-05-10 17:08:35 +00:00			`{`
			`"id": item.id,`
			`"name": item.name,`
			`"lockedOut": item.locked_out,`
			`"roles": [p.name for p in sorted(item.roles, key=lambda p: p.name)],`
			`}`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`for item in db.query(User).order_by(User.name).all()`
			`]`


			`@router.get("/active")`
Blacked all files 2020-10-07 16:59:24 +00:00			`async def show_active(`
			`db: Session = Depends(get_db), user: UserToken = Depends(get_user)`
			`):`
			`return [`
			`{"name": item.name}`
			`for item in db.query(User).filter(User.locked_out == False).order_by(User.name)`
			`]`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00

Renamed groups to roles in the frontend Working: Account Cost Centre Employee Product Group Product Role User Client 2020-05-11 20:01:21 +00:00			`@router.get("/{id_}", response_model=schemas.User)`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`def show_id(`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`id_: uuid.UUID,`
			`db: Session = Depends(get_db),`
			`user: UserToken = Security(get_user, scopes=["users"]),`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`):`
Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`item = db.query(User).filter(User.id == id_).first()`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`return user_info(item, db, user)`


Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`def user_info(item: Optional[User], db: Session, user: UserToken):`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`if item is None:`
			`return {`
Clients should now work. Blacked a lot of files 2020-05-10 17:08:35 +00:00			`"name": "",`
			`"lockedOut": False,`
Blacked all files 2020-10-07 16:59:24 +00:00			`"roles": [`
			`{"id": r.id, "name": r.name, "enabled": False}`
			`for r in db.query(Role).order_by(Role.name).all()`
			`],`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`}`
			`else:`
			`return {`
Checked the alembic migration. It is fine Fixed errors in user / roles / etc. mostly introduced due to the renaming of tables 2020-05-10 16:55:37 +00:00			`"id": item.id,`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`"name": item.name,`
			`"password": "",`
			`"lockedOut": item.locked_out,`
			`"roles": [`
Chore: Blacked and isorted all files 2020-10-07 15:18:43 +00:00			`{`
			`"id": r.id,`
			`"name": r.name,`
			`"enabled": True if r in item.roles else False,`
			`}`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`for r in db.query(Role).order_by(Role.name).all()`
Clients should now work. Blacked a lot of files 2020-05-10 17:08:35 +00:00			`]`
			`if "advanced-delete" in user.permissions`
			`else [],`
Added Alembic Breaking: Changed a lot of column names 2020-05-10 15:06:19 +00:00			`}`