flaschengeist/geruecht/baruser/routes.py

from flask import Blueprint, request, jsonify
import geruecht.controller as gc
import geruecht.controller.ldapController as lc
import geruecht.controller.accesTokenController as ac
import geruecht.controller.userController as uc
from datetime import datetime
from geruecht.model import BAR, MONEY

baruser = Blueprint("baruser", __name__)

ldap= lc.LDAPController(gc.ldapConfig['URL'], gc.ldapConfig['dn'])
accesTokenController = ac.AccesTokenController()
userController = uc.UserController()

@baruser.route("/bar")
def _bar():
    """ Main function for Baruser

        Returns JSON-file with all Users, who hast amounts in this month.

        Returns:
            JSON-File with Users, who has amounts in this month
            or ERROR 401 Permission Denied
    """
    print(request.headers)
    token = request.headers.get("Token")
    print(token)
    accToken = accesTokenController.validateAccessToken(token, [BAR])

    dic = {}
    if accToken:
        users = userController.getAllUsersfromDB()
        for user in users:
            geruecht = None
            geruecht = user.getGeruecht(datetime.now().year)
            if geruecht is not None:
                month = geruecht.getMonth(datetime.now().month)
                amount = month[0] - month[1]
                all = geruecht.getSchulden()
                if all != 0:
                    if all >= 0:
                        type = 'credit'
                    else:
                        type = 'amount'
                    dic[user.uid] = {"username": user.uid,
                                        "firstname": user.firstname,
                                        "lastname": user.lastname,
                                        "amount": abs(all),
                                        "locked": user.locked,
                                        "type": type
                                        }
        return jsonify(dic)
    return jsonify({"error": "permission denied"}), 401

@baruser.route("/baradd", methods=['POST'])
def _baradd():
    """ Function for Baruser to add amount

        This function added to the user with the posted userID the posted amount.

        Returns:
            JSON-File with userID and the amount
            or ERROR 401 Permission Denied
    """
    token = request.headers.get("Token")
    print(token)
    accToken = accesTokenController.validateAccessToken(token, [BAR])

    if accToken:
        data = request.get_json()
        userID = data['userId']
        amount = int(data['amount'])

        date = datetime.now()
        userController.addAmount(userID, amount, year=date.year, month=date.month)
        user = userController.getUser(userID)
        geruecht = user.getGeruecht(year=date.year)
        month = geruecht.getMonth(month=date.month)
        amount = abs(month[0] - month[1])
        all = geruecht.getSchulden()
        if all >= 0:
            type = 'credit'
        else:
            type = 'amount'
        dic = user.toJSON()
        dic['amount'] = abs(all)
        dic['type'] = type

        return jsonify(dic)
    return jsonify({"error", "permission denied"}), 401

@baruser.route("/barGetUsers")
def _getUsers():
    """ Get Users without amount

        This Function returns all Users, who hasn't an amount in this month.

        Returns:
            JSON-File with Users
            or ERROR 401 Permission Denied
    """
    token = request.headers.get("Token")
    print(token)
    accToken = accesTokenController.validateAccessToken(token, [BAR])

    retVal = {}
    if accToken:
        retVal = ldap.getAllUser()
        return jsonify(retVal)
    return jsonify({"error": "permission denied"}), 401

@baruser.route("/barGetUser", methods=['POST'])
def _getUser():
    token = request.headers.get("Token")
    accToken = accesTokenController.validateAccessToken(token, [BAR])
    if accToken:
        data = request.get_json()
        username = data['userId']
        user = userController.getUser(username)
        amount = user.getGeruecht(datetime.now().year).getSchulden()
        if amount >= 0:
            type = 'credit'
        else:
            type = 'amount'

        retVal = user.toJSON()
        retVal['amount'] = amount
        retVal['type'] = type
        return jsonify(retVal)
    return jsonify("error", "permission denied"), 401

@baruser.route("/search", methods=['POST'])
def _search():
    token = request.headers.get("Token")
    print(token)
    accToken = accesTokenController.validateAccessToken(token, [BAR, MONEY])

    if accToken:
        data = request.get_json()

        searchString = data['searchString']

        retVal = ldap.searchUser(searchString)

        return jsonify(retVal)
    return jsonify({"error": "permission denied"}), 401
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`from flask import Blueprint, request, jsonify`
fixed imports, bugfix that accLifetime will load from config file 2020-01-18 23:37:40 +00:00			`import geruecht.controller as gc`
			`import geruecht.controller.ldapController as lc`
			`import geruecht.controller.accesTokenController as ac`
			`import geruecht.controller.userController as uc`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`from datetime import datetime`
finanzer can add user from LDAP to DB bug fixes 2019-12-29 20:36:42 +00:00			`from geruecht.model import BAR, MONEY`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00
			`baruser = Blueprint("baruser", __name__)`

fixed imports, bugfix that accLifetime will load from config file 2020-01-18 23:37:40 +00:00			`ldap= lc.LDAPController(gc.ldapConfig['URL'], gc.ldapConfig['dn'])`
			`accesTokenController = ac.AccesTokenController()`
			`userController = uc.UserController()`

clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`@baruser.route("/bar")`
			`def _bar():`
Dokumentation vervollständigt 2019-05-02 16:50:59 +00:00			`""" Main function for Baruser`
Task #60 erledigt. Es wird jetzt per StreamHandler geloggt und per File gespeichert. Vielleicht wird auch ein bisschen zuviel geloggt. 2019-05-02 23:40:13 +00:00
Dokumentation vervollständigt 2019-05-02 16:50:59 +00:00			`Returns JSON-file with all Users, who hast amounts in this month.`

			`Returns:`
			`JSON-File with Users, who has amounts in this month`
			`or ERROR 401 Permission Denied`
			`"""`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`print(request.headers)`
			`token = request.headers.get("Token")`
			`print(token)`
add addWorker and deletWorker 2020-01-18 22:31:49 +00:00			`accToken = accesTokenController.validateAccessToken(token, [BAR])`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00
			`dic = {}`
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`if accToken:`
update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`users = userController.getAllUsersfromDB()`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`for user in users:`
			`geruecht = None`
update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`geruecht = user.getGeruecht(datetime.now().year)`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`if geruecht is not None:`
			`month = geruecht.getMonth(datetime.now().month)`
fixed #79 and other bugs 2019-12-22 21:27:39 +00:00			`amount = month[0] - month[1]`
fixed that baruser get endsum not only from month 2019-12-29 20:57:59 +00:00			`all = geruecht.getSchulden()`
added EmailController with the emailController you can send automaticly emails, if a user is over the limit or if the finanzer send the emails the configparser is updated. So you have to set database and ldapconfig. if accestokenlifetime and mailconfig is not set, the parser set default values. 2020-01-05 13:15:02 +00:00			`if all != 0:`
fixed that baruser get endsum not only from month 2019-12-29 20:57:59 +00:00			`if all >= 0:`
fixed #79 and other bugs 2019-12-22 21:27:39 +00:00			`type = 'credit'`
			`else:`
			`type = 'amount'`
update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`dic[user.uid] = {"username": user.uid,`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`"firstname": user.firstname,`
			`"lastname": user.lastname,`
fixed that baruser get endsum not only from month 2019-12-29 20:57:59 +00:00			`"amount": abs(all),`
update to lock user and if bar user add a locked user, he see it 2019-12-29 16:55:21 +00:00			`"locked": user.locked,`
fixed #79 and other bugs 2019-12-22 21:27:39 +00:00			`"type": type`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`}`
			`return jsonify(dic)`
			`return jsonify({"error": "permission denied"}), 401`

			`@baruser.route("/baradd", methods=['POST'])`
			`def _baradd():`
Dokumentation vervollständigt 2019-05-02 16:50:59 +00:00			`""" Function for Baruser to add amount`

			`This function added to the user with the posted userID the posted amount.`

			`Returns:`
			`JSON-File with userID and the amount`
			`or ERROR 401 Permission Denied`
			`"""`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`token = request.headers.get("Token")`
			`print(token)`
add addWorker and deletWorker 2020-01-18 22:31:49 +00:00			`accToken = accesTokenController.validateAccessToken(token, [BAR])`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`if accToken:`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`data = request.get_json()`
			`userID = data['userId']`
			`amount = int(data['amount'])`

update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`date = datetime.now()`
			`userController.addAmount(userID, amount, year=date.year, month=date.month)`
			`user = userController.getUser(userID)`
fixed that baruser get endsum not only from month 2019-12-29 20:57:59 +00:00			`geruecht = user.getGeruecht(year=date.year)`
			`month = geruecht.getMonth(month=date.month)`
task #22 und task #26 abgeschlossen es werden dynamisch neue geruechte erstellt, wenn nötig. Finanzer kann sowohl Guthaben als auch Schulden hinzufügen, egal zu welcher Zeit 2019-05-02 00:21:50 +00:00			`amount = abs(month[0] - month[1])`
fixed that baruser get endsum not only from month 2019-12-29 20:57:59 +00:00			`all = geruecht.getSchulden()`
			`if all >= 0:`
			`type = 'credit'`
			`else:`
			`type = 'amount'`
change return of addAmount in baruser for new frontend 2020-01-14 19:00:37 +00:00			`dic = user.toJSON()`
			`dic['amount'] = abs(all)`
added normal user 2020-01-17 00:05:58 +00:00			`dic['type'] = type`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00
change return of addAmount in baruser for new frontend 2020-01-14 19:00:37 +00:00			`return jsonify(dic)`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`return jsonify({"error", "permission denied"}), 401`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00
			`@baruser.route("/barGetUsers")`
			`def _getUsers():`
Dokumentation vervollständigt 2019-05-02 16:50:59 +00:00			`""" Get Users without amount`

			`This Function returns all Users, who hasn't an amount in this month.`

			`Returns:`
			`JSON-File with Users`
			`or ERROR 401 Permission Denied`
			`"""`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`token = request.headers.get("Token")`
			`print(token)`
add addWorker and deletWorker 2020-01-18 22:31:49 +00:00			`accToken = accesTokenController.validateAccessToken(token, [BAR])`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00
			`retVal = {}`
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`if accToken:`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`retVal = ldap.getAllUser()`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`return jsonify(retVal)`
			`return jsonify({"error": "permission denied"}), 401`

update to lock user and if bar user add a locked user, he see it 2019-12-29 16:55:21 +00:00			`@baruser.route("/barGetUser", methods=['POST'])`
			`def _getUser():`
			`token = request.headers.get("Token")`
add addWorker and deletWorker 2020-01-18 22:31:49 +00:00			`accToken = accesTokenController.validateAccessToken(token, [BAR])`
update to lock user and if bar user add a locked user, he see it 2019-12-29 16:55:21 +00:00			`if accToken:`
			`data = request.get_json()`
			`username = data['userId']`
added EmailController with the emailController you can send automaticly emails, if a user is over the limit or if the finanzer send the emails the configparser is updated. So you have to set database and ldapconfig. if accestokenlifetime and mailconfig is not set, the parser set default values. 2020-01-05 13:15:02 +00:00			`user = userController.getUser(username)`
			`amount = user.getGeruecht(datetime.now().year).getSchulden()`
			`if amount >= 0:`
			`type = 'credit'`
			`else:`
			`type = 'amount'`

			`retVal = user.toJSON()`
			`retVal['amount'] = amount`
			`retVal['type'] = type`
update to lock user and if bar user add a locked user, he see it 2019-12-29 16:55:21 +00:00			`return jsonify(retVal)`
			`return jsonify("error", "permission denied"), 401`

ldap search 2019-12-22 22:09:18 +00:00			`@baruser.route("/search", methods=['POST'])`
			`def _search():`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`token = request.headers.get("Token")`
			`print(token)`
add addWorker and deletWorker 2020-01-18 22:31:49 +00:00			`accToken = accesTokenController.validateAccessToken(token, [BAR, MONEY])`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00
add addWorker and deletWorker 2020-01-18 22:31:49 +00:00			`if accToken:`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`data = request.get_json()`

ldap search 2019-12-22 22:09:18 +00:00			`searchString = data['searchString']`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00
ldap search 2019-12-22 22:09:18 +00:00			`retVal = ldap.searchUser(searchString)`

			`return jsonify(retVal)`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`return jsonify({"error": "permission denied"}), 401`