flaschengeist/geruecht/baruser/routes.py

from flask import Blueprint, request, jsonify
from geruecht.controller import ldapController as ldap, accesTokenController, userController
from datetime import datetime
from geruecht.model import BAR

baruser = Blueprint("baruser", __name__)

@baruser.route("/bar")
def _bar():
    """ Main function for Baruser

        Returns JSON-file with all Users, who hast amounts in this month.

        Returns:
            JSON-File with Users, who has amounts in this month
            or ERROR 401 Permission Denied
    """
    print(request.headers)
    token = request.headers.get("Token")
    print(token)
    accToken = accesTokenController.validateAccessToken(token, BAR)

    dic = {}
    if accToken:
        users = userController.getAllUsersfromDB()
        for user in users:
            geruecht = None
            geruecht = user.getGeruecht(datetime.now().year)
            if geruecht is not None:
                month = geruecht.getMonth(datetime.now().month)
                amount = month[0] - month[1]
                if amount != 0:
                    if amount >= 0:
                        type = 'credit'
                    else:
                        type = 'amount'
                    dic[user.uid] = {"username": user.uid,
                                        "firstname": user.firstname,
                                        "lastname": user.lastname,
                                        "amount": abs(month[0] - month[1]),
                                        "locked": user.locked,
                                        "type": type
                                        }
        return jsonify(dic)
    return jsonify({"error": "permission denied"}), 401

@baruser.route("/baradd", methods=['POST'])
def _baradd():
    """ Function for Baruser to add amount

        This function added to the user with the posted userID the posted amount.

        Returns:
            JSON-File with userID and the amount
            or ERROR 401 Permission Denied
    """
    token = request.headers.get("Token")
    print(token)
    accToken = accesTokenController.validateAccessToken(token, BAR)

    if accToken:
        data = request.get_json()
        userID = data['userId']
        amount = int(data['amount'])

        date = datetime.now()
        userController.addAmount(userID, amount, year=date.year, month=date.month)
        user = userController.getUser(userID)
        month = user.getGeruecht(year=date.year).getMonth(month=date.month)
        amount = abs(month[0] - month[1])

        return jsonify({"userId": user.uid, "amount": amount, 'locked': user.locked})
    return jsonify({"error", "permission denied"}), 401

@baruser.route("/barGetUsers")
def _getUsers():
    """ Get Users without amount

        This Function returns all Users, who hasn't an amount in this month.

        Returns:
            JSON-File with Users
            or ERROR 401 Permission Denied
    """
    token = request.headers.get("Token")
    print(token)
    accToken = accesTokenController.validateAccessToken(token, BAR)

    retVal = {}
    if accToken:
        retVal = ldap.getAllUser()
        return jsonify(retVal)
    return jsonify({"error": "permission denied"}), 401

@baruser.route("/barGetUser", methods=['POST'])
def _getUser():
    token = request.headers.get("Token")
    accToken = accesTokenController.validateAccessToken(token, BAR)
    if accToken:
        data = request.get_json()
        username = data['userId']
        retVal = userController.getUser(username).toJSON()
        return jsonify(retVal)
    return jsonify("error", "permission denied"), 401

@baruser.route("/search", methods=['POST'])
def _search():
    token = request.headers.get("Token")
    print(token)
    accToken = accesTokenController.validateAccessToken(token, BAR)

    if accToken:
        data = request.get_json()

        searchString = data['searchString']

        retVal = ldap.searchUser(searchString)

        return jsonify(retVal)
    return jsonify({"error": "permission denied"}), 401
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`from flask import Blueprint, request, jsonify`
update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`from geruecht.controller import ldapController as ldap, accesTokenController, userController`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`from datetime import datetime`
update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`from geruecht.model import BAR`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00
			`baruser = Blueprint("baruser", __name__)`

			`@baruser.route("/bar")`
			`def _bar():`
Dokumentation vervollständigt 2019-05-02 16:50:59 +00:00			`""" Main function for Baruser`
Task #60 erledigt. Es wird jetzt per StreamHandler geloggt und per File gespeichert. Vielleicht wird auch ein bisschen zuviel geloggt. 2019-05-02 23:40:13 +00:00
Dokumentation vervollständigt 2019-05-02 16:50:59 +00:00			`Returns JSON-file with all Users, who hast amounts in this month.`

			`Returns:`
			`JSON-File with Users, who has amounts in this month`
			`or ERROR 401 Permission Denied`
			`"""`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`print(request.headers)`
			`token = request.headers.get("Token")`
			`print(token)`
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`accToken = accesTokenController.validateAccessToken(token, BAR)`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00
			`dic = {}`
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`if accToken:`
update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`users = userController.getAllUsersfromDB()`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`for user in users:`
			`geruecht = None`
update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`geruecht = user.getGeruecht(datetime.now().year)`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`if geruecht is not None:`
			`month = geruecht.getMonth(datetime.now().month)`
fixed #79 and other bugs 2019-12-22 21:27:39 +00:00			`amount = month[0] - month[1]`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`if amount != 0:`
fixed #79 and other bugs 2019-12-22 21:27:39 +00:00			`if amount >= 0:`
			`type = 'credit'`
			`else:`
			`type = 'amount'`
update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`dic[user.uid] = {"username": user.uid,`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`"firstname": user.firstname,`
			`"lastname": user.lastname,`
fixed #79 and other bugs 2019-12-22 21:27:39 +00:00			`"amount": abs(month[0] - month[1]),`
update to lock user and if bar user add a locked user, he see it 2019-12-29 16:55:21 +00:00			`"locked": user.locked,`
fixed #79 and other bugs 2019-12-22 21:27:39 +00:00			`"type": type`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`}`
			`return jsonify(dic)`
			`return jsonify({"error": "permission denied"}), 401`

			`@baruser.route("/baradd", methods=['POST'])`
			`def _baradd():`
Dokumentation vervollständigt 2019-05-02 16:50:59 +00:00			`""" Function for Baruser to add amount`

			`This function added to the user with the posted userID the posted amount.`

			`Returns:`
			`JSON-File with userID and the amount`
			`or ERROR 401 Permission Denied`
			`"""`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`token = request.headers.get("Token")`
			`print(token)`
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`accToken = accesTokenController.validateAccessToken(token, BAR)`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`if accToken:`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`data = request.get_json()`
			`userID = data['userId']`
			`amount = int(data['amount'])`

update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`date = datetime.now()`
			`userController.addAmount(userID, amount, year=date.year, month=date.month)`
			`user = userController.getUser(userID)`
			`month = user.getGeruecht(year=date.year).getMonth(month=date.month)`
task #22 und task #26 abgeschlossen es werden dynamisch neue geruechte erstellt, wenn nötig. Finanzer kann sowohl Guthaben als auch Schulden hinzufügen, egal zu welcher Zeit 2019-05-02 00:21:50 +00:00			`amount = abs(month[0] - month[1])`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00
update to lock user and if bar user add a locked user, he see it 2019-12-29 16:55:21 +00:00			`return jsonify({"userId": user.uid, "amount": amount, 'locked': user.locked})`
clean up code, extra routes for finanzer and baruser 2019-05-01 20:43:28 +00:00			`return jsonify({"error", "permission denied"}), 401`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00
			`@baruser.route("/barGetUsers")`
			`def _getUsers():`
Dokumentation vervollständigt 2019-05-02 16:50:59 +00:00			`""" Get Users without amount`

			`This Function returns all Users, who hasn't an amount in this month.`

			`Returns:`
			`JSON-File with Users`
			`or ERROR 401 Permission Denied`
			`"""`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`token = request.headers.get("Token")`
			`print(token)`
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`accToken = accesTokenController.validateAccessToken(token, BAR)`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00
			`retVal = {}`
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`if accToken:`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`retVal = ldap.getAllUser()`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`return jsonify(retVal)`
			`return jsonify({"error": "permission denied"}), 401`

update to lock user and if bar user add a locked user, he see it 2019-12-29 16:55:21 +00:00			`@baruser.route("/barGetUser", methods=['POST'])`
			`def _getUser():`
			`token = request.headers.get("Token")`
			`accToken = accesTokenController.validateAccessToken(token, BAR)`
			`if accToken:`
			`data = request.get_json()`
			`username = data['userId']`
			`retVal = userController.getUser(username).toJSON()`
			`return jsonify(retVal)`
			`return jsonify("error", "permission denied"), 401`

ldap search 2019-12-22 22:09:18 +00:00			`@baruser.route("/search", methods=['POST'])`
			`def _search():`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`token = request.headers.get("Token")`
			`print(token)`
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`accToken = accesTokenController.validateAccessToken(token, BAR)`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00
update token validatition no second thread to validate for token ... only on access it will be validate 2019-12-28 10:31:45 +00:00			`if accToken:`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`data = request.get_json()`

ldap search 2019-12-22 22:09:18 +00:00			`searchString = data['searchString']`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00
ldap search 2019-12-22 22:09:18 +00:00			`retVal = ldap.searchUser(searchString)`

			`return jsonify(retVal)`
task #23 erledigt es können die User abgefragt werden, die diesen Monat noch keine Schulden haben. es kann der user abgefragt werden 2019-05-02 13:39:53 +00:00			`return jsonify({"error": "permission denied"}), 401`