logs-collector/logs_collector/collector/api/views.py

from django.core.exceptions import ValidationError, ObjectDoesNotExist

from rest_framework import status
# from rest_framework.decorators import action
from rest_framework.parsers import FormParser, MultiPartParser
from rest_framework.permissions import IsAuthenticated
from rest_framework.response import Response
from rest_framework import viewsets
from rest_framework import filters

from django_filters.rest_framework import DjangoFilterBackend

from drf_spectacular.utils import extend_schema
from drf_spectacular.openapi import OpenApiParameter

from collector.models import Archive, Ticket, Platform

from .filters import ArchiveFilter, TicketFilter
from .permissions import IsGuestUpload
from .serializers import (
    PublicArchiveUploadSerializer,
    ArchiveSerializer,
    PlatformSerializer,
    TicketSerializer
)


class ArchiveViewSet(viewsets.ModelViewSet):
    queryset = Archive.objects.order_by('-time_create')
    serializer_class = ArchiveSerializer
    parser_classes = (MultiPartParser, FormParser)
    permission_classes = (IsGuestUpload, )
    filter_backends = [DjangoFilterBackend]
    filterset_class = ArchiveFilter

    @extend_schema(
        operation_id='upload_file',
        request={
            'multipart/form-data': {
                'type': 'object',
                'properties': {
                    'file': {
                        'type': 'string',
                        'format': 'binary'
                        }
                    }
                }
            },
        parameters=[
            OpenApiParameter(
                    name='Upload-Token',
                    type=str,
                    location=OpenApiParameter.HEADER,
                    description="upload permission token",
            ),
        ]
    )
    def create(self, request, *args, **kwargs):
        # ! upload-token protection:
        upload_token = request.headers.get('upload-token', '')
        if upload_token:
            try:
                bound_ticket = Ticket.objects.get(token=upload_token)
                if bound_ticket.resolved:
                    return Response(
                        {'error': f'ticket {bound_ticket} already resolved'},
                        status=status.HTTP_423_LOCKED
                    )
                if bound_ticket.attempts <= 0:
                    return Response(
                        {'error': f'token {upload_token} expired'},
                        status=status.HTTP_423_LOCKED
                    )
                bound_ticket.attempts -= 1
                bound_ticket.save()
                # ? mixin bound ticket number to request.data from user
                request.data['ticket'] = bound_ticket.number
                # ? change serializer for guest user
                if not request.user.is_authenticated:
                    self.serializer_class = PublicArchiveUploadSerializer
            except (ValidationError, ObjectDoesNotExist,):
                return Response(
                    {'error': f'token {upload_token} is not valid'},
                    status=status.HTTP_403_FORBIDDEN
                )
        else:
            return Response(
                {'error': 'Header Upload-Token is required'},
                status=status.HTTP_401_UNAUTHORIZED
            )
        # ! default create method:
        serializer = self.get_serializer(data=request.data)
        serializer.is_valid(raise_exception=True)
        self.perform_create(serializer)
        headers = self.get_success_headers(serializer.data)
        return Response(
            serializer.data,
            status=status.HTTP_201_CREATED,
            headers=headers
        )


class PlatformViewSet(viewsets.ModelViewSet):
    queryset = Platform.objects.all()
    lookup_field = 'name'
    serializer_class = PlatformSerializer
    permission_classes = (IsAuthenticated, )


class TicketViewSet(viewsets.ModelViewSet):
    queryset = Ticket.objects.order_by('-time_create')
    lookup_field = 'number'
    serializer_class = TicketSerializer
    permission_classes = (IsAuthenticated, )
    filter_backends = [DjangoFilterBackend, filters.SearchFilter]
    filterset_class = TicketFilter
    search_fields = ['number']

    def perform_create(self, serializer):
        serializer.save(user=self.request.user)
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00			`from django.core.exceptions import ValidationError, ObjectDoesNotExist`
Create: views and templates 2023-07-29 06:56:42 +02:00
Create: local static files 2023-07-31 06:53:39 +02:00			`from rest_framework import status`
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00			`# from rest_framework.decorators import action`
Create: api prototype 2023-08-08 07:42:57 +02:00			`from rest_framework.parsers import FormParser, MultiPartParser`
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00			`from rest_framework.permissions import IsAuthenticated`
			`from rest_framework.response import Response`
			`from rest_framework import viewsets`
Add: simple filters to modelviewsets 2023-08-11 15:12:51 +02:00			`from rest_framework import filters`

			`from django_filters.rest_framework import DjangoFilterBackend`
Create: local static files 2023-07-31 06:53:39 +02:00
Create: views to upload files by ajax 2023-08-16 17:53:13 +02:00			`from drf_spectacular.utils import extend_schema`
			`from drf_spectacular.openapi import OpenApiParameter`

Refactoring: using the apps directory is redundant 2023-08-15 06:00:24 +02:00			`from collector.models import Archive, Ticket, Platform`
Create: MVP 2fa account app 2023-08-14 09:56:17 +02:00
Add: simple filters to modelviewsets 2023-08-11 15:12:51 +02:00			`from .filters import ArchiveFilter, TicketFilter`
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00			`from .permissions import IsGuestUpload`
			`from .serializers import (`
			`PublicArchiveUploadSerializer,`
			`ArchiveSerializer,`
			`PlatformSerializer,`
			`TicketSerializer`
			`)`
Create: api prototype 2023-08-08 07:42:57 +02:00
Add: django project and collector app 2023-07-25 08:29:17 +02:00
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00			`class ArchiveViewSet(viewsets.ModelViewSet):`
Create: api prototype 2023-08-08 07:42:57 +02:00			`queryset = Archive.objects.order_by('-time_create')`
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00			`serializer_class = ArchiveSerializer`
Create: api prototype 2023-08-08 07:42:57 +02:00			`parser_classes = (MultiPartParser, FormParser)`
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00			`permission_classes = (IsGuestUpload, )`
Add: simple filters to modelviewsets 2023-08-11 15:12:51 +02:00			`filter_backends = [DjangoFilterBackend]`
			`filterset_class = ArchiveFilter`
Create: api prototype 2023-08-08 07:42:57 +02:00
Create: views to upload files by ajax 2023-08-16 17:53:13 +02:00			`@extend_schema(`
			`operation_id='upload_file',`
			`request={`
			`'multipart/form-data': {`
			`'type': 'object',`
			`'properties': {`
			`'file': {`
			`'type': 'string',`
			`'format': 'binary'`
			`}`
			`}`
			`}`
			`},`
			`parameters=[`
			`OpenApiParameter(`
			`name='Upload-Token',`
			`type=str,`
			`location=OpenApiParameter.HEADER,`
			`description="upload permission token",`
			`),`
			`]`
			`)`
Add: public api view for upload ticket 2023-08-09 13:24:16 +02:00			`def create(self, request, args, *kwargs):`
			`# ! upload-token protection:`
			`upload_token = request.headers.get('upload-token', '')`
Create: views to upload files by ajax 2023-08-16 17:53:13 +02:00			`if upload_token:`
Add: public api view for upload ticket 2023-08-09 13:24:16 +02:00			`try:`
			`bound_ticket = Ticket.objects.get(token=upload_token)`
			`if bound_ticket.resolved:`
			`return Response(`
Create: views to upload files by ajax 2023-08-16 17:53:13 +02:00			`{'error': f'ticket {bound_ticket} already resolved'},`
Add: public api view for upload ticket 2023-08-09 13:24:16 +02:00			`status=status.HTTP_423_LOCKED`
			`)`
			`if bound_ticket.attempts <= 0:`
			`return Response(`
			`{'error': f'token {upload_token} expired'},`
			`status=status.HTTP_423_LOCKED`
			`)`
			`bound_ticket.attempts -= 1`
			`bound_ticket.save()`
Refactoring: views now use api for ajax 2023-08-13 09:31:40 +02:00			`# ? mixin bound ticket number to request.data from user`
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00			`request.data['ticket'] = bound_ticket.number`
			`# ? change serializer for guest user`
Create: views to upload files by ajax 2023-08-16 17:53:13 +02:00			`if not request.user.is_authenticated:`
			`self.serializer_class = PublicArchiveUploadSerializer`
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00			`except (ValidationError, ObjectDoesNotExist,):`
Add: public api view for upload ticket 2023-08-09 13:24:16 +02:00			`return Response(`
			`{'error': f'token {upload_token} is not valid'},`
			`status=status.HTTP_403_FORBIDDEN`
			`)`
Create: views to upload files by ajax 2023-08-16 17:53:13 +02:00			`else:`
Add: public api view for upload ticket 2023-08-09 13:24:16 +02:00			`return Response(`
			`{'error': 'Header Upload-Token is required'},`
			`status=status.HTTP_401_UNAUTHORIZED`
			`)`
			`# ! default create method:`
			`serializer = self.get_serializer(data=request.data)`
			`serializer.is_valid(raise_exception=True)`
			`self.perform_create(serializer)`
			`headers = self.get_success_headers(serializer.data)`
			`return Response(`
			`serializer.data,`
			`status=status.HTTP_201_CREATED,`
			`headers=headers`
			`)`
Add: create ticket enpoint 2023-08-08 11:08:53 +02:00
Add: modelviewsets for all models 2023-08-11 03:38:47 +02:00
			`class PlatformViewSet(viewsets.ModelViewSet):`
			`queryset = Platform.objects.all()`
			`lookup_field = 'name'`
			`serializer_class = PlatformSerializer`
			`permission_classes = (IsAuthenticated, )`


			`class TicketViewSet(viewsets.ModelViewSet):`
			`queryset = Ticket.objects.order_by('-time_create')`
			`lookup_field = 'number'`
			`serializer_class = TicketSerializer`
			`permission_classes = (IsAuthenticated, )`
Add: simple filters to modelviewsets 2023-08-11 15:12:51 +02:00			`filter_backends = [DjangoFilterBackend, filters.SearchFilter]`
			`filterset_class = TicketFilter`
			`search_fields = ['number']`

			`def perform_create(self, serializer):`
			`serializer.save(user=self.request.user)`