2019-01-23 07:00:30 -08:00
|
|
|
from flask import Blueprint, request
|
2019-01-16 21:20:10 -08:00
|
|
|
from flask import Blueprint, request
|
2018-10-30 09:35:47 -07:00
|
|
|
from flask_yoloapi import endpoint, parameter
|
2019-01-23 07:00:30 -08:00
|
|
|
from grant.comment.models import Comment, user_comments_schema
|
|
|
|
|
from grant.email.send import generate_email
|
2018-10-30 09:35:47 -07:00
|
|
|
from grant.extensions import db
|
2019-01-16 21:01:29 -08:00
|
|
|
from grant.proposal.models import (
|
|
|
|
|
Proposal,
|
|
|
|
|
ProposalContribution,
|
|
|
|
|
proposals_schema,
|
|
|
|
|
proposal_schema,
|
|
|
|
|
user_proposal_contributions_schema,
|
|
|
|
|
PENDING
|
|
|
|
|
)
|
2019-01-23 07:00:30 -08:00
|
|
|
from grant.user.models import User, users_schema, user_schema
|
|
|
|
|
from grant.utils.admin import admin_auth_required, admin_is_authed, admin_login, admin_logout
|
|
|
|
|
from sqlalchemy import func, or_
|
2018-10-30 09:35:47 -07:00
|
|
|
|
2019-01-23 07:00:30 -08:00
|
|
|
from .example_emails import example_email_args
|
2018-10-30 09:35:47 -07:00
|
|
|
|
|
|
|
|
blueprint = Blueprint('admin', __name__, url_prefix='/api/v1/admin')
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@blueprint.route("/checklogin", methods=["GET"])
|
|
|
|
|
@endpoint.api()
|
|
|
|
|
def loggedin():
|
2019-01-16 21:20:10 -08:00
|
|
|
return {"isLoggedIn": admin_is_authed()}
|
2018-10-30 09:35:47 -07:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@blueprint.route("/login", methods=["POST"])
|
|
|
|
|
@endpoint.api(
|
|
|
|
|
parameter('username', type=str, required=False),
|
|
|
|
|
parameter('password', type=str, required=False),
|
|
|
|
|
)
|
|
|
|
|
def login(username, password):
|
2019-01-16 21:20:10 -08:00
|
|
|
if admin_login(username, password):
|
2018-10-30 09:35:47 -07:00
|
|
|
return {"isLoggedIn": True}
|
|
|
|
|
else:
|
|
|
|
|
return {"message": "Username or password incorrect."}, 401
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@blueprint.route("/logout", methods=["GET"])
|
|
|
|
|
@endpoint.api()
|
|
|
|
|
def logout():
|
2019-01-16 21:20:10 -08:00
|
|
|
admin_logout()
|
2018-10-30 09:35:47 -07:00
|
|
|
return {"isLoggedIn": False}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@blueprint.route("/stats", methods=["GET"])
|
|
|
|
|
@endpoint.api()
|
2019-01-16 21:20:10 -08:00
|
|
|
@admin_auth_required
|
2018-10-30 09:35:47 -07:00
|
|
|
def stats():
|
|
|
|
|
user_count = db.session.query(func.count(User.id)).scalar()
|
|
|
|
|
proposal_count = db.session.query(func.count(Proposal.id)).scalar()
|
2019-01-09 10:23:08 -08:00
|
|
|
proposal_pending_count = db.session.query(func.count(Proposal.id)) \
|
|
|
|
|
.filter(Proposal.status == PENDING) \
|
|
|
|
|
.scalar()
|
2018-10-30 09:35:47 -07:00
|
|
|
return {
|
|
|
|
|
"userCount": user_count,
|
2019-01-09 10:23:08 -08:00
|
|
|
"proposalCount": proposal_count,
|
|
|
|
|
"proposalPendingCount": proposal_pending_count,
|
2018-10-30 09:35:47 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2019-01-16 21:01:29 -08:00
|
|
|
# USERS
|
|
|
|
|
|
|
|
|
|
|
2018-10-30 09:35:47 -07:00
|
|
|
@blueprint.route('/users/<id>', methods=['DELETE'])
|
|
|
|
|
@endpoint.api()
|
2019-01-16 21:20:10 -08:00
|
|
|
@admin_auth_required
|
2018-10-30 09:35:47 -07:00
|
|
|
def delete_user(id):
|
2018-11-01 18:35:14 -07:00
|
|
|
return {"message": "Not implemented."}, 400
|
2018-10-30 09:35:47 -07:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@blueprint.route("/users", methods=["GET"])
|
|
|
|
|
@endpoint.api()
|
2019-01-16 21:20:10 -08:00
|
|
|
@admin_auth_required
|
2018-10-30 09:35:47 -07:00
|
|
|
def get_users():
|
|
|
|
|
users = User.query.all()
|
|
|
|
|
result = users_schema.dump(users)
|
2019-01-16 21:01:29 -08:00
|
|
|
return result
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@blueprint.route('/users/<id>', methods=['GET'])
|
|
|
|
|
@endpoint.api()
|
2019-01-16 21:20:10 -08:00
|
|
|
@admin_auth_required
|
2019-01-16 21:01:29 -08:00
|
|
|
def get_user(id):
|
|
|
|
|
user_db = User.query.filter(User.id == id).first()
|
|
|
|
|
if user_db:
|
|
|
|
|
user = user_schema.dump(user_db)
|
2018-10-30 09:35:47 -07:00
|
|
|
user_proposals = Proposal.query.filter(Proposal.team.any(id=user['userid'])).all()
|
|
|
|
|
user['proposals'] = proposals_schema.dump(user_proposals)
|
2019-01-16 21:01:29 -08:00
|
|
|
user_comments = Comment.get_by_user(user_db)
|
|
|
|
|
user['comments'] = user_comments_schema.dump(user_comments)
|
|
|
|
|
contributions = ProposalContribution.get_by_userid(user_db.id)
|
|
|
|
|
contributions_dump = user_proposal_contributions_schema.dump(contributions)
|
|
|
|
|
user["contributions"] = contributions_dump
|
|
|
|
|
return user
|
|
|
|
|
return {"message": f"Could not find user with id {id}"}, 404
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# PROPOSALS
|
2018-10-30 09:35:47 -07:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@blueprint.route("/proposals", methods=["GET"])
|
|
|
|
|
@endpoint.api()
|
2019-01-16 21:20:10 -08:00
|
|
|
@admin_auth_required
|
2018-10-30 09:35:47 -07:00
|
|
|
def get_proposals():
|
2019-01-09 10:23:08 -08:00
|
|
|
# endpoint.api doesn't seem to handle GET query array input
|
|
|
|
|
status_filters = request.args.getlist('statusFilters[]')
|
|
|
|
|
or_filter = or_(Proposal.status == v for v in status_filters)
|
|
|
|
|
proposals = Proposal.query.filter(or_filter) \
|
|
|
|
|
.order_by(Proposal.date_created.desc()) \
|
|
|
|
|
.all()
|
|
|
|
|
# TODO: return partial data for list
|
2018-10-30 09:35:47 -07:00
|
|
|
dumped_proposals = proposals_schema.dump(proposals)
|
|
|
|
|
return dumped_proposals
|
|
|
|
|
|
|
|
|
|
|
2019-01-09 10:23:08 -08:00
|
|
|
@blueprint.route('/proposals/<id>', methods=['GET'])
|
|
|
|
|
@endpoint.api()
|
2019-01-16 21:20:10 -08:00
|
|
|
@admin_auth_required
|
2019-01-09 10:23:08 -08:00
|
|
|
def get_proposal(id):
|
|
|
|
|
proposal = Proposal.query.filter(Proposal.id == id).first()
|
|
|
|
|
if proposal:
|
|
|
|
|
return proposal_schema.dump(proposal)
|
|
|
|
|
return {"message": "Could not find proposal with id %s" % id}, 404
|
|
|
|
|
|
|
|
|
|
|
2018-10-30 09:35:47 -07:00
|
|
|
@blueprint.route('/proposals/<id>', methods=['DELETE'])
|
|
|
|
|
@endpoint.api()
|
2019-01-16 21:20:10 -08:00
|
|
|
@admin_auth_required
|
2018-10-30 09:35:47 -07:00
|
|
|
def delete_proposal(id):
|
2018-11-01 18:35:14 -07:00
|
|
|
return {"message": "Not implemented."}, 400
|
2019-01-09 10:23:08 -08:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@blueprint.route('/proposals/<id>/approve', methods=['PUT'])
|
|
|
|
|
@endpoint.api(
|
|
|
|
|
parameter('isApprove', type=bool, required=True),
|
|
|
|
|
parameter('rejectReason', type=str, required=False)
|
|
|
|
|
)
|
2019-01-16 21:20:10 -08:00
|
|
|
@admin_auth_required
|
2019-01-09 10:23:08 -08:00
|
|
|
def approve_proposal(id, is_approve, reject_reason=None):
|
|
|
|
|
proposal = Proposal.query.filter_by(id=id).first()
|
|
|
|
|
if proposal:
|
|
|
|
|
proposal.approve_pending(is_approve, reject_reason)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
return proposal_schema.dump(proposal)
|
|
|
|
|
|
|
|
|
|
return {"message": "Not implemented."}, 400
|
2019-01-09 11:08:25 -08:00
|
|
|
|
|
|
|
|
|
2019-01-16 21:01:29 -08:00
|
|
|
# EMAIL
|
|
|
|
|
|
|
|
|
|
|
2019-01-09 11:08:25 -08:00
|
|
|
@blueprint.route('/email/example/<type>', methods=['GET'])
|
|
|
|
|
@endpoint.api()
|
2019-01-16 21:20:10 -08:00
|
|
|
@admin_auth_required
|
2019-01-09 11:08:25 -08:00
|
|
|
def get_email_example(type):
|
2019-01-16 14:26:45 -08:00
|
|
|
email = generate_email(type, example_email_args.get(type))
|
|
|
|
|
if email['info'].get('subscription'):
|
|
|
|
|
# Unserializable, so remove
|
|
|
|
|
email['info'].pop('subscription', None)
|
|
|
|
|
return email
|
