Oksanen, Ilkka (Nokia - FI/Espoo)
227 lines
7.2 KiB
Python
227 lines
7.2 KiB
Python
"""Webapp views."""
|
|
|
|
import jwt
|
|
# import logging
|
|
# import requests
|
|
from dealer.git import git
|
|
from django.conf import settings
|
|
from django.contrib.auth import authenticate, login, logout
|
|
from django.http import HttpResponse
|
|
# from django.db.models import Count
|
|
from django.shortcuts import redirect, render
|
|
from django.views.decorators.http import require_http_methods
|
|
from django_filters import rest_framework as filters
|
|
# from django.views.decorators.csrf import ensure_csrf_cookie
|
|
# from django.http import HttpResponse, HttpResponseRedirect
|
|
# from django.contrib.auth.decorators import permission_required, login_required
|
|
# from django.conf import settings
|
|
# from django.utils import timezone
|
|
from rest_framework import permissions, routers, viewsets
|
|
from rest_framework.filters import OrderingFilter, SearchFilter
|
|
from rest_framework.permissions import IsAuthenticatedOrReadOnly
|
|
from rest_framework.response import Response
|
|
from rest_framework.reverse import reverse
|
|
|
|
from members.views.utils import *
|
|
from webapp.models import (Committee, Event, Feed, Official, Signup,
|
|
SignupForm, Tag, TemplateQuestion)
|
|
from webapp.serializers import *
|
|
|
|
|
|
class IsPostOrIsAuthenticated(permissions.BasePermission):
|
|
|
|
def has_permission(self, request, view):
|
|
if request.method == 'POST':
|
|
return True
|
|
return request.user and request.user.is_authenticated
|
|
|
|
|
|
# -- REST API -- #
|
|
class RootView(routers.APIRootView):
|
|
permission_classes = [IsAuthenticatedOrReadOnly]
|
|
|
|
|
|
class EventViewSet(viewsets.ModelViewSet):
|
|
queryset = Event.objects.all()
|
|
serializer_class = EventSerializer
|
|
permission_classes = [IsAuthenticatedOrReadOnly]
|
|
filter_backends = (filters.DjangoFilterBackend, SearchFilter, OrderingFilter)
|
|
filter_fields = '__all__'
|
|
search_fields = '__all__'
|
|
|
|
def get_queryset(self):
|
|
since = self.request.query_params.get('since', None)
|
|
if since:
|
|
return Event.objects.filter(visible=True, end_time__gt=since).order_by('start_time')
|
|
|
|
return Event.objects.filter(visible=True).order_by('start_time')
|
|
|
|
|
|
class SignupFormViewSet(viewsets.ModelViewSet):
|
|
queryset = SignupForm.objects.all()
|
|
serializer_class = SignupFormSerializer
|
|
permission_classes = [IsAuthenticatedOrReadOnly]
|
|
filter_backends = (filters.DjangoFilterBackend, SearchFilter, OrderingFilter)
|
|
filter_fields = '__all__'
|
|
search_fields = '__all__'
|
|
|
|
def get_queryset(self):
|
|
return SignupForm.objects.filter(visible=True, end_time__gt=timezone.now()).order_by('start_time')
|
|
|
|
|
|
class SignupViewSet(viewsets.ModelViewSet):
|
|
queryset = Signup.objects.all()
|
|
serializer_class = SignupSerializer
|
|
permission_classes = [IsPostOrIsAuthenticated]
|
|
# filter_backends = (filters.DjangoFilterBackend, SearchFilter, OrderingFilter)
|
|
# filter_fields = '__all__'
|
|
# search_fields = '__all__'
|
|
|
|
# def get_queryset(self):
|
|
# return Signup.objects.filter(visible=True, end_time__gt=timezone.now()).order_by('start_time')
|
|
|
|
|
|
class SavedQuestionsViewSet(viewsets.ModelViewSet):
|
|
queryset = TemplateQuestion.objects.all()
|
|
serializer_class = SavedQuestionsSerializer
|
|
permission_classes = [IsAuthenticatedOrReadOnly]
|
|
|
|
|
|
class FeedViewSet(viewsets.ModelViewSet):
|
|
queryset = Feed.objects.all()
|
|
serializer_class = FeedSerializer
|
|
permission_classes = [IsAuthenticatedOrReadOnly]
|
|
filter_backends = (filters.DjangoFilterBackend, SearchFilter, OrderingFilter)
|
|
filter_fields = '__all__'
|
|
search_fields = '__all__'
|
|
|
|
def get_queryset(self):
|
|
objs = Feed.objects.filter(visible=True).order_by('publish_time')
|
|
|
|
result_ids = []
|
|
for obj in objs:
|
|
if obj.autohide_enabled:
|
|
if obj.autohide > timezone.now():
|
|
result_ids.append(obj.id)
|
|
else:
|
|
result_ids.append(obj.id)
|
|
|
|
return Feed.objects.filter(id__in=result_ids)
|
|
|
|
|
|
class ContactsViewSet(viewsets.ReadOnlyModelViewSet):
|
|
queryset = Occupation.objects.all()
|
|
serializer_class = OccupationSerializer
|
|
permission_classes = [IsAuthenticatedOrReadOnly]
|
|
|
|
def get_queryset(self):
|
|
year = self.request.query_params.get('year')
|
|
if not year:
|
|
return Occupation.by_year(timezone.now().year)
|
|
return Occupation.by_year(int(year))
|
|
|
|
|
|
class CommitteeViewSet(viewsets.ReadOnlyModelViewSet):
|
|
queryset = Committee.objects.all()
|
|
serializer_class = CommitteeSerializer
|
|
permission_classes = [IsAuthenticatedOrReadOnly]
|
|
|
|
|
|
class TagsViewSet(viewsets.ReadOnlyModelViewSet):
|
|
queryset = Tag.objects.all()
|
|
serializer_class = TagSerializer
|
|
permission_classes = [IsAuthenticatedOrReadOnly]
|
|
|
|
|
|
# -- OLD CODEBASE -- #
|
|
|
|
@require_http_methods(["GET"])
|
|
def main_index(request, *args, **kwargs):
|
|
"""Render main page."""
|
|
return render(request, "index.html", {})
|
|
|
|
|
|
@require_http_methods(["GET"])
|
|
def about_view(request, *args, **kwargs):
|
|
"""Render about page."""
|
|
latest_commit = "Not found"
|
|
latest_date = "Not found"
|
|
latest_tag = "Not found"
|
|
try:
|
|
repo = git.init_repo()
|
|
latest_commit = repo.git("rev-parse HEAD").decode('utf-8')
|
|
latest_date = repo.git("show -s --format=%ci " + latest_commit).decode('utf-8')
|
|
latest_tag = repo.git("describe --tags " + repo.git("rev-list --tags --max-count=1").decode('utf-8')).decode('utf-8')
|
|
except Exception:
|
|
pass
|
|
|
|
context = {
|
|
'commit': latest_commit,
|
|
'date': latest_date,
|
|
'tag': latest_tag
|
|
}
|
|
return render(request, "about.html", context)
|
|
|
|
|
|
@require_http_methods(["GET"])
|
|
def guild_view(request, *args, **kwargs):
|
|
"""Render "Guild" page."""
|
|
return render(request, "guild.html", {})
|
|
|
|
|
|
@require_http_methods(["GET"])
|
|
def freshmen_view(request, *args, **kwargs):
|
|
"""Render "Freshmen" page."""
|
|
return render(request, "freshmen.html", {})
|
|
|
|
|
|
@require_http_methods(["GET"])
|
|
def jobs_view(request, *args, **kwargs):
|
|
"""Render "Jobs" page."""
|
|
return render(request, "jobs.html", {})
|
|
|
|
|
|
@require_http_methods(["GET"])
|
|
def event_calendar_view(request, *args, **kwargs):
|
|
"""Render "Event calendar" page."""
|
|
return render(request, "event_calendar.html", {})
|
|
|
|
|
|
@require_http_methods(["GET"])
|
|
def international_view(request, *args, **kwargs):
|
|
"""Render "International" page."""
|
|
return render(request, "international.html", {})
|
|
|
|
|
|
@require_http_methods(["GET"])
|
|
def sosso_view(request, *args, **kwargs):
|
|
"""Render "Sössö" page."""
|
|
return render(request, "sosso.html", {})
|
|
|
|
|
|
@require_http_methods(["GET"])
|
|
def contact_view(request, *args, **kwargs):
|
|
"""Render "Contact" page."""
|
|
committees = Committee.objects.order_by('name')
|
|
|
|
context = {
|
|
"committees": committees
|
|
}
|
|
|
|
return render(request, "contact.html", context)
|
|
|
|
|
|
@require_http_methods(["GET"])
|
|
def nginx_jwt_resp(request, *args, **kwargs):
|
|
cookie = request.COOKIES.get("jwt", None)
|
|
if not cookie:
|
|
return HttpResponse("", status=401)
|
|
try:
|
|
token = jwt.decode(cookie, settings.SECRET_KEY)
|
|
except jwt.exceptions.InvalidSignatureError:
|
|
return HttpResponse("", status=403)
|
|
user = 'admin' if token.get('username', '') == 'admin' else 'moderator'
|
|
resp = HttpResponse("", status=200)
|
|
resp['X-FBrowser-User'] = user
|
|
return resp
|