'i5ddlmZddlmZddlmZddlmZddlm Z ddl m Z m Z ddl mZddlmZdd lmZd d lmZmZmZd d l mZmZmZd d lmZddlmZd dlmZddl mZddl m!Z!ddl"Z"eZ#e"jHe"jJde"jLe'Z(GddeZ)GddeZ*GddeZ+GddeZ,GddeZ-y)) ListAPIView) IsAdminUser) ModelViewSet)APIView)Response)status serializers)action)get_user_model)IntegrityError)Role PermissionUserCompanyRole)RoleSerializerPermissionSerializerUserSerializerCompanyPermission)Company)SuperAdminOnly)filters)OurLimitOffsetPaginationNz"%(levelname)s %(name)s %(message)s)levelformatcTeZdZdZej j ZeZ e gZ dgZ y)PermissionViewSetz%Manage permissions (super admin only)nameN) __name__ __module__ __qualname____doc__robjectsallquerysetrserializer_classrpermission_classesordering?/var/www/html/dp2/backend_v2.1/server/apps/permissions/views.pyrrs//!!%%'H+()xHr*rc&eZdZdZeZegZdZdZ y)CompanyRolesViewz!List roles for a specific companyc|jjd}tjj |j }t d|xs t d|gS),Return different permissions based on action company_idid view_roles create_users)kwargsgetrr#filterfirstr)selfr0companys r+get_permissionsz CompanyRolesView.get_permissions&sR[[__\2 //((J(7==?!,8fmany)userr6rr# DoesNotExistrrHTTP_404_NOT_FOUND is_superuseractive_companyHTTP_400_BAD_REQUESTrr7get_serializerdata) r9requestargsr5rDr0r:roles serializers r+listzCompanyRolesView.list-s||ZZ -  oo))Z4)HG  &&34!66 ##Gt#D((T(:  ((1## /000  s!B>>0C10C1N) rr r!r"rr&rr'r;rPr)r*r+r-r-!s+%+,h )r*r-cxeZdZdZeZegZejgZ gdZ dgZ dZ dZdZeddg d d Zy ) RoleViewSetz"Manage roles and their permissions)r description company__name -created_atc|jdk(r tdgS|jdvr tdgS|jdk(r tdgS|jdk(r tdgStd gS) r/create create_roles)updatepartial_update edit_rolesdestroy delete_rolesassign_to_user assign_rolesr3)r rr9s r+r;zRoleViewSet.get_permissions\sz ;;( "%n56 6 [[8 8%l34 4 [[I %%n56 6 [[, ,%n56 6%l34 4r*c|jj}|jrh|jjj d}|r!t j j|dSt j jdS|jr+t j j|jdSt j jS)z&Filter roles based on user permissionsr0T)r0r>r>rA) rLrDrG query_paramsr6rr#r7rHnone)r9rDr0s r+ get_querysetzRoleViewSet.get_querysetis||     2266|DJ||**jD*QQ||**T*::   <<&&t/B/Bd&S S||  ""r*c2 |jjjd}|r tjj|d}|jj j s<|jj j|stjddi|j|y|j|jj jy#tj$rtjdd|diwxYw#t$rp}dt|jvrOd t|jvr4tjd d |j jd d id}~wwxYw) Nr:Tr=z6You can only create roles for companies you belong to.)r:Company with ID  not found or inactive.uniquerzRole with name z) already exists in the specified company.)rLrKr6rr#rDrGbelongs_to_companyr ValidationErrorsaverErHr strlowervalidated_data)r9rOr0r:es r+perform_createzRoleViewSet.perform_createysl **..y9J %oo11Z41PG<<,,99$,,BSBSBfBfgnBo)99%)_;OOGO4  (9(9(H(HI ++%55!%5j\AX#Y7  3q6<<>)fA .F!11oj.G.G.K.KF.S-TT}~3   s0'DBC+:0D+/DD F&A+FFTpost)r?methodsNc  |} tjj|d}|jj dk(r+t dd|j ditjS |jjd }|st dd itjS tjj| }|jjrM|jjd}|r# tjj|d}nV|j }nI|jj"st dditjS|jj"}|j |k7r8t dd|j d|j ditjS|j%|sXt d|j&j(d|j&j*d|j ditjSt,jj/||j1} t2j5dt,jj/||j"dj7} t2j5d| d|j"| s||_|j9| r| j:|k(ret d|j&j(d|j&j*d|j d|j ditjS|| _| j9t d|j&j(d|j&j*d|j d|j d |j<|j<|j<ddtj>St,jjA||| } t d|j d!|j&j(d|j&j*d|j d |j<|j<|j<dd"tjBS#tj$r$t dd|d itjcYSwxYw#tj$r$t dd |ditjcYSwxYw#tj$r$t dd|d itjcYSwxYw#tD$r3} t dd#tG| itjHcYd$} ~ Sd$} ~ wwxYw)%zAssign this role to a userTr=rr?zRole zJ has no permissions. Please assign some permissions or choose another one.r@z Role with ID rhuser_idzuser_id is required.r1z User with ID z not found.r0rgz0You must have an active company to assign roles.z does not belong to company . )rDr:z&=============Permissions==============F)rDr: role__isnullz has_role: z in company: z already has role z in company z Role for z updated to )r?rurole_idr0replaced)rDr:rolez assigned to )r?ruryr0createdzAn error occurred: N)%rr#r6 permissionscountrrrrIrErFrKUserrDrGrr:rHrjprofile first_name last_namerr7r8loggerinfoexistsrlr{r2 HTTP_200_OKrWHTTP_201_CREATED ExceptionrmHTTP_500_INTERNAL_SERVER_ERROR) r9rLpkryr{rurDr0target_companyexisting_user_rolehas_role user_rolerps r+r^zRoleViewSet.assign_to_users} G ||''7d'C$$**,1#$dii[9C'DE%::2ll&&y1G56!66  ||''7'3||(($\\--l; )0)<)< VZ)<)[&*\\N||22#!#UV%::")!: T\\%<%<$=Qt||?U?U>VVrtBtGtGsHHI#JK!66"1!8!8!?!?&"@"eg  KK@ A&..554I\I\CH6JJP&(  KK*XJmD!TAU AU=A(U&D2UBU8B)U"4SUSU4TUTU4U  U U  U V (VV V )N)rr r!r"rr&rr'r SearchFilterfilter_backends search_fieldsr(r;rerqr r^r)r*r+rRrRPs`,%+,++,OM H 5# 2 4&*+r*rRcpeZdZdZegZeZeZ e je jgZ gdZgdZdgZdZdZy)RoleUserListViewzList users with a specific role)emailprofile__first_nameprofile__last_name)rrr created_atrUctdgSz1Return permissions with specific permission checkr3rr`s r+r;z RoleUserListView.get_permissions!,/00r*c|jjd}|jj} tj j|}|jsC|jr|j|jk7rtj jStj j||jdjdd}tj j|jdS#tj $r!tj jcYSwxYw) z Get users for the specified roleryr1T)r{r:r>ru)flat)id__inr)r5r6rLrDrr#rErrdrGrHr:rr7 values_listselect_related)r9ryrDr{ user_role_idss r+rezRoleUserListView.get_queryset#s++//),||   '<<##w#/D  &&$,,$:M:M*M||((**'//66LL7  +id+ +  ||"" # . # $   '<<$$& & 's D1EEN)rr r!r"rr'rr&rpagination_classrrOrderingFilterrrordering_fieldsr(r;rer)r*r+rrsK)+,%/++W-C-CDOJMZOH1$r*rc"eZdZdZegZdZdZy)PermissionListViewzList all available permissionsctdgSrrr`s r+r;z"PermissionListView.get_permissions@rr*ctjjd}|jjr t t |djS|jjrctjjd|jjj}t t |djSt gS)NTrbrB)r>roles__company) rr#r7rDrGrrrKrHdistinct)r9rLr}company_permissionss r+r6zPermissionListView.getDs!((//$/?  << $ $04HMMN N << & &","4"4";";&||::#<#hj 01D4PUUV V|r*N)rr r!r"rr'r;r6r)r*r+rr<s(+,1r*r).rest_framework.genericsrrest_framework.permissionsrrest_framework.viewsetsrrest_framework.viewsrrest_framework.responserrest_frameworkrr rest_framework.decoratorsr django.contrib.authr django.dbr modelsrrrrrrr}rapps.companies.modelsrrrutils.paginationsrloggingr basicConfigINFO getLoggerrrrr-rRrrr)r*r+rs/20(,.,.$55MM*)'"6',,/ST   8 $ ,){,)^B,BJ$${$$Nr*