open-law/app/views/book/settings.py

from flask import (
    render_template,
    flash,
    redirect,
    url_for,
    request,
)
from flask_login import login_required

from app.controllers import register_book_verify_route
from app.controllers.notification_producer import contributor_notification
from app import models as m, db, forms as f
from app.controllers.require_permission import require_permission
from app.controllers.contributor import (
    add_contributor_to_book,
    delete_contributor_from_book,
)
from app.controllers.error_flashes import create_error_flash
from app.logger import log
from .bp import bp


@bp.route("/<int:book_id>/settings", methods=["GET"])
@register_book_verify_route(bp.name)
@require_permission(
    entity_type=m.Permission.Entity.BOOK,
    access=[m.Permission.Access.U],
    entities=[m.Book],
)
@login_required
def settings(book_id: int):
    book: m.Book = db.session.get(m.Book, book_id)
    selected_tab = request.args.get("selected_tab", "book_settings")

    return render_template(
        "book/settings.html",
        book=book,
        selected_tab=selected_tab,
        roles=m.BookContributor.Roles,
    )


@bp.route("/<int:book_id>/add_contributor", methods=["POST"])
@register_book_verify_route(bp.name)
@require_permission(
    entity_type=m.Permission.Entity.BOOK,
    access=[m.Permission.Access.U],
    entities=[m.Book],
)
@login_required
def add_contributor(book_id: int):
    form = f.AddContributorForm()
    selected_tab = "user_permissions"
    if form.validate_on_submit():
        user_id = form.user_id.data
        # notifications
        contributor_notification(m.Notification.Actions.CONTRIBUTING, book_id, user_id)
        # -------------
        response = add_contributor_to_book(form, book_id, selected_tab)
        return response
    else:
        log(log.ERROR, "Book create errors: [%s]", form.errors)
        create_error_flash(form)
        return redirect(
            url_for("book.settings", selected_tab=selected_tab, book_id=book_id)
        )


@bp.route("/<int:book_id>/delete_contributor", methods=["POST"])
@register_book_verify_route(bp.name)
@require_permission(
    entity_type=m.Permission.Entity.BOOK,
    access=[m.Permission.Access.U],
    entities=[m.Book],
)
@login_required
def delete_contributor(book_id: int):
    form = f.DeleteContributorForm()
    selected_tab = "user_permissions"

    if form.validate_on_submit():
        user_id = form.user_id.data
        # notifications
        contributor_notification(m.Notification.Actions.DELETE, book_id, user_id)
        # -------------
        response = delete_contributor_from_book(form, book_id, selected_tab)
        return response
    else:
        log(log.ERROR, "Delete contributor errors: [%s]", form.errors)
        create_error_flash(form)
        return redirect(
            url_for("book.settings", selected_tab=selected_tab, book_id=book_id)
        )


@bp.route("/<int:book_id>/edit_contributor_role", methods=["POST"])
@register_book_verify_route(bp.name)
@require_permission(
    entity_type=m.Permission.Entity.BOOK,
    access=[m.Permission.Access.U],
    entities=[m.Book],
)
@login_required
def edit_contributor_role(book_id: int):
    form = f.EditContributorRoleForm()
    selected_tab = "user_permissions"

    if form.validate_on_submit():
        book_contributor: m.BookContributor = m.BookContributor.query.filter_by(
            user_id=int(form.user_id.data), book_id=book_id
        ).first()
        if not book_contributor:
            log(
                log.INFO,
                "BookContributor does not exists user: [%s], book: [%s]",
                form.user_id.data,
                book_id,
            )
            flash("Does not exists!", "success")
            return redirect(
                url_for("book.settings", selected_tab=selected_tab, book_id=book_id)
            )

        role = m.BookContributor.Roles(int(form.role.data))

        # change access group
        current_group = m.AccessGroup.query.filter_by(
            book_id=book_id, name=book_contributor.role.name.lower()
        ).first()
        user_access_group = m.UserAccessGroups.query.filter_by(
            user_id=book_contributor.user_id, access_group_id=current_group.id
        ).first()
        if user_access_group:
            db.session.delete(user_access_group)

        new_group = m.AccessGroup.query.filter_by(
            book_id=book_id, name=role.name.lower()
        ).first()
        m.UserAccessGroups(
            user_id=book_contributor.user_id, access_group_id=new_group.id
        ).save(False)

        book_contributor.role = role

        log(
            log.INFO,
            "Update contributor [%s] role: new role: [%s]",
            book_contributor,
            role,
        )
        book_contributor.save()

        flash("Success!", "success")
        return redirect(
            url_for("book.settings", selected_tab=selected_tab, book_id=book_id)
        )
    else:
        log(log.ERROR, "Edit contributor errors: [%s]", form.errors)
        create_error_flash(form)
        return redirect(
            url_for("book.settings", selected_tab=selected_tab, book_id=book_id)
        )
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`from flask import (`
			`render_template,`
			`flash,`
			`redirect,`
			`url_for,`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`request,`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`)`
			`from flask_login import login_required`

added not_producer, view for mark_as_read 2023-06-12 09:46:43 +00:00			`from app.controllers import register_book_verify_route`
			`from app.controllers.notification_producer import contributor_notification`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`from app import models as m, db, forms as f`
require_permission, start connecting permissions to routes 2023-05-29 13:14:00 +00:00			`from app.controllers.require_permission import require_permission`
finish flask admin customization 2023-06-09 13:36:09 +00:00			`from app.controllers.contributor import (`
			`add_contributor_to_book,`
			`delete_contributor_from_book,`
			`)`
move creating flash about errors to controller 2023-06-15 14:15:22 +00:00			`from app.controllers.error_flashes import create_error_flash`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`from app.logger import log`
			`from .bp import bp`


			`@bp.route("/<int:book_id>/settings", methods=["GET"])`
			`@register_book_verify_route(bp.name)`
require_permission, start connecting permissions to routes 2023-05-29 13:14:00 +00:00			`@require_permission(`
			`entity_type=m.Permission.Entity.BOOK,`
			`access=[m.Permission.Access.U],`
connected permissions checks and testing editor access 2023-05-31 11:18:11 +00:00			`entities=[m.Book],`
require_permission, start connecting permissions to routes 2023-05-29 13:14:00 +00:00			`)`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`@login_required`
			`def settings(book_id: int):`
			`book: m.Book = db.session.get(m.Book, book_id)`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`selected_tab = request.args.get("selected_tab", "book_settings")`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00
			`return render_template(`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`"book/settings.html",`
			`book=book,`
			`selected_tab=selected_tab,`
			`roles=m.BookContributor.Roles,`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`)`


			`@bp.route("/<int:book_id>/add_contributor", methods=["POST"])`
			`@register_book_verify_route(bp.name)`
require_permission, start connecting permissions to routes 2023-05-29 13:14:00 +00:00			`@require_permission(`
			`entity_type=m.Permission.Entity.BOOK,`
			`access=[m.Permission.Access.U],`
connected permissions checks and testing editor access 2023-05-31 11:18:11 +00:00			`entities=[m.Book],`
require_permission, start connecting permissions to routes 2023-05-29 13:14:00 +00:00			`)`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`@login_required`
			`def add_contributor(book_id: int):`
			`form = f.AddContributorForm()`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`selected_tab = "user_permissions"`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`if form.validate_on_submit():`
adding contributor to access group 2023-05-25 11:11:19 +00:00			`user_id = form.user_id.data`
start of notifications (table,triggers,connect to front) 2023-06-08 12:22:32 +00:00			`# notifications`
Merge branch 'develop' into kostia/feature/notifications 2023-06-12 09:53:14 +00:00			`contributor_notification(m.Notification.Actions.CONTRIBUTING, book_id, user_id)`
start of notifications (table,triggers,connect to front) 2023-06-08 12:22:32 +00:00			`# -------------`
finish flask admin customization 2023-06-09 13:36:09 +00:00			`response = add_contributor_to_book(form, book_id, selected_tab)`
			`return response`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`else:`
			`log(log.ERROR, "Book create errors: [%s]", form.errors)`
move creating flash about errors to controller 2023-06-15 14:15:22 +00:00			`create_error_flash(form)`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`return redirect(`
			`url_for("book.settings", selected_tab=selected_tab, book_id=book_id)`
			`)`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00

			`@bp.route("/<int:book_id>/delete_contributor", methods=["POST"])`
			`@register_book_verify_route(bp.name)`
require_permission, start connecting permissions to routes 2023-05-29 13:14:00 +00:00			`@require_permission(`
			`entity_type=m.Permission.Entity.BOOK,`
			`access=[m.Permission.Access.U],`
connected permissions checks and testing editor access 2023-05-31 11:18:11 +00:00			`entities=[m.Book],`
require_permission, start connecting permissions to routes 2023-05-29 13:14:00 +00:00			`)`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`@login_required`
			`def delete_contributor(book_id: int):`
			`form = f.DeleteContributorForm()`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`selected_tab = "user_permissions"`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00
			`if form.validate_on_submit():`
Merge branch 'develop' into kostia/feature/notifications 2023-06-12 09:53:14 +00:00			`user_id = form.user_id.data`
start of notifications (table,triggers,connect to front) 2023-06-08 12:22:32 +00:00			`# notifications`
Merge branch 'develop' into kostia/feature/notifications 2023-06-12 09:53:14 +00:00			`contributor_notification(m.Notification.Actions.DELETE, book_id, user_id)`
start of notifications (table,triggers,connect to front) 2023-06-08 12:22:32 +00:00			`# -------------`
finish flask admin customization 2023-06-09 13:36:09 +00:00			`response = delete_contributor_from_book(form, book_id, selected_tab)`
			`return response`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`else:`
done 2023-06-06 14:47:35 +00:00			`log(log.ERROR, "Delete contributor errors: [%s]", form.errors)`
move creating flash about errors to controller 2023-06-15 14:15:22 +00:00			`create_error_flash(form)`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`return redirect(`
			`url_for("book.settings", selected_tab=selected_tab, book_id=book_id)`
			`)`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00

			`@bp.route("/<int:book_id>/edit_contributor_role", methods=["POST"])`
			`@register_book_verify_route(bp.name)`
require_permission, start connecting permissions to routes 2023-05-29 13:14:00 +00:00			`@require_permission(`
			`entity_type=m.Permission.Entity.BOOK,`
			`access=[m.Permission.Access.U],`
connected permissions checks and testing editor access 2023-05-31 11:18:11 +00:00			`entities=[m.Book],`
require_permission, start connecting permissions to routes 2023-05-29 13:14:00 +00:00			`)`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`@login_required`
			`def edit_contributor_role(book_id: int):`
			`form = f.EditContributorRoleForm()`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`selected_tab = "user_permissions"`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00
			`if form.validate_on_submit():`
permissions checks on UI 2023-05-31 12:51:14 +00:00			`book_contributor: m.BookContributor = m.BookContributor.query.filter_by(`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`user_id=int(form.user_id.data), book_id=book_id`
			`).first()`
			`if not book_contributor:`
			`log(`
			`log.INFO,`
			`"BookContributor does not exists user: [%s], book: [%s]",`
			`form.user_id.data,`
			`book_id,`
			`)`
			`flash("Does not exists!", "success")`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`return redirect(`
			`url_for("book.settings", selected_tab=selected_tab, book_id=book_id)`
			`)`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00
			`role = m.BookContributor.Roles(int(form.role.data))`
permissions checks on UI 2023-05-31 12:51:14 +00:00
			`# change access group`
			`current_group = m.AccessGroup.query.filter_by(`
			`book_id=book_id, name=book_contributor.role.name.lower()`
			`).first()`
permissions Ui 2023-06-01 04:57:31 +00:00			`user_access_group = m.UserAccessGroups.query.filter_by(`
			`user_id=book_contributor.user_id, access_group_id=current_group.id`
			`).first()`
			`if user_access_group:`
			`db.session.delete(user_access_group)`
permissions checks on UI 2023-05-31 12:51:14 +00:00
			`new_group = m.AccessGroup.query.filter_by(`
			`book_id=book_id, name=role.name.lower()`
			`).first()`
			`m.UserAccessGroups(`
			`user_id=book_contributor.user_id, access_group_id=new_group.id`
			`).save(False)`

split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`book_contributor.role = role`

			`log(`
			`log.INFO,`
			`"Update contributor [%s] role: new role: [%s]",`
			`book_contributor,`
			`role,`
			`)`
			`book_contributor.save()`

			`flash("Success!", "success")`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`return redirect(`
			`url_for("book.settings", selected_tab=selected_tab, book_id=book_id)`
			`)`
split view/book.py to multiple files 2023-05-17 16:21:53 +00:00			`else:`
done 2023-06-06 14:47:35 +00:00			`log(log.ERROR, "Edit contributor errors: [%s]", form.errors)`
move creating flash about errors to controller 2023-06-15 14:15:22 +00:00			`create_error_flash(form)`
issue When a new contributor is added, stay in user permissions tab instead of jumping back to book settings #122 2023-06-07 12:49:21 +00:00			`return redirect(`
			`url_for("book.settings", selected_tab=selected_tab, book_id=book_id)`
			`)`