spiff-arena/src/spiffworkflow_backend/services/secret_service.py

"""Secret_service."""
from typing import Optional

from flask_bpmn.api.api_error import ApiError
from flask_bpmn.models.db import db

from spiffworkflow_backend.models.secret_model import SecretModel

# from cryptography.fernet import Fernet
#
#
# class EncryptionService:
#     key = Fernet.generate_key()  # this is your "password"
#     cipher_suite = Fernet(key)
#     encoded_text = cipher_suite.encrypt(b"Hello stackoverflow!")
#     decoded_text = cipher_suite.decrypt(encoded_text)


class SecretService:
    """SecretService."""

    def encrypt_key(self, plain_key: str) -> str:
        """Encrypt_key."""
        # flask_secret = current_app.secret_key
        # print("encrypt_key")
        ...

    def decrypt_key(self, encrypted_key: str) -> str:
        """Decrypt key."""
        ...

    @staticmethod
    def add_secret(
        key: str,
        value: str,
        creator_user_id: int,
    ) -> SecretModel:
        """Add_secret."""
        # encrypted_key = self.encrypt_key(key)
        secret_model = SecretModel(
            key=key, value=value, creator_user_id=creator_user_id
        )
        db.session.add(secret_model)
        try:
            db.session.commit()
        except Exception as e:
            raise ApiError(
                error_code="create_secret_error",
                message=f"There was an error creating a secret with key: {key} and value ending with: {value[:-4]}. "
                f"Original error is {e}",
            ) from e
        return secret_model

    @staticmethod
    def get_secret(key: str) -> SecretModel:
        """Get_secret."""
        secret = db.session.query(SecretModel).filter(SecretModel.key == key).first()
        if secret is not None:
            return secret
        else:
            raise ApiError(
                error_code="missing_secret_error",
                message=f"Unable to locate a secret with the name: {key}. ",
            )

    @staticmethod
    def update_secret(
        key: str,
        value: str,
        creator_user_id: int,
        create_if_not_exists: Optional[bool] = False,
    ) -> None:
        """Does this pass pre commit?"""
        secret_model = SecretModel.query.filter(SecretModel.key == key).first()
        if secret_model:
            if secret_model.creator_user_id == creator_user_id:
                secret_model.value = value
                db.session.add(secret_model)
                try:
                    db.session.commit()
                except Exception as e:
                    db.session.rollback()
                    raise e
            else:
                raise ApiError(
                    error_code="update_secret_error",
                    message=f"User: {creator_user_id} cannot update the secret with key : {key}",
                    status_code=401,
                )
        elif create_if_not_exists:
            SecretService.add_secret(
                key=key, value=value, creator_user_id=creator_user_id
            )
        else:
            raise ApiError(
                error_code="update_secret_error",
                message=f"Cannot update secret with key: {key}. Resource does not exist.",
                status_code=404,
            )

    @staticmethod
    def delete_secret(key: str, user_id: int) -> None:
        """Delete secret."""
        secret_model = SecretModel.query.filter(SecretModel.key == key).first()
        if secret_model:
            if secret_model.creator_user_id == user_id:
                db.session.delete(secret_model)
                try:
                    db.session.commit()
                except Exception as e:
                    raise ApiError(
                        error_code="delete_secret_error",
                        message=f"Could not delete secret with key: {key}. Original error is: {e}",
                    ) from e
            else:
                raise ApiError(
                    error_code="delete_secret_error",
                    message=f"User: {user_id} cannot delete the secret with key : {key}",
                    status_code=401,
                )
        else:
            raise ApiError(
                error_code="delete_secret_error",
                message=f"Cannot delete secret with key: {key}. Resource does not exist.",
                status_code=404,
            )
Squashed 'spiffworkflow-backend/' content from commit 50f28073 git-subtree-dir: spiffworkflow-backend git-subtree-split: 50f28073add91265f00826bd175c8b2fff76cdc5 2022-10-12 10:22:22 -04:00			`"""Secret_service."""`
			`from typing import Optional`

			`from flask_bpmn.api.api_error import ApiError`
			`from flask_bpmn.models.db import db`

			`from spiffworkflow_backend.models.secret_model import SecretModel`

			`# from cryptography.fernet import Fernet`
			`#`
			`#`
			`# class EncryptionService:`
			`# key = Fernet.generate_key() # this is your "password"`
			`# cipher_suite = Fernet(key)`
			`# encoded_text = cipher_suite.encrypt(b"Hello stackoverflow!")`
			`# decoded_text = cipher_suite.decrypt(encoded_text)`


			`class SecretService:`
			`"""SecretService."""`

			`def encrypt_key(self, plain_key: str) -> str:`
			`"""Encrypt_key."""`
			`# flask_secret = current_app.secret_key`
			`# print("encrypt_key")`
			`...`

			`def decrypt_key(self, encrypted_key: str) -> str:`
			`"""Decrypt key."""`
			`...`

			`@staticmethod`
			`def add_secret(`
			`key: str,`
			`value: str,`
			`creator_user_id: int,`
			`) -> SecretModel:`
			`"""Add_secret."""`
			`# encrypted_key = self.encrypt_key(key)`
			`secret_model = SecretModel(`
			`key=key, value=value, creator_user_id=creator_user_id`
			`)`
			`db.session.add(secret_model)`
			`try:`
			`db.session.commit()`
			`except Exception as e:`
			`raise ApiError(`
			`error_code="create_secret_error",`
			`message=f"There was an error creating a secret with key: {key} and value ending with: {value[:-4]}. "`
			`f"Original error is {e}",`
			`) from e`
			`return secret_model`

			`@staticmethod`
Squashed 'spiffworkflow-backend/' changes from 5225a8b4..1e831706 1e831706 Merge pull request #146 from sartography/test_arena_push df95dccf fixed conflicts and updated usage of active task status w/ burnettk 33b81894 Merge pull request #145 from sartography/feature/remove-task-data-from-active-task 7e1ce35c remove task_data column b9cd1c06 Merge pull request #144 from sartography/feature/lib-updates-and-mypy 5e09e28d fix mypy 68485ab4 use fork of sqlalchemy-stubs 872480db Merge remote-tracking branch 'origin/main' into feature/lib-updates-and-mypy 18a892f6 work in progress 84344d53 Pause/resume process instances (#2) 53652cff Merge commit '4a48d9cccd1ca8619b3dbef3c10bcce667c9d9e0' 9ea3def2 lint c05b5181 Merge remote-tracking branch 'origin/main' into feature/lib-updates-and-mypy b2a75f60 Merge commit 'c661100e03eef762cb51b02be1b309ec47be7002' 3ddaa5d0 lib updates and mypy 30d04282 Merge commit '4fdb0f3ec4b3b6a68cc2e56ed84ffb6dc2743068' a961b2a1 Merge commit '81746ee508f6ab0ffe757856d9a3d5d855db2560' 10651984 Merge commit '8f8b4717990eb86c6bfd2f309ef064152c51b452' 59b90fba Merge branch 'main' of github.com:sartography/spiff-arena 577e0fe3 Merge commit 'a166df83031cb88d223e5c75ae8db8c896622821' 11d40241 Merge commit '106e2ca7214aec4dba965ccb3f94b0658acaa2b2' 1fcc935e Merge commit '9781908243408ed221f2b0131a00b8a9612f81f3' e9734bff Merge commit '64e7049c9a0a4360101a155a41ce64ae692acd3c' 28239aa4 Merge commit 'aa22f4b397a899fa06d06c2e9127ca98d9eb909a' 8b184a5c Merge commit '4f0f5b1ece069ec56f8eb4154d61334a321749a1' bd1effc6 Merge commit 'b4975660431c275ce736e0431b98c39548200af1' eafa4f61 Merge commit 'c9bd62250452403550ae1bf1d27547d4796dd316' 50d9a0c3 Merge commit '9be0517531543655a35023af17b76dbb41eab93e' 34e98b77 Merge commit 'a1a01ad25a1ef60b879dede6f037f0fff3381ae4' c8d0cb8a Merge commit 'bee232a55a82054e629f48f0333495b61a7da7d1' 00478271 Merge commit '71e189afbc127b574cca8d02fc31b2e65aff0d52' 657fbad9 Merge commit 'f21d0ef3a98458deb347fb2a51fab0b5b41f7fe2' c91c279e Merge commit '93dbce681ec89bc45479748aaae06ddd92b64da4' b95a1af9 Merge commit '48918b00428e777ea29d351662467c0ac4e34a36' afea9254 pre-commit updates e3bc3b76 Merge main, resolve conflicts 2e317da8 Updaging the jinja processing so it doesn't leave a bunch of blank lines in the markdown that has strong feelings about white space. Updating the front end to render markdown formatted instructions. And adding a little css love to tables that are generated in Markdown. git-subtree-dir: spiffworkflow-backend git-subtree-split: 1e831706a1f7ed841e343537cfe1dc05d5eedaca 2022-10-21 10:36:41 -04:00			`def get_secret(key: str) -> SecretModel:`
Squashed 'spiffworkflow-backend/' content from commit 50f28073 git-subtree-dir: spiffworkflow-backend git-subtree-split: 50f28073add91265f00826bd175c8b2fff76cdc5 2022-10-12 10:22:22 -04:00			`"""Get_secret."""`
Squashed 'spiffworkflow-backend/' changes from 5225a8b4..1e831706 1e831706 Merge pull request #146 from sartography/test_arena_push df95dccf fixed conflicts and updated usage of active task status w/ burnettk 33b81894 Merge pull request #145 from sartography/feature/remove-task-data-from-active-task 7e1ce35c remove task_data column b9cd1c06 Merge pull request #144 from sartography/feature/lib-updates-and-mypy 5e09e28d fix mypy 68485ab4 use fork of sqlalchemy-stubs 872480db Merge remote-tracking branch 'origin/main' into feature/lib-updates-and-mypy 18a892f6 work in progress 84344d53 Pause/resume process instances (#2) 53652cff Merge commit '4a48d9cccd1ca8619b3dbef3c10bcce667c9d9e0' 9ea3def2 lint c05b5181 Merge remote-tracking branch 'origin/main' into feature/lib-updates-and-mypy b2a75f60 Merge commit 'c661100e03eef762cb51b02be1b309ec47be7002' 3ddaa5d0 lib updates and mypy 30d04282 Merge commit '4fdb0f3ec4b3b6a68cc2e56ed84ffb6dc2743068' a961b2a1 Merge commit '81746ee508f6ab0ffe757856d9a3d5d855db2560' 10651984 Merge commit '8f8b4717990eb86c6bfd2f309ef064152c51b452' 59b90fba Merge branch 'main' of github.com:sartography/spiff-arena 577e0fe3 Merge commit 'a166df83031cb88d223e5c75ae8db8c896622821' 11d40241 Merge commit '106e2ca7214aec4dba965ccb3f94b0658acaa2b2' 1fcc935e Merge commit '9781908243408ed221f2b0131a00b8a9612f81f3' e9734bff Merge commit '64e7049c9a0a4360101a155a41ce64ae692acd3c' 28239aa4 Merge commit 'aa22f4b397a899fa06d06c2e9127ca98d9eb909a' 8b184a5c Merge commit '4f0f5b1ece069ec56f8eb4154d61334a321749a1' bd1effc6 Merge commit 'b4975660431c275ce736e0431b98c39548200af1' eafa4f61 Merge commit 'c9bd62250452403550ae1bf1d27547d4796dd316' 50d9a0c3 Merge commit '9be0517531543655a35023af17b76dbb41eab93e' 34e98b77 Merge commit 'a1a01ad25a1ef60b879dede6f037f0fff3381ae4' c8d0cb8a Merge commit 'bee232a55a82054e629f48f0333495b61a7da7d1' 00478271 Merge commit '71e189afbc127b574cca8d02fc31b2e65aff0d52' 657fbad9 Merge commit 'f21d0ef3a98458deb347fb2a51fab0b5b41f7fe2' c91c279e Merge commit '93dbce681ec89bc45479748aaae06ddd92b64da4' b95a1af9 Merge commit '48918b00428e777ea29d351662467c0ac4e34a36' afea9254 pre-commit updates e3bc3b76 Merge main, resolve conflicts 2e317da8 Updaging the jinja processing so it doesn't leave a bunch of blank lines in the markdown that has strong feelings about white space. Updating the front end to render markdown formatted instructions. And adding a little css love to tables that are generated in Markdown. git-subtree-dir: spiffworkflow-backend git-subtree-split: 1e831706a1f7ed841e343537cfe1dc05d5eedaca 2022-10-21 10:36:41 -04:00			`secret = db.session.query(SecretModel).filter(SecretModel.key == key).first()`
Squashed 'spiffworkflow-backend/' content from commit 50f28073 git-subtree-dir: spiffworkflow-backend git-subtree-split: 50f28073add91265f00826bd175c8b2fff76cdc5 2022-10-12 10:22:22 -04:00			`if secret is not None:`
			`return secret`
			`else:`
			`raise ApiError(`
			`error_code="missing_secret_error",`
			`message=f"Unable to locate a secret with the name: {key}. ",`
			`)`

			`@staticmethod`
			`def update_secret(`
			`key: str,`
			`value: str,`
Squashed 'spiffworkflow-backend/' changes from 57ba8e0c8..72049c004 72049c004 added authentication callback endpoint. w/ burnettk, cullerton, jbirddog 1902b785d updated flask-bpmn w/ burnettk cullerton git-subtree-dir: spiffworkflow-backend git-subtree-split: 72049c00413ab9aa7d4c65b77247583654c06488 2022-10-19 15:17:17 -04:00			`creator_user_id: int,`
			`create_if_not_exists: Optional[bool] = False,`
Squashed 'spiffworkflow-backend/' content from commit 50f28073 git-subtree-dir: spiffworkflow-backend git-subtree-split: 50f28073add91265f00826bd175c8b2fff76cdc5 2022-10-12 10:22:22 -04:00			`) -> None:`
			`"""Does this pass pre commit?"""`
			`secret_model = SecretModel.query.filter(SecretModel.key == key).first()`
			`if secret_model:`
			`if secret_model.creator_user_id == creator_user_id:`
			`secret_model.value = value`
			`db.session.add(secret_model)`
			`try:`
			`db.session.commit()`
			`except Exception as e:`
Squashed 'spiffworkflow-backend/' changes from 57ba8e0c8..72049c004 72049c004 added authentication callback endpoint. w/ burnettk, cullerton, jbirddog 1902b785d updated flask-bpmn w/ burnettk cullerton git-subtree-dir: spiffworkflow-backend git-subtree-split: 72049c00413ab9aa7d4c65b77247583654c06488 2022-10-19 15:17:17 -04:00			`db.session.rollback()`
			`raise e`
Squashed 'spiffworkflow-backend/' content from commit 50f28073 git-subtree-dir: spiffworkflow-backend git-subtree-split: 50f28073add91265f00826bd175c8b2fff76cdc5 2022-10-12 10:22:22 -04:00			`else:`
			`raise ApiError(`
			`error_code="update_secret_error",`
			`message=f"User: {creator_user_id} cannot update the secret with key : {key}",`
			`status_code=401,`
			`)`
Squashed 'spiffworkflow-backend/' changes from 57ba8e0c8..72049c004 72049c004 added authentication callback endpoint. w/ burnettk, cullerton, jbirddog 1902b785d updated flask-bpmn w/ burnettk cullerton git-subtree-dir: spiffworkflow-backend git-subtree-split: 72049c00413ab9aa7d4c65b77247583654c06488 2022-10-19 15:17:17 -04:00			`elif create_if_not_exists:`
			`SecretService.add_secret(`
			`key=key, value=value, creator_user_id=creator_user_id`
			`)`
Squashed 'spiffworkflow-backend/' content from commit 50f28073 git-subtree-dir: spiffworkflow-backend git-subtree-split: 50f28073add91265f00826bd175c8b2fff76cdc5 2022-10-12 10:22:22 -04:00			`else:`
			`raise ApiError(`
			`error_code="update_secret_error",`
			`message=f"Cannot update secret with key: {key}. Resource does not exist.",`
			`status_code=404,`
			`)`

			`@staticmethod`
			`def delete_secret(key: str, user_id: int) -> None:`
			`"""Delete secret."""`
			`secret_model = SecretModel.query.filter(SecretModel.key == key).first()`
			`if secret_model:`
			`if secret_model.creator_user_id == user_id:`
			`db.session.delete(secret_model)`
			`try:`
			`db.session.commit()`
			`except Exception as e:`
			`raise ApiError(`
			`error_code="delete_secret_error",`
			`message=f"Could not delete secret with key: {key}. Original error is: {e}",`
			`) from e`
			`else:`
			`raise ApiError(`
			`error_code="delete_secret_error",`
			`message=f"User: {user_id} cannot delete the secret with key : {key}",`
			`status_code=401,`
			`)`
			`else:`
			`raise ApiError(`
			`error_code="delete_secret_error",`
			`message=f"Cannot delete secret with key: {key}. Resource does not exist.",`
			`status_code=404,`
			`)`