2020-07-07 20:49:31 +08:00
|
|
|
# The core application of the Mia project.
|
|
|
|
# by imacat <imacat@mail.imacat.idv.tw>, 2020/7/4
|
|
|
|
|
|
|
|
# Copyright (c) 2020 imacat.
|
|
|
|
#
|
|
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
# you may not use this file except in compliance with the License.
|
|
|
|
# You may obtain a copy of the License at
|
|
|
|
#
|
|
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
#
|
|
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
# See the License for the specific language governing permissions and
|
|
|
|
# limitations under the License.
|
|
|
|
|
2020-07-08 07:24:36 +08:00
|
|
|
"""The views of the Mia core application.
|
2020-07-07 20:49:31 +08:00
|
|
|
|
|
|
|
"""
|
2020-08-13 15:43:04 +08:00
|
|
|
from typing import Dict, Type, Optional, Union
|
|
|
|
|
|
|
|
from dirtyfields import DirtyFieldsMixin
|
|
|
|
from django import forms
|
2020-08-09 14:07:47 +08:00
|
|
|
from django.contrib import messages
|
2020-07-06 23:06:45 +08:00
|
|
|
from django.contrib.auth import logout as logout_user
|
2020-08-09 14:07:47 +08:00
|
|
|
from django.contrib.messages.views import SuccessMessageMixin
|
2020-08-13 15:43:04 +08:00
|
|
|
from django.db.models import Model
|
2020-08-13 08:05:35 +08:00
|
|
|
from django.http import HttpResponse, JsonResponse, HttpRequest, \
|
2020-08-13 15:43:04 +08:00
|
|
|
HttpResponseRedirect, Http404
|
2020-08-09 22:08:15 +08:00
|
|
|
from django.shortcuts import redirect, render
|
2020-08-09 22:41:22 +08:00
|
|
|
from django.urls import reverse
|
2020-08-09 22:11:02 +08:00
|
|
|
from django.utils.decorators import method_decorator
|
2020-08-09 22:41:22 +08:00
|
|
|
from django.utils.translation import gettext_noop
|
2020-08-09 22:08:15 +08:00
|
|
|
from django.views.decorators.http import require_POST, require_GET
|
2020-08-09 20:47:53 +08:00
|
|
|
from django.views.generic import DeleteView as CoreDeleteView, ListView, \
|
|
|
|
DetailView
|
2020-08-13 15:43:04 +08:00
|
|
|
from django.views.generic.base import View
|
2020-08-09 20:22:37 +08:00
|
|
|
|
2020-08-13 15:43:04 +08:00
|
|
|
from . import stored_post, utils
|
2020-08-09 22:08:15 +08:00
|
|
|
from .digest_auth import login_required
|
|
|
|
from .forms import UserForm
|
|
|
|
from .models import User
|
2020-08-13 15:43:04 +08:00
|
|
|
from .utils import strip_post, UrlBuilder
|
|
|
|
|
|
|
|
|
|
|
|
class FormView(View):
|
|
|
|
"""The base form view."""
|
|
|
|
model: Type[Model] = None
|
|
|
|
form: Type[forms.Form] = None
|
|
|
|
template_name: str = None
|
|
|
|
context_object_name: str = "form"
|
|
|
|
error_url: str = None
|
|
|
|
success_url: str = None
|
|
|
|
not_modified_message: str = None
|
|
|
|
success_message: str = None
|
|
|
|
|
|
|
|
def __init__(self, **kwargs):
|
|
|
|
super().__init__(**kwargs)
|
|
|
|
self._object = None
|
|
|
|
self._is_object_requested = False
|
|
|
|
|
2020-08-13 17:54:12 +08:00
|
|
|
def dispatch(self, request: HttpRequest, *args, **kwargs) -> HttpResponse:
|
|
|
|
"""The view to store an accounting transaction."""
|
2020-08-13 15:43:04 +08:00
|
|
|
if self.request.method != "POST":
|
2020-08-13 17:53:15 +08:00
|
|
|
return self.do_get()
|
|
|
|
else:
|
|
|
|
return self.do_post()
|
|
|
|
|
|
|
|
def do_get(self) -> HttpResponse:
|
|
|
|
"""Handles the GET requests."""
|
|
|
|
obj = self.get_current_object()
|
|
|
|
previous_post = stored_post.get_previous_post(self.request)
|
|
|
|
if previous_post is not None:
|
|
|
|
form = self.make_form_from_post(previous_post)
|
|
|
|
elif obj is not None:
|
|
|
|
form = self.make_form_from_model(obj)
|
|
|
|
else:
|
|
|
|
form = self._form()
|
|
|
|
return render(self.request, self.get_template_name(), {
|
|
|
|
self.context_object_name: form
|
|
|
|
})
|
|
|
|
|
|
|
|
def do_post(self) -> HttpResponseRedirect:
|
|
|
|
"""Handles the POST requests."""
|
|
|
|
obj = self.get_current_object()
|
|
|
|
post = self.request.POST.dict()
|
|
|
|
utils.strip_post(post)
|
|
|
|
form = self.make_form_from_post(post)
|
|
|
|
if not form.is_valid():
|
|
|
|
url = str(utils.UrlBuilder(self.get_error_url())
|
|
|
|
.query(r=self.request.GET.get("r")))
|
|
|
|
return stored_post.error_redirect(self.request, url, post)
|
|
|
|
if obj is None:
|
|
|
|
obj = self._model()
|
|
|
|
self._set_current_object(obj)
|
|
|
|
self.fill_model_from_form(obj, form)
|
|
|
|
if isinstance(obj, DirtyFieldsMixin)\
|
|
|
|
and not obj.is_dirty(check_relationship=True):
|
|
|
|
message = self.get_not_modified_message()
|
2020-08-13 15:43:04 +08:00
|
|
|
else:
|
2020-08-13 17:53:15 +08:00
|
|
|
obj.save()
|
|
|
|
message = self.get_success_message()
|
|
|
|
messages.success(self.request, message)
|
|
|
|
return redirect(str(UrlBuilder(self.get_success_url())
|
|
|
|
.query(r=self.request.GET.get("r"))))
|
2020-08-13 15:43:04 +08:00
|
|
|
|
|
|
|
@property
|
|
|
|
def _form(self):
|
|
|
|
if self.form is None:
|
2020-08-13 19:33:17 +08:00
|
|
|
raise AttributeError("Please defined the form property.")
|
2020-08-13 15:43:04 +08:00
|
|
|
return self.form
|
|
|
|
|
|
|
|
@property
|
|
|
|
def _model(self):
|
|
|
|
if self.model is None:
|
2020-08-13 19:33:17 +08:00
|
|
|
raise AttributeError("Please defined the model property.")
|
2020-08-13 15:43:04 +08:00
|
|
|
return self.model
|
|
|
|
|
|
|
|
def _set_current_object(self, obj: Model) -> None:
|
|
|
|
"""Sets the current object that we are operating."""
|
|
|
|
self._object = obj
|
|
|
|
self._is_object_requested = True
|
|
|
|
|
|
|
|
def _get_current_object(self) -> Optional[Model]:
|
|
|
|
"""Returns the current object that we are operating and cached."""
|
|
|
|
if not self._is_object_requested:
|
|
|
|
self._object = self.get_current_object()
|
|
|
|
self._is_object_requested = True
|
|
|
|
return self._object
|
|
|
|
|
|
|
|
def get_template_name(self) -> str:
|
|
|
|
"""Returns the name of the template."""
|
|
|
|
if self.template_name is not None:
|
|
|
|
return self.template_name
|
|
|
|
if self.model is not None:
|
|
|
|
app_name = self.request.resolver_match.app_name
|
|
|
|
model_name = self.model.__name__.lower()
|
|
|
|
return F"{app_name}/{model_name}_form.html"
|
|
|
|
raise AttributeError(
|
2020-08-13 19:33:17 +08:00
|
|
|
"Please either define the template_name or the model property.")
|
2020-08-13 15:43:04 +08:00
|
|
|
|
|
|
|
def make_form_from_post(self, post: Dict[str, str]) -> forms.Form:
|
|
|
|
"""Creates and returns the form from the POST data."""
|
|
|
|
return self._form(post)
|
|
|
|
|
|
|
|
def make_form_from_model(self, obj: Model) -> forms.Form:
|
|
|
|
"""Creates and returns the form from a data model."""
|
|
|
|
return self._form(obj)
|
|
|
|
|
|
|
|
def fill_model_from_form(self, obj: Model, form: forms.Form) -> None:
|
|
|
|
"""Fills in the data model from the form."""
|
|
|
|
for name in form.data.keys():
|
|
|
|
setattr(obj, name, form.data[name])
|
|
|
|
|
|
|
|
def get_error_url(self) -> str:
|
|
|
|
"""Returns the URL on error."""
|
|
|
|
if self.error_url is not None:
|
|
|
|
return self.error_url
|
|
|
|
raise AttributeError(
|
2020-08-13 19:33:17 +08:00
|
|
|
"Please define either the error_url property"
|
2020-08-13 15:43:04 +08:00
|
|
|
" or the get_error_url method.")
|
|
|
|
|
|
|
|
def get_success_url(self) -> str:
|
|
|
|
"""Returns the URL on success."""
|
|
|
|
if self.success_url is not None:
|
|
|
|
return self.success_url
|
|
|
|
obj = self._get_current_object()
|
|
|
|
get_absolute_url = getattr(obj, "get_absolute_url", None)
|
|
|
|
if get_absolute_url is not None:
|
|
|
|
return get_absolute_url()
|
|
|
|
raise AttributeError(
|
2020-08-13 19:33:17 +08:00
|
|
|
"Please define either the success_url property,"
|
|
|
|
" the get_absolute_url method on the data model,"
|
2020-08-13 15:43:04 +08:00
|
|
|
" or the get_success_url method.")
|
|
|
|
|
|
|
|
def get_not_modified_message(self) -> str:
|
|
|
|
"""Returns the message when the data was not modified."""
|
|
|
|
return self.not_modified_message
|
|
|
|
|
|
|
|
def get_success_message(self) -> str:
|
|
|
|
"""Returns the success message."""
|
|
|
|
return self.success_message
|
|
|
|
|
|
|
|
def get_current_object(self) -> Optional[Model]:
|
|
|
|
"""Finds and returns the current object, or None on a create form."""
|
|
|
|
if "pk" in self.request.resolver_match.kwargs:
|
|
|
|
pk = self.request.resolver_match.kwargs["pk"]
|
|
|
|
try:
|
|
|
|
return self._model.objects.get(pk=pk)
|
|
|
|
except self._model.DoesNotExist:
|
|
|
|
raise Http404
|
|
|
|
return None
|
2020-08-09 14:07:47 +08:00
|
|
|
|
|
|
|
|
|
|
|
class DeleteView(SuccessMessageMixin, CoreDeleteView):
|
|
|
|
"""The delete form view, with SuccessMessageMixin."""
|
|
|
|
|
|
|
|
def delete(self, request, *args, **kwargs):
|
|
|
|
response = super(DeleteView, self).delete(request, *args, **kwargs)
|
|
|
|
messages.success(request, self.get_success_message({}))
|
|
|
|
return response
|
2020-07-06 23:22:20 +08:00
|
|
|
|
|
|
|
|
2020-07-06 23:04:14 +08:00
|
|
|
@require_POST
|
2020-08-13 08:05:35 +08:00
|
|
|
def logout(request: HttpRequest) -> HttpResponseRedirect:
|
2020-07-06 23:04:14 +08:00
|
|
|
"""The view to log out a user.
|
|
|
|
|
|
|
|
Args:
|
2020-08-13 08:05:35 +08:00
|
|
|
request: The request.
|
2020-07-06 23:04:14 +08:00
|
|
|
|
|
|
|
Returns:
|
2020-08-13 08:05:35 +08:00
|
|
|
The redirect response.
|
2020-07-06 23:04:14 +08:00
|
|
|
"""
|
2020-07-06 23:06:45 +08:00
|
|
|
logout_user(request)
|
2020-07-06 23:04:14 +08:00
|
|
|
if "next" in request.POST:
|
|
|
|
request.session["logout"] = True
|
|
|
|
return redirect(request.POST["next"])
|
2020-08-09 19:08:47 +08:00
|
|
|
return redirect("home")
|
2020-07-09 23:18:37 +08:00
|
|
|
|
|
|
|
|
2020-08-09 22:11:02 +08:00
|
|
|
@method_decorator(require_GET, name="dispatch")
|
|
|
|
@method_decorator(login_required, name="dispatch")
|
2020-08-09 20:22:37 +08:00
|
|
|
class UserListView(ListView):
|
|
|
|
"""The view to list the users."""
|
|
|
|
queryset = User.objects.order_by("login_id")
|
|
|
|
|
|
|
|
|
2020-08-09 22:11:02 +08:00
|
|
|
@method_decorator(require_GET, name="dispatch")
|
|
|
|
@method_decorator(login_required, name="dispatch")
|
2020-08-09 20:47:53 +08:00
|
|
|
class UserView(DetailView):
|
|
|
|
"""The view of a user."""
|
|
|
|
def get_object(self, queryset=None):
|
|
|
|
return self.request.resolver_match.kwargs["user"]
|
|
|
|
|
|
|
|
|
2020-08-13 15:43:04 +08:00
|
|
|
@method_decorator(login_required, name="dispatch")
|
|
|
|
class UserFormView(FormView):
|
|
|
|
model = User
|
|
|
|
form = UserForm
|
|
|
|
not_modified_message = gettext_noop("This user account was not changed.")
|
|
|
|
success_message = gettext_noop("This user account was saved successfully.")
|
2020-08-09 22:08:15 +08:00
|
|
|
|
2020-08-13 15:43:04 +08:00
|
|
|
def make_form_from_post(self, post: Dict[str, str]) -> UserForm:
|
|
|
|
"""Creates and returns the form from the POST data."""
|
|
|
|
form = UserForm(post)
|
|
|
|
form.user = self.get_current_object()
|
|
|
|
form.current_user = self.request.user
|
|
|
|
return form
|
2020-08-09 22:08:15 +08:00
|
|
|
|
2020-08-13 15:43:04 +08:00
|
|
|
def make_form_from_model(self, obj: User) -> forms.Form:
|
|
|
|
"""Creates and returns the form from a data model."""
|
2020-08-09 22:08:15 +08:00
|
|
|
form = UserForm({
|
2020-08-13 15:43:04 +08:00
|
|
|
"login_id": obj.login_id,
|
|
|
|
"name": obj.name,
|
|
|
|
"is_disabled": obj.is_disabled,
|
2020-08-09 22:08:15 +08:00
|
|
|
})
|
2020-08-13 15:43:04 +08:00
|
|
|
form.user = self.get_current_object()
|
|
|
|
form.current_user = self.request.user
|
|
|
|
return form
|
2020-08-09 22:08:15 +08:00
|
|
|
|
2020-08-13 15:43:04 +08:00
|
|
|
def fill_model_from_form(self, obj: User, form: UserForm) -> None:
|
|
|
|
"""Fills in the data model from the form."""
|
|
|
|
obj.login_id = form["login_id"].value()
|
|
|
|
if form["password"].value() is not None:
|
|
|
|
obj.set_digest_password(
|
|
|
|
form["login_id"].value(), form["password"].value())
|
|
|
|
obj.name = form["name"].value()
|
|
|
|
obj.is_disabled = form["is_disabled"].value()
|
|
|
|
obj.current_user = self.request.user
|
2020-08-09 22:08:15 +08:00
|
|
|
|
2020-08-13 15:43:04 +08:00
|
|
|
def get_error_url(self) -> str:
|
|
|
|
"""Returns the URL on error."""
|
|
|
|
user = self.get_current_object()
|
|
|
|
return reverse("mia_core:users.create") if user is None\
|
|
|
|
else reverse("mia_core:users.edit", args=(user,))
|
2020-08-09 22:41:22 +08:00
|
|
|
|
2020-08-13 15:43:04 +08:00
|
|
|
def get_current_object(self) -> Optional[Model]:
|
|
|
|
"""Returns the current object, or None on a create form."""
|
|
|
|
if "user" in self.request.resolver_match.kwargs:
|
|
|
|
return self.request.resolver_match.kwargs["user"]
|
|
|
|
return None
|
2020-08-09 22:41:22 +08:00
|
|
|
|
|
|
|
|
2020-08-09 22:53:56 +08:00
|
|
|
@require_POST
|
|
|
|
@login_required
|
2020-08-13 08:05:35 +08:00
|
|
|
def user_delete(request: HttpRequest, user: User) -> HttpResponseRedirect:
|
2020-08-09 22:53:56 +08:00
|
|
|
"""The view to delete an user.
|
|
|
|
|
|
|
|
Args:
|
2020-08-13 08:05:35 +08:00
|
|
|
request: The request.
|
|
|
|
user: The user.
|
2020-08-09 22:53:56 +08:00
|
|
|
|
|
|
|
Returns:
|
2020-08-13 08:05:35 +08:00
|
|
|
The response.
|
2020-08-09 22:53:56 +08:00
|
|
|
"""
|
|
|
|
message = None
|
|
|
|
if user.pk == request.user.pk:
|
|
|
|
message = gettext_noop("You cannot delete your own account.")
|
|
|
|
elif user.is_in_use():
|
|
|
|
message = gettext_noop(
|
|
|
|
"You cannot delete this account because it is in use.")
|
|
|
|
elif user.is_deleted:
|
|
|
|
message = gettext_noop("This account is already deleted.")
|
|
|
|
if message is not None:
|
|
|
|
messages.error(request, message)
|
|
|
|
return redirect("mia_core:users.detail", user)
|
|
|
|
user.delete()
|
|
|
|
message = gettext_noop("This user account was deleted successfully.")
|
|
|
|
messages.success(request, message)
|
|
|
|
return redirect("mia_core:users")
|
|
|
|
|
|
|
|
|
2020-08-09 23:46:08 +08:00
|
|
|
@require_GET
|
|
|
|
@login_required
|
2020-08-13 08:05:35 +08:00
|
|
|
def my_account_form(request: HttpRequest) -> HttpResponse:
|
2020-08-09 23:46:08 +08:00
|
|
|
"""The view to edit my account.
|
|
|
|
|
|
|
|
Args:
|
2020-08-13 08:05:35 +08:00
|
|
|
request: The request.
|
2020-08-09 23:46:08 +08:00
|
|
|
|
|
|
|
Returns:
|
2020-08-13 08:05:35 +08:00
|
|
|
The response.
|
2020-08-09 23:46:08 +08:00
|
|
|
"""
|
|
|
|
previous_post = stored_post.get_previous_post(request)
|
|
|
|
if previous_post is not None:
|
|
|
|
form = UserForm(previous_post)
|
|
|
|
else:
|
|
|
|
form = UserForm({
|
|
|
|
"login_id": request.user.login_id,
|
|
|
|
"name": request.user.name,
|
|
|
|
})
|
|
|
|
form.user = request.user
|
|
|
|
form.current_user = request.user
|
|
|
|
return render(request, "mia_core/user_form.html", {
|
|
|
|
"form": form,
|
|
|
|
})
|
|
|
|
|
|
|
|
|
2020-08-13 08:05:35 +08:00
|
|
|
def my_account_store(request: HttpRequest) -> HttpResponseRedirect:
|
2020-08-09 23:46:08 +08:00
|
|
|
"""The view to store my account.
|
|
|
|
|
|
|
|
Args:
|
2020-08-13 08:05:35 +08:00
|
|
|
request: The request.
|
2020-08-09 23:46:08 +08:00
|
|
|
|
|
|
|
Returns:
|
2020-08-13 08:05:35 +08:00
|
|
|
The response.
|
2020-08-09 23:46:08 +08:00
|
|
|
"""
|
|
|
|
post = request.POST.dict()
|
|
|
|
strip_post(post)
|
|
|
|
form = UserForm(post)
|
|
|
|
form.user = request.user
|
|
|
|
form.current_user = request.user
|
|
|
|
if not form.is_valid():
|
|
|
|
url = reverse("mia_core:my-account.edit")
|
|
|
|
return stored_post.error_redirect(request, url, post)
|
|
|
|
request.user.login_id = form["login_id"].value()
|
|
|
|
if form["password"].value() is not None:
|
|
|
|
request.user.set_digest_password(
|
|
|
|
form["login_id"].value(), form["password"].value())
|
|
|
|
request.user.name = form["name"].value()
|
|
|
|
if not request.user.is_dirty():
|
|
|
|
message = gettext_noop("Your user account was not changed.")
|
|
|
|
else:
|
|
|
|
request.user.save(current_user=request.user)
|
|
|
|
message = gettext_noop("Your user account was saved successfully.")
|
|
|
|
messages.success(request, message)
|
|
|
|
return redirect("mia_core:my-account")
|
|
|
|
|
2020-08-09 22:53:56 +08:00
|
|
|
|
2020-08-13 08:05:35 +08:00
|
|
|
def api_users_exists(request: HttpRequest, login_id: str) -> JsonResponse:
|
2020-08-09 22:08:15 +08:00
|
|
|
"""The view to check whether a user with a log in ID exists.
|
|
|
|
|
|
|
|
Args:
|
2020-08-13 08:05:35 +08:00
|
|
|
request: The request.
|
|
|
|
login_id: The log in ID.
|
2020-08-09 22:08:15 +08:00
|
|
|
|
|
|
|
Returns:
|
2020-08-13 08:05:35 +08:00
|
|
|
The response.
|
2020-08-09 22:08:15 +08:00
|
|
|
"""
|
|
|
|
try:
|
|
|
|
User.objects.get(login_id=login_id)
|
|
|
|
except User.DoesNotExist:
|
|
|
|
return JsonResponse(False, safe=False)
|
|
|
|
return JsonResponse(True, safe=False)
|