diff --git a/app.py b/app.py index 79a4ad2..6e74b2f 100644 --- a/app.py +++ b/app.py @@ -13,6 +13,7 @@ from web import web from areas import users from areas import apps from areas import auth +from areas import roles from cliapp import cliapp from web import login diff --git a/areas/apps/models.py b/areas/apps/models.py index 85dc4ae..a9afdaf 100644 --- a/areas/apps/models.py +++ b/areas/apps/models.py @@ -1,4 +1,5 @@ from sqlalchemy import ForeignKey, Integer, String +from sqlalchemy.orm import relationship from database import db @@ -25,5 +26,7 @@ class AppRole(db.Model): app_id = db.Column(Integer, ForeignKey("app.id"), primary_key=True) role_id = db.Column(Integer, ForeignKey("role.id")) + role = relationship("Role") + def __repr__(self): - return f"{self.role} for {self.user_id} on {self.app_id}" + return f"role_id: {self.role_id}, user_id: {self.user_id}, app_id: {self.app_id}, role: {self.role}" diff --git a/areas/roles/__init__.py b/areas/roles/__init__.py new file mode 100644 index 0000000..57b8206 --- /dev/null +++ b/areas/roles/__init__.py @@ -0,0 +1,2 @@ +from .roles import * +from .models import * diff --git a/areas/users/models.py b/areas/roles/models.py similarity index 100% rename from areas/users/models.py rename to areas/roles/models.py diff --git a/areas/roles/role_service.py b/areas/roles/role_service.py new file mode 100644 index 0000000..3eb3207 --- /dev/null +++ b/areas/roles/role_service.py @@ -0,0 +1,8 @@ +from .models import Role + + +class RoleService: + @staticmethod + def get_roles(): + roles = Role.query.all() + return [{"id": r.id, "name": r.name} for r in roles] diff --git a/areas/roles/roles.py b/areas/roles/roles.py new file mode 100644 index 0000000..8f2cdd2 --- /dev/null +++ b/areas/roles/roles.py @@ -0,0 +1,15 @@ +from flask import jsonify, request +from flask_jwt_extended import jwt_required +from flask_cors import cross_origin + +from areas import api_v1 + +from .role_service import RoleService + + +@api_v1.route("/roles", methods=["GET"]) +@jwt_required() +@cross_origin() +def get_roles(): + roles = RoleService.get_roles() + return jsonify(roles) diff --git a/areas/users/__init__.py b/areas/users/__init__.py index a19fa8f..3686613 100644 --- a/areas/users/__init__.py +++ b/areas/users/__init__.py @@ -1,2 +1,2 @@ from .users import * -from .models import * +from .user_service import * diff --git a/areas/users/user_service.py b/areas/users/user_service.py new file mode 100644 index 0000000..a972d86 --- /dev/null +++ b/areas/users/user_service.py @@ -0,0 +1,61 @@ +import copy + +from database import db +from areas.apps import AppRole +from helpers import KratosApi + + +class UserService: + @staticmethod + def get_users(): + res = KratosApi.get("/identities").json() + userList = [] + for r in res: + userList.append(UserService.__insertAppRoleToUser(r["id"], r)) + + return userList + + @staticmethod + def get_user(id): + res = KratosApi.get("/identities/{}".format(id)).json() + return UserService.__insertAppRoleToUser(id, res) + + @staticmethod + def post_user(data): + kratos_data = { + "schema_id": "default", + "traits": {"email": data["email"], "name": data["name"]}, + } + res = KratosApi.post("/identities", kratos_data).json() + + appRole = AppRole( + user_id=res["id"], + role_id=data["role_id"] if "role_id" in data else None, + app_id=1, + ) + + db.session.add(appRole) + db.session.commit() + + return UserService.get_user(res["id"]) + + @staticmethod + def put_user(id, data): + kratos_data = { + "schema_id": "default", + "traits": {"email": data["email"], "name": data["name"]}, + } + KratosApi.put("/identities/{}".format(id), kratos_data) + + app_role = AppRole.query.filter_by(user_id=id).first() + app_role.role_id = data["role_id"] if "role_id" in data else None + db.session.commit() + + return UserService.get_user(id) + + @staticmethod + def __insertAppRoleToUser(userId, userRes): + app_role = AppRole.query.filter_by(user_id=userId).first() + userRes["traits"]["app_role_id"] = app_role.role_id if app_role else None + + return userRes diff --git a/areas/users/users.py b/areas/users/users.py index 73d7a5d..a2127c0 100644 --- a/areas/users/users.py +++ b/areas/users/users.py @@ -5,23 +5,25 @@ from flask_expects_json import expects_json from areas import api_v1 from helpers import KratosApi + from .validation import schema +from .user_service import UserService @api_v1.route("/users", methods=["GET"]) @jwt_required() @cross_origin() def get_users(): - res = KratosApi.get("/identities") - return jsonify(res.json()) + res = UserService.get_users() + return jsonify(res) @api_v1.route("/users/", methods=["GET"]) @jwt_required() @cross_origin() def get_user(id): - res = KratosApi.get("/identities/{}".format(id)) - return jsonify(res.json()) + res = UserService.get_user(id) + return jsonify(res) @api_v1.route("/users", methods=["POST"]) @@ -30,9 +32,8 @@ def get_user(id): @expects_json(schema) def post_user(): data = request.get_json() - kratos_data = {"schema_id": "default", "traits": data} - res = KratosApi.post("/identities", kratos_data) - return jsonify(res.json()), res.status_code + res = UserService.post_user(data) + return jsonify(res) @api_v1.route("/users/", methods=["PUT"]) @@ -41,9 +42,8 @@ def post_user(): @expects_json(schema) def put_user(id): data = request.get_json() - kratos_data = {"schema_id": "default", "traits": data} - res = KratosApi.put("/identities/{}".format(id), kratos_data) - return jsonify(res.json()), res.status_code + res = UserService.put_user(id, data) + return jsonify(res) @api_v1.route("/users/", methods=["DELETE"]) diff --git a/areas/users/validation.py b/areas/users/validation.py index 84c3dea..85d6031 100644 --- a/areas/users/validation.py +++ b/areas/users/validation.py @@ -8,7 +8,12 @@ schema = { "description": "Email of the user", "pattern": r"(?:[a-z0-9!#$%&'*+/=?^_`{|}~-]+(?:\.[a-z0-9!#$%&'*+/=?^_`{|}~-]+)*|\"(?:[\x01-\x08\x0b\x0c\x0e-\x1f\x21\x23-\x5b\x5d-\x7f]|\\[\x01-\x09\x0b\x0c\x0e-\x7f])*\")@(?:(?:[a-z0-9](?:[a-z0-9-]*[a-z0-9])?\.)+[a-z0-9](?:[a-z0-9-]*[a-z0-9])?|\[(?:(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9]))\.){3}(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9])|[a-z0-9-]*[a-z0-9]:(?:[\x01-\x08\x0b\x0c\x0e-\x1f\x21-\x5a\x53-\x7f]|\\[\x01-\x09\x0b\x0c\x0e-\x7f])+)\])", "minLength": 1, - } + }, + "role_id": { + "type": "integer", + "description": "Role of the user", + "minimum": 1, + }, }, "required": ["email"], }