-
Notifications
You must be signed in to change notification settings - Fork 89
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
8 changed files
with
557 additions
and
512 deletions.
There are no files selected for viewing
Empty file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,74 @@ | ||
from django.contrib.auth import get_user_model | ||
|
||
from django_filters import rest_framework as filters | ||
from rest_framework import mixins, status, viewsets | ||
from rest_framework.response import Response | ||
|
||
from ..auth import ( | ||
CreateOnlyWithScopePermission, | ||
get_read_foiattachment_queryset, | ||
) | ||
from ..models import FoiAttachment | ||
from ..serializers import ( | ||
FoiAttachmentSerializer, | ||
FoiAttachmentTusSerializer, | ||
FoiRequestListSerializer, | ||
) | ||
|
||
User = get_user_model() | ||
|
||
|
||
class FoiAttachmentFilter(filters.FilterSet): | ||
class Meta: | ||
model = FoiAttachment | ||
fields = ( | ||
"name", | ||
"filetype", | ||
"approved", | ||
"is_redacted", | ||
"belongs_to", | ||
) | ||
|
||
|
||
class FoiAttachmentViewSet( | ||
mixins.CreateModelMixin, | ||
mixins.ListModelMixin, | ||
mixins.RetrieveModelMixin, | ||
viewsets.GenericViewSet, | ||
): | ||
serializer_action_classes = { | ||
"create": FoiAttachmentTusSerializer, | ||
"list": FoiAttachmentSerializer, | ||
"retrieve": FoiAttachmentSerializer, | ||
} | ||
filter_backends = (filters.DjangoFilterBackend,) | ||
filterset_class = FoiAttachmentFilter | ||
permission_classes = (CreateOnlyWithScopePermission,) | ||
required_scopes = ["upload:message"] | ||
|
||
def get_serializer_class(self): | ||
try: | ||
return self.serializer_action_classes[self.action] | ||
except (KeyError, AttributeError): | ||
return FoiRequestListSerializer | ||
|
||
def get_queryset(self): | ||
qs = get_read_foiattachment_queryset(self.request) | ||
return self.optimize_query(qs) | ||
|
||
def optimize_query(self, qs): | ||
return qs.prefetch_related( | ||
"belongs_to", | ||
"belongs_to__request", | ||
"belongs_to__request__user", | ||
) | ||
|
||
def create(self, request, *args, **kwargs): | ||
serializer = self.get_serializer(data=request.data) | ||
serializer.is_valid(raise_exception=True) | ||
instance = self.perform_create(serializer) | ||
data = FoiAttachmentSerializer(instance, context={"request": request}).data | ||
return Response(data, status=status.HTTP_201_CREATED) | ||
|
||
def perform_create(self, serializer): | ||
return serializer.save() |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,38 @@ | ||
from django.contrib.auth import get_user_model | ||
|
||
from django_filters import rest_framework as filters | ||
from rest_framework import viewsets | ||
|
||
from ..auth import ( | ||
get_read_foimessage_queryset, | ||
) | ||
from ..models import FoiMessage | ||
from ..serializers import FoiMessageSerializer, optimize_message_queryset | ||
|
||
User = get_user_model() | ||
|
||
|
||
class FoiMessageFilter(filters.FilterSet): | ||
class Meta: | ||
model = FoiMessage | ||
fields = ( | ||
"request", | ||
"kind", | ||
"is_response", | ||
) | ||
|
||
|
||
class FoiMessageViewSet(viewsets.ReadOnlyModelViewSet): | ||
serializer_class = FoiMessageSerializer | ||
filter_backends = (filters.DjangoFilterBackend,) | ||
filterset_class = FoiMessageFilter | ||
|
||
def get_queryset(self): | ||
qs = get_read_foimessage_queryset(self.request).order_by() | ||
return self.optimize_query(qs) | ||
|
||
def optimize_query(self, qs): | ||
return optimize_message_queryset(self.request, qs) | ||
|
||
# @action(methods=["get", "post"], detail=False, url_name="draft") | ||
# def get_or_create_draft(self, request): |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,241 @@ | ||
from django.contrib.auth import get_user_model | ||
from django.db.models import Q | ||
|
||
from django_filters import rest_framework as filters | ||
from rest_framework import mixins, status, throttling, viewsets | ||
from rest_framework.decorators import action | ||
from rest_framework.response import Response | ||
from taggit.models import Tag | ||
|
||
from froide.campaign.models import Campaign | ||
from froide.helper.search.api_views import ESQueryMixin | ||
|
||
from ..auth import ( | ||
CreateOnlyWithScopePermission, | ||
get_read_foirequest_queryset, | ||
throttle_action, | ||
) | ||
from ..documents import FoiRequestDocument | ||
from ..filters import FoiRequestFilterSet | ||
from ..models import FoiRequest | ||
from ..serializers import ( | ||
FoiRequestDetailSerializer, | ||
FoiRequestListSerializer, | ||
MakeRequestSerializer, | ||
) | ||
from ..utils import check_throttle | ||
|
||
User = get_user_model() | ||
|
||
|
||
def filter_by_user_queryset(request): | ||
user_filter = Q(is_active=True, private=False) | ||
if request is None or not request.user.is_authenticated: | ||
return User.objects.filter(user_filter) | ||
|
||
user = request.user | ||
token = request.auth | ||
|
||
if not token and user.is_superuser: | ||
return User.objects.all() | ||
|
||
# Either not OAuth or OAuth and valid token | ||
if not token or token.is_valid(["read:request"]): | ||
# allow filter by own user | ||
user_filter |= Q(pk=request.user.pk) | ||
|
||
return User.objects.filter(user_filter) | ||
|
||
|
||
def filter_by_authenticated_user_queryset(request): | ||
if request is None or not request.user.is_authenticated: | ||
return User.objects.none() | ||
|
||
user = request.user | ||
token = request.auth | ||
|
||
if not token and user.is_superuser: | ||
# Allow superusers complete access | ||
return User.objects.all() | ||
|
||
if not token or token.is_valid(["read:request"]): | ||
# allow filter by own user | ||
return User.objects.filter(id=user.id) | ||
return User.objects.none() | ||
|
||
|
||
class FoiRequestFilter(filters.FilterSet): | ||
user = filters.ModelChoiceFilter(queryset=filter_by_user_queryset) | ||
tags = filters.CharFilter(method="tag_filter") | ||
categories = filters.CharFilter(method="categories_filter") | ||
classification = filters.CharFilter(method="classification_filter") | ||
reference = filters.CharFilter(method="reference_filter") | ||
follower = filters.ModelChoiceFilter( | ||
queryset=filter_by_authenticated_user_queryset, method="follower_filter" | ||
) | ||
costs = filters.RangeFilter() | ||
campaign = filters.ModelChoiceFilter( | ||
queryset=Campaign.objects.filter(public=True), | ||
null_value="-", | ||
null_label="No Campaign", | ||
lookup_expr="isnull", | ||
method="campaign_filter", | ||
) | ||
created_at_after = filters.DateFilter(field_name="created_at", lookup_expr="gte") | ||
created_at_before = filters.DateFilter(field_name="created_at", lookup_expr="lt") | ||
has_same = filters.BooleanFilter( | ||
field_name="same_as", lookup_expr="isnull", exclude=True | ||
) | ||
|
||
# FIXME: default ordering should be undetermined? | ||
# ordering = filters.OrderingFilter( | ||
# fields=( | ||
# ('last_message', 'last_message'), | ||
# ('first_message', 'first_message') | ||
# ), | ||
# field_labels={ | ||
# '-last_message': 'By last message (latest first)', | ||
# '-first_message': 'By first message (latest first)', | ||
# 'last_message': 'By last message (oldest first)', | ||
# 'first_message': 'By first message (oldest first)', | ||
# } | ||
# ) | ||
|
||
class Meta: | ||
model = FoiRequest | ||
fields = ( | ||
"user", | ||
"is_foi", | ||
"checked", | ||
"jurisdiction", | ||
"tags", | ||
"resolution", | ||
"status", | ||
"reference", | ||
"classification", | ||
"public_body", | ||
"slug", | ||
"costs", | ||
"project", | ||
"campaign", | ||
"law", | ||
) | ||
|
||
def tag_filter(self, queryset, name, value): | ||
return queryset.filter( | ||
**{ | ||
"tags__name": value, | ||
} | ||
) | ||
|
||
def categories_filter(self, queryset, name, value): | ||
return queryset.filter( | ||
**{ | ||
"public_body__categories__name": value, | ||
} | ||
) | ||
|
||
def classification_filter(self, queryset, name, value): | ||
return queryset.filter( | ||
**{ | ||
"public_body__classification__name": value, | ||
} | ||
) | ||
|
||
def reference_filter(self, queryset, name, value): | ||
return queryset.filter( | ||
**{ | ||
"reference__startswith": value, | ||
} | ||
) | ||
|
||
def follower_filter(self, queryset, name, value): | ||
return queryset.filter(followers__user=value) | ||
|
||
def campaign_filter(self, queryset, name, value): | ||
if value == "-": | ||
return queryset.filter(campaign__isnull=True) | ||
return queryset.filter(campaign=value) | ||
|
||
|
||
class MakeRequestThrottle(throttling.BaseThrottle): | ||
def allow_request(self, request, view): | ||
return not bool(check_throttle(request.user, FoiRequest)) | ||
|
||
|
||
class FoiRequestViewSet( | ||
mixins.CreateModelMixin, | ||
mixins.ListModelMixin, | ||
mixins.RetrieveModelMixin, | ||
ESQueryMixin, | ||
viewsets.GenericViewSet, | ||
): | ||
serializer_action_classes = { | ||
"create": MakeRequestSerializer, | ||
"list": FoiRequestListSerializer, | ||
"retrieve": FoiRequestDetailSerializer, | ||
} | ||
filter_backends = (filters.DjangoFilterBackend,) | ||
filterset_class = FoiRequestFilter | ||
permission_classes = (CreateOnlyWithScopePermission,) | ||
required_scopes = ["make:request"] | ||
search_model = FoiRequest | ||
search_document = FoiRequestDocument | ||
read_token_scopes = ["read:request"] | ||
searchfilterset_class = FoiRequestFilterSet | ||
|
||
def get_serializer_class(self): | ||
try: | ||
return self.serializer_action_classes[self.action] | ||
except (KeyError, AttributeError): | ||
return FoiRequestListSerializer | ||
|
||
def get_queryset(self): | ||
qs = get_read_foirequest_queryset(self.request) | ||
return self.optimize_query(qs) | ||
|
||
def optimize_query(self, qs): | ||
extras = () | ||
if self.action == "retrieve": | ||
extras = ("law",) | ||
qs = qs.prefetch_related( | ||
"public_body", "user", "tags", "public_body__jurisdiction", *extras | ||
) | ||
return qs | ||
|
||
@action(detail=False, methods=["get"]) | ||
def search(self, request): | ||
return self.search_view(request) | ||
|
||
@action( | ||
detail=False, | ||
methods=["get"], | ||
url_path="tags/autocomplete", | ||
url_name="tags-autocomplete", | ||
) | ||
def tags_autocomplete(self, request): | ||
query = request.GET.get("q", "") | ||
tags = Tag.objects.none() | ||
if query: | ||
tags = ( | ||
Tag.objects.filter(name__istartswith=query) | ||
.only("name") | ||
.order_by("name") | ||
) | ||
|
||
page = self.paginate_queryset(tags) | ||
return self.get_paginated_response( | ||
[{"value": t.name, "label": t.name} for t in page] | ||
) | ||
|
||
@throttle_action((MakeRequestThrottle,)) | ||
def create(self, request, *args, **kwargs): | ||
serializer = self.get_serializer(data=request.data) | ||
serializer.is_valid(raise_exception=True) | ||
instance = self.perform_create(serializer) | ||
data = {"status": "success", "url": instance.get_absolute_domain_url()} | ||
headers = {"Location": str(instance.get_absolute_url())} | ||
return Response(data, status=status.HTTP_201_CREATED, headers=headers) | ||
|
||
def perform_create(self, serializer): | ||
return serializer.save(user=self.request.user, request=self.request) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.