def _get_owner_account(contact):
contact_name = contact.split(' (')[0]
if contact_name:
try:
contact_mail = get_user_mail_from_ldap(contact_name)
return get_existing_or_register_user(contact_mail)
except DoesNotExistInLDAP:
current_app.logger.info(f'Couldnt find {contact_name} in LDAP.')
def create_deposit_with_permissions(data, roles, users, owner, ana, errors):
"""Create a deposit and add privileges and owner information."""
from cap.modules.deposit.api import CAPDeposit
# make sure the schema is valid first
if not check_and_update_data_with_schema(data, ana):
return
with db.session.begin_nested():
try:
# saving original to return to user if wrong
_data = copy.deepcopy(data)
owner = get_existing_or_register_user(owner) if owner else None
deposit = CAPDeposit.create(data=data, owner=owner)
# add roles and users
if roles:
for role in roles:
_role = get_existing_or_register_role(role.strip())
deposit._add_egroup_permissions(_role, ['deposit-read'],
db.session)
if users:
for user in users:
_user = get_existing_or_register_user(user.strip())
deposit._add_user_permissions(_user, ['deposit-read'],
db.session)
deposit.commit()
except ValidationError as err:
click.secho(f'Validation Error: {err.message}', fg='red')
errors.append(_data)
return
db.session.commit()
click.secho(f"Created deposit with id: {deposit['_deposit']['id']}",
fg='green') # noqa
def add_drafts_from_file(file_path,
schema,
egroup=None,
usermail=None,
limit=None):
"""Adds drafts from a specified file.
Drafts with specified pid will be registered under those.
For drafts without pid, new pids will be minted.
"""
if usermail:
user = get_existing_or_register_user(usermail)
else:
user = None
with open(file_path, 'r') as fp:
entries = json.load(fp)
for entry in entries[0:limit]:
data = construct_draft_obj(schema, entry)
pid = cap_deposit_fetcher(None, data)
pid_value = pid.pid_value if pid else None
try:
PersistentIdentifier.get('depid', pid_value)
print('Draft with id {} already exist!'.format(pid_value))
except PIDDoesNotExistError:
record_uuid = uuid.uuid4()
pid = cap_deposit_minter(record_uuid, data)
deposit = CAPDeposit.create(data, record_uuid, user)
deposit.commit()
if egroup:
add_read_permission_for_egroup(deposit, egroup)
print('Draft {} added.'.format(pid.pid_value))
db.session.commit()
def add(file_path, schema, version, egroup, usermail, limit):
"""Add drafts from a file.
Drafts with specified pid will be registered under those.
For drafts without pid, new pids will be minted.
"""
if usermail:
user = get_existing_or_register_user(usermail)
else:
user = None
with open(file_path, 'r') as fp:
entries = json.load(fp)
for entry in entries[0:limit]:
pid = cap_deposit_fetcher(None, entry)
pid_value = pid.pid_value if pid else None
try:
PersistentIdentifier.get('depid', pid_value)
click.secho(
'Draft with id {} already exist!'.format(pid_value),
fg='red')
except PIDDoesNotExistError:
record_uuid = uuid.uuid4()
pid = cap_deposit_minter(record_uuid, entry)
deposit = CAPDeposit.create(entry, record_uuid, user)
deposit.commit()
if egroup:
add_read_permission_for_egroup(deposit, egroup)
click.secho('Draft {} added.'.format(pid.pid_value),
fg='green')
db.session.commit()
def add_drafts_from_file(file_path, schema,
egroup=None, usermail=None, limit=None):
"""Add drafts from a specified file.
Drafts with specified pid will be registered under those.
For drafts without pid, new pids will be minted.
"""
if usermail:
user = get_existing_or_register_user(usermail)
else:
user = None
with open(file_path, 'r') as fp:
entries = json.load(fp)
for entry in entries[0:limit]:
data = construct_draft_obj(schema, entry)
pid = cap_deposit_fetcher(None, data)
pid_value = pid.pid_value if pid else None
try:
PersistentIdentifier.get('depid', pid_value)
print('Draft with id {} already exist!'.format(pid_value))
except PIDDoesNotExistError:
record_uuid = uuid.uuid4()
pid = cap_deposit_minter(record_uuid, data)
deposit = CAPDeposit.create(data, record_uuid, user)
deposit.commit()
if egroup:
add_read_permission_for_egroup(deposit, egroup)
print('Draft {} added.'.format(pid.pid_value))
db.session.commit()
def edit_permissions(self, data):
"""Edit deposit permissions.
We expect an array of objects:
[{
"email": "",
"type": "user|egroup",
"op": "add|remove",
"action": "deposit-read|deposit-update|deposit-admin"
}]
"""
with db.session.begin_nested():
for obj in data:
if obj['type'] == 'user':
try:
user = get_existing_or_register_user(obj['email'])
except DoesNotExistInLDAP:
raise UpdateDepositPermissionsError(
'User with this mail does not exist in LDAP.')
if obj['op'] == 'add':
try:
self._add_user_permissions(user, [obj['action']],
db.session)
except IntegrityError:
raise UpdateDepositPermissionsError(
'Permission already exist.')
elif obj['op'] == 'remove':
try:
self._remove_user_permissions(
user, [obj['action']], db.session)
except NoResultFound:
raise UpdateDepositPermissionsError(
'Permission does not exist.')
elif obj['type'] == 'egroup':
try:
role = get_existing_or_register_role(obj['email'])
except DoesNotExistInLDAP:
raise UpdateDepositPermissionsError(
'Egroup with this mail does not exist in LDAP.')
if obj['op'] == 'add':
try:
self._add_egroup_permissions(
role, [obj['action']], db.session)
except IntegrityError:
raise UpdateDepositPermissionsError(
'Permission already exist.')
elif obj['op'] == 'remove':
try:
self._remove_egroup_permissions(
role, [obj['action']], db.session)
except NoResultFound:
raise UpdateDepositPermissionsError(
'Permission does not exist.')
self.commit()
return self
def edit_permissions(self, data):
"""Edit deposit permissions.
We expect an array of objects:
[{
"email": "",
"type": "user|egroup",
"op": "add|remove",
"action": "deposit-read|deposit-update|deposit-admin"
}]
"""
with db.session.begin_nested():
for obj in data:
if obj['type'] == 'user':
try:
user = get_existing_or_register_user(obj['email'])
except DoesNotExistInLDAP:
raise UpdateDepositPermissionsError(
'User with this mail does not exist in LDAP.')
if obj['op'] == 'add':
try:
self._add_user_permissions(user,
[obj['action']],
db.session)
except IntegrityError:
raise UpdateDepositPermissionsError(
'Permission already exist.')
elif obj['op'] == 'remove':
try:
self._remove_user_permissions(user,
[obj['action']],
db.session)
except NoResultFound:
raise UpdateDepositPermissionsError(
'Permission does not exist.')
elif obj['type'] == 'egroup':
try:
role = get_existing_or_register_role(obj['email'])
except DoesNotExistInLDAP:
raise UpdateDepositPermissionsError(
'Egroup with this mail does not exist in LDAP.')
if obj['op'] == 'add':
try:
self._add_egroup_permissions(role,
[obj['action']],
db.session)
except IntegrityError:
raise UpdateDepositPermissionsError(
'Permission already exist.')
elif obj['op'] == 'remove':
try:
self._remove_egroup_permissions(role,
[obj['action']],
db.session)
except NoResultFound:
raise UpdateDepositPermissionsError(
'Permission does not exist.')
self.commit()
return self