def create_or_update_thought(self):
"""Creates or updates a thought based on the HTTP request.
"""
args = simplejson.loads(self.request.body)
json_thought = args[
Names.
thought] # This is not a JSON string but rather a dictionary.
body = {'success': None, 'errorMsg': None}
session_id = get_session_id(self.request)
if is_none_or_empty(session_id):
body['success'] = False
body['errorMsg'] = 'You are not logged in.'
self.response.out.write(simplejson.JSONEncoder().encode(body))
return
user = authenticate_user_session(session_id)
if user == None:
body['success'] = False
body['errorMsg'] = 'Your session has expired.'
self.response.out.write(simplejson.JSONEncoder().encode(body))
return
thought_has_been_saved = False
thought = None
if Names.id not in json_thought:
thought_has_been_saved = False
else:
thought = get_thought_using_id(json_thought[Names.id])
logging.info('thought: ' + str(thought))
if thought != None:
thought_has_been_saved = True
if not thought_has_been_saved:
id = create_and_save_thought(json_thought, user)
self.response.headers[content_type_name] = json_content_type
body['success'] = True
body['id'] = id
self.response.out.write(simplejson.JSONEncoder().encode(body))
else:
# Check that the user has permission to update the thought
if not is_user_permitted_to_modify_thought(user, thought):
body['success'] = False
body[
'errorMsg'] = 'You are not permmited to modify the thought.'
self.response.out.write(simplejson.JSONEncoder().encode(body))
return
update_thought(thought, json_thought, user)
self.response.headers[content_type_name] = json_content_type
body['success'] = True
body['id'] = get_thoughtId(thought)
self.response.out.write(simplejson.JSONEncoder().encode(body))
def render_page(self):
id = self.request.get('id')
entity = None
if not is_none_or_empty(id):
id = int(id)
entity = self.modelClass.get(db.Key.from_path(self.modelClass.__name__, id))
context = {
'id': id,
'form': self.formClass(instance=entity),
'postUri': self.postUri,
}
self.response.out.write(template.render(self.templatePath, context))
def delete(self, *args, **kwargs):
"""Makes a thought private."""
thought_id = self.request.get(Names.id)
if is_none_or_empty(thought_id):
self.error(400) # Bad Request
return
body = {}
session_id = get_session_id(self.request)
if is_none_or_empty(session_id):
body['success'] = False
body['errorMsg'] = 'You are not logged in.'
self.response.out.write(simplejson.JSONEncoder().encode(body))
return
# Authenticate User.
user = authenticate_user_session(session_id)
if user == None:
body['success'] = False
body['errorMsg'] = 'Your session has expired.'
self.response.out.write(simplejson.JSONEncoder().encode(body))
return
if not user_can_modify_thought_using_id(user, thought_id):
body['success'] = False
body['errorMsg'] = 'You do not have succificient priviledges.'
self.response.out.write(simplejson.JSONEncoder().encode(body))
return
if not thought_viewable_by_all_using_id(thought_id):
body['success'] = False
body['errorMsg'] = 'The thought is already private.'
self.response.out.write(simplejson.JSONEncoder().encode(body))
return
make_thought_private_using_id(thought_id)
body['success'] = True
self.response.out.write(simplejson.JSONEncoder().encode(body))
def post(self):
id = self.request.get('id')
entity = None
if not is_none_or_empty(id):
id = int(id)
entity = self.modelClass.get(db.Key.from_path(self.modelClass.__name__, id))
data = self.formClass(data=self.request.POST, instance=entity)
if data.is_valid():
# Save the data, and redirect to the view page
entity = data.save(commit=False)
entity.put()
self.redirect(self.successUri)
else:
# Reprint the form
self.render_page(data)
def get(self, request, *args, **kwargs):
"""Simply returns a specific Thought.
"""
thought_id = self.request.GET[
Names.id] if Names.id in self.request.GET else None
thought_name = self.request.GET[
Names.name] if Names.name in self.request.GET else None
collection = self.request.GET[
Names.collection] if Names.collection in self.request.GET else None
type = self.request.GET[
Names.type] if Names.type in self.request.GET else None
# id, name or collection must be supplied, but not more than one.
params = [thought_id, thought_name, collection]
no_of_params = len(filter(lambda x: not is_none_or_empty(x), params))
if no_of_params != 1:
self.error(400) # Bad Request
return
body = {}
session_id = "fake_session_id_to_avoid_authentication_for_the_time_being" #get_session_id(self.request)
if not is_none_or_empty(collection):
# Get a collection for the user.
# Validate session id.
if is_none_or_empty(session_id):
body['success'] = False
body['errorMsg'] = 'You are not logged in.'
self.response.out.write(simplejson.JSONEncoder().encode(body))
return
# Authenticate User.
user = "******" #authenticate_user_session(session_id)
if user == None:
body['success'] = False
body['errorMsg'] = 'Your session has expired.'
self.response.out.write(simplejson.JSONEncoder().encode(body))
return
# Check which type of collection.
if collection == Names.all:
# Get collection all.
body[
'thoughtDescriptions'] = get_thought_descriptions_for_user(
user)
body['success'] = True
else:
self.error(400) # Bad Request
return
elif not is_none_or_empty(thought_id) or not is_none_or_empty(
thought_name):
thought_viewable = None
user_can_view_thought = None
get_thought = None
identifier = None
# Take a generic approach for id and name.
if not is_none_or_empty(thought_id):
thought_viewable = thought_viewable_by_all_using_id
user_can_view_thought = user_can_view_thought_using_id
get_thought = get_thought_using_id
identifier = thought_id
elif not is_none_or_empty(thought_name):
thought_viewable = thought_viewable_by_all_using_name
user_can_view_thought = user_can_view_thought_using_name
get_thought = get_thought_using_name
identifier = thought_name
# Get the user info.
user = None
if not is_none_or_empty(session_id):
#TODO: fix this up
user = None #authenticate_user_session(session_id)
if not thought_viewable(identifier):
# Check session.
if is_none_or_empty(session_id):
body['success'] = False
body['errorMsg'] = 'You are not logged in.'
self.response.out.write(
simplejson.JSONEncoder().encode(body))
return
if user == None:
body['success'] = False
body['errorMsg'] = 'Your session has expired.'
self.response.out.write(
simplejson.JSONEncoder().encode(body))
return
# Check that the user can view the thought.
if not user_can_view_thought(user, identifier):
body['success'] = False
body['errorMsg'] = 'No such thought exists.'
self.response.out.write(
simplejson.JSONEncoder().encode(body))
return
# The user can view the thought at this point in the code.
thought = get_thought(identifier)
if thought == None:
self.error(400)
return
body['success'] = True
body[Names.thought] = thought_to_dict(thought)
# Move the following lines into the function above.
permissionType = get_permission_type(thought, user)
body[Names.thought][
Names.modifiable] = permissionType == permit_modify
body[Names.thought][
Names.is_public] = thought_viewable_by_all_using_name(
thought.name)
else:
raise "LogicError"
response = HttpResponse(simplejson.JSONEncoder().encode(body))
response[content_type_name] = json_content_type
return response