def get_current_roles():
username = login_user.get('username')
is_admin = login_user.get('is_admin')
role = Role()
if is_admin:
roles = role.collection.find({})
return jsonify({
'message': 'ok',
'code': 0,
'data': list(roles),
})
user = User()
user_info = user.collection.find_one({'username': username})
where = {
'user_id': str(user_info['_id']),
}
roles = db.collection('user_roles').find(where)
roles = list(roles)
data = []
if roles:
role_ids = map(lambda i: i['role_id'], roles)
data = role.find_by_ids(list(role_ids))
return jsonify({
'message': 'ok',
'code': 0,
'data': data,
})
def get_roles(self, team_id):
team_roles = self.db.collection('team_roles').find({'team_id': team_id})
team_roles = list(team_roles)
if not team_roles:
return team_roles
role_ids = map(lambda i: i['role_id'], team_roles)
role_ids = list(role_ids)
return Role.find_by_ids(role_ids)
def add_team():
payload = request.get_json()
if not payload:
return jsonify({'message': 'invalid params', 'code': 104000}), 400
is_admin = login_user.get('is_admin')
if not is_admin:
return jsonify({'message': 'admin required', 'code': 104039}), 403
name = payload.get('name')
description = payload.get('description')
parent = payload.get('parent')
role_ids = payload.get('role_ids')
members = payload.get('members') or []
master = payload.get('master') or [login_user.get('username')]
record = Team.find_one({'name': name})
if record:
return jsonify({'message': 'name existed', 'code': 104001}), 400
if role_ids:
role_record = Role.find_by_ids(role_ids)
if not role_record:
return jsonify({'message': 'role not found', 'code': 104041}), 404
data = {
'name': name,
'description': description,
'master': master,
'parent': parent,
'add_by': login_user.get('username'),
'created_at': time.time(),
}
result = Team.insert_one(data)
team_id = str(result.inserted_id)
data['_id'] = team_id
logger.info('add team', extra={'record': data})
if not role_ids:
role = {
'name': name,
'type': 'team',
'role': 'owner',
'add_by': login_user.get('username'),
'created_at': time.time(),
}
result = Role.insert_one(role)
role['_id'] = result.inserted_id
role['team_id'] = data['_id']
role_ids = [str(role['_id'])]
# team_role = {
# 'role_id': result.inserted_id,
# 'team_id': role['team_id'],
# 'add_by': login_user.get('username'),
# 'created_at': time.time(),
# }
# Model.build_model('team_roles').insert_one(team_role)
for role_id in role_ids:
team_role = {
'$set': {
'team_id': team_id,
'role_id': role_id,
'created_at': time.time()
}
}
where = {
'team_id': team_id,
'role_id': role_id,
}
db.collection('team_roles').update_one(where, team_role, upsert=True)
Team().add_member(team_id, members, owner_id=login_user.get('user_id'))
return jsonify({
'message': 'ok',
'code': 0,
})
def add_user():
payload = request.get_json()
if not payload:
return jsonify({
'message': 'invalid params',
'code': 104000
}), 400
current_user = login_user.get('username')
is_admin = login_user.get('is_admin')
username = payload.get('username')
nickname = payload.get('nickname')
email = payload.get('email')
phone = payload.get('phone')
role_ids = payload.get('role_ids')
team_id = payload.get('team_id')
address = payload.get('address')
password = payload.get('password')
if not username or not email:
return jsonify({
'message': 'miss required params',
'code': 104001,
}), 400
if not is_admin:
if team_id:
team = Team.find_by_id(team_id)
if not team or current_user not in team.get('master'):
return jsonify({
'message': 'permission deny',
'code': 104031
}), 403
else:
return jsonify({
'message': 'permission deny',
'code': 104032,
}), 403
where = {
'$or': [
{'username': username},
{'email': email},
]
}
existed = User.find_one(where)
if existed:
return jsonify({
'message': 'username or email existed',
'code': 104030
}), 400
password = password or gen_password()
encrypt_pwd = generate_password_hash(password)
user_info = {
'username': username,
'nickname': nickname,
'password': encrypt_pwd,
'email': email,
'phone': phone,
'active': 0,
'address': address,
'created_at': time.time(),
'add_by': login_user.get('username'),
}
result = User.insert_one(user_info)
user_id = str(result.inserted_id)
if role_ids:
role_ids = role_ids if type(role_ids) == list else [role_ids]
roles = Role.find_by_ids(role_ids)
if roles:
for item in roles:
data = {
'role_id': str(item['_id']),
'user_id': user_id,
'add_by': login_user.get('username'),
'created_at': time.time(),
}
db.collection('user_roles').insert_one(data)
if team_id:
Team().add_member(team_id=team_id, members=[user_id], owner_id=login_user.get('user_id'))
notify = SMTP()
text = '''
<p>Dear user:</p>
<p>Your eclogue account is active~!</p>
<p>username: {}</p>
<p>password: {} </p>
'''
text = text.format(username, password)
notify.send(text, to=email, subject='', subtype='html')
return jsonify({
'message': 'ok',
'code': 0,
'data': password
})