def get(self, cr_id):
"""
Get dataset from metax and strip it from having sensitive information
:param cr_id: id to use to fetch the record from metax
:return:
"""
is_authd = authentication.is_authenticated()
cr = cr_service.get_catalog_record(cr_id, True, True)
if not cr:
abort(400, message="Unable to get catalog record from Metax")
# Sort data items
sort_array_of_obj_by_key(
cr.get('research_dataset', {}).get('remote_resources', []),
'title')
sort_array_of_obj_by_key(
cr.get('research_dataset', {}).get('directories', []), 'details',
'directory_name')
sort_array_of_obj_by_key(
cr.get('research_dataset', {}).get('files', []), 'details',
'file_name')
ret_obj = {
'catalog_record':
authorization.strip_information_from_catalog_record(cr, is_authd),
'email_info':
get_email_info(cr)
}
if cr_service.is_rems_catalog_record(cr):
ret_obj[
'has_permit'] = authorization.user_has_rems_permission_for_catalog_record(
cr_id, authentication.get_user_id(), is_authd)
return ret_obj, 200
def get(self, cr_id):
"""
Get files and directory objects for frontend.
:param cr_id:
:return:
"""
args = self.parser.parse_args()
dir_id = args['dir_id']
file_fields = args.get('file_fields', None)
directory_fields = args.get('directory_fields', None)
cr = cr_service.get_catalog_record(cr_id, False, False)
dir_api_obj = cr_service.get_directory_data_for_catalog_record(
cr_id, dir_id, file_fields, directory_fields)
if cr and dir_api_obj:
# Sort the items
sort_array_of_obj_by_key(dir_api_obj.get('directories', []),
'directory_name')
sort_array_of_obj_by_key(dir_api_obj.get('files', []), 'file_name')
# Limit the amount of items to be sent to the frontend
if 'directories' in dir_api_obj:
dir_api_obj['directories'] = slice_array_on_limit(
dir_api_obj['directories'], TOTAL_ITEM_LIMIT)
if 'files' in dir_api_obj:
dir_api_obj['files'] = slice_array_on_limit(
dir_api_obj['files'], TOTAL_ITEM_LIMIT)
# Strip the items of sensitive data
authorization.strip_dir_api_object(
dir_api_obj, authentication.is_authenticated(), cr)
return dir_api_obj, 200
return '', 404
def get_user_rems_permission_for_catalog_record(cr_id, user_id):
"""
Get info about whether user is entitled for a catalog record.
:param cr_id:
:param user_id:
:return:
"""
if not user_id or not cr_id:
return False
cr = get_catalog_record(cr_id, False, False)
if cr and is_rems_catalog_record(cr):
pref_id = get_catalog_record_preferred_identifier(cr)
if not pref_id:
return False
return _rems_api.get_rems_permission(user_id, pref_id)
return False
def get(self):
"""
Download data REST endpoint for frontend.
:return:
"""
# Check request query parameters are present
args = self.parser.parse_args()
cr_id = args['cr_id']
cr = cr_service.get_catalog_record(cr_id, False, False)
if not cr:
abort(400, message="Unable to get catalog record")
if authorization.user_is_allowed_to_download_from_ida(
cr, authentication.is_authenticated()):
file_ids = args['file_id'] or []
dir_ids = args['dir_id'] or []
return download_data(cr_id, file_ids, dir_ids)
else:
abort(403, message="Not authorized")
def post(self, cr_id):
"""
Send email.
This route expects a json with three key-values: user_email, user_subject and user_body.
Having these three this method will send an email message to recipients
defined in the catalog record in question
:param cr_id: id to use to fetch the record from metax
:return: 200 if success
"""
# if not request.is_json or not request.json:
# abort(400, message="Request is not json")
# Check request query parameters are present
args = self.parser.parse_args()
# Extract user's email address to be used as reply-to address
user_email = args['user_email']
# Extract user's message subject to be used as part of the email body to be sent
user_subject = args['user_subject']
# Extract user's message body to be used as part of the email body to be sent
user_body = args['user_body']
# Extract recipient role
recipient_agent_role = args['agent_type']
# Validate incoming request values are all there and are valid
if not validate_send_message_request(user_email, user_body,
recipient_agent_role):
abort(400, message="Request parameters are not valid")
# Get the full catalog record from Metax
cr = cr_service.get_catalog_record(cr_id, False, False)
# Ensure dataset is not harvested
harvested = get_harvest_info(cr)
if harvested:
abort(
400,
message="Contact form is not available for harvested datasets")
# Get the chose email recipient
recipient = get_email_recipient_address(cr, recipient_agent_role)
if not recipient:
abort(500,
message="No recipient could be inferred from the dataset")
app_config = get_app_config(app.testing)
sender = app_config.get('MAIL_DEFAULT_SENDER',
'*****@*****.**')
subject = get_email_message_subject()
body = create_email_message_body(
cr_service.get_catalog_record_preferred_identifier(cr), user_email,
user_subject, user_body)
# Create the message
msg = Message(sender=sender,
reply_to=user_email,
recipients=[recipient],
subject=subject,
body=body)
# Send the message
with app.mail.record_messages() as outbox:
try:
app.mail.send(msg)
if len(outbox) != 1:
raise Exception
except Exception as e:
log.error(
"Unable to send email message".format(sender=[user_email]))
log.error(e)
abort(500, message="Sending email failed")
return '', 204