def handle_put(self, request, user, *args, **kwargs):
"""Treat PUT requests to edit Group User.
URL: ugroup/<id_ugroup>/
"""
try:
self.log.info('Edit Group User')
# User permission
if not has_perm(user, AdminPermission.USER_ADMINISTRATION, AdminPermission.WRITE_OPERATION):
self.log.error(
u'User does not have permission to perform the operation.')
raise UserNotAuthorizedError(None)
id_ugroup = kwargs.get('id_ugroup')
# Load XML data
xml_map, attrs_map = loads(request.raw_post_data)
# XML data format
networkapi_map = xml_map.get('networkapi')
if networkapi_map is None:
return self.response_error(3, u'There is no value to the networkapi tag of XML request.')
ugroup_map = networkapi_map.get('user_group')
if ugroup_map is None:
return self.response_error(3, u'There is no value to the user_group tag of XML request.')
id_ugroup = kwargs.get('id_ugroup')
# Valid Group User ID
if not is_valid_int_greater_zero_param(id_ugroup):
self.log.error(
u'The id_ugroup parameter is not a valid value: %s.', id_ugroup)
raise InvalidValueError(None, 'id_ugroup', id_ugroup)
# Find Group User by ID to check if it exist
ugroup = UGrupo.get_by_pk(id_ugroup)
# Valid name
name = ugroup_map.get('nome')
if not is_valid_string_minsize(name, 3) or not is_valid_string_maxsize(name, 100) or not is_valid_text(name):
self.log.error(u'Parameter name is invalid. Value: %s', name)
raise InvalidValueError(None, 'name', name)
ugroup_existent = UGrupo.objects.filter(
nome__iexact=name).exclude(id=id_ugroup)
if len(ugroup_existent) > 0:
raise UGrupoNameDuplicatedError(
None, u'User group with name %s already exists' % name)
# Valid read
read = ugroup_map.get('leitura')
if not is_valid_yes_no_choice(read):
self.log.error(u'Parameter read is invalid. Value: %s', read)
raise InvalidValueError(None, 'read', read)
# Valid write
write = ugroup_map.get('escrita')
if not is_valid_yes_no_choice(write):
self.log.error(u'Parameter write is invalid. Value: %s', write)
raise InvalidValueError(None, 'write', write)
# Valid edit
edit = ugroup_map.get('edicao')
if not is_valid_yes_no_choice(edit):
self.log.error(u'Parameter edit is invalid. Value: %s', edit)
raise InvalidValueError(None, 'edit', edit)
# Valid remove
remove = ugroup_map.get('exclusao')
if not is_valid_yes_no_choice(remove):
self.log.error(
u'Parameter remove is invalid. Value: %s', remove)
raise InvalidValueError(None, 'remove', remove)
ugroup.nome = name
ugroup.leitura = read
ugroup.escrita = write
ugroup.edicao = edit
ugroup.exclusao = remove
with distributedlock(LOCK_GROUP_USER % id_ugroup):
try:
# save user group
ugroup.save()
except Exception, e:
self.log.error(u'Failed to save the GroupUser.')
raise GrupoError(e, u'Failed to save the GroupUser.')
return self.response(dumps_networkapi({'user_group': {'id': ugroup.id}}))
except InvalidValueError, e:
return self.response_error(269, e.param, e.value)
def handle_post(self, request, user, *args, **kwargs):
"""Treat POST request to add new user group.
URL: ugroup/
"""
try:
if not has_perm(user, AdminPermission.USER_ADMINISTRATION, AdminPermission.WRITE_OPERATION):
self.log.error(
u'User does not have permission to perform the operation.')
raise UserNotAuthorizedError(None)
xml_map, attrs_map = loads(request.raw_post_data)
self.log.debug('XML_MAP: %s', xml_map)
networkapi_map = xml_map.get('networkapi')
if networkapi_map is None:
return self.response_error(3, u'There is no networkapi tag in request XML.')
ugroup_map = networkapi_map.get('user_group')
if ugroup_map is None:
return self.response_error(3, u'There is no user_group tag in request XML.')
# Valid name
name = ugroup_map.get('nome')
if not is_valid_string_minsize(name, 3) or not is_valid_string_maxsize(name, 100) or not is_valid_text(name):
self.log.error(u'Parameter name is invalid. Value: %s', name)
raise InvalidValueError(None, 'name', name)
read = ugroup_map.get('leitura')
if not is_valid_yes_no_choice(read):
self.log.error(u'Parameter read is invalid. Value: %s', read)
raise InvalidValueError(None, 'read', read)
write = ugroup_map.get('escrita')
if not is_valid_yes_no_choice(write):
self.log.error(u'Parameter write is invalid. Value: %s', write)
raise InvalidValueError(None, 'write', write)
edit = ugroup_map.get('edicao')
if not is_valid_yes_no_choice(edit):
self.log.error(u'Parameter edit is invalid. Value: %s', edit)
raise InvalidValueError(None, 'edit', edit)
remove = ugroup_map.get('exclusao')
if not is_valid_yes_no_choice(remove):
self.log.error(
u'Parameter remove is invalid. Value: %s', remove)
raise InvalidValueError(None, 'remove', remove)
ugroup = UGrupo()
ugroup.nome = name
ugroup.leitura = read
ugroup.escrita = write
ugroup.edicao = edit
ugroup.exclusao = remove
try:
UGrupo.objects.get(nome__iexact=ugroup.nome)
raise UGrupoNameDuplicatedError(
None, u'User group with name %s already exists' % name)
except UGrupo.DoesNotExist:
pass
try:
# save user group
ugroup.save()
adm_perm = PermissaoAdministrativa()
if ASSOCIATE_PERMISSION_AUTOMATICALLY:
# Automatically associate 'authenticate' permission for
# this group
adm_perm.permission = Permission.get_by_pk(
ID_AUTHENTICATE_PERMISSION)
adm_perm.ugrupo = ugroup
adm_perm.leitura = False
adm_perm.escrita = True
adm_perm.save()
except Exception, e:
self.log.error(u'Failed to save the GroupUser.')
raise GrupoError(e, u'Failed to save the GroupUser.')
return self.response(dumps_networkapi({'user_group': {'id': ugroup.id}}))
def handle_put(self, request, user, *args, **kwargs):
"""Treat PUT requests to edit Group User.
URL: ugroup/<id_ugroup>/
"""
try:
self.log.info('Edit Group User')
# User permission
if not has_perm(user, AdminPermission.USER_ADMINISTRATION,
AdminPermission.WRITE_OPERATION):
self.log.error(
u'User does not have permission to perform the operation.')
raise UserNotAuthorizedError(None)
id_ugroup = kwargs.get('id_ugroup')
# Load XML data
xml_map, attrs_map = loads(request.raw_post_data)
# XML data format
networkapi_map = xml_map.get('networkapi')
if networkapi_map is None:
return self.response_error(
3,
u'There is no value to the networkapi tag of XML request.')
ugroup_map = networkapi_map.get('user_group')
if ugroup_map is None:
return self.response_error(
3,
u'There is no value to the user_group tag of XML request.')
id_ugroup = kwargs.get('id_ugroup')
# Valid Group User ID
if not is_valid_int_greater_zero_param(id_ugroup):
self.log.error(
u'The id_ugroup parameter is not a valid value: %s.',
id_ugroup)
raise InvalidValueError(None, 'id_ugroup', id_ugroup)
# Find Group User by ID to check if it exist
ugroup = UGrupo.get_by_pk(id_ugroup)
# Valid name
name = ugroup_map.get('nome')
if not is_valid_string_minsize(
name, 3) or not is_valid_string_maxsize(
name, 100) or not is_valid_text(name):
self.log.error(u'Parameter name is invalid. Value: %s', name)
raise InvalidValueError(None, 'name', name)
ugroup_existent = UGrupo.objects.filter(nome__iexact=name).exclude(
id=id_ugroup)
if len(ugroup_existent) > 0:
raise UGrupoNameDuplicatedError(
None, u'User group with name %s already exists' % name)
# Valid read
read = ugroup_map.get('leitura')
if not is_valid_yes_no_choice(read):
self.log.error(u'Parameter read is invalid. Value: %s', read)
raise InvalidValueError(None, 'read', read)
# Valid write
write = ugroup_map.get('escrita')
if not is_valid_yes_no_choice(write):
self.log.error(u'Parameter write is invalid. Value: %s', write)
raise InvalidValueError(None, 'write', write)
# Valid edit
edit = ugroup_map.get('edicao')
if not is_valid_yes_no_choice(edit):
self.log.error(u'Parameter edit is invalid. Value: %s', edit)
raise InvalidValueError(None, 'edit', edit)
# Valid remove
remove = ugroup_map.get('exclusao')
if not is_valid_yes_no_choice(remove):
self.log.error(u'Parameter remove is invalid. Value: %s',
remove)
raise InvalidValueError(None, 'remove', remove)
ugroup.nome = name
ugroup.leitura = read
ugroup.escrita = write
ugroup.edicao = edit
ugroup.exclusao = remove
with distributedlock(LOCK_GROUP_USER % id_ugroup):
try:
# save user group
ugroup.save()
except Exception, e:
self.log.error(u'Failed to save the GroupUser.')
raise GrupoError(e, u'Failed to save the GroupUser.')
return self.response(
dumps_networkapi({'user_group': {
'id': ugroup.id
}}))
except InvalidValueError, e:
return self.response_error(269, e.param, e.value)
