Esempio n. 1
0
def mark_notice_route(request, notice_id):
  """
  Mark notice as read or unread.
  Must be logged in as user, provide a valid ID, and own the notice.
  Return notice.
  """

  db_conn = request['db_conn']

  current_user = get_current_user(request)
  if not current_user:
    return abort(401, 'EWoueZr0TYSccUhdNISK3A')
  notice = get_notice(db_conn, {'id': notice_id})
  if not notice:
    return abort(404, 'xsNPOqJoRw-aUrFo0RhVoA')
  if notice['user_id'] != current_user['id']:
    return abort(403, 'xPkb7MYXRIOaI7HeV9U37A')
  if 'read' not in request['params']:
    errors = [{
      'name': 'read',
      'message': 'You must specify read or unread.',
      'ref': 'bvtS4G4jQnaLlVSLyUXjVg',
    }]
  elif request['params'].get('read') is True:
    notice, errors = mark_notice_as_read(db_conn, notice)
  elif request['params'].get('read') is False:
    notice, errors = mark_notice_as_unread(db_conn, notice)
  if errors:
    return 400, {
      'errors': errors,
      'ref': 'FeEtTWJJQv22dTpz8y5fZA',
    }
  return 200, {'notice': deliver_notice(notice, access='private')}
Esempio n. 2
0
def get_follows_route(request):
    """
  Get a list of the users follows.
  """

    db_conn = request['db_conn']
    current_user = get_current_user(request)
    user_id = request['params'].get('user_id')
    if user_id:
        user = get_user(db_conn, {'id': user_id})
        if not user:
            return abort(404, 'sYkDuhNmReOrKyR0xsBmHg')
        if (user != current_user
                and user['settings']['view_follows'] != 'public'):
            return abort(403, 'FnH15Y3MRma6bU2gXqzjQQ')
    else:
        user = current_user
        if not user:
            return abort(401, 'YMC5rhI1TOCgUQu6jJeoQg')
    params = dict(**request['params'])
    params['user_id'] = user['id']
    follows = list_follows_by_user(db_conn, params)
    return 200, {
        'follows':
        [deliver_follow(follow, access='private') for follow in follows]
    }
Esempio n. 3
0
def get_card_route(request, card_id):
    """
    Get a specific card given an ID. Show all relevant data, but
    not used for the learning interface.
    """

    card = get_card_by_kind(card_id)
    if not card:
        return abort(404)

    unit = Unit.get_latest_accepted(entity_id=card['unit_id'])
    if not unit:
        return abort(404)

    # TODO-2 SPLITUP create new endpoints for these instead
    topics = Topic.list_by_entity_id(entity_id=card_id)
    versions = Card.get_versions(entity_id=card_id)
    requires = Card.list_requires(entity_id=card_id)
    required_by = Card.list_required_by(entity_id=card_id)
    params = CardParameters.get(entity_id=card_id)

    return 200, {
        'card': card.deliver(access='view'),
        'card_parameters': params.get_values(),
        'unit': unit.deliver(),
        'topics': [topic.deliver() for topic in topics],
        'versions': [version.deliver() for version in versions],
        'requires': [require.deliver() for require in requires],
        'required_by': [require.deliver() for require in required_by],
    }
Esempio n. 4
0
def mark_notice_route(request, notice_id):
    """
    Mark notice as read or unread.
    Must be logged in as user, provide a valid ID, and own the notice.
    Return notice.
    """

    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)
    notice = get_notice({'id': notice_id}, db_conn)
    if not notice:
        return abort(404)
    if notice['user_id'] != current_user['id']:
        return abort(403)

    if 'read' not in request['params']:
        errors = [{
            'name': 'read',
            'message': 'You must specify read or unread.',
        }]
    elif request['params'].get('read') is True:
        notice, errors = mark_notice_as_read(notice, db_conn)
    elif request['params'].get('read') is False:
        notice, errors = mark_notice_as_unread(notice, db_conn)
    if len(errors):
        return 400, {
            'errors': errors,
            'ref': 'qR4CBtcfcYfWDTqK9JOXXLhO',
        }

    return 200, {'notice': deliver_notice(notice, access='private')}
Esempio n. 5
0
def remove_subject_route(request, user_id, subject_id):
  """
  Remove a subject from the learner's list of subjects.
  """

  db_conn = request['db_conn']
  current_user = get_current_user(request)
  if not current_user:
    return abort(401, 'DHlX2XTsTO-1Hhfr9GXkJw')
  if user_id != current_user['id']:
    return abort(403, '8yt2d8K1RNKidGIVU1CaOA')
  user_subjects = list_user_subjects(db_conn, user_id)
  if not user_subjects:
    return 404, {
      'errors': [{
        'name': 'user_id',
        'message': 'User does not have subjects.',
        'ref': 'nttevgwMRsOwiT_ul0SmHQ',
      }],
    }
  matches = [
    us
    for us in user_subjects
    if (convert_slug_to_uuid(us['subject_id']) ==
        convert_slug_to_uuid(subject_id))
  ]
  if not matches:
    return abort(404, 'AQV0c9qfSdO7Ql2IC8l0bw')
  errors = remove_user_subject(db_conn, user_id, subject_id)
  if errors:
    return 400, {
      'errors': errors,
      'ref': 'h1BKySSTT0SgH2OTTnSVlA'
    }
  return 200, {}
Esempio n. 6
0
def get_card_route(request, card_id):
    """
  Get a specific card given an ID. Show all relevant data, but
  not used for the learning interface.
  """

    db_conn = request['db_conn']
    card = get_latest_accepted_card(db_conn, card_id)
    if not card:
        return abort(404, 'fPebfwqfRNmOiSWqWISeaA')
    unit = get_latest_accepted_unit(db_conn, card['unit_id'])
    if not unit:
        return abort(404, 'IKSqfvHvRK6hbSAIOkQuLg')
    # TODO-2 SPLITUP create new endpoints for these instead
    requires = list_required_cards(db_conn, card_id)
    required_by = list_required_by_cards(db_conn, card_id)
    params = get_card_parameters(db_conn, {'entity_id': card_id})
    return 200, {
        'card': deliver_card(card, access='view'),
        'card_parameters':
        (get_card_parameters_values(params) if params else None),
        'unit': deliver_unit(unit),
        'requires': [deliver_card(require) for require in requires],
        'required_by': [deliver_card(require) for require in required_by],
    }
Esempio n. 7
0
def get_user_sets_route(request, user_id):
    """
    Get the list of sets the user has added.

    NEXT STATE
    GET Choose Set
        -> POST Choose Set
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    if user_id != current_user['id']:
        return abort(403)

    next_ = {
        'method':
        'POST',
        'path':
        '/s/users/{user_id}/sets/{set_id}'.format(user_id=current_user['id'],
                                                  set_id='{set_id}'),
    }
    current_user.set_learning_context(next=next_)

    uset = UserSets.get(user_id=user_id)
    if not uset:
        return 200, {'sets': [], 'next': next_}
    return 200, {
        'sets': [s.deliver() for s in uset.list_sets(**request['params'])],
        'next': next_,
    }
Esempio n. 8
0
def mark_notice_route(request, notice_id):
    """
    Mark notice as read or unread.
    Must be logged in as user, provide a valid ID, and own the notice.
    Return notice.
    """

    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)
    notice = get_notice({'id': notice_id}, db_conn)
    if not notice:
        return abort(404)
    if notice['user_id'] != current_user['id']:
        return abort(403)

    if 'read' not in request['params']:
        errors = [{
            'name': 'read',
            'message': 'You must specify read or unread.',
        }]
    elif request['params'].get('read') is True:
        notice, errors = mark_notice_as_read(notice, db_conn)
    elif request['params'].get('read') is False:
        notice, errors = mark_notice_as_unread(notice, db_conn)
    if len(errors):
        return 400, {
            'errors': errors,
            'ref': 'qR4CBtcfcYfWDTqK9JOXXLhO',
        }

    return 200, {'notice': deliver_notice(notice, access='private')}
Esempio n. 9
0
def learn_card_route(request, card_id):
    """
    Render the card's data, ready for learning.

    NEXT STATE
    GET Learn Card
        -> POST Respond Card
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    card = get_card_by_kind(card_id)
    if not card:
        return abort(404)

    # Make sure the current unit id matches the card
    context = current_user.get_learning_context()
    if context.get('unit', {}).get('entity_id') != card['unit_id']:
        return abort(400)

    next_ = {
        'method': 'POST',
        'path': '/s/cards/{card_id}/responses'
                .format(card_id=card['entity_id'])
    }
    current_user.set_learning_context(card=card.data, next=next_)

    return 200, {
        'card': card.deliver(access=''),
        'set': context.get('set'),
        'unit': context.get('unit'),
        'next': next_,
    }
Esempio n. 10
0
def update_topic_route(request, topic_id):
    """
    Update the topic.
    - Only the name can be changed.
    - Only by original author.
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    # ## STEP 1) Find existing topic instance ## #
    topic = Topic.get(id=topic_id)
    if not topic:
        return abort(404)
    if topic['user_id'] != current_user['id']:
        return abort(403)

    # ## STEP 2) Limit the scope of changes ## #
    topic_data = request['params']['topic']
    topic_data = pick(topic_data, ('name',))

    # ## STEP 3) Validate and save topic instance ## #
    topic, errors = topic.update(topic_data)
    if errors:
        errors = prefix_error_names('topic.', errors)
        return 400, {
            'errors': errors,
            'ref': 'k7ItNedf0I0vXfiIUcDtvHgQ',
        }

    # ## STEP 4) Return response ## #
    return 200, {'topic': topic.deliver()}
Esempio n. 11
0
def remove_subject_route(request, user_id, subject_id):
    """
    Remove a subject from the learner's list of subjects.
    """

    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    if user_id != current_user['id']:
        return abort(403)

    user_subject = get_user_subjects(user_id, db_conn)
    if not user_subject:
        return 404, {
            'errors': [{
                'message': 'User does not have subjects.'
            }],
            'ref': '8huZbvEAYOP8LcZb2sXbqNOC'
        }

    if subject_id not in user_subject['subject_ids']:
        return abort(404)

    user_subject, errors = remove_user_subjects(user_id, subject_id, db_conn)

    if errors:
        return 400, {'errors': errors, 'ref': 'qIfll1e7dbP9V9jmC8FkCwsa'}

    return 200, {'subjects': user_subject['subject_ids']}
Esempio n. 12
0
def get_card_route(request, card_id):
    """
    Get a specific card given an ID. Show all relevant data, but
    not used for the learning interface.
    """

    card = get_card_by_kind(card_id)
    if not card:
        return abort(404)

    unit = Unit.get_latest_accepted(entity_id=card['unit_id'])
    if not unit:
        return abort(404)

    # TODO-2 SPLITUP create new endpoints for these instead
    topics = Topic.list_by_entity_id(entity_id=card_id)
    versions = Card.get_versions(entity_id=card_id)
    requires = Card.list_requires(entity_id=card_id)
    required_by = Card.list_required_by(entity_id=card_id)
    params = CardParameters.get(entity_id=card_id)

    return 200, {
        'card': card.deliver(access='view'),
        'card_parameters': params.get_values(),
        'unit': unit.deliver(),
        'topics': [topic.deliver() for topic in topics],
        'versions': [version.deliver() for version in versions],
        'requires': [require.deliver() for require in requires],
        'required_by': [require.deliver() for require in required_by],
    }
Esempio n. 13
0
def get_card_route(request, card_id):
    """
    Get a specific card given an ID. Show all relevant data, but
    not used for the learning interface.
    """

    db_conn = request['db_conn']

    card = get_card_by_kind(db_conn, card_id)
    if not card:
        return abort(404)

    unit = Unit.get_latest_accepted(db_conn, entity_id=card['unit_id'])
    if not unit:
        return abort(404)

    # TODO-2 SPLITUP create new endpoints for these instead
    topics = list_topics_by_entity_id(card_id, {}, db_conn)
    versions = Card.get_versions(db_conn, entity_id=card_id)
    requires = Card.list_requires(db_conn, entity_id=card_id)
    required_by = Card.list_required_by(db_conn, entity_id=card_id)
    params = get_card_parameters({'entity_id': card_id}, db_conn)

    return 200, {
        'card': card.deliver(access='view'),
        'card_parameters':
        (get_card_parameters_values(params) if params else None),
        'unit': unit.deliver(),
        'topics': [deliver_topic(topic) for topic in topics],
        'versions': [version.deliver() for version in versions],
        'requires': [require.deliver() for require in requires],
        'required_by': [require.deliver() for require in required_by],
    }
Esempio n. 14
0
def remove_set_route(request, user_id, set_id):
    """
    Remove a set from the learner's list of sets.
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    if user_id != current_user['id']:
        return abort(403)

    uset = UserSets.get(user_id=user_id)
    if not uset:
        return 404, {
            'errors': [{
                'message': 'User does not have sets.'
            }],
            'ref': '8huZbvEAYOP8LcZb2sXbqNOC'
        }

    if set_id not in uset['set_ids']:
        return abort(404)

    uset['set_ids'].remove(set_id)
    usets, errors = uset.save()

    if errors:
        return 400, {'errors': errors, 'ref': 'qIfll1e7dbP9V9jmC8FkCwsa'}

    return 200, {'sets': uset['set_ids']}
Esempio n. 15
0
def get_user_sets_route(request, user_id):
    """
    Get the list of sets the user has added.

    NEXT STATE
    GET Choose Set
        -> POST Choose Set
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    if user_id != current_user['id']:
        return abort(403)

    next_ = {
        'method': 'POST',
        'path': '/s/users/{user_id}/sets/{set_id}'
                .format(user_id=current_user['id'],
                        set_id='{set_id}'),
    }
    current_user.set_learning_context(next=next_)

    uset = UserSets.get(user_id=user_id)
    if not uset:
        return 200, {'sets': [], 'next': next_}
    return 200, {
        'sets': [s.deliver() for s in uset.list_sets(**request['params'])],
        'next': next_,
    }
Esempio n. 16
0
def learn_card_route(request, card_id):
    """
    Render the card's data, ready for learning.

    NEXT STATE
    GET Learn Card
        -> POST Respond Card
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    card = get_card_by_kind(card_id)
    if not card:
        return abort(404)

    # Make sure the current unit id matches the card
    context = current_user.get_learning_context()
    if context.get('unit', {}).get('entity_id') != card['unit_id']:
        return abort(400)

    next_ = {
        'method': 'POST',
        'path':
        '/s/cards/{card_id}/responses'.format(card_id=card['entity_id'])
    }
    current_user.set_learning_context(card=card.data, next=next_)

    return 200, {
        'card': card.deliver(access=''),
        'set': context.get('set'),
        'unit': context.get('unit'),
        'next': next_,
    }
Esempio n. 17
0
def remove_set_route(request, user_id, set_id):
    """
    Remove a set from the learner's list of sets.
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    if user_id != current_user['id']:
        return abort(403)

    uset = UserSets.get(user_id=user_id)
    if not uset:
        return 404, {
            'errors': [{'message': 'User does not have sets.'}],
            'ref': '8huZbvEAYOP8LcZb2sXbqNOC'
        }

    if set_id not in uset['set_ids']:
        return abort(404)

    uset['set_ids'].remove(set_id)
    usets, errors = uset.save()

    if errors:
        return 400, {
            'errors': errors,
            'ref': 'qIfll1e7dbP9V9jmC8FkCwsa'
        }

    return 200, {'sets': uset['set_ids']}
Esempio n. 18
0
def update_topic_route(request, topic_id):
    """
  Update the topic.
  - Only the name can be changed.
  - Only by original author.
  """

    db_conn = request['db_conn']
    current_user = get_current_user(request)
    if not current_user:
        return abort(401, 'ZUiN62FFR3OcBM6s8UJSmg')

    # ## STEP 1) Find existing topic instance ## #
    topic = get_topic(db_conn, {'id': topic_id})
    if not topic:
        return abort(404, 'MXzNqBU6SN28tNtRXW9rNw')
    if topic['user_id'] != current_user['id']:
        return abort(403, 'MZZbJNt3RK-4kVMo2rROWA')

    # ## STEP 2) Validate and save topic instance ## #
    topic_data = request['params']
    topic, errors = update_topic(db_conn, topic, topic_data)
    if errors:
        return 400, {
            'errors': errors,
            'ref': 'zu7VABcJT5qCzF7BHNCH5w',
        }

    # ## STEP 3) Return response ## #
    return 200, {'topic': deliver_topic(topic)}
Esempio n. 19
0
def update_post_route(request, topic_id, post_id):
    """
    Update an existing post. Must be one's own post.

    For post:
    - Only the body field may be changed.

    For proposals:
    - Only the name, body, and status fields can be changed.
    - The status can only be changed to declined, and only when
      the current status is pending or blocked.

    For votes:
    - The only fields that can be updated are body and response.
    """

    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    # ## STEP 1) Find existing post instance ## #
    post_ = get_post_facade(db_conn, post_id)
    if not post_:
        return abort(404)
    if post_['user_id'] != current_user['id']:
        return abort(403)
    post_kind = post_['kind']

    # ## STEP 2) Limit the scope of changes ## #
    post_data = request['params']['post']
    if post_kind is 'post':
        post_data = pick(post_data, ('body',))
    elif post_kind is 'proposal':
        post_data = pick(post_data, ('name', 'body', 'status',))
        if (post_data.get('status') != 'declined' or
                post_data.get('status') not in ('pending', 'blocked',)):
            del post_data['status']
    elif post_kind is 'vote':
        post_data = pick(post_data, ('body', 'response',))

    # ## STEP 3) Validate and save post instance ## #
    post_, errors = post_.update(db_conn, post_data)
    if errors:
        errors = prefix_error_names('post.', errors)
        return 400, {
            'errors': errors,
            'ref': 'E4LFwRv2WEJZks7use7TCpww'
        }

    # ## STEP 4) Make updates based on proposal / vote status ## #
    if post_kind == 'proposal':
        update_entity_status(db_conn, post_)
    if post_kind == 'vote':
        proposal = Proposal.get(db_conn, id=post_['replies_to_id'])
        update_entity_status(db_conn, proposal)

    # ## STEP 5) Return response ## #
    return 200, {'post': post_.deliver()}
Esempio n. 20
0
def update_topic_route(request, topic_id):
    """
    Update the topic.
    - Only the name can be changed.
    - Only by original author.
    """

    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    # ## STEP 1) Find existing topic instance ## #
    topic = get_topic({'id': topic_id}, db_conn)
    if not topic:
        return abort(404)
    if topic['user_id'] != current_user['id']:
        return abort(403)

    # ## STEP 2) Limit the scope of changes ## #
    topic_data = request['params']['topic']
    topic_data = pick(topic_data, ('name', ))

    # ## STEP 3) Validate and save topic instance ## #
    topic, errors = update_topic(topic, topic_data, db_conn)
    if errors:
        errors = prefix_error_names('topic.', errors)
        return 400, {
            'errors': errors,
            'ref': 'k7ItNedf0I0vXfiIUcDtvHgQ',
        }

    # ## STEP 4) Return response ## #
    return 200, {'topic': deliver_topic(topic)}
Esempio n. 21
0
def choose_unit_route(request, subject_id, unit_id):
    """
  Updates the learner's information based on the unit they have chosen.

  NEXT STATE
  POST Chosen Unit
    -> GET Learn Card
  """

    # TODO-3 simplify this method. should it be broken up or moved to model?
    db_conn = request['db_conn']
    current_user = get_current_user(request)
    if not current_user:
        return abort(401, 'NcrRkqIlSW-BkcWLBkwORQ')
    unit = get_latest_accepted_unit(db_conn, unit_id)
    if not unit:
        return abort(404, 'PIti_qwAQ7WXwQwNZertxw')
    # If the unit isn't in the subject...
    context = get_learning_context(current_user)
    subject_ids = [
        convert_uuid_to_slug(subject['entity_id'])
        for subject in list_subjects_by_unit_recursive(db_conn, unit_id)
    ]
    context_subject_id = context.get('subject', {}).get('entity_id')
    if context_subject_id not in subject_ids:
        return 400, {
            'errors': [{
                'message': 'Unit not in subject.',
                'ref': 'r32fH0eCRZCivJoh-hKwZQ',
            }]
        }
    # Or, the unit doesn't need to be learned...
    status = judge(db_conn, unit, current_user)
    if status == "done":
        return 400, {
            'errors': [{
                'message': 'Unit not needed.',
                'ref': 'YTU27E63Rfiy3Rqmqd6Bew',
            }]
        }
    # Choose a card for the learner to learn
    card = choose_card(db_conn, current_user, unit)
    if card:
        next_ = {
            'method':
            'GET',
            'path':
            '/s/cards/{card_id}/learn'.format(
                card_id=convert_uuid_to_slug(card['entity_id'])),
        }
    else:
        next_ = {}
    set_learning_context(current_user,
                         unit=unit,
                         card=card if card else None,
                         next=next_)
    return 200, {'next': next_}
Esempio n. 22
0
def choose_unit_route(request, set_id, unit_id):
    """
    Updates the learner's information based on the unit they have chosen.

    NEXT STATE
    POST Chosen Unit
        -> GET Learn Card
    """

    # TODO-3 simplify this method. should it be broken up or moved to model?
    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    unit = Unit.get_latest_accepted(db_conn, unit_id)
    if not unit:
        return abort(404)

    # If the unit isn't in the set...
    context = get_learning_context(current_user)
    set_ids = [set_['entity_id']
               for set_ in Set.list_by_unit_id(db_conn, unit_id)]
    if context.get('set', {}).get('entity_id') not in set_ids:
        return abort(400)

    status = judge(db_conn, unit, current_user)
    # Or, the unit doesn't need to be learned...
    if status == "done":
        return abort(400)

    # Choose a card for the learner to learn
    card = choose_card(db_conn, current_user, unit)

    if card:
        next_ = {
            'method': 'GET',
            'path': '/s/cards/{card_id}/learn'
                    .format(card_id=card['entity_id']),
        }
    else:
        next_ = {}

    set_learning_context(
        current_user,
        unit=unit.data,
        card=card.data if card else None,
        next=next_
    )

    return 200, {'next': next_}
Esempio n. 23
0
def choose_unit_route(request, subject_id, unit_id):
    """
    Updates the learner's information based on the unit they have chosen.

    NEXT STATE
    POST Chosen Unit
        -> GET Learn Card
    """

    # TODO-3 simplify this method. should it be broken up or moved to model?
    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    unit = Unit.get_latest_accepted(db_conn, unit_id)
    if not unit:
        return abort(404)

    # If the unit isn't in the subject...
    context = get_learning_context(current_user)
    subject_ids = [
        subject['entity_id']
        for subject in Subject.list_by_unit_id(db_conn, unit_id)
    ]
    if context.get('subject', {}).get('entity_id') not in subject_ids:
        return abort(400)

    status = judge(db_conn, unit, current_user)
    # Or, the unit doesn't need to be learned...
    if status == "done":
        return abort(400)

    # Choose a card for the learner to learn
    card = choose_card(db_conn, current_user, unit)

    if card:
        next_ = {
            'method': 'GET',
            'path':
            '/s/cards/{card_id}/learn'.format(card_id=card['entity_id']),
        }
    else:
        next_ = {}

    set_learning_context(current_user,
                         unit=unit.data,
                         card=card.data if card else None,
                         next=next_)

    return 200, {'next': next_}
Esempio n. 24
0
def list_units_route(request):
    """
  Return a collection of units by `entity_id`.
  """

    db_conn = request['db_conn']
    entity_ids = request['params'].get('entity_ids')
    if not entity_ids:
        return abort(404, 'Jxs1KZP-TpilXZ-7f-AYvw')
    entity_ids = entity_ids.split(',')
    units = list_latest_accepted_units(db_conn, entity_ids)
    if not units:
        return abort(404, 'qR6uk5uZQimx-5mutK5t2g')
    return 200, {'units': [deliver_unit(unit, 'view') for unit in units]}
Esempio n. 25
0
def create_password_route(request, user_id):
    """
    Update a user's password if the token is valid.
    """

    user = User.get(id=user_id)
    if not user:
        return abort(404)
    valid = user.is_valid_token(request['params'].get('token'))
    if not valid:
        return abort(403)
    user['password'] = request['params'].get('password')
    user.save()
    return _log_in(user)
Esempio n. 26
0
def create_password_route(request, user_id):
    """
    Update a user's password if the token is valid.
    """

    user = User.get(id=user_id)
    if not user:
        return abort(404)
    valid = user.is_valid_token(request['params'].get('token'))
    if not valid:
        return abort(403)
    user['password'] = request['params'].get('password')
    user.save()
    return _log_in(user)
Esempio n. 27
0
def list_cards_route(request):
    """
  Return a collection of cards by `entity_id`.
  """

    db_conn = request['db_conn']
    entity_ids = request['params'].get('entity_ids')
    if not entity_ids:
        return abort(404, 'ESKDY5E7QA6tIpAv9i6WMw')
    entity_ids = entity_ids.split(',')
    cards = list_latest_accepted_cards(db_conn, entity_ids)
    if not cards:
        return abort(404, 's0uGKuNDSJK00pJs-x1AAQ')
    return 200, {'cards': [deliver_card(card, 'view') for card in cards]}
Esempio n. 28
0
def create_topic_route(request):
    """

    """

    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    user_id = current_user['id']

    if user_id != "NNKkHsjE3pEOW0wsPaQJm9MD":
        return abort(403)

    data = request['params']
    if not data:
        return abort(404)

    for key, unit in data.get('units').items():
        unit_entity_id, unit_version_id = inject_unit(unit, db_conn)
        topic_id = inject_topic('unit', unit, unit_entity_id, user_id, db_conn)
        proposal_id = inject_proposal('unit', unit, user_id, topic_id,
                                      unit_version_id, db_conn)
        inject_votes(topic_id, proposal_id, db_conn)
        update_status('unit', unit_version_id, db_conn)

        for card in unit.get('video', []):
            kind = 'video'
            entity_id, version_id = inject_video_card(unit_entity_id, card,
                                                      db_conn)
            topic_id = inject_topic(kind, card, entity_id, user_id, db_conn)
            proposal_id = inject_proposal(kind, card, user_id, topic_id,
                                          version_id, db_conn)
            inject_votes(topic_id, proposal_id, db_conn)
            update_status('card', version_id, db_conn)

        for card in unit.get('choice', []):
            kind = 'choice'
            entity_id, version_id = inject_choice_card(unit_entity_id, card,
                                                       db_conn)
            topic_id = inject_topic(kind, card, entity_id, user_id, db_conn)
            proposal_id = inject_proposal(kind, card, user_id, topic_id,
                                          version_id, db_conn)
            inject_votes(topic_id, proposal_id, db_conn)
            update_status('card', version_id, db_conn)

    return 200, 'OK'
Esempio n. 29
0
def get_unit_route(request, unit_id):
    """
    Get a specific unit given an ID.
    """

    db_conn = request['db_conn']

    unit = Unit.get_latest_accepted(db_conn, unit_id)
    if not unit:
        return abort(404)

    # TODO-2 SPLITUP create new endpoints for these instead
    topics = list_topics_by_entity_id(unit_id, {}, db_conn)
    versions = Unit.get_versions(db_conn, unit_id)
    requires = Unit.list_requires(db_conn, unit_id)
    required_by = Unit.list_required_by(db_conn, unit_id)
    sets = Set.list_by_unit_id(db_conn, unit_id)

    return 200, {
        'unit': unit.deliver(),
        # 'unit_parameters': unit.fetch_parameters(),
        'topics': [deliver_topic(topic) for topic in topics],
        'versions': [version.deliver() for version in versions],
        'requires': [require.deliver() for require in requires],
        'required_by': [require.deliver() for require in required_by],
        'belongs_to': [set_.deliver() for set_ in sets],
    }
Esempio n. 30
0
def list_subjects_route(request):
    """
  Return a collection of subjects by `entity_id`.
  """

    db_conn = request['db_conn']
    entity_ids = request['params'].get('entity_ids')
    if not entity_ids:
        return abort(404, 'COhZEG0GTW6L2bPh6AYsfw')
    entity_ids = entity_ids.split(',')
    subjects = list_latest_accepted_subjects(db_conn, entity_ids)
    if not subjects:
        return abort(404, 'ZlLFtBwdS-Sj49ASUoGPZw')
    return 200, {
        'subjects': [deliver_subject(subject, 'view') for subject in subjects]
    }
Esempio n. 31
0
def get_unit_route(request, unit_id):
    """
    Get a specific unit given an ID.
    """

    db_conn = request["db_conn"]

    unit = Unit.get_latest_accepted(db_conn, unit_id)
    if not unit:
        return abort(404)

    # TODO-2 SPLITUP create new endpoints for these instead
    topics = Topic.list_by_entity_id(db_conn, unit_id)
    versions = Unit.get_versions(db_conn, unit_id)
    requires = Unit.list_requires(db_conn, unit_id)
    required_by = Unit.list_required_by(db_conn, unit_id)
    sets = Set.list_by_unit_id(db_conn, unit_id)

    return (
        200,
        {
            "unit": unit.deliver(),
            # 'unit_parameters': unit.fetch_parameters(),
            "topics": [topic.deliver() for topic in topics],
            "versions": [version.deliver() for version in versions],
            "requires": [require.deliver() for require in requires],
            "required_by": [require.deliver() for require in required_by],
            "belongs_to": [set_.deliver() for set_ in sets],
        },
    )
Esempio n. 32
0
def follow_route(request):
    """
    Follow a card, unit, or set.
    """

    # TODO-3 simplify this method. does some of this belong in the model?

    db_conn = request["db_conn"]
    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    follow_data = dict(**request["params"])
    follow_data["user_id"] = current_user["id"]

    follow = Follow(follow_data)
    errors = follow.validate(db_conn)
    if errors:
        return 400, {"errors": errors, "ref": "4Qn9oWVWiGKvXSONQKHSy1T6"}

    follow, errors = follow.save(db_conn)
    if errors:
        return 400, {"errors": errors, "ref": "gKU6wgTItxpKyDs0eAlonCmi"}

    return 200, {"follow": follow.deliver(access="private")}
Esempio n. 33
0
def get_unit_route(request, unit_id):
    """
    Get a specific unit given an ID.
    """

    unit = Unit.get_latest_accepted(unit_id)
    if not unit:
        return abort(404)

    # TODO-2 SPLITUP create new endpoints for these instead
    topics = Topic.list_by_entity_id(unit_id)
    versions = Unit.get_versions(unit_id)
    requires = Unit.list_requires(unit_id)
    required_by = Unit.list_required_by(unit_id)
    sets = Set.list_by_unit_id(unit_id)

    return 200, {
        'unit': unit.deliver(),
        # 'unit_parameters': unit.fetch_parameters(),
        'topics': [topic.deliver() for topic in topics],
        'versions': [version.deliver() for version in versions],
        'requires': [require.deliver() for require in requires],
        'required_by': [require.deliver() for require in required_by],
        'belongs_to': [set_.deliver() for set_ in sets],
    }
Esempio n. 34
0
def create_password_route(request, user_id):
    """
    Update a user's password if the token is valid.
    """

    db_conn = request['db_conn']
    user = get_user({'id': user_id}, db_conn)
    if not user:
        return abort(404)
    token = request['params'].get('token')
    valid = is_valid_token(user, token)
    if not valid:
        return abort(403)
    given_password = request['params'].get('password')
    update_user_password(user, {'password': given_password}, db_conn)
    return _log_in(user)
Esempio n. 35
0
def next_route(request):
    """
  Tell the learner where to go next.
  TODO-3 should we move all `next` data from individual endpoints
       to this one, and have the UI call this endpoint each time
       to get the next state?
  """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)
    context = get_learning_context(current_user)
    # If 'next' action, return that,
    # else 'next' is GET Choose Subject
    if context.get('next'):
        return 200, {'next': context['next']}
    return 200, {
        'next': {
            'method':
            'GET',
            'path':
            '/s/users/{user_id}/subjects'.format(
                user_id=convert_uuid_to_slug(current_user['id'])),
        }
    }
Esempio n. 36
0
def get_follows_route(request):
    """
    Get a list of the users follows.
    """

    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    params = dict(**request['params'])
    params['user_id'] = current_user['id']

    follows = list_follows(params, db_conn)

    output = {
        'follows':
        [deliver_follow(follow, access='private') for follow in follows]
    }

    # TODO-3 SPLITUP should this be a different endpoint?
    if 'entities' in request['params']:
        entities = flush_entities(db_conn,
                                  [follow['entity'] for follow in follows])
        output['entities'] = [
            entity.deliver() if entity else None for entity in entities
        ]

    return 200, output
Esempio n. 37
0
def next_route(request):
    """
    Tell the learner where to go next.
    TODO-3 should we move all `next` data from individual endpoints
           to this one, and have the UI call this endpoint each time
           to get the next state?
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    context = current_user.get_learning_context()

    # If 'next' action, return that,
    # else 'next' is GET Choose Set
    if context.get('next'):
        return 200, {
            'next': context['next']
        }

    return 200, {
        'next': {
            'method': 'GET',
            'path': '/s/users/{user_id}/sets'
                    .format(user_id=current_user['id']),
        }
    }
Esempio n. 38
0
def get_user_route(request, user_id):
    """
    Get the user by their ID.
    """

    db_conn = request["db_conn"]
    user = get_user({"id": user_id}, db_conn)
    current_user = get_current_user(request)
    # Posts if in request params
    # Sets if in request params and allowed
    # Follows if in request params and allowed
    if not user:
        return abort(404)

    data = {}
    data["user"] = deliver_user(user, access="private" if current_user and user["id"] == current_user["id"] else None)

    # TODO-2 SPLITUP create new endpoints for these instead
    if "posts" in request["params"]:
        data["posts"] = [post.deliver() for post in get_posts_facade(db_conn, user_id=user["id"])]
    if "sets" in request["params"] and user["settings"]["view_sets"] == "public":
        u_sets = UserSets.get(db_conn, user_id=user["id"])
        data["sets"] = [set_.deliver() for set_ in u_sets.list_sets(db_conn)]
    if "follows" in request["params"] and user["settings"]["view_follows"] == "public":
        data["follows"] = [follow.deliver() for follow in Follow.list(db_conn, user_id=user["id"])]
    if "avatar" in request["params"]:
        size = int(request["params"]["avatar"])
        data["avatar"] = get_avatar(user["email"], size if size else None)

    return 200, data
Esempio n. 39
0
def create_password_route(request, user_id):
  """
  Update a user's password if the token is valid.
  """

  db_conn = request['db_conn']
  user = get_user(db_conn, {'id': user_id})
  if not user:
    return abort(404, 'FstipA94SDa0qZ3IwRtcMQ')
  token = request['params'].get('token')
  valid = is_valid_token(user, token)
  if not valid:
    return abort(403, 'qe27rSkpQbi49-pbqEl7Kw')
  given_password = request['params'].get('password')
  update_user_password(db_conn, user, {'password': given_password})
  return _log_in(user)
Esempio n. 40
0
def create_password_route(request, user_id):
    """
    Update a user's password if the token is valid.
    """

    db_conn = request["db_conn"]
    user = get_user({"id": user_id}, db_conn)
    if not user:
        return abort(404)
    token = request["params"].get("token")
    valid = is_valid_token(user, token)
    if not valid:
        return abort(403)
    given_password = request["params"].get("password")
    update_user_password(user, {"password": given_password}, db_conn)
    return _log_in(user)
Esempio n. 41
0
def update_user_route(request, user_id):
    """
    Update the user. Must be the current user.
    """

    db_conn = request["db_conn"]
    user = get_user({"id": user_id}, db_conn)
    current_user = get_current_user(request)
    if not user:
        return abort(404)
    if not user["id"] == current_user["id"]:
        return abort(401)
    user, errors = update_user(user, request["params"], db_conn)
    if len(errors):
        return 400, {"errors": errors, "ref": "AS7LCAWiOOyeEbNOrbsegVY9"}
    return 200, {"user": deliver_user(user, access="private")}
Esempio n. 42
0
def get_recommended_sets(request):
    db_conn = request['db_conn']
    sets = Set.get_all(db_conn)
    if not sets:
        return abort(404)
    return 200, {
        'sets': [set_.deliver() for set_ in sets]
    }
Esempio n. 43
0
def get_recommended_subjects_route(request):
    db_conn = request['db_conn']
    subjects = get_recommended_subjects(db_conn)
    if not subjects:
        return abort(404, '44bN2oD3TuOWc8wrgRmeeA')
    return 200, {
        'subjects': [deliver_subject(subject) for subject in subjects]
    }
Esempio n. 44
0
def follow_route(request):
    """
    Follow a card, unit, or set.
    """

    # TODO-3 simplify this method. does some of this belong in the model?

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    follow_data = dict(**request['params'])
    follow_data['user_id'] = current_user['id']

    follow = Follow(follow_data)
    errors = follow.validate()
    if errors:
        return 400, {
            'errors': errors,
            'ref': '4Qn9oWVWiGKvXSONQKHSy1T6'
        }

    # Ensure the entity exists   TODO-3 should this be a model validation?
    if follow['entity']['kind'] == 'topic':
        entity = Topic.get(id=follow['entity']['id'])
    else:
        entity = get_latest_accepted(follow['entity']['kind'],
                                     follow['entity']['id'])
    if not entity:
        return abort(404)

    # Ensure we don't already follow   TODO-3 should this be a model validation?
    prev = Follow.list(user_id=current_user['id'],
                       entity_id=follow_data['entity']['id'])
    if prev:
        return abort(409)

    follow, errors = follow.save()
    if errors:
        return 400, {
            'errors': errors,
            'ref': 'gKU6wgTItxpKyDs0eAlonCmi',
        }

    return 200, {'follow': follow.deliver(access='private')}
Esempio n. 45
0
def get_current_user_route(request):
    """
    Get current user's information.
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)
    return 200, {'user': current_user.deliver(access='private')}
Esempio n. 46
0
def get_current_user_route(request):
    """
    Get current user's information.
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)
    return 200, {'user': current_user.deliver(access='private')}
Esempio n. 47
0
def update_user_route(request, user_id):
    """
    Update the user. Must be the current user.
    """

    user = User.get(id=user_id)
    current_user = get_current_user(request)
    if not user:
        return abort(404)
    if not user['id'] == current_user['id']:
        return abort(401)
    user, errors = user.update(request['params'])
    if len(errors):
        return 400, {
            'errors': errors,
            'ref': 'AS7LCAWiOOyeEbNOrbsegVY9',
        }
    return 200, {'user': user.deliver(access='private')}
Esempio n. 48
0
def get_current_user_route(request):
  """
  Get current user's information.
  """

  current_user = get_current_user(request)
  if not current_user:
    return abort(401, 'l9BCKn1zQ5KRgFRYujqU7g')
  return 200, {'user': deliver_user(current_user, access='private')}
Esempio n. 49
0
def get_current_user_route(request):
    """
    Get current user's information.
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)
    return 200, {"user": deliver_user(current_user, access="private")}
Esempio n. 50
0
def get_recommended_subjects(request):
    db_conn = request['db_conn']
    entity_ids = ('JAFGYFWhILcsiByyH2O9frcU', )
    if config['debug']:
        entity_ids = ('subjectAll', )
    subjects = Subject.list_by_entity_ids(db_conn, entity_ids)
    if not subjects:
        return abort(404)
    return 200, {'subjects': [subject.deliver() for subject in subjects]}
Esempio n. 51
0
def test_abort():
  """
  Expect to return a standard fail status.
  """

  code, response = abort(404)
  assert code == 404
  assert 'errors' in response
  assert response['errors'][0]['message'] == '404 Not Found'
Esempio n. 52
0
def test_abort():
    """
    Expect to return a standard fail status.
    """

    code, response = abort(404)
    assert code == 404
    assert 'errors' in response
    assert response['errors'][0]['message'] == '404 Not Found'
Esempio n. 53
0
def add_set_route(request, user_id, set_id):
    """
    Add a set to the learner's list of sets.
    """

    db_conn = request['db_conn']

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    if user_id != current_user['id']:
        return abort(403)

    set_ = Set.get(db_conn, entity_id=set_id)
    if not set_:
        return abort(404)

    uset = UserSets.get(db_conn, user_id=user_id)
    if uset and set_id in uset['set_ids']:
        return 400, {
            'errors': [{
                'name': 'set_id',
                'message': 'Set is already added.',
            }],
            'ref': 'kPZ95zM3oxFDGGl8vBdR3J3o',
        }

    if uset:
        uset['set_ids'].append(set_id)
        uset, errors = uset.save(db_conn)
    else:
        uset, errors = UserSets.insert(db_conn, {
            'user_id': user_id,
            'set_ids': [set_id],
        })

    if errors:
        return 400, {
            'errors': errors,
            'ref': 'zCFUbLBTg9n2DnTkQYbqO4X9'
        }

    return 200, {'sets': uset['set_ids']}
Esempio n. 54
0
def _log_in(user):
    """
    Log in a given user, and return an appropriate response.
    Used by sign up, log in, and reset password.
    """

    session_id = log_in_user(user)
    if session_id:
        return 200, {"user": deliver_user(user, access="private"), "cookies": {"session_id": session_id}}
    return abort(401)
Esempio n. 55
0
def create_token_route(request):
    """
    Create an email token for the user.
    """

    user = User.get(email=request['params'].get('email'))
    if not user:
        return abort(404)
    user.get_email_token()
    return 200, {}
Esempio n. 56
0
def create_token_route(request):
    """
    Create an email token for the user.
    """

    db_conn = request["db_conn"]
    user = get_user({"email": request["params"].get("email")}, db_conn)
    if not user:
        return abort(404)
    get_email_token(user)
    return 200, {}
Esempio n. 57
0
def call_handler(request):
    """
    Given a request dictionary, call the appropriate handler.
    Return a tuple of code (str), data (dict), and cookies (list).
    """

    method = request['method']
    if method not in ('GET', 'POST', 'PUT', 'DELETE'):
        return abort(405)

    path = request['path']
    handler, parameters = find_path(method, path)
    if not handler:
        return abort(404)

    try:
        return handler(request=request, **parameters)

    except Exception:
        if config['debug']:
            return 500, format_exc()
        return abort(500)
Esempio n. 58
0
def list_notices_route(request):
    """
    List notices for current user.
    Take parameters `limit`, `skip`, `tag`, and `read`.
    """

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)
    notices = Notice.list(user_id=current_user['id'], **request['params'])
    output = {'notices': [notice.deliver(access='private')
                          for notice in notices]}
    return 200, output
Esempio n. 59
0
def call_handler(environ):
    """
    Given a WSGI environment,
    call the appropriate handler.
    Return a tuple of code (str), data (dict), and cookies (list).
    """

    method = environ['REQUEST_METHOD']
    if method not in ('GET', 'POST', 'PUT', 'DELETE'):
        return abort(405)

    path = environ['SCRIPT_NAME'] + environ['PATH_INFO']
    handler, parameters = find_path(method, path)
    if not handler:
        return abort(404)

    try:
        return handler(request=construct_request(environ), **parameters)

    except Exception:
        if config['debug']:
            return 500, format_exc()
        return abort(500)
Esempio n. 60
0
def unfollow_route(request, follow_id):
    """
    Remove a follow. Must be current user's own follow.
    """

    db_conn = request["db_conn"]

    current_user = get_current_user(request)
    if not current_user:
        return abort(401)

    follow = Follow.get(db_conn, id=follow_id)
    if not follow:
        return abort(404)

    if follow["user_id"] != current_user["id"]:
        return abort(403)

    follow, errors = follow.delete(db_conn)
    if errors:
        return 400, {"errors": errors, "ref": "iGmpx8UwoFcKNmSKq9Aocy1a"}

    return 200, {}