def password_reset(self, payloads):
response = ResponseBuilder()
user = User().verify_auth_token(payloads['token'])
if user is not None:
self.model_user = db.session.query(User).filter_by(id=user.id)
self.model_user.update({
'password': generate_password_hash(payloads['new_password'])
})
db.session.commit()
return response.set_data(user.as_dict()).set_message('Reset Password success, You can logged in with new password').build()
else:
return response.set_data(None).set_message('Reset Password failed or token expired').build()
class UserService(BaseService):
def __init__(self, perpage):
self.perpage = perpage
def get_user_info(self, user):
response = ResponseBuilder()
access_token = db.session.query(AccessToken).filter_by(user_id=user.id).first()
if access_token is None:
return response.set_error(True).set_data(None).set_message('user is not logged in').build()
return access_token.as_dict(), access_token.user.include_photos().as_dict()
def get_booth_by_uid(self, user_id):
response = ResponseBuilder()
user_booth = db.session.query(UserBooth).filter_by(user_id=user_id).first()
data = user_booth.booth.as_dict()
members = db.session.query(UserBooth).filter_by(booth_id=data['id']).all()
data['members'] = []
for member in members:
data['members'].append(member.user.include_photos().as_dict())
return response.set_data(data).build()
def register(self, payloads):
user_refcount = 0
user_havref = 0
response = ResponseBuilder()
# payloads validation
if payloads is None:
return response.set_error(True).set_message('Payload not valid').build()
# check if social or email
if payloads['social_id'] is not None:
check_user = db.session.query(User).filter_by(
social_id=payloads['social_id']).first()
else:
check_user = db.session.query(User).filter_by(
email=payloads['email']).first()
# check if user already exist
if(check_user is not None):
return response.set_data(None).set_message('User already registered').set_error(True).build()
# check referal limit
check_referer = None
if 'referer' in payloads and payloads['referer']:
check_referer = db.session.query(User).filter_by(
referal=payloads['referer'])
#if the check_referer return empty list, must be first time referred
referer = check_referer.first()
if referer:
check_referer.update({
'referal_count': referer.referal_count + 1
})
db.session.commit()
# checking referer add full day ticket if reach 10 counts
if referer.referal_count > 0:
referer_detail = db.session.query(User).filter_by(referal=payloads['referer']).first().as_dict()
payload = {}
payload['user_id'] = referer_detail['id']
payload['ticket_id'] = 1
receiver_id = referer_detail['id']
sender_id = 1
user_refcount = 1
user_havref = 1
# only send notification if count less than 10
if referer.referal_count < 10:
type = "Referral Notification"
message = "%s has registered referring you, your total referals count is: %d" % (payloads['username'], referer.referal_count)
FCMService().send_single_notification(type, message, receiver_id, sender_id)
# else count==10, send notif and create new ticket
else:
type = "Free Ticket Notification"
message = "Congratulation! You have been referred 10 times! You've got one free ticket, please check it on 'my ticket' menu"
FCMService().send_single_notification(type, message, receiver_id, sender_id)
UserTicketService().create(payload)
if referer is not None and referer.referal_count >= 10:
return response.set_data(None).set_message('Referred username already exceed the limit').set_error(True).build()
if payloads['email'] is not None:
try:
self.model_user = User()
self.model_user.first_name = payloads['first_name']
self.model_user.last_name = payloads['last_name']
self.model_user.email = payloads['email']
self.model_user.username = payloads['username']
self.model_user.role_id = payloads['role']
self.model_user.social_id = payloads['social_id']
self.model_user.referal = self.generate_referal_code(3)
self.model_user.referal_count = user_refcount
self.model_user.have_refered = user_havref
if payloads['provider'] == 'email':
self.model_user.hash_password(payloads['password'])
db.session.add(self.model_user)
db.session.commit()
data = self.model_user
return data
except SQLAlchemyError as e:
data = e.orig.args
return response.set_error(True).set_message('SQL error').set_data(data).build()
def list_user(self, request, admin=False):
self.total_items = User.query.count()
if request.args.get('page'):
self.page = request.args.get('page')
else:
self.perpage = self.total_items
self.page = 1
self.base_url = request.base_url if not admin else request.url_root + 'users'
paginate = super().paginate(db.session.query(User))
paginate = super().include(['role'])
response = ResponseBuilder()
result = response.set_data(paginate['data']).set_links(
paginate['links']).build()
return result
def get_user_by_id(self, id):
response = ResponseBuilder()
user = db.session.query(
User).filter_by(id=id).first()
user = user.include_photos().as_dict()
# add relation includes
includes = ''
if user['role_id'] != 1 and user['role_id'] != 7:
for role, role_id in ROLE.items():
if role_id == user['role_id']:
includes = role.title()
user = super().outer_include(user, [includes])
return response.set_data(user).build()
def get_user(self, param):
self.model_user = db.session.query(
User).filter(or_(User.username.like(param), User.email.like(param))).first()
return self.model_user
def get_user_photo(self, id):
self.model_user_photo = db.session.query(
UserPhoto).filter_by(user_id=id).first()
url = ''
if self.model_user_photo:
url = request.url_root + 'static/' + \
self.model_user_photo.as_dict()['url']
return url
def social_sign_in(self, provider, social_token, token_secret=''):
if (provider == 'google'):
# check token integrity
try:
# get client id
google_endpoint = 'https://www.googleapis.com/oauth2/v3/tokeninfo?id_token=' + social_token
result = requests.get(google_endpoint)
payload = result.json()
if 'error_description' in payload:
return None
else:
return payload['sub']
except:
# Invalid token
return None
elif(provider == 'facebook'):
# check token integrity
try:
CLIENT_ID = db.session.query(Client).filter_by(
app_name=provider).first()
facebook_endpoint = 'https://graph.facebook.com/debug_token?input_token=' + \
social_token + '&access_token=' + \
CLIENT_ID.client_id + '|' + CLIENT_ID.client_secret
result = requests.get(facebook_endpoint)
payload = result.json()
if(payload['data']['is_valid']):
userid = payload['data']['user_id']
return userid
except:
return None
elif(provider == 'twitter'):
# check token integrity
try:
CLIENT_ID = db.session.query(Client).filter_by(
app_name=provider).first()
consumer = oauth.Consumer(
key=CLIENT_ID.client_id, secret=CLIENT_ID.client_secret)
access_token = oauth.Token(
key=social_token, secret=token_secret)
client = oauth.Client(consumer, access_token)
account_endpoint = "https://api.twitter.com/1.1/account/verify_credentials.json"
response, data = client.request(account_endpoint)
payload = json.loads(data)
if('id' in payload):
userid = payload['id_str']
else:
return None
# check if error exist in data
except:
return None
return userid
elif(provider == 'mobile'):
# check token to grap fb server
try:
CLIENT_ID = db.session.query(Client).filter_by(
app_name=provider).first()
url = 'https://graph.accountkit.com/v1.2/me/?access_token=' + social_token
result = requests.get(url)
payload = result.json()
accountId = None
if 'error' not in payload:
accountId = payload['id'] if 'id' in payload else None
return accountId
except:
return None
def check_social_account(self, provider, social_id):
# check if social id exist in user table
self.model_user = db.session.query(
User).filter_by(social_id=social_id).first()
if self.model_user is not None:
# user with social_id exist
# return the user
return self.model_user
else:
return None
def save_token(self, provider='password_grant'):
token_exist = db.session.query(AccessToken).filter_by(
user_id=self.model_user.id).first()
if not token_exist:
self.model_access_token = AccessToken()
payload = self.model_access_token.init_token(self.model_user.generate_auth_token(
), self.model_user.generate_refresh_token(), self.model_user.id)
db.session.add(payload)
db.session.commit()
return {
'error': False,
'data': payload
}
token_exist.access_token = self.model_user.generate_auth_token()
token_exist.refresh_token = self.model_user.generate_refresh_token()
# get id of client app
client = db.session.query(Client).filter_by(app_name=provider).first()
token_exist.client_id = client.id
db.session.commit()
return{
'error': True,
'data': token_exist
}
def change_name(self, payloads):
response = ResponseBuilder()
try:
self.model_user = db.session.query(
User).filter_by(id=payloads['user']['id'])
self.model_user.update({
'first_name': payloads['first_name'],
'last_name': payloads['last_name'],
'updated_at': datetime.datetime.now()
})
db.session.commit()
data = self.model_user.first().include_photos().as_dict()
if (data['role_id'] is ROLE['booth']):
booth = db.session.query(Booth).filter_by(user_id=payloads['user']['id'])
if payloads['booth_info'] is not None:
booth.update({
'summary': payloads['booth_info']
})
db.session.commit()
data['booth'] = booth.first().as_dict()
elif data['role_id'] is ROLE['speaker']:
speaker = db.session.query(Speaker).filter_by(user_id=payloads['user']['id'])
if payloads['speaker_job'] is not None and payloads['speaker_summary'] is not None:
speaker.update({
'job': payloads['speaker_job'],
'summary': payloads['speaker_summary']
})
db.session.commit()
data['speaker'] = speaker.first().as_dict()
return response.set_data(data).build()
except SQLAlchemyError as e:
data = e.orig.args
return response.set_error(True).set_message(data).build()
def change_password(self, payloads):
user = self.get_user(payloads['user']['username'])
try:
if user.verify_password(payloads['old_password']):
self.model_user = db.session.query(
User).filter_by(id=payloads['user']['id'])
self.model_user.update({
'password': generate_password_hash(payloads['new_password']),
'updated_at': datetime.datetime.now()
})
db.session.commit()
data = self.model_user.first().as_dict()
return {
'error': False,
'data': data
}
return {
'error': True,
'data': "Invalid password"
}
except SQLAlchemyError as e:
data = e.orig.args
return {
'error': True,
'data': data
}
def password_required(self, payloads):
user = self.get_user(payloads['user']['username'])
try:
if user.verify_password(payloads['password']):
self.model_user = db.session.query(
User).filter_by(id=payloads['user']['id'])
db.session.commit()
data = self.model_user.first().as_dict()
return {
'error': False,
'data': data
}
return {
'error': True,
'data': "Invalid password"
}
except SQLAlchemyError as e:
data = e.orig.args
return {
'error': True,
'data': data
}
def check_refresh_token(self, refresh_token):
refresh_token_exist = db.session.query(AccessToken).filter_by(
refresh_token=refresh_token).first()
if refresh_token_exist:
id = refresh_token_exist.as_dict()['id']
return id
return None
def get_new_token(self, id):
try:
self.model_access_token = db.session.query(
AccessToken).filter_by(id=id)
users = db.session.query(User).filter_by(
id=self.model_access_token.first().as_dict()['user_id']).first()
self.model_access_token.update({
'access_token': users.generate_auth_token().decode(),
'refresh_token': users.generate_refresh_token(),
'updated_at': datetime.datetime.now()
})
db.session.commit()
data = self.model_access_token.first().as_dict()
return {
'error': False,
'data': data
}
except SQLAlchemyError as e:
data = e.orig.args
return {
'error': True,
'data': data
}
def delete(self, id):
self.model_user = db.session.query(User).filter_by(id=id)
temp_model = self.model_user.first().as_dict() if self.model_user.first() else None
error = True
data = ''
if temp_model is not None:
if temp_model['role_id'] in [ROLE['admin'], ROLE['speaker'], ROLE['booth']]:
self.model_user.delete()
db.session.commit()
error = False
data = 'The account has been deleted!'
else:
data = 'Attendee account, cannot be deleted!'
else:
data = 'User account not found'
return {
'error': error,
'data': data
}
def update(self, payloads, id):
try:
self.model_user = db.session.query(
User).filter_by(id=id)
self.model_user.update({
'first_name': payloads['first_name'],
'last_name': payloads['last_name'],
'email': payloads['email'],
'username': payloads['username'],
'role_id': payloads['role_id']
})
db.session.commit()
data = self.model_user.first().as_dict()
# apply includes data
if str(ROLE['admin']) not in payloads.values() and str(ROLE['user']) not in payloads.values():
includes = payloads['includes']
self.editIncludes(includes)
return {
'error': False,
'data': data
}
except SQLAlchemyError as e:
data = e.orig.args
return {
'error': True,
'data': data
}
def add(self, payloads):
response = ResponseBuilder()
try:
self.model_user = User()
if payloads['referal'] is not None:
referal = db.session.query(User).filter_by(referal=payloads['referal'])
referal_count = referal.first().referal_count
if referal_count is not 10:
referal_count += 1
referal.update({
'referal_count': referal_count
})
db.session.commit()
self.model_user.referal_count = 1
self.model_user.have_refered = 1
elif referal_count > 10:
return response.set_data(None).set_message('this referal code has exceeded its limit').set_error(True).build()
self.model_user.first_name = payloads['first_name']
self.model_user.last_name = payloads['last_name']
self.model_user.email = payloads['email']
self.model_user.username = payloads['username']
self.model_user.role_id = payloads['role_id']
self.model_user.hash_password('supersecret')
self.model_user.referal = self.generate_referal_code(3)
db.session.add(self.model_user)
db.session.commit()
data = self.model_user.as_dict()
# apply includes data if not admin (role_id != 1)
if 'role_id' in payloads and payloads['role_id'] != '1' and payloads['role_id'] != '8' and payloads['role_id'] != '7':
includes = payloads['includes']
data = self.postIncludes(includes)
return data
return response.set_data(data).build()
except SQLAlchemyError as e:
data = e.args
return response.set_data(None).set_message(data).set_error(True).build()
def redeemreferal(self, payloads, id):
response = ResponseBuilder()
user = db.session.query(User).filter_by(id=id)
user_referal = user.first().referal
if user_referal in payloads['referal']:
return response.set_data(None).set_message('dont redeem your own code').set_error(True).build()
user_have_refered = user.first().have_refered
if user_have_refered is 1:
return response.set_data(None).set_message('you cant redeem referal again').set_error(True).build()
referal = db.session.query(User).filter_by(referal=payloads['referal'])
referal_count = referal.first().referal_count
if referal_count is not 10:
referal_count += 1
referal.update({
'referal_count': referal_count
})
user_referal_count = user.first().referal_count
user_referal_count += 1
user.update({
'referal_count': user_referal_count,
'have_refered': 1
})
db.session.commit()
result = db.session.query(User).filter_by(id=id).first()
return response.set_data(result.as_dict()).build()
else:
return response.set_data(None).set_message('this referal code has exceeded its limit').set_error(True).build()
def include_role_data(self, user):
if (user['role_id'] is ROLE['speaker']):
user = super().outer_include(user, ['Speaker'])
elif (user['role_id'] is ROLE['booth']):
user = super().outer_include(user, ['Booth'])
return user
def postIncludes(self, includes):
response = ResponseBuilder()
user_id = self.model_user.as_dict()['id']
entityModel = eval(includes['name'])()
entityModel.user_id = user_id
for key in includes:
if key is not 'name':
setattr(entityModel, key, includes[key])
db.session.add(entityModel)
try:
db.session.commit()
if includes['name'] == 'Booth':
user_booth = UserBooth()
user_booth.user_id = user_id
user_booth.booth_id = entityModel.as_dict()['id']
db.session.add(user_booth)
db.session.commit()
return response.set_data(None).build()
except SQLAlchemyError as e:
data = e.args
return response.set_message(data).set_error(True).set_data(None).build()
def editIncludes(self, includes):
user_id = self.model_user.first().as_dict()['id']
entityModel = db.session.query(eval(includes['name'])).filter_by(user_id=user_id)
del includes['name']
entity = entityModel.first()
if (entity):
entityModel.update(includes)
else:
entityModel = Model()
entityModel.user_id = user_id
for key in includes:
setattr(entityModel, key, includes[key])
db.session.add(entityModel)
db.session.commit()
def updatefcmtoken(self, token, user):
response = ResponseBuilder()
user = db.session.query(User).filter_by(id=user['id'])
user.update({
'fcmtoken': token
})
try:
db.session.commit()
return response.set_data(user.first().include_photos().as_dict()).build()
except SQLAlchemyError as e:
data = e.args
return response.set_error(True).set_message(data).build()
def generate_referal_code(self, count):
check_codes = db.session.query(User).all()
for check_code in check_codes:
check_code.referal
code = secrets.token_hex(count)
if code is not check_code.referal:
return code.upper()
else:
code = secrets.token_hex(count)
return code.upper()
class UserService(BaseService):
def __init__(self, perpage):
self.perpage = perpage
def get_user_info(self, user):
response = ResponseBuilder()
access_token = db.session.query(AccessToken).filter_by(user_id=user.id).first()
if access_token is None:
return response.set_error(True).set_data(None).set_message('user is not logged in').build()
return access_token.as_dict(), access_token.user.include_photos().as_dict()
def get_booth_by_uid(self, user_id):
response = ResponseBuilder()
user_booth = db.session.query(UserBooth).filter_by(user_id=user_id).first()
data = user_booth.booth.as_dict()
members = db.session.query(UserBooth).filter_by(booth_id=data['id']).all()
data['members'] = []
for member in members:
data['members'].append(member.user.include_photos().as_dict())
return response.set_data(data).build()
def register(self, payloads):
user_refcount = 0
user_havref = 0
response = ResponseBuilder()
# payloads validation
if payloads is None:
return response.set_error(True).set_message('Payload not valid').build()
# check if social or email
if payloads['social_id'] is not None:
check_user = db.session.query(User).filter_by(
social_id=payloads['social_id']).first()
else:
check_user = db.session.query(User).filter_by(
email=payloads['email']).first()
# check if user already exist
if(check_user is not None):
return response.set_data(None).set_message('User already registered').set_error(True).build()
if payloads['email'] is not None:
try:
self.model_user = User()
self.model_user.first_name = payloads['first_name']
self.model_user.last_name = payloads['last_name']
self.model_user.email = payloads['email']
self.model_user.username = payloads['username']
self.model_user.role_id = payloads['role']
self.model_user.social_id = payloads['social_id']
self.model_user.referer = payloads['referer']
self.model_user.referal = self.generate_referal_code(3)
self.model_user.referal_count = user_refcount
self.model_user.have_refered = user_havref
if payloads['provider'] == 'email':
self.model_user.hash_password(payloads['password'])
db.session.add(self.model_user)
db.session.commit()
data = self.model_user
# invoke send confirmation email method here
self.send_confirmation_email(data)
return data
except SQLAlchemyError as e:
data = e.orig.args
return response.set_error(True).set_message('SQL error').set_data(data).build()
def send_confirmation_email (self, user):
# generate token that expire in 1 hours
token = user.generate_auth_token(3600)
# generate url parameter
params = "?token={}".format(token.decode('utf-8'))
url = Helper().url_helper(params, current_app.config['EMAIL_HANDLER_ROUTE'])
# generate email attributes
email_subject = "DevSummit: Email Address Verification"
message_body = ("Dear " + user.username + ", <br /> <br/>" + "Please confirm your email address by click in this provided link in one hour: <br />" +
url + "<br /> <br/> Regards, <br /> DevSummit Team")
receiver = user.email
email = EmailService()
email = email.set_subject(email_subject).set_html(message_body).set_sender(current_app.config['MAIL_DEFAULT_SENDER']).set_recipient(receiver).build()
mail.send(email)
return True
def send_reset_password_email(self, user):
token = user.generate_auth_token(1800)
token = token.decode('utf-8')
email_subject = "Devsummit: Password Reset"
message = "<h4>You just tried to reset your password</h4><h4>Click here to change your password</h4><a href='%sreset-password?action=reset_password&token=%s'>%sreset-password?action=reset_password&token=%s</a>" %(request.url_root, token, request.url_root, token)
emailservice = EmailService()
email = emailservice.set_recipient(user.email).set_subject(email_subject).set_sender(current_app.config['MAIL_DEFAULT_SENDER']).set_html(message).build()
mail.send(email)
return True
def email_address_verification(self, token):
user = User.verify_auth_token(token)
result = {}
if user:
user_query = db.session.query(User).filter_by(id=user.id)
user_query.update({
'confirmed': 1
})
db.session.commit()
# check referal related things comment this out to disable this feature
result = self.referer_verification(user)
# send result
result['email'] = 'Email Address have been successfully verified'
result['message'] = ' ' if 'message' not in result else result['message']
return result
else:
result['email'] = 'Email Address have not been successfully verified, please request another confirmation link'
return result
def referer_verification(self, user):
# check if user register with referal
result = {}
if user.referer:
referer_query = db.session.query(User).filter_by(
referal=user.referer)
referer = referer_query.first()
if referer:
message = 'Got referer point'
referer_valid = True
if referer.referal_count >= 10:
referer_valid = False
result['message'] = 'The username you refered to has exceeded its limit, but your email is safely confirmed\nYou can try another username using the apps.'
if referer_valid:
referer_query.update({
'referal_count': referer.referal_count + 1
})
db.session.commit()
# checking referer add full day ticket if reach 10 counts
if referer.referal_count > 0:
referer_detail = db.session.query(User).filter_by(referal=user.referer).first().as_dict()
payload = {}
payload['user_id'] = referer_detail['id']
payload['ticket_id'] = 1
receiver_id = referer_detail['id']
sender_id = 1
if referer_valid:
user_refcount = 1
user_havref = 1
else:
user_refcount = 0
user_havref = 0
current_user = db.session.query(User).filter_by(id=user.id)
current_user.update({
'referal_count' : user_refcount,
'have_refered' : user_havref
})
db.session.commit()
# only send notification if count less than 10
if referer.referal_count < 10:
type = "Referral Notification"
message = "%s has registered referring you, your total referals count is: %d" % (user.username, referer.referal_count)
FCMService().send_single_notification(type, message, receiver_id, sender_id)
# else count==10, send notif and create new ticket
elif referer.referal_count == 10:
type = "Free Ticket Notification"
message = "Congratulation! You have been referred 10 times! You've can get one free ticket, please click on claim button to claim your reward"
FCMService().send_single_notification(type, message, receiver_id, sender_id)
return result
else:
return result
def list_user(self, request, page, admin=False):
self.total_items = User.query.count()
if page is not None:
self.page = request.args.get('page')
# self.page = page
else:
self.perpage = 10
self.page = 1
self.base_url = request.base_url
# paginate
paginate = super().paginate(db.session.query(User).order_by(User.created_at.desc()))
response = ResponseBuilder()
_results = []
# users = db.session.query(User).all()
for user in paginate['data']:
data = user.include_photos().as_dict()
data['role'] = user.role.name
_results.append(data)
return response.set_data(_results).set_links(paginate['links']).build()
def list_hackaton_attendee(self):
response = ResponseBuilder()
_results = []
hackers = db.session.query(User).filter(User.role_id==ROLE['hackaton']).all()
for hacker in hackers:
_results.append(hacker.include_photos().as_dict())
return response.set_data(_results).set_message('hackers retreived').set_links({}).build()
def list_hackaton_checkedin(self):
response = ResponseBuilder()
_results = []
checked_in = db.session.query(UserTicket.user_id).join(CheckIn).all()
hackers = db.session.query(User).filter(
User.role_id==ROLE['hackaton'], User.id.in_(checked_in)).all()
for hacker in hackers:
_results.append(hacker.include_photos().as_dict())
return response.set_data(_results).set_message('hackers retrieved').set_links({}).build()
def get_user_filter(self, type=7):
results = []
users = db.session.query(User).filter(User.role_id > 6).all()
for user in users:
data = user.include_photos().as_dict()
results.append(data)
return results
def get_user_by_id(self, id):
response = ResponseBuilder()
user = db.session.query(
User).filter_by(id=id).first()
user = user.include_photos().as_dict()
# add relation includes
includes = ''
if user['role_id'] != 1 and user['role_id'] != 7 and user['role_id'] != 8:
for role, role_id in ROLE.items():
if role_id == user['role_id']:
includes = role.title()
user = super().outer_include(user, [includes])
return response.set_data(user).build()
def get_user(self, param):
self.model_user = db.session.query(
User).filter(or_(User.username.like(param), User.email.like(param))).first()
return self.model_user
def get_user_photo(self, id):
self.model_user_photo = db.session.query(
UserPhoto).filter_by(user_id=id).first()
url = ''
if self.model_user_photo:
url = request.url_root + 'static/' + \
self.model_user_photo.as_dict()['url']
return url
def social_sign_in(self, provider, social_token, token_secret=''):
if (provider == 'google'):
# check token integrity
try:
# get client id
google_endpoint = 'https://www.googleapis.com/oauth2/v3/tokeninfo?id_token=' + social_token
result = requests.get(google_endpoint)
payload = result.json()
if 'error_description' in payload:
return None
else:
return payload['sub']
except:
# Invalid token
return None
elif(provider == 'facebook'):
# check token integrity
try:
CLIENT_ID = db.session.query(Client).filter_by(
app_name=provider).first()
facebook_endpoint = 'https://graph.facebook.com/debug_token?input_token=' + \
social_token + '&access_token=' + \
CLIENT_ID.client_id + '|' + CLIENT_ID.client_secret
result = requests.get(facebook_endpoint)
payload = result.json()
if(payload['data']['is_valid']):
userid = payload['data']['user_id']
return userid
except:
return None
elif(provider == 'twitter'):
# check token integrity
try:
CLIENT_ID = db.session.query(Client).filter_by(
app_name=provider).first()
consumer = oauth.Consumer(
key=CLIENT_ID.client_id, secret=CLIENT_ID.client_secret)
access_token = oauth.Token(
key=social_token, secret=token_secret)
client = oauth.Client(consumer, access_token)
account_endpoint = "https://api.twitter.com/1.1/account/verify_credentials.json"
response, data = client.request(account_endpoint)
payload = json.loads(data)
if('id' in payload):
userid = payload['id_str']
else:
return None
# check if error exist in data
except:
return None
return userid
elif(provider == 'mobile'):
# check token to grap fb server
try:
CLIENT_ID = db.session.query(Client).filter_by(
app_name=provider).first()
url = 'https://graph.accountkit.com/v1.2/me/?access_token=' + social_token
result = requests.get(url)
payload = result.json()
accountId = None
if 'error' not in payload:
accountId = payload['id'] if 'id' in payload else None
return accountId
except:
return None
def check_social_account(self, provider, social_id):
# check if social id exist in user table
self.model_user = db.session.query(
User).filter_by(social_id=social_id).first()
if self.model_user is not None:
# user with social_id exist
# return the user
return self.model_user
else:
return None
def update_photo(self, payloads, id):
response = ResponseBuilder()
try:
user_photo = db.session.query(UserPhoto).filter_by(user_id=id)
file = payloads['photo']
photo = None
photo = self.save_file(file, id)
if user_photo.first() is None:
user_photo = UserPhoto()
user_photo.user_id = id
user_photo.url = photo
db.session.add(user_photo)
db.session.commit()
return response.set_message('Photo updated').set_data(None).build()
if photo:
user_photo.update({
'url': photo,
'updated_at': datetime.datetime.now()
})
db.session.commit()
data = user_photo.first().as_dict()
return response.set_data(data).build()
except SQLAlchemyError as e:
data = e
return response.set_error(True).set_data(data).build()
def save_file(self, file, id=None):
if file and Helper().allowed_file(file.filename, current_app.config['ALLOWED_EXTENSIONS']):
filename = secure_filename(file.filename)
filename = Helper().time_string() + "_" + file.filename.replace(" ", "_")
file.save(os.path.join(current_app.config['POST_USER_PHOTO_DEST'], filename))
if id:
temp_user = db.session.query(UserPhoto).filter(UserPhoto.user_id == id).first()
if temp_user and temp_user.url:
Helper().silent_remove(current_app.config['STATIC_DEST'] + temp_user.url)
return current_app.config['SAVE_USER_PHOTO_DEST'] + filename
else:
return None
def save_token(self, provider='password_grant'):
token_exist = db.session.query(AccessToken).filter_by(
user_id=self.model_user.id).first()
if not token_exist:
self.model_access_token = AccessToken()
payload = self.model_access_token.init_token(self.model_user.generate_auth_token(
), self.model_user.generate_refresh_token(), self.model_user.id)
db.session.add(payload)
db.session.commit()
return {
'error': False,
'data': payload
}
token_exist.access_token = self.model_user.generate_auth_token()
token_exist.refresh_token = self.model_user.generate_refresh_token()
# get id of client app
client = db.session.query(Client).filter_by(app_name=provider).first()
token_exist.client_id = client.id
db.session.commit()
return{
'error': True,
'data': token_exist
}
def change_name(self, payloads):
response = ResponseBuilder()
try:
self.model_user = db.session.query(
User).filter_by(id=payloads['user']['id'])
self.model_user.update({
'first_name': payloads['first_name'],
'last_name': payloads['last_name'],
'updated_at': datetime.datetime.now()
})
db.session.commit()
data = self.model_user.first().include_photos().as_dict()
if (data['role_id'] is ROLE['booth']):
booth = db.session.query(Booth).filter_by(user_id=payloads['user']['id'])
if payloads['booth_info'] is not None:
booth.update({
'summary': payloads['booth_info']
})
db.session.commit()
data['booth'] = booth.first().as_dict()
elif data['role_id'] is ROLE['speaker']:
speaker = db.session.query(Speaker).filter_by(user_id=payloads['user']['id'])
if payloads['speaker_job'] is not None and payloads['speaker_summary'] is not None:
speaker.update({
'job': payloads['speaker_job'],
'summary': payloads['speaker_summary']
})
db.session.commit()
data['speaker'] = speaker.first().as_dict()
return response.set_data(data).build()
except SQLAlchemyError as e:
data = e.orig.args
return response.set_error(True).set_message(data).build()
def change_password(self, payloads):
user = self.get_user(payloads['user']['username'])
try:
if user.verify_password(payloads['old_password']):
self.model_user = db.session.query(
User).filter_by(id=payloads['user']['id'])
self.model_user.update({
'password': generate_password_hash(payloads['new_password']),
'updated_at': datetime.datetime.now()
})
db.session.commit()
data = self.model_user.first().as_dict()
return {
'error': False,
'data': data
}
return {
'error': True,
'data': "Invalid password"
}
except SQLAlchemyError as e:
data = e.orig.args
return {
'error': True,
'data': data
}
def password_reset(self, payloads):
response = ResponseBuilder()
user = User().verify_auth_token(payloads['token'])
if user is not None:
self.model_user = db.session.query(User).filter_by(id=user.id)
self.model_user.update({
'password': generate_password_hash(payloads['new_password'])
})
db.session.commit()
return response.set_data(user.as_dict()).set_message('Reset Password success, You can logged in with new password').build()
else:
return response.set_data(None).set_message('Reset Password failed or token expired').build()
def password_required(self, payloads):
user = self.get_user(payloads['user']['username'])
try:
if user.verify_password(payloads['password']):
self.model_user = db.session.query(
User).filter_by(id=payloads['user']['id'])
db.session.commit()
data = self.model_user.first().as_dict()
return {
'error': False,
'data': data
}
return {
'error': True,
'data': "Invalid password"
}
except SQLAlchemyError as e:
data = e.orig.args
return {
'error': True,
'data': data
}
def check_refresh_token(self, refresh_token):
refresh_token_exist = db.session.query(AccessToken).filter_by(
refresh_token=refresh_token).first()
if refresh_token_exist:
id = refresh_token_exist.as_dict()['id']
return id
return None
def get_new_token(self, id):
try:
self.model_access_token = db.session.query(
AccessToken).filter_by(id=id)
users = db.session.query(User).filter_by(
id=self.model_access_token.first().as_dict()['user_id']).first()
self.model_access_token.update({
'access_token': users.generate_auth_token().decode(),
'refresh_token': users.generate_refresh_token(),
'updated_at': datetime.datetime.now()
})
db.session.commit()
data = self.model_access_token.first().as_dict()
return {
'error': False,
'data': data
}
except SQLAlchemyError as e:
data = e.orig.args
return {
'error': True,
'data': data
}
def delete(self, id):
self.model_user = db.session.query(User).filter_by(id=id)
temp_model = self.model_user.first().as_dict() if self.model_user.first() else None
error = True
data = ''
if temp_model is not None:
if temp_model['role_id'] in [ROLE['admin'], ROLE['speaker'], ROLE['booth']]:
self.model_user.delete()
db.session.commit()
error = False
data = 'The account has been deleted!'
else:
data = 'Attendee account, cannot be deleted!'
else:
data = 'User account not found'
return {
'error': error,
'data': data
}
def update(self, payloads, id):
try:
self.model_user = db.session.query(
User).filter_by(id=id)
self.model_user.update({
'first_name': payloads['first_name'],
'last_name': payloads['last_name'],
'email': payloads['email'],
'username': payloads['username'],
'role_id': payloads['role_id']
})
db.session.commit()
data = self.model_user.first().as_dict()
# apply includes data
if str(ROLE['admin']) not in payloads.values() and str(ROLE['user']) not in payloads.values():
includes = payloads['includes']
self.editIncludes(includes)
return {
'error': False,
'data': data
}
except SQLAlchemyError as e:
data = e.orig.args
return {
'error': True,
'data': data
}
def add(self, payloads):
response = ResponseBuilder()
try:
self.model_user = User()
if payloads['referal'] is not None:
referal = db.session.query(User).filter_by(referal=payloads['referal'])
referal_count = referal.first().referal_count
if referal_count is not 10:
referal_count += 1
referal.update({
'referal_count': referal_count
})
db.session.commit()
self.model_user.referal_count = 1
self.model_user.have_refered = 1
elif referal_count > 10:
return response.set_data(None).set_message('this referal code has exceeded its limit').set_error(True).build()
self.model_user.first_name = payloads['first_name']
self.model_user.last_name = payloads['last_name']
self.model_user.email = payloads['email']
self.model_user.username = payloads['username']
self.model_user.role_id = payloads['role_id']
self.model_user.hash_password('supersecret')
self.model_user.referal = self.generate_referal_code(3)
db.session.add(self.model_user)
db.session.commit()
data = self.model_user.as_dict()
# apply includes data if not admin (role_id != 1)
if 'role_id' in payloads and payloads['role_id'] != '1' and payloads['role_id'] != '8' and payloads['role_id'] != '7':
includes = payloads['includes']
data = self.postIncludes(includes)
return data
return response.set_data(data).build()
except SQLAlchemyError as e:
data = e.args
return response.set_data(None).set_message(data).set_error(True).build()
def redeemreferal(self, payloads, id):
response = ResponseBuilder()
user = db.session.query(User).filter_by(id=id)
user_referal = user.first().referal
if user_referal in payloads['referal']:
return response.set_data(None).set_message('dont redeem your own code').set_error(True).build()
user_have_refered = user.first().have_refered
if user_have_refered is 1:
return response.set_data(None).set_message('you cant redeem referal again').set_error(True).build()
referal = db.session.query(User).filter_by(referal=payloads['referal'])
referal_count = referal.first().referal_count
if referal_count is not 10:
referal_count += 1
referal.update({
'referal_count': referal_count
})
user_referal_count = user.first().referal_count
user_referal_count += 1
user.update({
'referal_count': user_referal_count,
'have_refered': 1
})
db.session.commit()
result = db.session.query(User).filter_by(id=id).first()
return response.set_data(result.as_dict()).build()
else:
return response.set_data(None).set_message('this referal code has exceeded its limit').set_error(True).build()
def include_role_data(self, user):
if (user['role_id'] is ROLE['speaker']):
user = super().outer_include(user, ['Speaker'])
elif (user['role_id'] is ROLE['booth']):
user = super().outer_include(user, ['Booth'])
return user
def postIncludes(self, includes):
response = ResponseBuilder()
user_id = self.model_user.as_dict()['id']
entityModel = eval(includes['name'])()
entityModel.user_id = user_id
for key in includes:
if key is not 'name':
setattr(entityModel, key, includes[key])
db.session.add(entityModel)
try:
db.session.commit()
if includes['name'] == 'Booth':
user_booth = UserBooth()
user_booth.user_id = user_id
user_booth.booth_id = entityModel.as_dict()['id']
db.session.add(user_booth)
db.session.commit()
return response.set_data(None).build()
except SQLAlchemyError as e:
data = e.args
return response.set_message(data).set_error(True).set_data(None).build()
def editIncludes(self, includes):
user_id = self.model_user.first().as_dict()['id']
entityModel = db.session.query(eval(includes['name'])).filter_by(user_id=user_id)
del includes['name']
entity = entityModel.first()
if (entity):
entityModel.update(includes)
else:
entityModel = Model()
entityModel.user_id = user_id
for key in includes:
setattr(entityModel, key, includes[key])
db.session.add(entityModel)
db.session.commit()
def updatefcmtoken(self, token, user):
response = ResponseBuilder()
user = db.session.query(User).filter_by(id=user['id'])
user.update({
'fcmtoken': token
})
try:
db.session.commit()
return response.set_data(user.first().include_photos().as_dict()).build()
except SQLAlchemyError as e:
data = e.args
return response.set_error(True).set_message(data).build()
def generate_referal_code(self, count):
check_codes = db.session.query(User).all()
for check_code in check_codes:
check_code.referal
code = secrets.token_hex(count)
if code is not check_code.referal:
return code.upper()
else:
code = secrets.token_hex(count)
return code.upper()
def get_attendees(self):
response = ResponseBuilder()
_results = []
attendees = db.session.query(User).filter(User.role_id == 7).all()
for attendee in attendees:
_results.append(attendee.include_photos().as_dict())
return response.set_data(_results).set_message('Attendees retrieved successfully').build()
def get_purchased_attendees(self):
response = ResponseBuilder()
_results = []
users = db.session.query(User).join(Order).filter(Order.status == 'paid').group_by(User.id)
for user in users.all():
data = user.as_dict()
tickets = db.session.query(UserTicket).filter(UserTicket.user_id == user.id).all()
orders = db.session.query(Order).filter(Order.user_id == user.id, Order.status == 'paid').all()
data['orders'] = []
data['tickets'] = []
for order in orders:
datum = order.as_dict()
datum['referal'] = order.referal.as_dict() if order.referal else None
data['orders'].append(datum)
for ticket in tickets:
data['tickets'].append(ticket.as_dict())
_results.append(data)
return response.set_data(_results).build()
def search_accounts(self, keyword):
response = ResponseBuilder()
_results = []
results = db.session.query(User).filter(or_(
User.email.contains(keyword), User.username.contains(keyword))).limit(20).all()
for result in results:
data = result.include_photos().as_dict()
_results.append(data)
return response.set_data(_results).set_message('search account results').build()
def check_hackers(self, user_id):
checked_in = db.session.query(UserTicket.user_id).join(CheckIn).all()
hacker = db.session.query(User).filter(
User.id.in_(checked_in),
User.id==user_id).first()
return hacker
