def GET(request):
"""Find all authorizations for a Simulation."""
# Make sure required parameters are there
try:
request.check_required_parameters(
path={
'simulationId': 'int'
}
)
except exceptions.ParameterError as e:
return Response(400, e.message)
# Instantiate a Simulation and make sure it exists
simulation = Simulation.from_primary_key((request.params_path['simulationId'],))
if not simulation.exists():
return Response(404, '{} not found.'.format(simulation))
# Make sure this User is allowed to view this Simulation's Authorizations
if not simulation.google_id_has_at_least(request.google_id, 'VIEW'):
return Response(403, 'Forbidden from retrieving Authorizations for {}.'.format(simulation))
# Get the Authorizations
authorizations = Authorization.query('simulation_id', request.params_path['simulationId'])
# Return the Authorizations
return Response(
200,
'Successfully retrieved Authorizations for {}.'.format(simulation),
[x.to_JSON() for x in authorizations]
)
def GET(request):
"""Get this User's Authorizations."""
# Make sure required parameters are there
try:
request.check_required_parameters(
path={
'userId': 'int'
}
)
except exceptions.ParameterError as e:
return Response(400, e.message)
# Instantiate a User and make sure they exist
user = User.from_primary_key((request.params_path['userId'],))
if not user.exists():
return Response(404, '{} not found.'.format(user))
# Make sure this requester is allowed to retrieve this User's Authorizations
if not user.google_id_has_at_least(request.google_id, 'OWN'):
return Response(403, 'Forbidden from retrieving Authorizations for {}.'.format(user))
# Return this User's Authorizations
authorizations = Authorization.query('user_id', request.params_path['userId'])
return Response(
200,
'Successfully retrieved Authorizations for {}.'.format(user),
[x.to_JSON() for x in authorizations]
)