def post(self):
parser = reqparse.RequestParser(bundle_errors=True)
parser.add_argument('volumne_id', required=True)
parser.add_argument('start_time', required=True)
parser.add_argument('end_time', required=True)
args = parser.parse_args()
vol_id = args['volumne_id']
start_s = args['start_time']
end_s = args['end_time']
if vol_id is None or start_s is None or end_s is None:
abort(400, message='must supply volumne_id, start_time, end_time')
vol = Volumne.query.get(vol_id)
if vol is None:
abort(400, message='volumne not exist')
old_apply_fors = ApplyFor.query.filter_by(volumne_id=vol_id, user_id=g.user.id)
for old_apply_for in old_apply_fors:
if old_apply_for.denied:
continue
abort(400, message=u'you already have a request on volumne:{}'.format(vol.name))
start_t = datetime.datetime.strptime(start_s, '%Y-%m-%d %H:%M:%S')
end_t = datetime.datetime.strptime(end_s, '%Y-%m-%d %H:%M:%S')
now = datetime.datetime.now()
if end_t <= now or start_t >= end_t:
print "%s:%s:%s" % (now, start_t, end_t)
abort(400,
message="end time:{} must after start time:{}, and after now{}".format(end_s, start_s, now))
apply_for = ApplyFor(g.user.id, vol_id, start_t, end_t)
db.session.add(apply_for)
db.session.commit()
log_info = u'{} 申请借阅档案卷:{}, {}'.format(g.user.username, apply_for.volumne.name, apply_for.volumne.id)
Log.logging(g.user.id, datetime.datetime.now(), 'borrow authority', log_info)
return '', 204
def put(self, d_id):
parser = reqparse.RequestParser(bundle_errors=True)
parser.add_argument('values', action='append', default=[])
args = parser.parse_args()
if g.user.id != 1:
abort(403, message='not admin')
doc = Doc.query.get(d_id)
if doc is None:
abort(404, message="doc id:{} not exist".format(d_id))
for k_v in args['values']:
k, v = k_v.split('=')
changed = False
for vals in doc.values:
if vals.property_name == k:
vals.value = v
changed = True
break
if not changed:
prop = DocProperty.query.filter_by(
name=k, volumne_id=doc.volumne.id).first()
if prop is None:
continue
new_value = DocValue(v, prop.id, doc.id, prop.name, prop.order)
db.session.add(new_value)
db.session.commit()
log_info = u'{} 修改了档案件:{}, {}'.format(g.user.username,
doc.volumne.name, doc.name,
doc.id)
Log.logging(g.user.id, datetime.datetime.now(), 'modify doc', log_info)
return doc.to_json(), 200
def delete(self, a_id):
apply = ApplyFor.query.get(a_id)
if apply is None or (apply.user_id != g.user.id and g.user.id != 1):
abort(403, message='no apply or you have no permission to del this applyfor')
db.session.delete(apply)
db.session.commit()
log_info = u'{} 删除了申请借阅档案卷:{}, {}'.format(g.user.username, apply.volumne.name, apply.volumne.id)
Log.logging(g.user.id, datetime.datetime.now(), 'borrow authority', log_info)
return '', 204
def delete(self, d_id):
if g.user.id != 1:
abort(403, message='not admin')
doc = Doc.query.get(d_id)
if doc is None:
abort(404, message="doc id:{} not exist".format(d_id))
shutil.rmtree(doc.path)
db.session.delete(doc)
db.session.commit()
log_info = u'{} 删除了档案件:{}, {}'.format(g.user.username,
doc.volumne.name, doc.name,
doc.id)
Log.logging(g.user.id, datetime.datetime.now(), 'delete doc', log_info)
return '', 204
def get(self, d_id):
#get a doc
doc = Doc.query.get(d_id)
if doc is None:
abort(404, message="doc id:{} not exist".format(d_id))
result = doc.to_json()
result['files'] = []
has_auth = False
if g.user.id == 1:
has_auth = True
else:
bo_au = BorrowAuthority.query.filter_by(
user_id=g.user.id, volumne_id=doc.volumne_id).first()
now = datetime.datetime.now()
if bo_au is not None and \
bo_au.start_time <= now and \
bo_au.end_time >= now:
has_auth = True
if has_auth:
#files
try:
fnames = os.listdir(doc.path)
fnames.sort()
files = [
f for f in fnames if not f.startswith('.')
and os.path.isfile(os.path.join(doc.path, f))
]
for file_name in files:
real_name = os.path.join(doc.path, file_name)
real_name = real_name.split('/', 1)
real_name = '%s/%s' % ('files', real_name[1])
result['files'].append(real_name)
except:
print u"list directory:%s failed" % doc.path
log_info = u'{} 阅读了档案件:{}, {}'.format(g.user.username, doc.name,
doc.id)
Log.logging(g.user.id, datetime.datetime.now(), 'get doc',
log_info)
return result, 200
def post(self):
#add a doc
parser = reqparse.RequestParser(bundle_errors=True)
parser.add_argument('name', required=True)
parser.add_argument('volumne_id', type=int, required=True)
parser.add_argument('values', action='append', default=[])
parser.add_argument('files',
action='append',
type=werkzeug.datastructures.FileStorage,
location=['files', 'form'],
default=[])
args = parser.parse_args()
if g.user.id != 1:
abort(403, message='not admin')
vol = Volumne.query.get(args['volumne_id'])
if vol is None:
abort(403,
message='volumne id:{} not exist'.format(args['volumne_id']))
maybe_exist = Doc.query.filter_by(volumne_id=args['volumne_id'],
name=args['name']).first()
if maybe_exist is not None:
abort(
403,
message=u'volumne:{} already has the same name doc:{}'.format(
vol.name, args['name']))
path = os.path.join(UPLOAD_DIR, secure_filename(vol.name),
secure_filename(args['name']))
#path = os.path.abspath(os.path.join(UPLOAD_DIR, secure_filename(vol.name), secure_filename(args['name'])))
#upload files
if not os.path.isdir(path):
try:
os.makedirs(path)
except:
abort(403,
message=u"upload file error, can't make dir:{}".format(
path))
index = 0
for file in args['files']:
filename = file.filename.decode('string-escape')
filename = filename.decode('utf-8')
secure_name = secure_filename(u"{}.{}".format(index, filename))
index += 1
final_path = os.path.join(path, secure_name)
file.save(final_path)
#add doc to database
value_str = ' '.join([kv.split('=')[1] for kv in args['values']])
new_doc = Doc(args['name'], vol.id, path, vol.type, 1,
datetime.datetime.now(), value_str)
db.session.add(new_doc)
db.session.commit()
#upload values
for k_v in args['values']:
k, v = k_v.split('=')
doc_prop = DocProperty.query.filter_by(name=k,
volumne_id=vol.id).first()
if doc_prop is None:
#if property not exist, ignore it, TODO
continue
old_value = DocValue.query.filter_by(
doc_id=new_doc.id, property_id=doc_prop.id).first()
if old_value is not None:
old_value.value = v
else:
new_value = DocValue(v, doc_prop.id, new_doc.id, doc_prop.name,
doc_prop.order)
db.session.add(new_value)
db.session.commit()
log_info = u'{} 增加了档案件:{}/{}, {}'.format(g.user.username, vol.name,
new_doc.name, new_doc.id)
Log.logging(g.user.id, datetime.datetime.now(), 'add doc', log_info)
return new_doc.to_json()
