def post(self): req_parser = reqparse.RequestParser() req_parser.add_argument('email', type=str, required=True) args = req_parser.parse_args() LOGGER.debug( "Requesting password reset for email {} and organisation {}". format(args['email'], g.organisation.name)) user = user_repository.get_by_email(args['email'], g.organisation.id) if not user: LOGGER.debug( "No user found for email {} and organisation {}".format( args['email'], g.organisation.name)) return USER_NOT_FOUND password_reset = PasswordReset(user=user) db.session.add(password_reset) db.session.commit() email_user( 'password-reset', template_parameters=dict(system=g.organisation.system_name, organisation=g.organisation.name, host=misc.get_baobab_host(), token=password_reset.code), subject_parameters=dict(system_name=g.organisation.system_name), user=user) return {}, 201
def get(self): email = request.args.get('email') LOGGER.debug("Resending verification email to: {}".format(email)) user = user_repository.get_by_email(email, g.organisation.id) if not user: LOGGER.debug( "User not found for email: {} in organisation: {}".format( email, g.organisation.name)) return USER_NOT_FOUND if user.verify_token is None: user.verify_token = make_code() try: db.session.commit() except IntegrityError: LOGGER.error("Adding verify token for {} failed. ".format(email)) return ADD_VERIFY_TOKEN_FAILED email_user('verify-email', template_parameters=dict(system=g.organisation.system_name, organisation=g.organisation.name, host=misc.get_baobab_host(), token=user.verify_token), user=user, subject_parameters=dict(system=g.organisation.system_name)) LOGGER.debug("Resent email verification to: {}".format(email)) return {}, 201
def post(self): args = self.req_parser.parse_args() user_id = args['user_id'] event_id = args['event_id'] email_template = args['email_template'] offer_date = datetime.strptime((args['offer_date']), '%Y-%m-%dT%H:%M:%S.%fZ') expiry_date = datetime.strptime((args['expiry_date']), '%Y-%m-%dT%H:%M:%S.%fZ') payment_required = args['payment_required'] travel_award = args['travel_award'] accommodation_award = args['accommodation_award'] user = db.session.query(AppUser).filter(AppUser.id == user_id).first() event_name = db.session.query(Event).filter( Event.id == event_id).first().name existing_offer = db.session.query(Offer).filter( Offer.user_id == user_id, Offer.event_id == event_id).first() if existing_offer: return errors.DUPLICATE_OFFER existing_outcome = outcome_repository.get_latest_by_user_for_event( user_id, event_id) if existing_outcome: if existing_outcome.status == Status.REJECTED: return errors.CANDIDATE_REJECTED existing_outcome.reset_latest() new_outcome = Outcome(event_id, user_id, Status.ACCEPTED, g.current_user['id']) outcome_repository.add(new_outcome) offer_entity = Offer(user_id=user_id, event_id=event_id, offer_date=offer_date, expiry_date=expiry_date, payment_required=payment_required, travel_award=travel_award, accommodation_award=accommodation_award) db.session.add(offer_entity) db.session.commit() if user.email: email_body_template = email_template or OFFER_EMAIL_BODY send_mail( recipient=user.email, subject='{} Application Status Update'.format(event_name), body_text=email_body_template.format( user_title=user.user_title, first_name=user.firstname, last_name=user.lastname, event_name=event_name, host=misc.get_baobab_host(), expiry_date=offer_entity.expiry_date.strftime("%Y-%m-%d"))) LOGGER.debug("Sent an offer email to {}".format(user.email)) return offer_info(offer_entity), 201
def post(self, invitedGuest=False): args = self.req_parser.parse_args() email = args['email'] firstname = args['firstname'] lastname = args['lastname'] user_title = args['user_title'] policy_agreed = args['policy_agreed'] user_primaryLanguage = args['language'] if (invitedGuest): password = self.randomPassword() else: password = args['password'] if (password is None): return MISSING_PASSWORD if not policy_agreed: return POLICY_NOT_AGREED LOGGER.info("Registering email: {}".format(email)) user = AppUser(email=email, firstname=firstname, lastname=lastname, user_title=user_title, password=password, organisation_id=g.organisation.id) user.user_primaryLanguage = user_primaryLanguage db.session.add(user) try: db.session.commit() except IntegrityError: LOGGER.error("email: {} already in use".format(email)) return EMAIL_IN_USE if (not invitedGuest): email_user( 'verify-email', template_parameters=dict(system=g.organisation.system_name, organisation=g.organisation.name, host=misc.get_baobab_host(), token=user.verify_token), user=user, subject_parameters=dict(system=g.organisation.system_name)) LOGGER.debug("Sent verification email to {}".format(user.email)) else: user.verified_email = True try: db.session.commit() except IntegrityError: LOGGER.error("Unable to verify email: {}".format(email)) return VERIFY_EMAIL_INVITED_GUEST return user_info(user, []), 201
def post(self): args = self.req_parser.parse_args() user_id = args['user_id'] event_id = args['event_id'] email_template = args['email_template'] offer_date = datetime.strptime((args['offer_date']), '%Y-%m-%dT%H:%M:%S.%fZ') expiry_date = datetime.strptime((args['expiry_date']), '%Y-%m-%dT%H:%M:%S.%fZ') payment_required = args['payment_required'] travel_award = args['travel_award'] accommodation_award = args['accommodation_award'] user = db.session.query(AppUser).filter(AppUser.id == user_id).first() event = db.session.query(Event).filter(Event.id == event_id).first() event_name = event.get_name('en') event_email_from = event.email_from existing_offer = db.session.query(Offer).filter(Offer.user_id == user_id, Offer.event_id == event_id).first() if existing_offer: return errors.DUPLICATE_OFFER existing_outcome = outcome_repository.get_latest_by_user_for_event(user_id, event_id) if existing_outcome: if existing_outcome.status == Status.REJECTED: return errors.CANDIDATE_REJECTED existing_outcome.reset_latest() new_outcome = Outcome( event_id, user_id, Status.ACCEPTED, g.current_user['id'] ) outcome_repository.add(new_outcome) offer_entity = Offer( user_id=user_id, event_id=event_id, offer_date=offer_date, expiry_date=expiry_date, payment_required=payment_required, travel_award=travel_award, accommodation_award=accommodation_award ) db.session.add(offer_entity) db.session.commit() email_user( 'offer', template_parameters=dict( host=misc.get_baobab_host(), expiry_date=offer_entity.expiry_date.strftime("%Y-%m-%d"), event_email_from=event_email_from ), event=event, user=user) return offer_info(offer_entity), 201
def post(self): args = self.post_req_parser.parse_args() response_id = args['response_id'] title = args['title'] firstname = args['firstname'] lastname = args['lastname'] relation = args['relation'] email = args['email'] user = user_repository.get_by_id(g.current_user['id']) if not user: return USER_NOT_FOUND event = event_repository.get_event_by_response_id(response_id) if not event: return EVENT_NOT_FOUND response = response_repository.get_by_id(response_id) if not response: return RESPONSE_NOT_FOUND reference_request = ReferenceRequest(response_id=response_id, title=title, firstname=firstname, lastname=lastname, relation=relation, email=email) reference_request_repository.create(reference_request) link = "{host}/reference/{token}".format(host=misc.get_baobab_host(), token=reference_request.token) candidate, candidate_firstname, nominator = _get_candidate_nominator( response) if nominator is None: nomination_text = "has nominated themself" else: nomination_text = "has been nominated by {}".format(nominator) subject = 'REFERENCE REQUEST - {}'.format(event.name) body = REFERENCE_REQUEST_EMAIL_BODY.format( title=title, firstname=firstname, lastname=lastname, candidate=candidate, candidate_firstname=candidate_firstname, nomination_text=nomination_text, event_name=event.name, event_url=event.url, application_close_date=event.application_close, link=link) send_mail(recipient=email, subject=subject, body_text=body) reference_request.set_email_sent(datetime.now()) reference_request_repository.add(reference_request) return reference_request, 201
def post(self, send_email=True): args = self.req_parser.parse_args() event_id = args['event_id'] email = args['email'] role = args['role'] user = user_repository.get_by_email(email, g.organisation.id) if not user: return USER_NOT_FOUND event = event_repository.get_by_id(event_id) if not event: return EVENT_NOT_FOUND existingInvitedGuest = db.session.query(InvitedGuest).filter( InvitedGuest.event_id == event_id).filter( InvitedGuest.user_id == user.id).first() if existingInvitedGuest: return INVITED_GUEST_FOR_EVENT_EXISTS invitedGuest = InvitedGuest(event_id=event_id, user_id=user.id, role=role) db.session.add(invitedGuest) try: db.session.commit() except IntegrityError: LOGGER.error("Failed to add invited guest: {}".format(email)) return ADD_INVITED_GUEST_FAILED if send_email: try: send_mail(recipient=user.email, subject='Your invitation to {}'.format(event.name), body_text=GUEST_EMAIL_TEMPLATE.format( user_title=user.user_title, firstname=user.firstname, lastname=user.lastname, role=role, event_name=event.name, event_key=event.key, system_name=g.organisation.system_name, host=misc.get_baobab_host())) except Exception as e: LOGGER.error( 'Failed to send email to invited guest with user Id {}, due to {}' .format(user.id, e)) return INVITED_GUEST_EMAIL_FAILED return invitedGuest_info(invitedGuest, user), 201
def post(self): args = self.post_req_parser.parse_args() response_id = args['response_id'] title = args['title'] firstname = args['firstname'] lastname = args['lastname'] relation = args['relation'] email = args['email'] user = user_repository.get_by_id(g.current_user['id']) if not user: return USER_NOT_FOUND event = event_repository.get_event_by_response_id(response_id) if not event: return EVENT_NOT_FOUND response = response_repository.get_by_id(response_id) if not response: return RESPONSE_NOT_FOUND reference_request = ReferenceRequest(response_id=response_id, title=title, firstname=firstname, lastname=lastname, relation=relation, email=email) reference_request_repository.create(reference_request) link = "{host}/reference/{token}".format(host=misc.get_baobab_host(), token=reference_request.token) try: candidate, candidate_firstname, nominator = _get_candidate_nominator( response) except ValueError as e: LOGGER.error(e) return BAD_CONFIGURATION email_user('reference-request-self-nomination' if nominator is None else 'reference-request', template_parameters=dict( candidate=candidate, candidate_firstname=candidate_firstname, nominator=nominator, event_url=event.url, application_close_date=event.application_close, link=link), event=event, user=user) reference_request.set_email_sent(datetime.now()) reference_request_repository.add(reference_request) return reference_request, 201
def post(self, send_email=True): args = self.req_parser.parse_args() event_id = args['event_id'] email = args['email'] role = args['role'] user = user_repository.get_by_email(email, g.organisation.id) if not user: return USER_NOT_FOUND event = event_repository.get_by_id(event_id) if not event: return EVENT_NOT_FOUND existingInvitedGuest = db.session.query(InvitedGuest).filter( InvitedGuest.event_id == event_id).filter(InvitedGuest.user_id == user.id).first() if existingInvitedGuest: return INVITED_GUEST_FOR_EVENT_EXISTS invitedGuest = InvitedGuest( event_id=event_id, user_id=user.id, role=role ) db.session.add(invitedGuest) try: db.session.commit() except IntegrityError: LOGGER.error( "Failed to add invited guest: {}".format(email)) return ADD_INVITED_GUEST_FAILED if send_email: try: email_user( 'guest-invitation-with-registration' if event.is_registration_open else 'guest-invitation', template_parameters=dict( role=role, system_name=g.organisation.system_name, host=misc.get_baobab_host(), event_key=event.key ), event=event, user=user) except Exception as e: LOGGER.error('Failed to send email to invited guest with user Id {}, due to {}'.format(user.id, e)) return INVITED_GUEST_EMAIL_FAILED return invitedGuest_info(invitedGuest, user), 201
def post(self, event_id): req_parser = reqparse.RequestParser() req_parser.add_argument('user_id', type=int, required=True) req_parser.add_argument('outcome', type=str, required=True) args = req_parser.parse_args() event = event_repository.get_by_id(event_id) if not event: return errors.EVENT_NOT_FOUND user = user_repository.get_by_id(args['user_id']) if not user: return errors.USER_NOT_FOUND try: status = Status[args['outcome']] except KeyError: return errors.OUTCOME_STATUS_NOT_VALID try: # Set existing outcomes to no longer be the latest outcome existing_outcomes = outcome_repository.get_all_by_user_for_event(args['user_id'], event_id) for existing_outcome in existing_outcomes: existing_outcome.reset_latest() # Add new outcome outcome = Outcome( event_id, args['user_id'], status, g.current_user['id']) outcome_repository.add(outcome) db.session.commit() if status != Status.ACCEPTED: # Email will be sent with offer for accepted candidates email_user( 'outcome-rejected' if status == Status.REJECTED else 'outcome-waitlist', template_parameters=dict( host=misc.get_baobab_host() ), event=event, user=user, ) return outcome, 201 except SQLAlchemyError as e: LOGGER.error("Database error encountered: {}".format(e)) return errors.DB_NOT_AVAILABLE except: LOGGER.error("Encountered unknown error: {}".format(traceback.format_exc())) return errors.DB_NOT_AVAILABLE
def post(self): args = self.post_req_parser.parse_args() user_id = g.current_user['id'] event_id = args['event_id'] reviewer_user_email = args['reviewer_user_email'] num_reviews = args['num_reviews'] event = db.session.query(Event).filter(Event.id == event_id).first() if not event: return EVENT_NOT_FOUND current_user = user_repository.get_by_id(user_id) if not current_user.is_event_admin(event_id): return FORBIDDEN reviewer_user = user_repository.get_by_email(reviewer_user_email, g.organisation.id) if reviewer_user is None: return USER_NOT_FOUND if not reviewer_user.is_reviewer(event_id): self.add_reviewer_role(reviewer_user.id, event_id) config = review_configuration_repository.get_configuration_for_event( event_id) response_ids = self.get_eligible_response_ids( event_id, reviewer_user.id, num_reviews, config.num_reviews_required) response_reviewers = [ ResponseReviewer(response_id, reviewer_user.id) for response_id in response_ids ] db.session.add_all(response_reviewers) db.session.commit() if len(response_ids) > 0: send_mail(recipient=reviewer_user.email, subject='You have been assigned reviews in Baobab', body_text=ASSIGNED_BODY.format( title=reviewer_user.user_title, firstname=reviewer_user.firstname, lastname=reviewer_user.lastname, num_reviews=len(response_ids), baobab_host=misc.get_baobab_host(), system_name=g.organisation.system_name, event_key=event.key, event=event.name)) return {}, 201
def post(self, event_id): parser = reqparse.RequestParser() parser.add_argument('response_ids', type=int, required=True, action='append') parser.add_argument('reviewer_email', type=str, required=True) args = parser.parse_args() response_ids = args['response_ids'] reviewer_email = args['reviewer_email'] filtered_response_ids = response_repository.filter_ids_to_event( response_ids, event_id) print('response_ids:', response_ids) print('filtered_response_ids:', filtered_response_ids) if set(filtered_response_ids) != set(response_ids): return FORBIDDEN event = event_repository.get_by_id(event_id) reviewer_user = user_repository.get_by_email(reviewer_email, g.organisation.id) if reviewer_user is None: return USER_NOT_FOUND if not reviewer_user.is_reviewer(event_id): _add_reviewer_role(reviewer_user.id, event_id) response_reviewers = [ ResponseReviewer(response_id, reviewer_user.id) for response_id in response_ids ] db.session.add_all(response_reviewers) db.session.commit() if len(response_ids) > 0: email_user('reviews-assigned', template_parameters=dict( num_reviews=len(response_ids), baobab_host=misc.get_baobab_host(), system_name=g.organisation.system_name, event_key=event.key), event=event, user=reviewer_user) return {}, 201
def post(self): args = self.post_req_parser.parse_args() user_id = g.current_user['id'] event_id = args['event_id'] reviewer_user_email = args['reviewer_user_email'] num_reviews = args['num_reviews'] event = event_repository.get_by_id(event_id) if not event: return EVENT_NOT_FOUND current_user = user_repository.get_by_id(user_id) if not current_user.is_event_admin(event_id): return FORBIDDEN reviewer_user = user_repository.get_by_email(reviewer_user_email, g.organisation.id) if reviewer_user is None: return USER_NOT_FOUND if not reviewer_user.is_reviewer(event_id): _add_reviewer_role(reviewer_user.id, event_id) config = review_configuration_repository.get_configuration_for_event( event_id) response_ids = self.get_eligible_response_ids( event_id, reviewer_user.id, num_reviews, config.num_reviews_required) response_reviewers = [ ResponseReviewer(response_id, reviewer_user.id) for response_id in response_ids ] db.session.add_all(response_reviewers) db.session.commit() if len(response_ids) > 0: email_user('reviews-assigned', template_parameters=dict( num_reviews=len(response_ids), baobab_host=misc.get_baobab_host(), system_name=g.organisation.system_name, event_key=event.key), event=event, user=reviewer_user) return {}, 201
def post(self): LOGGER.debug('Received post request for reference-request') args = self.post_req_parser.parse_args() response_id = args['response_id'] title = args['title'] firstname = args['firstname'] lastname = args['lastname'] relation = args['relation'] email = args['email'] user = user_repository.get_by_id(g.current_user['id']) if not user: return USER_NOT_FOUND response_event = event_repository.get_event_by_response_id(response_id) if not response_event or not response_event.Event: return EVENT_NOT_FOUND event = response_event.Event reference_request = ReferenceRequest(response_id=response_id, title=title, firstname=firstname, lastname=lastname, relation=relation, email=email) reference_request_repository.create(reference_request) link = "{host}/{key}/reference?token={token}".format( host=misc.get_baobab_host(), key=event.key, token=reference_request.token) subject = 'REFERENCE REQUEST - {}'.format(event.name) body = REFERENCE_REQUEST_EMAIL_BODY.format( title=title, firstname=firstname, lastname=lastname, event_description=event.description, link=link, candidate_firstname=user.firstname, candidate_lastname=user.lastname, application_close_date=event.application_close) send_mail(recipient=email, subject=subject, body_text=body) reference_request.set_email_sent(datetime.now()) reference_request_repository.update(reference_request) return {}, 201
def put(self): args = self.put_req_parser.parse_args() firstname = args['firstname'] lastname = args['lastname'] user_title = args['user_title'] email = args['email'] user = db.session.query(AppUser).filter( AppUser.id == g.current_user['id']).first() if user.email != email: user.update_email(email) user.firstname = firstname user.lastname = lastname user.user_title = user_title try: db.session.commit() except Exception as e: LOGGER.error("Exception updating user profile - {}".format(e)) return ERROR_UPDATING_USER_PROFILE if not user.verified_email: send_mail(recipient=user.email, sender_name=g.organisation.name, sender_email=g.organisation.email_from, subject='{} Email Re-Verification'.format( g.organisation.system_name), body_text=VERIFY_EMAIL_BODY.format( title=user_title, firstname=firstname, lastname=lastname, system=g.organisation.system_name, organisation=g.organisation.name, host=misc.get_baobab_host(), token=user.verify_token)) LOGGER.debug("Sent re-verification email to {}".format(user.email)) roles = db.session.query(EventRole).filter( EventRole.user_id == user.id).all() return user_info(user, roles), 200
def put(self): args = self.put_req_parser.parse_args() firstname = args['firstname'] lastname = args['lastname'] user_title = args['user_title'] email = args['email'] user_primaryLanguage = args['language'] user = db.session.query(AppUser).filter( AppUser.id == g.current_user['id']).first() if user.email != email: user.update_email(email) user.firstname = firstname user.lastname = lastname user.user_title = user_title user.user_primaryLanguage = user_primaryLanguage try: db.session.commit() except Exception as e: LOGGER.error("Exception updating user profile - {}".format(e)) return ERROR_UPDATING_USER_PROFILE if not user.verified_email: email_user( 'verify-email', template_parameters=dict( system=g.organisation.system_name, organisation=g.organisation.name, host=misc.get_baobab_host(), token=user.verify_token ), user=user, subject_parameters=dict(system=g.organisation.system_name)) LOGGER.debug("Sent re-verification email to {}".format(user.email)) roles = db.session.query(EventRole).filter( EventRole.user_id == user.id).all() return user_info(user, roles), 200
def post(self): args = self.req_parser.parse_args() user_api = UserAPI.UserAPI() user, status = user_api.post(invitedGuest=True) if status != 201: return user, status invited_guest_api = InvitedGuestAPI() invited_guest_info, status = invited_guest_api.post(send_email=False) if status == 201: event_id = invited_guest_info['event_id'] role = invited_guest_info['role'] user = user_repository.get_by_id(user['id']) event = event_repository.get_by_id(event_id) reset_code = misc.make_code() password_reset = PasswordReset(user=user) db.session.add(password_reset) db.session.commit() try: send_mail(recipient=user.email, subject='Your invitation to {}'.format(event.name), body_text=NEW_GUEST_EMAIL_TEMPLATE.format( user_title=user.user_title, firstname=user.firstname, lastname=user.lastname, role=role, event_name=event.name, event_key=event.key, system_name=g.organisation.system_name, host=misc.get_baobab_host(), reset_code=password_reset.code)) except Exception as e: LOGGER.error( 'Failed to send email for invited guest with user Id {} due to: {}' .format(user.id, e)) return INVITED_GUEST_EMAIL_FAILED return invited_guest_info, status
def post(self): args = self.req_parser.parse_args() user_api = UserAPI.UserAPI() user, status = user_api.post(invitedGuest=True) if status != 201: return user, status invited_guest_api = InvitedGuestAPI() invited_guest_info, status = invited_guest_api.post(send_email=False) if status == 201: event_id = invited_guest_info['event_id'] role = invited_guest_info['role'] user = user_repository.get_by_id(user['id']) event = event_repository.get_by_id(event_id) reset_code = misc.make_code() password_reset=PasswordReset(user=user) db.session.add(password_reset) db.session.commit() try: email_user( 'new-guest-registration' if event.is_registration_open else 'new-guest-no-registration', template_parameters=dict( event_key=event.key, system_name=g.organisation.system_name, host=misc.get_baobab_host(), role=role, reset_code=password_reset.code, ), event=event, user=user ) except Exception as e: LOGGER.error('Failed to send email for invited guest with user Id {} due to: {}'.format(user.id, e)) return INVITED_GUEST_EMAIL_FAILED return invited_guest_info, status
def get(self): email = request.args.get('email') LOGGER.debug("Resending verification email to: {}".format(email)) user = user_repository.get_by_email(email, g.organisation.id) if not user: LOGGER.debug( "User not found for email: {} in organisation: {}".format( email, g.organisation.name)) return USER_NOT_FOUND if user.verify_token is None: user.verify_token = make_code() try: db.session.commit() except IntegrityError: LOGGER.error("Adding verify token for {} failed. ".format(email)) return ADD_VERIFY_TOKEN_FAILED send_mail(recipient=user.email, sender_name=g.organisation.name, sender_email=g.organisation.email_from, subject='{} Email Verification'.format( g.organisation.system_name), body_text=VERIFY_EMAIL_BODY.format( title=user.user_title, firstname=user.firstname, lastname=user.lastname, system=g.organisation.system_name, organisation=g.organisation.name, host=misc.get_baobab_host(), token=user.verify_token)) LOGGER.debug("Resent email verification to: {}".format(email)) return {}, 201
def post(self): req_parser = reqparse.RequestParser() req_parser.add_argument('email', type=str, required=True) args = req_parser.parse_args() LOGGER.debug( "Requesting password reset for email {} and organisation {}". format(args['email'], g.organisation.name)) user = user_repository.get_by_email(args['email'], g.organisation.id) if not user: LOGGER.debug( "No user found for email {} and organisation {}".format( args['email'], g.organisation.name)) return USER_NOT_FOUND password_reset = PasswordReset(user=user) db.session.add(password_reset) db.session.commit() send_mail(recipient=args['email'], sender_name=g.organisation.name, sender_email=g.organisation.email_from, subject='Password Reset for {}'.format( g.organisation.system_name), body_text=RESET_EMAIL_BODY.format( title=user.user_title, firstname=user.firstname, lastname=user.lastname, system=g.organisation.system_name, organisation=g.organisation.name, host=misc.get_baobab_host(), token=password_reset.code)) return {}, 201