def handle_put(self, request, user, *args, **kwargs): """Treat PUT requests to edit Group User. URL: ugroup/<id_ugroup>/ """ try: self.log.info('Edit Group User') # User permission if not has_perm(user, AdminPermission.USER_ADMINISTRATION, AdminPermission.WRITE_OPERATION): self.log.error( u'User does not have permission to perform the operation.') raise UserNotAuthorizedError(None) id_ugroup = kwargs.get('id_ugroup') # Load XML data xml_map, attrs_map = loads(request.raw_post_data) # XML data format networkapi_map = xml_map.get('networkapi') if networkapi_map is None: return self.response_error(3, u'There is no value to the networkapi tag of XML request.') ugroup_map = networkapi_map.get('user_group') if ugroup_map is None: return self.response_error(3, u'There is no value to the user_group tag of XML request.') id_ugroup = kwargs.get('id_ugroup') # Valid Group User ID if not is_valid_int_greater_zero_param(id_ugroup): self.log.error( u'The id_ugroup parameter is not a valid value: %s.', id_ugroup) raise InvalidValueError(None, 'id_ugroup', id_ugroup) # Find Group User by ID to check if it exist ugroup = UGrupo.get_by_pk(id_ugroup) # Valid name name = ugroup_map.get('nome') if not is_valid_string_minsize(name, 3) or not is_valid_string_maxsize(name, 100) or not is_valid_text(name): self.log.error(u'Parameter name is invalid. Value: %s', name) raise InvalidValueError(None, 'name', name) ugroup_existent = UGrupo.objects.filter( nome__iexact=name).exclude(id=id_ugroup) if len(ugroup_existent) > 0: raise UGrupoNameDuplicatedError( None, u'User group with name %s already exists' % name) # Valid read read = ugroup_map.get('leitura') if not is_valid_yes_no_choice(read): self.log.error(u'Parameter read is invalid. Value: %s', read) raise InvalidValueError(None, 'read', read) # Valid write write = ugroup_map.get('escrita') if not is_valid_yes_no_choice(write): self.log.error(u'Parameter write is invalid. Value: %s', write) raise InvalidValueError(None, 'write', write) # Valid edit edit = ugroup_map.get('edicao') if not is_valid_yes_no_choice(edit): self.log.error(u'Parameter edit is invalid. Value: %s', edit) raise InvalidValueError(None, 'edit', edit) # Valid remove remove = ugroup_map.get('exclusao') if not is_valid_yes_no_choice(remove): self.log.error( u'Parameter remove is invalid. Value: %s', remove) raise InvalidValueError(None, 'remove', remove) ugroup.nome = name ugroup.leitura = read ugroup.escrita = write ugroup.edicao = edit ugroup.exclusao = remove with distributedlock(LOCK_GROUP_USER % id_ugroup): try: # save user group ugroup.save() except Exception, e: self.log.error(u'Failed to save the GroupUser.') raise GrupoError(e, u'Failed to save the GroupUser.') return self.response(dumps_networkapi({'user_group': {'id': ugroup.id}})) except InvalidValueError, e: return self.response_error(269, e.param, e.value)
def handle_post(self, request, user, *args, **kwargs): """Treat POST request to add new user group. URL: ugroup/ """ try: if not has_perm(user, AdminPermission.USER_ADMINISTRATION, AdminPermission.WRITE_OPERATION): self.log.error( u'User does not have permission to perform the operation.') raise UserNotAuthorizedError(None) xml_map, attrs_map = loads(request.raw_post_data) self.log.debug('XML_MAP: %s', xml_map) networkapi_map = xml_map.get('networkapi') if networkapi_map is None: return self.response_error(3, u'There is no networkapi tag in request XML.') ugroup_map = networkapi_map.get('user_group') if ugroup_map is None: return self.response_error(3, u'There is no user_group tag in request XML.') # Valid name name = ugroup_map.get('nome') if not is_valid_string_minsize(name, 3) or not is_valid_string_maxsize(name, 100) or not is_valid_text(name): self.log.error(u'Parameter name is invalid. Value: %s', name) raise InvalidValueError(None, 'name', name) read = ugroup_map.get('leitura') if not is_valid_yes_no_choice(read): self.log.error(u'Parameter read is invalid. Value: %s', read) raise InvalidValueError(None, 'read', read) write = ugroup_map.get('escrita') if not is_valid_yes_no_choice(write): self.log.error(u'Parameter write is invalid. Value: %s', write) raise InvalidValueError(None, 'write', write) edit = ugroup_map.get('edicao') if not is_valid_yes_no_choice(edit): self.log.error(u'Parameter edit is invalid. Value: %s', edit) raise InvalidValueError(None, 'edit', edit) remove = ugroup_map.get('exclusao') if not is_valid_yes_no_choice(remove): self.log.error( u'Parameter remove is invalid. Value: %s', remove) raise InvalidValueError(None, 'remove', remove) ugroup = UGrupo() ugroup.nome = name ugroup.leitura = read ugroup.escrita = write ugroup.edicao = edit ugroup.exclusao = remove try: UGrupo.objects.get(nome__iexact=ugroup.nome) raise UGrupoNameDuplicatedError( None, u'User group with name %s already exists' % name) except UGrupo.DoesNotExist: pass try: # save user group ugroup.save() adm_perm = PermissaoAdministrativa() if ASSOCIATE_PERMISSION_AUTOMATICALLY: # Automatically associate 'authenticate' permission for # this group adm_perm.permission = Permission.get_by_pk( ID_AUTHENTICATE_PERMISSION) adm_perm.ugrupo = ugroup adm_perm.leitura = False adm_perm.escrita = True adm_perm.save() except Exception, e: self.log.error(u'Failed to save the GroupUser.') raise GrupoError(e, u'Failed to save the GroupUser.') return self.response(dumps_networkapi({'user_group': {'id': ugroup.id}}))
def handle_put(self, request, user, *args, **kwargs): """Treat PUT requests to edit Group User. URL: ugroup/<id_ugroup>/ """ try: self.log.info('Edit Group User') # User permission if not has_perm(user, AdminPermission.USER_ADMINISTRATION, AdminPermission.WRITE_OPERATION): self.log.error( u'User does not have permission to perform the operation.') raise UserNotAuthorizedError(None) id_ugroup = kwargs.get('id_ugroup') # Load XML data xml_map, attrs_map = loads(request.raw_post_data) # XML data format networkapi_map = xml_map.get('networkapi') if networkapi_map is None: return self.response_error( 3, u'There is no value to the networkapi tag of XML request.') ugroup_map = networkapi_map.get('user_group') if ugroup_map is None: return self.response_error( 3, u'There is no value to the user_group tag of XML request.') id_ugroup = kwargs.get('id_ugroup') # Valid Group User ID if not is_valid_int_greater_zero_param(id_ugroup): self.log.error( u'The id_ugroup parameter is not a valid value: %s.', id_ugroup) raise InvalidValueError(None, 'id_ugroup', id_ugroup) # Find Group User by ID to check if it exist ugroup = UGrupo.get_by_pk(id_ugroup) # Valid name name = ugroup_map.get('nome') if not is_valid_string_minsize( name, 3) or not is_valid_string_maxsize( name, 100) or not is_valid_text(name): self.log.error(u'Parameter name is invalid. Value: %s', name) raise InvalidValueError(None, 'name', name) ugroup_existent = UGrupo.objects.filter(nome__iexact=name).exclude( id=id_ugroup) if len(ugroup_existent) > 0: raise UGrupoNameDuplicatedError( None, u'User group with name %s already exists' % name) # Valid read read = ugroup_map.get('leitura') if not is_valid_yes_no_choice(read): self.log.error(u'Parameter read is invalid. Value: %s', read) raise InvalidValueError(None, 'read', read) # Valid write write = ugroup_map.get('escrita') if not is_valid_yes_no_choice(write): self.log.error(u'Parameter write is invalid. Value: %s', write) raise InvalidValueError(None, 'write', write) # Valid edit edit = ugroup_map.get('edicao') if not is_valid_yes_no_choice(edit): self.log.error(u'Parameter edit is invalid. Value: %s', edit) raise InvalidValueError(None, 'edit', edit) # Valid remove remove = ugroup_map.get('exclusao') if not is_valid_yes_no_choice(remove): self.log.error(u'Parameter remove is invalid. Value: %s', remove) raise InvalidValueError(None, 'remove', remove) ugroup.nome = name ugroup.leitura = read ugroup.escrita = write ugroup.edicao = edit ugroup.exclusao = remove with distributedlock(LOCK_GROUP_USER % id_ugroup): try: # save user group ugroup.save() except Exception, e: self.log.error(u'Failed to save the GroupUser.') raise GrupoError(e, u'Failed to save the GroupUser.') return self.response( dumps_networkapi({'user_group': { 'id': ugroup.id }})) except InvalidValueError, e: return self.response_error(269, e.param, e.value)