Пример #1
0
    def post(self, request, pk):
        """
        Adds a document to the specified case
        """
        data = request.data

        for document in data:
            document["case"] = pk
            document["user"] = request.user.pk
            document["visible_to_exporter"] = False

        serializer = CaseDocumentCreateSerializer(data=data, many=True)
        if serializer.is_valid():
            serializer.save()

            for document in serializer.data:
                audit_trail_service.create(
                    actor=request.user,
                    verb=AuditType.UPLOAD_CASE_DOCUMENT,
                    target=get_case(pk),
                    payload={"file_name": document["name"]},
                )

            return JsonResponse(data={"documents": serializer.data},
                                status=status.HTTP_201_CREATED)

        delete_documents_on_bad_request(data)
        return JsonResponse(data={"errors": serializer.errors},
                            status=status.HTTP_400_BAD_REQUEST)
Пример #2
0
    def post(self, request):
        """ Create a new organisation. """
        data = request.data.copy()
        validate_only = request.data.get("validate_only", False)

        data["status"] = (OrganisationStatus.ACTIVE if getattr(
            request.user, "type", None) == UserType.INTERNAL else
                          OrganisationStatus.IN_REVIEW)
        serializer = OrganisationCreateUpdateSerializer(
            data=data, context={"validate_only": validate_only})

        if serializer.is_valid(raise_exception=True):
            if not validate_only:
                serializer.save()

            # Audit the creation of the organisation
            if not request.user.is_anonymous:
                audit_trail_service.create(
                    actor=request.user,
                    verb=AuditType.CREATED_ORGANISATION,
                    target=get_organisation_by_pk(serializer.data.get("id")),
                    payload={"organisation_name": serializer.data.get("name")},
                )
            else:
                audit_trail_service.create_system_user_audit(
                    verb=AuditType.REGISTER_ORGANISATION,
                    target=get_organisation_by_pk(serializer.data.get("id")),
                    payload={
                        "email": request.data["user"]["email"],
                        "organisation_name": serializer.data.get("name")
                    },
                )

            return JsonResponse(data=serializer.data,
                                status=status.HTTP_201_CREATED)
Пример #3
0
    def get(self, request, pk):
        """
        Concatenates all advice for a case
        """
        if self.team_advice.filter(
                team=request.user.govuser.team).count() == 0:
            user_cannot_manage_team_advice = check_if_user_cannot_manage_team_advice(
                pk, request.user.govuser)
            if user_cannot_manage_team_advice:
                return user_cannot_manage_team_advice

            team = self.request.user.govuser.team_id
            advice = self.advice.filter(user__team_id=team)
            group_advice(self.case, advice, request.user, AdviceLevel.TEAM)
            case_advice_contains_refusal(pk)

            audit_trail_service.create(
                actor=request.user,
                verb=AuditType.CREATED_TEAM_ADVICE,
                target=self.case,
            )

            team_advice = Advice.objects.filter(
                case=self.case, team_id=team).order_by("-created_at")
        else:
            team_advice = self.team_advice

        serializer = AdviceViewSerializer(team_advice, many=True)
        return JsonResponse(data={"advice": serializer.data},
                            status=status.HTTP_200_OK)
Пример #4
0
    def post(self, request, pk):
        """
        Post a goodstype
        """
        application = get_application(pk)
        if (hasattr(application, "goodstype_category")
                and application.goodstype_category
                in GoodsTypeCategory.IMMUTABLE_GOODS):
            raise BadRequestError(
                detail=
                "You cannot do this action for this type of open application")
        request.data["application"] = application
        serializer = GoodsTypeSerializer(data=request.data)

        if serializer.is_valid(raise_exception=True):
            serializer.save()

            audit_trail_service.create(
                actor=request.user,
                verb=AuditType.ADD_GOOD_TYPE_TO_APPLICATION,
                action_object=serializer.instance,
                target=application.get_case(),
                payload={"good_type_name": serializer.instance.description},
            )

            return JsonResponse(data={"good": serializer.data},
                                status=status.HTTP_201_CREATED)
Пример #5
0
    def delete(self, request, pk):
        """
        Removes the case officer currently assigned to a case off of it.
        """
        case = get_case(pk)

        if not case.case_officer:
            return HttpResponse(status=status.HTTP_400_BAD_REQUEST)

        data = {"case_officer": None}

        serializer = CaseOfficerUpdateSerializer(instance=case, data=data)

        if serializer.is_valid(raise_exception=True):
            user = case.case_officer

            serializer.save()
            audit_trail_service.create(
                actor=request.user,
                verb=AuditType.REMOVE_CASE_OFFICER_FROM_CASE,
                target=case,
                payload={
                    "case_officer":
                    user.email if not user.first_name else
                    f"{user.first_name} {user.last_name}"
                },
            )

            return JsonResponse(data={}, status=status.HTTP_200_OK)
Пример #6
0
    def put(self, request, pk):
        """
        Assigns a gov user to be the case officer for a case
        """
        case = get_case(pk)
        gov_user_pk = request.data.get("gov_user_pk")

        if not gov_user_pk:
            return JsonResponse(
                data={"errors": {
                    "user": [Cases.CaseOfficerPage.NONE]
                }},
                status=status.HTTP_400_BAD_REQUEST)

        data = {"case_officer": gov_user_pk}
        serializer = CaseOfficerUpdateSerializer(instance=case, data=data)

        if serializer.is_valid(raise_exception=True):
            user = get_user_by_pk(gov_user_pk)
            serializer.save()

            audit_trail_service.create(
                actor=request.user,
                verb=AuditType.ADD_CASE_OFFICER_TO_CASE,
                target=case,
                payload={
                    "case_officer":
                    user.email if not user.first_name else
                    f"{user.first_name} {user.last_name}"
                },
            )

            return JsonResponse(data={}, status=status.HTTP_200_OK)
Пример #7
0
    def post(self, request):
        """
        Create a new End User Advisory Enquiry query case instance
        """
        data = JSONParser().parse(request)
        if not data.get("end_user"):
            data["end_user"] = {}
        organisation_id = get_request_user_organisation_id(request)
        data["organisation"] = organisation_id
        data["end_user"]["organisation"] = organisation_id
        data["end_user"]["type"] = PartyType.END_USER
        data["submitted_by"] = request.user

        serializer = EndUserAdvisoryViewSerializer(data=data)

        try:
            if serializer.is_valid():
                if "validate_only" not in data or data["validate_only"] == "False":
                    eua = serializer.save()
                    audit_trail_service.create(
                        actor=request.user,
                        verb=AuditType.CREATED,
                        action_object=eua.get_case(),
                        payload={"status": {"new": eua.status.status}},
                    )
                    apply_flagging_rules_to_case(eua)
                    return JsonResponse(data={"end_user_advisory": serializer.data}, status=status.HTTP_201_CREATED)
                else:
                    return JsonResponse(data={}, status=status.HTTP_200_OK)

            return JsonResponse(data={"errors": serializer.errors}, status=status.HTTP_400_BAD_REQUEST)
        except serializers.ValidationError as e:
            return JsonResponse(data={"errors": e}, status=status.HTTP_400_BAD_REQUEST)
Пример #8
0
def audit_reviewed_organisation(user, organisation, decision):
    if decision == OrganisationStatus.ACTIVE:
        audit_trail_service.create(
            actor=user,
            verb=AuditType.APPROVED_ORGANISATION,
            target=organisation,
            payload={
                "organisation_name": organisation.name,
            },
        )
    else:
        audit_trail_service.create(
            actor=user,
            verb=AuditType.REJECTED_ORGANISATION,
            target=organisation,
            payload={
                "organisation_name": organisation.name,
            },
        )

    for email in organisation.users.annotate(
            email=F("user__baseuser_ptr__email")).values_list("email",
                                                              flat=True):
        gov_notify_service.send_email(
            email_address=email,
            template_type=TemplateType.ORGANISATION_STATUS,
            data=OrganisationStatusEmailData(
                organisation_name=organisation.name),
        )
Пример #9
0
    def submit_application(application: BaseApplication,
                           user: ExporterUser = None):
        if not user:
            user = UserOrganisationRelationship.objects.filter(
                organisation_id=application.organisation_id).first().user

        application.submitted_at = timezone.localtime()
        application.sla_remaining_days = get_application_target_sla(
            application.case_type.sub_type)
        application.status = get_case_status_by_status(
            CaseStatusEnum.SUBMITTED)
        application.save()

        if application.case_type.sub_type in [
                CaseTypeSubTypeEnum.STANDARD, CaseTypeSubTypeEnum.OPEN
        ]:
            set_case_flags_on_submitted_standard_or_open_application(
                application)

        add_goods_flags_to_submitted_application(application)
        apply_flagging_rules_to_case(application)

        audit_trail_service.create(
            actor=user.baseuser_ptr,
            verb=AuditType.UPDATED_STATUS,
            target=application.get_case(),
            payload={
                "status": {
                    "new": CaseStatusEnum.get_text(CaseStatusEnum.SUBMITTED),
                    "old": CaseStatusEnum.get_text(CaseStatusEnum.DRAFT),
                }
            },
        )

        return application
Пример #10
0
    def save(self, *args, **kwargs):
        from api.audit_trail import service as audit_trail_service

        audit_user = None
        user = None
        audit_note = None

        if "audit_user" in kwargs:
            audit_user = kwargs.pop("audit_user")

        if "user" in kwargs:
            user = kwargs.pop("user")

        if "audit_note" in kwargs:
            audit_note = kwargs.pop("audit_note")

        super().save(*args, **kwargs)
        if audit_user and user:
            audit_trail_service.create(
                actor=audit_user,
                verb=AuditType.ASSIGN_USER_TO_CASE,
                action_object=self.case,
                payload={
                    "user": user.first_name + " " + user.last_name,
                    "queue": self.queue.name,
                    "additional_text": audit_note,
                },
            )
Пример #11
0
    def delete(self, request, pk, party_pk):
        """
        Removes a party from application.
        """
        application = get_application(pk)

        try:
            poa = application.active_parties.all().get(party__pk=party_pk)
        except PartyOnApplication.DoesNotExist:
            return HttpResponse(status=status.HTTP_404_NOT_FOUND)

        if not application.party_is_editable(poa.party):
            return JsonResponse(
                data={"errors": [strings.Applications.Generic.INVALID_OPERATION_FOR_READ_ONLY_CASE_ERROR]},
                status=status.HTTP_400_BAD_REQUEST,
            )

        # Delete party
        application.delete_party(poa)

        # Audit
        audit_trail_service.create(
            actor=request.user,
            verb=AuditType.REMOVE_PARTY,
            target=application.get_case(),
            payload={"party_type": poa.party.type.replace("_", " "), "party_name": poa.party.name,},
        )

        return JsonResponse(data={"party": PartySerializer(poa.party).data}, status=status.HTTP_200_OK)
Пример #12
0
    def delete(self, request, pk, goodstype_pk):
        """
        Deletes a goodstype
        """
        application = get_application(pk)
        if (hasattr(application, "goodstype_category")
                and application.goodstype_category
                in GoodsTypeCategory.IMMUTABLE_GOODS):
            raise BadRequestError(
                detail=
                "You cannot do this action for this type of open application")
        goods_type = get_goods_type(goodstype_pk)
        if application.case_type.sub_type == CaseTypeSubTypeEnum.HMRC:
            delete_goods_type_document_if_exists(goods_type)
        goods_type.delete()

        audit_trail_service.create(
            actor=request.user,
            verb=AuditType.REMOVE_GOOD_TYPE_FROM_APPLICATION,
            action_object=goods_type,
            target=Case.objects.get(id=application.id),
            payload={"good_type_name": goods_type.description},
        )

        return JsonResponse(data={}, status=status.HTTP_200_OK)
Пример #13
0
    def get(self, request, pk):
        """
        Concatenates all advice for a case and returns it or just returns if final advice already exists
        """
        if len(self.final_advice) == 0:
            assert_user_has_permission(
                request.user.govuser,
                constants.GovPermissions.MANAGE_LICENCE_FINAL_ADVICE)

            group_advice(self.case, self.team_advice, request.user,
                         AdviceLevel.FINAL)

            audit_trail_service.create(
                actor=request.user,
                verb=AuditType.CREATED_FINAL_ADVICE,
                target=self.case,
            )
            final_advice = Advice.objects.filter(
                case=self.case).order_by("-created_at")
        else:
            final_advice = self.final_advice

        serializer = AdviceViewSerializer(final_advice, many=True)
        return JsonResponse(data={"advice": serializer.data},
                            status=status.HTTP_200_OK)
Пример #14
0
    def test_retrieve_audit_trail(self):
        service.create(actor=self.exporter_user, verb=AuditType.CREATED_FINAL_ADVICE, target=self.case)

        audit_trail_qs = service.get_activity_for_user_and_model(
            user=self.exporter_user.baseuser_ptr, object_type=self.case
        )

        self.assertEqual(audit_trail_qs.count(), 1)
Пример #15
0
    def put(self, request, pk):
        application = get_application(pk)
        if application.goodstype_category in GoodsTypeCategory.IMMUTABLE_DESTINATIONS:
            raise BadRequestError(
                detail=
                "You cannot do this action for this type of open application")
        data = request.data

        for good, countries in data.items():
            good = get_goods_type(good)

            # Validate that at least one country has been selected per good
            if not countries:
                return JsonResponse(
                    {"errors": "Select at least one country for each good"},
                    status=status.HTTP_400_BAD_REQUEST)

            # Validate that the countries given are valid countries
            if not Country.objects.filter(
                    pk__in=countries).count() == len(countries):
                return HttpResponse(status=status.HTTP_404_NOT_FOUND)

            initial_countries = list(good.countries.all())
            good.countries.set(countries)
            removed_countries = [
                country.name for country in initial_countries
                if country not in good.countries.all()
            ]
            added_countries = [
                country.name for country in good.countries.all()
                if country not in initial_countries
            ]

            if removed_countries:
                audit_trail_service.create(
                    actor=request.user,
                    verb=AuditType.REMOVED_COUNTRIES_FROM_GOOD,
                    action_object=good,
                    target=Case.objects.get(id=application.id),
                    payload={
                        "good_type_name": good.description,
                        "countries": ", ".join(removed_countries),
                    },
                )

            if added_countries:
                audit_trail_service.create(
                    actor=request.user,
                    verb=AuditType.ASSIGNED_COUNTRIES_TO_GOOD,
                    action_object=good,
                    target=Case.objects.get(id=application.id),
                    payload={
                        "good_type_name": good.description,
                        "countries": ", ".join(added_countries),
                    },
                )

        return JsonResponse(data=data, status=status.HTTP_200_OK)
Пример #16
0
 def perform_destroy(self, instance):
     instance.delete()
     case = get_case(instance.visit_case_id)
     audit_trail_service.create(
         actor=self.request.user,
         verb=AuditType.COMPLIANCE_PEOPLE_PRESENT_DELETED,
         action_object=case,
         payload={},
     )
Пример #17
0
    def perform_create(self, serializer):
        assert_user_has_permission(self.request.user.govuser, constants.GovPermissions.MAINTAIN_OGL)

        if not self.request.data.get("validate_only", False):
            instance = serializer.save()

            audit_trail_service.create(
                actor=self.request.user, verb=AuditType.OGL_CREATED, action_object=instance,
            )
Пример #18
0
    def test_audit_not_cascade_deleted(self):
        audit_qs = Audit.objects.all()

        self.assertEqual(audit_qs.count(), 1)

        service.create(actor=self.exporter_user, verb=AuditType.ADD_FLAGS, target=self.case)

        self.assertEqual(audit_qs.count(), 2)
        self.case.delete()
        self.assertEqual(audit_qs.count(), 2)
Пример #19
0
 def perform_create(self, serializer):
     party = serializer.save()
     case = get_case(self.kwargs["pk"])
     case.additional_contacts.add(party)
     audit_trail_service.create(
         actor=self.request.user,
         verb=AuditType.ADD_ADDITIONAL_CONTACT_TO_CASE,
         target=case,
         payload={"contact": serializer.data["name"]},
     )
Пример #20
0
    def change_status(self,
                      user,
                      status: CaseStatus,
                      note: Optional[str] = ""):
        """
        Sets the status for the case, runs validation on various parameters,
        creates audit entries and also runs flagging and automation rules
        """
        from api.cases.helpers import can_set_status
        from api.audit_trail import service as audit_trail_service
        from api.applications.libraries.application_helpers import can_status_be_set_by_gov_user
        from api.workflow.automation import run_routing_rules
        from api.workflow.flagging_rules_automation import apply_flagging_rules_to_case
        from api.licences.helpers import update_licence_status

        old_status = self.status.status

        # Only allow the final decision if the user has the MANAGE_FINAL_ADVICE permission
        if status.status == CaseStatusEnum.FINALISED:
            assert_user_has_permission(
                user.govuser, GovPermissions.MANAGE_LICENCE_FINAL_ADVICE)

        if not can_set_status(self, status.status):
            raise ValidationError({"status": [strings.Statuses.BAD_STATUS]})

        if not can_status_be_set_by_gov_user(
                user.govuser, old_status, status.status, is_mod=False):
            raise ValidationError({"status": ["Status cannot be set by user"]})

        self.status = status
        self.save()

        # Update licence status if applicable case status change
        update_licence_status(self, status.status)

        if CaseStatusEnum.is_terminal(
                old_status) and not CaseStatusEnum.is_terminal(
                    self.status.status):
            apply_flagging_rules_to_case(self)

        audit_trail_service.create(
            actor=user,
            verb=AuditType.UPDATED_STATUS,
            target=self,
            payload={
                "status": {
                    "new": CaseStatusEnum.get_text(self.status.status),
                    "old": old_status
                },
                "additional_text": note,
            },
        )

        if old_status != self.status.status:
            run_routing_rules(case=self, keep_status=True)
Пример #21
0
class SetQueues(APIView):
    authentication_classes = (GovAuthentication, )

    @transaction.atomic
    def put(self, request, pk):
        case = get_case(pk)
        request_queues = set(request.data.get("queues", []))
        queues = Queue.objects.filter(id__in=request_queues)
        note = request.data.get("note")

        if len(request_queues) > len(queues):
            queues_not_found = list(request_queues - set(
                str(id) for id in queues.values_list("id", flat=True)))
            return JsonResponse(
                data={
                    "errors": {
                        "queues":
                        [Cases.Queue.NOT_FOUND + str(queues_not_found)]
                    }
                },
                status=status.HTTP_400_BAD_REQUEST,
            )

        initial_queues = set(case.queues.all())
        queues = set(queues)
        case.queues.set(request_queues)

        removed_queues = initial_queues - queues
        new_queues = queues - initial_queues
        if removed_queues:
            # Remove case assignments when the case is remove from the queue
            CaseAssignment.objects.filter(case=case,
                                          queue__in=removed_queues).delete()
            audit_trail_service.create(
                actor=request.user,
                verb=AuditType.REMOVE_CASE,
                target=case,
                payload={
                    "queues": sorted([queue.name for queue in removed_queues]),
                    "additional_text": note
                },
            )
        if new_queues:
            audit_trail_service.create(
                actor=request.user,
                verb=AuditType.MOVE_CASE,
                target=case,
                payload={
                    "queues": sorted([queue.name for queue in new_queues]),
                    "additional_text": note
                },
            )
        return JsonResponse(data={"queues": list(request_queues)},
                            status=status.HTTP_200_OK)
Пример #22
0
    def post(self, request):
        """
        Create a new GoodsQuery case instance
        """
        data = request.data
        good = get_good(data["good_id"])

        data["organisation"] = get_request_user_organisation_id(request)

        is_clc_required = good.is_good_controlled is None
        is_pv_grading_required = good.is_pv_graded == GoodPvGraded.GRADING_REQUIRED

        errors = self._check_request_for_errors(good, is_clc_required, is_pv_grading_required)
        if errors:
            return JsonResponse(data={"errors": errors}, status=status.HTTP_400_BAD_REQUEST)

        good.status = GoodStatus.QUERY

        goods_query = GoodsQuery.objects.create(
            clc_control_list_entry=data.get("clc_control_list_entry"),
            clc_raised_reasons=data.get("clc_raised_reasons"),
            pv_grading_raised_reasons=data.get("pv_grading_raised_reasons"),
            good=good,
            organisation_id=data["organisation"],
            case_type_id=CaseTypeEnum.GOODS.id,
            status=get_starting_status(is_clc_required),
            submitted_at=django.utils.timezone.now(),
            submitted_by=request.user.exporteruser,
        )

        # attach flags based on what's required
        if is_clc_required:
            flag = Flag.objects.get(id=SystemFlags.GOOD_CLC_QUERY_ID)
            goods_query.flags.add(flag)
            goods_query.clc_responded = False
        if is_pv_grading_required:
            flag = Flag.objects.get(id=SystemFlags.GOOD_PV_GRADING_QUERY_ID)
            goods_query.flags.add(flag)
            goods_query.pv_grading_responded = False

        good.save()
        goods_query.save()

        audit_trail_service.create(
            actor=request.user,
            verb=AuditType.CREATED,
            action_object=goods_query.get_case(),
            payload={"status": {"new": goods_query.status.status}},
        )

        apply_flagging_rules_to_case(goods_query)

        return JsonResponse(data={"id": goods_query.id}, status=status.HTTP_201_CREATED)
Пример #23
0
    def post(self, request, pk):
        data = request.data
        data["application"] = pk

        if "validate_only" in data and not isinstance(data["validate_only"],
                                                      bool):
            return JsonResponse(
                data={"error": strings.Goods.VALIDATE_ONLY_ERROR},
                status=status.HTTP_400_BAD_REQUEST,
            )

        if "validate_only" in data and data["validate_only"] is True:
            # validate the value, quantity, and units relating to a good on an application.
            # note: Goods attached to applications also need documents. This is validated at a later stage.
            serializer = GoodOnApplicationCreateSerializer(data=data,
                                                           partial=True)
            if serializer.is_valid():
                return JsonResponse(status=status.HTTP_200_OK, data={})
        else:
            if "good_id" not in data:
                return JsonResponse(
                    data={"error": strings.Goods.GOOD_ID_ERROR},
                    status=status.HTTP_400_BAD_REQUEST,
                )

            data["good"] = data["good_id"]

            good = get_good_with_organisation(
                data.get("good"), get_request_user_organisation_id(request))

            if not good.missing_document_reason and GoodDocument.objects.filter(
                    good=good).count() == 0:
                return JsonResponse(
                    data={"error": strings.Goods.DOCUMENT_ERROR},
                    status=status.HTTP_400_BAD_REQUEST,
                )
            serializer = GoodOnApplicationCreateSerializer(data=data)
            if serializer.is_valid():
                serializer.save()

                audit_trail_service.create(
                    actor=request.user,
                    verb=AuditType.ADD_GOOD_TO_APPLICATION,
                    action_object=good,
                    target=Case.objects.get(id=pk),
                    payload={"good_name": good.description},
                )

                return JsonResponse(data={"good": serializer.data},
                                    status=status.HTTP_201_CREATED)

        return JsonResponse(data={"errors": serializer.errors},
                            status=status.HTTP_400_BAD_REQUEST)
Пример #24
0
    def post(self, request, pk):
        assert_user_has_permission(
            request.user.govuser,
            constants.GovPermissions.MANAGE_LICENCE_FINAL_ADVICE)

        data = {k: v for k, v in request.data.items() if v is not None}

        # Get list of all required item id's
        required_decisions = get_required_good_type_to_country_combinations(pk)
        required_decision_ids = set()
        for goods_type, country_list in required_decisions.items():
            for country in country_list:
                required_decision_ids.add(f"{goods_type}.{country}")

        if not required_decision_ids.issubset(data):
            missing_ids = required_decision_ids.difference(request.data)
            raise ParseError({
                missing_id: [Cases.GoodCountryMatrix.MISSING_ITEM]
                for missing_id in missing_ids
            })

        # Delete existing decision documents if decision changes
        existing_decisions = get_existing_good_type_to_country_decisions(pk)
        for decision_id in required_decision_ids:
            if (data.get(decision_id) !=
                    AdviceType.REFUSE) != existing_decisions.get(decision_id):
                # Proviso N/A as there is no proviso document type
                GeneratedCaseDocument.objects.filter(
                    case_id=pk,
                    advice_type__in=[AdviceType.APPROVE, AdviceType.REFUSE],
                    visible_to_exporter=False).delete()
                break

        # Update or create GoodCountryDecisions
        for id in required_decision_ids:
            goods_type_id, country_id = id.split(".")
            value = data[id] == AdviceType.APPROVE
            GoodCountryDecision.objects.update_or_create(
                case_id=pk,
                goods_type_id=goods_type_id,
                country_id=country_id,
                defaults={"approve": value})

        audit_trail_service.create(
            actor=request.user,
            verb=AuditType.UPDATED_GOOD_ON_DESTINATION_MATRIX,
            target=get_case(pk),
        )

        return JsonResponse(
            data={"good_country_decisions": list(required_decision_ids)},
            status=status.HTTP_201_CREATED)
Пример #25
0
    def delete(self, request, pk, ext_loc_pk):
        application = get_application(pk)
        if not is_case_status_draft(
                application.status.status
        ) and application.status.status in get_case_statuses(read_only=True):
            return JsonResponse(
                data={
                    "error":
                    f"Application status {application.status.status} is read-only."
                },
                status=status.HTTP_400_BAD_REQUEST,
            )

        if (not is_case_status_draft(application.status.status) and
                application.status.status != CaseStatusEnum.APPLICANT_EDITING):
            if ExternalLocationOnApplication.objects.filter(
                    application=application).count() == 1:
                return JsonResponse(
                    data={
                        "errors": {
                            "external_locations": [
                                "Go back and change your answer from ‘Change a site, or delete a good, "
                                "third party or country’ to ’Change something else’."
                            ]
                        }
                    },
                    status=status.HTTP_400_BAD_REQUEST,
                )

        removed_locations = ExternalLocationOnApplication.objects.filter(
            application=application, external_location__pk=ext_loc_pk)

        if removed_locations:
            audit_trail_service.create(
                actor=request.user,
                verb=AuditType.REMOVED_EXTERNAL_LOCATIONS_FROM_APPLICATION,
                target=application.get_case(),
                payload={
                    "locations": [
                        location.external_location.name + " " +
                        location.external_location.country.name
                        if location.external_location.country else
                        location.external_location.name
                        for location in removed_locations
                    ]
                },
            )

        removed_locations.delete()

        return HttpResponse(status=status.HTTP_204_NO_CONTENT)
Пример #26
0
    def generate_audit_trail(self, user, query):
        grading = (
            f"{query.good.pv_grading_details.prefix} "
            f"{get_pv_grading_value_from_key(query.good.pv_grading_details.grading)} "
            f"{query.good.pv_grading_details.suffix}"
        )

        audit_trail_service.create(
            actor=user,
            verb=AuditType.PV_GRADING_RESPONSE,
            action_object=query.good,
            target=query.get_case(),
            payload={"grading": grading},
        )
Пример #27
0
    def post(self, request, org_pk):
        if hasattr(request.user, "exporteruser"):
            assert_user_has_permission(request.user.exporteruser,
                                       ExporterPermissions.ADMINISTER_SITES,
                                       org_pk)

        data = request.data

        if "records_located_step" in data:
            if "site_records_stored_here" not in data:
                return JsonResponse(
                    data={
                        "errors": {
                            "site_records_stored_here":
                            [strings.Site.NO_RECORDS_LOCATED_AT]
                        }
                    },
                    status=status.HTTP_400_BAD_REQUEST,
                )

            if not str_to_bool(data["site_records_stored_here"]
                               ) and "site_records_located_at" not in data:
                return JsonResponse(
                    data={
                        "errors": {
                            "site_records_located_at":
                            [strings.Site.NO_SITE_SELECTED]
                        }
                    },
                    status=status.HTTP_400_BAD_REQUEST,
                )

        data["organisation"] = org_pk
        serializer = SiteCreateUpdateSerializer(data=data)

        if serializer.is_valid(raise_exception=True):
            if "validate_only" not in data or data["validate_only"] == "False":
                site = serializer.save()
                audit_trail_service.create(
                    actor=request.user,
                    verb=AuditType.CREATED_SITE,
                    target=site,
                    payload={
                        "site_name": site.name,
                    },
                )
                return JsonResponse(
                    data={"site": SiteViewSerializer(site).data},
                    status=status.HTTP_201_CREATED)
            return JsonResponse(data={})
Пример #28
0
    def perform_update(self, serializer):
        person = serializer.save()

        case = get_case(person.visit_case_id)

        audit_trail_service.create(
            actor=self.request.user,
            verb=AuditType.COMPLIANCE_PEOPLE_PRESENT_UPDATED,
            action_object=case,
            payload={
                "name": person.name,
                "job_title": person.job_title,
            },
        )
Пример #29
0
    def test_exporter_cannot_retrieve_internal_audit_trail_for_draft(self):
        # Create an audit entry on draft
        service.create(
            actor=self.gov_user, verb=AuditType.CREATED_CASE_NOTE, target=self.case, payload={"additional_text": "note"}
        )

        gov_audit_trail_qs = service.get_activity_for_user_and_model(
            user=self.gov_user.baseuser_ptr, object_type=self.case
        )
        exp_audit_trail_qs = service.get_activity_for_user_and_model(
            user=self.exporter_user.baseuser_ptr, object_type=self.case
        )

        self.assertEqual(gov_audit_trail_qs.count(), 1)
        self.assertEqual(exp_audit_trail_qs.count(), 0)
Пример #30
0
def create_submitted_audit(request: Request, application: HmrcQuery,
                           old_status: str) -> None:
    audit_trail_service.create(
        actor=request.user,
        verb=AuditType.UPDATED_STATUS,
        target=application.get_case(),
        payload={
            "status": {
                "new": CaseStatusEnum.get_text(CaseStatusEnum.SUBMITTED),
                "old": CaseStatusEnum.get_text(old_status),
            }
        },
        ignore_case_status=True,
        send_notification=False,
    )