示例#1
0
文件: views.py 项目: Eyremba/ghiro
def new_image(request):
    """Upload a new image."""
    user = api_authenticate(request.POST.get("api_key"))

    if request.POST.get("case_id"):
        case = get_object_or_404(Case, pk=request.POST.get("case_id"))

        # Security check.
        if not case.can_write(user):
            return HttpResponse("You are not authorized to add image to this", status=400)

        if case.state == "C":
            return HttpResponse("You cannot add an image to a closed case", status=400)
    else:
        case = None

    task = Analysis.add_task(request.FILES["image"].temporary_file_path(),
                    file_name=request.FILES["image"].name, case=case, user=user,
                    content_type=request.FILES["image"].content_type,
                    image_id=save_file(file_path=request.FILES["image"].temporary_file_path(),
                              content_type=request.FILES["image"].content_type),
                    thumb_id=create_thumb(request.FILES["image"].temporary_file_path()))

    # Auditing.
    log_activity("I",
                 "Created new analysis via API %s" % task.file_name,
                 request,
                 user=user)

    response_data = {"id": task.id}
    return HttpResponse(json.dumps(response_data), content_type="application/json")
示例#2
0
def new_image(request):
    """Upload a new image."""
    user = api_authenticate(request.POST.get("api_key"))

    if request.POST.get("case_id"):
        case = get_object_or_404(Case, pk=request.POST.get("case_id"))

        # Security check.
        if not case.can_write(user):
            return HttpResponse("You are not authorized to add image to this",
                                status=400)
示例#3
0
def show_case(request):
    """Shows a case."""
    user = api_authenticate(request.POST.get("api_key"))

    if request.POST.get("case_id"):
        case = get_object_or_404(Case, pk=request.POST.get("case_id"))

        # Security check.
        if not case.can_read(user):
            return HttpResponse("You are not authorized to read this case",
                                status=400)
示例#4
0
def new_case(request):
    """Creates a new case."""
    user = api_authenticate(request.POST.get("api_key"))

    if request.POST.get("name"):
        case = Case(name=request.POST.get("name"),
                    description=request.POST.get("description"),
                    owner=user)
        case.save()

        # Auditing.
        log_activity("C", "Created new case via API %s" % case.name, request,
                     user)

        response_data = {"id": case.id}
        return HttpResponse(json.dumps(response_data),
                            content_type="application/json")
示例#5
0
文件: views.py 项目: Eyremba/ghiro
def show_case(request):
    """Shows a case."""
    user = api_authenticate(request.POST.get("api_key"))

    if request.POST.get("case_id"):
        case = get_object_or_404(Case, pk=request.POST.get("case_id"))

        # Security check.
        if not case.can_read(user):
            return HttpResponse("You are not authorized to read this case", status=400)

        response_data = {"id": case.id, "status": case.state, "name": case.name,
                         "description": case.description, "images":
                             [image.id for image in case.images.all()]}
        return HttpResponse(json.dumps(response_data), content_type="application/json")
    else:
        return HttpResponse("Missing parameter case_id", status=400)
示例#6
0
文件: views.py 项目: Eyremba/ghiro
def get_report(request):
    """Returns a report."""
    user = api_authenticate(request.POST.get("api_key"))

    if request.POST.get("task_id"):
        task = get_object_or_404(Analysis, pk=request.POST.get("task_id"))

        # Security check.
        if not task.can_read(user):
            return HttpResponse("You are not authorized to read this analysis", status=400)

        if task.state == "C":
            response_data = {"id": task.id, "status": task.state, "data": task.to_json}
        else:
            response_data = {"id": task.id, "status": task.state}
        return HttpResponse(json.dumps(response_data), content_type="application/json")
    else:
        return HttpResponse("Missing parameter task_id", status=400)
示例#7
0
文件: views.py 项目: Eyremba/ghiro
def new_case(request):
    """Creates a new case."""
    user = api_authenticate(request.POST.get("api_key"))

    if request.POST.get("name"):
        case = Case(name=request.POST.get("name"),
                    description=request.POST.get("description"),
                    owner=user)
        case.save()

        # Auditing.
        log_activity("C",
                     "Created new case via API %s" % case.name,
                     request,
                     user)

        response_data = {"id": case.id}
        return HttpResponse(json.dumps(response_data), content_type="application/json")
    else:
        return HttpResponse("Request not valid", status=400)
示例#8
0
def get_report(request):
    """Returns a report."""
    user = api_authenticate(request.POST.get("api_key"))

    if request.POST.get("task_id"):
        task = get_object_or_404(Analysis, pk=request.POST.get("task_id"))

        # Security check.
        if not task.can_read(user):
            return HttpResponse("You are not authorized to read this analysis",
                                status=400)

        if task.state == "C":
            response_data = {
                "id": task.id,
                "status": task.state,
                "data": task.to_json
            }
        else:
            response_data = {"id": task.id, "status": task.state}
        return HttpResponse(json.dumps(response_data),
                            content_type="application/json")
    else:
        return HttpResponse("Missing parameter task_id", status=400)