university-final-iot-backend/app/api/resources/dashboard.py

from flask import g, request
from flask_restful import abort
from marshmallow import fields, Schema
from webargs.flaskparser import use_args
from flasgger import swag_from
import app.dashboards.api as dashboard
from app.api.auth_protection import ProtectedResource
from app.api.schemas import BaseResourceSchema


class DashboardSchema(BaseResourceSchema):
    id = fields.Integer(dump_only=True)
    active = fields.Boolean(required=False)
    dashboard_data = fields.Raw()


class DashboardIdSchema(Schema):
    id = fields.Integer()


class DashboardResource(ProtectedResource):
    @swag_from('swagger/get_dashboard_spec.yaml')
    def get(self, dashboard_id):
        requested_dashboard = dashboard.get_dashboard(dashboard_id)
        if requested_dashboard.account_id != g.current_account.id:
            abort(403, message='You are not allowed to access this dashboard',
                  status='error')
        return DashboardSchema().dump(requested_dashboard), 200

    @use_args(DashboardSchema(), locations=('json',))
    @swag_from('swagger/update_dashboard_spec.yaml')
    def put(self, args, dashboard_id):
        requested_dashboard = dashboard.get_dashboard(dashboard_id)
        if requested_dashboard.account_id != g.current_account.id:
            abort(403, message='You are not allowed to access this dashboard',
                  status='error')
        if args.get('dashboard_data') is None:
            abort(400, message='Missing dashboard_data', status='error')
        if args.get('active') is None:
            abort(400, message='Missing active', status='error')
        success = dashboard.patch_dashboard(
                g.current_account.id,
                dashboard_id,
                args['dashboard_data'],
                args['active'])
        if success:
            return '', 204

    @use_args(DashboardSchema(), locations=('json',))
    @swag_from('swagger/update_dashboard_spec.yaml')
    def patch(self, args, dashboard_id):
        requested_dashboard = dashboard.get_dashboard(dashboard_id)
        if requested_dashboard.account_id != g.current_account.id:
            abort(403, message='You are not allowed to access this dashboard',
                  status='error')
        success = dashboard.patch_dashboard(
                g.current_account.id,
                dashboard_id,
                args.get('dashboard_data'),
                args.get('active'))
        if success:
            return '', 204

    @swag_from('swagger/delete_dashboard_spec.yaml')
    def delete(self, dashboard_id):
        requested_dashboard = dashboard.get_dashboard(dashboard_id)
        if requested_dashboard.account_id != g.current_account.id:
            abort(403, message='You are not allowed to access this dashboard',
                  status='error')
        dashboard.delete_dashboard(dashboard_id)
        return '', 204


class DashboardListResource(ProtectedResource):
    @use_args(DashboardSchema(), locations=('json',))
    @swag_from('swagger/create_dashboard_spec.yaml')
    def post(self, args):
        success = dashboard.create_dashboard(
                args['dashboard_data'],
                g.current_account.id)
        if success:
            return '', 201

    @swag_from('swagger/get_dashboards_spec.yaml')
    def get(self):
        request_args = request.args
        return DashboardSchema().dump(
                dashboard.get_dashboards(
                    g.current_account.id,
                    request_args.get('active')), many=True), 200
Add active field to dashboard 2018-10-15 17:51:51 +00:00			`from flask import g, request`
Protect dashboards from unauthorized access 2018-09-20 13:19:41 +00:00			`from flask_restful import abort`
Add active field to dashboard 2018-10-15 17:51:51 +00:00			`from marshmallow import fields, Schema`
Add dashboards for users 2018-09-19 23:42:37 +00:00			`from webargs.flaskparser import use_args`
			`from flasgger import swag_from`
Remove code from dashboards __init__.py to separate modules 2018-10-06 11:46:32 +00:00			`import app.dashboards.api as dashboard`
Remove code from api __init__.py into separate modules 2018-10-06 12:07:40 +00:00			`from app.api.auth_protection import ProtectedResource`
Standardize all responses and requests * Remove root object from requests * Add "content" wrapper for all responses 2018-10-08 19:50:34 +00:00			`from app.api.schemas import BaseResourceSchema`
Add dashboards for users 2018-09-19 23:42:37 +00:00

Standardize all responses and requests * Remove root object from requests * Add "content" wrapper for all responses 2018-10-08 19:50:34 +00:00			`class DashboardSchema(BaseResourceSchema):`
Add dashboards for users 2018-09-19 23:42:37 +00:00			`id = fields.Integer(dump_only=True)`
Add active field to dashboard 2018-10-15 17:51:51 +00:00			`active = fields.Boolean(required=False)`
Add dashboards for users 2018-09-19 23:42:37 +00:00			`dashboard_data = fields.Raw()`


Add active field to dashboard 2018-10-15 17:51:51 +00:00			`class DashboardIdSchema(Schema):`
			`id = fields.Integer()`


Add dashboards for users 2018-09-19 23:42:37 +00:00			`class DashboardResource(ProtectedResource):`
			`@swag_from('swagger/get_dashboard_spec.yaml')`
			`def get(self, dashboard_id):`
Protect dashboards from unauthorized access 2018-09-20 13:19:41 +00:00			`requested_dashboard = dashboard.get_dashboard(dashboard_id)`
			`if requested_dashboard.account_id != g.current_account.id:`
			`abort(403, message='You are not allowed to access this dashboard',`
			`status='error')`
Standardize all responses and requests * Remove root object from requests * Add "content" wrapper for all responses 2018-10-08 19:50:34 +00:00			`return DashboardSchema().dump(requested_dashboard), 200`
Add dashboards for users 2018-09-19 23:42:37 +00:00
Standardize all responses and requests * Remove root object from requests * Add "content" wrapper for all responses 2018-10-08 19:50:34 +00:00			`@use_args(DashboardSchema(), locations=('json',))`
Add dashboards for users 2018-09-19 23:42:37 +00:00			`@swag_from('swagger/update_dashboard_spec.yaml')`
Fix dashboard PUT endpoint 2018-09-23 13:04:02 +00:00			`def put(self, args, dashboard_id):`
Protect dashboards from unauthorized access 2018-09-20 13:19:41 +00:00			`requested_dashboard = dashboard.get_dashboard(dashboard_id)`
			`if requested_dashboard.account_id != g.current_account.id:`
			`abort(403, message='You are not allowed to access this dashboard',`
			`status='error')`
Add active field to dashboard 2018-10-15 17:51:51 +00:00			`if args.get('dashboard_data') is None:`
			`abort(400, message='Missing dashboard_data', status='error')`
			`if args.get('active') is None:`
			`abort(400, message='Missing active', status='error')`
			`success = dashboard.patch_dashboard(`
			`g.current_account.id,`
			`dashboard_id,`
			`args['dashboard_data'],`
			`args['active'])`
			`if success:`
			`return '', 204`

			`@use_args(DashboardSchema(), locations=('json',))`
			`@swag_from('swagger/update_dashboard_spec.yaml')`
			`def patch(self, args, dashboard_id):`
			`requested_dashboard = dashboard.get_dashboard(dashboard_id)`
			`if requested_dashboard.account_id != g.current_account.id:`
			`abort(403, message='You are not allowed to access this dashboard',`
			`status='error')`
			`success = dashboard.patch_dashboard(`
			`g.current_account.id,`
Add dashboards for users 2018-09-19 23:42:37 +00:00			`dashboard_id,`
Add active field to dashboard 2018-10-15 17:51:51 +00:00			`args.get('dashboard_data'),`
			`args.get('active'))`
Add dashboards for users 2018-09-19 23:42:37 +00:00			`if success:`
			`return '', 204`

Add delete dashboard route 2018-10-10 20:19:13 +00:00			`@swag_from('swagger/delete_dashboard_spec.yaml')`
			`def delete(self, dashboard_id):`
			`requested_dashboard = dashboard.get_dashboard(dashboard_id)`
			`if requested_dashboard.account_id != g.current_account.id:`
			`abort(403, message='You are not allowed to access this dashboard',`
			`status='error')`
			`dashboard.delete_dashboard(dashboard_id)`
			`return '', 204`

Add dashboards for users 2018-09-19 23:42:37 +00:00
			`class DashboardListResource(ProtectedResource):`
Standardize all responses and requests * Remove root object from requests * Add "content" wrapper for all responses 2018-10-08 19:50:34 +00:00			`@use_args(DashboardSchema(), locations=('json',))`
Add dashboards for users 2018-09-19 23:42:37 +00:00			`@swag_from('swagger/create_dashboard_spec.yaml')`
			`def post(self, args):`
			`success = dashboard.create_dashboard(`
			`args['dashboard_data'],`
			`g.current_account.id)`
			`if success:`
			`return '', 201`

			`@swag_from('swagger/get_dashboards_spec.yaml')`
			`def get(self):`
Add active field to dashboard 2018-10-15 17:51:51 +00:00			`request_args = request.args`
Standardize all responses and requests * Remove root object from requests * Add "content" wrapper for all responses 2018-10-08 19:50:34 +00:00			`return DashboardSchema().dump(`
Add active field to dashboard 2018-10-15 17:51:51 +00:00			`dashboard.get_dashboards(`
			`g.current_account.id,`
			`request_args.get('active')), many=True), 200`