app/notify_client/user_api_client.py

from notifications_python_client.notifications import BaseAPIClient
from notifications_python_client.errors import HTTPError

from app.notify_client.models import User


class UserApiClient(BaseAPIClient):
    def __init__(self):
        super().__init__("a", "b", "c")

    def init_app(self, app):
        self.base_url = app.config['API_HOST_NAME']
        self.service_id = app.config['ADMIN_CLIENT_USER_NAME']
        self.api_key = app.config['ADMIN_CLIENT_SECRET']
        self.max_failed_login_count = app.config["MAX_FAILED_LOGIN_COUNT"]

    def register_user(self, name, email_address, mobile_number, password):
        data = {
            "name": name,
            "email_address": email_address,
            "mobile_number": mobile_number,
            "password": password
        }
        user_data = self.post("/user", data)
        return User(user_data['data'], max_failed_login_count=self.max_failed_login_count)

    def get_user(self, id):
        url = "/user/{}".format(id)
        user_data = self.get(url)
        return User(user_data['data'], max_failed_login_count=self.max_failed_login_count)

    def get_user_by_email(self, email_address):
        user_data = self.get('/user/email', params={'email': email_address})
        return User(user_data['data'], max_failed_login_count=self.max_failed_login_count)

    def get_user_by_email_or_none(self, email_address):
        try:
            return self.get_user_by_email(email_address)
        except HTTPError as e:
            if e.status_code == 404:
                return None

    def get_users(self):
        users_data = self.get("/user")['data']
        users = []
        for user in users_data:
            users.append(User(user, max_failed_login_count=self.max_failed_login_count))
        return users

    def update_user(self, user):
        data = user.serialize()
        url = "/user/{}".format(user.id)
        user_data = self.put(url, data=data)
        return User(user_data['data'], max_failed_login_count=self.max_failed_login_count)

    def verify_password(self, user_id, password):
        try:
            url = "/user/{}/verify/password".format(user_id)
            data = {"password": password}
            self.post(url, data=data)
            return True
        except HTTPError as e:
            if e.status_code == 400 or e.status_code == 404:
                return False

    def send_verify_code(self, user_id, code_type, to):
        data = {'to': to}
        endpoint = '/user/{0}/{1}-code'.format(user_id, code_type)
        self.post(endpoint, data=data)

    def send_verify_email(self, user_id, to):
        data = {'to': to}
        endpoint = '/user/{0}/email-verification'.format(user_id)
        self.post(endpoint, data=data)

    def send_already_registered_email(self, user_id, to):
        data = {'email': to}
        endpoint = '/user/{0}/email-already-registered'.format(user_id)
        self.post(endpoint, data=data)

    def check_verify_code(self, user_id, code, code_type):
        data = {'code_type': code_type, 'code': code}
        endpoint = '/user/{}/verify/code'.format(user_id)
        try:
            resp = self.post(endpoint, data=data)
            return True, ''
        except HTTPError as e:
            if e.status_code == 400 or e.status_code == 404:
                if 'Code not found' in e.message:
                    return False, 'Code not found'
                elif 'Code has expired' in e.message:
                    return False, 'Code has expired'
                else:
                    # TODO what is the default message?
                    return False, 'Code not found'
            raise e

    def get_users_for_service(self, service_id):
        endpoint = '/service/{}/users'.format(service_id)
        resp = self.get(endpoint)
        return [User(data) for data in resp['data']]

    def add_user_to_service(self, service_id, user_id, permissions):
        endpoint = '/service/{}/users/{}'.format(service_id, user_id)
        data = [{'permission': x} for x in permissions]
        resp = self.post(endpoint, data=data)
        return User(resp['data'], max_failed_login_count=self.max_failed_login_count)

    def set_user_permissions(self, user_id, service_id, permissions):
        data = [{'permission': x} for x in permissions]
        endpoint = '/user/{}/service/{}/permission'.format(user_id, service_id)
        self.post(endpoint, data=data)

    def send_reset_password_url(self, email_address):
        endpoint = '/user/reset-password'
        data = {'email': email_address}
        self.post(endpoint, data=data)

    def is_email_unique(self, email_address):
        if self.get_user_by_email_or_none(email_address):
            return False
        return True

    def activate_user(self, user):
        if user.state == 'pending':
            user.state = 'active'
            return self.update_user(user)
        else:
            return user
notifications-python_client upgraded to 0.2.5 2016-02-11 15:27:08 +00:00			`from notifications_python_client.notifications import BaseAPIClient`
Admin uses correct endpoint for getting user by email address. 2016-02-23 12:47:48 +00:00			`from notifications_python_client.errors import HTTPError`
Add user via api Leave original user object in for this slice. Remove on next 2016-01-19 15:50:31 +00:00
Slight (bad) hack to ensure that the ticks appear on the manage user page - changes imports for utils from broken version on previous branch 2016-03-01 10:45:13 +00:00			`from app.notify_client.models import User`
Inherit from flask usermixin for default implementation of is_authenticated and is_anonymous 2016-01-28 15:34:02 +00:00
Add user via api Leave original user object in for this slice. Remove on next 2016-01-19 15:50:31 +00:00
			`class UserApiClient(BaseAPIClient):`
Make it clear that client do not use `__init__` The clients never get passed useful values to their `__init__` methods. Rather the real values are passed through later using the `init_app` method. So it should be an error if the client is relying on the values that get passed to it’s init method. Easiest way to ensure this is by making the `__init__` method not expect any arguments and passing fake values to the `Super` call. 2016-09-12 12:14:57 +01:00			`def __init__(self):`
Remove extraneous arguments to super > dont need self.__class__, self in super - that's a python 2.x crutch. > super() is equivalent 2016-09-12 14:59:53 +01:00			`super().__init__("a", "b", "c")`
User registration now creates user via api. Verification flow is still to be completed. Foreign key constraint on verify codes to user table removed. 2016-01-19 22:47:42 +00:00
			`def init_app(self, app):`
			`self.base_url = app.config['API_HOST_NAME']`
Update Python client Just so that nobody else has to do it. Implements: - [x] https://github.com/alphagov/notifications-python-client/pull/29 Which is a breaking change requiring the renaming of method arguments. 2016-09-08 15:55:07 +01:00			`self.service_id = app.config['ADMIN_CLIENT_USER_NAME']`
			`self.api_key = app.config['ADMIN_CLIENT_SECRET']`
Fix bug with variable names 2016-01-22 11:21:30 +00:00			`self.max_failed_login_count = app.config["MAX_FAILED_LOGIN_COUNT"]`
Add user via api Leave original user object in for this slice. Remove on next 2016-01-19 15:50:31 +00:00
fix code style 2016-01-22 10:02:41 +00:00			`def register_user(self, name, email_address, mobile_number, password):`
Add user via api Leave original user object in for this slice. Remove on next 2016-01-19 15:50:31 +00:00			`data = {`
			`"name": name,`
			`"email_address": email_address,`
			`"mobile_number": mobile_number,`
User registration now creates user via api. Verification flow is still to be completed. Foreign key constraint on verify codes to user table removed. 2016-01-19 22:47:42 +00:00			`"password": password`
			`}`
			`user_data = self.post("/user", data)`
Fix bug with variable names 2016-01-22 11:21:30 +00:00			`return User(user_data['data'], max_failed_login_count=self.max_failed_login_count)`
User registration now creates user via api. Verification flow is still to be completed. Foreign key constraint on verify codes to user table removed. 2016-01-19 22:47:42 +00:00
Verify activate and login user with sms and email code 2016-01-20 15:13:15 +00:00			`def get_user(self, id):`
Remove base url for the token creation. Fix variable name. 2016-01-22 10:01:14 +00:00			`url = "/user/{}".format(id)`
Verify activate and login user with sms and email code 2016-01-20 15:13:15 +00:00			`user_data = self.get(url)`
Fix bug with variable names 2016-01-22 11:21:30 +00:00			`return User(user_data['data'], max_failed_login_count=self.max_failed_login_count)`
Verify activate and login user with sms and email code 2016-01-20 15:13:15 +00:00
Admin uses correct endpoint for getting user by email address. 2016-02-23 12:47:48 +00:00			`def get_user_by_email(self, email_address):`
Changed registration flow to first send email verification link that when visited sends sms code for second step of account verification. At that second step user enters just sms code sent to users mobile number. Also moved dao calls that simply proxied calls to client to calling client directly. There is still a place where a user will be a sent a code for verification to their email namely if they update email address. 2016-03-17 13:07:52 +00:00			`user_data = self.get('/user/email', params={'email': email_address})`
Admin uses correct endpoint for getting user by email address. 2016-02-23 12:47:48 +00:00			`return User(user_data['data'], max_failed_login_count=self.max_failed_login_count)`

Do not throw 404 if email address is not found on sign in. https://www.pivotaltracker.com/story/show/115947639 2016-03-21 11:48:16 +00:00			`def get_user_by_email_or_none(self, email_address):`
			`try:`
			`return self.get_user_by_email(email_address)`
			`except HTTPError as e:`
Handling template content size error. All tests passing. 2016-04-29 09:38:59 +01:00			`if e.status_code == 404:`
Do not throw 404 if email address is not found on sign in. https://www.pivotaltracker.com/story/show/115947639 2016-03-21 11:48:16 +00:00			`return None`

First slice full sign in flow 2016-01-21 11:33:53 +00:00			`def get_users(self):`
Incorrect url passed to BaseApiClient which already has base_url. Also added getter and setter of failed login count, although that is yet to be synced with api. 2016-01-22 09:22:18 +00:00			`users_data = self.get("/user")['data']`
First slice full sign in flow 2016-01-21 11:33:53 +00:00			`users = []`
			`for user in users_data:`
Fix bug with variable names 2016-01-22 11:21:30 +00:00			`users.append(User(user, max_failed_login_count=self.max_failed_login_count))`
First slice full sign in flow 2016-01-21 11:33:53 +00:00			`return users`

Verify activate and login user with sms and email code 2016-01-20 15:13:15 +00:00			`def update_user(self, user):`
			`data = user.serialize()`
Remove base url for the token creation. Fix variable name. 2016-01-22 10:01:14 +00:00			`url = "/user/{}".format(user.id)`
Verify activate and login user with sms and email code 2016-01-20 15:13:15 +00:00			`user_data = self.put(url, data=data)`
Fix bug with variable names 2016-01-22 11:21:30 +00:00			`return User(user_data['data'], max_failed_login_count=self.max_failed_login_count)`
Verify activate and login user with sms and email code 2016-01-20 15:13:15 +00:00
Bug fixes. 2016-01-27 17:26:22 +00:00			`def verify_password(self, user_id, password):`
First slice full sign in flow 2016-01-21 11:33:53 +00:00			`try:`
Bug fixes. 2016-01-27 17:26:22 +00:00			`url = "/user/{}/verify/password".format(user_id)`
			`data = {"password": password}`
Fix for updated client. 2016-01-27 17:13:56 +00:00			`self.post(url, data=data)`
			`return True`
First slice full sign in flow 2016-01-21 11:33:53 +00:00			`except HTTPError as e:`
			`if e.status_code == 400 or e.status_code == 404:`
			`return False`

Fix bug with send_verify_code not including the to field. 2016-02-22 12:33:59 +00:00			`def send_verify_code(self, user_id, code_type, to):`
			`data = {'to': to}`
Updated the api_client call to send_verify_code The api has now has an user/<user_id>/email-code and user/<user_id>/sms-code This commit requires an update to the python-client. Make sure the PR for that version has been merged first and the tag push using scripts/push_tag.sh 2016-02-19 16:08:44 +00:00			`endpoint = '/user/{0}/{1}-code'.format(user_id, code_type)`
Changed registration flow to first send email verification link that when visited sends sms code for second step of account verification. At that second step user enters just sms code sent to users mobile number. Also moved dao calls that simply proxied calls to client to calling client directly. There is still a place where a user will be a sent a code for verification to their email namely if they update email address. 2016-03-17 13:07:52 +00:00			`self.post(endpoint, data=data)`

			`def send_verify_email(self, user_id, to):`
			`data = {'to': to}`
			`endpoint = '/user/{0}/email-verification'.format(user_id)`
			`self.post(endpoint, data=data)`
Working tests, hopefully all code changes done. 2016-01-27 12:22:32 +00:00
If a user has already registered with the email they will get a different email when the register again. The email includes likes to sign in and send feedback 2016-07-12 11:53:30 +01:00			`def send_already_registered_email(self, user_id, to):`
Add api client call to email users that are already registered 2016-07-08 11:00:23 +01:00			`data = {'email': to}`
			`endpoint = '/user/{0}/email-already-registered'.format(user_id)`
			`self.post(endpoint, data=data)`

Working tests, hopefully all code changes done. 2016-01-27 12:22:32 +00:00			`def check_verify_code(self, user_id, code, code_type):`
			`data = {'code_type': code_type, 'code': code}`
			`endpoint = '/user/{}/verify/code'.format(user_id)`
			`try:`
			`resp = self.post(endpoint, data=data)`
			`return True, ''`
			`except HTTPError as e:`
			`if e.status_code == 400 or e.status_code == 404:`
			`if 'Code not found' in e.message:`
			`return False, 'Code not found'`
			`elif 'Code has expired' in e.message:`
			`return False, 'Code has expired'`
Fix error with invalid token causing an error. 2016-02-11 16:23:41 +00:00			`else:`
			`# TODO what is the default message?`
			`return False, 'Code not found'`
Working tests, hopefully all code changes done. 2016-01-27 12:22:32 +00:00			`raise e`

Get users for service to show on the manage team page. Calls api endpoint /service/<service_id>/users to retrieve all users associated with the service 2016-02-23 17:51:09 +00:00			`def get_users_for_service(self, service_id):`
			`endpoint = '/service/{}/users'.format(service_id)`
			`resp = self.get(endpoint)`
Slight (bad) hack to ensure that the ticks appear on the manage user page - changes imports for utils from broken version on previous branch 2016-03-01 10:45:13 +00:00			`return [User(data) for data in resp['data']]`
[WIP] Start of user accepting invite. This commit only deals with acceptance by users who are already in system. Changed invite client to return invited user objects instead of dictionaries. Added commented out test. fixed up fixtures to return invited user object for invites 2016-02-29 17:35:21 +00:00
[WIP] Add call to api to update invitation to accepted. When flow for invited user is complete, that is when user has been added to service, update invitation to accepted 2016-03-03 17:53:16 +00:00			`def add_user_to_service(self, service_id, user_id, permissions):`
[WIP] Start of user accepting invite. This commit only deals with acceptance by users who are already in system. Changed invite client to return invited user objects instead of dictionaries. Added commented out test. fixed up fixtures to return invited user object for invites 2016-02-29 17:35:21 +00:00			`endpoint = '/service/{}/users/{}'.format(service_id, user_id)`
Expand permissions to all possible values on admin before posting to api. This makes template work for both existing and invited users. API will no longer need to convert from what ui presents as permissions 2016-06-06 11:57:20 +01:00			`data = [{'permission': x} for x in permissions]`
			`resp = self.post(endpoint, data=data)`
[WIP] Start of user accepting invite. This commit only deals with acceptance by users who are already in system. Changed invite client to return invited user objects instead of dictionaries. Added commented out test. fixed up fixtures to return invited user object for invites 2016-02-29 17:35:21 +00:00			`return User(resp['data'], max_failed_login_count=self.max_failed_login_count)`
Fixed up client for permission setting. All tests passing. 2016-03-03 10:24:49 +00:00
			`def set_user_permissions(self, user_id, service_id, permissions):`
			`data = [{'permission': x} for x in permissions]`
			`endpoint = '/user/{}/service/{}/permission'.format(user_id, service_id)`
Re-implement forgot password 2016-03-07 18:18:52 +00:00			`self.post(endpoint, data=data)`

			`def send_reset_password_url(self, email_address):`
			`endpoint = '/user/reset-password'`
			`data = {'email': email_address}`
			`self.post(endpoint, data=data)`
Changed registration flow to first send email verification link that when visited sends sms code for second step of account verification. At that second step user enters just sms code sent to users mobile number. Also moved dao calls that simply proxied calls to client to calling client directly. There is still a place where a user will be a sent a code for verification to their email namely if they update email address. 2016-03-17 13:07:52 +00:00
			`def is_email_unique(self, email_address):`
Do not throw 404 if email address is not found on sign in. https://www.pivotaltracker.com/story/show/115947639 2016-03-21 11:48:16 +00:00			`if self.get_user_by_email_or_none(email_address):`
			`return False`
			`return True`
Changed registration flow to first send email verification link that when visited sends sms code for second step of account verification. At that second step user enters just sms code sent to users mobile number. Also moved dao calls that simply proxied calls to client to calling client directly. There is still a place where a user will be a sent a code for verification to their email namely if they update email address. 2016-03-17 13:07:52 +00:00
			`def activate_user(self, user):`
- Add test to check that two-factor auth activates a user as expected - Ensure DB user activation statusupdate only executed when required - Fix test_should_activate_user_after_verify 2016-09-09 15:22:56 +01:00			`if user.state == 'pending':`
			`user.state = 'active'`
			`return self.update_user(user)`
			`else:`
			`return user`