app/invite/rest.py

import uuid
from datetime import datetime
from flask import (
    Blueprint,
    request,
    jsonify,
    current_app)

from app import encryption, DATETIME_FORMAT
from app.dao.invited_user_dao import (
    save_invited_user,
    get_invited_user,
    get_invited_users_for_service
)
from app.dao.templates_dao import dao_get_template_by_id
from app.schemas import invited_user_schema
from app.celery.tasks import (send_email)

invite = Blueprint('invite', __name__, url_prefix='/service/<service_id>/invite')

from app.errors import register_errors

register_errors(invite)


@invite.route('', methods=['POST'])
def create_invited_user(service_id):
    invited_user, errors = invited_user_schema.load(request.get_json())
    save_invited_user(invited_user)

    template = dao_get_template_by_id(current_app.config['INVITATION_EMAIL_TEMPLATE_ID'])
    message = {
        'template': str(template.id),
        'template_version': template.version,
        'to': invited_user.email_address,
        'personalisation': {
            'user_name': invited_user.from_user.name,
            'service_name': invited_user.service.name,
            'url': invited_user_url(invited_user.id)
        }
    }
    send_email.apply_async((
        current_app.config['NOTIFY_SERVICE_ID'],
        str(uuid.uuid4()),
        encryption.encrypt(message),
        datetime.utcnow().strftime(DATETIME_FORMAT)
    ), queue="email-invited-user")

    return jsonify(data=invited_user_schema.dump(invited_user).data), 201


@invite.route('', methods=['GET'])
def get_invited_users_by_service(service_id):
    invited_users = get_invited_users_for_service(service_id)
    return jsonify(data=invited_user_schema.dump(invited_users, many=True).data), 200


@invite.route('/<invited_user_id>', methods=['GET'])
def get_invited_user_by_service_and_id(service_id, invited_user_id):
    invited_user = get_invited_user(service_id=service_id, invited_user_id=invited_user_id)

    return jsonify(data=invited_user_schema.dump(invited_user).data), 200


@invite.route('/<invited_user_id>', methods=['POST'])
def update_invited_user(service_id, invited_user_id):
    fetched = get_invited_user(service_id=service_id, invited_user_id=invited_user_id)

    current_data = dict(invited_user_schema.dump(fetched).data.items())
    current_data.update(request.get_json())
    update_dict = invited_user_schema.load(current_data).data
    save_invited_user(update_dict)
    return jsonify(data=invited_user_schema.dump(fetched).data), 200


def invited_user_url(invited_user_id):
    from notifications_utils.url_safe_token import generate_token
    token = generate_token(str(invited_user_id), current_app.config['SECRET_KEY'], current_app.config['DANGEROUS_SALT'])

    return '{0}/invitation/{1}'.format(current_app.config['ADMIN_BASE_URL'], token)
Use the send email task to send the password reset and invitation email. Next PR can remove those tasks. 2016-06-16 17:34:33 +01:00			`import uuid`
			`from datetime import datetime`
[WIP] added endpoint and dao to create invites for users. Droped token as later code to send email invite can generate timebased url to send to user. That can then be checked against configurable time threshold for expiry. Therefore no need to store a token. 2016-02-24 14:01:19 +00:00			`from flask import (`
			`Blueprint,`
			`request,`
Email invitation to an invited user. New celery task to send the email. 2016-02-29 13:21:12 +00:00			`jsonify,`
			`current_app)`
[WIP] added endpoint and dao to create invites for users. Droped token as later code to send email invite can generate timebased url to send to user. That can then be checked against configurable time threshold for expiry. Therefore no need to store a token. 2016-02-24 14:01:19 +00:00
Use the send email task to send the password reset and invitation email. Next PR can remove those tasks. 2016-06-16 17:34:33 +01:00			`from app import encryption, DATETIME_FORMAT`
[WIP] added dao and rest endpoint for retrieving invited users by service and by id. 2016-02-25 11:22:36 +00:00			`from app.dao.invited_user_dao import (`
			`save_invited_user,`
			`get_invited_user,`
			`get_invited_users_for_service`
			`)`
Use the send email task to send the password reset and invitation email. Next PR can remove those tasks. 2016-06-16 17:34:33 +01:00			`from app.dao.templates_dao import dao_get_template_by_id`
Working permissions and all tests passing. Remove print statements. Fix for review comments. 2016-02-26 12:00:16 +00:00			`from app.schemas import invited_user_schema`
Use the send email task to send the password reset and invitation email. Next PR can remove those tasks. 2016-06-16 17:34:33 +01:00			`from app.celery.tasks import (send_email)`
[WIP] added endpoint and dao to create invites for users. Droped token as later code to send email invite can generate timebased url to send to user. That can then be checked against configurable time threshold for expiry. Therefore no need to store a token. 2016-02-24 14:01:19 +00:00
			`invite = Blueprint('invite', __name__, url_prefix='/service/<service_id>/invite')`

			`from app.errors import register_errors`
Change endpoint responses where there are marshalling, unmarshalling or param errors to raise invalid data exception. That will cause those responses to be handled in by errors.py, which will log the errors. Set most of schemas to strict mode so that marshmallow will raise exception rather than checking for errors in return tuple from load. Added handler to errors.py for marshmallow validation errors. 2016-06-14 15:07:23 +01:00
[WIP] added endpoint and dao to create invites for users. Droped token as later code to send email invite can generate timebased url to send to user. That can then be checked against configurable time threshold for expiry. Therefore no need to store a token. 2016-02-24 14:01:19 +00:00			`register_errors(invite)`


			`@invite.route('', methods=['POST'])`
[WIP] added dao and rest endpoint for retrieving invited users by service and by id. 2016-02-25 11:22:36 +00:00			`def create_invited_user(service_id):`
[WIP] added endpoint and dao to create invites for users. Droped token as later code to send email invite can generate timebased url to send to user. That can then be checked against configurable time threshold for expiry. Therefore no need to store a token. 2016-02-24 14:01:19 +00:00			`invited_user, errors = invited_user_schema.load(request.get_json())`
			`save_invited_user(invited_user)`
Use the send email task to send the password reset and invitation email. Next PR can remove those tasks. 2016-06-16 17:34:33 +01:00
			`template = dao_get_template_by_id(current_app.config['INVITATION_EMAIL_TEMPLATE_ID'])`
			`message = {`
			`'template': str(template.id),`
			`'template_version': template.version,`
			`'to': invited_user.email_address,`
			`'personalisation': {`
			`'user_name': invited_user.from_user.name,`
			`'service_name': invited_user.service.name,`
			`'url': invited_user_url(invited_user.id)`
			`}`
			`}`
			`send_email.apply_async((`
			`current_app.config['NOTIFY_SERVICE_ID'],`
			`str(uuid.uuid4()),`
			`encryption.encrypt(message),`
			`datetime.utcnow().strftime(DATETIME_FORMAT)`
			`), queue="email-invited-user")`

[WIP] added endpoint and dao to create invites for users. Droped token as later code to send email invite can generate timebased url to send to user. That can then be checked against configurable time threshold for expiry. Therefore no need to store a token. 2016-02-24 14:01:19 +00:00			`return jsonify(data=invited_user_schema.dump(invited_user).data), 201`
[WIP] added dao and rest endpoint for retrieving invited users by service and by id. 2016-02-25 11:22:36 +00:00

			`@invite.route('', methods=['GET'])`
			`def get_invited_users_by_service(service_id):`
			`invited_users = get_invited_users_for_service(service_id)`
Working permissions and all tests passing. Remove print statements. Fix for review comments. 2016-02-26 12:00:16 +00:00			`return jsonify(data=invited_user_schema.dump(invited_users, many=True).data), 200`
[WIP] added dao and rest endpoint for retrieving invited users by service and by id. 2016-02-25 11:22:36 +00:00

			`@invite.route('/<invited_user_id>', methods=['GET'])`
			`def get_invited_user_by_service_and_id(service_id, invited_user_id):`
New endpoint to update invited user. Can be used to update status on invited user. 2016-03-01 13:33:20 +00:00			`invited_user = get_invited_user(service_id=service_id, invited_user_id=invited_user_id)`
Replaced first queries with one queries, which throws a NoResultFound. Able to remove many of the None checks as a result of this. Fixed the tests were needed. 2016-03-11 15:34:20 +00:00
[WIP] added dao and rest endpoint for retrieving invited users by service and by id. 2016-02-25 11:22:36 +00:00			`return jsonify(data=invited_user_schema.dump(invited_user).data), 200`
Email invitation to an invited user. New celery task to send the email. 2016-02-29 13:21:12 +00:00

New endpoint to update invited user. Can be used to update status on invited user. 2016-03-01 13:33:20 +00:00			`@invite.route('/<invited_user_id>', methods=['POST'])`
			`def update_invited_user(service_id, invited_user_id):`
			`fetched = get_invited_user(service_id=service_id, invited_user_id=invited_user_id)`

			`current_data = dict(invited_user_schema.dump(fetched).data.items())`
			`current_data.update(request.get_json())`
Change endpoint responses where there are marshalling, unmarshalling or param errors to raise invalid data exception. That will cause those responses to be handled in by errors.py, which will log the errors. Set most of schemas to strict mode so that marshmallow will raise exception rather than checking for errors in return tuple from load. Added handler to errors.py for marshmallow validation errors. 2016-06-14 15:07:23 +01:00			`update_dict = invited_user_schema.load(current_data).data`
New endpoint to update invited user. Can be used to update status on invited user. 2016-03-01 13:33:20 +00:00			`save_invited_user(update_dict)`
			`return jsonify(data=invited_user_schema.dump(fetched).data), 200`


Use the send email task to send the password reset and invitation email. Next PR can remove those tasks. 2016-06-16 17:34:33 +01:00			`def invited_user_url(invited_user_id):`
Working placeholders in subject with upgraded notifications-utils. Fix test. 2016-04-13 15:31:08 +01:00			`from notifications_utils.url_safe_token import generate_token`
Use the send email task to send the password reset and invitation email. Next PR can remove those tasks. 2016-06-16 17:34:33 +01:00			`token = generate_token(str(invited_user_id), current_app.config['SECRET_KEY'], current_app.config['DANGEROUS_SALT'])`

			`return '{0}/invitation/{1}'.format(current_app.config['ADMIN_BASE_URL'], token)`