darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2025-12-13 00:32:16 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
b1ed722252ec06888aca9dbf9a3779575f1fcf74
notifications-api/app/organisation/rest.py

245 lines
8.8 KiB
Python
Raw Normal View History

Update the organsition usage endpoint to use the new query. This endpoint may need to change, but we'd like to see how this performs, so we'll test this with a real data set. Then come back to make sure the format is correct and check for missing tests for the endpoint,
2020-02-24 17:02:25 +00:00
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from flask import Blueprint, abort, current_app, jsonify, request
New strategy for transaction management. Introduce a contextmanger function to handle exceptions and nested transactions. Using the nested_transaction will start a nested transaction with `db.session.begin_nested`, once the nested transaction is complete the commit will happen. `@transactional` has been updated to commit unless in a nested transaction.
2021-04-13 15:02:46 +01:00
from sqlalchemy.exc import IntegrityError
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
send emails when MOU is signed we build up one personalisation dict, and then pass it in to all the different templates - so be careful editing things. also of note, we check if the agreement_signed_on_behalf_of is set, and send a different template with slightly different wording to the person who clicked the confirm button.
2019-07-09 11:59:33 +01:00
from app.config import QueueNames
When a service is associated with a organisation set the free allowance to the default free allowance for the organisation type. The update/insert for the default free allowance is done in a separate transaction. Updates to services need to happen in a transaction to trigger the insert into the ServicesHistory table. For that reason the call to set_default_free_allowance_for_service is done after the service is updated. I've added a try/except around the set_default_free_allowance_for_service call to ensure we still get the update to the service but get an exception log if the update to annual_billing fails. I believe it's important to preserve the update to the service in the unlikely event that the annual_billing upsert fails.
2021-04-06 13:42:18 +01:00
from app.dao.annual_billing_dao import set_default_free_allowance_for_service
Rename database management functions. Rename @transactional to @autocommit. Rename nested_transaction to tranaction.
2021-04-14 07:11:01 +01:00
from app.dao.dao_utils import transaction
Update the organsition usage endpoint to use the new query. This endpoint may need to change, but we'd like to see how this performs, so we'll test this with a real data set. Then come back to make sure the format is correct and check for missing tests for the endpoint,
2020-02-24 17:02:25 +00:00
from app.dao.fact_billing_dao import fetch_usage_year_for_organisation
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
from app.dao.organisation_dao import (
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
dao_add_service_to_organisation,
dao_add_user_to_organisation,
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
dao_create_organisation,
Add a method to guess organisation from a domain We need this in the admin app while we still have pages that: - talk about the data sharing and financial agreement - but aren’t within a service (so can’t look at the service’s organisation) This is a get, but it deliberately won’t work if you pass it an email address, in order not to put personally identifying information in our logs.
2019-04-04 10:13:19 +01:00
dao_get_organisation_by_email_address,
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
dao_get_organisation_by_id,
Organisation services API endpoints
2018-02-10 01:37:17 +00:00
dao_get_organisation_services,
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
dao_get_organisations,
- new endpoint to check the token for an org invitation. - new endpoint to add user to organisation - new endpoint to return users for an organisation
2018-02-20 17:09:16 +00:00
dao_get_users_for_organisation,
Add endpoint to allow org team members to be removed This is similar to the corresponding endpoint for services. However, it is a little simpler since we don't need to worry about always having at least one team member for an organisation. The new dao function added, `dao_remove_user_from_organisation`, is also simpler than `dao_remove_user_from_service` since we don't have any organisation permissions to deal with.
2022-01-05 13:30:52 +00:00
dao_remove_user_from_organisation,
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
dao_update_organisation,
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
)
Organisation services API endpoints
2018-02-10 01:37:17 +00:00
from app.dao.services_dao import dao_fetch_service_by_id
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.dao.templates_dao import dao_get_template_by_id
Add endpoint to allow org team members to be removed This is similar to the corresponding endpoint for services. However, it is a little simpler since we don't need to worry about always having at least one team member for an organisation. The new dao function added, `dao_remove_user_from_organisation`, is also simpler than `dao_remove_user_from_service` since we don't have any organisation permissions to deal with.
2022-01-05 13:30:52 +00:00
from app.dao.users_dao import get_user_by_id
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.errors import InvalidRequest, register_errors
When creating a new NHS org, set default email branding to NHS This is more appropriate default for that org than gov.uk branding and will help us with our work to make setting the branding more self-service.
2022-04-08 17:39:55 +01:00
from app.models import KEY_TYPE_NORMAL, NHS_ORGANISATION_TYPES, Organisation
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
from app.notifications.process_notifications import (
persist_notification,
send_notification_to_queue,
)
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
from app.organisation.organisation_schema import (
post_create_organisation_schema,
Organisation services API endpoints
2018-02-10 01:37:17 +00:00
post_link_service_to_organisation_schema,
Run auto-correct on app/ and tests/
2021-03-10 13:55:06 +00:00
post_update_organisation_schema,
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
)
from app.schema_validation import validate
organisation_blueprint = Blueprint('organisation', __name__)
register_errors(organisation_blueprint)
Reraise integrity errors on org name unique contraints as 400 - currently being raised as 500s, but should really be 400s as the request data has the duplicate name
2018-02-13 14:47:03 +00:00
@organisation_blueprint.errorhandler(IntegrityError)
def handle_integrity_error(exc):
"""
Catch itegrity errors and return 400. When creating or updating an organisation an itegrity error is raise if the name is already used. This change adds a new error handler for the organisation to catch the named unique index and return a 400 with a sensible message. We have an other error handler for unique service names which was caught in the error handler for all blueprints. A new error handler for the service_blueprint has been created for catch those specific unique constraints. This is a nice way to encapulate the specific errors for a specific blueprint.
2018-02-19 14:33:44 +00:00
Handle integrity errors caused by the unique constraint on ix_organisation_name
Reraise integrity errors on org name unique contraints as 400 - currently being raised as 500s, but should really be 400s as the request data has the duplicate name
2018-02-13 14:47:03 +00:00
"""
if 'ix_organisation_name' in str(exc):
Catch itegrity errors and return 400. When creating or updating an organisation an itegrity error is raise if the name is already used. This change adds a new error handler for the organisation to catch the named unique index and return a 400 with a sensible message. We have an other error handler for unique service names which was caught in the error handler for all blueprints. A new error handler for the service_blueprint has been created for catch those specific unique constraints. This is a nice way to encapulate the specific errors for a specific blueprint.
2018-02-19 14:33:44 +00:00
return jsonify(result="error",
message="Organisation name already exists"), 400
The previous PR added a error handler for the wrong db exception. This corrects it to look for the unique constraint.
2019-04-12 10:55:21 +01:00
if 'duplicate key value violates unique constraint "domain_pkey"' in str(exc):
Return a useful message if the domain is a duplicate.
2019-04-10 13:23:34 +01:00
return jsonify(result='error',
message='Domain already exists'), 400
Reraise integrity errors on org name unique contraints as 400 - currently being raised as 500s, but should really be 400s as the request data has the duplicate name
2018-02-13 14:47:03 +00:00
Catch itegrity errors and return 400. When creating or updating an organisation an itegrity error is raise if the name is already used. This change adds a new error handler for the organisation to catch the named unique index and return a 400 with a sensible message. We have an other error handler for unique service names which was caught in the error handler for all blueprints. A new error handler for the service_blueprint has been created for catch those specific unique constraints. This is a nice way to encapulate the specific errors for a specific blueprint.
2018-02-19 14:33:44 +00:00
current_app.logger.exception(exc)
return jsonify(result='error', message="Internal server error"), 500
Reraise integrity errors on org name unique contraints as 400 - currently being raised as 500s, but should really be 400s as the request data has the duplicate name
2018-02-13 14:47:03 +00:00
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
@organisation_blueprint.route('', methods=['GET'])
def get_organisations():
organisations = [
Slim down the /organisations response At the moment this response returns a list of service IDs for hundreds of organisations. The admin app doesn’t use this information, but having to wait for it to be serialized and sent across the network slows it down all the same.
2019-06-13 15:54:57 +01:00
org.serialize_for_list() for org in dao_get_organisations()
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
]
return jsonify(organisations)
@organisation_blueprint.route('/<uuid:organisation_id>', methods=['GET'])
def get_organisation_by_id(organisation_id):
organisation = dao_get_organisation_by_id(organisation_id)
return jsonify(organisation.serialize())
Add a method to guess organisation from a domain We need this in the admin app while we still have pages that: - talk about the data sharing and financial agreement - but aren’t within a service (so can’t look at the service’s organisation) This is a get, but it deliberately won’t work if you pass it an email address, in order not to put personally identifying information in our logs.
2019-04-04 10:13:19 +01:00
@organisation_blueprint.route('/by-domain', methods=['GET'])
def get_organisation_by_domain():
domain = request.args.get('domain')
if not domain or '@' in domain:
abort(400)
organisation = dao_get_organisation_by_email_address(
'example@{}'.format(request.args.get('domain'))
)
if not organisation:
abort(404)
return jsonify(organisation.serialize())
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
@organisation_blueprint.route('', methods=['POST'])
def create_organisation():
data = request.get_json()
validate(data, post_create_organisation_schema)
When creating a new NHS org, set default email branding to NHS This is more appropriate default for that org than gov.uk branding and will help us with our work to make setting the branding more self-service.
2022-04-08 17:39:55 +01:00
if data["organisation_type"] in NHS_ORGANISATION_TYPES:
data["email_branding_id"] = current_app.config['NHS_EMAIL_BRANDING_ID']
Add Organisations endpoints As part of this we also needed to add: - schemas for validation - serialize method for Organisation model
2018-02-08 14:54:08 +00:00
organisation = Organisation(**data)
dao_create_organisation(organisation)
return jsonify(organisation.serialize()), 201
@organisation_blueprint.route('/<uuid:organisation_id>', methods=['POST'])
def update_organisation(organisation_id):
data = request.get_json()
validate(data, post_update_organisation_schema)
Change Organisation DAO update method - Changed the organisation DAO update method to only make 1 query - Updated the update rest endpoint to not return an organisation when the update is successful
2018-02-09 11:17:13 +00:00
result = dao_update_organisation(organisation_id, **data)
send emails when MOU is signed we build up one personalisation dict, and then pass it in to all the different templates - so be careful editing things. also of note, we check if the agreement_signed_on_behalf_of is set, and send a different template with slightly different wording to the person who clicked the confirm button.
2019-07-09 11:59:33 +01:00
if data.get('agreement_signed') is True:
only send emails if a user signed the MOU the agreement_signed field can also be edited by a platform admin - if that happened we might not have details for who signed it, and even if we did they shouldn't find out about, and we don't need an email since we were the ones who clicked the button. the `agreement_signed_by` field is only set when a user confirms that they are signing the MOU on the admin page - not if a platform admin modifies the page from the platform admin page
2019-07-04 15:12:08 +01:00
# if a platform admin has manually adjusted the organisation, don't tell people
if data.get('agreement_signed_by_id'):
send_notifications_on_mou_signed(organisation_id)
send emails when MOU is signed we build up one personalisation dict, and then pass it in to all the different templates - so be careful editing things. also of note, we check if the agreement_signed_on_behalf_of is set, and send a different template with slightly different wording to the person who clicked the confirm button.
2019-07-09 11:59:33 +01:00
Change Organisation DAO update method - Changed the organisation DAO update method to only make 1 query - Updated the update rest endpoint to not return an organisation when the update is successful
2018-02-09 11:17:13 +00:00
if result:
return '', 204
else:
raise InvalidRequest("Organisation not found", 404)
Organisation services API endpoints
2018-02-10 01:37:17 +00:00
@organisation_blueprint.route('/<uuid:organisation_id>/service', methods=['POST'])
def link_service_to_organisation(organisation_id):
data = request.get_json()
validate(data, post_link_service_to_organisation_schema)
service = dao_fetch_service_by_id(data['service_id'])
service.organisation = None
Rename database management functions. Rename @transactional to @autocommit. Rename nested_transaction to tranaction.
2021-04-14 07:11:01 +01:00
with transaction():
Adding @nested_transactional for transactions that require more than one db update/insert. Using a savepoint for the multiple transactions allows us to rollback if there is an error when executing the second db transaction. However, this does add a bit of complexity. Developers need to manage the db session when calling multiple nested tranactions. Unit tests have been added to test this functionality and some end to end tests have been done to make sure all transactions are rollback if there is an exception while executing the transaction.
2021-04-12 13:52:40 +01:00
dao_add_service_to_organisation(service, organisation_id)
When a service is associated with a organisation set the free allowance to the default free allowance for the organisation type. The update/insert for the default free allowance is done in a separate transaction. Updates to services need to happen in a transaction to trigger the insert into the ServicesHistory table. For that reason the call to set_default_free_allowance_for_service is done after the service is updated. I've added a try/except around the set_default_free_allowance_for_service call to ensure we still get the update to the service but get an exception log if the update to annual_billing fails. I believe it's important to preserve the update to the service in the unlikely event that the annual_billing upsert fails.
2021-04-06 13:42:18 +01:00
set_default_free_allowance_for_service(service, year_start=None)
Organisation services API endpoints
2018-02-10 01:37:17 +00:00
return '', 204
@organisation_blueprint.route('/<uuid:organisation_id>/services', methods=['GET'])
def get_organisation_services(organisation_id):
services = dao_get_organisation_services(organisation_id)
Return services serialized for dashboard for orgs - rather than returning the entire service, return only whats needed when listing the service on the org dashboard
2018-02-13 09:28:48 +00:00
sorted_services = sorted(services, key=lambda s: (-s.active, s.name))
return jsonify([s.serialize_for_org_dashboard() for s in sorted_services])
- new endpoint to check the token for an org invitation. - new endpoint to add user to organisation - new endpoint to return users for an organisation
2018-02-20 17:09:16 +00:00
Add queries to handle returning usage for all services associated to a given organisation.
2020-02-17 16:34:17 +00:00
@organisation_blueprint.route('/<uuid:organisation_id>/services-with-usage', methods=['GET'])
def get_organisation_services_usage(organisation_id):
Format the response to a more managable list. Add a sort order
2020-02-25 17:34:03 +00:00
try:
Change the updates to only look at today, and not yesterday.
2020-02-26 17:38:20 +00:00
year = int(request.args.get('year', 'none'))
Format the response to a more managable list. Add a sort order
2020-02-25 17:34:03 +00:00
except ValueError:
return jsonify(result='error', message='No valid year provided'), 400
services = fetch_usage_year_for_organisation(organisation_id, year)
list_services = services.values()
Change the sort order for the organisation usage page. Ensure the archived services are at the bottom of the list. The organisation trial mode page already sorts the archived services to the bottom.
2021-01-12 09:44:35 +00:00
sorted_services = sorted(list_services, key=lambda s: (-s['active'], s['service_name'].lower()))
Format the response to a more managable list. Add a sort order
2020-02-25 17:34:03 +00:00
return jsonify(services=sorted_services)
Add queries to handle returning usage for all services associated to a given organisation.
2020-02-17 16:34:17 +00:00
- new endpoint to check the token for an org invitation. - new endpoint to add user to organisation - new endpoint to return users for an organisation
2018-02-20 17:09:16 +00:00
@organisation_blueprint.route('/<uuid:organisation_id>/users/<uuid:user_id>', methods=['POST'])
def add_user_to_organisation(organisation_id, user_id):
new_org_user = dao_add_user_to_organisation(organisation_id, user_id)
replace user_schema with serialize method on user model this is so that we can filter out inactive organisations and services note: can't remove user schema completely, as we still use it in POST /user to create new users
2018-03-06 17:47:29 +00:00
return jsonify(data=new_org_user.serialize())
- new endpoint to check the token for an org invitation. - new endpoint to add user to organisation - new endpoint to return users for an organisation
2018-02-20 17:09:16 +00:00
Add endpoint to allow org team members to be removed This is similar to the corresponding endpoint for services. However, it is a little simpler since we don't need to worry about always having at least one team member for an organisation. The new dao function added, `dao_remove_user_from_organisation`, is also simpler than `dao_remove_user_from_service` since we don't have any organisation permissions to deal with.
2022-01-05 13:30:52 +00:00
@organisation_blueprint.route('/<uuid:organisation_id>/users/<uuid:user_id>', methods=['DELETE'])
def remove_user_from_organisation(organisation_id, user_id):
organisation = dao_get_organisation_by_id(organisation_id)
user = get_user_by_id(user_id=user_id)
if user not in organisation.users:
error = 'User not found'
raise InvalidRequest(error, status_code=404)
dao_remove_user_from_organisation(organisation, user)
return {}, 204
- new endpoint to check the token for an org invitation. - new endpoint to add user to organisation - new endpoint to return users for an organisation
2018-02-20 17:09:16 +00:00
@organisation_blueprint.route('/<uuid:organisation_id>/users', methods=['GET'])
def get_organisation_users(organisation_id):
org_users = dao_get_users_for_organisation(organisation_id)
replace user_schema with serialize method on user model this is so that we can filter out inactive organisations and services note: can't remove user schema completely, as we still use it in POST /user to create new users
2018-03-06 17:47:29 +00:00
return jsonify(data=[x.serialize() for x in org_users])
Add check org name is unique endpoint
2018-03-06 12:49:46 +00:00
def check_request_args(request):
org_id = request.args.get('org_id')
name = request.args.get('name', None)
errors = []
if not org_id:
errors.append({'org_id': ["Can't be empty"]})
if not name:
errors.append({'name': ["Can't be empty"]})
if errors:
raise InvalidRequest(errors, status_code=400)
return org_id, name
send emails when MOU is signed we build up one personalisation dict, and then pass it in to all the different templates - so be careful editing things. also of note, we check if the agreement_signed_on_behalf_of is set, and send a different template with slightly different wording to the person who clicked the confirm button.
2019-07-09 11:59:33 +01:00
def send_notifications_on_mou_signed(organisation_id):
only send emails if a user signed the MOU the agreement_signed field can also be edited by a platform admin - if that happened we might not have details for who signed it, and even if we did they shouldn't find out about, and we don't need an email since we were the ones who clicked the button. the `agreement_signed_by` field is only set when a user confirms that they are signing the MOU on the admin page - not if a platform admin modifies the page from the platform admin page
2019-07-04 15:12:08 +01:00
organisation = dao_get_organisation_by_id(organisation_id)
send emails when MOU is signed we build up one personalisation dict, and then pass it in to all the different templates - so be careful editing things. also of note, we check if the agreement_signed_on_behalf_of is set, and send a different template with slightly different wording to the person who clicked the confirm button.
2019-07-09 11:59:33 +01:00
notify_service = dao_fetch_service_by_id(current_app.config['NOTIFY_SERVICE_ID'])
def _send_notification(template_id, recipient, personalisation):
template = dao_get_template_by_id(template_id)
saved_notification = persist_notification(
template_id=template.id,
template_version=template.version,
recipient=recipient,
service=notify_service,
personalisation=personalisation,
notification_type=template.template_type,
api_key_id=None,
key_type=KEY_TYPE_NORMAL,
reply_to_text=notify_service.get_default_reply_to_email_address()
)
send_notification_to_queue(saved_notification, research_mode=False, queue=QueueNames.NOTIFY)
personalisation = {
'mou_link': '{}/agreement/{}.pdf'.format(
current_app.config['ADMIN_BASE_URL'],
'crown' if organisation.crown else 'non-crown'
),
'org_name': organisation.name,
'org_dashboard_link': '{}/organisations/{}'.format(
current_app.config['ADMIN_BASE_URL'],
organisation.id
),
'signed_by_name': organisation.agreement_signed_by.name,
'on_behalf_of_name': organisation.agreement_signed_on_behalf_of_name
}
if not organisation.agreement_signed_on_behalf_of_email_address:
signer_template_id = 'MOU_SIGNER_RECEIPT_TEMPLATE_ID'
else:
signer_template_id = 'MOU_SIGNED_ON_BEHALF_SIGNER_RECEIPT_TEMPLATE_ID'
# let the person who has been signed on behalf of know.
_send_notification(
current_app.config['MOU_SIGNED_ON_BEHALF_ON_BEHALF_RECEIPT_TEMPLATE_ID'],
organisation.agreement_signed_on_behalf_of_email_address,
personalisation
)
# let the person who signed know - the template is different depending on if they signed on behalf of someone
_send_notification(
current_app.config[signer_template_id],
organisation.agreement_signed_by.email_address,
personalisation
)
Reference in New Issue Copy Permalink