app/service/rest.py

from datetime import datetime

from flask import Blueprint
from flask import (
    jsonify,
    request
)
from sqlalchemy.orm.exc import NoResultFound

from app import email_safe
from app.dao.api_key_dao import (
    save_model_api_key,
    get_model_api_keys,
    get_unsigned_secret
)
from app.dao.services_dao import (
    dao_fetch_service_by_id_and_user,
    dao_fetch_service_by_id,
    dao_fetch_all_services,
    dao_create_service,
    dao_update_service,
    dao_fetch_all_services_by_user,
    dao_add_user_to_service
)

from app.dao.users_dao import get_model_users
from app.models import ApiKey
from app.schemas import (
    service_schema,
    api_key_schema,
    user_schema
)

from app.errors import register_errors

service = Blueprint('service', __name__)


register_errors(service)


@service.route('', methods=['GET'])
def get_services():
    user_id = request.args.get('user_id', None)
    if user_id:
        services = dao_fetch_all_services_by_user(user_id)
    else:
        services = dao_fetch_all_services()
    data, errors = service_schema.dump(services, many=True)
    return jsonify(data=data)


@service.route('/<uuid:service_id>', methods=['GET'])
def get_service_by_id(service_id):
    user_id = request.args.get('user_id', None)
    if user_id:
        fetched = dao_fetch_service_by_id_and_user(service_id, user_id)
    else:
        fetched = dao_fetch_service_by_id(service_id)
    if not fetched:
        message_with_user_id = 'and for user id: {}'.format(user_id) if user_id else ''
        return jsonify(result="error",
                       message="Service not found for service id: {0} {1}".format(service_id,
                                                                                  message_with_user_id)), 404
    data, errors = service_schema.dump(fetched)
    return jsonify(data=data)


@service.route('', methods=['POST'])
def create_service():
    data = request.get_json()
    if not data.get('user_id', None):
        return jsonify(result="error", message={'user_id': ['Missing data for required field.']}), 400

    try:
        user = get_model_users(data['user_id'])
    except NoResultFound:
        return jsonify(result="error", message={'user_id': ['not found']}), 400

    data.pop('user_id', None)
    if 'name' in data:
        data['email_from'] = email_safe(data.get('name', None))

    valid_service, errors = service_schema.load(request.get_json())

    if errors:
        return jsonify(result="error", message=errors), 400

    dao_create_service(valid_service, user)
    return jsonify(data=service_schema.dump(valid_service).data), 201


@service.route('/<uuid:service_id>', methods=['POST'])
def update_service(service_id):
    fetched_service = dao_fetch_service_by_id(service_id)
    if not fetched_service:
        return _service_not_found(service_id)

    current_data = dict(service_schema.dump(fetched_service).data.items())
    current_data.update(request.get_json())
    update_dict, errors = service_schema.load(current_data)
    if errors:
        return jsonify(result="error", message=errors), 400
    dao_update_service(update_dict)
    return jsonify(data=service_schema.dump(fetched_service).data), 200


@service.route('/<uuid:service_id>/api-key', methods=['POST'])
def renew_api_key(service_id=None):
    fetched_service = dao_fetch_service_by_id(service_id=service_id)
    if not fetched_service:
        return _service_not_found(service_id)

    # create a new one
    # TODO: what validation should be done here?
    secret_name = request.get_json()['name']
    key = ApiKey(service=fetched_service, name=secret_name)
    save_model_api_key(key)

    unsigned_api_key = get_unsigned_secret(key.id)
    return jsonify(data=unsigned_api_key), 201


@service.route('/<uuid:service_id>/api-key/revoke/<int:api_key_id>', methods=['POST'])
def revoke_api_key(service_id, api_key_id):
    service_api_key = get_model_api_keys(service_id=service_id, id=api_key_id)

    save_model_api_key(service_api_key, update_dict={'id': service_api_key.id, 'expiry_date': datetime.utcnow()})
    return jsonify(), 202


@service.route('/<uuid:service_id>/api-keys', methods=['GET'])
@service.route('/<uuid:service_id>/api-keys/<int:key_id>', methods=['GET'])
def get_api_keys(service_id, key_id=None):
    fetched_service = dao_fetch_service_by_id(service_id=service_id)
    if not fetched_service:
        return _service_not_found(service_id)
    try:
        if key_id:
            api_keys = [get_model_api_keys(service_id=service_id, id=key_id)]
        else:
            api_keys = get_model_api_keys(service_id=service_id)
    except NoResultFound:
        return jsonify(result="error", message="API key not found for id: {}".format(service_id)), 404

    return jsonify(apiKeys=api_key_schema.dump(api_keys, many=True).data), 200


@service.route('/<uuid:service_id>/users', methods=['GET'])
def get_users_for_service(service_id):
    fetched = dao_fetch_service_by_id(service_id)
    if not fetched:
        return _service_not_found(service_id)
    # TODO why is this code here, the same functionality exists without it?
    if not fetched.users:
        return jsonify(data=[])

    result = user_schema.dump(fetched.users, many=True)
    return jsonify(data=result.data)


@service.route('/<uuid:service_id>/users/<user_id>', methods=['POST'])
def add_user_to_service(service_id, user_id):
    service = dao_fetch_service_by_id(service_id)
    if not service:
        return _service_not_found(service_id)
    user = get_model_users(user_id=user_id)

    if not user:
        return jsonify(result='error',
                       message='User not found for id: {}'.format(user_id)), 404

    if user in service.users:
        return jsonify(result='error',
                       message='User id: {} already part of service id: {}'.format(user_id, service_id)), 400

    dao_add_user_to_service(service, user)
    permissions = request.get_json()['permissions']
    _process_permissions(user, service, permissions)

    data, errors = service_schema.dump(service)
    return jsonify(data=data), 201


def _service_not_found(service_id):
    return jsonify(result='error', message='Service not found for id: {}'.format(service_id)), 404


def _process_permissions(user, service, permission_groups):
    from app.permissions_utils import get_permissions_by_group
    from app.dao.permissions_dao import permission_dao
    permissions = get_permissions_by_group(permission_groups)
    for permission in permissions:
        permission.user = user
        permission.service = service
    permission_dao.set_user_permission(user, permissions)
Created endpoints for create and delete token. 2016-01-13 14:05:49 +00:00			`from datetime import datetime`
Moved the _generate_token methods to the tokens_dao. 2016-01-14 11:30:45 +00:00
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`from flask import Blueprint`
Updates to template endpoints: - moved into templates rest class - updated dao - removed delete methods - constraint on subject line 2016-02-22 12:55:18 +00:00			`from flask import (`
			`jsonify,`
			`request`
			`)`
Work in progress, skeleton of the api created and testing started. Need to fix authentication tests. 2016-01-08 17:51:46 +00:00			`from sqlalchemy.orm.exc import NoResultFound`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`from app import email_safe`
			`from app.dao.api_key_dao import (`
			`save_model_api_key,`
			`get_model_api_keys,`
			`get_unsigned_secret`
			`)`
Added delete endpoint and tests. 2016-01-12 10:39:49 +00:00			`from app.dao.services_dao import (`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`dao_fetch_service_by_id_and_user,`
			`dao_fetch_service_by_id,`
			`dao_fetch_all_services,`
			`dao_create_service,`
			`dao_update_service,`
[WIP] use correct dao function for adding user to service. Check for no user returned from user dao and return correct error message. 2016-03-01 15:36:31 +00:00			`dao_fetch_all_services_by_user,`
			`dao_add_user_to_service`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`)`
[WIP] use correct dao function for adding user to service. Check for no user returned from user dao and return correct error message. 2016-03-01 15:36:31 +00:00
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`from app.dao.users_dao import get_model_users`
Change Tokens to ApiKey Added name to ApiKey model 2016-01-19 12:07:00 +00:00			`from app.models import ApiKey`
More tests for rest and dao. 2016-01-13 12:14:21 +00:00			`from app.schemas import (`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`service_schema,`
Working permissions and all tests passing. Remove print statements. Fix for review comments. 2016-02-26 12:00:16 +00:00			`api_key_schema,`
Drop all services sending limits to 50. 2016-03-09 14:03:44 +00:00			`user_schema`
[WIP] When user is added to a service a list of permissions groups are used to assign the correct permissions to the user. Last slice will be to update invite status. 2016-03-03 15:17:14 +00:00			`)`

Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`from app.errors import register_errors`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00
Remove the view packages 2016-01-14 16:13:27 +00:00			`service = Blueprint('service', __name__)`

Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00
Wire up error handlers. Replace some 400s with more appropriate 500s. DAO methods that cause unexpected exceptions get caught and logged by errors.py 500 error handler. 2016-02-17 17:04:50 +00:00			`register_errors(service)`

Work in progress, skeleton of the api created and testing started. Need to fix authentication tests. 2016-01-08 17:51:46 +00:00
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`@service.route('', methods=['GET'])`
			`def get_services():`
			`user_id = request.args.get('user_id', None)`
			`if user_id:`
			`services = dao_fetch_all_services_by_user(user_id)`
			`else:`
			`services = dao_fetch_all_services()`
Working permissions and all tests passing. Remove print statements. Fix for review comments. 2016-02-26 12:00:16 +00:00			`data, errors = service_schema.dump(services, many=True)`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`return jsonify(data=data)`


Changed db queries to use one, which throws NoResultFound exception, this exception is dealt with in our error handlers. Now a lot of the if none checks can be removed. 2016-03-11 12:39:55 +00:00			`@service.route('/<uuid:service_id>', methods=['GET'])`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`def get_service_by_id(service_id):`
			`user_id = request.args.get('user_id', None)`
			`if user_id:`
			`fetched = dao_fetch_service_by_id_and_user(service_id, user_id)`
			`else:`
			`fetched = dao_fetch_service_by_id(service_id)`
			`if not fetched:`
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`message_with_user_id = 'and for user id: {}'.format(user_id) if user_id else ''`
			`return jsonify(result="error",`
			`message="Service not found for service id: {0} {1}".format(service_id,`
			`message_with_user_id)), 404`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`data, errors = service_schema.dump(fetched)`
			`return jsonify(data=data)`


Remove trailing slashing from urls 2016-01-15 16:44:46 +00:00			`@service.route('', methods=['POST'])`
Work in progress, skeleton of the api created and testing started. Need to fix authentication tests. 2016-01-08 17:51:46 +00:00			`def create_service():`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`data = request.get_json()`
			`if not data.get('user_id', None):`
			`return jsonify(result="error", message={'user_id': ['Missing data for required field.']}), 400`

Changed db queries to use one, which throws NoResultFound exception, this exception is dealt with in our error handlers. Now a lot of the if none checks can be removed. 2016-03-11 12:39:55 +00:00			`try:`
			`user = get_model_users(data['user_id'])`
			`except NoResultFound:`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`return jsonify(result="error", message={'user_id': ['not found']}), 400`

Generate the email_from from the service name. 2016-02-19 17:07:59 +00:00			`data.pop('user_id', None)`
			`if 'name' in data:`
Send Email via the API - uses the new subject/email from fields present on the templates / service tables - brings the send email api call into line with the sms one. - same fields (to/template_id) - same rules regarding restricted services - wired in as a task into celery Requires - new celery queue - new env property (NOTIFY_EMAIL_DOMAIN) 2016-02-22 17:17:29 +00:00			`data['email_from'] = email_safe(data.get('name', None))`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00
			`valid_service, errors = service_schema.load(request.get_json())`

Add more tests. 2016-01-11 18:09:10 +00:00			`if errors:`
			`return jsonify(result="error", message=errors), 400`
Work in progress, skeleton of the api created and testing started. Need to fix authentication tests. 2016-01-08 17:51:46 +00:00
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`dao_create_service(valid_service, user)`
			`return jsonify(data=service_schema.dump(valid_service).data), 201`
Work in progress, skeleton of the api created and testing started. Need to fix authentication tests. 2016-01-08 17:51:46 +00:00
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00
Changed db queries to use one, which throws NoResultFound exception, this exception is dealt with in our error handlers. Now a lot of the if none checks can be removed. 2016-03-11 12:39:55 +00:00			`@service.route('/<uuid:service_id>', methods=['POST'])`
Work in progress, skeleton of the api created and testing started. Need to fix authentication tests. 2016-01-08 17:51:46 +00:00			`def update_service(service_id):`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`fetched_service = dao_fetch_service_by_id(service_id)`
			`if not fetched_service:`
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`return _service_not_found(service_id)`
Work in progress, skeleton of the api created and testing started. Need to fix authentication tests. 2016-01-08 17:51:46 +00:00
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`current_data = dict(service_schema.dump(fetched_service).data.items())`
			`current_data.update(request.get_json())`
			`update_dict, errors = service_schema.load(current_data)`
			`if errors:`
			`return jsonify(result="error", message=errors), 400`
			`dao_update_service(update_dict)`
			`return jsonify(data=service_schema.dump(fetched_service).data), 200`
Template rest api skeleton added. 2016-01-13 11:04:13 +00:00

Changed db queries to use one, which throws NoResultFound exception, this exception is dealt with in our error handlers. Now a lot of the if none checks can be removed. 2016-03-11 12:39:55 +00:00			`@service.route('/<uuid:service_id>/api-key', methods=['POST'])`
Change Tokens to ApiKey Added name to ApiKey model 2016-01-19 12:07:00 +00:00			`def renew_api_key(service_id=None):`
Update service rest class to handle new fields and updated dao 2016-02-19 15:53:45 +00:00			`fetched_service = dao_fetch_service_by_id(service_id=service_id)`
			`if not fetched_service:`
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`return _service_not_found(service_id)`

			`# create a new one`
			`# TODO: what validation should be done here?`
			`secret_name = request.get_json()['name']`
			`key = ApiKey(service=fetched_service, name=secret_name)`
			`save_model_api_key(key)`
Created endpoints for create and delete token. 2016-01-13 14:05:49 +00:00
Allow for multiple api keys for a service. 2016-01-19 18:25:21 +00:00			`unsigned_api_key = get_unsigned_secret(key.id)`
Change Tokens to ApiKey Added name to ApiKey model 2016-01-19 12:07:00 +00:00			`return jsonify(data=unsigned_api_key), 201`
Created endpoints for create and delete token. 2016-01-13 14:05:49 +00:00

Changed db queries to use one, which throws NoResultFound exception, this exception is dealt with in our error handlers. Now a lot of the if none checks can be removed. 2016-03-11 12:39:55 +00:00			`@service.route('/<uuid:service_id>/api-key/revoke/<int:api_key_id>', methods=['POST'])`
Update api-key/revoke endpoint to expire the key for the service. Previously we assumed there was only one api key that was valid. 2016-01-20 14:48:44 +00:00			`def revoke_api_key(service_id, api_key_id):`
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`service_api_key = get_model_api_keys(service_id=service_id, id=api_key_id)`
Changed the token endpoints so that you can renew a token and revoke a token. Updated create service so the token is created at that time 2016-01-13 16:04:56 +00:00
Update api-key/revoke endpoint to expire the key for the service. Previously we assumed there was only one api key that was valid. 2016-01-20 14:48:44 +00:00			`save_model_api_key(service_api_key, update_dict={'id': service_api_key.id, 'expiry_date': datetime.utcnow()})`
Moved the _generate_token methods to the tokens_dao. 2016-01-14 11:30:45 +00:00			`return jsonify(), 202`
Add api_token model and dao 2016-01-13 09:25:46 +00:00

Changed db queries to use one, which throws NoResultFound exception, this exception is dealt with in our error handlers. Now a lot of the if none checks can be removed. 2016-03-11 12:39:55 +00:00			`@service.route('/<uuid:service_id>/api-keys', methods=['GET'])`
			`@service.route('/<uuid:service_id>/api-keys/<int:key_id>', methods=['GET'])`
Updated get_api_keys endpoint to return one or many given key_id or not. 2016-01-21 12:13:17 +00:00			`def get_api_keys(service_id, key_id=None):`
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`fetched_service = dao_fetch_service_by_id(service_id=service_id)`
			`if not fetched_service:`
			`return _service_not_found(service_id)`
Get api_keys for service endpoint 2016-01-20 15:23:32 +00:00			`try:`
Updated get_api_keys endpoint to return one or many given key_id or not. 2016-01-21 12:13:17 +00:00			`if key_id:`
			`api_keys = [get_model_api_keys(service_id=service_id, id=key_id)]`
			`else:`
			`api_keys = get_model_api_keys(service_id=service_id)`
			`except NoResultFound:`
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`return jsonify(result="error", message="API key not found for id: {}".format(service_id)), 404`
Get api_keys for service endpoint 2016-01-20 15:23:32 +00:00
Working permissions and all tests passing. Remove print statements. Fix for review comments. 2016-02-26 12:00:16 +00:00			`return jsonify(apiKeys=api_key_schema.dump(api_keys, many=True).data), 200`
New endpoint to get users for service id. /service/<service_id>/users returns a list of all users associated with the service 2016-02-23 17:52:55 +00:00

Changed db queries to use one, which throws NoResultFound exception, this exception is dealt with in our error handlers. Now a lot of the if none checks can be removed. 2016-03-11 12:39:55 +00:00			`@service.route('/<uuid:service_id>/users', methods=['GET'])`
New endpoint to get users for service id. /service/<service_id>/users returns a list of all users associated with the service 2016-02-23 17:52:55 +00:00			`def get_users_for_service(service_id):`
			`fetched = dao_fetch_service_by_id(service_id)`
			`if not fetched:`
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`return _service_not_found(service_id)`
Working permissions and all tests passing. Remove print statements. Fix for review comments. 2016-02-26 12:00:16 +00:00			`# TODO why is this code here, the same functionality exists without it?`
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`if not fetched.users:`
Return empty list when there are no users for the service. Added a test for when there are no users for the service. Added a test_url_for - do we want to add this test and use url_for in our tests? Or explictly write the url in the test? 2016-02-24 10:30:00 +00:00			`return jsonify(data=[])`

Working permissions and all tests passing. Remove print statements. Fix for review comments. 2016-02-26 12:00:16 +00:00			`result = user_schema.dump(fetched.users, many=True)`
New endpoint to get users for service id. /service/<service_id>/users returns a list of all users associated with the service 2016-02-23 17:52:55 +00:00			`return jsonify(data=result.data)`
Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00

Changed db queries to use one, which throws NoResultFound exception, this exception is dealt with in our error handlers. Now a lot of the if none checks can be removed. 2016-03-11 12:39:55 +00:00			`@service.route('/<uuid:service_id>/users/<user_id>', methods=['POST'])`
[WIP] Start of api for accepting invite. 2016-02-29 17:38:02 +00:00			`def add_user_to_service(service_id, user_id):`
			`service = dao_fetch_service_by_id(service_id)`
			`if not service:`
			`return _service_not_found(service_id)`
			`user = get_model_users(user_id=user_id)`

[WIP] use correct dao function for adding user to service. Check for no user returned from user dao and return correct error message. 2016-03-01 15:36:31 +00:00			`if not user:`
			`return jsonify(result='error',`
[WIP] Change status code to 404 rather than 400. 2016-03-01 15:51:22 +00:00			`message='User not found for id: {}'.format(user_id)), 404`
[WIP] use correct dao function for adding user to service. Check for no user returned from user dao and return correct error message. 2016-03-01 15:36:31 +00:00
[WIP] Start of api for accepting invite. 2016-02-29 17:38:02 +00:00			`if user in service.users:`
			`return jsonify(result='error',`
			`message='User id: {} already part of service id: {}'.format(user_id, service_id)), 400`

[WIP] use correct dao function for adding user to service. Check for no user returned from user dao and return correct error message. 2016-03-01 15:36:31 +00:00			`dao_add_user_to_service(service, user)`
[WIP] Changed add user to service to take list of permissions instead of invite. 2016-03-03 17:36:21 +00:00			`permissions = request.get_json()['permissions']`
			`_process_permissions(user, service, permissions)`
[WIP] Start of api for accepting invite. 2016-02-29 17:38:02 +00:00
			`data, errors = service_schema.dump(service)`
			`return jsonify(data=data), 201`


Fix get_users_by_service to return 404 if service does not exist. Refactored service/rest.py so that all methods are returning a properly formatted error message so that the error message can deal with the response. Refactoed errors.py to properly format the error message. 2016-02-25 12:11:51 +00:00			`def _service_not_found(service_id):`
			`return jsonify(result='error', message='Service not found for id: {}'.format(service_id)), 404`
[WIP] When user is added to a service a list of permissions groups are used to assign the correct permissions to the user. Last slice will be to update invite status. 2016-03-03 15:17:14 +00:00

			`def _process_permissions(user, service, permission_groups):`
			`from app.permissions_utils import get_permissions_by_group`
			`from app.dao.permissions_dao import permission_dao`
			`permissions = get_permissions_by_group(permission_groups)`
			`for permission in permissions:`
			`permission.user = user`
			`permission.service = service`
			`permission_dao.set_user_permission(user, permissions)`