mongo updated

2025-01-10 20:52:45 +03:00
parent d8685dd496
commit cecf1e69a2
66 changed files with 3597 additions and 857 deletions
--- a/ApiServices/EventService/routers/rules/router.py
+++ b/ApiServices/EventService/routers/rules/router.py
@@ -0,0 +1,130 @@
+from fastapi.routing import APIRouter
+from fastapi.requests import Request
+
+from api_objects import OccupantTokenObject, EmployeeTokenObject
+from api_validations.validations_request import (
+    UpdateEndpointAccessList,
+    InsertEndpointAccess,
+    CheckEndpointAccess,
+)
+
+from databases import (
+    EndpointRestriction,
+    Event2Occupant,
+    Event2Employee,
+    Events,
+)
+from databases.sql_models.event.event import Services, Service2Events
+from ApiServices.api_handlers.auth_actions.token import parse_token_object_to_dict
+
+
+endpoint_restriction_route = APIRouter(prefix="/access", tags=["Endpoint Access"])
+endpoint_restriction_route.include_router(
+    endpoint_restriction_route, include_in_schema=True
+)
+
+
+@endpoint_restriction_route.post(
+    path="/endpoint/restriction/create",
+    summary="Add extra restriction to endpoints list",
+)
+def endpoint_restriction_create(request: Request, data: InsertEndpointAccess):
+    token_dict = parse_token_object_to_dict(request=request)
+    return
+
+
+@endpoint_restriction_route.post(
+    path="/endpoint/update", summary="Update extra restriction to endpoints list"
+)
+def endpoint_restriction_update(request: Request, data: UpdateEndpointAccessList):
+    token_dict = parse_token_object_to_dict(request=request)
+    return
+
+
+@endpoint_restriction_route.post(
+    path="/endpoints/available", summary="List extra restriction to endpoints list"
+)
+def endpoint_restriction_list(request: Request):
+    token_dict, records = parse_token_object_to_dict(request=request), []
+    if isinstance(token_dict, OccupantTokenObject):
+        occupant_events = Event2Occupant.get_event_id_by_build_living_space_id(
+            build_living_space_id=token_dict.selected_occupant.living_space_id
+        )
+        events_list = Events.filter_all(Events.id.in_(occupant_events)).data
+        records = EndpointRestriction.filter_all(
+            EndpointRestriction.id.in_([event.endpoint_id for event in events_list])
+        ).data
+    elif isinstance(token_dict, EmployeeTokenObject):
+        employee_events = Event2Employee.get_event_id_by_employee_id(
+            employee_id=token_dict.selected_company.employee_id
+        )
+        events_list = Events.filter_all(Events.id.in_(employee_events)).data
+        records = EndpointRestriction.filter_all(
+            EndpointRestriction.id.in_([event.endpoint_id for event in events_list])
+        ).data
+    return dict(
+        completed=True,
+        message="Available endpoints are listed successfully",
+        result=[str(record.endpoint_name) for record in records],
+    )
+
+
+@endpoint_restriction_route.post(
+    path="/endpoint/available", summary="Check extra restriction to endpoint available"
+)
+def endpoint_restriction_available(request: Request, data: CheckEndpointAccess):
+    token_dict, records = parse_token_object_to_dict(request=request), []
+    endpoint = EndpointRestriction.filter_one(
+        EndpointRestriction.endpoint_name.ilike(f"%{data.endpoint}%"),
+        system=True,
+    ).data
+    if not endpoint:
+        EndpointRestriction.raise_http_exception(
+            status_code="HTTP_404_NOT_FOUND",
+            error_case="UNAUTHORIZED",
+            message="Only Occupant can see this data",
+            data={},
+        )
+    event = Events.filter_one(Events.endpoint_id == endpoint.id).data
+    service = Service2Events.filter_one(Service2Events.event_id == event.id).data
+    if isinstance(token_dict, OccupantTokenObject):
+        event_occupant = Event2Occupant.filter_one(
+            Event2Occupant.event_service_id == service.service_id,
+            Event2Occupant.build_living_space_id
+            == token_dict.selected_occupant.living_space_id,
+        ).data
+        if not event_occupant:
+            EndpointRestriction.raise_http_exception(
+                status_code="HTTP_404_NOT_FOUND",
+                error_case="UNAUTHORIZED",
+                message="This endpoint is not available for this occupant",
+                data={},
+            )
+        return dict(
+            completed=True,
+            message="Endpoint is available for this occupant",
+        )
+    elif isinstance(token_dict, EmployeeTokenObject):
+        event_employee = Event2Employee.filter_one(
+            Event2Employee.event_service_id == service.service_id,
+            Event2Employee.employee_id == token_dict.selected_company.employee_id,
+        ).data
+        if not event_employee:
+            EndpointRestriction.raise_http_exception(
+                status_code="HTTP_404_NOT_FOUND",
+                error_case="UNAUTHORIZED",
+                message="This endpoint is not available for this employee",
+                data={},
+            )
+        return dict(
+            completed=True,
+            message="Endpoint is available for this occupant",
+        )
+
+
+@endpoint_restriction_route.patch(
+    path="/endpoint/bind/patch", summary="Patch extra restriction to endpoints list"
+)
+def endpoint_restriction_patch(request: Request):
+    token_dict = parse_token_object_to_dict(request=request)
+    return