| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174 |
- from django.db.models import QuerySet
- from django.utils.translation import gettext_lazy as _
- from drf_spectacular.utils import extend_schema
- from rest_framework.request import Request
- from rest_framework.views import APIView
- from common.auth import TokenAuth
- from common.auth.authentication import has_permissions
- from common.constants.permission_constants import Permission, Group, Operate, RoleConstants, ViewPermission, \
- PermissionConstants, CompareConstants
- from common.log.log import log
- from common.result import result
- from folders.api.folder import FolderCreateAPI, FolderEditAPI, FolderReadAPI, FolderTreeReadAPI, FolderDeleteAPI
- from folders.serializers.folder import FolderSerializer, FolderTreeSerializer, get_folder_type
- def get_folder_operation_object(folder_id, source):
- Folder = get_folder_type(source)
- folder_model = QuerySet(model=Folder).filter(id=folder_id).first()
- if folder_model is not None:
- return {
- 'name': folder_model.name
- }
- return {}
- class FolderView(APIView):
- authentication_classes = [TokenAuth]
- @extend_schema(
- methods=['POST'],
- description=_('Create folder'),
- summary=_('Create folder'),
- operation_id=_('Create folder'), # type: ignore
- parameters=FolderCreateAPI.get_parameters(),
- request=FolderCreateAPI.get_request(),
- responses=FolderCreateAPI.get_response(),
- tags=[_('Folder')] # type: ignore
- )
- @has_permissions(
- lambda r, kwargs: Permission(group=Group(f"{kwargs.get('source')}_FOLDER"), operate=Operate.CREATE,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}/{kwargs.get('source')}/{r.data.get('parent_id')}"),
- lambda r, kwargs: Permission(group=Group(f"{kwargs.get('source')}_FOLDER"), operate=Operate.CREATE,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}:ROLE/WORKSPACE_MANAGE"
- ),
- lambda r, kwargs: ViewPermission([RoleConstants.USER.get_workspace_role()],
- [Permission(group=Group(f"{kwargs.get('source')}_FOLDER"),
- operate=Operate.EDIT,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}/{kwargs.get('source')}/{r.data.get('parent_id')}"
- )], CompareConstants.AND),
- RoleConstants.WORKSPACE_MANAGE.get_workspace_role()
- )
- @log(
- menu='folder', operate='Create folder',
- get_operation_object=lambda r, k: {'name': r.data.get('name')},
- )
- def post(self, request: Request, workspace_id: str, source: str):
- return result.success(FolderSerializer.Create(
- data={'user_id': request.user.id,
- 'source': source,
- 'workspace_id': workspace_id}
- ).insert(request.data))
- @extend_schema(
- methods=['GET'],
- description=_('Get folder tree'),
- summary=_('Get folder tree'),
- operation_id=_('Get folder tree'), # type: ignore
- parameters=FolderTreeReadAPI.get_parameters(),
- responses=FolderTreeReadAPI.get_response(),
- tags=[_('Folder')] # type: ignore
- )
- @has_permissions(
- lambda r, kwargs: Permission(group=Group(f"{kwargs.get('source')}_WORKSPACE_USER_RESOURCE_PERMISSION"),
- operate=Operate.READ,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}"),
- lambda r, kwargs: Permission(group=Group(kwargs.get('source')), operate=Operate.READ,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}"),
- RoleConstants.WORKSPACE_MANAGE.get_workspace_role(), RoleConstants.USER.get_workspace_role(),
- RoleConstants.ADMIN, RoleConstants.EXTENDS_ADMIN
- )
- def get(self, request: Request, workspace_id: str, source: str):
- return result.success(FolderTreeSerializer(
- data={'workspace_id': workspace_id, 'source': source}
- ).get_folder_tree(request.user, request.query_params.get('name')))
- class Operate(APIView):
- authentication_classes = [TokenAuth]
- @extend_schema(
- methods=['PUT'],
- description=_('Update folder'),
- summary=_('Update folder'),
- operation_id=_('Update folder'), # type: ignore
- parameters=FolderEditAPI.get_parameters(),
- request=FolderEditAPI.get_request(),
- responses=FolderEditAPI.get_response(),
- tags=[_('Folder')] # type: ignore
- )
- @has_permissions(
- lambda r, kwargs: Permission(group=Group(f"{kwargs.get('source')}_FOLDER"), operate=Operate.EDIT,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}:ROLE/WORKSPACE_MANAGE"
- ),
- lambda r, kwargs: Permission(group=Group(f"{kwargs.get('source')}_FOLDER"), operate=Operate.EDIT,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}/{kwargs.get('source')}/{kwargs.get('folder_id')}"
- ),
- lambda r, kwargs: ViewPermission([RoleConstants.USER.get_workspace_role()],
- [Permission(group=Group(f"{kwargs.get('source')}_FOLDER"),
- operate=Operate.EDIT,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}/{kwargs.get('source')}/{kwargs.get('folder_id')}"
- )], CompareConstants.AND),
- RoleConstants.WORKSPACE_MANAGE.get_workspace_role()
- )
- @log(
- menu='folder', operate='Edit folder',
- get_operation_object=lambda r, k: get_folder_operation_object(k.get('folder_id'), k.get('source')),
- )
- def put(self, request: Request, workspace_id: str, source: str, folder_id: str):
- return result.success(FolderSerializer.Operate(
- data={'id': folder_id, 'workspace_id': workspace_id, 'source': source, 'user_id': request.user.id}
- ).edit(request.data))
- @extend_schema(
- methods=['GET'],
- description=_('Get folder'),
- summary=_('Get folder'),
- operation_id=_('Get folder'), # type: ignore
- parameters=FolderReadAPI.get_parameters(),
- responses=FolderReadAPI.get_response(),
- tags=[_('Folder')] # type: ignore
- )
- @has_permissions(
- lambda r, kwargs: Permission(group=Group(kwargs.get('source')), operate=Operate.READ,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}"),
- RoleConstants.WORKSPACE_MANAGE.get_workspace_role(), RoleConstants.USER.get_workspace_role(),
- RoleConstants.ADMIN, RoleConstants.EXTENDS_ADMIN
- )
- def get(self, request: Request, workspace_id: str, source: str, folder_id: str):
- return result.success(FolderSerializer.Operate(
- data={'id': folder_id, 'workspace_id': workspace_id, 'source': source, 'user_id': request.user.id}
- ).one())
- @extend_schema(
- methods=['DELETE'],
- description=_('Delete folder'),
- summary=_('Delete folder'),
- operation_id=_('Delete folder'), # type: ignore
- parameters=FolderDeleteAPI.get_parameters(),
- responses=FolderDeleteAPI.get_response(),
- tags=[_('Folder')] # type: ignore
- )
- @has_permissions(
- lambda r, kwargs: Permission(group=Group(f"{kwargs.get('source')}_FOLDER"), operate=Operate.DELETE,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}:ROLE/WORKSPACE_MANAGE"
- ),
- lambda r, kwargs: Permission(group=Group(f"{kwargs.get('source')}_FOLDER"), operate=Operate.DELETE,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}/{kwargs.get('source')}/{kwargs.get('folder_id')}"
- ),
- lambda r, kwargs: ViewPermission([RoleConstants.USER.get_workspace_role()],
- [Permission(group=Group(f"{kwargs.get('source')}_FOLDER"),
- operate=Operate.DELETE,
- resource_path=f"/WORKSPACE/{kwargs.get('workspace_id')}/{kwargs.get('source')}/{kwargs.get('folder_id')}"
- )], CompareConstants.AND),
- RoleConstants.WORKSPACE_MANAGE.get_workspace_role()
- )
- @log(
- menu='folder', operate='Delete folder',
- get_operation_object=lambda r, k: get_folder_operation_object(k.get('folder_id'), k.get('source')),
- )
- def delete(self, request: Request, workspace_id: str, source: str, folder_id: str):
- return result.success(FolderSerializer.Operate(
- data={'id': folder_id, 'workspace_id': workspace_id, 'source': source, 'user_id': request.user.id}
- ).delete())
|
