lib.itmens/common/api.py

from typing import Any, List

from django.conf import settings
from django.db.models import QuerySet
from loguru import logger
from ninja import NinjaAPI, Schema
from ninja.pagination import PageNumberPagination as NinjaPageNumberPagination
from ninja.security import HttpBearer

from takahe.utils import Takahe
from users.models.apidentity import APIdentity

PERMITTED_WRITE_METHODS = ["PUT", "POST", "DELETE", "PATCH"]
PERMITTED_READ_METHODS = ["GET", "HEAD", "OPTIONS"]


class OAuthAccessTokenAuth(HttpBearer):
    def authenticate(self, request, token) -> bool:
        if not token:
            logger.debug("API auth: no access token provided")
            return False
        tk = Takahe.get_token(token)
        if not tk:
            logger.debug("API auth: access token not found")
            return False
        if tk.revoked:
            logger.debug("API auth: access token revoked")
            return False
        request_scope = ""
        request_method = request.method
        if request_method in PERMITTED_READ_METHODS:
            request_scope = "read"
        elif request_method in PERMITTED_WRITE_METHODS:
            request_scope = "write"
        else:
            logger.debug("API auth: unsupported HTTP method")
            return False
        if request_scope not in tk.scopes:
            logger.debug("API auth: scope not allowed")
            return False
        identity = APIdentity.objects.filter(pk=tk.identity_id).first()
        if not identity:
            logger.debug("API auth: identity not found")
            return False
        if identity.deleted:
            logger.debug("API auth: identity deleted")
            return False
        user = identity.user
        if not user:
            logger.debug("API auth: user not found")
            return False
        request.user = user
        return True


class EmptyResult(Schema):
    pass


class Result(Schema):
    message: str | None
    # error: Optional[str]


class RedirectedResult(Schema):
    message: str | None
    url: str


class PageNumberPagination(NinjaPageNumberPagination):
    items_attribute = "data"

    class Output(Schema):
        data: List[Any]
        pages: int
        count: int

    def paginate_queryset(
        self,
        queryset: QuerySet,
        pagination: NinjaPageNumberPagination.Input,
        **params: Any,
    ):
        val = super().paginate_queryset(queryset, pagination, **params)
        return {
            "data": val["items"],
            "count": val["count"],
            "pages": (val["count"] + self.page_size - 1) // self.page_size,
        }


api = NinjaAPI(
    auth=OAuthAccessTokenAuth(),
    title=f"{settings.SITE_INFO['site_name']} API",
    version="1.0.0",
    description=f"{settings.SITE_INFO['site_name']} API <hr/><a href='{settings.SITE_INFO['site_url']}'>Learn more</a>",
)

NOT_FOUND = 404, {"message": "Note not found"}
OK = 200, {"message": "OK"}
update lint: replace black and isort with ruff 2025-01-11 17:20:02 -05:00			`from typing import Any, List`
fix unicode site name; add isort; split journal and users models 2023-08-10 11:27:31 -04:00
			`from django.conf import settings`
add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00			`from django.db.models import QuerySet`
improve logging 2024-05-25 23:38:11 -04:00			`from loguru import logger`
fix unicode site name; add isort; split journal and users models 2023-08-10 11:27:31 -04:00			`from ninja import NinjaAPI, Schema`
			`from ninja.pagination import PageNumberPagination as NinjaPageNumberPagination`
add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00			`from ninja.security import HttpBearer`
simplify developer module 2024-06-10 17:28:20 -04:00
			`from takahe.utils import Takahe`
			`from users.models.apidentity import APIdentity`
add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00
Frontend API preflight support (#359) * add webapp submodule * add http OPTIONS support * add cors headers Co-authored-by: Henri Dickson <90480431+alphatownsman@users.noreply.github.com> 2023-11-02 21:28:11 +01:00			`PERMITTED_WRITE_METHODS = ["PUT", "POST", "DELETE", "PATCH"]`
			`PERMITTED_READ_METHODS = ["GET", "HEAD", "OPTIONS"]`


add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00			`class OAuthAccessTokenAuth(HttpBearer):`
Frontend API preflight support (#359) * add webapp submodule * add http OPTIONS support * add cors headers Co-authored-by: Henri Dickson <90480431+alphatownsman@users.noreply.github.com> 2023-11-02 21:28:11 +01:00			`def authenticate(self, request, token) -> bool:`
simplify developer module 2024-06-10 17:28:20 -04:00			`if not token:`
			`logger.debug("API auth: no access token provided")`
			`return False`
			`tk = Takahe.get_token(token)`
			`if not tk:`
			`logger.debug("API auth: access token not found")`
add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00			`return False`
check token revoke 2024-06-10 17:40:04 -04:00			`if tk.revoked:`
			`logger.debug("API auth: access token revoked")`
			`return False`
simplify developer module 2024-06-10 17:28:20 -04:00			`request_scope = ""`
Frontend API preflight support (#359) * add webapp submodule * add http OPTIONS support * add cors headers Co-authored-by: Henri Dickson <90480431+alphatownsman@users.noreply.github.com> 2023-11-02 21:28:11 +01:00			`request_method = request.method`
			`if request_method in PERMITTED_READ_METHODS:`
simplify developer module 2024-06-10 17:28:20 -04:00			`request_scope = "read"`
Frontend API preflight support (#359) * add webapp submodule * add http OPTIONS support * add cors headers Co-authored-by: Henri Dickson <90480431+alphatownsman@users.noreply.github.com> 2023-11-02 21:28:11 +01:00			`elif request_method in PERMITTED_WRITE_METHODS:`
simplify developer module 2024-06-10 17:28:20 -04:00			`request_scope = "write"`
Frontend API preflight support (#359) * add webapp submodule * add http OPTIONS support * add cors headers Co-authored-by: Henri Dickson <90480431+alphatownsman@users.noreply.github.com> 2023-11-02 21:28:11 +01:00			`else:`
simplify developer module 2024-06-10 17:28:20 -04:00			`logger.debug("API auth: unsupported HTTP method")`
			`return False`
			`if request_scope not in tk.scopes:`
			`logger.debug("API auth: scope not allowed")`
			`return False`
			`identity = APIdentity.objects.filter(pk=tk.identity_id).first()`
			`if not identity:`
			`logger.debug("API auth: identity not found")`
			`return False`
			`if identity.deleted:`
			`logger.debug("API auth: identity deleted")`
			`return False`
			`user = identity.user`
			`if not user:`
			`logger.debug("API auth: user not found")`
Frontend API preflight support (#359) * add webapp submodule * add http OPTIONS support * add cors headers Co-authored-by: Henri Dickson <90480431+alphatownsman@users.noreply.github.com> 2023-11-02 21:28:11 +01:00			`return False`
simplify developer module 2024-06-10 17:28:20 -04:00			`request.user = user`
			`return True`
add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00

			`class EmptyResult(Schema):`
			`pass`
add api for catalog 2023-02-15 15:45:57 -05:00
queue api fetch 2023-02-15 16:22:32 -05:00
			`class Result(Schema):`
add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00			`message: str \| None`
			`# error: Optional[str]`


			`class RedirectedResult(Schema):`
			`message: str \| None`
			`url: str`


			`class PageNumberPagination(NinjaPageNumberPagination):`
add review api 2023-06-03 01:22:19 -04:00			`items_attribute = "data"`

add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00			`class Output(Schema):`
add review api 2023-06-03 01:22:19 -04:00			`data: List[Any]`
add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00			`pages: int`
			`count: int`

			`def paginate_queryset(`
			`self,`
			`queryset: QuerySet,`
			`pagination: NinjaPageNumberPagination.Input,`
			`**params: Any,`
refresh api schema 2023-06-03 11:10:48 -04:00			`):`
add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00			`val = super().paginate_queryset(queryset, pagination, **params)`
refresh api schema 2023-06-03 11:10:48 -04:00			`return {`
			`"data": val["items"],`
			`"count": val["count"],`
			`"pages": (val["count"] + self.page_size - 1) // self.page_size,`
			`}`
queue api fetch 2023-02-15 16:22:32 -05:00

add api for catalog 2023-02-15 15:45:57 -05:00			`api = NinjaAPI(`
add authentication to api; add me and shelf api; add developer console 2023-06-02 21:54:48 -04:00			`auth=OAuthAccessTokenAuth(),`
update lint: replace black and isort with ruff 2025-01-11 17:20:02 -05:00			`title=f"{settings.SITE_INFO['site_name']} API",`
add api for catalog 2023-02-15 15:45:57 -05:00			`version="1.0.0",`
more explict prompt to search links 2023-07-10 15:29:29 -04:00			`description=f"{settings.SITE_INFO['site_name']} API <hr/><a href='{settings.SITE_INFO['site_url']}'>Learn more</a>",`
add api for catalog 2023-02-15 15:45:57 -05:00			`)`
api for notes 2025-01-19 16:04:22 -05:00
			`NOT_FOUND = 404, {"message": "Note not found"}`
			`OK = 200, {"message": "OK"}`