2017-11-18 00:07:03 +00:00
|
|
|
import os
|
|
|
|
|
import re
|
|
|
|
|
import xlsxwriter
|
2016-09-25 06:07:45 +00:00
|
|
|
from django.db.models import Q
|
2017-11-18 00:07:03 +00:00
|
|
|
from django.http import HttpResponse
|
2016-09-25 06:07:45 +00:00
|
|
|
|
2017-11-08 13:56:39 +00:00
|
|
|
from submission.models import Submission
|
2016-11-19 04:32:23 +00:00
|
|
|
from utils.api import APIView, validate_serializer
|
|
|
|
|
from utils.shortcuts import rand_str
|
|
|
|
|
|
2016-09-25 06:07:45 +00:00
|
|
|
from ..decorators import super_admin_required
|
2017-11-18 00:07:03 +00:00
|
|
|
from ..models import AdminType, ProblemPermission, User, UserProfile
|
|
|
|
|
from ..serializers import EditUserSerializer, UserSerializer, GenerateUserSerializer
|
2017-11-22 12:06:16 +00:00
|
|
|
from ..serializers import ImportUserSeralizer
|
2016-09-25 06:07:45 +00:00
|
|
|
|
|
|
|
|
|
2016-11-19 04:37:27 +00:00
|
|
|
class UserAdminAPI(APIView):
|
2017-11-22 12:06:16 +00:00
|
|
|
@validate_serializer(ImportUserSeralizer)
|
|
|
|
|
@super_admin_required
|
|
|
|
|
def post(self, request):
|
|
|
|
|
data = request.data["users"]
|
|
|
|
|
omitted_count = created_count = get_count = 0
|
|
|
|
|
for user_data in data:
|
2017-11-23 11:11:12 +00:00
|
|
|
if len(user_data) != 3 or len(user_data[0]) > 32:
|
2017-11-22 12:06:16 +00:00
|
|
|
omitted_count += 1
|
|
|
|
|
continue
|
|
|
|
|
user, created = User.objects.get_or_create(username=user_data[0])
|
|
|
|
|
user.set_password(user_data[1])
|
|
|
|
|
user.email = user_data[2]
|
|
|
|
|
user.save()
|
|
|
|
|
if created:
|
|
|
|
|
UserProfile.objects.create(user=user)
|
|
|
|
|
created_count += 1
|
|
|
|
|
else:
|
|
|
|
|
get_count += 1
|
|
|
|
|
return self.success({
|
|
|
|
|
"omitted_count": omitted_count,
|
|
|
|
|
"created_count": created_count,
|
|
|
|
|
"get_count": get_count
|
|
|
|
|
})
|
|
|
|
|
|
2016-11-19 04:32:23 +00:00
|
|
|
@validate_serializer(EditUserSerializer)
|
2016-09-25 06:07:45 +00:00
|
|
|
@super_admin_required
|
|
|
|
|
def put(self, request):
|
|
|
|
|
"""
|
|
|
|
|
Edit user api
|
|
|
|
|
"""
|
2016-11-19 04:32:23 +00:00
|
|
|
data = request.data
|
|
|
|
|
try:
|
|
|
|
|
user = User.objects.get(id=data["id"])
|
|
|
|
|
except User.DoesNotExist:
|
2017-04-18 18:03:48 +00:00
|
|
|
return self.error("User does not exist")
|
2017-11-06 13:45:52 +00:00
|
|
|
if User.objects.filter(username=data["username"]).exclude(id=user.id).exists():
|
|
|
|
|
return self.error("Username already exists")
|
|
|
|
|
if User.objects.filter(email=data["email"].lower()).exclude(id=user.id).exists():
|
2017-04-18 18:03:48 +00:00
|
|
|
return self.error("Email already exists")
|
2016-09-25 06:07:45 +00:00
|
|
|
|
2017-11-08 13:56:39 +00:00
|
|
|
pre_username = user.username
|
2016-11-19 04:32:23 +00:00
|
|
|
user.username = data["username"]
|
|
|
|
|
user.email = data["email"]
|
|
|
|
|
user.admin_type = data["admin_type"]
|
|
|
|
|
user.is_disabled = data["is_disabled"]
|
2016-09-25 06:07:45 +00:00
|
|
|
|
2017-02-10 02:38:32 +00:00
|
|
|
if data["admin_type"] == AdminType.ADMIN:
|
|
|
|
|
user.problem_permission = data["problem_permission"]
|
|
|
|
|
elif data["admin_type"] == AdminType.SUPER_ADMIN:
|
|
|
|
|
user.problem_permission = ProblemPermission.ALL
|
|
|
|
|
else:
|
|
|
|
|
user.problem_permission = ProblemPermission.NONE
|
|
|
|
|
|
2016-11-19 04:32:23 +00:00
|
|
|
if data["password"]:
|
|
|
|
|
user.set_password(data["password"])
|
2016-09-25 06:07:45 +00:00
|
|
|
|
2016-11-19 04:32:23 +00:00
|
|
|
if data["open_api"]:
|
|
|
|
|
# Avoid reset user appkey after saving changes
|
|
|
|
|
if not user.open_api:
|
|
|
|
|
user.open_api_appkey = rand_str()
|
|
|
|
|
else:
|
|
|
|
|
user.open_api_appkey = None
|
|
|
|
|
user.open_api = data["open_api"]
|
2016-09-25 06:07:45 +00:00
|
|
|
|
2016-11-19 04:32:23 +00:00
|
|
|
if data["two_factor_auth"]:
|
|
|
|
|
# Avoid reset user tfa_token after saving changes
|
|
|
|
|
if not user.two_factor_auth:
|
|
|
|
|
user.tfa_token = rand_str()
|
2016-09-25 06:07:45 +00:00
|
|
|
else:
|
2016-11-19 04:32:23 +00:00
|
|
|
user.tfa_token = None
|
2017-02-10 02:38:32 +00:00
|
|
|
|
2016-11-19 04:32:23 +00:00
|
|
|
user.two_factor_auth = data["two_factor_auth"]
|
|
|
|
|
|
|
|
|
|
user.save()
|
2017-11-08 13:56:39 +00:00
|
|
|
if pre_username != user.username:
|
|
|
|
|
Submission.objects.filter(username=pre_username).update(username=user.username)
|
2016-11-19 04:32:23 +00:00
|
|
|
return self.success(UserSerializer(user).data)
|
2016-09-25 06:07:45 +00:00
|
|
|
|
|
|
|
|
@super_admin_required
|
|
|
|
|
def get(self, request):
|
|
|
|
|
"""
|
|
|
|
|
User list api / Get user by id
|
|
|
|
|
"""
|
2017-01-24 15:56:18 +00:00
|
|
|
user_id = request.GET.get("id")
|
2016-09-25 06:07:45 +00:00
|
|
|
if user_id:
|
|
|
|
|
try:
|
|
|
|
|
user = User.objects.get(id=user_id)
|
|
|
|
|
except User.DoesNotExist:
|
2017-04-18 18:03:48 +00:00
|
|
|
return self.error("User does not exist")
|
2016-10-29 18:17:35 +00:00
|
|
|
return self.success(UserSerializer(user).data)
|
2016-09-25 06:07:45 +00:00
|
|
|
|
|
|
|
|
user = User.objects.all().order_by("-create_time")
|
|
|
|
|
|
|
|
|
|
keyword = request.GET.get("keyword", None)
|
|
|
|
|
if keyword:
|
2017-11-16 14:12:17 +00:00
|
|
|
user = user.filter(Q(username__icontains=keyword) |
|
|
|
|
|
Q(userprofile__real_name__icontains=keyword) |
|
|
|
|
|
Q(email__icontains=keyword))
|
2016-11-19 04:32:23 +00:00
|
|
|
return self.success(self.paginate_data(request, user, UserSerializer))
|
2017-11-18 00:07:03 +00:00
|
|
|
|
|
|
|
|
def delete_one(self, user_id):
|
|
|
|
|
try:
|
|
|
|
|
user = User.objects.get(id=user_id)
|
|
|
|
|
except User.DoesNotExist:
|
|
|
|
|
return f"User {user_id} does not exist"
|
2017-11-23 14:00:58 +00:00
|
|
|
if Submission.objects.filter(user_id=user_id).exists():
|
2017-11-18 00:07:03 +00:00
|
|
|
return f"Can't delete the user {user_id} as he/she has submissions"
|
|
|
|
|
user.delete()
|
|
|
|
|
|
|
|
|
|
@super_admin_required
|
|
|
|
|
def delete(self, request):
|
|
|
|
|
id = request.GET.get("id")
|
|
|
|
|
if not id:
|
2017-11-23 13:12:37 +00:00
|
|
|
return self.error("Invalid Parameter, id is required")
|
2017-11-18 00:07:03 +00:00
|
|
|
for user_id in id.split(","):
|
|
|
|
|
if user_id:
|
|
|
|
|
error = self.delete_one(user_id)
|
|
|
|
|
if error:
|
|
|
|
|
return self.error(error)
|
|
|
|
|
return self.success()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class GenerateUserAPI(APIView):
|
|
|
|
|
@super_admin_required
|
|
|
|
|
def get(self, request):
|
|
|
|
|
"""
|
|
|
|
|
download users excel
|
|
|
|
|
"""
|
|
|
|
|
file_id = request.GET.get("file_id")
|
|
|
|
|
if not file_id:
|
|
|
|
|
return self.error("Invalid Parameter, file_id is required")
|
|
|
|
|
if not re.match(r"[a-zA-Z0-9]+", file_id):
|
|
|
|
|
return self.error("Illegal file_id")
|
|
|
|
|
file_path = f"/tmp/{file_id}.xlsx"
|
|
|
|
|
if not os.path.isfile(file_path):
|
|
|
|
|
return self.error("File does not exist")
|
|
|
|
|
with open(file_path, "rb") as f:
|
|
|
|
|
raw_data = f.read()
|
|
|
|
|
os.remove(file_path)
|
|
|
|
|
response = HttpResponse(raw_data)
|
|
|
|
|
response["Content-Disposition"] = f"attachment; filename=users.xlsx"
|
|
|
|
|
response["Content-Type"] = "application/xlsx"
|
|
|
|
|
return response
|
|
|
|
|
|
|
|
|
|
@validate_serializer(GenerateUserSerializer)
|
|
|
|
|
@super_admin_required
|
|
|
|
|
def post(self, request):
|
|
|
|
|
data = request.data
|
|
|
|
|
number_max_length = max(len(str(data["number_from"])), len(str(data["number_to"])))
|
|
|
|
|
if number_max_length + len(data["prefix"]) + len(data["suffix"]) > 32:
|
|
|
|
|
return self.error("Username should not more than 32 characters")
|
2017-11-23 11:11:12 +00:00
|
|
|
if data["number_from"] > data["number_to"]:
|
2017-11-18 00:07:03 +00:00
|
|
|
return self.error("Start number must be lower than end number")
|
|
|
|
|
|
|
|
|
|
password_length = data.get("password_length", 8)
|
|
|
|
|
default_email = data.get("default_email")
|
|
|
|
|
|
|
|
|
|
file_id = rand_str(8)
|
|
|
|
|
filename = f"/tmp/{file_id}.xlsx"
|
|
|
|
|
workbook = xlsxwriter.Workbook(filename)
|
|
|
|
|
worksheet = workbook.add_worksheet()
|
|
|
|
|
worksheet.set_column("A:B", 20)
|
|
|
|
|
worksheet.write("A1", "Username")
|
|
|
|
|
worksheet.write("B1", "Password")
|
|
|
|
|
i = 1
|
2017-11-22 12:06:16 +00:00
|
|
|
created_count = 0
|
|
|
|
|
get_count = 0
|
2017-11-18 00:07:03 +00:00
|
|
|
for number in range(data["number_from"], data["number_to"] + 1):
|
|
|
|
|
username = f"{data['prefix']}{number}{data['suffix']}"
|
|
|
|
|
password = rand_str(password_length)
|
2017-11-22 12:06:16 +00:00
|
|
|
user, created = User.objects.get_or_create(username=username)
|
|
|
|
|
user.email = default_email
|
2017-11-18 00:07:03 +00:00
|
|
|
user.set_password(password)
|
|
|
|
|
user.save()
|
2017-11-22 12:06:16 +00:00
|
|
|
if created:
|
|
|
|
|
UserProfile.objects.create(user=user)
|
|
|
|
|
created_count += 1
|
|
|
|
|
else:
|
|
|
|
|
get_count += 1
|
2017-11-18 00:07:03 +00:00
|
|
|
worksheet.write_string(i, 0, username)
|
|
|
|
|
worksheet.write_string(i, 1, password)
|
|
|
|
|
i += 1
|
|
|
|
|
workbook.close()
|
2017-11-22 12:06:16 +00:00
|
|
|
return self.success({
|
|
|
|
|
"file_id": file_id,
|
|
|
|
|
"created_count": created_count,
|
|
|
|
|
"get_count": get_count
|
|
|
|
|
})
|
