Madiwka
/
csci-backend
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
51 Commits
1 Branch
290 KiB
 
 
Tree: 2db4cbe6a0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2db4cbe6a0'
${ noResults }
csci-backend/app/apis/v1/route_user.py

129 lines
4.1 KiB
Raw Blame History 

  1. # Routes for user. MAIN PART OF THE API

  2. from fastapi import APIRouter, HTTPException, status

  3. from sqlalchemy.orm import Session

  4. from fastapi import Depends

  5. from typing import List, Annotated

  6. from apis.v1.route_auth import get_current_user

  7. from core.config import settings

  8. from db.models.user import User

  9. from schemas.user import UserCreate, ShowUser, ShowDriver, DriverCreate

  10. from db.session import get_db

  11. from db.repository.user import (

  12.     create_new_user,

  13.     list_users,

  14.     get_user_by_id,

  15.     replace_user_data,

  16.     create_new_driver,

  17.     delete_user_data,

  18. )

  19. 

  20. 

  21. router = APIRouter()

  22. 

  23. 

  24. @router.post("/", response_model=ShowUser, status_code=status.HTTP_201_CREATED)

  25. def create_user(

  26.     user: UserCreate,

  27.     db: Session = Depends(get_db),

  28.     current_user: User = Depends(get_current_user),

  29. ):

  30.     if user.Role not in settings.ALLOWED_ROLES:

  31.         raise HTTPException(

  32.             status_code=400,

  33.             detail=f"Role {user.Role} is not allowed. Allowed roles are {settings.ALLOWED_ROLES}",

  34.         )

  35.     if current_user.Role != "Admin":

  36.         raise HTTPException(

  37.             status_code=403, detail="You are not authorized to perform this action"

  38.         )

  39.     # if current_user.Role != "Admin":

  40.     #     raise HTTPException(status_code=403, detail="You are not authorized to perform this action")

  41.     user = create_new_user(user=user, db=db)

  42.     return user

  43. 

  44. 

  45. @router.post("/driver", response_model=ShowDriver, status_code=status.HTTP_201_CREATED)

  46. def create_driver(

  47.     driver: DriverCreate,

  48.     db: Session = Depends(get_db),

  49.     current_user: User = Depends(get_current_user),

  50. ):

  51.     if current_user.Role != "Admin":

  52.         raise HTTPException(

  53.             status_code=403, detail="You are not authorized to perform this action"

  54.         )

  55.     driver = create_new_driver(driver=driver, db=db)

  56.     return driver

  57. 

  58. 

  59. @router.get("/", response_model=List[ShowUser], status_code=status.HTTP_200_OK)

  60. def get_all_users(db: Session = Depends(get_db), role: str = None):

  61.     if role is None:

  62.         users = list_users(db=db)

  63.         return users

  64.     users = list_users(db=db, role=role)

  65.     return users

  66. 

  67. 

  68. @router.put("/{user_id}", response_model=ShowUser, status_code=status.HTTP_202_ACCEPTED)

  69. def update_user(

  70.     user_id: int,

  71.     user: UserCreate,

  72.     db: Session = Depends(get_db),

  73.     current_user: User = Depends(get_current_user),

  74. ):

  75.     if current_user.Role != "Admin":

  76.         raise HTTPException(

  77.             status_code=403, detail="You are not authorized to perform this action"

  78.         )

  79.     user = replace_user_data(user_id=user_id, user_data=user, db=db)

  80.     if user == "userNotFound":

  81.         raise HTTPException(status_code=404, detail="User not found")

  82.     return user

  83. 

  84. 

  85. @router.get("/me", response_model=ShowUser, status_code=status.HTTP_200_OK)

  86. def get_user_me(

  87.     current_user: Annotated[User, Depends(get_current_user)],

  88.     db: Annotated[Session, Depends(get_db)],

  89. ):

  90.     print("Getting current user...")

  91.     return current_user

  92. 

  93. 

  94. @router.get("/{user_id}", response_model=ShowUser, status_code=status.HTTP_200_OK)

  95. def get_user(user_id: int, db: Session = Depends(get_db)):

  96.     user = get_user_by_id(user_id=user_id, role="Any", db=db)

  97.     if not user:

  98.         raise HTTPException(status_code=404, detail="User not found")

  99.     return user

  100. 

  101. 

  102. @router.get(

  103.     "/driver/{driver_id}", response_model=ShowDriver, status_code=status.HTTP_200_OK

  104. )

  105. def get_driver(driver_id: int, db: Session = Depends(get_db)):

  106.     driver = get_user_by_id(user_id=driver_id, role="Driver", db=db)

  107.     if not driver:

  108.         raise HTTPException(status_code=404, detail="Driver not found")

  109.     res = driver.__dict__

  110.     res["AssignedVehicle"] = driver.vehicle

  111. 

  112.     return driver

  113. 

  114. 

  115. @router.delete("/{user_id}", status_code=status.HTTP_200_OK)

  116. def delete_user(

  117.     user_id: int,

  118.     db: Session = Depends(get_db),

  119.     current_user: User = Depends(get_current_user),

  120. ):

  121.     if current_user.Role != "Admin":

  122.         raise HTTPException(

  123.             status_code=403, detail="You are not authorized to perform this action"

  124.         )

  125.     result = delete_user_data(id=user_id, db=db)

  126.     if result == "userNotFound":

  127.         raise HTTPException(status_code=404, detail="User not found")

  128.     return result