Madiwka
/
csci-backend
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
48 Commits
1 Branch
290 KiB
 
 
Tree: 9a532739de
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '9a532739de'
${ noResults }
csci-backend/app/apis/v1/route_user.py

127 lines
4.0 KiB
Raw Blame History 

  1. # Routes for user. MAIN PART OF THE API

  2. from fastapi import APIRouter, HTTPException, status

  3. from sqlalchemy.orm import Session

  4. from fastapi import Depends

  5. from typing import List, Annotated

  6. from apis.v1.route_auth import get_current_user

  7. from core.config import Settings

  8. from db.models.user import User

  9. from schemas.user import UserCreate, ShowUser, ShowDriver, DriverCreate

  10. from db.session import get_db

  11. from db.repository.user import (

  12.     create_new_user,

  13.     list_users,

  14.     get_user_by_id,

  15.     replace_user_data,

  16.     create_new_driver,

  17.     delete_user_data,

  18. )

  19. 

  20. 

  21. router = APIRouter()

  22. 

  23. 

  24. @router.post("/", response_model=ShowUser, status_code=status.HTTP_201_CREATED)

  25. def create_user(

  26.     user: UserCreate,

  27.     db: Session = Depends(get_db),

  28.     current_user: User = Depends(get_current_user),

  29. ):

  30.     if user.Role not in Settings.ALLOWED_ROLES:

  31.         raise HTTPException(

  32.             status_code=400,

  33.             detail=f"Status {status} is not allowed. Allowed status are {settings.ALLOWED_TASK_STATUS}",

  34.         )

  35.     if current_user.Role != "Admin":

  36.         raise HTTPException(

  37.             status_code=403, detail="You are not authorized to perform this action"

  38.         )

  39.     # if current_user.Role != "Admin":

  40.     #     raise HTTPException(status_code=403, detail="You are not authorized to perform this action")

  41.     user = create_new_user(user=user, db=db)

  42.     return user

  43. 

  44. 

  45. @router.post("/driver", response_model=ShowDriver, status_code=status.HTTP_201_CREATED)

  46. def create_driver(

  47.     driver: DriverCreate,

  48.     db: Session = Depends(get_db),

  49.     current_user: User = Depends(get_current_user),

  50. ):

  51.     if current_user.Role != "Admin":

  52.         raise HTTPException(

  53.             status_code=403, detail="You are not authorized to perform this action"

  54.         )

  55.     driver = create_new_driver(driver=driver, db=db)

  56.     return driver

  57. 

  58. 

  59. @router.get("/", response_model=List[ShowUser], status_code=status.HTTP_200_OK)

  60. def get_all_users(db: Session = Depends(get_db), role: str = None):

  61.     if role is None:

  62.         users = list_users(db=db)

  63.         return users

  64.     users = list_users(db=db, role=role)

  65.     return users

  66. 

  67. 

  68. @router.put("/{user_id}", response_model=ShowUser, status_code=status.HTTP_202_ACCEPTED)

  69. def update_user(

  70.     user_id: int,

  71.     user: UserCreate,

  72.     db: Session = Depends(get_db),

  73.     current_user: User = Depends(get_current_user),

  74. ):

  75.     if current_user.Role != "Admin":

  76.         raise HTTPException(

  77.             status_code=403, detail="You are not authorized to perform this action"

  78.         )

  79.     user = replace_user_data(user_id=user_id, user=user, db=db)

  80.     return user

  81. 

  82. 

  83. @router.get("/me", response_model=ShowUser, status_code=status.HTTP_200_OK)

  84. def get_user_me(

  85.     current_user: Annotated[User, Depends(get_current_user)],

  86.     db: Annotated[Session, Depends(get_db)],

  87. ):

  88.     print("Getting current user...")

  89.     return current_user

  90. 

  91. 

  92. @router.get("/{user_id}", response_model=ShowUser, status_code=status.HTTP_200_OK)

  93. def get_user(user_id: int, db: Session = Depends(get_db)):

  94.     user = get_user_by_id(user_id=user_id, db=db)

  95.     if not user:

  96.         raise HTTPException(status_code=404, detail="User not found")

  97.     return user

  98. 

  99. 

  100. @router.get(

  101.     "/driver/{driver_id}", response_model=ShowDriver, status_code=status.HTTP_200_OK

  102. )

  103. def get_driver(driver_id: int, db: Session = Depends(get_db)):

  104.     driver = get_user_by_id(user_id=driver_id, role="Driver", db=db)

  105.     if not driver:

  106.         raise HTTPException(status_code=404, detail="Driver not found")

  107.     res = driver.__dict__

  108.     res["AssignedVehicle"] = driver.vehicle

  109. 

  110.     return driver

  111. 

  112. 

  113. @router.delete("/{user_id}", status_code=status.HTTP_200_OK)

  114. def delete_user(

  115.     user_id: int,

  116.     db: Session = Depends(get_db),

  117.     current_user: User = Depends(get_current_user),

  118. ):

  119.     if current_user.Role != "Admin":

  120.         raise HTTPException(

  121.             status_code=403, detail="You are not authorized to perform this action"

  122.         )

  123.     result = delete_user_data(id=user_id, db=db)

  124.     if result == "userNotFound":

  125.         raise HTTPException(status_code=404, detail="User not found")

  126.     return result