[address book] Add admin api

2025-09-09 10:50:24 +00:00 · 2017-12-23 12:01:57 +08:00
parent d37144ef75
commit f0a60418e4
6 changed files with 376 additions and 0 deletions
--- a/seahub/api2/endpoints/admin/address_book/init.py
+++ b/seahub/api2/endpoints/admin/address_book/init.py
--- a/seahub/api2/endpoints/admin/address_book/group.py
+++ b/seahub/api2/endpoints/admin/address_book/group.py
@@ -0,0 +1,133 @@
+import logging
+
+from rest_framework.authentication import SessionAuthentication
+from rest_framework.permissions import IsAdminUser
+from rest_framework.response import Response
+from rest_framework.views import APIView
+from rest_framework import status
+
+from django.utils.translation import ugettext as _
+
+from seaserv import seafile_api, ccnet_api
+from pysearpc import SearpcError
+
+from seahub.api2.utils import to_python_boolean
+from seahub.avatar.settings import AVATAR_DEFAULT_SIZE
+from seahub.base.accounts import User
+from seahub.utils import is_valid_username
+from seahub.utils.timeutils import timestamp_to_isoformat_timestr
+from seahub.group.utils import get_group_member_info
+from seahub.group.utils import is_group_member, is_group_admin, \
+        validate_group_name, check_group_name_conflict
+from seahub.admin_log.signals import admin_operation
+from seahub.admin_log.models import GROUP_CREATE, GROUP_DELETE, GROUP_TRANSFER
+from seahub.api2.utils import api_error
+from seahub.api2.throttling import UserRateThrottle
+from seahub.api2.authentication import TokenAuthentication
+
+logger = logging.getLogger(__name__)
+
+def address_book_group_to_dict(group):
+    if isinstance(group, int):
+        group = ccnet_api.get_group(group)
+
+    return {
+        "id": group.id,
+        "name": group.group_name,
+        "owner": group.creator_name,
+        "created_at": timestamp_to_isoformat_timestr(group.timestamp),
+        "parent_group_id": group.parent_group_id,
+    }
+
+class AdminAddressBookGroup(APIView):
+    authentication_classes = (TokenAuthentication, SessionAuthentication)
+    throttle_classes = (UserRateThrottle,)
+    permission_classes = (IsAdminUser,)
+
+    def get(self, request, group_id):
+        """List child groups and members in an address book group."""
+        group_id = int(group_id)
+
+        group = ccnet_api.get_group(group_id)
+        if not group:
+            error_msg = 'Group %d not found.' % group_id
+            return api_error(status.HTTP_404_NOT_FOUND, error_msg)
+
+        try:
+            avatar_size = int(request.GET.get('avatar_size',
+                                              AVATAR_DEFAULT_SIZE))
+        except ValueError:
+            avatar_size = AVATAR_DEFAULT_SIZE
+
+        try:
+            return_ancestors = to_python_boolean(request.GET.get(
+                'return_ancestors', 'f'))
+        except ValueError:
+            return_ancestors = False
+
+        ret_dict = address_book_group_to_dict(group)
+        ret_groups = []
+        ret_members = []
+
+        groups = ccnet_api.get_child_groups(group_id)
+        for group in groups:
+            ret_groups.append(address_book_group_to_dict(group))
+
+        try:
+            members = ccnet_api.get_group_members(group_id)
+        except Exception as e:
+            logger.error(e)
+            error_msg = 'Internal Server Error'
+            return api_error(status.HTTP_500_INTERNAL_SERVER_ERROR, error_msg)
+        for m in members:
+            member_info = get_group_member_info(request, group_id, m.user_name,
+                                                avatar_size)
+            ret_members.append(member_info)
+
+        ret_dict['groups'] = ret_groups
+        ret_dict['members'] = ret_members
+
+        if return_ancestors:
+            # get ancestor groups and remove last group which is self
+            ancestor_groups = ccnet_api.get_ancestor_groups(group_id)[:-1]
+            ret_dict['ancestor_groups'] = [address_book_group_to_dict(grp)
+                                           for grp in ancestor_groups]
+        else:
+            ret_dict['ancestor_groups'] = []
+
+        return Response(ret_dict)
+
+    def delete(self, request, group_id):
+        """Dismiss a specific group."""
+        group_id = int(group_id)
+
+        group = ccnet_api.get_group(group_id)
+        if not group:
+            return Response({'success': True})
+
+        group_owner = group.creator_name
+        group_name = group.group_name
+
+        try:
+            ret_code = ccnet_api.remove_group(group_id)
+            if ret_code == -1:
+                error_msg = 'Failed to remove: this group has child groups.'
+                return api_error(status.HTTP_400_BAD_REQUEST,
+                                 error_msg)
+
+            seafile_api.remove_group_repos(group_id)
+        except Exception as e:
+            logger.error(e)
+            error_msg = 'Internal Server Error'
+            return api_error(status.HTTP_500_INTERNAL_SERVER_ERROR, error_msg)
+
+        # send admin operation log signal
+        admin_op_detail = {
+            "id": group_id,
+            "name": group_name,
+            "owner": group_owner,
+        }
+        admin_operation.send(sender=None, admin_name=request.user.username,
+                             operation=GROUP_DELETE, detail=admin_op_detail)
+
+        return Response({'success': True})
--- a/seahub/api2/endpoints/admin/address_book/groups.py
+++ b/seahub/api2/endpoints/admin/address_book/groups.py
@@ -0,0 +1,110 @@
+import logging
+
+from rest_framework.authentication import SessionAuthentication
+from rest_framework.permissions import IsAdminUser
+from rest_framework.response import Response
+from rest_framework.views import APIView
+from rest_framework import status
+
+from django.utils.translation import ugettext as _
+
+from seaserv import seafile_api, ccnet_api
+from pysearpc import SearpcError
+
+from seahub.base.accounts import User
+from seahub.utils import is_valid_username
+from seahub.utils.timeutils import timestamp_to_isoformat_timestr
+from seahub.group.utils import is_group_member, is_group_admin, \
+        validate_group_name, check_group_name_conflict
+from seahub.admin_log.signals import admin_operation
+from seahub.admin_log.models import GROUP_CREATE, GROUP_DELETE, GROUP_TRANSFER
+from seahub.api2.utils import api_error
+from seahub.api2.throttling import UserRateThrottle
+from seahub.api2.authentication import TokenAuthentication
+
+logger = logging.getLogger(__name__)
+
+def address_book_group_to_dict(group):
+    if isinstance(group, int):
+        group = ccnet_api.get_group(group)
+
+    return {
+        "id": group.id,
+        "name": group.group_name,
+        "owner": group.creator_name,
+        "created_at": timestamp_to_isoformat_timestr(group.timestamp),
+        "parent_group_id": group.parent_group_id,
+    }
+
+class AdminAddressBookGroups(APIView):
+    authentication_classes = (TokenAuthentication, SessionAuthentication)
+    throttle_classes = (UserRateThrottle,)
+    permission_classes = (IsAdminUser,)
+
+    def get(self, request):
+        """List top groups in address book."""
+        return_results = []
+
+        groups = ccnet_api.get_top_groups()
+        for group in groups:
+            return_results.append(address_book_group_to_dict(group))
+
+        return Response({"data": return_results})
+
+    def post(self, request):
+        """Add a group in address book.
+
+        parent_group: -1 - no parent group;
+                      > 0 - have parent group.
+        group_owner: default to system admin
+        group_staff: default to system admin
+        """
+        group_name = request.data.get('group_name', '').strip()
+        if not group_name:
+            error_msg = 'group_name %s invalid.' % group_name
+            return api_error(status.HTTP_400_BAD_REQUEST, error_msg)
+
+        # Check whether group name is validate.
+        if not validate_group_name(group_name):
+            error_msg = _(u'Group name can only contain letters, numbers, blank, hyphen or underscore')
+            return api_error(status.HTTP_400_BAD_REQUEST, error_msg)
+
+        # Check whether group name is duplicated.
+        if check_group_name_conflict(request, group_name):
+            error_msg = _(u'There is already a group with that name.')
+            return api_error(status.HTTP_400_BAD_REQUEST, error_msg)
+
+        group_owner = request.data.get('group_owner', '')
+        if group_owner:
+            try:
+                User.objects.get(email=group_owner)
+            except User.DoesNotExist:
+                error_msg = 'User %s not found.' % group_owner
+                return api_error(status.HTTP_404_NOT_FOUND, error_msg)
+        else:
+            group_owner = request.user.username
+
+        try:
+            parent_group = int(request.data.get('parent_group', -1))
+        except ValueError:
+            error_msg = 'parent_group invalid'
+            return api_error(status.HTTP_400_BAD_REQUEST, error_msg)
+
+        if parent_group < 0 and parent_group != -1:
+            error_msg = 'parent_group invalid'
+            return api_error(status.HTTP_400_BAD_REQUEST, error_msg)
+
+        # TODO: check parent group exists
+
+        try:
+            group_id = ccnet_api.create_group(group_name, group_owner,
+                                              parent_group_id=parent_group)
+        except SearpcError as e:
+            logger.error(e)
+            error_msg = 'Internal Server Error'
+            return api_error(status.HTTP_500_INTERNAL_SERVER_ERROR, error_msg)
+
+        # get info of new group
+        group_info = address_book_group_to_dict(group_id)
+
+        return Response(group_info, status=status.HTTP_200_OK)
--- a/seahub/urls.py
+++ b/seahub/urls.py
@@ -91,6 +91,8 @@ from seahub.api2.endpoints.admin.invitations import InvitationsView as AdminInvi
 from seahub.api2.endpoints.admin.library_history import AdminLibraryHistoryLimit
 from seahub.api2.endpoints.admin.login_bg_image import AdminLoginBgImage
 from seahub.api2.endpoints.admin.admin_role import AdminAdminRole
+from seahub.api2.endpoints.admin.address_book.groups import AdminAddressBookGroups
+from seahub.api2.endpoints.admin.address_book.group import AdminAddressBookGroup

 # Uncomment the next two lines to enable the admin:
 #from django.contrib import admin
@@ -384,6 +386,10 @@ urlpatterns = patterns(
    url(r'^invite/', include('seahub.invitations.urls', app_name='invitations', namespace='invitations')),
    url(r'^terms/', include('termsandconditions.urls')),

+    ## admin::address book
+    url(r'^api/v2.1/admin/address-book/groups/$', AdminAddressBookGroups.as_view(), name='api-v2.1-admin-address-book-groups'),
+    url(r'^api/v2.1/admin/address-book/groups/(?P<group_id>\d+)/$', AdminAddressBookGroup.as_view(), name='api-v2.1-admin-address-book-group'),
+
    ### system admin ###
    url(r'^sysadmin/$', sysadmin, name='sysadmin'),
    url(r'^sys/settings/$', sys_settings, name='sys_settings'),
--- a/tests/api/endpoints/admin/address_book/test_group.py
+++ b/tests/api/endpoints/admin/address_book/test_group.py
@@ -0,0 +1,66 @@
+import json
+
+from django.core.urlresolvers import reverse
+from seaserv import ccnet_api
+
+from seahub.test_utils import BaseTestCase
+from tests.common.utils import randstring
+
+class GroupsTest(BaseTestCase):
+
+    def setUp(self):
+        self.user_name = self.user.username
+        self.admin_name = self.admin.username
+
+        group_name = 'top group xxx'
+        self.top_group_id = ccnet_api.create_group(group_name, self.admin_name,
+                                                   parent_group_id=-1)
+        self.login_as(self.admin)
+        self.url = reverse('api-v2.1-admin-address-book-group',
+                           args=[self.top_group_id])
+
+    def tearDown(self):
+        self.remove_group(self.top_group_id)
+
+    def test_can_list_child_groups(self):
+        child_group_id = ccnet_api.create_group('child group xxx',
+                                                self.user.username,
+                                                parent_group_id=self.top_group_id)
+
+        resp = self.client.get(self.url)
+        self.assertEqual(200, resp.status_code)
+        json_resp = json.loads(resp.content)
+        assert len(json_resp['groups']) >= 1
+        assert len(json_resp['members']) >= 1
+        assert len(json_resp['ancestor_groups']) == 0
+        assert json_resp['id'] == self.top_group_id
+        self.remove_group(child_group_id)
+
+    def test_can_ancestor_groups(self):
+        child_group_id = ccnet_api.create_group('child group xxx',
+                                                self.user.username,
+                                                parent_group_id=self.top_group_id)
+
+        url = reverse('api-v2.1-admin-address-book-group',
+                      args=[child_group_id]) + '?return_ancestors=true'
+        resp = self.client.get(url)
+        self.assertEqual(200, resp.status_code)
+        json_resp = json.loads(resp.content)
+        assert len(json_resp['groups']) == 0
+        assert len(json_resp['ancestor_groups']) >= 1
+        assert json_resp['ancestor_groups'][-1]['id'] == self.top_group_id
+        self.remove_group(child_group_id)
+
+    def test_can_delete_group(self):
+        resp = self.client.delete(self.url)
+        self.assertEqual(200, resp.status_code)
+
+    def test_cannot_delete_group_with_child(self):
+        child_group_id = ccnet_api.create_group('child group xxx',
+                                                self.user.username,
+                                                parent_group_id=self.top_group_id)
+
+        resp = self.client.delete(self.url)
+        self.assertEqual(400, resp.status_code)
+
+        self.remove_group(child_group_id)
--- a/tests/api/endpoints/admin/address_book/test_groups.py
+++ b/tests/api/endpoints/admin/address_book/test_groups.py
@@ -0,0 +1,61 @@
+import json
+
+from django.core.urlresolvers import reverse
+from seaserv import ccnet_api
+
+from seahub.test_utils import BaseTestCase
+from tests.common.utils import randstring
+
+
+class GroupsTest(BaseTestCase):
+
+    def setUp(self):
+        self.user_name = self.user.username
+        self.admin_name = self.admin.username
+
+        self.login_as(self.admin)
+        self.url = reverse('api-v2.1-admin-address-book-groups')
+
+    def test_can_list_top_groups(self):
+        top_group_id = ccnet_api.create_group('top group xxx', self.user.username,
+                                              parent_group_id=-1)
+
+        resp = self.client.get(self.url)
+        self.assertEqual(200, resp.status_code)
+
+        json_resp = json.loads(resp.content)
+        assert len(json_resp['data']) >= 1
+
+        self.remove_group(top_group_id)
+
+    def test_can_create_top_group(self):
+        resp = self.client.post(self.url, {
+            'group_name': randstring(10),
+            'parent_group': -1,
+            'group_owner': self.user.username
+        })
+        self.assertEqual(200, resp.status_code)
+
+        json_resp = json.loads(resp.content)
+        assert len(json_resp['name']) == 10
+        assert json_resp['parent_group_id'] == -1
+
+        self.remove_group(json_resp['id'])
+
+    def test_can_create_child_group(self):
+        top_group_id = ccnet_api.create_group('top group xxx', self.user.username,
+                                              parent_group_id=-1)
+
+        resp = self.client.post(self.url, {
+            'group_name': randstring(10),
+            'parent_group': top_group_id,
+            'group_owner': self.user.username
+        })
+        self.assertEqual(200, resp.status_code)
+
+        json_resp = json.loads(resp.content)
+        assert len(json_resp['name']) == 10
+        assert json_resp['parent_group_id'] == top_group_id
+
+        self.remove_group(json_resp['id'])
+        self.remove_group(top_group_id)