se-hub/SE_API/API.py


__author__ = 'sagi'
import json
from GithubAPI.GithubAPI import GitHubAPI_Keys

from google.appengine.ext import db
import requests
import uuid

from flask import Flask, request, render_template, redirect, abort, Response

from flask.ext.github import GitHub
from flask.ext.cors import CORS, cross_origin
from flask.ext.autodoc import Autodoc

# DB Models
from models.User import User
from models.Course import Course
from models.Project import Project
from models.Campus import Campus

#Validation Utils Libs
from SE_API.Validation_Utils import *
from SE_API.Respones_Utils import *


app = Flask(__name__, static_folder='../templates')

githubKeys = GitHubAPI_Keys()

app.config['GITHUB_CLIENT_ID'] = githubKeys.getId()
app.config['GITHUB_CLIENT_SECRET'] = githubKeys.getSecret()

github = GitHub(app)
cross = CORS(app)
auto = Autodoc(app)

@app.errorhandler(404)
def page_not_found(e):
    return app.send_static_file('views/404/index.html')

@app.route('/')
def wellcomePage():
    return app.send_static_file('index.html')

@app.route('/api/validation/confirm/<string:validation_token>')
@auto.doc()
def confirm_user_to_campus(validation_token):
    """
    This Function is will re
    :param validation_token: 'seToken|email_suffix'
    :return:
    200 - redirect to home + new cookie
    403 - Invalid Token
    """
    #TODO
    token = str(validation_token).split('|')[0]
    email_sufix = '@'+str(validation_token).split('|')[1]

    user = get_user_by_token(token)

    if user is None:
        return forbidden('Forbidden: invalid Token')
    else:
        campus = get_campus_by_suffix(email_sufix)
        if campus is None:
            return bad_request('Bad Request: Email Suffix ' + email_sufix + ' Not Found')
    user.isFirstLogin = False
    user.seToken = str(uuid.uuid4())
    if str(campus.key().id()) not in user.campuses_id_list:
        user.campuses_id_list.append(str(campus.key().id()))
    db.put(user)
    return cookieMonster(user.seToken)


@app.route('/api/validation/sendmail/<string:token>', methods=['POST'])
@auto.doc()
def send_activation(token):
    """
    This Method Will Send An Email To The User - To Confirm his Account
    :param token:  - seToken
    :payload: JSON - {email: 'academic@email.ac.com'}
    :return:
    200 - Email Sent - No Response
    400 - Bad Request
    403 - Invalid Token
    """
    if not request.data:
        return Response(response=json.dumps({'message': 'Bad Request'}),
                        status=400,
                        mimetype="application/json")
    payload = json.loads(request.data)
    if not is_user_token_valid(token):
        return Response(response=json.dumps({'message': 'Not A Valid Token!'}),
                        status=403,
                        mimetype="application/json")
    query = User.all()
    query.filter('seToken =', token)
    for u in query.run(limit=1):
        try:
            send_validation_email(token=token, name=u.username, email=payload["email"])
        except Exception:
            return Response(response=json.dumps({'message': 'Bad Request'}),
                     status=400,
                     mimetype="application/json")

        return Response(status=200)

@app.route('/api/help')
def documentation():
    return auto.html()

@app.route('/home')
def returnHome():
    try:
        return app.send_static_file('views/index.html')
    except Exception:
        abort(404)


@app.route('/api/getUserByToken/<string:token>', methods=["GET"])
@auto.doc()
def getUserByToken(token):
    '''
    param: String - token: users se-Token
    return: JSON object of the user
    if no valid seToken, return message: No User Found
    '''
    query = User.all()
    query.filter("seToken = ", token)

    for u in query.run(limit=5):
        return Response(response=u.to_JSON(),
                        status=201,
                        mimetype="application/json")  # Real response!

    return Response(response=json.dumps({'message' : 'No User Found'}),
                    status=400,
                    mimetype="application/json")


@app.route('/githubOAuth')
@cross_origin('*')
@github.authorized_handler
def oauth(oauth_token):
    if oauth_token is None:
        return render_template("index.html", messages={'error': 'OAuth Fail'})
    try:
        response = requests.get("https://api.github.com/user?access_token=" + oauth_token)
        user_data = json.loads(response.content)
        response = requests.get("https://api.github.com/user/emails?access_token=" + oauth_token)
        userEmails = json.loads(response.content)
    except Exception:
        return "<h1>Max Retries connection To Github</h1><p>github has aborted connection due to to many retries. you need to wait</p>"

    resault = User.all()
    resault.filter("username =", str(user_data["login"]))

    print user_data["login"]

    for u in resault.run():
        print "Exists!!!"
        u.seToken = str(uuid.uuid4())
        u.accessToken = oauth_token
        u.put()
        return cookieMonster(u.seToken)

    tempName = ";"

    if user_data["email"] == "":
        for email in userEmails:
            if email["primary"] and email["verified"]:
                tempEmail = email["email"]
    else:
        tempEmail = user_data["email"]

    user = User(username=user_data["login"], name=tempName, avatar_url=user_data["avatar_url"], email=tempEmail, isLecturer=False, accessToken=oauth_token, seToken=str(uuid.uuid4()))
    db.put(user)
    db.save
    return cookieMonster(user.seToken)


@app.route('/api/Campuses/create/<string:token>', methods=['POST'])
@auto.doc()
def create_campus(token):
    """
    This call will create a new campus in the DB
    :param token:  user seToken
    Payload
    {'title': self.title,
     'email_ending': self.email_ending,
     'avatar_url': self.avatar_url
    }
    :return:
    code 200
    """
    print "1\n"
    if not request.data:
        return Response(response=json.dumps({'message': 'Bad Request0'}),
                        status=400,
                        mimetype="application/json")
    payload = json.loads(request.data)
    if not is_lecturer(token):  #todo: change to lecturer id
        return Response(response=json.dumps({'message': 'Invalid token or not a lecturer!'}),
                        status=403,
                        mimetype="application/json")

    user = get_user_by_token(token)

    #todo: check legality


    try:
        campus = Campus(title=payload['title'], email_ending=payload['email_ending'], master_user_id=user.key().id(), avatar_url=payload['avatar_url'])
    except Exception:
        return Response(response=json.dumps({'message': 'Bad Request1'}),
                        status=400,
                        mimetype="application/json")

    db.put(campus)
    db.save
    return Response(response=json.dumps(campus.to_JSON()),
                                status=200,
                                mimetype="application/json")


@app.route('/api/Campuses/<string:token>', methods=['GET'])
@auto.doc()
def get_campuses(token):
    """
    This Call will return an array of all Campuses available
    :param token: user seToken
    :return:
    code 200:
    [
    {
                'title': 'JCE',
                'email_ending': '@post.jce.ac.il',
                'master_user_id': 123453433341, (User that created the campus)
                'avatar_url': 'http://some.domain.com/imagefile.jpg'
    },
    ....
    {
    ...
    }req
    ]

    code 403: Forbidden - Invalid Token
    code 500: internal server error
    """
    if is_user_token_valid(token):
        arr = []
        query = Campus.all()
        for c in query.run():
            arr.append(dict(json.loads(c.to_JSON())))
        print arr
        if len(arr) != 0:
            return Response(response=json.dumps(arr),
                            status=200,
                            mimetype="application/json")
        else:
            return Response(response=[],
                            status=200,
                            mimetype="application/json")
    else:
        return Response(response=json.dumps({'message': 'Invalid Token'}),
                        status=403,
                        mimetype="application/json")


@app.route('/login')
@cross_origin('*')
def login():
    return github.authorize()


def cookieMonster(uid):
    redirect_to_home = redirect('/home')
    response = app.make_response(redirect_to_home )
    response.set_cookie('com.sehub.www',value=uid)
    return response
added Campus create method 2015-06-11 18:03:00 +00:00
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00			`__author__ = 'sagi'`
			`import json`
			`from GithubAPI.GithubAPI import GitHubAPI_Keys`

			`from google.appengine.ext import db`
			`import requests`
			`import uuid`

API: Fixed response in getUserByToken. returning JSON and not a string 2015-05-12 14:13:38 +00:00			`from flask import Flask, request, render_template, redirect, abort, Response`
Merge to Master from API_Dev 2015-05-12 08:38:29 +00:00
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00			`from flask.ext.github import GitHub`
			`from flask.ext.cors import CORS, cross_origin`
API: Added auto generated API documentation at /api/documentation to implement this generator in every Path you want to document add the following decorator: @auto.doc() 2015-05-12 08:32:22 +00:00			`from flask.ext.autodoc import Autodoc`

Merge to Master from API_Dev 2015-05-12 08:38:29 +00:00			`# DB Models`
API: Seperate User module 2015-05-11 18:45:46 +00:00			`from models.User import User`
Added models: Project, Course, Task. also added imports to api.py 2015-06-10 18:39:42 +00:00			`from models.Course import Course`
			`from models.Project import Project`
API: Added Campus Model - And A new API Call 2015-06-10 10:12:59 +00:00			`from models.Campus import Campus`

			`#Validation Utils Libs`
			`from SE_API.Validation_Utils import *`
added Campus create method 2015-06-11 18:03:00 +00:00			`from SE_API.Respones_Utils import *`
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00



			`app = Flask(__name__, static_folder='../templates')`

			`githubKeys = GitHubAPI_Keys()`

			`app.config['GITHUB_CLIENT_ID'] = githubKeys.getId()`
			`app.config['GITHUB_CLIENT_SECRET'] = githubKeys.getSecret()`

			`github = GitHub(app)`
			`cross = CORS(app)`
API: Added auto generated API documentation at /api/documentation to implement this generator in every Path you want to document add the following decorator: @auto.doc() 2015-05-12 08:32:22 +00:00			`auto = Autodoc(app)`
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00
			`@app.errorhandler(404)`
			`def page_not_found(e):`
			`return app.send_static_file('views/404/index.html')`

			`@app.route('/')`
			`def wellcomePage():`
			`return app.send_static_file('index.html')`

API: Added A Skeleton Route For Email Validation 2015-06-11 18:32:46 +00:00			`@app.route('/api/validation/confirm/<string:validation_token>')`
			`@auto.doc()`
			`def confirm_user_to_campus(validation_token):`
			`"""`
			`This Function is will re`
			`:param validation_token: 'seToken\|email_suffix'`
			`:return:`
			`200 - redirect to home + new cookie`
			`403 - Invalid Token`
			`"""`
			`#TODO`
			`token = str(validation_token).split('\|')[0]`
			`email_sufix = '@'+str(validation_token).split('\|')[1]`

API: Email Validation Works (Only Production!) 2015-06-11 19:46:18 +00:00			`user = get_user_by_token(token)`

			`if user is None:`
			`return forbidden('Forbidden: invalid Token')`
API: Added A Skeleton Route For Email Validation 2015-06-11 18:32:46 +00:00			`else:`
API: Email Validation Works (Only Production!) 2015-06-11 19:46:18 +00:00			`campus = get_campus_by_suffix(email_sufix)`
			`if campus is None:`
			`return bad_request('Bad Request: Email Suffix ' + email_sufix + ' Not Found')`
			`user.isFirstLogin = False`
			`user.seToken = str(uuid.uuid4())`
			`if str(campus.key().id()) not in user.campuses_id_list:`
			`user.campuses_id_list.append(str(campus.key().id()))`
			`db.put(user)`
			`return cookieMonster(user.seToken)`

API: Added A Skeleton Route For Email Validation 2015-06-11 18:32:46 +00:00

			`@app.route('/api/validation/sendmail/<string:token>', methods=['POST'])`
API: Added A Route To Send Validation Emails. See /api/help 2015-06-10 15:47:53 +00:00			`@auto.doc()`
			`def send_activation(token):`
			`"""`
			`This Method Will Send An Email To The User - To Confirm his Account`
			`:param token: - seToken`
			`:payload: JSON - {email: 'academic@email.ac.com'}`
			`:return:`
			`200 - Email Sent - No Response`
			`400 - Bad Request`
			`403 - Invalid Token`
			`"""`
			`if not request.data:`
			`return Response(response=json.dumps({'message': 'Bad Request'}),`
			`status=400,`
			`mimetype="application/json")`
			`payload = json.loads(request.data)`
			`if not is_user_token_valid(token):`
			`return Response(response=json.dumps({'message': 'Not A Valid Token!'}),`
			`status=403,`
			`mimetype="application/json")`
			`query = User.all()`
			`query.filter('seToken =', token)`
			`for u in query.run(limit=1):`
			`try:`
			`send_validation_email(token=token, name=u.username, email=payload["email"])`
			`except Exception:`
			`return Response(response=json.dumps({'message': 'Bad Request'}),`
			`status=400,`
			`mimetype="application/json")`

			`return Response(status=200)`

API: Help page in /api/help 2015-06-10 10:15:41 +00:00			`@app.route('/api/help')`
API: Added auto generated API documentation at /api/documentation to implement this generator in every Path you want to document add the following decorator: @auto.doc() 2015-05-12 08:32:22 +00:00			`def documentation():`
			`return auto.html()`

Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00			`@app.route('/home')`
			`def returnHome():`
			`try:`
			`return app.send_static_file('views/index.html')`
			`except Exception:`
			`abort(404)`



			`@app.route('/api/getUserByToken/<string:token>', methods=["GET"])`
API: Added auto generated API documentation at /api/documentation to implement this generator in every Path you want to document add the following decorator: @auto.doc() 2015-05-12 08:32:22 +00:00			`@auto.doc()`
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00			`def getUserByToken(token):`
API: Added auto generated API documentation at /api/documentation to implement this generator in every Path you want to document add the following decorator: @auto.doc() 2015-05-12 08:32:22 +00:00			`'''`
			`param: String - token: users se-Token`
			`return: JSON object of the user`
			`if no valid seToken, return message: No User Found`
			`'''`
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00			`query = User.all()`
			`query.filter("seToken = ", token)`

			`for u in query.run(limit=5):`
API: Fixed response in getUserByToken. returning JSON and not a string 2015-05-12 14:13:38 +00:00			`return Response(response=u.to_JSON(),`
API: Added A Route To Send Validation Emails. See /api/help 2015-06-10 15:47:53 +00:00			`status=201,`
			`mimetype="application/json") # Real response!`
API: Fixed response in getUserByToken. returning JSON and not a string 2015-05-12 14:13:38 +00:00
			`return Response(response=json.dumps({'message' : 'No User Found'}),`
API: change ststus code on unfound user 2015-05-12 14:18:26 +00:00			`status=400,`
API: Fixed response in getUserByToken. returning JSON and not a string 2015-05-12 14:13:38 +00:00			`mimetype="application/json")`
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00


			`@app.route('/githubOAuth')`
			`@cross_origin('*')`
			`@github.authorized_handler`
			`def oauth(oauth_token):`
			`if oauth_token is None:`
			`return render_template("index.html", messages={'error': 'OAuth Fail'})`
			`try:`
			`response = requests.get("https://api.github.com/user?access_token=" + oauth_token)`
			`user_data = json.loads(response.content)`
			`response = requests.get("https://api.github.com/user/emails?access_token=" + oauth_token)`
			`userEmails = json.loads(response.content)`
			`except Exception:`
			`return "<h1>Max Retries connection To Github</h1><p>github has aborted connection due to to many retries. you need to wait</p>"`

			`resault = User.all()`
			`resault.filter("username =", str(user_data["login"]))`

			`print user_data["login"]`

added Campus create method 2015-06-11 18:03:00 +00:00			`for u in resault.run():`
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00			`print "Exists!!!"`
			`u.seToken = str(uuid.uuid4())`
			`u.accessToken = oauth_token`
			`u.put()`
			`return cookieMonster(u.seToken)`

API: Added Campus Model - And A new API Call 2015-06-10 10:12:59 +00:00			`tempName = ";"`
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00
			`if user_data["email"] == "":`
			`for email in userEmails:`
			`if email["primary"] and email["verified"]:`
			`tempEmail = email["email"]`
			`else:`
			`tempEmail = user_data["email"]`

API: Added A Skeleton Route For Email Validation 2015-06-11 18:32:46 +00:00			`user = User(username=user_data["login"], name=tempName, avatar_url=user_data["avatar_url"], email=tempEmail, isLecturer=False, accessToken=oauth_token, seToken=str(uuid.uuid4()))`
Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00			`db.put(user)`
			`db.save`
			`return cookieMonster(user.seToken)`


added Campus create method 2015-06-11 18:03:00 +00:00			`@app.route('/api/Campuses/create/<string:token>', methods=['POST'])`
			`@auto.doc()`
			`def create_campus(token):`
			`"""`
			`This call will create a new campus in the DB`
			`:param token: user seToken`
			`Payload`
			`{'title': self.title,`
			`'email_ending': self.email_ending,`
			`'avatar_url': self.avatar_url`
			`}`
			`:return:`
			`code 200`
			`"""`
			`print "1\n"`
			`if not request.data:`
			`return Response(response=json.dumps({'message': 'Bad Request0'}),`
			`status=400,`
			`mimetype="application/json")`
			`payload = json.loads(request.data)`
			`if not is_lecturer(token): #todo: change to lecturer id`
			`return Response(response=json.dumps({'message': 'Invalid token or not a lecturer!'}),`
			`status=403,`
			`mimetype="application/json")`

			`user = get_user_by_token(token)`

			`#todo: check legality`


			`try:`
			`campus = Campus(title=payload['title'], email_ending=payload['email_ending'], master_user_id=user.key().id(), avatar_url=payload['avatar_url'])`
			`except Exception:`
			`return Response(response=json.dumps({'message': 'Bad Request1'}),`
			`status=400,`
			`mimetype="application/json")`

			`db.put(campus)`
			`db.save`
			`return Response(response=json.dumps(campus.to_JSON()),`
			`status=200,`
			`mimetype="application/json")`




API: Added Campus Model - And A new API Call 2015-06-10 10:12:59 +00:00			`@app.route('/api/Campuses/<string:token>', methods=['GET'])`
			`@auto.doc()`
			`def get_campuses(token):`
			`"""`
			`This Call will return an array of all Campuses available`
			`:param token: user seToken`
			`:return:`
			`code 200:`
API: Help page in /api/help 2015-06-10 10:15:41 +00:00			`[`
			`{`
			`'title': 'JCE',`
API: Added Campus Model - And A new API Call 2015-06-10 10:12:59 +00:00			`'email_ending': '@post.jce.ac.il',`
			`'master_user_id': 123453433341, (User that created the campus)`
			`'avatar_url': 'http://some.domain.com/imagefile.jpg'`
			`},`
			`....`
			`{`
			`...`
API: Added A Route To Send Validation Emails. See /api/help 2015-06-10 15:47:53 +00:00			`}req`
API: Added Campus Model - And A new API Call 2015-06-10 10:12:59 +00:00			`]`

			`code 403: Forbidden - Invalid Token`
			`code 500: internal server error`
			`"""`
			`if is_user_token_valid(token):`
			`arr = []`
API: Campus Hot Fix 2015-06-10 10:55:55 +00:00			`query = Campus.all()`
API: Added Campus Model - And A new API Call 2015-06-10 10:12:59 +00:00			`for c in query.run():`
API: Campus Hot Fix 2015-06-10 10:55:55 +00:00			`arr.append(dict(json.loads(c.to_JSON())))`
			`print arr`
API: Added Campus Model - And A new API Call 2015-06-10 10:12:59 +00:00			`if len(arr) != 0:`
API: Campus Hot Fix 2015-06-10 10:55:55 +00:00			`return Response(response=json.dumps(arr),`
API: Added Campus Model - And A new API Call 2015-06-10 10:12:59 +00:00			`status=200,`
			`mimetype="application/json")`
			`else:`
			`return Response(response=[],`
			`status=200,`
			`mimetype="application/json")`
			`else:`
			`return Response(response=json.dumps({'message': 'Invalid Token'}),`
			`status=403,`
			`mimetype="application/json")`

Cleaning some code and Packages Moving the API to a Package. added 404 page removed some methods 2015-05-09 19:52:30 +00:00

			`@app.route('/login')`
			`@cross_origin('*')`
			`def login():`
			`return github.authorize()`




			`def cookieMonster(uid):`
			`redirect_to_home = redirect('/home')`
			`response = app.make_response(redirect_to_home )`
			`response.set_cookie('com.sehub.www',value=uid)`
			`return response`