app-MAIL-temp/app/api/views/user_info.py

116 lines
2.7 KiB
Python
Raw Normal View History

import base64
from io import BytesIO
2020-07-04 12:10:04 +02:00
from flask import jsonify, g, request, make_response
from flask_login import logout_user
2020-01-05 22:48:38 +01:00
from app import s3
from app.api.base import api_bp, require_api_auth
2020-07-04 12:10:04 +02:00
from app.config import SESSION_COOKIE_NAME
2020-07-04 11:41:31 +02:00
from app.extensions import db
from app.models import ApiKey, File, User
from app.utils import random_string
def user_to_dict(user: User) -> dict:
ret = {
"name": user.name,
"is_premium": user.is_premium(),
"email": user.email,
"in_trial": user.in_trial(),
}
if user.profile_picture_id:
ret["profile_picture_url"] = user.profile_picture.get_url()
else:
ret["profile_picture_url"] = None
return ret
2020-01-05 22:48:38 +01:00
@api_bp.route("/user_info")
@require_api_auth
2020-01-05 22:48:38 +01:00
def user_info():
"""
Return user info given the api-key
"""
user = g.user
return jsonify(user_to_dict(user))
2020-07-04 11:41:31 +02:00
2020-10-28 17:12:21 +01:00
@api_bp.route("/user_info", methods=["PATCH"])
@require_api_auth
def update_user_info():
"""
Input
- profile_picture (optional): base64 of the profile picture. Set to null to remove the profile picture
- name (optional)
"""
user = g.user
data = request.get_json() or {}
if "profile_picture" in data:
if data["profile_picture"] is None:
if user.profile_picture_id:
2020-11-27 16:36:05 +01:00
user.profile_picture_id = None
db.session.flush()
2020-10-28 17:12:21 +01:00
file = user.profile_picture
File.delete(file.id)
s3.delete(file.path)
else:
raw_data = base64.decodebytes(data["profile_picture"].encode())
file_path = random_string(30)
file = File.create(user_id=user.id, path=file_path)
db.session.flush()
s3.upload_from_bytesio(file_path, BytesIO(raw_data))
user.profile_picture_id = file.id
db.session.flush()
if "name" in data:
user.name = data["name"]
db.session.commit()
return jsonify(user_to_dict(user))
2020-07-04 11:41:31 +02:00
@api_bp.route("/api_key", methods=["POST"])
@require_api_auth
def create_api_key():
"""Used to create a new api key
Input:
- device
Output:
- api_key
"""
data = request.get_json()
if not data:
return jsonify(error="request body cannot be empty"), 400
device = data.get("device")
api_key = ApiKey.create(user_id=g.user.id, name=device)
db.session.commit()
return jsonify(api_key=api_key.code), 201
2020-07-04 12:10:04 +02:00
@api_bp.route("/logout", methods=["GET"])
@require_api_auth
def logout():
"""
Log user out on the web, i.e. remove the cookie
Output:
- 200
"""
logout_user()
response = make_response(jsonify(msg="User is logged out"), 200)
response.delete_cookie(SESSION_COOKIE_NAME)
return response