netbox-community-netbox/netbox/users/api/views.py

from django.contrib.auth.models import Group, User
from django.db.models import Count
from rest_framework.permissions import IsAuthenticated
from rest_framework.response import Response
from rest_framework.routers import APIRootView
from rest_framework.viewsets import ViewSet

from netbox.api.views import ModelViewSet
from users import filters
from users.models import ObjectPermission, UserConfig
from utilities.querysets import RestrictedQuerySet
from utilities.utils import deepmerge
from . import serializers


class UsersRootView(APIRootView):
    """
    Users API root view
    """
    def get_view_name(self):
        return 'Users'


#
# Users and groups
#

class UserViewSet(ModelViewSet):
    queryset = RestrictedQuerySet(model=User).prefetch_related('groups').order_by('username')
    serializer_class = serializers.UserSerializer
    filterset_class = filters.UserFilterSet


class GroupViewSet(ModelViewSet):
    queryset = RestrictedQuerySet(model=Group).annotate(user_count=Count('user')).order_by('name')
    serializer_class = serializers.GroupSerializer
    filterset_class = filters.GroupFilterSet


#
# ObjectPermissions
#

class ObjectPermissionViewSet(ModelViewSet):
    queryset = ObjectPermission.objects.prefetch_related('object_types', 'groups', 'users')
    serializer_class = serializers.ObjectPermissionSerializer
    filterset_class = filters.ObjectPermissionFilterSet


#
# User preferences
#

class UserConfigViewSet(ViewSet):
    """
    An API endpoint via which a user can update his or her own UserConfig data (but no one else's).
    """
    permission_classes = [IsAuthenticated]

    def get_queryset(self):
        return UserConfig.objects.filter(user=self.request.user)

    def list(self, request):
        """
        Return the UserConfig for the currently authenticated User.
        """
        userconfig = self.get_queryset().first()

        return Response(userconfig.data)

    def patch(self, request):
        """
        Update the UserConfig for the currently authenticated User.
        """
        # TODO: How can we validate this data?
        userconfig = self.get_queryset().first()
        userconfig.data = deepmerge(userconfig.data, request.data)
        userconfig.save()

        return Response(userconfig.data)
Introduce API endpoints for Users and Groups 2020-07-22 11:21:51 -04:00			`from django.contrib.auth.models import Group, User`
			`from django.db.models import Count`
Add a REST API endpoint for updating user preferences 2020-10-21 09:05:33 -04:00			`from rest_framework.permissions import IsAuthenticated`
			`from rest_framework.response import Response`
Closes #4997: Introduce OrderedDefaultRouter; move root API views to views.py 2020-08-13 12:45:38 -04:00			`from rest_framework.routers import APIRootView`
Add a REST API endpoint for updating user preferences 2020-10-21 09:05:33 -04:00			`from rest_framework.viewsets import ViewSet`
Introduce API endpoints for Users and Groups 2020-07-22 11:21:51 -04:00
Reorganize REST API components under netbox app 2020-10-13 15:54:23 -04:00			`from netbox.api.views import ModelViewSet`
Introduce API endpoints for Users and Groups 2020-07-22 11:21:51 -04:00			`from users import filters`
Add a REST API endpoint for updating user preferences 2020-10-21 09:05:33 -04:00			`from users.models import ObjectPermission, UserConfig`
Introduce API endpoints for Users and Groups 2020-07-22 11:21:51 -04:00			`from utilities.querysets import RestrictedQuerySet`
Fix overwriting of existing preferences 2020-10-29 14:15:38 -04:00			`from utilities.utils import deepmerge`
Add REST API endpoint for ObjectPermissions 2020-06-03 13:08:04 -04:00			`from . import serializers`

Introduce API endpoints for Users and Groups 2020-07-22 11:21:51 -04:00
Closes #4997: Introduce OrderedDefaultRouter; move root API views to views.py 2020-08-13 12:45:38 -04:00			`class UsersRootView(APIRootView):`
			`"""`
			`Users API root view`
			`"""`
			`def get_view_name(self):`
			`return 'Users'`


Introduce API endpoints for Users and Groups 2020-07-22 11:21:51 -04:00			`#`
			`# Users and groups`
			`#`

			`class UserViewSet(ModelViewSet):`
Set default ordering for user and group API endpoints 2020-07-23 13:46:40 -04:00			`queryset = RestrictedQuerySet(model=User).prefetch_related('groups').order_by('username')`
Introduce API endpoints for Users and Groups 2020-07-22 11:21:51 -04:00			`serializer_class = serializers.UserSerializer`
Correct FilterSet naming 2020-07-22 13:48:04 -04:00			`filterset_class = filters.UserFilterSet`
Introduce API endpoints for Users and Groups 2020-07-22 11:21:51 -04:00

			`class GroupViewSet(ModelViewSet):`
Set default ordering for user and group API endpoints 2020-07-23 13:46:40 -04:00			`queryset = RestrictedQuerySet(model=Group).annotate(user_count=Count('user')).order_by('name')`
Introduce API endpoints for Users and Groups 2020-07-22 11:21:51 -04:00			`serializer_class = serializers.GroupSerializer`
Correct FilterSet naming 2020-07-22 13:48:04 -04:00			`filterset_class = filters.GroupFilterSet`
Add REST API endpoint for ObjectPermissions 2020-06-03 13:08:04 -04:00

			`#`
			`# ObjectPermissions`
			`#`

			`class ObjectPermissionViewSet(ModelViewSet):`
			`queryset = ObjectPermission.objects.prefetch_related('object_types', 'groups', 'users')`
			`serializer_class = serializers.ObjectPermissionSerializer`
Add filters for ObjectPermissions 2020-07-22 16:34:16 -04:00			`filterset_class = filters.ObjectPermissionFilterSet`
Add a REST API endpoint for updating user preferences 2020-10-21 09:05:33 -04:00

			`#`
			`# User preferences`
			`#`

			`class UserConfigViewSet(ViewSet):`
			`"""`
			`An API endpoint via which a user can update his or her own UserConfig data (but no one else's).`
			`"""`
			`permission_classes = [IsAuthenticated]`

			`def get_queryset(self):`
			`return UserConfig.objects.filter(user=self.request.user)`

			`def list(self, request):`
			`"""`
			`Return the UserConfig for the currently authenticated User.`
			`"""`
			`userconfig = self.get_queryset().first()`

			`return Response(userconfig.data)`

			`def patch(self, request):`
			`"""`
			`Update the UserConfig for the currently authenticated User.`
			`"""`
			`# TODO: How can we validate this data?`
			`userconfig = self.get_queryset().first()`
Fix overwriting of existing preferences 2020-10-29 14:15:38 -04:00			`userconfig.data = deepmerge(userconfig.data, request.data)`
Add a REST API endpoint for updating user preferences 2020-10-21 09:05:33 -04:00			`userconfig.save()`

			`return Response(userconfig.data)`