tea/browsertrix
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
e6467c3374
browsertrix/backend/invites.py
Ilya Kreymer bcbc40059e
Refactor backend data model to support UUID (fixes #118) (#119) 
* uuid fix: (fixes #118)
- update all mongo models to use UUID type as main '_id' (users continue to use 'id' as defined by fastapi-users)
- update all foreign doc references to use UUID instead of string
- api handlers convert str->uuid as needed
api fix:
- fix single crawl api, add CrawlOut response model
- fix collections api
- fix standalone-docker apis
- for manual job, set user to current user, overriding the setting from crawlconfig

* additional fixes:
- rename username -> userName to indicate not the login 'username'
- rename user -> userid, archive -> aid for crawlconfig + crawls
- ensure invites correctly convert str -> uuid as needed
- filter out unset values from browsertrix-crawler config

* convert remaining user -> userid variables
ensure archive id is passed to crawl_manager as str (via archive.id_str)

* remove bulk crawlconfig delete
* add support for `stopping` state when gracefully stopping crawl
* for get crawl endpoint, check stopped crawls first, then running
2022-01-29 19:00:11 -08:00

173 lines
5.0 KiB
Python
Raw Blame History

""" Invite system management """
from datetime import datetime
from enum import IntEnum
from typing import Optional
import uuid
from pydantic import BaseModel, UUID4
from fastapi import HTTPException
from db import BaseMongoModel
# ============================================================================
class UserRole(IntEnum):
"""User role"""
VIEWER = 10
CRAWLER = 20
OWNER = 40
# ============================================================================
class InvitePending(BaseMongoModel):
"""An invite for a new user, with an email and invite token as id"""
created: datetime
inviterEmail: str
aid: Optional[UUID4]
role: Optional[UserRole] = UserRole.VIEWER
email: Optional[str]
# ============================================================================
class InviteRequest(BaseModel):
"""Request to invite another user"""
email: str
# ============================================================================
class InviteToArchiveRequest(InviteRequest):
"""Request to invite another user to an archive"""
role: UserRole
# ============================================================================
class InviteOps:
""" invite users (optionally to an archive), send emails and delete invites """
def __init__(self, db, email):
self.invites = db["invites"]
self.email = email
async def add_new_user_invite(
self,
new_user_invite: InvitePending,
archive_name: Optional[str],
headers: Optional[dict],
):
"""Add invite for new user"""
res = await self.invites.find_one({"email": new_user_invite.email})
if res:
raise HTTPException(
status_code=403, detail="This user has already been invited"
)
await self.invites.insert_one(new_user_invite.to_dict())
self.email.send_new_user_invite(
new_user_invite.email,
new_user_invite.inviterEmail,
archive_name,
new_user_invite.id,
headers,
)
async def get_valid_invite(self, invite_token: uuid.UUID, email):
""" Retrieve a valid invite data from db, or throw if invalid"""
invite_data = await self.invites.find_one({"_id": invite_token})
if not invite_data:
raise HTTPException(status_code=400, detail="Invalid Invite Code")
new_user_invite = InvitePending.from_dict(invite_data)
if email != new_user_invite.email:
raise HTTPException(status_code=400, detail="Invalid Invite Code")
return new_user_invite
async def remove_invite(self, invite_token: str):
""" remove invite from invite list """
await self.invites.delete_one({"_id": invite_token})
# pylint: disable=no-self-use
def accept_user_invite(self, user, invite_token: str):
""" remove invite from user, if valid token, throw if not """
invite = user.invites.pop(invite_token, "")
if not invite:
raise HTTPException(status_code=400, detail="Invalid Invite Code")
return invite
# pylint: disable=too-many-arguments
async def invite_user(
self,
invite: InviteRequest,
user,
user_manager,
archive=None,
allow_existing=False,
headers: dict = None,
):
"""create new invite for user to join, optionally an archive.
if allow_existing is false, don't allow invites to existing users"""
invite_code = uuid.uuid4().hex
aid = None
archive_name = None
if archive:
aid = archive.id
archive_name = archive.name
invite_pending = InvitePending(
id=invite_code,
aid=aid,
created=datetime.utcnow(),
role=invite.role if hasattr(invite, "role") else None,
email=invite.email,
inviterEmail=user.email,
)
other_user = await user_manager.user_db.get_by_email(invite.email)
if not other_user:
await self.add_new_user_invite(
invite_pending,
archive_name,
headers,
)
return True
if not allow_existing:
raise HTTPException(status_code=400, detail="User already registered")
if other_user.email == user.email:
raise HTTPException(status_code=400, detail="Can't invite ourselves!")
if archive.users.get(str(other_user.id)):
raise HTTPException(
status_code=400, detail="User already a member of this archive."
)
# no need to store our own email as adding invite to user
invite_pending.email = None
other_user.invites[invite_code] = invite_pending
await user_manager.user_db.update(other_user)
self.email.send_existing_user_invite(
other_user.email, user.name, archive_name, invite_code, headers
)
return False
def init_invites(mdb, email):
""" init InviteOps"""
return InviteOps(mdb, email)
Reference in New Issue View Git Blame Copy Permalink