cake-erp-challenge/api/views/trainer.py

from sqlalchemy.exc import NoResultFound, IntegrityError
from api.models.trainer import Trainer, trainer_schema, trainer_schemas, InvalidTeam
from api.app import db
from api.app import app
from flask import request, jsonify
from .errors import *
from api.util.parse_args import parse_limit, parse_offset, ParsingException, parse_json_obj
from werkzeug.security import check_password_hash
import datetime
import jwt

def get_trainer(id):
    try:
        trainer = Trainer.query.get(id)
        if trainer is None:
            return ("", 404)
        return trainer_schema.dump(trainer)
    except:
        return ("", 404)

def get_trainers():
    args = request.args

    try:
        limit = parse_limit()
        offset = parse_offset()
    except ParsingException as e:
        return ParsingError(e.message)

    nickname = args.get("nickname", "")
    nickname_contains = args.get("nickname_contains", "")

    try:
        if nickname:
            if nickname_contains:
                return ConflictingParameters("nickname and nickname_contains are mutually exclusive")

            query = Trainer.query.filter_by(nickname=nickname).limit(limit).offset(offset)
            return trainer_schemas.dumps(query.all())

        else:               # se nickname_contains também está vazio, retornará todos trainers
            pattern = '%'+nickname_contains+'%'
            query = Trainer.query.filter(Trainer.nickname.like(pattern)).limit(limit).offset(offset)
            return trainer_schemas.dumps(query.all())

    except NoResultFound:
        return jsonify([])

def get_trainer_by_email(email):
    try:
        return Trainer.query.filter_by(email=email).one()
    except:
        return None

def post_trainer():
    try:
        json = parse_json_obj()

        nickname = json["nickname"]
        first_name = json["first_name"]
        last_name = json["last_name"]
        email = json["email"]
        password = json["password"]
        team = json["team"]

        trainer = Trainer(
                nickname=nickname,
                first_name=first_name,
                last_name=last_name,
                email=email,
                password=password,
                team=team
                )

        db.session.add(trainer)
        db.session.commit()

        return (trainer_schema.dump(trainer), 201)
    except ParsingException as e:
        return ParsingError(e.message)
    except InvalidTeam:
        return ParsingError("Field team is invalid")
    except KeyError:
        return ParsingError("Missing JSON object fields")
    except IntegrityError:
        return ConflictingResources("Trainer with the same nickname or email already exists")

def auth_trainer():
    try:
        auth = parse_json_obj()
        email = auth["email"]
        password = auth["password"]
    except ParsingException as e:
        return ParsingError(e.message)
    except KeyError:
        return AuthenticationFailure("Login required")

    trainer = get_trainer_by_email(email)
    if not trainer:
        return AuthenticationFailure("Trainer not found")

    if trainer and check_password_hash(trainer.password, password):
        token = jwt.encode(
                {
                    "username": trainer.nickname,
                    "exp": datetime.datetime.now() + datetime.timedelta(hours=12)
                },
                app.config["SECRET_KEY"], algorithm="HS256")
        return jsonify(
                {
                    "id": trainer.id,
                    "token": token
                })

    return AuthenticationFailure("Invalid login")
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00			`from sqlalchemy.exc import NoResultFound, IntegrityError`
			`from api.models.trainer import Trainer, trainer_schema, trainer_schemas, InvalidTeam`
			`from api.app import db`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`from api.app import app`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00			`from flask import request, jsonify`
Adicionar 2 rotas 2021-10-18 15:49:47 -04:00			`from .errors import *`
Reorganizar arquivos 2021-10-19 00:06:08 -04:00			`from api.util.parse_args import parse_limit, parse_offset, ParsingException, parse_json_obj`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`from werkzeug.security import check_password_hash`
			`import datetime`
			`import jwt`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00
Adicionar endpoint: GET /trainer/{trainerId} 2021-10-17 18:15:56 -04:00			`def get_trainer(id):`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`try:`
Adicionar testes unitários 2021-10-18 23:26:16 -04:00			`trainer = Trainer.query.get(id)`
			`if trainer is None:`
			`return ("", 404)`
			`return trainer_schema.dump(trainer)`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`except:`
Adicionar 2 rotas 2021-10-18 15:49:47 -04:00			`return ("", 404)`
Adicionar endpoint: GET /trainer/{trainerId} 2021-10-17 18:15:56 -04:00
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00			`def get_trainers():`
			`args = request.args`

			`try:`
Adicionar 2 rotas 2021-10-18 15:49:47 -04:00			`limit = parse_limit()`
			`offset = parse_offset()`
			`except ParsingException as e:`
			`return ParsingError(e.message)`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00
			`nickname = args.get("nickname", "")`
			`nickname_contains = args.get("nickname_contains", "")`

			`try:`
			`if nickname:`
			`if nickname_contains:`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`return ConflictingParameters("nickname and nickname_contains are mutually exclusive")`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00
Adicionar limit e offset na query (GET /trainer) 2021-10-18 08:51:50 -04:00			`query = Trainer.query.filter_by(nickname=nickname).limit(limit).offset(offset)`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00			`return trainer_schemas.dumps(query.all())`

			`else: # se nickname_contains também está vazio, retornará todos trainers`
			`pattern = '%'+nickname_contains+'%'`
Adicionar limit e offset na query (GET /trainer) 2021-10-18 08:51:50 -04:00			`query = Trainer.query.filter(Trainer.nickname.like(pattern)).limit(limit).offset(offset)`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00			`return trainer_schemas.dumps(query.all())`

			`except NoResultFound:`
			`return jsonify([])`

Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`def get_trainer_by_email(email):`
			`try:`
			`return Trainer.query.filter_by(email=email).one()`
			`except:`
			`return None`

Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00			`def post_trainer():`
			`try:`
Adicionar 2 rotas 2021-10-18 15:49:47 -04:00			`json = parse_json_obj()`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00
			`nickname = json["nickname"]`
			`first_name = json["first_name"]`
			`last_name = json["last_name"]`
			`email = json["email"]`
			`password = json["password"]`
			`team = json["team"]`

			`trainer = Trainer(`
			`nickname=nickname,`
			`first_name=first_name,`
			`last_name=last_name,`
			`email=email,`
			`password=password,`
			`team=team`
			`)`

			`db.session.add(trainer)`
			`db.session.commit()`

Arrumar código de retorno 2021-10-18 17:55:46 -04:00			`return (trainer_schema.dump(trainer), 201)`
Adicionar 2 rotas 2021-10-18 15:49:47 -04:00			`except ParsingException as e:`
			`return ParsingError(e.message)`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00			`except InvalidTeam:`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`return ParsingError("Field team is invalid")`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00			`except KeyError:`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`return ParsingError("Missing JSON object fields")`
Usar ORM ao invés de SQL bruto 2021-10-17 17:59:27 -04:00			`except IntegrityError:`
Adicionar 2 rotas 2021-10-18 15:49:47 -04:00			`return ConflictingResources("Trainer with the same nickname or email already exists")`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00
			`def auth_trainer():`
			`try:`
Adicionar 2 rotas 2021-10-18 15:49:47 -04:00			`auth = parse_json_obj()`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`email = auth["email"]`
			`password = auth["password"]`
Adicionar 2 rotas 2021-10-18 15:49:47 -04:00			`except ParsingException as e:`
			`return ParsingError(e.message)`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`except KeyError:`
			`return AuthenticationFailure("Login required")`

			`trainer = get_trainer_by_email(email)`
			`if not trainer:`
			`return AuthenticationFailure("Trainer not found")`

			`if trainer and check_password_hash(trainer.password, password):`
			`token = jwt.encode(`
			`{`
			`"username": trainer.nickname,`
			`"exp": datetime.datetime.now() + datetime.timedelta(hours=12)`
			`},`
Adicionar 2 rotas 2021-10-18 15:49:47 -04:00			`app.config["SECRET_KEY"], algorithm="HS256")`
Adicionar endpoint: POST /trainer/authenticate 2021-10-17 20:14:56 -04:00			`return jsonify(`
			`{`
			`"id": trainer.id,`
			`"token": token`
			`})`

			`return AuthenticationFailure("Invalid login")`