grimhilt/signage-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

check permissions and move to abl

Browse Source
This commit is contained in:
grimhilt 2023-08-05 16:41:41 +02:00
parent b94b608b99
commit 78a62070f6
2 changed files with 93 additions and 55 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

79
src/api/abl/PlaylistAbl.py
View File

@ -1,15 +1,76 @@
from flask import jsonify from flask import jsonify
from ..models import Playlist, PlaylistFile, File
from .. import db
from datetime import datetime
from ..dao.Playlist import PlaylistDao
from flask_login import current_user
from screen.ScreenManager import ScreenManager
class PlaylistAbl: class PlaylistAbl:
@staticmethod @staticmethod
def create(data): def create(data):
print("create in") new_playlist = Playlist(name=data['name'], owned_id=current_user.as_dict()['id'])
return jsonify(), 200 db.session.add(new_playlist)
#new_playlist = Playlist(name=data['name']) db.session.flush()
#db.session.add(new_playlist) db.session.commit()
#db.session.flush()
#db.session.commit()
#res = new_playlist.as_dict() res = new_playlist.as_dict()
#res['last_modified'] = res['last_modified'].isoformat() res['last_modified'] = res['last_modified'].isoformat()
#return jsonify(res) return jsonify(res)
@staticmethod
def update(playlist_id, data):
db.session.query(Playlist) \
.filter(Playlist.id == playlist_id) \
.update({'name': data['name']})
db.session.commit()
return jsonify(success=True)
@staticmethod
def get_playlist(playlist_id):
(query, files) = PlaylistDao.get_playlist(playlist_id)
return jsonify({'id': query.id, 'name': query.name, 'files': files})
# EDIT PLAYLIST CONTENT
@staticmethod
def add_file(data):
data = request.get_json()
new_playlist_file = PlaylistFile( \
playlist_id=playlist_id, \
file_id=data['file_id'], \
position=data['position'], \
seconds=data['seconds'] \
)
db.session.add(new_playlist_file)
db.session.commit()
return jsonify(success=True)
@staticmethod
def change_order(data):
db.session.query(PlaylistFile) \
.filter(PlaylistFile.file_id == data['file_id']) \
.filter(PlaylistFile.playlist_id == playlist_id) \
.update({'position': data['position']})
db.session.commit()
return jsonify(success=True)
@staticmethod
def change_seconds(data):
db.session.query(PlaylistFile) \
.filter(PlaylistFile.file_id == data['file_id']) \
.filter(PlaylistFile.playlist_id == playlist_id) \
.update({'seconds': data['seconds']})
db.session.commit()
return jsonify(success=True)
@staticmethod
def remove_file(data):
data = request.get_json()
query = db.session.query(PlaylistFile) \
.filter(PlaylistFile.file_id == data['file_id']) \
.filter(PlaylistFile.playlist_id == playlist_id) \
.first()
db.session.delete(query)
db.session.commit()
return jsonify(success=True)

69
src/api/controllers/playlist.py
View File

@ -19,6 +19,7 @@ def create():
return PlaylistAbl.create(request.get_json()) return PlaylistAbl.create(request.get_json())
@playlist.route('/', methods=["GET"]) @playlist.route('/', methods=["GET"])
@login_required
def list(): def list():
playlists = db.session.query(Playlist).all() playlists = db.session.query(Playlist).all()
@ -31,76 +32,52 @@ def list():
return jsonify(res) return jsonify(res)
@playlist.route('/<int:playlist_id>', methods=["GET"]) @playlist.route('/<int:playlist_id>', methods=["GET"])
@login_required
@permissions.require([Perm.VIEW_PLAYLIST])
def get_playlist(playlist_id): def get_playlist(playlist_id):
(query, files) = PlaylistDao.get_playlist(playlist_id) return PlaylistAbl.get_playlist(playlist_id)
return jsonify({'id': query.id, 'name': query.name, 'files': files})
# EDIT PLAYLIST
@playlist.route('/<int:playlist_id>', methods=["POST"]) @playlist.route('/<int:playlist_id>', methods=["POST"])
@login_required
@permissions.require([Perm.EDIT_PLAYLIST])
def add_file(playlist_id): def add_file(playlist_id):
data = request.get_json() return PlaylistAbl.add_file(request.get_json())
new_playlist_file = PlaylistFile( \
playlist_id=playlist_id, \
file_id=data['file_id'], \
position=data['position'], \
seconds=data['seconds'] \
)
db.session.add(new_playlist_file)
db.session.flush()
db.session.commit()
return jsonify(success=True)
@playlist.route('/<int:playlist_id>/order', methods=["POST"]) @playlist.route('/<int:playlist_id>/order', methods=["POST"])
@login_required
@permissions.require([Perm.EDIT_PLAYLIST])
def change_order(playlist_id): def change_order(playlist_id):
data = request.get_json() return PlaylistAbl.change_order(request.get_json())
db.session.query(PlaylistFile) \
.filter(PlaylistFile.file_id == data['file_id']) \
.filter(PlaylistFile.playlist_id == playlist_id) \
.update({'position': data['position']})
db.session.commit()
return jsonify(success=True)
@playlist.route('/<int:playlist_id>/seconds', methods=["POST"]) @playlist.route('/<int:playlist_id>/seconds', methods=["POST"])
@login_required
@permissions.require([Perm.EDIT_PLAYLIST])
def change_seconds(playlist_id): def change_seconds(playlist_id):
data = request.get_json() return PlaylistAbl.change_seconds(request.get_json())
db.session.query(PlaylistFile) \
.filter(PlaylistFile.file_id == data['file_id']) \
.filter(PlaylistFile.playlist_id == playlist_id) \
.update({'seconds': data['seconds']})
db.session.commit()
return jsonify(success=True)
@playlist.route('/<int:playlist_id>/remove_file', methods=["POST"]) @playlist.route('/<int:playlist_id>/remove_file', methods=["POST"])
@login_required
@permissions.require([Perm.EDIT_PLAYLIST])
def remove_file(playlist_id): def remove_file(playlist_id):
data = request.get_json() return PlaylistAbl.remove_file(request.get_json())
query = db.session.query(PlaylistFile) \
.filter(PlaylistFile.file_id == data['file_id']) \
.filter(PlaylistFile.playlist_id == playlist_id) \
.first()
db.session.delete(query)
db.session.commit()
return jsonify(success=True)
@playlist.route('/<int:playlist_id>/update', methods=["PUT"]) @playlist.route('/<int:playlist_id>/update', methods=["PUT"])
@login_required
@permissions.require([Perm.OWN_PLAYLIST])
def update(playlist_id): def update(playlist_id):
data = request.get_json() return PlaylistAbl.update(playlist_id, request.get_json())
db.session.query(Playlist) \
.filter(Playlist.id == playlist_id) \
.update({'name': data['name']})
db.session.commit()
return jsonify(success=True)
@playlist.route('/<int:playlist_id>/activate', methods=["POST"]) @playlist.route('/<int:playlist_id>/activate', methods=["POST"])
@login_required
def activate(playlist_id): def activate(playlist_id):
screen_manager = ScreenManager.getInstance() screen_manager = ScreenManager.getInstance()
screen_manager.activate_playlist(playlist_id) screen_manager.activate_playlist(playlist_id)
return jsonify(success=True) return jsonify(success=True)
@playlist.route('/<int:playlist_id>/disactivate', methods=["POST"]) @playlist.route('/<int:playlist_id>/disactivate', methods=["POST"])
@login_required
def disactivate(playlist_id): def disactivate(playlist_id):
screen_manager = ScreenManager.getInstance() screen_manager = ScreenManager.getInstance()
screen_manager.disactivate_playlist() screen_manager.disactivate_playlist()