kiwi-vpn/api/kiwi_vpn_api/routers/device.py

"""
/device endpoints.
"""

from fastapi import APIRouter, Depends, HTTPException, status

from ..db import Device, DeviceCreate, DeviceRead, User
from ._common import (Responses, get_current_user, get_device_by_id,
                      get_user_by_name)

router = APIRouter(prefix="/device", tags=["device"])


@router.post(
    "/{user_name}",
    responses={
        status.HTTP_200_OK: Responses.OK,
        status.HTTP_400_BAD_REQUEST: Responses.NOT_INSTALLED,
        status.HTTP_401_UNAUTHORIZED: Responses.NEEDS_USER,
        status.HTTP_403_FORBIDDEN: Responses.NEEDS_PERMISSION,
        status.HTTP_404_NOT_FOUND: Responses.ENTRY_DOESNT_EXIST,
        status.HTTP_409_CONFLICT: Responses.ENTRY_EXISTS,
    },
    response_model=DeviceRead,
)
async def add_device(
    device: DeviceCreate,
    current_user: User = Depends(get_current_user),
    owner: User = Depends(get_user_by_name),
) -> Device:
    """
    POST ./: Create a new device in the database.
    """

    # check permission
    if not current_user.can_create(Device, owner):
        raise HTTPException(status_code=status.HTTP_403_FORBIDDEN)

    # create the new device
    new_device = Device.create(
        owner=current_user,
        device=device,
    )

    # fail if creation was unsuccessful
    if new_device is None:
        raise HTTPException(status_code=status.HTTP_409_CONFLICT)

    # return the created device on success
    return new_device


@router.delete(
    "/{device_id}",
    responses={
        status.HTTP_200_OK: Responses.OK,
        status.HTTP_400_BAD_REQUEST: Responses.NOT_INSTALLED,
        status.HTTP_401_UNAUTHORIZED: Responses.NEEDS_USER,
        status.HTTP_403_FORBIDDEN: Responses.NEEDS_ADMIN,
        status.HTTP_404_NOT_FOUND: Responses.ENTRY_DOESNT_EXIST,
    },
    response_model=User,
)
async def remove_device(
    current_user: User = Depends(get_current_user),
    device: Device = Depends(get_device_by_id),
):
    """
    DELETE ./{device_id}: Remove a device from the database.
    """

    # check permission
    if not current_user.can_edit(device):
        raise HTTPException(status_code=status.HTTP_403_FORBIDDEN)

    # delete device
    device.delete()
POST /device route 2022-03-29 00:01:12 +00:00			`"""`
			`/device endpoints.`
			`"""`

			`from fastapi import APIRouter, Depends, HTTPException, status`

			`from ..db import Device, DeviceCreate, DeviceRead, User`
basic permissions system 2022-03-29 23:36:23 +00:00			`from ._common import (Responses, get_current_user, get_device_by_id,`
			`get_user_by_name)`
POST /device route 2022-03-29 00:01:12 +00:00
			`router = APIRouter(prefix="/device", tags=["device"])`


			`@router.post(`
basic permissions system 2022-03-29 23:36:23 +00:00			`"/{user_name}",`
POST /device route 2022-03-29 00:01:12 +00:00			`responses={`
			`status.HTTP_200_OK: Responses.OK,`
			`status.HTTP_400_BAD_REQUEST: Responses.NOT_INSTALLED,`
			`status.HTTP_401_UNAUTHORIZED: Responses.NEEDS_USER,`
remove get_current_user_if_admin 2022-03-30 02:02:45 +00:00			`status.HTTP_403_FORBIDDEN: Responses.NEEDS_PERMISSION,`
POST /device route 2022-03-29 00:01:12 +00:00			`status.HTTP_404_NOT_FOUND: Responses.ENTRY_DOESNT_EXIST,`
			`status.HTTP_409_CONFLICT: Responses.ENTRY_EXISTS,`
			`},`
			`response_model=DeviceRead,`
			`)`
			`async def add_device(`
			`device: DeviceCreate,`
basic permissions system 2022-03-29 23:36:23 +00:00			`current_user: User = Depends(get_current_user),`
			`owner: User = Depends(get_user_by_name),`
POST /device route 2022-03-29 00:01:12 +00:00			`) -> Device:`
			`"""`
			`POST ./: Create a new device in the database.`
			`"""`

basic permissions system 2022-03-29 23:36:23 +00:00			`# check permission`
rework User methods 2022-03-30 01:51:43 +00:00			`if not current_user.can_create(Device, owner):`
basic permissions system 2022-03-29 23:36:23 +00:00			`raise HTTPException(status_code=status.HTTP_403_FORBIDDEN)`

POST /device route 2022-03-29 00:01:12 +00:00			`# create the new device`
			`new_device = Device.create(`
basic permissions system 2022-03-29 23:36:23 +00:00			`owner=current_user,`
POST /device route 2022-03-29 00:01:12 +00:00			`device=device,`
			`)`

			`# fail if creation was unsuccessful`
			`if new_device is None:`
			`raise HTTPException(status_code=status.HTTP_409_CONFLICT)`

			`# return the created device on success`
			`return new_device`
deleting a device 2022-03-29 15:56:12 +00:00

			`@router.delete(`
			`"/{device_id}",`
			`responses={`
			`status.HTTP_200_OK: Responses.OK,`
			`status.HTTP_400_BAD_REQUEST: Responses.NOT_INSTALLED,`
			`status.HTTP_401_UNAUTHORIZED: Responses.NEEDS_USER,`
			`status.HTTP_403_FORBIDDEN: Responses.NEEDS_ADMIN,`
			`status.HTTP_404_NOT_FOUND: Responses.ENTRY_DOESNT_EXIST,`
			`},`
			`response_model=User,`
			`)`
			`async def remove_device(`
basic permissions system 2022-03-29 23:36:23 +00:00			`current_user: User = Depends(get_current_user),`
			`device: Device = Depends(get_device_by_id),`
deleting a device 2022-03-29 15:56:12 +00:00			`):`
			`"""`
			`DELETE ./{device_id}: Remove a device from the database.`
			`"""`

basic permissions system 2022-03-29 23:36:23 +00:00			`# check permission`
rework User methods 2022-03-30 01:51:43 +00:00			`if not current_user.can_edit(device):`
basic permissions system 2022-03-29 23:36:23 +00:00			`raise HTTPException(status_code=status.HTTP_403_FORBIDDEN)`

deleting a device 2022-03-29 15:56:12 +00:00			`# delete device`
			`device.delete()`