import falcon import simplejson as json import mysql.connector import config import uuid import re from core.useractivity import user_logger, access_control class ContactCollection: @staticmethod def __init__(): """"Initializes ContactCollection""" pass @staticmethod def on_options(req, resp): resp.status = falcon.HTTP_200 @staticmethod def on_get(req, resp): cnx = mysql.connector.connect(**config.myems_system_db) cursor = cnx.cursor() query = (" SELECT id, name, uuid, " " email, phone, description " " FROM tbl_contacts " " ORDER BY name ") cursor.execute(query) rows = cursor.fetchall() cursor.close() cnx.close() result = list() if rows is not None and len(rows) > 0: for row in rows: meta_result = {"id": row[0], "name": row[1], "uuid": row[2], "email": row[3], "phone": row[4], "description": row[5]} result.append(meta_result) resp.text = json.dumps(result) @staticmethod @user_logger def on_post(req, resp): """Handles POST requests""" access_control(req) try: raw_json = req.stream.read().decode('utf-8') except Exception as ex: raise falcon.HTTPError(falcon.HTTP_400, title='API.EXCEPTION', description=ex) new_values = json.loads(raw_json) if 'name' not in new_values['data'].keys() or \ not isinstance(new_values['data']['name'], str) or \ len(str.strip(new_values['data']['name'])) == 0: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_USER_NAME') name = str.strip(new_values['data']['name']) if 'email' not in new_values['data'].keys() or \ not isinstance(new_values['data']['email'], str) or \ len(str.strip(new_values['data']['email'])) == 0: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_EMAIL') email = str.lower(str.strip(new_values['data']['email'])) match = re.match(r'^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,4})$', email) if match is None: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_EMAIL') if 'phone' not in new_values['data'].keys() or \ not isinstance(new_values['data']['phone'], str) or \ len(str.strip(new_values['data']['phone'])) == 0: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_USER_PHONE') phone = str.strip(new_values['data']['phone']) if 'description' in new_values['data'].keys() and \ new_values['data']['description'] is not None and \ len(str(new_values['data']['description'])) > 0: description = str.strip(new_values['data']['description']) else: description = None cnx = mysql.connector.connect(**config.myems_system_db) cursor = cnx.cursor() cursor.execute(" SELECT name " " FROM tbl_contacts " " WHERE name = %s ", (name,)) if cursor.fetchone() is not None: cursor.close() cnx.close() raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.CONTACT_NAME_IS_ALREADY_IN_USE') add_row = (" INSERT INTO tbl_contacts " " (name, uuid, email, phone, description) " " VALUES (%s, %s, %s, %s, %s) ") cursor.execute(add_row, (name, str(uuid.uuid4()), email, phone, description)) new_id = cursor.lastrowid cnx.commit() cursor.close() cnx.close() resp.status = falcon.HTTP_201 resp.location = '/contacts/' + str(new_id) class ContactItem: @staticmethod def __init__(): """"Initializes ContactItem""" pass @staticmethod def on_options(req, resp, id_): resp.status = falcon.HTTP_200 @staticmethod def on_get(req, resp, id_): if not id_.isdigit() or int(id_) <= 0: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_CONTACT_ID') cnx = mysql.connector.connect(**config.myems_system_db) cursor = cnx.cursor() query = (" SELECT id, name, uuid, email, phone, description " " FROM tbl_contacts " " WHERE id = %s ") cursor.execute(query, (id_,)) row = cursor.fetchone() cursor.close() cnx.close() if row is None: raise falcon.HTTPError(falcon.HTTP_404, title='API.NOT_FOUND', description='API.CONTACT_NOT_FOUND') result = {"id": row[0], "name": row[1], "uuid": row[2], "email": row[3], "phone": row[4], "description": row[5]} resp.text = json.dumps(result) @staticmethod @user_logger def on_delete(req, resp, id_): access_control(req) if not id_.isdigit() or int(id_) <= 0: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_CONTACT_ID') cnx = mysql.connector.connect(**config.myems_system_db) cursor = cnx.cursor() cursor.execute(" SELECT name " " FROM tbl_contacts " " WHERE id = %s ", (id_,)) if cursor.fetchone() is None: cursor.close() cnx.close() raise falcon.HTTPError(falcon.HTTP_404, title='API.NOT_FOUND', description='API.CONTACT_NOT_FOUND') # check relation with shopfloors cursor.execute(" SELECT id " " FROM tbl_shopfloors " " WHERE contact_id = %s ", (id_,)) rows_shopfloors = cursor.fetchall() if rows_shopfloors is not None and len(rows_shopfloors) > 0: cursor.close() cnx.close() raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.THERE_IS_RELATION_WITH_SHOPFLOORS') # check relation with spaces cursor.execute(" SELECT id " " FROM tbl_spaces " " WHERE contact_id = %s ", (id_,)) rows_spaces = cursor.fetchall() if rows_spaces is not None and len(rows_spaces) > 0: cursor.close() cnx.close() raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.THERE_IS_RELATION_WITH_SPACES') # check relation with stores cursor.execute(" SELECT id " " FROM tbl_stores " " WHERE contact_id = %s ", (id_,)) rows_stores = cursor.fetchall() if rows_stores is not None and len(rows_stores) > 0: cursor.close() cnx.close() raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.THERE_IS_RELATION_WITH_STORES') # check relation with tenants cursor.execute(" SELECT id " " FROM tbl_tenants " " WHERE contact_id = %s ", (id_,)) rows_tenants = cursor.fetchall() if rows_tenants is not None and len(rows_tenants) > 0: cursor.close() cnx.close() raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.THERE_IS_RELATION_WITH_TENANTS') cursor.execute(" DELETE FROM tbl_contacts WHERE id = %s ", (id_,)) cnx.commit() cursor.close() cnx.close() resp.status = falcon.HTTP_204 @staticmethod @user_logger def on_put(req, resp, id_): """Handles PUT requests""" access_control(req) try: raw_json = req.stream.read().decode('utf-8') except Exception as ex: raise falcon.HTTPError(falcon.HTTP_400, title='API.EXCEPTION', description=ex) if not id_.isdigit() or int(id_) <= 0: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_CONTACT_ID') new_values = json.loads(raw_json) if 'name' not in new_values['data'].keys() or \ not isinstance(new_values['data']['name'], str) or \ len(str.strip(new_values['data']['name'])) == 0: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_CONTACT_NAME') name = str.strip(new_values['data']['name']) if 'email' not in new_values['data'].keys() or \ not isinstance(new_values['data']['email'], str) or \ len(str.strip(new_values['data']['email'])) == 0: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_EMAIL') email = str.lower(str.strip(new_values['data']['email'])) match = re.match(r'^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,4})$', email) if match is None: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_EMAIL') if 'phone' not in new_values['data'].keys() or \ not isinstance(new_values['data']['phone'], str) or \ len(str.strip(new_values['data']['phone'])) == 0: raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.INVALID_USER_PHONE') phone = str.strip(new_values['data']['phone']) if 'description' in new_values['data'].keys() and \ new_values['data']['description'] is not None and \ len(str(new_values['data']['description'])) > 0: description = str.strip(new_values['data']['description']) else: description = None cnx = mysql.connector.connect(**config.myems_system_db) cursor = cnx.cursor() cursor.execute(" SELECT name " " FROM tbl_contacts " " WHERE id = %s ", (id_,)) if cursor.fetchone() is None: cursor.close() cnx.close() raise falcon.HTTPError(falcon.HTTP_404, title='API.NOT_FOUND', description='API.CONTACT_NOT_FOUND') cursor.execute(" SELECT name " " FROM tbl_contacts " " WHERE name = %s AND id != %s ", (name, id_)) if cursor.fetchone() is not None: cursor.close() cnx.close() raise falcon.HTTPError(falcon.HTTP_400, title='API.BAD_REQUEST', description='API.CONTACT_NAME_IS_ALREADY_IN_USE') update_row = (" UPDATE tbl_contacts " " SET name = %s, email = %s, " " phone = %s, description = %s " " WHERE id = %s ") cursor.execute(update_row, (name, email, phone, description, id_,)) cnx.commit() cursor.close() cnx.close() resp.status = falcon.HTTP_200