canaille-globuzma/canaille/core/endpoints/groups.py

from flask import Blueprint
from flask import abort
from flask import flash
from flask import redirect
from flask import request
from flask import url_for

from canaille.app import models
from canaille.app.flask import permissions_needed
from canaille.app.flask import render_htmx_template
from canaille.app.forms import TableForm
from canaille.app.i18n import gettext as _
from canaille.app.themes import render_template
from canaille.backends import Backend

from .forms import CreateGroupForm
from .forms import DeleteGroupMemberForm
from .forms import EditGroupForm

bp = Blueprint("groups", __name__, url_prefix="/groups")


@bp.route("/", methods=["GET", "POST"])
@permissions_needed("manage_groups")
def groups(user):
    table_form = TableForm(models.Group, formdata=request.form)
    if request.form and request.form.get("page") and not table_form.validate():
        abort(404)

    return render_htmx_template("groups.html", menuitem="groups", table_form=table_form)


@bp.route("/add", methods=("GET", "POST"))
@permissions_needed("manage_groups")
def create_group(user):
    form = CreateGroupForm(request.form or None)

    if request.form:
        if not form.validate():
            flash(_("Group creation failed."), "error")
        else:
            group = models.Group()
            group.members = [user]
            group.display_name = form.display_name.data
            group.description = form.description.data
            Backend.instance.save(group)
            flash(
                _(
                    "The group %(group)s has been sucessfully created",
                    group=group.display_name,
                ),
                "success",
            )
            return redirect(url_for("core.groups.group", group=group))

    return render_template(
        "group.html", menuitem="groups", form=form, edited_group=None, members=None
    )


@bp.route("/<group:group>", methods=("GET", "POST"))
@permissions_needed("manage_groups")
def group(user, group):
    if (
        request.method == "GET"
        or request.form.get("action") == "edit"
        or request.form.get("page")
    ):
        return edit_group(group)

    if request.form.get("action") == "confirm-delete":
        return render_template("modals/delete-group.html", group=group)

    if request.form.get("action") == "delete":
        return delete_group(group)

    if request.form.get("action") == "confirm-remove-member":
        return delete_member(group)

    if request.form.get("action") == "remove-member":
        return delete_member(group)

    abort(400, f"bad form action: {request.form.get('action')}")


def edit_group(group):
    table_form = TableForm(models.User, filter={"groups": group}, formdata=request.form)
    if request.form and request.form.get("page") and not table_form.validate():
        abort(404)

    form = EditGroupForm(
        request.form or None,
        data={
            "display_name": group.display_name,
            "description": group.description or "",
        },
    )

    if (
        request.form
        and request.form.get("action") == "edit"
        and not request.form.get("page")
    ):
        if form.validate():
            group.description = form.description.data
            Backend.instance.save(group)
            flash(
                _(
                    "The group %(group)s has been sucessfully edited.",
                    group=group.display_name,
                ),
                "success",
            )
            return redirect(url_for("core.groups.group", group=group))
        else:
            flash(_("Group edition failed."), "error")

    return render_htmx_template(
        "group.html",
        "partial/group-members.html",
        form=form,
        menuitem="groups",
        edited_group=group,
        table_form=table_form,
    )


def delete_member(group):
    form = DeleteGroupMemberForm(request.form or None)
    form.group = group

    if not form.validate():
        flash(
            "\n".join(form.errors.get("member")),
            "error",
        )

    elif request.form.get("action") == "confirm-remove-member":
        return render_template(
            "modals/remove-group-member.html", group=group, form=form
        )

    else:
        flash(
            _(
                "%(user_name)s has been removed from the group %(group_name)s",
                user_name=form.member.data.formatted_name,
                group_name=group.display_name,
            ),
            "success",
        )
        group.members = [
            member for member in group.members if member != form.member.data
        ]
        Backend.instance.save(group)

    return edit_group(group)


def delete_group(group):
    flash(
        _("The group %(group)s has been sucessfully deleted", group=group.display_name),
        "success",
    )
    Backend.instance.delete(group)
    return redirect(url_for("core.groups.groups"))
chore: use isort instead of reoder-python-imports 2024-03-15 18:58:06 +00:00			`from flask import Blueprint`
			`from flask import abort`
			`from flask import flash`
			`from flask import redirect`
			`from flask import request`
			`from flask import url_for`

Moved every model import to canaille.models 2023-04-09 09:37:04 +00:00			`from canaille.app import models`
'app' submodule 2023-04-09 13:52:55 +00:00			`from canaille.app.flask import permissions_needed`
			`from canaille.app.flask import render_htmx_template`
			`from canaille.app.forms import TableForm`
feat: flask-babel and pytz are now part of the front extras 2023-09-01 08:46:56 +00:00			`from canaille.app.i18n import gettext as _`
feat: split installation in different extras packages 2023-08-16 15:14:11 +00:00			`from canaille.app.themes import render_template`
refactor: Rename BaseBackend in Backend 2024-04-16 20:42:29 +00:00			`from canaille.backends import Backend`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00
groups minor refactoring 2022-12-27 20:32:21 +00:00			`from .forms import CreateGroupForm`
feat: group member removal can be achieved from the group edition page 2024-04-28 14:13:01 +00:00			`from .forms import DeleteGroupMemberForm`
groups minor refactoring 2022-12-27 20:32:21 +00:00			`from .forms import EditGroupForm`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00
split oidc code from the rest 2022-01-11 18:49:06 +00:00			`bp = Blueprint("groups", __name__, url_prefix="/groups")`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`@bp.route("/", methods=["GET", "POST"])`
Permissions overhaul 2021-12-02 17:23:14 +00:00			`@permissions_needed("manage_groups")`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00			`def groups(user):`
Moved every model import to canaille.models 2023-04-09 09:37:04 +00:00			`table_form = TableForm(models.Group, formdata=request.form)`
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`if request.form and request.form.get("page") and not table_form.validate():`
			`abort(404)`

Dynamic tables with htmx - Search is triggered with user inputs - Page changes are triggered with clicks 2023-03-09 16:41:26 +00:00			`return render_htmx_template("groups.html", menuitem="groups", table_form=table_form)`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00
Show groups and enable group creation 2021-07-01 16:21:20 +00:00			`@bp.route("/add", methods=("GET", "POST"))`
Permissions overhaul 2021-12-02 17:23:14 +00:00			`@permissions_needed("manage_groups")`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00			`def create_group(user):`
groups minor refactoring 2022-12-27 20:32:21 +00:00			`form = CreateGroupForm(request.form or None)`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00
			`if request.form:`
			`if not form.validate():`
			`flash(_("Group creation failed."), "error")`
			`else:`
Moved every model import to canaille.models 2023-04-09 09:37:04 +00:00			`group = models.Group()`
Renamed group attributes to match SCIM naming convention 2023-02-05 18:39:52 +00:00			`group.members = [user]`
refactor: fix group edition attribute cardinality 2023-11-21 15:30:12 +00:00			`group.display_name = form.display_name.data`
			`group.description = form.description.data`
refactor: Rename BaseBackend in Backend 2024-04-16 20:42:29 +00:00			`Backend.instance.save(group)`
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00			`flash(`
Renamed group attributes to match SCIM naming convention 2023-02-05 18:39:52 +00:00			`_(`
			`"The group %(group)s has been sucessfully created",`
			`group=group.display_name,`
			`),`
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00			`"success",`
			`)`
refactor: the core module has its own main blueprint 2023-08-14 11:52:24 +00:00			`return redirect(url_for("core.groups.group", group=group))`
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00
Introduced a submenu 2023-03-15 16:27:32 +00:00			`return render_template(`
			`"group.html", menuitem="groups", form=form, edited_group=None, members=None`
			`)`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00

Implements a flask Group converter 2023-06-28 16:09:25 +00:00			`@bp.route("/<group:group>", methods=("GET", "POST"))`
Permissions overhaul 2021-12-02 17:23:14 +00:00			`@permissions_needed("manage_groups")`
Implements a flask Group converter 2023-06-28 16:09:25 +00:00			`def group(user, group):`
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`if (`
			`request.method == "GET"`
			`or request.form.get("action") == "edit"`
			`or request.form.get("page")`
			`):`
Enable group deletion 2021-07-29 09:37:02 +00:00			`return edit_group(group)`

modals are HTML pages instead of JS elements This will help providing the very same user experience for users with and without javascript. We will still be able to re-enable javascript modals in the future, but this should be done from the ground up, HTML first and javascript after. 2023-07-06 16:43:37 +00:00			`if request.form.get("action") == "confirm-delete":`
			`return render_template("modals/delete-group.html", group=group)`

Enable group deletion 2021-07-29 09:37:02 +00:00			`if request.form.get("action") == "delete":`
			`return delete_group(group)`

feat: group member removal can be achieved from the group edition page 2024-04-28 14:13:01 +00:00			`if request.form.get("action") == "confirm-remove-member":`
			`return delete_member(group)`

			`if request.form.get("action") == "remove-member":`
			`return delete_member(group)`

modals are HTML pages instead of JS elements This will help providing the very same user experience for users with and without javascript. We will still be able to re-enable javascript modals in the future, but this should be done from the ground up, HTML first and javascript after. 2023-07-06 16:43:37 +00:00			`abort(400, f"bad form action: {request.form.get('action')}")`
Enable group deletion 2021-07-29 09:37:02 +00:00
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00
Enable group deletion 2021-07-29 09:37:02 +00:00			`def edit_group(group):`
Moved every model import to canaille.models 2023-04-09 09:37:04 +00:00			`table_form = TableForm(models.User, filter={"groups": group}, formdata=request.form)`
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`if request.form and request.form.get("page") and not table_form.validate():`
			`abort(404)`

groups minor refactoring 2022-12-27 20:32:21 +00:00			`form = EditGroupForm(`
Group description 2021-12-10 16:08:43 +00:00			`request.form or None,`
			`data={`
Renamed group attributes to match SCIM naming convention 2023-02-05 18:39:52 +00:00			`"display_name": group.display_name,`
refactor: fix group edition attribute cardinality 2023-11-21 15:30:12 +00:00			`"description": group.description or "",`
Group description 2021-12-10 16:08:43 +00:00			`},`
			`)`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00
feat: group member removal can be achieved from the group edition page 2024-04-28 14:13:01 +00:00			`if (`
			`request.form`
			`and request.form.get("action") == "edit"`
			`and not request.form.get("page")`
			`):`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00			`if form.validate():`
refactor: fix group edition attribute cardinality 2023-11-21 15:30:12 +00:00			`group.description = form.description.data`
refactor: Rename BaseBackend in Backend 2024-04-16 20:42:29 +00:00			`Backend.instance.save(group)`
groups minor refactoring 2022-12-27 20:32:21 +00:00			`flash(`
Renamed group attributes to match SCIM naming convention 2023-02-05 18:39:52 +00:00			`_(`
			`"The group %(group)s has been sucessfully edited.",`
			`group=group.display_name,`
			`),`
groups minor refactoring 2022-12-27 20:32:21 +00:00			`"success",`
			`)`
refactor: the core module has its own main blueprint 2023-08-14 11:52:24 +00:00			`return redirect(url_for("core.groups.group", group=group))`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00			`else:`
			`flash(_("Group edition failed."), "error")`

Dynamic tables with htmx - Search is triggered with user inputs - Page changes are triggered with clicks 2023-03-09 16:41:26 +00:00			`return render_htmx_template(`
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`"group.html",`
feat: group member removal can be achieved from the group edition page 2024-04-28 14:13:01 +00:00			`"partial/group-members.html",`
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`form=form,`
Introduced a submenu 2023-03-15 16:27:32 +00:00			`menuitem="groups",`
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`edited_group=group,`
			`table_form=table_form,`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00			`)`

Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00
feat: group member removal can be achieved from the group edition page 2024-04-28 14:13:01 +00:00			`def delete_member(group):`
			`form = DeleteGroupMemberForm(request.form or None)`
			`form.group = group`

			`if not form.validate():`
			`flash(`
			`"\n".join(form.errors.get("member")),`
			`"error",`
			`)`

			`elif request.form.get("action") == "confirm-remove-member":`
			`return render_template(`
			`"modals/remove-group-member.html", group=group, form=form`
			`)`

			`else:`
			`flash(`
			`_(`
fix: translatable f-string 2024-05-01 16:39:59 +00:00			`"%(user_name)s has been removed from the group %(group_name)s",`
			`user_name=form.member.data.formatted_name,`
			`group_name=group.display_name,`
feat: group member removal can be achieved from the group edition page 2024-04-28 14:13:01 +00:00			`),`
			`"success",`
			`)`
			`group.members = [`
			`member for member in group.members if member != form.member.data`
			`]`
tests: fix CI 2024-05-03 20:35:23 +00:00			`Backend.instance.save(group)`
feat: group member removal can be achieved from the group edition page 2024-04-28 14:13:01 +00:00
			`return edit_group(group)`


Enable group deletion 2021-07-29 09:37:02 +00:00			`def delete_group(group):`
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00			`flash(`
Renamed group attributes to match SCIM naming convention 2023-02-05 18:39:52 +00:00			`_("The group %(group)s has been sucessfully deleted", group=group.display_name),`
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00			`"success",`
			`)`
refactor: Rename BaseBackend in Backend 2024-04-16 20:42:29 +00:00			`Backend.instance.delete(group)`
refactor: the core module has its own main blueprint 2023-08-14 11:52:24 +00:00			`return redirect(url_for("core.groups.groups"))`