lenticular_cloud2/lenticular_cloud/views/admin.py

from authlib.integrations.base_client.errors import MissingTokenError
from flask import Blueprint, redirect, request, url_for, render_template
from flask import current_app, session
from flask import jsonify
from flask.typing import ResponseReturnValue
from flask_login import current_user, logout_user
from oauthlib.oauth2.rfc6749.errors import TokenExpiredError
from authlib.integrations.base_client.errors import InvalidTokenError
from ory_hydra_client.api.admin import list_o_auth_2_clients, get_o_auth_2_client, update_o_auth_2_client, create_o_auth_2_client 
from ory_hydra_client.models import OAuth2Client, GenericError
from typing import Optional
import logging

from ..model import db, User
from .oauth2 import redirect_login, oauth2
from ..form.admin import OAuth2ClientForm
from ..hydra import hydra_service


admin_views = Blueprint('admin', __name__, url_prefix='/admin')
logger = logging.getLogger(__name__)


def before_request() -> Optional[ResponseReturnValue]:
    try:
        resp = oauth2.custom.get('/userinfo')
        data = resp.json()
        if not current_user.is_authenticated or resp.status_code != 200:
            return redirect_login()
        if 'groups' not in data or 'admin' not in data['groups']:
            return 'Not an admin', 403
    except (MissingTokenError, InvalidTokenError):
        return redirect_login()
    return None


admin_views.before_request(before_request)


@admin_views.route('/', methods=['GET', 'POST'])
async def index() -> ResponseReturnValue:
    return render_template('admin/index.html.j2')


@admin_views.route('/user', methods=['GET'])
async def users():
    users = User.query.all()
    return render_template('admin/users.html.j2', users=users)


@admin_views.route('/registrations', methods=['GET'])
def registrations() -> ResponseReturnValue:
    users = User.query.filter_by(enabled=False).all()
    return render_template('admin/registrations.html.j2', users=users)


@admin_views.route('/registration/<registration_id>', methods=['DELETE'])
def registration_delete(registration_id) -> ResponseReturnValue:
    user = User.query.get(registration_id)
    if user is None:
        return jsonify({}), 404
    db.session.delete(user)
    db.session.commit()
    return jsonify({})


@admin_views.route('/registration/<registration_id>', methods=['PUT'])
def registration_accept(registration_id) -> ResponseReturnValue:
    user = User.query.get(registration_id)
    user.enabled = True
    db.session.commit()
    return jsonify({})


@admin_views.route('/clients')
async def clients() -> ResponseReturnValue:
    clients = await list_o_auth_2_clients.asyncio(_client=hydra_service.hydra_client)
    return render_template('admin/clients.html.j2', clients=clients)

@admin_views.route('/client/<client_id>', methods=['GET', 'POST'])
async def client(client_id: str) -> ResponseReturnValue:
    
    client = await get_o_auth_2_client.asyncio(client_id, _client=hydra_service.hydra_client)
    if client is None or isinstance( client, GenericError):
        logger.error(f"oauth2 client not found with id: '{client_id}'")
        return 'client not found', 404

    form = OAuth2ClientForm(obj=client)
    if form.validate_on_submit():
        form.populate_obj(client)
 
        client = await update_o_auth_2_client.asyncio(id=client_id ,json_body=client, _client=hydra_service.hydra_client)
        if client is None or isinstance(client, GenericError):
            logger.error(f"oauth2 client update failed: '{client_id}'")
            return 'client update failed', 500


    return render_template('admin/client.html.j2', client=client, form=form)


@admin_views.route('/client_new', methods=['GET','POST'])
async def client_new() -> ResponseReturnValue:
    
    client = OAuth2Client()

    form = OAuth2ClientForm()
    if form.validate_on_submit():
        form.populate_obj(client)
 
        resp_client = await create_o_auth_2_client.asyncio(json_body=client, _client=hydra_service.hydra_client)
        if resp_client is None:
            logger.error(f"oauth2 client update failed: '{client.client_id}'")
            return 'internal error', 500
        return redirect(url_for('.client', client_id=client.client_id))


    return render_template('admin/client.html.j2', client=client, form=form)
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`from authlib.integrations.base_client.errors import MissingTokenError`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`from flask import Blueprint, redirect, request, url_for, render_template`
			`from flask import current_app, session`
			`from flask import jsonify`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`from flask.typing import ResponseReturnValue`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`from flask_login import current_user, logout_user`
			`from oauthlib.oauth2.rfc6749.errors import TokenExpiredError`
move migration, bugfixes, .... 2022-04-08 19:29:23 +00:00			`from authlib.integrations.base_client.errors import InvalidTokenError`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`from ory_hydra_client.api.admin import list_o_auth_2_clients, get_o_auth_2_client, update_o_auth_2_client, create_o_auth_2_client`
			`from ory_hydra_client.models import OAuth2Client, GenericError`
			`from typing import Optional`
fix webpack build system 2022-02-19 09:21:00 +00:00			`import logging`

remove ldap 2022-06-17 11:38:49 +00:00			`from ..model import db, User`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`from .oauth2 import redirect_login, oauth2`
fix webpack build system 2022-02-19 09:21:00 +00:00			`from ..form.admin import OAuth2ClientForm`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`from ..hydra import hydra_service`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00

			`admin_views = Blueprint('admin', __name__, url_prefix='/admin')`
fix webpack build system 2022-02-19 09:21:00 +00:00			`logger = logging.getLogger(__name__)`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00

fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`def before_request() -> Optional[ResponseReturnValue]:`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`try:`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`resp = oauth2.custom.get('/userinfo')`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`data = resp.json()`
bugfixes, cleanup 2022-02-06 22:57:01 +00:00			`if not current_user.is_authenticated or resp.status_code != 200:`
bugfixes, error handling 2020-06-02 17:09:32 +00:00			`return redirect_login()`
bugfixes, cleanup 2022-02-06 22:57:01 +00:00			`if 'groups' not in data or 'admin' not in data['groups']:`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`return 'Not an admin', 403`
move migration, bugfixes, .... 2022-04-08 19:29:23 +00:00			`except (MissingTokenError, InvalidTokenError):`
bugfixes, error handling 2020-06-02 17:09:32 +00:00			`return redirect_login()`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`return None`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00

			`admin_views.before_request(before_request)`


			`@admin_views.route('/', methods=['GET', 'POST'])`
add async handling 2022-02-20 15:53:24 +00:00			`async def index() -> ResponseReturnValue:`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`return render_template('admin/index.html.j2')`


			`@admin_views.route('/user', methods=['GET'])`
add async handling 2022-02-20 15:53:24 +00:00			`async def users():`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`users = User.query.all()`
			`return render_template('admin/users.html.j2', users=users)`


			`@admin_views.route('/registrations', methods=['GET'])`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`def registrations() -> ResponseReturnValue:`
remove ldap 2022-06-17 11:38:49 +00:00			`users = User.query.filter_by(enabled=False).all()`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`return render_template('admin/registrations.html.j2', users=users)`


			`@admin_views.route('/registration/<registration_id>', methods=['DELETE'])`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`def registration_delete(registration_id) -> ResponseReturnValue:`
remove ldap 2022-06-17 11:38:49 +00:00			`user = User.query.get(registration_id)`
			`if user is None:`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`return jsonify({}), 404`
remove ldap 2022-06-17 11:38:49 +00:00			`db.session.delete(user)`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`db.session.commit()`
			`return jsonify({})`


			`@admin_views.route('/registration/<registration_id>', methods=['PUT'])`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`def registration_accept(registration_id) -> ResponseReturnValue:`
remove ldap 2022-06-17 11:38:49 +00:00			`user = User.query.get(registration_id)`
			`user.enabled = True`
add more registration stuff, admin interface 2020-06-01 21:43:10 +00:00			`db.session.commit()`
			`return jsonify({})`
fix webpack build system 2022-02-19 09:21:00 +00:00

			`@admin_views.route('/clients')`
add async handling 2022-02-20 15:53:24 +00:00			`async def clients() -> ResponseReturnValue:`
			`clients = await list_o_auth_2_clients.asyncio(_client=hydra_service.hydra_client)`
fix webpack build system 2022-02-19 09:21:00 +00:00			`return render_template('admin/clients.html.j2', clients=clients)`

			`@admin_views.route('/client/<client_id>', methods=['GET', 'POST'])`
add async handling 2022-02-20 15:53:24 +00:00			`async def client(client_id: str) -> ResponseReturnValue:`
fix webpack build system 2022-02-19 09:21:00 +00:00
add async handling 2022-02-20 15:53:24 +00:00			`client = await get_o_auth_2_client.asyncio(client_id, _client=hydra_service.hydra_client)`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`if client is None or isinstance( client, GenericError):`
fix webpack build system 2022-02-19 09:21:00 +00:00			`logger.error(f"oauth2 client not found with id: '{client_id}'")`
			`return 'client not found', 404`

			`form = OAuth2ClientForm(obj=client)`
			`if form.validate_on_submit():`
			`form.populate_obj(client)`

add async handling 2022-02-20 15:53:24 +00:00			`client = await update_o_auth_2_client.asyncio(id=client_id ,json_body=client, _client=hydra_service.hydra_client)`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`if client is None or isinstance(client, GenericError):`
fix webpack build system 2022-02-19 09:21:00 +00:00			`logger.error(f"oauth2 client update failed: '{client_id}'")`
			`return 'client update failed', 500`



			`return render_template('admin/client.html.j2', client=client, form=form)`


			`@admin_views.route('/client_new', methods=['GET','POST'])`
add async handling 2022-02-20 15:53:24 +00:00			`async def client_new() -> ResponseReturnValue:`
fix webpack build system 2022-02-19 09:21:00 +00:00
			`client = OAuth2Client()`

			`form = OAuth2ClientForm()`
			`if form.validate_on_submit():`
			`form.populate_obj(client)`

add async handling 2022-02-20 15:53:24 +00:00			`resp_client = await create_o_auth_2_client.asyncio(json_body=client, _client=hydra_service.hydra_client)`
fix lots of stuff, migrate to new client api 2022-02-19 22:16:13 +00:00			`if resp_client is None:`
fix webpack build system 2022-02-19 09:21:00 +00:00			`logger.error(f"oauth2 client update failed: '{client.client_id}'")`
			`return 'internal error', 500`
			`return redirect(url_for('.client', client_id=client.client_id))`


			`return render_template('admin/client.html.j2', client=client, form=form)`