1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
|
from flask import jsonify, abort, make_response, request, url_for, redirect, session
from requests_oauthlib import OAuth2Session
from datetime import datetime
from app import app, db, models
from app.utils import authenticate, ticket_to_dict, make_public_ticket
import json
@app.route('/authorized')
def authorized_callback():
github = OAuth2Session(app.config['GITHUB_CLIENT_ID'], state=session['oauth_state'])
token = github.fetch_token(app.config['TOKEN_URL'], client_secret=app.config['GITHUB_CLIENT_SECRET'],
authorization_response=request.url)
user_data = github.get('https://api.github.com/user')
if user_data.status_code == 401:
abort(401)
json_data = user_data.json()
user = models.User.query.filter(models.User.id == json_data['id']).first()
if not user:
user = models.User(
id = json_data['id'],
name = json_data['name'],
nickname = json_data['login'],
email = json_data['email'],
)
db.session.add(user)
db.session.commit()
session['oauth_token'] = token
return "Your access token is: {}".format(token['access_token'])
@app.route('/login')
def login():
github = OAuth2Session(app.config['GITHUB_CLIENT_ID'])
authorization_url, state = github.authorization_url(app.config['AUTHORIZATION_BASE_URL'])
session['oauth_state'] = state
return redirect(authorization_url)
@app.route('/tbt/api/1.0/tickets', methods=['GET'])
def get_tickets():
ts = models.Ticket.query.all()
tickets = map(ticket_to_dict, ts)
return jsonify({'tickets': list(map(make_public_ticket, tickets))})
@app.route('/tbt/api/1.0/ticket', methods=['POST'])
def create_ticket():
if not request.json or not ('summary' and 'body' and 'token') in request.json:
abort(400)
if not authenticate(request.json['token']):
abort(401)
user = models.User.query.get(user_data.json()['id'])
ticket = models.Ticket(summary = request.json['summary'],
body = request.json['body'],
opened_by = user,
opened_at = datetime.utcnow())
db.session.add(ticket)
db.session.commit()
public_ticket = make_public_ticket(ticket_to_dict(ticket))
return jsonify({'ticket': public_ticket}), 201
@app.route('/tbt/api/1.0/ticket/<int:ticket_id>', methods=['GET'])
def get_ticket(ticket_id):
ticket = models.Ticket.query.get(ticket_id)
if not ticket:
abort(404)
public_ticket = make_public_ticket(ticket_to_dict(ticket))
return jsonify({'ticket': public_ticket})
@app.route('/tbt/api/1.0/ticket/<int:ticket_id>', methods=['PUT'])
def update_ticket(ticket_id):
if not 'Access-Token' in request.headers or not authenticate(request.headers['Access-Token']):
abort(401)
if not request.json:
print(request.data)
abort(400)
ticket = models.Ticket.query.get(ticket_id)
if not ticket:
abort(404)
ticket.summary = request.json.get('summary', ticket.summary)
ticket.body = request.json.get('body', ticket.body)
ticket.status = request.json.get('status', ticket.status)
ticket.reason = request.json.get('reason', ticket.reason)
ticket.updated_at = datetime.utcnow()
db.session.add(ticket)
db.session.commit()
public_ticket = make_public_ticket(ticket_to_dict(ticket))
return jsonify({'ticket': public_ticket})
@app.route('/tbt/api/1.0/ticket/<int:ticket_id>', methods=['DELETE'])
def delete_ticket(ticket_id):
if not 'Access-Token' in request.headers or not authenticate(request.headers['Access-Token']):
abort(401)
ticket = models.Ticket.query.get(ticket_id)
if not ticket:
abort(404)
db.session.delete(ticket)
db.session.commit()
return jsonify({'result': True})
@app.errorhandler(404)
def not_found(error):
return make_response(jsonify({'error': 'Not found'}), 404)
@app.errorhandler(401)
def unauthorized(error):
return make_response(jsonify({'error': 'Unauthorized'}), 401)
@app.errorhandler(400)
def unauthorized(error):
return make_response(jsonify({'error': 'Bad request'}), 400)
|