Sistema_Gestion_Transporte/project/api/views.py

# models
from django.contrib.auth.models import User
from .models import Project, Agency, Route
# serializers
from .serializers import ProjectSerializer, AgencySerializer, RouteSerializer
from .serializers import UserSerializer, AuthSerializer
from .exceptions import NotAuthorized, JWTExpired
# others
import jwt
import datetime
from decouple import config
from rest_framework.response import Response
from rest_framework import viewsets
from rest_framework.decorators import action

# Create your views here.

class ProjectViewSet(viewsets.ModelViewSet):
    queryset = Project.objects.all()
    serializer_class = ProjectSerializer

class AgencyViewSet(viewsets.ModelViewSet):
    queryset = Agency.objects.all()
    serializer_class = AgencySerializer

class RouteViewSet(viewsets.ModelViewSet):
    queryset = Route.objects.all()
    serializer_class = RouteSerializer

class UserViewSet(viewsets.ModelViewSet):
    queryset = User.objects.all()
    serializer_class = UserSerializer

"""
    Metodos de generacion de jwt en forma manual
"""
private_key = config('SECRET_JWT','palabrasecreta')

# @csrf_exempt
class AuthViewSet(viewsets.ViewSet):
    serializer_class = AuthSerializer

    def list(self, request):
        return Response()
    
    def create(self, request):
        username = request.data.get('username')
        password = request.data.get('password')

        user = User.objects.filter(username = username).first()
        if not user:
            raise NotAuthorized
        is_correct = user.check_password(password)
        if not is_correct:
            raise NotAuthorized

        now = datetime.datetime.utcnow()
        payload = {
            'exp': now + datetime.timedelta(minutes=1),
            'user_id': user.id
        }
        token = jwt.encode(payload, private_key, algorithm="HS256")
        response = Response({ 'token': token })
        # response.set_cookie('token', token)
        return response
    
    @action(detail=False, methods=['get'])
    def info(self, request, pk=None):
        token = request.COOKIES.get('token')
        if not token:
            return Response(data = None, content_type = 'application/json')
        try:
            decode = jwt.decode(token, private_key, algorithms= ["HS256"])
        except jwt.ExpiredSignatureError:
            raise JWTExpired

        user = User.objects.filter(id = decode.get('user_id')).values().first()
        if (not user):
            raise NotAuthorized
        
        return Response({
            'id': user.get('id'),
            'username': user.get('username'),
            'first_name': user.get('first_name'),
            'last_name': user.get('last_name'),
            'email': user.get('email'),
            'token': token,
        })
    
    @action(detail=False, methods=['post'])
    def set_token(self, request, pk=None):
        token = request.data.get('token')
        decode = jwt.decode(token, private_key, algorithms= ["HS256"])

        user = User.objects.filter(id = decode.get('user_id')).values().first()
        if (not user):
            raise NotAuthorized
        
        return Response({
            'id': user.get('id'),
            'username': user.get('username'),
            'first_name': user.get('first_name'),
            'last_name': user.get('last_name'),
            'email': user.get('email'),
            'token': token,
        })

    @action(detail=False, methods=['post'])
    def logout(self, request, pk=None):
        response = Response()
        response.delete_cookie('token')
        return response
se avanza con api auth 2023-06-11 15:27:18 -04:00			`# models`
se agrega api de usuarios 2023-06-06 21:04:01 -04:00			`from django.contrib.auth.models import User`
se avanza con api auth 2023-06-11 15:27:18 -04:00			`from .models import Project, Agency, Route`
			`# serializers`
commit inicial de francisco 2023-06-03 17:19:58 -04:00			`from .serializers import ProjectSerializer, AgencySerializer, RouteSerializer`
se agrega create-tables 2023-06-10 08:35:22 -04:00			`from .serializers import UserSerializer, AuthSerializer`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`from .exceptions import NotAuthorized, JWTExpired`
se avanza con api auth 2023-06-11 15:27:18 -04:00			`# others`
			`import jwt`
			`import datetime`
			`from decouple import config`
			`from rest_framework.response import Response`
			`from rest_framework import viewsets`
			`from rest_framework.decorators import action`
commit inicial de francisco 2023-06-03 17:19:58 -04:00
			`# Create your views here.`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00
commit inicial de francisco 2023-06-03 17:19:58 -04:00			`class ProjectViewSet(viewsets.ModelViewSet):`
			`queryset = Project.objects.all()`
			`serializer_class = ProjectSerializer`

			`class AgencyViewSet(viewsets.ModelViewSet):`
			`queryset = Agency.objects.all()`
			`serializer_class = AgencySerializer`

			`class RouteViewSet(viewsets.ModelViewSet):`
			`queryset = Route.objects.all()`
se agrega api de usuarios 2023-06-06 21:04:01 -04:00			`serializer_class = RouteSerializer`

			`class UserViewSet(viewsets.ModelViewSet):`
			`queryset = User.objects.all()`
se agrega create-tables 2023-06-10 08:35:22 -04:00			`serializer_class = UserSerializer`

			`"""`
			`Metodos de generacion de jwt en forma manual`
			`"""`
se avanza con api auth 2023-06-11 15:27:18 -04:00			`private_key = config('SECRET_JWT','palabrasecreta')`

se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`# @csrf_exempt`
se agrega create-tables 2023-06-10 08:35:22 -04:00			`class AuthViewSet(viewsets.ViewSet):`
			`serializer_class = AuthSerializer`

			`def list(self, request):`
			`return Response()`

			`def create(self, request):`
			`username = request.data.get('username')`
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00			`password = request.data.get('password')`

se agrega create-tables 2023-06-10 08:35:22 -04:00			`user = User.objects.filter(username = username).first()`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`if not user:`
			`raise NotAuthorized`
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00			`is_correct = user.check_password(password)`
			`if not is_correct:`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`raise NotAuthorized`
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00
se avanza con api auth 2023-06-11 15:27:18 -04:00			`now = datetime.datetime.utcnow()`
se agrega create-tables 2023-06-10 08:35:22 -04:00			`payload = {`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`'exp': now + datetime.timedelta(minutes=1),`
se avanza con api auth 2023-06-11 15:27:18 -04:00			`'user_id': user.id`
se agrega create-tables 2023-06-10 08:35:22 -04:00			`}`
			`token = jwt.encode(payload, private_key, algorithm="HS256")`
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00			`response = Response({ 'token': token })`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`# response.set_cookie('token', token)`
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00			`return response`
se avanza con api auth 2023-06-11 15:27:18 -04:00
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00			`@action(detail=False, methods=['get'])`
se avanza con api auth 2023-06-11 15:27:18 -04:00			`def info(self, request, pk=None):`
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00			`token = request.COOKIES.get('token')`
			`if not token:`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`return Response(data = None, content_type = 'application/json')`
			`try:`
			`decode = jwt.decode(token, private_key, algorithms= ["HS256"])`
se muestra compilacion de frontend 2023-06-13 10:27:15 -04:00			`except jwt.ExpiredSignatureError:`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`raise JWTExpired`
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00
			`user = User.objects.filter(id = decode.get('user_id')).values().first()`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`if (not user):`
			`raise NotAuthorized`
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00
			`return Response({`
			`'id': user.get('id'),`
			`'username': user.get('username'),`
			`'first_name': user.get('first_name'),`
			`'last_name': user.get('last_name'),`
			`'email': user.get('email'),`
			`'token': token,`
			`})`

			`@action(detail=False, methods=['post'])`
			`def set_token(self, request, pk=None):`
se avanza con api auth 2023-06-11 15:27:18 -04:00			`token = request.data.get('token')`
			`decode = jwt.decode(token, private_key, algorithms= ["HS256"])`

			`user = User.objects.filter(id = decode.get('user_id')).values().first()`
se agrega compilacion de frontend y manejo de jwt 2023-06-12 23:09:22 -04:00			`if (not user):`
			`raise NotAuthorized`
se avanza con api auth 2023-06-11 15:27:18 -04:00
			`return Response({`
			`'id': user.get('id'),`
			`'username': user.get('username'),`
			`'first_name': user.get('first_name'),`
			`'last_name': user.get('last_name'),`
			`'email': user.get('email'),`
se guarda token en cookie, y se agrega logout 2023-06-12 18:27:40 -04:00			`'token': token,`
			`})`

			`@action(detail=False, methods=['post'])`
			`def logout(self, request, pk=None):`
			`response = Response()`
			`response.delete_cookie('token')`
			`return response`