felicity-lims/backend/felicity_lims/felicity/gql/__init__.py

import logging
from graphql import GraphQLError
from abc import abstractmethod

from felicity.apps.user.models import UserAuth

logging.basicConfig(level=logging.INFO)
logger = logging.getLogger(__name__)


#
# All my mutations subclass AuthorizedMutation and just implement their
# business logic in mutate_authorized. It is called only if user was authorized.

# https://itnext.io/python-graphql-tips-tricks-and-performance-improvements-beede1f4adb6


# class AuthorizedMutation(relay.ClientIDMutation):
#     class Meta:
#         abstract = True
#
#     @classmethod
#     @abstractmethod
#     def mutate_authorized(cls, root, info, **kwargs):
#         pass
#
#     @classmethod
#     def mutate_and_get_payload(cls, root, info, **kwargs):
#         # authorize user using info.context.headers.get('Authorization')
#         return cls.mutate_authorized(root, info, **kwargs)


def anonymous_return(value):
    def anonymous_return_decorator(func):
        def anonymous_return_wrapper(obj, info, **kwargs):
            has_authenticated = is_authenticated(info.context.get('request')) or same_origin(
                info.context.get('request'))
            if has_authenticated:
                logger.info(f"has_authenticated")
                return func(obj, info, **kwargs)

            logger.info(f"not authenticated")
            if callable(value):
                return value()
            return value

        return anonymous_return_wrapper

    return anonymous_return_decorator


# class AuthenticationRequired(graphene.ObjectType):
#     message = graphene.String(
#         required=True,
#     )
#
#     @staticmethod
#     def default_message():
#         raise GraphQLError(f"Authentication Required")
#
#         # return AuthenticationRequired(
#         #     message="You must be logged in to perform this action"
#         # )


def is_authenticated(request):
    return request.user.is_authenticated


def same_origin(request):
    # logger.info(f"same origin: {request.headers.get('sec-fetch-site', 'unknown')}")
    return request.headers.get('sec-fetch-site', 'unknown') == "same-origin"


# class FilterableConnectionField(graphene_sqlalchemy.SQLAlchemyConnectionField):
#     RELAY_ARGS = ['first', 'last', 'before', 'after', 'sort']
#
#     @classmethod
#     def get_query(cls, model, info, **args):
#         query = super(FilterableConnectionField, cls).get_query(model, info, **args)
#         for field, value in args.items():
#             if field not in cls.RELAY_ARGS:
#                 query = query.filter(getattr(model, field) == value)
#         return query


def auth_from_info(info):
    is_auth = is_authenticated(info.context['request'])

    try:
        username = info.context['request'].user.username
    except AttributeError:
        username = None

    if not username:
        return False, None

    auth = UserAuth.get_by_username(username)
    if not auth:
        return False, None

    user = getattr(auth, auth.user_type)
    if not user:
        return False, None

    # extract other info from request headers

    # try:
    #     user_role = info.context['request'].headers.get('x-felicity-role')
    # except AttributeError:
    #     user_role = None
    #
    # try:
    #     user_id = info.context['request'].headers.get('x-felicity-user-id')
    # except AttributeError:
    #     token = None

    return is_auth, user


def verify_user_auth(is_auth: bool = False, user=None, err_msg: str = None) -> None:
    if not is_auth:
        raise GraphQLError(f"Please login: {err_msg}")

    if not user:
        raise GraphQLError(f"Failed to acquire authenticated user")

#
#
# async def get_all_laboratories(root, info) -> List[LaboratoryType]:
#     req = info.context.get('request')
#     print(f"\n App {req.app.state.__dict__}")
#     print(f"\n Auth {req.auth.__dict__}")
#     print(f"\n Auth {dir(req.auth)}")
#     print(f"\n User {dir(req.user)}")
#     print(f"\n User {req.user.is_authenticated} \n")
#     return await models.Laboratory.all()
added sample filtering and search 2021-04-18 18:37:49 +08:00			`import logging`
			`from graphql import GraphQLError`
			`from abc import abstractmethod`

added tracker audit event fields 2021-09-06 02:05:20 +08:00			`from felicity.apps.user.models import UserAuth`

added sample filtering and search 2021-04-18 18:37:49 +08:00			`logging.basicConfig(level=logging.INFO)`
			`logger = logging.getLogger(__name__)`

added tracker audit event fields 2021-09-06 02:05:20 +08:00
added sample filtering and search 2021-04-18 18:37:49 +08:00			`#`
			`# All my mutations subclass AuthorizedMutation and just implement their`
			`# business logic in mutate_authorized. It is called only if user was authorized.`

			`# https://itnext.io/python-graphql-tips-tricks-and-performance-improvements-beede1f4adb6`

added ResultOptions Management 2021-07-03 22:41:46 +08:00
strwberry working for now 2021-09-20 20:18:09 +08:00			`# class AuthorizedMutation(relay.ClientIDMutation):`
			`# class Meta:`
			`# abstract = True`
			`#`
			`# @classmethod`
			`# @abstractmethod`
			`# def mutate_authorized(cls, root, info, **kwargs):`
			`# pass`
			`#`
			`# @classmethod`
			`# def mutate_and_get_payload(cls, root, info, **kwargs):`
			`# # authorize user using info.context.headers.get('Authorization')`
			`# return cls.mutate_authorized(root, info, **kwargs)`
added sample filtering and search 2021-04-18 18:37:49 +08:00

			`def anonymous_return(value):`
			`def anonymous_return_decorator(func):`
			`def anonymous_return_wrapper(obj, info, **kwargs):`
added tracker audit event fields 2021-09-06 02:05:20 +08:00			`has_authenticated = is_authenticated(info.context.get('request')) or same_origin(`
			`info.context.get('request'))`
added sample filtering and search 2021-04-18 18:37:49 +08:00			`if has_authenticated:`
			`logger.info(f"has_authenticated")`
			`return func(obj, info, **kwargs)`

			`logger.info(f"not authenticated")`
			`if callable(value):`
			`return value()`
			`return value`
added tracker audit event fields 2021-09-06 02:05:20 +08:00
added sample filtering and search 2021-04-18 18:37:49 +08:00			`return anonymous_return_wrapper`
added tracker audit event fields 2021-09-06 02:05:20 +08:00
added sample filtering and search 2021-04-18 18:37:49 +08:00			`return anonymous_return_decorator`


strwberry working for now 2021-09-20 20:18:09 +08:00			`# class AuthenticationRequired(graphene.ObjectType):`
			`# message = graphene.String(`
			`# required=True,`
			`# )`
			`#`
			`# @staticmethod`
			`# def default_message():`
			`# raise GraphQLError(f"Authentication Required")`
			`#`
			`# # return AuthenticationRequired(`
			`# # message="You must be logged in to perform this action"`
			`# # )`
added sample filtering and search 2021-04-18 18:37:49 +08:00

			`def is_authenticated(request):`
			`return request.user.is_authenticated`


			`def same_origin(request):`
			`# logger.info(f"same origin: {request.headers.get('sec-fetch-site', 'unknown')}")`
			`return request.headers.get('sec-fetch-site', 'unknown') == "same-origin"`
added user add, edit, userauth similar 2021-04-19 03:20:22 +08:00

strwberry working for now 2021-09-20 20:18:09 +08:00			`# class FilterableConnectionField(graphene_sqlalchemy.SQLAlchemyConnectionField):`
			`# RELAY_ARGS = ['first', 'last', 'before', 'after', 'sort']`
			`#`
			`# @classmethod`
			`# def get_query(cls, model, info, **args):`
			`# query = super(FilterableConnectionField, cls).get_query(model, info, **args)`
			`# for field, value in args.items():`
			`# if field not in cls.RELAY_ARGS:`
			`# query = query.filter(getattr(model, field) == value)`
			`# return query`
added tracker audit event fields 2021-09-06 02:05:20 +08:00

			`def auth_from_info(info):`
			`is_auth = is_authenticated(info.context['request'])`

			`try:`
			`username = info.context['request'].user.username`
			`except AttributeError:`
			`username = None`

			`if not username:`
			`return False, None`

			`auth = UserAuth.get_by_username(username)`
			`if not auth:`
			`return False, None`

			`user = getattr(auth, auth.user_type)`
			`if not user:`
			`return False, None`

			`# extract other info from request headers`

			`# try:`
			`# user_role = info.context['request'].headers.get('x-felicity-role')`
			`# except AttributeError:`
			`# user_role = None`
			`#`
			`# try:`
			`# user_id = info.context['request'].headers.get('x-felicity-user-id')`
			`# except AttributeError:`
			`# token = None`

			`return is_auth, user`


			`def verify_user_auth(is_auth: bool = False, user=None, err_msg: str = None) -> None:`
			`if not is_auth:`
			`raise GraphQLError(f"Please login: {err_msg}")`

			`if not user:`
			`raise GraphQLError(f"Failed to acquire authenticated user")`
converted user and setup queriesand types to straw 2021-09-20 22:13:21 +08:00
			`#`
			`#`
			`# async def get_all_laboratories(root, info) -> List[LaboratoryType]:`
			`# req = info.context.get('request')`
			`# print(f"\n App {req.app.state.__dict__}")`
			`# print(f"\n Auth {req.auth.__dict__}")`
			`# print(f"\n Auth {dir(req.auth)}")`
			`# print(f"\n User {dir(req.user)}")`
			`# print(f"\n User {req.user.is_authenticated} \n")`
			`# return await models.Laboratory.all()`