website/members/api/v2/views.py from svthalia/concrexit

website/members/api/v2/views.py
Summary

Maintainability

0 mins
Test Coverage

Issues
"""API views of the activemembers app."""

from django.db.models import Prefetch
from django.shortcuts import get_object_or_404

from oauth2_provider.contrib.rest_framework import IsAuthenticatedOrTokenHasScope
from rest_framework import filters as framework_filters
from rest_framework.generics import ListAPIView, RetrieveAPIView, UpdateAPIView

from members.api.v2 import filters
from members.api.v2.permissions import HasActiveMembership
from members.api.v2.serializers.member import (
    MemberCurrentSerializer,
    MemberListSerializer,
    MemberSerializer,
)
from members.models import Member, Membership
from thaliawebsite.api.openapi import OAuthAutoSchema
from thaliawebsite.api.v2.permissions import IsAuthenticatedOrTokenHasScopeForMethod
from utils.media.services import fetch_thumbnails


class MemberListView(ListAPIView):
    """Returns an overview of all members."""

    serializer_class = MemberListSerializer
    queryset = (
        Member.objects.all()
        .select_related("profile")
        .prefetch_related(
            "membership_set",
            Prefetch(
                "membership_set",
                queryset=Membership.objects.order_by("-since")[:1],
                to_attr="_latest_membership",
            ),
        )
    )

    def get_serializer(self, *args, **kwargs):
        if len(args) > 0:
            members = args[0]
            fetch_thumbnails([member.profile.photo for member in members])
        return super().get_serializer(*args, **kwargs)

    permission_classes = [IsAuthenticatedOrTokenHasScope, HasActiveMembership]
    required_scopes = ["members:read"]
    filter_backends = (
        framework_filters.OrderingFilter,
        framework_filters.SearchFilter,
        filters.MembershipTypeFilter,
        filters.StartingYearFilter,
        filters.FormerMemberFilter,
    )
    ordering_fields = ("first_name", "last_name", "username")
    search_fields = (
        "profile__nickname",
        "profile__starting_year",
        "first_name",
        "last_name",
        "username",
    )


class MemberDetailView(RetrieveAPIView):
    """Returns details of a member."""

    serializer_class = MemberSerializer
    queryset = Member.objects.all().prefetch_related(
        "membergroupmembership_set", "mentorship_set"
    )
    permission_classes = [
        IsAuthenticatedOrTokenHasScope,
        HasActiveMembership,
    ]
    required_scopes = ["members:read"]


class MemberCurrentView(MemberDetailView, UpdateAPIView):
    """Returns details of the authenticated member."""

    serializer_class = MemberCurrentSerializer
    schema = OAuthAutoSchema(operation_id_base="CurrentMember")
    permission_classes = [
        IsAuthenticatedOrTokenHasScopeForMethod,
    ]
    required_scopes_per_method = {
        "GET": ["profile:read"],
        "PATCH": ["profile:write"],
        "PUT": ["profile:write"],
    }

    def get_object(self):
        return get_object_or_404(self.get_queryset(), pk=self.request.user.pk)