mirror of
https://github.com/rzmk/learnhouse.git
synced 2025-12-19 04:19:25 +00:00
160 lines
4.5 KiB
Python
160 lines
4.5 KiB
Python
from typing import Literal
|
|
from src.db.courses.courses import Course
|
|
from src.db.organizations import Organization
|
|
from sqlmodel import Session, select
|
|
from src.security.rbac.rbac import (
|
|
authorization_verify_based_on_roles_and_authorship,
|
|
authorization_verify_if_user_is_anon,
|
|
)
|
|
from src.db.courses.chapters import Chapter
|
|
from src.db.courses.activities import (
|
|
Activity,
|
|
ActivityRead,
|
|
ActivitySubTypeEnum,
|
|
ActivityTypeEnum,
|
|
)
|
|
from src.db.courses.chapter_activities import ChapterActivity
|
|
from src.db.courses.course_chapters import CourseChapter
|
|
from src.db.users import AnonymousUser, PublicUser
|
|
from src.services.courses.activities.uploads.pdfs import upload_pdf
|
|
from fastapi import HTTPException, status, UploadFile, Request
|
|
from uuid import uuid4
|
|
from datetime import datetime
|
|
|
|
|
|
async def create_documentpdf_activity(
|
|
request: Request,
|
|
name: str,
|
|
chapter_id: str,
|
|
current_user: PublicUser | AnonymousUser,
|
|
db_session: Session,
|
|
pdf_file: UploadFile | None = None,
|
|
):
|
|
# RBAC check
|
|
await rbac_check(request, "course_uuid", current_user, "create", db_session)
|
|
|
|
# get chapter_id
|
|
statement = select(Chapter).where(Chapter.id == chapter_id)
|
|
chapter = db_session.exec(statement).first()
|
|
|
|
if not chapter:
|
|
raise HTTPException(
|
|
status_code=404,
|
|
detail="Chapter not found",
|
|
)
|
|
|
|
statement = select(CourseChapter).where(CourseChapter.chapter_id == chapter_id)
|
|
coursechapter = db_session.exec(statement).first()
|
|
|
|
if not coursechapter:
|
|
raise HTTPException(
|
|
status_code=404,
|
|
detail="CourseChapter not found",
|
|
)
|
|
|
|
# get org_id
|
|
org_id = coursechapter.org_id
|
|
|
|
# Get org_uuid
|
|
statement = select(Organization).where(Organization.id == coursechapter.org_id)
|
|
organization = db_session.exec(statement).first()
|
|
|
|
# Get course_uuid
|
|
statement = select(Course).where(Course.id == coursechapter.course_id)
|
|
course = db_session.exec(statement).first()
|
|
|
|
# create activity uuid
|
|
activity_uuid = f"activity_{uuid4()}"
|
|
|
|
# check if pdf_file is not None
|
|
if not pdf_file:
|
|
raise HTTPException(
|
|
status_code=status.HTTP_409_CONFLICT, detail="Pdf : No pdf file provided"
|
|
)
|
|
|
|
if pdf_file.content_type not in ["application/pdf"]:
|
|
raise HTTPException(
|
|
status_code=status.HTTP_409_CONFLICT, detail="Pdf : Wrong pdf format"
|
|
)
|
|
|
|
# get pdf format
|
|
if pdf_file.filename:
|
|
pdf_format = pdf_file.filename.split(".")[-1]
|
|
|
|
else:
|
|
raise HTTPException(
|
|
status_code=status.HTTP_409_CONFLICT, detail="Pdf : No pdf file provided"
|
|
)
|
|
|
|
# Create activity
|
|
activity = Activity(
|
|
name=name,
|
|
activity_type=ActivityTypeEnum.TYPE_DOCUMENT,
|
|
activity_sub_type=ActivitySubTypeEnum.SUBTYPE_DOCUMENT_PDF,
|
|
content={
|
|
"filename": "documentpdf." + pdf_format,
|
|
"activity_uuid": activity_uuid,
|
|
},
|
|
org_id=org_id if org_id else 0,
|
|
course_id=coursechapter.course_id,
|
|
activity_uuid=activity_uuid,
|
|
creation_date=str(datetime.now()),
|
|
update_date=str(datetime.now()),
|
|
)
|
|
|
|
# Insert Activity in DB
|
|
db_session.add(activity)
|
|
db_session.commit()
|
|
db_session.refresh(activity)
|
|
|
|
# Add activity to chapter
|
|
activity_chapter = ChapterActivity(
|
|
chapter_id=(int(chapter_id)),
|
|
activity_id=activity.id, # type: ignore
|
|
course_id=coursechapter.course_id,
|
|
org_id=coursechapter.org_id,
|
|
creation_date=str(datetime.now()),
|
|
update_date=str(datetime.now()),
|
|
order=1,
|
|
)
|
|
|
|
# upload pdf
|
|
if pdf_file:
|
|
# get pdffile format
|
|
await upload_pdf(
|
|
pdf_file,
|
|
activity.activity_uuid,
|
|
organization.org_uuid,
|
|
course.course_uuid,
|
|
)
|
|
|
|
# Insert ChapterActivity link in DB
|
|
db_session.add(activity_chapter)
|
|
db_session.commit()
|
|
db_session.refresh(activity_chapter)
|
|
|
|
return ActivityRead.model_validate(activity)
|
|
|
|
|
|
## 🔒 RBAC Utils ##
|
|
|
|
|
|
async def rbac_check(
|
|
request: Request,
|
|
course_id: str,
|
|
current_user: PublicUser | AnonymousUser,
|
|
action: Literal["create", "read", "update", "delete"],
|
|
db_session: Session,
|
|
):
|
|
await authorization_verify_if_user_is_anon(current_user.id)
|
|
|
|
await authorization_verify_based_on_roles_and_authorship(
|
|
request,
|
|
current_user.id,
|
|
action,
|
|
course_id,
|
|
db_session,
|
|
)
|
|
|
|
|
|
## 🔒 RBAC Utils ##
|