X-Git-Url: https://git.mdrn.pl/wolnelektury.git/blobdiff_plain/a791ae7c71b918ca39e7083209019de03a164252..5bd864493e531e5600c5ca989825d89cc3ee1487:/src/catalogue/api/views.py diff --git a/src/catalogue/api/views.py b/src/catalogue/api/views.py index aba794d05..5512501c6 100644 --- a/src/catalogue/api/views.py +++ b/src/catalogue/api/views.py @@ -1,33 +1,287 @@ -from django.http import HttpResponse -from rest_framework.generics import ListAPIView, RetrieveAPIView, get_object_or_404 -from paypal.permissions import IsSubscribed +# This file is part of Wolnelektury, licensed under GNU Affero GPLv3 or later. +# Copyright © Fundacja Nowoczesna Polska. See NOTICE for more information. +# +import json +import os.path +from django.conf import settings +from django.http import Http404, HttpResponse +from django.utils.decorators import method_decorator +from django.views.decorators.cache import never_cache +from rest_framework.generics import (ListAPIView, RetrieveAPIView, + RetrieveUpdateAPIView, get_object_or_404) +from rest_framework.permissions import DjangoModelPermissionsOrAnonReadOnly +from rest_framework.response import Response +from rest_framework import status from api.handlers import read_tags +from api.utils import vary_on_auth +from catalogue.forms import BookImportForm +from catalogue.models import Book, Collection, Tag, Fragment, BookMedia +from catalogue.models.tag import prefetch_relations +from club.models import Membership +from club.permissions import IsClubMember +from wolnelektury.utils import re_escape +from .helpers import books_after, order_books from . import serializers -from catalogue.models import Book, Collection, Tag, Fragment + + +book_tag_categories = ['author', 'epoch', 'kind', 'genre'] + + +class CreateOnPutMixin: + ''' + Creates a new model instance when PUTting a nonexistent resource. + ''' + def get_object(self): + try: + return super().get_object() + except Http404: + if self.request.method == 'PUT': + lookup_url_kwarg = self.lookup_url_kwarg or self.lookup_field + return self.get_queryset().model(**{ + self.lookup_field: self.kwargs[lookup_url_kwarg] + }) + else: + raise class CollectionList(ListAPIView): - queryset = Collection.objects.all() + queryset = Collection.objects.filter(listed=True) serializer_class = serializers.CollectionListSerializer -class CollectionDetail(RetrieveAPIView): +@vary_on_auth # Because of 'liked'. +class CollectionDetail(CreateOnPutMixin, RetrieveUpdateAPIView): + permission_classes = [DjangoModelPermissionsOrAnonReadOnly] queryset = Collection.objects.all() lookup_field = 'slug' serializer_class = serializers.CollectionSerializer +@vary_on_auth # Because of 'liked'. +class BookList(ListAPIView): + permission_classes = [DjangoModelPermissionsOrAnonReadOnly] + queryset = Book.objects.none() # Required for DjangoModelPermissions + serializer_class = serializers.BookListSerializer + + def get(self, request, filename=None, **kwargs): + if filename and not kwargs.get('tags') and 'count' not in request.query_params: + try: + with open(os.path.join(settings.MEDIA_ROOT, 'api', '%s.%s' % (filename, request.accepted_renderer.format)), 'rb') as f: + content = f.read() + return HttpResponse(content, content_type=request.accepted_media_type) + except: + pass + return super().get(request, filename=filename, **kwargs) + + def get_queryset(self): + try: + tags, ancestors = read_tags( + self.kwargs.get('tags', ''), self.request, + allowed=('author', 'epoch', 'kind', 'genre') + ) + except ValueError: + raise Http404 + + new_api = self.request.query_params.get('new_api') + after = self.request.query_params.get('after', self.kwargs.get('after')) + count = self.request.query_params.get('count', self.kwargs.get('count')) + if count: + try: + count = int(count) + except TypeError: + raise Http404 # Fixme + + if tags: + if self.kwargs.get('top_level'): + books = Book.tagged_top_level(tags) + if not books: + raise Http404 + return books + else: + books = Book.tagged.with_all(tags) + else: + books = Book.objects.all() + books = books.filter(findable=True) + books = order_books(books, new_api) + + if not Membership.is_active_for(self.request.user): + books = books.exclude(preview=True) + + if self.kwargs.get('top_level'): + books = books.filter(parent=None) + if self.kwargs.get('audiobooks'): + books = books.filter(media__type='mp3').distinct() + if self.kwargs.get('daisy'): + books = books.filter(media__type='daisy').distinct() + if self.kwargs.get('recommended'): + books = books.filter(recommended=True) + if self.kwargs.get('newest'): + books = books.order_by('-created_at') + + if after: + books = books_after(books, after, new_api) + + prefetch_relations(books, 'author') + prefetch_relations(books, 'genre') + prefetch_relations(books, 'kind') + prefetch_relations(books, 'epoch') + + if count: + books = books[:count] + + return books + + def post(self, request, **kwargs): + if kwargs.get('audiobooks'): + return self.post_audiobook(request, **kwargs) + else: + return self.post_book(request, **kwargs) + + def post_book(self, request, **kwargs): + data = json.loads(request.POST.get('data')) + form = BookImportForm(data) + if form.is_valid(): + form.save() + return Response({}, status=status.HTTP_201_CREATED) + else: + raise Http404 + + def post_audiobook(self, request, **kwargs): + index = int(request.POST['part_index']) + parts_count = int(request.POST['parts_count']) + media_type = request.POST['type'].lower() + source_sha1 = request.POST.get('source_sha1') + name = request.POST.get('name', '') + part_name = request.POST.get('part_name', '') + + project_description = request.POST.get('project_description', '') + project_icon = request.POST.get('project_icon', '') + + _rest, slug = request.POST['book'].rstrip('/').rsplit('/', 1) + book = Book.objects.get(slug=slug) + + try: + assert source_sha1 + bm = book.media.get(type=media_type, source_sha1=source_sha1) + except (AssertionError, BookMedia.DoesNotExist): + bm = BookMedia(book=book, type=media_type) + bm.name = name + bm.part_name = part_name + bm.index = index + bm.project_description = project_description + bm.project_icon = project_icon + bm.file.save(None, request.data['file'], save=False) + bm.save(parts_count=parts_count) + + return Response({}, status=status.HTTP_201_CREATED) + + +@vary_on_auth # Because of 'liked'. class BookDetail(RetrieveAPIView): queryset = Book.objects.all() lookup_field = 'slug' serializer_class = serializers.BookDetailSerializer +@vary_on_auth # Because of embargo links. +class EbookList(BookList): + serializer_class = serializers.EbookSerializer + + +@method_decorator(never_cache, name='dispatch') +class Preview(ListAPIView): + #queryset = Book.objects.filter(preview=True) + serializer_class = serializers.BookPreviewSerializer + + def get_queryset(self): + qs = Book.objects.filter(preview=True) + # FIXME: temporary workaround for a problem with iOS app; see #3954. + if 'Darwin' in self.request.META.get('HTTP_USER_AGENT', '') and 'debug' not in self.request.GET: + qs = qs.none() + return qs + + +@vary_on_auth # Because of 'liked'. +class FilterBookList(ListAPIView): + serializer_class = serializers.FilterBookListSerializer + + def parse_bool(self, s): + if s in ('true', 'false'): + return s == 'true' + else: + return None + + def get_queryset(self): + key_sep = '$' + search_string = self.request.query_params.get('search') + is_lektura = self.parse_bool(self.request.query_params.get('lektura')) + is_audiobook = self.parse_bool(self.request.query_params.get('audiobook')) + preview = self.parse_bool(self.request.query_params.get('preview')) + if not Membership.is_active_for(self.request.user): + preview = False + + new_api = self.request.query_params.get('new_api') + after = self.request.query_params.get('after') + count = int(self.request.query_params.get('count', 50)) + books = order_books(Book.objects.distinct(), new_api) + books = books.filter(findable=True) + if is_lektura is not None: + books = books.filter(has_audience=is_lektura) + if is_audiobook is not None: + if is_audiobook: + books = books.filter(media__type='mp3') + else: + books = books.exclude(media__type='mp3') + if preview is not None: + books = books.filter(preview=preview) + for category in book_tag_categories: + category_plural = category + 's' + if category_plural in self.request.query_params: + slugs = self.request.query_params[category_plural].split(',') + tags = Tag.objects.filter(category=category, slug__in=slugs) + books = Book.tagged.with_any(tags, books) + if (search_string is not None) and len(search_string) < 3: + search_string = None + if search_string: + search_string = re_escape(search_string) + books_author = books.filter(cached_author__iregex=r'\m' + search_string) + books_title = books.filter(title__iregex=r'\m' + search_string) + books_title = books_title.exclude(id__in=list(books_author.values_list('id', flat=True))) + if after and (key_sep in after): + which, key = after.split(key_sep, 1) + if which == 'title': + book_lists = [(books_after(books_title, key, new_api), 'title')] + else: # which == 'author' + book_lists = [(books_after(books_author, key, new_api), 'author'), (books_title, 'title')] + else: + book_lists = [(books_author, 'author'), (books_title, 'title')] + else: + if after and key_sep in after: + which, key = after.split(key_sep, 1) + books = books_after(books, key, new_api) + book_lists = [(books, 'book')] + + filtered_books = [] + for book_list, label in book_lists: + for category in book_tag_categories: + book_list = prefetch_relations(book_list, category) + remaining_count = count - len(filtered_books) + for book in book_list[:remaining_count]: + book.key = '%s%s%s' % ( + label, key_sep, book.slug if not new_api else book.full_sort_key()) + filtered_books.append(book) + if len(filtered_books) == count: + break + + return filtered_books + + class EpubView(RetrieveAPIView): queryset = Book.objects.all() lookup_field = 'slug' - permission_classes = [IsSubscribed] + permission_classes = [IsClubMember] + @method_decorator(never_cache) def get(self, *args, **kwargs): return HttpResponse(self.get_object().get_media('epub')) @@ -54,16 +308,36 @@ class TagCategoryView(ListAPIView): class TagView(RetrieveAPIView): + permission_classes = [DjangoModelPermissionsOrAnonReadOnly] serializer_class = serializers.TagDetailSerializer - + queryset = Tag.objects.all() + def get_object(self): - return get_object_or_404( - Tag, - category=self.kwargs['category'], - slug=self.kwargs['slug'] - ) + try: + return get_object_or_404( + Tag, + category=self.kwargs['category'], + slug=self.kwargs['slug'] + ) + except Http404: + if self.request.method == 'PUT': + return Tag( + category=self.kwargs['category'], + slug=self.kwargs['slug'] + ) + else: + raise + + def post(self, request, **kwargs): + data = json.loads(request.POST.get('data')) + desc = data['description_pl'] + obj = self.get_object() + obj.description_pl = desc + obj.save(update_fields=['description_pl'], quick=True) + return Response({}) +@vary_on_auth # Because of 'liked'. class FragmentList(ListAPIView): serializer_class = serializers.FragmentSerializer @@ -76,9 +350,10 @@ class FragmentList(ListAPIView): ) except ValueError: raise Http404 - return Fragment.tagged.with_all(tags).select_related('book') + return Fragment.tagged.with_all(tags).filter(book__findable=True).select_related('book') +@vary_on_auth # Because of 'liked'. class FragmentView(RetrieveAPIView): serializer_class = serializers.FragmentDetailSerializer