from pandas.io.feather_format import pd from .serializers import ClubSerializer, CourtSerializer, DateIntervalSerializer, DrawLogSerializer, TournamentSerializer, UserSerializer, ChangePasswordSerializer, EventSerializer, RoundSerializer, GroupStageSerializer, MatchSerializer, TeamScoreSerializer, TeamRegistrationSerializer, PlayerRegistrationSerializer, LiveMatchSerializer, PurchaseSerializer, ShortUserSerializer, FailedApiCallSerializer, LogSerializer, DeviceTokenSerializer, CustomUserSerializer, UnregisteredTeamSerializer, UnregisteredPlayerSerializer from tournaments.models import Club, Tournament, CustomUser, Event, Round, GroupStage, Match, TeamScore, TeamRegistration, PlayerRegistration, Court, DateInterval, Purchase, FailedApiCall, Log, DeviceToken, DrawLog, UnregisteredTeam, UnregisteredPlayer from rest_framework import viewsets, permissions from rest_framework.authtoken.models import Token from rest_framework.response import Response from rest_framework.decorators import api_view from rest_framework import status from rest_framework.generics import UpdateAPIView from rest_framework.exceptions import MethodNotAllowed from rest_framework.permissions import IsAuthenticated from rest_framework.views import APIView from django.http import Http404 from django.contrib.auth import authenticate from django.db.models import Q from django.core.exceptions import ObjectDoesNotExist from django.utils import timezone from django.apps import apps from django.views.decorators.csrf import csrf_exempt from django.utils.decorators import method_decorator from collections import defaultdict from .permissions import IsClubOwner from .utils import is_valid_email, check_version_smaller_than_1_1_12 from sync.models import Device from shared.discord import send_discord_log_message @method_decorator(csrf_exempt, name='dispatch') class CustomAuthToken(APIView): permission_classes = [] def post(self, request, *args, **kwargs): username = request.data.get('username') password = request.data.get('password') device_id = request.data.get('device_id') user = authenticate(username=username, password=password) if user is None and is_valid_email(username) == True: true_username = self.get_username_from_email(username) user = authenticate(username=true_username, password=password) if user: # user.device_id = device_id # user.save() # self.create_or_update_device(user, device_id) # token, created = Token.objects.get_or_create(user=user) # return Response({'token': token.key}) if user.device_id is None or user.device_id == device_id or user.username == 'apple-test': user.device_id = device_id user.save() self.create_or_update_device(user, device_id) token, created = Token.objects.get_or_create(user=user) return Response({'token': token.key}) else: return Response({'error': 'Vous ne pouvez pour l\'instant vous connecter sur plusieurs appareils en même temps. Veuillez vous déconnecter du précédent appareil. Autrement, veuillez contacter le support.'}, status=status.HTTP_403_FORBIDDEN) else: return Response({'error': 'L\'utilisateur et le mot de passe de correspondent pas'}, status=status.HTTP_401_UNAUTHORIZED) def create_or_update_device(self, user, device_id): Device.objects.update_or_create( id=device_id, defaults={ 'user': user } ) def get_username_from_email(self, email): try: user = CustomUser.objects.get(email=email) return user.username except ObjectDoesNotExist: return None class Logout(APIView): permission_classes = (IsAuthenticated,) def post(self, request, *args, **kwargs): # request.user.auth_token.delete() device_id = request.data.get('device_id') if request.user.device_id == device_id: request.user.device_id = None request.user.save() Device.objects.filter(id=device_id).delete() return Response(status=status.HTTP_200_OK) @api_view(['GET']) def user_by_token(request): serializer = UserSerializer(request.user) return Response(serializer.data, status=status.HTTP_200_OK) class SoftDeleteViewSet(viewsets.ModelViewSet): def destroy(self, request, *args, **kwargs): try: return super().destroy(request, *args, **kwargs) except Http404: return Response(status=status.HTTP_204_NO_CONTENT) class UserViewSet(SoftDeleteViewSet): queryset = CustomUser.objects.all() serializer_class = CustomUserSerializer permission_classes = [] # Users are public whereas the other requests are only for logged users def get_serializer_class(self): # Use UserSerializer for other actions (e.g., create, retrieve) if self.action in ['create', 'retrieve']: return UserSerializer return self.serializer_class class ClubViewSet(SoftDeleteViewSet): queryset = Club.objects.all() serializer_class = ClubSerializer permission_classes = [IsClubOwner] # Clubs are public whereas the other requests are only for logged users def perform_create(self, serializer): serializer.save(creator=self.request.user) class TournamentViewSet(SoftDeleteViewSet): queryset = Tournament.objects.all() serializer_class = TournamentSerializer def get_queryset(self): if self.request.user.is_anonymous: return [] return self.queryset.filter(event__creator=self.request.user) def perform_create(self, serializer): serializer.save() # version check app_version = self.request.headers.get('App-Version') self.warn_if_version_is_too_small(app_version) def warn_if_version_is_too_small(self, version): if check_version_smaller_than_1_1_12(version): message = f'{self.request.user.username} app version is {version}' send_discord_log_message(message) class PurchaseViewSet(SoftDeleteViewSet): queryset = Purchase.objects.all() serializer_class = PurchaseSerializer def get_queryset(self): if self.request.user: return self.queryset.filter(user=self.request.user) return [] def create(self, request, *args, **kwargs): id = request.data.get('id') if Purchase.objects.filter(id=id).exists(): return Response({"detail": "This transaction id is already registered."}, status=status.HTTP_208_ALREADY_REPORTED) serializer = self.get_serializer(data=request.data) serializer.is_valid(raise_exception=True) self.perform_create(serializer) headers = self.get_success_headers(serializer.data) return Response(serializer.data, status=status.HTTP_201_CREATED, headers=headers) def patch(self, request, pk): raise MethodNotAllowed('PATCH') def delete(self, request, pk): raise MethodNotAllowed('DELETE') class ChangePasswordView(UpdateAPIView): serializer_class = ChangePasswordSerializer def update(self, request, *args, **kwargs): serializer = self.get_serializer(data=request.data) serializer.is_valid(raise_exception=True) user = serializer.save() # if using drf authtoken, create a new token if hasattr(user, 'auth_token'): user.auth_token.delete() token, created = Token.objects.get_or_create(user=user) # return new token return Response({'token': token.key}, status=status.HTTP_200_OK) class EventViewSet(SoftDeleteViewSet): queryset = Event.objects.all() serializer_class = EventSerializer def get_queryset(self): if self.request.user.is_anonymous: return [] # return self.queryset.filter(creator=self.request.user) return self.queryset.filter( Q(creator=self.request.user) ) class RoundViewSet(SoftDeleteViewSet): queryset = Round.objects.all() serializer_class = RoundSerializer def get_queryset(self): tournament_id = self.request.query_params.get('store_id') or self.request.query_params.get('tournament') if tournament_id: return self.queryset.filter(tournament=tournament_id) if self.request.user: return self.queryset.filter(tournament__event__creator=self.request.user) return [] class GroupStageViewSet(SoftDeleteViewSet): queryset = GroupStage.objects.all() serializer_class = GroupStageSerializer def get_queryset(self): tournament_id = self.request.query_params.get('store_id') or self.request.query_params.get('tournament') if tournament_id: return self.queryset.filter(tournament=tournament_id) if self.request.user: return self.queryset.filter(tournament__event__creator=self.request.user) return [] class MatchViewSet(SoftDeleteViewSet): queryset = Match.objects.all() serializer_class = MatchSerializer def get_queryset(self): tournament_id = self.request.query_params.get('store_id') or self.request.query_params.get('tournament') if tournament_id: return self.queryset.filter(Q(group_stage__tournament=tournament_id) | Q(round__tournament=tournament_id)) if self.request.user: return self.queryset.filter(Q(group_stage__tournament__event__creator=self.request.user) | Q(round__tournament__event__creator=self.request.user)) return [] class TeamScoreViewSet(SoftDeleteViewSet): queryset = TeamScore.objects.all() serializer_class = TeamScoreSerializer def get_queryset(self): tournament_id = self.request.query_params.get('store_id') or self.request.query_params.get('tournament') if tournament_id: q = Q(team_registration__tournament=tournament_id) | Q(match__group_stage__tournament=tournament_id) | Q(match__round__tournament=tournament_id) return self.queryset.filter(q) if self.request.user: return self.queryset.filter(team_registration__tournament__event__creator=self.request.user) return [] class TeamRegistrationViewSet(SoftDeleteViewSet): queryset = TeamRegistration.objects.all() serializer_class = TeamRegistrationSerializer def get_queryset(self): tournament_id = self.request.query_params.get('store_id') or self.request.query_params.get('tournament') if tournament_id: return self.queryset.filter(tournament=tournament_id) if self.request.user: return self.queryset.filter(tournament__event__creator=self.request.user) return [] class PlayerRegistrationViewSet(SoftDeleteViewSet): queryset = PlayerRegistration.objects.all() serializer_class = PlayerRegistrationSerializer def get_queryset(self): tournament_id = self.request.query_params.get('store_id') or self.request.query_params.get('tournament') if tournament_id: return self.queryset.filter(team_registration__tournament=tournament_id) if self.request.user: return self.queryset.filter(team_registration__tournament__event__creator=self.request.user) return [] class CourtViewSet(SoftDeleteViewSet): queryset = Court.objects.all() serializer_class = CourtSerializer class DateIntervalViewSet(SoftDeleteViewSet): queryset = DateInterval.objects.all() serializer_class = DateIntervalSerializer def get_queryset(self): if self.request.user.is_anonymous: return [] return self.queryset.filter( Q(event__creator=self.request.user) ) class FailedApiCallViewSet(viewsets.ModelViewSet): queryset = FailedApiCall.objects.all() serializer_class = FailedApiCallSerializer permission_classes = [] # FailedApiCall are public whereas the other requests are only for logged users def get_queryset(self): return [] def perform_create(self, serializer): if self.request.user.is_anonymous == False: serializer.save(user=self.request.user) else: serializer.save() class LogViewSet(viewsets.ModelViewSet): queryset = Log.objects.all() serializer_class = LogSerializer permission_classes = [] # Log are public whereas the other requests are only for logged users def get_queryset(self): return [] def perform_create(self, serializer): if self.request.user.is_anonymous == False: serializer.save(user=self.request.user) else: serializer.save() class DeviceTokenViewSet(viewsets.ModelViewSet): queryset = DeviceToken.objects.all() serializer_class = DeviceTokenSerializer def get_queryset(self): if self.request.user: return self.queryset.filter(user=self.request.user) return [] def create(self, request, *args, **kwargs): value = request.data.get('value') if DeviceToken.objects.filter(value=value).exists(): return Response({"detail": "This device token is already registered."}, status=208) serializer = self.get_serializer(data=request.data) serializer.is_valid(raise_exception=True) self.perform_create(serializer) headers = self.get_success_headers(serializer.data) return Response(serializer.data, status=status.HTTP_201_CREATED, headers=headers) def perform_create(self, serializer): serializer.save(user=self.request.user) class DrawLogViewSet(SoftDeleteViewSet): queryset = DrawLog.objects.all() serializer_class = DrawLogSerializer def get_queryset(self): tournament_id = self.request.query_params.get('tournament') or self.request.query_params.get('tournament') if tournament_id: return self.queryset.filter(tournament=tournament_id) if self.request.user: return self.queryset.filter(tournament__event__creator=self.request.user) return [] class UnregisteredTeamViewSet(SoftDeleteViewSet): queryset = UnregisteredTeam.objects.all() serializer_class = UnregisteredTeamSerializer def get_queryset(self): tournament_id = self.request.query_params.get('tournament') if tournament_id: return self.queryset.filter(tournament=tournament_id) if self.request.user: return self.queryset.filter(tournament__event__creator=self.request.user) return [] class UnregisteredPlayerViewSet(SoftDeleteViewSet): queryset = UnregisteredPlayer.objects.all() serializer_class = UnregisteredPlayerSerializer def get_queryset(self): tournament_id = self.request.query_params.get('tournament') if tournament_id: return self.queryset.filter(unregistered_team__tournament=tournament_id) if self.request.user: return self.queryset.filter(unregistered_team__tournament__event__creator=self.request.user) return [] class ShortUserViewSet(viewsets.ModelViewSet): queryset = CustomUser.objects.all() serializer_class = ShortUserSerializer permission_classes = [] # Users are public whereas the other requests are only for logged users