2fhx[ ~ddlmZmZmZmZddlmZddlmZddl m Z m Z ddl m Z ddlmZddlmZmZddlmZd d lmZmZmZmZd d lmZdd lmZmZdd lmZddl m!Z!ddlmZmZddlmZd dlm"Z"mZd dlm#Z#m$Z$m%Z%m&Z&m'Z'm(Z(m)Z)m*Z*m+Z+GddeZ,GddejZZ.Gddej^Z0GddejZZ1GddejZZ2GddejfZ4edgdde'ejjd !Gd"d#ej^Z6edgd$d%e&e'ejjejjd&'Gd(d)ejnZ8edgd*d+d,d-d.d/d0d1d2id3ie'ejjd4'Gd5d6ejnZ9edgd7d8d,d-d9d/d0d:d2id3ie'ejjd4'Gd;dd?e(ejjejjd4'Gd@dAejfZ;ed=gdBe)e)ejjd4CGdDdEejxZ=ed=gdFdGedHej|ej~dIJgdKe*dLMiNGdOdPejZZ@ed=gdQdRejjejjdS!GdTdUejZBed=gdVdWdKejji!GdXdYejnZCed=gdZd[dKe+i!Gd\d]ej^ZDy^)_)generics permissionsstatus serializers)Response)PageNumberPagination)UserGroup)Q)timezone) extend_schemaOpenApiParameter) OpenApiTypes)IsSuperAdminOrAdminIsSuperAdminOrOwnerOrCreatedBy IsAdminRoleIsAdminOrOwnerOrCreatedBy) UserProfile)api_viewpermission_classes)logout)Session) LoginSessionr) UserListSerializerUserDetailSerializerRoleSerializerUserProfileUpdateSerializerUserProfileDetailSerializerChangePasswordSerializerTwoFactorSettingsSerializerLoginSessionSerializerSecuritySettingsSerializerc"eZdZdZdZdZdZdZy)UserPaginationz"Custom pagination for user listing page_sizedc tdd|jjj|jjj|jj |j |j|dS)NTzUsers retrieved successfully)successmessagecount page_count current_pagenextpreviousresults)rpage paginatorr, num_pagesnumber get_next_linkget_previous_link)selfdatas /backend/users/views/users.pyget_paginated_responsez%UserPagination.get_paginated_responsesh5YY((..))--77 II,,&&(..0   N)__name__ __module__ __qualname____doc__r'page_size_query_param max_page_sizer;r<r:r%r%s,I'M  r<r%c eZdZdZeZeZegZ e ddde de je jde de je jd gd ed id gfdZdZxZS) UserListViewzLAPI View to get users (Super Admin = all users, Admin = hierarchical access) list_usersz Get All UserszMSuper Admins see all users, Admins see only accessible users (own + created). is_activez$Filter by active status (true/false)nametypelocation descriptionsearchz3Search in username, first name, last name, or emailTmanyUser Management) operation_idsummaryrL parameters responsestagsc*t||g|i|SNsuperlistr8requestargskwargs __class__s r:getzUserListView.get/s,w|G5d5f55r<c|jj} |j}|jr.tj j jd}n~|jg}tj j|jdd}|j|tj j|jd}|jj"j%d d }|#|j|j'd k( }|jj"j%d d }|B|jt)|t)|zt)|zt)|z}|S#tj$r|jjdjr|jg}tj j|jdd}|j|tj j|jd}ntj j!}YwxYw)z'Return users based on user's privileges -date_joinedprofile__created_byidTflatid__inAdmin)rIrGNtruerGrM)username__icontains)first_name__icontains)last_name__icontains)email__icontains)r]userprofile super_adminr objectsallorder_byrffilter values_listextendr DoesNotExistgroupsexistsnone query_paramsralowerr )r8 current_userrsquerysetaccessible_user_ids created_usersrGrMs r: get_querysetzUserListView.get_querysetGs||((  /"**G""<<++-66~F(4&7# $ 3 3(4!4!+d+.$**=9<<..6I.JSSTbcLL--11+tD  1Bf1LMH**..x>  f-/0v./6*+H5'' /""))w)7>>@'3&7# $ 3 3(4!4!+d+.$**=9<<..6I.JSSTbc<<,,. /sCFCI10I1)r=r>r?r@rserializer_classr%pagination_classrrr rrBOOLQUERYSTRrar __classcell__r`s@r:rErE)sV)%-.!c  !&&)//B   !%%)//Q    *56 '*6+*6,r<rEceZdZdZej j ZeZ e e gZ dZ eddddeidgd Zy ) UserDetailViewz'API View to get individual user detailsrf retrieve_userzGet User DetailszYRetrieve user details. Super Admins can access any user, Admins have hierarchical access.rNrQrRrSrLrUrVc |j}|j|}tdd|jdS#tj $r"tddddt jcYSwxYw)NTz#User details retrieved successfullyr*r+r9FzUser not found or access deniedr) get_objectget_serializerrr9r r{rHTTP_404_NOT_FOUNDr8r]r^r_instance serializers r:retrievezUserDetailView.retrieve|s 1(H,,X6J@"     1 <// 1 1 1s9<2A10A1N)r=r>r?r@r rurvrrrrrr lookup_fieldr rrCr<r:rrus]1||!H+-/MNL$"o,- 11r<rc jeZdZdZeZeZegZ e ddddedidg fd Z d Z xZ S) ActiveUsersViewz!API View to get only active userslist_active_userszGet Active Users OnlyzXGet active users. Super Admins see all active users, Admins see accessible active users.rNTrOrQrc*t||g|i|SrXrYr\s r:razActiveUsersView.getsw|G5d5f55r<cX|jj} |j}|jr1tj j djd}|S|jg}tj j |jdd}|j|tj j |djd} |S#tj$r3tj j djd}Y|SwxYw)NTrmrcrdrfrg)rjrG) r]rrrsrtr rurxrwrfryrzrr{)r8rrsrrrs r:rzActiveUsersView.get_querysets||((  T"**G""<<...>GGW (4&7# $ 3 3(4!4!+d+.$**=9<<..."/(>* '' T||**T*:CCNSH  TsAC#!A?C##AD)(D))r=r>r?r@rrr%rrrr rarrrs@r:rrsT+)%-.('n*56 66r<rceZdZdZej j ZeZ e jgZ e dddedejddg fd ZxZS) RoleListViewz#API View to get all available roles list_rolesz Get All Rolesz3Retrieve a list of all available user roles/groups.TrOrNrQrc*t||g|i|SrXrYr\s r:razRoleListView.getsw|G5d5f55r<)r=r>r?r@r rurvrrrrIsAuthenticatedrr rOBJECTrarrs@r:rrsk-}}  "H%%556!IT*$$   6 6r<rc eZdZdZej j ZeZ e je jgZ dZeddddddd d d id d idieej"ej"ddgdZy)UserRoleUpdateViewzAPI View to update user rolesrfupdate_user_roleszUpdate User Rolesz-Update the roles assigned to a specific user.zapplication/jsonobjectrole_idsarrayrJintegerz'Array of role IDs to assign to the user)rJitemsrLrJ properties)rNrrQ)rRrSrLr]rUrVc\|j}|jjdg}|jj |r;t j j|}|jj||j|}tdd|jdS)NrriTzUser roles updated successfullyr) rr9rar|clearr rurxsetrr)r8r]r^r_rrrrolesrs r:patchzUserRoleUpdateView.patchs0 <<##J3  MM(((9E KKOOE "((. 8OO   r<N)r=r>r?r@r rurvrrrrr IsAdminUserrrr rrrrCr<r:rrs'||!H+%55{7N7NOL(#C   '"()!4'P! !  &$$$$  +. /. r<rz User Profile&Get current user's profile informationz=Retrieve complete profile information for the logged-in user.r)rVrSrLrUc:eZdZdZeZejgZdZ dZ y)CurrentUserProfileViewrc.|jjSrXr]rrr8s r:rz!CurrentUserProfileView.get_object ||   r<cv|j}|j|}tdd|jdS)NTz#User profile retrieved successfullyrrrrr9rs r:rzCurrentUserProfileView.retrieves=??$((2 <OO   r<N) r=r>r?r@rrrrrrrrCr<r:rrs&12%556! r<r)Update current user's profile informationzoUpdate profile information for the logged-in user including personal details, company info, and profile images.)rNr)rVrSrLr]rUc:eZdZdZeZejgZdZ dZ y)UpdateUserProfileViewrc.|jjSrXrrs r:rz UpdateUserProfileView.get_object)rr<c|j}|j||jd}|jr4|j }t |}t dd|jdSt dd|jdd S) NTr9partialzProfile updated successfullyrFzValidation errorr*r+errorsrr)rrr9is_validsaverrr)r8r]r^r_rr updated_userresponse_serializers r:postzUpdateUserProfileView.post,s??$(( d(S    %??,L#>l"K 9+00  ) ''   r<N) r=r>r?r@rrrrrrrrCr<r:rrs&42%556!r<rzUpload and update profile imagez;Upload a new profile image and update the user's image_url.zmultipart/form-datar image_urlstringurizURL of the uploaded image)rJformatrLr)rNrcNeZdZdZej ZejgZ dZ dZ y)UpdateProfileImageViewzUpdate user's profile imagec.|jjSrXrrs r:rz!UpdateProfileImageView.get_object[rr<c8|j}|jjd}|stddddStj j |\}}||_|jt|}tdd |jd S) NrFzimage_url is requiredr*r+rrrrTz"Profile image updated successfullyr) rr9rarrru get_or_createrrr) r8r]r^r_rrrrscreatedrs r:rzUpdateProfileImageView.post^s LL$$[1  2  '..<<$<G% :$?;',,   r<N r=r>r?r@r SerializerrrrrrrrCr<r:rrAs,,&"--%556! r<rzUpload and update company logozAUpload a new company logo and update the user's company_logo_url.company_logo_urlz URL of the uploaded company logocNeZdZdZej ZejgZ dZ dZ y)UpdateCompanyLogoViewzUpdate user's company logoc.|jjSrXrrs r:rz UpdateCompanyLogoView.get_objectrr<c8|j}|jjd}|stddddStj j |\}}||_|jt|}tdd |jd S) NrFzcompany_logo_url is requiredrrrrTz!Company logo updated successfullyr) rr9rarrrurrrr) r8r]r^r_rrlogo_urlrsrrs r:rzUpdateCompanyLogoView.posts <<##$67 9  '..<<$<G#+  :$?:',,   r<NrrCr<r:rrus,,%"--%556! r<rz User SecurityChange user passwordz5Change the password for the currently logged-in user.c:eZdZdZeZejgZdZ dZ y)ChangePasswordViewrc.|jjSrXrrs r:rzChangePasswordView.get_objectrr<c|j|j}|jr|j|jj }|rKt jj|jdj|jdtdddStdd |jd d S) N)r9TrrrG session_keyFrmzJPassword changed successfully. Please log in again with your new password.rzPassword change failedrrr)rr9rrsessionrrrurxrrexcludeupdaterr)r8r]r^r_rcurrent_session_keys r:rzChangePasswordView.updates((gll(;    OO #*//"="= "$$++ ",'&9':66E6;Rg  / ''   r<N) r=r>r?r@r rrrrrrrCr<r:rrs&/%556!r<rzGet/Update 2FA settings)rVrSr]rUc@eZdZdZeZejgZdZ dZ dZ y)TwoFactorSettingsViewzGet and update 2FA settingscttjj|jj\}}|SNrrrurr]rrr8rsrs r:rz TwoFactorSettingsView.get_object/&..<<$,,BSBS<Tr<ct|j}|j|}td|jdSNT)r*r9rrs r:rzTwoFactorSettingsView.retrieves:??$((2 OO   r<c|j}|j||jd}|jr)|j t dd|jdSt d|j ddS) NTrz!2FA settings updated successfullyrF)r*rrr)rrr9rrrrrs r:rzTwoFactorSettingsView.updates??$(( d(S    OO >"   ''  r<N) r=r>r?r@r!rrrrrrrrCr<r:rrs+&2%556 r<rGet user's login sessionsz6Get a list of all login sessions for the current user. active_onlyz#Filter to show only active sessionsrHrNTrO)rVrSrLrTrUc:eZdZdZeZejgZdZ dZ y)LoginSessionsListViewrctjj|jj}|jj j ddjdk(}|r|jd}|S)NrrrlTrm)rrurxr]rrrrar)r8rrs r:rz"LoginSessionsListView.get_querysetsj''..DLL4E4E.Fll//33M2FLLNRXX 6Hr<c|j}|j|d}tdd|j|jdS)NTrOz%Login sessions retrieved successfully)r*r+r,r9)rrrr,r9)r8r]r^r_rrs r:r[zLoginSessionsListView.listsN$$&(((= >^^%OO    r<N) r=r>r?r@r"rrrrrr[rCr<r:rrs&$-%556  r<rz"Terminate a specific login sessionz1Terminate a specific login session by session ID.)rNrc0eZdZdZej gZdZy)TerminateSessionViewzTerminate a specific sessionc tjj||j}d|_t j |_|j tjj|j}|jtdddS#tj$rY#wxYw#tj$rtdddd cYSwxYw) N)rfrrFrTzSession terminated successfullyrzSession not foundrr)rrurarrrGr now logout_timerrrdeleter{r)r8r] session_idr^r_ login_sessiondjango_sessions r:rzTerminateSessionView.delete5s (0044\\5M ',M #(0 M %     !(!4!4AZAZ!4![%%'< ''  ((  .  s6AB?:B& B?&B<9B?;B<<B??#C%$C%N)r=r>r?r@rrrrrCr<r:rr(s'%556r<rzTerminate all other sessionsz4Terminate all login sessions except the current one.c0eZdZdZej gZdZy)TerminateAllOtherSessionsViewz+Terminate all other sessions except currentc|jj}tjj |j d}|r|j |}|jdtj}|D]=} tjj|j}|j?tdd|ddS#tj$rYgwxYw) NTrrF)rGrz Terminated z other sessions successfullyr)rrrrurxrrrrr rrrarr{r) r8r]r^r_rother_sessionsterminated_countr r s r:rz"TerminateAllOtherSessionsView.post]s%oo99&--445  +33@S3TN*00 1  ,M !(!4!4AZAZ!4![%%',$%5$66RS   ''  s:CC%$C%N)r=r>r?r@rrrrrCr<r:r r Ss6%556 r<r Get security overviewz@Get an overview of user's security settings and active sessions.c:eZdZdZeZejgZdZ dZ y)SecurityOverviewViewrcttjj|jj\}}|Srrrs r:rzSecurityOverviewView.get_objectrr<ct|j}|j|}td|jdSrrrs r:rzSecurityOverviewView.retrieves:??$((2 OO   r<N) r=r>r?r@r#rrrrrrrCr<r:rr|s& 1%556 r<rN)Erest_frameworkrrrrrest_framework.responserrest_framework.paginationrdjango.contrib.auth.modelsr r django.db.modelsr django.utilsr drf_spectacular.utilsr rdrf_spectacular.typesrrrrrmodelsrrest_framework.decoratorsrrdjango.contrib.authrdjango.contrib.sessions.modelsrrrrrrrr r!r"r#r% ListAPIViewrERetrieveAPIViewrrr UpdateAPIViewrrr CreateAPIViewrrrrRetrieveUpdateAPIViewrrrrDestroyAPIViewrr rrCr<r:r(sEE,:2!A.tt B&2A..  ) $J8''JX1X--1<(h**(T68''6&- //- ^   4O (    X55  "   7B ' (    H22 :   -M$##>  )  !* X33 +* >   ,S"$##E%  )  !* H22 +* >   "G $     //   D   % ' (    H::  D   'H""%++=  *56  H00   4   0C     822  D   *FL''(  ! H$:$:!  ! F   #R./   833   r<