Mercurial Repository: p/roundup/code: roundup/rest.py comparison

comparison roundup/rest.py @ 5582:519b7fd8c8c3 REST-rebased

Added docstring committer: Ralf Schlatterbeck <rsc@runtux.com>

author	Chau Nguyen <dangchau1991@yahoo.com>
date	Wed, 30 Jan 2019 10:26:35 +0100
parents	30793a435185
children	c65d98a16780

comparison

equal deleted inserted replaced

-:30793a435185
+:519b7fd8c8c3
 from roundup.exceptions import *
 from roundup import xmlrpc
 class RestfulInstance(object):
-"""Dummy Handler for REST
+"""The RestfulInstance performs REST request from the client"""
-"""
 def __init__(self, client, db):
 self.client = client  # it might be unnecessary to receive the client
 self.db = db
 host = self.client.env['HTTP_HOST']
 tracker = self.client.env['TRACKER_NAME']
 self.base_path = '%s://%s/%s/rest/' % (protocol, host, tracker)
 def props_from_args(self, cl, args, itemid=None):
+"""Construct a list of properties from the given arguments,
+and return them after validation.
+Args:
+cl (string): class object of the resource
+args (list): the submitted form of the user
+itemid (string, optional): itemid of the object
+Returns:
+dict: dictionary of validated properties
+"""
 class_props = cl.properties.keys()
 props = {}
 # props = dict.fromkeys(class_props, None)
 for arg in args:
 return props
 @staticmethod
 def error_obj(status, msg, source=None):
+"""Wrap the error data into an object. This function is temporally and
+will be changed to a decorator later."""
 result = {
 'error': {
 'status': status,
 'msg': msg
 }
 return result
 @staticmethod
 def data_obj(data):
+"""Wrap the returned data into an object. This function is temporally
+and will be changed to a decorator later."""
 result = {
 'data': data
 }
 return result
 def get_collection(self, class_name, input):
+"""GET resource from class URI.
+This function returns only items have View permission
+class_name should be valid already
+Args:
+class_name (string): class name of the resource (Ex: issue, msg)
+input (list): the submitted form of the user
+Returns:
+int: http status code 200 (OK)
+list: list of reference item in the class
+id: id of the object
+link: path to the object
+"""
 if not self.db.security.hasPermission(
 'View', self.db.getuid(), class_name
 ):
 raise Unauthorised('Permission to view %s denied' % class_name)
 ]
 self.client.setHeader("X-Count-Total", str(len(result)))
 return 200, result
 def get_element(self, class_name, item_id, input):
+"""GET resource from object URI.
+This function returns only properties have View permission
+class_name and item_id should be valid already
+Args:
+class_name (string): class name of the resource (Ex: issue, msg)
+item_id (string): id of the resource (Ex: 12, 15)
+input (list): the submitted form of the user
+Returns:
+int: http status code 200 (OK)
+dict: a dictionary represents the object
+id: id of the object
+type: class name of the object
+link: link to the object
+attributes: a dictionary represent the attributes of the object
+"""
 if not self.db.security.hasPermission(
 'View', self.db.getuid(), class_name, itemid=item_id
 ):
 raise Unauthorised(
 'Permission to view %s item %d denied' % (class_name, item_id)
 }
 return 200, result
 def post_collection(self, class_name, input):
+"""POST a new object to a class
+If the item is successfully created, the "Location" header will also
+contain the link to the created object
+Args:
+class_name (string): class name of the resource (Ex: issue, msg)
+input (list): the submitted form of the user
+Returns:
+int: http status code 201 (Created)
+dict: a reference item to the created object
+id: id of the object
+link: path to the object
+"""
 if not self.db.security.hasPermission(
 'Create', self.db.getuid(), class_name
 ):
 raise Unauthorised('Permission to create %s denied' % class_name)
 'link': link
 }
 return 201, result
 def post_element(self, class_name, item_id, input):
+"""POST to an object of a class is not allowed"""
 raise Reject('POST to an item is not allowed')
 def put_collection(self, class_name, input):
+"""PUT a class is not allowed"""
 raise Reject('PUT a class is not allowed')
 def put_element(self, class_name, item_id, input):
+"""PUT a new content to an object
+Replace the content of the existing object
+Args:
+class_name (string): class name of the resource (Ex: issue, msg)
+item_id (string): id of the resource (Ex: 12, 15)
+input (list): the submitted form of the user
+Returns:
+int: http status code 200 (OK)
+dict: a dictionary represents the modified object
+id: id of the object
+type: class name of the object
+link: link to the object
+attributes: a dictionary represent only changed attributes of
+the object
+"""
 class_obj = self.db.getclass(class_name)
 props = self.props_from_args(class_obj, input.value, item_id)
 for p in props.iterkeys():
 if not self.db.security.hasPermission(
 'attribute': result
 }
 return 200, result
 def delete_collection(self, class_name, input):
+"""DELETE all objects in a class
+Args:
+class_name (string): class name of the resource (Ex: issue, msg)
+input (list): the submitted form of the user
+Returns:
+int: http status code 200 (OK)
+dict:
+status (string): 'ok'
+count (int): number of deleted objects
+"""
 if not self.db.security.hasPermission(
 'Delete', self.db.getuid(), class_name
 ):
 raise Unauthorised('Permission to delete %s denied' % class_name)
 }
 return 200, result
 def delete_element(self, class_name, item_id, input):
+"""DELETE an object in a class
+Args:
+class_name (string): class name of the resource (Ex: issue, msg)
+item_id (string): id of the resource (Ex: 12, 15)
+input (list): the submitted form of the user
+Returns:
+int: http status code 200 (OK)
+dict:
+status (string): 'ok'
+"""
 if not self.db.security.hasPermission(
 'Delete', self.db.getuid(), class_name, itemid=item_id
 ):
 raise Unauthorised(
 'Permission to delete %s %s denied' % (class_name, item_id)
 }
 return 200, result
 def patch_collection(self, class_name, input):
+"""PATCH a class is not allowed"""
 raise Reject('PATCH a class is not allowed')
 def patch_element(self, class_name, item_id, input):
 try:
 op = input['op'].value.lower()
 'attribute': result
 }
 return 200, result
 def options_collection(self, class_name, input):
+"""OPTION return the HTTP Header for the class uri
+Returns:
+int: http status code 204 (No content)
+body (string): an empty string
+"""
 return 204, ""
 def options_element(self, class_name, item_id, input):
+"""OPTION return the HTTP Header for the object uri
+Returns:
+int: http status code 204 (No content)
+body (string): an empty string
+"""
 self.client.setHeader(
 "Accept-Patch",
 "application/x-www-form-urlencoded, "
 "multipart/form-data"
 )
 return 204, ""
 def dispatch(self, method, uri, input):
+"""format and process the request"""
 # PATH is split to multiple pieces
 # 0 - rest
 # 1 - resource
 # 2 - attribute
 resource_uri = uri.split("/")[1]
 try:
 pretty_output = input['pretty'].value.lower() == "true"
 except KeyError:
 pretty_output = False
+# add access-control-allow-* to support CORS
 self.client.setHeader("Access-Control-Allow-Origin", "*")
 self.client.setHeader(
 "Access-Control-Allow-Headers",
 "Content-Type, Authorization, X-HTTP-Method-Override"
 )
+if resource_uri in self.db.classes:
+self.client.setHeader(
+"Allow",
+"HEAD, OPTIONS, GET, POST, DELETE"
+)
+self.client.setHeader(
+"Access-Control-Allow-Methods",
+"HEAD, OPTIONS, GET, POST, DELETE"
+)
+else:
+self.client.setHeader(
+"Allow",
+"HEAD, OPTIONS, GET, PUT, DELETE, PATCH"
+)
+self.client.setHeader(
+"Access-Control-Allow-Methods",
+"HEAD, OPTIONS, GET, PUT, DELETE, PATCH"
+)
+# Call the appropriate method
 output = None
 try:
 if resource_uri in self.db.classes:
-self.client.setHeader(
-"Allow",
-"HEAD, OPTIONS, GET, POST, DELETE"
-)
-self.client.setHeader(
-"Access-Control-Allow-Methods",
-"HEAD, OPTIONS, GET, POST, DELETE"
-)
 response_code, output = getattr(
 self, "%s_collection" % method.lower()
 )(resource_uri, input)
 else:
 class_name, item_id = hyperdb.splitDesignator(resource_uri)
-self.client.setHeader(
-"Allow",
-"HEAD, OPTIONS, GET, PUT, DELETE, PATCH"
-)
-self.client.setHeader(
-"Access-Control-Allow-Methods",
-"HEAD, OPTIONS, GET, PUT, DELETE, PATCH"
-)
 response_code, output = getattr(
 self, "%s_element" % method.lower()
 )(class_name, item_id, input)
 output = RestfulInstance.data_obj(output)
 self.client.response_code = response_code
 except IndexError, msg:
 output = RestfulInstance.error_obj(404, msg)
 self.client.response_code = 404
 return output
 class RoundupJSONEncoder(json.JSONEncoder):
+"""RoundupJSONEncoder overrides the default JSONEncoder to handle all
+types of the object without returning any error"""
 def default(self, obj):
 try:
 result = json.JSONEncoder.default(self, obj)
 except TypeError:
 result = str(obj)

Mercurial > p > roundup > code

comparison roundup/rest.py @ 5582:519b7fd8c8c3 REST-rebased