| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326 |
- # coding=utf-8
- import traceback
- import json
- from django.db.models import Q
- from rest_framework.decorators import action
- from django.db import transaction
- from rest_framework.views import APIView
- from rest_framework.serializers import ValidationError
- from utils.permission import permission_required, isLogin, check_permission
- from django.contrib.auth.models import Group, Permission
- from rest_framework_jwt.views import ObtainJSONWebToken, VerifyJSONWebToken, RefreshJSONWebToken
- from utils import response_error, response_ok
- from django.contrib.auth import get_user_model
- User = get_user_model()
- from apps.account.serializers import JWTSerializer, EmployeeSerializer, GroupDictSerializer, GroupSerializer
- from utils.custom_modelviewset import CustomModelViewSet
- from apps.account.filters import UserFilter, GroupFilter
- from apps.account.models import ManageStoreUser
- from apps.log.models import BizLog
- from apps.account.consts import PermissionMenu
- from collections import OrderedDict
- from apps.agent.models import Store, Agent,GeneralAgent
- from utils.exceptions import CustomError
- class LoginView(ObtainJSONWebToken):
- serializer_class = JWTSerializer
- def post(self, request, *args, **kwargs):
- try:
- ser = self.serializer_class(data=request.data)
- ser.request = request
- # TODO 判断门店是否在用、在有效期内
- if ser.is_valid(raise_exception=True):
- return response_ok(ser.validated_data)
- except ValidationError as e:
- return response_error(e.detail['error'][0])
- class RefreshTokenView(RefreshJSONWebToken):
- def post(self, request, *args, **kwargs):
- try:
- ser = self.serializer_class(data=request.data)
- if ser.is_valid(raise_exception=True):
- return response_ok({'token': ser.validated_data['token']})
- except ValidationError as e:
- return response_error(u'登录状态失效,请重新登录')
- class EmployeeViewSet(CustomModelViewSet):
- permission_classes = [isLogin, ]
- queryset = User.objects.filter()
- serializer_class = EmployeeSerializer
- @permission_required('account.browse_user')
- def filter_queryset(self, queryset):
- queryset = queryset.filter()
- user = self.request.user
- queryset = queryset.filter(
- Q(store_id__in=self.request.user.get_manager_range()) |
- Q(id=user.id) |
- Q(create_user=user) |
- Q(agent__create_user=user) |
- Q(general_agent__create_user=user)
- )
- f = UserFilter(self.request.GET, queryset=queryset)
- return f.qs
- @permission_required('account.add_user')
- def perform_create(self, serializer):
- super(EmployeeViewSet, self).perform_create(serializer)
- instance = serializer.instance
- validated_data = serializer.validated_data
- BizLog.objects.addnew(self.request.user, BizLog.INSERT,
- u'添加用户[%s],id=%d' % (instance.name, instance.id), validated_data)
- @permission_required('account.add_user')
- def perform_update(self, serializer):
- super(EmployeeViewSet, self).perform_update(serializer)
- instance = serializer.instance
- validated_data = serializer.validated_data
- BizLog.objects.addnew(self.request.user, BizLog.UPDATE,
- u'修改用户[%s],id=%d' % (instance.name, instance.id), validated_data)
- @permission_required('account.delete_user')
- def perform_destroy(self, instance):
- ManageStoreUser.objects.filter(manage_user=instance).delete()
- BizLog.objects.filter(user=instance).delete()
- BizLog.objects.addnew(self.request.user, BizLog.DELETE,
- u'删除账号[%s],id=%d' % (instance.username, instance.id))
- super(EmployeeViewSet, self).perform_destroy(instance)
- @action(methods=['post'], detail=True)
- def join(self, request, pk):
- check_permission(request, 'account.check_user')
- try:
- with transaction.atomic():
- instance = self.get_object()
- instance.check_user = request.user
- instance.status = User.INSERVICE
- instance.save()
- BizLog.objects.addnew(self.request.user, BizLog.INSERT,
- u'员工[%s]入职,id=%d' % (instance.name, instance.id))
- return response_ok()
- except Exception as e:
- traceback.print_exc()
- return response_error(u'入职失败')
- @action(methods=['post'], detail=True)
- def branch(self, request, pk):
- check_permission(request, 'account.manager_store')
- data = json.loads(request.POST.get('sotres'))
- try:
- with transaction.atomic():
- instance = self.get_object()
- ManageStoreUser.objects.filter(manage_user_id=pk).delete()
- for row in data:
- ManageStoreUser.objects.create(store_id=row, manage_user_id=pk)
- BizLog.objects.addnew(self.request.user, BizLog.INSERT,
- u'设置账号[%s]管理门店,id=%d' % (instance.username, instance.id), data)
- return response_ok()
- except Exception as e:
- traceback.print_exc()
- return response_error(u'保存失败')
- class GroupsViewSet(CustomModelViewSet):
- permission_classes = [isLogin, ]
- queryset = Group.objects.filter()
- serializer_class = GroupSerializer
- @permission_required('account.manager_permissions')
- def filter_queryset(self, queryset):
- if not self.request.user.is_superuser:
- groups = self.request.user.groups.all()
- queryset = queryset.filter(id__in=[g.id for g in groups])
- f = GroupFilter(self.request.GET, queryset=queryset)
- return f.qs
- @permission_required('account.manager_permissions')
- def perform_create(self, serializer):
- super(GroupsViewSet, self).perform_create(serializer)
- instance = serializer.instance
- validated_data = serializer.validated_data
- BizLog.objects.addnew(self.request.user, BizLog.INSERT,
- u'添加权限组[%s],id=%d' % (instance.name, instance.id), validated_data)
- @permission_required('account.manager_permissions')
- def perform_update(self, serializer):
- super(GroupsViewSet, self).perform_update(serializer)
- instance = serializer.instance
- validated_data = serializer.validated_data
- BizLog.objects.addnew(self.request.user, BizLog.UPDATE,
- u'修改权限组[%s],id=%d' % (instance.name, instance.id), validated_data)
- @permission_required('account.manager_permissions')
- def destroy(self, request, *args, **kwargs):
- with transaction.atomic():
- instance = self.get_object()
- # user_count = instance.user_set.all().count()
- # if user_count:
- # raise CustomError(u'该权限组已分配给用户,禁止删除!')
- BizLog.objects.addnew(self.request.user, BizLog.DELETE,
- u'删除权限组[%s],id=%d' % (instance.name, instance.id))
- instance.delete()
- return response_ok()
- class PermissionsListView(APIView):
- permission_classes = [isLogin, ]
- @permission_required('account.manager_permissions')
- def get(self, request):
- rows = Permission.objects.all().exclude(name__startswith='Can')
- perms_menus = PermissionMenu()
- rows = perms_menus.sort_perms(rows)
- menus = OrderedDict()
- for row in rows:
- item = {'id': row.id, 'name': row.name}
- mn = perms_menus.get_menuname_of_contenttype(row.content_type.app_label, row.content_type.model)
- if mn in menus:
- permissions = menus[mn]
- else:
- permissions = menus[mn] = OrderedDict()
- if row.content_type.name in permissions:
- if not item in permissions[row.content_type.name]:
- permissions[row.content_type.name].append(item)
- else:
- permissions[row.content_type.name] = [item, ]
- return response_ok(menus)
- class PermissionDictView(APIView):
- permission_classes = [isLogin, ]
- @permission_required('account.add_user')
- def get(self, request):
- rows = Group.objects.filter()
- if not request.user.is_superuser:
- groups = request.user.groups.all()
- rows = rows.filter(id__in=[g.id for g in groups])
- serializer = GroupDictSerializer(rows, many=True)
- return response_ok(serializer.data)
- class StoreTreeView(APIView):
- permission_classes = [isLogin, ]
- @permission_required('account.manager_store')
- def get(self, request):
- id = request.GET.get('id')
- store_data = []
- # 查询当前用户的代理商和管理的门店
- agents = Agent.objects.filter()
- if not request.user.is_superuser:
- agents = agents.filter(id=request.user.agent_id)
- agents = agents.values('id', 'name')
- for agent in agents:
- item = {
- 'title': agent['name'],
- 'id': agent['id'],
- 'field': 'agent',
- 'children': [],
- }
- stores = Store.objects.filter(agent_id=agent['id'], enable=True).values('id', 'name')
- for store in stores:
- manage_store = ManageStoreUser.objects.filter(manage_user_id=id, store_id=store['id']).first()
- checked = manage_store and True or False
- store_item = {
- 'title': store['name'],
- 'id': store['id'],
- 'checked': checked,
- 'field': 'store_{}'.format(store['id']),
- }
- item['checked'] = checked
- item['children'].append(store_item)
- store_data.append(item)
- return response_ok(store_data)
- class EmployeeTreeView(APIView):
- permission_classes = [isLogin, ]
- def get(self, request):
- id = request.GET.get('id')
- employee_data = []
- # 查询当前用户的代理商账号和门店人员账号
- employees = User.objects.filter()
- general_agents = GeneralAgent.objects.filter()
- agents = Agent.objects.filter()
- stores = Store.objects.filter()
- manage_user = ManageStoreUser.objects.filter(manage_user_id=request.user.id)
- if not request.user.is_superuser:
- general_agents = general_agents.filter(id=request.user.general_agent_id)
- if request.user.agent:
- general_agents = None
- agents = Agent.objects.filter(id=request.user.agent_id,
- general_agent_id=request.user.general_agent_id)
- if request.user.store:
- if not manage_user:
- raise CustomError(u'无人员查看权限!')
- general_agents = None
- agents = Agent.objects.filter(id=request.user.agent_id,
- general_agent_id=request.user.general_agent_id)
- stores = Store.objects.filter(id=request.user.store_id, enable=True)
- if general_agents:
- general_agents = general_agents.values('id', 'name')
- for general_agent in general_agents:
- general_agent_item = {
- 'title': general_agent['name'],
- 'id': general_agent['id'],
- 'field': 'general_agent',
- 'children': [],
- }
- general_agent_user = employees.filter(general_agent_id=general_agent['id'], agent__isnull=True).first()
- if general_agent_user:
- general_agent_user_item = {
- 'title': general_agent_user.name,
- 'id': general_agent_user.id,
- 'field': 'general_agent_user',
- }
- general_agent_item['children'].append(general_agent_user_item)
- employee_data.append(general_agent_item)
- agents = agents.values('id', 'name')
- for agent in agents:
- agent_item = {
- 'title': agent['name'],
- 'id': agent['id'],
- 'field': 'agent',
- 'children': [],
- }
- agent_user = employees.filter(agent_id=agent['id'], store__isnull=True).first()
- if agent_user and not request.user.store:
- agent_user_item = {
- 'title': agent_user.name,
- 'id': agent_user.id,
- 'field': 'agent_user',
- }
- agent_item['children'].append(agent_user_item)
- stores = stores.values('id', 'name')
- for store in stores:
- store_item = {
- 'title': store['name'],
- 'id': store['id'],
- 'field': 'store_{}'.format(store['id']),
- 'children': [],
- }
- agent_item['children'].append(store_item)
- store_users = employees.filter(store_id=store['id'])
- for store_user in store_users:
- store_user_item = {
- 'title': store_user.name,
- 'id': store_user.id,
- 'field': 'store_user_{}'.format(store_user.id),
- }
- store_item['children'].append(store_user_item)
- employee_data.append(agent_item)
- return response_ok(employee_data)
|
