server-share/linkdrop/controllers/send.py

import logging
import datetime
import json
import urllib
import sys
import httplib2
import copy
from urlparse import urlparse

from pylons import config, request, response, session
from pylons.controllers.util import abort, redirect
from pylons.decorators.util import get_pylons

from linkdrop.lib.base import BaseController
from linkdrop.lib.helpers import json_exception_response, api_response, api_entry, api_arg
from linkdrop.lib.oauth import get_provider
from linkdrop.lib import constants

from linkdrop.model.meta import Session
from linkdrop.model import History, Link
from linkdrop.model.types import UTCDateTime
from sqlalchemy.orm.exc import NoResultFound, MultipleResultsFound

log = logging.getLogger(__name__)


class SendController(BaseController):
    """
Send
====

The 'send' namespace is used to send updates to our supported services.

"""
    __api_controller__ = True # for docs

    @api_response
    @json_exception_response
    def send(self):
        result = {}
        error = None
        # If we don't have a key in our session we bail early with a
        # 401
        domain = request.POST.get('domain')
        message = request.POST.get('message', '')
        username = request.POST.get('username')
        longurl = request.POST.get('link')
        shorturl = request.POST.get('shorturl')
        userid = request.POST.get('userid')
        to = request.POST.get('to')
        if not domain:
            error = {
                'message': "'domain' is not optional",
                'code': constants.INVALID_PARAMS
            }
            return {'result': result, 'error': error}
        keys = session.get('account_keys', '').split(',')
        if not keys:
            error = {'provider': domain,
                     'message': "no user session exists, auth required",
                     'status': 401
            }
            return {'result': result, 'error': error}

        provider = get_provider(domain)
        # even if we have a session key, we must have an account for that
        # user for the specified domain.
        acct = None
        for k in keys:
            a = session.get(k)
            if a and a.get('domain') == domain and (a.get('username')==username or a.get('userid')==userid):
                acct = a
                break
        if not acct:
            error = {'provider': domain,
                     'message': "not logged in or no user account for that domain",
                     'status': 401
            }
            return {'result': result, 'error': error}

        args = copy.copy(request.POST)
        if not shorturl and longurl:
            u = urlparse(longurl)
            if not u.scheme:
                longurl = 'http://' + longurl
            shorturl = Link.get_or_create(longurl)
            args['shorturl'] = shorturl

        # send the item.
        result, error = provider.api(acct).sendmessage(message, args)

        if error:
            assert not result
            log.info("send failure: %r", error)
        else:
            # create a new record in the history table.
            assert result
            history = History()
            history.account_id = acct.get('id')
            history.published = UTCDateTime.now()
            for key, val in request.POST.items():
                setattr(history, key, val)
            Session.add(history)
            # remove for now until we have a need to do this
            #link = sign_link(shorturl, acct.username)
            Session.commit()
            result['linkdrop'] = history.id
            result['shorturl'] = shorturl
            result['from'] = userid
            result['to'] = to
            log.info("send success - linkdrop id is %s", history.id)
        # no redirects requests, just return the response.
        return {'result': result, 'error': error}
first cut at send 2010-09-02 10:29:21 +04:00			`import logging`
			`import datetime`
			`import json`
			`import urllib`
add url shortening service (our own, disabled, bit.ly, enabled) 2010-09-15 01:18:46 +04:00			`import sys`
fix facebook send make api to be a rest api returning json, no redirects support reauthorizing facebook 2010-09-03 01:02:32 +04:00			`import httplib2`
create and append the short url if it is not in the message 2010-10-15 02:23:16 +04:00			`import copy`
			`from urlparse import urlparse`
first cut at send 2010-09-02 10:29:21 +04:00
			`from pylons import config, request, response, session`
			`from pylons.controllers.util import abort, redirect`
			`from pylons.decorators.util import get_pylons`

			`from linkdrop.lib.base import BaseController`
			`from linkdrop.lib.helpers import json_exception_response, api_response, api_entry, api_arg`
abstract oauth based api's out of the linkdrop api 2010-09-03 02:24:50 +04:00			`from linkdrop.lib.oauth import get_provider`
add constants so an error condition works 2010-10-05 01:44:15 +04:00			`from linkdrop.lib import constants`
first cut at send 2010-09-02 10:29:21 +04:00
			`from linkdrop.model.meta import Session`
avoid querying the accounts table, just rely on the session to store what we need. the accounts table is 'backup' for that. 2010-09-23 04:44:26 +04:00			`from linkdrop.model import History, Link`
first cut at send 2010-09-02 10:29:21 +04:00			`from linkdrop.model.types import UTCDateTime`
if a user has multiple accounts on the same domain, require a username/userid to get the correct account. also, provide a good error message 2010-09-09 00:18:53 +04:00			`from sqlalchemy.orm.exc import NoResultFound, MultipleResultsFound`
first cut at send 2010-09-02 10:29:21 +04:00
			`log = logging.getLogger(__name__)`


			`class SendController(BaseController):`
			`"""`
			`Send`
			`====`

			`The 'send' namespace is used to send updates to our supported services.`

			`"""`
			`__api_controller__ = True # for docs`

			`@api_response`
			`@json_exception_response`
			`def send(self):`
fix facebook send make api to be a rest api returning json, no redirects support reauthorizing facebook 2010-09-03 01:02:32 +04:00			`result = {}`
			`error = None`
dont merge accounts, rely on oauth keys for each service/account in the session to join for history add username to example form for sending to more than one twitter account 2010-09-10 04:36:13 +04:00			`# If we don't have a key in our session we bail early with a`
first cut at send 2010-09-02 10:29:21 +04:00			`# 401`
dont merge accounts, rely on oauth keys for each service/account in the session to join for history add username to example form for sending to more than one twitter account 2010-09-10 04:36:13 +04:00			`domain = request.POST.get('domain')`
allow 'message' to be optional, leaving it to the service to reject if it so chooses 2010-09-30 10:37:46 +04:00			`message = request.POST.get('message', '')`
dont merge accounts, rely on oauth keys for each service/account in the session to join for history add username to example form for sending to more than one twitter account 2010-09-10 04:36:13 +04:00			`username = request.POST.get('username')`
create and append the short url if it is not in the message 2010-10-15 02:23:16 +04:00			`longurl = request.POST.get('link')`
add url shortening service (our own, disabled, bit.ly, enabled) 2010-09-15 01:18:46 +04:00			`shorturl = request.POST.get('shorturl')`
dont merge accounts, rely on oauth keys for each service/account in the session to join for history add username to example form for sending to more than one twitter account 2010-09-10 04:36:13 +04:00			`userid = request.POST.get('userid')`
add url shortening service (our own, disabled, bit.ly, enabled) 2010-09-15 01:18:46 +04:00			`to = request.POST.get('to')`
allow 'message' to be optional, leaving it to the service to reject if it so chooses 2010-09-30 10:37:46 +04:00			`if not domain:`
dont merge accounts, rely on oauth keys for each service/account in the session to join for history add username to example form for sending to more than one twitter account 2010-09-10 04:36:13 +04:00			`error = {`
change error object to be like json-rpc error objects code is reserved for error codes, not http status status is added for http status use only 401 and 535 for now to indicate reauth 2010-10-01 04:36:12 +04:00			`'message': "'domain' is not optional",`
			`'code': constants.INVALID_PARAMS`
fix facebook send make api to be a rest api returning json, no redirects support reauthorizing facebook 2010-09-03 01:02:32 +04:00			`}`
			`return {'result': result, 'error': error}`
dont merge accounts, rely on oauth keys for each service/account in the session to join for history add username to example form for sending to more than one twitter account 2010-09-10 04:36:13 +04:00			`keys = session.get('account_keys', '').split(',')`
			`if not keys:`
* handle communications from iframe (now <browser>) to chrome using location setting * (specifically, make 'close' button in debug tab work * remove ff-overlay.js, which we don't need anymore * move a bit of code in the python side that was misordered (r=shanec) * add 403 handling in theory (r=shanec, but not working for me so far) * upgrade overlay.js to javascript 1.8 because why not? 2010-09-08 08:21:26 +04:00			`error = {'provider': domain,`
change error object to be like json-rpc error objects code is reserved for error codes, not http status status is added for http status use only 401 and 535 for now to indicate reauth 2010-10-01 04:36:12 +04:00			`'message': "no user session exists, auth required",`
			`'status': 401`
* handle communications from iframe (now <browser>) to chrome using location setting * (specifically, make 'close' button in debug tab work * remove ff-overlay.js, which we don't need anymore * move a bit of code in the python side that was misordered (r=shanec) * add 403 handling in theory (r=shanec, but not working for me so far) * upgrade overlay.js to javascript 1.8 because why not? 2010-09-08 08:21:26 +04:00			`}`
			`return {'result': result, 'error': error}`
first cut at send 2010-09-02 10:29:21 +04:00
abstract oauth based api's out of the linkdrop api 2010-09-03 02:24:50 +04:00			`provider = get_provider(domain)`
first cut at send 2010-09-02 10:29:21 +04:00			`# even if we have a session key, we must have an account for that`
			`# user for the specified domain.`
avoid querying the accounts table, just rely on the session to store what we need. the accounts table is 'backup' for that. 2010-09-23 04:44:26 +04:00			`acct = None`
			`for k in keys:`
			`a = session.get(k)`
			`if a and a.get('domain') == domain and (a.get('username')==username or a.get('userid')==userid):`
			`acct = a`
			`break`
			`if not acct:`
if a user has multiple accounts on the same domain, require a username/userid to get the correct account. also, provide a good error message 2010-09-09 00:18:53 +04:00			`error = {'provider': domain,`
change error object to be like json-rpc error objects code is reserved for error codes, not http status status is added for http status use only 401 and 535 for now to indicate reauth 2010-10-01 04:36:12 +04:00			`'message': "not logged in or no user account for that domain",`
			`'status': 401`
fix facebook send make api to be a rest api returning json, no redirects support reauthorizing facebook 2010-09-03 01:02:32 +04:00			`}`
			`return {'result': result, 'error': error}`
first cut at send 2010-09-02 10:29:21 +04:00
create and append the short url if it is not in the message 2010-10-15 02:23:16 +04:00			`args = copy.copy(request.POST)`
			`if not shorturl and longurl:`
			`u = urlparse(longurl)`
			`if not u.scheme:`
			`longurl = 'http://' + longurl`
			`shorturl = Link.get_or_create(longurl)`
			`args['shorturl'] = shorturl`

first cut at send 2010-09-02 10:29:21 +04:00			`# send the item.`
create and append the short url if it is not in the message 2010-10-15 02:23:16 +04:00			`result, error = provider.api(acct).sendmessage(message, args)`
first cut at send 2010-09-02 10:29:21 +04:00
			`if error:`
			`assert not result`
			`log.info("send failure: %r", error)`
			`else:`
			`# create a new record in the history table.`
			`assert result`
			`history = History()`
avoid querying the accounts table, just rely on the session to store what we need. the accounts table is 'backup' for that. 2010-09-23 04:44:26 +04:00			`history.account_id = acct.get('id')`
first cut at send 2010-09-02 10:29:21 +04:00			`history.published = UTCDateTime.now()`
make sure we get extra fields (e.g. subject/to) 2010-09-08 06:30:55 +04:00			`for key, val in request.POST.items():`
			`setattr(history, key, val)`
first cut at send 2010-09-02 10:29:21 +04:00			`Session.add(history)`
update to test with our own shortener, remove the query to get an id (doesn't work right with multiple threads anyway) 2010-09-23 02:20:46 +04:00			`# remove for now until we have a need to do this`
			`#link = sign_link(shorturl, acct.username)`
avoid querying the accounts table, just rely on the session to store what we need. the accounts table is 'backup' for that. 2010-09-23 04:44:26 +04:00			`Session.commit()`
first cut at send 2010-09-02 10:29:21 +04:00			`result['linkdrop'] = history.id`
add url shortening service (our own, disabled, bit.ly, enabled) 2010-09-15 01:18:46 +04:00			`result['shorturl'] = shorturl`
			`result['from'] = userid`
			`result['to'] = to`
first cut at send 2010-09-02 10:29:21 +04:00			`log.info("send success - linkdrop id is %s", history.id)`
			`# no redirects requests, just return the response.`
			`return {'result': result, 'error': error}`