lnbits-legend/lnbits/extensions/boltcards/views_api.py

import secrets
from http import HTTPStatus

from fastapi.params import Depends, Query
from loguru import logger
from starlette.exceptions import HTTPException
from starlette.requests import Request

from lnbits.core.crud import get_user
from lnbits.decorators import WalletTypeInfo, get_key_type, require_admin_key

from . import boltcards_ext
from .crud import (
    create_card,
    delete_card,
    enable_disable_card,
    get_card,
    get_card_by_otp,
    get_card_by_uid,
    get_cards,
    get_hits,
    get_refunds,
    update_card,
    update_card_otp,
)
from .models import CreateCardData


@boltcards_ext.get("/api/v1/cards")
async def api_cards(
    g: WalletTypeInfo = Depends(get_key_type), all_wallets: bool = Query(False)
):
    wallet_ids = [g.wallet.id]

    if all_wallets:
        wallet_ids = (await get_user(g.wallet.user)).wallet_ids

    return [card.dict() for card in await get_cards(wallet_ids)]


@boltcards_ext.post("/api/v1/cards", status_code=HTTPStatus.CREATED)
@boltcards_ext.put("/api/v1/cards/{card_id}", status_code=HTTPStatus.OK)
async def api_card_create_or_update(
    #    req: Request,
    data: CreateCardData,
    card_id: str = None,
    wallet: WalletTypeInfo = Depends(require_admin_key),
):
    try:
        if len(bytes.fromhex(data.uid)) != 7:
            raise HTTPException(
                detail="Invalid bytes for card uid.", status_code=HTTPStatus.BAD_REQUEST
            )

        if len(bytes.fromhex(data.k0)) != 16:
            raise HTTPException(
                detail="Invalid bytes for k0.", status_code=HTTPStatus.BAD_REQUEST
            )

        if len(bytes.fromhex(data.k1)) != 16:
            raise HTTPException(
                detail="Invalid bytes for k1.", status_code=HTTPStatus.BAD_REQUEST
            )

        if len(bytes.fromhex(data.k2)) != 16:
            raise HTTPException(
                detail="Invalid bytes for k2.", status_code=HTTPStatus.BAD_REQUEST
            )
    except:
        raise HTTPException(
            detail="Invalid byte data provided.", status_code=HTTPStatus.BAD_REQUEST
        )
    if card_id:
        card = await get_card(card_id)
        if not card:
            raise HTTPException(
                detail="Card does not exist.", status_code=HTTPStatus.NOT_FOUND
            )
        if card.wallet != wallet.wallet.id:
            raise HTTPException(
                detail="Not your card.", status_code=HTTPStatus.FORBIDDEN
            )
        checkUid = await get_card_by_uid(data.uid)
        if checkUid and checkUid.id != card_id:
            raise HTTPException(
                detail="UID already registered. Delete registered card and try again.",
                status_code=HTTPStatus.BAD_REQUEST,
            )
        card = await update_card(card_id, **data.dict())
    else:
        checkUid = await get_card_by_uid(data.uid)
        if checkUid:
            raise HTTPException(
                detail="UID already registered. Delete registered card and try again.",
                status_code=HTTPStatus.BAD_REQUEST,
            )
        card = await create_card(wallet_id=wallet.wallet.id, data=data)
    return card.dict()


@boltcards_ext.get("/api/v1/cards/enable/{card_id}/{enable}", status_code=HTTPStatus.OK)
async def enable_card(
    card_id,
    enable,
    wallet: WalletTypeInfo = Depends(require_admin_key),
):
    card = await get_card(card_id)
    if not card:
        raise HTTPException(detail="No card found.", status_code=HTTPStatus.NOT_FOUND)
    if card.wallet != wallet.wallet.id:
        raise HTTPException(detail="Not your card.", status_code=HTTPStatus.FORBIDDEN)
    card = await enable_disable_card(enable=enable, id=card_id)
    return card.dict()


@boltcards_ext.delete("/api/v1/cards/{card_id}")
async def api_card_delete(card_id, wallet: WalletTypeInfo = Depends(require_admin_key)):
    card = await get_card(card_id)

    if not card:
        raise HTTPException(
            detail="Card does not exist.", status_code=HTTPStatus.NOT_FOUND
        )

    if card.wallet != wallet.wallet.id:
        raise HTTPException(detail="Not your card.", status_code=HTTPStatus.FORBIDDEN)

    await delete_card(card_id)
    return "", HTTPStatus.NO_CONTENT


@boltcards_ext.get("/api/v1/hits")
async def api_hits(
    g: WalletTypeInfo = Depends(get_key_type), all_wallets: bool = Query(False)
):
    wallet_ids = [g.wallet.id]

    if all_wallets:
        wallet_ids = (await get_user(g.wallet.user)).wallet_ids

    cards = await get_cards(wallet_ids)
    cards_ids = []
    for card in cards:
        cards_ids.append(card.id)

    return [hit.dict() for hit in await get_hits(cards_ids)]


@boltcards_ext.get("/api/v1/refunds")
async def api_hits(
    g: WalletTypeInfo = Depends(get_key_type), all_wallets: bool = Query(False)
):
    wallet_ids = [g.wallet.id]

    if all_wallets:
        wallet_ids = (await get_user(g.wallet.user)).wallet_ids

    cards = await get_cards(wallet_ids)
    cards_ids = []
    for card in cards:
        cards_ids.append(card.id)
    hits = await get_hits(cards_ids)
    hits_ids = []
    for hit in hits:
        hits_ids.append(hit.id)

    return [refund.dict() for refund in await get_refunds(hits_ids)]
adapt to bolt-nfc-android-app 2022-08-14 23:52:55 +02:00			`import secrets`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`from http import HTTPStatus`

			`from fastapi.params import Depends, Query`
formatting 2022-08-29 08:51:32 -06:00			`from loguru import logger`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`from starlette.exceptions import HTTPException`
			`from starlette.requests import Request`

			`from lnbits.core.crud import get_user`
			`from lnbits.decorators import WalletTypeInfo, get_key_type, require_admin_key`

			`from . import boltcards_ext`
			`from .crud import (`
black & isort 2022-07-15 16:43:06 +02:00			`create_card,`
			`delete_card,`
formatting 2022-08-29 08:51:32 -06:00			`enable_disable_card,`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`get_card,`
disabling card with just otp which is also part of notify 2022-09-26 11:47:00 +02:00			`get_card_by_otp,`
Revert "convert to using lnbits card id instead of card uid" This reverts commit 971d8f34e80c69edbede455037bae0028c7cc482. 2022-08-21 10:30:25 -06:00			`get_card_by_uid,`
black & isort 2022-07-15 16:43:06 +02:00			`get_cards,`
retreiving hits 2022-06-21 22:04:43 +02:00			`get_hits,`
formatting 2022-08-29 08:51:32 -06:00			`get_refunds,`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`update_card,`
disabling card with just otp which is also part of notify 2022-09-26 11:47:00 +02:00			`update_card_otp,`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`)`
			`from .models import CreateCardData`
black & isort 2022-07-15 16:43:06 +02:00
Black/prettier 2022-08-29 14:18:18 +01:00
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`@boltcards_ext.get("/api/v1/cards")`
			`async def api_cards(`
			`g: WalletTypeInfo = Depends(get_key_type), all_wallets: bool = Query(False)`
			`):`
			`wallet_ids = [g.wallet.id]`

			`if all_wallets:`
			`wallet_ids = (await get_user(g.wallet.user)).wallet_ids`

			`return [card.dict() for card in await get_cards(wallet_ids)]`

black & isort 2022-07-15 16:43:06 +02:00
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`@boltcards_ext.post("/api/v1/cards", status_code=HTTPStatus.CREATED)`
			`@boltcards_ext.put("/api/v1/cards/{card_id}", status_code=HTTPStatus.OK)`
adapt to bolt-nfc-android-app 2022-08-14 23:52:55 +02:00			`async def api_card_create_or_update(`
black & isort 2022-07-15 16:43:06 +02:00			`# req: Request,`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`data: CreateCardData,`
			`card_id: str = None,`
			`wallet: WalletTypeInfo = Depends(require_admin_key),`
			`):`
more validation 2022-08-19 16:54:06 -06:00			`try:`
			`if len(bytes.fromhex(data.uid)) != 7:`
			`raise HTTPException(`
add better error handling 2022-08-19 16:52:06 -06:00			`detail="Invalid bytes for card uid.", status_code=HTTPStatus.BAD_REQUEST`
			`)`

more validation 2022-08-19 16:54:06 -06:00			`if len(bytes.fromhex(data.k0)) != 16:`
			`raise HTTPException(`
add better error handling 2022-08-19 16:52:06 -06:00			`detail="Invalid bytes for k0.", status_code=HTTPStatus.BAD_REQUEST`
			`)`

more validation 2022-08-19 16:54:06 -06:00			`if len(bytes.fromhex(data.k1)) != 16:`
			`raise HTTPException(`
add better error handling 2022-08-19 16:52:06 -06:00			`detail="Invalid bytes for k1.", status_code=HTTPStatus.BAD_REQUEST`
			`)`

more validation 2022-08-19 16:54:06 -06:00			`if len(bytes.fromhex(data.k2)) != 16:`
			`raise HTTPException(`
add better error handling 2022-08-19 16:52:06 -06:00			`detail="Invalid bytes for k2.", status_code=HTTPStatus.BAD_REQUEST`
			`)`
more validation 2022-08-19 16:54:06 -06:00			`except:`
			`raise HTTPException(`
			`detail="Invalid byte data provided.", status_code=HTTPStatus.BAD_REQUEST`
			`)`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`if card_id:`
			`card = await get_card(card_id)`
			`if not card:`
			`raise HTTPException(`
			`detail="Card does not exist.", status_code=HTTPStatus.NOT_FOUND`
			`)`
			`if card.wallet != wallet.wallet.id:`
			`raise HTTPException(`
			`detail="Not your card.", status_code=HTTPStatus.FORBIDDEN`
			`)`
fix validation check for existing card UID, was preventing all edits of cards. we should validate a bit differently for updates vs. creates 2022-08-29 09:40:35 -06:00			`checkUid = await get_card_by_uid(data.uid)`
			`if checkUid and checkUid.id != card_id:`
			`raise HTTPException(`
			`detail="UID already registered. Delete registered card and try again.",`
			`status_code=HTTPStatus.BAD_REQUEST,`
			`)`
black & isort 2022-07-15 16:43:06 +02:00			`card = await update_card(card_id, **data.dict())`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`else:`
fix validation check for existing card UID, was preventing all edits of cards. we should validate a bit differently for updates vs. creates 2022-08-29 09:40:35 -06:00			`checkUid = await get_card_by_uid(data.uid)`
			`if checkUid:`
			`raise HTTPException(`
			`detail="UID already registered. Delete registered card and try again.",`
			`status_code=HTTPStatus.BAD_REQUEST,`
			`)`
black & isort 2022-07-15 16:43:06 +02:00			`card = await create_card(wallet_id=wallet.wallet.id, data=data)`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`return card.dict()`

Black/prettier 2022-08-29 14:18:18 +01:00
Added enable disable card 2022-08-28 10:58:17 +01:00			`@boltcards_ext.get("/api/v1/cards/enable/{card_id}/{enable}", status_code=HTTPStatus.OK)`
			`async def enable_card(`
			`card_id,`
			`enable,`
			`wallet: WalletTypeInfo = Depends(require_admin_key),`
			`):`
			`card = await get_card(card_id)`
			`if not card:`
Black/prettier 2022-08-29 14:18:18 +01:00			`raise HTTPException(detail="No card found.", status_code=HTTPStatus.NOT_FOUND)`
Added enable disable card 2022-08-28 10:58:17 +01:00			`if card.wallet != wallet.wallet.id:`
Black/prettier 2022-08-29 14:18:18 +01:00			`raise HTTPException(detail="Not your card.", status_code=HTTPStatus.FORBIDDEN)`
Added enable disable card 2022-08-28 10:58:17 +01:00			`card = await enable_disable_card(enable=enable, id=card_id)`
			`return card.dict()`
black & isort 2022-07-15 16:43:06 +02:00
Black/prettier 2022-08-29 14:18:18 +01:00
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`@boltcards_ext.delete("/api/v1/cards/{card_id}")`
adapt to bolt-nfc-android-app 2022-08-14 23:52:55 +02:00			`async def api_card_delete(card_id, wallet: WalletTypeInfo = Depends(require_admin_key)):`
new extension just proof of concept 2022-06-13 21:08:06 +02:00			`card = await get_card(card_id)`

			`if not card:`
			`raise HTTPException(`
			`detail="Card does not exist.", status_code=HTTPStatus.NOT_FOUND`
			`)`

			`if card.wallet != wallet.wallet.id:`
black & isort 2022-07-15 16:43:06 +02:00			`raise HTTPException(detail="Not your card.", status_code=HTTPStatus.FORBIDDEN)`
new extension just proof of concept 2022-06-13 21:08:06 +02:00
			`await delete_card(card_id)`
fix raise error on delete request 2022-11-02 15:30:18 +00:00			`return "", HTTPStatus.NO_CONTENT`
new extension just proof of concept 2022-06-13 21:08:06 +02:00
black & isort 2022-07-15 16:43:06 +02:00
retreiving hits 2022-06-21 22:04:43 +02:00			`@boltcards_ext.get("/api/v1/hits")`
			`async def api_hits(`
			`g: WalletTypeInfo = Depends(get_key_type), all_wallets: bool = Query(False)`
			`):`
			`wallet_ids = [g.wallet.id]`

push before removing uuid 2022-08-24 09:33:38 +01:00			`if all_wallets:`
			`wallet_ids = (await get_user(g.wallet.user)).wallet_ids`

			`cards = await get_cards(wallet_ids)`
			`cards_ids = []`
			`for card in cards:`
			`cards_ids.append(card.id)`

			`return [hit.dict() for hit in await get_hits(cards_ids)]`

Black/prettier 2022-08-29 14:18:18 +01:00
push before removing uuid 2022-08-24 09:33:38 +01:00			`@boltcards_ext.get("/api/v1/refunds")`
			`async def api_hits(`
			`g: WalletTypeInfo = Depends(get_key_type), all_wallets: bool = Query(False)`
			`):`
			`wallet_ids = [g.wallet.id]`

retreiving hits 2022-06-21 22:04:43 +02:00			`if all_wallets:`
			`wallet_ids = (await get_user(g.wallet.user)).wallet_ids`

			`cards = await get_cards(wallet_ids)`
			`cards_ids = []`
			`for card in cards:`
			`cards_ids.append(card.id)`
Added refunds 2022-08-27 16:37:31 +01:00			`hits = await get_hits(cards_ids)`
			`hits_ids = []`
			`for hit in hits:`
			`hits_ids.append(hit.id)`
retreiving hits 2022-06-21 22:04:43 +02:00
Black/prettier 2022-08-29 14:18:18 +01:00			`return [refund.dict() for refund in await get_refunds(hits_ids)]`