mirror of
https://github.com/ae-utbm/sith.git
synced 2024-11-29 20:44:24 +00:00
b9298792ae
* integration of 3D secure v2 for eboutic bank payment * edit yml to avoid git conflict when deploying on test * escape html characters on xml (#505) * Change country id to ISO 3166 1 numeric for 3DSV2 (#510) * remove useless tests * Fix le panier de l'Eboutic pour Safari (#518) Co-authored-by: Théo DURR <git@theodurr.fr> Co-authored-by: thomas girod <56346771+imperosol@users.noreply.github.com> * update some dependencies (#523) * [Eboutic] Fix double quote issue & improved user experience on small screen (#522) * Fix #511 Regex issue with escaped double quotes * Fix basket being when reloading the page (when cookie != "") + Added JSDoc + Cleaned some code * Fix #509 Improved user experience on small screens * Fix css class not being added back when reloading page * CSS Fixes (see description) + Fixed overlaping item title with the cart emoji on small screen + Fixed minimal size of the basket on small screen (full width) * Added darkened background circle to items with no image * Fix issue were the basket could be None * Edited CSS to have bette img ratio & the 🛒 icon Adapt, Improve, Overcome * Moved basket down on small screen size * enhance admin pages * update documentation * Update doc/about/tech.rst Co-authored-by: Julien Constant <49886317+Juknum@users.noreply.github.com> * remove csrf_token * Fix 3DSv2 implementation (#542) * Fixed wrong HMAC signature generation * Fix xml du panier Co-authored-by: Julien Constant <julienconstant190@gmail.com> * [FIX] 3DSv2 - Echappement du XML et modif tables (#543) * Fixed wrong HMAC signature generation * Updated migration files Co-authored-by: Julien Constant <julienconstant190@gmail.com> * Update doc/about/tech.rst * Update doc/start/install.rst * Updated lock file according to pyproject * unify account_id creation * upgrade re_path to path (#533) * redirect directly on counter if user is barman * Passage de vue à Alpine pour les comptoirs (#561) Vue, c'est cool, mais avec Django c'est un peu chiant à utiliser. Alpine a l'avantage d'être plus léger et d'avoir une syntaxe qui ne ressemble pas à celle de Jinja (ce qui évite d'avoir à mettre des {% raw %} partout). * resolved importError (#565) * Add galaxy (#562) * style.scss: lint * style.scss: add 'th' padding * core: populate: add much more data for development * Add galaxy * repair user merging tool (#498) * Disabled galaxy feature (only visually) * Disabled Galaxy button & Removed 404 exception display * Update 404.jinja * Fixed broken test * Added eurocks links to eboutic * fix typo * fix wording Co-authored-by: Théo DURR <git@theodurr.fr> * Edited unit tests This test caused a breach in security due to the alert block displaying sensitive data. * Repair NaN bug for autocomplete on counter click * remove-useless-queries-counter-stats (#519) * Amélioration des pages utilisateurs pour les petits écrans (#578, #520) - Refonte de l'organisation des pages utilisateurs (principalement du front) - Page des parrains/fillots - Page d'édition du profil - Page du profil - Page des outils - Page des préférences - Page des stats utilisateurs - Refonte du CSS / organisation de la navbar principale (en haut de l'écran) - Refonte du CSS de la navbar bleu clair (le menu) - Refonte du CSS du SAS : - Page de photo - Page d'albums * Added GA/Clubs Google Calendar to main page (#585) * Added GA/Clubs google calendar to main page * Made tables full width * Create dependabot.yml (#587) * Bump django from 3.2.16 to 3.2.18 (#574) * [CSS] Follow up of #578 (#589) * [FIX] Broken link in readme and license fix (& update) (#591) * Fixes pour la mise à jour de mars (#598) * Fix problème de cache dans le SAS & améliore le CSS du SAS Co-authored-by: Bartuccio Antoine <klmp200@users.noreply.github.com> * Fixes & améliorations du nouveau CSS (#616) * [UPDATE] Bump sentry-sdk from 1.12.1 to 1.19.1 (#620) * [FIX] Fixes supplémentaires pour la màj de mars (#622) - Les photos de l'onglet de la page utilisateur utilise désormais leur version thumbnail au lieu de leur version HD - Une des classes du CSS du SAS a été renommée car elle empiétait sur une class de la navbar - Le profil utilisateur a été revu pour ajouter plus d'espacement entre le tableau des cotisations et le numéro de cotisants - Les images de forum & blouse sont de nouveau cliquable pour les afficher en grands - Sur mobile, lorsqu'on cliquait sur le premier élément de la navbar, ce dernier avait un overlay avec des angles arrondis - Sur mobile, les utilisateurs avec des images de profils non carrées dépassait dans l'onglet Famille * [UPDATE] Bump dict2xml from 1.7.2 to 1.7.3 (#592) Bumps [dict2xml](https://github.com/delfick/python-dict2xml) from 1.7.2 to 1.7.3. - [Release notes](https://github.com/delfick/python-dict2xml/releases) - [Commits](https://github.com/delfick/python-dict2xml/compare/release-1.7.2...release-1.7.3) --- updated-dependencies: - dependency-name: dict2xml dependency-type: direct:production update-type: version-update:semver-patch ... * [UPDATE] Bump django-debug-toolbar from 3.8.1 to 4.0.0 (#593) Bumps [django-debug-toolbar](https://github.com/jazzband/django-debug-toolbar) from 3.8.1 to 4.0.0. - [Release notes](https://github.com/jazzband/django-debug-toolbar/releases) - [Changelog](https://github.com/jazzband/django-debug-toolbar/blob/main/docs/changes.rst) - [Commits](https://github.com/jazzband/django-debug-toolbar/compare/3.8.1...4.0.0) --- updated-dependencies: - dependency-name: django-debug-toolbar dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [UPDATE] Bump cryptography from 37.0.4 to 40.0.1 (#594) * [UPDATE] Bump cryptography from 37.0.4 to 40.0.1 Bumps [cryptography](https://github.com/pyca/cryptography) from 37.0.4 to 40.0.1. - [Release notes](https://github.com/pyca/cryptography/releases) - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/37.0.4...40.0.1) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * Updated pyOpenSSL to match cryptography requirements --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Julien Constant <julienconstant190@gmail.com> * Mise à jour de Black vers la version 23.3 (#629) * update link for poetry install * [UPDATE] Bump django-countries from 7.5 to 7.5.1 (#624) Bumps [django-countries](https://github.com/SmileyChris/django-countries) from 7.5 to 7.5.1. - [Release notes](https://github.com/SmileyChris/django-countries/releases) - [Changelog](https://github.com/SmileyChris/django-countries/blob/main/CHANGES.rst) - [Commits](https://github.com/SmileyChris/django-countries/compare/v7.5...v7.5.1) --- updated-dependencies: - dependency-name: django-countries dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [UPDATE] Bump sentry-sdk from 1.19.1 to 1.21.0 Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 1.19.1 to 1.21.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/1.19.1...1.21.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Speed up tests (#638) * Better usage of cache for groups and clubs related operations (#634) * Better usage of cache for group retrieval * Cache clearing on object deletion or update * replace signals by save and delete override * add is_anonymous check in is_owned_by Add in many is_owned_by(self, user) methods that user is not anonymous. Since many of those functions do db queries, this should reduce a little bit the load of the db. * Stricter usage of User.is_in_group Constrain the parameters that can be passed to the function to make sure only a str or an int can be used. Also force to explicitly specify if the group id or the group name is used. * write test and correct bugs * remove forgotten populate commands * Correct test * [FIX] Correction de bugs (#617) * Fix #600 * Fix #602 * Fixes & améliorations du nouveau CSS (#616) * Fix #604 * should fix #605 * Fix #608 * Update core/views/site.py Co-Authored-By: thomas girod <56346771+imperosol@users.noreply.github.com> * Added back the permission denied * Should fix #609 * Fix failing test when 2 user are merged * Should fix #610 * Should fix #627 * Should fix #109 Block les URLs suivantes lorsque le fichier se trouve dans le dir `profiles` ou `SAS` : - `/file/<id>/` - `/file/<id>/[delete|prop|edit]` > Les urls du SAS restent accessiblent pour les roots & les admins SAS > Les urls de profiles sont uniquement accessiblent aux roots * Fix root dir of SAS being unnaccessible for sas admins ⚠️ need to edit the SAS directory & save it (no changes required in sas directory properties) * Remove overwritten code * Should fix duplicated albums in user profile (wtf) * Fix typo * Extended profiles picture access to board members * Should fix #607 * Fix keyboard navigation not working properly * Fix user tagged pictures section inside python rather than in the template * Update utils.py * Apply suggested changes * Fix #604 * Fix #608 * Added back the permission denied * Should fix duplicated albums in user profile (wtf) * Fix user tagged pictures section inside python rather than in the template * Apply suggested changes --------- Co-authored-by: thomas girod <56346771+imperosol@users.noreply.github.com> * Remove duplicated css * Galaxy improvements (#628) * galaxy: improve logging and performance reporting * galaxy: add a full galaxy state test * galaxy: optimize user self score computation * galaxy: add 'generate_galaxy_test_data' command for development at scale * galaxy: big refactor Main changes: - Multiple Galaxy objects can now exist at the same time in DB. This allows for ruling a new galaxy while still displaying the old one. - The criteria to quickly know whether a user is a possible citizen is now a simple query on picture count. This avoids a very complicated query to database, that could often result in huge working memory load. With this change, it should be possible to run the galaxy even on a vanilla Postgres that didn't receive fine tuning for the Sith's galaxy. * galaxy: template: make the galaxy graph work and be usable with a lot of stars - Display focused star and its connections clearly - Display star label faintly by default for other stars to avoid overloading the graph - Hide non-focused lanes - Avoid clicks on non-highlighted, too far stars - Make the canva adapt its width to initial screen size, doesn't work dynamically * galaxy: better docstrings * galaxy: use bulk_create whenever possible This is a big performance gain, especially for the tests. Examples: ---- `./manage.py test galaxy.tests.GalaxyTest.test_full_galaxy_state` Measurements averaged over 3 run on *my machine*™: Before: 2min15s After: 1m41s ---- `./manage.py generate_galaxy_test_data --user-pack-count 1` Before: 48s After: 25s ---- `./manage.py rule_galaxy` (for 600 citizen, corresponding to 1 user-pack) Before: 14m4s After: 12m34s * core: populate: use a less ambiguous 'timezone.now()' When running the tests around midnight, the day is changing, leading to some values being offset to the next day depending on the timezone, and making some tests to fail. This ensure to use a less ambiguous `now` when populating the database. * write more extensive documentation - add documentation to previously documented classes and functions and refactor some of the documented one, in accordance to the PEP257 and ReStructuredText standards ; - add some type hints ; - use a NamedTuple for the `Galaxy.compute_users_score` method instead of a raw tuple. Also change a little bit the logic in the function which call the latter ; - add some additional parameter checks on a few functions ; - change a little bit the logic of the log level setting for the galaxy related commands. * galaxy: tests: split Model and View for more efficient data usage --------- Co-authored-by: maréchal <thgirod@hotmail.com> * [UPDATE] Bump libsass from 0.21.0 to 0.22.0 (#640) Bumps [libsass](https://github.com/sass/libsass-python) from 0.21.0 to 0.22.0. - [Release notes](https://github.com/sass/libsass-python/releases) - [Changelog](https://github.com/sass/libsass-python/blob/main/docs/changes.rst) - [Commits](https://github.com/sass/libsass-python/compare/0.21.0...0.22.0) --- updated-dependencies: - dependency-name: libsass dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [FIX] Fix cached groups (#647) * Bump sqlparse from 0.4.3 to 0.4.4 (#645) Bumps [sqlparse](https://github.com/andialbrecht/sqlparse) from 0.4.3 to 0.4.4. - [Release notes](https://github.com/andialbrecht/sqlparse/releases) - [Changelog](https://github.com/andialbrecht/sqlparse/blob/master/CHANGELOG) - [Commits](https://github.com/andialbrecht/sqlparse/compare/0.4.3...0.4.4) --- updated-dependencies: - dependency-name: sqlparse dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [UPDATE] Bump django-ordered-model from 3.6 to 3.7.4 (#625) Bumps [django-ordered-model](https://github.com/django-ordered-model/django-ordered-model) from 3.6 to 3.7.4. - [Release notes](https://github.com/django-ordered-model/django-ordered-model/releases) - [Changelog](https://github.com/django-ordered-model/django-ordered-model/blob/master/CHANGES.md) - [Commits](https://github.com/django-ordered-model/django-ordered-model/compare/3.6...3.7.4) --- updated-dependencies: - dependency-name: django-ordered-model dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Fix immutable default variable in `get_start_of_semester` (#656) Le serveur ne percevait pas le changement de semestre, parce que la valeur par défaut passée à la fonction `get_start_of_semester()` était une fonction appelée une seule fois, lors du lancement du serveur. Bref, c'était ça : https://beta.ruff.rs/docs/rules/function-call-in-default-argument/ --------- Co-authored-by: imperosol <thgirod@hotmail.com> * Add missing method on AnonymousUser (#649) --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Thomas Girod <thgirod@hotmail.com> Co-authored-by: thomas girod <56346771+imperosol@users.noreply.github.com> Co-authored-by: Théo DURR <git@theodurr.fr> Co-authored-by: Skia <skia@hya.sk> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Bartuccio Antoine <klmp200@users.noreply.github.com>
1744 lines
62 KiB
Python
1744 lines
62 KiB
Python
# -*- coding:utf-8 -*
|
|
#
|
|
# Copyright 2023 © AE UTBM
|
|
# ae@utbm.fr / ae.info@utbm.fr
|
|
#
|
|
# This file is part of the website of the UTBM Student Association (AE UTBM),
|
|
# https://ae.utbm.fr.
|
|
#
|
|
# You can find the source code of the website at https://github.com/ae-utbm/sith3
|
|
#
|
|
# LICENSED UNDER THE GNU GENERAL PUBLIC LICENSE VERSION 3 (GPLv3)
|
|
# SEE : https://raw.githubusercontent.com/ae-utbm/sith3/master/LICENSE
|
|
# OR WITHIN THE LOCAL FILE "LICENSE"
|
|
#
|
|
#
|
|
import json
|
|
from urllib.parse import parse_qs
|
|
|
|
from django.contrib.auth.decorators import login_required
|
|
from django.db.models import F
|
|
from django.shortcuts import get_object_or_404
|
|
from django.http import Http404
|
|
from django.core.exceptions import PermissionDenied
|
|
from django.views.decorators.http import require_POST
|
|
from django.views.generic import ListView, DetailView, RedirectView, TemplateView
|
|
from django.views.generic.base import View
|
|
from django.views.generic.edit import (
|
|
UpdateView,
|
|
CreateView,
|
|
DeleteView,
|
|
ProcessFormView,
|
|
FormMixin,
|
|
FormView,
|
|
)
|
|
from django.forms.models import modelform_factory
|
|
from django.forms import CheckboxSelectMultiple
|
|
from django.urls import reverse_lazy, reverse
|
|
from django.http import HttpResponseRedirect, HttpResponse, JsonResponse
|
|
from django.utils import timezone
|
|
from django import forms
|
|
from django.utils.translation import gettext_lazy as _
|
|
from django.conf import settings
|
|
from django.db import DataError, transaction
|
|
|
|
import json
|
|
import re
|
|
import pytz
|
|
from datetime import timedelta, datetime
|
|
from http import HTTPStatus
|
|
|
|
from core.utils import get_start_of_semester, get_semester_code
|
|
from core.views import CanViewMixin, TabedViewMixin, CanEditMixin
|
|
from core.views.forms import LoginForm
|
|
from core.models import User
|
|
from counter.forms import (
|
|
BillingInfoForm,
|
|
StudentCardForm,
|
|
GetUserForm,
|
|
RefillForm,
|
|
CounterEditForm,
|
|
ProductEditForm,
|
|
CashSummaryFormBase,
|
|
EticketForm,
|
|
)
|
|
from counter.models import (
|
|
Counter,
|
|
Customer,
|
|
StudentCard,
|
|
Product,
|
|
Selling,
|
|
Refilling,
|
|
ProductType,
|
|
CashRegisterSummary,
|
|
CashRegisterSummaryItem,
|
|
Eticket,
|
|
BillingInfo,
|
|
)
|
|
from accounting.models import CurrencyField
|
|
|
|
|
|
class CounterAdminMixin(View):
|
|
"""
|
|
This view is made to protect counter admin section
|
|
"""
|
|
|
|
edit_group = [settings.SITH_GROUP_COUNTER_ADMIN_ID]
|
|
edit_club = []
|
|
|
|
def _test_group(self, user):
|
|
for grp_id in self.edit_group:
|
|
if user.is_in_group(pk=grp_id):
|
|
return True
|
|
return False
|
|
|
|
def _test_club(self, user):
|
|
for c in self.edit_club:
|
|
if c.can_be_edited_by(user):
|
|
return True
|
|
return False
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
if not (
|
|
request.user.is_root
|
|
or self._test_group(request.user)
|
|
or self._test_club(request.user)
|
|
):
|
|
raise PermissionDenied
|
|
return super(CounterAdminMixin, self).dispatch(request, *args, **kwargs)
|
|
|
|
|
|
class StudentCardDeleteView(DeleteView, CanEditMixin):
|
|
"""
|
|
View used to delete a card from a user
|
|
"""
|
|
|
|
model = StudentCard
|
|
template_name = "core/delete_confirm.jinja"
|
|
pk_url_kwarg = "card_id"
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
self.customer = get_object_or_404(Customer, pk=kwargs["customer_id"])
|
|
return super(StudentCardDeleteView, self).dispatch(request, *args, **kwargs)
|
|
|
|
def get_success_url(self, **kwargs):
|
|
return reverse_lazy(
|
|
"core:user_prefs", kwargs={"user_id": self.customer.user.pk}
|
|
)
|
|
|
|
|
|
class CounterTabsMixin(TabedViewMixin):
|
|
def get_tabs_title(self):
|
|
if hasattr(self.object, "stock_owner"):
|
|
return self.object.stock_owner.counter
|
|
else:
|
|
return self.object
|
|
|
|
def get_list_of_tabs(self):
|
|
tab_list = []
|
|
tab_list.append(
|
|
{
|
|
"url": reverse_lazy(
|
|
"counter:details",
|
|
kwargs={
|
|
"counter_id": self.object.stock_owner.counter.id
|
|
if hasattr(self.object, "stock_owner")
|
|
else self.object.id
|
|
},
|
|
),
|
|
"slug": "counter",
|
|
"name": _("Counter"),
|
|
}
|
|
)
|
|
if (
|
|
self.object.stock_owner.counter.type
|
|
if hasattr(self.object, "stock_owner")
|
|
else self.object.type == "BAR"
|
|
):
|
|
tab_list.append(
|
|
{
|
|
"url": reverse_lazy(
|
|
"counter:cash_summary",
|
|
kwargs={
|
|
"counter_id": self.object.stock_owner.counter.id
|
|
if hasattr(self.object, "stock_owner")
|
|
else self.object.id
|
|
},
|
|
),
|
|
"slug": "cash_summary",
|
|
"name": _("Cash summary"),
|
|
}
|
|
)
|
|
tab_list.append(
|
|
{
|
|
"url": reverse_lazy(
|
|
"counter:last_ops",
|
|
kwargs={
|
|
"counter_id": self.object.stock_owner.counter.id
|
|
if hasattr(self.object, "stock_owner")
|
|
else self.object.id
|
|
},
|
|
),
|
|
"slug": "last_ops",
|
|
"name": _("Last operations"),
|
|
}
|
|
)
|
|
try:
|
|
tab_list.append(
|
|
{
|
|
"url": reverse_lazy(
|
|
"stock:take_items",
|
|
kwargs={
|
|
"stock_id": self.object.stock.id
|
|
if hasattr(self.object, "stock")
|
|
else self.object.stock_owner.id
|
|
},
|
|
),
|
|
"slug": "take_items_from_stock",
|
|
"name": _("Take items from stock"),
|
|
}
|
|
)
|
|
except:
|
|
pass # The counter just have no stock
|
|
return tab_list
|
|
|
|
|
|
class CounterMain(
|
|
CounterTabsMixin, CanViewMixin, DetailView, ProcessFormView, FormMixin
|
|
):
|
|
"""
|
|
The public (barman) view
|
|
"""
|
|
|
|
model = Counter
|
|
template_name = "counter/counter_main.jinja"
|
|
pk_url_kwarg = "counter_id"
|
|
form_class = (
|
|
GetUserForm # Form to enter a client code and get the corresponding user id
|
|
)
|
|
current_tab = "counter"
|
|
|
|
def post(self, request, *args, **kwargs):
|
|
self.object = self.get_object()
|
|
if self.object.type == "BAR" and not (
|
|
"counter_token" in self.request.session.keys()
|
|
and self.request.session["counter_token"] == self.object.token
|
|
): # Check the token to avoid the bar to be stolen
|
|
return HttpResponseRedirect(
|
|
reverse_lazy(
|
|
"counter:details",
|
|
args=self.args,
|
|
kwargs={"counter_id": self.object.id},
|
|
)
|
|
+ "?bad_location"
|
|
)
|
|
return super(CounterMain, self).post(request, *args, **kwargs)
|
|
|
|
def get_context_data(self, **kwargs):
|
|
"""
|
|
We handle here the login form for the barman
|
|
"""
|
|
if self.request.method == "POST":
|
|
self.object = self.get_object()
|
|
self.object.update_activity()
|
|
kwargs = super(CounterMain, self).get_context_data(**kwargs)
|
|
kwargs["login_form"] = LoginForm()
|
|
kwargs["login_form"].fields["username"].widget.attrs["autofocus"] = True
|
|
kwargs[
|
|
"login_form"
|
|
].cleaned_data = {} # add_error fails if there are no cleaned_data
|
|
if "credentials" in self.request.GET:
|
|
kwargs["login_form"].add_error(None, _("Bad credentials"))
|
|
if "sellers" in self.request.GET:
|
|
kwargs["login_form"].add_error(None, _("User is not barman"))
|
|
kwargs["form"] = self.get_form()
|
|
kwargs["form"].cleaned_data = {} # same as above
|
|
if "bad_location" in self.request.GET:
|
|
kwargs["form"].add_error(
|
|
None, _("Bad location, someone is already logged in somewhere else")
|
|
)
|
|
if self.object.type == "BAR":
|
|
kwargs["barmen"] = self.object.get_barmen_list()
|
|
elif self.request.user.is_authenticated:
|
|
kwargs["barmen"] = [self.request.user]
|
|
if "last_basket" in self.request.session.keys():
|
|
kwargs["last_basket"] = self.request.session.pop("last_basket")
|
|
kwargs["last_customer"] = self.request.session.pop("last_customer")
|
|
kwargs["last_total"] = self.request.session.pop("last_total")
|
|
kwargs["new_customer_amount"] = self.request.session.pop(
|
|
"new_customer_amount"
|
|
)
|
|
return kwargs
|
|
|
|
def form_valid(self, form):
|
|
"""
|
|
We handle here the redirection, passing the user id of the asked customer
|
|
"""
|
|
self.kwargs["user_id"] = form.cleaned_data["user_id"]
|
|
return super(CounterMain, self).form_valid(form)
|
|
|
|
def get_success_url(self):
|
|
return reverse_lazy("counter:click", args=self.args, kwargs=self.kwargs)
|
|
|
|
|
|
class CounterClick(CounterTabsMixin, CanViewMixin, DetailView):
|
|
"""
|
|
The click view
|
|
This is a detail view not to have to worry about loading the counter
|
|
Everything is made by hand in the post method
|
|
"""
|
|
|
|
model = Counter
|
|
template_name = "counter/counter_click.jinja"
|
|
pk_url_kwarg = "counter_id"
|
|
current_tab = "counter"
|
|
|
|
def render_to_response(self, *args, **kwargs):
|
|
if self.is_ajax(self.request):
|
|
response = {"errors": []}
|
|
status = HTTPStatus.OK
|
|
|
|
if self.request.session["too_young"]:
|
|
response["errors"].append(_("Too young for that product"))
|
|
status = HTTPStatus.UNAVAILABLE_FOR_LEGAL_REASONS
|
|
if self.request.session["not_allowed"]:
|
|
response["errors"].append(_("Not allowed for that product"))
|
|
status = HTTPStatus.FORBIDDEN
|
|
if self.request.session["no_age"]:
|
|
response["errors"].append(_("No date of birth provided"))
|
|
status = HTTPStatus.UNAVAILABLE_FOR_LEGAL_REASONS
|
|
if self.request.session["not_enough"]:
|
|
response["errors"].append(_("Not enough money"))
|
|
status = HTTPStatus.PAYMENT_REQUIRED
|
|
|
|
if len(response["errors"]) > 1:
|
|
status = HTTPStatus.BAD_REQUEST
|
|
|
|
response["basket"] = self.request.session["basket"]
|
|
|
|
return JsonResponse(response, status=status)
|
|
|
|
else: # Standard HTML page
|
|
return super().render_to_response(*args, **kwargs)
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
self.customer = get_object_or_404(Customer, user__id=self.kwargs["user_id"])
|
|
obj = self.get_object()
|
|
if not self.customer.can_buy:
|
|
raise Http404
|
|
if obj.type == "BAR":
|
|
if (
|
|
not (
|
|
"counter_token" in request.session.keys()
|
|
and request.session["counter_token"] == obj.token
|
|
)
|
|
or len(obj.get_barmen_list()) < 1
|
|
):
|
|
return HttpResponseRedirect(
|
|
reverse_lazy("counter:details", kwargs={"counter_id": obj.id})
|
|
)
|
|
else:
|
|
if not request.user.is_authenticated:
|
|
raise PermissionDenied
|
|
return super(CounterClick, self).dispatch(request, *args, **kwargs)
|
|
|
|
def get(self, request, *args, **kwargs):
|
|
"""Simple get view"""
|
|
if "basket" not in request.session.keys(): # Init the basket session entry
|
|
request.session["basket"] = {}
|
|
request.session["basket_total"] = 0
|
|
request.session["not_enough"] = False # Reset every variable
|
|
request.session["too_young"] = False
|
|
request.session["not_allowed"] = False
|
|
request.session["no_age"] = False
|
|
self.refill_form = None
|
|
ret = super(CounterClick, self).get(request, *args, **kwargs)
|
|
if (self.object.type != "BAR" and not request.user.is_authenticated) or (
|
|
self.object.type == "BAR" and len(self.object.get_barmen_list()) < 1
|
|
): # Check that at least one barman is logged in
|
|
ret = self.cancel(request) # Otherwise, go to main view
|
|
return ret
|
|
|
|
def post(self, request, *args, **kwargs):
|
|
"""Handle the many possibilities of the post request"""
|
|
self.object = self.get_object()
|
|
self.refill_form = None
|
|
if (self.object.type != "BAR" and not request.user.is_authenticated) or (
|
|
self.object.type == "BAR" and len(self.object.get_barmen_list()) < 1
|
|
): # Check that at least one barman is logged in
|
|
return self.cancel(request)
|
|
if self.object.type == "BAR" and not (
|
|
"counter_token" in self.request.session.keys()
|
|
and self.request.session["counter_token"] == self.object.token
|
|
): # Also check the token to avoid the bar to be stolen
|
|
return HttpResponseRedirect(
|
|
reverse_lazy(
|
|
"counter:details",
|
|
args=self.args,
|
|
kwargs={"counter_id": self.object.id},
|
|
)
|
|
+ "?bad_location"
|
|
)
|
|
if "basket" not in request.session.keys():
|
|
request.session["basket"] = {}
|
|
request.session["basket_total"] = 0
|
|
request.session["not_enough"] = False # Reset every variable
|
|
request.session["too_young"] = False
|
|
request.session["not_allowed"] = False
|
|
request.session["no_age"] = False
|
|
request.session["not_valid_student_card_uid"] = False
|
|
if self.object.type != "BAR":
|
|
self.operator = request.user
|
|
elif self.customer_is_barman():
|
|
self.operator = self.customer.user
|
|
else:
|
|
self.operator = self.object.get_random_barman()
|
|
action = self.request.POST.get("action", None)
|
|
if action is None:
|
|
action = parse_qs(request.body.decode()).get("action", [""])[0]
|
|
if action == "add_product":
|
|
self.add_product(request)
|
|
elif action == "add_student_card":
|
|
self.add_student_card(request)
|
|
elif action == "del_product":
|
|
self.del_product(request)
|
|
elif action == "refill":
|
|
self.refill(request)
|
|
elif action == "code":
|
|
return self.parse_code(request)
|
|
elif action == "cancel":
|
|
return self.cancel(request)
|
|
elif action == "finish":
|
|
return self.finish(request)
|
|
context = self.get_context_data(object=self.object)
|
|
return self.render_to_response(context)
|
|
|
|
def customer_is_barman(self) -> bool:
|
|
barmen = self.object.barmen_list
|
|
return self.object.type == "BAR" and self.customer.user in barmen
|
|
|
|
def get_product(self, pid):
|
|
return Product.objects.filter(pk=int(pid)).first()
|
|
|
|
def get_price(self, pid):
|
|
p = self.get_product(pid)
|
|
if self.customer_is_barman():
|
|
price = p.special_selling_price
|
|
else:
|
|
price = p.selling_price
|
|
return price
|
|
|
|
def sum_basket(self, request):
|
|
total = 0
|
|
for pid, infos in request.session["basket"].items():
|
|
total += infos["price"] * infos["qty"]
|
|
return total / 100
|
|
|
|
def get_total_quantity_for_pid(self, request, pid):
|
|
pid = str(pid)
|
|
try:
|
|
return (
|
|
request.session["basket"][pid]["qty"]
|
|
+ request.session["basket"][pid]["bonus_qty"]
|
|
)
|
|
except:
|
|
return 0
|
|
|
|
def compute_record_product(self, request, product=None):
|
|
recorded = 0
|
|
basket = request.session["basket"]
|
|
|
|
if product:
|
|
if product.is_record_product:
|
|
recorded -= 1
|
|
elif product.is_unrecord_product:
|
|
recorded += 1
|
|
|
|
for p in basket:
|
|
bproduct = self.get_product(str(p))
|
|
if bproduct.is_record_product:
|
|
recorded -= basket[p]["qty"]
|
|
elif bproduct.is_unrecord_product:
|
|
recorded += basket[p]["qty"]
|
|
return recorded
|
|
|
|
def is_record_product_ok(self, request, product):
|
|
return self.customer.can_record_more(
|
|
self.compute_record_product(request, product)
|
|
)
|
|
|
|
@staticmethod
|
|
def is_ajax(request):
|
|
# when using the fetch API, the django request.POST dict is empty
|
|
# this is but a wretched contrivance which strive to replace
|
|
# the deprecated django is_ajax() method
|
|
# and which must be replaced as soon as possible
|
|
# by a proper separation between the api endpoints of the counter
|
|
return len(request.POST) == 0 and len(request.body) != 0
|
|
|
|
def add_product(self, request, q=1, p=None):
|
|
"""
|
|
Add a product to the basket
|
|
q is the quantity passed as integer
|
|
p is the product id, passed as an integer
|
|
"""
|
|
pid = p or parse_qs(request.body.decode())["product_id"][0]
|
|
pid = str(pid)
|
|
price = self.get_price(pid)
|
|
total = self.sum_basket(request)
|
|
product: Product = self.get_product(pid)
|
|
user: User = self.customer.user
|
|
buying_groups = list(product.buying_groups.values_list("pk", flat=True))
|
|
can_buy = len(buying_groups) == 0 or any(
|
|
user.is_in_group(pk=group_id) for group_id in buying_groups
|
|
)
|
|
if not can_buy:
|
|
request.session["not_allowed"] = True
|
|
return False
|
|
bq = 0 # Bonus quantity, for trays
|
|
if (
|
|
product.tray
|
|
): # Handle the tray to adjust the quantity q to add and the bonus quantity bq
|
|
total_qty_mod_6 = self.get_total_quantity_for_pid(request, pid) % 6
|
|
bq = int((total_qty_mod_6 + q) / 6) # Integer division
|
|
q -= bq
|
|
if self.customer.amount < (
|
|
total + round(q * float(price), 2)
|
|
): # Check for enough money
|
|
request.session["not_enough"] = True
|
|
return False
|
|
if product.is_unrecord_product and not self.is_record_product_ok(
|
|
request, product
|
|
):
|
|
request.session["not_allowed"] = True
|
|
return False
|
|
if product.limit_age >= 18 and not user.date_of_birth:
|
|
request.session["no_age"] = True
|
|
return False
|
|
if product.limit_age >= 18 and user.is_banned_alcohol:
|
|
request.session["not_allowed"] = True
|
|
return False
|
|
if user.is_banned_counter:
|
|
request.session["not_allowed"] = True
|
|
return False
|
|
if (
|
|
user.date_of_birth and self.customer.user.get_age() < product.limit_age
|
|
): # Check if affordable
|
|
request.session["too_young"] = True
|
|
return False
|
|
if pid in request.session["basket"]: # Add if already in basket
|
|
request.session["basket"][pid]["qty"] += q
|
|
request.session["basket"][pid]["bonus_qty"] += bq
|
|
else: # or create if not
|
|
request.session["basket"][pid] = {
|
|
"qty": q,
|
|
"price": int(price * 100),
|
|
"bonus_qty": bq,
|
|
}
|
|
request.session.modified = True
|
|
return True
|
|
|
|
def add_student_card(self, request):
|
|
"""
|
|
Add a new student card on the customer account
|
|
"""
|
|
uid = request.POST["student_card_uid"]
|
|
uid = str(uid)
|
|
if not StudentCard.is_valid(uid):
|
|
request.session["not_valid_student_card_uid"] = True
|
|
return False
|
|
|
|
if not (
|
|
self.object.type == "BAR"
|
|
and "counter_token" in request.session.keys()
|
|
and request.session["counter_token"] == self.object.token
|
|
and len(self.object.get_barmen_list()) > 0
|
|
):
|
|
raise PermissionDenied
|
|
|
|
StudentCard(customer=self.customer, uid=uid).save()
|
|
return True
|
|
|
|
def del_product(self, request):
|
|
"""Delete a product from the basket"""
|
|
pid = parse_qs(request.body.decode())["product_id"][0]
|
|
product = self.get_product(pid)
|
|
if pid in request.session["basket"]:
|
|
if (
|
|
product.tray
|
|
and (self.get_total_quantity_for_pid(request, pid) % 6 == 0)
|
|
and request.session["basket"][pid]["bonus_qty"]
|
|
):
|
|
request.session["basket"][pid]["bonus_qty"] -= 1
|
|
else:
|
|
request.session["basket"][pid]["qty"] -= 1
|
|
if request.session["basket"][pid]["qty"] <= 0:
|
|
del request.session["basket"][pid]
|
|
request.session.modified = True
|
|
|
|
def parse_code(self, request):
|
|
"""
|
|
Parse the string entered by the barman
|
|
This can be of two forms :
|
|
- <str>, where the string is the code of the product
|
|
- <int>X<str>, where the integer is the quantity and str the code
|
|
"""
|
|
string = parse_qs(request.body.decode()).get("code", [""])[0].upper()
|
|
if string == "FIN":
|
|
return self.finish(request)
|
|
elif string == "ANN":
|
|
return self.cancel(request)
|
|
regex = re.compile(r"^((?P<nb>[0-9]+)X)?(?P<code>[A-Z0-9]+)$")
|
|
m = regex.match(string)
|
|
if m is not None:
|
|
nb = m.group("nb")
|
|
code = m.group("code")
|
|
nb = int(nb) if nb is not None else 1
|
|
p = self.object.products.filter(code=code).first()
|
|
if p is not None:
|
|
self.add_product(request, nb, p.id)
|
|
context = self.get_context_data(object=self.object)
|
|
return self.render_to_response(context)
|
|
|
|
def finish(self, request):
|
|
"""Finish the click session, and validate the basket"""
|
|
with transaction.atomic():
|
|
request.session["last_basket"] = []
|
|
if self.sum_basket(request) > self.customer.amount:
|
|
raise DataError(_("You have not enough money to buy all the basket"))
|
|
|
|
for pid, infos in request.session["basket"].items():
|
|
# This duplicates code for DB optimization (prevent to load many times the same object)
|
|
p = Product.objects.filter(pk=pid).first()
|
|
if self.customer_is_barman():
|
|
uprice = p.special_selling_price
|
|
else:
|
|
uprice = p.selling_price
|
|
request.session["last_basket"].append(
|
|
"%d x %s" % (infos["qty"] + infos["bonus_qty"], p.name)
|
|
)
|
|
s = Selling(
|
|
label=p.name,
|
|
product=p,
|
|
club=p.club,
|
|
counter=self.object,
|
|
unit_price=uprice,
|
|
quantity=infos["qty"],
|
|
seller=self.operator,
|
|
customer=self.customer,
|
|
)
|
|
s.save()
|
|
if infos["bonus_qty"]:
|
|
s = Selling(
|
|
label=p.name + " (Plateau)",
|
|
product=p,
|
|
club=p.club,
|
|
counter=self.object,
|
|
unit_price=0,
|
|
quantity=infos["bonus_qty"],
|
|
seller=self.operator,
|
|
customer=self.customer,
|
|
)
|
|
s.save()
|
|
self.customer.recorded_products -= self.compute_record_product(request)
|
|
self.customer.save()
|
|
request.session["last_customer"] = self.customer.user.get_display_name()
|
|
request.session["last_total"] = "%0.2f" % self.sum_basket(request)
|
|
request.session["new_customer_amount"] = str(self.customer.amount)
|
|
del request.session["basket"]
|
|
request.session.modified = True
|
|
kwargs = {"counter_id": self.object.id}
|
|
return HttpResponseRedirect(
|
|
reverse_lazy("counter:details", args=self.args, kwargs=kwargs)
|
|
)
|
|
|
|
def cancel(self, request):
|
|
"""Cancel the click session"""
|
|
kwargs = {"counter_id": self.object.id}
|
|
request.session.pop("basket", None)
|
|
return HttpResponseRedirect(
|
|
reverse_lazy("counter:details", args=self.args, kwargs=kwargs)
|
|
)
|
|
|
|
def refill(self, request):
|
|
"""Refill the customer's account"""
|
|
if not self.object.can_refill():
|
|
raise PermissionDenied
|
|
form = RefillForm(request.POST)
|
|
if form.is_valid():
|
|
form.instance.counter = self.object
|
|
form.instance.operator = self.operator
|
|
form.instance.customer = self.customer
|
|
form.instance.save()
|
|
else:
|
|
self.refill_form = form
|
|
|
|
def get_context_data(self, **kwargs):
|
|
"""Add customer to the context"""
|
|
kwargs = super(CounterClick, self).get_context_data(**kwargs)
|
|
products = self.object.products.select_related("product_type")
|
|
if self.customer_is_barman():
|
|
products = products.annotate(price=F("special_selling_price"))
|
|
else:
|
|
products = products.annotate(price=F("selling_price"))
|
|
kwargs["products"] = products
|
|
kwargs["categories"] = {}
|
|
for product in kwargs["products"]:
|
|
if product.product_type:
|
|
kwargs["categories"].setdefault(product.product_type, []).append(
|
|
product
|
|
)
|
|
kwargs["customer"] = self.customer
|
|
kwargs["basket_total"] = self.sum_basket(self.request)
|
|
kwargs["refill_form"] = self.refill_form or RefillForm()
|
|
kwargs["student_card_max_uid_size"] = StudentCard.UID_SIZE
|
|
kwargs["barmens_can_refill"] = self.object.can_refill()
|
|
return kwargs
|
|
|
|
|
|
class CounterLogin(RedirectView):
|
|
"""
|
|
Handle the login of a barman
|
|
|
|
Logged barmen are stored in the Permanency model
|
|
"""
|
|
|
|
permanent = False
|
|
|
|
def post(self, request, *args, **kwargs):
|
|
"""
|
|
Register the logged user as barman for this counter
|
|
"""
|
|
self.counter_id = kwargs["counter_id"]
|
|
self.counter = Counter.objects.filter(id=kwargs["counter_id"]).first()
|
|
form = LoginForm(request, data=request.POST)
|
|
self.errors = []
|
|
if form.is_valid():
|
|
user = User.objects.filter(username=form.cleaned_data["username"]).first()
|
|
if (
|
|
user in self.counter.sellers.all()
|
|
and not user in self.counter.get_barmen_list()
|
|
):
|
|
if len(self.counter.get_barmen_list()) <= 0:
|
|
self.counter.gen_token()
|
|
request.session["counter_token"] = self.counter.token
|
|
self.counter.add_barman(user)
|
|
else:
|
|
self.errors += ["sellers"]
|
|
else:
|
|
self.errors += ["credentials"]
|
|
return super(CounterLogin, self).post(request, *args, **kwargs)
|
|
|
|
def get_redirect_url(self, *args, **kwargs):
|
|
return (
|
|
reverse_lazy("counter:details", args=args, kwargs=kwargs)
|
|
+ "?"
|
|
+ "&".join(self.errors)
|
|
)
|
|
|
|
|
|
class CounterLogout(RedirectView):
|
|
permanent = False
|
|
|
|
def post(self, request, *args, **kwargs):
|
|
"""
|
|
Unregister the user from the barman
|
|
"""
|
|
self.counter = Counter.objects.filter(id=kwargs["counter_id"]).first()
|
|
user = User.objects.filter(id=request.POST["user_id"]).first()
|
|
self.counter.del_barman(user)
|
|
return super(CounterLogout, self).post(request, *args, **kwargs)
|
|
|
|
def get_redirect_url(self, *args, **kwargs):
|
|
return reverse_lazy("counter:details", args=args, kwargs=kwargs)
|
|
|
|
|
|
# Counter admin views
|
|
|
|
|
|
class CounterAdminTabsMixin(TabedViewMixin):
|
|
tabs_title = _("Counter administration")
|
|
list_of_tabs = [
|
|
{"url": reverse_lazy("stock:list"), "slug": "stocks", "name": _("Stocks")},
|
|
{
|
|
"url": reverse_lazy("counter:admin_list"),
|
|
"slug": "counters",
|
|
"name": _("Counters"),
|
|
},
|
|
{
|
|
"url": reverse_lazy("counter:product_list"),
|
|
"slug": "products",
|
|
"name": _("Products"),
|
|
},
|
|
{
|
|
"url": reverse_lazy("counter:product_list_archived"),
|
|
"slug": "archive",
|
|
"name": _("Archived products"),
|
|
},
|
|
{
|
|
"url": reverse_lazy("counter:producttype_list"),
|
|
"slug": "product_types",
|
|
"name": _("Product types"),
|
|
},
|
|
{
|
|
"url": reverse_lazy("counter:cash_summary_list"),
|
|
"slug": "cash_summary",
|
|
"name": _("Cash register summaries"),
|
|
},
|
|
{
|
|
"url": reverse_lazy("counter:invoices_call"),
|
|
"slug": "invoices_call",
|
|
"name": _("Invoices call"),
|
|
},
|
|
{
|
|
"url": reverse_lazy("counter:eticket_list"),
|
|
"slug": "etickets",
|
|
"name": _("Etickets"),
|
|
},
|
|
]
|
|
|
|
|
|
class CounterListView(CounterAdminTabsMixin, CanViewMixin, ListView):
|
|
"""
|
|
A list view for the admins
|
|
"""
|
|
|
|
model = Counter
|
|
template_name = "counter/counter_list.jinja"
|
|
current_tab = "counters"
|
|
|
|
|
|
class CounterEditView(CounterAdminTabsMixin, CounterAdminMixin, UpdateView):
|
|
"""
|
|
Edit a counter's main informations (for the counter's manager)
|
|
"""
|
|
|
|
model = Counter
|
|
form_class = CounterEditForm
|
|
pk_url_kwarg = "counter_id"
|
|
template_name = "core/edit.jinja"
|
|
current_tab = "counters"
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
obj = self.get_object()
|
|
self.edit_club.append(obj.club)
|
|
return super(CounterEditView, self).dispatch(request, *args, **kwargs)
|
|
|
|
def get_success_url(self):
|
|
return reverse_lazy("counter:admin", kwargs={"counter_id": self.object.id})
|
|
|
|
|
|
class CounterEditPropView(CounterAdminTabsMixin, CounterAdminMixin, UpdateView):
|
|
"""
|
|
Edit a counter's main informations (for the counter's admin)
|
|
"""
|
|
|
|
model = Counter
|
|
form_class = modelform_factory(Counter, fields=["name", "club", "type"])
|
|
pk_url_kwarg = "counter_id"
|
|
template_name = "core/edit.jinja"
|
|
current_tab = "counters"
|
|
|
|
|
|
class CounterCreateView(CounterAdminTabsMixin, CounterAdminMixin, CreateView):
|
|
"""
|
|
Create a counter (for the admins)
|
|
"""
|
|
|
|
model = Counter
|
|
form_class = modelform_factory(
|
|
Counter,
|
|
fields=["name", "club", "type", "products"],
|
|
widgets={"products": CheckboxSelectMultiple},
|
|
)
|
|
template_name = "core/create.jinja"
|
|
current_tab = "counters"
|
|
|
|
|
|
class CounterDeleteView(CounterAdminTabsMixin, CounterAdminMixin, DeleteView):
|
|
"""
|
|
Delete a counter (for the admins)
|
|
"""
|
|
|
|
model = Counter
|
|
pk_url_kwarg = "counter_id"
|
|
template_name = "core/delete_confirm.jinja"
|
|
success_url = reverse_lazy("counter:admin_list")
|
|
current_tab = "counters"
|
|
|
|
|
|
# Product management
|
|
|
|
|
|
class ProductTypeListView(CounterAdminTabsMixin, CounterAdminMixin, ListView):
|
|
"""
|
|
A list view for the admins
|
|
"""
|
|
|
|
model = ProductType
|
|
template_name = "counter/producttype_list.jinja"
|
|
current_tab = "product_types"
|
|
|
|
|
|
class ProductTypeCreateView(CounterAdminTabsMixin, CounterAdminMixin, CreateView):
|
|
"""
|
|
A create view for the admins
|
|
"""
|
|
|
|
model = ProductType
|
|
fields = ["name", "description", "comment", "icon", "priority"]
|
|
template_name = "core/create.jinja"
|
|
current_tab = "products"
|
|
|
|
|
|
class ProductTypeEditView(CounterAdminTabsMixin, CounterAdminMixin, UpdateView):
|
|
"""
|
|
An edit view for the admins
|
|
"""
|
|
|
|
model = ProductType
|
|
template_name = "core/edit.jinja"
|
|
fields = ["name", "description", "comment", "icon", "priority"]
|
|
pk_url_kwarg = "type_id"
|
|
current_tab = "products"
|
|
|
|
|
|
class ProductArchivedListView(CounterAdminTabsMixin, CounterAdminMixin, ListView):
|
|
"""
|
|
A list view for the admins
|
|
"""
|
|
|
|
model = Product
|
|
template_name = "counter/product_list.jinja"
|
|
queryset = Product.objects.filter(archived=True)
|
|
ordering = ["name"]
|
|
current_tab = "archive"
|
|
|
|
|
|
class ProductListView(CounterAdminTabsMixin, CounterAdminMixin, ListView):
|
|
"""
|
|
A list view for the admins
|
|
"""
|
|
|
|
model = Product
|
|
template_name = "counter/product_list.jinja"
|
|
queryset = Product.objects.filter(archived=False)
|
|
ordering = ["name"]
|
|
current_tab = "products"
|
|
|
|
|
|
class ProductCreateView(CounterAdminTabsMixin, CounterAdminMixin, CreateView):
|
|
"""
|
|
A create view for the admins
|
|
"""
|
|
|
|
model = Product
|
|
form_class = ProductEditForm
|
|
template_name = "core/create.jinja"
|
|
current_tab = "products"
|
|
|
|
|
|
class ProductEditView(CounterAdminTabsMixin, CounterAdminMixin, UpdateView):
|
|
"""
|
|
An edit view for the admins
|
|
"""
|
|
|
|
model = Product
|
|
form_class = ProductEditForm
|
|
pk_url_kwarg = "product_id"
|
|
template_name = "core/edit.jinja"
|
|
current_tab = "products"
|
|
|
|
|
|
class RefillingDeleteView(DeleteView):
|
|
"""
|
|
Delete a refilling (for the admins)
|
|
"""
|
|
|
|
model = Refilling
|
|
pk_url_kwarg = "refilling_id"
|
|
template_name = "core/delete_confirm.jinja"
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
"""
|
|
We have here a very particular right handling, we can't inherit from CanEditPropMixin
|
|
"""
|
|
self.object = self.get_object()
|
|
if (
|
|
timezone.now() - self.object.date
|
|
<= timedelta(minutes=settings.SITH_LAST_OPERATIONS_LIMIT)
|
|
and "counter_token" in request.session.keys()
|
|
and request.session["counter_token"]
|
|
and Counter.objects.filter( # check if not null for counters that have no token set
|
|
token=request.session["counter_token"]
|
|
).exists()
|
|
):
|
|
self.success_url = reverse(
|
|
"counter:details", kwargs={"counter_id": self.object.counter.id}
|
|
)
|
|
return super(RefillingDeleteView, self).dispatch(request, *args, **kwargs)
|
|
elif self.object.is_owned_by(request.user):
|
|
self.success_url = reverse(
|
|
"core:user_account", kwargs={"user_id": self.object.customer.user.id}
|
|
)
|
|
return super(RefillingDeleteView, self).dispatch(request, *args, **kwargs)
|
|
raise PermissionDenied
|
|
|
|
|
|
class SellingDeleteView(DeleteView):
|
|
"""
|
|
Delete a selling (for the admins)
|
|
"""
|
|
|
|
model = Selling
|
|
pk_url_kwarg = "selling_id"
|
|
template_name = "core/delete_confirm.jinja"
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
"""
|
|
We have here a very particular right handling, we can't inherit from CanEditPropMixin
|
|
"""
|
|
self.object = self.get_object()
|
|
if (
|
|
timezone.now() - self.object.date
|
|
<= timedelta(minutes=settings.SITH_LAST_OPERATIONS_LIMIT)
|
|
and "counter_token" in request.session.keys()
|
|
and request.session["counter_token"]
|
|
and Counter.objects.filter( # check if not null for counters that have no token set
|
|
token=request.session["counter_token"]
|
|
).exists()
|
|
):
|
|
self.success_url = reverse(
|
|
"counter:details", kwargs={"counter_id": self.object.counter.id}
|
|
)
|
|
return super(SellingDeleteView, self).dispatch(request, *args, **kwargs)
|
|
elif self.object.is_owned_by(request.user):
|
|
self.success_url = reverse(
|
|
"core:user_account", kwargs={"user_id": self.object.customer.user.id}
|
|
)
|
|
return super(SellingDeleteView, self).dispatch(request, *args, **kwargs)
|
|
raise PermissionDenied
|
|
|
|
|
|
# Cash register summaries
|
|
|
|
|
|
class CashRegisterSummaryForm(forms.Form):
|
|
"""
|
|
Provide the cash summary form
|
|
"""
|
|
|
|
ten_cents = forms.IntegerField(label=_("10 cents"), required=False, min_value=0)
|
|
twenty_cents = forms.IntegerField(label=_("20 cents"), required=False, min_value=0)
|
|
fifty_cents = forms.IntegerField(label=_("50 cents"), required=False, min_value=0)
|
|
one_euro = forms.IntegerField(label=_("1 euro"), required=False, min_value=0)
|
|
two_euros = forms.IntegerField(label=_("2 euros"), required=False, min_value=0)
|
|
five_euros = forms.IntegerField(label=_("5 euros"), required=False, min_value=0)
|
|
ten_euros = forms.IntegerField(label=_("10 euros"), required=False, min_value=0)
|
|
twenty_euros = forms.IntegerField(label=_("20 euros"), required=False, min_value=0)
|
|
fifty_euros = forms.IntegerField(label=_("50 euros"), required=False, min_value=0)
|
|
hundred_euros = forms.IntegerField(
|
|
label=_("100 euros"), required=False, min_value=0
|
|
)
|
|
check_1_value = forms.DecimalField(
|
|
label=_("Check amount"), required=False, min_value=0
|
|
)
|
|
check_1_quantity = forms.IntegerField(
|
|
label=_("Check quantity"), required=False, min_value=0
|
|
)
|
|
check_2_value = forms.DecimalField(
|
|
label=_("Check amount"), required=False, min_value=0
|
|
)
|
|
check_2_quantity = forms.IntegerField(
|
|
label=_("Check quantity"), required=False, min_value=0
|
|
)
|
|
check_3_value = forms.DecimalField(
|
|
label=_("Check amount"), required=False, min_value=0
|
|
)
|
|
check_3_quantity = forms.IntegerField(
|
|
label=_("Check quantity"), required=False, min_value=0
|
|
)
|
|
check_4_value = forms.DecimalField(
|
|
label=_("Check amount"), required=False, min_value=0
|
|
)
|
|
check_4_quantity = forms.IntegerField(
|
|
label=_("Check quantity"), required=False, min_value=0
|
|
)
|
|
check_5_value = forms.DecimalField(
|
|
label=_("Check amount"), required=False, min_value=0
|
|
)
|
|
check_5_quantity = forms.IntegerField(
|
|
label=_("Check quantity"), required=False, min_value=0
|
|
)
|
|
comment = forms.CharField(label=_("Comment"), required=False)
|
|
emptied = forms.BooleanField(label=_("Emptied"), required=False)
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
instance = kwargs.pop("instance", None)
|
|
super(CashRegisterSummaryForm, self).__init__(*args, **kwargs)
|
|
if instance:
|
|
self.fields["ten_cents"].initial = (
|
|
instance.ten_cents.quantity if instance.ten_cents else 0
|
|
)
|
|
self.fields["twenty_cents"].initial = (
|
|
instance.twenty_cents.quantity if instance.twenty_cents else 0
|
|
)
|
|
self.fields["fifty_cents"].initial = (
|
|
instance.fifty_cents.quantity if instance.fifty_cents else 0
|
|
)
|
|
self.fields["one_euro"].initial = (
|
|
instance.one_euro.quantity if instance.one_euro else 0
|
|
)
|
|
self.fields["two_euros"].initial = (
|
|
instance.two_euros.quantity if instance.two_euros else 0
|
|
)
|
|
self.fields["five_euros"].initial = (
|
|
instance.five_euros.quantity if instance.five_euros else 0
|
|
)
|
|
self.fields["ten_euros"].initial = (
|
|
instance.ten_euros.quantity if instance.ten_euros else 0
|
|
)
|
|
self.fields["twenty_euros"].initial = (
|
|
instance.twenty_euros.quantity if instance.twenty_euros else 0
|
|
)
|
|
self.fields["fifty_euros"].initial = (
|
|
instance.fifty_euros.quantity if instance.fifty_euros else 0
|
|
)
|
|
self.fields["hundred_euros"].initial = (
|
|
instance.hundred_euros.quantity if instance.hundred_euros else 0
|
|
)
|
|
self.fields["check_1_quantity"].initial = (
|
|
instance.check_1.quantity if instance.check_1 else 0
|
|
)
|
|
self.fields["check_2_quantity"].initial = (
|
|
instance.check_2.quantity if instance.check_2 else 0
|
|
)
|
|
self.fields["check_3_quantity"].initial = (
|
|
instance.check_3.quantity if instance.check_3 else 0
|
|
)
|
|
self.fields["check_4_quantity"].initial = (
|
|
instance.check_4.quantity if instance.check_4 else 0
|
|
)
|
|
self.fields["check_5_quantity"].initial = (
|
|
instance.check_5.quantity if instance.check_5 else 0
|
|
)
|
|
self.fields["check_1_value"].initial = (
|
|
instance.check_1.value if instance.check_1 else 0
|
|
)
|
|
self.fields["check_2_value"].initial = (
|
|
instance.check_2.value if instance.check_2 else 0
|
|
)
|
|
self.fields["check_3_value"].initial = (
|
|
instance.check_3.value if instance.check_3 else 0
|
|
)
|
|
self.fields["check_4_value"].initial = (
|
|
instance.check_4.value if instance.check_4 else 0
|
|
)
|
|
self.fields["check_5_value"].initial = (
|
|
instance.check_5.value if instance.check_5 else 0
|
|
)
|
|
self.fields["comment"].initial = instance.comment
|
|
self.fields["emptied"].initial = instance.emptied
|
|
self.instance = instance
|
|
else:
|
|
self.instance = None
|
|
|
|
def save(self, counter=None):
|
|
cd = self.cleaned_data
|
|
summary = self.instance or CashRegisterSummary(
|
|
counter=counter, user=counter.get_random_barman()
|
|
)
|
|
summary.comment = cd["comment"]
|
|
summary.emptied = cd["emptied"]
|
|
summary.save()
|
|
summary.items.all().delete()
|
|
# Cash
|
|
if cd["ten_cents"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=0.1, quantity=cd["ten_cents"]
|
|
).save()
|
|
if cd["twenty_cents"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=0.2, quantity=cd["twenty_cents"]
|
|
).save()
|
|
if cd["fifty_cents"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=0.5, quantity=cd["fifty_cents"]
|
|
).save()
|
|
if cd["one_euro"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=1, quantity=cd["one_euro"]
|
|
).save()
|
|
if cd["two_euros"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=2, quantity=cd["two_euros"]
|
|
).save()
|
|
if cd["five_euros"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=5, quantity=cd["five_euros"]
|
|
).save()
|
|
if cd["ten_euros"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=10, quantity=cd["ten_euros"]
|
|
).save()
|
|
if cd["twenty_euros"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=20, quantity=cd["twenty_euros"]
|
|
).save()
|
|
if cd["fifty_euros"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=50, quantity=cd["fifty_euros"]
|
|
).save()
|
|
if cd["hundred_euros"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary, value=100, quantity=cd["hundred_euros"]
|
|
).save()
|
|
# Checks
|
|
if cd["check_1_quantity"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary,
|
|
value=cd["check_1_value"],
|
|
quantity=cd["check_1_quantity"],
|
|
check=True,
|
|
).save()
|
|
if cd["check_2_quantity"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary,
|
|
value=cd["check_2_value"],
|
|
quantity=cd["check_2_quantity"],
|
|
check=True,
|
|
).save()
|
|
if cd["check_3_quantity"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary,
|
|
value=cd["check_3_value"],
|
|
quantity=cd["check_3_quantity"],
|
|
check=True,
|
|
).save()
|
|
if cd["check_4_quantity"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary,
|
|
value=cd["check_4_value"],
|
|
quantity=cd["check_4_quantity"],
|
|
check=True,
|
|
).save()
|
|
if cd["check_5_quantity"]:
|
|
CashRegisterSummaryItem(
|
|
cash_summary=summary,
|
|
value=cd["check_5_value"],
|
|
quantity=cd["check_5_quantity"],
|
|
check=True,
|
|
).save()
|
|
if summary.items.count() < 1:
|
|
summary.delete()
|
|
|
|
|
|
class CounterLastOperationsView(CounterTabsMixin, CanViewMixin, DetailView):
|
|
"""
|
|
Provide the last operations to allow barmen to delete them
|
|
"""
|
|
|
|
model = Counter
|
|
pk_url_kwarg = "counter_id"
|
|
template_name = "counter/last_ops.jinja"
|
|
current_tab = "last_ops"
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
"""
|
|
We have here again a very particular right handling
|
|
"""
|
|
self.object = self.get_object()
|
|
if (
|
|
self.object.get_barmen_list()
|
|
and "counter_token" in request.session.keys()
|
|
and request.session["counter_token"]
|
|
and Counter.objects.filter( # check if not null for counters that have no token set
|
|
token=request.session["counter_token"]
|
|
).exists()
|
|
):
|
|
return super(CounterLastOperationsView, self).dispatch(
|
|
request, *args, **kwargs
|
|
)
|
|
return HttpResponseRedirect(
|
|
reverse("counter:details", kwargs={"counter_id": self.object.id})
|
|
+ "?bad_location"
|
|
)
|
|
|
|
def get_context_data(self, **kwargs):
|
|
"""Add form to the context"""
|
|
kwargs = super(CounterLastOperationsView, self).get_context_data(**kwargs)
|
|
threshold = timezone.now() - timedelta(
|
|
minutes=settings.SITH_LAST_OPERATIONS_LIMIT
|
|
)
|
|
kwargs["last_refillings"] = self.object.refillings.filter(
|
|
date__gte=threshold
|
|
).order_by("-id")[:20]
|
|
kwargs["last_sellings"] = self.object.sellings.filter(
|
|
date__gte=threshold
|
|
).order_by("-id")[:20]
|
|
return kwargs
|
|
|
|
|
|
class CounterCashSummaryView(CounterTabsMixin, CanViewMixin, DetailView):
|
|
"""
|
|
Provide the cash summary form
|
|
"""
|
|
|
|
model = Counter
|
|
pk_url_kwarg = "counter_id"
|
|
template_name = "counter/cash_register_summary.jinja"
|
|
current_tab = "cash_summary"
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
"""
|
|
We have here again a very particular right handling
|
|
"""
|
|
self.object = self.get_object()
|
|
if (
|
|
self.object.get_barmen_list()
|
|
and "counter_token" in request.session.keys()
|
|
and request.session["counter_token"]
|
|
and Counter.objects.filter( # check if not null for counters that have no token set
|
|
token=request.session["counter_token"]
|
|
).exists()
|
|
):
|
|
return super(CounterCashSummaryView, self).dispatch(
|
|
request, *args, **kwargs
|
|
)
|
|
return HttpResponseRedirect(
|
|
reverse("counter:details", kwargs={"counter_id": self.object.id})
|
|
+ "?bad_location"
|
|
)
|
|
|
|
def get(self, request, *args, **kwargs):
|
|
self.object = self.get_object()
|
|
self.form = CashRegisterSummaryForm()
|
|
return super(CounterCashSummaryView, self).get(request, *args, **kwargs)
|
|
|
|
def post(self, request, *args, **kwargs):
|
|
self.object = self.get_object()
|
|
self.form = CashRegisterSummaryForm(request.POST)
|
|
if self.form.is_valid():
|
|
self.form.save(self.object)
|
|
return HttpResponseRedirect(self.get_success_url())
|
|
return super(CounterCashSummaryView, self).get(request, *args, **kwargs)
|
|
|
|
def get_success_url(self):
|
|
return reverse_lazy("counter:details", kwargs={"counter_id": self.object.id})
|
|
|
|
def get_context_data(self, **kwargs):
|
|
"""Add form to the context"""
|
|
kwargs = super(CounterCashSummaryView, self).get_context_data(**kwargs)
|
|
kwargs["form"] = self.form
|
|
return kwargs
|
|
|
|
|
|
class CounterActivityView(DetailView):
|
|
"""
|
|
Show the bar activity
|
|
"""
|
|
|
|
model = Counter
|
|
pk_url_kwarg = "counter_id"
|
|
template_name = "counter/activity.jinja"
|
|
|
|
|
|
class CounterStatView(DetailView, CounterAdminMixin):
|
|
"""
|
|
Show the bar stats
|
|
"""
|
|
|
|
model = Counter
|
|
pk_url_kwarg = "counter_id"
|
|
template_name = "counter/stats.jinja"
|
|
|
|
def get_context_data(self, **kwargs):
|
|
"""Add stats to the context"""
|
|
counter: Counter = self.object
|
|
semester_start = get_start_of_semester()
|
|
office_hours = counter.get_top_barmen()
|
|
kwargs = super(CounterStatView, self).get_context_data(**kwargs)
|
|
kwargs.update(
|
|
{
|
|
"counter": counter,
|
|
"current_semester": get_semester_code(),
|
|
"total_sellings": counter.get_total_sales(since=semester_start),
|
|
"top_customers": counter.get_top_customers(since=semester_start)[:100],
|
|
"top_barman": office_hours[:100],
|
|
"top_barman_semester": (
|
|
office_hours.filter(start__gt=semester_start)[:100]
|
|
),
|
|
}
|
|
)
|
|
return kwargs
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
try:
|
|
return super(CounterStatView, self).dispatch(request, *args, **kwargs)
|
|
except PermissionDenied:
|
|
if (
|
|
request.user.is_root
|
|
or request.user.is_board_member
|
|
or self.get_object().is_owned_by(request.user)
|
|
):
|
|
return super(CanEditMixin, self).dispatch(request, *args, **kwargs)
|
|
raise PermissionDenied
|
|
|
|
|
|
class CashSummaryEditView(CounterAdminTabsMixin, CounterAdminMixin, UpdateView):
|
|
"""Edit cash summaries"""
|
|
|
|
model = CashRegisterSummary
|
|
template_name = "counter/cash_register_summary.jinja"
|
|
context_object_name = "cashsummary"
|
|
pk_url_kwarg = "cashsummary_id"
|
|
form_class = CashRegisterSummaryForm
|
|
current_tab = "cash_summary"
|
|
|
|
def get_success_url(self):
|
|
return reverse("counter:cash_summary_list")
|
|
|
|
|
|
class CashSummaryListView(CounterAdminTabsMixin, CounterAdminMixin, ListView):
|
|
"""Display a list of cash summaries"""
|
|
|
|
model = CashRegisterSummary
|
|
template_name = "counter/cash_summary_list.jinja"
|
|
context_object_name = "cashsummary_list"
|
|
current_tab = "cash_summary"
|
|
queryset = CashRegisterSummary.objects.all().order_by("-date")
|
|
paginate_by = settings.SITH_COUNTER_CASH_SUMMARY_LENGTH
|
|
|
|
def get_context_data(self, **kwargs):
|
|
"""Add sums to the context"""
|
|
kwargs = super(CashSummaryListView, self).get_context_data(**kwargs)
|
|
form = CashSummaryFormBase(self.request.GET)
|
|
kwargs["form"] = form
|
|
kwargs["summaries_sums"] = {}
|
|
kwargs["refilling_sums"] = {}
|
|
for c in Counter.objects.filter(type="BAR").all():
|
|
refillings = Refilling.objects.filter(counter=c)
|
|
cashredistersummaries = CashRegisterSummary.objects.filter(counter=c)
|
|
if form.is_valid() and form.cleaned_data["begin_date"]:
|
|
refillings = refillings.filter(
|
|
date__gte=form.cleaned_data["begin_date"]
|
|
)
|
|
cashredistersummaries = cashredistersummaries.filter(
|
|
date__gte=form.cleaned_data["begin_date"]
|
|
)
|
|
else:
|
|
last_summary = (
|
|
CashRegisterSummary.objects.filter(counter=c, emptied=True)
|
|
.order_by("-date")
|
|
.first()
|
|
)
|
|
if last_summary:
|
|
refillings = refillings.filter(date__gt=last_summary.date)
|
|
cashredistersummaries = cashredistersummaries.filter(
|
|
date__gt=last_summary.date
|
|
)
|
|
else:
|
|
refillings = refillings.filter(
|
|
date__gte=datetime(year=1994, month=5, day=17, tzinfo=pytz.UTC)
|
|
) # My birth date should be old enough
|
|
cashredistersummaries = cashredistersummaries.filter(
|
|
date__gte=datetime(year=1994, month=5, day=17, tzinfo=pytz.UTC)
|
|
)
|
|
if form.is_valid() and form.cleaned_data["end_date"]:
|
|
refillings = refillings.filter(date__lte=form.cleaned_data["end_date"])
|
|
cashredistersummaries = cashredistersummaries.filter(
|
|
date__lte=form.cleaned_data["end_date"]
|
|
)
|
|
kwargs["summaries_sums"][c.name] = sum(
|
|
[s.get_total() for s in cashredistersummaries.all()]
|
|
)
|
|
kwargs["refilling_sums"][c.name] = sum([s.amount for s in refillings.all()])
|
|
return kwargs
|
|
|
|
|
|
class InvoiceCallView(CounterAdminTabsMixin, CounterAdminMixin, TemplateView):
|
|
template_name = "counter/invoices_call.jinja"
|
|
current_tab = "invoices_call"
|
|
|
|
def get_context_data(self, **kwargs):
|
|
"""Add sums to the context"""
|
|
kwargs = super(InvoiceCallView, self).get_context_data(**kwargs)
|
|
kwargs["months"] = Selling.objects.datetimes("date", "month", order="DESC")
|
|
start_date = None
|
|
end_date = None
|
|
try:
|
|
start_date = datetime.strptime(self.request.GET["month"], "%Y-%m")
|
|
except:
|
|
start_date = datetime(
|
|
year=timezone.now().year,
|
|
month=(timezone.now().month + 10) % 12 + 1,
|
|
day=1,
|
|
)
|
|
start_date = start_date.replace(tzinfo=pytz.UTC)
|
|
end_date = (start_date + timedelta(days=32)).replace(
|
|
day=1, hour=0, minute=0, microsecond=0
|
|
)
|
|
from django.db.models import Sum, Case, When, F
|
|
|
|
kwargs["sum_cb"] = sum(
|
|
[
|
|
r.amount
|
|
for r in Refilling.objects.filter(
|
|
payment_method="CARD",
|
|
is_validated=True,
|
|
date__gte=start_date,
|
|
date__lte=end_date,
|
|
)
|
|
]
|
|
)
|
|
kwargs["sum_cb"] += sum(
|
|
[
|
|
s.quantity * s.unit_price
|
|
for s in Selling.objects.filter(
|
|
payment_method="CARD",
|
|
is_validated=True,
|
|
date__gte=start_date,
|
|
date__lte=end_date,
|
|
)
|
|
]
|
|
)
|
|
kwargs["start_date"] = start_date
|
|
kwargs["sums"] = (
|
|
Selling.objects.values("club__name")
|
|
.annotate(
|
|
selling_sum=Sum(
|
|
Case(
|
|
When(
|
|
date__gte=start_date,
|
|
date__lt=end_date,
|
|
then=F("unit_price") * F("quantity"),
|
|
),
|
|
output_field=CurrencyField(),
|
|
)
|
|
)
|
|
)
|
|
.exclude(selling_sum=None)
|
|
.order_by("-selling_sum")
|
|
)
|
|
return kwargs
|
|
|
|
|
|
class EticketListView(CounterAdminTabsMixin, CounterAdminMixin, ListView):
|
|
"""
|
|
A list view for the admins
|
|
"""
|
|
|
|
model = Eticket
|
|
template_name = "counter/eticket_list.jinja"
|
|
ordering = ["id"]
|
|
current_tab = "etickets"
|
|
|
|
|
|
class EticketCreateView(CounterAdminTabsMixin, CounterAdminMixin, CreateView):
|
|
"""
|
|
Create an eticket
|
|
"""
|
|
|
|
model = Eticket
|
|
template_name = "core/create.jinja"
|
|
form_class = EticketForm
|
|
current_tab = "etickets"
|
|
|
|
|
|
class EticketEditView(CounterAdminTabsMixin, CounterAdminMixin, UpdateView):
|
|
"""
|
|
Edit an eticket
|
|
"""
|
|
|
|
model = Eticket
|
|
template_name = "core/edit.jinja"
|
|
form_class = EticketForm
|
|
pk_url_kwarg = "eticket_id"
|
|
current_tab = "etickets"
|
|
|
|
|
|
class EticketPDFView(CanViewMixin, DetailView):
|
|
"""
|
|
Display the PDF of an eticket
|
|
"""
|
|
|
|
model = Selling
|
|
pk_url_kwarg = "selling_id"
|
|
|
|
def get(self, request, *args, **kwargs):
|
|
from reportlab.pdfgen import canvas
|
|
from reportlab.lib.utils import ImageReader
|
|
from reportlab.lib.units import cm
|
|
from reportlab.graphics.shapes import Drawing
|
|
from reportlab.graphics.barcode.qr import QrCodeWidget
|
|
from reportlab.graphics import renderPDF
|
|
|
|
if not (
|
|
hasattr(self.object, "product") and hasattr(self.object.product, "eticket")
|
|
):
|
|
raise Http404
|
|
|
|
eticket = self.object.product.eticket
|
|
user = self.object.customer.user
|
|
code = "%s %s %s %s" % (
|
|
self.object.customer.user.id,
|
|
self.object.product.id,
|
|
self.object.id,
|
|
self.object.quantity,
|
|
)
|
|
code += " " + eticket.get_hash(code)[:8].upper()
|
|
response = HttpResponse(content_type="application/pdf")
|
|
response["Content-Disposition"] = 'filename="eticket.pdf"'
|
|
p = canvas.Canvas(response)
|
|
p.setTitle("Eticket")
|
|
im = ImageReader("core/static/core/img/eticket.jpg")
|
|
width, height = im.getSize()
|
|
size = max(width, height)
|
|
width = 8 * cm * width / size
|
|
height = 8 * cm * height / size
|
|
p.drawImage(im, 10 * cm, 25 * cm, width, height)
|
|
if eticket.banner:
|
|
im = ImageReader(eticket.banner)
|
|
width, height = im.getSize()
|
|
size = max(width, height)
|
|
width = 6 * cm * width / size
|
|
height = 6 * cm * height / size
|
|
p.drawImage(im, 1 * cm, 25 * cm, width, height)
|
|
if user.profile_pict:
|
|
im = ImageReader(user.profile_pict.file)
|
|
width, height = im.getSize()
|
|
size = max(width, height)
|
|
width = 150 * width / size
|
|
height = 150 * height / size
|
|
p.drawImage(im, 10.5 * cm - width / 2, 16 * cm, width, height)
|
|
if eticket.event_title:
|
|
p.setFont("Helvetica-Bold", 20)
|
|
p.drawCentredString(10.5 * cm, 23.6 * cm, eticket.event_title)
|
|
if eticket.event_date:
|
|
p.setFont("Helvetica-Bold", 16)
|
|
p.drawCentredString(
|
|
10.5 * cm, 22.6 * cm, eticket.event_date.strftime("%d %b %Y")
|
|
) # FIXME with a locale
|
|
p.setFont("Helvetica-Bold", 14)
|
|
p.drawCentredString(
|
|
10.5 * cm,
|
|
15 * cm,
|
|
"%s : %d %s"
|
|
% (user.get_display_name(), self.object.quantity, str(_("people(s)"))),
|
|
)
|
|
p.setFont("Courier-Bold", 14)
|
|
qrcode = QrCodeWidget(code)
|
|
bounds = qrcode.getBounds()
|
|
width = bounds[2] - bounds[0]
|
|
height = bounds[3] - bounds[1]
|
|
d = Drawing(260, 260, transform=[260.0 / width, 0, 0, 260.0 / height, 0, 0])
|
|
d.add(qrcode)
|
|
renderPDF.draw(d, p, 10.5 * cm - 130, 6.1 * cm)
|
|
p.drawCentredString(10.5 * cm, 6 * cm, code)
|
|
|
|
partners = ImageReader("core/static/core/img/partners.png")
|
|
width, height = partners.getSize()
|
|
size = max(width, height)
|
|
width = width * 2 / 3
|
|
height = height * 2 / 3
|
|
p.drawImage(partners, 0 * cm, 0 * cm, width, height)
|
|
|
|
p.showPage()
|
|
p.save()
|
|
return response
|
|
|
|
|
|
class CounterRefillingListView(CounterAdminTabsMixin, CounterAdminMixin, ListView):
|
|
"""
|
|
List of refillings on a counter
|
|
"""
|
|
|
|
model = Refilling
|
|
template_name = "counter/refilling_list.jinja"
|
|
current_tab = "counters"
|
|
paginate_by = 30
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
self.counter = get_object_or_404(Counter, pk=kwargs["counter_id"])
|
|
self.queryset = Refilling.objects.filter(counter__id=self.counter.id)
|
|
return super(CounterRefillingListView, self).dispatch(request, *args, **kwargs)
|
|
|
|
def get_context_data(self, **kwargs):
|
|
kwargs = super(CounterRefillingListView, self).get_context_data(**kwargs)
|
|
kwargs["counter"] = self.counter
|
|
return kwargs
|
|
|
|
|
|
class StudentCardFormView(FormView):
|
|
"""
|
|
Add a new student card
|
|
"""
|
|
|
|
form_class = StudentCardForm
|
|
template_name = "core/create.jinja"
|
|
|
|
def dispatch(self, request, *args, **kwargs):
|
|
self.customer = get_object_or_404(Customer, pk=kwargs["customer_id"])
|
|
if not StudentCard.can_create(self.customer, request.user):
|
|
raise PermissionDenied
|
|
return super(StudentCardFormView, self).dispatch(request, *args, **kwargs)
|
|
|
|
def form_valid(self, form):
|
|
data = form.clean()
|
|
res = super(FormView, self).form_valid(form)
|
|
StudentCard(customer=self.customer, uid=data["uid"]).save()
|
|
return res
|
|
|
|
def get_success_url(self, **kwargs):
|
|
return reverse_lazy(
|
|
"core:user_prefs", kwargs={"user_id": self.customer.user.pk}
|
|
)
|
|
|
|
|
|
def __manage_billing_info_req(request, user_id, delete_if_fail=False):
|
|
data = json.loads(request.body)
|
|
form = BillingInfoForm(data)
|
|
if not form.is_valid():
|
|
if delete_if_fail:
|
|
Customer.objects.get(user__id=user_id).billing_infos.delete()
|
|
errors = [
|
|
{"field": str(form.fields[k].label), "messages": v}
|
|
for k, v in form.errors.items()
|
|
]
|
|
content = json.dumps({"errors": errors})
|
|
return HttpResponse(status=400, content=content)
|
|
if form.is_valid():
|
|
infos = Customer.objects.get(user__id=user_id).billing_infos
|
|
for field in form.fields:
|
|
infos.__dict__[field] = form[field].value()
|
|
infos.save()
|
|
content = json.dumps({"errors": None})
|
|
return HttpResponse(status=200, content=content)
|
|
|
|
|
|
@login_required
|
|
@require_POST
|
|
def create_billing_info(request, user_id):
|
|
user = request.user
|
|
if user.id != user_id and not user.has_perm("counter:add_billinginfo"):
|
|
raise PermissionDenied()
|
|
user = get_object_or_404(User, pk=user_id)
|
|
customer, _ = Customer.get_or_create(user)
|
|
BillingInfo.objects.create(customer=customer)
|
|
return __manage_billing_info_req(request, user_id, True)
|
|
|
|
|
|
@login_required
|
|
@require_POST
|
|
def edit_billing_info(request, user_id):
|
|
user = request.user
|
|
if user.id != user_id and not user.has_perm("counter:change_billinginfo"):
|
|
raise PermissionDenied()
|
|
user = get_object_or_404(User, pk=user_id)
|
|
if not hasattr(user, "customer"):
|
|
raise Http404
|
|
if not hasattr(user.customer, "billing_infos"):
|
|
raise Http404
|
|
|
|
return __manage_billing_info_req(request, user_id)
|