[#468] Enable TokenAuthConfiguration

maykinmedia · Dec 11, 2024 · 9cda2c1 · 9cda2c1
1 parent c5cd151
commit 9cda2c1
Show file tree

Hide file tree

Showing 4 changed files with 108 additions and 0 deletions.
diff --git a/docker/setup_configuration/data.yaml b/docker/setup_configuration/data.yaml
@@ -1,3 +1,14 @@
+objects_tokens_config_enable: true
+objects_tokens:
+  items:
+    - identifier: token-1
+      token: 18b2b74ef994314b84021d47b9422e82b685d82f
+      contact_person: Person 1
+      email: [email protected]
+      organization: Organization 1
+      application: Application 1
+      administration: Administration 1
+
 zgw_consumers_config_enable: true
 zgw_consumers:
   services:

diff --git a/src/objects/conf/base.py b/src/objects/conf/base.py
@@ -85,6 +85,7 @@
 #
 SETUP_CONFIGURATION_STEPS = (
     "zgw_consumers.contrib.setup_configuration.steps.ServiceConfigurationStep",
+    "objects.setup_configuration.steps.token_auth.TokenAuthConfigurationStep",
     "objects.setup_configuration.steps.sites.SitesConfigurationStep",
     "objects.setup_configuration.steps.objecttypes.ObjectTypesConfigurationStep",
 )
diff --git a/src/objects/setup_configuration/models/token_auth.py b/src/objects/setup_configuration/models/token_auth.py
@@ -0,0 +1,24 @@
+from django_setup_configuration.models import ConfigurationModel
+from pydantic import Field
+
+from objects.token.models import TokenAuth
+
+
+class TokenAuthConfigurationModel(ConfigurationModel):
+    class Meta:
+        django_model_refs = {
+            TokenAuth: (
+                "identifier",
+                "token",
+                "contact_person",
+                "email",
+                "organization",
+                "application",
+                "administration",
+                "is_superuser",
+            )
+        }
+
+
+class TokenAuthGroupConfigurationModel(ConfigurationModel):
+    items: list[TokenAuthConfigurationModel] = Field()
diff --git a/src/objects/setup_configuration/steps/token_auth.py b/src/objects/setup_configuration/steps/token_auth.py
@@ -0,0 +1,72 @@
+import logging
+
+from django.core.exceptions import ValidationError
+from django.db import IntegrityError
+
+from django_setup_configuration.configuration import BaseConfigurationStep
+from django_setup_configuration.exceptions import ConfigurationRunFailed
+
+from objects.setup_configuration.models.token_auth import (
+    TokenAuthGroupConfigurationModel,
+)
+from objects.token.models import TokenAuth
+
+logger = logging.getLogger(__name__)
+
+
+class TokenAuthConfigurationStep(
+    BaseConfigurationStep[TokenAuthGroupConfigurationModel]
+):
+    """
+    Configure tokens for other applications to access Objects API
+    """
+
+    namespace = "objects_tokens"
+    enable_setting = "objects_tokens_config_enable"
+
+    verbose_name = "Configuration to set up authentication tokens for objects"
+    config_model = TokenAuthGroupConfigurationModel
+
+    def execute(self, model: TokenAuthGroupConfigurationModel) -> None:
+        for item in model.items:
+            logger.info(f"Configuring {item.identifier}")
+
+            model_kwargs = {
+                "identifier": item.identifier,
+                "token": item.token,
+                "contact_person": item.contact_person,
+                "email": item.email,
+                "organization": item.organization,
+                "application": item.application,
+                "administration": item.administration,
+                "is_superuser": item.is_superuser,
+            }
+
+            token_instance = TokenAuth(**model_kwargs)
+
+            try:
+                token_instance.full_clean(exclude=("id",), validate_unique=False)
+            except ValidationError as exception:
+                exception_message = (
+                    f"Validation error(s) occured for {item.identifier}."
+                )
+                raise ConfigurationRunFailed(exception_message) from exception
+
+            logger.debug(f"No validation errors found for {item.identifier}")
+
+            try:
+                logger.debug(f"Saving {item.identifier}")
+
+                TokenAuth.objects.update_or_create(
+                    identifier=item.identifier,
+                    defaults={
+                        key: value
+                        for key, value in model_kwargs.items()
+                        if key != "identifier"
+                    },
+                )
+            except IntegrityError as exception:
+                exception_message = f"Failed configuring token {item.identifier}."
+                raise ConfigurationRunFailed(exception_message) from exception
+
+            logger.info(f"Configured {item.identifier}")