BotZ/api/rest.py

# -*- encoding: utf-8 -*-

"""
The REST endpoints.
"""

from aiohttp import web
import logging
import typing as T

from aiohttp_session import get_session

from bot_z.async_operator import AsyncOperator
from api.async_bot import login, logout, checkin, checkout
from api import BASE_URI


alog = logging.getLogger("api")
routes = web.RouteTableDef()
OPERATORS = {}


async def get_set_operator(
    request: web.Request, user: T.Text, password: T.Text
) -> AsyncOperator:
    session = await get_session(request)
    if "async_operator" in session:
        op = OPERATORS[session["async_operator"]]
    else:
        op = AsyncOperator(BASE_URI, name=user)
        session["async_operator"] = user
        OPERATORS[user] = op
    return op, session


@routes.post("/login")
async def login_handler(request: web.Request) -> web.Response:
    data = await request.post()
    user = data.get("username")
    password = data.get("password")
    if not user or not password:
        return web.json_response({"error": "Missing username or password"}, status=404)
    op, session = await get_set_operator(request, user, password)
    alog.debug("login - user: %s, password: %s", user, password)
    res = await login(op, user, password)
    alog.debug("login result: %s", res)
    if not res:
        session.invalidate()
        alog.info("Login failed; session invalidated.")
    return web.json_response({"logged_in": res}, status=200)


@routes.post("/logout")
async def logout_handler(request: web.Request) -> web.Response:
    alog.debug("logout")
    session = await get_session(request)
    op = OPERATORS.get(session.get("async_operator"))
    if not op:
        return web.json_response({"error": "No session"}, status=404)
    res = await logout(op)
    alog.debug("logout result: %s", res)
    # FIX: assess if better to invalidate session and dump the browser session.
    return web.json_response({"logged_in": res}, status=200)