DocScoDoc/app/api/tools.py

52 lines
1.7 KiB
Python
Raw Normal View History

##############################################################################
# ScoDoc
# Copyright (c) 1999 - 2022 Emmanuel Viennet. All rights reserved.
# See LICENSE
##############################################################################
"""ScoDoc 9 API : outils
"""
2022-07-26 09:00:48 +02:00
from flask_login import current_user
from sqlalchemy import desc, or_
from app import models
from app.api.errors import error_response
2022-07-26 09:00:48 +02:00
from app.models import Departement, Identite, Admission
from app.scodoc.sco_permissions import Permission
def get_etud(etudid=None, nip=None, ine=None) -> models.Identite:
"""
L'instance d'étudiant la plus récente en fonction de l'etudid,
ou du code nip ou code ine.
etudid : None ou un int etudid
nip : None ou un int code_nip
ine : None ou un int code_ine
Return None si étudiant inexistant.
"""
allowed_depts = current_user.get_depts_with_permission(Permission.ScoView)
2022-07-26 09:00:48 +02:00
if etudid is not None:
2022-07-26 09:00:48 +02:00
etud: Identite = Identite.query.get(etudid)
if (None in allowed_depts) or etud.departement.acronym in allowed_depts:
return etud
return None # accès interdit => pas d'étudiant
if nip is not None:
query = Identite.query.filter_by(code_nip=nip)
elif ine is not None:
query = Identite.query.filter_by(code_ine=ine)
else:
return error_response(
404,
message="parametre manquant",
)
2022-07-26 09:00:48 +02:00
if None not in allowed_depts:
# restreint aux départements autorisés:
etuds = etuds.join(Departement).filter(
or_(Departement.acronym == acronym for acronym in allowed_depts)
)
return query.join(Admission).order_by(desc(Admission.annee)).first()