from fastapi import APIRouter, HTTPException, status from pydantic import BaseModel #from ..mih_database import dbConnection import mih_database import mih_database.mihDbConnections from mih_database.mihDbObjects import User, Business, BusinessRating, BookmarkedBusiness from sqlalchemy import desc, or_ from sqlalchemy.orm import Session from sqlalchemy.sql import func #SuperToken Auth from front end from supertokens_python.recipe.session.framework.fastapi import verify_session from supertokens_python.recipe.session import SessionContainer from supertokens_python.asyncio import delete_user from fastapi import Depends import mih_database.dbConnection import Minio_Storage.minioConnection router = APIRouter() class userRequest(BaseModel): email: str DocOfficeID: int class userInsertRequest(BaseModel): email: str app_id: str class userUpdateRequestV2(BaseModel): idusers: int username: str fnam: str lname: str type: str pro_pic_path: str purpose: str class userUpdateRequest(BaseModel): idusers: int username: str fnam: str lname: str type: str pro_pic_path: str class userDeleteRequest(BaseModel): app_id: str env: str # #get user by email & doc Office ID # @router.get("/users/profile/{email}", tags="users") # async def read_all_users(email: str, session: SessionContainer = Depends(verify_session())): # db = mih_database.dbConnection.dbAppDataConnect() # cursor = db.cursor() # query = "SELECT * FROM users where email = %s" # cursor.execute(query, (email.lower(),)) # items = [ # {"idusers": item[0], # "email": item[1], # "docOffice_id": item[2], # "fname":item[3], # "lname":item[4], # "type": item[5], # "app_id": item[6], # "username": item[7], # } # for item in cursor.fetchall() # ]# # cursor.close() # db.close() # return items[0] @router.get("/users/count/", tags=["MIH Users"]) async def read_users_by_app_id(): #, session: SessionContainer = Depends(verify_session()) dbEngine = mih_database.mihDbConnections.dbAllConnect() dbSession = Session(dbEngine) try: queryResults = dbSession.query(func.count(User.app_id)).scalar() response_data = {"count": queryResults} return response_data except Exception as e: print(f"An error occurred during the ORM query: {e}") if dbSession.is_active: dbSession.rollback() raise HTTPException( status_code=status.HTTP_500_INTERNAL_SERVER_ERROR, detail="Failed to retrieve records due to an internal server error." ) finally: dbSession.close() # Get List of all files @router.get("/users/search/{search}", tags=["MIH Users"]) async def read_all_users(search: str, session: SessionContainer = Depends(verify_session())): #, session: SessionContainer = Depends(verify_session()) db = mih_database.dbConnection.dbAppDataConnect() cursor = db.cursor() query = "" query += "SELECT * FROM users " query += "WHERE (LOWER(email) LIKE %s OR LOWER(username) LIKE %s " query += "OR LOWER(fname) LIKE %s OR LOWER(lname) LIKE %s " query += "OR LOWER(purpose) LIKE %s) " query += "AND username != ''" search_term = f"%{search.lower()}%" # Add wildcards and lowercase cursor.execute(query, (search_term, search_term,search_term, search_term, search_term)) items = [ { "idUser": item[0], "email": item[1], "fname": item[2], "lname": item[3], "type": item[4], "app_id": item[5], "username": item[6], "pro_pic_path": item[7], "purpose": item[8], } for item in cursor.fetchall() ] cursor.close() db.close() return items # Get List of all files @router.get("/users/validate/username/{username}", tags=["MIH Users"]) async def read_all_users(username: str, session: SessionContainer = Depends(verify_session()) ): #, session: SessionContainer = Depends(verify_session()) db = mih_database.dbConnection.dbAppDataConnect() cursor = db.cursor() query = "SELECT * FROM users WHERE LOWER(username) = %s" # search_term = f"%{username.lower()}%" # Add wildcards and lowercase cursor.execute(query, (username.lower(),)) available = cursor.fetchone() is None cursor.close() db.close() return {"available": available} # Get List of all files @router.get("/user/{app_id}", tags=["MIH Users"]) async def read_users_by_app_id(app_id: str, session: SessionContainer = Depends(verify_session())): db = mih_database.dbConnection.dbAppDataConnect() cursor = db.cursor() query = "SELECT * FROM users where app_id = %s" cursor.execute(query, (app_id,)) items = [ { "idUser": item[0], "email": item[1], "fname": item[2], "lname": item[3], "type": item[4], "app_id": item[5], "username": item[6], "pro_pic_path": item[7], "purpose": item[8], } for item in cursor.fetchall() ] cursor.close() db.close() return items[0] # Insert Patient into table @router.post("/user/insert/", tags=["MIH Users"], status_code=201) async def insert_User_details(itemRequest : userInsertRequest, session: SessionContainer = Depends(verify_session())): db = mih_database.dbConnection.dbAppDataConnect() cursor = db.cursor() query = "insert into users " query += "(email, fname, lname, type, app_id, username, pro_pic_path, purpose) " query += "values (%s, %s, %s, %s, %s, %s, %s, %s)" userData = (itemRequest.email,"","","personal", itemRequest.app_id, "", "","") try: cursor.execute(query, userData) except Exception as error: raise HTTPException(status_code=404, detail="Failed to Create Record - " + error) #return {"message": "Failed to Create Record"} db.commit() cursor.close() db.close() return {"message": "Successfully Created Record"} # Update User on table @router.put("/user/update/v2/", tags=["MIH Users"]) async def Update_User_details(itemRequest : userUpdateRequestV2, session: SessionContainer = Depends(verify_session())): db = mih_database.dbConnection.dbAppDataConnect() cursor = db.cursor() query = "update users " query += "set username=%s, fname=%s, lname=%s, type=%s, pro_pic_path=%s, purpose=%s " query += "where idusers=%s" userData = (itemRequest.username, itemRequest.fnam, itemRequest.lname, itemRequest.type, itemRequest.pro_pic_path, itemRequest.purpose, itemRequest.idusers, ) try: cursor.execute(query, userData) except Exception as error: raise HTTPException(status_code=404, detail=error) #return {"query": query, "message": error} db.commit() cursor.close() db.close() return {"message": "Successfully Updated Record"} # Update User on table @router.put("/user/update/", tags=["MIH Users"]) async def Update_User_details(itemRequest : userUpdateRequest, session: SessionContainer = Depends(verify_session())): db = mih_database.dbConnection.dbAppDataConnect() cursor = db.cursor() query = "update users " query += "set username=%s, fname=%s, lname=%s, type=%s, pro_pic_path=%s " query += "where idusers=%s" userData = (itemRequest.username, itemRequest.fnam, itemRequest.lname, itemRequest.type, itemRequest.pro_pic_path, itemRequest.idusers, ) try: cursor.execute(query, userData) except Exception as error: raise HTTPException(status_code=404, detail=error) #return {"query": query, "message": error} db.commit() cursor.close() db.close() return {"message": "Successfully Updated Record"} # Get List of all files @router.delete("/user/delete/all/", tags=["MIH Users"]) async def delete_users_data_by_app_id(itemRequest: userDeleteRequest, session: SessionContainer = Depends(verify_session())): #, session: SessionContainer = Depends(verify_session()) db = mih_database.dbConnection.dbAllConnect() cursor = db.cursor() db.start_transaction() try: queries = [ "DELETE FROM app_data.notifications where app_id = %s", "DELETE FROM app_data.business_users where app_id = %s", "DELETE FROM data_access.patient_business_access where app_id = %s", "DELETE FROM mzansi_calendar.appointments where app_id = %s", "DELETE FROM mzansi_wallet.loyalty_cards where app_id = %s", "DELETE FROM patient_manager.patients where app_id = %s", "DELETE FROM patient_manager.patient_notes where app_id = %s", "DELETE FROM patient_manager.patient_files where app_id = %s", "DELETE FROM patient_manager.claim_statement_file where app_id = %s", "DELETE FROM app_data.user_consent where app_id = %s", "DELETE FROM app_data.users where app_id = %s", ] # Delete user from all tables for query in queries: cursor.execute(query, (itemRequest.app_id,)) # Delete user files try: client = Minio_Storage.minioConnection.minioConnect(itemRequest.env) objects_to_delete = client.list_objects("mih", prefix=itemRequest.app_id, recursive=True) for obj in objects_to_delete: client.remove_object("mih", obj.object_name) except Exception as error: raise HTTPException(status_code=500, detail="Failed to delete files from Minio - " + str(error)) # Delete user from SuperTokens try: await delete_user(itemRequest.app_id) except Exception as error: raise HTTPException(status_code=500, detail="Failed to delete user from SuperTokens - " + str(error)) db.commit() except Exception as error: db.rollback() raise HTTPException(status_code=500, detail=str(error)) finally: if cursor: cursor.close() if db: db.close() return {"message": "Successfully Deleted User Account, Data & Files"}