Added user information to Tasks and added filtering for List view

dnstanciu · Dec 22, 2018 · c0d46c1 · c0d46c1
1 parent 4d149cf
commit c0d46c1
Show file tree

Hide file tree

Showing 5 changed files with 49 additions and 0 deletions.
diff --git a/django/todoapi/migrations/0004_task_created_by.py b/django/todoapi/migrations/0004_task_created_by.py
@@ -0,0 +1,19 @@
+# Generated by Django 2.1.4 on 2018-12-21 14:08
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('todoapi', '0003_auth0user'),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name='task',
+            name='created_by',
+            field=models.CharField(default='dummy', max_length=200),
+            preserve_default=False,
+        ),
+    ]
diff --git a/django/todoapi/models.py b/django/todoapi/models.py
@@ -5,6 +5,8 @@
 # Create the Task class to describe the model.
 class Task(models.Model):
     """Stores a task."""
+    created_by = models.CharField(max_length=200)
+
     title = models.CharField(max_length=50)
     content = models.CharField(max_length=50)
 

diff --git a/django/todoapi/serializers.py b/django/todoapi/serializers.py
@@ -5,3 +5,7 @@ class TaskSerializer(serializers.ModelSerializer):
     class Meta:
         model = Task
         fields = ('id', 'title', 'content', 'created_on',  'due_date')
+
+        extra_kwargs = {
+            'created_by':  { 'read_only': True }
+        }
diff --git a/django/todoapi/utils.py b/django/todoapi/utils.py
@@ -0,0 +1,7 @@
+# For getting the username from the JWT token.
+from rest_framework_jwt.utils import jwt_decode_handler
+
+def get_auth0_user_id_from_request(request):
+    token = request.META.get('HTTP_AUTHORIZATION', '').split()[1]
+    payload = jwt_decode_handler(token)
+    return payload.get('sub')
diff --git a/django/todoapi/views.py b/django/todoapi/views.py
@@ -3,13 +3,30 @@
 
 from rest_framework import generics
 
+from .utils import get_auth0_user_id_from_request
+
+# Lists and Creates entries of Task.
 class TaskList(generics.ListCreateAPIView):
     """
     Lists and creates tasks.
     """
     queryset = Task.objects.all()
     serializer_class = TaskSerializer
 
+    def perform_create(self, serializer):
+        auth0_user_id = get_auth0_user_id_from_request(self.request)
+        # Set the user to the one in the token.
+        serializer.save(created_by=auth0_user_id)
+
+    def get_queryset(self):
+        """
+        This view should return a list of all Tasks
+        for the currently authenticated user.
+        """
+        auth0_user_id = get_auth0_user_id_from_request(self.request)
+        return Task.objects.filter(created_by=auth0_user_id)
+
+# Return a single Task and allows its update and deletion.
 class TaskDetail(generics.RetrieveUpdateDestroyAPIView):
     """
     Returns a single Task and allows updates and deletion of a Task.