In [None]:
"""
Django settings for minsoto project.

Generated by 'django-admin startproject' using Django 5.2.5.

For more information on this file, see
https://docs.djangoproject.com/en/5.2/topics/settings/

For the full list of settings and their values, see
https://docs.djangoproject.com/en/5.2/ref/settings/
"""

from pathlib import Path
import os
from dotenv import load_dotenv
from datetime import timedelta

load_dotenv() # Load environment variables from .env file


# Build paths inside the project like this: BASE_DIR / 'subdir'.
BASE_DIR = Path(__file__).resolve().parent.parent


# Quick-start development settings - unsuitable for production
# See https://docs.djangoproject.com/en/5.2/howto/deployment/checklist/

# SECURITY WARNING: keep the secret key used in production secret!
SECRET_KEY = 'django-insecure-=l_nwkpom0es5sgrl*bk6(+oy(7q25=q_7zd#f-#b=kbbdoku)'

# SECURITY WARNING: don't run with debug turned on in production!
DEBUG = True

ALLOWED_HOSTS = []


# Application definition

INSTALLED_APPS = [
    'django.contrib.admin',
    'django.contrib.auth',
    'django.contrib.contenttypes',
    'django.contrib.sessions',
    'django.contrib.messages',
    'django.contrib.staticfiles',
    'rest_framework_simplejwt',
        # ... other apps
    'django.contrib.sites', # Required by allauth
    'rest_framework',
    'rest_framework.authtoken',
    'corsheaders',
    # apps
    'users',
    'connections',
    'content', 
    'circles',
    'extensions',
    # allauth and dj-rest-auth
    'allauth',
    'allauth.account',
    'allauth.socialaccount',
    'allauth.socialaccount.providers.google',
    'dj_rest_auth',
    'dj_rest_auth.registration',
]

MIDDLEWARE = [
    'django.middleware.security.SecurityMiddleware',
    'django.contrib.sessions.middleware.SessionMiddleware',
    'corsheaders.middleware.CorsMiddleware', # CORS middleware
    'django.middleware.common.CommonMiddleware',
    'django.middleware.csrf.CsrfViewMiddleware',
    'django.contrib.auth.middleware.AuthenticationMiddleware',
    'django.contrib.messages.middleware.MessageMiddleware',
    'django.middleware.clickjacking.XFrameOptionsMiddleware',
    
    # for django-allauth
    'allauth.account.middleware.AccountMiddleware', 
]

ROOT_URLCONF = 'minsoto.urls'

TEMPLATES = [
    {
        'BACKEND': 'django.template.backends.django.DjangoTemplates',
        'DIRS': [],
        'APP_DIRS': True,
        'OPTIONS': {
            'context_processors': [
                'django.template.context_processors.request',
                'django.contrib.auth.context_processors.auth',
                'django.contrib.messages.context_processors.messages',
            ],
        },
    },
]

WSGI_APPLICATION = 'minsoto.wsgi.application'


# Database
# https://docs.djangoproject.com/en/5.2/ref/settings/#databases

# Database Configuration
DATABASES = {
    'default': {
        'ENGINE': 'django.db.backends.postgresql',
        'NAME': os.getenv('DATABASE_NAME'),
        'USER': os.getenv('DATABASE_USER'),
        'PASSWORD': os.getenv('DATABASE_PASSWORD'),
        'HOST': os.getenv('DATABASE_HOST'),
        'PORT': os.getenv('DATABASE_PORT'),
    }
}


AUTH_USER_MODEL = 'users.CustomUser'

'''# --- REST Framework, JWT, and dj-rest-auth Configuration ---
REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': (
        'rest_framework_simplejwt.authentication.JWTAuthentication',
    ),
}'''

# Add these configurations
'''REST_USE_JWT = True'''
REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': (
        'rest_framework_simplejwt.authentication.JWTAuthentication',  # ← Fixed
    ),
}

JWT_AUTH_COOKIE = 'jwt-auth'
JWT_AUTH_REFRESH_COOKIE = 'jwt-refresh'

# Add Simple JWT configuration
SIMPLE_JWT = {
    'ACCESS_TOKEN_LIFETIME': timedelta(hours=1),  # Increase from 60 mins
    'REFRESH_TOKEN_LIFETIME': timedelta(days=7),
    'ROTATE_REFRESH_TOKENS': True,
    'BLACKLIST_AFTER_ROTATION': True,
    'ALGORITHM': 'HS256',
    'SIGNING_KEY': SECRET_KEY,
}

# Fix the REST_AUTH configuration
REST_AUTH = {
    'USE_JWT': True,
    'JWT_AUTH_COOKIE': 'jwt-auth',
    'JWT_AUTH_REFRESH_COOKIE': 'jwt-refresh',
    'USER_DETAILS_SERIALIZER': 'users.serializers.CustomUserDetailsSerializer',
}

REST_USE_JWT = True # Tell dj-rest-auth to use JWT

# --- CORS Configuration ---
# Set this to your Next.js frontend URL in production
CORS_ALLOWED_ORIGINS = [
    "http://localhost:3000",
]

SITE_ID = 1

# --- Allauth Configuration ---
AUTHENTICATION_BACKENDS = [
    'allauth.account.auth_backends.AuthenticationBackend',
    'django.contrib.auth.backends.ModelBackend',
]



SOCIALACCOUNT_AUTO_SIGNUP = True
SOCIALACCOUNT_EMAIL_AUTHENTICATION = True
SOCIALACCOUNT_EMAIL_AUTHENTICATION_AUTO_CONNECT = True


# --- Google Provider Configuration for Allauth ---
SOCIALACCOUNT_PROVIDERS = {
    'google': {
        'APP': {
            'client_id': os.getenv('GOOGLE_CLIENT_ID'),
            'secret': os.getenv('GOOGLE_CLIENT_SECRET'),
            'key': ''
        },
        'SCOPE': [
            'profile',
            'email',
        ],
        'AUTH_PARAMS': {
            'access_type': 'online',
        },
        # Add this to enable email matching
        'VERIFIED_EMAIL': True,
    }
}

# Allow connecting multiple social accounts to the same email
ACCOUNT_EMAIL_VERIFICATION = 'none'
ACCOUNT_UNIQUE_EMAIL = True
ACCOUNT_USERNAME_REQUIRED = False
ACCOUNT_EMAIL_REQUIRED = True
ACCOUNT_AUTHENTICATION_METHOD = 'email'

# This is the key setting - allows linking social accounts to existing users
SOCIALACCOUNT_AUTO_SIGNUP = True

# --- Email Configuration (for development) ---
# For production, use a service like SendGrid or Mailgun
EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'

# Password validation
# https://docs.djangoproject.com/en/5.2/ref/settings/#auth-password-validators

AUTH_PASSWORD_VALIDATORS = [
    {
        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
    },
]


# Internationalization
# https://docs.djangoproject.com/en/5.2/topics/i18n/

LANGUAGE_CODE = 'en-us'

TIME_ZONE = 'UTC'

USE_I18N = True

USE_TZ = True


# Static files (CSS, JavaScript, Images)
# https://docs.djangoproject.com/en/5.2/howto/static-files/

STATIC_URL = 'static/'

# Default primary key field type
# https://docs.djangoproject.com/en/5.2/ref/settings/#default-auto-field

DEFAULT_AUTO_FIELD = 'django.db.models.BigAutoField'




In [None]:
# minsoto/urls.py
from django.contrib import admin
from django.urls import path, include
from rest_framework_simplejwt.views import TokenRefreshView
from users.views import SetUsernameView, GoogleLogin, MyProfileUpdateView, ProfileDetailView

urlpatterns = [
    path('admin/', admin.site.urls),
    path('api/auth/username/', SetUsernameView.as_view(), name='set_username'),
    path('api/auth/google/', GoogleLogin.as_view(), name='google_login'),
    path('api/auth/', include('dj_rest_auth.urls')),
    path('api/auth/registration/', include('dj_rest_auth.registration.urls')),
    path('api/auth/token/refresh/', TokenRefreshView.as_view(), name='token_refresh'),
    path('api/profiles/me/', MyProfileUpdateView.as_view(), name='my-profile-update'),
    path('api/profiles/<str:username>/', ProfileDetailView.as_view(), name='profile-detail'),  # ← FIXED
    path('api/connections/', include('connections.urls')),
    path('api/content/', include('content.urls')),      # ← ADD
    path('api/circles/', include('circles.urls')),      # ← ADD
]




In [None]:
# users/models.py
from django.contrib.auth.models import AbstractUser
from django.db import models

class CustomUser(AbstractUser):
    # We will use email as the main identifier, but username must be unique for profiles
    username = models.CharField(max_length=150, unique=True)
    email = models.EmailField(unique=True)

    USERNAME_FIELD = 'email' # Log in with email
    REQUIRED_FIELDS = ['username'] # Required fields during createsuperuser

    def __str__(self):
        return self.email

class Profile(models.Model):
    user = models.OneToOneField(CustomUser, on_delete=models.CASCADE, related_name='profile')
    bio = models.TextField(blank=True, max_length=500)
    profile_picture_url = models.URLField(blank=True)
    theme_color = models.CharField(max_length=7, default='#FFFFFF')
    
    # Enhanced widget system
    widget_layout = models.JSONField(default=dict)  # Stores grid layout
    active_widgets = models.JSONField(default=list)  # List of active widget IDs
    widget_preferences = models.JSONField(default=dict)  # Widget-specific settings
    
    # Privacy settings
    profile_visibility = models.CharField(
        max_length=20,
        choices=[
            ('public', 'Public'),
            ('connections', 'Connections Only'),
            ('friends', 'Friends Only'),
            ('private', 'Private'),
        ],
        default='public'
    )
    
    def __str__(self):
        return f"{self.user.username}'s Profile"


In [None]:
# users/serializers.py
from dj_rest_auth.serializers import UserDetailsSerializer
from rest_framework import serializers
from .models import CustomUser, Profile

class CustomUserDetailsSerializer(UserDetailsSerializer):
    username_is_default = serializers.SerializerMethodField()

    class Meta(UserDetailsSerializer.Meta):
        fields = UserDetailsSerializer.Meta.fields + ('username_is_default',)

    def get_username_is_default(self, instance):
        # A simple check. You might have a better way to flag this.
        # For instance, if the username is the user's email or a random string.
        # The session flag is harder to access here, so we check the username itself.
        # A good strategy: allauth might default the username to user's first name,
        # so check if a username exists that isn't the user's email.
        return instance.username == instance.email.split('@')[0] or not instance.username


# In settings.py, tell dj-rest-auth to use it
REST_AUTH_SERIALIZERS = {
    'USER_DETAILS_SERIALIZER': 'users.serializers.CustomUserDetailsSerializer',
}
class ProfileSerializer(serializers.ModelSerializer):
    class Meta:
        model = Profile
        fields = ['bio', 'profile_picture_url', 'theme_color', 'widget_layout']

class PublicUserSerializer(serializers.ModelSerializer):
    # Nest the profile serializer to include profile data with the user
    profile = ProfileSerializer(read_only=True)

    class Meta:
        model = CustomUser
        fields = ['id', 'username', 'first_name', 'last_name', 'profile']

In [None]:
# users/signals.py
from django.core.mail import send_mail
from django.db.models.signals import post_save
from django.dispatch import receiver
from django.contrib.auth import get_user_model
from django.conf import settings

# CORRECT IMPORT: pre_social_login is from allauth, not django
from allauth.socialaccount.signals import pre_social_login
from allauth.socialaccount.models import SocialAccount
from .models import CustomUser, Profile

User = get_user_model()

@receiver(pre_social_login)
def link_to_existing_user(sender, request, sociallogin, **kwargs):
    """
    Automatically link social accounts to existing users with the same email
    """
    # Get the email from the social login
    email_address = sociallogin.account.extra_data.get('email')
    
    if email_address:
        try:
            # Check if a user with this email already exists
            existing_user = User.objects.get(email=email_address)
            
            # Connect the social account to the existing user
            sociallogin.connect(request, existing_user)
            
            print(f"Connected social account to existing user: {email_address}")
            
        except User.DoesNotExist:
            # User doesn't exist, proceed with normal signup
            pass
        except Exception as e:
            print(f"Error linking social account: {str(e)}")

@receiver(post_save, sender=CustomUser)
def handle_new_user_creation(sender, instance, created, **kwargs):
    """
    Handles tasks that need to run when a new user is created.
    """
    if created:
        # Create the user's profile
        Profile.objects.get_or_create(user=instance)
        
        # Send welcome email
        try:
            send_mail(
                subject='Welcome to Minsoto!',
                message=f'Hi {instance.first_name or instance.username},\n\nWelcome to Minsoto!',
                from_email=settings.DEFAULT_FROM_EMAIL,
                recipient_list=[instance.email],
                fail_silently=True,
            )
        except Exception as e:
            print(f"Failed to send welcome email: {str(e)}")
        
        # Try to get profile picture from Google
        try:
            social_account = instance.socialaccount_set.get(provider='google')
            if social_account:
                picture_url = social_account.extra_data.get('picture')
                if picture_url:
                    instance.profile.profile_picture_url = picture_url
                    instance.profile.save()
        except SocialAccount.DoesNotExist:
            pass
        except Exception as e:
            print(f"Failed to set profile picture: {str(e)}")


In [None]:
# users/views.py
from rest_framework import status
from rest_framework.permissions import IsAuthenticated
from rest_framework.response import Response
from rest_framework.views import APIView
from .models import CustomUser
from allauth.socialaccount.providers.google.views import GoogleOAuth2Adapter
from allauth.socialaccount.providers.oauth2.client import OAuth2Client
from dj_rest_auth.registration.views import SocialLoginView
from rest_framework import status
from rest_framework.permissions import IsAuthenticated
from rest_framework.response import Response
from rest_framework.views import APIView
from .models import CustomUser
from .serializers import PublicUserSerializer, ProfileSerializer
from rest_framework import generics
from .models import Profile
from django.db import IntegrityError
import logging

logger = logging.getLogger(__name__)

class GoogleLogin(SocialLoginView):
    adapter_class = GoogleOAuth2Adapter
    callback_url = "http://localhost:3000/auth/google/callback"
    client_class = OAuth2Client
    
    def post(self, request, *args, **kwargs):
        logger.info(f"Google login attempt with data: {request.data}")
        
        try:
            response = super().post(request, *args, **kwargs)
            logger.info(f"Google login successful: {response.status_code}")
            return response
        except IntegrityError as e:
            logger.error(f"Integrity error during Google login: {str(e)}")
            
            if "email" in str(e) and "already exists" in str(e):
                return Response(
                    {
                        "error": "An account with this email already exists. Please log in with your existing credentials or contact support.",
                        "detail": "email_already_exists"
                    }, 
                    status=status.HTTP_400_BAD_REQUEST
                )
            
            return Response(
                {"error": "Account creation failed due to duplicate data"}, 
                status=status.HTTP_400_BAD_REQUEST
            )
        except Exception as e:
            logger.error(f"Google login failed: {str(e)}")
            return Response(
                {"error": "Authentication failed"}, 
                status=status.HTTP_400_BAD_REQUEST
            )
    
class SetUsernameView(APIView):
    permission_classes = [IsAuthenticated]

    def post(self, request, *args, **kwargs):
        username = request.data.get('username')
        if not username:
            return Response({'error': 'Username is required.'}, status=status.HTTP_400_BAD_REQUEST)

        # Check if username already exists
        if CustomUser.objects.filter(username__iexact=username).exists():
            return Response({'error': 'This username is already taken.'}, status=status.HTTP_400_BAD_REQUEST)
        
        user = request.user
        user.username = username
        user.save()

        # Clear the session flag after setting the username
        if 'new_social_user' in request.session:
            del request.session['new_social_user']

        return Response({'success': 'Username has been set.'}, status=status.HTTP_200_OK)

# --- THIS VIEW FETCHES A PROFILE BY USERNAME ---
class ProfileDetailView(generics.RetrieveAPIView):
    queryset = CustomUser.objects.all()
    serializer_class = PublicUserSerializer
    lookup_field = 'username' # Fetch user by username instead of ID
    permission_classes = [] # Allow any user (even unauthenticated) to view profiles

# --- THIS VIEW LETS A LOGGED-IN USER UPDATE THEIR OWN PROFILE ---
class MyProfileUpdateView(generics.RetrieveUpdateAPIView):
    queryset = Profile.objects.all()
    serializer_class = ProfileSerializer
    permission_classes = [IsAuthenticated] # Only logged-in users can access

    def get_object(self):
        # This ensures users can only update their own profile
        return self.request.user.profile

In [None]:
# circles/models.py
from django.db import models
from users.models import CustomUser
from connections.models import Interest

class Circle(models.Model):
    CIRCLE_TYPES = [
        ('project', 'Project Collaboration'),
        ('habit', 'Habit Building'),
        ('accountability', 'Accountability Group'),
        ('learning', 'Learning Group'),
    ]
    
    name = models.CharField(max_length=200)
    description = models.TextField()
    circle_type = models.CharField(max_length=20, choices=CIRCLE_TYPES)
    creator = models.ForeignKey(CustomUser, on_delete=models.CASCADE, related_name='created_circles')
    members = models.ManyToManyField(CustomUser, through='CircleMembership', related_name='circles')
    interests = models.ManyToManyField(Interest)
    is_private = models.BooleanField(default=False)
    max_members = models.PositiveIntegerField(default=10)
    created_at = models.DateTimeField(auto_now_add=True)

class CircleMembership(models.Model):
    ROLE_CHOICES = [
        ('member', 'Member'),
        ('moderator', 'Moderator'),
        ('creator', 'Creator'),
    ]
    
    user = models.ForeignKey(CustomUser, on_delete=models.CASCADE)
    circle = models.ForeignKey(Circle, on_delete=models.CASCADE)
    role = models.CharField(max_length=20, choices=ROLE_CHOICES, default='member')
    joined_at = models.DateTimeField(auto_now_add=True)

class Habit(models.Model):
    user = models.ForeignKey(CustomUser, on_delete=models.CASCADE, related_name='habits')
    name = models.CharField(max_length=200)
    description = models.TextField(blank=True)
    target_frequency = models.PositiveIntegerField(default=1)  # times per day
    current_streak = models.PositiveIntegerField(default=0)
    best_streak = models.PositiveIntegerField(default=0)
    is_active = models.BooleanField(default=True)
    created_at = models.DateTimeField(auto_now_add=True)

class HabitEntry(models.Model):
    habit = models.ForeignKey(Habit, on_delete=models.CASCADE, related_name='entries')
    date = models.DateField()
    completed = models.BooleanField(default=False)
    notes = models.TextField(blank=True)
    created_at = models.DateTimeField(auto_now_add=True)
    
    class Meta:
        unique_together = ['habit', 'date']


In [None]:
from rest_framework import serializers
from .models import Circle, CircleMembership, Habit, HabitEntry
from users.serializers import PublicUserSerializer
from connections.serializers import InterestSerializer

class CircleSerializer(serializers.ModelSerializer):
    creator = PublicUserSerializer(read_only=True)
    interests = InterestSerializer(many=True, read_only=True)
    member_count = serializers.SerializerMethodField()
    is_member = serializers.SerializerMethodField()
    
    class Meta:
        model = Circle
        fields = ['id', 'name', 'description', 'circle_type', 'creator', 
                 'interests', 'is_private', 'max_members', 'member_count', 
                 'is_member', 'created_at']
    
    def get_member_count(self, obj):
        return obj.members.count()
    
    def get_is_member(self, obj):
        request = self.context.get('request')
        if request and request.user.is_authenticated:
            return obj.members.filter(id=request.user.id).exists()
        return False

class HabitSerializer(serializers.ModelSerializer):
    class Meta:
        model = Habit
        fields = ['id', 'name', 'description', 'target_frequency', 
                 'current_streak', 'best_streak', 'is_active', 'created_at']

class HabitEntrySerializer(serializers.ModelSerializer):
    class Meta:
        model = HabitEntry
        fields = ['id', 'date', 'completed', 'notes', 'created_at']


In [None]:
# circles/urls.py
from django.urls import path
from . import views

urlpatterns = [
    path('', views.CircleListCreateView.as_view(), name='circles'),
    path('my-circles/', views.MyCirclesView.as_view(), name='my-circles'),
    path('create/', views.CircleListCreateView.as_view(), name='create-circle'),
    path('habits/', views.HabitListCreateView.as_view(), name='habits'),
]


In [None]:
# circles/views.py
from rest_framework import generics, status
from rest_framework.decorators import api_view, permission_classes
from rest_framework.permissions import IsAuthenticated
from rest_framework.response import Response
from django.db.models import Q
from .models import Circle, CircleMembership, Habit, HabitEntry
from .serializers import CircleSerializer, HabitSerializer, HabitEntrySerializer

class CircleListCreateView(generics.ListCreateAPIView):
    serializer_class = CircleSerializer
    permission_classes = [IsAuthenticated]
    
    def get_queryset(self):
        return Circle.objects.filter(
            Q(is_private=False) | Q(members=self.request.user)
        ).distinct()
    
    def perform_create(self, serializer):
        circle = serializer.save(creator=self.request.user)
        CircleMembership.objects.create(
            user=self.request.user,
            circle=circle,
            role='creator'
        )

class MyCirclesView(generics.ListAPIView):
    serializer_class = CircleSerializer
    permission_classes = [IsAuthenticated]
    
    def get_queryset(self):
        return Circle.objects.filter(members=self.request.user)

class HabitListCreateView(generics.ListCreateAPIView):
    serializer_class = HabitSerializer
    permission_classes = [IsAuthenticated]
    
    def get_queryset(self):
        return Habit.objects.filter(user=self.request.user, is_active=True)
    
    def perform_create(self, serializer):
        serializer.save(user=self.request.user)


In [None]:
# connections/models.py
from django.db import models
from users.models import CustomUser

class Interest(models.Model):
    name = models.CharField(max_length=100, unique=True)
    description = models.TextField(blank=True)
    created_at = models.DateTimeField(auto_now_add=True)
    
    def __str__(self):
        return self.name

class ConnectionRequest(models.Model):
    REQUEST_TYPES = [
        ('connection', 'Connection'),
        ('friend', 'Friend'),
    ]
    
    STATUS_CHOICES = [
        ('pending', 'Pending'),
        ('accepted', 'Accepted'),
        ('declined', 'Declined'),
    ]
    
    sender = models.ForeignKey(CustomUser, on_delete=models.CASCADE, related_name='sent_requests')
    receiver = models.ForeignKey(CustomUser, on_delete=models.CASCADE, related_name='received_requests')
    request_type = models.CharField(max_length=20, choices=REQUEST_TYPES)
    interest = models.ForeignKey(Interest, on_delete=models.CASCADE, null=True, blank=True)
    status = models.CharField(max_length=20, choices=STATUS_CHOICES, default='pending')
    message = models.TextField(blank=True)
    created_at = models.DateTimeField(auto_now_add=True)
    updated_at = models.DateTimeField(auto_now=True)
    
    class Meta:
        unique_together = ['sender', 'receiver', 'interest']

class Connection(models.Model):
    CONNECTION_TYPES = [
        ('connection', 'Connection'),
        ('friend', 'Friend'),
    ]
    
    user1 = models.ForeignKey(CustomUser, on_delete=models.CASCADE, related_name='connections_as_user1')
    user2 = models.ForeignKey(CustomUser, on_delete=models.CASCADE, related_name='connections_as_user2')
    connection_type = models.CharField(max_length=20, choices=CONNECTION_TYPES)
    interests = models.ManyToManyField(Interest, blank=True)
    created_at = models.DateTimeField(auto_now_add=True)
    
    class Meta:
        unique_together = ['user1', 'user2']


In [None]:
# connections/serializers.py
from rest_framework import serializers
from .models import Interest, ConnectionRequest, Connection
from users.serializers import PublicUserSerializer

class InterestSerializer(serializers.ModelSerializer):
    class Meta:
        model = Interest
        fields = ['id', 'name', 'description']

class ConnectionRequestSerializer(serializers.ModelSerializer):
    sender = PublicUserSerializer(read_only=True)
    receiver = PublicUserSerializer(read_only=True)
    interest = InterestSerializer(read_only=True)
    
    class Meta:
        model = ConnectionRequest
        fields = ['id', 'sender', 'receiver', 'request_type', 'interest', 'status', 'message', 'created_at']

class ConnectionSerializer(serializers.ModelSerializer):
    user = serializers.SerializerMethodField()
    interests = InterestSerializer(many=True, read_only=True)
    
    class Meta:
        model = Connection
        fields = ['id', 'user', 'connection_type', 'interests', 'created_at']
    
    def get_user(self, obj):
        # Return the other user in the connection
        request_user = self.context['request'].user
        other_user = obj.user2 if obj.user1 == request_user else obj.user1
        return PublicUserSerializer(other_user).data
 

In [None]:
# connections/urls.py
from django.urls import path
from . import views

urlpatterns = [
    path('interests/', views.InterestListCreateView.as_view(), name='interests'),
    path('requests/send/', views.send_connection_request, name='send_connection_request'),
    path('requests/<int:request_id>/respond/', views.respond_to_connection_request, name='respond_connection_request'),
    path('my-connections/', views.MyConnectionsView.as_view(), name='my_connections'),
]


In [None]:
# connections/views.py
from rest_framework import generics, status
from rest_framework.decorators import api_view, permission_classes
from rest_framework.permissions import IsAuthenticated
from rest_framework.response import Response
from django.db.models import Q
from .models import Interest, ConnectionRequest, Connection
from .serializers import InterestSerializer, ConnectionRequestSerializer, ConnectionSerializer
from users.models import CustomUser

class InterestListCreateView(generics.ListCreateAPIView):
    queryset = Interest.objects.all()
    serializer_class = InterestSerializer

@api_view(['POST'])
@permission_classes([IsAuthenticated])
def send_connection_request(request):
    receiver_id = request.data.get('receiver_id')
    request_type = request.data.get('request_type', 'connection')
    interest_id = request.data.get('interest_id')
    message = request.data.get('message', '')
    
    try:
        receiver = CustomUser.objects.get(id=receiver_id)
        interest = Interest.objects.get(id=interest_id) if interest_id else None
        
        # Check if request already exists
        existing_request = ConnectionRequest.objects.filter(
            sender=request.user,
            receiver=receiver,
            interest=interest
        ).first()
        
        if existing_request:
            return Response({'error': 'Connection request already sent'}, 
                          status=status.HTTP_400_BAD_REQUEST)
        
        connection_request = ConnectionRequest.objects.create(
            sender=request.user,
            receiver=receiver,
            request_type=request_type,
            interest=interest,
            message=message
        )
        
        serializer = ConnectionRequestSerializer(connection_request)
        return Response(serializer.data, status=status.HTTP_201_CREATED)
        
    except CustomUser.DoesNotExist:
        return Response({'error': 'User not found'}, status=status.HTTP_404_NOT_FOUND)
    except Interest.DoesNotExist:
        return Response({'error': 'Interest not found'}, status=status.HTTP_404_NOT_FOUND)

@api_view(['POST'])
@permission_classes([IsAuthenticated])
def respond_to_connection_request(request, request_id):
    action = request.data.get('action')  # 'accept' or 'decline'
    
    try:
        connection_request = ConnectionRequest.objects.get(
            id=request_id,
            receiver=request.user,
            status='pending'
        )
        
        if action == 'accept':
            connection_request.status = 'accepted'
            connection_request.save()
            
            # Create connection
            connection, created = Connection.objects.get_or_create(
                user1=min(connection_request.sender, connection_request.receiver, key=lambda x: x.id),
                user2=max(connection_request.sender, connection_request.receiver, key=lambda x: x.id),
                defaults={'connection_type': connection_request.request_type}
            )
            
            if connection_request.interest:
                connection.interests.add(connection_request.interest)
            
            return Response({'message': 'Connection request accepted'})
            
        elif action == 'decline':
            connection_request.status = 'declined'
            connection_request.save()
            return Response({'message': 'Connection request declined'})
            
    except ConnectionRequest.DoesNotExist:
        return Response({'error': 'Connection request not found'}, 
                      status=status.HTTP_404_NOT_FOUND)

class MyConnectionsView(generics.ListAPIView):
    serializer_class = ConnectionSerializer
    permission_classes = [IsAuthenticated]
    
    def get_queryset(self):
        return Connection.objects.filter(
            Q(user1=self.request.user) | Q(user2=self.request.user)
        )


In [None]:
# content/models.py
from django.db import models
from users.models import CustomUser
from connections.models import Interest

class Post(models.Model):
    POST_TYPES = [
        ('text', 'Text'),
        ('image', 'Image'),
        ('progress', 'Progress Update'),
        ('achievement', 'Achievement'),
    ]
    
    VISIBILITY_CHOICES = [
        ('public', 'Public'),
        ('connections', 'Connections Only'),
        ('friends', 'Friends Only'),
        ('circle', 'Circle Only'),
    ]
    
    author = models.ForeignKey(CustomUser, on_delete=models.CASCADE, related_name='posts')
    content = models.TextField()
    post_type = models.CharField(max_length=20, choices=POST_TYPES, default='text')
    visibility = models.CharField(max_length=20, choices=VISIBILITY_CHOICES, default='public')
    interests = models.ManyToManyField(Interest, blank=True)
    image_url = models.URLField(blank=True)
    is_highlighted = models.BooleanField(default=False)
    created_at = models.DateTimeField(auto_now_add=True)
    updated_at = models.DateTimeField(auto_now=True)

class Like(models.Model):
    user = models.ForeignKey(CustomUser, on_delete=models.CASCADE)
    post = models.ForeignKey(Post, on_delete=models.CASCADE, related_name='likes')
    created_at = models.DateTimeField(auto_now_add=True)
    
    class Meta:
        unique_together = ['user', 'post']

class Comment(models.Model):
    author = models.ForeignKey(CustomUser, on_delete=models.CASCADE)
    post = models.ForeignKey(Post, on_delete=models.CASCADE, related_name='comments')
    content = models.TextField()
    created_at = models.DateTimeField(auto_now_add=True)
    updated_at = models.DateTimeField(auto_now=True)


In [None]:
from rest_framework import serializers
from .models import Post, Like, Comment
from users.serializers import PublicUserSerializer
from connections.serializers import InterestSerializer

class PostSerializer(serializers.ModelSerializer):
    author = PublicUserSerializer(read_only=True)
    interests = InterestSerializer(many=True, read_only=True)
    likes_count = serializers.SerializerMethodField()
    comments_count = serializers.SerializerMethodField()
    is_liked = serializers.SerializerMethodField()
    
    class Meta:
        model = Post
        fields = ['id', 'author', 'content', 'post_type', 'visibility', 'interests', 
                 'image_url', 'is_highlighted', 'created_at', 'likes_count', 
                 'comments_count', 'is_liked']
    
    def get_likes_count(self, obj):
        return obj.likes.count()
    
    def get_comments_count(self, obj):
        return obj.comments.count()
    
    def get_is_liked(self, obj):
        request = self.context.get('request')
        if request and request.user.is_authenticated:
            return obj.likes.filter(user=request.user).exists()
        return False

class CommentSerializer(serializers.ModelSerializer):
    author = PublicUserSerializer(read_only=True)
    
    class Meta:
        model = Comment
        fields = ['id', 'author', 'content', 'created_at']


In [None]:
# content/urls.py
from django.urls import path
from . import views

urlpatterns = [
    path('feed/', views.PostListCreateView.as_view(), name='content-feed'),
    path('posts/<int:post_id>/like/', views.like_post, name='like-post'),
]


In [None]:
from rest_framework import generics, status
from rest_framework.decorators import api_view, permission_classes
from rest_framework.permissions import IsAuthenticated
from rest_framework.response import Response
from django.db.models import Q
from .models import Post, Like, Comment
from .serializers import PostSerializer, CommentSerializer
from connections.models import Connection, Interest

class PostListCreateView(generics.ListCreateAPIView):
    serializer_class = PostSerializer
    permission_classes = [IsAuthenticated]
    
    def get_queryset(self):
        feed_type = self.request.query_params.get('feed_type', 'global')
        filter_param = self.request.query_params.get('filter', 'all')
        
        if feed_type == 'connections':
            # Get posts from connections
            user_connections = Connection.objects.filter(
                Q(user1=self.request.user) | Q(user2=self.request.user)
            )
            connected_users = []
            for conn in user_connections:
                other_user = conn.user2 if conn.user1 == self.request.user else conn.user1
                connected_users.append(other_user)
            
            queryset = Post.objects.filter(
                Q(author__in=connected_users) | Q(author=self.request.user),
                visibility__in=['public', 'connections']
            )
        else:
            # Global feed
            queryset = Post.objects.filter(visibility='public')
        
        if filter_param != 'all':
            try:
                interest = Interest.objects.get(name=filter_param)
                queryset = queryset.filter(interests=interest)
            except Interest.DoesNotExist:
                pass
        
        return queryset.order_by('-created_at')
    
    def perform_create(self, serializer):
        serializer.save(author=self.request.user)

@api_view(['POST'])
@permission_classes([IsAuthenticated])
def like_post(request, post_id):
    try:
        post = Post.objects.get(id=post_id)
        like, created = Like.objects.get_or_create(user=request.user, post=post)
        
        if not created:
            like.delete()
            return Response({'liked': False})
        else:
            return Response({'liked': True})
            
    except Post.DoesNotExist:
        return Response({'error': 'Post not found'}, status=404)
