From 52cfe765f4c5cb9074080ec2431024d027661fc1 Mon Sep 17 00:00:00 2001
From: Tom Price <tom@codedinternet.com>
Date: Mon, 1 Dec 2014 21:56:00 +0000
Subject: [PATCH] started work on the event form

---
 RIGS/templates/RIGS/event_form.html | 295 ++++++++++++++++++++++++++++
 RIGS/urls.py                        |   4 +
 RIGS/views.py                       |  61 +++++-
 db.sqlite3                          | Bin 25083904 -> 25083904 bytes
 4 files changed, 359 insertions(+), 1 deletion(-)
 create mode 100644 RIGS/templates/RIGS/event_form.html

diff --git a/RIGS/templates/RIGS/event_form.html b/RIGS/templates/RIGS/event_form.html
new file mode 100644
index 00000000..8e96c0b2
--- /dev/null
+++ b/RIGS/templates/RIGS/event_form.html
@@ -0,0 +1,295 @@
+{% extends 'base.html' %}
+{% load widget_tweaks %}
+{% load static %}
+{% load multiply from filters %}
+{% block title %}{% if object.pk %}Event {{ object.pk }}{% else %}New Event{% endif %}{% endblock %}
+
+{% block css %}
+    <link href="//code.jquery.com/ui/1.10.4/themes/smoothness/jquery-ui.css"/>
+{% endblock %}
+
+{% block js %}
+    <script src="//code.jquery.com/ui/1.10.4/jquery-ui.js"></script>
+    <script src="{% static "js/interaction.js" %}"></script>
+    <script src="{% static "js/modal.js" %}"></script>
+
+    <script src="{% static "js/autocompleter.js" %}"></script>
+
+    <script>
+        function setTime23Hours() {
+            $('.endTime').val('23:00');
+        }
+
+        function setTime02Hours() {
+
+
+            if ($('.startDate').val() == $('.endDate').val()) {
+                var endDate = new Date($('.endDate').val());
+                endDate.setDate(endDate.getDate() + 1);
+                $('.endDate').val(endDate.getISOString());
+            }
+            $('.endTime').val('02:00');
+        }
+
+        $(document).ready(function () {
+            {% if not object.pk and not form.errors%}
+
+
+                $('.form-hws').slideUp(function () {
+                    $('.form-isRig').slideUp();
+                });
+
+            {% elif not object.pk and form.errors %}
+                if ($('#{{form.isRig.auto_id}}').attr('checked') != 'checked') {
+                    $('.form-isRig').hide();
+                }
+            {% endif %}
+
+            {% if not object.pk %}
+                $('#isRig-selector button').on('click', function () {
+                    $('.form-nonRig').slideDown();
+                    if ($(this).data('isrig') == 1) {
+                        $('#{{form.isRig.auto_id}}').attr('checked', true);
+                        if ($('.form-nonRig').is(':hidden')) {
+                            $('.form-isRig').show();
+                        } else {
+                            $('.form-isRig').slideDown();
+                        }
+                    } else {
+                        $('#{{form.isRig.auto_id}}').attr('checked', false);
+                        $('.form-isRig').slideUp();
+                    }
+                })
+            {% endif %}
+        })
+    </script>
+{% endblock %}
+
+{% block content %}
+    <h2>
+        {% if object.pk %}
+            Event {{ object.pk }}
+        {% else %}
+            New Event
+        {% endif %}
+    </h2>
+    {% include 'form_errors.html' %}
+    <form class="form-horizontal" role="form" method="POST">{% csrf_token %}
+        {% render_field form.isRig style="display: none" %}
+        {% if not object.pk %}
+            <div class="col-md-12 well">
+                <div class="form-group" id="isRig-selector">
+                    <div class="col-sm-12">
+					<span class="col-sm-6">
+						<button type="button" class="btn btn-primary col-xs-12" data-isrig="1">Rig</button>
+					</span>
+					<span class="col-sm-6">
+						<button type="button" class="btn btn-info col-xs-12" data-isrig="0">Non-Rig</button>
+					</span>
+                    </div>
+                </div>
+            </div>
+        {% endif %}
+        <div class="col-md-6">
+            <div class="panel panel-default form-hws form-isRig">
+                <div class="panel-heading">Contact Details</div>
+                <div class="panel-body">
+                    <div class="form-group">
+                        <label for="{{ form.person.id_for_label }}"
+                               class="col-sm-4 control-label">{{ form.person.label }}</label>
+
+                        <div class="col-sm-8">
+                            <div class="row">
+                                <input type="hidden" id="{{ form.person.id_for_label }}" name="{{ form.person.name }}"
+                                       value="{{ form.person.value }}"/>
+
+                                <div class="col-xs-9">
+                                    <input type="text" id="{{ form.person.id_for_label }}-input"
+                                           class="form-control autocomplete-json"
+                                           data-valueurl="{% if form.person.value %}
+											{% url 'api_secure' model='person' pk=form.person.value %}
+										{% else %}
+											{% url 'api_secure' model='person' %}
+										{% endif %}?fields=name"
+                                           data-sourceurl="{% url 'api_secure' model='person' %}"
+                                           data-target="{{ form.person.id_for_label }}"/>
+                                </div>
+                                <div class="col-xs-3 align-right">
+                                    <button type="button" class="btn btn-default"
+                                            data-url="{#% url invoiceitem_add object.pk %#}"
+                                            data-toggle="modal" data-target="#itemModal">
+                                        <span class="glyphicon glyphicon-plus"></span>
+                                    </button>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                    <div class="form-group">
+                        <label for="{{ form.organisation.id_for_label }}"
+                               class="col-sm-4 control-label">{{ form.organisation.label }}</label>
+
+                        <div class="col-sm-8">
+                            <div class="row">
+                                <input type="hidden" id="{{ form.organisation.id_for_label }}"
+                                       name="{{ form.organisation.name }}" value="{{ form.organisation.value }}"/>
+
+                                <div class="col-xs-9">
+                                    <input type="text" id="{{ form.organisation.id_for_label }}-input"
+                                           class="form-control autocomplete-json"
+                                           data-valueurl="{% if form.organisation.value %}
+												{% url 'api_secure' model='organisation' pk=form.organisation.value %}
+											{% else %}
+												{% url 'api_secure' model='organisation' %}
+											{% endif %}?fields=name"
+                                           data-sourceurl="{% url 'api_secure' model='organisation' %}"
+                                           data-target="{{ form.organisation.id_for_label }}"/>
+                                </div>
+                                <div class="col-xs-3 align-right">
+                                    <button type="button" class="btn btn-default"
+                                            data-url="{#% url invoiceitem_add object.pk %#}"
+                                            data-toggle="modal" data-target="#itemModal">
+                                        <span class="glyphicon glyphicon-plus"></span>
+                                    </button>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <div class="panel panel-default form-hws form-nonRig">
+                <div class="panel-heading">Event Description</div>
+                <div class="panel-body">
+                    <div class="form-group">
+                        <label for="{{ form.description.id_for_label }}"
+                               class="col-sm-4 control-label">{{ form.description.label }}</label>
+
+                        <div class="col-sm-8">
+                            {% render_field form.description class+="form-control" %}
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <!-- /.col-md-6 -->
+
+        <div class="col-md-6">
+            <div class="panel panel-default form-hws form-nonRig">
+                <div class="panel-heading">Event Details</div>
+                <div class="panel-body">
+                    <div id="form-hws">
+                        <div class="form-group">
+                            <label for="{{ form.name.id_for_label }}"
+                                   class="col-sm-4 control-label">{{ form.name.label }}</label>
+
+                            <div class="col-sm-8">
+                                {% render_field form.name class+="form-control" %}
+                            </div>
+                        </div>
+                        <div class="form-group">
+                            <label for="{{ form.venue.id_for_label }}"
+                                   class="col-sm-4 control-label">{{ form.venue.label }}</label>
+
+                            <div class="col-sm-8">
+                                <div class="row">
+                                    <input type="hidden" id="{{ form.venue.id_for_label }}" name="{{ form.venue.name }}"
+                                           value="{{ form.venue.value }}"/>
+
+                                    <div class="col-xs-9">
+                                        <input type="text" id="{{ form.venue.id_for_label }}-input"
+                                               class="form-control autocomplete-json"
+                                               data-valueurl="{% if form.venue.value %}
+												{% url 'api_secure' model='venue' pk=form.venue.value %}
+											{% else %}
+												{% url 'api_secure' model='venue' %}
+											{% endif %}?fields=name"
+                                               data-sourceurl="{% url 'api_secure' model='venue' %}"
+                                               data-target="{{ form.venue.id_for_label }}"/>
+                                    </div>
+                                    <div class="col-xs-3 align-right">
+                                        <button type="button" class="btn btn-default"
+                                                data-url="{#% url invoiceitem_add object.pk %#}"
+                                                data-toggle="modal" data-target="#itemModal">
+                                            <span class="glyphicon glyphicon-plus"></span>
+                                        </button>
+                                    </div>
+                                </div>
+                            </div>
+                        </div>
+                        <div class="form-group">
+                            <label for="{{ form.invoiceDate.id_for_label }}"
+                                   class="col-sm-4 control-label">{{ form.startDate.label }}</label>
+
+                            <div class="col-sm-4">
+                                {% render_field form.startDate type="date" class+="form-control startDate" required="" %}
+                            </div>
+                            <div class="col-sm-4">
+                                {% render_field form.startTime type="time" class+="form-control" %}
+                            </div>
+                        </div>
+                        <div class="form-group">
+                            <label for="{{ form.invoiceDate.id_for_label }}"
+                                   class="col-sm-4 control-label">{{ form.endDate.label }}</label>
+
+                            <div class="col-sm-4">
+                                {% render_field form.endDate type="date" class+="form-control endDate" required="" %}
+                            </div>
+                            <div class="col-sm-4">
+                                {% render_field form.endTime type="time" class+="form-control endTime" %}
+                            </div>
+                            <div class="col-sm-offset-8 col-sm-4">
+                                <div class="btn-group btn-group-justified">
+                                    <btn class="btn btn-default btn-xs" onclick="setTime23Hours()">23:00</btn>
+                                    <btn class="btn btn-default btn-xs" onclick="setTime02Hours()">02:00</btn>
+                                </div>
+                            </div>
+                        </div>
+
+                        {# Rig only information #}
+                        <div class="form-isRig {% if object.pk and not object.isRig %}hidden{% endif %}">
+                            <div class="form-group">
+                                <label for="{{ form.accessAt.id_for_label }}"
+                                       class="col-sm-4 control-label">{{ form.accessAt.label }}</label>
+
+                                <div class="col-sm-8">
+                                    {% render_field form.accessAt type="datetime-local" class+="form-control" %}
+                                </div>
+                            </div>
+                            <div class="form-group">
+                                <label for="{{ form.meetAt.id_for_label }}"
+                                       class="col-sm-4 control-label">{{ form.meetAt.label }}</label>
+
+                                <div class="col-sm-8">
+                                    {% render_field form.meetAt type="datetime-local" class+="form-control" %}
+                                </div>
+                            </div>
+                            <div class="form-group">
+                                <div class="col-sm-offset-4 col-sm-8">
+                                    <div class="checkbox">
+                                        <label>
+                                            {% render_field form.dryHire %}{{ form.dryHire.label }}
+                                        </label>
+                                    </div>
+                                </div>
+                            </div>
+                            {#% include 'RIGS/eventitem_table.html' %#}
+                        </div>
+                        <div class="col-sm-12">
+                            <div class="pull-right">
+                                <div class="form-group">
+                                    <input type="submit" value="Submit" class="btn btn-primary"/>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </form>
+    <div class="modal fade" id="itemModal" role="dialog" aria-labelledby="itemModal" aria-hidded="true">
+        <div class="modal-dialog">
+            <div class="modal-content">
+
+            </div>
+        </div>
+    </div>
+{% endblock %}
\ No newline at end of file
diff --git a/RIGS/urls.py b/RIGS/urls.py
index 138a6f03..096b750a 100644
--- a/RIGS/urls.py
+++ b/RIGS/urls.py
@@ -64,5 +64,9 @@ urlpatterns = patterns('',
                        url(r'^event/(?P<pk>\d+)/edit/$',
                            permission_required_with_403('RIGS.change_event')(rigboard.EventUpdate.as_view()),
                            name='event_update'),
+
+                       # API
+                       url(r'^api/(?P<model>\w+)/$', (views.SecureAPIRequest.as_view()), name="api_secure"),
+                       url(r'^api/(?P<model>\w+)/(?P<pk>\d+)/$', (views.SecureAPIRequest.as_view()), name="api_secure"),
 )
 
diff --git a/RIGS/views.py b/RIGS/views.py
index 60222db0..94bce0cf 100644
--- a/RIGS/views.py
+++ b/RIGS/views.py
@@ -1,8 +1,11 @@
 from django.http.response import HttpResponseRedirect
+from django.http import HttpResponse
 from django.core.urlresolvers import reverse_lazy
 from django.views import generic
 from django.views.decorators.csrf import csrf_exempt
 from django.db.models import Q
+from django.shortcuts import get_object_or_404
+from django.core import serializers
 from RIGS import models
 
 # Create your views here.
@@ -143,4 +146,60 @@ class VenueUpdate(generic.UpdateView):
     def get_success_url(self):
         return reverse_lazy('venue_detail', kwargs={
             'pk': self.object.pk,
-        })
\ No newline at end of file
+        })
+
+
+class SecureAPIRequest(generic.View):
+    models = {
+        'venue': models.Venue,
+        'person': models.Person,
+        'organisation': models.Organisation,
+    }
+
+    '''
+    Validate the request is allowed based on user permissions.
+    Raises 403 if denied.
+    Potential to add API key validation at a later date.
+    '''
+
+    def __validate__(self, request, key, perm):
+        if request.user.is_active:
+            if request.user.is_superuser or request.user.is_staff:
+                return True
+            elif request.user.has_perm(perm):
+                return True
+        raise PermissionDenied()
+
+    def get(self, request, model, pk=None, param=None):
+        # Request permission validation things
+        key = request.GET.get('apikey', None)
+        perm = 'RIGS.view_' + model
+        self.__validate__(request, key, perm)
+
+        # Response format where applicable
+        format = request.GET.get('format', 'json')
+
+        # Supply data for one record
+        if pk:
+            object = get_object_or_404(self.models[model], pk=pk)
+            fields = request.GET.get('fields', None)
+            data = serializers.serialize(format, [object], fields=fields)
+            return HttpResponse(data, content_type="application/" + format)
+
+        # Supply data for autocomplete ajax request in json form
+        term = request.GET.get('term', None)
+        if term:
+            objects = self.models[model].objects.filter(name__icontains=term)[:20]
+            results = []
+            for o in objects:
+                data = {
+                    'pk': o.pk,
+                    'value': o.pk,
+                    'label': o.name,
+                }
+                results.append(data)
+            # todo: fix simplejson issues
+            json = simplejson.dumps(results)
+            return HttpResponse(json, content_type="application/json")  # Always json
+
+        return HttpResponse(model)
\ No newline at end of file
diff --git a/db.sqlite3 b/db.sqlite3
index 1247059073e0b94ba6f3fcaf4d7a7c9cf1e4ff5a..d1da847fadbc9e546814db5f8db68287e0bd0dc7 100644
GIT binary patch
delta 2009
zcmajgX;hR|9LMo_<`D!&R1|SR5fyY)(3xRySacK>K@|6W2Nh+N0T~gONHHocw^9pj
zwME-BC|aek#rDM(E!$|P-8RdzzQ1}=FFL0epYOTn+;i?d=f1fA>gw~hYV3#%2(?%i
zAK4l04V)2biEoKHy6nL2Zr0P5AZvrg%rqOV7tDU<F7u4F!7Mf#`|R@`GWJHFi#VGV
zV`dxWo{Fl3lBD7acU4|#LSCV}EGcJs<!a~J#9_HPN&Y;W#bSvq@Ff-b{RIi74oBGv
zM`3=6&*yiqDoAvD@||VA5?@IDg*|~rM35P5F<Z=o=5ce2nP+C0b~D)8+7z~}$T(?D
z^|~BRcf8XT?@Ww#Ia3_Y6qkF5J2}DOaM+^EG~>UvJ;{mM-fXX{wbvQ2!bBScAP{X4
zgkXfghIR-=dvrj@Mtfb@{=?y}c!%?!+dU2s$Jd@p?}W|>M;An(E4raOdLR-#(F;-N
zjcD{iU-Ux^V$mN1V8=iV!eGQ99z!q`y4wjC65vK6hQWg*BqIf>7>*I}VkAZ(4Wlsz
zW08(=$Ur8>BMTES5!sl8$(Vwvn1<<?fti?v*_ea5n1}gTfQ49u#aMzI<YFn7VL9@!
z0xOY^0u-VM#VElll){HHlw&n2;Kv$NVlAq$4(qW28*ve;aWOVwGitB}m!KAx;xb&0
zt=NVua3!{52X<l?cH=5sjXl_leYghKq7M6U0N3Gq+<+T#6K=*q+=5$i8*axT9L62E
z6L;Zm+=C-HihEIy2Hc1H(TE4|ARfZQcm$8)7@F`H9!E2d;|V;8r|>jR;2AuN=kPpU
zz>9bZFXI)wij#N^uj388iBmX@x9~R3;2pe+_wYVGKnp&^NB9_@;8T2t&(Vr6@Fl*&
z*Z2nC;yawh_xJ%n;wSu!bNB_n;yixC@3??Jww_8iwnMQhrqV_UPy&^<N{|w)geW$p
zof4|FS2`#il`y4~(pd>tx+oD!SEZZMUFo4jDm|56N|e%DiB|e3eU*Mnj1sH#R|Y6{
zWuP)h8LY%9@yZZosNztZic3jQ+)AP{Oz|j5O0troq$<Oe5sFtCsf<$6l+nr<Wvueo
z!;aG`L&;ReD_P0}WulU;Oj0H*Q<SO7G-bLnLz$_}Qf4c2l)1`0WxldNS*R>h7As4X
z93@v-sw`8MD|yNaWu=m@6exvCky5ObD65oG#ix`h<;rTMLh&nWluBi-Ql+d@)+-x~
zCO#h{&L3hmYAn`fqsBPV7<MkgZ`e1b+5)m`0@D6(pw_qUvKq{xe^0@`$6QnMv5kh;
F_!FP_b>#p6

delta 1801
zcmW;MXIPa57>Dumo)^wh!GR*EI1b`K1?0$KDu@HYjp82QKwP*Lx8lT^pd}Wm<tq2A
z<0y|tj`l7pO0#m6mJPF1^8WkbcVEx9=enK`Pk#PGpL`SsdD|_PtOG@kBwNNkOZau$
z(d@08{4ExX-CAKW(@eLu!VEDtn&qZDcuUe=!|iwwkZc^U*laWW>}IINyk_n)OU)H#
zj+tr}`?<UVJ&tv`#(is1x~({~-0)rIDk*T47_h>G7rbGE9hFcSRp0|(R7EvZM-8{D
z#IJClzcbwFbU5P@q9PNb;v?c>V`8G61!XBUQ49X4jQ|9q4(g&Ff>0j~&=8H_Krk93
z1WnKs&Cnd7Xn~e!g)oF80<94V?Qer9xDbsP#3ByyNI+Y(Ln4yU9?9r{j_8EWNI@5*
zA`M;94c*ZLJ<$ujk&Zs-iwyKbe+<At48mXx!B7mtaAYD2BQO%9FdEqygB*;-IE=>x
zOhhgwVKSy*DyCsNW?&{}ArG@L2XiqG^RWO6u?UNik0n@&Wmt|CScw9x!fLF+TCBr*
zJcA7=L=iS(6Q0F$*o<Oq!Si?lC3q2Au?^et5?;m*?8GkY#vZ(aSFsoSupb9-5QlIW
zM{pF!a2zM_8eWGRCvgg=aRzVTO`L@X=Wrfxp%ic90xsebF5?}%i}&z8KEQ|g2p{7U
ze2UNTIljP`_zGqC8sFesl;b;mk1M!}A8-vn;wSu!>$riNxP{yJ1;64B?&3H6j(hk6
zf8sCvjr;fq5AZMk!$Um6V^rY(wPh*B1}Ij=RJ;^##irPmN=jv=isGaADpi$gN_C}%
z;-}P9YAOCoZ6!bnRO%>om3m5$QeSDHG*lWX4kcJ=tb`~{l%`5ErMVKSv`|_qt&}h&
zT!~OxE0Ky*X`@6bE+txtQDT)iC0<ET+A8goL?uaSuOurSl#WU#rL*$%uw68zDrrhr
zrJK@S>7n#gdMUk?bfu5dSIJQNDgBiJ%0Ok1GFTa+3{{3H!<9@WOBtbzR7NSIm272<
zlB0}O#wp{K3CctzSDB<tR;DOZm1)X!Wri|SnWf|@vz0l@TxFgzUs<3mG(0>XBP`GD
Qm3_iv^^~4nWF#6-0CapmX8-^I