Dynavera/apps/knowledge/viewsets.py

from django.db.models import Q
from rest_framework.exceptions import NotFound, PermissionDenied, ValidationError
from rest_framework.parsers import FormParser, MultiPartParser
from rest_framework.permissions import IsAuthenticated
from rest_framework.viewsets import ModelViewSet, ReadOnlyModelViewSet

from apps.accounts.models import Organization, Role
from apps.accounts.permissions import can_manage_organization
from apps.knowledge.models import RoleRagDocument, TrainingFile
from apps.knowledge.serializers import RoleRagDocumentSerializer, TrainingFileSerializer

class TrainingFileViewSet(ModelViewSet):
    queryset = TrainingFile.objects.all()
    serializer_class = TrainingFileSerializer
    permission_classes = [IsAuthenticated]
    parser_classes = [MultiPartParser, FormParser]
    lookup_field = 'uuid'
    
    def get_queryset(self):
        user = self.request.user
        queryset = TrainingFile.objects.filter(
            Q(organization__owner=user) |
            Q(organization__members=user)
        ).distinct()

        organization_uuid = self.request.query_params.get('organization_uuid')
        if organization_uuid in (None, ''):
            organization_uuid = self.request.data.get('organization_uuid')
        if organization_uuid:
            queryset = queryset.filter(organization__uuid=organization_uuid)

        role_uuid = self.request.query_params.get('role_uuid')
        if role_uuid in (None, ''):
            role_uuid = self.request.data.get('role_uuid')
        if role_uuid:
            queryset = queryset.filter(Q(role__uuid=role_uuid) | Q(role__isnull=True))

        return queryset

    def perform_create(self, serializer):
        role_uuid = self.request.data.get('role_uuid')
        organization_uuid = self.request.data.get('organization_uuid')

        role = None
        organization = None

        if role_uuid:
            try:
                role = Role.objects.select_related('organization').get(uuid=role_uuid)
            except Role.DoesNotExist:
                raise NotFound('Role not found')

            organization = role.organization

            if organization_uuid and str(organization.uuid) != str(organization_uuid):
                raise ValidationError({'organization_uuid': 'organization_uuid does not match role organization.'})
        else:
            if not organization_uuid:
                raise ValidationError({'organization_uuid': 'organization_uuid is required when role_uuid is not provided.'})

            try:
                organization = Organization.objects.get(uuid=organization_uuid)
            except Organization.DoesNotExist:
                raise NotFound('Organization not found')

        if not can_manage_organization(self.request.user, organization):
            raise PermissionDenied('Permission denied')

        uploaded_file = self.request.FILES.get('file')
        if uploaded_file is None:
            raise ValidationError({'file': 'File is required.'})

        serializer.save(
            uploaded_by=self.request.user,
            organization=organization,
            role=role,
            file_name=uploaded_file.name,
            file_size=uploaded_file.size,
            file_type=uploaded_file.content_type,
        )

    def destroy(self, request, *args, **kwargs):
        instance = self.get_object()

        is_uploader = instance.uploaded_by == request.user
        is_org_owner = instance.organization.owner == request.user
        is_org_manager = bool(request.user.is_manager) and instance.organization.members.filter(id=request.user.id).exists()

        if not (is_uploader or is_org_owner or is_org_manager):
            raise PermissionDenied('Permission denied')

        return super().destroy(request, *args, **kwargs)

class RoleRagDocumentViewSet(ReadOnlyModelViewSet):
    queryset = RoleRagDocument.objects.all()
    serializer_class = RoleRagDocumentSerializer
    permission_classes = [IsAuthenticated]
    lookup_field = 'uuid'
    
    def get_queryset(self):
        user = self.request.user
        queryset = RoleRagDocument.objects.filter(
            Q(organization__owner=user) |
            Q(organization__members=user)
        ).distinct()

        organization_uuid = self.request.query_params.get('organization_uuid')
        if organization_uuid in (None, ''):
            organization_uuid = self.request.data.get('organization_uuid')
        if organization_uuid:
            queryset = queryset.filter(organization__uuid=organization_uuid)

        role_uuid = self.request.query_params.get('role_uuid')
        if role_uuid in (None, ''):
            role_uuid = self.request.data.get('role_uuid')
        if role_uuid:
            queryset = queryset.filter(role__uuid=role_uuid)

        return queryset
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`from django.db.models import Q`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`from rest_framework.exceptions import NotFound, PermissionDenied, ValidationError`
Fixed imports to pep 8 conventions 2026-03-08 13:10:49 +00:00			`from rest_framework.parsers import FormParser, MultiPartParser`
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`from rest_framework.permissions import IsAuthenticated`
			`from rest_framework.viewsets import ModelViewSet, ReadOnlyModelViewSet`

Added role agnostic training files 2026-03-15 22:19:12 +00:00			`from apps.accounts.models import Organization, Role`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`from apps.accounts.permissions import can_manage_organization`
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`from apps.knowledge.models import RoleRagDocument, TrainingFile`
			`from apps.knowledge.serializers import RoleRagDocumentSerializer, TrainingFileSerializer`

			`class TrainingFileViewSet(ModelViewSet):`
			`queryset = TrainingFile.objects.all()`
			`serializer_class = TrainingFileSerializer`
			`permission_classes = [IsAuthenticated]`
			`parser_classes = [MultiPartParser, FormParser]`
			`lookup_field = 'uuid'`
Added specific filters for fields 2026-02-27 14:23:26 +00:00
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`def get_queryset(self):`
			`user = self.request.user`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`queryset = TrainingFile.objects.filter(`
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`Q(organization__owner=user) \|`
			`Q(organization__members=user)`
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`).distinct()`

Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`organization_uuid = self.request.query_params.get('organization_uuid')`
			`if organization_uuid in (None, ''):`
			`organization_uuid = self.request.data.get('organization_uuid')`
			`if organization_uuid:`
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`queryset = queryset.filter(organization__uuid=organization_uuid)`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00
			`role_uuid = self.request.query_params.get('role_uuid')`
			`if role_uuid in (None, ''):`
			`role_uuid = self.request.data.get('role_uuid')`
			`if role_uuid:`
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`queryset = queryset.filter(Q(role__uuid=role_uuid) \| Q(role__isnull=True))`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00
			`return queryset`

Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`def perform_create(self, serializer):`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`role_uuid = self.request.data.get('role_uuid')`
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`organization_uuid = self.request.data.get('organization_uuid')`

			`role = None`
			`organization = None`

			`if role_uuid:`
			`try:`
			`role = Role.objects.select_related('organization').get(uuid=role_uuid)`
			`except Role.DoesNotExist:`
			`raise NotFound('Role not found')`

			`organization = role.organization`

			`if organization_uuid and str(organization.uuid) != str(organization_uuid):`
			`raise ValidationError({'organization_uuid': 'organization_uuid does not match role organization.'})`
			`else:`
			`if not organization_uuid:`
			`raise ValidationError({'organization_uuid': 'organization_uuid is required when role_uuid is not provided.'})`
Customised training file filters, role and member search and fixed invite redirect bug 2026-02-27 13:58:00 +00:00
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`try:`
			`organization = Organization.objects.get(uuid=organization_uuid)`
			`except Organization.DoesNotExist:`
			`raise NotFound('Organization not found')`
Customised training file filters, role and member search and fixed invite redirect bug 2026-02-27 13:58:00 +00:00
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`if not can_manage_organization(self.request.user, organization):`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`raise PermissionDenied('Permission denied')`
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`uploaded_file = self.request.FILES.get('file')`
			`if uploaded_file is None:`
			`raise ValidationError({'file': 'File is required.'})`
Customised training file filters, role and member search and fixed invite redirect bug 2026-02-27 13:58:00 +00:00
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`serializer.save(`
			`uploaded_by=self.request.user,`
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`organization=organization,`
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`role=role,`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`file_name=uploaded_file.name,`
			`file_size=uploaded_file.size,`
			`file_type=uploaded_file.content_type,`
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`)`

			`def destroy(self, request, args, *kwargs):`
			`instance = self.get_object()`
Customised training file filters, role and member search and fixed invite redirect bug 2026-02-27 13:58:00 +00:00
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`is_uploader = instance.uploaded_by == request.user`
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`is_org_owner = instance.organization.owner == request.user`
			`is_org_manager = bool(request.user.is_manager) and instance.organization.members.filter(id=request.user.id).exists()`
Customised training file filters, role and member search and fixed invite redirect bug 2026-02-27 13:58:00 +00:00
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`if not (is_uploader or is_org_owner or is_org_manager):`
			`raise PermissionDenied('Permission denied')`
Customised training file filters, role and member search and fixed invite redirect bug 2026-02-27 13:58:00 +00:00
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`return super().destroy(request, args, *kwargs)`

			`class RoleRagDocumentViewSet(ReadOnlyModelViewSet):`
			`queryset = RoleRagDocument.objects.all()`
			`serializer_class = RoleRagDocumentSerializer`
			`permission_classes = [IsAuthenticated]`
			`lookup_field = 'uuid'`
Added specific filters for fields 2026-02-27 14:23:26 +00:00
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`def get_queryset(self):`
			`user = self.request.user`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00			`queryset = RoleRagDocument.objects.filter(`
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`Q(organization__owner=user) \|`
			`Q(organization__members=user)`
Revised all files to reduce bloat + optimized workflow 2026-02-26 01:32:04 +00:00			`).distinct()`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00
			`organization_uuid = self.request.query_params.get('organization_uuid')`
			`if organization_uuid in (None, ''):`
			`organization_uuid = self.request.data.get('organization_uuid')`
			`if organization_uuid:`
Added role agnostic training files 2026-03-15 22:19:12 +00:00			`queryset = queryset.filter(organization__uuid=organization_uuid)`
Revised checks for edge cases with cleaner handling of query parms and data 2026-03-08 12:58:12 +00:00
			`role_uuid = self.request.query_params.get('role_uuid')`
			`if role_uuid in (None, ''):`
			`role_uuid = self.request.data.get('role_uuid')`
			`if role_uuid:`
			`queryset = queryset.filter(role__uuid=role_uuid)`

			`return queryset`