IdHub/idhub/management/commands/demo_data.py

import os
import csv
import json

from pathlib import Path
from utils import credtools
from django.conf import settings
from django.core.management.base import BaseCommand
from django.contrib.auth import get_user_model
from django.core.cache import cache
from django.urls import reverse
from pyvckit.did import (
    generate_did,
    gen_did_document,
)

from idhub.models import Schemas, DID
from oidc4vp.models import Organization
from webhook.models import Token


User = get_user_model()


class Command(BaseCommand):
    help = "Insert minimum data for the project"
    DOMAIN = settings.DOMAIN
    OIDC_ORGS = settings.OIDC_ORGS

    def add_arguments(self, parser):
        parser.add_argument('predefined_token', nargs='?', default='', type=str, help='predefined token')
        parser.add_argument('predefined_did', nargs='?', default='', type=str, help='predefined did')

    def handle(self, *args, **kwargs):
        ADMIN_EMAIL = settings.INITIAL_ADMIN_EMAIL
        ADMIN_PASSWORD = settings.INITIAL_ADMIN_PASSWORD
        self.predefined_token = kwargs['predefined_token']
        self.predefined_did = kwargs['predefined_did']
        # on demo situation, encrypted vault is hardcoded with password DEMO
        cache.set("KEY_DIDS", "DEMO", None)

        self.org = Organization.objects.create(
            name=self.DOMAIN,
            domain=self.DOMAIN,
            main=True
        )
        self.org.set_encrypted_sensitive_data()
        self.org.save()

        self.create_admin_users(ADMIN_EMAIL, ADMIN_PASSWORD)
        if settings.CREATE_TEST_USERS:
            for u in range(1, 6):
                user = 'user{}@example.org'.format(u)
                self.create_users(user, '1234')

        if self.OIDC_ORGS:
            self.create_organizations()

        self.create_schemas()

    def create_admin_users(self, email, password):
        su = User.objects.create_superuser(email=email, password=password)
        su.save()

        if self.predefined_token:
            tk = Token.objects.filter(token=self.predefined_token).first()
            if not tk:
                Token.objects.create(token=self.predefined_token)

        self.create_default_did()

    def create_default_did(self):

        fdid = self.open_example_did()
        if not fdid:
            return

        did = DID(type=DID.Types.WEB)
        new_key_material = fdid.get("key_material", "")
        label = fdid.get("label", "")
        if not new_key_material:
            return

        did.set_key_material(new_key_material)

        if label:
            did.label = label

        if did.type == did.Types.KEY:
            did.did = generate_did(new_key_material)
        elif did.type == did.Types.WEB:
            url = "https://{}".format(settings.DOMAIN)
            path = reverse("idhub:serve_did", args=["a"])

            if path:
                path = path.split("/a/did.json")[0]
                url = "https://{}/{}".format(settings.DOMAIN, path)

            did.did = generate_did(new_key_material, url)
            key = json.loads(new_key_material)
            url, did.didweb_document = gen_did_document(did.did, key)

        did.save()

    def open_example_did(self):
        BASE_DIR = Path(__file__).resolve().parent.parent.parent.parent
        didweb_path = os.path.join(BASE_DIR, "examples", "keys_did.json")

        if self.predefined_did:
           didweb_path = self.predefined_did

        data = ''
        with open(didweb_path) as _file:
            try:
                data = json.loads(_file.read())
            except Exception:
                pass

        return data

    def create_users(self, email, password):
        u = User.objects.create(email=email, password=password)
        u.set_password(password)
        u.save()

    def create_organizations(self):
        BASE_DIR = Path(__file__).resolve().parent.parent.parent.parent
        ORGANIZATION = os.path.join(BASE_DIR, self.OIDC_ORGS)
        DOMAIN = self.DOMAIN

        with open(ORGANIZATION, newline='\n') as csvfile:
            f = csv.reader(csvfile, delimiter=';', quotechar='"')
            exist_main_domain = False
            for r in f:
                if DOMAIN == r[2].strip():
                    exist_main_domain = True
                self.create_one_organization(r[0].strip(), r[1].strip(), r[2].strip())

            assert exist_main_domain, f"{DOMAIN} is not in {ORGANIZATION}"

        if settings.SYNC_ORG_DEV == 'y':
            self.sync_credentials_organizations("pangea.org", "somconnexio.coop")
            self.sync_credentials_organizations("local 8000", "local 9000")

    def create_one_organization(self, name, url, domain):
        if self.DOMAIN == domain:
            self.org.name = name
            self.org.response_uri = url
            self.org.save()
        else:
            Organization.objects.create(name=name, response_uri=url, domain=domain)

    def sync_credentials_organizations(self, test1, test2):
        org1 = Organization.objects.get(name=test1)
        org2 = Organization.objects.get(name=test2)
        org2.my_client_id = org1.client_id
        org2.my_client_secret = org1.client_secret
        org1.my_client_id = org2.client_id
        org1.my_client_secret = org2.client_secret
        org1.save()
        org2.save()

    def create_schemas(self):
        schemas_files = os.listdir(settings.SCHEMAS_DIR)
        for x in schemas_files:
            if Schemas.objects.filter(file_schema=x).exists():
                continue
            self._create_schemas(x)

    def _create_schemas(self, file_name):
        data = self.open_file(file_name)
        try:
            ldata = json.loads(data)
            assert credtools.validate_schema(ldata)
            dname = ldata.get('name')
            title = ldata.get('title')
            assert dname
            assert title
        except Exception:
            ldata = {}
            title = ''
            _name = ''

        _name = json.dumps(ldata.get('name', ''))
        _description = json.dumps(ldata.get('description', ''))

        Schemas.objects.create(
            file_schema=file_name,
            data=data,
            type=title,
            _name=_name,
            _description=_description
        )

    def open_file(self, file_name):
        data = ''
        filename = Path(settings.SCHEMAS_DIR).joinpath(file_name)
        with filename.open() as schema_file:
            data = schema_file.read()

        return data
add initial datas from envs vars 2023-11-07 16:43:23 +00:00			`import os`
			`import csv`
add more initial datas 2023-12-12 17:00:21 +00:00			`import json`
add initial datas from envs vars 2023-11-07 16:43:23 +00:00
			`from pathlib import Path`
add more initial datas 2023-12-12 17:00:21 +00:00			`from utils import credtools`
			`from django.conf import settings`
add KEY_DID as env var 2024-02-22 13:58:52 +00:00			`from django.core.management.base import BaseCommand`
add command initial datas 2023-11-03 12:29:15 +00:00			`from django.contrib.auth import get_user_model`
command predetermined diddocument 2025-01-28 17:15:35 +00:00			`from django.core.cache import cache`
add create_default_did in initial_data 2025-01-27 19:34:24 +00:00			`from django.urls import reverse`
			`from pyvckit.did import (`
			`generate_did,`
			`gen_did_document,`
			`)`

			`from idhub.models import Schemas, DID`
add oidc4vp module 2023-11-24 15:36:05 +00:00			`from oidc4vp.models import Organization`
add predefined_token in initial_datas 2025-01-23 16:58:07 +00:00			`from webhook.models import Token`
add command initial datas 2023-11-03 12:29:15 +00:00

			`User = get_user_model()`


			`class Command(BaseCommand):`
add create_default_did in initial_data 2025-01-27 19:34:24 +00:00			`help = "Insert minimum data for the project"`
remove RESPONSE_URI 2024-03-04 08:44:53 +00:00			`DOMAIN = settings.DOMAIN`
			`OIDC_ORGS = settings.OIDC_ORGS`
add command initial datas 2023-11-03 12:29:15 +00:00
add predefined_token in initial_datas 2025-01-23 16:58:07 +00:00			`def add_arguments(self, parser):`
			`parser.add_argument('predefined_token', nargs='?', default='', type=str, help='predefined token')`
command predetermined diddocument 2025-01-28 17:15:35 +00:00			`parser.add_argument('predefined_did', nargs='?', default='', type=str, help='predefined did')`
add predefined_token in initial_datas 2025-01-23 16:58:07 +00:00
add command initial datas 2023-11-03 12:29:15 +00:00			`def handle(self, args, *kwargs):`
refactor ADMIN_{EMAIL,PASSWORD} vars specify explicitly that they are only used on initial moment (when loading the initial_datas script) 2024-03-07 10:13:26 +00:00			`ADMIN_EMAIL = settings.INITIAL_ADMIN_EMAIL`
			`ADMIN_PASSWORD = settings.INITIAL_ADMIN_PASSWORD`
add predefined_token in initial_datas 2025-01-23 16:58:07 +00:00			`self.predefined_token = kwargs['predefined_token']`
add create_default_did in initial_data 2025-01-27 19:34:24 +00:00			`self.predefined_did = kwargs['predefined_did']`
idhub: demo vault and default did use DEMO 2025-01-29 17:02:17 +00:00			`# on demo situation, encrypted vault is hardcoded with password DEMO`
			`cache.set("KEY_DIDS", "DEMO", None)`
add initial datas from envs vars 2023-11-07 16:43:23 +00:00
remove RESPONSE_URI 2024-03-04 08:44:53 +00:00			`self.org = Organization.objects.create(`
add predefined_token in initial_datas 2025-01-23 16:58:07 +00:00			`name=self.DOMAIN,`
			`domain=self.DOMAIN,`
remove RESPONSE_URI 2024-03-04 08:44:53 +00:00			`main=True`
			`)`
command predetermined diddocument 2025-01-28 17:15:35 +00:00			`self.org.set_encrypted_sensitive_data()`
			`self.org.save()`

			`self.create_admin_users(ADMIN_EMAIL, ADMIN_PASSWORD)`
			`if settings.CREATE_TEST_USERS:`
			`for u in range(1, 6):`
			`user = 'user{}@example.org'.format(u)`
			`self.create_users(user, '1234')`
remove RESPONSE_URI 2024-03-04 08:44:53 +00:00
			`if self.OIDC_ORGS:`
			`self.create_organizations()`
simplify initial_datas 2024-02-23 08:27:18 +00:00
add more initial datas 2023-12-12 17:00:21 +00:00			`self.create_schemas()`
add command initial datas 2023-11-03 12:29:15 +00:00
			`def create_admin_users(self, email, password):`
make migrations and fix some things 2024-01-04 15:27:27 +00:00			`su = User.objects.create_superuser(email=email, password=password)`
			`su.save()`
add command initial datas 2023-11-03 12:29:15 +00:00
command predetermined diddocument 2025-01-28 17:15:35 +00:00			`if self.predefined_token:`
			`tk = Token.objects.filter(token=self.predefined_token).first()`
			`if not tk:`
			`Token.objects.create(token=self.predefined_token)`
add command initial datas 2023-11-03 12:29:15 +00:00
command predetermined diddocument 2025-01-28 17:15:35 +00:00			`self.create_default_did()`

			`def create_default_did(self):`

add create_default_did in initial_data 2025-01-27 19:34:24 +00:00			`fdid = self.open_example_did()`
			`if not fdid:`
			`return`

command predetermined diddocument 2025-01-28 17:15:35 +00:00			`did = DID(type=DID.Types.WEB)`
add create_default_did in initial_data 2025-01-27 19:34:24 +00:00			`new_key_material = fdid.get("key_material", "")`
			`label = fdid.get("label", "")`
			`if not new_key_material:`
			`return`
command predetermined diddocument 2025-01-28 17:15:35 +00:00
add create_default_did in initial_data 2025-01-27 19:34:24 +00:00			`did.set_key_material(new_key_material)`

			`if label:`
			`did.label = label`

			`if did.type == did.Types.KEY:`
			`did.did = generate_did(new_key_material)`
			`elif did.type == did.Types.WEB:`
			`url = "https://{}".format(settings.DOMAIN)`
			`path = reverse("idhub:serve_did", args=["a"])`

			`if path:`
			`path = path.split("/a/did.json")[0]`
			`url = "https://{}/{}".format(settings.DOMAIN, path)`

			`did.did = generate_did(new_key_material, url)`
			`key = json.loads(new_key_material)`
command predetermined diddocument 2025-01-28 17:15:35 +00:00			`url, did.didweb_document = gen_did_document(did.did, key)`
add create_default_did in initial_data 2025-01-27 19:34:24 +00:00
			`did.save()`

			`def open_example_did(self):`
			`BASE_DIR = Path(__file__).resolve().parent.parent.parent.parent`
			`didweb_path = os.path.join(BASE_DIR, "examples", "keys_did.json")`

command predetermined diddocument 2025-01-28 17:15:35 +00:00			`if self.predefined_did:`
			`didweb_path = self.predefined_did`
add create_default_did in initial_data 2025-01-27 19:34:24 +00:00
			`data = ''`
command predetermined diddocument 2025-01-28 17:15:35 +00:00			`with open(didweb_path) as _file:`
add create_default_did in initial_data 2025-01-27 19:34:24 +00:00			`try:`
			`data = json.loads(_file.read())`
			`except Exception:`
			`pass`

			`return data`

add command initial datas 2023-11-03 12:29:15 +00:00			`def create_users(self, email, password):`
make migrations and fix some things 2024-01-04 15:27:27 +00:00			`u = User.objects.create(email=email, password=password)`
add command initial datas 2023-11-03 12:29:15 +00:00			`u.set_password(password)`
			`u.save()`

remove RESPONSE_URI 2024-03-04 08:44:53 +00:00			`def create_organizations(self):`
			`BASE_DIR = Path(__file__).resolve().parent.parent.parent.parent`
			`ORGANIZATION = os.path.join(BASE_DIR, self.OIDC_ORGS)`
			`DOMAIN = self.DOMAIN`

			`with open(ORGANIZATION, newline='\n') as csvfile:`
			`f = csv.reader(csvfile, delimiter=';', quotechar='"')`
			`exist_main_domain = False`
			`for r in f:`
			`if DOMAIN == r[2].strip():`
			`exist_main_domain = True`
			`self.create_one_organization(r[0].strip(), r[1].strip(), r[2].strip())`

			`assert exist_main_domain, f"{DOMAIN} is not in {ORGANIZATION}"`

			`if settings.SYNC_ORG_DEV == 'y':`
			`self.sync_credentials_organizations("pangea.org", "somconnexio.coop")`
			`self.sync_credentials_organizations("local 8000", "local 9000")`
add command initial datas 2023-11-03 12:29:15 +00:00
remove RESPONSE_URI 2024-03-04 08:44:53 +00:00			`def create_one_organization(self, name, url, domain):`
			`if self.DOMAIN == domain:`
			`self.org.name = name`
			`self.org.response_uri = url`
			`self.org.save()`
add main to organization 2024-02-27 08:27:55 +00:00			`else:`
remove RESPONSE_URI 2024-03-04 08:44:53 +00:00			`Organization.objects.create(name=name, response_uri=url, domain=domain)`
sync command 2023-12-11 12:55:56 +00:00
integrate more organizations 2023-12-11 19:06:53 +00:00			`def sync_credentials_organizations(self, test1, test2):`
			`org1 = Organization.objects.get(name=test1)`
			`org2 = Organization.objects.get(name=test2)`
sync command 2023-12-11 12:55:56 +00:00			`org2.my_client_id = org1.client_id`
			`org2.my_client_secret = org1.client_secret`
			`org1.my_client_id = org2.client_id`
			`org1.my_client_secret = org2.client_secret`
fixing 2023-12-11 14:38:16 +00:00			`org1.save()`
			`org2.save()`
new encriptation system of sensible datas 2024-02-20 16:50:45 +00:00
add more initial datas 2023-12-12 17:00:21 +00:00			`def create_schemas(self):`
			`schemas_files = os.listdir(settings.SCHEMAS_DIR)`
			`for x in schemas_files:`
			`if Schemas.objects.filter(file_schema=x).exists():`
			`continue`
			`self._create_schemas(x)`

			`def _create_schemas(self, file_name):`
			`data = self.open_file(file_name)`
			`try:`
			`ldata = json.loads(data)`
			`assert credtools.validate_schema(ldata)`
fix initial_datas 2024-01-15 18:10:55 +00:00			`dname = ldata.get('name')`
fix command initial data 2024-01-21 12:46:01 +00:00			`title = ldata.get('title')`
fix initial_datas 2024-01-15 18:10:55 +00:00			`assert dname`
fix command initial data 2024-01-21 12:46:01 +00:00			`assert title`
add more initial datas 2023-12-12 17:00:21 +00:00			`except Exception:`
sign snapschot credential from webhook 2024-11-25 19:18:47 +00:00			`ldata = {}`
fix command initial data 2024-01-21 12:46:01 +00:00			`title = ''`
fix descriptions, names and jsons 2024-01-22 17:13:06 +00:00			`_name = ''`

			`_name = json.dumps(ldata.get('name', ''))`
			`_description = json.dumps(ldata.get('description', ''))`

			`Schemas.objects.create(`
			`file_schema=file_name,`
			`data=data,`
			`type=title,`
			`_name=_name,`
			`_description=_description`
			`)`
add more initial datas 2023-12-12 17:00:21 +00:00
			`def open_file(self, file_name):`
			`data = ''`
			`filename = Path(settings.SCHEMAS_DIR).joinpath(file_name)`
			`with filename.open() as schema_file:`
			`data = schema_file.read()`

			`return data`