address TODOs pointed out in review ++

melange396 · melange396 · commit 1c926e7c6538 · 2023-06-23T14:51:14.000-04:00
TODOs done: raise Exception when trying to update non-existent User, return UserRole on creation.
also use more appropriate reciever for static method call, and expand comment on static vs bound methods in User.
diff --git a/src/server/admin/models.py b/src/server/admin/models.py
@@ -55,6 +55,7 @@ def _assign_roles(user: "User", roles: Optional[Set[str]], session) -> None:
         db_user = session.query(User).filter(User.id == user.id).first()
         # TODO: would it be sufficient to use the passed-in `user` instead of looking up this `db_user`?
         #       or even use this as a bound method instead of a static??
+        #       same goes for `update_user()` and `delete_user()` below...
         if roles:
             db_user.roles = session.query(UserRole).filter(UserRole.name.in_(roles)).all()
         else:
@@ -97,16 +98,15 @@ def update_user(
     ) -> "User":
         get_structured_logger("api_user_models").info("updating user", user_id=user.id, new_api_key=api_key)
         user = User.find_user(user_id=user.id, session=session)
-        if user:
-            update_stmt = (
-                update(User)
-                .where(User.id == user.id)
-                .values(api_key=api_key, email=email)
-            )
-            session.execute(update_stmt)
-            return User._assign_roles(user, roles, session)
-        # TODO: else: raise Exception() ??
-        return None
+        if not user:
+            raise Exception('user not found')
+        update_stmt = (
+            update(User)
+            .where(User.id == user.id)
+            .values(api_key=api_key, email=email)
+        )
+        session.execute(update_stmt)
+        return User._assign_roles(user, roles, session)
 
     @staticmethod
     @default_session(WriteSession)
@@ -135,7 +135,7 @@ def create_role(name: str, session) -> None:
                 WHERE name='{name}')
         """)
         session.commit()
-        # TODO: look up and return new role
+        return session.query(UserRole).filter(UserRole.name == name).first()
 
     @staticmethod
     @default_session(Session)
diff --git a/src/server/endpoints/admin.py b/src/server/endpoints/admin.py
@@ -94,7 +94,7 @@ def _detail(user_id: int):
             if user_check and user_check.id != user.id:
                 flags["banner"] = "Could not update user; same api_key and/or email already exists."
             else:
-                user = user.update_user(
+                user = User.update_user(
                     user=user,
                     api_key=request.values["api_key"],
                     email=request.values["email"],
