Xj% ddlmZmZmZmZddlmZddlmZddl m Z ddl m Z ddlmZddlmZmZmZmZmZmZddlmZdd lmZdd lmZdd lmZeZee Z!e"d e#e ddeej$eej%fde&de&dedefdZ'e(d eej)eej$ee fdededefdZ*e"de eej$eej%fde&dedefdZ+e,de eej$ee fde&dededefdZ-e.dej/eej$ee fde&dedefdZ0e"de#e& eej$eej%fde&dedefdZ1e,de2 eej$ee fde&de#e&dedefd Z3e(d!eej)eej$eej%fdededefd"Z4e"d#e#e eej$eej%fdedefd$Z5e,d%e eej$eej%fde&dededefd&Z6e.d%ej/eej$eej%fde&dedefd'Z7e(d(e2 eej$eej%fde&d)ededefd*Z8e"d(e#e eej$eej%fde&dedefd+Z9e"d,e#e eej%fdefd-Z:e"d.eej$eej%fde&dedefd/Z;e(d0d1eej$eej%fde&d2e2d3ed8S)9) APIRouterDepends HTTPExceptionstatus)Session)deps)require_platform_admin)role)User) ResourceInfo RoleCreateRolePermissionResponseRolePermissionsUpdate RoleResponse RoleUpdate)PermissionService)PermissionTemplateService) RoleService) get_logger/)response_modeldskiplimitdb current_userc4tj|||}|S)N)rr) crud_role get_multi)rrrrroless ?/lsinfo/ai/hellotax_ai/base_platform/app/api/v1/access/roles.py get_rolesr"s   U ; ; ;E L)r status_coderole_inc tj||j}|rttjdtj|||j}t |j|j d|S)N)codez"Role with this code already existsr$detail)obj_in created_byuser_idrole_idz Role created) r get_by_coder'rrHTTP_400_BAD_REQUESTcreateidloggerbindinfo)r%rrexistingr s r! create_roler7$s $Rgl;;;H 3<`      Bw>~NNN Kr#z /{role_id}r.cltj||}|sttjd|S)Nr2Role not foundr()rgetrrHTTP_404_NOT_FOUNDr.rrr s r!get_roler>4s= = ( ( (D \(AJZ[[[[ Kr#cFtj||}|sttjd|jrttjdtj|||}t |j | d|S)Nr9r:r(System roles cannot be modified)db_objr*r,z Role updated) rr;rrr< is_systemHTTP_403_FORBIDDENupdater3r4r2r5)r.r%rrr s r! update_rolerE@s = ( ( (D \(AJZ[[[[ ~ 1:[      BtG < < >~NNN Kr#)r$cDtj||}|sttjd|jrttjdtj||t |j | ddS)Nr9r:r(zCannot delete system roler,z Role deleted) rr;rrr<rBr0remover3r4r2r5r=s r! delete_rolerHSs = ( ( (D \(AJZ[[[[ ~ 3>~NNN 4r#z/{role_id}/menusctj||}|sttjdtj||}|S)Nr9r:r()r.)rr;rrr< get_menus)r.rrr menu_idss r!get_role_menusrLesR = ( ( (D \(AJZ[[[["2w777H Or#rKctj||}|sttjd|jrttjdtj|||ddiS)Nr9r:r(r@)r.rKmessagezRole menus updated successfully)rr;rrr<rBrC update_menus)r.rKrrr s r!update_role_menusrPrs = ( ( (D \(AJZ[[[[ ~ 1:[    2wBBBB 8 99r#z/customc`tj||j|j|j|j}|S)N)rname description tenant_idr+)rcreate_custom_rolerRrSrTr2)r%rrr s r!rUrUs;  ) \'(?    D Kr#z /tenant/listcXt|}||j}|SN)rget_tenant_rolesrT)rr role_servicer s r!list_tenant_rolesrZs* r??L  ) ),*@ A AE Lr#z/{role_id}/customctt|}|||j|j|j}|S)N)r.rTrRrS)rupdate_custom_rolerTrRrS)r.r%rrrYr s r!r\r\sDr??L  * *( \' +  D Kr#cZt|}|||jdSrW)rdelete_custom_rolerT)r.rrrYs r!r^r^s- r??L##G\-CDDD 4r#z/{role_id}/permissionspermissions_inctj||}|sttjd|j|jkrttjd|jrttjdt|}| ||jd|j Dt |j |d d d iS) Nr9r:r(z!No permission to modify this roler@c*g|]}|j|jfSresourceaction.0ps r! z+assign_role_permissions..s!PPPaj!(+PPPr#)r.rT permissionsr,zRole permissions assignedrNz!Permissions assigned successfully)rr;rrr<rTrCrBrassign_role_permissionsrjr3r4r2r5)r.r_rrr permission_services r!rkrks = ( ( (D \(AJZ[[[[ ~///1:]     ~ 1:[    +2....(PP^5OPPP/  KK K99>>?Z[[[ : ;;r#c*tj||}|sttjd|j|jkrttjdt|}|||j}d|DS)Nr9r:r(zNo permission to view this rolec0g|]}|d|ddS)rrcrbrfs r!riz(get_role_permissions..s( D D D111 . . D D Dr#) rr;rrr<rTrCrget_role_permissions)r.rrr rlrjs r!rprps = ( ( (D \(AJZ[[[[ ~///1:[    +2..$99'.s$ V V V=4Tg . . V V Vr#)rget_available_resourcesitems)rrl resourcess r!rtrts?*400"::<putrEdeleteHTTP_204_NO_CONTENTrHrLdictrPrUrZr\r^rkrprtr{boolrrrbr#r!rsU ============""""""666666++++++ EDDDDDUUUUUU888888%%%%%%  H  C\ 233'$455 !677     43S6;RSS'$455 !7!7!9!9::        TS L66'$455 !677 76L66'$455 !7!7!9!9::     76$|)CDD'$455 !7!7!9!9:: ED" tCy99'$455 !677        :9  t44'$455 !7!7!9!9:: :: :3i: : :::54:"Y|AXYY'$455 !677        ZY N4 +=>>'$455 !677?>  =='$455 !677           >=  "0JKK'$455 !677 LK %d;;'$455 !677 << <)< < <<<<;<6 $T:P5QRR'$455 !677EE EEEEESRE" $T,5GHH189N1O1OWW$WWWIHW  +,,'$455 !677 -, ,--'$455 !677 < <  <  < <  <  < < <.- < *++'$455 !677 :: :: : :::,+:::r#