Merge pull request #405 from keillera/ALIS-4986

ALIS-4986: 書き込み制限処理を追加

Author: hayago

src/common/db_util.py

@@ -42,6 +42,19 @@ def validate_article_existence(cls, dynamodb, article_id, user_id=None, status=N
 
         return True
 
+    @staticmethod
+    def validate_write_blacklisted(dynamodb, user_id):
+        screened_article_table = dynamodb.Table(os.environ['SCREENED_ARTICLE_TABLE_NAME'])
+        write_blacklisted = screened_article_table.get_item(Key={'article_type': 'write_blacklisted'}).get('Item')
+
+        if not write_blacklisted or not write_blacklisted.get('users'):
+            return True
+
+        if user_id in write_blacklisted.get('users'):
+            raise ValidationError('Write restricted')
+
+        return True
+
     @classmethod
     def validate_latest_price(cls, dynamodb, article_id, price):
         article_info_table = dynamodb.Table(os.environ['ARTICLE_INFO_TABLE_NAME'])

src/handlers/me/articles/comments/create/me_articles_comments_create.py

@@ -33,6 +33,10 @@ def validate_params(self):
             raise ValidationError('Request parameter is required')
 
         validate(self.params, self.get_schema())
+        DBUtil.validate_write_blacklisted(
+            self.dynamodb,
+            self.event['requestContext']['authorizer']['claims']['cognito:username']
+        )
         DBUtil.validate_article_existence(self.dynamodb, self.params['article_id'], status='public')
 
     def exec_main_proc(self):

src/handlers/me/articles/comments/reply/me_articles_comments_reply.py

@@ -39,6 +39,10 @@ def validate_params(self):
             raise ValidationError('Request parameter is required')
 
         validate(self.params, self.get_schema())
+        DBUtil.validate_write_blacklisted(
+            self.dynamodb,
+            self.event['requestContext']['authorizer']['claims']['cognito:username']
+        )
         DBUtil.validate_article_existence(self.dynamodb, self.params['article_id'], status='public')
         DBUtil.validate_parent_comment_existence(self.dynamodb, self.params['parent_id'])
         DBUtil.validate_user_existence(self.dynamodb, self.params['replyed_user_id'])

src/handlers/me/articles/drafts/publish/me_articles_drafts_publish.py

@@ -32,6 +32,11 @@ def validate_params(self):
         UserUtil.verified_phone_and_email(self.event)
         validate(self.params, self.get_schema())
 
+        DBUtil.validate_write_blacklisted(
+            self.dynamodb,
+            self.event['requestContext']['authorizer']['claims']['cognito:username']
+        )
+
         if self.params.get('tags'):
             ParameterUtil.validate_array_unique(self.params['tags'], 'tags', case_insensitive=True)
             TagUtil.validate_format(self.params['tags'])

src/handlers/me/articles/drafts/publish_with_header/me_articles_drafts_publish_with_header.py

@@ -42,6 +42,11 @@ def validate_params(self):
 
         validate(self.params, self.get_schema())
 
+        DBUtil.validate_write_blacklisted(
+            self.dynamodb,
+            self.event['requestContext']['authorizer']['claims']['cognito:username']
+        )
+
         if self.params.get('eye_catch_url'):
             TextSanitizer.validate_img_url(self.params.get('eye_catch_url'))
 

src/handlers/me/articles/public/republish/me_articles_public_republish.py

@@ -33,6 +33,11 @@ def validate_params(self):
 
         validate(self.params, self.get_schema())
 
+        DBUtil.validate_write_blacklisted(
+            self.dynamodb,
+            self.event['requestContext']['authorizer']['claims']['cognito:username']
+        )
+
         if self.params.get('tags'):
             ParameterUtil.validate_array_unique(self.params['tags'], 'tags', case_insensitive=True)
             TagUtil.validate_format(self.params['tags'])

src/handlers/me/articles/public/republish_with_header/me_articles_public_republish_with_header.py

@@ -40,6 +40,11 @@ def validate_params(self):
 
         validate(self.params, self.get_schema())
 
+        DBUtil.validate_write_blacklisted(
+            self.dynamodb,
+            self.event['requestContext']['authorizer']['claims']['cognito:username']
+        )
+
         if self.params.get('eye_catch_url'):
             TextSanitizer.validate_img_url(self.params.get('eye_catch_url'))
 

tests/common/test_db_util.py

@@ -255,8 +255,9 @@ def setUpClass(cls):
         TestsUtil.create_table(cls.dynamodb, os.environ['TOPIC_TABLE_NAME'], topic_items)
 
     def setUp(self):
-        # create article_content_edit_history_table
+        # create tables
         TestsUtil.create_table(self.dynamodb, os.environ['ARTICLE_CONTENT_EDIT_HISTORY_TABLE_NAME'], [])
+        TestsUtil.create_table(self.dynamodb, os.environ['SCREENED_ARTICLE_TABLE_NAME'], [])
         # backup settings
         self.tmp_put_interval = settings.ARTICLE_HISTORY_PUT_INTERVAL
 
@@ -265,11 +266,16 @@ def tearDownClass(cls):
         TestsUtil.delete_all_tables(cls.dynamodb)
 
     def tearDown(self):
-        # delete article_content_edit_history_table
-        del_table = self.dynamodb.Table(os.environ['ARTICLE_CONTENT_EDIT_HISTORY_TABLE_NAME'])
-        del_table.delete()
-        del_table.meta.client.get_waiter('table_not_exists').\
-            wait(TableName=os.environ['ARTICLE_CONTENT_EDIT_HISTORY_TABLE_NAME'])
+        # delete tables
+        delete_tables = [
+            'ARTICLE_CONTENT_EDIT_HISTORY_TABLE_NAME',
+            'SCREENED_ARTICLE_TABLE_NAME'
+        ]
+        for delete_table in delete_tables:
+            del_table = self.dynamodb.Table(os.environ[delete_table])
+            del_table.delete()
+            del_table.meta.client.get_waiter('table_not_exists').\
+                wait(TableName=os.environ[delete_table])
         # restore settings
         settings.ARTICLE_HISTORY_PUT_INTERVAL = self.tmp_put_interval
 
@@ -442,6 +448,51 @@ def test_validate_article_existence_ng_not_exists_is_purchased(self):
                 is_purchased=True
             )
 
+    def test_validate_write_blacklisted_ok_not_exists_write_blacklisted(self):
+        result = DBUtil.validate_write_blacklisted(
+            self.dynamodb,
+            user_id=self.article_info_table_items[0]['user_id'],
+        )
+        self.assertTrue(result)
+
+    def test_validate_write_blacklisted_ok_not_exists_users_column(self):
+        params = {
+            'article_type': 'write_blacklisted'
+        }
+        screened_article_table = self.dynamodb.Table(os.environ['SCREENED_ARTICLE_TABLE_NAME'])
+        screened_article_table.put_item(Item=params)
+        result = DBUtil.validate_write_blacklisted(
+            self.dynamodb,
+            user_id=self.article_info_table_items[0]['user_id'],
+        )
+        self.assertTrue(result)
+
+    def test_validate_write_blacklisted_ok_not_exists_target_user(self):
+        params = {
+            'article_type': 'write_blacklisted',
+            'users': ['testuser1', 'testuser2']
+        }
+        screened_article_table = self.dynamodb.Table(os.environ['SCREENED_ARTICLE_TABLE_NAME'])
+        screened_article_table.put_item(Item=params)
+        result = DBUtil.validate_write_blacklisted(
+            self.dynamodb,
+            user_id=self.article_info_table_items[0]['user_id'],
+        )
+        self.assertTrue(result)
+
+    def test_validate_article_existence_ng_exists_target_user(self):
+        params = {
+            'article_type': 'write_blacklisted',
+            'users': ['testuser1', 'testuser2', self.article_info_table_items[0]['user_id']]
+        }
+        screened_article_table = self.dynamodb.Table(os.environ['SCREENED_ARTICLE_TABLE_NAME'])
+        screened_article_table.put_item(Item=params)
+        with self.assertRaises(ValidationError):
+            DBUtil.validate_write_blacklisted(
+                self.dynamodb,
+                user_id=self.article_info_table_items[0]['user_id'],
+            )
+
     def test_validate_user_existence_ok(self):
         result = DBUtil.validate_user_existence(
             self.dynamodb,

tests/handlers/me/articles/comments/create/test_me_articles_comments_create.py

@@ -52,6 +52,8 @@ def setUp(self):
         self.unread_notification_manager_table = self.dynamodb.Table(os.environ['UNREAD_NOTIFICATION_MANAGER_TABLE_NAME'])
         TestsUtil.create_table(self.dynamodb, os.environ['UNREAD_NOTIFICATION_MANAGER_TABLE_NAME'], [])
 
+        TestsUtil.create_table(self.dynamodb, os.environ['SCREENED_ARTICLE_TABLE_NAME'], [])
+
     def tearDown(self):
         TestsUtil.delete_all_tables(self.dynamodb)
 
@@ -214,7 +216,7 @@ def test_main_ok_with_adding_comment_on_own_article(self):
         self.assertEqual(len(notification_after) - len(notification_before), 0)
         self.assertEqual(len(unread_notification_manager_after) - len(unread_notification_manager_before), 0)
 
-    def test_call_validate_comment_existence(self):
+    def test_call_validate_methods(self):
         params = {
             'pathParameters': {
                 'article_id': 'publicId0003'
@@ -245,6 +247,11 @@ def test_call_validate_comment_existence(self):
             self.assertTrue(args[1])
             self.assertEqual(kwargs['status'], 'public')
 
+            self.assertTrue(mock_lib.validate_write_blacklisted.called)
+            args, kwargs = mock_lib.validate_write_blacklisted.call_args
+            self.assertTrue(args[0])
+            self.assertEqual(args[1], 'comment_user_01')
+
     @patch('me_articles_comments_create.MeArticlesCommentsCreate._MeArticlesCommentsCreate__create_comment_notification',
            MagicMock(side_effect=Exception()))
     def test_raise_exception_in_creating_notification(self):

tests/handlers/me/articles/comments/reply/test_me_articles_comments_reply.py

@@ -101,6 +101,8 @@ def setUp(self):
         self.unread_notification_manager_table = self.dynamodb.Table(os.environ['UNREAD_NOTIFICATION_MANAGER_TABLE_NAME'])
         TestsUtil.create_table(self.dynamodb, os.environ['UNREAD_NOTIFICATION_MANAGER_TABLE_NAME'], [])
 
+        TestsUtil.create_table(self.dynamodb, os.environ['SCREENED_ARTICLE_TABLE_NAME'], [])
+
     def tearDown(self):
         TestsUtil.delete_all_tables(self.dynamodb)
 
@@ -435,7 +437,7 @@ def test___get_thread_notification_targets_ignore_value_errors(self):
         except ValueError:
             self.fail('get_thread_notification_tagets() raised ValueError unexpectedly')
 
-    def test_call_validate_comment_existence(self):
+    def test_call_validate_methods(self):
         params = {
             'pathParameters': {
                 'article_id': 'publicId0001'
@@ -468,6 +470,11 @@ def test_call_validate_comment_existence(self):
             self.assertEqual(args[1], 'publicId0001')
             self.assertEqual(kwargs['status'], 'public')
 
+            self.assertTrue(mock_lib.validate_write_blacklisted.called)
+            args, kwargs = mock_lib.validate_write_blacklisted.call_args
+            self.assertTrue(args[0])
+            self.assertEqual(args[1], 'comment_user_01')
+
             args, _ = mock_lib.validate_parent_comment_existence.call_args
             self.assertTrue(mock_lib.validate_parent_comment_existence.called)
             self.assertEqual(args[0], self.dynamodb)