# By: Riasat Ullah # This file contains all Autotask integration related views. from data_syncers import syncer_task_instances from dbqueries import db_integrations from dbqueries.integrations import db_autotask from exceptions.user_exceptions import InvalidRequest, UnauthorizedRequest from integrations import autotask from modules.router import Router from objects.events import AcknowledgeEvent, CustomActionEvent, ResolveEvent, UrgencyAmendmentEvent from objects.task_payload import TaskPayload from rest_framework.decorators import api_view from rest_framework.response import Response from translators import label_translator as _lt from utils import constants, errors, info, integration_type_names as intt, logging, permissions, times, tokenizer, \ var_names from utils.db_connection import CACHE_CLIENT, CONN_POOL from validations import request_validator import configuration import jwt @api_view(['POST']) def get_autotask_accounts(request, conn=None): ''' Get the Autotask accounts associated to an organization. :param request: Http request :param conn: db connection :return: Http response ''' if request.method == 'POST': lang = request_validator.get_user_language(request) try: conn = CONN_POOL.get_db_conn() if conn is None else conn request_validator.validate_fields(request, []) user_id, org_id, user_perm, org_perm = tokenizer.authorize_request(request) if permissions.has_org_permission(org_perm, permissions.ORG_INTEGRATION_ITSM_PERMISSION): if permissions.is_user_admin(user_perm): return Response(db_integrations.get_integration_current_account_ids( conn, times.get_current_timestamp(), org_id, intt.autotask)) else: return Response(_lt.get_label(errors.err_user_rights, lang), status=403) else: return Response(_lt.get_label(errors.err_subscription_rights, lang), status=403) except InvalidRequest as e: logging.exception(str(e)) return Response(_lt.get_label(str(e), lang), status=400) except (UnauthorizedRequest, jwt.ExpiredSignatureError, jwt.InvalidSignatureError) as e: logging.exception(str(e)) return Response(_lt.get_label(errors.err_authorization, lang), status=401) except Exception as e: logging.exception(str(e)) return Response(_lt.get_label(errors.err_system_error, lang), status=500) finally: CONN_POOL.put_db_conn(conn) @api_view(['POST']) def get_autotask_account_details(request, conn=None): ''' Get the domain and username of an Autotask integration. :param request: Http request :param conn: db connection :return: Http response ''' if request.method == 'POST': lang = request_validator.get_user_language(request) expected_fields = [var_names.integration_key] try: conn = CONN_POOL.get_db_conn() if conn is None else conn request_validator.validate_fields(request, expected_fields) user_id, org_id, user_perm, org_perm = tokenizer.authorize_request(request) integ_key = request.data[var_names.integration_key] if permissions.has_org_permission(org_perm, permissions.ORG_INTEGRATION_ITSM_PERMISSION): if permissions.is_user_admin(user_perm): srv_det = db_autotask.get_autotask_account_details( conn, times.get_current_timestamp(), org_id, integration_key=integ_key) del srv_det[var_names.password] del srv_det[var_names.secret_token] return Response(srv_det) else: return Response(_lt.get_label(errors.err_user_rights, lang), status=403) else: return Response(_lt.get_label(errors.err_subscription_rights, lang), status=403) except InvalidRequest as e: logging.exception(str(e)) return Response(_lt.get_label(str(e), lang), status=400) except (UnauthorizedRequest, jwt.ExpiredSignatureError, jwt.InvalidSignatureError) as e: logging.exception(str(e)) return Response(_lt.get_label(errors.err_authorization, lang), status=401) except Exception as e: logging.exception(str(e)) return Response(_lt.get_label(errors.err_system_error, lang), status=500) finally: CONN_POOL.put_db_conn(conn) @api_view(['POST']) def get_autotask_meta_data(request, conn=None): ''' Get the available ticket categories, ticket types, statuses, priorities and companies associated with an Autotask account. :param request: Http request :param conn: db connection :return: Http response ''' if request.method == 'POST': lang = request_validator.get_user_language(request) optional_fields = [var_names.vendor_endpoint_name, var_names.username, var_names.password, var_names.secret_token, var_names.integration_key] try: conn = CONN_POOL.get_db_conn() if conn is None else conn request_validator.validate_fields(request, [], optional_fields) user_id, org_id, user_perm, org_perm = tokenizer.authorize_request(request) acc_domain = request.data[var_names.vendor_endpoint_name]\ if var_names.vendor_endpoint_name in request.data else None acc_admin = request.data[var_names.username] if var_names.username in request.data else None acc_pwd = request.data[var_names.password] if var_names.password in request.data else None acc_trk_id = request.data[var_names.secret_token] if var_names.secret_token in request.data else None integ_key = request.data[var_names.integration_key] if var_names.integration_key in request.data else None if acc_domain is None and integ_key is None: raise InvalidRequest(errors.err_invalid_request) current_time = times.get_current_timestamp() if permissions.has_org_permission(org_perm, permissions.ORG_INTEGRATION_ITSM_PERMISSION): if permissions.is_user_admin(user_perm): # Get the Autotask admin details if it is not present. if integ_key is not None or \ (acc_domain is not None and (acc_admin is None or acc_pwd is None or acc_trk_id is None)): au_tsk_det = db_autotask.get_autotask_account_details( conn, current_time, org_id, integration_key=integ_key, account_domain=acc_domain) acc_domain = au_tsk_det[var_names.vendor_endpoint_name] acc_admin = au_tsk_det[var_names.username] acc_pwd = au_tsk_det[var_names.password] acc_trk_id = au_tsk_det[var_names.secret_token] metadata = autotask.get_global_metadata(acc_domain, acc_admin, acc_pwd, acc_trk_id) if metadata is None: return Response(_lt.get_label(errors.err_autotask_insufficient_metadata, lang), status=401) return Response(metadata) else: return Response(_lt.get_label(errors.err_user_rights, lang), status=403) else: return Response(_lt.get_label(errors.err_subscription_rights, lang), status=403) except InvalidRequest as e: logging.exception(str(e)) return Response(_lt.get_label(str(e), lang), status=400) except (UnauthorizedRequest, jwt.ExpiredSignatureError, jwt.InvalidSignatureError) as e: logging.exception(str(e)) return Response(_lt.get_label(errors.err_authorization, lang), status=401) except Exception as e: logging.exception(str(e)) return Response(_lt.get_label(errors.err_system_error, lang), status=500) finally: CONN_POOL.put_db_conn(conn) @api_view(['POST']) def process_incoming_webhook(request, integration_key, conn=None, cache=None): ''' Processes the incoming webhook from Autotask. :param request: Http request :param integration_key: integration key :param conn: db connection :param cache: cache client :return: Http response ''' if request.method == 'POST': logging.info(request.data) lang = request_validator.get_user_language(request) try: conn = CONN_POOL.get_db_conn() if conn is None else conn cache = CACHE_CLIENT if cache is None else cache # get the integration details current_time = times.get_current_timestamp() org_id, org_perm, serv_id, integ_id, integ_type_id, integ_details = \ db_integrations.get_integration_details(conn, current_time, integration_key, intt.autotask) if org_id is None or autotask.str_id not in request.data: logging.error(errors.err_unknown_resource + ' - ' + integration_key) return Response(_lt.get_label(errors.err_unknown_resource, lang), status=403) tkt_id = request.data[autotask.str_id] is_new_ticket = True if request.data['status'] == 'New' else False au_tsk_det = db_autotask.get_autotask_account_details(conn, current_time, org_id, integration_key) if len(au_tsk_det) == 0: raise LookupError(errors.err_integration_not_found) au_tsk_ticket = autotask.get_autotask_ticket( au_tsk_det[var_names.vendor_endpoint_name], au_tsk_det[var_names.username], au_tsk_det[var_names.password], au_tsk_det[var_names.secret_token], tkt_id ) # internalize ticket attributes urgency = constants.critical_urgency if integ_details[var_names.urgency_level] is not None: urg_map = integ_details[var_names.urgency_level][var_names.incoming] for key in urg_map: if int(urg_map[key]) == int(au_tsk_ticket[autotask.str_priority]): urgency = int(key) break status = constants.open_state if integ_details[var_names.status] is not None: stat_map = integ_details[var_names.status][var_names.incoming] for key in stat_map: if int(stat_map[key]) == int(au_tsk_ticket[autotask.str_status]): status = key break synced_insts = db_integrations.get_vendor_synced_open_instance_ids( conn, current_time, org_id, integ_id, integ_type_id, str(tkt_id)) # Create a new task if it is a new issue. if len(synced_insts) == 0: if is_new_ticket: payload = TaskPayload( current_time, org_id, current_time.date(), au_tsk_ticket[autotask.str_title], configuration.standard_timezone, current_time.time(), text_msg=au_tsk_ticket[autotask.str_description], urgency_level=urgency, trigger_method=constants.integrations_api, trigger_info=request.data, integration_id=integ_id, service_id=serv_id ) inst_id = Router(conn, cache, payload).run() if inst_id is not None: event = CustomActionEvent( inst_id, current_time, constants.internal, integration_id=integ_id, integration_type_id=integ_type_id, vendor_id=str(tkt_id), vendor_url=None, is_synced=True, configuration_name=integ_details[var_names.configuration_name] ) syncer_task_instances.execute_custom_action( conn, cache, event, org_id=org_id, is_sys_action=True) else: for inst_id, task_id, in_sync in synced_insts: inst = syncer_task_instances.get_single_instance(conn, cache, current_time, inst_id) if urgency != inst.task.urgency_level() and integ_details[var_names.urgency_level] is not None: event = UrgencyAmendmentEvent(inst_id, current_time, constants.integrations_api, urgency) syncer_task_instances.amend_urgency(conn, cache, [event], org_id, is_sys_action=True) if status != inst.status and integ_details[var_names.status] is not None: if status == constants.acknowledged_state: event = AcknowledgeEvent(inst_id, current_time, constants.integrations_api, None) syncer_task_instances.acknowledge( conn, cache, event, org_id, is_sys_action=True, skip_syncing=[intt.autotask], org_perm=org_perm) elif status == constants.resolved_state: event = ResolveEvent(inst_id, current_time, constants.integrations_api) syncer_task_instances.resolve( conn, cache, event, org_id, is_sys_action=True, skip_syncing=[intt.autotask], org_perm=org_perm) else: msg = 'Already synced Autotask ticket received with state - ' + \ str(au_tsk_ticket[autotask.str_status]) + '. No action taken.' logging.info(msg) return Response(info.msg_internal_success) except InvalidRequest as e: logging.exception(str(e)) return Response(_lt.get_label(errors.err_invalid_request, lang), status=400) except Exception as e: logging.error(request.data) logging.exception(str(e)) return Response(_lt.get_label(errors.err_system_error, lang), status=500) finally: CONN_POOL.put_db_conn(conn) @api_view(['POST']) def update_autotask_credentials(request, conn=None): ''' Update an Autotask account credentials. Ensure there is an existing record for the Autotask account details. :param request: Http request :param conn: db connection :return: Http response ''' if request.method == 'POST': lang = request_validator.get_user_language(request) expected_fields = [var_names.vendor_endpoint_name, var_names.username, var_names.password, var_names.secret_token] try: conn = CONN_POOL.get_db_conn() if conn is None else conn request_validator.validate_fields(request, expected_fields) user_id, org_id, user_perm, org_perm = tokenizer.authorize_request(request) if permissions.has_org_permission(org_perm, permissions.ORG_INTEGRATION_ITSM_PERMISSION): if permissions.is_user_admin(user_perm): acc_domain = request.data[var_names.vendor_endpoint_name] api_user = request.data[var_names.username] api_password = request.data[var_names.password] api_tracking_id = request.data[var_names.secret_token] return Response(db_autotask.update_autotask_credentials( conn, times.get_current_timestamp(), org_id, acc_domain, api_user, api_password, api_tracking_id )) else: return Response(_lt.get_label(errors.err_user_rights, lang), status=403) else: return Response(_lt.get_label(errors.err_subscription_rights, lang), status=403) except InvalidRequest as e: logging.exception(str(e)) return Response(_lt.get_label(str(e), lang), status=400) except (UnauthorizedRequest, jwt.ExpiredSignatureError, jwt.InvalidSignatureError) as e: logging.exception(str(e)) return Response(_lt.get_label(errors.err_authorization, lang), status=401) except Exception as e: logging.exception(str(e)) return Response(_lt.get_label(errors.err_system_error, lang), status=500) finally: CONN_POOL.put_db_conn(conn)