"""Returns a list of requested formats.

format = path.split('/')[-1]

if format in ['persons', 'notes']:

return [format]

"""Ensures that a record's record_id fields are prefixed with a domain."""

def complete(record, field):

id = record.get(field)

if id and '/' not in id:

record[field] = '%s/%s' % (domain, id)

complete(record, 'person_record_id')

complete(record, 'note_record_id')

"""Return HTML tag parameters used in import.html."""

return {

'begin_notes_template_link':

'<a href="%s/static/notes-template.xlsx">' %

django.utils.html.escape(handler.env.global_url),

'end_notes_template_link':

'</a>',

'begin_sample_anchor_tag':

'<a href="%s/static/sample-import.csv" target="_blank">' %

django.utils.html.escape(handler.env.global_url),

'end_sample_anchor_tag':

'</a>',

'begin_document_anchor_tag':

'<a href='

'"https://github.com/google/personfinder/wiki/ImportCSV" '

'target="_blank">',

'end_document_anchor_tag':

'</a>',

for record in records:

if not record.get('note_record_id', '').strip():

record['note_record_id'] = str(model.UniqueId.create_id())

"""Converts a textual date and time into an RFC 3339 UTC timestamp."""

if utils.DATETIME_RE.match(text.strip()): # don't apply offset

return text

match = re.search(r'(\d\d\d\d)[/-](\d+)[/-](\d+) *(\d+):(\d+)', text)

if match:

y, l, d, h, m = map(int, match.groups())

timestamp = calendar.timegm((y, l, d, h, m, 0)) - offset*3600

return utils.format_utc_timestamp(timestamp)

"""Filters CSV rows, converting time fields to RFC 3339 UTC times.

field_names = []

time_fields = []

setting_names = []

settings = {}

offset = default_offset

for row in rows:

if field_names:

record = dict(zip(field_names, row))

for key in time_fields:

record[key] = convert_time(record[key], offset)

yield record

elif 'person_record_id' in row:

field_names = [name.lower().strip() for name in row]

time_fields = [name for name in row if name.endswith('_date')]

if 'time_zone_offset' in settings:

try:

offset = float(settings['time_zone_offset'])

except ValueError:

raise InputFileError('invalid time_zone_offset value')

else:

settings.update(dict(zip(setting_names, row)))

"""Converts data in xsl (or xslx) format to CSV."""

try:

book = xlrd.open_workbook(file_contents=contents)

except xlrd.XLRDError as e:

return None, str(e)

except UnicodeDecodeError:

return None, 'The encoding of the file is unknown.'

if book.nsheets == 0:

return None, 'The uploaded file contains no sheets.'

sheet = book.sheet_by_index(0)

table = []

for row in xrange(sheet.nrows):

table_row = []

for col in xrange(sheet.ncols):

value = None

cell_value = sheet.cell_value(row, col)

cell_type = sheet.cell_type(row, col)

if cell_type == xlrd.XL_CELL_TEXT:

value = cell_value

elif cell_type == xlrd.XL_CELL_NUMBER:

value = str(int(cell_value))

elif cell_type == xlrd.XL_CELL_BOOLEAN:

value = 'true' if cell_value else 'false'

elif cell_type == xlrd.XL_CELL_DATE:

# TODO(ryok): support date type.

pass

table_row.append(value)

table.append(table_row)

csv_output = StringIO.StringIO()

csv_writer = csv.writer(csv_output)

csv_writer.writerows(table)

def __init__(self, request, response, env):

super(BaseApiHandler, self).__init__(request, response, env)

"""A web UI for users to import or export records in CSV / Excel format.

https_required = True

def get(self):

self.render('import.html',

formats=get_requested_formats(self.env.path),

**get_tag_params(self))

def post(self):

if self.params.action == 'import':

self.import_records()

elif self.params.action == 'export':

self.export_records()

else:

self.error(404, 'Unknown action.')

def import_records(self):

if not (self.auth and self.auth.domain_write_permission):

# TODO(ryok): i18n

self.error(403, message='Missing or invalid authorization key.')

return

content = self.request.get('content')

if not content:

self.error(400, message='Please specify at least one CSV file.')

return

# Handle Excel sheets.

filename = self.request.POST['content'].filename

if re.search('\.xlsx?$', filename):

content, error = convert_xsl_to_csv(content)

if error:

self.response.set_status(400)

self.write(error)

return

try:

lines = content.splitlines() # handles \r, \n, or \r\n

if self.request.get('format') == 'notes':

self.import_notes(lines)

else:

self.import_persons(lines)

except InputFileError, e:

self.error(400, message='Problem in the uploaded file: %s' % e)

except runtime.DeadlineExceededError, e:

self.error(400, message=

'Sorry, the uploaded file is too large. Try splitting it into '

'smaller files (keeping the header rows in each file) and '

'uploading each part separately.')

def import_notes(self, lines):

source_domain = self.auth.domain_write_permission

records = importer.utf8_decoder(generate_note_record_ids(

convert_time_fields(csv.reader(lines))))

try:

records = [complete_record_ids(r, source_domain) for r in records]

except csv.Error, e:

self.error(400, message=

'The CSV file is formatted incorrectly. (%s)' % e)

return

notes_written, notes_skipped, notes_total = importer.import_records(

self.repo, source_domain, importer.create_note, records,

believed_dead_permission=self.auth.believed_dead_permission,

omit_duplicate_notes=True)

utils.log_api_action(self, ApiActionLog.WRITE,

0, notes_written, 0, len(notes_skipped))

self.render('import.html',

formats=get_requested_formats(self.env.path),

stats=[

Struct(type='Note',

written=notes_written,

skipped=notes_skipped,

total=notes_total)],

**get_tag_params(self))

def import_persons(self, lines):

# TODO(ryok): support non-UTF8 encodings.

source_domain = self.auth.domain_write_permission

records = importer.utf8_decoder(convert_time_fields(csv.reader(lines)))

try:

records = [complete_record_ids(r, source_domain) for r in records]

except csv.Error, e:

self.error(400, message=

'The CSV file is formatted incorrectly. (%s)' % e)

return

is_not_empty = lambda x: (x or '').strip()

persons = [r for r in records if is_not_empty(r.get('full_name'))]

notes = [r for r in records if is_not_empty(r.get('note_record_id'))]

people_written, people_skipped, people_total = importer.import_records(

self.repo, source_domain, importer.create_person, persons)

notes_written, notes_skipped, notes_total = importer.import_records(

self.repo, source_domain, importer.create_note, notes,

believed_dead_permission=self.auth.believed_dead_permission)

utils.log_api_action(self, ApiActionLog.WRITE,

people_written, notes_written,

len(people_skipped), len(notes_skipped))

self.render('import.html',

formats=get_requested_formats(self.env.path),

stats=[

Struct(type='Person',

written=people_written,

skipped=people_skipped,

total=people_total),

Struct(type='Note',

written=notes_written,

skipped=notes_skipped,

total=notes_total)],

**get_tag_params(self))

def export_records(self):

if not (self.auth and self.auth.read_permission):

# TODO(gimite): i18n

self.error(403, message='Missing or invalid authorization key.')

return

storage = cloud_storage.CloudStorage()

if self.auth.full_read_permission:

object_name = self.config.latest_full_csv_object_name

else:

object_name = self.config.latest_filtered_csv_object_name

if object_name:

csv_url = storage.sign_url(

object_name, url_lifetime=datetime.timedelta(minutes=10))

self.render('export.html', csv_url=csv_url)

else:

self.error(

404,

# Translators: An error message indicating that the data

# requested by the user is not available yet.

https_required = True

def get(self):

if self.config.read_auth_key_required and not (

self.auth and self.auth.read_permission):

self.info(

403,

message='Missing or invalid authorization key',

style='plain')

return

pfif_version = self.params.version

# Note that self.request.get can handle multiple IDs at once; we

# can consider adding support for multiple records later.

record_id = self.request.get('id')

if not record_id:

self.info(400, message='Missing id parameter', style='plain')

return

person = model.Person.get(

self.repo, record_id, filter_expired=False)

if not person:

self.info(

400,

message='No person record with ID %s' % record_id,

style='plain')

return

notes = model.Note.get_by_person_record_id(self.repo, record_id)

notes = [note for note in notes if not note.hidden]

self.response.headers['Content-Type'] = 'application/xml; charset=utf-8'

records = [pfif_version.person_to_dict(person, person.is_expired)]

note_records = map(pfif_version.note_to_dict, notes)

utils.optionally_filter_sensitive_fields(records, self.auth)

utils.optionally_filter_sensitive_fields(note_records, self.auth)

pfif_version.write_file(

self.response.out, records, lambda p: note_records)

utils.log_api_action(

https_required = True

def post(self):

if not (self.auth and self.auth.domain_write_permission):

self.info(

403,

message='Missing or invalid authorization key',

style='plain')

return

# Check for empty body

if not self.request.body:

self.error(400, "Request body must not be empty")

return

# Size check for uploaded file

if len(self.request.body) > PHOTO_UPLOAD_MAX_SIZE:

self.error(400, "Size of uploaded file is greater than 10MB")

return

try:

photo_img = images.Image(self.request.body)

photo, photo_url = create_photo(

photo_img, self.repo, self.transitionary_get_url)

except PhotoError, e:

self.error(400, e.message)

# If we reached this point, it means photo is filled properly

# So feel free to use it right away!

photo.put()

self.response.headers['Content-Type'] = 'application/xml; charset=utf-8'

self.write('<?xml version="1.0"?>\n')

self.write('<response><url>')

self.write(django.utils.html.escape(photo_url))

https_required = True

def post(self):

if not (self.auth and self.auth.domain_write_permission):

self.info(

403,

message='Missing or invalid authorization key',

style='plain')

return

source_domain = self.auth.domain_write_permission

try:

person_records, note_records = \

pfif.parse_file(self.request.body_file)

except Exception, e:

self.info(400, message='Invalid XML: %s' % e, style='plain')

return

mark_notes_reviewed = bool(self.auth.mark_notes_reviewed)

believed_dead_permission = bool(

self.auth.believed_dead_permission)

self.response.headers['Content-Type'] = 'application/xml; charset=utf-8'

self.write('<?xml version="1.0"?>\n')

self.write('<status:status ' +

'xmlns:status="http://zesty.ca/pfif/1.4/status" ' +

'xmlns:pfif="http://zesty.ca/pfif/1.4">\n')

create_person = importer.create_person

num_people_written, people_skipped, total = importer.import_records(

self.repo, source_domain, create_person, person_records)

self.write_status(

'person', num_people_written, people_skipped, total,

'person_record_id')

create_note = importer.create_note

num_notes_written, notes_skipped, total = importer.import_records(

self.repo, source_domain, create_note, note_records,

mark_notes_reviewed, believed_dead_permission, self)

self.write_status(

'note', num_notes_written, notes_skipped, total, 'note_record_id')

self.write('</status:status>\n')

utils.log_api_action(self, ApiActionLog.WRITE,

num_people_written, num_notes_written,

len(people_skipped), len(notes_skipped))

def write_status(self, type, written, skipped, total, id_field):

"""Emit status information about the results of an attempted write."""

skipped_records = []

for error, record in skipped:

skipped_records.append(

' <pfif:%s>%s</pfif:%s>\n' %

(id_field, cgi.escape(record.get(id_field, '')), id_field))

skipped_records.append(

' <status:error>%s</status:error>\n' % cgi.escape(error))

self.write('''

https_required = True

def get(self):

if self.config.search_auth_key_required and not (

self.auth and self.auth.search_permission):

self.info(

403,

message='Missing or invalid authorization key',

style='plain')

return

pfif_version = self.params.version

# Retrieve parameters and do some sanity checks on them.

record_id = self.request.get('id')

query_string = self.request.get('q')

max_results = min(self.params.max_results or 100, HARD_MAX_RESULTS)

results = []

if record_id:

# Search by record ID (always returns just 1 result or nothing).

person = model.Person.get(self.repo, record_id)

if person:

results = [person]

elif query_string:

searcher = Searcher(

self.repo, config.get('enable_fulltext_search'), max_results)

results = searcher.search(query_string)

else:

self.info(

400,

message='Neither id nor q parameter specified',

style='plain')

records = [pfif_version.person_to_dict(result) for result in results]

utils.optionally_filter_sensitive_fields(records, self.auth)

# Define the function to retrieve notes for a person.

def get_notes_for_person(person):

notes = model.Note.get_by_person_record_id(

self.repo, person['person_record_id'])

notes = [note for note in notes if not note.hidden]

records = map(pfif_version.note_to_dict, notes)

utils.optionally_filter_sensitive_fields(records, self.auth)

return records

self.response.headers['Content-Type'] = 'application/xml; charset=utf-8'

pfif_version.write_file(

self.response.out, records, get_notes_for_person)

https_required = True

def post(self):

if not (self.auth and self.auth.subscribe_permission):

return self.error(403, 'Missing or invalid authorization key')

if not validate_email(self.params.subscribe_email):

return self.error(400, 'Invalid email address')

person = model.Person.get(self.repo, self.params.id)

if not person:

return self.error(400, 'Invalid person_record_id')

subscription = subscribe.subscribe_to(self, self.repo, person,

self.params.subscribe_email,

self.env.lang)

utils.log_api_action(self, ApiActionLog.SUBSCRIBE)

if not subscription:

return self.info(200, 'Already subscribed')

https_required = True

def post(self):

if not (self.auth and self.auth.subscribe_permission):

return self.error(403, 'Missing or invalid authorization key')

subscription = model.Subscription.get(self.repo, self.params.id,

self.params.subscribe_email)

self.response.set_status(200)

utils.log_api_action(self, ApiActionLog.UNSUBSCRIBE)

if subscription:

subscription.delete()

return self.info(200, 'Successfully unsubscribed')

results = []

batch = query.fetch(500)

while batch:

results += batch

batch = query.with_cursor(query.cursor()).fetch(500)

def get(self):

if not (self.auth and self.auth.stats_permission):

self.info(

403,

message='Missing or invalid authorization key',

style='plain')

return

person_counts = model.Counter.get_all_counts(self.repo, 'person')

note_counts = model.Counter.get_all_counts(self.repo, 'note')

# unreviewed

note_counts['hidden=FALSE,reviewed=FALSE'] = len(fetch_all(

model.Note.all(keys_only=True

).filter('repo =', self.repo

).filter('reviewed =', False

).filter('hidden =', False

).order('-entry_date')))

# accepted

note_counts['hidden=FALSE,reviewed=TRUE'] = len(fetch_all(

model.Note.all(keys_only=True

).filter('repo =', self.repo

).filter('reviewed =', True

).filter('hidden =', False

).order('-entry_date')))

# flagged

note_counts['hidden=TRUE'] = len(fetch_all(

model.Note.all(keys_only=True

).filter('repo =', self.repo

).filter('hidden =', True

).order('-entry_date')))

self.response.headers['Content-Type'] = (

'application/json; charset=utf-8')

self.write(simplejson.dumps({'person': person_counts,

"""Person Finder doesn't directly handle SMSes from users. They are handled

https_required = True

repo_required = False

MAX_RESULTS = 3

# (language code, action, regex) for each query pattern.

QUERY_PATTERNS = [

('en', 'search', r'^search\s+(.+)$'),

('en', 'add', r'^i am\s+(.+)$'),

('es', 'search', r'^buscar\s+(.+)$'),

('es', 'add', r'^yo soy\s+(.+)$'),

('ht', 'search', r'^chache\s+(.+)$'),

('ht', 'add', r'^mwen se\s+(.+)$'),

('fr', 'search', r'^chercher\s+(.+)$'),

('fr', 'add', r'^je suis\s+(.+)$'),

]

def post(self):

if not (self.auth and self.auth.search_permission

and self.auth.domain_write_permission == '*'):

self.info(

403,

message=

"'key' URL parameter is either missing, invalid or "

"lacks required permissions. The key's repo must be '*', "

"search_permission must be True, and it must have write "

"permission with domain name '*'.",

style='plain')

return

body = self.request.body_file.read()

doc = xml.dom.minidom.parseString(body)

message_text = self.get_element_text(doc, 'message_text')

receiver_phone_number = self.get_element_text(

doc, 'receiver_phone_number')

if message_text is None:

self.info(

400,

message='Message text is required.',

style='plain')

return

if receiver_phone_number is None:

self.info(

400,

message='Receiver Phone number is required.',

style='plain')

return

repo = (

self.config.sms_number_to_repo and

self.config.sms_number_to_repo.get(receiver_phone_number))

if not repo:

self.info(

400,

message=

("You've reached Person Finder, "

"but there's not a repository assigned for %s."

% receiver_phone_number),

style='plain')

return

query_lang = None

query_action = None

match = None

for lang, action, regex in HandleSMS.QUERY_PATTERNS:

match = re.search(regex, message_text.strip(), re.I)

if match:

query_lang = lang

query_action = action

break

if query_lang:

# Use the language for the following calls of _().

translation.activate(query_lang)

responses = []

if query_action == 'search':

self.send_hit_to_google_analytics('search')

query_string = match.group(1).strip()

query = TextQuery(query_string)

persons = indexing.search(repo, query, HandleSMS.MAX_RESULTS)

if persons:

for person in persons:

responses.append(self.render_person(person))

else:

responses.append(

_('No results found for: %(query)s')

% {'query': query_string})

responses.append(

_('More at: %(url)s')

% {'url': 'google.org/personfinder/%s?ui=light' % repo})

responses.append(

_('All data entered in Person Finder is available to the '

'public and usable by anyone. Google does not review or '

'verify the accuracy of this data '

'google.org/personfinder/global/tos'))

elif self.config.enable_sms_record_input and query_action == 'add':

self.send_hit_to_google_analytics('add')

name_string = match.group(1).strip()

person = Person.create_original(

repo,

entry_date=utils.get_utcnow(),

full_name=name_string,

family_name='',

given_name='')

person.update_index(['old', 'new'])

note = Note.create_original(

repo,

entry_date=utils.get_utcnow(),

source_date=utils.get_utcnow(),

person_record_id=person.record_id,

author_name=name_string,

author_made_contact=True,

status='is_note_author',

text=message_text)

db.put(note)

model.UserActionLog.put_new('add', note, copy_properties=False)

person.update_from_note(note)

db.put(person)

model.UserActionLog.put_new('add', person, copy_properties=False)

# Translators: An SMS message sent to a user when the user

# successfully added a record for the given person.

responses.append(_('Added a record for: %(person_name)s')

% {'person_name': name_string})

else:

usage_str = 'Usage: "Search John"'

if self.config.enable_sms_record_input:

usage_str += ' OR "I am John"'

responses.append(usage_str)

# Convert the response into ASCII because the SMS pipeline doesn't

# support UTF-8.

# e.g., It removes diacritics such as "ú" -> "u".

# This seems acceptable for Spanish, but may not be for other

# languages.

ascii_response = unidecode(u' ## '.join(responses))

self.response.headers['Content-Type'] = 'application/xml; charset=utf-8'

self.write(

'<?xml version="1.0" encoding="utf-8"?>\n'

'<response>\n'

' <message_text>%s</message_text>\n'

'</response>\n'

% django.utils.html.escape(ascii_response))

def render_person(self, person):

fields = []

fields.append(person.full_name)

if person.latest_status:

# The result of utils.get_person_status_text() may be a Django's

# proxy object generated by gettext_lazy(). Use str() to convert it

# into a str object.

#

# TODO(ichikawa) Use ugettext_lazy() instead of gettext_lazy() in

# const.py so that it can be directly converted into unicode

# object here.

fields.append(

unicode(str(utils.get_person_status_text(person)), 'utf-8'))

if person.sex:

fields.append(

unicode(str(utils.get_person_sex_text(person)), 'utf-8'))

if person.age: fields.append(person.age)

if person.home_city or person.home_state:

fields.append(

_('From: %(home_location)s')

% {'home_location':

' '.join(filter(None, [person.home_city, person.home_state]))})

return ' / '.join(fields)

def get_element_text(self, doc, tag_name):

elems = doc.getElementsByTagName(tag_name)

if elems:

text = u''

for node in elems[0].childNodes:

if node.nodeType == node.TEXT_NODE:

text += node.data

return text.encode('utf-8')

else:

return None

def send_hit_to_google_analytics(self, event_category):

"""Sends hit to Google Analytics via Measurment Protocol.

if self.env.analytics_id:

analytics_cid = uuid.uuid4()

params = urllib.urlencode({

'v': 1,

'tid': self.env.analytics_id,

'cid': analytics_cid,

't': 'event',

'ec': event_category,

'ea': 'SMS',

'dp': '/sms_action'

})

url = 'https://www.google-analytics.com/collect'

try:

urllib2.urlopen(url, params)

except urllib2.URLError: