diff options
| author | stephanchrst <stephanchrst@gmail.com> | 2022-05-10 21:51:50 +0700 |
|---|---|---|
| committer | stephanchrst <stephanchrst@gmail.com> | 2022-05-10 21:51:50 +0700 |
| commit | 3751379f1e9a4c215fb6eb898b4ccc67659b9ace (patch) | |
| tree | a44932296ef4a9b71d5f010906253d8c53727726 /addons/survey/controllers | |
| parent | 0a15094050bfde69a06d6eff798e9a8ddf2b8c21 (diff) | |
initial commit 2
Diffstat (limited to 'addons/survey/controllers')
| -rw-r--r-- | addons/survey/controllers/__init__.py | 5 | ||||
| -rw-r--r-- | addons/survey/controllers/main.py | 700 | ||||
| -rw-r--r-- | addons/survey/controllers/survey_session_manage.py | 241 |
3 files changed, 946 insertions, 0 deletions
diff --git a/addons/survey/controllers/__init__.py b/addons/survey/controllers/__init__.py new file mode 100644 index 00000000..0bbff652 --- /dev/null +++ b/addons/survey/controllers/__init__.py @@ -0,0 +1,5 @@ +# -*- encoding: utf-8 -*- +# Part of Odoo. See LICENSE file for full copyright and licensing details. + +from . import main +from . import survey_session_manage diff --git a/addons/survey/controllers/main.py b/addons/survey/controllers/main.py new file mode 100644 index 00000000..e7aa1f7b --- /dev/null +++ b/addons/survey/controllers/main.py @@ -0,0 +1,700 @@ +# -*- coding: utf-8 -*- +# Part of Odoo. See LICENSE file for full copyright and licensing details. + +import json +import logging +import werkzeug + +from datetime import datetime, timedelta +from dateutil.relativedelta import relativedelta + +from odoo import fields, http, _ +from odoo.addons.base.models.ir_ui_view import keep_query +from odoo.exceptions import UserError +from odoo.http import request, content_disposition +from odoo.osv import expression +from odoo.tools import format_datetime, format_date, is_html_empty + +from odoo.addons.web.controllers.main import Binary + +_logger = logging.getLogger(__name__) + + +class Survey(http.Controller): + + # ------------------------------------------------------------ + # ACCESS + # ------------------------------------------------------------ + + def _fetch_from_access_token(self, survey_token, answer_token): + """ Check that given token matches an answer from the given survey_id. + Returns a sudo-ed browse record of survey in order to avoid access rights + issues now that access is granted through token. """ + survey_sudo = request.env['survey.survey'].with_context(active_test=False).sudo().search([('access_token', '=', survey_token)]) + if not answer_token: + answer_sudo = request.env['survey.user_input'].sudo() + else: + answer_sudo = request.env['survey.user_input'].sudo().search([ + ('survey_id', '=', survey_sudo.id), + ('access_token', '=', answer_token) + ], limit=1) + return survey_sudo, answer_sudo + + def _check_validity(self, survey_token, answer_token, ensure_token=True): + """ Check survey is open and can be taken. This does not checks for + security rules, only functional / business rules. It returns a string key + allowing further manipulation of validity issues + + * survey_wrong: survey does not exist; + * survey_auth: authentication is required; + * survey_closed: survey is closed and does not accept input anymore; + * survey_void: survey is void and should not be taken; + * token_wrong: given token not recognized; + * token_required: no token given although it is necessary to access the + survey; + * answer_deadline: token linked to an expired answer; + + :param ensure_token: whether user input existence based on given access token + should be enforced or not, depending on the route requesting a token or + allowing external world calls; + """ + survey_sudo, answer_sudo = self._fetch_from_access_token(survey_token, answer_token) + + if not survey_sudo.exists(): + return 'survey_wrong' + + if answer_token and not answer_sudo: + return 'token_wrong' + + if not answer_sudo and ensure_token: + return 'token_required' + if not answer_sudo and survey_sudo.access_mode == 'token': + return 'token_required' + + if survey_sudo.users_login_required and request.env.user._is_public(): + return 'survey_auth' + + if (survey_sudo.state == 'closed' or survey_sudo.state == 'draft' or not survey_sudo.active) and (not answer_sudo or not answer_sudo.test_entry): + return 'survey_closed' + + if (not survey_sudo.page_ids and survey_sudo.questions_layout == 'page_per_section') or not survey_sudo.question_ids: + return 'survey_void' + + if answer_sudo and answer_sudo.deadline and answer_sudo.deadline < datetime.now(): + return 'answer_deadline' + + return True + + def _get_access_data(self, survey_token, answer_token, ensure_token=True): + """ Get back data related to survey and user input, given the ID and access + token provided by the route. + + : param ensure_token: whether user input existence should be enforced or not(see ``_check_validity``) + """ + survey_sudo, answer_sudo = request.env['survey.survey'].sudo(), request.env['survey.user_input'].sudo() + has_survey_access, can_answer = False, False + + validity_code = self._check_validity(survey_token, answer_token, ensure_token=ensure_token) + if validity_code != 'survey_wrong': + survey_sudo, answer_sudo = self._fetch_from_access_token(survey_token, answer_token) + try: + survey_user = survey_sudo.with_user(request.env.user) + survey_user.check_access_rights(self, 'read', raise_exception=True) + survey_user.check_access_rule(self, 'read') + except: + pass + else: + has_survey_access = True + can_answer = bool(answer_sudo) + if not can_answer: + can_answer = survey_sudo.access_mode == 'public' + + return { + 'survey_sudo': survey_sudo, + 'answer_sudo': answer_sudo, + 'has_survey_access': has_survey_access, + 'can_answer': can_answer, + 'validity_code': validity_code, + } + + def _redirect_with_error(self, access_data, error_key): + survey_sudo = access_data['survey_sudo'] + answer_sudo = access_data['answer_sudo'] + + if error_key == 'survey_void' and access_data['can_answer']: + return request.render("survey.survey_void_content", {'survey': survey_sudo, 'answer': answer_sudo}) + elif error_key == 'survey_closed' and access_data['can_answer']: + return request.render("survey.survey_closed_expired", {'survey': survey_sudo}) + elif error_key == 'survey_auth': + if not answer_sudo: # survey is not even started + redirect_url = '/web/login?redirect=/survey/start/%s' % survey_sudo.access_token + elif answer_sudo.access_token: # survey is started but user is not logged in anymore. + if answer_sudo.partner_id and (answer_sudo.partner_id.user_ids or survey_sudo.users_can_signup): + if answer_sudo.partner_id.user_ids: + answer_sudo.partner_id.signup_cancel() + else: + answer_sudo.partner_id.signup_prepare(expiration=fields.Datetime.now() + relativedelta(days=1)) + redirect_url = answer_sudo.partner_id._get_signup_url_for_action(url='/survey/start/%s?answer_token=%s' % (survey_sudo.access_token, answer_sudo.access_token))[answer_sudo.partner_id.id] + else: + redirect_url = '/web/login?redirect=%s' % ('/survey/start/%s?answer_token=%s' % (survey_sudo.access_token, answer_sudo.access_token)) + return request.render("survey.survey_auth_required", {'survey': survey_sudo, 'redirect_url': redirect_url}) + elif error_key == 'answer_deadline' and answer_sudo.access_token: + return request.render("survey.survey_closed_expired", {'survey': survey_sudo}) + + return werkzeug.utils.redirect("/") + + # ------------------------------------------------------------ + # TEST / RETRY SURVEY ROUTES + # ------------------------------------------------------------ + + @http.route('/survey/test/<string:survey_token>', type='http', auth='user', website=True) + def survey_test(self, survey_token, **kwargs): + """ Test mode for surveys: create a test answer, only for managers or officers + testing their surveys """ + survey_sudo, dummy = self._fetch_from_access_token(survey_token, False) + try: + answer_sudo = survey_sudo._create_answer(user=request.env.user, test_entry=True) + except: + return werkzeug.utils.redirect('/') + return request.redirect('/survey/start/%s?%s' % (survey_sudo.access_token, keep_query('*', answer_token=answer_sudo.access_token))) + + @http.route('/survey/retry/<string:survey_token>/<string:answer_token>', type='http', auth='public', website=True) + def survey_retry(self, survey_token, answer_token, **post): + """ This route is called whenever the user has attempts left and hits the 'Retry' button + after failing the survey.""" + access_data = self._get_access_data(survey_token, answer_token, ensure_token=True) + if access_data['validity_code'] is not True: + return self._redirect_with_error(access_data, access_data['validity_code']) + + survey_sudo, answer_sudo = access_data['survey_sudo'], access_data['answer_sudo'] + if not answer_sudo: + # attempts to 'retry' without having tried first + return werkzeug.utils.redirect("/") + + try: + retry_answer_sudo = survey_sudo._create_answer( + user=request.env.user, + partner=answer_sudo.partner_id, + email=answer_sudo.email, + invite_token=answer_sudo.invite_token, + test_entry=answer_sudo.test_entry, + **self._prepare_retry_additional_values(answer_sudo) + ) + except: + return werkzeug.utils.redirect("/") + return request.redirect('/survey/start/%s?%s' % (survey_sudo.access_token, keep_query('*', answer_token=retry_answer_sudo.access_token))) + + def _prepare_retry_additional_values(self, answer): + return { + 'deadline': answer.deadline, + } + + def _prepare_survey_finished_values(self, survey, answer, token=False): + values = {'survey': survey, 'answer': answer} + if token: + values['token'] = token + if survey.scoring_type != 'no_scoring' and survey.certification: + values['graph_data'] = json.dumps(answer._prepare_statistics()[0]) + return values + + # ------------------------------------------------------------ + # TAKING SURVEY ROUTES + # ------------------------------------------------------------ + + @http.route('/survey/start/<string:survey_token>', type='http', auth='public', website=True) + def survey_start(self, survey_token, answer_token=None, email=False, **post): + """ Start a survey by providing + * a token linked to a survey; + * a token linked to an answer or generate a new token if access is allowed; + """ + # Get the current answer token from cookie + if not answer_token: + answer_token = request.httprequest.cookies.get('survey_%s' % survey_token) + + access_data = self._get_access_data(survey_token, answer_token, ensure_token=False) + if access_data['validity_code'] is not True: + return self._redirect_with_error(access_data, access_data['validity_code']) + + survey_sudo, answer_sudo = access_data['survey_sudo'], access_data['answer_sudo'] + if not answer_sudo: + try: + answer_sudo = survey_sudo._create_answer(user=request.env.user, email=email) + except UserError: + answer_sudo = False + + if not answer_sudo: + try: + survey_sudo.with_user(request.env.user).check_access_rights('read') + survey_sudo.with_user(request.env.user).check_access_rule('read') + except: + return werkzeug.utils.redirect("/") + else: + return request.render("survey.survey_403_page", {'survey': survey_sudo}) + + return request.redirect('/survey/%s/%s' % (survey_sudo.access_token, answer_sudo.access_token)) + + def _prepare_survey_data(self, survey_sudo, answer_sudo, **post): + """ This method prepares all the data needed for template rendering, in function of the survey user input state. + :param post: + - previous_page_id : come from the breadcrumb or the back button and force the next questions to load + to be the previous ones. """ + data = { + 'is_html_empty': is_html_empty, + 'survey': survey_sudo, + 'answer': answer_sudo, + 'breadcrumb_pages': [{ + 'id': page.id, + 'title': page.title, + } for page in survey_sudo.page_ids], + 'format_datetime': lambda dt: format_datetime(request.env, dt, dt_format=False), + 'format_date': lambda date: format_date(request.env, date) + } + if survey_sudo.questions_layout != 'page_per_question': + triggering_answer_by_question, triggered_questions_by_answer, selected_answers = answer_sudo._get_conditional_values() + data.update({ + 'triggering_answer_by_question': { + question.id: triggering_answer_by_question[question].id for question in triggering_answer_by_question.keys() + if triggering_answer_by_question[question] + }, + 'triggered_questions_by_answer': { + answer.id: triggered_questions_by_answer[answer].ids + for answer in triggered_questions_by_answer.keys() + }, + 'selected_answers': selected_answers.ids + }) + + if not answer_sudo.is_session_answer and survey_sudo.is_time_limited and answer_sudo.start_datetime: + data.update({ + 'timer_start': answer_sudo.start_datetime.isoformat(), + 'time_limit_minutes': survey_sudo.time_limit + }) + + page_or_question_key = 'question' if survey_sudo.questions_layout == 'page_per_question' else 'page' + + # Bypass all if page_id is specified (comes from breadcrumb or previous button) + if 'previous_page_id' in post: + previous_page_or_question_id = int(post['previous_page_id']) + new_previous_id = survey_sudo._get_next_page_or_question(answer_sudo, previous_page_or_question_id, go_back=True).id + page_or_question = request.env['survey.question'].sudo().browse(previous_page_or_question_id) + data.update({ + page_or_question_key: page_or_question, + 'previous_page_id': new_previous_id, + 'has_answered': answer_sudo.user_input_line_ids.filtered(lambda line: line.question_id.id == new_previous_id), + 'can_go_back': survey_sudo._can_go_back(answer_sudo, page_or_question), + }) + return data + + if answer_sudo.state == 'in_progress': + if answer_sudo.is_session_answer: + next_page_or_question = survey_sudo.session_question_id + else: + next_page_or_question = survey_sudo._get_next_page_or_question( + answer_sudo, + answer_sudo.last_displayed_page_id.id if answer_sudo.last_displayed_page_id else 0) + + if next_page_or_question: + data.update({ + 'survey_last': survey_sudo._is_last_page_or_question(answer_sudo, next_page_or_question) + }) + + if answer_sudo.is_session_answer and next_page_or_question.is_time_limited: + data.update({ + 'timer_start': survey_sudo.session_question_start_time.isoformat(), + 'time_limit_minutes': next_page_or_question.time_limit / 60 + }) + + data.update({ + page_or_question_key: next_page_or_question, + 'has_answered': answer_sudo.user_input_line_ids.filtered(lambda line: line.question_id == next_page_or_question), + 'can_go_back': survey_sudo._can_go_back(answer_sudo, next_page_or_question), + }) + if survey_sudo.questions_layout != 'one_page': + data.update({ + 'previous_page_id': survey_sudo._get_next_page_or_question(answer_sudo, next_page_or_question.id, go_back=True).id + }) + elif answer_sudo.state == 'done' or answer_sudo.survey_time_limit_reached: + # Display success message + return self._prepare_survey_finished_values(survey_sudo, answer_sudo) + + return data + + def _prepare_question_html(self, survey_sudo, answer_sudo, **post): + """ Survey page navigation is done in AJAX. This function prepare the 'next page' to display in html + and send back this html to the survey_form widget that will inject it into the page.""" + survey_data = self._prepare_survey_data(survey_sudo, answer_sudo, **post) + + survey_content = False + if answer_sudo.state == 'done': + survey_content = request.env.ref('survey.survey_fill_form_done')._render(survey_data) + else: + survey_content = request.env.ref('survey.survey_fill_form_in_progress')._render(survey_data) + + survey_progress = False + if answer_sudo.state == 'in_progress' and not survey_data.get('question', request.env['survey.question']).is_page: + if survey_sudo.questions_layout == 'page_per_section': + page_ids = survey_sudo.page_ids.ids + survey_progress = request.env.ref('survey.survey_progression')._render({ + 'survey': survey_sudo, + 'page_ids': page_ids, + 'page_number': page_ids.index(survey_data['page'].id) + (1 if survey_sudo.progression_mode == 'number' else 0) + }) + elif survey_sudo.questions_layout == 'page_per_question': + page_ids = survey_sudo.question_ids.ids + survey_progress = request.env.ref('survey.survey_progression')._render({ + 'survey': survey_sudo, + 'page_ids': page_ids, + 'page_number': page_ids.index(survey_data['question'].id) + }) + + return { + 'survey_content': survey_content, + 'survey_progress': survey_progress, + 'survey_navigation': request.env.ref('survey.survey_navigation')._render(survey_data), + } + + @http.route('/survey/<string:survey_token>/<string:answer_token>', type='http', auth='public', website=True) + def survey_display_page(self, survey_token, answer_token, **post): + access_data = self._get_access_data(survey_token, answer_token, ensure_token=True) + if access_data['validity_code'] is not True: + return self._redirect_with_error(access_data, access_data['validity_code']) + + answer_sudo = access_data['answer_sudo'] + if answer_sudo.state != 'done' and answer_sudo.survey_time_limit_reached: + answer_sudo._mark_done() + + return request.render('survey.survey_page_fill', + self._prepare_survey_data(access_data['survey_sudo'], answer_sudo, **post)) + + @http.route('/survey/get_background_image/<string:survey_token>/<string:answer_token>', type='http', auth="public", website=True, sitemap=False) + def survey_get_background(self, survey_token, answer_token): + access_data = self._get_access_data(survey_token, answer_token, ensure_token=True) + if access_data['validity_code'] is not True: + return werkzeug.exceptions.Forbidden() + + survey_sudo, answer_sudo = access_data['survey_sudo'], access_data['answer_sudo'] + + status, headers, image_base64 = request.env['ir.http'].sudo().binary_content( + model='survey.survey', id=survey_sudo.id, field='background_image', + default_mimetype='image/png') + + return Binary._content_image_get_response(status, headers, image_base64) + + @http.route('/survey/get_question_image/<string:survey_token>/<string:answer_token>/<int:question_id>/<int:suggested_answer_id>', type='http', auth="public", website=True, sitemap=False) + def survey_get_question_image(self, survey_token, answer_token, question_id, suggested_answer_id): + access_data = self._get_access_data(survey_token, answer_token, ensure_token=True) + if access_data['validity_code'] is not True: + return werkzeug.exceptions.Forbidden() + + survey_sudo, answer_sudo = access_data['survey_sudo'], access_data['answer_sudo'] + + if not survey_sudo.question_ids.filtered(lambda q: q.id == question_id)\ + .suggested_answer_ids.filtered(lambda a: a.id == suggested_answer_id): + return werkzeug.exceptions.NotFound() + + status, headers, image_base64 = request.env['ir.http'].sudo().binary_content( + model='survey.question.answer', id=suggested_answer_id, field='value_image', + default_mimetype='image/png') + + return Binary._content_image_get_response(status, headers, image_base64) + + # ---------------------------------------------------------------- + # JSON ROUTES to begin / continue survey (ajax navigation) + Tools + # ---------------------------------------------------------------- + + @http.route('/survey/begin/<string:survey_token>/<string:answer_token>', type='json', auth='public', website=True) + def survey_begin(self, survey_token, answer_token, **post): + """ Route used to start the survey user input and display the first survey page. """ + access_data = self._get_access_data(survey_token, answer_token, ensure_token=True) + if access_data['validity_code'] is not True: + return {'error': access_data['validity_code']} + survey_sudo, answer_sudo = access_data['survey_sudo'], access_data['answer_sudo'] + + if answer_sudo.state != "new": + return {'error': _("The survey has already started.")} + + answer_sudo._mark_in_progress() + return self._prepare_question_html(survey_sudo, answer_sudo, **post) + + @http.route('/survey/next_question/<string:survey_token>/<string:answer_token>', type='json', auth='public', website=True) + def survey_next_question(self, survey_token, answer_token, **post): + """ Method used to display the next survey question in an ongoing session. + Triggered on all attendees screens when the host goes to the next question. """ + access_data = self._get_access_data(survey_token, answer_token, ensure_token=True) + if access_data['validity_code'] is not True: + return {'error': access_data['validity_code']} + survey_sudo, answer_sudo = access_data['survey_sudo'], access_data['answer_sudo'] + + if answer_sudo.state == 'new' and answer_sudo.is_session_answer: + answer_sudo._mark_in_progress() + + return self._prepare_question_html(survey_sudo, answer_sudo, **post) + + @http.route('/survey/submit/<string:survey_token>/<string:answer_token>', type='json', auth='public', website=True) + def survey_submit(self, survey_token, answer_token, **post): + """ Submit a page from the survey. + This will take into account the validation errors and store the answers to the questions. + If the time limit is reached, errors will be skipped, answers will be ignored and + survey state will be forced to 'done'""" + # Survey Validation + access_data = self._get_access_data(survey_token, answer_token, ensure_token=True) + if access_data['validity_code'] is not True: + return {'error': access_data['validity_code']} + survey_sudo, answer_sudo = access_data['survey_sudo'], access_data['answer_sudo'] + + if answer_sudo.state == 'done': + return {'error': 'unauthorized'} + + questions, page_or_question_id = survey_sudo._get_survey_questions(answer=answer_sudo, + page_id=post.get('page_id'), + question_id=post.get('question_id')) + + if not answer_sudo.test_entry and not survey_sudo._has_attempts_left(answer_sudo.partner_id, answer_sudo.email, answer_sudo.invite_token): + # prevent cheating with users creating multiple 'user_input' before their last attempt + return {'error': 'unauthorized'} + + if answer_sudo.survey_time_limit_reached or answer_sudo.question_time_limit_reached: + if answer_sudo.question_time_limit_reached: + time_limit = survey_sudo.session_question_start_time + relativedelta( + seconds=survey_sudo.session_question_id.time_limit + ) + time_limit += timedelta(seconds=3) + else: + time_limit = answer_sudo.start_datetime + timedelta(minutes=survey_sudo.time_limit) + time_limit += timedelta(seconds=10) + if fields.Datetime.now() > time_limit: + # prevent cheating with users blocking the JS timer and taking all their time to answer + return {'error': 'unauthorized'} + + errors = {} + # Prepare answers / comment by question, validate and save answers + for question in questions: + inactive_questions = request.env['survey.question'] if answer_sudo.is_session_answer else answer_sudo._get_inactive_conditional_questions() + if question in inactive_questions: # if question is inactive, skip validation and save + continue + answer, comment = self._extract_comment_from_answers(question, post.get(str(question.id))) + errors.update(question.validate_question(answer, comment)) + if not errors.get(question.id): + answer_sudo.save_lines(question, answer, comment) + + if errors and not (answer_sudo.survey_time_limit_reached or answer_sudo.question_time_limit_reached): + return {'error': 'validation', 'fields': errors} + + if not answer_sudo.is_session_answer: + answer_sudo._clear_inactive_conditional_answers() + + if answer_sudo.survey_time_limit_reached or survey_sudo.questions_layout == 'one_page': + answer_sudo._mark_done() + elif 'previous_page_id' in post: + # Go back to specific page using the breadcrumb. Lines are saved and survey continues + return self._prepare_question_html(survey_sudo, answer_sudo, **post) + else: + vals = {'last_displayed_page_id': page_or_question_id} + if not answer_sudo.is_session_answer: + next_page = survey_sudo._get_next_page_or_question(answer_sudo, page_or_question_id) + if not next_page: + answer_sudo._mark_done() + + answer_sudo.write(vals) + + return self._prepare_question_html(survey_sudo, answer_sudo) + + def _extract_comment_from_answers(self, question, answers): + """ Answers is a custom structure depending of the question type + that can contain question answers but also comments that need to be + extracted before validating and saving answers. + If multiple answers, they are listed in an array, except for matrix + where answers are structured differently. See input and output for + more info on data structures. + :param question: survey.question + :param answers: + * question_type: free_text, text_box, numerical_box, date, datetime + answers is a string containing the value + * question_type: simple_choice with no comment + answers is a string containing the value ('question_id_1') + * question_type: simple_choice with comment + ['question_id_1', {'comment': str}] + * question_type: multiple choice + ['question_id_1', 'question_id_2'] + [{'comment': str}] if holds a comment + * question_type: matrix + {'matrix_row_id_1': ['question_id_1', 'question_id_2'], + 'matrix_row_id_2': ['question_id_1', 'question_id_2'] + } + {'comment': str} if holds a comment + :return: tuple( + same structure without comment, + extracted comment for given question + ) """ + comment = None + answers_no_comment = [] + if answers: + if question.question_type == 'matrix': + if 'comment' in answers: + comment = answers['comment'].strip() + answers.pop('comment') + answers_no_comment = answers + else: + if not isinstance(answers, list): + answers = [answers] + for answer in answers: + if isinstance(answer, dict) and 'comment' in answer: + comment = answer['comment'].strip() + else: + answers_no_comment.append(answer) + if len(answers_no_comment) == 1: + answers_no_comment = answers_no_comment[0] + return answers_no_comment, comment + + # ------------------------------------------------------------ + # COMPLETED SURVEY ROUTES + # ------------------------------------------------------------ + + @http.route('/survey/print/<string:survey_token>', type='http', auth='public', website=True, sitemap=False) + def survey_print(self, survey_token, review=False, answer_token=None, **post): + '''Display an survey in printable view; if <answer_token> is set, it will + grab the answers of the user_input_id that has <answer_token>.''' + access_data = self._get_access_data(survey_token, answer_token, ensure_token=False) + if access_data['validity_code'] is not True and ( + access_data['has_survey_access'] or + access_data['validity_code'] not in ['token_required', 'survey_closed', 'survey_void']): + return self._redirect_with_error(access_data, access_data['validity_code']) + + survey_sudo, answer_sudo = access_data['survey_sudo'], access_data['answer_sudo'] + + return request.render('survey.survey_page_print', { + 'is_html_empty': is_html_empty, + 'review': review, + 'survey': survey_sudo, + 'answer': answer_sudo if survey_sudo.scoring_type != 'scoring_without_answers' else answer_sudo.browse(), + 'questions_to_display': answer_sudo._get_print_questions(), + 'scoring_display_correction': survey_sudo.scoring_type == 'scoring_with_answers' and answer_sudo, + 'format_datetime': lambda dt: format_datetime(request.env, dt, dt_format=False), + 'format_date': lambda date: format_date(request.env, date), + }) + + @http.route(['/survey/<model("survey.survey"):survey>/get_certification_preview'], type="http", auth="user", methods=['GET'], website=True) + def survey_get_certification_preview(self, survey, **kwargs): + if not request.env.user.has_group('survey.group_survey_user'): + raise werkzeug.exceptions.Forbidden() + + fake_user_input = survey._create_answer(user=request.env.user, test_entry=True) + response = self._generate_report(fake_user_input, download=False) + fake_user_input.sudo().unlink() + return response + + @http.route(['/survey/<int:survey_id>/get_certification'], type='http', auth='user', methods=['GET'], website=True) + def survey_get_certification(self, survey_id, **kwargs): + """ The certification document can be downloaded as long as the user has succeeded the certification """ + survey = request.env['survey.survey'].sudo().search([ + ('id', '=', survey_id), + ('certification', '=', True) + ]) + + if not survey: + # no certification found + return werkzeug.utils.redirect("/") + + succeeded_attempt = request.env['survey.user_input'].sudo().search([ + ('partner_id', '=', request.env.user.partner_id.id), + ('survey_id', '=', survey_id), + ('scoring_success', '=', True) + ], limit=1) + + if not succeeded_attempt: + raise UserError(_("The user has not succeeded the certification")) + + return self._generate_report(succeeded_attempt, download=True) + + # ------------------------------------------------------------ + # REPORTING SURVEY ROUTES AND TOOLS + # ------------------------------------------------------------ + + @http.route('/survey/results/<model("survey.survey"):survey>', type='http', auth='user', website=True) + def survey_report(self, survey, answer_token=None, **post): + """ Display survey Results & Statistics for given survey. + + New structure: { + 'survey': current survey browse record, + 'question_and_page_data': see ``SurveyQuestion._prepare_statistics()``, + 'survey_data'= see ``SurveySurvey._prepare_statistics()`` + 'search_filters': [], + 'search_finished': either filter on finished inputs only or not, + } + """ + user_input_lines, search_filters = self._extract_filters_data(survey, post) + survey_data = survey._prepare_statistics(user_input_lines) + question_and_page_data = survey.question_and_page_ids._prepare_statistics(user_input_lines) + + template_values = { + # survey and its statistics + 'survey': survey, + 'question_and_page_data': question_and_page_data, + 'survey_data': survey_data, + # search + 'search_filters': search_filters, + 'search_finished': post.get('finished') == 'true', + } + + if survey.session_show_leaderboard: + template_values['leaderboard'] = survey._prepare_leaderboard_values() + + return request.render('survey.survey_page_statistics', template_values) + + def _generate_report(self, user_input, download=True): + report = request.env.ref('survey.certification_report').sudo()._render_qweb_pdf([user_input.id], data={'report_type': 'pdf'})[0] + + report_content_disposition = content_disposition('Certification.pdf') + if not download: + content_split = report_content_disposition.split(';') + content_split[0] = 'inline' + report_content_disposition = ';'.join(content_split) + + return request.make_response(report, headers=[ + ('Content-Type', 'application/pdf'), + ('Content-Length', len(report)), + ('Content-Disposition', report_content_disposition), + ]) + + def _get_user_input_domain(self, survey, line_filter_domain, **post): + user_input_domain = ['&', ('test_entry', '=', False), ('survey_id', '=', survey.id)] + if line_filter_domain: + matching_line_ids = request.env['survey.user_input.line'].sudo().search(line_filter_domain).ids + user_input_domain = expression.AND([ + [('user_input_line_ids', 'in', matching_line_ids)], + user_input_domain + ]) + if post.get('finished'): + user_input_domain = expression.AND([[('state', '=', 'done')], user_input_domain]) + else: + user_input_domain = expression.AND([[('state', '!=', 'new')], user_input_domain]) + return user_input_domain + + def _extract_filters_data(self, survey, post): + search_filters = [] + line_filter_domain, line_choices = [], [] + for data in post.get('filters', '').split('|'): + try: + row_id, answer_id = (int(item) for item in data.split(',')) + except: + pass + else: + if row_id and answer_id: + line_filter_domain = expression.AND([ + ['&', ('matrix_row_id', '=', row_id), ('suggested_answer_id', '=', answer_id)], + line_filter_domain + ]) + answers = request.env['survey.question.answer'].browse([row_id, answer_id]) + elif answer_id: + line_choices.append(answer_id) + answers = request.env['survey.question.answer'].browse([answer_id]) + if answer_id: + question_id = answers[0].matrix_question_id or answers[0].question_id + search_filters.append({ + 'question': question_id.title, + 'answers': '%s%s' % (answers[0].value, ': %s' % answers[1].value if len(answers) > 1 else '') + }) + if line_choices: + line_filter_domain = expression.AND([[('suggested_answer_id', 'in', line_choices)], line_filter_domain]) + + user_input_domain = self._get_user_input_domain(survey, line_filter_domain, **post) + user_input_lines = request.env['survey.user_input'].sudo().search(user_input_domain).mapped('user_input_line_ids') + + return user_input_lines, search_filters diff --git a/addons/survey/controllers/survey_session_manage.py b/addons/survey/controllers/survey_session_manage.py new file mode 100644 index 00000000..04923c99 --- /dev/null +++ b/addons/survey/controllers/survey_session_manage.py @@ -0,0 +1,241 @@ +# -*- coding: utf-8 -*- +# Part of Odoo. See LICENSE file for full copyright and licensing details. + +import datetime +import json +import werkzeug + +from dateutil.relativedelta import relativedelta +from werkzeug.exceptions import NotFound + +from odoo import fields, http +from odoo.http import request +from odoo.tools import is_html_empty + + +class UserInputSession(http.Controller): + def _fetch_from_token(self, survey_token): + """ Check that given survey_token matches a survey 'access_token'. + Unlike the regular survey controller, user trying to access the survey must have full access rights! """ + return request.env['survey.survey'].search([('access_token', '=', survey_token)]) + + def _fetch_from_session_code(self, session_code): + """ Matches a survey against a passed session_code. + We force the session_state to be reachable (ready / in_progress) to avoid people + using this route to access other (private) surveys. + We limit to sessions opened within the last 7 days to avoid potential abuses. """ + if session_code: + matching_survey = request.env['survey.survey'].sudo().search([ + ('state', '=', 'open'), + ('session_state', 'in', ['ready', 'in_progress']), + ('session_start_time', '>', fields.Datetime.now() - relativedelta(days=7)), + ('session_code', '=', session_code), + ], limit=1) + if matching_survey: + return matching_survey + + return False + + # ------------------------------------------------------------ + # SURVEY SESSION MANAGEMENT + # ------------------------------------------------------------ + + @http.route('/survey/session/manage/<string:survey_token>', type='http', auth='user', website=True) + def survey_session_manage(self, survey_token, **kwargs): + """ Main route used by the host to 'manager' the session. + - If the state of the session is 'ready' + We render a template allowing the host to showcase the different options of the session + and to actually start the session. + - If the state of the session is 'in_progress' + We render a template allowing the host to show the question results, display the attendees + leaderboard or go to the next question of the session. """ + + survey = self._fetch_from_token(survey_token) + + if not survey or not survey.session_state: + # no open session + return NotFound() + + if survey.session_state == 'ready': + return request.render('survey.user_input_session_open', { + 'survey': survey + }) + else: + template_values = self._prepare_manage_session_values(survey) + return request.render('survey.user_input_session_manage', template_values) + + @http.route('/survey/session/next_question/<string:survey_token>', type='json', auth='user', website=True) + def survey_session_next_question(self, survey_token, **kwargs): + """ This route is called when the host goes to the next question of the session. + + It's not a regular 'request.render' route because we handle the transition between + questions using a AJAX call to be able to display a bioutiful fade in/out effect. + + It triggers the next question of the session. + + We artificially add 1 second to the 'current_question_start_time' to account for server delay. + As the timing can influence the attendees score, we try to be fair with everyone by giving them + an extra second before we start counting down. + + Frontend should take the delay into account by displaying the appropriate animations. + + Writing the next question on the survey is sudo'ed to avoid potential access right issues. + e.g: a survey user can create a live session from any survey but he can only write + on its own survey. """ + + survey = self._fetch_from_token(survey_token) + + if not survey or not survey.session_state: + # no open session + return '' + + if survey.session_state == 'ready': + survey._session_open() + + next_question = survey._get_session_next_question() + + # using datetime.datetime because we want the millis portion + if next_question: + now = datetime.datetime.now() + survey.sudo().write({ + 'session_question_id': next_question.id, + 'session_question_start_time': fields.Datetime.now() + relativedelta(seconds=1) + }) + request.env['bus.bus'].sendone(survey.access_token, { + 'question_start': now.timestamp(), + 'type': 'next_question' + }) + + template_values = self._prepare_manage_session_values(survey) + template_values['is_rpc_call'] = True + return request.env.ref('survey.user_input_session_manage_content')._render(template_values) + else: + return False + + @http.route('/survey/session/results/<string:survey_token>', type='json', auth='user', website=True) + def survey_session_results(self, survey_token, **kwargs): + """ This route is called when the host shows the current question's results. + + It's not a regular 'request.render' route because we handle the display of results using + an AJAX request to be able to include the results in the currently displayed page. """ + + survey = self._fetch_from_token(survey_token) + + if not survey or survey.session_state != 'in_progress': + # no open session + return False + + user_input_lines = request.env['survey.user_input.line'].search([ + ('survey_id', '=', survey.id), + ('question_id', '=', survey.session_question_id.id), + ('create_date', '>=', survey.session_start_time) + ]) + + return self._prepare_question_results_values(survey, user_input_lines) + + @http.route('/survey/session/leaderboard/<string:survey_token>', type='json', auth='user', website=True) + def survey_session_leaderboard(self, survey_token, **kwargs): + """ This route is called when the host shows the current question's attendees leaderboard. + + It's not a regular 'request.render' route because we handle the display of the leaderboard + using an AJAX request to be able to include the results in the currently displayed page. """ + + survey = self._fetch_from_token(survey_token) + + if not survey or survey.session_state != 'in_progress': + # no open session + return '' + + return request.env.ref('survey.user_input_session_leaderboard')._render({ + 'animate': True, + 'leaderboard': survey._prepare_leaderboard_values() + }) + + # ------------------------------------------------------------ + # QUICK ACCESS SURVEY ROUTES + # ------------------------------------------------------------ + + @http.route('/s', type='http', auth='public', website=True, sitemap=False) + def survey_session_code(self, **post): + """ Renders the survey session code page route. + This page allows the user to enter the session code of the survey. + It is mainly used to ease survey access for attendees in session mode. """ + return request.render("survey.survey_session_code") + + @http.route('/s/<string:session_code>', type='http', auth='public', website=True) + def survey_start_short(self, session_code): + """" Redirects to 'survey_start' route using a shortened link & token. + We match the session_code for open surveys. + This route is used in survey sessions where we need short links for people to type. """ + + survey = self._fetch_from_session_code(session_code) + if survey: + return werkzeug.utils.redirect("/survey/start/%s" % survey.access_token) + + return werkzeug.utils.redirect("/s") + + @http.route('/survey/check_session_code/<string:session_code>', type='json', auth='public', website=True) + def survey_check_session_code(self, session_code): + """ Checks if the given code is matching a survey session_code. + If yes, redirect to /s/code route. + If not, return error. The user is invited to type again the code. """ + survey = self._fetch_from_session_code(session_code) + if survey: + return {"survey_url": "/survey/start/%s" % survey.access_token} + + return {"error": "survey_wrong"} + + def _prepare_manage_session_values(self, survey): + is_last_question = False + if survey.question_ids: + most_voted_answers = survey._get_session_most_voted_answers() + is_last_question = survey._is_last_page_or_question(most_voted_answers, survey.session_question_id) + + values = { + 'survey': survey, + 'is_last_question': is_last_question, + } + + values.update(self._prepare_question_results_values(survey, request.env['survey.user_input.line'])) + + return values + + def _prepare_question_results_values(self, survey, user_input_lines): + """ Prepares usefull values to display during the host session: + + - question_statistics_graph + The graph data to display the bar chart for questions of type 'choice' + - input_lines_values + The answer values to text/date/datetime questions + - answers_validity + An array containing the is_correct value for all question answers. + We need this special variable because of Chartjs data structure. + The library determines the parameters (color/label/...) by only passing the answer 'index' + (and not the id or anything else we can identify). + In other words, we need to know if the answer at index 2 is correct or not. + - answer_count + The number of answers to the current question. """ + + question = survey.session_question_id + answers_validity = [] + if (any(answer.is_correct for answer in question.suggested_answer_ids)): + answers_validity = [answer.is_correct for answer in question.suggested_answer_ids] + if question.comment_count_as_answer: + answers_validity.append(False) + + full_statistics = question._prepare_statistics(user_input_lines)[0] + input_line_values = [] + if question.question_type in ['char_box', 'date', 'datetime']: + input_line_values = [{ + 'id': line.id, + 'value': line['value_%s' % question.question_type] + } for line in full_statistics.get('table_data', request.env['survey.user_input.line'])[:100]] + + return { + 'is_html_empty': is_html_empty, + 'question_statistics_graph': full_statistics.get('graph_data'), + 'input_line_values': input_line_values, + 'answers_validity': json.dumps(answers_validity), + 'answer_count': survey.session_question_answer_count, + 'attendees_count': survey.session_answer_count, + } |