74 lines
2.7 KiB
Python
74 lines
2.7 KiB
Python
"""
|
|
The Discount API Views should return information about discounts that apply to the user and course.
|
|
|
|
"""
|
|
# -*- coding: utf-8 -*-
|
|
|
|
from edx_rest_framework_extensions.auth.jwt.authentication import JwtAuthentication
|
|
from edx_rest_framework_extensions.auth.session.authentication import SessionAuthenticationAllowInactiveUser
|
|
|
|
from openedx.core.djangoapps.cors_csrf.decorators import ensure_csrf_cookie_cross_domain
|
|
from openedx.core.djangoapps.oauth_dispatch.jwt import create_jwt_for_user
|
|
from openedx.core.lib.api.authentication import OAuth2AuthenticationAllowInactiveUser
|
|
from openedx.core.lib.api.permissions import ApiKeyHeaderPermissionIsAuthenticated
|
|
from openedx.core.lib.api.view_utils import DeveloperErrorViewMixin
|
|
|
|
from rest_framework.response import Response
|
|
from rest_framework.views import APIView
|
|
from django.utils.decorators import method_decorator
|
|
|
|
from .applicability import can_receive_discount, discount_percentage
|
|
|
|
|
|
class CourseUserDiscount(DeveloperErrorViewMixin, APIView):
|
|
"""
|
|
**Use Cases**
|
|
|
|
Request discount information for a user and course
|
|
|
|
**Example Requests**
|
|
|
|
GET /api/discounts/v1/course/{course_key_string}
|
|
|
|
**Response Values**
|
|
|
|
Body consists of the following fields:
|
|
discount_applicable:
|
|
whether the user can receive a discount for this course
|
|
jwt:
|
|
the jwt with user information and discount information
|
|
|
|
**Parameters:**
|
|
|
|
course_key_string:
|
|
The course key for the which the discount should be applied
|
|
|
|
**Returns**
|
|
|
|
* 200 on success with above fields.
|
|
* 401 if there is no user signed in.
|
|
|
|
Example response:
|
|
{
|
|
"discount_applicable": false,
|
|
"jwt": xxxxxxxx.xxxxxxxx.xxxxxxx
|
|
}
|
|
"""
|
|
authentication_classes = (JwtAuthentication, OAuth2AuthenticationAllowInactiveUser,
|
|
SessionAuthenticationAllowInactiveUser,)
|
|
permission_classes = (ApiKeyHeaderPermissionIsAuthenticated,)
|
|
|
|
# Since the course about page on the marketing site uses this API to auto-enroll users,
|
|
# we need to support cross-domain CSRF.
|
|
@method_decorator(ensure_csrf_cookie_cross_domain)
|
|
def get(self, request, course_key_string):
|
|
"""
|
|
Return the discount percent, if the user has appropriate permissions.
|
|
"""
|
|
discount_applicable = can_receive_discount(user=request.user, course_key_string=course_key_string)
|
|
discount_percent = discount_percentage()
|
|
payload = {'discount_applicable': discount_applicable, 'discount_percent': discount_percent}
|
|
return Response({
|
|
'discount_applicable': discount_applicable,
|
|
'jwt': create_jwt_for_user(request.user, additional_claims=payload)})
|