Initial commit

Author: praffq

.gitignore

@@ -0,0 +1,2 @@
+/venv/
+.idea

api/__init__.py

@@ -0,0 +1,8 @@
+from django.contrib import admin
+
+from api.models import User, Department
+
+# Register your models here.
+
+admin.site.register(User)
+admin.site.register(Department)

api/admin.py

@@ -0,0 +1,6 @@
+from django.apps import AppConfig
+
+
+class ApiConfig(AppConfig):
+    default_auto_field = 'django.db.models.BigAutoField'
+    name = 'api'

api/apps.py

@@ -0,0 +1,98 @@
+# Generated by Django 4.2.3 on 2023-07-28 06:53
+
+import django.contrib.auth.models
+import django.contrib.auth.validators
+import django.utils.timezone
+from django.conf import settings
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    initial = True
+
+    dependencies = [
+        ('auth', '0012_alter_user_first_name_max_length'),
+    ]
+
+    operations = [
+        migrations.CreateModel(
+            name='User',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('last_login', models.DateTimeField(blank=True, null=True, verbose_name='last login')),
+                ('is_superuser', models.BooleanField(default=False,
+                                                     help_text='Designates that this user has all permissions without explicitly assigning them.',
+                                                     verbose_name='superuser status')),
+                ('username', models.CharField(error_messages={'unique': 'A user with that username already exists.'},
+                                              help_text='Required. 150 characters or fewer. Letters, digits and @/./+/-/_ only.',
+                                              max_length=150, unique=True,
+                                              validators=[django.contrib.auth.validators.UnicodeUsernameValidator()],
+                                              verbose_name='username')),
+                ('first_name', models.CharField(blank=True, max_length=150, verbose_name='first name')),
+                ('last_name', models.CharField(blank=True, max_length=150, verbose_name='last name')),
+                ('email', models.EmailField(blank=True, max_length=254, verbose_name='email address')),
+                ('is_staff', models.BooleanField(default=False,
+                                                 help_text='Designates whether the user can log into this admin site.',
+                                                 verbose_name='staff status')),
+                ('is_active', models.BooleanField(default=True,
+                                                  help_text='Designates whether this user should be treated as active. Unselect this instead of deleting accounts.',
+                                                  verbose_name='active')),
+                ('date_joined', models.DateTimeField(default=django.utils.timezone.now, verbose_name='date joined')),
+                ('role', models.CharField(choices=[('patient', 'Patient'), ('doctor', 'Doctor')], max_length=10)),
+                ('password', models.CharField(max_length=255)),
+            ],
+            options={
+                'verbose_name': 'user',
+                'verbose_name_plural': 'users',
+                'abstract': False,
+            },
+            managers=[
+                ('objects', django.contrib.auth.models.UserManager()),
+            ],
+        ),
+        migrations.CreateModel(
+            name='Department',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('name', models.CharField(max_length=50)),
+                ('diagnostics', models.CharField(max_length=100)),
+                ('location', models.CharField(max_length=100)),
+                ('specialization', models.CharField(max_length=20)),
+            ],
+        ),
+        migrations.CreateModel(
+            name='PatientReport',
+            fields=[
+                ('record_id', models.BigAutoField(primary_key=True, serialize=False)),
+                ('created', models.DateTimeField(auto_now_add=True)),
+                ('diagnostics', models.TextField()),
+                ('observations', models.TextField()),
+                ('treatments', models.TextField()),
+                ('department', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to='api.department')),
+                (
+                    'patient',
+                    models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to=settings.AUTH_USER_MODEL)),
+            ],
+        ),
+        migrations.AddField(
+            model_name='user',
+            name='department',
+            field=models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.CASCADE,
+                                    to='api.department'),
+        ),
+        migrations.AddField(
+            model_name='user',
+            name='groups',
+            field=models.ManyToManyField(blank=True,
+                                         help_text='The groups this user belongs to. A user will get all permissions granted to each of their groups.',
+                                         related_name='user_set', related_query_name='user', to='auth.group',
+                                         verbose_name='groups'),
+        ),
+        migrations.AddField(
+            model_name='user',
+            name='user_permissions',
+            field=models.ManyToManyField(blank=True, help_text='Specific permissions for this user.',
+                                         related_name='user_set', related_query_name='user', to='auth.permission',
+                                         verbose_name='user permissions'),
+        ),
+    ]

api/migrations/0001_initial.py

@@ -0,0 +1,18 @@
+# Generated by Django 4.2.3 on 2023-07-28 06:59
+
+import django.db.models.deletion
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ('api', '0001_initial'),
+    ]
+
+    operations = [
+        migrations.AlterField(
+            model_name='user',
+            name='department',
+            field=models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to='api.department'),
+        ),
+    ]

api/migrations/0002_alter_user_department.py

@@ -0,0 +1,51 @@
+from django.contrib.auth.models import AbstractUser, UserManager
+from django.db import models
+
+
+class Department(models.Model):
+    name = models.CharField(max_length=50)
+    diagnostics = models.CharField(max_length=100)
+    location = models.CharField(max_length=100)
+    specialization = models.CharField(max_length=20)
+
+    def __str__(self):
+        return self.name
+
+
+class DoctorManager(models.Manager):
+    def get_queryset(self):
+        return super().get_queryset().filter(role=User.Role.DOCTOR)
+
+
+class PatientManager(models.Manager):
+    def get_queryset(self):
+        return super().get_queryset().filter(role=User.Role.PATIENT)
+
+
+class User(AbstractUser):
+    class Role(models.TextChoices):
+        PATIENT = 'patient', 'Patient'
+        DOCTOR = 'doctor', 'Doctor'
+
+    role = models.CharField(max_length=10,
+                            choices=Role.choices
+                            )
+    password = models.CharField(max_length=255)
+    department = models.ForeignKey(Department, on_delete=models.CASCADE)
+
+    objects = UserManager()
+    doctors = DoctorManager()
+    patients = PatientManager()
+
+
+class PatientReport(models.Model):
+    record_id = models.BigAutoField(primary_key=True)
+    patient = models.ForeignKey(User, on_delete=models.CASCADE)
+    created = models.DateTimeField(auto_now_add=True)
+    department = models.ForeignKey(Department, on_delete=models.CASCADE)
+    diagnostics = models.TextField()
+    observations = models.TextField()
+    treatments = models.TextField()
+
+    def __str__(self):
+        return f'{self.patient.username}\'s report'

api/migrations/__init__.py

@@ -0,0 +1,59 @@
+from rest_framework.permissions import BasePermission
+from rest_framework.response import Response
+
+from api.models import User
+
+
+class DoctorOnly(BasePermission):
+    def has_permission(self, request, view):
+        if request.user.is_authenticated and (request.user.role == User.Role.DOCTOR or request.user.is_superuser):
+            return True
+        return False
+
+
+class PatientsOnly(BasePermission):
+    def has_permission(self, request, view):
+        if request.user.is_authenticated and (request.user.role == User.Role.DOCTOR or request.user.is_superuser):
+            return True
+        return False
+
+
+class DoctorSpecific(BasePermission):
+    def has_object_permission(self, request, view, obj):
+        if request.user.is_authenticated and (obj == request.user or request.user.is_superuser):
+            return True
+        return False
+
+
+class PatientSpecific(BasePermission):
+    def has_object_permission(self, request, view, obj):
+        if request.user.is_authenticated and (obj == request.user or request.user.is_superuser):
+            return True
+        return False
+
+
+class DoctorsPatientSpecific(BasePermission):
+    def has_object_permission(self, request, view, obj):
+        if request.user.is_authenticated and (
+                (obj.patient == request.user or request.user.is_superuser) or request.user.role == User.Role.DOCTOR):
+            return True
+        return False
+
+
+class DepartmentDoctor(BasePermission):
+    def has_permission(self, request, view):
+        if not view.get_queryset().first():
+            return Response()
+        if request.user.is_authenticated and ((request.user in view.get_queryset()) or request.user.is_superuser):
+            return True
+        return False
+
+
+class DepartmentPatient(BasePermission):
+    def has_permission(self, request, view):
+        if view.get_queryset().first():
+            return Response({'msg': 'Department is empty', })
+        if request.user.is_authenticated and (
+                request.user.department == view.get_queryset().first().department or request.user.is_superuser):
+            return True
+        return False

api/models.py

@@ -0,0 +1,67 @@
+from rest_framework import serializers
+
+from .models import User, Department, PatientReport
+
+
+class UserSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = User
+        fields = ['id', 'username', 'password', 'role', 'department']
+        extra_kwargs = {
+            'password': {
+                'write_only': True,
+            },
+        }
+
+    def create(self, validated_data):
+        password = validated_data.pop('password', None)
+        instance = self.Meta.model(**validated_data)
+        if password is not None:
+            instance.set_password(password)
+        instance.save()
+        return instance
+
+
+class UserSerializerModified(serializers.ModelSerializer):
+    class Meta:
+        model = User
+        fields = ['id', 'username', 'password', 'department']
+        extra_kwargs = {
+            'password': {
+                'write_only': True,
+            },
+
+        }
+
+    def create(self, validated_data):
+        password = validated_data.pop('password', None)
+        instance = self.Meta.model(**validated_data)
+        if password is not None:
+            instance.set_password(password)
+        instance.save()
+        return instance
+
+
+class DepartmentSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = Department
+        fields = ['name', 'specialization', 'diagnostics', 'location']
+
+
+class PatientReportSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = PatientReport
+        fields = ['record_id', 'patient', 'department', 'created', 'diagnostics', 'observations', 'treatments']
+
+    def to_representation(self, instance):
+        rep = super(PatientReportSerializer, self).to_representation(instance)
+        rep['student'] = instance.student.username
+        rep['department'] = instance.department.name
+        return rep
+
+    def validate(self, attrs):
+        print(attrs)
+        student = attrs.get('student')
+        if student.role != User.Role.PATIENT:
+            raise serializers.ValidationError("Report can be created for students only")
+        return attrs

api/permissions.py

@@ -0,0 +1 @@
+# Create your tests here.

api/serializers.py

@@ -0,0 +1,24 @@
+from django.urls import path
+from rest_framework_simplejwt.views import TokenRefreshView, TokenObtainPairView
+
+from api.views import RegisterView, DepartmentPatientView, DepartmentDoctorView, DepartmentDetailView, \
+    DoctorDetailView, DepartmentListView, DoctorListView, PatientReportDetailView, PatientListView, \
+    PatientReportListView, PatientDetailView
+
+urlpatterns = [
+
+    path('login/', TokenObtainPairView.as_view(), name='token_obtain_pair'),
+    path('login/refresh/', TokenRefreshView.as_view(), name='token_refresh'),
+    path('register/', RegisterView.as_view(), name="sign_up"),
+    path('doctors/', DoctorListView.as_view()),
+    path('doctors/<int:pk>/', DoctorDetailView.as_view()),
+    path('patients/<int:pk>/', PatientDetailView.as_view()),
+    path('patients/', PatientListView.as_view()),
+    path('departments/', DepartmentListView.as_view()),
+    path('departments/<int:pk>/', DepartmentDetailView.as_view()),
+    path('department/<int:pk>/teachers/', DepartmentDoctorView.as_view()),
+    path('department/<int:pk>/students/', DepartmentPatientView.as_view()),
+    path('patient_record/', PatientReportListView.as_view()),
+    path('patient_record/<int:pk>/', PatientReportDetailView.as_view()),
+
+]