2016-06-27 21:48:37 +02:00
Development
===========
2016-07-10 15:37:56 +02:00
As of July 2016, EventMan(ager) is under heavy refactoring. For a list of main changes that will be introduced, see https://github.com/raspibo/eventman/issues
2016-06-27 21:48:37 +02:00
Every contribution, in form of code or ideas, is welcome.
2016-05-15 14:57:23 +02:00
Definitions
===========
2016-05-16 10:09:25 +02:00
2015-03-22 11:12:19 +01:00
- **event**: a faire, convention, congress or any other kind of meeting
2016-06-27 13:57:10 +02:00
- **person**: everyone hates them
- **registered person**: someone who said will attend at the event
2016-05-16 10:09:25 +02:00
- **attendee**: a person who actually *show up* (is checked in) at the event
2016-07-10 15:37:56 +02:00
- **ticket**: an entry in the list of persons registered at an event (one ticket, one registered person)
2016-07-10 14:16:17 +02:00
- **user**: a logged in user of the EventMan(ager) web interface (not the same as "person")
2016-07-10 15:37:56 +02:00
- **trigger**: an action that will cause the execution of some scripts
2015-03-22 11:12:19 +01:00
2015-04-05 23:54:14 +02:00
Paths
=====
Webapp
------
2016-05-15 14:57:23 +02:00
These are the paths you see in the browser (AngularJS does client-side routing: no request is issued to the web server, during navigation, if not for fetching data and issuing commands):
2015-04-05 23:54:14 +02:00
- /#/events - the list of events
- /#/event/new - edit form to create a new event
2016-06-27 13:57:10 +02:00
- /#/event/:event\_id/edit - edit form to modify an existing event
- /#/event/:event\_id/view - show read-only information about an existing event
- /#/event/:event\_id/tickets - show the list of persons registered at the event
- /#/event/:event\_id/ticket/new - add a new ticket to an event
- /#/event/:event\_id/ticket/:ticket\_id/edit - edit an existing ticket
2016-07-10 15:37:56 +02:00
- /#/users - the list of users
- /#/user/:user\_id/edit - edit an existing user (contains the list of events the user registered for)
2015-04-05 23:54:14 +02:00
- /#/import/persons - form used to import persons in bulk
2016-07-10 15:37:56 +02:00
- /#/login - login and new user forms
2015-05-03 13:10:11 +02:00
- /logout - when visited, the user is logged out
2015-04-05 23:54:14 +02:00
Web server
----------
The paths used to communicate with the Tornado web server:
- /events GET - return the list of events
- /events POST - store a new event
2016-06-27 13:57:10 +02:00
- /events/:event\_id GET - return information about an existing event
- /events/:event\_id PUT - update an existing event
- /events/:event\_id DELETE - delete an existing event
2016-07-10 15:37:56 +02:00
- /events/:event\_id/tickets GET - return the complete list of tickets of the event
- /events/:event\_id/tickets POST - add a new ticket to this event
- /events/:event\_id/tickets/:ticket\_id GET - return a ticket (e.g.: name, surname, ticket ID, ...)
- /events/:event\_id/tickets/:ticket\_id PUT - update a ticket (e.g.: if the ticket attended)
- /events/:event\_id/tickets/:ticket\_id DELETE - remove the entry from the list of registered tickets
- /users GET - list of users
- /users POST - create a new user
2016-06-27 13:57:10 +02:00
- /users/:user\_id PUT - update an existing user
2016-07-10 15:37:56 +02:00
- /settings GET - settings to customize the GUI (logo, extra columns for events and tickets lists)
- /info GET - information about the current user
- /ebcsvpersons POST - csv file upload to import persons
- /login POST - log a user in
- /logout GET - when visited, the user is logged out
2015-05-03 13:10:11 +02:00
2016-05-16 10:09:25 +02:00
Notice that the above paths are the ones used by the webapp. If you plan to use them from an external application (like the _event\_man_ barcode/qrcode scanner) you better prepend all the path with /v1.0, where 1.0 is the current value of API\_VERSION.
2016-06-27 13:57:10 +02:00
The main advantage of doing so is that, for every call, a useful status code and a JSON value is returned.
2016-07-10 15:37:56 +02:00
Also, remember that most of the paths can take query parameters that will be used as a filter, like GET /events/:event\_id/tickets?name=Mario
2016-06-27 21:48:37 +02:00
2016-06-27 13:57:10 +02:00
Permissions
===========
2015-04-05 23:54:14 +02:00
2016-06-27 21:48:37 +02:00
Being too lazy to implement a proper MAC or RBAC, we settled to a simpler mapping on CRUD operations on paths. This will probably change in the future.
User's permission are stored in the *permission* key, and merged with a set of defaults, valid also for unregistered users. Operations are *read* , *create* , *update* and *delete* (plus the spcial *all* value). There's also the special *admin|all* value: if present, the user has every privilege.
Permissions are strings: the path and the permission are separated by ** |**; the path components (resource:sub-resource, if any) are separated by ** :**. In case we are not accessing a specific sub-resource (i.e.: we don't have a sub-resource ID), the ** -all** string is appended to the resource name. For example:
- **events|read**: ability to retrieve the list of events and their data (some fields, like the list of registered persons, are filtered out if you don't have other permissions)
- **event:tickets|all**: ability to do everything to a ticket (provided that you know its ID)
- **event:tickets-all|create**: ability to create a new ticket (you don't have an ID, if you're creating a new ticket, hence the -all suffix)
2016-05-13 22:29:22 +02:00
2015-04-05 23:54:14 +02:00
2015-04-19 23:27:39 +02:00
Triggers
========
2016-06-27 13:57:10 +02:00
Sometimes we have to execute one or more scripts in reaction to an action.
2015-04-19 23:27:39 +02:00
In the **data/triggers** we have a series of directories; scripts inside of them will be executed when the related action was performed on the GUI or calling the controller.
Available triggers:
2016-07-10 15:37:56 +02:00
- **update\_ticket\_in\_event**: executed every time a ticket in a given event is updated.
2015-04-19 23:27:39 +02:00
- **attends**: executed only when a person is marked as attending an event.
2016-07-10 15:37:56 +02:00
update\_ticket\_in\_event and attends will receive these information:
2015-04-19 23:27:39 +02:00
- via *environment* :
- NAME
- SURNAME
- EMAIL
- COMPANY
- JOB
2016-07-10 15:37:56 +02:00
- TICKET\_ID
2016-06-27 13:57:10 +02:00
- EVENT\_ID
- EVENT\_TITLE
2015-05-03 13:10:11 +02:00
- SEQ
2016-06-27 13:57:10 +02:00
- SEQ\_HEX
2015-04-19 23:27:39 +02:00
- via stdin, a dictionary containing:
2016-07-10 15:37:56 +02:00
- dictionary **old** with the old data of the ticket
- dictionary **new** with the new data of the ticket
2015-04-19 23:27:39 +02:00
- dictionary **event** with the event information
- boolean **merged** , true if the data was updated
In the **data/triggers-available** there is an example of script: **echo.py** .
2016-06-27 13:57:10 +02:00
2015-04-05 23:54:14 +02:00
Database layout
===============
2016-07-10 15:37:56 +02:00
Information are stored in MongoDB. Whenever possible, object are converted into native ObjectId.
2015-04-05 23:54:14 +02:00
events collection
-----------------
2016-07-10 15:37:56 +02:00
Stores information about events and tickets.
2015-04-08 23:02:24 +02:00
2015-04-05 23:54:14 +02:00
Main field:
- title
- begin-data
- begin-time
- end-date
- end-time
2016-07-10 15:37:56 +02:00
- summary
- description
- where
- group\_id
- tickets - a list of information about tickets (each entry is a ticket)
- tickets.$.\_id
- tickets.$.ticket\_id
- tickets.$.attended
- tickets.$.name
- tickets.$.surname
- tickets.$.email
- tickets.$.company
- tickets.$.job
- tickets.$.ebqrcode
- tickets.$.seq
- tickets.$.seq\_hex
Notice that all the fields used to identiy a person (name, surname, email) depends on how you've edited the event's form.
2015-04-05 23:54:14 +02:00
2015-05-03 13:10:11 +02:00
users collection
----------------
Contains a list of username and associated values, like the password used for authentication.
To generate the hash, use:
import utils
2016-06-27 13:57:10 +02:00
print utils.hash\_password('MyVerySecretPassword')
2015-05-03 13:10:11 +02:00
2016-07-10 17:25:16 +02:00
Code layout
===========
The code is so divided:
2016-07-10 17:27:31 +02:00
+- eventman\_server.py - the Tornado Web server
+- backend.py - stuff to interact with MongoDB
+- utils.py - utilities
+- angular\_app/ - the client-side web application
| |
| +- *.html - AngularJS templates
| +- Gruntfile.js - Grunt file to extract i18n strings
| +- js/*.js - AngularJS code
| |
| +- app.js - main application and routing
| +- controllers.js - controllers of the templates
| +- services.js - interaction with the web server
| +- directives.js - stuff to interact with the DOM
| +- filters.js - filtering data
| +- i18n.js - i18n
+- data/
| |
| +- triggers/
| |
| +- triggers-available/ - various trigger scripts
| +- triggers/ enabled trigger scripts
| |
| +- attends.d/ - scripts to be executed when a person is marked as an attendee
| +- create\_ticket\_in\_event.d/ - scripts that are run when a ticket is created
| +- update\_ticket\_in\_event.d/ - scripts that are run when a ticket is updated
| +- delete\_ticket\_in\_event.d/ - scripts that are run when a ticket is deleted
+- ssl/ - put here your eventman\_cert.pem and eventman\_key.pem certs
+- static/
| |
| +- js/ - every third-party libraries (plus eventman.js with some small utils)
| +- css/ - third-party CSS (plus eventman.css)
| +- fonts/ - third-party fonts
| +- images/ - third-party images
| +- i18n/ - i18n files
+- templates/ - Tornado Web templates (not used
+- tests/ - eeeehhhh
2016-07-10 17:25:16 +02:00
2016-05-13 22:55:28 +02:00
Coding style and conventions
============================
It's enough to be consistent within the document you're editing.
I suggest four spaces instead of tabs for all the code: Python (**mandatory**), JavaScript, HTML and CSS.
Python code documented following the [Sphinx ](http://sphinx-doc.org/ ) syntax.