Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

POST /api/user #822

Open
Tracked by #1679
mahalakshme opened this issue Nov 20, 2024 · 2 comments
Open
Tracked by #1679

POST /api/user #822

mahalakshme opened this issue Nov 20, 2024 · 2 comments

Comments

@mahalakshme
Copy link
Contributor

mahalakshme commented Nov 20, 2024

Need:

One of our clients wanted the message of user credentials to be sent only after the training on Glific is complete. So Glific will setup a flow where once training is complete, via a hook they will POST the user details to Avni.

As is:

  • Currently we don't have a API endpoint to create user.
  • From webapp when a user is created, it is created by POSTing the ids of catchment, user groups etc.,

AC:

  • The discussion was that all the details in UserAndCatchments file will be posted from Glific to Avni
  • So POST request payload can look like this:
{
  "username": "mahanew",
  "name": "mahanew",
  "emailAddress": "mahalakshmes@samanvayfoundation.org",
  "mobileNumber": "+919791267079",
  "catchment":  {
      "name": "Warkula",
      "locationsWithFullHierarchy": ["Maharashtra, Parbhani, Manwat, Aambegaon", "Maharashtra, Kolhapur, Shahuwadi, Ambarde"]
   },
  "userGroups": ['Administrator', 'Project Leads' ],
  "settings": {
    "preferredLanguage": "en",
    "identifierPrefix": "MN",
    "datePickerMode": "calendar",
    "timePickerMode": "clock",
    "trackLocation": true,
    "ignoreSyncSettingsInDEA": true,
    "Work Order->Year": ['2023-24']
  }
}

Validations (same error messages like in User and Catchments CSV upload):

  • When a location, say 'Maharashtra, Kolhapur, Shahuwadi, Ambarde' is not present then return 400 Bad Request with error message 'Provided Location does not exist in Avni. Please add it or check for spelling mistakes and ensure space between two locations '%s'. User with other locations should not get created.
  • Validations to make sure mandatory fields present, and right values are posted. Only mandatory fields are username, name, phoneNumber, catchment.name, catchment.locations, syncSettings. When any of these fields not present then return 400 Bad request with error message 'Invalid or Empty value specified for mandatory field %s.'
  • Should support phone numbers with all country codes like done for CSV upload.
    - When the mobile numbers are prefixed with 91 or +91 make sure the number of digits that follows are ten in number.
    - Dont make it mandatory to enter + for phone number. If it is not entered, add + before sending the request to AWS cognito and inserting into db. If it is entered as well fine.
    - When any of the above w.r to having a valid phone number is not adhered, then return 400 Bad Request with error message 'Provided value '%s' for phone number is invalid.'
  • Few other validation messages on respective field validations like preferredLanguage, date-picker mode, time-picker mode, track location, sync settings are:
    - Provided value '%s' for Preferred Language is invalid.
    - Provided value '%s' for Date picker mode is invalid.
    - Provided value '%s' for track location is invalid.
    - '2023-24' is not a valid value for the concept 'Year'. To input this value, add this as an answer to the coded concept 'Year'.

Default values when not mentioned:

en for locale,
empty for idPrefix, email - ie., without email set for user, everything should work
calendar for datePickerMode
clock for timePickerMode
Everyone group for groupNames
false for ignoreSyncSettingsInDEA
false for trackLocation

General:

  • Based on the organisation, username suffix should get added to username before saving.
  • Should create the user in cognito when there are no validation errors.
  • When any of the above mentioned validation errors occur, return 400 Bad Request and should not save user with the other details.
  • Also should create catchments with already created locations added to it if catchment doesn't exist. If catchment exists add any new location to the catchment. Locations mentioned are case insensitive.
  • Make sure when user is created in cognito, it is created with state such that reset of temporary password is required unless 'Do not require password change for new user' setting is enabled.
  • Make sure finding the locations to add to catchment is done s.t without affecting Avni performance.

Out of scope:

  • Need to work with Keycloak? - Fine? or better to support it as well for feature parity
  • Bulk saving of multiple users at the same time

Tech analysis:

  • Email - not mandatory for Cognito - doesn't seem to be used by client in focus as well - Vinay mentioned was added initially though we didnt want to add since in Cognito it was mandatory - It is not mandatory now, though in Cognito settings we are enforcing it.
  • Separating catchment and user creation can lead to confusion. So let's keep them together.

Old: Ignore:

Option 2: - 5-6 days

  • Separate uploading of catchments alone in Avni
  • Then posting the user information without location information

analysis/questions:

  • Email - not mandatory for Cognito - doesn't seem to be used by client in focus as well - Vinay mentioned was added initially though we didnt want to add since in Cognito it was mandatory - It is not mandatory now, though in Cognito settings we are enforcing it.
  • except user groups most of the others can be hard-coded
  • username is going to be mobile number

Inputs:

  • we will add @ and suffix to avoid issues and to retain sanity in Avni
  • locale might not by default be Maharashtra - need to collect
  • location if not exist need to do error handling
  • share sample CSV file with Glific
@mahalakshme mahalakshme converted this from a draft issue Nov 20, 2024
@mahalakshme mahalakshme moved this from In Analysis to In Analysis Review in Avni Product Nov 20, 2024
@vinayvenu
Copy link
Member

@mahalakshme adding in some comments, surely this will be included when the story is detailed out

  1. We should include GET of user (so it can be verified programmatically)
  2. Have default values for settings etc

@mahalakshme
Copy link
Contributor Author

@vinayvenu noted

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
Status: In Analysis Review
Development

No branches or pull requests

2 participants