Ticketing

.pre-commit-config.yaml

@@ -4,7 +4,7 @@ repos:
     hooks:
       - id: black
         name: black
-        entry: black
+        entry: cd backend && pipenv run black
         language: python
         types: [python]
         require_serial: true

backend/clubs/admin.py

@@ -20,6 +20,7 @@
     ApplicationSubmission,
     Asset,
     Badge,
+    Cart,
     Club,
     ClubApplication,
     ClubFair,
@@ -48,6 +49,7 @@
     TargetStudentType,
     TargetYear,
     Testimonial,
+    Ticket,
     Year,
     ZoomMeetingVisit,
 )
@@ -443,3 +445,5 @@ class ZoomMeetingVisitAdmin(admin.ModelAdmin):
 admin.site.register(Year, YearAdmin)
 admin.site.register(ZoomMeetingVisit, ZoomMeetingVisitAdmin)
 admin.site.register(AdminNote)
+admin.site.register(Ticket)
+admin.site.register(Cart)

backend/clubs/management/commands/populate.py

@@ -15,6 +15,7 @@
     ApplicationQuestion,
     ApplicationSubmission,
     Badge,
+    Cart,
     Club,
     ClubApplication,
     ClubFair,
@@ -28,6 +29,7 @@
     StudentType,
     Tag,
     Testimonial,
+    Ticket,
     Year,
 )
 
@@ -746,4 +748,31 @@ def get_image(url):
                 first_mship.save()
             count += 1
 
+        # Add tickets
+
+        hr = Club.objects.get(code="harvard-rejects")
+
+        hr_events = Event.objects.filter(club=hr)
+
+        for idx, e in enumerate(hr_events[:3]):
+            # Switch up person every so often
+            person = ben if idx < 2 else user_objs[1]
+
+            # Create some unowned tickets
+            Ticket.objects.bulk_create(
+                [Ticket(event=e, type="Regular") for _ in range(10)]
+            )
+
+            Ticket.objects.bulk_create(
+                [Ticket(event=e, type="Premium") for _ in range(5)]
+            )
+
+            # Create some owned tickets and tickets in cart
+            for i in range((idx + 1) * 10):
+                if i % 5:
+                    Ticket.objects.create(event=e, owner=person, type="Regular")
+                else:
+                    c, _ = Cart.objects.get_or_create(owner=person)
+                    c.tickets.add(Ticket.objects.create(event=e, type="Premium"))
+
         self.stdout.write("Finished populating database!")

backend/clubs/migrations/0091_cart_ticket.py

@@ -0,0 +1,90 @@
+# Generated by Django 3.2.8 on 2022-11-12 20:05
+
+import uuid
+
+import django.db.models.deletion
+from django.conf import settings
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        migrations.swappable_dependency(settings.AUTH_USER_MODEL),
+        ("clubs", "0090_adminnote"),
+    ]
+
+    operations = [
+        migrations.CreateModel(
+            name="Cart",
+            fields=[
+                (
+                    "id",
+                    models.AutoField(
+                        auto_created=True,
+                        primary_key=True,
+                        serialize=False,
+                        verbose_name="ID",
+                    ),
+                ),
+                (
+                    "owner",
+                    models.OneToOneField(
+                        on_delete=django.db.models.deletion.CASCADE,
+                        related_name="cart",
+                        to=settings.AUTH_USER_MODEL,
+                    ),
+                ),
+            ],
+        ),
+        migrations.CreateModel(
+            name="Ticket",
+            fields=[
+                (
+                    "id",
+                    models.UUIDField(
+                        default=uuid.uuid4,
+                        editable=False,
+                        primary_key=True,
+                        serialize=False,
+                    ),
+                ),
+                ("type", models.CharField(max_length=100)),
+                ("holding_expiration", models.DateTimeField(blank=True, null=True)),
+                (
+                    "carts",
+                    models.ManyToManyField(
+                        blank=True, related_name="tickets", to="clubs.Cart"
+                    ),
+                ),
+                (
+                    "event",
+                    models.ForeignKey(
+                        on_delete=django.db.models.deletion.DO_NOTHING,
+                        related_name="tickets",
+                        to="clubs.event",
+                    ),
+                ),
+                (
+                    "holder",
+                    models.ForeignKey(
+                        blank=True,
+                        null=True,
+                        on_delete=django.db.models.deletion.SET_NULL,
+                        related_name="held_tickets",
+                        to=settings.AUTH_USER_MODEL,
+                    ),
+                ),
+                (
+                    "owner",
+                    models.ForeignKey(
+                        blank=True,
+                        null=True,
+                        on_delete=django.db.models.deletion.SET_NULL,
+                        related_name="owned_tickets",
+                        to=settings.AUTH_USER_MODEL,
+                    ),
+                ),
+            ],
+        ),
+    ]

backend/clubs/models.py

@@ -1,11 +1,14 @@
+import base64
 import datetime
 import os
 import re
 import uuid
 import warnings
+from io import BytesIO
 from urllib.parse import urlparse
 
 import pytz
+import qrcode
 import requests
 import yaml
 from django.conf import settings
@@ -941,6 +944,10 @@
     def __str__(self):
         return self.name
 
+    @property
+    def tickets_count(self):
+        return Ticket.objects.count(event=self)
+
 
 class Favorite(models.Model):
     """
@@ -1695,6 +1702,97 @@
     response = models.TextField(blank=True)
 
 
+class Cart(models.Model):
+    """
+    Represents an instance of a ticket cart for a user
+    """
+
+    owner = models.OneToOneField(
+        get_user_model(), related_name="cart", on_delete=models.CASCADE
+    )
+
+
+class TicketManager(models.Manager):
+
+    # Update holds for all tickets
+    def update_holds(self):
+        expired_tickets = self.select_for_update().filter(
+            holder__isnull=False, holding_expiration__lte=timezone.now()
+        )
+        with transaction.atomic():
+            for ticket in expired_tickets:
+                ticket.holder = None
+            self.bulk_update(expired_tickets, ["holder"])
+
+
+class Ticket(models.Model):
+    """
+    Represents an instance of a ticket for an event
+    """
+
+    id = models.UUIDField(primary_key=True, default=uuid.uuid4, editable=False)
+    event = models.ForeignKey(
+        Event, related_name="tickets", on_delete=models.DO_NOTHING
+    )
+    type = models.CharField(max_length=100)
+    owner = models.ForeignKey(
+        get_user_model(),
+        related_name="owned_tickets",
+        on_delete=models.SET_NULL,
+        blank=True,
+        null=True,
+    )
+    holder = models.ForeignKey(
+        get_user_model(),
+        related_name="held_tickets",
+        on_delete=models.SET_NULL,
+        blank=True,
+        null=True,
+    )
+    holding_expiration = models.DateTimeField(null=True, blank=True)
+    carts = models.ManyToManyField(Cart, related_name="tickets", blank=True)
+    objects = TicketManager()
+
+    def get_qr(self):
+        """
+        Return a QR code image linking to the ticket page
+        """
+        if not self.owner:
+            return None
+
+        url = f"https://{settings.DOMAIN}/api/tickets/{self.id}"
+        qr_image = qrcode.make(url, box_size=20, border=0)
+        return qr_image
+
+    def send_confirmation_email(self):
+        """
+        Send a confirmation email to the ticket owner after purchase
+        """
+        owner = self.owner
+
+        output = BytesIO()
+        qr_image = self.get_qr()
+        qr_image.save(output, format="PNG")
+        decoded_image = base64.b64encode(output.getvalue()).decode("ascii")
+
+        context = {
+            "first_name": self.owner.first_name,
+            "name": self.event.name,
+            "type": self.type,
+            "start_time": self.event.start_time,
+            "end_time": self.event.end_time,
+            "qr": decoded_image,
+        }
+
+        if self.owner.email:
+            send_mail_helper(
+                name="ticket_confirmation",
+                subject=f"Ticket confirmation for {owner.get_full_name()}",
+                emails=[owner.email],
+                context=context,
+            )
+
+
 @receiver(models.signals.pre_delete, sender=Asset)
 def asset_delete_cleanup(sender, instance, **kwargs):
     if instance.file:

backend/clubs/permissions.py

@@ -188,7 +188,7 @@
 
 class EventPermission(permissions.BasePermission):
     """
-    Officers and above can create/update/delete events.
+    Officers and above can create/update/delete events and view ticket buyers.
     Everyone else can view and list events.
     """
 
@@ -224,7 +224,13 @@
 
             if not old_type == FAIR_TYPE and new_type == FAIR_TYPE:
                 return False
-
+        elif view.action in ["buyers", "create_tickets"]:
+            if not request.user.is_authenticated:
+                return False
+            membership = find_membership_helper(request.user, obj.club)
+            return membership is not None and membership.role <= Membership.ROLE_OFFICER
+        elif view.action in ["add_to_cart", "remove_from_cart"]:
+            return request.user.is_authenticated
         return True
 
 

backend/clubs/serializers.py

@@ -54,6 +54,7 @@
     TargetStudentType,
     TargetYear,
     Testimonial,
+    Ticket,
     Year,
 )
 from clubs.utils import clean
@@ -339,8 +340,12 @@
     image_url = serializers.SerializerMethodField("get_image_url")
     large_image_url = serializers.SerializerMethodField("get_large_image_url")
     url = serializers.SerializerMethodField("get_event_url")
+    ticketed = serializers.SerializerMethodField("get_ticketed")
     creator = serializers.HiddenField(default=serializers.CurrentUserDefault())
 
+    def get_ticketed(self, obj) -> bool:
+        return obj.tickets.count() > 0
+
     def get_event_url(self, obj):
         # if no url, return that
         if not obj.url:
@@ -478,6 +483,7 @@
             "location",
             "name",
             "start_time",
+            "ticketed",
             "type",
             "url",
         ]
@@ -1721,6 +1727,23 @@
         fields = ("club", "role", "title", "active", "public")
 
 
+class TicketSerializer(serializers.ModelSerializer):
+
+    """
+    Used to return a ticket object
+    """
+
+    owner = serializers.SerializerMethodField("get_owner_name")
+    event = EventSerializer()
+
+    def get_owner_name(self, obj):
+        return obj.owner.get_full_name() if obj.owner else "None"
+
+    class Meta:
+        model = Ticket
+        fields = ("id", "event", "type", "owner")
+
+
 class UserUUIDSerializer(serializers.ModelSerializer):
     """
     Used to get the uuid of a user (for ICS Calendar export)

backend/clubs/urls.py

@@ -42,6 +42,7 @@
     SubscribeViewSet,
     TagViewSet,
     TestimonialViewSet,
+    TicketViewSet,
     UserGroupAPIView,
     UserPermissionAPIView,
     UserUpdateAPIView,
@@ -67,6 +68,7 @@
 router.register(r"searches", SearchQueryViewSet, basename="searches")
 router.register(r"memberships", MembershipViewSet, basename="members")
 router.register(r"requests", MembershipRequestViewSet, basename="requests")
+router.register(r"tickets", TicketViewSet, basename="tickets")
 
 router.register(r"schools", SchoolViewSet, basename="schools")
 router.register(r"majors", MajorViewSet, basename="majors")