ITISFoundation
diff --git a/‎packages/postgres-database/src/simcore_postgres_database/tags_sql.py
Lines changed: 200 additions & 0 deletions b/‎packages/postgres-database/src/simcore_postgres_database/tags_sql.py
Lines changed: 200 additions & 0 deletions
@@ -0,0 +1,200 @@
+import functools
+
+import sqlalchemy as sa
+from simcore_postgres_database.models.groups import user_to_groups
+from simcore_postgres_database.models.projects_tags import projects_tags
+from simcore_postgres_database.models.services_tags import services_tags
+from simcore_postgres_database.models.tags import tags
+from simcore_postgres_database.models.tags_to_groups import tags_to_groups
+from simcore_postgres_database.models.users import users
+from sqlalchemy.dialects.postgresql import insert as pg_insert
+
+_TAG_COLUMNS = [
+    tags.c.id,
+    tags.c.name,
+    tags.c.description,
+    tags.c.color,
+]
+
+_ACCESS_COLUMNS = [
+    tags_to_groups.c.read,
+    tags_to_groups.c.write,
+    tags_to_groups.c.delete,
+]
+
+
+_COLUMNS = _TAG_COLUMNS + _ACCESS_COLUMNS
+
+
+def _join_user_groups_tag(*, access_condition, tag_id: int, user_id: int):
+    return user_to_groups.join(
+        tags_to_groups,
+        (user_to_groups.c.uid == user_id)
+        & (user_to_groups.c.gid == tags_to_groups.c.group_id)
+        & (access_condition)
+        & (tags_to_groups.c.tag_id == tag_id),
+    )
+
+
+def _join_user_to_given_tag(*, access_condition, tag_id: int, user_id: int):
+    return _join_user_groups_tag(
+        access_condition=access_condition,
+        tag_id=tag_id,
+        user_id=user_id,
+    ).join(tags)
+
+
+def _join_user_to_tags(*, access_condition, user_id: int):
+    return user_to_groups.join(
+        tags_to_groups,
+        (user_to_groups.c.uid == user_id)
+        & (user_to_groups.c.gid == tags_to_groups.c.group_id)
+        & (access_condition),
+    ).join(tags)
+
+
+def get_tag_stmt(
+    user_id: int,
+    tag_id: int,
+):
+    return sa.select(*_COLUMNS).select_from(
+        _join_user_to_given_tag(
+            access_condition=tags_to_groups.c.read.is_(True),
+            tag_id=tag_id,
+            user_id=user_id,
+        )
+    )
+
+
+def list_tags_stmt(*, user_id: int):
+    return (
+        sa.select(*_COLUMNS)
+        .select_from(
+            _join_user_to_tags(
+                access_condition=tags_to_groups.c.read.is_(True),
+                user_id=user_id,
+            )
+        )
+        .order_by(tags.c.id)
+    )
+
+
+def create_tag_stmt(**values):
+    return tags.insert().values(**values).returning(*_TAG_COLUMNS)
+
+
+def count_users_with_access_rights_stmt(
+    *,
+    user_id: int,
+    tag_id: int,
+    read: bool | None,
+    write: bool | None,
+    delete: bool | None
+):
+    """
+    How many users are given these access permissions
+    """
+    access = []
+    if read is not None:
+        access.append(tags_to_groups.c.read == read)
+    if write is not None:
+        access.append(tags_to_groups.c.write == write)
+    if delete is not None:
+        access.append(tags_to_groups.c.delete == delete)
+
+    if not access:
+        msg = "Undefined access"
+        raise ValueError(msg)
+
+    j = _join_user_groups_tag(
+        access_condition=functools.reduce(sa.and_, access),
+        user_id=user_id,
+        tag_id=tag_id,
+    )
+    return sa.select(sa.func.count(user_to_groups.c.uid)).select_from(j)
+
+
+def set_tag_access_rights_stmt(
+    *, tag_id: int, user_id: int, read: bool, write: bool, delete: bool
+):
+    scalar_subq = (
+        sa.select(users.c.primary_gid).where(users.c.id == user_id).scalar_subquery()
+    )
+    return (
+        tags_to_groups.insert()
+        .values(
+            tag_id=tag_id,
+            group_id=scalar_subq,
+            read=read,
+            write=write,
+            delete=delete,
+        )
+        .returning(*_ACCESS_COLUMNS)
+    )
+
+
+def update_tag_stmt(*, user_id: int, tag_id: int, **updates):
+    return (
+        tags.update()
+        .where(tags.c.id == tag_id)
+        .where(
+            (tags.c.id == tags_to_groups.c.tag_id) & (tags_to_groups.c.write.is_(True))
+        )
+        .where(
+            (tags_to_groups.c.group_id == user_to_groups.c.gid)
+            & (user_to_groups.c.uid == user_id)
+        )
+        .values(**updates)
+        .returning(*_COLUMNS)
+    )
+
+
+def delete_tag_stmt(*, user_id: int, tag_id: int):
+    return (
+        tags.delete()
+        .where(tags.c.id == tag_id)
+        .where(
+            (tags_to_groups.c.tag_id == tag_id) & (tags_to_groups.c.delete.is_(True))
+        )
+        .where(
+            (tags_to_groups.c.group_id == user_to_groups.c.gid)
+            & (user_to_groups.c.uid == user_id)
+        )
+        .returning(tags_to_groups.c.delete)
+    )
+
+
+def get_tags_for_project_stmt(*, project_index: int):
+    return sa.select(projects_tags.c.tag_id).where(
+        projects_tags.c.study_id == project_index
+    )
+
+
+def add_tag_to_project_stmt(*, project_index: int, tag_id: int) -> None:
+    return (
+        pg_insert(projects_tags)
+        .values(
+            study_id=project_index,
+            tag_id=tag_id,
+        )
+        .on_conflict_do_nothing()
+    )
+
+
+def get_tags_for_services_stmt(*, key: str, version: str):
+    return sa.select(services_tags.c.tag_id).where(
+        (services_tags.c.service_key == key)
+        & (services_tags.c.service_version == version)
+    )
+
+
+def add_tag_to_services_stmt(*, key: str, version: str, tag_id: int) -> None:
+    return (
+        pg_insert(services_tags)
+        .values(
+            service_key=key,
+            service_version=version,
+            tag_id=tag_id,
+        )
+        .on_conflict_do_nothing()
+    )