"""
Django Admin for LTI models
"""
from django.contrib import admin, messages
from django.utils.html import format_html
from .models import (
LTILaunchLog,
LTIPlatform,
LTIResourceLink,
LTIRoleMapping,
LTIUserMapping,
)
@admin.register(LTIPlatform)
class LTIPlatformAdmin(admin.ModelAdmin):
"""Admin for LTI Platforms (Moodle instances)"""
list_display = ['name', 'platform_id', 'client_id', 'active_badge', 'nrps_enabled', 'deep_linking_enabled', 'created_at']
list_filter = ['active', 'enable_nrps', 'enable_deep_linking', 'created_at']
search_fields = ['name', 'platform_id', 'client_id']
readonly_fields = ['created_at', 'updated_at', 'key_set_updated']
fieldsets = (
('Basic Information', {'fields': ('name', 'platform_id', 'client_id', 'active')}),
('OIDC Endpoints', {'fields': ('auth_login_url', 'auth_token_url', 'auth_audience')}),
('JWK Configuration', {'fields': ('key_set_url', 'key_set', 'key_set_updated'), 'classes': ('collapse',)}),
('Deployment & Features', {'fields': ('deployment_ids', 'enable_nrps', 'enable_deep_linking')}),
('Auto-Provisioning Settings', {'fields': ('auto_create_categories', 'auto_create_users', 'auto_sync_roles', 'remove_from_groups_on_unenroll')}),
('Timestamps', {'fields': ('created_at', 'updated_at'), 'classes': ('collapse',)}),
)
def active_badge(self, obj):
"""Display active status as badge"""
if obj.active:
return format_html('✓ Active')
return format_html('✗ Inactive')
active_badge.short_description = 'Status'
def nrps_enabled(self, obj):
return '✓' if obj.enable_nrps else '✗'
nrps_enabled.short_description = 'NRPS'
def deep_linking_enabled(self, obj):
return '✓' if obj.enable_deep_linking else '✗'
deep_linking_enabled.short_description = 'Deep Link'
@admin.register(LTIResourceLink)
class LTIResourceLinkAdmin(admin.ModelAdmin):
"""Admin for LTI Resource Links"""
list_display = ['context_title', 'platform', 'category_link', 'rbac_group_link', 'launch_count', 'last_launch']
list_filter = ['platform', 'created_at', 'last_launch']
search_fields = ['context_id', 'context_title', 'resource_link_id']
readonly_fields = ['created_at', 'last_launch', 'launch_count']
actions = ['sync_course_members']
fieldsets = (
('Platform', {'fields': ('platform',)}),
('Context (Course)', {'fields': ('context_id', 'context_title', 'context_label')}),
('Resource Link', {'fields': ('resource_link_id', 'resource_link_title')}),
('MediaCMS Mappings', {'fields': ('category', 'rbac_group', 'media')}),
('Metrics', {'fields': ('launch_count', 'last_launch', 'created_at'), 'classes': ('collapse',)}),
)
def category_link(self, obj):
if obj.category:
return format_html('{}', obj.category.id, obj.category.title)
return '-'
category_link.short_description = 'Category'
def rbac_group_link(self, obj):
if obj.rbac_group:
return format_html('{}', obj.rbac_group.id, obj.rbac_group.name)
return '-'
rbac_group_link.short_description = 'RBAC Group'
def sync_course_members(self, request, queryset):
"""Sync course members from LMS using NRPS"""
import traceback
from .nrps import LTINRPSClient
print("=" * 80, flush=True)
print("ADMIN ACTION: Sync course members started", flush=True)
print(f"User: {request.user.username}", flush=True)
print(f"Number of resource links selected: {queryset.count()}", flush=True)
synced_count = 0
failed_count = 0
for resource_link in queryset:
print(f"\n--- Processing: {resource_link.context_title} (ID: {resource_link.id}) ---", flush=True)
try:
# Check if NRPS is enabled
print(f"Platform: {resource_link.platform.name}", flush=True)
print(f"NRPS enabled: {resource_link.platform.enable_nrps}", flush=True)
if not resource_link.platform.enable_nrps:
print("ERROR: NRPS is disabled", flush=True)
messages.warning(request, f'NRPS is disabled for platform: {resource_link.platform.name}')
failed_count += 1
continue
# Check if RBAC group exists
print(f"RBAC group: {resource_link.rbac_group}", flush=True)
if not resource_link.rbac_group:
print("ERROR: No RBAC group", flush=True)
messages.warning(request, f'No RBAC group for: {resource_link.context_title}')
failed_count += 1
continue
# Get last successful launch for NRPS endpoint
print("Looking for last successful launch...", flush=True)
last_launch = LTILaunchLog.objects.filter(platform=resource_link.platform, resource_link=resource_link, success=True).order_by('-created_at').first()
if not last_launch:
print("ERROR: No launch data found", flush=True)
messages.warning(request, f'No launch data for: {resource_link.context_title}')
failed_count += 1
continue
print(f"Found launch from: {last_launch.created_at}", flush=True)
print("Creating NRPS client...", flush=True)
# Perform NRPS sync
nrps_client = LTINRPSClient(resource_link.platform, last_launch.claims)
print("Calling sync_members_to_rbac_group...", flush=True)
result = nrps_client.sync_members_to_rbac_group(resource_link.rbac_group)
print(f"Sync result: {result}", flush=True)
synced_count += result.get('synced', 0)
messages.success(request, f'Synced {result.get("synced", 0)} members for: {resource_link.context_title}')
except Exception as e:
print(f"ERROR during sync: {str(e)}", flush=True)
print(f"Traceback:\n{traceback.format_exc()}", flush=True)
messages.error(request, f'Error syncing {resource_link.context_title}: {str(e)}')
failed_count += 1
# Summary message
print("\n=== Sync Complete ===", flush=True)
print(f"Total synced: {synced_count}", flush=True)
print(f"Failed: {failed_count}", flush=True)
print("=" * 80, flush=True)
if synced_count > 0:
self.message_user(request, f'Successfully synced members from {queryset.count() - failed_count} course(s). Total members: {synced_count}', messages.SUCCESS)
if failed_count > 0:
self.message_user(request, f'{failed_count} course(s) failed to sync', messages.WARNING)
sync_course_members.short_description = 'Sync course members from LMS (NRPS)'
@admin.register(LTIUserMapping)
class LTIUserMappingAdmin(admin.ModelAdmin):
"""Admin for LTI User Mappings"""
list_display = ['user_link', 'lti_user_id', 'platform', 'email', 'last_login']
list_filter = ['platform', 'created_at', 'last_login']
search_fields = ['lti_user_id', 'user__username', 'user__email', 'email']
readonly_fields = ['created_at', 'last_login']
fieldsets = (
('Mapping', {'fields': ('platform', 'lti_user_id', 'user')}),
('User Info (Cached)', {'fields': ('email', 'given_name', 'family_name', 'name')}),
('Timestamps', {'fields': ('created_at', 'last_login')}),
)
def user_link(self, obj):
return format_html('{}', obj.user.id, obj.user.username)
user_link.short_description = 'MediaCMS User'
@admin.register(LTIRoleMapping)
class LTIRoleMappingAdmin(admin.ModelAdmin):
"""Admin for LTI Role Mappings"""
list_display = ['lti_role', 'platform', 'global_role', 'group_role']
list_filter = ['platform', 'global_role', 'group_role']
search_fields = ['lti_role']
fieldsets = (
('LTI Role', {'fields': ('platform', 'lti_role')}),
('MediaCMS Roles', {'fields': ('global_role', 'group_role'), 'description': 'Map this LTI role to MediaCMS global and group roles'}),
)
@admin.register(LTILaunchLog)
class LTILaunchLogAdmin(admin.ModelAdmin):
"""Admin for LTI Launch Logs"""
list_display = ['created_at', 'platform', 'user_link', 'launch_type', 'success_badge', 'ip_address']
list_filter = ['success', 'launch_type', 'platform', 'created_at']
search_fields = ['user__username', 'ip_address', 'error_message']
readonly_fields = ['created_at', 'claims']
date_hierarchy = 'created_at'
fieldsets = (
('Launch Info', {'fields': ('platform', 'user', 'resource_link', 'launch_type', 'success', 'ip_address', 'created_at')}),
('Error Details', {'fields': ('error_message',), 'classes': ('collapse',)}),
('Claims Data', {'fields': ('claims',), 'classes': ('collapse',)}),
)
def success_badge(self, obj):
if obj.success:
return format_html('✓ Success')
return format_html('✗ Failed')
success_badge.short_description = 'Status'
def user_link(self, obj):
if obj.user:
return format_html('{}', obj.user.id, obj.user.username)
return '-'
user_link.short_description = 'User'
def has_add_permission(self, request):
"""Disable manual creation of launch logs"""
return False
def has_change_permission(self, request, obj=None):
"""Make launch logs read-only"""
return False