create admin user before first request

Author: fumblehool

README.md

@@ -121,6 +121,12 @@ If you encounter any errors, please open an issue or contact us on slack in #oc-
     }'
     ```
 
+## Admin Panel Access
+
+This project has an admin panel which can be used to view and manually edit categories and languages at a higher level than the API allows.
+In order to create admin user, set following environment variables before starting the application -
+`ADMIN_EMAIL` and `ADMIN_PASSWORD`
+
 ## Development Notes
 
 If you make changes to the models.py or other schemas, you need to run a migration and upgrade again:

migrations/versions/824f1576e904_.py

@@ -12,7 +12,7 @@
 
 # revision identifiers, used by Alembic.
 revision = '824f1576e904'
-down_revision = '205742d3b3f5'
+down_revision = 'fc34137ad3ba'
 branch_labels = None
 depends_on = None
 

run.py

@@ -1,6 +1,7 @@
 from app import app, cli, admin
+import os
 from app.models import Category, Language, Resource, db, User, Role
-from flask_security import Security, SQLAlchemyUserDatastore
+from flask_security import Security, SQLAlchemyUserDatastore, utils
 from werkzeug.middleware.dispatcher import DispatcherMiddleware
 from prometheus_client import make_wsgi_app
 
@@ -23,4 +24,35 @@
 
 @app.shell_context_processor
 def make_shell_context():
-    return {'db': db, 'Resource': Resource, 'Category': Category, 'Language': Language}
+    return {'db': db, 'Resource': Resource, 'Category': Category,
+            'Language': Language, 'User': User, 'Role': Role}
+
+# Create Admin user and role.
+@app.before_first_request
+def before_first_request():
+    # Create any database tables that don't exist yet.
+    db.create_all()
+
+    # Create the Roles "admin" and "user" -- unless they already exist
+    user_datastore.find_or_create_role(name='admin', description='Administrator')
+    user_datastore.find_or_create_role(name='user', description='End user')
+
+    admin_email = os.environ.get('ADMIN_EMAIL', '[email protected]')
+    admin_password = os.environ.get('ADMIN_PASSWORD', 'password')
+
+    # Create two Users for testing purposes -- unless they already exists.
+    # In each case, use Flask-Security utility function to encrypt the password.
+    encrypted_password = utils.encrypt_password(admin_password)
+    if not user_datastore.get_user(admin_email):
+        user_datastore.create_user(admin_email, password=encrypted_password)
+    # Add more users.
+
+    # Commit any database changes; the User and Roles must exist before we
+    # can add a Role to the User
+    db.session.commit()
+
+    # Give one User has the "end-user" role, while the other has the "admin"
+    # role. (This will have no effect if the
+    # Users already have these Roles.) Again, commit any database changes.
+    user_datastore.add_role_to_user(admin_email, 'admin')
+    db.session.commit()