Accidental refactor, split out legacy.py into separate sumodules and update all call sites.

endpoints/api/robot.py

@@ -1,8 +1,8 @@
 """ Manage user and organization robot accounts. """
 
 from endpoints.api import (resource, nickname, ApiResource, log_action, related_user_resource,
-                           Unauthorized, require_user_admin, internal_only, require_scope,
-                           path_param, parse_args, truthy_bool, query_param)
+                           Unauthorized, require_user_admin, require_scope, path_param, parse_args,
+                           truthy_bool, query_param)
 from auth.permissions import AdministerOrganizationPermission, OrganizationMemberPermission
 from auth.auth_context import get_authenticated_user
 from auth import scopes
@@ -30,7 +30,8 @@ def permission_view(permission):
 
 
 def robots_list(prefix, include_permissions=False):
-  tuples = model.list_entity_robot_permission_teams(prefix, include_permissions=include_permissions)
+  tuples = model.user.list_entity_robot_permission_teams(prefix,
+                                                         include_permissions=include_permissions)
 
   robots = {}
   robot_teams = set()
@@ -85,7 +86,8 @@ class UserRobotList(ApiResource):
 
 
 @resource('/v1/user/robots/<robot_shortname>')
-@path_param('robot_shortname', 'The short name for the robot, without any user or organization prefix')
+@path_param('robot_shortname',
+            'The short name for the robot, without any user or organization prefix')
 class UserRobot(ApiResource):
   """ Resource for managing a user's robots. """
   @require_user_admin
@@ -93,7 +95,7 @@ class UserRobot(ApiResource):
   def get(self, robot_shortname):
     """ Returns the user's robot with the specified name. """
     parent = get_authenticated_user()
-    robot, password = model.get_robot(robot_shortname, parent)
+    robot, password = model.user.get_robot(robot_shortname, parent)
     return robot_view(robot.username, password)
 
   @require_user_admin
@@ -101,7 +103,7 @@ class UserRobot(ApiResource):
   def put(self, robot_shortname):
     """ Create a new user robot with the specified name. """
     parent = get_authenticated_user()
-    robot, password = model.create_robot(robot_shortname, parent)
+    robot, password = model.user.create_robot(robot_shortname, parent)
     log_action('create_robot', parent.username, {'robot': robot_shortname})
     return robot_view(robot.username, password), 201
 
@@ -110,7 +112,7 @@ class UserRobot(ApiResource):
   def delete(self, robot_shortname):
     """ Delete an existing robot. """
     parent = get_authenticated_user()
-    model.delete_robot(format_robot_username(parent.username, robot_shortname))
+    model.user.delete_robot(format_robot_username(parent.username, robot_shortname))
     log_action('delete_robot', parent.username, {'robot': robot_shortname})
     return 'Deleted', 204
 
@@ -137,7 +139,8 @@ class OrgRobotList(ApiResource):
 
 @resource('/v1/organization/<orgname>/robots/<robot_shortname>')
 @path_param('orgname', 'The name of the organization')
-@path_param('robot_shortname', 'The short name for the robot, without any user or organization prefix')
+@path_param('robot_shortname',
+            'The short name for the robot, without any user or organization prefix')
 @related_user_resource(UserRobot)
 class OrgRobot(ApiResource):
   """ Resource for managing an organization's robots. """
@@ -147,8 +150,8 @@ class OrgRobot(ApiResource):
     """ Returns the organization's robot with the specified name. """
     permission = AdministerOrganizationPermission(orgname)
     if permission.can():
-      parent = model.get_organization(orgname)
-      robot, password = model.get_robot(robot_shortname, parent)
+      parent = model.organization.get_organization(orgname)
+      robot, password = model.user.get_robot(robot_shortname, parent)
       return robot_view(robot.username, password)
 
     raise Unauthorized()
@@ -159,9 +162,9 @@ class OrgRobot(ApiResource):
     """ Create a new robot in the organization. """
     permission = AdministerOrganizationPermission(orgname)
     if permission.can():
-      parent = model.get_organization(orgname)
-      robot, password = model.create_robot(robot_shortname, parent)
-      log_action('create_robot', orgname,  {'robot': robot_shortname})
+      parent = model.organization.get_organization(orgname)
+      robot, password = model.user.create_robot(robot_shortname, parent)
+      log_action('create_robot', orgname, {'robot': robot_shortname})
       return robot_view(robot.username, password), 201
 
     raise Unauthorized()
@@ -172,7 +175,7 @@ class OrgRobot(ApiResource):
     """ Delete an existing organization robot. """
     permission = AdministerOrganizationPermission(orgname)
     if permission.can():
-      model.delete_robot(format_robot_username(orgname, robot_shortname))
+      model.user.delete_robot(format_robot_username(orgname, robot_shortname))
       log_action('delete_robot', orgname, {'robot': robot_shortname})
       return 'Deleted', 204
 
@@ -180,7 +183,8 @@ class OrgRobot(ApiResource):
 
 
 @resource('/v1/user/robots/<robot_shortname>/permissions')
-@path_param('robot_shortname', 'The short name for the robot, without any user or organization prefix')
+@path_param('robot_shortname',
+            'The short name for the robot, without any user or organization prefix')
 class UserRobotPermissions(ApiResource):
   """ Resource for listing the permissions a user's robot has in the system. """
   @require_user_admin
@@ -188,8 +192,8 @@ class UserRobotPermissions(ApiResource):
   def get(self, robot_shortname):
     """ Returns the list of repository permissions for the user's robot. """
     parent = get_authenticated_user()
-    robot, password = model.get_robot(robot_shortname, parent)
-    permissions = model.list_robot_permissions(robot.username)
+    robot, _ = model.user.get_robot(robot_shortname, parent)
+    permissions = model.permission.list_robot_permissions(robot.username)
 
     return {
       'permissions': [permission_view(permission) for permission in permissions]
@@ -198,7 +202,8 @@ class UserRobotPermissions(ApiResource):
 
 @resource('/v1/organization/<orgname>/robots/<robot_shortname>/permissions')
 @path_param('orgname', 'The name of the organization')
-@path_param('robot_shortname', 'The short name for the robot, without any user or organization prefix')
+@path_param('robot_shortname',
+            'The short name for the robot, without any user or organization prefix')
 @related_user_resource(UserRobotPermissions)
 class OrgRobotPermissions(ApiResource):
   """ Resource for listing the permissions an org's robot has in the system. """
@@ -208,9 +213,9 @@ class OrgRobotPermissions(ApiResource):
     """ Returns the list of repository permissions for the org's robot. """
     permission = AdministerOrganizationPermission(orgname)
     if permission.can():
-      parent = model.get_organization(orgname)
-      robot, password = model.get_robot(robot_shortname, parent)
-      permissions = model.list_robot_permissions(robot.username)
+      parent = model.organization.get_organization(orgname)
+      robot, _ = model.user.get_robot(robot_shortname, parent)
+      permissions = model.permission.list_robot_permissions(robot.username)
 
       return {
         'permissions': [permission_view(permission) for permission in permissions]
@@ -220,7 +225,8 @@ class OrgRobotPermissions(ApiResource):
 
 
 @resource('/v1/user/robots/<robot_shortname>/regenerate')
-@path_param('robot_shortname', 'The short name for the robot, without any user or organization prefix')
+@path_param('robot_shortname',
+            'The short name for the robot, without any user or organization prefix')
 class RegenerateUserRobot(ApiResource):
   """ Resource for regenerate an organization's robot's token. """
   @require_user_admin
@@ -228,14 +234,15 @@ class RegenerateUserRobot(ApiResource):
   def post(self, robot_shortname):
     """ Regenerates the token for a user's robot. """
     parent = get_authenticated_user()
-    robot, password = model.regenerate_robot_token(robot_shortname, parent)
-    log_action('regenerate_robot_token', parent.username,  {'robot': robot_shortname})
+    robot, password = model.user.regenerate_robot_token(robot_shortname, parent)
+    log_action('regenerate_robot_token', parent.username, {'robot': robot_shortname})
     return robot_view(robot.username, password)
 
 
 @resource('/v1/organization/<orgname>/robots/<robot_shortname>/regenerate')
 @path_param('orgname', 'The name of the organization')
-@path_param('robot_shortname', 'The short name for the robot, without any user or organization prefix')
+@path_param('robot_shortname',
+            'The short name for the robot, without any user or organization prefix')
 @related_user_resource(RegenerateUserRobot)
 class RegenerateOrgRobot(ApiResource):
   """ Resource for regenerate an organization's robot's token. """
@@ -245,9 +252,9 @@ class RegenerateOrgRobot(ApiResource):
     """ Regenerates the token for an organization robot. """
     permission = AdministerOrganizationPermission(orgname)
     if permission.can():
-      parent = model.get_organization(orgname)
-      robot, password = model.regenerate_robot_token(robot_shortname, parent)
-      log_action('regenerate_robot_token', orgname,  {'robot': robot_shortname})
+      parent = model.organization.get_organization(orgname)
+      robot, password = model.user.regenerate_robot_token(robot_shortname, parent)
+      log_action('regenerate_robot_token', orgname, {'robot': robot_shortname})
       return robot_view(robot.username, password)
 
     raise Unauthorized()