BB2-4250: Initial commit - sorting out how to use the flag in different places

JamesDemeryNava · JamesDemeryNava · commit eb64ae958310 · 2025-11-21T09:18:18.000-05:00
diff --git a/apps/dot_ext/views/authorization.py b/apps/dot_ext/views/authorization.py
@@ -4,10 +4,12 @@
 from functools import wraps
 from time import strftime
 
+from django.contrib.auth import get_user_model
 from django.contrib.auth.views import redirect_to_login
 from django.http import JsonResponse
 from django.http.response import HttpResponse, HttpResponseBadRequest
 from django.template.response import TemplateResponse
+from django.core.exceptions import ObjectDoesNotExist
 from django.utils.decorators import method_decorator
 from django.views.decorators.csrf import csrf_exempt
 from django.views.decorators.debug import sensitive_post_parameters
@@ -20,7 +22,7 @@
 from oauth2_provider.views.introspect import (
     IntrospectTokenView as DotIntrospectTokenView,
 )
-from waffle import switch_is_active
+from waffle import switch_is_active, get_waffle_flag_model
 from oauth2_provider.models import get_application_model
 from oauthlib.oauth2 import AccessDeniedError
 from oauthlib.oauth2.rfc6749.errors import InvalidClientError, InvalidGrantError, InvalidRequestError
@@ -102,6 +104,19 @@ def _has_param(self, request, key):
     def _check_for_required_params(self, request):
         missing_params = []
         v3 = True if request.path.startswith('/v3/o/authorize') else False
+        flag = get_waffle_flag_model().get("v3_early_adopter")
+        req_meta = request.META
+        url_query = parse_qs(req_meta.get('QUERY_STRING'))
+        client_id = url_query.get('client_id', [None])
+        try:
+            app = get_application_model().objects.get(client_id=client_id[0])
+            application_user = get_user_model().objects.get(id=app.user_id)
+            if flag.id is not None and flag.is_active_for_user(application_user):
+                print("flag is active for this user")
+            else:
+                print("flag is not active for this user")
+        except ObjectDoesNotExist:
+            print("object not found")
 
         if switch_is_active('require_pkce'):
             if not request.GET.get('code_challenge', None):
diff --git a/apps/fhir/bluebutton/views/generic.py b/apps/fhir/bluebutton/views/generic.py
@@ -96,6 +96,7 @@ def initial(self, request, resource_type, *args, **kwargs):
         if "HTTP_AUTHORIZATION" in req_meta:
             access_token = req_meta["HTTP_AUTHORIZATION"].split(" ")[1]
             try:
+                # TODO-4250 is this a place we need a flag check as well?
                 at = AccessToken.objects.get(token=access_token)
                 log_message = {
                     "name": "FHIR Endpoint AT Logging",
diff --git a/apps/fhir/bluebutton/views/read.py b/apps/fhir/bluebutton/views/read.py
@@ -31,6 +31,7 @@ def initial(self, request, *args, **kwargs):
         return super().initial(request, self.resource_type, *args, **kwargs)
 
     def get(self, request, *args, **kwargs):
+        # 4250-TODO: Do we check for the flag here as well? Implement the same thing in search? In case of refresh token?
         return super().get(request, self.resource_type, *args, **kwargs)
 
     def build_parameters(self, *args, **kwargs):
