api/views.py

import os
import requests
import json
import zoneinfo
import httpx
import random
import string
import datetime
import uuid
import re
from functools import wraps
from urllib.parse import quote
from django.utils import timezone
from django.http import JsonResponse, HttpResponseRedirect
from django.contrib.auth import authenticate, login, logout
from django.views.decorators.csrf import csrf_exempt
from django.middleware.csrf import get_token
from django.db.models import Q
from django.contrib.auth.models import User
import openai
from mysite import settings
from core.models import UserProfile, UserAlias, UserSession
from core.models import Review, CustomCheckInInterval
from core.models import GroupProfile, Recommendation
from core.models import Paper, PaperTranslation, PaperChat
from core.paper import guess_identifier_type, get_paper_info, convert_string_to_datetime
from core.paper import get_stat_all, get_stat_this_month, get_stat_last_month, get_stat_journal
from core.paper import convert_paper_info

def json_post_handler(func):
    @wraps(func)
    def wrapper(request, *args, **kwargs):
        if request.method != 'POST':
            return JsonResponse({'success': False, 'error': 'Invalid request method'}, status=405)
        try:
            data = json.loads(request.body)
            request.json_data = data
        except json.JSONDecodeError:
            return JsonResponse({'success': False, 'error': 'Invalid JSON'}, status=400)
        return func(request, *args, **kwargs)
    return wrapper

def require_login(func):
    @wraps(func)
    def wrapper(request, *args, **kwargs):
        if not request.user.is_authenticated:
            return JsonResponse({'success': False, 'error': 'Authentication required'}, status=401)
        return func(request, *args, **kwargs)
    return wrapper

def require_admin(func):
    @wraps(func)
    def wrapper(request, *args, **kwargs):
        if not request.user.is_authenticated or not request.user.is_superuser:
            return JsonResponse({'success': False, 'error': 'Admin required'}, status=401)
        return func(request, *args, **kwargs)
    return wrapper

@csrf_exempt # no csrf token when first login in WeiXin mini program
@json_post_handler
def wx_login(request):
    data = request.json_data
    wx_code = data.get('code', '') or ''
    if not wx_code:
        return JsonResponse({'success': False, 'error': 'Invalid wx_code'}, status=400)

    APP_ID = os.getenv('WX_APP_ID')
    SECRET = os.getenv('WX_SECRET')
    if not APP_ID or not SECRET:
        return JsonResponse({'success': False, 'error': 'Invalid APP_ID or SECRET'}, status=400)

    url = f'https://api.weixin.qq.com/sns/jscode2session?appid={APP_ID}&secret={SECRET}&js_code={wx_code}&grant_type=authorization_code'
    response = requests.get(url)
    if response.status_code != 200:
        return JsonResponse({'success': False, 'error': 'Login failed! res: ' + response.text})
    if response.json().get('errcode', 0) != 0:
        return JsonResponse({'success': False, 'error': 'Login failed! res: ' + response.text})
    session_key = response.json().get('session_key', '') or ''
    openid = response.json().get('openid', '') or ''
    unionid = response.json().get('unionid', '') or ''
    if session_key == '' or (openid == '' and unionid == ''):
        return JsonResponse({'success': False, 'error': 'Login failed! res: ' + response.text})

    nickname = ''
    users = UserProfile.objects.filter(Q(wx_openid=openid) | Q(wx_unionid=unionid))
    if users.count() == 0:
        user = UserProfile(wx_openid=openid, wx_unionid=unionid)
        user.save()
    else:
        user = users[0]
        nickname = user.nickname

    UserSession.objects.filter(user=user, client_type='weixin').delete()
    session = UserSession(user=user, session_key=session_key, client_type='weixin')
    session.save()

    login(request, user.auth_user)
    return JsonResponse({
        'success': True,
        'nickname': nickname,
        'csrfToken': get_token(request), # to WeiXin mini program, make it post request with csrf token in future
        'token': str(session.token),
        'debug': user.debug_mode
    })

def is_token_valid(token):
    try:
        session = UserSession.objects.get(token=token)
        if timezone.now() > session.expires_at:
            return False
        return True
    except UserSession.DoesNotExist:
        return False

@json_post_handler
def update_nickname(request):
    data = request.json_data
    token = data.get('token')
    if not token or not is_token_valid(token):
        return JsonResponse({'success': False, 'error': 'Invalid or expired token'})

    nickname = data.get('nickname')
    if not nickname:
        return JsonResponse({'success': False, 'error': 'Nickname is required'}, status=400)
    
    try:
        session = UserSession.objects.get(token=token)
        user = session.user
        user.nickname = nickname
        user.save()
    except UserSession.DoesNotExist:
        return JsonResponse({'success': False, 'error': 'Invalid token!'})

    return JsonResponse({'success': True})

@json_post_handler
def do_login(request):
    data = request.json_data
    username = data.get('username')
    password = data.get('password')
    if username is None or password is None:
        return JsonResponse({'success': False, 'error': 'Invalid username or password'}, status=400)

    user = authenticate(request, username=username, password=password)
    if user is None or user.core_user_profile.pk != 1:
        return JsonResponse({'success': False, 'error': 'Login failed. Please check your credentials.'})

    UserSession.objects.filter(user=user.core_user_profile, client_type='website').delete()
    session = UserSession(user=user.core_user_profile, client_type='website')
    session.save()

    login(request, user)
    return JsonResponse({
        'success': True,
        'nickname': user.core_user_profile.nickname,
        'token': str(session.token),
        'debug': user.core_user_profile.debug_mode
    })

def do_logout(request):
    logout(request)
    return JsonResponse({'success': True})

def query_user(request, user):
    """
    Return JSON:
    {
        "success": True/False,
        "error": "...", /* empty if succeed */
        "query": "...", /* 查询词 */
        "results": {
            "nickname" : "...", /* 昵称 */
            "username" : "...", /* 用户名 */
        }
    }
    """
    u = UserProfile.objects.filter(nickname=user)
    if u.count() == 0:
        u = UserProfile.objects.filter(auth_user__username=user)
    if u.count() == 0:
        return JsonResponse({"error": "user '" + user + "' not found."})
    else:
        return JsonResponse({
            'success': True,
            "query": user,
            "results": {
                "nickname": u[0].nickname,
                "username": u[0].auth_user.username,
            }})

def query_review(request, id):
    """
    Return JSON:
    {
        "error": "...", /* empty if succeed */
        "query": "...", /* 查询词 */
        "raw": { ... }, /* 访问URL的原始结果 */
        "results": {
            "doi"     : "...", /* DOI，唯一标识，据此可查询到信息 */
            "title"   : "...", /* 文献标题 */
            "journal" : "...", /* 杂志名称 */
            "pub_year": "...", /* 发表年份 */
            "authors" : "...", /* 作者列表，半角逗号或回车隔开 */
            "abstract": "...", /* 摘要 */
            "urls"    : "...", /* 超链接，回车隔开 */
        }
    }
    """
    review_info, raw_dict = get_paper_info(id)
    if review_info is None:
        return JsonResponse({
            'success': False,
            "error": raw_dict
            })

    return JsonResponse({
        'success': True,
        "query": id,
        "raw": raw_dict,
        "results": {
            "doi": review_info.get('doi', '') or '',
            "pmid": review_info.get('pmid', '') or '',
            "arxiv_id": review_info.get('arxiv_id', '') or '',
            "pmcid": review_info.get('pmcid', '') or '',
            "title": review_info.get('title', '') or '',
            "journal": review_info.get('journal', '') or '',
            "pub_year": review_info.get('pub_year', '') or '',
            "authors": review_info.get('authors', []) or [],
            "abstract": review_info.get('abstract', '') or '',
            "urls": review_info.get('urls', []) or [],
        }})

@json_post_handler
@require_login
def query_paper_info(request):
    data = request.json_data
    identifier = data.get('identifier')
    if identifier is None:
        return JsonResponse({'success': False, 'error': f"Invalid request!"})

    identifier_type, identifier = guess_identifier_type(identifier)
    paper_info_old, raw_dict = get_paper_info(identifier)
    paper_info = convert_paper_info(paper_info_old, raw_dict)

    return JsonResponse({
        'success': True,
        'results': {
            'identifier': identifier,
            'identifier_type': identifier_type,
            'title': paper_info.title or '',
            'journal': paper_info.journal or '',
            'pub_date': paper_info.pub_date or '',
            'pub_year': paper_info.pub_year,
            'authors': paper_info.authors or [],
            'affiliations': paper_info.affiliations or [],
            'abstract': paper_info.abstract or '',
            'keywords': paper_info.keywords or [],
            'urls': paper_info.urls or '',
            'doi': paper_info.doi or '',
            'pmid': paper_info.pmid or '',
            'arxiv_id': paper_info.arxiv_id or '',
            'pmcid': paper_info.pmcid or '',
            'cnki_id': paper_info.cnki_id or '',
            'language': paper_info.language or '',
        }
    })

@json_post_handler
@require_login
def submit_review(request):
    data = request.json_data
    review_id = data.get('review_id')
    paper_id = data.get('paper_id')
    comment = data.get('comment')

    if review_id is None or paper_id is None:
        return JsonResponse({'success': False, 'error': f"Invalid request!"})
    review_id = int(review_id)
    paper_id = int(paper_id)

    review = Review.objects.get(pk=review_id)
    if review is None:
        return JsonResponse({'success': False, 'error': f"Review not found: {review_id}"})
    if review.paper.pk != paper_id:
        return JsonResponse({'success': False, 'error': f"Review {review_id} does not match paper {paper_id} (expected {review.paper.pk})"})
    if not request.user.is_superuser and review.creator != request.user.core_user_profile:
        return JsonResponse({'success': False, 'error': f"Review {review_id} is not created by user {request.user.core_user_profile} (expected {review.creator})"})

    if review.comment != comment:
        review.comment = comment
        review.update_time = timezone.now()
        review.save()

    if 'paper' in data:
        paper_info = data['paper']
        any_change = False
        if review.paper.title != paper_info.get('title'):
            review.paper.title = paper_info.get('title')
            any_change = True
        if review.paper.journal != paper_info.get('journal'):
            review.paper.journal = paper_info.get('journal')
            any_change = True
        if review.paper.pub_year != paper_info.get('pub_year'):
            review.paper.pub_year = paper_info.get('pub_year')
            any_change = True
        if review.paper.authors != paper_info.get('authors'):
            review.paper.authors = paper_info.get('authors')
            any_change = True
        if review.paper.affiliations != paper_info.get('affiliations'):
            review.paper.affiliations = paper_info.get('affiliations')
            any_change = True
        if review.paper.abstract != paper_info.get('abstract'):
            review.paper.abstract = paper_info.get('abstract')
            any_change = True
        if review.paper.keywords != paper_info.get('keywords'):
            review.paper.keywords = paper_info.get('keywords')
            any_change = True
        if review.paper.urls != paper_info.get('urls'):
            review.paper.urls = paper_info.get('urls')
            any_change = True
        if review.paper.doi != paper_info.get('doi'):
            review.paper.doi = paper_info.get('doi')
            any_change = True
        if review.paper.pmid != paper_info.get('pmid'):
            review.paper.pmid = paper_info.get('pmid')
            any_change = True
        if review.paper.arxiv_id != paper_info.get('arxiv_id'):
            review.paper.arxiv_id = paper_info.get('arxiv_id')
            any_change = True
        if review.paper.pmcid != paper_info.get('pmcid'):
            review.paper.pmcid = paper_info.get('pmcid')
            any_change = True
        if review.paper.cnki_id != paper_info.get('cnki_id'):
            review.paper.cnki_id = paper_info.get('cnki_id')
            any_change = True
        if review.paper.language != paper_info.get('lang'):
            review.paper.language = paper_info.get('lang')
            any_change = True
        if any_change:
            review.paper.save()

    return JsonResponse({'success': True})

def add_review(request):
    if not request.user.is_authenticated:
        return JsonResponse({
            'success': False,
            'error': 'User is not authenticated!',
        })

    if request.method != 'POST':
        return JsonResponse({
            'success': False,
            'error': 'POST method required!'
            })

    try:
        s = request.POST['username']
        if UserProfile.objects.filter(nickname=s).count() > 0:
            user = UserProfile.objects.filter(nickname=s)[0]
        elif UserProfile.objects.filter(auth_user__username=s).count() > 0:
            user = UserProfile.objects.filter(auth_user__username=s)[0]
        else:
            user = UserProfile(nickname=s)
            user.save()

        if 'create_time' in request.POST:
            s = request.POST['create_time']
            create_time = convert_string_to_datetime(s)
            if create_time is None:
                return JsonResponse({
                    'success': False,
                    'error': f"Invalid format of 'create_time': '{s}'!"
                    })
            create_time = timezone.make_aware(create_time, timezone.get_current_timezone())
        else:
            create_time = timezone.now()

        paper = Paper(
            journal = request.POST['journal'],
            pub_year = request.POST['pub_year'],
            title = request.POST['title']
        )
        review_id = request.POST['review_id']
        paper_info, raw_dict = get_paper_info(review_id)
        if paper_info is not None:
            paper.doi = paper_info.get('doi', '') or ''
            paper.pmid = paper_info.get('pmid', '') or ''
            paper.arxiv_id = paper_info.get('arxiv_id', '') or ''
            paper.pmcid = paper_info.get('pmcid', '') or ''
            paper.authors = "\n".join(paper_info.get('authors', []))
            paper.abstract = paper_info.get('abstract', '') or ''
            paper.urls = "\n".join(paper_info.get('urls', []))
        paper.save()

        review = Review(
            paper = paper,
            creator = user,
            create_time = create_time,
            update_time = create_time,
            comment = request.POST['comment'])
        review.save()

        group_name = request.POST['group_name']
        if group_name:
            group = GroupProfile.objects.get(name=group_name)
            group.reviews.add(review)
            group.save()

    except Exception as e:
        return JsonResponse({
            'success': False,
            'error': f"An error occurred: {e}"
        })

    return JsonResponse({'success': True})

def edit_review(request):
    if not request.user.is_authenticated:
        return JsonResponse({
            'success': False,
            'error': 'User is not authenticated!',
        })

    try:
        id = request.POST['id']
        #review_id = request.POST['review_id']  # TODO: query review info
        p = Review.objects.get(pk=id)
        p.title = request.POST['title']
        p.pub_year = request.POST['pub_year']
        p.journal = request.POST['journal']
        p.comment = request.POST['comment']
        p.save()
    except Exception as e:
        return JsonResponse({
            'success': False,
            'error': f"An error occurred: {e}"
        })

    return JsonResponse({'success': True})

def get_latest_deadline():
    now = timezone.now()
    year = now.year
    month = now.month
    if month == 1:
        year -= 1
        month = 12
    else:
        month -= 1
    cci = CustomCheckInInterval.objects.filter(year=year, month=month)
    if cci.count() > 0:
        deadline = cci.deadline
    else:
        deadline = timezone.make_aware(datetime.datetime(now.year, now.month, 1), timezone.get_current_timezone())
    return deadline

@json_post_handler
@require_login
def delete_review(request):
    data = request.json_data
    review_id = data.get('review_id')
    review = Review.objects.get(pk=review_id)
    if review is None:
        return JsonResponse({'success': False, 'error': f"Review not found: {review_id}"})
    if not request.user.is_superuser:
        if review.creator != request.user.core_user_profile:
            return JsonResponse({
                'success': False,
                'error': f"Review {review_id} is not created by user {request.user.core_user_profile} (expected {review.creator})"
                })
        if review.create_time < get_latest_deadline():
            return JsonResponse({
                'success': False,
                'error': f"Review {review_id} is too old to delete!"
                })
    review.delete_time = timezone.now()
    review.save()
    return JsonResponse({'success': True})

def restore_review(request):

    if not request.user.is_authenticated:
        return JsonResponse({
            'success': False,
            'error': 'User is not authenticated!',
        })

    try:
        id = request.POST['review_id']
        p = Review.objects.get(pk=id)
        p.delete_time = None
        p.save()
    except Exception as e:
        return JsonResponse({
            'success': False,
            'error': f"An error occurred: {e}"
        })

    return JsonResponse({'success': True})

def delete_review_forever(request):
    if not request.user.is_authenticated:
        return JsonResponse({
            'success': False,
            'error': 'User is not authenticated!',
        })

    try:
        id = request.POST['review_id']
        Review.objects.get(pk=id)
        Review.objects.filter(pk=id).delete()
    except Exception as e:
        return JsonResponse({
            'success': False,
            'error': f"An error occurred: {e}"
        })

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def add_search_result(request):
    data = request.json_data
    paper_id = data.get('paper_id')
    comment = data.get('comment') or ''

    user = request.user.core_user_profile
    paper = Paper.objects.get(pk=paper_id)
    if paper is None:
        return JsonResponse({'success': False, 'error': f"Paper not found: {paper_id}"})

    review_list = Review.objects.filter(creator=user, paper=paper)
    if review_list.count() > 0:
        review = review_list[0]
        if review.comment != comment:
            review.comment = comment
            review.update_time = timezone.now()
            review.save()
    else:
        review = Review(paper=paper, creator=user, comment=comment)
        review.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def add_recommendation(request):
    data = request.json_data
    paper_id = data.get('paper_id')
    comment = data.get('comment') or ''

    user = request.user.core_user_profile
    paper = Paper.objects.get(pk=paper_id)
    if paper is None:
        return JsonResponse({'success': False, 'error': f"Paper not found: {paper_id}"})

    review_list = Review.objects.filter(creator=user, paper=paper)
    if review_list.count() > 0:
        review = review_list[0]
        if review.comment != comment:
            review.comment = comment
            review.update_time = timezone.now()
            review.save()
    else:
        review = Review(paper=paper, creator=user, comment=comment)
        review.save()

    for recommendation in Recommendation.objects.filter(user=user, paper=paper, read_time__isnull=True):
        for label in recommendation.labels.all():
            if label not in review.labels.all():
                review.labels.add(label)
        recommendation.read_time = timezone.now()
        recommendation.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def mark_read_recommendation(request):
    data = request.json_data
    paper_id = data.get('paper_id')

    user = request.user.core_user_profile
    paper = Paper.objects.get(pk=paper_id)
    if paper is None:
        return JsonResponse({'success': False, 'error': f"Paper not found: {paper_id}"})

    for recommendation in Recommendation.objects.filter(user=user, paper=paper, read_time__isnull=True):
        recommendation.read_time = timezone.now()
        recommendation.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def restore_recommendation(request):
    data = request.json_data
    paper_id = data.get('paper_id')

    user = request.user.core_user_profile
    paper = Paper.objects.get(pk=paper_id)
    if paper is None:
        return JsonResponse({'success': False, 'error': f"Paper not found: {paper_id}"})

    for recommendation in Recommendation.objects.filter(user=user, paper=paper, read_time__isnull=False):
        recommendation.read_time = None
        recommendation.save()

    return JsonResponse({'success': True})

@json_post_handler
def fetch_rank_full_list(request):
    data = request.json_data
    token = data.get('token')
    if not token or not is_token_valid(token):
        return JsonResponse({'success': False, 'error': 'Invalid or expired token'})

    group_name = data.get('group_name')
    group = GroupProfile.objects.get(name=group_name)
    if group is None:
        return JsonResponse({'success': False, 'error': f"Group not found: {group_name}"})

    reviews = group.reviews.filter(delete_time__isnull=True)
    index = data.get('index', 0)
    if index == 0:
        stat = get_stat_this_month(reviews, group_name)
    elif index == 1:
        stat = get_stat_last_month(reviews, group_name)
    elif index == 2:
        stat = get_stat_all(reviews, group_name)
    elif index == 3:
        stat = get_stat_journal(reviews, group_name)
    else:
        return JsonResponse({'success': False, 'error': f"Invalid index: {index}"})

    return JsonResponse({'success': True, 'results': stat})

@json_post_handler
def fetch_rank_list(request):
    data = request.json_data
    token = data.get('token')
    if not token or not is_token_valid(token):
        return JsonResponse({'success': False, 'error': 'Invalid or expired token'})

    group_name = data.get('group_name')
    group = GroupProfile.objects.get(name=group_name)
    if group is None:
        return JsonResponse({'success': False, 'error': f"Group not found: {group_name}"})

    reviews = group.reviews.filter(delete_time__isnull=True)

    stat_1 = get_stat_this_month(reviews, group_name, top_n=10)
    stat_2 = get_stat_last_month(reviews, group_name, top_n=10)
    stat_3 = get_stat_all(reviews, group_name, top_n=10)
    stat_4 = get_stat_journal(reviews, group_name, top_n=10)

    return JsonResponse({'success': True, 'results': [stat_1, stat_2, stat_3, stat_4]})

def get_user_aliases(user):
    aliases = [user]
    for alias in UserAlias.objects.filter(user=user):
        aliases.append(alias.alias)
    for alias in UserAlias.objects.filter(alias=user):
        aliases.append(alias.user)
    return aliases

@json_post_handler
def fetch_review_list(request):
    data = request.json_data
    token = data.get('token')
    if not token or not is_token_valid(token):
        return JsonResponse({'success': False, 'error': 'Invalid or expired token'})

    group_name = data.get('group_name')
    group = GroupProfile.objects.get(name=group_name)
    if group is None:
        return JsonResponse({
            'success': False,
            'error': f"Group not found: {group_name}"
        })

    reviews = group.reviews.filter(delete_time__isnull=True)
    
    mode = data.get('mode', 0)
    if mode == 0: # all
        pass
    elif mode == 1: # this month
        reviews = reviews.filter(create_time__year=timezone.now().year, create_time__month=timezone.now().month)
    elif mode == 2: # last month
        year = timezone.now().year
        month = timezone.now().month
        if month == 1:
            year -= 1
            month = 12
        else:
            month -= 1
        reviews = reviews.filter(create_time__year=year, create_time__month=month)
    elif mode == 3: # user own
        token = data.get('token')
        user = UserSession.objects.get(token=token).user
        aliases = get_user_aliases(user)
        reviews = reviews.filter(creator__in=aliases)
    else:
        return JsonResponse({
            'success': False,
            'error': f"Invalid mode: {mode}"
        })

    reviews = reviews.order_by('-create_time', '-pk')

    index = data.get('index', 0)
    end_index = index + 10
    return JsonResponse({
        'success': True,
        'results': [{
            'id': p.pk,
            'creator': p.creator.nickname,
            'create_time': timezone.localtime(p.create_time, timezone=zoneinfo.ZoneInfo(settings.TIME_ZONE)).strftime("%Y-%m-%d %H:%M"),
            'pub_year': p.pub_year,
            'title': p.title,
            'journal': p.journal,
            'comment': p.comment,
            'doi': p.doi,
            'pmid': p.pmid,
            'arxiv_id': p.arxiv_id,
            'pmcid': p.pmcid,
        } for p in reviews[index:end_index]]
    })

@json_post_handler
def fetch_review_info(request):
    data = request.json_data
    token = data.get('token')
    if not token or not is_token_valid(token):
        return JsonResponse({'success': False, 'error': 'Invalid or expired token'})

    review_id = data.get('review_id')
    review_info, raw_dict = get_paper_info(review_id)
    if review_info is None:
        return JsonResponse({
            'success': False,
            "error": raw_dict
            })

    return JsonResponse({
        'success': True,
        "results": {
            "title": review_info.get('title', '') or '',
            "journal": review_info.get('journal', '') or '',
            "pub_year": review_info.get('pub_year', '') or '',
        }})

@json_post_handler
def submit_comment(request):
    data = request.json_data
    token = data.get('token')
    if not token or not is_token_valid(token):
        return JsonResponse({'success': False, 'error': 'Invalid or expired token'})

    group_name = data.get('group_name')
    group = GroupProfile.objects.get(name=group_name)
    if group is None:
        return JsonResponse({
            'success': False,
            'error': f"Group not found: {group_name}"
        })

    review_id = data.get('review_id')
    title = data.get('title')
    pub_year = data.get('pub_year')
    journal = data.get('journal')
    nickname = data.get('nickname')
    comment = data.get('comment')

    review_info, raw_dict = get_paper_info(review_id)

    user = UserSession.objects.get(token=token).user
    if user.nickname != nickname:
        user.nickname = nickname
        user.save()

    now = timezone.now()
    review = Review(creator=user,
                    create_time=now,
                    update_time=now,
                    title=title or review_info['title'],
                    pub_year=pub_year or review_info['pub_year'],
                    journal=journal or review_info['journal'],
                    comment=comment)
    if review_info is not None:
        review.doi = review_info['id'].get('doi', '') or ''
        review.pmid = review_info['id'].get('pmid', '') or ''
        review.arxiv_id = review_info['id'].get('arxiv_id', '') or ''
        review.pmcid = review_info['id'].get('pmcid', '') or ''
        review.cnki_id = review_info['id'].get('cnki_id', '') or ''
        review.authors = "\n".join(review_info.get('authors', []))
        review.abstract = review_info.get('abstract', '') or ''
        review.urls = "\n".join(review_info.get('urls', []))

    review.update_time = timezone.now()
    review.save()

    group.reviews.add(review)
    group.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def summarize_by_gpt(request):
    data = request.json_data
    paper_id = data.get('paper_id')
    if paper_id is None:
        return JsonResponse({'success': False, 'error': 'Invalid request!'})
    paper = Paper.objects.get(pk=paper_id)
    if paper is None:
        return JsonResponse({'success': False, 'error': f"Paper not found: {paper_id}"})
    if paper.title is None or paper.title == '':
        return JsonResponse({'success': False, 'error': f"Paper title is empty: {paper_id}"})

    chat_list = PaperChat.objects.filter(paper=paper, user=request.user.core_user_profile)
    if chat_list.count() > 0:
        chat = chat_list[0]
        if chat.chat_response is not None and chat.chat_response != '':
            return JsonResponse({'success': True, 'answer': chat.chat_response})

    chat = PaperChat(paper=paper, user=request.user.core_user_profile)
    chat.chat_request = 'Please summarize and comment on the following literature in Chinese:\n\n'
    chat.chat_request += f"Title: {paper.title}\n\n"
    if paper.abstract is not None and paper.abstract != '':
        chat.chat_request += f"Abstract:\n{paper.abstract}\n\n"
    chat.chat_request += "Please summarize the core ideas and major innovations of the article. Also, please identify any shortcomings or areas for improvement. If it is a study on medicine or biology, please specify key information such as research subjects, types of diseases, research methods used, and sample types. If it involves computational biology, bioinformatics, or high-throughput omics, also mention whether the corresponding data and code are publicly available."

    in_msg = [
        {
            "role": "system",
            "content": "This is a scientific literature reading assistance chatbot. It mainly uses Chinese to communicate with the user."
        },
        {
            "role": "system",
            "content": "You can ask questions about the literature or request a summary of the literature."
        },
        {
            "role": "user",
            "content": chat.chat_request
        },
    ]
    try:
        proxy_url = os.environ.get("OPENAI_PROXY_URL")
        if proxy_url is None or proxy_url == "":
            client = openai.OpenAI()
        else:
            client = openai.OpenAI(http_client=httpx.Client(proxy=proxy_url))
        completion = client.chat.completions.create(
            model = os.environ.get("OPENAI_MODEL"),
            messages = in_msg,
        )
        out_msg = completion.choices[0].message.content.strip()
        if out_msg == '':
            return JsonResponse({'success': False, 'error': 'Failed to summarize the paper!'})
    except Exception as e:
        print("Failed to connect to OpenAI server! " + str(e))
        return JsonResponse({'success': False, 'error': 'Failed to connect to OpenAI server! ' + str(e)})

    chat.response_time = timezone.now()
    chat.chat_response = out_msg
    chat.save()
    return JsonResponse({'success': True, 'answer': chat.chat_response})

def get_weixin_qr(request):
    appid = os.getenv('WEB_APP_ID')
    web_domain = os.getenv('WEB_DOMAIN')
    redirect_uri = quote(f'https://{web_domain}/api/weixin_callback/')
    current_url = request.GET.get('current_url', f'https://{web_domain}/')
    state = quote(current_url)
    url = f"https://open.weixin.qq.com/connect/qrconnect?appid={appid}&redirect_uri={redirect_uri}&response_type=code&scope=snsapi_login&state={state}#wechat_redirect"
    return JsonResponse({'url': url})

def weixin_callback(request):
    code = request.GET.get('code')
    appid = os.getenv('WEB_APP_ID')
    secret = os.getenv('WEB_APP_SECRET')
    token_url = f"https://api.weixin.qq.com/sns/oauth2/access_token?appid={appid}&secret={secret}&code={code}&grant_type=authorization_code"
    response = requests.get(token_url)
    data = response.json()
    access_token = data.get('access_token')
    #expires_in = data.get('expires_in')
    openid = data.get('openid')
    #refresh_token = data.get('refresh_token')
    #scope = data.get('scope')
    unionid = data.get('unionid')
    if openid is None or unionid is None:
        return JsonResponse({'success': False, 'error': 'Invalid openid or unionid'}, status=400)
    
    userinfo_url = f"https://api.weixin.qq.com/sns/userinfo?access_token={access_token}&openid={openid}"
    response2 = requests.get(userinfo_url)
    nickname = str.encode(response2.json()['nickname'], 'latin1').decode('utf8')
    
    profiles = UserProfile.objects.filter(
        Q(wx_unionid=unionid) | Q(wx_openid=openid)
    )
    if profiles.count() == 0 or profiles[0].pk != 1:
        return JsonResponse({'success': False, 'error': 'Login failed. Please check your credentials.'})
    if profiles.count() == 0:
        def generate_random_username():
            letters = string.ascii_letters
            return 'u-' + ''.join(random.choice(letters) for _ in range(10))
        def get_unique_random_username():
            while True:
                username = generate_random_username()
                if User.objects.filter(username=username).count() == 0:
                    return username
        username = get_unique_random_username()      
        user = User(username=username)
        user.save()
        profile = UserProfile(auth_user=user, nickname=nickname, wx_openid=openid, wx_unionid=unionid)
        profile.save()
    else:
        profile = profiles[0]
        user = profile.auth_user
        if profile.nickname != nickname:
            profile.nickname = nickname
            profile.save()
        if profile.wx_openid != openid or profile.wx_unionid != unionid:
            profile.wx_openid = openid
            profile.wx_unionid = unionid
            profile.save()

    UserSession.objects.filter(user=profile, client_type='website').delete()
    session = UserSession(user=profile, session_key='', client_type='website')
    session.save()

    login(request, user)
    redirect_to = request.GET.get('state')
    return HttpResponseRedirect(redirect_to)

def translate_text(s):
    try:
        AZURE_KEY = os.getenv('AZURE_KEY')
        AZURE_ENDPOINT = os.getenv('AZURE_ENDPOINT')
        AZURE_LOCATION = os.getenv('AZURE_LOCATION')
        AZURE_PATH = '/translate'
        constructed_url = AZURE_ENDPOINT + AZURE_PATH

        params = {
            'api-version': '3.0',
            'from': 'en',
            'to': 'zh-Hans',
        }

        headers = {
            'Ocp-Apim-Subscription-Key': AZURE_KEY,
            # location required if you're using a multi-service or regional (not global) resource.
            'Ocp-Apim-Subscription-Region': AZURE_LOCATION,
            'Content-type': 'application/json',
            'X-ClientTraceId': str(uuid.uuid4())
        }

        # You can pass more than one object in body.
        body = [{'text': s}]

        request = requests.post(constructed_url, params=params, headers=headers, json=body)
        response = request.json()
        return True, response[0]['translations'][0]['text']
    except Exception as e:
        return False, f"An error occurred: {e}"

from django.db import transaction, IntegrityError
from django.http import JsonResponse

def handle_translation(request, field_name, translation_func, model, translation_model, translation_field):
    data = request.json_data
    paper_id = data.get('paper_id')

    try:
        paper = Paper.objects.get(pk=paper_id)
    except Paper.DoesNotExist:
        return JsonResponse({'success': False, 'error': f"Paper not found: {paper_id}"})
    
    field_value = getattr(paper, field_name, '').strip()
    if not field_value:
        return JsonResponse({'success': True, 'answer': ''})

    # 预先检查是否已经有翻译，减少不必要的翻译操作
    translation_instance = translation_model.objects.filter(paper=paper).first()
    if translation_instance and getattr(translation_instance, translation_field):
        return JsonResponse({'success': True, 'answer': getattr(translation_instance, translation_field)})

    # 执行耗时的翻译操作
    success, result_text = translation_func(field_value)
    if not success:
        return JsonResponse({'success': False, 'error': result_text})

    # 使用数据库事务和锁来避免并发问题
    try:
        with transaction.atomic():
            translation_instance, created = translation_model.objects.select_for_update().get_or_create(paper=paper)
            if not created and getattr(translation_instance, translation_field):
                return JsonResponse({'success': True, 'answer': getattr(translation_instance, translation_field)})

            # 更新翻译内容
            setattr(translation_instance, translation_field, result_text)
            translation_instance.save()

    except IntegrityError:
        # 处理并发情况下的重复创建问题
        translation_instance = translation_model.objects.get(paper=paper)
        setattr(translation_instance, translation_field, result_text)
        translation_instance.save()

    return JsonResponse({'success': True, 'answer': result_text})

@json_post_handler
def translate_title(request):
    return handle_translation(
        request=request,
        field_name='title',
        translation_func=translate_text,
        model=Paper,
        translation_model=PaperTranslation,
        translation_field='title_cn'
    )

@json_post_handler
def translate_abstract(request):
    return handle_translation(
        request=request,
        field_name='abstract',
        translation_func=translate_text,
        model=Paper,
        translation_model=PaperTranslation,
        translation_field='abstract_cn'
    )

def parse_pub_year(pub_date):
    pattern = r"^[0-9]{4}(\s|-)"
    if re.match(pattern, pub_date):
        return pub_date[:4]
    dt = convert_string_to_datetime(pub_date)
    if dt:
        return dt.year
    return None

def update_paper_by_json_data(paper, paper_data):
    pub_date = paper_data.get('pub_date')
    pub_year = parse_pub_year(pub_date)
    authors = paper_data.get('authors')
    affiliations = paper_data.get('affiliations')
    abstract = paper_data.get('abstract')
    keywords = paper_data.get('keywords')
    urls = paper_data.get('urls')
    doi = paper_data.get('doi')
    pmid = paper_data.get('pmid')
    arxiv_id = paper_data.get('arxiv_id')
    pmcid = paper_data.get('pmcid')
    cnki_id = paper_data.get('cnki_id')
    language = paper_data.get('language')

    any_change = False
    if pub_date and paper.pub_date != pub_date:
        paper.pub_date = pub_date
        any_change = True
    if pub_year and paper.pub_year != pub_year:
        paper.pub_year = pub_year
        any_change = True
    if authors and paper.authors != authors:
        paper.authors = authors
        any_change = True
    if affiliations and paper.affiliations != affiliations:
        paper.affiliations = affiliations
        any_change = True
    if abstract and paper.abstract != abstract:
        paper.abstract = abstract
        any_change = True
    if keywords and paper.keywords != keywords:
        paper.keywords = keywords
        any_change = True
    if urls and paper.urls != urls:
        paper.urls = urls
        any_change = True
    if doi and paper.doi != doi:
        paper.doi = doi
        any_change = True
    if pmid and paper.pmid != pmid:
        paper.pmid = pmid
        any_change = True
    if arxiv_id and paper.arxiv_id != arxiv_id:
        paper.arxiv_id = arxiv_id
        any_change = True
    if pmcid and paper.pmcid != pmcid:
        paper.pmcid = pmcid
        any_change = True
    if cnki_id and paper.cnki_id != cnki_id:
        paper.cnki_id = cnki_id
        any_change = True
    if language and paper.language != language:
        paper.language = language
        any_change = True
    if any_change:
        paper.save()

@json_post_handler
@require_login
def check_in(request):
    data = request.json_data

    doi = data.get('paper', {}).get('doi')
    pmid = data.get('paper', {}).get('pmid')
    arxiv_id = data.get('paper', {}).get('arxiv_id')
    if doi:
        paper = Paper.objects.filter(doi=doi).first()
    elif pmid:
        paper = Paper.objects.filter(pmid=pmid).first()
    elif arxiv_id:
        paper = Paper.objects.filter(arxiv_id=arxiv_id).first()

    title = data.get('paper', {}).get('title')
    journal = data.get('paper', {}).get('journal')
    if not paper or (paper.title != title or paper.journal != journal):
        paper = Paper(title=title, journal=journal)
        paper.save()

    if 'paper' in data:
        update_paper_by_json_data(paper, data.get('paper'))

    review = Review(paper=paper, creator=request.user.core_user_profile, comment=data.get('comment'))
    review.save()

    group_name = 'xiangma'
    if group_name:
        group = GroupProfile.objects.get(name=group_name)
        group.reviews.add(review)
        group.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_admin
def check_in_by_admin(request):
    data = request.json_data

    doi = data.get('paper', {}).get('doi')
    pmid = data.get('paper', {}).get('pmid')
    arxiv_id = data.get('paper', {}).get('arxiv_id')
    if doi:
        paper = Paper.objects.filter(doi=doi).first()
    elif pmid:
        paper = Paper.objects.filter(pmid=pmid).first()
    elif arxiv_id:
        paper = Paper.objects.filter(arxiv_id=arxiv_id).first()
    else:
        paper = None

    title = data.get('paper', {}).get('title')
    journal = data.get('paper', {}).get('journal')
    if not paper or (paper.title != title or paper.journal != journal):
        paper = Paper(title=title, journal=journal)
        paper.save()

    if 'paper' in data:
        update_paper_by_json_data(paper, data.get('paper'))

    user = UserProfile.objects.filter(nickname=data.get('user')).first()
    if not user:
        return JsonResponse({'success': False, 'error': f"User not found: {data.get('user')}"})
    check_in_time = data.get('check_in_time')
    if not check_in_time:
        return JsonResponse({'success': False, 'error': f"Invalid check_in_time: {check_in_time}"})
    check_in_time = convert_string_to_datetime(check_in_time)
    if not check_in_time:
        return JsonResponse({'success': False, 'error': f"Invalid check_in_time: {check_in_time}"})
    check_in_time = timezone.make_aware(check_in_time, timezone.get_current_timezone())

    review = Review(paper=paper, creator=user, comment=data.get('comment'),
                    create_time=check_in_time, update_time=check_in_time)
    review.save()

    group_name = 'xiangma'
    if group_name:
        group = GroupProfile.objects.get(name=group_name)
        group.reviews.add(review)
        group.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def create_user(request):
    data = request.json_data
    username = data.get('username')
    print(f"create_user: {username}")
    profile = UserProfile(nickname=username)
    profile.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def new_remove_paper(request):
    data = request.json_data
    paper_id = data.get('paper_id')

    paper = Paper.objects.get(pk=paper_id)
    if not paper:
        return JsonResponse({'success': False, 'error': f"Paper not found: {paper_id}"})

    user = request.user.core_user_profile
    review_list = Review.objects.filter(paper=paper, delete_time__isnull=True, creator=user)
    if review_list.count() > 0:
        for review in review_list:
            review.delete_time = timezone.now()
            review.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def new_restore_paper(request):
    data = request.json_data
    paper_id = data.get('paper_id')

    paper = Paper.objects.get(pk=paper_id)
    if not paper:
        return JsonResponse({'success': False, 'error': f"Paper not found: {paper_id}"})

    user = request.user.core_user_profile
    review_list = Review.objects.filter(paper=paper, delete_time__isnull=False, creator=user)
    if review_list.count() > 0:
        for review in review_list:
            review.delete_time = None
            review.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def new_remove_paper_permanently(request):
    data = request.json_data
    paper_id = data.get('paper_id')

    paper = Paper.objects.get(pk=paper_id)
    if not paper:
        return JsonResponse({'success': False, 'error': f"Paper not found: {paper_id}"})

    user = request.user.core_user_profile
    Review.objects.filter(paper=paper, delete_time__isnull=True, creator=user).delete()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def new_edit_review(request):
    data = request.json_data
    review_id = data.get('review_id')
    comment = data.get('comment')

    review = Review.objects.get(pk=review_id)
    if not review:
        return JsonResponse({'success': False, 'error': f"Review not found: {review_id}"})

    user = request.user.core_user_profile
    if review.creator != user:
        return JsonResponse({'success': False, 'error': f"Review {review_id} is not created by user {user}"})

    review.comment = comment
    review.update_time = timezone.now()
    review.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def new_remove_review(request):
    data = request.json_data
    review_id = data.get('review_id')

    review = Review.objects.get(pk=review_id)
    if not review:
        return JsonResponse({'success': False, 'error': f"Review not found: {review_id}"})

    user = request.user.core_user_profile
    if review.creator != user:
        return JsonResponse({'success': False, 'error': f"Review {review_id} is not created by user {user}"})

    review.delete_time = timezone.now()
    review.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def new_restore_review(request):
    data = request.json_data
    review_id = data.get('review_id')

    review = Review.objects.get(pk=review_id)
    if not review:
        return JsonResponse({'success': False, 'error': f"Review not found: {review_id}"})

    user = request.user.core_user_profile
    if review.creator != user:
        return JsonResponse({'success': False, 'error': f"Review {review_id} is not created by user {user}"})

    review.delete_time = None
    review.save()

    return JsonResponse({'success': True})

@json_post_handler
@require_login
def new_remove_review_permanently(request):
    data = request.json_data
    review_id = data.get('review_id')

    review = Review.objects.get(pk=review_id)
    if not review:
        return JsonResponse({'success': False, 'error': f"Review not found: {review_id}"})

    user = request.user.core_user_profile
    if review.creator != user:
        return JsonResponse({'success': False, 'error': f"Review {review_id} is not created by user {user}"})

    review.delete()
    return JsonResponse({'success': True})

@require_login
def username_autocomplete(request):
    if 'term' in request.GET:
        term = request.GET.get('term')
        print(f"term: '{term}'")
        qs = UserProfile.objects.filter(nickname__icontains=term)
        usernames = list(qs.values_list('nickname', flat=True))
        return JsonResponse(usernames, safe=False)
    return JsonResponse([], safe=False)