cmsmanage/membershipworks/membershipworks_api.py

import csv
import datetime
from enum import Enum
from io import StringIO

import requests

BASE_URL = "https://api.membershipworks.com"

# extracted from `SF._is.crm` in https://cdn.membershipworks.com/all.js
CRM = {
    0: "Note",
    4: "Profile Updated",
    8: "Scheduled/Reminder Email",
    9: "Renewal Notice",
    10: "Join Date",
    11: "Next Renewal Date",
    12: "Membership Payment",
    13: "Donation",
    14: "Event Activity",
    15: "Conversation",
    16: "Contact Change",
    17: "Label Change",
    18: "Other Payment",
    19: "Cart Payment",
    20: "Payment Failed",
    21: "Billing Updated",
    22: "Form Checkout",
    23: "Event Payment",
    24: "Invoice",
    25: "Invoice Payment",
    26: "Renewal",
    27: "Payment",
}


# Types of fields ("typ"), extracted from a html snippet in all.js + some guessing
class FieldType(Enum):
    TEXT_INPUT = 1
    PASSWORD = 2  # inferred from data
    SIMPLE_TEXT_AREA = 3
    RICH_TEXT_AREA = 4
    ADDRESS = 7
    CHECKBOX = 8
    SELECT = 9
    # Display value stored in field
    READ_ONLY = 11
    REQUIRED_WAIVER_TERMS = 12


# more constants, this time extracted from the members csv export in all.js
staticFlags = {
    "pos": {"lbl": "Position/relation (contacts)"},
    "nte": {"lbl": "Admin note (contacts)"},
    "pwd": {"lbl": "Password"},
    "lgo": {"lbl": "Business card image URLs"},
    "pfx": {"lbl": "Profile gallery image URLs"},
    "lvl": {"lbl": "Membership levels"},
    "aon": {"lbl": "Membership add-ons"},
    "lbl": {"lbl": "Labels"},
    "joi": {"lbl": "Join date"},
    "end": {"lbl": "Renewal date"},
    "spy": {"lbl": "Billing method"},
    "rid": {"lbl": "Auto recurring billing ID"},
    "ipa": {"lbl": "IP address"},
    "_id": {"lbl": "Account ID"},
}


class MembershipWorksRemoteError(Exception):
    def __init__(self, reason, r):
        super().__init__(
            f"Error when attempting {reason}: {r.status_code} {r.reason}\n{r.text}"
        )


class MembershipWorks:
    def __init__(self):
        self.sess = requests.Session()
        self.org_info = None
        self.auth_token = None
        self.org_num = None

    def login(self, username, password):
        """Authenticate against the membershipworks api"""
        r = self.sess.post(
            BASE_URL + "/v2/account/session",
            data={"eml": username, "pwd": password},
            headers={"X-Org": "10000"},
        )
        if r.status_code != requests.codes.ok or "SF" not in r.json():
            raise MembershipWorksRemoteError("login", r)
        self.org_info = r.json()
        self.auth_token = self.org_info["SF"]
        self.org_num = self.org_info["org"]
        self.sess.headers.update(
            {
                "X-Org": str(self.org_num),
                "X-Role": "admin",
                "Authorization": "Bearer " + self.auth_token,
            }
        )

    def _inject_auth(self, kwargs):
        # TODO: should probably be a decorator or something
        if self.auth_token is None:
            raise RuntimeError("Not Logged in to MembershipWorks")
        # add auth token to params
        if "params" not in kwargs:
            kwargs["params"] = {}
        kwargs["params"]["SF"] = self.auth_token

    def _get_v1(self, *args, **kwargs):
        self._inject_auth(kwargs)
        # TODO: should probably do some error handling in here
        return requests.get(*args, **kwargs)

    def _post_v1(self, *args, **kwargs):
        self._inject_auth(kwargs)
        # TODO: should probably do some error handling in here
        return requests.post(*args, **kwargs)

    def _all_fields(self):
        """Parse out a list of fields from the org data.

        Is this terrible? Yes. Also, not dissimilar to how MW does it
        in all.js.
        """
        fields = staticFlags.copy()

        # TODO: this will take the later option, if the same field
        # used in mulitple places. I don't know which lbl is used for
        # csv export

        # anm: member signup, acc: member manage, adm: admin manage
        for screen_type in ["anm", "acc", "adm"]:
            for box in self.org_info["tpl"][screen_type]:
                for element in box["box"]:
                    if not isinstance(element["dat"], str):
                        for field in element["dat"]:
                            if "_id" in field and field["_id"] not in fields:
                                fields[field["_id"]] = field

        return fields

    def _parse_flags(self):
        """Parse the flags out of the org data.

        This is terrible, and there might be a better way to do this.
        """
        ret = {"folders": {}, "levels": {}, "addons": {}, "labels": {}}

        for dek in self.org_info["dek"]:
            # TODO: there must be a better way. this is stupid
            if dek["dek"] == 1:
                ret["folders"][dek["lbl"]] = dek["did"]
            elif "cur" in dek:
                ret["levels"][dek["lbl"]] = dek["did"]
            elif "mux" in dek:
                ret["addons"][dek["lbl"]] = dek["did"]
            else:
                ret["labels"][dek["lbl"]] = dek["did"]

        return ret

    def get_member_ids(self, folders):
        folder_map = self._parse_flags()["folders"]

        r = self.sess.get(
            BASE_URL + "/v2/accounts",
            params={"dek": ",".join([folder_map[f] for f in folders])},
        )
        if r.status_code != requests.codes.ok or "usr" not in r.json():
            raise MembershipWorksRemoteError("user listing", r)

        # get list of member ID matching the search
        # dedup with set() to work around people with alt uids
        # TODO: figure out why people have alt uids
        return {user["uid"] for user in r.json()["usr"]}

    # TODO: has issues with aliasing header names:
    #       ex: "Personal Studio Space" Label vs Membership Addon/Field
    def get_members(self, folders, columns):
        """Pull the members csv from the membershipworks api
        folders: a list of the names of the folders to get
                 (see folder_map in this function for mapping to ids)
        columns: which columns to get"""
        ids = self.get_member_ids(folders)

        # get members CSV
        # TODO: maybe can just use previous get instead? would return JSON
        r = self._post_v1(
            BASE_URL + "/v1/csv",
            data={
                "_rt": "946702800",  # unknown
                "mux": "",  # unknown
                "tid": ",".join(ids),  # ids of members to get
                "var": columns,
            },
        )
        if r.status_code != requests.codes.ok:
            raise MembershipWorksRemoteError("csv generation", r)

        if r.text[0] == "\ufeff":
            r.encoding = r.encoding + "-sig"

        return list(csv.DictReader(StringIO(r.text)))

    def get_transactions(self, start_date, end_date, json=False):
        """Get the transactions between start_date and end_date

        Dates can be datetime.date or datetime.datetime

        json gets a different version of the transactions list,
        which contains a different set information
        """
        r = self._get_v1(
            BASE_URL + "/v1/csv",
            params={
                "crm": ",".join(str(k) for k in CRM),
                **({"txl": ""} if json else {}),
                "sdp": start_date.strftime("%s"),
                "edp": end_date.strftime("%s"),
            },
        )
        if r.status_code != requests.codes.ok:
            raise MembershipWorksRemoteError("csv generation", r)
        if json:
            return r.json()
        else:
            if r.text[0] == "\ufeff":
                r.encoding = r.encoding + "-sig"

            return list(csv.DictReader(StringIO(r.text)))

    def get_all_members(self):
        """Get all the data for all the members"""
        folders = self._parse_flags()["folders"].keys()
        fields = self._all_fields()
        members = self.get_members(folders, ",".join(fields.keys()))
        return members

    def get_events_list(
        self,
        start_date: datetime.datetime = None,
        end_date: datetime.datetime = None,
        categories=False,
    ):
        """Retrive a list of events between `start_date` and `end_date`, optionally including category information"""
        if start_date is None and end_date is None:
            raise ValueError("Must specify one of start_date or end_date")

        params = {}
        if start_date is not None:
            params["sdp"] = start_date.strftime("%s")
        if end_date is not None:
            params["edp"] = end_date.strftime("%s")
        if categories is not None:
            params["_st"] = ""

        r = self.sess.get(BASE_URL + "/v2/events", params=params)
        return r.json()

    def get_event_by_eid(self, eid: str):
        """Retrieve a specific event by its event id (eid)"""
        r = self.sess.get(
            BASE_URL + "/v2/event",
            params={"eid": eid},
        )
        return r.json()

    def get_event_by_url(self, url: str):
        """Retrieve a specific event by its url"""
        r = self.sess.get(
            BASE_URL + "/v2/event",
            params={"url": url},
        )
        return r.json()
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`import csv`
Switch from Black to Ruff for formatting, add linting/import sorting 2024-01-17 21:17:24 -05:00			`import datetime`
Enable ruff's "pylint" rules 2024-01-18 14:00:36 -05:00			`from enum import Enum`
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`from io import StringIO`

			`import requests`

			`BASE_URL = "https://api.membershipworks.com"`

			# extracted from `SF._is.crm` in https://cdn.membershipworks.com/all.js
			`CRM = {`
			`0: "Note",`
			`4: "Profile Updated",`
			`8: "Scheduled/Reminder Email",`
			`9: "Renewal Notice",`
			`10: "Join Date",`
			`11: "Next Renewal Date",`
			`12: "Membership Payment",`
			`13: "Donation",`
			`14: "Event Activity",`
			`15: "Conversation",`
			`16: "Contact Change",`
			`17: "Label Change",`
			`18: "Other Payment",`
			`19: "Cart Payment",`
			`20: "Payment Failed",`
			`21: "Billing Updated",`
			`22: "Form Checkout",`
			`23: "Event Payment",`
			`24: "Invoice",`
			`25: "Invoice Payment",`
			`26: "Renewal",`
			`27: "Payment",`
			`}`

Enable ruff's "pylint" rules 2024-01-18 14:00:36 -05:00
			`# Types of fields ("typ"), extracted from a html snippet in all.js + some guessing`
			`class FieldType(Enum):`
			`TEXT_INPUT = 1`
			`PASSWORD = 2 # inferred from data`
			`SIMPLE_TEXT_AREA = 3`
			`RICH_TEXT_AREA = 4`
			`ADDRESS = 7`
			`CHECKBOX = 8`
			`SELECT = 9`
			`# Display value stored in field`
			`READ_ONLY = 11`
			`REQUIRED_WAIVER_TERMS = 12`

membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00
			`# more constants, this time extracted from the members csv export in all.js`
			`staticFlags = {`
			`"pos": {"lbl": "Position/relation (contacts)"},`
			`"nte": {"lbl": "Admin note (contacts)"},`
			`"pwd": {"lbl": "Password"},`
			`"lgo": {"lbl": "Business card image URLs"},`
			`"pfx": {"lbl": "Profile gallery image URLs"},`
			`"lvl": {"lbl": "Membership levels"},`
			`"aon": {"lbl": "Membership add-ons"},`
			`"lbl": {"lbl": "Labels"},`
			`"joi": {"lbl": "Join date"},`
			`"end": {"lbl": "Renewal date"},`
			`"spy": {"lbl": "Billing method"},`
			`"rid": {"lbl": "Auto recurring billing ID"},`
			`"ipa": {"lbl": "IP address"},`
			`"_id": {"lbl": "Account ID"},`
			`}`


			`class MembershipWorksRemoteError(Exception):`
			`def __init__(self, reason, r):`
			`super().__init__(`
			`f"Error when attempting {reason}: {r.status_code} {r.reason}\n{r.text}"`
			`)`


			`class MembershipWorks:`
			`def __init__(self):`
			`self.sess = requests.Session()`
			`self.org_info = None`
			`self.auth_token = None`
			`self.org_num = None`

			`def login(self, username, password):`
			`"""Authenticate against the membershipworks api"""`
			`r = self.sess.post(`
			`BASE_URL + "/v2/account/session",`
			`data={"eml": username, "pwd": password},`
			`headers={"X-Org": "10000"},`
			`)`
Enable ruff's "pylint" rules 2024-01-18 14:00:36 -05:00			`if r.status_code != requests.codes.ok or "SF" not in r.json():`
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`raise MembershipWorksRemoteError("login", r)`
			`self.org_info = r.json()`
			`self.auth_token = self.org_info["SF"]`
			`self.org_num = self.org_info["org"]`
			`self.sess.headers.update(`
			`{`
			`"X-Org": str(self.org_num),`
			`"X-Role": "admin",`
			`"Authorization": "Bearer " + self.auth_token,`
			`}`
			`)`

			`def _inject_auth(self, kwargs):`
			`# TODO: should probably be a decorator or something`
			`if self.auth_token is None:`
			`raise RuntimeError("Not Logged in to MembershipWorks")`
			`# add auth token to params`
			`if "params" not in kwargs:`
			`kwargs["params"] = {}`
			`kwargs["params"]["SF"] = self.auth_token`

			`def _get_v1(self, args, *kwargs):`
			`self._inject_auth(kwargs)`
			`# TODO: should probably do some error handling in here`
			`return requests.get(args, *kwargs)`

			`def _post_v1(self, args, *kwargs):`
			`self._inject_auth(kwargs)`
			`# TODO: should probably do some error handling in here`
			`return requests.post(args, *kwargs)`

			`def _all_fields(self):`
			`"""Parse out a list of fields from the org data.`

			`Is this terrible? Yes. Also, not dissimilar to how MW does it`
			`in all.js.`
			`"""`
			`fields = staticFlags.copy()`

			`# TODO: this will take the later option, if the same field`
			`# used in mulitple places. I don't know which lbl is used for`
			`# csv export`

			`# anm: member signup, acc: member manage, adm: admin manage`
			`for screen_type in ["anm", "acc", "adm"]:`
			`for box in self.org_info["tpl"][screen_type]:`
			`for element in box["box"]:`
Switch from Black to Ruff for formatting, add linting/import sorting 2024-01-17 21:17:24 -05:00			`if not isinstance(element["dat"], str):`
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`for field in element["dat"]:`
Enable/apply ruff's "flake6-simplify" rules 2024-01-19 15:16:47 -05:00			`if "_id" in field and field["_id"] not in fields:`
			`fields[field["_id"]] = field`
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00
			`return fields`

			`def _parse_flags(self):`
			`"""Parse the flags out of the org data.`

			`This is terrible, and there might be a better way to do this.`
			`"""`
			`ret = {"folders": {}, "levels": {}, "addons": {}, "labels": {}}`

			`for dek in self.org_info["dek"]:`
			`# TODO: there must be a better way. this is stupid`
			`if dek["dek"] == 1:`
			`ret["folders"][dek["lbl"]] = dek["did"]`
			`elif "cur" in dek:`
			`ret["levels"][dek["lbl"]] = dek["did"]`
			`elif "mux" in dek:`
			`ret["addons"][dek["lbl"]] = dek["did"]`
			`else:`
			`ret["labels"][dek["lbl"]] = dek["did"]`

			`return ret`

			`def get_member_ids(self, folders):`
			`folder_map = self._parse_flags()["folders"]`

			`r = self.sess.get(`
			`BASE_URL + "/v2/accounts",`
			`params={"dek": ",".join([folder_map[f] for f in folders])},`
			`)`
Enable ruff's "pylint" rules 2024-01-18 14:00:36 -05:00			`if r.status_code != requests.codes.ok or "usr" not in r.json():`
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`raise MembershipWorksRemoteError("user listing", r)`

			`# get list of member ID matching the search`
			`# dedup with set() to work around people with alt uids`
			`# TODO: figure out why people have alt uids`
Enable ruff's "comprehensions" rules 2024-01-18 13:14:00 -05:00			`return {user["uid"] for user in r.json()["usr"]}`
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00
			`# TODO: has issues with aliasing header names:`
			`# ex: "Personal Studio Space" Label vs Membership Addon/Field`
			`def get_members(self, folders, columns):`
			`"""Pull the members csv from the membershipworks api`
			`folders: a list of the names of the folders to get`
			`(see folder_map in this function for mapping to ids)`
			`columns: which columns to get"""`
			`ids = self.get_member_ids(folders)`

			`# get members CSV`
			`# TODO: maybe can just use previous get instead? would return JSON`
			`r = self._post_v1(`
			`BASE_URL + "/v1/csv",`
			`data={`
			`"_rt": "946702800", # unknown`
			`"mux": "", # unknown`
			`"tid": ",".join(ids), # ids of members to get`
			`"var": columns,`
			`},`
			`)`
Enable ruff's "pylint" rules 2024-01-18 14:00:36 -05:00			`if r.status_code != requests.codes.ok:`
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`raise MembershipWorksRemoteError("csv generation", r)`
membershipworks: Handle Byte Order Mark (BOM) in CSVs 2022-05-31 12:31:25 -04:00
			`if r.text[0] == "\ufeff":`
			`r.encoding = r.encoding + "-sig"`

membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`return list(csv.DictReader(StringIO(r.text)))`

			`def get_transactions(self, start_date, end_date, json=False):`
			`"""Get the transactions between start_date and end_date`

			`Dates can be datetime.date or datetime.datetime`

			`json gets a different version of the transactions list,`
			`which contains a different set information`
			`"""`
			`r = self._get_v1(`
			`BASE_URL + "/v1/csv",`
			`params={`
Enable/apply ruff's "flake6-simplify" rules 2024-01-19 15:16:47 -05:00			`"crm": ",".join(str(k) for k in CRM),`
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`**({"txl": ""} if json else {}),`
			`"sdp": start_date.strftime("%s"),`
			`"edp": end_date.strftime("%s"),`
			`},`
			`)`
Enable ruff's "pylint" rules 2024-01-18 14:00:36 -05:00			`if r.status_code != requests.codes.ok:`
membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`raise MembershipWorksRemoteError("csv generation", r)`
			`if json:`
			`return r.json()`
			`else:`
membershipworks: Handle Byte Order Mark (BOM) in CSVs 2022-05-31 12:31:25 -04:00			`if r.text[0] == "\ufeff":`
			`r.encoding = r.encoding + "-sig"`

membershipworks: Add API module and command for scraping data 2022-02-28 16:06:10 -05:00			`return list(csv.DictReader(StringIO(r.text)))`

			`def get_all_members(self):`
			`"""Get all the data for all the members"""`
			`folders = self._parse_flags()["folders"].keys()`
			`fields = self._all_fields()`
			`members = self.get_members(folders, ",".join(fields.keys()))`
			`return members`
membershipworks: Add methods to get event listing and events by eid/url 2022-10-28 15:27:03 -04:00
membershipworks: Allow get_events_list to use end date, retrieve categories 2023-12-30 13:27:19 -05:00			`def get_events_list(`
			`self,`
			`start_date: datetime.datetime = None,`
			`end_date: datetime.datetime = None,`
			`categories=False,`
			`):`
			"""Retrive a list of events between `start_date` and `end_date`, optionally including category information"""
			`if start_date is None and end_date is None:`
			`raise ValueError("Must specify one of start_date or end_date")`

			`params = {}`
			`if start_date is not None:`
			`params["sdp"] = start_date.strftime("%s")`
			`if end_date is not None:`
			`params["edp"] = end_date.strftime("%s")`
			`if categories is not None:`
			`params["_st"] = ""`

			`r = self.sess.get(BASE_URL + "/v2/events", params=params)`
membershipworks: Add methods to get event listing and events by eid/url 2022-10-28 15:27:03 -04:00			`return r.json()`

			`def get_event_by_eid(self, eid: str):`
			`"""Retrieve a specific event by its event id (eid)"""`
			`r = self.sess.get(`
			`BASE_URL + "/v2/event",`
			`params={"eid": eid},`
			`)`
			`return r.json()`

			`def get_event_by_url(self, url: str):`
			`"""Retrieve a specific event by its url"""`
			`r = self.sess.get(`
			`BASE_URL + "/v2/event",`
			`params={"url": url},`
			`)`
			`return r.json()`