furizon_webint/app.py

from sanic import Sanic, response, exceptions
from sanic.response import text, html, redirect, raw
from jinja2 import Environment, FileSystemLoader
from time import time
import httpx
import re
import json
import logging
from os.path import join
from ext import *
from config import *
from aztec_code_generator import AztecCode
from propic import resetDefaultPropic
from io import BytesIO
from asyncio import Queue
import sqlite3

log = logging.getLogger()

app = Sanic(__name__)
app.static("/res", "res/")

app.ext.add_dependency(Order, get_order)
app.ext.add_dependency(Quotas, get_quotas)

from room import bp as room_bp
from propic import bp as propic_bp
from karaoke import bp as karaoke_bp
from export import bp as export_bp
from stats import bp as stats_bp
from api import bp as api_bp
from carpooling import bp as carpooling_bp
from checkin import bp as checkin_bp
from admin import bp as admin_bp

app.blueprint([room_bp, karaoke_bp, propic_bp, export_bp, stats_bp, api_bp, carpooling_bp, checkin_bp, admin_bp])
				
@app.exception(exceptions.SanicException)
async def clear_session(request, exception):
	tpl = app.ctx.tpl.get_template('error.html')
	r = html(tpl.render(exception=exception))
	
	if exception.status_code == 403:
		r.delete_cookie("foxo_code")
		r.delete_cookie("foxo_secret")
	return r

@app.before_server_start
async def main_start(*_):
	print(">>>>>> main_start <<<<<<")

	app.config.REQUEST_MAX_SIZE = PROPIC_MAX_FILE_SIZE * 3
	
	app.ctx.om = OrderManager()
	if FILL_CACHE:
		log.info("Filling cache!")
		await app.ctx.om.updateCache()
		log.info("Cache fill done!")
	
	app.ctx.nfc_counts = sqlite3.connect('data/nfc_counts.db')
	
	app.ctx.login_codes = {}
	
	app.ctx.tpl = Environment(loader=FileSystemLoader("tpl"), autoescape=True)
	app.ctx.tpl.globals.update(time=time)
	app.ctx.tpl.globals.update(PROPIC_DEADLINE=PROPIC_DEADLINE)
	app.ctx.tpl.globals.update(ITEMS_ID_MAP=ITEMS_ID_MAP)
	app.ctx.tpl.globals.update(ITEM_VARIATIONS_MAP=ITEM_VARIATIONS_MAP)
	app.ctx.tpl.globals.update(ROOM_TYPE_NAMES=ROOM_TYPE_NAMES)
	app.ctx.tpl.globals.update(PROPIC_MIN_SIZE=PROPIC_MIN_SIZE)
	app.ctx.tpl.globals.update(PROPIC_MAX_SIZE=PROPIC_MAX_SIZE)
	app.ctx.tpl.globals.update(PROPIC_MAX_FILE_SIZE=sizeof_fmt(PROPIC_MAX_FILE_SIZE))
	app.ctx.tpl.globals.update(int=int)
	app.ctx.tpl.globals.update(len=len)

@app.route("/manage/barcode/<code>")
async def gen_barcode(request, code):
	aa = AztecCode(code).image(module_size=8, border=2)
	img = BytesIO()
	aa.save(img, format='PNG')

	return raw(img.getvalue(), content_type="image/png")

@app.route(f"/{ORGANIZER}/{EVENT_NAME}/order/<code>/<secret>/open/<secret2>")
async def redirect_explore(request, code, secret, order: Order, secret2=None):

	r = redirect(app.url_for("welcome"))
	if order and order.code != code: order = None

	if not order:
		async with httpx.AsyncClient() as client:
			res = await client.get(join(base_url_event, f"orders/{code}/"), headers=headers)
			print(res.json())
			if res.status_code != 200:
				raise exceptions.NotFound("This order code does not exist. Check that your order wasn't deleted, or the link is correct.")
			
			res = res.json()
			if secret != res['secret']:
				raise exceptions.Forbidden("The secret part of the url is not correct. Check your E-Mail for the correct link, or contact support!")
			r.cookies['foxo_code'] = code
			r.cookies['foxo_secret'] = secret
	return r

@app.route("/manage/privacy")
async def privacy(request):
	tpl = app.ctx.tpl.get_template('privacy.html')
	return html(tpl.render())

@app.route("/manage/welcome")
async def welcome(request, order: Order, quota: Quotas):

	if not order:
		raise exceptions.Forbidden("You have been logged out. Please access the link in your E-Mail to login again!")
	
	if order.ans("propic_file") is None:
		await resetDefaultPropic(request, order, False)
	if order.ans("propic_fursuiter_file") is None:
		await resetDefaultPropic(request, order, True)

	pending_roommates = []
	if order.pending_roommates:
		for pr in order.pending_roommates:
			if not pr: continue
			pending_roommates.append(await app.ctx.om.get_order(code=pr, cached=True))

	room_members = []
	if order.room_id:
		if order.room_id != order.code:
			room_owner = await app.ctx.om.get_order(code=order.room_id, cached=True)
		else:
			room_owner = order
			
		room_members.append(room_owner)
			
		for member_id in room_owner.ans('room_members').split(','):
			if member_id == room_owner.code: continue
			if member_id == order.code:
				room_members.append(order)
			else:
				room_members.append(await app.ctx.om.get_order(code=member_id, cached=True))		

	tpl = app.ctx.tpl.get_template('welcome.html')
	return html(tpl.render(order=order, quota=quota, room_members=room_members, pending_roommates=pending_roommates))


@app.route("/manage/download_ticket")
async def download_ticket(request, order: Order):

	if not order:
		raise exceptions.Forbidden("You have been logged out. Please access the link in your E-Mail to login again!")
		
	if not order.status != 'confirmed':
		raise exceptions.Forbidden("You are not allowed to download this ticket.")
		
	async with httpx.AsyncClient() as client:
		res = await client.get(join(base_url_event, f"orders/{order.code}/download/pdf/"), headers=headers)
	
	if res.status_code == 409:
		raise exceptions.SanicException("Your ticket is still being generated. Please try again later!", status_code=res.status_code)
	elif res.status_code == 403:
		raise exceptions.SanicException("You can download your ticket only after the order has been confirmed and paid. Try later!", status_code=400)

	return raw(res.content, content_type='application/pdf')

@app.route("/manage/admin")
async def admin(request, order: Order):
	await request.app.ctx.om.updateCache()
	if not order:
		raise exceptions.Forbidden("You have been logged out. Please access the link in your E-Mail to login again!")
	if EXTRA_PRINTS:
		print(f"Checking admin credentials of {order.code} with secret {order.secret}")
	if not order.isAdmin(): raise exceptions.Forbidden("Birichino :)")
	tpl = app.ctx.tpl.get_template('admin.html')
	return html(tpl.render(order=order))
	
@app.route("/manage/logout")
async def logour(request):
	orgCode = request.cookies.get("foxo_code_ORG")
	orgSecret = request.cookies.get("foxo_secret_ORG")
	if orgCode != None and orgSecret != None:
		r = redirect(f'/manage/welcome')
		r.cookies['foxo_code'] = orgCode
		r.cookies['foxo_secret'] = orgSecret
		r.delete_cookie("foxo_code_ORG")
		r.delete_cookie("foxo_secret_ORG")
		return r

	raise exceptions.Forbidden("You have been logged out.")

if __name__ == "__main__":
	app.run(host="0.0.0.0", port=8188, dev=DEV_MODE, access_log=ACCESS_LOG)
Initial commit 2022-12-18 16:40:39 +00:00			`from sanic import Sanic, response, exceptions`
			`from sanic.response import text, html, redirect, raw`
			`from jinja2 import Environment, FileSystemLoader`
			`from time import time`
			`import httpx`
			`import re`
			`import json`
Improved exporting functions and added boiler plate for other stuff 2023-07-04 21:07:39 +00:00			`import logging`
Now using a config variable as api baseurl 2022-12-18 16:48:29 +00:00			`from os.path import join`
Initial commit 2022-12-18 16:40:39 +00:00			`from ext import *`
			`from config import *`
Add dev mode switch, ticket download fix, nose count, barcode generation 2023-01-08 10:48:01 +00:00			`from aztec_code_generator import AztecCode`
Furizon overlord - working 2023-12-30 10:27:42 +00:00			`from propic import resetDefaultPropic`
Add dev mode switch, ticket download fix, nose count, barcode generation 2023-01-08 10:48:01 +00:00			`from io import BytesIO`
Improved exporting functions and added boiler plate for other stuff 2023-07-04 21:07:39 +00:00			`from asyncio import Queue`
			`import sqlite3`

			`log = logging.getLogger()`
Initial commit 2022-12-18 16:40:39 +00:00
			`app = Sanic(__name__)`
			`app.static("/res", "res/")`

			`app.ext.add_dependency(Order, get_order)`
			`app.ext.add_dependency(Quotas, get_quotas)`

			`from room import bp as room_bp`
Improved room management (now room guests have an additional item too) 2022-12-19 21:08:59 +00:00			`from propic import bp as propic_bp`
Added karaoke function 2023-05-23 19:02:44 +00:00			`from karaoke import bp as karaoke_bp`
Added order caching 2023-01-17 21:25:35 +00:00			`from export import bp as export_bp`
Added statistics 2023-01-19 16:02:57 +00:00			`from stats import bp as stats_bp`
Added carpooling function 2023-05-08 21:04:15 +00:00			`from api import bp as api_bp`
			`from carpooling import bp as carpooling_bp`
Improved exporting functions and added boiler plate for other stuff 2023-07-04 21:07:39 +00:00			`from checkin import bp as checkin_bp`
Auto Id Indexing + Admin panel + Propic upload checks + Room editing Added auto indexing by metadata, instead of ID matching Added checks to propic image uploading Added an admin page, featuring: - Manual cache clearing Added admin controls in nosecount to unconfirm / rename or delete the room Co-authored-by: Luca Sorace "Stranck" <stranck@users.noreply.github.com> 2024-01-08 21:02:27 +00:00			`from admin import bp as admin_bp`
Initial commit 2022-12-18 16:40:39 +00:00
Auto Id Indexing + Admin panel + Propic upload checks + Room editing Added auto indexing by metadata, instead of ID matching Added checks to propic image uploading Added an admin page, featuring: - Manual cache clearing Added admin controls in nosecount to unconfirm / rename or delete the room Co-authored-by: Luca Sorace "Stranck" <stranck@users.noreply.github.com> 2024-01-08 21:02:27 +00:00			`app.blueprint([room_bp, karaoke_bp, propic_bp, export_bp, stats_bp, api_bp, carpooling_bp, checkin_bp, admin_bp])`
Furizon overlord - working 2023-12-30 10:27:42 +00:00
Initial commit 2022-12-18 16:40:39 +00:00			`@app.exception(exceptions.SanicException)`
			`async def clear_session(request, exception):`
			`tpl = app.ctx.tpl.get_template('error.html')`
Added login via API for app 2023-05-11 22:18:49 +00:00			`r = html(tpl.render(exception=exception))`
Initial commit 2022-12-18 16:40:39 +00:00
			`if exception.status_code == 403:`
Auto Id Indexing + Admin panel + Propic upload checks + Room editing Added auto indexing by metadata, instead of ID matching Added checks to propic image uploading Added an admin page, featuring: - Manual cache clearing Added admin controls in nosecount to unconfirm / rename or delete the room Co-authored-by: Luca Sorace "Stranck" <stranck@users.noreply.github.com> 2024-01-08 21:02:27 +00:00			`r.delete_cookie("foxo_code")`
			`r.delete_cookie("foxo_secret")`
Added login via API for app 2023-05-11 22:18:49 +00:00			`return r`
Initial commit 2022-12-18 16:40:39 +00:00
			`@app.before_server_start`
			`async def main_start(*_):`
			`print(">>>>>> main_start <<<<<<")`
Fixed propic upload limits If the size is bigger than 5MB the error will be handled by SANIC directly. Maybe we'd like a better user-visible handling? 2024-01-04 21:15:02 +00:00
Fixed upload size for propics 2024-01-13 15:59:13 +00:00			`app.config.REQUEST_MAX_SIZE = PROPIC_MAX_FILE_SIZE * 3`
Added order caching 2023-01-17 21:25:35 +00:00
			`app.ctx.om = OrderManager()`
Improved exporting functions and added boiler plate for other stuff 2023-07-04 21:07:39 +00:00			`if FILL_CACHE:`
			`log.info("Filling cache!")`
Furizon overlord - working 2023-12-30 10:27:42 +00:00			`await app.ctx.om.updateCache()`
Improved exporting functions and added boiler plate for other stuff 2023-07-04 21:07:39 +00:00			`log.info("Cache fill done!")`

			`app.ctx.nfc_counts = sqlite3.connect('data/nfc_counts.db')`

Added login via API for app 2023-05-11 22:18:49 +00:00			`app.ctx.login_codes = {}`
Improved exporting functions and added boiler plate for other stuff 2023-07-04 21:07:39 +00:00
Initial commit 2022-12-18 16:40:39 +00:00			`app.ctx.tpl = Environment(loader=FileSystemLoader("tpl"), autoescape=True)`
			`app.ctx.tpl.globals.update(time=time)`
Added carpooling function 2023-05-08 21:04:15 +00:00			`app.ctx.tpl.globals.update(PROPIC_DEADLINE=PROPIC_DEADLINE)`
Auto Id Indexing + Admin panel + Propic upload checks + Room editing Added auto indexing by metadata, instead of ID matching Added checks to propic image uploading Added an admin page, featuring: - Manual cache clearing Added admin controls in nosecount to unconfirm / rename or delete the room Co-authored-by: Luca Sorace "Stranck" <stranck@users.noreply.github.com> 2024-01-08 21:02:27 +00:00			`app.ctx.tpl.globals.update(ITEMS_ID_MAP=ITEMS_ID_MAP)`
			`app.ctx.tpl.globals.update(ITEM_VARIATIONS_MAP=ITEM_VARIATIONS_MAP)`
Furizon overlord - working 2023-12-30 10:27:42 +00:00			`app.ctx.tpl.globals.update(ROOM_TYPE_NAMES=ROOM_TYPE_NAMES)`
Auto Id Indexing + Admin panel + Propic upload checks + Room editing Added auto indexing by metadata, instead of ID matching Added checks to propic image uploading Added an admin page, featuring: - Manual cache clearing Added admin controls in nosecount to unconfirm / rename or delete the room Co-authored-by: Luca Sorace "Stranck" <stranck@users.noreply.github.com> 2024-01-08 21:02:27 +00:00			`app.ctx.tpl.globals.update(PROPIC_MIN_SIZE=PROPIC_MIN_SIZE)`
			`app.ctx.tpl.globals.update(PROPIC_MAX_SIZE=PROPIC_MAX_SIZE)`
			`app.ctx.tpl.globals.update(PROPIC_MAX_FILE_SIZE=sizeof_fmt(PROPIC_MAX_FILE_SIZE))`
Initial commit 2022-12-18 16:40:39 +00:00			`app.ctx.tpl.globals.update(int=int)`
			`app.ctx.tpl.globals.update(len=len)`
Add dev mode switch, ticket download fix, nose count, barcode generation 2023-01-08 10:48:01 +00:00
			`@app.route("/manage/barcode/<code>")`
			`async def gen_barcode(request, code):`
			`aa = AztecCode(code).image(module_size=8, border=2)`
			`img = BytesIO()`
			`aa.save(img, format='PNG')`

			`return raw(img.getvalue(), content_type="image/png")`
Added order caching 2023-01-17 21:25:35 +00:00
Code cleanup, readme written 2023-07-29 14:05:46 +00:00			`@app.route(f"/{ORGANIZER}/{EVENT_NAME}/order/<code>/<secret>/open/<secret2>")`
Initial commit 2022-12-18 16:40:39 +00:00			`async def redirect_explore(request, code, secret, order: Order, secret2=None):`

Added login via API for app 2023-05-11 22:18:49 +00:00			`r = redirect(app.url_for("welcome"))`
Initial commit 2022-12-18 16:40:39 +00:00			`if order and order.code != code: order = None`

			`if not order:`
			`async with httpx.AsyncClient() as client:`
Furizon overlord - working 2023-12-30 10:27:42 +00:00			`res = await client.get(join(base_url_event, f"orders/{code}/"), headers=headers)`
Code cleanup, readme written 2023-07-29 14:05:46 +00:00			`print(res.json())`
Initial commit 2022-12-18 16:40:39 +00:00			`if res.status_code != 200:`
			`raise exceptions.NotFound("This order code does not exist. Check that your order wasn't deleted, or the link is correct.")`

			`res = res.json()`
			`if secret != res['secret']:`
			`raise exceptions.Forbidden("The secret part of the url is not correct. Check your E-Mail for the correct link, or contact support!")`
Added login via API for app 2023-05-11 22:18:49 +00:00			`r.cookies['foxo_code'] = code`
			`r.cookies['foxo_secret'] = secret`
			`return r`
Initial commit 2022-12-18 16:40:39 +00:00
Added privacy policy and foxo logo 2023-02-02 21:47:33 +00:00			`@app.route("/manage/privacy")`
			`async def privacy(request):`
			`tpl = app.ctx.tpl.get_template('privacy.html')`
			`return html(tpl.render())`

Initial commit 2022-12-18 16:40:39 +00:00			`@app.route("/manage/welcome")`
			`async def welcome(request, order: Order, quota: Quotas):`

			`if not order:`
			`raise exceptions.Forbidden("You have been logged out. Please access the link in your E-Mail to login again!")`
Furizon overlord - working 2023-12-30 10:27:42 +00:00
			`if order.ans("propic_file") is None:`
			`await resetDefaultPropic(request, order, False)`
			`if order.ans("propic_fursuiter_file") is None:`
			`await resetDefaultPropic(request, order, True)`
Initial commit 2022-12-18 16:40:39 +00:00
			`pending_roommates = []`
			`if order.pending_roommates:`
			`for pr in order.pending_roommates:`
			`if not pr: continue`
Added order caching 2023-01-17 21:25:35 +00:00			`pending_roommates.append(await app.ctx.om.get_order(code=pr, cached=True))`
Initial commit 2022-12-18 16:40:39 +00:00
			`room_members = []`
			`if order.room_id:`
			`if order.room_id != order.code:`
Added order caching 2023-01-17 21:25:35 +00:00			`room_owner = await app.ctx.om.get_order(code=order.room_id, cached=True)`
Initial commit 2022-12-18 16:40:39 +00:00			`else:`
			`room_owner = order`

			`room_members.append(room_owner)`

			`for member_id in room_owner.ans('room_members').split(','):`
			`if member_id == room_owner.code: continue`
			`if member_id == order.code:`
			`room_members.append(order)`
			`else:`
Added order caching 2023-01-17 21:25:35 +00:00			`room_members.append(await app.ctx.om.get_order(code=member_id, cached=True))`
Initial commit 2022-12-18 16:40:39 +00:00
			`tpl = app.ctx.tpl.get_template('welcome.html')`
			`return html(tpl.render(order=order, quota=quota, room_members=room_members, pending_roommates=pending_roommates))`


			`@app.route("/manage/download_ticket")`
Fixed ticket download giving 500 error 2022-12-19 17:58:16 +00:00			`async def download_ticket(request, order: Order):`
Initial commit 2022-12-18 16:40:39 +00:00
			`if not order:`
			`raise exceptions.Forbidden("You have been logged out. Please access the link in your E-Mail to login again!")`

			`if not order.status != 'confirmed':`
			`raise exceptions.Forbidden("You are not allowed to download this ticket.")`

			`async with httpx.AsyncClient() as client:`
Furizon overlord - working 2023-12-30 10:27:42 +00:00			`res = await client.get(join(base_url_event, f"orders/{order.code}/download/pdf/"), headers=headers)`
Fixed ticket download giving 500 error 2022-12-19 17:58:16 +00:00
Add dev mode switch, ticket download fix, nose count, barcode generation 2023-01-08 10:48:01 +00:00			`if res.status_code == 409:`
Fixed ticket download giving 500 error 2022-12-19 17:58:16 +00:00			`raise exceptions.SanicException("Your ticket is still being generated. Please try again later!", status_code=res.status_code)`
Add dev mode switch, ticket download fix, nose count, barcode generation 2023-01-08 10:48:01 +00:00			`elif res.status_code == 403:`
			`raise exceptions.SanicException("You can download your ticket only after the order has been confirmed and paid. Try later!", status_code=400)`
Fixed ticket download giving 500 error 2022-12-19 17:58:16 +00:00
			`return raw(res.content, content_type='application/pdf')`
Auto Id Indexing + Admin panel + Propic upload checks + Room editing Added auto indexing by metadata, instead of ID matching Added checks to propic image uploading Added an admin page, featuring: - Manual cache clearing Added admin controls in nosecount to unconfirm / rename or delete the room Co-authored-by: Luca Sorace "Stranck" <stranck@users.noreply.github.com> 2024-01-08 21:02:27 +00:00
			`@app.route("/manage/admin")`
			`async def admin(request, order: Order):`
			`await request.app.ctx.om.updateCache()`
			`if not order:`
			`raise exceptions.Forbidden("You have been logged out. Please access the link in your E-Mail to login again!")`
Fixed upload size for propics 2024-01-13 15:59:13 +00:00			`if EXTRA_PRINTS:`
			`print(f"Checking admin credentials of {order.code} with secret {order.secret}")`
Auto Id Indexing + Admin panel + Propic upload checks + Room editing Added auto indexing by metadata, instead of ID matching Added checks to propic image uploading Added an admin page, featuring: - Manual cache clearing Added admin controls in nosecount to unconfirm / rename or delete the room Co-authored-by: Luca Sorace "Stranck" <stranck@users.noreply.github.com> 2024-01-08 21:02:27 +00:00			`if not order.isAdmin(): raise exceptions.Forbidden("Birichino :)")`
			`tpl = app.ctx.tpl.get_template('admin.html')`
			`return html(tpl.render(order=order))`
Add dev mode switch, ticket download fix, nose count, barcode generation 2023-01-08 10:48:01 +00:00
			`@app.route("/manage/logout")`
			`async def logour(request):`
Fixed upload size for propics 2024-01-13 15:59:13 +00:00			`orgCode = request.cookies.get("foxo_code_ORG")`
			`orgSecret = request.cookies.get("foxo_secret_ORG")`
			`if orgCode != None and orgSecret != None:`
			`r = redirect(f'/manage/welcome')`
			`r.cookies['foxo_code'] = orgCode`
			`r.cookies['foxo_secret'] = orgSecret`
			`r.delete_cookie("foxo_code_ORG")`
			`r.delete_cookie("foxo_secret_ORG")`
			`return r`

Furizon overlord - working 2023-12-30 10:27:42 +00:00			`raise exceptions.Forbidden("You have been logged out.")`
Initial commit 2022-12-18 16:40:39 +00:00
			`if __name__ == "__main__":`
Updated prints 2024-01-11 17:15:56 +00:00			`app.run(host="0.0.0.0", port=8188, dev=DEV_MODE, access_log=ACCESS_LOG)`