docker setup

Author: theSage21

.gitignore

@@ -1 +1,131 @@
+
+# Created by https://www.toptal.com/developers/gitignore/api/python
+# Edit at https://www.toptal.com/developers/gitignore?templates=python
+
+### Python ###
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+pip-wheel-metadata/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+.hypothesis/
+.pytest_cache/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+.python-version
+
+# pipenv
+#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
+#   However, in case of collaboration, if having platform-specific dependencies or dependencies
+#   having no cross-platform support, pipenv may install dependencies that don’t work, or not
+#   install all needed dependencies.
+#Pipfile.lock
+
+# celery beat schedule file
+celerybeat-schedule
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Pyre type checker
+.pyre/
+
+# End of https://www.toptal.com/developers/gitignore/api/python
 .secret/

Dockerfile

@@ -0,0 +1,3 @@
+from python:3.6
+add requirements.txt .
+run python -m pip install -r requirements.txt

announce/const.py

@@ -1,5 +1,24 @@
+import os
 from collections import namedtuple
 
+
+def env(key, default=None):
+    val = os.environ.get(key, default)
+    return val
+
+
+database_url = env("DATABASE_URL")
+secret = os.environ.get("BOTTLE_SECRET", "pyjdoorman")
+cookie_name = "pyj"
+cookie_kwargs = {"path": "/", "domain": base_domain}
+base_domain = env("BASE_DOMAIN")
+protocol = "https"
+is_dev = base_domain is None
+if is_dev:
+    cookie_kwargs = {}
+    base_domain = "localhost:8000"
+    protocol = "http"
+
 email = "[email protected]"
 tw = "https://api.twitter.com/1.1"
 tw_upload = "https://upload.twitter.com/1.1"

announce/models.py

@@ -5,17 +5,84 @@
     String,
     DateTime,
     ForeignKey,
+    relationship,
+    UniqueConstraint,
 )
 from sqlalchemy.dialects.postgresql import JSON
 from sqlalchemy.ext.declarative import declarative_base
 from sqlalchemy.orm import sessionmaker
 from sqlalchemy.ext.hybrid import hybrid_property
 import bottle_tools as bt
+from secrets import token_urlsafe
+from announce import const
 
-engine = create_engine(database_url)
+engine = create_engine(const.database_url)
 Base = declarative_base()
 
 
+class AnonUser:
+    id = tg_handle = None
+
+
+class User(Base):
+    __tablename__ = "user"
+    id = Column(Integer, primary_key=True)
+    tg_handle = Column(String)
+
+    def get_groups(self, session):
+        return (
+            session.query(Group)
+            .join(Member)
+            .filter(Member.user_id == self.id)
+            .distinct()
+        )
+
+
+class Group(Base):
+    __tablename__ = "group"
+    name = Column(String)
+
+
+class Member(Base):
+    __tablename__ = "member"
+    user_id = Column(Integer, ForeignKey("user.id"))
+    group_id = Column(Integer, ForeignKey("group.id"))
+    __table_args__ = (UniqueConstraint("user_id", "group_id"),)
+
+
+class Otp(Base):
+    __tablename__ = "otp"
+    id = Column(Integer, primary_key=True)
+    tg_handle = Column(String)
+    otp = Column(String)
+
+    @staticmethod
+    def loop_create(session, **kwargs):
+        "Try to create a token and retry if uniqueness fails"
+        while True:
+            tok = Otp(otp=token_urlsafe(), **kwargs)
+            session.add(tok)
+            session.commit()
+            return tok
+
+
+class LoginToken(Base):
+    __tablename__ = "logintoken"
+    user_id = Column(Integer, ForeignKey("user.id"))
+    token = Column(String, nullable=False, unique=True)
+    has_logged_out = Column(Boolean, default=False)
+    user = relationship("User")
+
+    @staticmethod
+    def loop_create(session, **kwargs):
+        "Try to create a token and retry if uniqueness fails"
+        while True:
+            tok = LoginToken(token=token_urlsafe(), **kwargs)
+            session.add(tok)
+            session.commit()
+            return tok
+
+
 class Image(Base):
     __tablename__ = "image"
     id = Column(Integer, primary_key=True)
@@ -27,6 +94,7 @@ class Cred(Base):
     id = Column(Integer, primary_key=True)
     name = Column(String)
     var = Column(String)
+    group_id = Column(Integer, ForeignKey("image.id"))
 
 
 class Event(Base):

announce/plugins.py

@@ -0,0 +1,71 @@
+import bottle
+from announce import models
+
+
+def render(template_name, **kwargs):
+    kwargs.update(
+        {"request": bottle.request,}
+    )
+    return bottle.jinja2_template(template_name, **kwargs)
+
+
+class Plugin:
+    name = None
+    api = 2
+
+    def setup(self, app):
+        self.app = app
+
+
+class AutoSession(Plugin):
+    name = "auto_session"
+
+    def apply(self, callback, route):
+        @wraps(callback)
+        def wrapper(*a, **kw):
+            bottle.request.session = models.Session()
+            try:
+                return callback(*a, **kw)
+            finally:
+                bottle.request.session.close()
+
+        return wrapper
+
+
+class CurrentUser(Plugin):
+    name = "current_user"
+
+    def apply(self, callback, route):
+        @wraps(callback)
+        def wrapper(*a, **kw):
+            # Check cookies
+            user = models.AnonUser()
+            cook = bottle.request.get_cookie(const.cookie_name, secret=const.secret)
+            if cook is not None:
+                token = (
+                    bottle.request.session.query(models.LoginToken)
+                    .filter_by(token=cook, has_logged_out=False)
+                    .first()
+                )
+                bottle.request.token = token
+                if token is not None:
+                    user = token.user
+            bottle.request.user = user
+            return callback(*a, **kw)
+
+        return wrapper
+
+
+class LoginRequired(Plugin):
+    name = "login_required"
+
+    def apply(self, callback, route):
+        @wraps(callback)
+        def wrapper(*a, **kw):
+            if isinstance(bottle.request.user, models.AnonUser):
+                return bottle.redirect(
+                    self.app.get_url("get_login", next_url=bottle.request.url)
+                )
+            return callback(*a, **kw)
+
+        return wrapper