123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144 |
- import flask
- import pystache
- from typing import TypeVar, Type
- import lc.config as c
- import lc.error as e
- import lc.model as m
- import lc.request as r
- T = TypeVar("T", bound=r.Request)
- class Endpoint:
- def __init__(self):
- self.user = None
-
- token = None
-
- if (auth := flask.request.headers.get("Authorization", None)) :
- token = auth.split()[1]
-
- elif flask.session.get("auth", None):
- token = flask.session["auth"]
-
-
- if token and (payload := c.serializer.loads(token)):
- if "name" not in payload or "password" not in payload:
- return
- try:
- u = m.User.by_slug(payload["name"])
- except e.LCException:
- return
- if u.authenticate(payload["password"]):
- self.user = u
- def request_data(self, cls: Type[T]) -> T:
- """Construct a Request model from either a JSON payload or a urlencoded payload"""
- if flask.request.content_type == "application/json":
- return cls.from_json(flask.request.data)
- elif flask.request.content_type == "application/x-www-form-urlencoded":
- return cls.from_form(flask.request.form)
- else:
- raise e.BadContentType(flask.request.content_type or "unknown")
- def require_authentication(self, name: str) -> m.User:
- """
- Check that the currently logged-in user exists and is the
- same as the user whose username is given. Raises an exception
- otherwise.
- """
- if not self.user or name != self.user.name:
- raise e.BadPermissions()
- return self.user
- def route(self, *args, **kwargs):
- """Forward to the appropriate routing method"""
- try:
- if flask.request.method == "POST":
-
-
-
-
-
- return flask.jsonify(self.api_post(*args, **kwargs))
- elif (
- flask.request.method in ["GET", "HEAD"]
- and flask.request.content_type == "application/json"
- ):
-
-
-
-
-
-
- return flask.jsonify(self.api_get(*args, **kwargs))
-
-
- except e.LCException as exn:
- return ({"status": exn.http_code(), "error": str(exn)}, exn.http_code())
-
- except e.LCRedirect as exn:
- return flask.redirect(exn.to_path())
-
-
- try:
- return self.html(*args, **kwargs)
- except e.LCException as exn:
- page = render(
- "main", title="error", content=f"shit's fucked yo: {exn}", user=None,
- )
- return (page, exn.http_code())
- except e.LCRedirect as exn:
- return flask.redirect(exn.to_path())
- def endpoint(route: str):
- """Route an endpoint using our semi-smart routing machinery"""
-
-
-
-
- def do_endpoint(endpoint_class: Type[Endpoint]):
-
- assert Endpoint in endpoint_class.__bases__
-
-
-
-
- def func(*args, **kwargs):
- return endpoint_class().route(*args, **kwargs)
-
-
- methods = ["GET"]
- if "api_post" in dir(endpoint_class):
- methods.append("POST")
-
- func.__name__ = endpoint_class.__name__
-
- return c.app.route(route, methods=methods)(func)
- return do_endpoint
- LOADER = pystache.loader.Loader(extension="mustache", search_dirs=["templates"])
- def render(name: str, **kwargs) -> str:
- """Load and use a Mustache template from the project root"""
- template = LOADER.load_name(name)
- renderer = pystache.Renderer(missing_tags="strict", search_dirs=["templates"])
- return renderer.render(template, kwargs)
|