forked from MarseyWorld/MarseyWorld
947 lines
27 KiB
Python
947 lines
27 KiB
Python
from files.helpers.wrappers import *
|
||
from files.helpers.alerts import *
|
||
from files.helpers.media import *
|
||
from files.helpers.const import *
|
||
from files.helpers.regex import *
|
||
from files.helpers.slots import *
|
||
from files.helpers.treasure import *
|
||
from files.helpers.actions import *
|
||
from files.helpers.get import *
|
||
from files.classes import *
|
||
from files.routes.front import comment_idlist
|
||
from flask import *
|
||
from files.__main__ import app, limiter
|
||
from files.helpers.sanitize import filter_emojis_only
|
||
from files.helpers.marsify import marsify
|
||
from files.helpers.owoify import owoify
|
||
import requests
|
||
from shutil import copyfile
|
||
from json import loads
|
||
from collections import Counter
|
||
import gevent
|
||
import os
|
||
|
||
WORDLE_COLOR_MAPPINGS = {-1: "🟥", 0: "🟨", 1: "🟩"}
|
||
|
||
@app.get("/comment/<cid>")
|
||
@app.get("/post/<pid>/<anything>/<cid>")
|
||
@app.get("/h/<sub>/comment/<cid>")
|
||
@app.get("/h/<sub>/post/<pid>/<anything>/<cid>")
|
||
@app.get("/logged_out/comment/<cid>")
|
||
@app.get("/logged_out/post/<pid>/<anything>/<cid>")
|
||
@app.get("/logged_out/h/<sub>/comment/<cid>")
|
||
@app.get("/logged_out/h/<sub>/post/<pid>/<anything>/<cid>")
|
||
@auth_desired_with_logingate
|
||
def post_pid_comment_cid(cid, pid=None, anything=None, v=None, sub=None):
|
||
|
||
try: cid = int(cid)
|
||
except: abort(404)
|
||
|
||
comment = get_comment(cid, v=v)
|
||
|
||
if not comment.can_see(v): abort(403)
|
||
|
||
if comment.author.shadowbanned and not (v and v.shadowbanned) and not (v and v.admin_level >= PERMS['USER_SHADOWBAN']):
|
||
abort(404)
|
||
|
||
if v and request.values.get("read"):
|
||
notif = g.db.query(Notification).filter_by(comment_id=cid, user_id=v.id, read=False).one_or_none()
|
||
if notif:
|
||
notif.read = True
|
||
g.db.add(notif)
|
||
|
||
if comment.post and comment.post.club and not (v and (v.paid_dues or v.id in [comment.author_id, comment.post.author_id])): abort(403)
|
||
|
||
if not comment.parent_submission and not (v and (comment.author.id == v.id or comment.sentto == v.id)) and not (v and v.admin_level >= PERMS['POST_COMMENT_MODERATION']) : abort(403)
|
||
|
||
if not pid:
|
||
if comment.parent_submission: pid = comment.parent_submission
|
||
elif SITE_NAME == 'rDrama': pid = 6489
|
||
elif SITE == 'pcmemes.net': pid = 2487
|
||
else: pid = 1
|
||
|
||
try: pid = int(pid)
|
||
except: abort(404)
|
||
|
||
post = get_post(pid, v=v)
|
||
|
||
if post.over_18 and not (v and v.over_18) and not session.get('over_18', 0) >= int(time.time()):
|
||
if request.headers.get("Authorization"): return {"error": 'This content is not suitable for some users and situations.'}, 403
|
||
else: return render_template("errors/nsfw.html", v=v)
|
||
|
||
try: context = min(int(request.values.get("context", 0)), 8)
|
||
except: context = 0
|
||
comment_info = comment
|
||
c = comment
|
||
while context and c.level > 1:
|
||
c = c.parent_comment
|
||
context -= 1
|
||
top_comment = c
|
||
|
||
if v: defaultsortingcomments = v.defaultsortingcomments
|
||
else: defaultsortingcomments = "top"
|
||
sort=request.values.get("sort", defaultsortingcomments)
|
||
|
||
if v:
|
||
votes = g.db.query(CommentVote.vote_type, CommentVote.comment_id).filter_by(user_id=v.id).subquery()
|
||
|
||
blocking = v.blocking.subquery()
|
||
|
||
blocked = v.blocked.subquery()
|
||
|
||
comments = g.db.query(
|
||
Comment,
|
||
votes.c.vote_type,
|
||
blocking.c.target_id,
|
||
blocked.c.target_id,
|
||
)
|
||
|
||
if not (v and v.shadowbanned) and not (v and v.admin_level >= PERMS['USER_SHADOWBAN']):
|
||
comments = comments.join(Comment.author).filter(User.shadowbanned == None)
|
||
|
||
comments=comments.filter(
|
||
Comment.top_comment_id == c.top_comment_id
|
||
).join(
|
||
votes,
|
||
votes.c.comment_id == Comment.id,
|
||
isouter=True
|
||
).join(
|
||
blocking,
|
||
blocking.c.target_id == Comment.author_id,
|
||
isouter=True
|
||
).join(
|
||
blocked,
|
||
blocked.c.user_id == Comment.author_id,
|
||
isouter=True
|
||
)
|
||
|
||
output = []
|
||
for c in comments:
|
||
comment = c[0]
|
||
comment.voted = c[1] or 0
|
||
comment.is_blocking = c[2] or 0
|
||
comment.is_blocked = c[3] or 0
|
||
output.append(comment)
|
||
|
||
post.replies=[top_comment]
|
||
|
||
if request.headers.get("Authorization"): return top_comment.json
|
||
else:
|
||
if post.is_banned and not (v and (v.admin_level >= PERMS['POST_COMMENT_MODERATION'] or post.author_id == v.id)): template = "submission_banned.html"
|
||
else: template = "submission.html"
|
||
return render_template(template, v=v, p=post, sort=sort, comment_info=comment_info, render_replies=True, sub=post.subr)
|
||
|
||
@app.post("/comment")
|
||
@limiter.limit("1/second;20/minute;200/hour;1000/day")
|
||
@limiter.limit("1/second;20/minute;200/hour;1000/day", key_func=lambda:f'{SITE}-{session.get("lo_user")}')
|
||
@auth_required
|
||
def comment(v):
|
||
if v.is_suspended: return {"error": "You can't perform this action while banned."}, 403
|
||
|
||
parent_submission = request.values.get("submission").strip()
|
||
parent_fullname = request.values.get("parent_fullname").strip()
|
||
|
||
parent_post = get_post(parent_submission, v=v)
|
||
sub = parent_post.sub
|
||
if sub and v.exiled_from(sub): return {"error": f"You're exiled from /h/{sub}"}, 403
|
||
|
||
if sub in ('furry','vampire','racist','femboy') and not v.client and not v.house.lower().startswith(sub):
|
||
return {"error": f"You need to be a member of House {sub.capitalize()} to comment in /h/{sub}"}, 400
|
||
|
||
if parent_post.club and not (v and (v.paid_dues or v.id == parent_post.author_id)): abort(403)
|
||
|
||
rts = False
|
||
if parent_fullname.startswith("p_"):
|
||
parent = parent_post
|
||
parent_comment_id = None
|
||
level = 1
|
||
|
||
if POLL_THREAD and parent.id == POLL_THREAD and v.admin_level < PERMS['POST_TO_POLL_THREAD']: abort(403)
|
||
elif parent_fullname.startswith("c_"):
|
||
parent = get_comment(parent_fullname.split("_")[1], v=v)
|
||
parent_comment_id = parent.id
|
||
level = parent.level + 1
|
||
if parent.author_id == v.id: rts = True
|
||
else: abort(400)
|
||
|
||
if not parent.can_see(v): abort(404)
|
||
if parent.deleted_utc != 0: abort(404)
|
||
|
||
body = request.values.get("body", "").strip().replace('‎','')
|
||
|
||
body = body.replace('\r\n', '\n')[:10000]
|
||
|
||
if parent_post.id not in ADMIGGERS:
|
||
if v.longpost and (len(body) < 280 or ' [](' in body or body.startswith('[](')):
|
||
return {"error":"You have to type more than 280 characters!"}, 403
|
||
elif v.bird and len(body) > 140:
|
||
return {"error":"You have to type less than 140 characters!"}, 403
|
||
|
||
if not body and not request.files.get('file'): return {"error":"You need to actually write something!"}, 400
|
||
|
||
options = []
|
||
for i in poll_regex.finditer(body):
|
||
options.append(i.group(1))
|
||
body = body.replace(i.group(0), "")
|
||
|
||
choices = []
|
||
for i in choice_regex.finditer(body):
|
||
choices.append(i.group(1))
|
||
body = body.replace(i.group(0), "")
|
||
|
||
if request.files.get("file") and request.headers.get("cf-ipcountry") != "T1":
|
||
files = request.files.getlist('file')[:4]
|
||
for file in files:
|
||
if file.content_type.startswith('image/'):
|
||
oldname = f'/images/{time.time()}'.replace('.','') + '.webp'
|
||
file.save(oldname)
|
||
image = process_image(oldname, patron=v.patron)
|
||
if image == "": return {"error":"Image upload failed"}, 400
|
||
if v.admin_level >= PERMS['SITE_SETTINGS_SIDEBARS_BANNERS_BADGES'] and level == 1:
|
||
if parent_post.id == SIDEBAR_THREAD:
|
||
li = sorted(os.listdir(f'files/assets/images/{SITE_NAME}/sidebar'),
|
||
key=lambda e: int(e.split('.webp')[0]))[-1]
|
||
num = int(li.split('.webp')[0]) + 1
|
||
filename = f'files/assets/images/{SITE_NAME}/sidebar/{num}.webp'
|
||
copyfile(oldname, filename)
|
||
process_image(filename, resize=400)
|
||
elif parent_post.id == BANNER_THREAD:
|
||
banner_width = 1200 if not SITE_NAME == 'PCM' else 0
|
||
li = sorted(os.listdir(f'files/assets/images/{SITE_NAME}/banners'),
|
||
key=lambda e: int(e.split('.webp')[0]))[-1]
|
||
num = int(li.split('.webp')[0]) + 1
|
||
filename = f'files/assets/images/{SITE_NAME}/banners/{num}.webp'
|
||
copyfile(oldname, filename)
|
||
process_image(filename, resize=banner_width)
|
||
elif parent_post.id == BADGE_THREAD:
|
||
try:
|
||
badge_def = loads(body)
|
||
name = badge_def["name"]
|
||
|
||
existing = g.db.query(BadgeDef).filter_by(name=name).one_or_none()
|
||
if existing: return {"error": "A badge with this name already exists!"}, 403
|
||
|
||
badge = BadgeDef(name=name, description=badge_def["description"])
|
||
g.db.add(badge)
|
||
g.db.flush()
|
||
filename = f'files/assets/images/badges/{badge.id}.webp'
|
||
copyfile(oldname, filename)
|
||
process_image(filename, resize=300)
|
||
requests.post(f'https://api.cloudflare.com/client/v4/zones/{CF_ZONE}/purge_cache', headers=CF_HEADERS,
|
||
data=f'{{"files": ["https://{SITE}/assets/images/badges/{badge.id}.webp"]}}', timeout=5)
|
||
except Exception as e:
|
||
return {"error": str(e)}, 400
|
||
body += f"\n\n![]({image})"
|
||
elif file.content_type.startswith('video/'):
|
||
body += f"\n\n{process_video(file)}"
|
||
elif file.content_type.startswith('audio/'):
|
||
body += f"\n\n{process_audio(file)}"
|
||
else:
|
||
abort(415)
|
||
|
||
body = body.strip()
|
||
|
||
if v.admin_level >= PERMS['SITE_SETTINGS_SNAPPY_QUOTES'] and parent_post.id == SNAPPY_THREAD and level == 1:
|
||
with open(f"snappy_{SITE_NAME}.txt", "a", encoding="utf-8") as f:
|
||
f.write('\n{[para]}\n' + body)
|
||
|
||
body_for_sanitize = body
|
||
if v.owoify:
|
||
body_for_sanitize = owoify(body_for_sanitize)
|
||
if v.marsify:
|
||
body_for_sanitize = marsify(body_for_sanitize)
|
||
|
||
torture = (v.agendaposter and not v.marseyawarded and parent_post.sub != 'chudrama' and parent_post.id not in ADMIGGERS)
|
||
|
||
body_html = sanitize(body_for_sanitize, limit_pings=5, count_marseys=not v.marsify, torture=torture)
|
||
|
||
|
||
if parent_post.id not in ADMIGGERS and '!wordle' not in body.lower() and AGENDAPOSTER_PHRASE not in body.lower():
|
||
existing = g.db.query(Comment.id).filter(Comment.author_id == v.id,
|
||
Comment.deleted_utc == 0,
|
||
Comment.parent_comment_id == parent_comment_id,
|
||
Comment.parent_submission == parent_submission,
|
||
Comment.body_html == body_html
|
||
).first()
|
||
if existing: return {"error": f"You already made that comment: /comment/{existing.id}"}, 409
|
||
|
||
if parent.author.any_block_exists(v) and v.admin_level < PERMS['POST_COMMENT_MODERATION']:
|
||
return {"error": "You can't reply to users who have blocked you, or users you have blocked."}, 403
|
||
|
||
is_bot = v.id != 12125 and (bool(request.headers.get("Authorization")) or (SITE == 'pcmemes.net' and v.id == SNAPPY_ID))
|
||
|
||
if len(body) > 50:
|
||
now = int(time.time())
|
||
cutoff = now - 60 * 60 * 24
|
||
|
||
similar_comments = g.db.query(Comment).filter(
|
||
Comment.author_id == v.id,
|
||
Comment.body.op('<->')(body) < COMMENT_SPAM_SIMILAR_THRESHOLD,
|
||
Comment.created_utc > cutoff
|
||
).all()
|
||
|
||
threshold = COMMENT_SPAM_COUNT_THRESHOLD
|
||
if v.age >= (60 * 60 * 24 * 7):
|
||
threshold *= 3
|
||
elif v.age >= (60 * 60 * 24):
|
||
threshold *= 2
|
||
|
||
if len(similar_comments) > threshold:
|
||
text = "Your account has been banned for **1 day** for the following reason:\n\n> Too much spam!"
|
||
send_repeatable_notification(v.id, text)
|
||
|
||
v.ban(reason="Spamming.",
|
||
days=1)
|
||
|
||
for comment in similar_comments:
|
||
comment.is_banned = True
|
||
comment.ban_reason = "AutoJanny"
|
||
g.db.add(comment)
|
||
ma=ModAction(
|
||
user_id=AUTOJANNY_ID,
|
||
target_comment_id=comment.id,
|
||
kind="ban_comment",
|
||
_note="spam"
|
||
)
|
||
g.db.add(ma)
|
||
|
||
g.db.commit()
|
||
return {"error": "Too much spam!"}, 403
|
||
|
||
if len(body_html) > 20000: abort(400)
|
||
|
||
if level > 200:
|
||
return {"error": "Max comment level is 200"}, 400
|
||
|
||
c = Comment(author_id=v.id,
|
||
parent_submission=parent_submission,
|
||
parent_comment_id=parent_comment_id,
|
||
level=level,
|
||
over_18=parent_post.over_18 or request.values.get("over_18")=="true",
|
||
is_bot=is_bot,
|
||
app_id=v.client.application.id if v.client else None,
|
||
body_html=body_html,
|
||
body=body[:10000],
|
||
ghost=parent_post.ghost
|
||
)
|
||
|
||
c.upvotes = 1
|
||
g.db.add(c)
|
||
g.db.flush()
|
||
|
||
if blackjack and any(i in c.body.lower() for i in blackjack.split()):
|
||
v.shadowbanned = 'AutoJanny'
|
||
if not v.is_banned: v.ban_reason = 'Blackjack'
|
||
notif = Notification(comment_id=c.id, user_id=CARP_ID)
|
||
g.db.add(notif)
|
||
|
||
if c.level == 1: c.top_comment_id = c.id
|
||
else: c.top_comment_id = parent.top_comment_id
|
||
|
||
for option in options:
|
||
option = CommentOption(
|
||
comment_id=c.id,
|
||
body_html=filter_emojis_only(option),
|
||
exclusive=0
|
||
)
|
||
g.db.add(option)
|
||
|
||
for choice in choices:
|
||
choice = CommentOption(
|
||
comment_id=c.id,
|
||
body_html=filter_emojis_only(choice),
|
||
exclusive=1
|
||
)
|
||
g.db.add(choice)
|
||
|
||
if SITE == 'pcmemes.net' and c.body.lower().startswith("based"):
|
||
pill = based_regex.match(body)
|
||
|
||
if level == 1: basedguy = get_account(parent_post.author_id)
|
||
else: basedguy = get_account(c.parent_comment.author_id)
|
||
basedguy.basedcount += 1
|
||
if pill:
|
||
if basedguy.pills: basedguy.pills += f", {pill.group(1)}"
|
||
else: basedguy.pills += f"{pill.group(1)}"
|
||
g.db.add(basedguy)
|
||
|
||
body2 = f"@{basedguy.username}'s Based Count has increased by 1. Their Based Count is now {basedguy.basedcount}."
|
||
if basedguy.pills: body2 += f"\n\nPills: {basedguy.pills}"
|
||
|
||
body_based_html = sanitize(body2)
|
||
|
||
c_based = Comment(author_id=BASEDBOT_ID,
|
||
parent_submission=parent_submission,
|
||
distinguish_level=6,
|
||
parent_comment_id=c.id,
|
||
level=level+1,
|
||
is_bot=True,
|
||
body_html=body_based_html,
|
||
top_comment_id=c.top_comment_id,
|
||
ghost=c.ghost
|
||
)
|
||
|
||
g.db.add(c_based)
|
||
g.db.flush()
|
||
|
||
n = Notification(comment_id=c_based.id, user_id=v.id)
|
||
g.db.add(n)
|
||
|
||
if v.agendaposter and not v.marseyawarded and AGENDAPOSTER_PHRASE not in c.body.lower() and parent_post.sub != 'chudrama':
|
||
|
||
c.is_banned = True
|
||
c.ban_reason = "AutoJanny"
|
||
|
||
g.db.add(c)
|
||
|
||
|
||
body = AGENDAPOSTER_MSG.format(username=v.username, type='comment', AGENDAPOSTER_PHRASE=AGENDAPOSTER_PHRASE)
|
||
|
||
body_jannied_html = AGENDAPOSTER_MSG_HTML.format(id=v.id, username=v.username, type='comment', AGENDAPOSTER_PHRASE=AGENDAPOSTER_PHRASE)
|
||
|
||
|
||
|
||
c_jannied = Comment(author_id=AUTOJANNY_ID,
|
||
parent_submission=parent_submission,
|
||
distinguish_level=6,
|
||
parent_comment_id=c.id,
|
||
level=level+1,
|
||
is_bot=True,
|
||
body=body,
|
||
body_html=body_jannied_html,
|
||
top_comment_id=c.top_comment_id,
|
||
ghost=c.ghost
|
||
)
|
||
|
||
g.db.add(c_jannied)
|
||
g.db.flush()
|
||
|
||
n = Notification(comment_id=c_jannied.id, user_id=v.id)
|
||
g.db.add(n)
|
||
|
||
|
||
if SITE_NAME == 'rDrama' and len(c.body.split()) >= 200 and "<" not in body and "</blockquote>" not in body_html:
|
||
|
||
body = random.choice(LONGPOST_REPLIES)
|
||
|
||
|
||
if body.startswith('â–¼'):
|
||
body = body[1:]
|
||
vote = CommentVote(user_id=LONGPOSTBOT_ID,
|
||
vote_type=-1,
|
||
comment_id=c.id,
|
||
real = True
|
||
)
|
||
g.db.add(vote)
|
||
c.downvotes = 1
|
||
|
||
|
||
c2 = Comment(author_id=LONGPOSTBOT_ID,
|
||
parent_submission=parent_submission,
|
||
parent_comment_id=c.id,
|
||
level=level+1,
|
||
is_bot=True,
|
||
body=body,
|
||
body_html=f"<p>{body}</p>",
|
||
top_comment_id=c.top_comment_id,
|
||
ghost=c.ghost
|
||
)
|
||
|
||
g.db.add(c2)
|
||
|
||
longpostbot = get_account(LONGPOSTBOT_ID)
|
||
longpostbot.comment_count += 1
|
||
longpostbot.coins += 1
|
||
g.db.add(longpostbot)
|
||
|
||
g.db.flush()
|
||
|
||
n = Notification(comment_id=c2.id, user_id=v.id)
|
||
g.db.add(n)
|
||
|
||
|
||
if SITE_NAME == 'rDrama' and random.random() < 0.001:
|
||
c2 = Comment(author_id=ZOZBOT_ID,
|
||
parent_submission=parent_submission,
|
||
parent_comment_id=c.id,
|
||
level=level+1,
|
||
is_bot=True,
|
||
body="zoz",
|
||
body_html="<p>zoz</p>",
|
||
top_comment_id=c.top_comment_id,
|
||
ghost=c.ghost,
|
||
distinguish_level=6
|
||
)
|
||
|
||
g.db.add(c2)
|
||
g.db.flush()
|
||
n = Notification(comment_id=c2.id, user_id=v.id)
|
||
g.db.add(n)
|
||
|
||
|
||
|
||
c3 = Comment(author_id=ZOZBOT_ID,
|
||
parent_submission=parent_submission,
|
||
parent_comment_id=c2.id,
|
||
level=level+2,
|
||
is_bot=True,
|
||
body="zle",
|
||
body_html="<p>zle</p>",
|
||
top_comment_id=c.top_comment_id,
|
||
ghost=c.ghost,
|
||
distinguish_level=6
|
||
)
|
||
|
||
g.db.add(c3)
|
||
g.db.flush()
|
||
|
||
|
||
c4 = Comment(author_id=ZOZBOT_ID,
|
||
parent_submission=parent_submission,
|
||
parent_comment_id=c3.id,
|
||
level=level+3,
|
||
is_bot=True,
|
||
body="zozzle",
|
||
body_html="<p>zozzle</p>",
|
||
top_comment_id=c.top_comment_id,
|
||
ghost=c.ghost,
|
||
distinguish_level=6
|
||
)
|
||
|
||
g.db.add(c4)
|
||
|
||
zozbot = get_account(ZOZBOT_ID)
|
||
zozbot.comment_count += 3
|
||
zozbot.coins += 3
|
||
g.db.add(zozbot)
|
||
|
||
if not v.shadowbanned:
|
||
notify_users = NOTIFY_USERS(body, v)
|
||
|
||
if c.level == 1:
|
||
subscribers = g.db.query(Subscription.user_id).filter(Subscription.submission_id == c.parent_submission, Subscription.user_id != v.id).all()
|
||
|
||
for x in subscribers:
|
||
notify_users.add(x[0])
|
||
|
||
if parent.author.id != v.id:
|
||
notify_users.add(parent.author.id)
|
||
|
||
for x in notify_users-bots:
|
||
n = Notification(comment_id=c.id, user_id=x)
|
||
g.db.add(n)
|
||
|
||
if parent.author.id != v.id and PUSHER_ID != 'blahblahblah' and not v.shadowbanned:
|
||
interests = f'{SITE}{parent.author.id}'
|
||
|
||
title = f'New reply by @{c.author_name}'
|
||
|
||
if len(c.body) > 500: notifbody = c.body[:500] + '...'
|
||
else: notifbody = c.body
|
||
|
||
url = f'{SITE_FULL}/comment/{c.id}?context=8&read=true#context'
|
||
|
||
gevent.spawn(pusher_thread, interests, title, notifbody, url)
|
||
|
||
|
||
|
||
vote = CommentVote(user_id=v.id,
|
||
comment_id=c.id,
|
||
vote_type=1,
|
||
)
|
||
|
||
g.db.add(vote)
|
||
|
||
|
||
cache.delete_memoized(comment_idlist)
|
||
|
||
v.comment_count = g.db.query(Comment).filter(
|
||
Comment.author_id == v.id,
|
||
Comment.parent_submission != None,
|
||
Comment.deleted_utc == 0
|
||
).count()
|
||
g.db.add(v)
|
||
|
||
c.voted = 1
|
||
|
||
if v.id == PIZZASHILL_ID:
|
||
for uid in PIZZA_VOTERS:
|
||
autovote = CommentVote(user_id=uid, comment_id=c.id, vote_type=1)
|
||
autovote.created_utc += 1
|
||
g.db.add(autovote)
|
||
v.coins += 3
|
||
v.truecoins += 3
|
||
g.db.add(v)
|
||
c.upvotes += 3
|
||
g.db.add(c)
|
||
|
||
if v.marseyawarded and parent_post.id not in ADMIGGERS and marseyaward_body_regex.search(body_html):
|
||
return {"error":"You can only type marseys!"}, 403
|
||
|
||
check_for_treasure(body, c)
|
||
|
||
if FEATURES['WORDLE'] and "!wordle" in body:
|
||
answer = random.choice(WORDLE_LIST)
|
||
c.wordle_result = f'_active_{answer}'
|
||
|
||
if not c.wordle_result and not rts:
|
||
parent_post.comment_count += 1
|
||
g.db.add(parent_post)
|
||
|
||
g.db.flush()
|
||
|
||
if request.headers.get("Authorization"): return c.json
|
||
return {"comment": render_template("comments.html", v=v, comments=[c])}
|
||
|
||
|
||
|
||
@app.post("/edit_comment/<cid>")
|
||
@limiter.limit("1/second;10/minute;100/hour;200/day")
|
||
@limiter.limit("1/second;10/minute;100/hour;200/day", key_func=lambda:f'{SITE}-{session.get("lo_user")}')
|
||
@auth_required
|
||
def edit_comment(cid, v):
|
||
|
||
c = get_comment(cid, v=v)
|
||
|
||
if time.time() - c.created_utc > 7*24*60*60 and not (c.post and c.post.private):
|
||
return {"error":"You can't edit comments older than 1 week!"}, 403
|
||
|
||
if c.author_id != v.id: abort(403)
|
||
|
||
body = request.values.get("body", "").strip().replace('‎','')
|
||
|
||
body = body.replace('\r\n', '\n')[:10000]
|
||
|
||
if len(body) < 1 and not (request.files.get("file") and request.headers.get("cf-ipcountry") != "T1"):
|
||
return {"error":"You have to actually type something!"}, 400
|
||
|
||
if body != c.body or request.files.get("file") and request.headers.get("cf-ipcountry") != "T1":
|
||
if v.longpost and (len(body) < 280 or ' [](' in body or body.startswith('[](')):
|
||
return {"error":"You have to type more than 280 characters!"}, 403
|
||
elif v.bird and len(body) > 140:
|
||
return {"error":"You have to type less than 140 characters!"}, 403
|
||
|
||
for i in poll_regex.finditer(body):
|
||
body = body.replace(i.group(0), "")
|
||
option = CommentOption(
|
||
comment_id=c.id,
|
||
body_html=filter_emojis_only(i.group(1)),
|
||
exclusive = 0
|
||
)
|
||
g.db.add(option)
|
||
|
||
for i in choice_regex.finditer(body):
|
||
body = body.replace(i.group(0), "")
|
||
option = CommentOption(
|
||
comment_id=c.id,
|
||
body_html=filter_emojis_only(i.group(1)),
|
||
exclusive = 1
|
||
)
|
||
g.db.add(option)
|
||
|
||
if len(body) > 50:
|
||
now = int(time.time())
|
||
cutoff = now - 60 * 60 * 24
|
||
|
||
similar_comments = g.db.query(Comment
|
||
).filter(
|
||
Comment.author_id == v.id,
|
||
Comment.body.op('<->')(body) < SPAM_SIMILARITY_THRESHOLD,
|
||
Comment.created_utc > cutoff
|
||
).all()
|
||
|
||
threshold = SPAM_SIMILAR_COUNT_THRESHOLD
|
||
if v.age >= (60 * 60 * 24 * 30):
|
||
threshold *= 4
|
||
elif v.age >= (60 * 60 * 24 * 7):
|
||
threshold *= 3
|
||
elif v.age >= (60 * 60 * 24):
|
||
threshold *= 2
|
||
|
||
if len(similar_comments) > threshold:
|
||
text = "Your account has been banned for **1 day** for the following reason:\n\n> Too much spam!"
|
||
send_repeatable_notification(v.id, text)
|
||
|
||
v.ban(reason="Spamming.",
|
||
days=1)
|
||
|
||
for comment in similar_comments:
|
||
comment.is_banned = True
|
||
comment.ban_reason = "AutoJanny"
|
||
g.db.add(comment)
|
||
|
||
g.db.commit()
|
||
return {"error": "Too much spam!"}, 403
|
||
|
||
body += process_files()
|
||
|
||
body = body.strip()
|
||
|
||
body_for_sanitize = body
|
||
if v.owoify:
|
||
body_for_sanitize = owoify(body_for_sanitize)
|
||
if v.marsify:
|
||
body_for_sanitize = marsify(body_for_sanitize)
|
||
|
||
torture = (v.agendaposter and not v.marseyawarded and c.post.sub != 'chudrama')
|
||
|
||
body_html = sanitize(body_for_sanitize, golden=False, limit_pings=5, torture=torture)
|
||
|
||
if len(body_html) > 20000: abort(400)
|
||
|
||
if v.marseyawarded and marseyaward_body_regex.search(body_html):
|
||
return {"error":"You can only type marseys!"}, 403
|
||
|
||
c.body = body[:10000]
|
||
c.body_html = body_html
|
||
|
||
if blackjack and any(i in c.body.lower() for i in blackjack.split()):
|
||
v.shadowbanned = 'AutoJanny'
|
||
if not v.is_banned: v.ban_reason = 'Blackjack'
|
||
g.db.add(v)
|
||
notif = g.db.query(Notification).filter_by(comment_id=c.id, user_id=CARP_ID).one_or_none()
|
||
if not notif:
|
||
notif = Notification(comment_id=c.id, user_id=CARP_ID)
|
||
g.db.add(notif)
|
||
|
||
if v.agendaposter and not v.marseyawarded and AGENDAPOSTER_PHRASE not in c.body.lower() and c.post.sub != 'chudrama':
|
||
return {"error": f'You have to include "{AGENDAPOSTER_PHRASE}" in your comment!'}, 403
|
||
|
||
|
||
if int(time.time()) - c.created_utc > 60 * 3: c.edited_utc = int(time.time())
|
||
|
||
g.db.add(c)
|
||
|
||
notify_users = NOTIFY_USERS(body, v)
|
||
|
||
for x in notify_users-bots:
|
||
notif = g.db.query(Notification).filter_by(comment_id=c.id, user_id=x).one_or_none()
|
||
if not notif:
|
||
n = Notification(comment_id=c.id, user_id=x)
|
||
g.db.add(n)
|
||
|
||
g.db.commit()
|
||
return {"comment": c.realbody(v)}
|
||
|
||
|
||
@app.post("/delete/comment/<cid>")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day", key_func=lambda:f'{SITE}-{session.get("lo_user")}')
|
||
@auth_required
|
||
def delete_comment(cid, v):
|
||
|
||
c = get_comment(cid, v=v)
|
||
|
||
if not c.deleted_utc:
|
||
|
||
if c.author_id != v.id: abort(403)
|
||
|
||
c.deleted_utc = int(time.time())
|
||
|
||
g.db.add(c)
|
||
|
||
cache.delete_memoized(comment_idlist)
|
||
|
||
g.db.flush()
|
||
v.comment_count = g.db.query(Comment).filter(
|
||
Comment.author_id == v.id,
|
||
Comment.parent_submission != None,
|
||
Comment.deleted_utc == 0
|
||
).count()
|
||
g.db.add(v)
|
||
|
||
return {"message": "Comment deleted!"}
|
||
|
||
@app.post("/undelete/comment/<cid>")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day", key_func=lambda:f'{SITE}-{session.get("lo_user")}')
|
||
@auth_required
|
||
def undelete_comment(cid, v):
|
||
|
||
c = get_comment(cid, v=v)
|
||
|
||
if c.deleted_utc:
|
||
if c.author_id != v.id: abort(403)
|
||
|
||
c.deleted_utc = 0
|
||
|
||
g.db.add(c)
|
||
|
||
cache.delete_memoized(comment_idlist)
|
||
|
||
g.db.flush()
|
||
v.comment_count = g.db.query(Comment).filter(
|
||
Comment.author_id == v.id,
|
||
Comment.parent_submission != None,
|
||
Comment.deleted_utc == 0
|
||
).count()
|
||
g.db.add(v)
|
||
|
||
return {"message": "Comment undeleted!"}
|
||
|
||
|
||
@app.post("/pin_comment/<cid>")
|
||
@auth_required
|
||
def pin_comment(cid, v):
|
||
if not FEATURES['PINS']:
|
||
abort(403)
|
||
comment = get_comment(cid, v=v)
|
||
|
||
if not comment.stickied:
|
||
if v.id != comment.post.author_id: abort(403)
|
||
|
||
if comment.post.ghost: comment.stickied = "(OP)"
|
||
else: comment.stickied = v.username + " (OP)"
|
||
|
||
g.db.add(comment)
|
||
|
||
if v.id != comment.author_id:
|
||
if comment.post.ghost: message = f"OP has pinned your [comment]({comment.shortlink})!"
|
||
else: message = f"@{v.username} (OP) has pinned your [comment]({comment.shortlink})!"
|
||
send_repeatable_notification(comment.author_id, message)
|
||
|
||
return {"message": "Comment pinned!"}
|
||
|
||
|
||
@app.post("/unpin_comment/<cid>")
|
||
@auth_required
|
||
def unpin_comment(cid, v):
|
||
|
||
comment = get_comment(cid, v=v)
|
||
|
||
if comment.stickied:
|
||
if v.id != comment.post.author_id: abort(403)
|
||
|
||
if not comment.stickied.endswith(" (OP)"):
|
||
return {"error": "You can only unpin comments you have pinned!"}, 400
|
||
|
||
comment.stickied = None
|
||
g.db.add(comment)
|
||
|
||
if v.id != comment.author_id:
|
||
message = f"@{v.username} (OP) has unpinned your [comment]({comment.shortlink})!"
|
||
send_repeatable_notification(comment.author_id, message)
|
||
return {"message": "Comment unpinned!"}
|
||
|
||
|
||
@app.post("/save_comment/<cid>")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day", key_func=lambda:f'{SITE}-{session.get("lo_user")}')
|
||
@auth_required
|
||
def save_comment(cid, v):
|
||
|
||
comment=get_comment(cid)
|
||
|
||
save=g.db.query(CommentSaveRelationship).filter_by(user_id=v.id, comment_id=comment.id).one_or_none()
|
||
|
||
if not save:
|
||
new_save=CommentSaveRelationship(user_id=v.id, comment_id=comment.id)
|
||
g.db.add(new_save)
|
||
|
||
|
||
return {"message": "Comment saved!"}
|
||
|
||
@app.post("/unsave_comment/<cid>")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day", key_func=lambda:f'{SITE}-{session.get("lo_user")}')
|
||
@auth_required
|
||
def unsave_comment(cid, v):
|
||
|
||
comment=get_comment(cid)
|
||
|
||
save=g.db.query(CommentSaveRelationship).filter_by(user_id=v.id, comment_id=comment.id).one_or_none()
|
||
|
||
if save:
|
||
g.db.delete(save)
|
||
|
||
return {"message": "Comment unsaved!"}
|
||
|
||
|
||
def diff_words(answer, guess):
|
||
"""
|
||
Return a list of numbers corresponding to the char's relevance.
|
||
-1 means char is not in solution or the character appears too many times in the guess
|
||
0 means char is in solution but in the wrong spot
|
||
1 means char is in the correct spot
|
||
"""
|
||
diffs = [
|
||
1 if cs == cg else -1 for cs, cg in zip(answer, guess)
|
||
]
|
||
char_freq = Counter(
|
||
c_guess for c_guess, diff, in zip(answer, diffs) if diff == -1
|
||
)
|
||
for i, cg in enumerate(guess):
|
||
if diffs[i] == -1 and cg in char_freq and char_freq[cg] > 0:
|
||
char_freq[cg] -= 1
|
||
diffs[i] = 0
|
||
return diffs
|
||
|
||
|
||
@app.post("/wordle/<cid>")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day")
|
||
@limiter.limit("1/second;30/minute;200/hour;1000/day", key_func=lambda:f'{SITE}-{session.get("lo_user")}')
|
||
@auth_required
|
||
def handle_wordle_action(cid, v):
|
||
|
||
comment = get_comment(cid)
|
||
|
||
if v.id != comment.author_id:
|
||
abort(403)
|
||
|
||
guesses, status, answer = comment.wordle_result.split("_")
|
||
count = len(guesses.split(" -> "))
|
||
|
||
try: guess = request.values.get("thing").strip().lower()
|
||
except: abort(400)
|
||
|
||
if len(guess) != 5:
|
||
return {"error": "Not a valid guess!"}, 400
|
||
|
||
if status == "active":
|
||
guesses += "".join(cg + WORDLE_COLOR_MAPPINGS[diff] for cg, diff in zip(guess, diff_words(answer, guess)))
|
||
|
||
if (guess == answer): status = "won"
|
||
elif (count == 6): status = "lost"
|
||
else: guesses += ' -> '
|
||
|
||
comment.wordle_result = f'{guesses}_{status}_{answer}'
|
||
|
||
g.db.add(comment)
|
||
|
||
return {"response" : comment.wordle_html(v)}
|
||
|
||
|
||
@app.post("/toggle_comment_nsfw/<cid>")
|
||
@auth_required
|
||
def toggle_comment_nsfw(cid, v):
|
||
comment = get_comment(cid)
|
||
|
||
if comment.author_id != v.id and not v.admin_level >= PERMS['POST_COMMENT_MODERATION'] and not (comment.post.sub and v.mods(comment.post.sub)):
|
||
abort(403)
|
||
|
||
if comment.over_18 and v.is_suspended_permanently:
|
||
abort(403)
|
||
|
||
comment.over_18 = not comment.over_18
|
||
g.db.add(comment)
|
||
|
||
if comment.author_id != v.id:
|
||
if v.admin_level >= PERMS['POST_COMMENT_MODERATION']:
|
||
ma = ModAction(
|
||
kind = "set_nsfw_comment" if comment.over_18 else "unset_nsfw_comment",
|
||
user_id = v.id,
|
||
target_comment_id = comment.id,
|
||
)
|
||
g.db.add(ma)
|
||
else:
|
||
ma = SubAction(
|
||
sub = comment.post.sub,
|
||
kind = "set_nsfw_comment" if comment.over_18 else "unset_nsfw_comment",
|
||
user_id = v.id,
|
||
target_comment_id = comment.id,
|
||
)
|
||
g.db.add(ma)
|
||
|
||
if comment.over_18: return {"message": "Comment has been marked as +18!"}
|
||
else: return {"message": "Comment has been unmarked as +18!"}
|