MarseyWorld/files/__main__.py

import gevent.monkey
gevent.monkey.patch_all()
from os import environ, path
import secrets
from flask import *
from flask_caching import Cache
from flask_limiter import Limiter
from flask_compress import Compress
from sqlalchemy.ext.declarative import declarative_base
from sqlalchemy.orm import sessionmaker, scoped_session
from sqlalchemy import *
import gevent
import redis
import time
from sys import stdout, argv
import faulthandler
import json
import random

app = Flask(__name__, template_folder='templates')
app.url_map.strict_slashes = False
app.jinja_env.cache = {}
app.jinja_env.auto_reload = True
app.jinja_env.add_extension('jinja2.ext.do')
faulthandler.enable()

app.config['SECRET_KEY'] = environ.get('SECRET_KEY').strip()
SITE = environ.get("SITE").strip()
app.config['SEND_FILE_MAX_AGE_DEFAULT'] = 3153600
app.config["SESSION_COOKIE_NAME"] = "session_" + environ.get("SITE_NAME").strip().lower()
app.config['MAX_CONTENT_LENGTH'] = 100 * 1024 * 1024
app.config["SESSION_COOKIE_SECURE"] = True
app.config["SESSION_COOKIE_SAMESITE"] = "Lax"
app.config["PERMANENT_SESSION_LIFETIME"] = 60 * 60 * 24 * 365
app.config['SESSION_REFRESH_EACH_REQUEST'] = False

app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False
app.config['SQLALCHEMY_DATABASE_URL'] = environ.get("DATABASE_URL").strip()

app.config["CACHE_TYPE"] = "RedisCache"
app.config["CACHE_REDIS_URL"] = environ.get("REDIS_URL").strip()


app.config['SETTINGS'] = {}

r=redis.Redis(host=environ.get("REDIS_URL").strip(), decode_responses=True, ssl_cert_reqs=None)

def get_CF():
	with app.app_context():
		return request.headers.get('CF-Connecting-IP')

limiter = Limiter(
	app,
	key_func=get_CF,
	default_limits=["3/second;30/minute;200/hour;1000/day"],
	application_limits=["10/second;200/minute;5000/hour;10000/day"],
	storage_uri=environ.get("REDIS_URL", "redis://localhost")
)

Base = declarative_base()

engine = create_engine(app.config['SQLALCHEMY_DATABASE_URL'])

db_session = scoped_session(sessionmaker(bind=engine, autoflush=False))

cache = Cache(app)
Compress(app)

if not path.isfile(f'/site_settings.json'):
	with open('/site_settings.json', 'w', encoding='utf_8') as f:
		f.write(
			'{"Bots": true, "Fart mode": false, "Read-only mode": false, ' + \
			'"Signups": true, "login_required": false}')

@app.before_request
def before_request():
	g.agent = request.headers.get("User-Agent")
	if not g.agent and request.path != '/kofi':
		return 'Please use a "User-Agent" header!', 403

	ua = g.agent or ''
	ua = ua.lower()

	with open('/site_settings.json', 'r', encoding='utf_8') as f:
		app.config['SETTINGS'] = json.load(f)
	### WPD TEMP ####
	if request.host != SITE and SITE != "watchpeopledie.co":
		return {"error": "Unauthorized host provided"}, 403
	#### END WPD TEMP ####
	# uncomment below after done with WPD migration
	# if request.host != SITE: return {"error": "Unauthorized host provided."}, 403
	if request.headers.get("CF-Worker"): return {"error": "Cloudflare workers are not allowed to access this website."}, 403

	if not app.config['SETTINGS']['Bots'] and request.headers.get("Authorization"): abort(403)

	g.db = db_session()
	g.webview = '; wv) ' in ua
	g.inferior_browser = 'iphone' in ua or 'ipad' in ua or 'ipod' in ua or 'mac os' in ua or ' firefox/' in ua

	#### WPD TEMP #### temporary WPD migration logic: redirect to /
	if request.host == 'watchpeopledie.co' and SITE == "watchpeopledie.co":
		request.path = request.path.rstrip('/')
		if not request.path: request.path = '/'
		if request.path != '/':
			return redirect('/')
	#### END WPD TEMP ####
	request.path = request.path.rstrip('/')
	if not request.path: request.path = '/'
	request.full_path = request.full_path.rstrip('?').rstrip('/')
	if not request.full_path: request.full_path = '/'

	if not session.get("session_id"):
		session.permanent = True
		session["session_id"] = secrets.token_hex(49)

@app.after_request
def after_request(response):
	response.headers.add("Strict-Transport-Security", "max-age=31536000")
	response.headers.add("X-Frame-Options", "deny")
	if response.status_code < 400:
		g.db.commit()
		g.db.close()
		del g.db
	return response

@app.teardown_appcontext
def teardown_request(error):
	if hasattr(g, 'db') and g.db:
		g.db.rollback()
		g.db.close()
		del g.db
	stdout.flush()

if "load_chat" in argv:
	from files.routes.chat import *
else:
	from files.routes import *

stdout.flush()
mn 2022-05-04 23:09:46 +00:00			`import gevent.monkey`
			`gevent.monkey.patch_all()`
			`from os import environ, path`
			`import secrets`
			`from flask import *`
			`from flask_caching import Cache`
			`from flask_limiter import Limiter`
			`from flask_compress import Compress`
			`from sqlalchemy.ext.declarative import declarative_base`
			`from sqlalchemy.orm import sessionmaker, scoped_session`
			`from sqlalchemy import *`
			`import gevent`
			`import redis`
			`import time`
			`from sys import stdout, argv`
			`import faulthandler`
			`import json`
add a 2nd email account for WPD 2022-08-05 17:22:17 +00:00			`import random`
mn 2022-05-04 23:09:46 +00:00
			`app = Flask(__name__, template_folder='templates')`
			`app.url_map.strict_slashes = False`
			`app.jinja_env.cache = {}`
			`app.jinja_env.auto_reload = True`
LGB: Add directory. 2022-07-09 10:38:45 +00:00			`app.jinja_env.add_extension('jinja2.ext.do')`
mn 2022-05-04 23:09:46 +00:00			`faulthandler.enable()`

tweak env again 2022-10-10 09:06:27 +00:00			`app.config['SECRET_KEY'] = environ.get('SECRET_KEY').strip()`
allow multiple hosts (thanks JC I love you) 2022-10-21 11:15:26 +00:00			`SITE = environ.get("SITE").strip()`
mn 2022-05-04 23:09:46 +00:00			`app.config['SEND_FILE_MAX_AGE_DEFAULT'] = 3153600`
			`app.config["SESSION_COOKIE_NAME"] = "session_" + environ.get("SITE_NAME").strip().lower()`
bgd 2022-05-07 06:04:14 +00:00			`app.config['MAX_CONTENT_LENGTH'] = 100 * 1024 * 1024`
mn 2022-05-04 23:09:46 +00:00			`app.config["SESSION_COOKIE_SECURE"] = True`
			`app.config["SESSION_COOKIE_SAMESITE"] = "Lax"`
sfd 2022-05-27 21:28:10 +00:00			`app.config["PERMANENT_SESSION_LIFETIME"] = 60 * 60 * 24 * 365`
fds 2022-05-19 17:58:18 +00:00			`app.config['SESSION_REFRESH_EACH_REQUEST'] = False`
stop using app.config for our own stuff 2022-06-24 15:08:57 +00:00
			`app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False`
tweak env again 2022-10-10 09:06:27 +00:00			`app.config['SQLALCHEMY_DATABASE_URL'] = environ.get("DATABASE_URL").strip()`
stop using app.config for our own stuff 2022-06-24 15:08:57 +00:00
mn 2022-05-04 23:09:46 +00:00			`app.config["CACHE_TYPE"] = "RedisCache"`
tweak env again 2022-10-10 09:06:27 +00:00			`app.config["CACHE_REDIS_URL"] = environ.get("REDIS_URL").strip()`
stop using app.config for our own stuff 2022-06-24 15:08:57 +00:00

Revert "use redis for site settings instead of a json file" This reverts commit a7b67db555cc5ae8419ae4d452f93bd0d388fb30. 2022-06-10 21:52:32 +00:00			`app.config['SETTINGS'] = {}`
mn 2022-05-04 23:09:46 +00:00
tweak env again 2022-10-10 09:06:27 +00:00			`r=redis.Redis(host=environ.get("REDIS_URL").strip(), decode_responses=True, ssl_cert_reqs=None)`
mn 2022-05-04 23:09:46 +00:00
			`def get_CF():`
			`with app.app_context():`
			`return request.headers.get('CF-Connecting-IP')`

			`limiter = Limiter(`
			`app,`
			`key_func=get_CF,`
			`default_limits=["3/second;30/minute;200/hour;1000/day"],`
			`application_limits=["10/second;200/minute;5000/hour;10000/day"],`
			`storage_uri=environ.get("REDIS_URL", "redis://localhost")`
			`)`

			`Base = declarative_base()`

stop using app.config for our own stuff 2022-06-24 15:08:57 +00:00			`engine = create_engine(app.config['SQLALCHEMY_DATABASE_URL'])`
mn 2022-05-04 23:09:46 +00:00
Revert "Revert "Revert "restore autoflush""" This reverts commit d84b26fc77143c65c9080cc5ebdb332e867960d3. 2022-08-25 15:04:33 +00:00			`db_session = scoped_session(sessionmaker(bind=engine, autoflush=False))`
mn 2022-05-04 23:09:46 +00:00
			`cache = Cache(app)`
			`Compress(app)`

move site_settings.json out of the repo 2022-07-29 22:14:25 +00:00			`if not path.isfile(f'/site_settings.json'):`
			`with open('/site_settings.json', 'w', encoding='utf_8') as f:`
Turn login-gate of 1568ec01624 into admin toggle. 2022-08-05 20:40:48 +00:00			`f.write(`
			`'{"Bots": true, "Fart mode": false, "Read-only mode": false, ' + \`
			`'"Signups": true, "login_required": false}')`
move site_settings.json out of the repo 2022-07-29 22:14:25 +00:00
mn 2022-05-04 23:09:46 +00:00			`@app.before_request`
			`def before_request():`
fsd 2022-05-26 20:53:24 +00:00			`g.agent = request.headers.get("User-Agent")`
kofi integration 2022-09-13 16:53:19 +00:00			`if not g.agent and request.path != '/kofi':`
			`return 'Please use a "User-Agent" header!', 403`
fsd 2022-05-26 20:53:24 +00:00
kofi integration 2022-09-13 16:53:19 +00:00			`ua = g.agent or ''`
			`ua = ua.lower()`
fds 2022-05-26 20:49:36 +00:00
move site_settings.json out of the repo 2022-07-29 22:14:25 +00:00			`with open('/site_settings.json', 'r', encoding='utf_8') as f:`
Revert "use redis for site settings instead of a json file" This reverts commit a7b67db555cc5ae8419ae4d452f93bd0d388fb30. 2022-06-10 21:52:32 +00:00			`app.config['SETTINGS'] = json.load(f)`
WPD: revert partially and add WPD temp stuff (leak host for WPD) 2022-10-18 11:23:59 +00:00			`### WPD TEMP ####`
allow multiple hosts (thanks JC I love you) 2022-10-21 11:15:26 +00:00			`if request.host != SITE and SITE != "watchpeopledie.co":`
WPD: revert partially and add WPD temp stuff (leak host for WPD) 2022-10-18 11:23:59 +00:00			`return {"error": "Unauthorized host provided"}, 403`
			`#### END WPD TEMP ####`
			`# uncomment below after done with WPD migration`
allow multiple hosts (thanks JC I love you) 2022-10-21 11:15:26 +00:00			`# if request.host != SITE: return {"error": "Unauthorized host provided."}, 403`
partially revert this for main 2022-10-12 16:01:43 +00:00			`if request.headers.get("CF-Worker"): return {"error": "Cloudflare workers are not allowed to access this website."}, 403`
mn 2022-05-04 23:09:46 +00:00
kofi integration 2022-09-13 16:53:19 +00:00			`if not app.config['SETTINGS']['Bots'] and request.headers.get("Authorization"): abort(403)`
mn 2022-05-04 23:09:46 +00:00
			`g.db = db_session()`
cleanup 2022-05-29 01:55:36 +00:00			`g.webview = '; wv) ' in ua`
Revert "fuck you, use a real browser" This reverts commit 6ecca709248fb15d13feb4c896ff2c22ff1df76d. 2022-06-16 00:31:14 +00:00			`g.inferior_browser = 'iphone' in ua or 'ipad' in ua or 'ipod' in ua or 'mac os' in ua or ' firefox/' in ua`
mn 2022-05-04 23:09:46 +00:00
WPD: revert partially and add WPD temp stuff (leak host for WPD) 2022-10-18 11:23:59 +00:00			`#### WPD TEMP #### temporary WPD migration logic: redirect to /`
allow multiple hosts (thanks JC I love you) 2022-10-21 11:15:26 +00:00			`if request.host == 'watchpeopledie.co' and SITE == "watchpeopledie.co":`
WPD: revert partially and add WPD temp stuff (leak host for WPD) 2022-10-18 11:23:59 +00:00			`request.path = request.path.rstrip('/')`
			`if not request.path: request.path = '/'`
			`if request.path != '/':`
			`return redirect('/')`
			`#### END WPD TEMP ####`
normalizing request.full_path 2022-08-01 18:03:29 +00:00			`request.path = request.path.rstrip('/')`
fix PWA prompt not working for logged-in users 2022-09-04 23:37:01 +00:00			`if not request.path: request.path = '/'`
same as last commit 2022-09-04 23:37:39 +00:00			`request.full_path = request.full_path.rstrip('?').rstrip('/')`
			`if not request.full_path: request.full_path = '/'`
notifications rework 2022-07-08 18:06:54 +00:00
fix 500 error 2022-10-19 22:28:07 +00:00			`if not session.get("session_id"):`
			`session.permanent = True`
			`session["session_id"] = secrets.token_hex(49)`

mn 2022-05-04 23:09:46 +00:00			`@app.after_request`
			`def after_request(response):`
			`response.headers.add("Strict-Transport-Security", "max-age=31536000")`
			`response.headers.add("X-Frame-Options", "deny")`
don't commit if error happens 2022-06-27 05:24:11 +00:00			`if response.status_code < 400:`
			`g.db.commit()`
			`g.db.close()`
			`del g.db`
mn 2022-05-04 23:09:46 +00:00			`return response`

sort the functions after request by chronological order 2022-06-26 06:33:08 +00:00			`@app.teardown_appcontext`
			`def teardown_request(error):`
			`if hasattr(g, 'db') and g.db:`
don't commit if error happens 2022-06-27 05:24:11 +00:00			`g.db.rollback()`
sort the functions after request by chronological order 2022-06-26 06:33:08 +00:00			`g.db.close()`
don't commit if error happens 2022-06-27 05:24:11 +00:00			`del g.db`
sort the functions after request by chronological order 2022-06-26 06:33:08 +00:00			`stdout.flush()`

add nginx to docker 2022-10-04 19:48:52 +00:00			`if "load_chat" in argv:`
mn 2022-05-04 23:09:46 +00:00			`from files.routes.chat import *`
			`else:`
cleanup 2022-05-29 01:55:36 +00:00			`from files.routes import *`
revert what I did with the slur regex 2022-07-17 19:17:46 +00:00
Add trailing final newlines to source files. Touched a ton of files to finally standardize on having trailing final newlines, as best practice recommends and so our devs stop accidentally fighting each other over it. This was performed automatically with the following: git ls-files -z '.py' \| while IFS= read -rd '' f; \ do tail -c1 < "$f" \| read -r _ \|\| echo >> "$f"; done git ls-files -z '.css' \| while IFS= read -rd '' f; \ do tail -c1 < "$f" \| read -r _ \|\| echo >> "$f"; done 2022-09-29 05:43:29 +00:00			`stdout.flush()`