#!/usr/bin/env python3.6 from flask import Flask, make_response from flask import render_template, url_for, send_from_directory, redirect, request, send_file from flask_login import login_user, login_required, current_user, LoginManager, UserMixin, logout_user, login_manager from flask_sqlalchemy import SQLAlchemy from werkzeug.security import generate_password_hash, check_password_hash from talisman import Talisman import hashlib import datetime import time import dualisauth import fetchRAPLA import requesthelpers from fetchRAPLA import * from get_mysql import get_mysql from calendar_generation import getWeek from init import * @app.route("/") def index(): return redirect(url_for("login")) @app.route("/welcome") @login_required def welcome(): kurs = current_user.kurs name = current_user.name return render_template('index.html', headermessage='DualHub', message="Hallo, " + name + " (" + kurs + ")") @app.route("/backendpoc/set-up") @login_required def getKurs(): d = Dualis.query.filter_by(uid=current_user.id).first() if d: e = False if not current_user.kurs: cookie = request.cookies.get("cnsc") kurs = dualisauth.getKurs(d.token, cookie) if kurs != 0: current_user.kurs = kurs db.session.commit() else: e = True else: kurs = current_user.kurs current_user.kurs = kurs db.session.commit() else: e = True kurs = "" return render_template('kurs.html', detected=(kurs, e)) @app.route("/backendpoc/error") def error(ecode): if ecode == 900: msg = "Ungültige RAPLA-URL! Sicher, dass der Link zum DHBW-Rapla führt?" elif ecode == 899: msg = "Der Kalender wurde nicht gefunden! Sicher, dass der Link korrekt ist?" else: msg = "Unbekannter Fehler!" return render_template('index.html', message=msg, headermessage="DualHub") @app.route("/backendpoc/rapla") @login_required def chooseRaplas(): r = getRaplas() return render_template("rapla.html", raplas=r) @login_required @app.route("/backendpoc/rapla", methods=["POST"]) def getRapla(): file = str(request.form.get("file")) url = str(request.form.get("url")) if file == url == "None": return redirect(url_for("chooseRaplas")) if file != "None": User.query.filter_by(id=current_user.id).first().kurs = file[5:-5] db.session.commit() #return send_file("calendars/" + file) elif url != "None": file = getNewRapla(url) if type(file) is not int: User.query.filter_by(id=current_user.id).first().kurs = file[5:-5] db.session.commit() #return send_file("calendars/" + file) else: return redirect(url_for("error", ecode=file + 900)) return redirect(url_for("welcome")) @login_required @app.route("/backendpoc/plan", methods=["GET"]) def displayRapla(): week = request.args.get("week") if week: week = datetime.datetime.strptime(week, "%Y-%m-%d") else: week = "today" samstag = request.args.get("samstag") if not samstag: samstag = False events = getWeek(week, fetchRAPLA.getIcal(current_user.kurs), samstag) return render_template("plan.html", events=events[0], eventdays=events[1]) @app.route("/backendpoc/plan/") def displayPlan(kurs): week = request.args.get("week") if week: week = datetime.datetime.strptime(week, "%Y-%m-%d") else: week = "today" try: if current_user.kurs == kurs.upper(): return redirect(url_for("displayRapla")) except AttributeError: pass plan = fetchRAPLA.getIcal(kurs.upper()) if plan: samstag = request.args.get("samstag") if not samstag: samstag = False events = getWeek(week, plan, samstag) return render_template("plan-anon.html", events=events[0], eventdays=events[1]) else: return redirect(url_for("login")) @app.route("/backendpoc/log-in") def login(code: int = None): if code: print(code) return render_template("login.html") @app.route("/backendpoc/log-in", methods=["POST"]) def login_post(): email = request.form.get("email") password = request.form.get("password") n = request.args.get("next") if n: success = make_response(redirect(n)) else: success = make_response(redirect(url_for("getKurs"))) user = User.query.filter_by(email=email).first() newcookie = "" if user: dualis = Dualis.query.filter_by(uid=user.id).first() if check_password_hash(user.password, password): if not dualis.token or not dualisauth.checkLifetime(dualis.token_created): new_token = dualisauth.checkUser(email, password) dualis.token = new_token[0] newcookie = requesthelpers.getCookie(new_token[1].cookies) dualis.token_created = time.time() db.session.commit() else: t = dualisauth.checkUser(email, password) if t[0] == -2: return redirect(url_for("login", code=-2)) else: user.password = generate_password_hash(password, method="pbkdf2:sha256") dualis.token = t[0] newcookie = requesthelpers.getCookie(t[1].cookies) dualis.token_created = time.time() db.session.commit() login_user(user) if user.kurs: success = make_response(redirect(url_for("welcome"))) success.set_cookie("cnsc", value=newcookie, httponly=True, secure=True) return success t = dualisauth.checkUser(email, password) if t[0] == -2: return redirect(url_for("login", code=-2)) hashid = int(hashlib.sha1(email.encode("utf-8")).hexdigest(), 16) % (10 ** 8) hashpw = generate_password_hash(password, method="pbkdf2:sha256") pname = email.find(".") + 1 ename = min(email[pname:].find("."), email[pname:].find("@")) name = email[pname:pname + ename].capitalize() new_user = User(email=email, password=hashpw, name=name, id=hashid) db.session.add(new_user) cookie = requesthelpers.getCookie(t[1].cookies) new_dualis = Dualis(uid=hashid, token=t[0], token_created=int(time.time())) db.session.add(new_dualis) db.session.commit() login_user(new_user) newcookie = cookie success.set_cookie("cnsc", value=newcookie, httponly=True, secure=True) return success @app.route("/backendpoc/log-out") def logout(): cookie = request.cookies.get("cnsc") dualis = Dualis.query.filter_by(uid=current_user.id).first() dualisauth.logOut(dualis.token, cookie) dualis.token = None db.session.commit() logout_user() red = make_response(redirect(url_for("login", code=1))) red.set_cookie("cnsc", value="Logged out! Your temporary token " "on our server and the cookie on your device have been deleted.", httponly=True, secure=True) return red if __name__ == "__main__": app.run(host='0.0.0.0', port=2024, debug=True)