2017-05-12 18:51:49 +00:00
|
|
|
import flask
|
|
|
|
|
from werkzeug.datastructures import CombinedMultiDict
|
|
|
|
|
from nyaa import app, db
|
|
|
|
|
from nyaa import models, forms
|
|
|
|
|
from nyaa import bencode, utils
|
|
|
|
|
from nyaa import torrents
|
2017-05-13 00:38:38 +00:00
|
|
|
from nyaa import backend
|
2017-05-12 18:51:49 +00:00
|
|
|
from nyaa import api_handler
|
2017-05-16 06:51:58 +00:00
|
|
|
from nyaa.search import search_elastic, search_db
|
2017-05-22 21:01:23 +00:00
|
|
|
from sqlalchemy.orm import joinedload
|
2017-05-12 18:51:49 +00:00
|
|
|
import config
|
|
|
|
|
|
2017-05-24 10:34:33 +00:00
|
|
|
import re
|
2017-05-12 18:51:49 +00:00
|
|
|
import json
|
2017-05-13 17:26:43 +00:00
|
|
|
from datetime import datetime, timedelta
|
2017-05-21 17:12:15 +00:00
|
|
|
from ipaddress import ip_address
|
2017-05-12 18:51:49 +00:00
|
|
|
import os.path
|
|
|
|
|
import base64
|
|
|
|
|
from urllib.parse import quote
|
2017-05-16 06:51:58 +00:00
|
|
|
import math
|
2017-05-13 00:38:38 +00:00
|
|
|
from werkzeug import url_encode
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
from itsdangerous import URLSafeSerializer, BadSignature
|
|
|
|
|
|
|
|
|
|
import smtplib
|
|
|
|
|
from email.mime.multipart import MIMEMultipart
|
|
|
|
|
from email.mime.text import MIMEText
|
|
|
|
|
from email.utils import formatdate
|
|
|
|
|
|
2017-05-16 06:51:58 +00:00
|
|
|
from flask_paginate import Pagination
|
2017-05-14 08:01:26 +00:00
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
DEBUG_API = False
|
2017-05-16 06:51:58 +00:00
|
|
|
DEFAULT_MAX_SEARCH_RESULT = 1000
|
|
|
|
|
DEFAULT_PER_PAGE = 75
|
2017-05-16 09:56:12 +00:00
|
|
|
SERACH_PAGINATE_DISPLAY_MSG = ('Displaying results {start}-{end} out of {total} results.<br>\n'
|
|
|
|
|
'Please refine your search results if you can\'t find '
|
|
|
|
|
'what you were looking for.')
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
2017-05-25 18:13:35 +00:00
|
|
|
# For static_cachebuster
|
|
|
|
|
_static_cache = {}
|
|
|
|
|
|
|
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
def redirect_url():
|
|
|
|
|
url = flask.request.args.get('next') or \
|
|
|
|
|
flask.request.referrer or \
|
|
|
|
|
'/'
|
|
|
|
|
if url == flask.request.url:
|
|
|
|
|
return '/'
|
|
|
|
|
return url
|
|
|
|
|
|
|
|
|
|
|
2017-05-25 17:11:37 +00:00
|
|
|
@app.template_global()
|
2017-05-25 19:01:54 +00:00
|
|
|
def static_cachebuster(filename):
|
2017-05-25 17:11:37 +00:00
|
|
|
''' Adds a ?t=<mtime> cachebuster to the given path, if the file exists.
|
|
|
|
|
Results are cached in memory and persist until app restart! '''
|
|
|
|
|
# Instead of timestamps, we could use commit hashes (we already load it in __init__)
|
|
|
|
|
# But that'd mean every static resource would get cache busted. This lets unchanged items
|
|
|
|
|
# stay in the cache.
|
|
|
|
|
|
|
|
|
|
if app.debug:
|
|
|
|
|
# Do not bust cache on debug (helps debugging)
|
2017-05-25 19:01:54 +00:00
|
|
|
return flask.url_for('static', filename=filename)
|
2017-05-25 17:11:37 +00:00
|
|
|
|
|
|
|
|
# Get file mtime if not already cached.
|
2017-05-25 19:01:54 +00:00
|
|
|
if filename not in _static_cache:
|
|
|
|
|
file_path = os.path.join(app.static_folder, filename)
|
|
|
|
|
file_mtime = None
|
2017-05-25 17:11:37 +00:00
|
|
|
if os.path.exists(file_path):
|
|
|
|
|
file_mtime = int(os.path.getmtime(file_path))
|
|
|
|
|
|
2017-05-25 19:01:54 +00:00
|
|
|
_static_cache[filename] = file_mtime
|
|
|
|
|
|
|
|
|
|
return flask.url_for('static', filename=filename, t=_static_cache[filename])
|
2017-05-12 18:51:49 +00:00
|
|
|
|
2017-05-25 18:13:35 +00:00
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
@app.template_global()
|
|
|
|
|
def modify_query(**new_values):
|
|
|
|
|
args = flask.request.args.copy()
|
|
|
|
|
|
|
|
|
|
for key, value in new_values.items():
|
|
|
|
|
args[key] = value
|
|
|
|
|
|
|
|
|
|
return '{}?{}'.format(flask.request.path, url_encode(args))
|
|
|
|
|
|
2017-05-16 06:51:58 +00:00
|
|
|
|
2017-05-12 19:24:45 +00:00
|
|
|
@app.template_global()
|
|
|
|
|
def filter_truthy(input_list):
|
|
|
|
|
''' Jinja2 can't into list comprehension so this is for
|
|
|
|
|
the search_results.html template '''
|
|
|
|
|
return [item for item in input_list if item]
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
2017-05-19 12:24:09 +00:00
|
|
|
@app.template_global()
|
|
|
|
|
def category_name(cat_id):
|
|
|
|
|
''' Given a category id (eg. 1_2), returns a category name (eg. Anime - English-translated) '''
|
|
|
|
|
return ' - '.join(get_category_id_map().get(cat_id, ['???']))
|
|
|
|
|
|
|
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
@app.errorhandler(404)
|
|
|
|
|
def not_found(error):
|
|
|
|
|
return flask.render_template('404.html'), 404
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.before_request
|
|
|
|
|
def before_request():
|
|
|
|
|
flask.g.user = None
|
|
|
|
|
if 'user_id' in flask.session:
|
|
|
|
|
user = models.User.by_id(flask.session['user_id'])
|
|
|
|
|
if not user:
|
|
|
|
|
return logout()
|
|
|
|
|
|
|
|
|
|
flask.g.user = user
|
2017-05-13 17:26:43 +00:00
|
|
|
|
2017-05-17 09:36:27 +00:00
|
|
|
if 'timeout' not in flask.session or flask.session['timeout'] < datetime.now():
|
2017-05-13 17:26:43 +00:00
|
|
|
flask.session['timeout'] = datetime.now() + timedelta(days=7)
|
|
|
|
|
flask.session.permanent = True
|
|
|
|
|
flask.session.modified = True
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
if flask.g.user.status == models.UserStatusType.BANNED:
|
|
|
|
|
return 'You are banned.', 403
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def _generate_query_string(term, category, filter, user):
|
|
|
|
|
params = {}
|
|
|
|
|
if term:
|
|
|
|
|
params['q'] = str(term)
|
|
|
|
|
if category:
|
|
|
|
|
params['c'] = str(category)
|
|
|
|
|
if filter:
|
|
|
|
|
params['f'] = str(filter)
|
|
|
|
|
if user:
|
|
|
|
|
params['u'] = str(user)
|
|
|
|
|
return params
|
|
|
|
|
|
|
|
|
|
|
2017-05-16 08:04:08 +00:00
|
|
|
@app.template_filter('utc_time')
|
|
|
|
|
def get_utc_timestamp(datetime_str):
|
|
|
|
|
''' Returns a UTC POSIX timestamp, as seconds '''
|
|
|
|
|
UTC_EPOCH = datetime.utcfromtimestamp(0)
|
|
|
|
|
return int((datetime.strptime(datetime_str, '%Y-%m-%dT%H:%M:%S') - UTC_EPOCH).total_seconds())
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.template_filter('display_time')
|
|
|
|
|
def get_display_time(datetime_str):
|
|
|
|
|
return datetime.strptime(datetime_str, '%Y-%m-%dT%H:%M:%S').strftime('%Y-%m-%d %H:%M')
|
|
|
|
|
|
2017-05-19 12:36:33 +00:00
|
|
|
|
2017-05-19 12:21:20 +00:00
|
|
|
@utils.cached_function
|
|
|
|
|
def get_category_id_map():
|
|
|
|
|
''' Reads database for categories and turns them into a dict with
|
|
|
|
|
ids as keys and name list as the value, ala
|
|
|
|
|
{'1_0': ['Anime'], '1_2': ['Anime', 'English-translated'], ...} '''
|
|
|
|
|
cat_id_map = {}
|
|
|
|
|
for main_cat in models.MainCategory.query:
|
|
|
|
|
cat_id_map[main_cat.id_as_string] = [main_cat.name]
|
|
|
|
|
for sub_cat in main_cat.sub_categories:
|
|
|
|
|
cat_id_map[sub_cat.id_as_string] = [main_cat.name, sub_cat.name]
|
|
|
|
|
return cat_id_map
|
|
|
|
|
|
|
|
|
|
|
2017-05-18 12:30:03 +00:00
|
|
|
# Routes start here #
|
|
|
|
|
|
2017-05-19 12:36:33 +00:00
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
def chain_get(source, *args):
|
|
|
|
|
''' Tries to return values from source by the given keys.
|
|
|
|
|
Returns None if none match.
|
|
|
|
|
Note: can return a None from the source. '''
|
|
|
|
|
sentinel = object()
|
|
|
|
|
for key in args:
|
|
|
|
|
value = source.get(key, sentinel)
|
|
|
|
|
if value is not sentinel:
|
|
|
|
|
return value
|
|
|
|
|
return None
|
2017-05-19 12:36:33 +00:00
|
|
|
|
2017-05-21 17:12:15 +00:00
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
@app.route('/rss', defaults={'rss': True})
|
|
|
|
|
@app.route('/', defaults={'rss': False})
|
|
|
|
|
def home(rss):
|
2017-05-19 17:11:20 +00:00
|
|
|
render_as_rss = rss
|
|
|
|
|
req_args = flask.request.args
|
|
|
|
|
if req_args.get('page') == 'rss':
|
|
|
|
|
render_as_rss = True
|
2017-05-12 18:51:49 +00:00
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
search_term = chain_get(req_args, 'q', 'term')
|
2017-05-12 18:51:49 +00:00
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
sort_key = req_args.get('s')
|
|
|
|
|
sort_order = req_args.get('o')
|
|
|
|
|
|
|
|
|
|
category = chain_get(req_args, 'c', 'cats')
|
|
|
|
|
quality_filter = chain_get(req_args, 'f', 'filter')
|
|
|
|
|
|
|
|
|
|
user_name = chain_get(req_args, 'u', 'user')
|
|
|
|
|
page_number = chain_get(req_args, 'p', 'page', 'offset')
|
|
|
|
|
try:
|
|
|
|
|
page_number = max(1, int(page_number))
|
|
|
|
|
except (ValueError, TypeError):
|
|
|
|
|
page_number = 1
|
|
|
|
|
|
|
|
|
|
# Check simply if the key exists
|
|
|
|
|
use_magnet_links = 'magnets' in req_args or 'm' in req_args
|
|
|
|
|
|
|
|
|
|
results_per_page = app.config.get('RESULTS_PER_PAGE', DEFAULT_PER_PAGE)
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
user_id = None
|
|
|
|
|
if user_name:
|
|
|
|
|
user = models.User.by_username(user_name)
|
|
|
|
|
if not user:
|
|
|
|
|
flask.abort(404)
|
|
|
|
|
user_id = user.id
|
|
|
|
|
|
2017-05-24 14:18:44 +00:00
|
|
|
special_results = {
|
2017-05-24 10:34:33 +00:00
|
|
|
'first_word_user': None,
|
2017-05-24 14:18:44 +00:00
|
|
|
'query_sans_user': None,
|
|
|
|
|
'infohash_torrent': None
|
2017-05-24 10:34:33 +00:00
|
|
|
}
|
2017-05-24 14:18:44 +00:00
|
|
|
# Add advanced features to searches (but not RSS or user searches)
|
|
|
|
|
if search_term and not render_as_rss and not user_id:
|
|
|
|
|
# Check if the first word of the search is an existing user
|
2017-05-24 10:34:33 +00:00
|
|
|
user_word_match = re.match(r'^([a-zA-Z0-9_-]+) *(.*|$)', search_term)
|
|
|
|
|
if user_word_match:
|
2017-05-24 14:18:44 +00:00
|
|
|
special_results['first_word_user'] = models.User.by_username(user_word_match.group(1))
|
|
|
|
|
special_results['query_sans_user'] = user_word_match.group(2)
|
|
|
|
|
|
|
|
|
|
# Check if search is a 40-char torrent hash
|
|
|
|
|
infohash_match = re.match(r'(?i)^([a-f0-9]{40})$', search_term)
|
|
|
|
|
if infohash_match:
|
|
|
|
|
# Check for info hash in database
|
|
|
|
|
matched_torrent = models.Torrent.by_info_hash_hex(infohash_match.group(1))
|
|
|
|
|
special_results['infohash_torrent'] = matched_torrent
|
2017-05-24 08:23:04 +00:00
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
query_args = {
|
|
|
|
|
'user': user_id,
|
2017-05-19 17:11:20 +00:00
|
|
|
'sort': sort_key or 'id',
|
|
|
|
|
'order': sort_order or 'desc',
|
2017-05-12 18:51:49 +00:00
|
|
|
'category': category or '0_0',
|
2017-05-13 05:20:14 +00:00
|
|
|
'quality_filter': quality_filter or '0',
|
2017-05-19 17:11:20 +00:00
|
|
|
'page': page_number,
|
|
|
|
|
'rss': render_as_rss,
|
|
|
|
|
'per_page': results_per_page
|
2017-05-12 18:51:49 +00:00
|
|
|
}
|
|
|
|
|
|
2017-05-16 06:51:58 +00:00
|
|
|
if flask.g.user:
|
|
|
|
|
query_args['logged_in_user'] = flask.g.user
|
2017-05-21 17:12:15 +00:00
|
|
|
if flask.g.user.is_moderator: # God mode
|
2017-05-16 06:51:58 +00:00
|
|
|
query_args['admin'] = True
|
|
|
|
|
|
2017-05-24 14:18:44 +00:00
|
|
|
infohash_torrent = special_results.get('infohash_torrent')
|
|
|
|
|
if infohash_torrent:
|
|
|
|
|
# infohash_torrent is only set if this is not RSS or userpage search
|
|
|
|
|
flask.flash(flask.Markup('You were redirected here because '
|
|
|
|
|
'the given hash matched this torrent.'), 'info')
|
|
|
|
|
# Redirect user from search to the torrent if we found one with the specific info_hash
|
|
|
|
|
return flask.redirect(flask.url_for('view_torrent', torrent_id=infohash_torrent.id))
|
|
|
|
|
|
2017-05-16 06:51:58 +00:00
|
|
|
# If searching, we get results from elastic search
|
|
|
|
|
use_elastic = app.config.get('USE_ELASTIC_SEARCH')
|
2017-05-19 17:11:20 +00:00
|
|
|
if use_elastic and search_term:
|
|
|
|
|
query_args['term'] = search_term
|
2017-05-16 06:51:58 +00:00
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
max_search_results = app.config.get('ES_MAX_SEARCH_RESULT', DEFAULT_MAX_SEARCH_RESULT)
|
2017-05-16 06:51:58 +00:00
|
|
|
|
2017-05-16 09:47:06 +00:00
|
|
|
# Only allow up to (max_search_results / page) pages
|
2017-05-19 17:11:20 +00:00
|
|
|
max_page = min(query_args['page'], int(math.ceil(max_search_results / results_per_page)))
|
2017-05-16 06:51:58 +00:00
|
|
|
|
|
|
|
|
query_args['page'] = max_page
|
|
|
|
|
query_args['max_search_results'] = max_search_results
|
|
|
|
|
|
|
|
|
|
query_results = search_elastic(**query_args)
|
|
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
if render_as_rss:
|
2017-05-22 14:03:34 +00:00
|
|
|
return render_rss(
|
|
|
|
|
'"{}"'.format(search_term), query_results,
|
|
|
|
|
use_elastic=True, magnet_links=use_magnet_links)
|
2017-05-16 06:51:58 +00:00
|
|
|
else:
|
2017-05-21 17:12:15 +00:00
|
|
|
rss_query_string = _generate_query_string(
|
|
|
|
|
search_term, category, quality_filter, user_name)
|
2017-05-16 06:51:58 +00:00
|
|
|
max_results = min(max_search_results, query_results['hits']['total'])
|
|
|
|
|
# change p= argument to whatever you change page_parameter to or pagination breaks
|
2017-05-19 17:11:20 +00:00
|
|
|
pagination = Pagination(p=query_args['page'], per_page=results_per_page,
|
2017-05-16 06:51:58 +00:00
|
|
|
total=max_results, bs_version=3, page_parameter='p',
|
|
|
|
|
display_msg=SERACH_PAGINATE_DISPLAY_MSG)
|
|
|
|
|
return flask.render_template('home.html',
|
|
|
|
|
use_elastic=True,
|
|
|
|
|
pagination=pagination,
|
|
|
|
|
torrent_query=query_results,
|
|
|
|
|
search=query_args,
|
2017-05-24 08:23:04 +00:00
|
|
|
rss_filter=rss_query_string,
|
2017-05-24 14:18:44 +00:00
|
|
|
special_results=special_results)
|
2017-05-12 18:51:49 +00:00
|
|
|
else:
|
2017-05-16 06:51:58 +00:00
|
|
|
# If ES is enabled, default to db search for browsing
|
|
|
|
|
if use_elastic:
|
|
|
|
|
query_args['term'] = ''
|
2017-05-16 09:47:06 +00:00
|
|
|
else: # Otherwise, use db search for everything
|
2017-05-19 17:11:20 +00:00
|
|
|
query_args['term'] = search_term or ''
|
2017-05-16 07:46:25 +00:00
|
|
|
|
2017-05-16 06:51:58 +00:00
|
|
|
query = search_db(**query_args)
|
2017-05-19 17:11:20 +00:00
|
|
|
if render_as_rss:
|
|
|
|
|
return render_rss('Home', query, use_elastic=False, magnet_links=use_magnet_links)
|
2017-05-16 06:51:58 +00:00
|
|
|
else:
|
2017-05-21 17:12:15 +00:00
|
|
|
rss_query_string = _generate_query_string(
|
|
|
|
|
search_term, category, quality_filter, user_name)
|
2017-05-16 06:51:58 +00:00
|
|
|
# Use elastic is always false here because we only hit this section
|
|
|
|
|
# if we're browsing without a search term (which means we default to DB)
|
|
|
|
|
# or if ES is disabled
|
|
|
|
|
return flask.render_template('home.html',
|
|
|
|
|
use_elastic=False,
|
|
|
|
|
torrent_query=query,
|
|
|
|
|
search=query_args,
|
2017-05-24 08:23:04 +00:00
|
|
|
rss_filter=rss_query_string,
|
2017-05-24 14:18:44 +00:00
|
|
|
special_results=special_results)
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
2017-05-17 13:17:08 +00:00
|
|
|
@app.route('/user/<user_name>', methods=['GET', 'POST'])
|
2017-05-12 18:51:49 +00:00
|
|
|
def view_user(user_name):
|
|
|
|
|
user = models.User.by_username(user_name)
|
|
|
|
|
|
|
|
|
|
if not user:
|
|
|
|
|
flask.abort(404)
|
|
|
|
|
|
2017-05-21 17:12:15 +00:00
|
|
|
admin_form = None
|
|
|
|
|
if flask.g.user and flask.g.user.is_moderator and flask.g.user.level > user.level:
|
|
|
|
|
admin_form = forms.UserForm()
|
|
|
|
|
default, admin_form.user_class.choices = _create_user_class_choices(user)
|
|
|
|
|
if flask.request.method == 'GET':
|
|
|
|
|
admin_form.user_class.data = default
|
2017-05-15 11:49:25 +00:00
|
|
|
|
2017-07-05 04:13:59 +00:00
|
|
|
url = flask.url_for('view_user', user_name=user.username)
|
2017-05-21 17:12:15 +00:00
|
|
|
if flask.request.method == 'POST' and admin_form and admin_form.validate():
|
|
|
|
|
selection = admin_form.user_class.data
|
2017-07-05 04:13:59 +00:00
|
|
|
log = None
|
2017-05-15 11:49:25 +00:00
|
|
|
if selection == 'regular':
|
|
|
|
|
user.level = models.UserLevelType.REGULAR
|
2017-07-05 04:13:59 +00:00
|
|
|
log = "[{}]({}) changed to regular user".format(user_name, url)
|
2017-05-15 11:49:25 +00:00
|
|
|
elif selection == 'trusted':
|
|
|
|
|
user.level = models.UserLevelType.TRUSTED
|
2017-07-05 04:13:59 +00:00
|
|
|
log = "[{}]({}) changed to trusted user".format(user_name, url)
|
2017-05-21 17:12:15 +00:00
|
|
|
elif selection == 'moderator':
|
|
|
|
|
user.level = models.UserLevelType.MODERATOR
|
2017-07-05 04:13:59 +00:00
|
|
|
log = "[{}]({}) changed to moderator user".format(user_name, url)
|
2017-05-21 17:12:15 +00:00
|
|
|
|
2017-07-05 04:13:59 +00:00
|
|
|
adminlog = models.AdminLog(log=log, admin_id=flask.g.user.id)
|
2017-05-15 11:49:25 +00:00
|
|
|
db.session.add(user)
|
2017-07-05 04:13:59 +00:00
|
|
|
db.session.add(adminlog)
|
2017-05-15 11:49:25 +00:00
|
|
|
db.session.commit()
|
|
|
|
|
|
2017-07-05 04:13:59 +00:00
|
|
|
return flask.redirect(url)
|
2017-05-15 11:49:25 +00:00
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
user_level = ['Regular', 'Trusted', 'Moderator', 'Administrator'][user.level]
|
|
|
|
|
|
|
|
|
|
req_args = flask.request.args
|
|
|
|
|
|
|
|
|
|
search_term = chain_get(req_args, 'q', 'term')
|
2017-05-15 11:49:25 +00:00
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
sort_key = req_args.get('s')
|
|
|
|
|
sort_order = req_args.get('o')
|
2017-05-12 18:51:49 +00:00
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
category = chain_get(req_args, 'c', 'cats')
|
|
|
|
|
quality_filter = chain_get(req_args, 'f', 'filter')
|
|
|
|
|
|
|
|
|
|
page_number = chain_get(req_args, 'p', 'page', 'offset')
|
|
|
|
|
try:
|
|
|
|
|
page_number = max(1, int(page_number))
|
|
|
|
|
except (ValueError, TypeError):
|
|
|
|
|
page_number = 1
|
|
|
|
|
|
|
|
|
|
results_per_page = app.config.get('RESULTS_PER_PAGE', DEFAULT_PER_PAGE)
|
2017-05-16 06:51:58 +00:00
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
query_args = {
|
2017-05-19 17:11:20 +00:00
|
|
|
'term': search_term or '',
|
2017-05-12 18:51:49 +00:00
|
|
|
'user': user.id,
|
2017-05-19 17:11:20 +00:00
|
|
|
'sort': sort_key or 'id',
|
|
|
|
|
'order': sort_order or 'desc',
|
2017-05-12 18:51:49 +00:00
|
|
|
'category': category or '0_0',
|
2017-05-13 05:20:14 +00:00
|
|
|
'quality_filter': quality_filter or '0',
|
2017-05-19 17:11:20 +00:00
|
|
|
'page': page_number,
|
2017-05-16 06:51:58 +00:00
|
|
|
'rss': False,
|
2017-05-19 17:11:20 +00:00
|
|
|
'per_page': results_per_page
|
2017-05-12 18:51:49 +00:00
|
|
|
}
|
|
|
|
|
|
2017-05-16 06:51:58 +00:00
|
|
|
if flask.g.user:
|
|
|
|
|
query_args['logged_in_user'] = flask.g.user
|
2017-05-21 17:12:15 +00:00
|
|
|
if flask.g.user.is_moderator: # God mode
|
2017-05-16 06:51:58 +00:00
|
|
|
query_args['admin'] = True
|
2017-05-12 18:51:49 +00:00
|
|
|
|
2017-05-16 06:51:58 +00:00
|
|
|
# Use elastic search for term searching
|
2017-05-19 17:11:20 +00:00
|
|
|
rss_query_string = _generate_query_string(search_term, category, quality_filter, user_name)
|
2017-05-16 06:51:58 +00:00
|
|
|
use_elastic = app.config.get('USE_ELASTIC_SEARCH')
|
2017-05-19 17:11:20 +00:00
|
|
|
if use_elastic and search_term:
|
|
|
|
|
query_args['term'] = search_term
|
2017-05-16 06:51:58 +00:00
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
max_search_results = app.config.get('ES_MAX_SEARCH_RESULT', DEFAULT_MAX_SEARCH_RESULT)
|
2017-05-16 06:51:58 +00:00
|
|
|
|
2017-05-16 09:47:06 +00:00
|
|
|
# Only allow up to (max_search_results / page) pages
|
2017-05-19 17:11:20 +00:00
|
|
|
max_page = min(query_args['page'], int(math.ceil(max_search_results / results_per_page)))
|
2017-05-16 06:51:58 +00:00
|
|
|
|
|
|
|
|
query_args['page'] = max_page
|
|
|
|
|
query_args['max_search_results'] = max_search_results
|
|
|
|
|
|
|
|
|
|
query_results = search_elastic(**query_args)
|
|
|
|
|
|
|
|
|
|
max_results = min(max_search_results, query_results['hits']['total'])
|
|
|
|
|
# change p= argument to whatever you change page_parameter to or pagination breaks
|
2017-05-19 17:11:20 +00:00
|
|
|
pagination = Pagination(p=query_args['page'], per_page=results_per_page,
|
2017-05-16 06:51:58 +00:00
|
|
|
total=max_results, bs_version=3, page_parameter='p',
|
|
|
|
|
display_msg=SERACH_PAGINATE_DISPLAY_MSG)
|
|
|
|
|
return flask.render_template('user.html',
|
|
|
|
|
use_elastic=True,
|
|
|
|
|
pagination=pagination,
|
|
|
|
|
torrent_query=query_results,
|
|
|
|
|
search=query_args,
|
|
|
|
|
user=user,
|
|
|
|
|
user_page=True,
|
2017-05-17 10:02:15 +00:00
|
|
|
rss_filter=rss_query_string,
|
2017-05-19 17:11:20 +00:00
|
|
|
level=user_level,
|
2017-05-21 17:12:15 +00:00
|
|
|
admin_form=admin_form)
|
2017-05-16 06:51:58 +00:00
|
|
|
# Similar logic as home page
|
|
|
|
|
else:
|
|
|
|
|
if use_elastic:
|
|
|
|
|
query_args['term'] = ''
|
|
|
|
|
else:
|
2017-05-19 17:11:20 +00:00
|
|
|
query_args['term'] = search_term or ''
|
2017-05-16 06:51:58 +00:00
|
|
|
query = search_db(**query_args)
|
|
|
|
|
return flask.render_template('user.html',
|
|
|
|
|
use_elastic=False,
|
|
|
|
|
torrent_query=query,
|
|
|
|
|
search=query_args,
|
|
|
|
|
user=user,
|
|
|
|
|
user_page=True,
|
2017-05-17 10:02:15 +00:00
|
|
|
rss_filter=rss_query_string,
|
2017-05-19 17:11:20 +00:00
|
|
|
level=user_level,
|
2017-05-21 17:12:15 +00:00
|
|
|
admin_form=admin_form)
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.template_filter('rfc822')
|
|
|
|
|
def _jinja2_filter_rfc822(date, fmt=None):
|
2017-07-07 21:14:37 +00:00
|
|
|
return formatdate(date.timestamp())
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
2017-05-16 06:51:58 +00:00
|
|
|
@app.template_filter('rfc822_es')
|
2017-07-07 21:14:37 +00:00
|
|
|
def _jinja2_filter_rfc822_es(datestr, fmt=None):
|
|
|
|
|
return formatdate(datetime.strptime(datestr, '%Y-%m-%dT%H:%M:%S').timestamp())
|
2017-05-16 06:51:58 +00:00
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
|
2017-05-19 17:11:20 +00:00
|
|
|
def render_rss(label, query, use_elastic, magnet_links=False):
|
2017-05-12 18:51:49 +00:00
|
|
|
rss_xml = flask.render_template('rss.xml',
|
2017-05-16 06:51:58 +00:00
|
|
|
use_elastic=use_elastic,
|
2017-05-19 17:11:20 +00:00
|
|
|
magnet_links=magnet_links,
|
2017-05-12 18:51:49 +00:00
|
|
|
term=label,
|
2017-05-13 00:38:38 +00:00
|
|
|
site_url=flask.request.url_root,
|
2017-05-16 06:51:58 +00:00
|
|
|
torrent_query=query)
|
2017-05-12 18:51:49 +00:00
|
|
|
response = flask.make_response(rss_xml)
|
|
|
|
|
response.headers['Content-Type'] = 'application/xml'
|
2017-05-16 12:59:03 +00:00
|
|
|
# Cache for an hour
|
2017-05-18 03:56:36 +00:00
|
|
|
response.headers['Cache-Control'] = 'max-age={}'.format(1 * 5 * 60)
|
2017-05-12 18:51:49 +00:00
|
|
|
return response
|
|
|
|
|
|
|
|
|
|
|
2017-05-16 06:51:58 +00:00
|
|
|
# @app.route('/about', methods=['GET'])
|
2017-05-12 18:51:49 +00:00
|
|
|
# def about():
|
2017-05-14 07:24:34 +00:00
|
|
|
# return flask.render_template('about.html')
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/login', methods=['GET', 'POST'])
|
|
|
|
|
def login():
|
|
|
|
|
if flask.g.user:
|
|
|
|
|
return flask.redirect(redirect_url())
|
|
|
|
|
|
|
|
|
|
form = forms.LoginForm(flask.request.form)
|
|
|
|
|
if flask.request.method == 'POST' and form.validate():
|
|
|
|
|
username = form.username.data.strip()
|
|
|
|
|
password = form.password.data
|
|
|
|
|
user = models.User.by_username(username)
|
|
|
|
|
|
|
|
|
|
if not user:
|
|
|
|
|
user = models.User.by_email(username)
|
|
|
|
|
|
2017-05-14 06:33:46 +00:00
|
|
|
if (not user or password != user.password_hash
|
|
|
|
|
or user.status == models.UserStatusType.INACTIVE):
|
2017-05-12 18:51:49 +00:00
|
|
|
flask.flash(flask.Markup(
|
|
|
|
|
'<strong>Login failed!</strong> Incorrect username or password.'), 'danger')
|
|
|
|
|
return flask.redirect(flask.url_for('login'))
|
|
|
|
|
|
|
|
|
|
user.last_login_date = datetime.utcnow()
|
2017-05-21 17:12:15 +00:00
|
|
|
user.last_login_ip = ip_address(flask.request.remote_addr).packed
|
2017-05-12 18:51:49 +00:00
|
|
|
db.session.add(user)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
flask.g.user = user
|
|
|
|
|
flask.session['user_id'] = user.id
|
2017-05-13 17:26:43 +00:00
|
|
|
flask.session.permanent = True
|
|
|
|
|
flask.session.modified = True
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
return flask.redirect(redirect_url())
|
|
|
|
|
|
|
|
|
|
return flask.render_template('login.html', form=form)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/logout')
|
|
|
|
|
def logout():
|
|
|
|
|
flask.g.user = None
|
|
|
|
|
flask.session.permanent = False
|
|
|
|
|
flask.session.modified = False
|
|
|
|
|
|
|
|
|
|
response = flask.make_response(flask.redirect(redirect_url()))
|
|
|
|
|
response.set_cookie(app.session_cookie_name, expires=0)
|
|
|
|
|
return response
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/register', methods=['GET', 'POST'])
|
|
|
|
|
def register():
|
|
|
|
|
if flask.g.user:
|
|
|
|
|
return flask.redirect(redirect_url())
|
|
|
|
|
|
|
|
|
|
form = forms.RegisterForm(flask.request.form)
|
|
|
|
|
if flask.request.method == 'POST' and form.validate():
|
|
|
|
|
user = models.User(username=form.username.data.strip(),
|
|
|
|
|
email=form.email.data.strip(), password=form.password.data)
|
2017-05-21 17:12:15 +00:00
|
|
|
user.last_login_ip = ip_address(flask.request.remote_addr).packed
|
2017-05-12 18:51:49 +00:00
|
|
|
db.session.add(user)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
if config.USE_EMAIL_VERIFICATION: # force verification, enable email
|
|
|
|
|
activ_link = get_activation_link(user)
|
|
|
|
|
send_verification_email(user.email, activ_link)
|
|
|
|
|
return flask.render_template('waiting.html')
|
|
|
|
|
else: # disable verification, set user as active and auto log in
|
|
|
|
|
user.status = models.UserStatusType.ACTIVE
|
|
|
|
|
db.session.add(user)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
flask.g.user = user
|
|
|
|
|
flask.session['user_id'] = user.id
|
2017-05-13 17:26:43 +00:00
|
|
|
flask.session.permanent = True
|
|
|
|
|
flask.session.modified = True
|
2017-05-12 18:51:49 +00:00
|
|
|
return flask.redirect(redirect_url())
|
|
|
|
|
|
|
|
|
|
return flask.render_template('register.html', form=form)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/profile', methods=['GET', 'POST'])
|
|
|
|
|
def profile():
|
|
|
|
|
if not flask.g.user:
|
|
|
|
|
return flask.redirect('/') # so we dont get stuck in infinite loop when signing out
|
|
|
|
|
|
|
|
|
|
form = forms.ProfileForm(flask.request.form)
|
2017-05-16 04:20:40 +00:00
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
if flask.request.method == 'POST' and form.validate():
|
|
|
|
|
user = flask.g.user
|
2017-05-17 07:53:07 +00:00
|
|
|
new_email = form.email.data.strip()
|
2017-05-12 18:51:49 +00:00
|
|
|
new_password = form.new_password.data
|
|
|
|
|
|
|
|
|
|
if new_email:
|
2017-05-16 21:10:25 +00:00
|
|
|
# enforce password check on email change too
|
|
|
|
|
if form.current_password.data != user.password_hash:
|
|
|
|
|
flask.flash(flask.Markup(
|
|
|
|
|
'<strong>Email change failed!</strong> Incorrect password.'), 'danger')
|
|
|
|
|
return flask.redirect('/profile')
|
2017-05-12 18:51:49 +00:00
|
|
|
user.email = form.email.data
|
2017-05-17 07:53:07 +00:00
|
|
|
flask.flash(flask.Markup(
|
2017-05-17 20:37:22 +00:00
|
|
|
'<strong>Email successfully changed!</strong>'), 'success')
|
2017-05-12 18:51:49 +00:00
|
|
|
if new_password:
|
|
|
|
|
if form.current_password.data != user.password_hash:
|
|
|
|
|
flask.flash(flask.Markup(
|
|
|
|
|
'<strong>Password change failed!</strong> Incorrect password.'), 'danger')
|
|
|
|
|
return flask.redirect('/profile')
|
|
|
|
|
user.password_hash = form.new_password.data
|
2017-05-17 07:53:07 +00:00
|
|
|
flask.flash(flask.Markup(
|
2017-05-17 20:37:22 +00:00
|
|
|
'<strong>Password successfully changed!</strong>'), 'success')
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
db.session.add(user)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
flask.g.user = user
|
2017-05-17 07:53:07 +00:00
|
|
|
return flask.redirect('/profile')
|
2017-05-12 18:51:49 +00:00
|
|
|
|
2017-05-23 22:28:17 +00:00
|
|
|
return flask.render_template('profile.html', form=form)
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/user/activate/<payload>')
|
|
|
|
|
def activate_user(payload):
|
|
|
|
|
s = get_serializer()
|
|
|
|
|
try:
|
|
|
|
|
user_id = s.loads(payload)
|
|
|
|
|
except BadSignature:
|
|
|
|
|
flask.abort(404)
|
|
|
|
|
|
|
|
|
|
user = models.User.by_id(user_id)
|
|
|
|
|
|
|
|
|
|
if not user:
|
|
|
|
|
flask.abort(404)
|
|
|
|
|
|
|
|
|
|
user.status = models.UserStatusType.ACTIVE
|
|
|
|
|
|
|
|
|
|
db.session.add(user)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
return flask.redirect('/login')
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@utils.cached_function
|
|
|
|
|
def _create_upload_category_choices():
|
|
|
|
|
''' Turns categories in the database into a list of (id, name)s '''
|
|
|
|
|
choices = [('', '[Select a category]')]
|
2017-05-19 12:21:20 +00:00
|
|
|
id_map = get_category_id_map()
|
|
|
|
|
|
|
|
|
|
for key in sorted(id_map.keys()):
|
|
|
|
|
cat_names = id_map[key]
|
|
|
|
|
is_main_cat = key.endswith('_0')
|
|
|
|
|
|
2017-05-20 19:50:40 +00:00
|
|
|
# cat_name = is_main_cat and cat_names[0] or (' - ' + cat_names[1])
|
|
|
|
|
cat_name = ' - '.join(cat_names)
|
2017-05-19 12:36:33 +00:00
|
|
|
choices.append((key, cat_name, is_main_cat))
|
2017-05-12 18:51:49 +00:00
|
|
|
return choices
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/upload', methods=['GET', 'POST'])
|
|
|
|
|
def upload():
|
2017-05-18 13:09:35 +00:00
|
|
|
upload_form = forms.UploadForm(CombinedMultiDict((flask.request.files, flask.request.form)))
|
|
|
|
|
upload_form.category.choices = _create_upload_category_choices()
|
2017-05-19 12:36:33 +00:00
|
|
|
|
2017-05-18 13:09:35 +00:00
|
|
|
if flask.request.method == 'POST' and upload_form.validate():
|
|
|
|
|
torrent = backend.handle_torrent_upload(upload_form, flask.g.user)
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
return flask.redirect('/view/' + str(torrent.id))
|
|
|
|
|
else:
|
2017-05-13 00:15:34 +00:00
|
|
|
# If we get here with a POST, it means the form data was invalid: return a non-okay status
|
|
|
|
|
status_code = 400 if flask.request.method == 'POST' else 200
|
2017-05-18 13:09:35 +00:00
|
|
|
return flask.render_template('upload.html', upload_form=upload_form), status_code
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
2017-05-22 22:04:27 +00:00
|
|
|
@app.route('/view/<int:torrent_id>', methods=['GET', 'POST'])
|
2017-05-12 18:51:49 +00:00
|
|
|
def view_torrent(torrent_id):
|
2017-05-22 22:04:27 +00:00
|
|
|
if flask.request.method == 'POST':
|
|
|
|
|
torrent = models.Torrent.by_id(torrent_id)
|
|
|
|
|
else:
|
|
|
|
|
torrent = models.Torrent.query \
|
|
|
|
|
.options(joinedload('filelist'),
|
|
|
|
|
joinedload('comments')) \
|
|
|
|
|
.filter_by(id=torrent_id) \
|
|
|
|
|
.first()
|
2017-05-12 18:51:49 +00:00
|
|
|
if not torrent:
|
|
|
|
|
flask.abort(404)
|
|
|
|
|
|
2017-05-20 19:00:45 +00:00
|
|
|
# Only allow admins see deleted torrents
|
2017-05-22 21:01:23 +00:00
|
|
|
if torrent.deleted and not (flask.g.user and flask.g.user.is_moderator):
|
2017-05-12 18:51:49 +00:00
|
|
|
flask.abort(404)
|
|
|
|
|
|
2017-05-22 22:04:27 +00:00
|
|
|
comment_form = None
|
|
|
|
|
if flask.g.user:
|
|
|
|
|
comment_form = forms.CommentForm()
|
|
|
|
|
|
|
|
|
|
if flask.request.method == 'POST':
|
|
|
|
|
if not flask.g.user:
|
|
|
|
|
flask.abort(403)
|
|
|
|
|
|
|
|
|
|
if comment_form.validate():
|
|
|
|
|
comment_text = (comment_form.comment.data or '').strip()
|
|
|
|
|
|
|
|
|
|
comment = models.Comment(
|
|
|
|
|
torrent_id=torrent_id,
|
|
|
|
|
user_id=flask.g.user.id,
|
|
|
|
|
text=comment_text)
|
|
|
|
|
|
|
|
|
|
db.session.add(comment)
|
2017-05-26 13:11:31 +00:00
|
|
|
db.session.flush()
|
2017-05-22 22:04:27 +00:00
|
|
|
|
2017-05-26 13:11:31 +00:00
|
|
|
torrent_count = torrent.update_comment_count()
|
|
|
|
|
db.session.commit()
|
2017-05-25 18:11:55 +00:00
|
|
|
|
2017-05-22 22:04:27 +00:00
|
|
|
flask.flash('Comment successfully posted.', 'success')
|
|
|
|
|
|
2017-05-25 19:19:42 +00:00
|
|
|
return flask.redirect(flask.url_for('view_torrent',
|
|
|
|
|
torrent_id=torrent_id,
|
|
|
|
|
_anchor='com-' + str(torrent_count)))
|
2017-05-22 22:04:27 +00:00
|
|
|
|
2017-05-20 19:00:45 +00:00
|
|
|
# Only allow owners and admins to edit torrents
|
2017-05-22 21:01:23 +00:00
|
|
|
can_edit = flask.g.user and (flask.g.user is torrent.user or flask.g.user.is_moderator)
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
files = None
|
|
|
|
|
if torrent.filelist:
|
2017-05-15 06:10:31 +00:00
|
|
|
files = json.loads(torrent.filelist.filelist_blob.decode('utf-8'))
|
2017-05-12 18:51:49 +00:00
|
|
|
|
2017-05-19 17:03:47 +00:00
|
|
|
report_form = forms.ReportForm()
|
2017-05-12 18:51:49 +00:00
|
|
|
return flask.render_template('view.html', torrent=torrent,
|
|
|
|
|
files=files,
|
2017-05-22 21:01:23 +00:00
|
|
|
comment_form=comment_form,
|
|
|
|
|
comments=torrent.comments,
|
2017-05-19 17:03:47 +00:00
|
|
|
can_edit=can_edit,
|
2017-05-20 10:33:58 +00:00
|
|
|
report_form=report_form)
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
2017-05-22 21:01:23 +00:00
|
|
|
@app.route('/view/<int:torrent_id>/comment/<int:comment_id>/delete', methods=['POST'])
|
2017-05-13 23:52:57 +00:00
|
|
|
def delete_comment(torrent_id, comment_id):
|
2017-05-22 21:01:23 +00:00
|
|
|
if not flask.g.user:
|
|
|
|
|
flask.abort(403)
|
2017-05-26 13:11:31 +00:00
|
|
|
torrent = models.Torrent.by_id(torrent_id)
|
|
|
|
|
if not torrent:
|
|
|
|
|
flask.abort(404)
|
2017-05-22 21:01:23 +00:00
|
|
|
|
|
|
|
|
comment = models.Comment.query.filter_by(id=comment_id).first()
|
|
|
|
|
if not comment:
|
|
|
|
|
flask.abort(404)
|
|
|
|
|
|
|
|
|
|
if not (comment.user.id == flask.g.user.id or flask.g.user.is_moderator):
|
2017-05-13 23:52:57 +00:00
|
|
|
flask.abort(403)
|
2017-05-22 16:35:48 +00:00
|
|
|
|
2017-05-22 21:01:23 +00:00
|
|
|
db.session.delete(comment)
|
2017-05-26 13:11:31 +00:00
|
|
|
db.session.flush()
|
|
|
|
|
torrent.update_comment_count()
|
2017-07-05 04:13:59 +00:00
|
|
|
|
|
|
|
|
url = flask.url_for('view_torrent', torrent_id=torrent.id)
|
|
|
|
|
if flask.g.user.is_moderator:
|
|
|
|
|
log = "Comment deleted on torrent [#{}]({})".format(torrent.id, url)
|
|
|
|
|
adminlog = models.AdminLog(log=log, admin_id=flask.g.user.id)
|
|
|
|
|
db.session.add(adminlog)
|
2017-05-22 21:01:23 +00:00
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
flask.flash('Comment successfully deleted.', 'success')
|
|
|
|
|
|
2017-07-05 04:13:59 +00:00
|
|
|
return flask.redirect(url)
|
2017-05-13 23:52:57 +00:00
|
|
|
|
2017-05-13 12:24:42 +00:00
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
@app.route('/view/<int:torrent_id>/edit', methods=['GET', 'POST'])
|
|
|
|
|
def edit_torrent(torrent_id):
|
|
|
|
|
torrent = models.Torrent.by_id(torrent_id)
|
|
|
|
|
form = forms.EditForm(flask.request.form)
|
|
|
|
|
form.category.choices = _create_upload_category_choices()
|
2017-05-20 19:00:45 +00:00
|
|
|
|
|
|
|
|
editor = flask.g.user
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
if not torrent:
|
|
|
|
|
flask.abort(404)
|
|
|
|
|
|
2017-05-20 19:00:45 +00:00
|
|
|
# Only allow admins edit deleted torrents
|
2017-07-05 10:24:19 +00:00
|
|
|
if torrent.deleted and not (editor and editor.is_moderator):
|
2017-05-12 18:51:49 +00:00
|
|
|
flask.abort(404)
|
|
|
|
|
|
2017-05-20 19:00:45 +00:00
|
|
|
# Only allow torrent owners or admins edit torrents
|
2017-07-05 10:24:19 +00:00
|
|
|
if not editor or not (editor is torrent.user or editor.is_moderator):
|
2017-05-12 18:51:49 +00:00
|
|
|
flask.abort(403)
|
|
|
|
|
|
|
|
|
|
if flask.request.method == 'POST' and form.validate():
|
|
|
|
|
# Form has been sent, edit torrent with data.
|
2017-05-14 06:33:46 +00:00
|
|
|
torrent.main_category_id, torrent.sub_category_id = \
|
|
|
|
|
form.category.parsed_data.get_category_ids()
|
2017-05-12 18:51:49 +00:00
|
|
|
torrent.display_name = (form.display_name.data or '').strip()
|
|
|
|
|
torrent.information = (form.information.data or '').strip()
|
|
|
|
|
torrent.description = (form.description.data or '').strip()
|
2017-05-20 19:00:45 +00:00
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
torrent.hidden = form.is_hidden.data
|
|
|
|
|
torrent.remake = form.is_remake.data
|
|
|
|
|
torrent.complete = form.is_complete.data
|
|
|
|
|
torrent.anonymous = form.is_anonymous.data
|
|
|
|
|
|
2017-07-05 10:24:19 +00:00
|
|
|
if editor.is_trusted:
|
2017-05-20 19:00:45 +00:00
|
|
|
torrent.trusted = form.is_trusted.data
|
2017-07-05 10:24:19 +00:00
|
|
|
|
|
|
|
|
deleted_changed = torrent.deleted != form.is_deleted.data
|
|
|
|
|
if editor.is_moderator:
|
2017-05-20 19:00:45 +00:00
|
|
|
torrent.deleted = form.is_deleted.data
|
|
|
|
|
|
2017-07-05 10:24:19 +00:00
|
|
|
url = flask.url_for('view_torrent', torrent_id=torrent.id)
|
|
|
|
|
if deleted_changed and editor.is_moderator:
|
|
|
|
|
log = "Torrent [#{0}]({1}) marked as {2}".format(
|
|
|
|
|
torrent.id, url, "deleted" if torrent.deleted else "undeleted")
|
|
|
|
|
adminlog = models.AdminLog(log=log, admin_id=editor.id)
|
2017-07-05 04:13:59 +00:00
|
|
|
db.session.add(adminlog)
|
|
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
db.session.commit()
|
|
|
|
|
|
2017-05-17 07:56:51 +00:00
|
|
|
flask.flash(flask.Markup(
|
2017-05-22 14:03:34 +00:00
|
|
|
'Torrent has been successfully edited! Changes might take a few minutes to show up.'),
|
|
|
|
|
'info')
|
2017-05-17 07:56:51 +00:00
|
|
|
|
2017-07-05 04:13:59 +00:00
|
|
|
return flask.redirect(url)
|
2017-05-12 18:51:49 +00:00
|
|
|
else:
|
2017-05-20 19:00:45 +00:00
|
|
|
if flask.request.method != 'POST':
|
|
|
|
|
# Fill form data only if the POST didn't fail
|
|
|
|
|
form.category.data = torrent.sub_category.id_as_string
|
|
|
|
|
form.display_name.data = torrent.display_name
|
|
|
|
|
form.information.data = torrent.information
|
|
|
|
|
form.description.data = torrent.description
|
|
|
|
|
|
|
|
|
|
form.is_hidden.data = torrent.hidden
|
|
|
|
|
form.is_remake.data = torrent.remake
|
|
|
|
|
form.is_complete.data = torrent.complete
|
|
|
|
|
form.is_anonymous.data = torrent.anonymous
|
|
|
|
|
|
|
|
|
|
form.is_trusted.data = torrent.trusted
|
2017-05-12 18:51:49 +00:00
|
|
|
form.is_deleted.data = torrent.deleted
|
|
|
|
|
|
2017-05-14 06:33:46 +00:00
|
|
|
return flask.render_template('edit.html',
|
|
|
|
|
form=form,
|
2017-05-22 21:01:23 +00:00
|
|
|
torrent=torrent)
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/view/<int:torrent_id>/magnet')
|
|
|
|
|
def redirect_magnet(torrent_id):
|
|
|
|
|
torrent = models.Torrent.by_id(torrent_id)
|
|
|
|
|
|
|
|
|
|
if not torrent:
|
|
|
|
|
flask.abort(404)
|
|
|
|
|
|
|
|
|
|
return flask.redirect(torrents.create_magnet(torrent))
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/view/<int:torrent_id>/torrent')
|
2017-05-25 08:15:45 +00:00
|
|
|
@app.route('/download/<int:torrent_id>.torrent')
|
2017-05-12 18:51:49 +00:00
|
|
|
def download_torrent(torrent_id):
|
|
|
|
|
torrent = models.Torrent.by_id(torrent_id)
|
|
|
|
|
|
2017-05-22 18:08:41 +00:00
|
|
|
if not torrent or not torrent.has_torrent:
|
2017-05-12 18:51:49 +00:00
|
|
|
flask.abort(404)
|
|
|
|
|
|
|
|
|
|
resp = flask.Response(_get_cached_torrent_file(torrent))
|
|
|
|
|
resp.headers['Content-Type'] = 'application/x-bittorrent'
|
2017-05-25 08:15:45 +00:00
|
|
|
resp.headers['Content-Disposition'] = 'inline; filename="{0}"; filename*=UTF-8\'\'{0}'.format(
|
2017-05-12 18:51:49 +00:00
|
|
|
quote(torrent.torrent_name.encode('utf-8')))
|
|
|
|
|
|
|
|
|
|
return resp
|
|
|
|
|
|
|
|
|
|
|
2017-05-19 17:03:47 +00:00
|
|
|
@app.route('/view/<int:torrent_id>/submit_report', methods=['POST'])
|
|
|
|
|
def submit_report(torrent_id):
|
2017-05-20 10:33:58 +00:00
|
|
|
if not flask.g.user:
|
|
|
|
|
flask.abort(403)
|
|
|
|
|
|
2017-05-19 17:03:47 +00:00
|
|
|
form = forms.ReportForm(flask.request.form)
|
|
|
|
|
|
|
|
|
|
if flask.request.method == 'POST' and form.validate():
|
2017-05-20 10:33:58 +00:00
|
|
|
report_reason = form.reason.data
|
|
|
|
|
current_user_id = flask.g.user.id
|
|
|
|
|
report = models.Report(
|
|
|
|
|
torrent_id=torrent_id,
|
|
|
|
|
user_id=current_user_id,
|
|
|
|
|
reason=report_reason)
|
|
|
|
|
|
|
|
|
|
db.session.add(report)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
flask.flash('Successfully reported torrent!', 'success')
|
2017-05-19 17:03:47 +00:00
|
|
|
|
|
|
|
|
return flask.redirect(flask.url_for('view_torrent', torrent_id=torrent_id))
|
|
|
|
|
|
|
|
|
|
|
2017-07-05 04:13:59 +00:00
|
|
|
@app.route('/adminlog', methods=['GET'])
|
|
|
|
|
def view_adminlog():
|
|
|
|
|
if not flask.g.user or not flask.g.user.is_moderator:
|
|
|
|
|
flask.abort(403)
|
|
|
|
|
|
|
|
|
|
page = flask.request.args.get('p', flask.request.args.get('offset', 1, int), int)
|
|
|
|
|
logs = models.AdminLog.all_logs() \
|
|
|
|
|
.order_by(models.AdminLog.created_time.desc()) \
|
|
|
|
|
.paginate(page=page, per_page=20)
|
|
|
|
|
|
|
|
|
|
return flask.render_template('adminlog.html',
|
|
|
|
|
adminlog=logs)
|
|
|
|
|
|
|
|
|
|
|
2017-05-20 10:33:58 +00:00
|
|
|
@app.route('/reports', methods=['GET', 'POST'])
|
2017-05-19 17:52:04 +00:00
|
|
|
def view_reports():
|
2017-05-26 12:25:02 +00:00
|
|
|
if not flask.g.user or not flask.g.user.is_moderator:
|
2017-05-19 17:52:04 +00:00
|
|
|
flask.abort(403)
|
|
|
|
|
|
2017-05-20 10:33:58 +00:00
|
|
|
page = flask.request.args.get('p', flask.request.args.get('offset', 1, int), int)
|
|
|
|
|
reports = models.Report.not_reviewed(page)
|
2017-05-20 11:23:29 +00:00
|
|
|
report_action = forms.ReportActionForm(flask.request.form)
|
|
|
|
|
|
|
|
|
|
if flask.request.method == 'POST' and report_action.validate():
|
|
|
|
|
action = report_action.action.data
|
|
|
|
|
torrent_id = report_action.torrent.data
|
|
|
|
|
report_id = report_action.report.data
|
|
|
|
|
torrent = models.Torrent.by_id(torrent_id)
|
|
|
|
|
report = models.Report.by_id(report_id)
|
2017-05-20 12:02:26 +00:00
|
|
|
|
2017-05-20 10:33:58 +00:00
|
|
|
if not torrent or not report or report.status != 0:
|
|
|
|
|
flask.abort(404)
|
|
|
|
|
else:
|
2017-05-20 11:23:29 +00:00
|
|
|
if action == 'delete':
|
2017-05-20 10:33:58 +00:00
|
|
|
torrent.deleted = True
|
|
|
|
|
report.status = 1
|
2017-05-20 11:23:29 +00:00
|
|
|
elif action == 'hide':
|
2017-05-20 10:33:58 +00:00
|
|
|
torrent.hidden = True
|
|
|
|
|
report.status = 1
|
|
|
|
|
else:
|
|
|
|
|
report.status = 2
|
|
|
|
|
|
2017-05-20 11:23:29 +00:00
|
|
|
models.Report.remove_reviewed(torrent_id)
|
2017-05-20 10:33:58 +00:00
|
|
|
db.session.commit()
|
|
|
|
|
flask.flash('Closed report #{}'.format(report.id), 'success')
|
|
|
|
|
return flask.redirect(flask.url_for('view_reports'))
|
|
|
|
|
|
2017-05-19 17:52:04 +00:00
|
|
|
return flask.render_template('reports.html',
|
2017-05-20 11:23:29 +00:00
|
|
|
reports=reports,
|
|
|
|
|
report_action=report_action)
|
2017-05-19 17:52:04 +00:00
|
|
|
|
|
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
def _get_cached_torrent_file(torrent):
|
|
|
|
|
# Note: obviously temporary
|
|
|
|
|
cached_torrent = os.path.join(app.config['BASE_DIR'],
|
|
|
|
|
'torrent_cache', str(torrent.id) + '.torrent')
|
|
|
|
|
if not os.path.exists(cached_torrent):
|
|
|
|
|
with open(cached_torrent, 'wb') as out_file:
|
|
|
|
|
out_file.write(torrents.create_bencoded_torrent(torrent))
|
|
|
|
|
|
|
|
|
|
return open(cached_torrent, 'rb')
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def get_serializer(secret_key=None):
|
|
|
|
|
if secret_key is None:
|
|
|
|
|
secret_key = app.secret_key
|
|
|
|
|
return URLSafeSerializer(secret_key)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def get_activation_link(user):
|
|
|
|
|
s = get_serializer()
|
|
|
|
|
payload = s.dumps(user.id)
|
|
|
|
|
return flask.url_for('activate_user', payload=payload, _external=True)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def send_verification_email(to_address, activ_link):
|
2017-05-14 06:33:46 +00:00
|
|
|
''' this is until we have our own mail server, obviously.
|
|
|
|
|
This can be greatly cut down if on same machine.
|
|
|
|
|
probably can get rid of all but msg formatting/building,
|
|
|
|
|
init line and sendmail line if local SMTP server '''
|
2017-05-12 18:51:49 +00:00
|
|
|
|
|
|
|
|
msg_body = 'Please click on: ' + activ_link + ' to activate your account.\n\n\nUnsubscribe:'
|
|
|
|
|
|
|
|
|
|
msg = MIMEMultipart()
|
|
|
|
|
msg['Subject'] = 'Verification Link'
|
|
|
|
|
msg['From'] = config.MAIL_FROM_ADDRESS
|
|
|
|
|
msg['To'] = to_address
|
|
|
|
|
msg.attach(MIMEText(msg_body, 'plain'))
|
|
|
|
|
|
|
|
|
|
server = smtplib.SMTP(config.SMTP_SERVER, config.SMTP_PORT)
|
|
|
|
|
server.set_debuglevel(1)
|
|
|
|
|
server.ehlo()
|
|
|
|
|
server.starttls()
|
|
|
|
|
server.ehlo()
|
|
|
|
|
server.login(config.SMTP_USERNAME, config.SMTP_PASSWORD)
|
|
|
|
|
server.sendmail(config.SMTP_USERNAME, to_address, msg.as_string())
|
|
|
|
|
server.quit()
|
|
|
|
|
|
|
|
|
|
|
2017-05-21 17:12:15 +00:00
|
|
|
def _create_user_class_choices(user):
|
2017-05-15 11:49:25 +00:00
|
|
|
choices = [('regular', 'Regular')]
|
2017-05-21 17:12:15 +00:00
|
|
|
default = 'regular'
|
|
|
|
|
if flask.g.user:
|
|
|
|
|
if flask.g.user.is_moderator:
|
|
|
|
|
choices.append(('trusted', 'Trusted'))
|
|
|
|
|
if flask.g.user.is_superadmin:
|
|
|
|
|
choices.append(('moderator', 'Moderator'))
|
|
|
|
|
|
|
|
|
|
if user:
|
|
|
|
|
if user.is_moderator:
|
|
|
|
|
default = 'moderator'
|
|
|
|
|
elif user.is_trusted:
|
|
|
|
|
default = 'trusted'
|
|
|
|
|
|
|
|
|
|
return default, choices
|
2017-05-15 11:49:25 +00:00
|
|
|
|
2017-05-22 21:01:23 +00:00
|
|
|
|
2017-05-22 16:35:48 +00:00
|
|
|
@app.template_filter()
|
|
|
|
|
def timesince(dt, default='just now'):
|
|
|
|
|
"""
|
|
|
|
|
Returns string representing "time since" e.g.
|
|
|
|
|
3 minutes ago, 5 hours ago etc.
|
|
|
|
|
Date and time (UTC) are returned if older than 1 day.
|
|
|
|
|
"""
|
|
|
|
|
|
|
|
|
|
now = datetime.utcnow()
|
|
|
|
|
diff = now - dt
|
|
|
|
|
|
|
|
|
|
periods = (
|
|
|
|
|
(diff.days, 'day', 'days'),
|
|
|
|
|
(diff.seconds / 3600, 'hour', 'hours'),
|
|
|
|
|
(diff.seconds / 60, 'minute', 'minutes'),
|
|
|
|
|
(diff.seconds, 'second', 'seconds'),
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
if diff.days >= 1:
|
|
|
|
|
return dt.strftime('%Y-%m-%d %H:%M UTC')
|
|
|
|
|
else:
|
|
|
|
|
for period, singular, plural in periods:
|
2017-05-15 11:49:25 +00:00
|
|
|
|
2017-05-22 16:35:48 +00:00
|
|
|
if period >= 1:
|
2017-05-23 00:47:20 +00:00
|
|
|
return '%d %s ago' % (period, singular if int(period) == 1 else plural)
|
2017-05-22 16:35:48 +00:00
|
|
|
|
|
|
|
|
return default
|
2017-05-15 11:49:25 +00:00
|
|
|
|
2017-05-14 07:24:34 +00:00
|
|
|
# #################################### STATIC PAGES ####################################
|
2017-05-22 21:01:23 +00:00
|
|
|
|
|
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
@app.route('/rules', methods=['GET'])
|
|
|
|
|
def site_rules():
|
|
|
|
|
return flask.render_template('rules.html')
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route('/help', methods=['GET'])
|
|
|
|
|
def site_help():
|
|
|
|
|
return flask.render_template('help.html')
|
|
|
|
|
|
|
|
|
|
|
2017-05-23 12:46:29 +00:00
|
|
|
@app.route('/xmlns/nyaa', methods=['GET'])
|
2017-05-19 23:13:04 +00:00
|
|
|
def xmlns_nyaa():
|
|
|
|
|
return flask.render_template('xmlns.html')
|
|
|
|
|
|
2017-05-12 18:51:49 +00:00
|
|
|
|
2017-05-14 07:24:34 +00:00
|
|
|
# #################################### API ROUTES ####################################
|
2017-05-22 19:54:33 +00:00
|
|
|
|
|
|
|
|
app.register_blueprint(api_handler.api_blueprint, url_prefix='/api')
|
