ticketfrei/db.py

from bottle import redirect, request, response
from functools import wraps
from inspect import Signature
import jwt
from os import path, urandom
from pylibscrypt import scrypt_mcf, scrypt_mcf_check
import sqlite3
import ticketfrei
from mastodon import Mastodon


class DB(object):
    def __init__(self):
        dbfile = path.join(path.dirname(path.abspath(__file__)),
                           'ticketfrei.sqlite')
        self.conn = sqlite3.connect(dbfile)
        self.cur = self.conn.cursor()
        self.create()
        self.secret = urandom(32)
        self.config = ticketfrei.get_config()

    def create(self):
        # init db
        self.cur.executescript('''
            CREATE TABLE IF NOT EXISTS user (
                id          INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                email       TEXT,
                passhash    TEXT,
                enabled     INTEGER DEFAULT 1
            );
            CREATE TABLE IF NOT EXISTS twitter_request_tokens (
                id          INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                user_id	    INTEGER,
                request_token	TEXT,
                FOREIGN KEY(user_id) REFERENCES user(id)
            );
            CREATE TABLE IF NOT EXISTS twitter_accounts (
                id	    INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                user_id	    INTEGER,
                client_id   TEXT,
                client_secret	TEXT,
                FOREIGN KEY(user_id) REFERENCES user(id)
            );
            CREATE TABLE IF NOT EXISTS trigger_good (
                id	    INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                user_id	    INTEGER,
                words	    TEXT,
                FOREIGN KEY(user_id) REFERENCES user(id)
            );
            CREATE TABLE IF NOT EXISTS trigger_bad (
                id	    INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                user_id	    INTEGER,
                words	    TEXT,
                FOREIGN KEY(user_id) REFERENCES user(id)
            );
            CREATE TABLE IF NOT EXISTS mastodon_instances (
                id	    INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                instance    TEXT,
                client_id   TEXT,
                client_secret   TEXT
            );
            CREATE TABLE IF NOT EXISTS mastodon_accounts (
                id	    INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                user_id	    INTEGER,
                access_token	TEXT,
                instance_id TEXT,
                active      INTEGER,
                FOREIGN KEY(user_id) REFERENCES user(id),
                FOREIGN KEY(instance_id) REFERENCES mastodon_instances(id)
            );
            CREATE TABLE IF NOT EXISTS seen_toots (
                id	    INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                user_id	    INTEGER,
                mastodon_accounts_id    INTEGER,
                toot_id	    TEXT,
                FOREIGN KEY(user_id) REFERENCES user(id),
                FOREIGN KEY(mastodon_accounts_id)
                    REFERENCES mastodon_accounts(id)
            );
            CREATE TABLE IF NOT EXISTS mail (
                id	    INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                user_id	    INTEGER,
                email	    TEXT,
                active      INTEGER,
                FOREIGN KEY(user_id) REFERENCES user(id)
            );
            CREATE TABLE IF NOT EXISTS seen_tweets (
                id	    INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,
                user_id	    INTEGER,
                twitter_accounts_id INTEGER,
                tweet_id    TEXT,
                FOREIGN KEY(user_id) REFERENCES user(id)
                FOREIGN KEY(twitter_accounts_id)
                    REFERENCES twitter_accounts(id)
            );
        ''')

    def token(self, email, password):
        return jwt.encode({
            'email': email,
            'passhash': scrypt_mcf(password.encode('utf-8')).decode('ascii')
            }, self.secret).decode('ascii')

    def register(self, token):
        json = jwt.decode(token, self.secret)
        # create user
        self.cur.execute("INSERT INTO user (email, passhash) VALUES(?, ?);",
                         (json['email'], json['passhash']))
        self.conn.commit()
        return User(self, self.cur.lastrowid)

    def authenticate(self, email, password):
        # check email/password
        self.cur.execute("SELECT id, passhash FROM user WHERE email=?;",
                         (email, ))
        row = self.cur.fetchone()
        if not row:
            return None  # No user with this email
        if not scrypt_mcf_check(row[1].encode('ascii'),
                                password.encode('utf-8')):
            return None  # Wrong passphrase
        return User(self, row[0])

    def by_email(self, email):
        self.cur.execute("SELECT id FROM user WHERE email=?;", (email, ))
        row = self.cur.fetchone()
        if not row:
            return None
        return User(self, row[0])

    def close(self):
        self.conn.close()


class User(object):
    def __init__(self, db, uid):
        # set cookie
        response.set_cookie('uid', uid, secret=db.secret, path='/')
        self.db = db
        self.uid = uid

    def state(self):
        return dict(foo='bar')

    def save_request_token(self, token):
        self.db.cur.execute("INSERT INTO twitter_request_tokens(user_id, request_token) VALUES(?, ?);",
                            (self.uid, token))
        self.db.conn.commit()

    def get_request_token(self):
        self.db.cur.execute("SELECT request_token FROM twitter_request_tokens WHERE user_id = ?;", (id,))
        request_token = self.db.cur.fetchone()[0]
        self.db.cur.execute("DELETE FROM twitter_request_tokens WHERE user_id = ?;", (id,))
        self.db.conn.commit()
        return request_token

    def save_twitter_token(self, access_token, access_token_secret):
        self.db.cur.execute(
            "INSERT INTO twitter_accounts(user_id, access_token_key, access_token_secret) VALUES(?, ?, ?);",
            (id, access_token, access_token_secret))
        self.db.conn.commit()

    def get_mastodon_app_keys(self, instance):
        self.db.cur.execute("SELECT client_id, client_secret FROM mastodon_instances WHERE instance = ?;", (instance, ))
        try:
            client_id, client_secret = self.db.cur.fetchone()[0]
            return client_id, client_secret
        except TypeError:
            app_name = "ticketfrei" + str(self.db.secret)[0:4]
            client_id, client_secret = Mastodon.create_app(app_name, api_base_url=instance)
            self.db.cur.execute("INSERT INTO mastodon_instances(instance, client_id, client_secret) VALUES(?, ?, ?);",
                                (instance, client_id, client_secret))
            self.db.conn.commit()
            return client_id, client_secret

    def save_masto_token(self, access_token, instance):
        self.db.cur.execute("SELECT id FROM mastodon_instances WHERE instance = ?;", (instance, ))
        instance_id = self.db.cur.fetchone()[0]
        self.db.cur.execute("INSERT INTO mastodon_accounts(user_id, access_token, mastodon_instances_id, active) "
                            "VALUES(?, ?, ?, ?);", (self.uid, access_token, instance_id, 1))
        self.db.commit()


class DBPlugin(object):
    name = 'DBPlugin'
    api = 2

    def __init__(self, loginpage):
        self.db = DB()
        self.loginpage = loginpage

    def close(self):
        self.db.close()

    def apply(self, callback, route):
        uservar = route.config.get('user', None)
        dbvar = route.config.get('db', None)
        signature = Signature.from_callable(route.callback)

        @wraps(callback)
        def wrapper(*args, **kwargs):
            if uservar and uservar in signature.parameters:
                uid = request.get_cookie('uid', secret=self.db.secret)
                if uid is None:
                    return redirect(self.loginpage)
                kwargs[uservar] = User(self.db, uid)
            if dbvar and dbvar in signature.parameters:
                kwargs[dbvar] = self.db
            return callback(*args, **kwargs)

        return wrapper
start refactoring web-frontend. 2018-03-22 01:23:31 +00:00			`from bottle import redirect, request, response`
			`from functools import wraps`
			`from inspect import Signature`
			`import jwt`
			`from os import path, urandom`
			`from pylibscrypt import scrypt_mcf, scrypt_mcf_check`
			`import sqlite3`
ticketfrei can be imported now, takes care of loading config & logging 2018-03-23 10:05:24 +00:00			`import ticketfrei`
added twitter & masto OAuth to new web.py - untested, take care! 2018-03-23 01:28:00 +00:00			`from mastodon import Mastodon`
start refactoring web-frontend. 2018-03-22 01:23:31 +00:00

			`class DB(object):`
			`def __init__(self):`
			`dbfile = path.join(path.dirname(path.abspath(__file__)),`
			`'ticketfrei.sqlite')`
			`self.conn = sqlite3.connect(dbfile)`
			`self.cur = self.conn.cursor()`
Use IF NOT EXISTS instead of sqlite specific hack. Clean up formating. Other minor fixes. 2018-03-22 20:15:15 +00:00			`self.create()`
start refactoring web-frontend. 2018-03-22 01:23:31 +00:00			`self.secret = urandom(32)`
ticketfrei can be imported now, takes care of loading config & logging 2018-03-23 10:05:24 +00:00			`self.config = ticketfrei.get_config()`
start refactoring web-frontend. 2018-03-22 01:23:31 +00:00
			`def create(self):`
			`# init db`
Use IF NOT EXISTS instead of sqlite specific hack. Clean up formating. Other minor fixes. 2018-03-22 20:15:15 +00:00			`self.cur.executescript('''`
			`CREATE TABLE IF NOT EXISTS user (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`email TEXT,`
			`passhash TEXT,`
			`enabled INTEGER DEFAULT 1`
			`);`
			`CREATE TABLE IF NOT EXISTS twitter_request_tokens (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`user_id INTEGER,`
			`request_token TEXT,`
			`FOREIGN KEY(user_id) REFERENCES user(id)`
			`);`
			`CREATE TABLE IF NOT EXISTS twitter_accounts (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`user_id INTEGER,`
			`client_id TEXT,`
			`client_secret TEXT,`
			`FOREIGN KEY(user_id) REFERENCES user(id)`
			`);`
			`CREATE TABLE IF NOT EXISTS trigger_good (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`user_id INTEGER,`
			`words TEXT,`
			`FOREIGN KEY(user_id) REFERENCES user(id)`
			`);`
			`CREATE TABLE IF NOT EXISTS trigger_bad (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`user_id INTEGER,`
			`words TEXT,`
			`FOREIGN KEY(user_id) REFERENCES user(id)`
			`);`
			`CREATE TABLE IF NOT EXISTS mastodon_instances (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`instance TEXT,`
			`client_id TEXT,`
			`client_secret TEXT`
			`);`
			`CREATE TABLE IF NOT EXISTS mastodon_accounts (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`user_id INTEGER,`
			`access_token TEXT,`
			`instance_id TEXT,`
			`active INTEGER,`
			`FOREIGN KEY(user_id) REFERENCES user(id),`
			`FOREIGN KEY(instance_id) REFERENCES mastodon_instances(id)`
			`);`
			`CREATE TABLE IF NOT EXISTS seen_toots (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`user_id INTEGER,`
			`mastodon_accounts_id INTEGER,`
			`toot_id TEXT,`
			`FOREIGN KEY(user_id) REFERENCES user(id),`
			`FOREIGN KEY(mastodon_accounts_id)`
			`REFERENCES mastodon_accounts(id)`
			`);`
			`CREATE TABLE IF NOT EXISTS mail (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`user_id INTEGER,`
			`email TEXT,`
			`active INTEGER,`
			`FOREIGN KEY(user_id) REFERENCES user(id)`
			`);`
			`CREATE TABLE IF NOT EXISTS seen_tweets (`
			`id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT UNIQUE,`
			`user_id INTEGER,`
			`twitter_accounts_id INTEGER,`
			`tweet_id TEXT,`
			`FOREIGN KEY(user_id) REFERENCES user(id)`
			`FOREIGN KEY(twitter_accounts_id)`
			`REFERENCES twitter_accounts(id)`
			`);`
			`''')`
start refactoring web-frontend. 2018-03-22 01:23:31 +00:00
			`def token(self, email, password):`
			`return jwt.encode({`
			`'email': email,`
			`'passhash': scrypt_mcf(password.encode('utf-8')).decode('ascii')`
			`}, self.secret).decode('ascii')`

			`def register(self, token):`
			`json = jwt.decode(token, self.secret)`
			`# create user`
			`self.cur.execute("INSERT INTO user (email, passhash) VALUES(?, ?);",`
			`(json['email'], json['passhash']))`
db is persistent now 2018-03-22 10:32:43 +00:00			`self.conn.commit()`
start refactoring web-frontend. 2018-03-22 01:23:31 +00:00			`return User(self, self.cur.lastrowid)`

			`def authenticate(self, email, password):`
			`# check email/password`
			`self.cur.execute("SELECT id, passhash FROM user WHERE email=?;",`
			`(email, ))`
			`row = self.cur.fetchone()`
			`if not row:`
fixed db init, fixed confirmation mails, added logout button 2018-03-22 10:22:28 +00:00			`return None # No user with this email`
Use IF NOT EXISTS instead of sqlite specific hack. Clean up formating. Other minor fixes. 2018-03-22 20:15:15 +00:00			`if not scrypt_mcf_check(row[1].encode('ascii'),`
start refactoring web-frontend. 2018-03-22 01:23:31 +00:00			`password.encode('utf-8')):`
fixed db init, fixed confirmation mails, added logout button 2018-03-22 10:22:28 +00:00			`return None # Wrong passphrase`
start refactoring web-frontend. 2018-03-22 01:23:31 +00:00			`return User(self, row[0])`

			`def by_email(self, email):`
			`self.cur.execute("SELECT id FROM user WHERE email=?;", (email, ))`
			`row = self.cur.fetchone()`
			`if not row:`
			`return None`
			`return User(self, row[0])`

			`def close(self):`
			`self.conn.close()`


			`class User(object):`
			`def __init__(self, db, uid):`
			`# set cookie`
			`response.set_cookie('uid', uid, secret=db.secret, path='/')`
			`self.db = db`
			`self.uid = uid`

			`def state(self):`
			`return dict(foo='bar')`

added twitter & masto OAuth to new web.py - untested, take care! 2018-03-23 01:28:00 +00:00			`def save_request_token(self, token):`
			`self.db.cur.execute("INSERT INTO twitter_request_tokens(user_id, request_token) VALUES(?, ?);",`
			`(self.uid, token))`
			`self.db.conn.commit()`

			`def get_request_token(self):`
			`self.db.cur.execute("SELECT request_token FROM twitter_request_tokens WHERE user_id = ?;", (id,))`
			`request_token = self.db.cur.fetchone()[0]`
			`self.db.cur.execute("DELETE FROM twitter_request_tokens WHERE user_id = ?;", (id,))`
			`self.db.conn.commit()`
			`return request_token`

			`def save_twitter_token(self, access_token, access_token_secret):`
			`self.db.cur.execute(`
			`"INSERT INTO twitter_accounts(user_id, access_token_key, access_token_secret) VALUES(?, ?, ?);",`
			`(id, access_token, access_token_secret))`
			`self.db.conn.commit()`

			`def get_mastodon_app_keys(self, instance):`
			`self.db.cur.execute("SELECT client_id, client_secret FROM mastodon_instances WHERE instance = ?;", (instance, ))`
			`try:`
			`client_id, client_secret = self.db.cur.fetchone()[0]`
			`return client_id, client_secret`
			`except TypeError:`
			`app_name = "ticketfrei" + str(self.db.secret)[0:4]`
			`client_id, client_secret = Mastodon.create_app(app_name, api_base_url=instance)`
			`self.db.cur.execute("INSERT INTO mastodon_instances(instance, client_id, client_secret) VALUES(?, ?, ?);",`
			`(instance, client_id, client_secret))`
			`self.db.conn.commit()`
			`return client_id, client_secret`

			`def save_masto_token(self, access_token, instance):`
			`self.db.cur.execute("SELECT id FROM mastodon_instances WHERE instance = ?;", (instance, ))`
			`instance_id = self.db.cur.fetchone()[0]`
			`self.db.cur.execute("INSERT INTO mastodon_accounts(user_id, access_token, mastodon_instances_id, active) "`
			`"VALUES(?, ?, ?, ?);", (self.uid, access_token, instance_id, 1))`
			`self.db.commit()`

start refactoring web-frontend. 2018-03-22 01:23:31 +00:00
			`class DBPlugin(object):`
			`name = 'DBPlugin'`
			`api = 2`

			`def __init__(self, loginpage):`
			`self.db = DB()`
			`self.loginpage = loginpage`

			`def close(self):`
			`self.db.close()`

			`def apply(self, callback, route):`
			`uservar = route.config.get('user', None)`
			`dbvar = route.config.get('db', None)`
			`signature = Signature.from_callable(route.callback)`

			`@wraps(callback)`
			`def wrapper(args, *kwargs):`
			`if uservar and uservar in signature.parameters:`
			`uid = request.get_cookie('uid', secret=self.db.secret)`
			`if uid is None:`
			`return redirect(self.loginpage)`
			`kwargs[uservar] = User(self.db, uid)`
			`if dbvar and dbvar in signature.parameters:`
			`kwargs[dbvar] = self.db`
			`return callback(args, *kwargs)`

			`return wrapper`