curious-greg/web.py

#!/usr/bin/env python3
#Curious Greg - Curious Cat to Mastodon crossposter
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.

import requests, sqlite3, json
from mastodon import Mastodon
from flask import Flask, render_template, request, session, redirect, url_for
import bcrypt
import urllib

cfg = json.load(open("meta.json"))

db = sqlite3.connect("database.db") #TODO: switch to mysql so concurrency is possible
c = db.cursor()
c.execute("CREATE TABLE IF NOT EXISTS `data` (username TEXT NOT NULL, instance TEXT NOT NULL, secret TEXT NOT NULL, appid TEXT NOT NULL, appsecret TEXT NOT NULL, cc TEXT, latest_post TEXT, latest_timestamp TEXT, time_between_checks INT)")

app = Flask(cfg['name'])
app.secret_key = cfg['flask_key']

@app.route('/')
def main():
	if 'acct' not in session:
		return render_template("landing_page.html")
	else:
		return redirect(url_for('home'))

@app.route('/home')
def home():
	if 'acct' in session:
		acct = session['acct']
		return render_template("home.html", acct=acct)
	else:
		return redirect(url_for('main'))
	

@app.route('/debug') #TODO: remove this before making the site live ;p
def print_debug_info():
	return json.dumps(session._get_current_object())

@app.route('/login')
def log_in():
	if 'acct' in session:
		#user is probably already logged in. if they aren't, home() will handle things and redirect them back here
		return redirect(url_for('home'))
	return render_template("login.html")

	# return(json.dumps(client_info))

#internal stuff

@app.route('/internal/auth_a')
def internal_auth_a():

	session['instance_url'] = request.args.get('url', default='mastodon.social', type=str)
	if not session['instance_url'].startswith("https://"):
		session['instance_url'] = "https://{}".format(session['instance_url'])

	session['client_id'], session['client_secret'] = Mastodon.create_app(cfg['name'],
		api_base_url=session['instance_url'],
		scopes=["write:statuses", "read:accounts"],
		website=cfg['website'],
		redirect_uris=['https://cg.lynnesbian.space/internal/auth_b']
	)

	params = {
		"client_id": session['client_id'],
		"client_secret":session['client_secret'],
		"scope":"write:statuses+read:accounts",
		"redirect_uri": "https://cg.lynnesbian.space/internal/auth_b",
		"response_type":"code",
	}

	url = "{}/oauth/authorize?{}".format(session['instance_url'], urllib.parse.urlencode(params))

	return url

@app.route('/internal/auth_b')
def internal_auth_b():
	session['secret'] = request.args.get('code')
	#write details to DB
	client = Mastodon(access_token = session['secret'], api_base_url=session['instance_url'])
	session['username'] = client.account_verify_credentials()['username']
	session['acct'] = "@{}@{}".format(session['username'], session['instance_url'].replace("https://", ""))
	if c.execute("SELECT COUNT(*) FROM data WHERE username LIKE ? AND instance LIKE ?", (session['username'], session['instance_url'])).fetchone()[0] > 0:
		#user already has an account with CG
		return redirect(url_for('log_in'))
		
	c.execute("INSERT INTO data (username, instance, secret, appid, appsecret) VALUES (?, ?, ?, ?, ?)", (session['username'], session['instance_url'], session['secret'], session['client_id'], session['client_secret']))
	db.commit()
	return redirect(url_for('home'))

@app.route('/internal/do_login')
def do_login():
	pass

@app.route('/create_password')
def create_password():
	return render_template("create_password.html")