361 lines
No EOL
12 KiB
Python
361 lines
No EOL
12 KiB
Python
from django.shortcuts import reverse, redirect, render, get_object_or_404
|
||
from django.http import HttpResponseBadRequest, HttpResponse
|
||
from django.contrib.auth.decorators import login_required
|
||
from django.contrib import auth
|
||
from django.contrib.auth import authenticate
|
||
from django.core.paginator import Paginator
|
||
from django.utils.translation import gettext_lazy as _
|
||
from django.core.exceptions import ObjectDoesNotExist
|
||
from .models import User, Report
|
||
from .forms import ReportForm
|
||
from common.mastodon.auth import *
|
||
from common.mastodon.api import *
|
||
from common.mastodon import mastodon_request_included
|
||
from common.views import BOOKS_PER_SET, ITEMS_PER_PAGE
|
||
from common.models import MarkStatusEnum
|
||
from books.models import *
|
||
from boofilsic.settings import MASTODON_DOMAIN_NAME, CLIENT_ID, CLIENT_SECRET
|
||
|
||
|
||
# Views
|
||
########################################
|
||
|
||
# no page rendered
|
||
@mastodon_request_included
|
||
def OAuth2_login(request):
|
||
""" oauth authentication and logging user into django system """
|
||
if request.method == 'GET':
|
||
code = request.GET.get('code')
|
||
# Network IO
|
||
token = obtain_token(request, code)
|
||
if token:
|
||
# oauth is completed when token aquired
|
||
user = authenticate(request, token=token)
|
||
if user:
|
||
auth_login(request, user, token)
|
||
return redirect(reverse('common:home'))
|
||
else:
|
||
# will be passed to register page
|
||
request.session['new_user_token'] = token
|
||
return redirect(reverse('users:register'))
|
||
else:
|
||
# TODO better fail result page
|
||
return HttpResponse(content="Authentication failed.")
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
# the 'login' page that user can see
|
||
def login(request):
|
||
if request.method == 'GET':
|
||
# TODO NOTE replace http with https!!!!
|
||
auth_url = f"https://{MASTODON_DOMAIN_NAME}{API_OAUTH_AUTHORIZE}?" +\
|
||
f"client_id={CLIENT_ID}&scope=read+write&" +\
|
||
f"redirect_uri=http://{request.get_host()}{reverse('users:OAuth2_login')}" +\
|
||
"&response_type=code"
|
||
|
||
return render(
|
||
request,
|
||
'users/login.html',
|
||
{
|
||
'oauth_auth_url': auth_url
|
||
}
|
||
)
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
@mastodon_request_included
|
||
@login_required
|
||
def logout(request):
|
||
if request.method == 'GET':
|
||
revoke_token(request.session['oauth_token'])
|
||
auth_logout(request)
|
||
return redirect(reverse("users:login"))
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
@mastodon_request_included
|
||
def register(request):
|
||
""" register confirm page """
|
||
if request.method == 'GET':
|
||
if request.session.get('oauth_token'):
|
||
return redirect(reverse('common:home'))
|
||
elif request.session.get('new_user_token'):
|
||
return render(
|
||
request,
|
||
'users/register.html'
|
||
)
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
elif request.method == 'POST':
|
||
token = request.session['new_user_token']
|
||
user_data = get_user_data(token)
|
||
new_user = User(
|
||
username=user_data['username'],
|
||
mastodon_id=user_data['id']
|
||
)
|
||
new_user.save()
|
||
del request.session['new_user_token']
|
||
auth_login(request, new_user, token)
|
||
return redirect(reverse('common:home'))
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
def delete(request):
|
||
raise NotImplementedError
|
||
|
||
|
||
@mastodon_request_included
|
||
@login_required
|
||
def home(request, id):
|
||
if request.method == 'GET':
|
||
if request.GET.get('is_mastodon_id') in ['true', 'True']:
|
||
query_kwargs = {'mastodon_id': id}
|
||
else:
|
||
query_kwargs = {'pk': id}
|
||
try:
|
||
user = User.objects.get(**query_kwargs)
|
||
except ObjectDoesNotExist:
|
||
msg = _("😖哎呀这位老师还没有注册书影音呢,快去长毛象喊TA来吧!")
|
||
sec_msg = _("目前只开放本站用户注册")
|
||
return render(
|
||
request,
|
||
'common/error.html',
|
||
{
|
||
'msg': msg,
|
||
'secondary_msg': sec_msg,
|
||
}
|
||
)
|
||
if user == request.user:
|
||
return redirect("common:home")
|
||
else:
|
||
# mastodon request
|
||
relation = get_relationships([user.mastodon_id], request.session['oauth_token'])[0]
|
||
if relation['blocked_by']:
|
||
msg = _("你没有访问TA主页的权限😥")
|
||
return render(
|
||
request,
|
||
'common/error.html',
|
||
{
|
||
'msg': msg,
|
||
}
|
||
)
|
||
book_marks = BookMark.get_available_user_data(user, relation['following'])
|
||
do_book_marks = book_marks.filter(status=MarkStatusEnum.DO)
|
||
do_books_more = True if do_book_marks.count() > BOOKS_PER_SET else False
|
||
|
||
wish_book_marks = book_marks.filter(status=MarkStatusEnum.WISH)
|
||
wish_books_more = True if wish_book_marks.count() > BOOKS_PER_SET else False
|
||
|
||
collect_book_marks = book_marks.filter(status=MarkStatusEnum.COLLECT)
|
||
collect_books_more = True if collect_book_marks.count() > BOOKS_PER_SET else False
|
||
return render(
|
||
request,
|
||
'common/home.html',
|
||
{
|
||
'user': user,
|
||
'do_book_marks': do_book_marks[:BOOKS_PER_SET],
|
||
'wish_book_marks': wish_book_marks[:BOOKS_PER_SET],
|
||
'collect_book_marks': collect_book_marks[:BOOKS_PER_SET],
|
||
'do_books_more': do_books_more,
|
||
'wish_books_more': wish_books_more,
|
||
'collect_books_more': collect_books_more,
|
||
}
|
||
)
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
@mastodon_request_included
|
||
@login_required
|
||
def followers(request, id):
|
||
if request.method == 'GET':
|
||
try:
|
||
user = User.objects.get(pk=id)
|
||
except ObjectDoesNotExist:
|
||
msg = _("😖哎呀这位老师还没有注册书影音呢,快去长毛象喊TA来吧!")
|
||
sec_msg = _("目前只开放本站用户注册")
|
||
return render(
|
||
request,
|
||
'common/error.html',
|
||
{
|
||
'msg': msg,
|
||
'secondary_msg': sec_msg,
|
||
}
|
||
)
|
||
# mastodon request
|
||
if not user == request.user:
|
||
relation = get_relationships([user.mastodon_id], request.session['oauth_token'])[0]
|
||
if relation['blocked_by']:
|
||
msg = _("你没有访问TA主页的权限😥")
|
||
return render(
|
||
request,
|
||
'common/error.html',
|
||
{
|
||
'msg': msg,
|
||
}
|
||
)
|
||
return render(
|
||
request,
|
||
'users/list.html',
|
||
{
|
||
'user': user,
|
||
'is_followers_page': True,
|
||
}
|
||
)
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
@mastodon_request_included
|
||
@login_required
|
||
def following(request, id):
|
||
if request.method == 'GET':
|
||
try:
|
||
user = User.objects.get(pk=id)
|
||
except ObjectDoesNotExist:
|
||
msg = _("😖哎呀这位老师还没有注册书影音呢,快去长毛象喊TA来吧!")
|
||
sec_msg = _("目前只开放本站用户注册")
|
||
return render(
|
||
request,
|
||
'common/error.html',
|
||
{
|
||
'msg': msg,
|
||
'secondary_msg': sec_msg,
|
||
}
|
||
)
|
||
# mastodon request
|
||
if not user == request.user:
|
||
relation = get_relationships([user.mastodon_id], request.session['oauth_token'])[0]
|
||
if relation['blocked_by']:
|
||
msg = _("你没有访问TA主页的权限😥")
|
||
return render(
|
||
request,
|
||
'common/error.html',
|
||
{
|
||
'msg': msg,
|
||
}
|
||
)
|
||
return render(
|
||
request,
|
||
'users/list.html',
|
||
{
|
||
'user': user,
|
||
'page_type': 'followers',
|
||
}
|
||
)
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
@mastodon_request_included
|
||
@login_required
|
||
def book_list(request, id, status):
|
||
if request.method == 'GET':
|
||
if not status.upper() in MarkStatusEnum.names:
|
||
return HttpResponseBadRequest()
|
||
try:
|
||
user = User.objects.get(pk=id)
|
||
except ObjectDoesNotExist:
|
||
msg = _("😖哎呀这位老师还没有注册书影音呢,快去长毛象喊TA来吧!")
|
||
sec_msg = _("目前只开放本站用户注册")
|
||
return render(
|
||
request,
|
||
'common/error.html',
|
||
{
|
||
'msg': msg,
|
||
'secondary_msg': sec_msg,
|
||
}
|
||
)
|
||
# mastodon request
|
||
if not user == request.user:
|
||
relation = get_relationships([user.mastodon_id], request.session['oauth_token'])[0]
|
||
if relation['blocked_by']:
|
||
msg = _("你没有访问TA主页的权限😥")
|
||
return render(
|
||
request,
|
||
'common/error.html',
|
||
{
|
||
'msg': msg,
|
||
}
|
||
)
|
||
queryset = BookMark.get_available_user_data(user, relation['is_following']).filter(status=MarkStatusEnum[status.upper()])
|
||
else:
|
||
queryset = BookMark.objects.filter(owner=user, status=MarkStatusEnum[status.upper()])
|
||
paginator = Paginator(queryset, ITEMS_PER_PAGE)
|
||
page_number = request.GET.get('page', default=1)
|
||
marks = paginator.get_page(page_number)
|
||
return render(
|
||
request,
|
||
'users/list.html',
|
||
{
|
||
'marks': marks,
|
||
'user': user,
|
||
}
|
||
)
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
@login_required
|
||
def report(request):
|
||
if request.method == 'GET':
|
||
form = ReportForm()
|
||
return render(
|
||
request,
|
||
'users/report.html',
|
||
{
|
||
'form': form,
|
||
}
|
||
)
|
||
elif request.method == 'POST':
|
||
form = ReportForm(request.POST)
|
||
if form.is_valid():
|
||
form.instance.is_read = False
|
||
form.instance.submit_user = request.user
|
||
form.save()
|
||
return redirect(reverse("users:home", args=[form.instance.reported_user.id]))
|
||
else:
|
||
return render(
|
||
request,
|
||
'users/report.html',
|
||
{
|
||
'form': form,
|
||
}
|
||
)
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
@login_required
|
||
def manage_report(request):
|
||
if request.method == 'GET':
|
||
reports = Report.objects.all()
|
||
for r in reports.filter(is_read=False):
|
||
r.save()
|
||
return render(
|
||
request,
|
||
'users/manage_report.html',
|
||
{
|
||
'reports': reports,
|
||
}
|
||
)
|
||
else:
|
||
return HttpResponseBadRequest()
|
||
|
||
|
||
# Utils
|
||
########################################
|
||
def auth_login(request, user, token):
|
||
""" Decorates django ``login()``. Attach token to session."""
|
||
request.session['oauth_token'] = token
|
||
auth.login(request, user)
|
||
|
||
|
||
def auth_logout(request):
|
||
""" Decorates django ``logout()``. Release token in session."""
|
||
del request.session['oauth_token']
|
||
auth.logout(request) |