allsparkinfinite/blog
1
0
Fork 0
Code Issues 7 Pull requests Projects 1 Releases Packages Wiki Activity Actions

Compare commits

base: allsparkinfinite:production
Branches Tags
allsparkinfinite:production
allsparkinfinite:individual-page-per-post
allsparkinfinite:development
allsparkinfinite:hide-login-url
allsparkinfinite:remove-register-url
allsparkinfinite:old-updates
..
compare: allsparkinfinite:old-updates
Branches Tags
allsparkinfinite:individual-page-per-post
allsparkinfinite:development
allsparkinfinite:hide-login-url
allsparkinfinite:remove-register-url
allsparkinfinite:production
allsparkinfinite:old-updates

8 commits
production ... old-update

Author SHA1 Message Date
Punnamaraju Vinayaka Tejas
00f7c1de33 Closes #1 2023-07-28 19:47:32 +05:30
PV Tejas
57df913a2c Increase gap between title bar and header 2023-07-17 16:02:17 +00:00
PV Tejas
0b2f0378c1 Fix premature loading of static folder path 2023-07-16 16:44:14 +00:00
PV Tejas
83582435e9 Update README.md with details on config.py in development environments 2023-07-13 04:50:10 +00:00
PV Tejas
b18140c483 Update README.md 2023-07-12 10:18:41 +00:00
Punnamaraju Vinayaka Tejas
a5b0de8c70 Fixed spurious commit hash in requirements.txt 2023-07-12 15:40:32 +05:30
Punnamaraju Vinayaka Tejas
bda624e4dc Closes #6 2023-07-12 15:37:40 +05:30
Punnamaraju Vinayaka Tejas
de094d4bed Closes #2 and #3 2023-07-12 12:51:39 +05:30
12 changed files with 88 additions and 66 deletions
Download patch file Download diff file Expand all files Collapse all files

41
LICENSE
View file

@ -1,28 +1,21 @@
Copyright 2010 Pallets
MIT License
Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions are
met:
Copyright (c) 2023 PV Tejas
1. Redistributions of source code must retain the above copyright
notice, this list of conditions and the following disclaimer.
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
2. Redistributions in binary form must reproduce the above copyright
notice, this list of conditions and the following disclaimer in the
documentation and/or other materials provided with the distribution.
The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.
3. Neither the name of the copyright holder nor the names of its
contributors may be used to endorse or promote products derived from
this software without specific prior written permission.
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.

17
README.md
View file

@ -10,7 +10,20 @@ Use `gunicorn -w 2 'flaskr:create_app()'` to run app. Increase the number of wor
## Initializing database
The first time you install the app in each environment, you need to initialize database using `flask --app flaskr init-db`. This only needs to be run once per environment, and **will delete existing database if run again**.
## Secret key
## Config file
The config file is located at `<python_environment>/var/flaskr-instance/config.py` in production, and in `instance/` in development. The instance folder is created when the database is initialized.
### Secret Key
Every website with login needs a secret key to hash passwords with.
`<python_environment>/var/flaskr-instance/config.py` must contain a line `SECRET_KEY = '<secret_key>`, which must be randomly generated.
The config file must contain a line `SECRET_KEY = '<secret_key>`, which must be randomly generated.
Suggested way of generating the key is `python -c 'import secrets; print(secrets.token_hex())'`, which returns a hexadecimal string with length 64. You may choose to randomly generate a key using a different method, but ensure that it is resistant to brute-force attacks.
### Registration
Since this blog is meant to be updated by a limited number of people, registration is forbidden (403) by default. In addition, registration (/auth/register) and login (/auth/login) URLs are not hyperlinked anywhere. Registration can be opened by including `REGISTER = True`, and is closed by default.
### Name
The default app name is "Flaskr", and it is visible on the header bar as well as the page title. Including a line `NAME = '<name>'` in the config file replaces "Flaskr" with your chosen name.
### Static folder
The default static folder is the one included in the repository. You can use a separate static folder to use your own assets by including a line `STATIC_FOLDER = '<absolute/path/to/folder>'` in the config file.

5
flaskr/__init__.py
View file

@ -8,6 +8,8 @@ def create_app(test_config=None):
app.config.from_mapping(
SECRET_KEY='dev',
DATABASE=os.path.join(app.instance_path, 'flaskr.sqlite'),
REGISTER=False,
NAME='Flaskr'
)
app.wsgi_app = ProxyFix(
@ -21,6 +23,9 @@ def create_app(test_config=None):
# load the test config if passed in
app.config.from_mapping(test_config)
if app.config.get('STATIC_FOLDER') is not None:
app.static_folder = app.config.get('STATIC_FOLDER')
# ensure the instance folder exists
try:
os.makedirs(app.instance_path)

5
flaskr/auth.py
View file

@ -1,7 +1,7 @@
import functools
from flask import (
Blueprint, flash, g, redirect, render_template, request, session, url_for
Blueprint, flash, g, redirect, render_template, request, session, url_for, current_app, abort
)
from werkzeug.security import check_password_hash, generate_password_hash
@ -11,7 +11,8 @@ bp = Blueprint('auth', __name__, url_prefix='/auth')
@bp.route('/register', methods=('GET', 'POST'))
def register():
return "Admin only", 403
if not current_app.config['REGISTER']:
abort(403)
if request.method == 'POST':
username = request.form['username']
password = request.form['password']

22
flaskr/blog.py
View file

@ -7,7 +7,6 @@ from flaskr.auth import login_required
from flaskr.db import get_db
import markdown
import datetime
bp = Blueprint('blog', __name__)
@ -21,8 +20,6 @@ def index():
).fetchall()
posts = []
for post in db_posts:
if post['created'] > datetime.datetime.utcnow():
continue
post = dict(post)
post['body'] = markdown.markdown(post['body'])
posts.append(post)
@ -69,6 +66,13 @@ def get_post(id, check_author=True):
return post
@bp.route('/<int:id>')
def post(id):
post = get_post(id, check_author=False)
post = dict(post)
post['body'] = markdown.markdown(post['body'])
return render_template('blog/post.html', post=post)
@bp.route('/<int:id>/update', methods=('GET', 'POST'))
@login_required
def update(id):
@ -77,23 +81,19 @@ def update(id):
if request.method == 'POST':
title = request.form['title']
body = request.form['body']
created = request.form['created']
error = None
if not title:
error = 'Title is required.'
if not created:
error = "Created is required."
if error is not None:
flash(error)
else:
db = get_db()
db.execute(
'UPDATE post SET title = ?, body = ?, created = ?'
'UPDATE post SET title = ?, body = ?'
' WHERE id = ?',
(title, body, created, id)
(title, body, id)
)
db.commit()
return redirect(url_for('blog.index'))
@ -108,3 +108,7 @@ def delete(id):
db.execute('DELETE FROM post WHERE id = ?',(id,))
db.commit()
return redirect(url_for('blog.index'))
@bp.route('/temp')
def temp():
return render_template('temp.html')

BIN
flaskr/static/favicon.png
View file

Binary file not shown.
Side by side Swipe Overlay

Before

Width:  |  Height:  |  Size: 101 KiB

After

Width:  |  Height:  |  Size: 73 B

Before After
Before After

12
flaskr/static/style.css
View file

@ -1,11 +1,6 @@
html { font-family: sans-serif; background: #eee; padding: 1rem; }
body { max-width: 960px; margin: 0 auto; background: white; }
h1 { font-family: serif; color: #377ba8; margin: 1rem 0; }
h2 { color: #377ba8; margin: 1rem 0; }
h3 { color: #377ba8; margin: 1rem 0; }
h4 { color: #377ba8; margin: 1rem 0; }
h5 { color: #377ba8; margin: 1rem 0; }
h6 { color: #377ba8; margin: 1rem 0; }
a { color: #377ba8; }
hr { border: none; border-top: 1px solid lightgray; }
nav { background: lightgray; display: flex; align-items: center; padding: 0 0.5rem; }
@ -19,12 +14,7 @@ nav ul li a, nav ul li span, header .action { display: block; padding: 0.5rem; }
.flash { margin: 1em 0; padding: 1em; background: #cae6f6; border: 1px solid #377ba8; }
.post > header { display: flex; align-items: flex-end; font-size: 0.85em; }
.post > header > div:first-of-type { flex: auto; }
.post > header h1 { margin-bottom: 0; }
.post > h2 { margin-bottom: 0; }
.post > h3 { margin-bottom: 0; }
.post > h4 { margin-bottom: 0; }
.post > h5 { margin-bottom: 0; }
.post > h6 { margin-bottom: 0; }
.post > header h1 { font-size: 1.5em; margin-bottom: 0; }
.post .about { color: slategray; font-style: italic; }
.post .body { white-space: pre-line; }
.content:last-child { margin-bottom: 0; }

10
flaskr/templates/base.html
View file

@ -1,19 +1,19 @@
<!doctype html>
<title>{% block title %}{% endblock %} - blogsparkinfinite</title>
<title>{% block title %}{% endblock %} - {{ config['NAME'] }}</title>
<link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
<link rel="icon" type="image/png" href="{{ url_for('static', filename='favicon.png') }}">
<nav>
<h1>blogsparkinfinite</h1>
<h1>{{ config['NAME'] }}</h1>
<ul>
{% if g.user %}
<li><span>{{ g.user['username'] }}</span>
<li><a href="{{ url_for('auth.logout') }}">Log Out</a>
{% else %}
<li><a href="{{ url_for('auth.register') }}">Register</a>
<li><a href="{{ url_for('auth.login') }}">Log In</a>
{% endif %}
</ul>
</nav>
</br>
</br>
</br>
<section class="content">
<header>
{% block header %}{% endblock %}

7
flaskr/templates/blog/index.html
View file

@ -12,14 +12,13 @@
<article class="post">
<header>
<div>
<h1>{{ post['title'] }}</h1>
<h1><a href="{{ url_for('blog.post', id=post['id']) }}">{{ post['title'] }}</a></h1>
<div class="about">by {{ post['username'] }} on {{ post['created'].strftime('%Y-%m-%d') }}</div>
</div>
{% if g.user['id'] == post['author_id'] %}
<a class="action" href="{{ url_for('blog.update', id=post['id']) }}">Edit</a>
{% endif %}
<a href="{{ url_for('blog.update', id=post['id']) }}">Edit</a>
{% endif %}
</header>
<p class="body">{{ post['body']|safe }}</p>
</article>
{% if not loop.last %}
<hr>

20
flaskr/templates/blog/post.html Normal file
View file

@ -0,0 +1,20 @@
{% extends 'base.html' %}
{% block header %}
<h1>{% block title %}{{ post['title']}}{% endblock %}</h1>
{% endblock %}
{% block content %}
<article class="post">
<header>
<div>
<h1>{{ post['title'] }}</h1>
<div class="about">by {{ post['username'] }} on {{ post['created'].strftime('%Y-%m-%d') }}</div>
</div>
{% if g.user['id'] == post['author_id'] %}
<a class="action" href="{{ url_for('blog.update', id=post['id']) }}">Edit</a>
{% endif %}
</header>
<p class="body">{{ post['body']|safe }}</p>
</article>
{% endblock %}

3
flaskr/templates/blog/update.html
View file

@ -11,9 +11,6 @@
value="{{ request.form['title'] or post['title'] }}" required>
<label for="body">Body</label>
<textarea name="body" id="body">{{ request.form['body'] or post['body'] }}</textarea>
<label for="created">Created</label>
<input name="created" id="created"
value="{{ request.form['created'] or post['created'] }}" required>
<input type="submit" value="Save">
</form>
<hr>

12
requirements.txt
View file

@ -8,11 +8,11 @@ dnspython==2.3.0
email-validator==2.0.0.post2
exceptiongroup==1.1.1
Flask==2.3.2
# -e git+https://gitlab.com/pvtejas/based4tech.git@4be89bd767a7c5a84ab62fbf4ad924ae1af077f1#egg=flaskr
-e git+https://gitlab.com/pvtejas/based4tech.git@bda624e4dc1cf97ba2b5b3fcb66a5b28398307bc#egg=flaskr
gunicorn==20.1.0
h11==0.14.0
httpcore==0.17.0
httptools
httptools==0.5.0
httpx==0.24.0
idna==3.4
iniconfig==2.0.0
@ -20,20 +20,20 @@ itsdangerous==2.1.2
Jinja2==3.1.2
Markdown==3.4.3
MarkupSafe==2.1.2
orjson
orjson==3.8.11
packaging==23.1
pluggy==1.0.0
pyproject_hooks==1.0.0
pytest==7.3.2
python-dotenv==1.0.0
python-multipart==0.0.6
# PyYAML==6.0
PyYAML==6.0
sniffio==1.3.0
tomli==2.0.1
typing_extensions==4.5.0
ujson
ujson==5.7.0
uvicorn==0.22.0
uvloop
uvloop==0.17.0
watchfiles==0.19.0
websockets==11.0.3
Werkzeug==2.3.3