2022-12-01 18:48:31 +00:00
|
|
|
from flask import Flask, render_template, send_from_directory, abort, url_for, jsonify, redirect, request, session
|
|
|
|
from werkzeug.utils import secure_filename
|
2022-12-19 21:15:56 +00:00
|
|
|
import mysql.connector
|
|
|
|
from mysql.connector import Error
|
2022-12-01 18:48:31 +00:00
|
|
|
import os
|
|
|
|
|
|
|
|
# Get database stuff
|
|
|
|
DB_USER = os.environ.get('USERNAME')
|
|
|
|
DB_PASS = os.environ.get('PASSWORD')
|
|
|
|
DB_HOST = os.environ.get('HOST')
|
|
|
|
DB_PORT = os.environ.get('PORT')
|
|
|
|
|
2022-12-19 21:15:56 +00:00
|
|
|
DB_NAME = os.environ.get('DATABASE')
|
|
|
|
|
|
|
|
try:
|
|
|
|
DB = mysql.connector.connect(host=DB_HOST,
|
|
|
|
port=DB_PORT,
|
|
|
|
database=DB_NAME,
|
|
|
|
user=DB_USER,
|
|
|
|
password=DB_PASS)
|
|
|
|
if DB.is_connected():
|
|
|
|
db_Info = DB.get_server_info()
|
|
|
|
print("Connected to MySQL Server version ", db_Info)
|
|
|
|
|
|
|
|
cursor = DB.cursor()
|
|
|
|
cursor.execute("select database();")
|
|
|
|
|
|
|
|
record = cursor.fetchone()
|
|
|
|
print("You're connected to database: ", record)
|
|
|
|
|
|
|
|
except Error as e:
|
|
|
|
print("Error while connecting to MySQL", e)
|
|
|
|
|
2022-12-01 18:48:31 +00:00
|
|
|
|
|
|
|
# Set flask config
|
|
|
|
BASE_DIR = os.path.dirname(os.path.abspath(__file__))
|
2022-12-14 19:55:40 +00:00
|
|
|
UPLOAD_FOLDER = os.path.join(BASE_DIR, 'uploads')
|
2022-12-01 18:48:31 +00:00
|
|
|
|
|
|
|
app = Flask(__name__)
|
2022-12-14 19:55:40 +00:00
|
|
|
app.config['UPLOAD_FOLDER'] = UPLOAD_FOLDER
|
2022-12-01 18:48:31 +00:00
|
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
# ERROR HANDLERS
|
|
|
|
#
|
|
|
|
@app.errorhandler(405)
|
|
|
|
def method_not_allowed(e):
|
|
|
|
error = '405'
|
|
|
|
msg = 'Method sussy wussy'
|
2022-12-14 19:55:40 +00:00
|
|
|
return render_template('error.html', error=error, msg=msg), 404
|
|
|
|
|
2022-12-01 18:48:31 +00:00
|
|
|
|
|
|
|
@app.errorhandler(404)
|
|
|
|
def page_not_found(e):
|
|
|
|
error = '404'
|
|
|
|
msg = 'Could not find what you need!'
|
2022-12-14 19:55:40 +00:00
|
|
|
return render_template('error.html', error=error, msg=msg), 404
|
|
|
|
|
2022-12-01 18:48:31 +00:00
|
|
|
|
|
|
|
@app.errorhandler(403)
|
|
|
|
def forbidden(e):
|
|
|
|
error = '403'
|
|
|
|
msg = 'Go away! This is no place for you!'
|
2022-12-14 19:55:40 +00:00
|
|
|
return render_template('error.html', error=error, msg=msg), 403
|
|
|
|
|
2022-12-01 18:48:31 +00:00
|
|
|
|
|
|
|
@app.errorhandler(410)
|
|
|
|
def gone(e):
|
|
|
|
error = '410'
|
|
|
|
msg = 'The page is no longer available! *sad face*'
|
2022-12-14 19:55:40 +00:00
|
|
|
return render_template('error.html', error=error, msg=msg), 410
|
|
|
|
|
2022-12-01 18:48:31 +00:00
|
|
|
|
|
|
|
@app.errorhandler(500)
|
|
|
|
def internal_server_error(e):
|
|
|
|
error = '500'
|
|
|
|
msg = 'Server died inside :c'
|
2022-12-14 19:55:40 +00:00
|
|
|
return render_template('error.html', error=error, msg=msg), 500
|
2022-12-01 18:48:31 +00:00
|
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
# ROUTES
|
|
|
|
#
|
|
|
|
@app.route('/')
|
|
|
|
def home():
|
2022-12-14 19:55:40 +00:00
|
|
|
return render_template('home.html')
|
|
|
|
|
2022-12-01 18:48:31 +00:00
|
|
|
|
2022-12-19 21:15:56 +00:00
|
|
|
@app.route('/image/<request_id>')
|
|
|
|
def image(request_id):
|
|
|
|
# Check if request_id is valid
|
2022-12-01 18:48:31 +00:00
|
|
|
try:
|
2022-12-19 21:15:56 +00:00
|
|
|
request_id = int(request_id)
|
2022-12-01 18:48:31 +00:00
|
|
|
except ValueError:
|
|
|
|
abort(404)
|
2022-12-19 21:15:56 +00:00
|
|
|
|
|
|
|
# SQL injection prevention
|
|
|
|
sql = "SELECT imagename FROM images WHERE id = %s"
|
|
|
|
img_id = (request_id,)
|
|
|
|
|
|
|
|
# Get image details
|
|
|
|
cursor = DB.cursor()
|
|
|
|
cursor.execute(sql, img_id)
|
|
|
|
result = cursor.fetchone()
|
2022-12-14 19:55:40 +00:00
|
|
|
|
2022-12-19 21:15:56 +00:00
|
|
|
return render_template('image.html', fileName=result[0], id=request_id)
|
2022-12-01 18:48:31 +00:00
|
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
# METHODS
|
|
|
|
#
|
2022-12-14 19:55:40 +00:00
|
|
|
@app.route('/fileList/<item_type>', methods=['GET'])
|
|
|
|
def image_list(item_type):
|
|
|
|
if request.method != 'GET':
|
|
|
|
abort(405)
|
2022-12-19 21:15:56 +00:00
|
|
|
|
|
|
|
cursor = DB.cursor()
|
|
|
|
cursor.execute("SELECT id,imagename FROM images ORDER BY id DESC")
|
|
|
|
|
|
|
|
item_list = cursor.fetchall()
|
2022-12-14 19:55:40 +00:00
|
|
|
|
2022-12-19 21:15:56 +00:00
|
|
|
return jsonify(item_list)
|
2022-12-14 19:55:40 +00:00
|
|
|
|
|
|
|
|
2022-12-19 21:15:56 +00:00
|
|
|
@app.route('/uploads/<quality>/<request_file>', methods=['GET'])
|
|
|
|
def uploads(quality, request_file):
|
2022-12-14 19:55:40 +00:00
|
|
|
if request.method != 'GET':
|
|
|
|
abort(405)
|
|
|
|
|
2022-12-19 21:15:56 +00:00
|
|
|
quality = secure_filename(quality)
|
|
|
|
quality_dir = os.path.join(app.config['UPLOAD_FOLDER'], quality)
|
|
|
|
if not os.path.isdir(quality_dir):
|
2022-12-14 19:55:40 +00:00
|
|
|
abort(404)
|
|
|
|
|
2022-12-19 21:15:56 +00:00
|
|
|
request_file = secure_filename(request_file)
|
|
|
|
|
|
|
|
if not os.path.isfile(os.path.join(quality_dir, request_file)):
|
2022-12-14 19:55:40 +00:00
|
|
|
abort(404)
|
|
|
|
|
2022-12-19 21:15:56 +00:00
|
|
|
return send_from_directory(quality_dir, request_file)
|