calendarwatch_frontend/server/googleHandler.py

import google.oauth2.credentials
import google_auth_oauthlib.flow
import googleapiclient.discovery

import backend.caltojson as caltojson
from oauthlib.oauth2 import WebApplicationClient
import flask

# Python standard libraries
import json
import os

# Third-party libraries
import flask
from flask import Flask, redirect, request, url_for
from flask_login import (
    LoginManager,
    current_user,
    login_required,
    login_user,
    logout_user,
)
import requests

from database.models import Calendar as dbCalendar
from server import db
# Configuration
class GoogleClient():
    def __init__(self):
        self.CLIENT_SECRETS_FILE = "certificate/client_secret.json"

        with open("/home/calendarwatch/certificate/google_client.json", encoding='utf-8') as json_file:
            self.google_client = json.load(json_file)

        self.SCOPES = self.google_client.get('scopes')
        self.API_SERVICE_NAME = 'calendar'
        self.API_VERSION = 'v3'

        #  GOOGLE_CLIENT_ID ="377787187748-shuvi4iq5bi4gdet6q3ioataimobs4lh.apps.googleusercontent.com"
        self.GOOGLE_CLIENT_ID = self.google_client.get('client_id')
        # GOOGLE_CLIENT_SECRET = "Hu_YWmKsVKUcLwyeINYzdKfZ"
        self.GOOGLE_CLIENT_SECRET = self.google_client.get('client_secret')
        self.GOOGLE_DISCOVERY_URL = (
            "https://accounts.google.com/.well-known/openid-configuration"
        )

        # OAuth 2 client setup
        self.client = WebApplicationClient(self.GOOGLE_CLIENT_ID)


    def build_credentials(self, token, refresh_token):
        data = {}
        data['token'] = token
        data['refresh_token'] = refresh_token
        data['token_uri'] = self.google_client.get('token_uri')
        data['client_id'] = self.google_client.get('client_id')
        data['client_secret'] = self.google_client.get('client_secret')
        data['scopes'] = self.google_client.get('scopes')
        return data

GC = GoogleClient()

def login():
    # Create flow instance to manage the OAuth 2.0 Authorization Grant Flow steps.
    flow = google_auth_oauthlib.flow.Flow.from_client_secrets_file(
        GC.CLIENT_SECRETS_FILE, scopes=GC.SCOPES)
    # The URI created here must exactly match one of the authorized redirect URIs
    # for the OAuth 2.0 client, which you configured in the API Console. If this
    # value doesn't match an authorized URI, you will get a 'redirect_uri_mismatch'
    # error.
    flow.redirect_uri = request.base_url + "/callback"
    authorization_url, state = flow.authorization_url(
        # Enable offline access so that you can refresh an access token without
        # re-prompting the user for permission. Recommended for web server apps.
        access_type='offline',
        # Enable incremental authorization. Recommended as a best practice.
        include_granted_scopes='true')

    # Store the state so the callback can verify the auth server response.
    flask.session['state'] = state
    # Flask-Login helper to retrieve a user from our db
    return authorization_url

def verifyResponse():
    # Specify the state when creating the flow in the callback so that it can
    # verified in the authorization server response.
    state = flask.session['state']

    flow = google_auth_oauthlib.flow.Flow.from_client_secrets_file(
        GC.CLIENT_SECRETS_FILE, scopes=GC.SCOPES, state=state)
    flow.redirect_uri = flask.url_for('callback', _external=True) 

    # Use the authorization server's response to fetch the OAuth 2.0 tokens.
    authorization_response = flask.request.url
    flow.fetch_token(authorization_response=authorization_response)

    # Store credentials in the session.
    # ACTION ITEM: In a production app, you likely want to save these
    #              credentials in a persistent database instead.

    credentials = flow.credentials
    flask.session['credentials'] = credentials_to_dict(credentials)
    print(credentials_to_dict(credentials), flush=True)
    session = flow.authorized_session()
    return session, credentials_to_dict(credentials)


def get_google_provider_cfg():
    return requests.get(GC.GOOGLE_DISCOVERY_URL).json()

def deleteAccount(user):
    result = requests.post('https://oauth2.googleapis.com/revoke',
        params={'token': user.google_token.token},
        headers = {'content-type': 'applixation/x-www-form-urlencoded'})
    print(result, flush=True)
    return

class Calendar:
    def __init__(self, name, calendarId, toggle='False', color="#000000"):
        self.name = name
        self.color = color
        self.toggle=toggle
        self.calendarId = calendarId

# TODO move this to databas
def calendarsFromDb():
    pyCalendars = []
    for calendar in current_user.calendars:
        name = (calendar.name[:16] + '..') if len(calendar.name)> 18 else calendar.name
        calendarId = calendar.calendar_id
        toggle = calendar.toggle
        color = calendar.color

        pyCalendars.append(Calendar(name, calendarId, toggle, color))

    return pyCalendars


def updateCalendars():
    if 'credentials' not in flask.session:
        return flask.redirect('login/google')

  # Load credentials from the session.
  # credentials = google.oauth2.credentials.Credentials(
  #       **flask.session['credentials'])
  #   a = flask.session['credentials']
  #   print(a, flush=True) 
  #   print(current_user.getGoogleCredentials(), flush=True)
    if current_user.google_token == None:
        print("notok", flush=True)
        return
    
    client_token = GC.build_credentials(current_user.google_token.token,
                                        current_user.google_token.refresh_token)
    credentials = google.oauth2.credentials.Credentials(**client_token)
    calendars = caltojson.getCalendarList(credentials)
    print(calendars, flush=True)
    for calendar in calendars:
        print(calendar, flush=True)
        if not current_user.hasCalendar(calendar.calendarId):
            print("adding", flush=True)
            c = dbCalendar(calendar_id=calendar.calendarId, 
                           name = calendar.summary,
                           toggle = "False",
                           color = calendar.color)
            db.session.add(c)
            current_user.calendars.append(c)
    
    db.session.commit()
    print("updated Calendars")
    # Save credentials back to session in case access token was refreshed.
    # ACTION ITEM: In a production app, you likely want to save these
    #              credentials in a persistent database instead.
    # TODO add save updated token to database here 
    flask.session['credentials'] = credentials_to_dict(credentials)


def credentials_to_dict(credentials):
  return {'token': credentials.token,
          'refresh_token': credentials.refresh_token,
          'token_uri': credentials.token_uri,
          'client_id': credentials.client_id,
          'client_secret': credentials.client_secret,
          'scopes': credentials.scopes}
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`import google.oauth2.credentials`
			`import google_auth_oauthlib.flow`
			`import googleapiclient.discovery`

			`import backend.caltojson as caltojson`
			`from oauthlib.oauth2 import WebApplicationClient`
			`import flask`

			`# Python standard libraries`
			`import json`
			`import os`

			`# Third-party libraries`
			`import flask`
			`from flask import Flask, redirect, request, url_for`
			`from flask_login import (`
			`LoginManager,`
			`current_user,`
			`login_required,`
			`login_user,`
			`logout_user,`
			`)`
			`import requests`

moves models to database folder 2020-05-24 13:33:48 +02:00			`from database.models import Calendar as dbCalendar`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`from server import db`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`# Configuration`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`class GoogleClient():`
			`def __init__(self):`
			`self.CLIENT_SECRETS_FILE = "certificate/client_secret.json"`

			`with open("/home/calendarwatch/certificate/google_client.json", encoding='utf-8') as json_file:`
			`self.google_client = json.load(json_file)`

			`self.SCOPES = self.google_client.get('scopes')`
			`self.API_SERVICE_NAME = 'calendar'`
			`self.API_VERSION = 'v3'`

			`# GOOGLE_CLIENT_ID ="377787187748-shuvi4iq5bi4gdet6q3ioataimobs4lh.apps.googleusercontent.com"`
			`self.GOOGLE_CLIENT_ID = self.google_client.get('client_id')`
			`# GOOGLE_CLIENT_SECRET = "Hu_YWmKsVKUcLwyeINYzdKfZ"`
			`self.GOOGLE_CLIENT_SECRET = self.google_client.get('client_secret')`
			`self.GOOGLE_DISCOVERY_URL = (`
			`"https://accounts.google.com/.well-known/openid-configuration"`
			`)`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`# OAuth 2 client setup`
			`self.client = WebApplicationClient(self.GOOGLE_CLIENT_ID)`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00

updates database design for mariadb 2020-05-27 20:06:43 +02:00			`def build_credentials(self, token, refresh_token):`
			`data = {}`
			`data['token'] = token`
			`data['refresh_token'] = refresh_token`
			`data['token_uri'] = self.google_client.get('token_uri')`
			`data['client_id'] = self.google_client.get('client_id')`
			`data['client_secret'] = self.google_client.get('client_secret')`
			`data['scopes'] = self.google_client.get('scopes')`
			`return data`

			`GC = GoogleClient()`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00
			`def login():`
			`# Create flow instance to manage the OAuth 2.0 Authorization Grant Flow steps.`
			`flow = google_auth_oauthlib.flow.Flow.from_client_secrets_file(`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`GC.CLIENT_SECRETS_FILE, scopes=GC.SCOPES)`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`# The URI created here must exactly match one of the authorized redirect URIs`
			`# for the OAuth 2.0 client, which you configured in the API Console. If this`
			`# value doesn't match an authorized URI, you will get a 'redirect_uri_mismatch'`
			`# error.`
			`flow.redirect_uri = request.base_url + "/callback"`
			`authorization_url, state = flow.authorization_url(`
			`# Enable offline access so that you can refresh an access token without`
			`# re-prompting the user for permission. Recommended for web server apps.`
			`access_type='offline',`
			`# Enable incremental authorization. Recommended as a best practice.`
			`include_granted_scopes='true')`

			`# Store the state so the callback can verify the auth server response.`
			`flask.session['state'] = state`
			`# Flask-Login helper to retrieve a user from our db`
			`return authorization_url`

			`def verifyResponse():`
			`# Specify the state when creating the flow in the callback so that it can`
			`# verified in the authorization server response.`
			`state = flask.session['state']`

			`flow = google_auth_oauthlib.flow.Flow.from_client_secrets_file(`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`GC.CLIENT_SECRETS_FILE, scopes=GC.SCOPES, state=state)`
updates color generation, tries fixing credentials bug - credentials still lost the refresh token after a certain event - this was now fixed by completely removing any saves past the first one - https://trello.com/c/iORYLYHl/44-1-check-on-credentials - Color Coding is now updated - fixed an incorrect color mapping in the colors.json - updates some calls to functions to correctly get the natural colors - the incorrect red -> yellow mapping might have to do with the previous credentials error 2020-05-17 22:59:12 +02:00			`flow.redirect_uri = flask.url_for('callback', _external=True)`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00
			`# Use the authorization server's response to fetch the OAuth 2.0 tokens.`
			`authorization_response = flask.request.url`
			`flow.fetch_token(authorization_response=authorization_response)`

			`# Store credentials in the session.`
			`# ACTION ITEM: In a production app, you likely want to save these`
			`# credentials in a persistent database instead.`
updates color generation, tries fixing credentials bug - credentials still lost the refresh token after a certain event - this was now fixed by completely removing any saves past the first one - https://trello.com/c/iORYLYHl/44-1-check-on-credentials - Color Coding is now updated - fixed an incorrect color mapping in the colors.json - updates some calls to functions to correctly get the natural colors - the incorrect red -> yellow mapping might have to do with the previous credentials error 2020-05-17 22:59:12 +02:00
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`credentials = flow.credentials`
			`flask.session['credentials'] = credentials_to_dict(credentials)`
updates color generation, tries fixing credentials bug - credentials still lost the refresh token after a certain event - this was now fixed by completely removing any saves past the first one - https://trello.com/c/iORYLYHl/44-1-check-on-credentials - Color Coding is now updated - fixed an incorrect color mapping in the colors.json - updates some calls to functions to correctly get the natural colors - the incorrect red -> yellow mapping might have to do with the previous credentials error 2020-05-17 22:59:12 +02:00			`print(credentials_to_dict(credentials), flush=True)`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`session = flow.authorized_session()`
adds backend script which can be run as a cronjob every n minutes to generate new json files for google calendars - database updated to save google credentials - database updated to save json calendar information - json still saved as a json file under userinfo/<user.id>/calendarevents.json 2020-04-24 19:54:56 +02:00			`return session, credentials_to_dict(credentials)`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00

			`def get_google_provider_cfg():`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`return requests.get(GC.GOOGLE_DISCOVERY_URL).json()`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00
adds delete account function 2020-05-22 10:47:28 +02:00			`def deleteAccount(user):`
			`result = requests.post('https://oauth2.googleapis.com/revoke',`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`params={'token': user.google_token.token},`
adds delete account function 2020-05-22 10:47:28 +02:00			`headers = {'content-type': 'applixation/x-www-form-urlencoded'})`
			`print(result, flush=True)`
			`return`

adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`class Calendar:`
backend now uses calendar_id and this is the frontend upgrade - calendar_id is unique and therefore creates less problems - changing id of DOM from item.name to calendar_id 2020-05-18 23:52:18 +02:00			`def __init__(self, name, calendarId, toggle='False', color="#000000"):`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`self.name = name`
			`self.color = color`
			`self.toggle=toggle`
backend now uses calendar_id and this is the frontend upgrade - calendar_id is unique and therefore creates less problems - changing id of DOM from item.name to calendar_id 2020-05-18 23:52:18 +02:00			`self.calendarId = calendarId`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`# TODO move this to databas`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`def calendarsFromDb():`
			`pyCalendars = []`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`for calendar in current_user.calendars:`
adds device page and form for new device - form added to push new device id to backend - device added to db model (needs to be pushed still) - form return right now just prints - design for device list created, still needs some updates 2020-05-21 18:33:58 +02:00			`name = (calendar.name[:16] + '..') if len(calendar.name)> 18 else calendar.name`
backend now uses calendar_id and this is the frontend upgrade - calendar_id is unique and therefore creates less problems - changing id of DOM from item.name to calendar_id 2020-05-18 23:52:18 +02:00			`calendarId = calendar.calendar_id`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`toggle = calendar.toggle`
			`color = calendar.color`

backend now uses calendar_id and this is the frontend upgrade - calendar_id is unique and therefore creates less problems - changing id of DOM from item.name to calendar_id 2020-05-18 23:52:18 +02:00			`pyCalendars.append(Calendar(name, calendarId, toggle, color))`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00
			`return pyCalendars`


			`def updateCalendars():`
			`if 'credentials' not in flask.session:`
			`return flask.redirect('login/google')`

			`# Load credentials from the session.`
updates routines script and google certification handling 2020-05-15 16:00:54 +02:00			`# credentials = google.oauth2.credentials.Credentials(`
			`# **flask.session['credentials'])`
			`# a = flask.session['credentials']`
			`# print(a, flush=True)`
			`# print(current_user.getGoogleCredentials(), flush=True)`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`if current_user.google_token == None:`
			`print("notok", flush=True)`
routing updated to be more variable and on demand - calendar json file now generated on demand at download request - device fingerprint route now added 2020-05-24 13:26:41 +02:00			`return`
updates database design for mariadb 2020-05-27 20:06:43 +02:00
			`client_token = GC.build_credentials(current_user.google_token.token,`
			`current_user.google_token.refresh_token)`
			`credentials = google.oauth2.credentials.Credentials(**client_token)`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`calendars = caltojson.getCalendarList(credentials)`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`print(calendars, flush=True)`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`for calendar in calendars:`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`print(calendar, flush=True)`
			`if not current_user.hasCalendar(calendar.calendarId):`
			`print("adding", flush=True)`
			`c = dbCalendar(calendar_id=calendar.calendarId,`
			`name = calendar.summary,`
			`toggle = "False",`
			`color = calendar.color)`
			`db.session.add(c)`
			`current_user.calendars.append(c)`

			`db.session.commit()`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`print("updated Calendars")`
			`# Save credentials back to session in case access token was refreshed.`
			`# ACTION ITEM: In a production app, you likely want to save these`
			`# credentials in a persistent database instead.`
updates database design for mariadb 2020-05-27 20:06:43 +02:00			`# TODO add save updated token to database here`
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`flask.session['credentials'] = credentials_to_dict(credentials)`


updates database design for mariadb 2020-05-27 20:06:43 +02:00
adds more advanced database handling unsing sql alchemy - moves app into package - adds sql alchemy equipment - moves templates into server package - add app.db sqlite file 2020-04-22 22:15:21 +02:00			`def credentials_to_dict(credentials):`
			`return {'token': credentials.token,`
			`'refresh_token': credentials.refresh_token,`
			`'token_uri': credentials.token_uri,`
			`'client_id': credentials.client_id,`
			`'client_secret': credentials.client_secret,`
			`'scopes': credentials.scopes}`