# Python standard libraries import json import os # Third-party libraries import flask from flask import render_template, flash from flask import Flask, redirect, request, url_for, jsonify from flask_login import ( LoginManager, current_user, login_required, login_user, logout_user, ) from random_word import RandomWords import requests import server.googleHandler as google from server import login_manager, app, db from server.forms import LoginForm, RegistrationForm, DeviceForm import backend from database.models import User, Calendar, Device, GoogleToken os.environ['OAUTHLIB_INSECURE_TRANSPORT'] = '1' @app.route("/") def startpage(): return flask.render_template('startpage.html') @app.route("/privacy") def privacy(): return flask.render_template('privacy.html') @app.route("/login") def login(): if current_user.is_authenticated: return redirect(url_for('account')) return flask.render_template('login.html') @app.route("/account") def account(): if current_user.is_authenticated: calendars = [] gCalendars, colors, token = google.fetchCalendars() if token != None: current_user.google_token.token = token db.session.commit() calendars.extend(gCalendars) backend.updateCalendars(current_user, calendars, colors) return (flask.render_template('account.html', username = current_user.username, email = current_user.email, profile_img=current_user.profile_pic ) ) else: return redirect(url_for("login")) @app.route("/view") def view(): if not current_user.is_authenticated: return flask.render_template('login.html') else: return (flask.render_template('view.html')) @app.route("/devices", methods=['GET', 'POST']) def devices(): if not current_user.is_authenticated: return flask.render_template('login.html') # if this is a post request from the 'unlink' submittion form # delete this device from the list if request.method == 'POST': if request.form.get("submit") == "Unlink": device = db.session.query(Device).filter(Device.deviceName==request.form.get("device")).first() db.session.delete(device) db.session.commit() # if this is part of the device form form = DeviceForm() if form.validate_on_submit(): device = db.session.query(Device).filter(Device.deviceName==form.deviceName.data).first() current_user.devices.append(device) db.session.commit() return flask.render_template('devices.html', devices=current_user.devices, form=form) @app.route("/calendar") @login_required def calendar(): calendars = backend.calendarsFromDb(current_user) return flask.render_template('calendar.html', calendars=calendars) @app.route('/login/email', methods=['GET', 'POST']) def emaillogin(): if current_user.is_authenticated: return redirect(url_for('account') ) form = LoginForm() if form.validate_on_submit(): user = User.query.filter_by(username=form.username.data).first() if user is None or not user.checkPassword(form.password.data): flash('invalid username or password') return redirect(url_for('emaillogin')) login_user(user, remember=form.remember_me.data) return redirect(url_for('account')) return render_template('emaillogin.html', title='Sign In', form=form) @app.route('/register', methods=['GET', 'POST']) def register(): if current_user.is_authenticated: return redirect(url_for('account')) form = RegistrationForm() if form.validate_on_submit(): user = User(userid=form.username.data, username=form.username.data, email=form.email.data) user.setPassword(form.password.data) db.session.add(user) db.session.commit() flash('Congratulations, you are now a registered user!') return redirect(url_for('emaillogin')) return flask.render_template('register.html', title='Register', form=form) @app.route("/delete_account") def deleteAccount(): if not current_user.is_authenticated: return redirect(url_for('account')) if current_user.google_token != None: google.deleteAccount(current_user) db.session.delete(current_user) db.session.commit() logout_user() return redirect(url_for('account')) @app.route("/login/google") def googlelogin(): if current_user.is_authenticated and current_user.google_token != None: return redirect(url_for('account')) authorization_url = google.login() return flask.redirect(authorization_url) @app.route("/login/google/callback") def callback(): session, credentials = google.verifyResponse() userinfo = session.get('https://www.googleapis.com/userinfo/v2/me').json() # Create a user in your db with the information provided # by Google # Doesn't exist? Add it to the database. if not db.session.query(User).filter(User.userid==userinfo['id']).first(): gc = GoogleToken(token=credentials.get("token"), refresh_token=credentials.get("refresh_token")) db.session.add(gc) newser = User( userid=userinfo['id'], username=userinfo['name'], email=userinfo['email'], profile_pic=userinfo['picture'], password_hash="", google_token = gc ) db.session.add(newser) db.session.commit() user = db.session.query(User).filter(User.userid==userinfo['id']).first() # Begin user session by logging the user in login_user(user) return flask.redirect(flask.url_for('index')) @app.route("/logout") @login_required def logout(): logout_user() return redirect(url_for("index")) @app.route("/device//calendarevents.json") def downloader(device): path = "/home/calendarwatch/device/" + device + "/" request_device = db.session.query(Device).filter(Device.deviceName==device).first() if request_device == None: return jsonify(kind="not found") if request_device.user_id == None: return jsonify(kind="unregistered") request_device.connection=True db.session.commit() request_user = db.session.query(User).filter(User.id==request_device.user_id).first() # TODO add test if googke token exists # if request_user.google_token != Null: # TODO only pass along google calendars form user startDate, endDate = backend.getTimeStamps() events, colors = google.fetchCalendarEvents(request_user, request_user.calendars, startDate, endDate) calendarjson = backend.generateJsonFromCalendarEntries(events, colors) return jsonify(calendarjson) @app.route("/devicefingerprint.json") def generateDeviceFingerprint(): # Create Three Random Words r = RandomWords() while True: fingerprint = "" length = 3 randos = r.get_random_words(limit=length, hasDictionaryDef="true", includePartOfSpeech="noun", minDictionaryCount=1, maxDictionaryCount=10, minLength=5, maxLength=10) for i in range(len(randos)): fingerprint += randos[i] if i < length-1: fingerprint += "-" # check not in Device Database if not db.session.query(Device).filter(Device.deviceName==fingerprint).first(): # Save as new Device device = Device(deviceName=fingerprint, connection=False) db.session.add(device) db.session.commit() break; # Send to Device return jsonify(deviceName=fingerprint) # POST @app.route('/calendar', methods = ['POST', 'DELETE']) @login_required def user(): if request.method == 'POST': calId = request.json.get('calendar_id') color = request.json.get('color', None) toggle = request.json.get('toggle', None) if color != None: current_user.updateCalendar(calId, color=color) if toggle != None: current_user.updateCalendar(calId, toggle=toggle) # toggle specific calendar of user elif request.method == 'DELETE': # do nothing return 'NONE' else: # POST Error 405 print("405") return 'OK'