80 lines
2.7 KiB
Python
80 lines
2.7 KiB
Python
from my_modules.file_helper_functions import verify_signed_url
|
|
from my_modules.decoratory.header import login_required
|
|
from my_modules.app.setup import LIMITER
|
|
from my_modules.app.logger import logger
|
|
|
|
from quart import Blueprint, request, session, Response, send_from_directory, render_template, abort, current_app
|
|
from datetime import datetime, timezone
|
|
|
|
side_main_bp = Blueprint('side_main', __name__)
|
|
|
|
@side_main_bp.route('/')
|
|
@LIMITER.limit("10 per minute")
|
|
async def index():
|
|
if session.get("user") is not None:
|
|
return await render_template("views/webpage/upload.htm")
|
|
return await render_template("views/webpage/index.htm")
|
|
|
|
@side_main_bp.route('/files')
|
|
@LIMITER.limit("10 per minute")
|
|
@login_required
|
|
async def files(user):
|
|
files_data = await current_app.edgedb.get_files(current_datetime=datetime.now(timezone.utc), user_id=user['sub'])
|
|
return await render_template("views/webpage/files_list.htm", files=files_data)
|
|
|
|
@side_main_bp.route('/files/<file_id>/info')
|
|
@LIMITER.limit("10 per minute")
|
|
@login_required
|
|
async def file_info(file_id, user):
|
|
files_data = await current_app.edgedb.get_files(user_id=user['sub'])
|
|
return await render_template("views/webpage/.htm", files=files_data)
|
|
|
|
@side_main_bp.route('/files/<file_id>/edit')
|
|
@LIMITER.limit("10 per minute")
|
|
@login_required
|
|
async def file_edit(file_id, user):
|
|
files_data = await current_app.edgedb.get_files(user_id=user['sub'])
|
|
return await render_template("views/webpage/.htm", files=files_data)
|
|
|
|
def is_expired(expires_at):
|
|
if not expires_at:
|
|
return False
|
|
if expires_at.tzinfo is None:
|
|
expires_at = expires_at.replace(tzinfo=timezone.utc)
|
|
else:
|
|
expires_at = expires_at.astimezone(timezone.utc)
|
|
return expires_at <= datetime.now(timezone.utc)
|
|
|
|
@side_main_bp.route("/-<file_id>")
|
|
@LIMITER.limit("10 per minute")
|
|
async def serve_file(file_id: str):
|
|
file_data = await current_app.edgedb.get_file(file_id=file_id)
|
|
if not file_data:
|
|
abort(404)
|
|
|
|
if is_expired(file_data.get("expires_at")):
|
|
return Response("This file has expired.", status=410, headers={
|
|
"Cache-Control": "no-store",
|
|
"X-Content-Type-Options": "nosniff",
|
|
})
|
|
|
|
file_name = file_data.get("file_name")
|
|
content_type = file_data.get("content_type") or "application/octet-stream"
|
|
|
|
force_download = request.args.get("download") in {"1", "true", "yes"}
|
|
|
|
path = current_app.upload_folder / file_name
|
|
if not path.exists() or not path.is_file():
|
|
abort(404)
|
|
|
|
return await send_from_directory(
|
|
directory=current_app.upload_folder,
|
|
file_name=file_name,
|
|
mimetype=content_type,
|
|
as_attachment=force_download,
|
|
attachment_filename=file_name,
|
|
conditional=True,
|
|
cache_timeout=60,
|
|
last_modified=path.stat().st_mtime
|
|
)
|