capsul-flask/capsulflask/__init__.py

import logging 
from logging.config import dictConfig as logging_dict_config

import os
import hashlib

import stripe
from dotenv import load_dotenv, find_dotenv
from flask import Flask
from flask_mail import Mail
from flask import render_template
from flask import url_for
from flask import current_app

from capsulflask import operation_model, cli
from capsulflask.btcpay import client as btcpay

load_dotenv(find_dotenv())

app = Flask(__name__)

app.config.from_mapping(
  BASE_URL=os.environ.get("BASE_URL", default="http://localhost:5000"),
  SECRET_KEY=os.environ.get("SECRET_KEY", default="dev"),
  OPERATION_MODEL=os.environ.get("OPERATION_MODEL", default="mock"),
  LOG_LEVEL=os.environ.get("LOG_LEVEL", default="INFO"),
  ADMIN_EMAIL_ADDRESSES=os.environ.get("ADMIN_EMAIL_ADDRESSES", default="ops@cyberia.club"),

  DATABASE_URL=os.environ.get("DATABASE_URL", default="sql://postgres:dev@localhost:5432/postgres"),
  DATABASE_SCHEMA=os.environ.get("DATABASE_SCHEMA", default="public"),

  MAIL_SERVER=os.environ.get("MAIL_SERVER", default="m1.nullhex.com"),
  MAIL_PORT=os.environ.get("MAIL_PORT", default="587"),
  MAIL_USE_TLS=os.environ.get("MAIL_USE_TLS", default="True").lower() in ['true', '1', 't', 'y', 'yes'],
  MAIL_USERNAME=os.environ.get("MAIL_USERNAME", default="forest@nullhex.com"),
  MAIL_PASSWORD=os.environ.get("MAIL_PASSWORD", default=""),
  MAIL_DEFAULT_SENDER=os.environ.get("MAIL_DEFAULT_SENDER", default="forest@nullhex.com"),

  PROMETHEUS_URL=os.environ.get("PROMETHEUS_URL", default="https://prometheus.cyberia.club"),

  STRIPE_API_VERSION=os.environ.get("STRIPE_API_VERSION", default="2020-03-02"),
  STRIPE_SECRET_KEY=os.environ.get("STRIPE_SECRET_KEY", default=""),
  STRIPE_PUBLISHABLE_KEY=os.environ.get("STRIPE_PUBLISHABLE_KEY", default=""),
  #STRIPE_WEBHOOK_SECRET=os.environ.get("STRIPE_WEBHOOK_SECRET", default="")

  BTCPAY_PRIVATE_KEY=os.environ.get("BTCPAY_PRIVATE_KEY", default="").replace("\\n", "\n"),
  BTCPAY_URL=os.environ.get("BTCPAY_URL", default="https://btcpay.cyberia.club")
)

logging_dict_config({
  'version': 1,
  'formatters': {'default': {
    'format': '[%(asctime)s] %(levelname)s in %(module)s: %(message)s',
  }},
  'handlers': {'wsgi': {
    'class': 'logging.StreamHandler',
    'stream': 'ext://flask.logging.wsgi_errors_stream',
    'formatter': 'default'
  }},
  'root': {
    'level': app.config['LOG_LEVEL'],
    'handlers': ['wsgi']
  }
})

# app.logger.critical("critical")
# app.logger.error("error")
# app.logger.warning("warning")
# app.logger.info("info")
# app.logger.debug("debug")

stripe.api_key = app.config['STRIPE_SECRET_KEY']
stripe.api_version = app.config['STRIPE_API_VERSION']

app.config['FLASK_MAIL_INSTANCE'] = Mail(app)

if app.config['OPERATION_MODEL'] == "shell_scripts":
  app.config['OPERATION_MODEL'] = operation_model.GoshtOperation()
else:
  app.config['OPERATION_MODEL'] = operation_model.MockOperation()

app.config['BTCPAY_CLIENT'] = btcpay.Client(api_uri=app.config['BTCPAY_URL'], pem=app.config['BTCPAY_PRIVATE_KEY'])

from capsulflask import db

db.init_app(app)

from capsulflask import auth, landing, console, payment, metrics, cli

app.register_blueprint(landing.bp)
app.register_blueprint(auth.bp)
app.register_blueprint(console.bp)
app.register_blueprint(payment.bp)
app.register_blueprint(metrics.bp)
app.register_blueprint(cli.bp)

app.add_url_rule("/", endpoint="index")

@app.after_request
def security_headers(response):
  response.headers['X-Frame-Options'] = 'SAMEORIGIN'
  if 'Content-Security-Policy' not in response.headers:
    response.headers['Content-Security-Policy'] = "default-src 'self'"
  response.headers['X-Content-Type-Options'] = 'nosniff'
  return response


@app.context_processor
def override_url_for():
  """
  override the url_for function built into flask 
  with our own custom implementation that busts the cache correctly when files change 
  """
  return dict(url_for=url_for_with_cache_bust)


def url_for_with_cache_bust(endpoint, **values):
  """
  Add a query parameter based on the hash of the file, this acts as a cache bust
  """
  
  if endpoint == 'static':
    filename = values.get('filename', None)
    if filename:
      if 'STATIC_FILE_HASH_CACHE' not in current_app.config:
        current_app.config['STATIC_FILE_HASH_CACHE'] = dict()
      
      if filename not in current_app.config['STATIC_FILE_HASH_CACHE']:
        filepath = os.path.join(current_app.root_path, endpoint, filename)
        #print(filepath)
        if os.path.isfile(filepath) and os.access(filepath, os.R_OK):
          
          with open(filepath, 'rb') as file:
            hasher = hashlib.md5()
            hasher.update(file.read())
            current_app.config['STATIC_FILE_HASH_CACHE'][filename] = hasher.hexdigest()[-6:]
            
      values['q'] = current_app.config['STATIC_FILE_HASH_CACHE'][filename]

  return url_for(endpoint, **values)
trying to fix logging 2020-05-16 04:19:01 +00:00			`import logging`
			`from logging.config import dictConfig as logging_dict_config`
btcpay generating invoices and payments can be invalidated 2020-05-14 23:03:00 +00:00
starting to build console controller and views 2020-05-11 06:47:14 +00:00			`import os`
implement content-security-policy, static assets cache bust, and fix stripe back button ratchet issue because the only way to use stripe checkout is to run their proprietary JS, and we arent using a SPA, naturally what happens is, when you land on the stripe payment page if you hit the back button it goes back to the same page where you got re-directed to stripe. this commit fixes that. 2020-05-22 20:20:26 +00:00			`import hashlib`
postgres automatic schema management roughly working 2020-05-10 00:13:20 +00:00
btcpay generating invoices and payments can be invalidated 2020-05-14 23:03:00 +00:00			`import stripe`
starting to work on stripe 2020-05-12 06:42:50 +00:00			`from dotenv import load_dotenv, find_dotenv`
postgres automatic schema management roughly working 2020-05-10 00:13:20 +00:00			`from flask import Flask`
it sends a magic link when you log in 2020-05-10 03:59:22 +00:00			`from flask_mail import Mail`
			`from flask import render_template`
implement content-security-policy, static assets cache bust, and fix stripe back button ratchet issue because the only way to use stripe checkout is to run their proprietary JS, and we arent using a SPA, naturally what happens is, when you land on the stripe payment page if you hit the back button it goes back to the same page where you got re-directed to stripe. this commit fixes that. 2020-05-22 20:20:26 +00:00			`from flask import url_for`
			`from flask import current_app`
starting to build console controller and views 2020-05-11 06:47:14 +00:00
forest uncommitted changes on multi-host branch 2020-12-29 23:34:43 +00:00			`from capsulflask import operation_model, cli`
btcpay working! added bitpay client code to source tree to fix a bug fixed a stripe race condition added account balance warning to account balance page 2020-05-15 23:18:19 +00:00			`from capsulflask.btcpay import client as btcpay`
postgres automatic schema management roughly working 2020-05-10 00:13:20 +00:00
starting to work on stripe 2020-05-12 06:42:50 +00:00			`load_dotenv(find_dotenv())`

create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`app = Flask(__name__)`
trying to fix logging 2020-05-16 04:19:01 +00:00
create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`app.config.from_mapping(`
			`BASE_URL=os.environ.get("BASE_URL", default="http://localhost:5000"),`
			`SECRET_KEY=os.environ.get("SECRET_KEY", default="dev"),`
forest uncommitted changes on multi-host branch 2020-12-29 23:34:43 +00:00			`OPERATION_MODEL=os.environ.get("OPERATION_MODEL", default="mock"),`
trying to fix logging 2020-05-16 04:19:01 +00:00			`LOG_LEVEL=os.environ.get("LOG_LEVEL", default="INFO"),`
implement ensure_vms_and_db_are_synced in cron task and add default sender to readme 2020-05-22 02:40:41 +00:00			`ADMIN_EMAIL_ADDRESSES=os.environ.get("ADMIN_EMAIL_ADDRESSES", default="ops@cyberia.club"),`
trying to fix logging 2020-05-16 04:19:01 +00:00
create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`DATABASE_URL=os.environ.get("DATABASE_URL", default="sql://postgres:dev@localhost:5432/postgres"),`
			`DATABASE_SCHEMA=os.environ.get("DATABASE_SCHEMA", default="public"),`
it sends a magic link when you log in 2020-05-10 03:59:22 +00:00
create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`MAIL_SERVER=os.environ.get("MAIL_SERVER", default="m1.nullhex.com"),`
			`MAIL_PORT=os.environ.get("MAIL_PORT", default="587"),`
			`MAIL_USE_TLS=os.environ.get("MAIL_USE_TLS", default="True").lower() in ['true', '1', 't', 'y', 'yes'],`
			`MAIL_USERNAME=os.environ.get("MAIL_USERNAME", default="forest@nullhex.com"),`
			`MAIL_PASSWORD=os.environ.get("MAIL_PASSWORD", default=""),`
			`MAIL_DEFAULT_SENDER=os.environ.get("MAIL_DEFAULT_SENDER", default="forest@nullhex.com"),`
starting to work on stripe 2020-05-12 06:42:50 +00:00
metrics are working!!! 2020-05-13 05:28:53 +00:00			`PROMETHEUS_URL=os.environ.get("PROMETHEUS_URL", default="https://prometheus.cyberia.club"),`

stripe payment processor 2020-05-12 17:38:36 +00:00			`STRIPE_API_VERSION=os.environ.get("STRIPE_API_VERSION", default="2020-03-02"),`
starting to work on stripe 2020-05-12 06:42:50 +00:00			`STRIPE_SECRET_KEY=os.environ.get("STRIPE_SECRET_KEY", default=""),`
added btcpay pairing instructions to readme 2020-05-14 17:40:25 +00:00			`STRIPE_PUBLISHABLE_KEY=os.environ.get("STRIPE_PUBLISHABLE_KEY", default=""),`
stripe payment processor 2020-05-12 17:38:36 +00:00			`#STRIPE_WEBHOOK_SECRET=os.environ.get("STRIPE_WEBHOOK_SECRET", default="")`
added btcpay pairing instructions to readme 2020-05-14 17:40:25 +00:00
support dotenv impls that break on multiline strings 2020-05-15 23:49:17 +00:00			`BTCPAY_PRIVATE_KEY=os.environ.get("BTCPAY_PRIVATE_KEY", default="").replace("\\n", "\n"),`
btcpay generating invoices and payments can be invalidated 2020-05-14 23:03:00 +00:00			`BTCPAY_URL=os.environ.get("BTCPAY_URL", default="https://btcpay.cyberia.club")`
create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`)`
postgres automatic schema management roughly working 2020-05-10 00:13:20 +00:00
trying to fix logging 2020-05-16 04:19:01 +00:00			`logging_dict_config({`
implement content-security-policy, static assets cache bust, and fix stripe back button ratchet issue because the only way to use stripe checkout is to run their proprietary JS, and we arent using a SPA, naturally what happens is, when you land on the stripe payment page if you hit the back button it goes back to the same page where you got re-directed to stripe. this commit fixes that. 2020-05-22 20:20:26 +00:00			`'version': 1,`
			`'formatters': {'default': {`
			`'format': '[%(asctime)s] %(levelname)s in %(module)s: %(message)s',`
			`}},`
			`'handlers': {'wsgi': {`
			`'class': 'logging.StreamHandler',`
			`'stream': 'ext://flask.logging.wsgi_errors_stream',`
			`'formatter': 'default'`
			`}},`
			`'root': {`
			`'level': app.config['LOG_LEVEL'],`
			`'handlers': ['wsgi']`
			`}`
trying to fix logging 2020-05-16 04:19:01 +00:00			`})`

			`# app.logger.critical("critical")`
			`# app.logger.error("error")`
			`# app.logger.warning("warning")`
			`# app.logger.info("info")`
			`# app.logger.debug("debug")`

stripe payment processor 2020-05-12 17:38:36 +00:00			`stripe.api_key = app.config['STRIPE_SECRET_KEY']`
			`stripe.api_version = app.config['STRIPE_API_VERSION']`

create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`app.config['FLASK_MAIL_INSTANCE'] = Mail(app)`
make VIRTUALIZATION_MODEL configurable 2020-05-20 03:46:11 +00:00
forest uncommitted changes on multi-host branch 2020-12-29 23:34:43 +00:00			`if app.config['OPERATION_MODEL'] == "shell_scripts":`
			`app.config['OPERATION_MODEL'] = operation_model.GoshtOperation()`
make VIRTUALIZATION_MODEL configurable 2020-05-20 03:46:11 +00:00			`else:`
forest uncommitted changes on multi-host branch 2020-12-29 23:34:43 +00:00			`app.config['OPERATION_MODEL'] = operation_model.MockOperation()`
make VIRTUALIZATION_MODEL configurable 2020-05-20 03:46:11 +00:00
btcpay generating invoices and payments can be invalidated 2020-05-14 23:03:00 +00:00			`app.config['BTCPAY_CLIENT'] = btcpay.Client(api_uri=app.config['BTCPAY_URL'], pem=app.config['BTCPAY_PRIVATE_KEY'])`
it sends a magic link when you log in 2020-05-10 03:59:22 +00:00
create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`from capsulflask import db`
postgres automatic schema management roughly working 2020-05-10 00:13:20 +00:00
create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`db.init_app(app)`
postgres automatic schema management roughly working 2020-05-10 00:13:20 +00:00
add sql cli and explain it in the readme 2020-05-15 01:05:02 +00:00			`from capsulflask import auth, landing, console, payment, metrics, cli`
postgres automatic schema management roughly working 2020-05-10 00:13:20 +00:00
create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`app.register_blueprint(landing.bp)`
			`app.register_blueprint(auth.bp)`
			`app.register_blueprint(console.bp)`
btcpay generating invoices and payments can be invalidated 2020-05-14 23:03:00 +00:00			`app.register_blueprint(payment.bp)`
metrics are working!!! 2020-05-13 05:28:53 +00:00			`app.register_blueprint(metrics.bp)`
add sql cli and explain it in the readme 2020-05-15 01:05:02 +00:00			`app.register_blueprint(cli.bp)`
postgres automatic schema management roughly working 2020-05-10 00:13:20 +00:00
create capsul and capsuls list page working 2020-05-11 20:13:20 +00:00			`app.add_url_rule("/", endpoint="index")`
it sends a magic link when you log in 2020-05-10 03:59:22 +00:00
implement content-security-policy, static assets cache bust, and fix stripe back button ratchet issue because the only way to use stripe checkout is to run their proprietary JS, and we arent using a SPA, naturally what happens is, when you land on the stripe payment page if you hit the back button it goes back to the same page where you got re-directed to stripe. this commit fixes that. 2020-05-22 20:20:26 +00:00			`@app.after_request`
			`def security_headers(response):`
			`response.headers['X-Frame-Options'] = 'SAMEORIGIN'`
			`if 'Content-Security-Policy' not in response.headers:`
			`response.headers['Content-Security-Policy'] = "default-src 'self'"`
			`response.headers['X-Content-Type-Options'] = 'nosniff'`
			`return response`


			`@app.context_processor`
			`def override_url_for():`
			`"""`
			`override the url_for function built into flask`
			`with our own custom implementation that busts the cache correctly when files change`
			`"""`
			`return dict(url_for=url_for_with_cache_bust)`



			`def url_for_with_cache_bust(endpoint, **values):`
			`"""`
			`Add a query parameter based on the hash of the file, this acts as a cache bust`
			`"""`

			`if endpoint == 'static':`
			`filename = values.get('filename', None)`
			`if filename:`
			`if 'STATIC_FILE_HASH_CACHE' not in current_app.config:`
			`current_app.config['STATIC_FILE_HASH_CACHE'] = dict()`

			`if filename not in current_app.config['STATIC_FILE_HASH_CACHE']:`
			`filepath = os.path.join(current_app.root_path, endpoint, filename)`
			`#print(filepath)`
			`if os.path.isfile(filepath) and os.access(filepath, os.R_OK):`

			`with open(filepath, 'rb') as file:`
			`hasher = hashlib.md5()`
			`hasher.update(file.read())`
			`current_app.config['STATIC_FILE_HASH_CACHE'][filename] = hasher.hexdigest()[-6:]`

			`values['q'] = current_app.config['STATIC_FILE_HASH_CACHE'][filename]`

			`return url_for(endpoint, **values)`