quay/endpoints/web.py

import logging
import requests
import stripe

from flask import (abort, redirect, request, url_for, render_template,
                   make_response, Response)
from flask.ext.login import current_user
from urlparse import urlparse

from data import model
from app import app, mixpanel
from auth.permissions import AdministerOrganizationPermission
from util.invoice import renderInvoiceToPdf
from util.seo import render_snapshot
from util.cache import no_cache
from endpoints.api import get_route_data
from endpoints.common import common_login


logger = logging.getLogger(__name__)


def render_page_template(name):
  return make_response(render_template(name, route_data=get_route_data()))


@app.route('/', methods=['GET'], defaults={'path': ''})
@app.route('/repository/<path:path>', methods=['GET'])
@app.route('/organization/<path:path>', methods=['GET'])
@no_cache
def index(path):
  return render_page_template('index.html')


@app.route('/snapshot', methods=['GET'])
@app.route('/snapshot/', methods=['GET'])
@app.route('/snapshot/<path:path>', methods=['GET'])
def snapshot(path = ''):
  parsed = urlparse(request.url)
  final_url = '%s://%s/%s' % (parsed.scheme, 'localhost', path)
  result = render_snapshot(final_url)
  if result:
    return result

  abort(404)


@app.route('/plans/')
@no_cache
def plans():
  return index('')


@app.route('/guide/')
@no_cache
def guide():
  return index('')


@app.route('/organizations/')
@app.route('/organizations/new/')
@no_cache
def organizations():
  return index('')


@app.route('/user/')
@no_cache
def user():
  return index('')


@app.route('/signin/')
@no_cache
def signin():
  return index('')


@app.route('/new/')
@no_cache
def new():
  return index('')


@app.route('/repository/')
@no_cache
def repository():
  return index('')


@app.route('/security/')
@no_cache
def security():
  return index('')


@app.route('/v1')
@app.route('/v1/')
@no_cache
def v1():
  return index('')


@app.route('/status', methods=['GET'])
@no_cache
def status():
  return make_response('Healthy')


@app.route('/tos', methods=['GET'])
@no_cache
def tos():
  return render_page_template('tos.html')


@app.route('/disclaimer', methods=['GET'])
@no_cache
def disclaimer():
  return render_page_template('disclaimer.html')


@app.route('/privacy', methods=['GET'])
@no_cache
def privacy():
  return render_page_template('privacy.html')


@app.route('/receipt', methods=['GET'])
def receipt():
  if not current_user.is_authenticated():
    abort(401)
    return

  id =  request.args.get('id')
  if id:
    invoice = stripe.Invoice.retrieve(id)
    if invoice:
      user_or_org = model.get_user_or_org_by_customer_id(invoice.customer)
      
      if user_or_org:
        if user_or_org.organization:
          admin_org = AdministerOrganizationPermission(user_or_org.username)
          if not admin_org.can():
            abort(404)
            return
        else:
          if not user_or_org.username == current_user.db_user().username:
            abort(404)
            return      

      file_data = renderInvoiceToPdf(invoice, user_or_org)          
      return Response(file_data,
                      mimetype="application/pdf",
                      headers={"Content-Disposition": "attachment;filename=receipt.pdf"})
  abort(404)


@app.route('/oauth2/github/callback', methods=['GET'])
def github_oauth_callback():
  code = request.args.get('code')
  payload = {
    'client_id': app.config['GITHUB_CLIENT_ID'],
    'client_secret': app.config['GITHUB_CLIENT_SECRET'],
    'code': code,
  }
  headers = {
    'Accept': 'application/json'
  }

  get_access_token = requests.post(app.config['GITHUB_TOKEN_URL'],
                                   params=payload, headers=headers)

  token = get_access_token.json()['access_token']

  token_param = {
    'access_token': token,
  }
  get_user = requests.get(app.config['GITHUB_USER_URL'], params=token_param)

  user_data = get_user.json()
  username = user_data['login']
  github_id = user_data['id']

  v3_media_type = {
    'Accept': 'application/vnd.github.v3'
  }
  get_email = requests.get(app.config['GITHUB_USER_EMAILS'],
                           params=token_param, headers=v3_media_type)

  # We will accept any email, but we prefer the primary
  found_email = None
  for user_email in get_email.json():
    found_email = user_email['email']
    if user_email['primary']:
      break

  to_login = model.verify_federated_login('github', github_id)
  if not to_login:
    # try to create the user
    try:
      to_login = model.create_federated_user(username, found_email, 'github',
                                             github_id)

      # Success, tell mixpanel
      mixpanel.track(to_login.username, 'register', {'service': 'github'})

      state = request.args.get('state', None)
      if state:
        logger.debug('Aliasing with state: %s' % state)
        mixpanel.alias(to_login.username, state)

    except model.DataModelException, ex:
      return render_page_template('githuberror.html', error_message=ex.message)

  if common_login(to_login):
    return redirect(url_for('index'))

  return render_page_template('githuberror.html')


@app.route('/confirm', methods=['GET'])
def confirm_email():
  code = request.values['code']

  try:
    user = model.confirm_user_email(code)
  except model.DataModelException as ex:
    return redirect(url_for('signin'))

  common_login(user)

  return redirect(url_for('index'))


@app.route('/recovery', methods=['GET'])
def confirm_recovery():
  code = request.values['code']
  user = model.validate_reset_code(code)

  if user:
    common_login(user)
    return redirect(url_for('user'))
  else:
    abort(403)
Fix some stuff with logins and permissions, add tags to the mode. 2013-09-25 20:46:28 +00:00			`import logging`
First iteration of sign-in with gihub. 2013-10-10 03:00:34 +00:00			`import requests`
Add ability to download receipts in PDF form 2013-11-18 19:49:54 +00:00			`import stripe`
Fix some stuff with logins and permissions, add tags to the mode. 2013-09-25 20:46:28 +00:00
Move signin to use AJAX. Render all flask templates with the common header. Move the header to a partial. Add account recovery. 2013-10-14 21:50:07 +00:00			`from flask import (abort, redirect, request, url_for, render_template,`
Add ability to download receipts in PDF form 2013-11-18 19:49:54 +00:00			`make_response, Response)`
Fix the imports when separating out the new common.py file. 2013-12-27 23:01:44 +00:00			`from flask.ext.login import current_user`
Fix the nginx config to work with the new snapshots. Fix the snapshot creator to correctly create the request path. 2013-11-19 00:17:58 +00:00			`from urlparse import urlparse`
Refactor the code into modules, it was getting unweildy. 2013-09-25 16:45:12 +00:00
			`from data import model`
Fix the imports when separating out the new common.py file. 2013-12-27 23:01:44 +00:00			`from app import app, mixpanel`
			`from auth.permissions import AdministerOrganizationPermission`
Add ability to download receipts in PDF form 2013-11-18 19:49:54 +00:00			`from util.invoice import renderInvoiceToPdf`
Fix some things with the seo snapshots and use the pep8 style guite. 2013-11-18 23:42:27 +00:00			`from util.seo import render_snapshot`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`from util.cache import no_cache`
Embed the discovery information directly into the page 2013-12-27 22:19:14 +00:00			`from endpoints.api import get_route_data`
			`from endpoints.common import common_login`
Fix the nginx config to work with the new snapshots. Fix the snapshot creator to correctly create the request path. 2013-11-19 00:17:58 +00:00
Fix the imports when separating out the new common.py file. 2013-12-27 23:01:44 +00:00
Fix some stuff with logins and permissions, add tags to the mode. 2013-09-25 20:46:28 +00:00			`logger = logging.getLogger(__name__)`

Fix the imports when separating out the new common.py file. 2013-12-27 23:01:44 +00:00
Embed the discovery information directly into the page 2013-12-27 22:19:14 +00:00			`def render_page_template(name):`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`return make_response(render_template(name, route_data=get_route_data()))`
Refactor the code into modules, it was getting unweildy. 2013-09-25 16:45:12 +00:00
Fix the imports when separating out the new common.py file. 2013-12-27 23:01:44 +00:00
Enable HTML5 mode for routing. 2013-10-10 23:06:04 +00:00			`@app.route('/', methods=['GET'], defaults={'path': ''})`
Add routes specifically for all angular subroutes so that 404s will start working again. Add a warning in app.js to hopefully ensure that new routes get created when necessary. 2013-10-14 02:06:31 +00:00			`@app.route('/repository/<path:path>', methods=['GET'])`
Start on controllers and the API for organizations. Also adds fake model methods 2013-10-31 22:17:26 +00:00			`@app.route('/organization/<path:path>', methods=['GET'])`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Enable HTML5 mode for routing. 2013-10-10 23:06:04 +00:00			`def index(path):`
Embed the discovery information directly into the page 2013-12-27 22:19:14 +00:00			`return render_page_template('index.html')`
Refactor the code into modules, it was getting unweildy. 2013-09-25 16:45:12 +00:00

Add the snapshot endpoint to web.py and have the phantomjs running only load the page's HTML once there are no further pending XHR requests 2013-11-18 22:11:06 +00:00			`@app.route('/snapshot', methods=['GET'])`
			`@app.route('/snapshot/', methods=['GET'])`
			`@app.route('/snapshot/<path:path>', methods=['GET'])`
			`def snapshot(path = ''):`
Fix the nginx config to work with the new snapshots. Fix the snapshot creator to correctly create the request path. 2013-11-19 00:17:58 +00:00			`parsed = urlparse(request.url)`
			`final_url = '%s://%s/%s' % (parsed.scheme, 'localhost', path)`
			`result = render_snapshot(final_url)`
Add the snapshot endpoint to web.py and have the phantomjs running only load the page's HTML once there are no further pending XHR requests 2013-11-18 22:11:06 +00:00			`if result:`
			`return result`

			`abort(404)`


Add routes specifically for all angular subroutes so that 404s will start working again. Add a warning in app.js to hopefully ensure that new routes get created when necessary. 2013-10-14 02:06:31 +00:00			`@app.route('/plans/')`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add routes specifically for all angular subroutes so that 404s will start working again. Add a warning in app.js to hopefully ensure that new routes get created when necessary. 2013-10-14 02:06:31 +00:00			`def plans():`
			`return index('')`


			`@app.route('/guide/')`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add routes specifically for all angular subroutes so that 404s will start working again. Add a warning in app.js to hopefully ensure that new routes get created when necessary. 2013-10-14 02:06:31 +00:00			`def guide():`
			`return index('')`


Work in progress: Organizations page (with a fake tour) and start on the locations for the create new org and convert to org forms 2013-11-07 06:48:58 +00:00			`@app.route('/organizations/')`
			`@app.route('/organizations/new/')`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Work in progress: Organizations page (with a fake tour) and start on the locations for the create new org and convert to org forms 2013-11-07 06:48:58 +00:00			`def organizations():`
			`return index('')`

Fix the imports when separating out the new common.py file. 2013-12-27 23:01:44 +00:00
Add routes specifically for all angular subroutes so that 404s will start working again. Add a warning in app.js to hopefully ensure that new routes get created when necessary. 2013-10-14 02:06:31 +00:00			`@app.route('/user/')`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add routes specifically for all angular subroutes so that 404s will start working again. Add a warning in app.js to hopefully ensure that new routes get created when necessary. 2013-10-14 02:06:31 +00:00			`def user():`
			`return index('')`


Move signin to use AJAX. Render all flask templates with the common header. Move the header to a partial. Add account recovery. 2013-10-14 21:50:07 +00:00			`@app.route('/signin/')`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Move signin to use AJAX. Render all flask templates with the common header. Move the header to a partial. Add account recovery. 2013-10-14 21:50:07 +00:00			`def signin():`
			`return index('')`


Start on new repo page 2013-10-24 21:41:55 +00:00			`@app.route('/new/')`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Start on new repo page 2013-10-24 21:41:55 +00:00			`def new():`
			`return index('')`


Add a rule for the base repository route too to serve the index page. 2013-10-16 01:50:14 +00:00			`@app.route('/repository/')`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add a rule for the base repository route too to serve the index page. 2013-10-16 01:50:14 +00:00			`def repository():`
			`return index('')`

Add a security page and link it from the landing page and footer. 2013-11-22 20:54:23 +00:00
			`@app.route('/security/')`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add a security page and link it from the landing page and footer. 2013-11-22 20:54:23 +00:00			`def security():`
			`return index('')`


Add a status page to /v1/ so that people don't get confused by the message that docker emits 2013-10-17 21:45:08 +00:00			`@app.route('/v1')`
			`@app.route('/v1/')`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add a status page to /v1/ so that people don't get confused by the message that docker emits 2013-10-17 21:45:08 +00:00			`def v1():`
			`return index('')`
Add a rule for the base repository route too to serve the index page. 2013-10-16 01:50:14 +00:00
Add a security page and link it from the landing page and footer. 2013-11-22 20:54:23 +00:00
Add a status endpoint that we can use to test if the instance is serving traffic. 2013-10-02 18:35:21 +00:00			`@app.route('/status', methods=['GET'])`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add a status endpoint that we can use to test if the instance is serving traffic. 2013-10-02 18:35:21 +00:00			`def status():`
			`return make_response('Healthy')`


Add a super basic TOS and privacy policy 2013-10-01 21:44:13 +00:00			`@app.route('/tos', methods=['GET'])`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add a super basic TOS and privacy policy 2013-10-01 21:44:13 +00:00			`def tos():`
Embed the discovery information directly into the page 2013-12-27 22:19:14 +00:00			`return render_page_template('tos.html')`
Add a super basic TOS and privacy policy 2013-10-01 21:44:13 +00:00

Add a trademark disclaimer for the Docker trademark. Make all references to Docker proper nouns. 2013-11-22 17:32:05 +00:00			`@app.route('/disclaimer', methods=['GET'])`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add a trademark disclaimer for the Docker trademark. Make all references to Docker proper nouns. 2013-11-22 17:32:05 +00:00			`def disclaimer():`
Embed the discovery information directly into the page 2013-12-27 22:19:14 +00:00			`return render_page_template('disclaimer.html')`
Add a trademark disclaimer for the Docker trademark. Make all references to Docker proper nouns. 2013-11-22 17:32:05 +00:00

Add a super basic TOS and privacy policy 2013-10-01 21:44:13 +00:00			`@app.route('/privacy', methods=['GET'])`
Add no-cache as a response header. 2014-01-02 23:01:34 +00:00			`@no_cache`
Add a super basic TOS and privacy policy 2013-10-01 21:44:13 +00:00			`def privacy():`
Embed the discovery information directly into the page 2013-12-27 22:19:14 +00:00			`return render_page_template('privacy.html')`
Add a super basic TOS and privacy policy 2013-10-01 21:44:13 +00:00

Add ability to download receipts in PDF form 2013-11-18 19:49:54 +00:00			`@app.route('/receipt', methods=['GET'])`
			`def receipt():`
- Add some more analytics events - Enable business features for personal users on business plans - Fix a bug in the credit card image view 2013-12-21 03:38:53 +00:00			`if not current_user.is_authenticated():`
			`abort(401)`
			`return`

Add ability to download receipts in PDF form 2013-11-18 19:49:54 +00:00			`id = request.args.get('id')`
			`if id:`
			`invoice = stripe.Invoice.retrieve(id)`
			`if invoice:`
- Add some more analytics events - Enable business features for personal users on business plans - Fix a bug in the credit card image view 2013-12-21 03:38:53 +00:00			`user_or_org = model.get_user_or_org_by_customer_id(invoice.customer)`

			`if user_or_org:`
			`if user_or_org.organization:`
			`admin_org = AdministerOrganizationPermission(user_or_org.username)`
			`if not admin_org.can():`
			`abort(404)`
			`return`
			`else:`
			`if not user_or_org.username == current_user.db_user().username:`
			`abort(404)`
			`return`

			`file_data = renderInvoiceToPdf(invoice, user_or_org)`
			`return Response(file_data,`
			`mimetype="application/pdf",`
			`headers={"Content-Disposition": "attachment;filename=receipt.pdf"})`
Add ability to download receipts in PDF form 2013-11-18 19:49:54 +00:00			`abort(404)`

- Add some more analytics events - Enable business features for personal users on business plans - Fix a bug in the credit card image view 2013-12-21 03:38:53 +00:00
First iteration of sign-in with gihub. 2013-10-10 03:00:34 +00:00			`@app.route('/oauth2/github/callback', methods=['GET'])`
			`def github_oauth_callback():`
			`code = request.args.get('code')`
			`payload = {`
			`'client_id': app.config['GITHUB_CLIENT_ID'],`
			`'client_secret': app.config['GITHUB_CLIENT_SECRET'],`
			`'code': code,`
			`}`
			`headers = {`
			`'Accept': 'application/json'`
			`}`

			`get_access_token = requests.post(app.config['GITHUB_TOKEN_URL'],`
			`params=payload, headers=headers)`

			`token = get_access_token.json()['access_token']`

			`token_param = {`
			`'access_token': token,`
			`}`
			`get_user = requests.get(app.config['GITHUB_USER_URL'], params=token_param)`

			`user_data = get_user.json()`
			`username = user_data['login']`
			`github_id = user_data['id']`

			`v3_media_type = {`
			`'Accept': 'application/vnd.github.v3'`
			`}`
			`get_email = requests.get(app.config['GITHUB_USER_EMAILS'],`
			`params=token_param, headers=v3_media_type)`

			`# We will accept any email, but we prefer the primary`
			`found_email = None`
			`for user_email in get_email.json():`
			`found_email = user_email['email']`
			`if user_email['primary']:`
			`break`

			`to_login = model.verify_federated_login('github', github_id)`
			`if not to_login:`
			`# try to create the user`
Handle some of the error cases with github login. 2013-10-10 16:55:03 +00:00			`try:`
			`to_login = model.create_federated_user(username, found_email, 'github',`
			`github_id)`
Move the register code for github login to the actual registration part, not just login. 2013-10-15 05:12:23 +00:00
			`# Success, tell mixpanel`
			`mixpanel.track(to_login.username, 'register', {'service': 'github'})`

			`state = request.args.get('state', None)`
			`if state:`
			`logger.debug('Aliasing with state: %s' % state)`
			`mixpanel.alias(to_login.username, state)`

Handle some of the error cases with github login. 2013-10-10 16:55:03 +00:00			`except model.DataModelException, ex:`
Embed the discovery information directly into the page 2013-12-27 22:19:14 +00:00			`return render_page_template('githuberror.html', error_message=ex.message)`
First iteration of sign-in with gihub. 2013-10-10 03:00:34 +00:00
			`if common_login(to_login):`
			`return redirect(url_for('index'))`

Embed the discovery information directly into the page 2013-12-27 22:19:14 +00:00			`return render_page_template('githuberror.html')`
Refactor the code into modules, it was getting unweildy. 2013-09-25 16:45:12 +00:00

Send a confirmation email when an account is created. Links don't do anything yet. 2013-09-27 23:29:01 +00:00			`@app.route('/confirm', methods=['GET'])`
			`def confirm_email():`
Handle the confirmation codes to validate user emails. 2013-09-27 23:55:04 +00:00			`code = request.values['code']`
When an email code has already been used, just redirect to signin. 2013-12-19 00:47:42 +00:00
			`try:`
			`user = model.confirm_user_email(code)`
			`except model.DataModelException as ex:`
			`return redirect(url_for('signin'))`
Handle the confirmation codes to validate user emails. 2013-09-27 23:55:04 +00:00
			`common_login(user)`

			`return redirect(url_for('index'))`
Send a confirmation email when an account is created. Links don't do anything yet. 2013-09-27 23:29:01 +00:00

Move signin to use AJAX. Render all flask templates with the common header. Move the header to a partial. Add account recovery. 2013-10-14 21:50:07 +00:00			`@app.route('/recovery', methods=['GET'])`
			`def confirm_recovery():`
			`code = request.values['code']`
			`user = model.validate_reset_code(code)`
Send a confirmation email when an account is created. Links don't do anything yet. 2013-09-27 23:29:01 +00:00
Move signin to use AJAX. Render all flask templates with the common header. Move the header to a partial. Add account recovery. 2013-10-14 21:50:07 +00:00			`if user:`
			`common_login(user)`
			`return redirect(url_for('user'))`
			`else:`
			`abort(403)`