ninya9k
/
anonstream
1
1
フォーク 0
コード イシュー プルリクエスト プロジェクト リリース アクティビティ
anonstream/anonstream/routes/core.py

150 行
6.2 KiB
Python
Raw Blame 履歴

# SPDX-FileCopyrightText: 2022 n9k <https://git.076.ne.jp/ninya9k>
# SPDX-License-Identifier: AGPL-3.0-or-later
import math
import re
from quart import current_app, request, render_template, abort, make_response, redirect, url_for, send_from_directory
from werkzeug.exceptions import Forbidden, NotFound, TooManyRequests
from anonstream.access import add_failure, pop_failure
from anonstream.captcha import get_captcha_image, get_random_captcha_digest
from anonstream.locale import get_lang_and_locale_from, get_lang_from, get_locale_from
from anonstream.segments import segments, StopSendingSegments
from anonstream.stream import is_online, get_stream_uptime
from anonstream.user import watching, create_eyes, renew_eyes, EyesException, RatelimitedEyes, TooManyEyes, ensure_allowedness, Blacklisted, SecretClub
from anonstream.routes.wrappers import with_user_from, auth_required, generate_and_add_user, clean_cache_headers, etag_conditional
from anonstream.helpers.captcha import check_captcha_digest, Answer
from anonstream.utils.security import generate_csp
from anonstream.utils.user import identifying_string
from anonstream.wrappers import with_timestamp
CAPTCHA_SIGNER = current_app.captcha_signer
STATIC_DIRECTORY = current_app.root_path / 'static'
LANG = current_app.lang
@current_app.route('/')
@with_user_from(request, fallback_to_token=True, ignore_allowedness=True)
async def home(timestamp, user_or_token):
lang, locale = get_lang_and_locale_from(request, burrow=('anonstream',))
match user_or_token:
case str() | None as token:
failure_id = request.args.get('failure', type=int)
failure = pop_failure(failure_id)
response = await render_template(
'captcha.html',
csp=generate_csp(),
token=token,
request_lang=get_lang_from(request, validate=False),
locale=locale['captcha'],
digest=get_random_captcha_digest(),
failure=locale['internal'].get(failure),
)
case dict() as user:
try:
ensure_allowedness(user, timestamp=timestamp)
except Blacklisted:
raise Forbidden(locale['error']['blacklisted'])
except SecretClub:
# TODO allow changing tripcode
raise Forbidden(locale['error']['not_whitelisted'])
else:
response = await render_template(
'home.html',
csp=generate_csp(),
user=user,
lang=lang,
default_lang=LANG,
locale=locale['home'],
version=current_app.version,
)
return response
@current_app.route('/stream.mp4')
@with_user_from(request)
async def stream(timestamp, user):
locale = get_locale_from(request)['anonstream']['error']
if not is_online():
raise NotFound(locale['offline'])
else:
try:
eyes_id = create_eyes(user, tuple(request.headers))
except RatelimitedEyes as e:
retry_after, *_ = e.args
error = TooManyRequests(locale['ratelimit'] % retry_after)
response = await current_app.handle_http_exception(error)
response = await make_response(response)
response.headers['Retry-After'] = math.ceil(retry_after)
raise abort(response)
except TooManyEyes as e:
n_eyes, *_ = e.args
raise TooManyRequests(locale['limit'] % n_eyes)
else:
@with_timestamp(precise=True)
def segment_read_hook(timestamp, uri):
user['last']['seen'] = timestamp
try:
renew_eyes(timestamp, user, eyes_id, just_read_new_segment=True)
except EyesException as e:
raise StopSendingSegments(
f'eyes {eyes_id} not allowed: {e!r}'
) from e
else:
user['last']['watching'] = timestamp
print(f'{uri}: \033[37m{eyes_id}\033[0m~{identifying_string(user)}')
generator = segments(segment_read_hook, token=f'\033[35m{user["token"]}\033[0m')
response = await make_response(generator)
response.headers['Content-Type'] = 'video/mp4'
response.timeout = None
return response
@current_app.route('/login')
@auth_required
async def login():
return redirect(url_for('home', lang=get_lang_from(request)), 303)
@current_app.route('/captcha.jpg')
@with_user_from(request, fallback_to_token=True)
async def captcha(timestamp, user_or_token):
digest = request.args.get('digest', '')
image = get_captcha_image(digest)
if image is None:
return abort(410)
else:
return image, {'Content-Type': 'image/jpeg'}
@current_app.post('/access')
@with_user_from(request, fallback_to_token=True, ignore_allowedness=True)
async def access(timestamp, user_or_token):
match user_or_token:
case str() | None as token:
form = await request.form
digest = form.get('digest', '')
answer = form.get('answer', '')
match check_captcha_digest(CAPTCHA_SIGNER, digest, answer):
case Answer.MISSING:
failure_id = add_failure('captcha_required')
case Answer.BAD:
failure_id = add_failure('captcha_incorrect')
case Answer.EXPIRED:
failure_id = add_failure('captcha_expired')
case Answer.OK:
failure_id = None
user = generate_and_add_user(timestamp, token, verified=True)
case dict() as user:
token = user['token']
failure_id = None
lang = get_lang_from(request, validate=failure_id is None)
url = url_for('home', token=token, lang=lang, failure=failure_id)
return redirect(url, 303)
@current_app.route('/static/<path:filename>')
@with_user_from(request)
@etag_conditional
@clean_cache_headers
async def static(timestamp, user, filename):
response = await send_from_directory(STATIC_DIRECTORY, filename)
if filename in {'style.css', 'anonstream.js'}:
response.headers['Cache-Control'] = 'no-cache'
return response
新しいイシューから参照 Git Blameを表示 パーマリンクをコピー