stacosys/app/controllers/api.py

#!/usr/bin/env python
# -*- coding: utf-8 -*-

import logging
from flask import request, jsonify, abort
from app import app
from app.models.site import Site
from app.models.comment import Comment
from app.helpers.hashing import md5

logger = logging.getLogger(__name__)


@app.route("/comments", methods=['GET'])
def query_comments():

    comments = []
    try:
        token = request.args.get('token', '')
        url = request.args.get('url', '')

        logger.info('retrieve comments for token %s, url %s' % (token, url))
        for comment in Comment.select(Comment).join(Site).where(
               (Comment.url == url) &
               (Site.token == token)).order_by(+Comment.published):
            d = {}
            d['author'] = comment.author_name
            d['content'] = comment.content
            if comment.author_site:
                d['site'] = comment.author_site
            if comment.author_email:
                d['avatar'] = md5(comment.author_email.strip().lower())
            d['date'] = comment.published.strftime("%Y-%m-%d %H:%M:%S")
            logger.info(d)
            comments.append(d)
        r = jsonify({'data': comments})
        r.status_code = 200
    except:
        logger.warn('bad request')
        r = jsonify({'data': []})
        r.status_code = 400
    return r


@app.route("/comments/count", methods=['GET'])
def get_comments_count():
    try:
        token = request.args.get('token', '')
        url = request.args.get('url', '')
        count = Comment.select(Comment).join(Site).where(
                  (Comment.url == url) & 
                  (Site.token == token)).count()
        r = jsonify({'count': count})
        r.status_code = 200
    except:
        r = jsonify({'count': 0})
        r.status_code = 200
    return r


@app.route("/comments", methods=['POST'])
def new_comment():

    logger.info("new comment !!!!")

    try:
        token = request.form['token']
        site = Site.select().where(Site.token == token).get()

        # FOR DEBUG
        return "OK"

        source_url = request.headers.get('referer', '')
        url = app.config["pecosys"]["post"]["redirect_url"]

        if app.config["pecosys"]["post"]["redirect_referer"]:
            url = app.config["pecosys"]["post"]["redirect_url"] + '?referer=' + request.headers.get('referer', '')
        else:
            url = request.headers.get('referer', app.config["pecosys"]["post"]["redirect_url"])

        # get form values and create comment file
        author = request.form['author']
        email = request.form['email']
        site = request.form['site']
        article = request.form['article']
        message = request.form['message']
        subscribe = False
        if "subscribe" in request.form and request.form['subscribe'] == "on":
            subscribe = True
        # honeypot for spammers
        captcha = ""
        if "captcha" in request.form:
            captcha = request.form['captcha']
        if captcha:
            logger.warn("discard spam: captcha %s author %s email %s site %s article %s message %s"
                        % (captcha, author, email, site, article, message))
        else:
            req = {'type': 'comment', 'author': author, 'email': email, 'site': site, 'article': article,
                   'message': message, 'url': source_url, 'subscribe': subscribe}
            processor.enqueue(req)

    except:
        logger.exception("new comment failure")
        abort(400)

    return "OK"