|
|
|
|
#!/usr/bin/env python
|
|
|
|
|
# -*- coding: utf-8 -*-
|
|
|
|
|
|
|
|
|
|
import logging
|
|
|
|
|
from flask import request, jsonify, abort
|
|
|
|
|
from app import app
|
|
|
|
|
from app.models.site import Site
|
|
|
|
|
from app.models.comment import Comment
|
|
|
|
|
from app.helpers.hashing import md5
|
|
|
|
|
|
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route("/comments", methods=['GET'])
|
|
|
|
|
def query_comments():
|
|
|
|
|
|
|
|
|
|
comments = []
|
|
|
|
|
try:
|
|
|
|
|
token = request.args.get('token', '')
|
|
|
|
|
url = request.args.get('url', '')
|
|
|
|
|
|
|
|
|
|
logger.info('retrieve comments for token %s, url %s' % (token, url))
|
|
|
|
|
for comment in Comment.select(Comment).join(Site).where(
|
|
|
|
|
(Comment.url == url) &
|
|
|
|
|
(Site.token == token)).order_by(+Comment.published):
|
|
|
|
|
d = {}
|
|
|
|
|
d['author'] = comment.author_name
|
|
|
|
|
d['content'] = comment.content
|
|
|
|
|
if comment.author_site:
|
|
|
|
|
d['site'] = comment.author_site
|
|
|
|
|
if comment.author_email:
|
|
|
|
|
d['avatar'] = md5(comment.author_email.strip().lower())
|
|
|
|
|
d['date'] = comment.published.strftime("%Y-%m-%d %H:%M:%S")
|
|
|
|
|
logger.info(d)
|
|
|
|
|
comments.append(d)
|
|
|
|
|
r = jsonify({'data': comments})
|
|
|
|
|
r.status_code = 200
|
|
|
|
|
except:
|
|
|
|
|
logger.warn('bad request')
|
|
|
|
|
r = jsonify({'data': []})
|
|
|
|
|
r.status_code = 400
|
|
|
|
|
return r
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route("/comments/count", methods=['GET'])
|
|
|
|
|
def get_comments_count():
|
|
|
|
|
try:
|
|
|
|
|
token = request.args.get('token', '')
|
|
|
|
|
url = request.args.get('url', '')
|
|
|
|
|
count = Comment.select(Comment).join(Site).where(
|
|
|
|
|
(Comment.url == url) &
|
|
|
|
|
(Site.token == token)).count()
|
|
|
|
|
r = jsonify({'count': count})
|
|
|
|
|
r.status_code = 200
|
|
|
|
|
except:
|
|
|
|
|
r = jsonify({'count': 0})
|
|
|
|
|
r.status_code = 200
|
|
|
|
|
return r
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.route("/comments", methods=['POST'])
|
|
|
|
|
def new_comment():
|
|
|
|
|
|
|
|
|
|
logger.info("new comment !!!!")
|
|
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
token = request.form['token']
|
|
|
|
|
site = Site.select().where(Site.token == token).get()
|
|
|
|
|
|
|
|
|
|
# FOR DEBUG
|
|
|
|
|
return "OK"
|
|
|
|
|
|
|
|
|
|
source_url = request.headers.get('referer', '')
|
|
|
|
|
url = app.config["pecosys"]["post"]["redirect_url"]
|
|
|
|
|
|
|
|
|
|
if app.config["pecosys"]["post"]["redirect_referer"]:
|
|
|
|
|
url = app.config["pecosys"]["post"]["redirect_url"] + '?referer=' + request.headers.get('referer', '')
|
|
|
|
|
else:
|
|
|
|
|
url = request.headers.get('referer', app.config["pecosys"]["post"]["redirect_url"])
|
|
|
|
|
|
|
|
|
|
# get form values and create comment file
|
|
|
|
|
author = request.form['author']
|
|
|
|
|
email = request.form['email']
|
|
|
|
|
site = request.form['site']
|
|
|
|
|
article = request.form['article']
|
|
|
|
|
message = request.form['message']
|
|
|
|
|
subscribe = False
|
|
|
|
|
if "subscribe" in request.form and request.form['subscribe'] == "on":
|
|
|
|
|
subscribe = True
|
|
|
|
|
# honeypot for spammers
|
|
|
|
|
captcha = ""
|
|
|
|
|
if "captcha" in request.form:
|
|
|
|
|
captcha = request.form['captcha']
|
|
|
|
|
if captcha:
|
|
|
|
|
logger.warn("discard spam: captcha %s author %s email %s site %s article %s message %s"
|
|
|
|
|
% (captcha, author, email, site, article, message))
|
|
|
|
|
else:
|
|
|
|
|
req = {'type': 'comment', 'author': author, 'email': email, 'site': site, 'article': article,
|
|
|
|
|
'message': message, 'url': source_url, 'subscribe': subscribe}
|
|
|
|
|
processor.enqueue(req)
|
|
|
|
|
|
|
|
|
|
except:
|
|
|
|
|
logger.exception("new comment failure")
|
|
|
|
|
abort(400)
|
|
|
|
|
|
|
|
|
|
return "OK"
|
