UnderCover/app/db.py

import os
import sys
import threading
from dataclasses import dataclass
from datetime import datetime, timedelta
from typing import Optional
from uuid import uuid4, UUID

import bcrypt
import psycopg

from app.fallback import MockConnection


@dataclass
class Letter:
    id: int
    title: str
    contents: str


@dataclass
class User:
    id: int
    email: str
    tier: int

    def in_free_tier(self) -> bool:
        return self.tier == 1


@dataclass
class UserWithHash:
    user: User
    password_hash: str


host = os.environ.get('UNDERCOVER_POSTGRES_HOST')
db_name = os.environ.get('UNDERCOVER_POSTGRES_DBNAME')
port = os.environ.get('UNDERCOVER_POSTGRES_PORT')
db_user = os.environ.get('UNDERCOVER_POSTGRES_USER')

db_available = host and db_name and port and db_user and os.environ.get('UNDERCOVER_POSTGRES_PASSWORD')

if db_available:
    def connect() -> psycopg.Connection:
        return psycopg.connect(
            host=host,
            dbname=db_name,
            port=port,
            user=db_user,
            password=os.environ.get('UNDERCOVER_POSTGRES_PASSWORD'))
else:
    sys.stderr.write('Database login not configured: DB access is disabled.\n')
    sys.stderr.write('  To enable, ensure UNDERCOVER_POSTGRES_{HOST,DBNAME,PORT,USER,PASSWORD} are set.\n')

    def connect() -> object:
        return MockConnection()


def login(user_email: str, password: str) -> bool:
    pw_bytes: bytes = password.encode('utf-8')
    user = __get_user_with_hash(user_email)
    if user:
        return bcrypt.checkpw(pw_bytes, user.password_hash.encode('utf-8'))
    return False


def __gen_pw_hash(password: str) -> str:
    pw_bytes = password.encode('utf-8')
    salt = bcrypt.gensalt()
    pw_hash = bcrypt.hashpw(pw_bytes, salt)
    return pw_hash.decode('utf-8')


def add_user(username: str, password: str) -> None:
    pw_hash = __gen_pw_hash(password)
    with connect() as con:
        cur = con.cursor()
        cur.execute("INSERT INTO users(email, password) VALUES (%s, %s)", (username, pw_hash))
        con.commit()


def delete_user(username: str) -> None:
    with connect() as con:
        cur = con.cursor()
        cur.execute("DELETE FROM users WHERE email = %s", (username,))
        con.commit()


def add_letter(user_id: int, letter_title: str, letter_content: str) -> None:
    with connect() as con:
        cur = con.cursor()
        cur.execute("INSERT INTO letter_data(user_id, letter_name, letter_data) VALUES (%s, %s, %s)",
                    (user_id, letter_title, letter_content))
        con.commit()


def edit_letter(letter_id: int, letter_title: str, letter_content: str) -> None:
    with connect() as con:
        cur = con.cursor()
        cur.execute("UPDATE letter_data SET letter_name = %s, letter_data = %s WHERE id = %s",
                    (letter_title, letter_content, letter_id))
        con.commit()


def get_user_letters(user_id: int) -> list[Letter]:
    with connect() as con:
        cur = con.cursor()
        cur.execute("SELECT id, letter_name, letter_data FROM letter_data WHERE user_id = %s", (str(user_id),))
        return list(map(lambda row: Letter(row[0], row[1], row[2]), cur.fetchall()))


def get_user(email: str) -> Optional[User]:
    user_with_hash = __get_user_with_hash(email)
    if user_with_hash:
        return user_with_hash.user
    return None


def __get_user_with_hash(email: str) -> Optional[UserWithHash]:
    """
    :param email:
    :return: User without their password_hash
    """
    with connect() as con:
        cur = con.cursor()
        cur.execute("SELECT id, password, tier FROM users WHERE users.email ILIKE %s", (email,))
        row = cur.fetchone()
        if row:
            user_id, password, tier = row
            return UserWithHash(User(user_id, email, tier), password)
        return None


RESET_TIME = timedelta(minutes=-1 * 15)


def initiate_password_reset(email: str) -> Optional[UUID]:
    user = get_user(email)
    if not user:
        return None
    reset_id = uuid4()
    with connect() as con:
        cur = con.cursor()
        cur.execute(
            "INSERT INTO resets(user_id, id, reset_time) VALUES (%s, %s, NOW())",
            (user.id, reset_id)
        )
        threading.Timer(RESET_TIME.total_seconds(), delete_reset_row, [reset_id]).start()
        con.commit()
        return reset_id


def delete_reset_row(reset_id: UUID) -> None:
    with connect() as con:
        cur = con.cursor()
        cur.execute("DELETE FROM resets WHERE id = %s", (reset_id,))
        con.commit()


def complete_reset(reset_id: str, new_password: str) -> bool:
    with connect() as con:
        cur = con.cursor()
        cur.execute("SELECT reset_time, user_id FROM resets WHERE id = %s", (reset_id,))
        row = cur.fetchone()
        if not row or not row[0]:
            return False
        reset_time, user_id = row
        if reset_time > (datetime.utcnow() + RESET_TIME):
            cur.execute("DELETE FROM resets WHERE id = %s", (reset_id,))
            password_hash = __gen_pw_hash(new_password)
            cur.execute("UPDATE users SET password = %s WHERE id = %s", (password_hash, user_id))
            con.commit()
            return True
        return False
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`import os`
Add basic fallbacks for missing db/email creds. Fallbacks may eventually warrant their own file. Use f-strings to format password-reset emails. Automatically delete email-reset rows after 15 minutes. - Cute, but a proper vacuum would likely be more robust. Remove deprecated FLASK_ENV use. Use exceptions in generate_pdf() 2022-09-26 17:00:21 -04:00			`import sys`
			`import threading`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`from dataclasses import dataclass`
Forbid password resets after 15 minutes. 2022-09-26 09:40:48 -04:00			`from datetime import datetime, timedelta`
Handle possibly-missing users. 2022-09-23 14:08:44 -04:00			`from typing import Optional`
Forbid password resets after 15 minutes. 2022-09-26 09:40:48 -04:00			`from uuid import uuid4, UUID`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00
Some project re-org, and add pytest. Rename flaskr/ to undercover/ Rename writing_templates/ to letter_templates/ Put db testing code into __main__ check Break css optimization into its own file and add simple testing. Rename writing.py to routes.py. Move cached index directly into routes.py 2022-09-23 11:35:56 -04:00			`import bcrypt`
			`import psycopg`

Rename undercover/ to app/ 2022-10-02 16:32:01 -04:00			`from app.fallback import MockConnection`
Put fallbacks in their own file. 2022-09-26 22:47:38 -04:00
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00
			`@dataclass`
			`class Letter:`
			`id: int`
			`title: str`
			`contents: str`


			`@dataclass`
			`class User:`
			`id: int`
			`email: str`
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`tier: int`

			`def in_free_tier(self) -> bool:`
			`return self.tier == 1`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00

			`@dataclass`
			`class UserWithHash:`
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`user: User`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`password_hash: str`


Centralize index rendering. Start building more flexibility about missing environment variables. 2022-09-25 21:57:55 -04:00			`host = os.environ.get('UNDERCOVER_POSTGRES_HOST')`
			`db_name = os.environ.get('UNDERCOVER_POSTGRES_DBNAME')`
			`port = os.environ.get('UNDERCOVER_POSTGRES_PORT')`
Inform user if password-reset failed to send. Remove unused db code. 2022-09-26 08:52:42 -04:00			`db_user = os.environ.get('UNDERCOVER_POSTGRES_USER')`

			`db_available = host and db_name and port and db_user and os.environ.get('UNDERCOVER_POSTGRES_PASSWORD')`
Centralize index rendering. Start building more flexibility about missing environment variables. 2022-09-25 21:57:55 -04:00
Add basic fallbacks for missing db/email creds. Fallbacks may eventually warrant their own file. Use f-strings to format password-reset emails. Automatically delete email-reset rows after 15 minutes. - Cute, but a proper vacuum would likely be more robust. Remove deprecated FLASK_ENV use. Use exceptions in generate_pdf() 2022-09-26 17:00:21 -04:00			`if db_available:`
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def connect() -> psycopg.Connection:`
Add basic fallbacks for missing db/email creds. Fallbacks may eventually warrant their own file. Use f-strings to format password-reset emails. Automatically delete email-reset rows after 15 minutes. - Cute, but a proper vacuum would likely be more robust. Remove deprecated FLASK_ENV use. Use exceptions in generate_pdf() 2022-09-26 17:00:21 -04:00			`return psycopg.connect(`
			`host=host,`
			`dbname=db_name,`
			`port=port,`
			`user=db_user,`
			`password=os.environ.get('UNDERCOVER_POSTGRES_PASSWORD'))`
			`else:`
			`sys.stderr.write('Database login not configured: DB access is disabled.\n')`
			`sys.stderr.write(' To enable, ensure UNDERCOVER_POSTGRES_{HOST,DBNAME,PORT,USER,PASSWORD} are set.\n')`
Centralize index rendering. Start building more flexibility about missing environment variables. 2022-09-25 21:57:55 -04:00
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def connect() -> object:`
Add basic fallbacks for missing db/email creds. Fallbacks may eventually warrant their own file. Use f-strings to format password-reset emails. Automatically delete email-reset rows after 15 minutes. - Cute, but a proper vacuum would likely be more robust. Remove deprecated FLASK_ENV use. Use exceptions in generate_pdf() 2022-09-26 17:00:21 -04:00			`return MockConnection()`

Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def login(user_email: str, password: str) -> bool:`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`pw_bytes: bytes = password.encode('utf-8')`
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`user = __get_user_with_hash(user_email)`
Handle possibly-missing users. 2022-09-23 14:08:44 -04:00			`if user:`
			`return bcrypt.checkpw(pw_bytes, user.password_hash.encode('utf-8'))`
			`return False`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00

A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def __gen_pw_hash(password: str) -> str:`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`pw_bytes = password.encode('utf-8')`
			`salt = bcrypt.gensalt()`
			`pw_hash = bcrypt.hashpw(pw_bytes, salt)`
Add functionality for password-reset emails. Start building up multi-template feature. Redirect to homepage and display error instead of returning plaintext. Make usernames case-insensitive. 2022-09-25 21:33:09 -04:00			`return pw_hash.decode('utf-8')`

Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def add_user(username: str, password: str) -> None:`
Add functionality for password-reset emails. Start building up multi-template feature. Redirect to homepage and display error instead of returning plaintext. Make usernames case-insensitive. 2022-09-25 21:33:09 -04:00			`pw_hash = __gen_pw_hash(password)`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`with connect() as con:`
			`cur = con.cursor()`
Add functionality for password-reset emails. Start building up multi-template feature. Redirect to homepage and display error instead of returning plaintext. Make usernames case-insensitive. 2022-09-25 21:33:09 -04:00			`cur.execute("INSERT INTO users(email, password) VALUES (%s, %s)", (username, pw_hash))`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`con.commit()`


A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def delete_user(username: str) -> None:`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`with connect() as con:`
			`cur = con.cursor()`
			`cur.execute("DELETE FROM users WHERE email = %s", (username,))`
			`con.commit()`


A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def add_letter(user_id: int, letter_title: str, letter_content: str) -> None:`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`with connect() as con:`
			`cur = con.cursor()`
			`cur.execute("INSERT INTO letter_data(user_id, letter_name, letter_data) VALUES (%s, %s, %s)",`
			`(user_id, letter_title, letter_content))`
			`con.commit()`


A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def edit_letter(letter_id: int, letter_title: str, letter_content: str) -> None:`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`with connect() as con:`
			`cur = con.cursor()`
			`cur.execute("UPDATE letter_data SET letter_name = %s, letter_data = %s WHERE id = %s",`
			`(letter_title, letter_content, letter_id))`
			`con.commit()`


A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def get_user_letters(user_id: int) -> list[Letter]:`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`with connect() as con:`
			`cur = con.cursor()`
Several fixes and improvements. "Better" CSS minifying. Adjust psycopg imports and some usages. Fix viewport scaling for mobile. Switch gunicorn to default https port when running in prod. Correct /dbtest route and add simple /update skeleton 2022-09-22 11:05:17 -04:00			`cur.execute("SELECT id, letter_name, letter_data FROM letter_data WHERE user_id = %s", (str(user_id),))`
			`return list(map(lambda row: Letter(row[0], row[1], row[2]), cur.fetchall()))`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00

Handle possibly-missing users. 2022-09-23 14:08:44 -04:00			`def get_user(email: str) -> Optional[User]:`
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`user_with_hash = __get_user_with_hash(email)`
			`if user_with_hash:`
			`return user_with_hash.user`
Handle possibly-missing users. 2022-09-23 14:08:44 -04:00			`return None`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00

A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def __get_user_with_hash(email: str) -> Optional[UserWithHash]:`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00			`"""`
			`:param email:`
			`:return: User without their password_hash`
			`"""`
			`with connect() as con:`
			`cur = con.cursor()`
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`cur.execute("SELECT id, password, tier FROM users WHERE users.email ILIKE %s", (email,))`
Handle possibly-missing users. 2022-09-23 14:08:44 -04:00			`row = cur.fetchone()`
			`if row:`
A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`user_id, password, tier = row`
			`return UserWithHash(User(user_id, email, tier), password)`
Handle possibly-missing users. 2022-09-23 14:08:44 -04:00			`return None`
Start toying with some simple db functionality. 2022-09-21 23:14:50 -04:00

Add basic fallbacks for missing db/email creds. Fallbacks may eventually warrant their own file. Use f-strings to format password-reset emails. Automatically delete email-reset rows after 15 minutes. - Cute, but a proper vacuum would likely be more robust. Remove deprecated FLASK_ENV use. Use exceptions in generate_pdf() 2022-09-26 17:00:21 -04:00			`RESET_TIME = timedelta(minutes=-1 * 15)`


Add functionality for password-reset emails. Start building up multi-template feature. Redirect to homepage and display error instead of returning plaintext. Make usernames case-insensitive. 2022-09-25 21:33:09 -04:00			`def initiate_password_reset(email: str) -> Optional[UUID]:`
			`user = get_user(email)`
			`if not user:`
			`return None`
			`reset_id = uuid4()`
			`with connect() as con:`
			`cur = con.cursor()`
			`cur.execute(`
			`"INSERT INTO resets(user_id, id, reset_time) VALUES (%s, %s, NOW())",`
			`(user.id, reset_id)`
			`)`
Add basic fallbacks for missing db/email creds. Fallbacks may eventually warrant their own file. Use f-strings to format password-reset emails. Automatically delete email-reset rows after 15 minutes. - Cute, but a proper vacuum would likely be more robust. Remove deprecated FLASK_ENV use. Use exceptions in generate_pdf() 2022-09-26 17:00:21 -04:00			`threading.Timer(RESET_TIME.total_seconds(), delete_reset_row, [reset_id]).start()`
Add functionality for password-reset emails. Start building up multi-template feature. Redirect to homepage and display error instead of returning plaintext. Make usernames case-insensitive. 2022-09-25 21:33:09 -04:00			`con.commit()`
			`return reset_id`


A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def delete_reset_row(reset_id: UUID) -> None:`
Add basic fallbacks for missing db/email creds. Fallbacks may eventually warrant their own file. Use f-strings to format password-reset emails. Automatically delete email-reset rows after 15 minutes. - Cute, but a proper vacuum would likely be more robust. Remove deprecated FLASK_ENV use. Use exceptions in generate_pdf() 2022-09-26 17:00:21 -04:00			`with connect() as con:`
			`cur = con.cursor()`
			`cur.execute("DELETE FROM resets WHERE id = %s", (reset_id,))`
			`con.commit()`
Forbid password resets after 15 minutes. 2022-09-26 09:40:48 -04:00

A good bit of refactoring. Also start adding framework for user "tiers". This refactoring is mostly type-hints and f-strings. Some functions were also re-organized. 2022-09-28 17:53:32 -04:00			`def complete_reset(reset_id: str, new_password: str) -> bool:`
Add functionality for password-reset emails. Start building up multi-template feature. Redirect to homepage and display error instead of returning plaintext. Make usernames case-insensitive. 2022-09-25 21:33:09 -04:00			`with connect() as con:`
			`cur = con.cursor()`
			`cur.execute("SELECT reset_time, user_id FROM resets WHERE id = %s", (reset_id,))`
			`row = cur.fetchone()`
Forbid password resets after 15 minutes. 2022-09-26 09:40:48 -04:00			`if not row or not row[0]:`
			`return False`
			`reset_time, user_id = row`
			`if reset_time > (datetime.utcnow() + RESET_TIME):`
			`cur.execute("DELETE FROM resets WHERE id = %s", (reset_id,))`
			`password_hash = __gen_pw_hash(new_password)`
			`cur.execute("UPDATE users SET password = %s WHERE id = %s", (password_hash, user_id))`
			`con.commit()`
			`return True`
Add functionality for password-reset emails. Start building up multi-template feature. Redirect to homepage and display error instead of returning plaintext. Make usernames case-insensitive. 2022-09-25 21:33:09 -04:00			`return False`