37 Commits

Author SHA1 Message Date
c99bced56e Many fixes?
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 50s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 56s
Release / build (push) Successful in 1m23s
Release / publish_head (push) Successful in 1m17s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 5m41s
2025-07-09 18:28:27 -04:00
c12c8b0a89 Revert to 8c23e9d811
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 51s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 56s
Release / build (push) Successful in 1m24s
Release / publish_head (push) Successful in 1m17s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 5m41s
2025-07-09 06:07:27 -04:00
17145628a0 fix orientation of images
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 56s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 57s
Release / build (push) Successful in 1m46s
Release / publish_head (push) Successful in 1m18s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 3m42s
2025-07-06 22:27:33 -04:00
195c353710 Merge branch 'main' of https://git.dws.rip/dubey/foldsite 2025-07-06 22:20:23 -04:00
8c23e9d811 Update main.py
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 50s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 56s
Release / build (push) Successful in 1m21s
Release / publish_head (push) Successful in 1m17s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 3m40s
2025-07-06 22:10:51 -04:00
5a56496538 Update src/rendering/image.py
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 52s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 1m0s
Release / build (push) Successful in 1m22s
Release / publish_head (push) Successful in 1m17s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 3m44s
2025-07-06 21:54:59 -04:00
9c06401557 up to 8 cores
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 50s
Release / build (push) Successful in 2m51s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 47s
Release / publish_head (push) Successful in 2m29s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 3m32s
2025-07-02 15:54:23 -04:00
9b1b84e5be CI Bump
All checks were successful
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 2m23s
Release / build (push) Successful in 2m59s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 3m40s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 4m56s
Release / publish_head (push) Successful in 2m40s
2025-07-02 15:33:29 -04:00
23cc4c3876 Small cleanups 2025-04-24 17:58:36 -04:00
9e62a84843 no check for line
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 50s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 1m5s
Release / build (push) Successful in 2m36s
Release / publish_head (push) Successful in 2m18s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 3m17s
2025-04-10 12:08:45 -04:00
dda3be0101 Update README.md
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 43s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 58s
Release / build (push) Successful in 1m31s
Release / publish_head (push) Successful in 1m27s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 3m11s
2025-03-25 05:06:12 -04:00
3fd24c75fc Update README.md
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 44s
Release / build (push) Successful in 1m35s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 2m1s
Release / publish_head (push) Successful in 1m29s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 4m13s
2025-03-25 05:00:11 -04:00
07bb33006e Update main.py
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 14s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 17s
Release / build (push) Successful in 39s
Release / publish_head (push) Successful in 36s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 1m18s
2025-03-21 14:01:34 -04:00
aab53f1e54 Update .gitea/workflows/datadog-static-analysis.yml
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 18s
Release / build (push) Successful in 34s
Release / publish_head (push) Successful in 34s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 1m10s
2025-03-21 12:56:49 -04:00
0e6ca5859a Update .gitea/workflows/datadog-static-analysis.yml
Some checks failed
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 15s
Datadog Static Analysis / Datadog Static Analyzer (push) Failing after 1m8s
Release / publish_head (push) Successful in 1m15s
Release / build (push) Successful in 1m33s
2025-03-21 12:53:30 -04:00
7986ad2f88 Update .gitea/workflows/datadog-static-analysis.yml
Some checks failed
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 21s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 23s
Datadog Static Analysis / Datadog Static Analyzer (push) Failing after 1m20s
Release / publish_head (push) Successful in 1m19s
Release / build (push) Successful in 1m41s
2025-03-21 12:46:06 -04:00
7c4c20b3ce Update .gitea/workflows/datadog-static-analysis.yml
Some checks failed
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 16s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 17s
Release / build (push) Successful in 40s
Datadog Static Analysis / Datadog Static Analyzer (push) Failing after 1m8s
Release / publish_head (push) Successful in 33s
2025-03-21 12:41:14 -04:00
b407497713 nvm save me!
Some checks failed
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 15s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 16s
Release / build (push) Successful in 37s
Datadog Static Analysis / Datadog Static Analyzer (push) Failing after 58s
Release / publish_head (push) Successful in 35s
2025-03-21 12:39:16 -04:00
90d20978b1 Update .gitea/workflows/datadog-static-analysis.yml
Some checks failed
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 14s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Release / build (push) Successful in 37s
Release / publish_head (push) Successful in 35s
Datadog Static Analysis / Datadog Static Analyzer (push) Failing after 1m33s
2025-03-21 12:36:10 -04:00
1a26b0b3fb Update .gitea/workflows/datadog-static-analysis.yml
Some checks failed
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 16s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 15s
Release / build (push) Successful in 38s
Datadog Static Analysis / Datadog Static Analyzer (push) Failing after 43s
Release / publish_head (push) Successful in 38s
2025-03-21 12:20:22 -04:00
71efbfcc83 Update .gitea/workflows/datadog-static-analysis.yml
All checks were successful
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 13s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Release / build (push) Successful in 39s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 47s
Release / publish_head (push) Successful in 39s
2025-03-21 11:08:24 -04:00
27ef2d4ca3 Delete .gitea/workflows/semgrep-ce.yaml
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 14s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 14s
Release / build (push) Successful in 36s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 43s
Release / publish_head (push) Successful in 38s
2025-03-21 11:01:30 -04:00
1aa1964853 Update .gitea/workflows/datadog-static-analysis.yml
Some checks failed
Datadog Static Analysis / Datadog Static Analyzer (push) Waiting to run
Release / build (push) Waiting to run
Release / publish_head (push) Waiting to run
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Has been cancelled
Datadog Secrets Scanning / Datadog Static Analyzer (push) Has been cancelled
Semgrep CE scan / semgrep-oss/scan (push) Failing after 2s
2025-03-21 11:01:17 -04:00
aae43a0001 Update .gitea/workflows/datadog-static-analysis.yml
Some checks failed
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 13s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 14s
Release / build (push) Successful in 36s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 37s
Semgrep CE scan / semgrep-oss/scan (push) Failing after 2s
Release / publish_head (push) Successful in 37s
2025-03-21 10:57:35 -04:00
61392e296c Update .gitea/workflows/datadog-static-analysis.yml
Some checks failed
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 14s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 14s
Datadog Static Analysis / Datadog Static Analyzer (push) Failing after 21s
Release / build (push) Successful in 34s
Semgrep CE scan / semgrep-oss/scan (push) Failing after 8s
Release / publish_head (push) Successful in 35s
2025-03-21 10:32:29 -04:00
997afcdd9e Add Semgrep Scanning
Some checks failed
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 14s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 24s
Release / build (push) Successful in 39s
Semgrep CE scan / semgrep-oss/scan (push) Failing after 21s
Release / publish_head (push) Successful in 39s
2025-03-21 10:23:09 -04:00
5a611dd893 Update config.toml
All checks were successful
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 51s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 1m15s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 24s
Release / publish_head (push) Successful in 43s
Release / build (push) Successful in 43s
2025-03-20 22:04:51 -04:00
2adde253c9 start updating docs, other changes to file upload
All checks were successful
Release / build (push) Successful in 34s
Release / publish_head (push) Successful in 33s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 10s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 20s
Release / publish_head (release) Has been skipped
Release / build (release) Successful in 37s
2025-03-16 21:22:28 -04:00
744693a5f1 Update to resolve GHSA-cpwx-vrp4-4pq7
All checks were successful
Release / build (push) Successful in 37s
Release / publish_head (push) Successful in 34s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 10s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 20s
Release / publish_head (release) Has been skipped
Release / build (release) Successful in 36s
2025-03-16 13:11:23 -04:00
102c7a2b94 more fixes
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 15s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 25s
Release / build (push) Successful in 36s
Release / publish_head (push) Successful in 34s
2025-03-15 20:08:29 -04:00
74a010e82a more fixes
All checks were successful
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 15s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 25s
Release / build (push) Successful in 36s
Release / publish_head (push) Successful in 34s
2025-03-15 20:03:58 -04:00
23ce3be362 more fixes
All checks were successful
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 14s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 16s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 24s
Release / build (push) Successful in 35s
Release / publish_head (push) Successful in 35s
2025-03-15 20:01:07 -04:00
f12247b0b1 more fixes
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 14s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 20s
Release / build (push) Successful in 33s
Release / publish_head (push) Successful in 35s
2025-03-15 19:58:45 -04:00
2605f7db37 more fixes
All checks were successful
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 14s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 20s
Release / build (push) Successful in 35s
Release / publish_head (push) Successful in 35s
2025-03-15 19:56:40 -04:00
3898a198bd add testing builds
All checks were successful
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 15s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 24s
Release / build (push) Successful in 37s
Release / publish_head (push) Successful in 37s
2025-03-15 19:49:12 -04:00
d901f00c1f test fix image rotation
All checks were successful
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 15s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 23s
2025-03-15 19:47:44 -04:00
fc211edc77 start docs (AI) fix some caching logic
All checks were successful
Datadog Secrets Scanning / Datadog Static Analyzer (push) Successful in 9s
Datadog Software Composition Analysis / Datadog SBOM Generation and Upload (push) Successful in 15s
Datadog Static Analysis / Datadog Static Analyzer (push) Successful in 19s
Release / build (release) Successful in 39s
2025-03-15 15:55:40 -04:00
24 changed files with 1055 additions and 180 deletions

View File

@ -7,15 +7,15 @@ jobs:
runs-on: ubuntu-latest
name: Datadog Static Analyzer
steps:
- name: Checkout
uses: actions/checkout@v3
- name: Check code for comitted secrets
id: datadog-static-analysis
uses: DataDog/datadog-static-analyzer-github-action@v1
with:
dd_api_key: ${{ secrets.DD_API_KEY }}
dd_app_key: ${{ secrets.DD_APP_KEY }}
dd_site: datadoghq.com
secrets_enabled: true
static_analysis_enabled: false
cpu_count: 2
- name: Checkout
uses: actions/checkout@v3
- name: Check code for comitted secrets
id: datadog-static-analysis
uses: DataDog/datadog-static-analyzer-github-action@v1
with:
dd_api_key: ${{ secrets.DD_API_KEY }}
dd_app_key: ${{ secrets.DD_APP_KEY }}
dd_site: datadoghq.com
secrets_enabled: true
static_analysis_enabled: false
cpu_count: 8

View File

@ -17,3 +17,25 @@ jobs:
dd_app_key: ${{ secrets.DD_APP_KEY }}
dd_site: datadoghq.com
cpu_count: 2
- name: Run Semgrep
run: |
python3 -m pip install --break-system-package semgrep
semgrep scan --sarif -o /tmp/semgrep.sarif
cat /tmp/semgrep.sarif
# Download and install nvm:
curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.40.2/install.sh | bash
# in lieu of restarting the shell
\. "$HOME/.nvm/nvm.sh"
# Download and install Node.js:
nvm install 22
# Verify the Node.js version:
node -v # Should print "v22.14.0".
nvm current # Should print "v22.14.0".
# Verify npm version:
npm -v # Should print "10.9.2".
npm install -g @datadog/datadog-ci
datadog-ci sarif upload /tmp/semgrep.sarif
env:
DD_API_KEY: ${{ secrets.DD_API_KEY }}
DD_APP_KEY: ${{ secrets.DD_APP_KEY }}
DD_SITE: datadoghq.com

View File

@ -3,6 +3,9 @@ name: Release
on:
release:
types: [published]
push:
branches:
- main
jobs:
build:
@ -42,3 +45,28 @@ jobs:
push: ${{ github.event_name != 'pull_request' }}
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
publish_head:
runs-on: ubuntu-latest
if: github.ref == 'refs/heads/main'
steps:
- name: Checkout code
uses: actions/checkout@v2
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v1
- name: Login to Gitea Container Registry
uses: docker/login-action@v2
with:
registry: git.dws.rip
username: ${{ github.actor }}
password: ${{ secrets.GLOBAL_KEY }}
- name: Build and push "head" image
uses: docker/build-push-action@v4
with:
context: .
push: true
tags: git.dws.rip/${{ github.repository }}:head

186
README.md
View File

@ -0,0 +1,186 @@
# Foldsite
Foldsite is a dynamic site generator built with Python and Flask. It allows you to create and manage a website using Markdown content, HTML templates, and CSS styles.
## Table of Contents
- [Foldsite](#foldsite)
- [Table of Contents](#table-of-contents)
- [Configuration](#configuration)
- [Template Setup](#template-setup)
- [Site Setup](#site-setup)
- [Style Setup](#style-setup)
- [Template and Style Search](#template-and-style-search)
- [How a Template is Written](#how-a-template-is-written)
- [Jinja Primer](#jinja-primer)
- [Added Tools for the Template](#added-tools-for-the-template)
- [Tool Input and Return Types](#tool-input-and-return-types)
- [`get_sibling_content_files(path: str) -> list`](#get_sibling_content_filespath-str---list)
- [`get_text_document_preview(path: str) -> str`](#get_text_document_previewpath-str---str)
- [`get_sibling_content_folders(path: str) -> list`](#get_sibling_content_folderspath-str---list)
- [`get_folder_contents(path: str) -> list`](#get_folder_contentspath-str---list)
- [Example Usages for Tools and Types](#example-usages-for-tools-and-types)
- [Example Usage of `get_sibling_content_files`](#example-usage-of-get_sibling_content_files)
- [Example Usage of `get_text_document_preview`](#example-usage-of-get_text_document_preview)
- [Example Usage of `get_sibling_content_folders`](#example-usage-of-get_sibling_content_folders)
- [Example Usage of `get_folder_contents`](#example-usage-of-get_folder_contents)
- [Deployment](#deployment)
- [Docker Compose Example](#docker-compose-example)
## Configuration
The configuration file is written in TOML format and contains various settings for the application. Below is an example configuration file (`config.toml`):
```toml
[paths]
content_dir = "example/content"
templates_dir = "templates"
styles_dir = "styles"
[server]
listen_address = "127.0.0.1"
listen_port = 8080
debug = false
access_log = true
max_threads = 4
admin_browser = false
admin_password = "your_admin_password"
```
## Template Setup
Templates are HTML files that define the structure of your web pages. They are stored in the `templates` directory. Each template can include other templates and use Jinja2 syntax for dynamic content.
## Site Setup
The site content is stored in the `content` directory. Each Markdown file represents a page on your site. The directory structure of the `content` directory determines the URL structure of your site.
## Style Setup
Styles are CSS files that define the appearance of your web pages. They are stored in the `styles` directory. You can create specific styles for different types of content and categories.
## Template and Style Search
Templates and styles are searched in a specific order to apply the most specific styles first, followed by more general styles, and finally the base style.
## How a Template is Written
Templates are written in HTML and use Jinja2 syntax for dynamic content. Below is an example template (`base.html`):
```html
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>{{ title }}</title>
<link rel="stylesheet" href="{{ url_for('static', filename='base.css') }}">
{% for style in styles %}
<link rel="stylesheet" href="{{ style }}">
{% endfor %}
</head>
<body>
<div class="content">
{{ content }}
</div>
</body>
</html>
```
## Jinja Primer
Jinja2 is a templating engine for Python. It allows you to include dynamic content in your HTML templates. Below are some basic Jinja2 syntax examples:
- Variables: `{{ variable }}`
- Loops: `{% for item in list %} ... {% endfor %}`
- Conditionals: `{% if condition %} ... {% endif %}`
- Includes: `{% include 'template.html' %}`
## Added Tools for the Template
Foldsite provides additional tools for templates, such as functions to get sibling content files, text document previews, and folder contents.
## Tool Input and Return Types
### `get_sibling_content_files(path: str) -> list`
Returns a list of sibling content files in the specified directory.
### `get_text_document_preview(path: str) -> str`
Generates a preview of the text document located at the given path.
### `get_sibling_content_folders(path: str) -> list`
Returns a list of sibling content folders within a specified directory.
### `get_folder_contents(path: str) -> list`
Retrieves the contents of a folder and returns a list of `TemplateFile` objects.
## Example Usages for Tools and Types
### Example Usage of `get_sibling_content_files`
```html
<ul>
{% for file in get_sibling_content_files('path/to/directory') %}
<li>{{ file[0] }} - {{ file[1] }}</li>
{% endfor %}
</ul>
```
### Example Usage of `get_text_document_preview`
```html
<div>
{{ get_text_document_preview('path/to/document.md') }}
</div>
```
### Example Usage of `get_sibling_content_folders`
```html
<ul>
{% for folder in get_sibling_content_folders('path/to/directory') %}
<li>{{ folder[0] }} - {{ folder[1] }}</li>
{% endfor %}
</ul>
```
### Example Usage of `get_folder_contents`
```html
<ul>
{% for item in get_folder_contents('path/to/directory') %}
<li>{{ item.name }} - {{ item.path }}</li>
{% endfor %}
</ul>
```
## Deployment
To deploy Foldsite, you can use Docker. Below is an example Dockerfile:
```dockerfile
FROM python:3.13.2-bookworm
WORKDIR /app
COPY requirements.txt requirements.txt
RUN pip install --no-cache-dir -r requirements.txt
COPY . .
CMD ["python", "main.py"]
```
## Docker Compose Example
Below is an example `docker-compose.yml` file to deploy Foldsite using Docker Compose:
```yaml
version: '3.8'
services:
foldsite:
build: .
ports:
- "8080:8080"
volumes:
- .:/app
environment:
- CONFIG_PATH=config.toml
```

16
config.toml Normal file
View File

@ -0,0 +1,16 @@
[paths]
content_dir = "/home/dubey/projects/foldsite/docs/content"
templates_dir = "/home/dubey/projects/foldsite/docs/templates"
styles_dir = "/home/dubey/projects/foldsite/docs/styles"
[server]
listen_address = "0.0.0.0"
listen_port = 8080
enable_admin_browser = false
admin_password = "password"
max_threads = 4
debug = false
access_log = true

View File

@ -1,7 +1,7 @@
[paths]
content_dir = "/home/dubey/projects/foldsite/example/content"
templates_dir = "/home/dubey/projects/foldsite/example/templates"
styles_dir = "/home/dubey/projects/foldsite/example/styles"
content_dir = "/home/dubey/projects/foldsite/docs/content"
templates_dir = "/home/dubey/projects/foldsite/docs/templates"
styles_dir = "/home/dubey/projects/foldsite/docs/styles"
[server]
listen_address = "0.0.0.0"

View File

@ -0,0 +1,35 @@
# Configuration
## Configuration file
Foldsite is configured using a TOML file (default: `config.toml`). This file specifies paths to content, templates, and styles, as well as server settings.
Example `config.toml`:
```toml
[paths]
content_dir = "/home/myuser/site/content"
templates_dir = "/home/myuser/site/themes/cobalt/templates"
styles_dir = "/home/myuser/site/themes/cobalt/styles"
[server]
listen_address = "127.0.0.1"
listen_port = 8080
debug = false
access_log = true
max_threads = 4
admin_browser = false
admin_password = "your_admin_password"
```
## Server Settings
- **`listen_address`**: The IP address the server listens on (default: `127.0.0.1`).
- **`listen_port`**: The port the server listens on (default: `8080`).
- **`debug`**: Enables or disables debug mode (default: `false`). In debug mode, the server will automatically reload when code changes are detected, and more detailed error messages will be shown.
- **`access_log`**: Enables or disables access logging (default: `true`). If enabled, access logs will be written to standard output.
- **`max_threads`**: The maximum number of threads to use for handling requests (default: `4`). This setting directly impacts the concurrency of the server.
- **`admin_browser`**: Enables or disables the built-in file manager (default: `false`).
- **`admin_password`**: Sets the password for the file manager. Required if `admin_browser` is `true`.
The `Configuration` class (`/foldsite/src/config/config.py`) is responsible for loading and parsing this configuration file. It also sets global variables (`CONTENT_DIR`, `TEMPLATES_DIR`, `STYLES_DIR`) for easy access to these directories throughout the application. Errors are raised if the config file is missing, invalid, or lacks required sections (like `paths` or `server`).

View File

@ -0,0 +1,56 @@
## Rendering Process
The `RouteManager` class (`/foldsite/src/routes/routes.py`) and `render_page` function (`/foldsite/src/rendering/renderer.py`) are central to the rendering process.
### How Foldsite Determines File Types
The `determine_type` function (in `renderer.py`) is crucial for figuring out how to handle a given file or directory. It examines file extensions and directory contents to classify files into broad categories (defined in `GENERIC_FILE_MAPPING` in `/foldsite/src/rendering/__init__.py`):
* **`document`**: Files with extensions like `.md`, `.txt`, and `.html`.
* **`image`**: Files with extensions like `.png`, `.jpg`, `.jpeg`, `.gif`, and `.svg`.
* **`directory`**: Directories. If a directory contains files, the most common file extension within that directory is used to infer the directory's "type".
* **`other`**: Files that don't match any of the above categories.
* **`multimedia`**: This is a combination that contains `image`.
### Template Search
When a request comes in, Foldsite searches for an appropriate template in the `templates` directory. The search logic is implemented in `render_page` and follows a specific order, prioritizing more specific templates:
1. **Exact Path Match:** If a template exists with the exact same path relative to the `templates` directory as the requested content file (but with a `.html` extension), it's used. For example, if the request is for `/about/team.md`, and a template exists at `templates/about/team.md.html`, that template will be used.
2. **Folder-Specific Template:** If the requested path is a directory, Foldsite looks for a `__folder.html` template within that directory. For example, if the request is for `/blog/`, and `templates/blog/__folder.html` exists, it will be used.
3. **Type and Extension-Specific Templates:** Foldsite searches for templates named `__{type}.{extension}.html` within the requested directory and its parent directories, moving upwards. For instance, if requesting `/blog/post1.md`, it would look for:
* `templates/blog/__file.md.html`
* `templates/__file.md.html`
4. **Type and Category-Specific Templates:** Similar to the above, but searches for `__{type}.{category}.html`. If requesting an image at `/images/logo.png`, it looks for:
* `templates/images/__file.image.html`
* `templates/__file.image.html`
5. **Base Template:** Finally, if no other template is found, `templates/base.html` is used as a fallback. This template *must* exist; otherwise, an exception is raised.
### Style Search
CSS styles are searched similarly to templates, prioritizing specificity:
1. **Exact Path Match:** A CSS file with the exact same path as the requested content file (relative to the `styles` directory) is used. For example, `/about/team.md` would look for `styles/about/team.md.css`.
2. **Type and Extension-Specific Styles:** Searches for `__{type}.{extension}.css` in the requested directory and its parent directories. For example, `/blog/post1.md` would look for:
* `styles/blog/__file.md.css`
* `styles/__file.md.css`
3. **Type and Category-Specific Styles:** Similar to the above, but searches for `__{type}.{category}.css`.
* `styles/images/__file.image.css`
* `styles/__file.image.css`
4. **Base Style:** `styles/base.css` is always included.
The discovered styles are added to the `styles` variable, which is passed to the Jinja2 template. The order ensures that more specific styles override general ones.
### Error Handling
The `render_error_page` function (in `renderer.py`) handles errors. If a requested resource is not found (404 error) or if an exception occurs during processing, this function is called. It looks for a template named `__error.html` in the `templates` directory. If found, it's used to render the error page; otherwise, a default error page is generated. The error code, message, and description are passed to the template.

3
docs/content/index.md Normal file
View File

@ -0,0 +1,3 @@
# Foldsite Documentation
Foldsite acts as a dynamic site generator. It takes content primarily from Markdown files, combines it with HTML templates, applies CSS styles, and serves the resulting pages. It supports features like image thumbnails, Markdown rendering with frontmatter, and a built-in file manager for administrative tasks. Foldsite is dynamic in the sense that content is rendered on demand, rather than generating static HTML up-front.

23
docs/styles/__file.md.css Normal file
View File

@ -0,0 +1,23 @@
article {
max-width: 800px;
margin: 0 auto;
}
article h1,
article h2,
article h3,
article h4,
article h5,
article h6 {
margin-top: 1.5rem;
}
article p {
margin: 1rem 0;
}
article code {
background: var(--code-background-color);
padding: 0.2rem 0.4rem;
border-radius: 3px;
}

280
docs/styles/base.css Normal file
View File

@ -0,0 +1,280 @@
/* http://meyerweb.com/eric/tools/css/reset/
v2.0 | 20110126
License: none (public domain)
*/
html,
body,
div,
span,
applet,
object,
iframe,
h1,
h2,
h3,
h4,
h5,
h6,
p,
blockquote,
pre,
a,
abbr,
acronym,
address,
big,
cite,
code,
del,
dfn,
em,
img,
ins,
kbd,
q,
s,
samp,
small,
strike,
strong,
sub,
sup,
tt,
var,
b,
u,
i,
center,
dl,
dt,
dd,
ol,
ul,
li,
fieldset,
form,
label,
legend,
table,
caption,
tbody,
tfoot,
thead,
tr,
th,
td,
article,
aside,
canvas,
details,
embed,
figure,
figcaption,
footer,
header,
hgroup,
menu,
nav,
output,
ruby,
section,
summary,
time,
mark,
audio,
video {
margin: 0;
padding: 0;
border: 0;
font-size: 100%;
font: inherit;
vertical-align: baseline;
}
/* HTML5 display-role reset for older browsers */
article,
aside,
details,
figcaption,
figure,
footer,
header,
hgroup,
menu,
nav,
section {
display: block;
}
body {
line-height: 1;
}
ol,
ul {
list-style: none;
}
blockquote,
q {
quotes: none;
}
blockquote:before,
blockquote:after,
q:before,
q:after {
content: '';
content: none;
}
table {
border-collapse: collapse;
border-spacing: 0;
}
@property --font-color {
syntax: "<color>";
inherits: true;
initial-value: oklch(25.11% 0.006 258.36);
}
@property --background-color {
syntax: "<color>";
inherits: true;
initial-value: #F6F0F0;
}
@property --code-background-color {
syntax: "<color>";
inherits: true;
initial-value: #c7c1c1;
}
@property --hover-color {
syntax: "<color>";
inherits: true;
initial-value: #A4B465;
}
@property --url-color {
syntax: "<color>";
inherits: true;
initial-value: #626F47;
}
@media (prefers-color-scheme: dark) {
:root {
--font-color: oklch(91.87% 0.003 264.54);
--background-color: #29261f;
--hover-color: #626F47;
--url-color: #A4B465;
--code-background-color: #3d392e;
}
}
body {
font-family: "Open Sans", sans-serif;
font-optical-sizing: auto;
font-weight: 400;
font-style: normal;
font-variation-settings:
"wdth" 100;
display: flex;
justify-content: center;
background-color: var(--background-color);
color: var(--font-color);
}
a {
color: var(--url-color);
text-decoration: none;
transition: all 0.25s ease-in-out;
}
a:hover {
color: var(--hover-color);
transition: all 0.25s ease-in-out;
}
a:visited {
color: #C14600;
transition: all 0.25s ease-in-out;
}
a:visited:hover {
color: var(--hover-color);
transition: all 0.25s ease-in-out;
}
@supports (font-size-adjust: 1) {
.content {
font-size-adjust: 0.5;
}
}
ul {
list-style: square;
}
li {
line-height: 160%;
margin-bottom: 0.5rem;
}
.content {
line-height: calc(1ex / 0.32);
text-rendering: optimizeLegibility;
max-width: 80ch;
padding-left: 1rem;
}
.content h1 {
font-size: 2.5em;
line-height: calc(1ex / 0.42);
margin: calc(1ex / 0.42) 0;
}
.content h2 {
font-size: 2em;
line-height: calc(1ex / 0.42);
margin: calc(1ex / 0.42) 0;
}
.content h3 {
font-size: 1.75em;
line-height: calc(1ex / 0.38);
margin: calc(1ex / 0.38) 0;
}
.content h4 {
font-size: 1.5em;
line-height: calc(1ex / 0.37);
margin: calc(1ex / 0.37) 0;
}
.content p {
font-size: 1em;
line-height: calc(1ex / 0.32);
margin: calc(1ex / 0.32) 0;
text-align: justify;
hyphens: auto;
}
.sidebar {
padding-top: 4rem;
line-height: calc(1ex / 0.32);
text-rendering: optimizeLegibility;
}
.holder {
display: flex;
flex-direction: row;
margin: auto;
}

7
docs/templates/__file.md.html vendored Normal file
View File

@ -0,0 +1,7 @@
<article>
{{ content|safe }}
</article>
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/highlight.js/11.9.0/styles/dark.min.css">
<script src="https://cdnjs.cloudflare.com/ajax/libs/highlight.js/11.9.0/highlight.min.js"></script>
<script src="https://cdnjs.cloudflare.com/ajax/libs/highlight.js/11.9.0/languages/dockerfile.min.js"></script>
<script>hljs.highlightAll();</script>

43
docs/templates/base.html vendored Normal file
View File

@ -0,0 +1,43 @@
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>{{ title }}</title>
<link rel="preconnect" href="https://fonts.googleapis.com">
<link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
<link href="https://fonts.googleapis.com/css2?family=DM+Sans:ital,opsz,wght@0,9..40,100..1000;1,9..40,100..1000&family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Outfit:wght@100..900&display=swap" rel="stylesheet">
<link rel="stylesheet" href="{{ url_for('static', filename='base.css') }}">
{% for style in styles %}
<link rel="stylesheet" href="/styles{{ style }}" type="text/css">
{% endfor %}
</head>
<body>
<div class="holder">
<div class="sidebar"> <!-- Changed <sidebar> to <div> -->
<ul>
<li><a href="/">⌂ Home</a></li>
<hr>
{% for f in get_folder_contents() %}
{% if not f.is_dir %}
{% if f.proper_name == "index" %}
{% else %}
<li><a href="/{{ f.path }}">{{ f.proper_name }}</a></li>
{% endif %}
{% endif %}
{% endfor %}
</ul>
</div>
<div class="content"> <!-- <main> tag remains the same -->
{{ content|safe }}
<div class="footer">
<p>&copy; DWS</p>
</div>
</div>
</div>
</body>
</html>

View File

@ -6,11 +6,6 @@ from src.rendering.helpers import TemplateHelpers
from src.server.file_manager import create_filemanager_blueprint
AWS_SECRET_ACCESS_KEY = "wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"
PASSWORD = "YiaysZ4g8QX1R8R"
AWS_ACCESS_KEY_ID = "AIDAJQABLZS4A3QDU576"
def main():
parser = create_parser()
args = parser.parse_args()

View File

@ -8,6 +8,7 @@ dependencies = [
"bs4>=0.0.2",
"flask>=3.1.0",
"gunicorn>=23.0.0",
"jinja2>=3.1.6",
"mistune>=3.1.1",
"pillow>=10.4.0",
"python-frontmatter>=1.1.0",

View File

@ -16,8 +16,10 @@ gunicorn==23.0.0
# via foldsite (pyproject.toml)
itsdangerous==2.2.0
# via flask
jinja2==3.1.5
# via flask
jinja2==3.1.6
# via
# foldsite (pyproject.toml)
# flask
markdown-it-py==3.0.0
# via rich
markupsafe==3.0.2

View File

@ -6,6 +6,34 @@ TEMPLATES_DIR = None
STYLES_DIR = None
class Configuration:
"""
Configuration class for loading and validating application settings from a TOML file.
This class encapsulates the logic for reading configuration data from a specified TOML file,
validating the presence of required sections and keys, and exposing configuration values as
instance attributes. The configuration file is expected to contain at least two sections:
'paths' (with 'content_dir', 'templates_dir', and 'styles_dir') and 'server' (with optional
server-related settings).
Attributes:
config_path (str or Path): Path to the TOML configuration file.
content_dir (Path): Directory containing content files (required).
templates_dir (Path): Directory containing template files (required).
styles_dir (Path): Directory containing style files (required).
listen_address (str): Address for the server to listen on (default: "127.0.0.1").
listen_port (int): Port for the server to listen on (default: 8080).
debug (bool): Enable or disable debug mode (default: False).
access_log (bool): Enable or disable access logging (default: True).
max_threads (int): Maximum number of server threads (default: 4).
admin_browser (bool): Enable or disable admin browser access (default: False).
admin_password (str): Password for admin access (optional).
Methods:
load_config():
Loads and validates configuration data from the TOML file specified by `config_path`.
Raises FileNotFoundError if the file does not exist, tomllib.TOMLDecodeError if the file
is not valid TOML, or ValueError if required sections or keys are missing.
set_globals():
Sets global variables CONTENT_DIR, TEMPLATES_DIR, and STYLES_DIR based on the loaded
configuration values.
"""
def __init__(self, config_path):
self.config_path = config_path
@ -23,6 +51,19 @@ class Configuration:
self.admin_password: str = None
def load_config(self):
"""
Loads and validates configuration data from a TOML file specified by `self.config_path`.
This method reads the configuration file, parses its contents, and sets various instance attributes
based on the configuration values. It expects the configuration file to contain at least two sections:
'paths' and 'server'. The 'paths' section must include 'content_dir', 'templates_dir', and 'styles_dir'.
The 'server' section may include 'listen_address', 'listen_port', 'debug', 'access_log', 'max_threads',
'admin_browser', and 'admin_password'. If any required section or key is missing, or if the file is
not found or is invalid TOML, an appropriate exception is raised.
Raises:
FileNotFoundError: If the configuration file does not exist.
tomllib.TOMLDecodeError: If the configuration file is not valid TOML.
ValueError: If required sections or keys are missing in the configuration file.
"""
try:
with open(self.config_path, "rb") as f:
self.config_data = tomllib.load(f)
@ -62,10 +103,3 @@ class Configuration:
self.admin_browser = server.get("admin_browser", self.admin_browser)
self.admin_password = server.get("admin_password", self.admin_password)
def set_globals(self):
global CONTENT_DIR, TEMPLATES_DIR, STYLES_DIR
CONTENT_DIR = self.content_dir
TEMPLATES_DIR = self.templates_dir
STYLES_DIR = self.styles_dir

View File

@ -90,39 +90,55 @@ class TemplateHelpers:
return [f for f in files if not f.name.startswith("___")]
def _build_metadata_for_file(self, path: str, categories: list[str] = []):
"""
Builds and returns metadata for a given file based on specified categories.
Args:
path (str): The relative path to the file within the content directory.
categories (list[str], optional): A list of category strings to determine the type of metadata to extract.
Supported categories include "image" and "document".
Returns:
ImageMetadata | FileMetadata | None:
- If "image" is in categories and the file is a valid image, returns an ImageMetadata object containing
width, height, alt text, and EXIF data.
- If "document" is in categories and the file is a document (e.g., Markdown), returns a FileMetadata object
with type-specific metadata such as frontmatter, content, raw content, plain text, and preview.
- Returns None if the file cannot be processed or if no supported category matches.
Notes:
- For images, EXIF orientation is handled to ensure correct width and height.
- For Markdown documents, frontmatter and content are extracted and a text preview is generated.
- Prints an error message and returns None if image processing fails.
"""
file_path = self.config.content_dir / path
for k in categories:
if k == "image":
img = Image.open(file_path)
exif = img._getexif()
# Conver exif to dict
orientation = exif.get(274, 1) if exif else 1
width, height = img.width, img.height
if orientation in [5, 6, 7, 8]:
width, height = height, width
exif = {}
try:
img = Image.open(file_path)
exif_raw = img._getexif()
if exif_raw:
exif = {
ExifTags.TAGS[k]: v
for k, v in exif_raw.items()
if k in ExifTags.TAGS
}
with Image.open(file_path) as img:
width, height = img.width, img.height
exif_raw = img._getexif()
exif = {}
if exif_raw:
orientation = exif_raw.get(0x0112, 1)
if orientation in [5, 6, 7, 8]:
width, height = height, width
exif = {
ExifTags.TAGS[k]: v
for k, v in exif_raw.items()
if k in ExifTags.TAGS
}
return ImageMetadata(
width=width,
height=height,
alt=file_path.name,
exif=exif,
)
except Exception as e:
print(f"Error processing image {file_path}: {e}")
date_taken = exif.get("DateTimeOriginal")
if not date_taken:
date_taken = format_date(file_path.stat().st_ctime)
return ImageMetadata(
width=width,
height=height,
alt=file_path.name,
exif=exif,
)
return None
elif k == "document":
ret = None
with open(file_path, "r") as fdoc:
@ -174,7 +190,7 @@ class TemplateHelpers:
categories=[],
date_modified=format_date(f.stat().st_mtime),
date_created=format_date(f.stat().st_ctime),
size_kb=f.stat().st_size / 1024,
size_kb=int(f.stat().st_size / 1024),
metadata=None,
dir_item_count=len(list(f.glob("*"))) if f.is_dir() else 0,
is_dir=f.is_dir(),
@ -233,7 +249,7 @@ class TemplateHelpers:
IOError: If an I/O error occurs while reading the file.
"""
file_path = self.config.content_dir / path
with open(file_path, "r") as f:
with open(file_path, "r", encoding="utf-8") as f:
content = f.read(100)
return content

View File

@ -1,12 +1,9 @@
from PIL import Image
from io import BytesIO
from functools import cache
@cache
def generate_thumbnail(image_path, resize_percent, min_width):
# Generate a unique key based on the image path, resize percentage, and minimum width
key = f"{image_path}_{resize_percent}_{min_width}"
from functools import lru_cache
@lru_cache(maxsize=512)
def generate_thumbnail(image_path, resize_percent, min_width, max_width):
# Open the image file
with Image.open(image_path) as img:
# Calculate the new size based on the resize percentage
@ -20,13 +17,20 @@ def generate_thumbnail(image_path, resize_percent, min_width):
new_width = min_width
new_height = int(new_height * scale_factor)
# Ensure the maximum width is not exceeded
if new_width > max_width:
scale_factor = max_width / new_width
new_width = max_width
new_height = int(new_height * scale_factor)
# Resize the image while maintaining the aspect ratio
img.thumbnail((new_width, new_height))
# Rotate the image based on the EXIF orientation tag
try:
exif = img._getexif()
orientation = exif.get(0x0112, 1) # 0x0112 is the EXIF orientation tag
exif = img.info['exif']
orientation = img._getexif().get(0x0112, 1) # 0x0112 is the EXIF orientation tag
print(f"EXIF orientation: {orientation}, {image_path}")
if orientation == 3:
img = img.rotate(180, expand=True)
elif orientation == 6:
@ -35,12 +39,12 @@ def generate_thumbnail(image_path, resize_percent, min_width):
img = img.rotate(90, expand=True)
except (AttributeError, KeyError, IndexError):
# cases: image don't have getexif
pass
exif = b""
# Save the thumbnail to a BytesIO object
thumbnail_io = BytesIO()
img_format = img.format if img.format in ["JPEG", "JPG", "PNG"] else "JPEG"
img.save(thumbnail_io, format=img_format)
img.save(thumbnail_io, format=img_format, exif=exif)
thumbnail_io.seek(0)
return (thumbnail_io.getvalue(), img_format)

View File

@ -203,22 +203,32 @@ def render_page(
)
content = ""
c_frontmatter = None
if "document" in category and type == "file":
content, c_frontmatter, obj = render_markdown(target_file)
if not (template_path / "base.html").exists():
raise Exception("Base template not found")
templates.append(template_path / "base.html")
# Filter templates to only those that exist
for template in templates:
content = render_template_string(
template.read_text(),
content=content,
styles=styles,
currentPath=str(relative_path),
metadata=c_frontmatter if "document" in category and type == "file" else None,
)
# The first found template is the most specific one for the content.
page_template_path = templates[0]
return content
template_vars = {
"content": content,
"styles": styles,
"currentPath": str(relative_path),
"metadata": c_frontmatter if "document" in category and type == "file" else None,
}
# First, render the specific page template.
final_content = render_template_string(
page_template_path.read_text(), **template_vars
)
# Now, render the base template, providing the result of the page
# template as the 'content' variable.
template_vars["content"] = final_content
return render_template_string(
(template_path / "base.html").read_text(), **template_vars
)

View File

@ -1,77 +1,111 @@
from pathlib import Path
from src.config.config import Configuration
from src.rendering.renderer import render_page, render_error_page
from flask import send_file
from flask import send_file, request
from src.rendering.image import generate_thumbnail
from functools import lru_cache
import os
class RouteManager:
"""
RouteManager is responsible for handling and validating file system paths for serving content, styles, and static files in a web application. It ensures that all requested paths are securely resolved within configured base directories, prevents path traversal attacks, and restricts access to hidden files or folders.
Args:
config (Configuration): The configuration object containing directory paths for content, templates, and styles.
Methods:
_validate_and_sanitize_path(base_dir, requested_path_str):
Validates and sanitizes a requested path to ensure it is within the specified base directory and not a hidden file/folder. Returns a resolved Path object or None if invalid.
_ensure_route(path):
Ensures the given path is valid and returns the corresponding Path object. Raises an Exception if the path is illegal.
default_route(path):
Handles the default route for serving content files. Returns a rendered page or an error page if the path is invalid or not found.
get_style(path):
Serves style files from the styles directory. Returns the file or an error page if the path is invalid or not found.
get_static(path):
Serves static files from the content directory. If the file is an image, generates and returns a thumbnail. Returns the file or an error page if the path is invalid or not found.
"""
def __init__(self, config: Configuration):
self.config = config
def _validate_and_sanitize_path(self, base_dir, requested_path):
def _validate_and_sanitize_path(self, base_dir, requested_path_str: str):
"""
Validate and sanitize the requested path to ensure it does not traverse above the base directory.
Validates and sanitizes a requested file system path to ensure it is safe and allowed.
:param base_dir: The base directory that the requested path should be within.
:param requested_path: The requested file path to validate.
:return: A secure version of the requested path if valid, otherwise None.
This method resolves the requested path relative to a given base directory, ensuring:
- The resolved path exists.
- The resolved path is within the base directory (prevents directory traversal attacks).
- The path does not access hidden files or directories (those starting with '___').
Args:
base_dir (str or Path): The base directory against which the requested path is resolved.
requested_path_str (str): The user-supplied path to validate and sanitize.
Returns:
Path or None: The resolved and validated Path object if the path is safe and allowed;
otherwise, None if the path is invalid, does not exist, attempts traversal,
or accesses hidden files/directories.
"""
# Normalize both paths
base_dir = Path(base_dir)
requested_path: Path = base_dir / requested_path
try:
base_dir = Path(base_dir).resolve(strict=True)
# a requested path of "" or "." should resolve to the base directory
if not requested_path_str:
requested_path_str = "."
secure_path = (base_dir / requested_path_str).resolve(strict=True)
except FileNotFoundError:
return None # Path does not exist
# Check if the requested path is within the base directory
if requested_path < base_dir:
# The most important check: ensure the resolved path is inside the base directory.
if not secure_path.is_relative_to(base_dir):
print(f"Illegal path traversal attempt: {requested_path_str}")
return None
# Ensure the path does not contain any '..' or '.' components
secure_path = os.path.relpath(requested_path, base_dir)
secure_path_parts = secure_path.split(os.sep)
for part in secure_path_parts:
if part == "." or part == "..":
print("Illegal path nice try")
return None
# Reconstruct the secure path
secure_path = os.path.join(base_dir, *secure_path_parts)
secure_path = Path(secure_path)
# Check if path exists
if not secure_path.exists():
raise Exception("Illegal path")
for part in secure_path.parts:
if part.startswith("___"):
print("hidden file")
raise Exception("Illegal path")
# Check for hidden files/folders (starting with '___')
relative_parts = secure_path.relative_to(base_dir).parts
# Also check the final component for the case where path is the base_dir itself.
if any(
part.startswith("___") for part in relative_parts
) or secure_path.name.startswith("___"):
print(f"Illegal access to hidden path: {requested_path_str}")
return None
return secure_path
def _ensure_route(self, path: str):
file_path: Path = self.config.content_dir / (path if path else "index.md")
if file_path < self.config.content_dir:
raise Exception("Illegal path")
if not self._validate_and_sanitize_path(
self.config.content_dir, str(file_path)
):
file_path = self._validate_and_sanitize_path(self.config.content_dir, path)
if not file_path:
raise Exception("Illegal path")
return file_path
def default_route(self, path: str):
"""
Handles the default route for serving content pages.
Attempts to resolve the given path to a file within the content directory.
If the path is empty, defaults to "index.md". If the file is not found or an error occurs,
renders a 404 error page. Otherwise, renders the requested page using the specified
template and style directories.
Args:
path (str): The requested path to resolve and serve.
Returns:
Response: The rendered page or an error page if the file is not found.
"""
try:
self._ensure_route(path)
except Exception as e:
file_path = self._ensure_route(path if path else "index.md")
except Exception as _:
return render_error_page(
404,
"Not Found",
"The requested resource was not found on this server.",
self.config.templates_dir,
)
file_path: Path = self.config.content_dir / (path if path else "index.md")
return render_page(
file_path,
base_path=self.config.content_dir,
@ -80,19 +114,45 @@ class RouteManager:
)
def get_style(self, path: str):
try:
self._validate_and_sanitize_path(self.config.styles_dir, path)
except Exception as e:
"""
Retrieves and serves a style file from the configured styles directory.
Args:
path (str): The relative path to the requested style file.
Returns:
Response: A Flask response object containing the requested file if found,
or an error page with a 404 status code if the file does not exist.
"""
file_path = self._validate_and_sanitize_path(self.config.styles_dir, path)
if not file_path:
return render_error_page(
404,
"Not Found",
f"The requested resource was not found on this server. {e}",
"The requested resource was not found on this server.",
self.config.templates_dir,
)
file_path: Path = self.config.styles_dir / path
if file_path.exists():
return send_file(file_path)
else:
return send_file(file_path)
def get_static(self, path: str):
"""
Serves static files from the configured content directory.
If the requested file is an image (JPEG, PNG, or GIF), generates and returns a thumbnail
with a maximum width specified by the 'max_width' query parameter (default: 2048).
Otherwise, serves the file as-is.
Args:
path (str): The relative path to the requested static file.
Returns:
Response:
- If the file is not found or invalid, returns a rendered 404 error page.
- If the file is an image, returns the thumbnail bytes with appropriate headers.
- Otherwise, returns the file using Flask's send_file.
"""
file_path = self._validate_and_sanitize_path(self.config.content_dir, path)
if not file_path:
return render_error_page(
404,
"Not Found",
@ -100,33 +160,18 @@ class RouteManager:
self.config.templates_dir,
)
def get_static(self, path: str):
try:
self._validate_and_sanitize_path(self.config.content_dir, path)
except Exception as e:
return render_error_page(
404,
"Not Found",
"The requested resource was not found on this server.",
self.config.templates_dir,
# Check to see if the file is an image, if it is, render a thumbnail
if file_path.suffix.lower() in [".jpg", ".jpeg", ".png", ".gif"]:
max_width = request.args.get("max_width", default=2048, type=int)
thumbnail_bytes, img_format = generate_thumbnail(
str(file_path), 10, 2048, max_width
)
file_path: Path = self.config.content_dir / path
if file_path.exists():
# Check to see if the file is an image, if it is, render a thumbnail
if file_path.suffix.lower() in [".jpg", ".jpeg", ".png", ".gif"]:
thumbnail_bytes, img_format = generate_thumbnail(
str(file_path), 10, 2048
)
return (
thumbnail_bytes,
200,
{"Content-Type": f"image/{img_format.lower()}"},
)
return send_file(file_path)
else:
return render_error_page(
404,
"Not Found",
"The requested resource was not found on this server.",
self.config.templates_dir,
return (
thumbnail_bytes,
200,
{
"Content-Type": f"image/{img_format.lower()}",
"cache-control": "public, max-age=31536000",
},
)
return send_file(file_path)

View File

@ -40,6 +40,7 @@ def create_filemanager_blueprint(base_dir, url_prefix='/files', auth_password=No
return redirect(next_url)
else:
flash("Incorrect password")
#no-dd-sa
return render_template_string('''
<!doctype html>
<html>
@ -149,10 +150,10 @@ def create_filemanager_blueprint(base_dir, url_prefix='/files', auth_password=No
</ul>
<button onclick="bulkCut()">Bulk Cut Selected</button>
<hr>
<h2>Upload File</h2>
<h2>Upload File(s)</h2>
<form action="{{ url_for('filemanager.upload') }}" method="post" enctype="multipart/form-data">
<input type="hidden" name="path" value="{{ rel_path }}">
<input type="file" name="file">
<input type="file" name="file" multiple>
<input type="submit" value="Upload">
</form>
<hr>
@ -276,11 +277,13 @@ def create_filemanager_blueprint(base_dir, url_prefix='/files', auth_password=No
return "Invalid path", 400
if not os.path.isdir(abs_path):
return "Not a directory", 400
file = request.files.get('file')
if file:
filename = secure_filename(file.filename)
file.save(os.path.join(abs_path, filename))
flash("Uploaded successfully")
files = request.files.getlist('file')
if files:
for file in files:
if file and file.filename:
filename = secure_filename(file.filename)
file.save(os.path.join(abs_path, filename))
flash("Uploaded files successfully")
return redirect(url_for('filemanager.index', path=rel_path))
@filemanager.route('/rename', methods=['POST'])

View File

@ -6,7 +6,29 @@ import multiprocessing
class Server(BaseApplication):
"""
Server class for managing a Flask web application with Gunicorn integration.
This class extends BaseApplication to provide a configurable server environment
for Flask applications. It supports custom template functions, dynamic worker/thread
configuration, and flexible server options.
Attributes:
debug (bool): Enables or disables debug mode for the Flask app.
host (str): The hostname or IP address to bind the server to.
port (int): The port number to listen on.
app (Flask): The Flask application instance.
application (Flask): Alias for the Flask application instance.
options (dict): Gunicorn server options such as bind address, reload, threads, and access log.
Methods:
__init__(self, debug=True, host="0.0.0.0", port=8080, template_functions=None, workers=..., access_log=True, options=None):
Initializes the Server instance with the specified configuration and registers template functions.
register_template_function(self, name, func):
Registers a Python function to be available in Jinja2 templates.
load_config(self):
Loads configuration options from self.options into the Gunicorn config object.
load(self):
Returns the Flask application instance managed by the server.
register_route(self, route, func, defaults=None):
"""
def __init__(
self,
debug: bool = True,
@ -32,17 +54,42 @@ class Server(BaseApplication):
"threads": workers,
"accesslog": "-" if access_log else None,
}
for name, func in template_functions.items():
self.register_template_function(name, func)
super().__init__()
for name, func in template_functions.items():
self.register_template_function(name, func)
super(Server, self).__init__()
def register_template_function(self, name, func):
"""
Register a function to be available in Jinja2 templates.
This method adds a Python function to the Jinja2 environment's globals,
making it available for use in all templates rendered by the application.
Parameters:
----------
name : str
The name under which the function will be accessible in templates
func : callable
The Python function to register
Examples:
--------
>>> server.register_template_function('format_date', lambda d: d.strftime('%Y-%m-%d'))
>>> # In template: {{ format_date(some_date) }}
"""
self.app.jinja_env.globals.update({name: func})
def load_config(self):
"""
Loads configuration options from self.options into self.cfg.
This method filters out options that are not in self.cfg.settings or have None values.
The filtered options are then set in the configuration object (self.cfg) with lowercase keys.
Returns:
None
"""
config = {
key: value
for key, value in self.options.items()
@ -52,7 +99,24 @@ class Server(BaseApplication):
self.cfg.set(key.lower(), value)
def load(self):
"""
Returns the application instance associated with the server.
Returns:
Application: The application object managed by the server.
"""
return self.application
def register_route(self, route, func, defaults=None):
"""
Registers a new route with the Flask application.
Args:
route (str): The URL route to register.
func (callable): The view function to associate with the route.
defaults (dict, optional): A dictionary of default values for the route variables. Defaults to None.
Returns:
None
"""
self.app.add_url_rule(route, func.__name__, func, defaults=defaults)

20
uv.lock generated
View File

@ -81,6 +81,7 @@ dependencies = [
{ name = "bs4" },
{ name = "flask" },
{ name = "gunicorn" },
{ name = "jinja2" },
{ name = "mistune" },
{ name = "pillow" },
{ name = "python-frontmatter" },
@ -94,6 +95,7 @@ requires-dist = [
{ name = "bs4", specifier = ">=0.0.2" },
{ name = "flask", specifier = ">=3.1.0" },
{ name = "gunicorn", specifier = ">=23.0.0" },
{ name = "jinja2", specifier = ">=3.1.6" },
{ name = "mistune", specifier = ">=3.1.1" },
{ name = "pillow", specifier = ">=10.4.0" },
{ name = "python-frontmatter", specifier = ">=1.1.0" },
@ -125,14 +127,14 @@ wheels = [
[[package]]
name = "jinja2"
version = "3.1.5"
version = "3.1.6"
source = { registry = "https://pypi.org/simple" }
dependencies = [
{ name = "markupsafe" },
]
sdist = { url = "https://files.pythonhosted.org/packages/af/92/b3130cbbf5591acf9ade8708c365f3238046ac7cb8ccba6e81abccb0ccff/jinja2-3.1.5.tar.gz", hash = "sha256:8fefff8dc3034e27bb80d67c671eb8a9bc424c0ef4c0826edbff304cceff43bb", size = 244674 }
sdist = { url = "https://files.pythonhosted.org/packages/df/bf/f7da0350254c0ed7c72f3e33cef02e048281fec7ecec5f032d4aac52226b/jinja2-3.1.6.tar.gz", hash = "sha256:0137fb05990d35f1275a587e9aee6d56da821fc83491a0fb838183be43f66d6d", size = 245115 }
wheels = [
{ url = "https://files.pythonhosted.org/packages/bd/0f/2ba5fbcd631e3e88689309dbe978c5769e883e4b84ebfe7da30b43275c5a/jinja2-3.1.5-py3-none-any.whl", hash = "sha256:aba0f4dc9ed8013c424088f68a5c226f7d6097ed89b246d7749c2ec4175c6adb", size = 134596 },
{ url = "https://files.pythonhosted.org/packages/62/a1/3d680cbfd5f4b8f15abc1d571870c5fc3e594bb582bc3b64ea099db13e56/jinja2-3.1.6-py3-none-any.whl", hash = "sha256:85ece4451f492d0c13c5dd7c13a64681a86afae63a5f347908daf103ce6d2f67", size = 134899 },
]
[[package]]
@ -186,11 +188,11 @@ wheels = [
[[package]]
name = "mistune"
version = "3.1.1"
version = "3.1.2"
source = { registry = "https://pypi.org/simple" }
sdist = { url = "https://files.pythonhosted.org/packages/c6/1d/6b2b634e43bacc3239006e61800676aa6c41ac1836b2c57497ed27a7310b/mistune-3.1.1.tar.gz", hash = "sha256:e0740d635f515119f7d1feb6f9b192ee60f0cc649f80a8f944f905706a21654c", size = 94645 }
sdist = { url = "https://files.pythonhosted.org/packages/80/f7/f6d06304c61c2a73213c0a4815280f70d985429cda26272f490e42119c1a/mistune-3.1.2.tar.gz", hash = "sha256:733bf018ba007e8b5f2d3a9eb624034f6ee26c4ea769a98ec533ee111d504dff", size = 94613 }
wheels = [
{ url = "https://files.pythonhosted.org/packages/c6/02/c66bdfdadbb021adb642ca4e8a5ed32ada0b4a3e4b39c5d076d19543452f/mistune-3.1.1-py3-none-any.whl", hash = "sha256:02106ac2aa4f66e769debbfa028509a275069dcffce0dfa578edd7b991ee700a", size = 53696 },
{ url = "https://files.pythonhosted.org/packages/12/92/30b4e54c4d7c48c06db61595cffbbf4f19588ea177896f9b78f0fbe021fd/mistune-3.1.2-py3-none-any.whl", hash = "sha256:4b47731332315cdca99e0ded46fc0004001c1299ff773dfb48fbe1fd226de319", size = 53696 },
]
[[package]]
@ -305,7 +307,7 @@ wheels = [
[[package]]
name = "typer"
version = "0.15.1"
version = "0.15.2"
source = { registry = "https://pypi.org/simple" }
dependencies = [
{ name = "click" },
@ -313,9 +315,9 @@ dependencies = [
{ name = "shellingham" },
{ name = "typing-extensions" },
]
sdist = { url = "https://files.pythonhosted.org/packages/cb/ce/dca7b219718afd37a0068f4f2530a727c2b74a8b6e8e0c0080a4c0de4fcd/typer-0.15.1.tar.gz", hash = "sha256:a0588c0a7fa68a1978a069818657778f86abe6ff5ea6abf472f940a08bfe4f0a", size = 99789 }
sdist = { url = "https://files.pythonhosted.org/packages/8b/6f/3991f0f1c7fcb2df31aef28e0594d8d54b05393a0e4e34c65e475c2a5d41/typer-0.15.2.tar.gz", hash = "sha256:ab2fab47533a813c49fe1f16b1a370fd5819099c00b119e0633df65f22144ba5", size = 100711 }
wheels = [
{ url = "https://files.pythonhosted.org/packages/d0/cc/0a838ba5ca64dc832aa43f727bd586309846b0ffb2ce52422543e6075e8a/typer-0.15.1-py3-none-any.whl", hash = "sha256:7994fb7b8155b64d3402518560648446072864beefd44aa2dc36972a5972e847", size = 44908 },
{ url = "https://files.pythonhosted.org/packages/7f/fc/5b29fea8cee020515ca82cc68e3b8e1e34bb19a3535ad854cac9257b414c/typer-0.15.2-py3-none-any.whl", hash = "sha256:46a499c6107d645a9c13f7ee46c5d5096cae6f5fc57dd11eccbbb9ae3e44ddfc", size = 45061 },
]
[[package]]