Compare commits
	
		
			37 Commits
		
	
	
		
			v0.3.0
			...
			c99bced56e
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
| c99bced56e | |||
| c12c8b0a89 | |||
| 17145628a0 | |||
| 195c353710 | |||
| 8c23e9d811 | |||
| 5a56496538 | |||
| 9c06401557 | |||
| 9b1b84e5be | |||
| 23cc4c3876 | |||
| 9e62a84843 | |||
| dda3be0101 | |||
| 3fd24c75fc | |||
| 07bb33006e | |||
| aab53f1e54 | |||
| 0e6ca5859a | |||
| 7986ad2f88 | |||
| 7c4c20b3ce | |||
| b407497713 | |||
| 90d20978b1 | |||
| 1a26b0b3fb | |||
| 71efbfcc83 | |||
| 27ef2d4ca3 | |||
| 1aa1964853 | |||
| aae43a0001 | |||
| 61392e296c | |||
| 997afcdd9e | |||
| 5a611dd893 | |||
| 2adde253c9 | |||
| 744693a5f1 | |||
| 102c7a2b94 | |||
| 74a010e82a | |||
| 23ce3be362 | |||
| f12247b0b1 | |||
| 2605f7db37 | |||
| 3898a198bd | |||
| d901f00c1f | |||
| fc211edc77 | 
| @ -18,4 +18,4 @@ jobs: | ||||
|           dd_site: datadoghq.com | ||||
|           secrets_enabled: true | ||||
|           static_analysis_enabled: false | ||||
|         cpu_count: 2 | ||||
|           cpu_count: 8 | ||||
|  | ||||
| @ -17,3 +17,25 @@ jobs: | ||||
|         dd_app_key: ${{ secrets.DD_APP_KEY }} | ||||
|         dd_site: datadoghq.com | ||||
|         cpu_count: 2 | ||||
|     - name: Run Semgrep | ||||
|       run: | | ||||
|         python3 -m pip install --break-system-package semgrep | ||||
|         semgrep scan --sarif -o /tmp/semgrep.sarif  | ||||
|         cat /tmp/semgrep.sarif | ||||
|         # Download and install nvm: | ||||
|         curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.40.2/install.sh | bash | ||||
|         # in lieu of restarting the shell | ||||
|         \. "$HOME/.nvm/nvm.sh" | ||||
|         # Download and install Node.js: | ||||
|         nvm install 22 | ||||
|         # Verify the Node.js version: | ||||
|         node -v # Should print "v22.14.0". | ||||
|         nvm current # Should print "v22.14.0". | ||||
|         # Verify npm version: | ||||
|         npm -v # Should print "10.9.2". | ||||
|         npm install -g @datadog/datadog-ci | ||||
|         datadog-ci sarif upload /tmp/semgrep.sarif | ||||
|       env: | ||||
|         DD_API_KEY: ${{ secrets.DD_API_KEY }} | ||||
|         DD_APP_KEY: ${{ secrets.DD_APP_KEY }} | ||||
|         DD_SITE: datadoghq.com | ||||
| @ -3,6 +3,9 @@ name: Release | ||||
| on: | ||||
|   release: | ||||
|     types: [published] | ||||
|   push: | ||||
|     branches: | ||||
|       - main | ||||
|  | ||||
| jobs: | ||||
|   build: | ||||
| @ -42,3 +45,28 @@ jobs: | ||||
|         push: ${{ github.event_name != 'pull_request' }} | ||||
|         tags: ${{ steps.meta.outputs.tags }} | ||||
|         labels: ${{ steps.meta.outputs.labels }} | ||||
|  | ||||
|   publish_head: | ||||
|     runs-on: ubuntu-latest | ||||
|     if: github.ref == 'refs/heads/main' | ||||
|  | ||||
|     steps: | ||||
|     - name: Checkout code | ||||
|       uses: actions/checkout@v2 | ||||
|  | ||||
|     - name: Set up Docker Buildx | ||||
|       uses: docker/setup-buildx-action@v1 | ||||
|  | ||||
|     - name: Login to Gitea Container Registry | ||||
|       uses: docker/login-action@v2 | ||||
|       with: | ||||
|         registry: git.dws.rip | ||||
|         username: ${{ github.actor }} | ||||
|         password: ${{ secrets.GLOBAL_KEY }} | ||||
|  | ||||
|     - name: Build and push "head" image | ||||
|       uses: docker/build-push-action@v4 | ||||
|       with: | ||||
|         context: . | ||||
|         push: true | ||||
|         tags: git.dws.rip/${{ github.repository }}:head | ||||
							
								
								
									
										186
									
								
								README.md
									
									
									
									
									
								
							
							
						
						
									
										186
									
								
								README.md
									
									
									
									
									
								
							| @ -0,0 +1,186 @@ | ||||
| # Foldsite | ||||
|  | ||||
| Foldsite is a dynamic site generator built with Python and Flask. It allows you to create and manage a website using Markdown content, HTML templates, and CSS styles. | ||||
|  | ||||
| ## Table of Contents | ||||
|  | ||||
| - [Foldsite](#foldsite) | ||||
|   - [Table of Contents](#table-of-contents) | ||||
|   - [Configuration](#configuration) | ||||
|   - [Template Setup](#template-setup) | ||||
|   - [Site Setup](#site-setup) | ||||
|   - [Style Setup](#style-setup) | ||||
|   - [Template and Style Search](#template-and-style-search) | ||||
|   - [How a Template is Written](#how-a-template-is-written) | ||||
|   - [Jinja Primer](#jinja-primer) | ||||
|   - [Added Tools for the Template](#added-tools-for-the-template) | ||||
|   - [Tool Input and Return Types](#tool-input-and-return-types) | ||||
|     - [`get_sibling_content_files(path: str) -> list`](#get_sibling_content_filespath-str---list) | ||||
|     - [`get_text_document_preview(path: str) -> str`](#get_text_document_previewpath-str---str) | ||||
|     - [`get_sibling_content_folders(path: str) -> list`](#get_sibling_content_folderspath-str---list) | ||||
|     - [`get_folder_contents(path: str) -> list`](#get_folder_contentspath-str---list) | ||||
|   - [Example Usages for Tools and Types](#example-usages-for-tools-and-types) | ||||
|     - [Example Usage of `get_sibling_content_files`](#example-usage-of-get_sibling_content_files) | ||||
|     - [Example Usage of `get_text_document_preview`](#example-usage-of-get_text_document_preview) | ||||
|     - [Example Usage of `get_sibling_content_folders`](#example-usage-of-get_sibling_content_folders) | ||||
|     - [Example Usage of `get_folder_contents`](#example-usage-of-get_folder_contents) | ||||
|   - [Deployment](#deployment) | ||||
|   - [Docker Compose Example](#docker-compose-example) | ||||
|  | ||||
| ## Configuration | ||||
|  | ||||
| The configuration file is written in TOML format and contains various settings for the application. Below is an example configuration file (`config.toml`): | ||||
|  | ||||
| ```toml | ||||
| [paths] | ||||
| content_dir = "example/content" | ||||
| templates_dir = "templates" | ||||
| styles_dir = "styles" | ||||
|  | ||||
| [server] | ||||
| listen_address = "127.0.0.1" | ||||
| listen_port = 8080 | ||||
| debug = false | ||||
| access_log = true | ||||
| max_threads = 4 | ||||
| admin_browser = false | ||||
| admin_password = "your_admin_password" | ||||
| ``` | ||||
|  | ||||
| ## Template Setup | ||||
|  | ||||
| Templates are HTML files that define the structure of your web pages. They are stored in the `templates` directory. Each template can include other templates and use Jinja2 syntax for dynamic content. | ||||
|  | ||||
| ## Site Setup | ||||
|  | ||||
| The site content is stored in the `content` directory. Each Markdown file represents a page on your site. The directory structure of the `content` directory determines the URL structure of your site. | ||||
|  | ||||
| ## Style Setup | ||||
|  | ||||
| Styles are CSS files that define the appearance of your web pages. They are stored in the `styles` directory. You can create specific styles for different types of content and categories. | ||||
|  | ||||
| ## Template and Style Search | ||||
|  | ||||
| Templates and styles are searched in a specific order to apply the most specific styles first, followed by more general styles, and finally the base style. | ||||
|  | ||||
| ## How a Template is Written | ||||
|  | ||||
| Templates are written in HTML and use Jinja2 syntax for dynamic content. Below is an example template (`base.html`): | ||||
|  | ||||
| ```html | ||||
| <!DOCTYPE html> | ||||
| <html lang="en"> | ||||
| <head> | ||||
|     <meta charset="UTF-8"> | ||||
|     <meta name="viewport" content="width=device-width, initial-scale=1.0"> | ||||
|     <title>{{ title }}</title> | ||||
|     <link rel="stylesheet" href="{{ url_for('static', filename='base.css') }}"> | ||||
|     {% for style in styles %} | ||||
|     <link rel="stylesheet" href="{{ style }}"> | ||||
|     {% endfor %} | ||||
| </head> | ||||
| <body> | ||||
|     <div class="content"> | ||||
|         {{ content }} | ||||
|     </div> | ||||
| </body> | ||||
| </html> | ||||
| ``` | ||||
|  | ||||
| ## Jinja Primer | ||||
|  | ||||
| Jinja2 is a templating engine for Python. It allows you to include dynamic content in your HTML templates. Below are some basic Jinja2 syntax examples: | ||||
|  | ||||
| - Variables: `{{ variable }}` | ||||
| - Loops: `{% for item in list %} ... {% endfor %}` | ||||
| - Conditionals: `{% if condition %} ... {% endif %}` | ||||
| - Includes: `{% include 'template.html' %}` | ||||
|  | ||||
| ## Added Tools for the Template | ||||
|  | ||||
| Foldsite provides additional tools for templates, such as functions to get sibling content files, text document previews, and folder contents. | ||||
|  | ||||
| ## Tool Input and Return Types | ||||
|  | ||||
| ### `get_sibling_content_files(path: str) -> list` | ||||
| Returns a list of sibling content files in the specified directory. | ||||
|  | ||||
| ### `get_text_document_preview(path: str) -> str` | ||||
| Generates a preview of the text document located at the given path. | ||||
|  | ||||
| ### `get_sibling_content_folders(path: str) -> list` | ||||
| Returns a list of sibling content folders within a specified directory. | ||||
|  | ||||
| ### `get_folder_contents(path: str) -> list` | ||||
| Retrieves the contents of a folder and returns a list of `TemplateFile` objects. | ||||
|  | ||||
| ## Example Usages for Tools and Types | ||||
|  | ||||
| ### Example Usage of `get_sibling_content_files` | ||||
|  | ||||
| ```html | ||||
| <ul> | ||||
|     {% for file in get_sibling_content_files('path/to/directory') %} | ||||
|     <li>{{ file[0] }} - {{ file[1] }}</li> | ||||
|     {% endfor %} | ||||
| </ul> | ||||
| ``` | ||||
|  | ||||
| ### Example Usage of `get_text_document_preview` | ||||
|  | ||||
| ```html | ||||
| <div> | ||||
|     {{ get_text_document_preview('path/to/document.md') }} | ||||
| </div> | ||||
| ``` | ||||
|  | ||||
| ### Example Usage of `get_sibling_content_folders` | ||||
|  | ||||
| ```html | ||||
| <ul> | ||||
|     {% for folder in get_sibling_content_folders('path/to/directory') %} | ||||
|     <li>{{ folder[0] }} - {{ folder[1] }}</li> | ||||
|     {% endfor %} | ||||
| </ul> | ||||
| ``` | ||||
|  | ||||
| ### Example Usage of `get_folder_contents` | ||||
|  | ||||
| ```html | ||||
| <ul> | ||||
|     {% for item in get_folder_contents('path/to/directory') %} | ||||
|     <li>{{ item.name }} - {{ item.path }}</li> | ||||
|     {% endfor %} | ||||
| </ul> | ||||
| ``` | ||||
|  | ||||
| ## Deployment | ||||
|  | ||||
| To deploy Foldsite, you can use Docker. Below is an example Dockerfile: | ||||
|  | ||||
| ```dockerfile | ||||
| FROM python:3.13.2-bookworm | ||||
| WORKDIR /app | ||||
| COPY requirements.txt requirements.txt | ||||
| RUN pip install --no-cache-dir -r requirements.txt | ||||
| COPY . . | ||||
| CMD ["python", "main.py"] | ||||
| ``` | ||||
|  | ||||
|  | ||||
| ## Docker Compose Example | ||||
|  | ||||
| Below is an example `docker-compose.yml` file to deploy Foldsite using Docker Compose: | ||||
|  | ||||
| ```yaml | ||||
| version: '3.8' | ||||
| services: | ||||
|   foldsite: | ||||
|     build: . | ||||
|     ports: | ||||
|       - "8080:8080" | ||||
|     volumes: | ||||
|       - .:/app | ||||
|     environment: | ||||
|       - CONFIG_PATH=config.toml | ||||
| ``` | ||||
|  | ||||
							
								
								
									
										16
									
								
								config.toml
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										16
									
								
								config.toml
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,16 @@ | ||||
| [paths] | ||||
| content_dir = "/home/dubey/projects/foldsite/docs/content" | ||||
| templates_dir = "/home/dubey/projects/foldsite/docs/templates" | ||||
| styles_dir = "/home/dubey/projects/foldsite/docs/styles" | ||||
|  | ||||
| [server] | ||||
| listen_address = "0.0.0.0" | ||||
| listen_port = 8080 | ||||
| enable_admin_browser = false | ||||
| admin_password = "password" | ||||
| max_threads = 4 | ||||
| debug = false | ||||
| access_log = true | ||||
|  | ||||
|  | ||||
|  | ||||
| @ -1,7 +1,7 @@ | ||||
| [paths] | ||||
| content_dir = "/home/dubey/projects/foldsite/example/content" | ||||
| templates_dir = "/home/dubey/projects/foldsite/example/templates" | ||||
| styles_dir = "/home/dubey/projects/foldsite/example/styles" | ||||
| content_dir = "/home/dubey/projects/foldsite/docs/content" | ||||
| templates_dir = "/home/dubey/projects/foldsite/docs/templates" | ||||
| styles_dir = "/home/dubey/projects/foldsite/docs/styles" | ||||
|  | ||||
| [server] | ||||
| listen_address = "0.0.0.0" | ||||
|  | ||||
							
								
								
									
										35
									
								
								docs/content/Configuration.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										35
									
								
								docs/content/Configuration.md
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,35 @@ | ||||
| # Configuration | ||||
|  | ||||
| ## Configuration file | ||||
|  | ||||
| Foldsite is configured using a TOML file (default: `config.toml`). This file specifies paths to content, templates, and styles, as well as server settings. | ||||
|  | ||||
| Example `config.toml`: | ||||
|  | ||||
| ```toml | ||||
| [paths] | ||||
| content_dir = "/home/myuser/site/content" | ||||
| templates_dir = "/home/myuser/site/themes/cobalt/templates" | ||||
| styles_dir = "/home/myuser/site/themes/cobalt/styles" | ||||
|  | ||||
| [server] | ||||
| listen_address = "127.0.0.1" | ||||
| listen_port = 8080 | ||||
| debug = false | ||||
| access_log = true | ||||
| max_threads = 4 | ||||
| admin_browser = false | ||||
| admin_password = "your_admin_password" | ||||
| ``` | ||||
|  | ||||
| ## Server Settings | ||||
|  | ||||
|  - **`listen_address`**: The IP address the server listens on (default: `127.0.0.1`). | ||||
|  - **`listen_port`**: The port the server listens on (default: `8080`). | ||||
|  - **`debug`**: Enables or disables debug mode (default: `false`).  In debug mode, the server will automatically reload when code changes are detected, and more detailed error messages will be shown. | ||||
|  - **`access_log`**: Enables or disables access logging (default: `true`).  If enabled, access logs will be written to standard output. | ||||
|  - **`max_threads`**:  The maximum number of threads to use for handling requests (default: `4`). This setting directly impacts the concurrency of the server. | ||||
|  - **`admin_browser`**: Enables or disables the built-in file manager (default: `false`). | ||||
|  - **`admin_password`**: Sets the password for the file manager.  Required if `admin_browser` is `true`. | ||||
|  | ||||
| The `Configuration` class (`/foldsite/src/config/config.py`) is responsible for loading and parsing this configuration file. It also sets global variables (`CONTENT_DIR`, `TEMPLATES_DIR`, `STYLES_DIR`) for easy access to these directories throughout the application. Errors are raised if the config file is missing, invalid, or lacks required sections (like `paths` or `server`). | ||||
							
								
								
									
										56
									
								
								docs/content/Rendering Process.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										56
									
								
								docs/content/Rendering Process.md
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,56 @@ | ||||
| ## Rendering Process | ||||
|  | ||||
| The `RouteManager` class (`/foldsite/src/routes/routes.py`) and `render_page` function (`/foldsite/src/rendering/renderer.py`) are central to the rendering process. | ||||
|  | ||||
| ### How Foldsite Determines File Types | ||||
|  | ||||
| The `determine_type` function (in `renderer.py`) is crucial for figuring out how to handle a given file or directory. It examines file extensions and directory contents to classify files into broad categories (defined in `GENERIC_FILE_MAPPING` in `/foldsite/src/rendering/__init__.py`): | ||||
|  | ||||
| *   **`document`**:  Files with extensions like `.md`, `.txt`, and `.html`. | ||||
| *   **`image`**: Files with extensions like `.png`, `.jpg`, `.jpeg`, `.gif`, and `.svg`. | ||||
| *   **`directory`**: Directories.  If a directory contains files, the most common file extension within that directory is used to infer the directory's "type". | ||||
| *   **`other`**: Files that don't match any of the above categories. | ||||
| * **`multimedia`**: This is a combination that contains `image`. | ||||
|  | ||||
| ### Template Search | ||||
|  | ||||
| When a request comes in, Foldsite searches for an appropriate template in the `templates` directory.  The search logic is implemented in `render_page` and follows a specific order, prioritizing more specific templates: | ||||
|  | ||||
| 1.  **Exact Path Match:** If a template exists with the exact same path relative to the `templates` directory as the requested content file (but with a `.html` extension), it's used.  For example, if the request is for `/about/team.md`, and a template exists at `templates/about/team.md.html`, that template will be used. | ||||
|  | ||||
| 2.  **Folder-Specific Template:** If the requested path is a directory, Foldsite looks for a `__folder.html` template within that directory.  For example, if the request is for `/blog/`, and `templates/blog/__folder.html` exists, it will be used. | ||||
|  | ||||
| 3.  **Type and Extension-Specific Templates:** Foldsite searches for templates named `__{type}.{extension}.html` within the requested directory and its parent directories, moving upwards.  For instance, if requesting `/blog/post1.md`, it would look for: | ||||
|     *   `templates/blog/__file.md.html` | ||||
|     *   `templates/__file.md.html` | ||||
|  | ||||
| 4.  **Type and Category-Specific Templates:**  Similar to the above, but searches for `__{type}.{category}.html`. If requesting an image at `/images/logo.png`, it looks for: | ||||
|  | ||||
|     *   `templates/images/__file.image.html` | ||||
|     *   `templates/__file.image.html` | ||||
|  | ||||
| 5.  **Base Template:** Finally, if no other template is found, `templates/base.html` is used as a fallback.  This template *must* exist; otherwise, an exception is raised. | ||||
|  | ||||
| ### Style Search | ||||
|  | ||||
| CSS styles are searched similarly to templates, prioritizing specificity: | ||||
|  | ||||
| 1.  **Exact Path Match:** A CSS file with the exact same path as the requested content file (relative to the `styles` directory) is used.  For example, `/about/team.md` would look for `styles/about/team.md.css`. | ||||
|  | ||||
| 2.  **Type and Extension-Specific Styles:**  Searches for `__{type}.{extension}.css` in the requested directory and its parent directories.  For example, `/blog/post1.md` would look for: | ||||
|  | ||||
|     *   `styles/blog/__file.md.css` | ||||
|     *   `styles/__file.md.css` | ||||
|  | ||||
| 3.  **Type and Category-Specific Styles:** Similar to the above, but searches for `__{type}.{category}.css`. | ||||
|  | ||||
|     *   `styles/images/__file.image.css` | ||||
|     *   `styles/__file.image.css` | ||||
|  | ||||
| 4.  **Base Style:**  `styles/base.css` is always included. | ||||
|  | ||||
| The discovered styles are added to the `styles` variable, which is passed to the Jinja2 template. The order ensures that more specific styles override general ones. | ||||
|  | ||||
| ### Error Handling | ||||
|  | ||||
| The `render_error_page` function (in `renderer.py`) handles errors.  If a requested resource is not found (404 error) or if an exception occurs during processing, this function is called. It looks for a template named `__error.html` in the `templates` directory.  If found, it's used to render the error page; otherwise, a default error page is generated.  The error code, message, and description are passed to the template. | ||||
							
								
								
									
										3
									
								
								docs/content/index.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										3
									
								
								docs/content/index.md
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,3 @@ | ||||
| # Foldsite Documentation | ||||
|  | ||||
| Foldsite acts as a dynamic site generator. It takes content primarily from Markdown files, combines it with HTML templates, applies CSS styles, and serves the resulting pages. It supports features like image thumbnails, Markdown rendering with frontmatter, and a built-in file manager for administrative tasks. Foldsite is dynamic in the sense that content is rendered on demand, rather than generating static HTML up-front. | ||||
							
								
								
									
										23
									
								
								docs/styles/__file.md.css
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										23
									
								
								docs/styles/__file.md.css
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,23 @@ | ||||
| article { | ||||
|     max-width: 800px; | ||||
|     margin: 0 auto; | ||||
| } | ||||
|  | ||||
| article h1, | ||||
| article h2, | ||||
| article h3, | ||||
| article h4, | ||||
| article h5, | ||||
| article h6 { | ||||
|     margin-top: 1.5rem; | ||||
| } | ||||
|  | ||||
| article p { | ||||
|     margin: 1rem 0; | ||||
| } | ||||
|  | ||||
| article code { | ||||
|     background: var(--code-background-color); | ||||
|     padding: 0.2rem 0.4rem; | ||||
|     border-radius: 3px; | ||||
| } | ||||
							
								
								
									
										280
									
								
								docs/styles/base.css
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										280
									
								
								docs/styles/base.css
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,280 @@ | ||||
| /* http://meyerweb.com/eric/tools/css/reset/  | ||||
|    v2.0 | 20110126 | ||||
|    License: none (public domain) | ||||
| */ | ||||
|  | ||||
| html, | ||||
| body, | ||||
| div, | ||||
| span, | ||||
| applet, | ||||
| object, | ||||
| iframe, | ||||
| h1, | ||||
| h2, | ||||
| h3, | ||||
| h4, | ||||
| h5, | ||||
| h6, | ||||
| p, | ||||
| blockquote, | ||||
| pre, | ||||
| a, | ||||
| abbr, | ||||
| acronym, | ||||
| address, | ||||
| big, | ||||
| cite, | ||||
| code, | ||||
| del, | ||||
| dfn, | ||||
| em, | ||||
| img, | ||||
| ins, | ||||
| kbd, | ||||
| q, | ||||
| s, | ||||
| samp, | ||||
| small, | ||||
| strike, | ||||
| strong, | ||||
| sub, | ||||
| sup, | ||||
| tt, | ||||
| var, | ||||
| b, | ||||
| u, | ||||
| i, | ||||
| center, | ||||
| dl, | ||||
| dt, | ||||
| dd, | ||||
| ol, | ||||
| ul, | ||||
| li, | ||||
| fieldset, | ||||
| form, | ||||
| label, | ||||
| legend, | ||||
| table, | ||||
| caption, | ||||
| tbody, | ||||
| tfoot, | ||||
| thead, | ||||
| tr, | ||||
| th, | ||||
| td, | ||||
| article, | ||||
| aside, | ||||
| canvas, | ||||
| details, | ||||
| embed, | ||||
| figure, | ||||
| figcaption, | ||||
| footer, | ||||
| header, | ||||
| hgroup, | ||||
| menu, | ||||
| nav, | ||||
| output, | ||||
| ruby, | ||||
| section, | ||||
| summary, | ||||
| time, | ||||
| mark, | ||||
| audio, | ||||
| video { | ||||
|     margin: 0; | ||||
|     padding: 0; | ||||
|     border: 0; | ||||
|     font-size: 100%; | ||||
|     font: inherit; | ||||
|     vertical-align: baseline; | ||||
| } | ||||
|  | ||||
| /* HTML5 display-role reset for older browsers */ | ||||
| article, | ||||
| aside, | ||||
| details, | ||||
| figcaption, | ||||
| figure, | ||||
| footer, | ||||
| header, | ||||
| hgroup, | ||||
| menu, | ||||
| nav, | ||||
| section { | ||||
|     display: block; | ||||
| } | ||||
|  | ||||
| body { | ||||
|     line-height: 1; | ||||
| } | ||||
|  | ||||
| ol, | ||||
| ul { | ||||
|     list-style: none; | ||||
| } | ||||
|  | ||||
| blockquote, | ||||
| q { | ||||
|     quotes: none; | ||||
| } | ||||
|  | ||||
| blockquote:before, | ||||
| blockquote:after, | ||||
| q:before, | ||||
| q:after { | ||||
|     content: ''; | ||||
|     content: none; | ||||
| } | ||||
|  | ||||
| table { | ||||
|     border-collapse: collapse; | ||||
|     border-spacing: 0; | ||||
| } | ||||
|  | ||||
|  | ||||
|  | ||||
| @property --font-color { | ||||
|     syntax: "<color>"; | ||||
|     inherits: true; | ||||
|     initial-value: oklch(25.11% 0.006 258.36); | ||||
| } | ||||
|  | ||||
| @property --background-color { | ||||
|     syntax: "<color>"; | ||||
|     inherits: true; | ||||
|     initial-value: #F6F0F0; | ||||
| } | ||||
|  | ||||
| @property --code-background-color { | ||||
|     syntax: "<color>"; | ||||
|     inherits: true; | ||||
|     initial-value: #c7c1c1; | ||||
| } | ||||
|  | ||||
| @property --hover-color { | ||||
|     syntax: "<color>"; | ||||
|     inherits: true; | ||||
|     initial-value: #A4B465; | ||||
| } | ||||
|  | ||||
| @property --url-color { | ||||
|     syntax: "<color>"; | ||||
|     inherits: true; | ||||
|     initial-value: #626F47; | ||||
| } | ||||
|  | ||||
| @media (prefers-color-scheme: dark) { | ||||
|     :root { | ||||
|         --font-color: oklch(91.87% 0.003 264.54); | ||||
|         --background-color: #29261f; | ||||
|         --hover-color: #626F47; | ||||
|         --url-color: #A4B465; | ||||
|         --code-background-color: #3d392e; | ||||
|     } | ||||
| } | ||||
|  | ||||
|  | ||||
|  | ||||
| body { | ||||
|     font-family: "Open Sans", sans-serif; | ||||
|     font-optical-sizing: auto; | ||||
|     font-weight: 400; | ||||
|     font-style: normal; | ||||
|     font-variation-settings: | ||||
|         "wdth" 100; | ||||
|     display: flex; | ||||
|     justify-content: center; | ||||
|     background-color: var(--background-color); | ||||
|     color: var(--font-color); | ||||
| } | ||||
|  | ||||
| a { | ||||
|     color: var(--url-color); | ||||
|     text-decoration: none; | ||||
|     transition: all 0.25s ease-in-out; | ||||
| } | ||||
|  | ||||
| a:hover { | ||||
|     color: var(--hover-color); | ||||
|     transition: all 0.25s ease-in-out; | ||||
| } | ||||
|  | ||||
| a:visited { | ||||
|     color: #C14600; | ||||
|     transition: all 0.25s ease-in-out; | ||||
| } | ||||
|  | ||||
| a:visited:hover { | ||||
|     color: var(--hover-color); | ||||
|     transition: all 0.25s ease-in-out; | ||||
| } | ||||
|  | ||||
| @supports (font-size-adjust: 1) { | ||||
|     .content { | ||||
|         font-size-adjust: 0.5; | ||||
|     } | ||||
| } | ||||
|  | ||||
| ul { | ||||
|     list-style: square; | ||||
| } | ||||
|  | ||||
| li { | ||||
|     line-height: 160%; | ||||
|     margin-bottom: 0.5rem; | ||||
| } | ||||
|  | ||||
| .content { | ||||
|     line-height: calc(1ex / 0.32); | ||||
|     text-rendering: optimizeLegibility; | ||||
|     max-width: 80ch; | ||||
|     padding-left: 1rem; | ||||
| } | ||||
|  | ||||
| .content h1 { | ||||
|     font-size: 2.5em; | ||||
|     line-height: calc(1ex / 0.42); | ||||
|     margin: calc(1ex / 0.42) 0; | ||||
| } | ||||
|  | ||||
| .content h2 { | ||||
|     font-size: 2em; | ||||
|     line-height: calc(1ex / 0.42); | ||||
|     margin: calc(1ex / 0.42) 0; | ||||
| } | ||||
|  | ||||
| .content h3 { | ||||
|     font-size: 1.75em; | ||||
|     line-height: calc(1ex / 0.38); | ||||
|     margin: calc(1ex / 0.38) 0; | ||||
| } | ||||
|  | ||||
| .content h4 { | ||||
|     font-size: 1.5em; | ||||
|     line-height: calc(1ex / 0.37); | ||||
|     margin: calc(1ex / 0.37) 0; | ||||
| } | ||||
|  | ||||
| .content p { | ||||
|     font-size: 1em; | ||||
|     line-height: calc(1ex / 0.32); | ||||
|     margin: calc(1ex / 0.32) 0; | ||||
|     text-align: justify; | ||||
|     hyphens: auto; | ||||
| } | ||||
|  | ||||
|  | ||||
| .sidebar { | ||||
|     padding-top: 4rem; | ||||
|     line-height: calc(1ex / 0.32); | ||||
|     text-rendering: optimizeLegibility; | ||||
| } | ||||
|  | ||||
| .holder { | ||||
|     display: flex; | ||||
|     flex-direction: row; | ||||
|     margin: auto; | ||||
| } | ||||
							
								
								
									
										7
									
								
								docs/templates/__file.md.html
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										7
									
								
								docs/templates/__file.md.html
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @ -0,0 +1,7 @@ | ||||
| <article> | ||||
|     {{ content|safe }} | ||||
| </article> | ||||
| <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/highlight.js/11.9.0/styles/dark.min.css"> | ||||
| <script src="https://cdnjs.cloudflare.com/ajax/libs/highlight.js/11.9.0/highlight.min.js"></script> | ||||
| <script src="https://cdnjs.cloudflare.com/ajax/libs/highlight.js/11.9.0/languages/dockerfile.min.js"></script> | ||||
| <script>hljs.highlightAll();</script> | ||||
							
								
								
									
										43
									
								
								docs/templates/base.html
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										43
									
								
								docs/templates/base.html
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @ -0,0 +1,43 @@ | ||||
| <!DOCTYPE html> | ||||
| <html lang="en"> | ||||
|  | ||||
| <head> | ||||
|     <meta charset="UTF-8"> | ||||
|     <meta name="viewport" content="width=device-width, initial-scale=1.0"> | ||||
|     <title>{{ title }}</title> | ||||
|     <link rel="preconnect" href="https://fonts.googleapis.com"> | ||||
|     <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin> | ||||
|     <link href="https://fonts.googleapis.com/css2?family=DM+Sans:ital,opsz,wght@0,9..40,100..1000;1,9..40,100..1000&family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Outfit:wght@100..900&display=swap" rel="stylesheet"> | ||||
|  | ||||
|     <link rel="stylesheet" href="{{ url_for('static', filename='base.css') }}"> | ||||
|     {% for style in styles %} | ||||
|     <link rel="stylesheet" href="/styles{{ style }}" type="text/css"> | ||||
|     {% endfor %} | ||||
| </head> | ||||
|  | ||||
| <body> | ||||
|     <div class="holder"> | ||||
|         <div class="sidebar"> <!-- Changed <sidebar> to <div> --> | ||||
|             <ul> | ||||
|                 <li><a href="/">⌂ Home</a></li> | ||||
|                 <hr> | ||||
|                 {% for f in get_folder_contents() %} | ||||
|                 {% if not f.is_dir %} | ||||
|                 {% if f.proper_name == "index" %} | ||||
|                 {% else %} | ||||
|                 <li><a href="/{{ f.path }}">{{ f.proper_name }}</a></li> | ||||
|                 {% endif %} | ||||
|                 {% endif %} | ||||
|                 {% endfor %} | ||||
|             </ul> | ||||
|         </div> | ||||
|         <div class="content"> <!-- <main> tag remains the same --> | ||||
|             {{ content|safe }} | ||||
|             <div class="footer"> | ||||
|                 <p>© DWS</p> | ||||
|             </div> | ||||
|         </div> | ||||
|     </div> | ||||
| </body> | ||||
|  | ||||
| </html> | ||||
							
								
								
									
										5
									
								
								main.py
									
									
									
									
									
								
							
							
						
						
									
										5
									
								
								main.py
									
									
									
									
									
								
							| @ -6,11 +6,6 @@ from src.rendering.helpers import TemplateHelpers | ||||
| from src.server.file_manager import create_filemanager_blueprint | ||||
|  | ||||
|  | ||||
| AWS_SECRET_ACCESS_KEY = "wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY" | ||||
| PASSWORD = "YiaysZ4g8QX1R8R" | ||||
| AWS_ACCESS_KEY_ID = "AIDAJQABLZS4A3QDU576" | ||||
|  | ||||
|  | ||||
| def main(): | ||||
|     parser = create_parser() | ||||
|     args = parser.parse_args() | ||||
|  | ||||
| @ -8,6 +8,7 @@ dependencies = [ | ||||
|     "bs4>=0.0.2", | ||||
|     "flask>=3.1.0", | ||||
|     "gunicorn>=23.0.0", | ||||
|     "jinja2>=3.1.6", | ||||
|     "mistune>=3.1.1", | ||||
|     "pillow>=10.4.0", | ||||
|     "python-frontmatter>=1.1.0", | ||||
|  | ||||
| @ -16,8 +16,10 @@ gunicorn==23.0.0 | ||||
|     # via foldsite (pyproject.toml) | ||||
| itsdangerous==2.2.0 | ||||
|     # via flask | ||||
| jinja2==3.1.5 | ||||
|     # via flask | ||||
| jinja2==3.1.6 | ||||
|     # via | ||||
|     #   foldsite (pyproject.toml) | ||||
|     #   flask | ||||
| markdown-it-py==3.0.0 | ||||
|     # via rich | ||||
| markupsafe==3.0.2 | ||||
|  | ||||
| @ -6,6 +6,34 @@ TEMPLATES_DIR = None | ||||
| STYLES_DIR = None | ||||
|  | ||||
| class Configuration: | ||||
|     """ | ||||
|     Configuration class for loading and validating application settings from a TOML file. | ||||
|     This class encapsulates the logic for reading configuration data from a specified TOML file, | ||||
|     validating the presence of required sections and keys, and exposing configuration values as | ||||
|     instance attributes. The configuration file is expected to contain at least two sections: | ||||
|     'paths' (with 'content_dir', 'templates_dir', and 'styles_dir') and 'server' (with optional | ||||
|     server-related settings). | ||||
|     Attributes: | ||||
|         config_path (str or Path): Path to the TOML configuration file. | ||||
|         content_dir (Path): Directory containing content files (required). | ||||
|         templates_dir (Path): Directory containing template files (required). | ||||
|         styles_dir (Path): Directory containing style files (required). | ||||
|         listen_address (str): Address for the server to listen on (default: "127.0.0.1"). | ||||
|         listen_port (int): Port for the server to listen on (default: 8080). | ||||
|         debug (bool): Enable or disable debug mode (default: False). | ||||
|         access_log (bool): Enable or disable access logging (default: True). | ||||
|         max_threads (int): Maximum number of server threads (default: 4). | ||||
|         admin_browser (bool): Enable or disable admin browser access (default: False). | ||||
|         admin_password (str): Password for admin access (optional). | ||||
|     Methods: | ||||
|         load_config(): | ||||
|             Loads and validates configuration data from the TOML file specified by `config_path`. | ||||
|             Raises FileNotFoundError if the file does not exist, tomllib.TOMLDecodeError if the file | ||||
|             is not valid TOML, or ValueError if required sections or keys are missing. | ||||
|         set_globals(): | ||||
|             Sets global variables CONTENT_DIR, TEMPLATES_DIR, and STYLES_DIR based on the loaded | ||||
|             configuration values. | ||||
|     """ | ||||
|  | ||||
|     def __init__(self, config_path): | ||||
|         self.config_path = config_path | ||||
| @ -23,6 +51,19 @@ class Configuration: | ||||
|         self.admin_password: str = None | ||||
|  | ||||
|     def load_config(self): | ||||
|         """ | ||||
|         Loads and validates configuration data from a TOML file specified by `self.config_path`. | ||||
|         This method reads the configuration file, parses its contents, and sets various instance attributes | ||||
|         based on the configuration values. It expects the configuration file to contain at least two sections: | ||||
|         'paths' and 'server'. The 'paths' section must include 'content_dir', 'templates_dir', and 'styles_dir'. | ||||
|         The 'server' section may include 'listen_address', 'listen_port', 'debug', 'access_log', 'max_threads', | ||||
|         'admin_browser', and 'admin_password'. If any required section or key is missing, or if the file is | ||||
|         not found or is invalid TOML, an appropriate exception is raised. | ||||
|         Raises: | ||||
|             FileNotFoundError: If the configuration file does not exist. | ||||
|             tomllib.TOMLDecodeError: If the configuration file is not valid TOML. | ||||
|             ValueError: If required sections or keys are missing in the configuration file. | ||||
|         """ | ||||
|         try: | ||||
|             with open(self.config_path, "rb") as f: | ||||
|                 self.config_data = tomllib.load(f) | ||||
| @ -62,10 +103,3 @@ class Configuration: | ||||
|         self.admin_browser = server.get("admin_browser", self.admin_browser) | ||||
|         self.admin_password = server.get("admin_password", self.admin_password) | ||||
|  | ||||
|     def set_globals(self): | ||||
|         global CONTENT_DIR, TEMPLATES_DIR, STYLES_DIR | ||||
|         CONTENT_DIR = self.content_dir | ||||
|         TEMPLATES_DIR = self.templates_dir | ||||
|         STYLES_DIR = self.styles_dir | ||||
|  | ||||
|  | ||||
|  | ||||
| @ -90,39 +90,55 @@ class TemplateHelpers: | ||||
|         return [f for f in files if not f.name.startswith("___")] | ||||
|  | ||||
|     def _build_metadata_for_file(self, path: str, categories: list[str] = []): | ||||
|         """ | ||||
|         Builds and returns metadata for a given file based on specified categories. | ||||
|  | ||||
|         Args: | ||||
|             path (str): The relative path to the file within the content directory. | ||||
|             categories (list[str], optional): A list of category strings to determine the type of metadata to extract. | ||||
|                 Supported categories include "image" and "document". | ||||
|  | ||||
|         Returns: | ||||
|             ImageMetadata | FileMetadata | None:  | ||||
|                 - If "image" is in categories and the file is a valid image, returns an ImageMetadata object containing | ||||
|                   width, height, alt text, and EXIF data. | ||||
|                 - If "document" is in categories and the file is a document (e.g., Markdown), returns a FileMetadata object | ||||
|                   with type-specific metadata such as frontmatter, content, raw content, plain text, and preview. | ||||
|                 - Returns None if the file cannot be processed or if no supported category matches. | ||||
|  | ||||
|         Notes: | ||||
|             - For images, EXIF orientation is handled to ensure correct width and height. | ||||
|             - For Markdown documents, frontmatter and content are extracted and a text preview is generated. | ||||
|             - Prints an error message and returns None if image processing fails. | ||||
|         """ | ||||
|         file_path = self.config.content_dir / path | ||||
|         for k in categories: | ||||
|             if k == "image": | ||||
|                 img = Image.open(file_path) | ||||
|                 exif = img._getexif() | ||||
|                 # Conver exif to dict | ||||
|                 orientation = exif.get(274, 1) if exif else 1 | ||||
|                 try: | ||||
|                     with Image.open(file_path) as img: | ||||
|                         width, height = img.width, img.height | ||||
|                 if orientation in [5, 6, 7, 8]: | ||||
|                     width, height = height, width | ||||
|                         exif_raw = img._getexif() | ||||
|  | ||||
|                         exif = {} | ||||
|                 try: | ||||
|                     img = Image.open(file_path) | ||||
|                     exif_raw = img._getexif() | ||||
|                         if exif_raw: | ||||
|                             orientation = exif_raw.get(0x0112, 1) | ||||
|                             if orientation in [5, 6, 7, 8]: | ||||
|                                 width, height = height, width | ||||
|                             exif = { | ||||
|                                 ExifTags.TAGS[k]: v | ||||
|                                 for k, v in exif_raw.items() | ||||
|                                 if k in ExifTags.TAGS | ||||
|                             } | ||||
|                 except Exception as e: | ||||
|                     print(f"Error processing image {file_path}: {e}") | ||||
|  | ||||
|                 date_taken = exif.get("DateTimeOriginal") | ||||
|                 if not date_taken: | ||||
|                     date_taken = format_date(file_path.stat().st_ctime) | ||||
|                         return ImageMetadata( | ||||
|                             width=width, | ||||
|                             height=height, | ||||
|                             alt=file_path.name, | ||||
|                             exif=exif, | ||||
|                         ) | ||||
|                 except Exception as e: | ||||
|                     print(f"Error processing image {file_path}: {e}") | ||||
|                     return None | ||||
|             elif k == "document": | ||||
|                 ret = None | ||||
|                 with open(file_path, "r") as fdoc: | ||||
| @ -174,7 +190,7 @@ class TemplateHelpers: | ||||
|                 categories=[], | ||||
|                 date_modified=format_date(f.stat().st_mtime), | ||||
|                 date_created=format_date(f.stat().st_ctime), | ||||
|                 size_kb=f.stat().st_size / 1024, | ||||
|                 size_kb=int(f.stat().st_size / 1024), | ||||
|                 metadata=None, | ||||
|                 dir_item_count=len(list(f.glob("*"))) if f.is_dir() else 0, | ||||
|                 is_dir=f.is_dir(), | ||||
| @ -233,7 +249,7 @@ class TemplateHelpers: | ||||
|             IOError: If an I/O error occurs while reading the file. | ||||
|         """ | ||||
|         file_path = self.config.content_dir / path | ||||
|         with open(file_path, "r") as f: | ||||
|         with open(file_path, "r", encoding="utf-8") as f: | ||||
|             content = f.read(100) | ||||
|         return content | ||||
|  | ||||
|  | ||||
| @ -1,12 +1,9 @@ | ||||
| from PIL import Image | ||||
| from io import BytesIO | ||||
| from functools import cache | ||||
|  | ||||
| @cache | ||||
| def generate_thumbnail(image_path, resize_percent, min_width): | ||||
|     # Generate a unique key based on the image path, resize percentage, and minimum width | ||||
|     key = f"{image_path}_{resize_percent}_{min_width}" | ||||
| from functools import lru_cache | ||||
|  | ||||
| @lru_cache(maxsize=512) | ||||
| def generate_thumbnail(image_path, resize_percent, min_width, max_width): | ||||
|     # Open the image file | ||||
|     with Image.open(image_path) as img: | ||||
|         # Calculate the new size based on the resize percentage | ||||
| @ -20,13 +17,20 @@ def generate_thumbnail(image_path, resize_percent, min_width): | ||||
|             new_width = min_width | ||||
|             new_height = int(new_height * scale_factor) | ||||
|  | ||||
|         # Ensure the maximum width is not exceeded | ||||
|         if new_width > max_width: | ||||
|             scale_factor = max_width / new_width | ||||
|             new_width = max_width | ||||
|             new_height = int(new_height * scale_factor) | ||||
|  | ||||
|         # Resize the image while maintaining the aspect ratio | ||||
|         img.thumbnail((new_width, new_height)) | ||||
|  | ||||
|         # Rotate the image based on the EXIF orientation tag | ||||
|         try: | ||||
|             exif = img._getexif() | ||||
|             orientation = exif.get(0x0112, 1)  # 0x0112 is the EXIF orientation tag | ||||
|             exif = img.info['exif'] | ||||
|             orientation = img._getexif().get(0x0112, 1)  # 0x0112 is the EXIF orientation tag | ||||
|             print(f"EXIF orientation: {orientation}, {image_path}") | ||||
|             if orientation == 3: | ||||
|                 img = img.rotate(180, expand=True) | ||||
|             elif orientation == 6: | ||||
| @ -35,12 +39,12 @@ def generate_thumbnail(image_path, resize_percent, min_width): | ||||
|                 img = img.rotate(90, expand=True) | ||||
|         except (AttributeError, KeyError, IndexError): | ||||
|             # cases: image don't have getexif | ||||
|             pass | ||||
|             exif = b"" | ||||
|  | ||||
|         # Save the thumbnail to a BytesIO object | ||||
|         thumbnail_io = BytesIO() | ||||
|         img_format = img.format if img.format in ["JPEG", "JPG", "PNG"] else "JPEG" | ||||
|         img.save(thumbnail_io, format=img_format) | ||||
|         img.save(thumbnail_io, format=img_format, exif=exif) | ||||
|         thumbnail_io.seek(0) | ||||
|  | ||||
|     return (thumbnail_io.getvalue(), img_format) | ||||
| @ -203,22 +203,32 @@ def render_page( | ||||
|             ) | ||||
|  | ||||
|     content = "" | ||||
|     c_frontmatter = None | ||||
|     if "document" in category and type == "file": | ||||
|         content, c_frontmatter, obj = render_markdown(target_file) | ||||
|  | ||||
|     if not (template_path / "base.html").exists(): | ||||
|         raise Exception("Base template not found") | ||||
|  | ||||
|     templates.append(template_path / "base.html") | ||||
|  | ||||
|     # Filter templates to only those that exist | ||||
|     for template in templates: | ||||
|         content = render_template_string( | ||||
|             template.read_text(), | ||||
|             content=content, | ||||
|             styles=styles, | ||||
|             currentPath=str(relative_path), | ||||
|             metadata=c_frontmatter if "document" in category and type == "file" else None, | ||||
|     # The first found template is the most specific one for the content. | ||||
|     page_template_path = templates[0] | ||||
|  | ||||
|     template_vars = { | ||||
|         "content": content, | ||||
|         "styles": styles, | ||||
|         "currentPath": str(relative_path), | ||||
|         "metadata": c_frontmatter if "document" in category and type == "file" else None, | ||||
|     } | ||||
|  | ||||
|     # First, render the specific page template. | ||||
|     final_content = render_template_string( | ||||
|         page_template_path.read_text(), **template_vars | ||||
|     ) | ||||
|  | ||||
|     return content | ||||
|     # Now, render the base template, providing the result of the page | ||||
|     # template as the 'content' variable. | ||||
|     template_vars["content"] = final_content | ||||
|     return render_template_string( | ||||
|         (template_path / "base.html").read_text(), **template_vars | ||||
|     ) | ||||
|  | ||||
| @ -1,77 +1,111 @@ | ||||
| from pathlib import Path | ||||
| from src.config.config import Configuration | ||||
| from src.rendering.renderer import render_page, render_error_page | ||||
| from flask import send_file | ||||
| from flask import send_file, request | ||||
| from src.rendering.image import generate_thumbnail | ||||
| from functools import lru_cache | ||||
| import os | ||||
|  | ||||
|  | ||||
| class RouteManager: | ||||
|     """ | ||||
|     RouteManager is responsible for handling and validating file system paths for serving content, styles, and static files in a web application. It ensures that all requested paths are securely resolved within configured base directories, prevents path traversal attacks, and restricts access to hidden files or folders. | ||||
|  | ||||
|     Args: | ||||
|         config (Configuration): The configuration object containing directory paths for content, templates, and styles. | ||||
|  | ||||
|     Methods: | ||||
|         _validate_and_sanitize_path(base_dir, requested_path_str): | ||||
|             Validates and sanitizes a requested path to ensure it is within the specified base directory and not a hidden file/folder. Returns a resolved Path object or None if invalid. | ||||
|  | ||||
|         _ensure_route(path): | ||||
|             Ensures the given path is valid and returns the corresponding Path object. Raises an Exception if the path is illegal. | ||||
|  | ||||
|         default_route(path): | ||||
|             Handles the default route for serving content files. Returns a rendered page or an error page if the path is invalid or not found. | ||||
|  | ||||
|         get_style(path): | ||||
|             Serves style files from the styles directory. Returns the file or an error page if the path is invalid or not found. | ||||
|  | ||||
|         get_static(path): | ||||
|             Serves static files from the content directory. If the file is an image, generates and returns a thumbnail. Returns the file or an error page if the path is invalid or not found. | ||||
|     """ | ||||
|              | ||||
|     def __init__(self, config: Configuration): | ||||
|         self.config = config | ||||
|  | ||||
|     def _validate_and_sanitize_path(self, base_dir, requested_path): | ||||
|     def _validate_and_sanitize_path(self, base_dir, requested_path_str: str): | ||||
|         """ | ||||
|         Validate and sanitize the requested path to ensure it does not traverse above the base directory. | ||||
|         Validates and sanitizes a requested file system path to ensure it is safe and allowed. | ||||
|  | ||||
|         :param base_dir: The base directory that the requested path should be within. | ||||
|         :param requested_path: The requested file path to validate. | ||||
|         :return: A secure version of the requested path if valid, otherwise None. | ||||
|         This method resolves the requested path relative to a given base directory, ensuring: | ||||
|         - The resolved path exists. | ||||
|         - The resolved path is within the base directory (prevents directory traversal attacks). | ||||
|         - The path does not access hidden files or directories (those starting with '___'). | ||||
|  | ||||
|         Args: | ||||
|             base_dir (str or Path): The base directory against which the requested path is resolved. | ||||
|             requested_path_str (str): The user-supplied path to validate and sanitize. | ||||
|  | ||||
|         Returns: | ||||
|             Path or None: The resolved and validated Path object if the path is safe and allowed; | ||||
|                           otherwise, None if the path is invalid, does not exist, attempts traversal, | ||||
|                           or accesses hidden files/directories. | ||||
|         """ | ||||
|         # Normalize both paths | ||||
|         base_dir = Path(base_dir) | ||||
|         requested_path: Path = base_dir / requested_path | ||||
|         try: | ||||
|             base_dir = Path(base_dir).resolve(strict=True) | ||||
|             # a requested path of "" or "." should resolve to the base directory | ||||
|             if not requested_path_str: | ||||
|                 requested_path_str = "." | ||||
|             secure_path = (base_dir / requested_path_str).resolve(strict=True) | ||||
|         except FileNotFoundError: | ||||
|             return None  # Path does not exist | ||||
|  | ||||
|         # Check if the requested path is within the base directory | ||||
|         if requested_path < base_dir: | ||||
|         # The most important check: ensure the resolved path is inside the base directory. | ||||
|         if not secure_path.is_relative_to(base_dir): | ||||
|             print(f"Illegal path traversal attempt: {requested_path_str}") | ||||
|             return None | ||||
|  | ||||
|         # Ensure the path does not contain any '..' or '.' components | ||||
|         secure_path = os.path.relpath(requested_path, base_dir) | ||||
|         secure_path_parts = secure_path.split(os.sep) | ||||
|  | ||||
|         for part in secure_path_parts: | ||||
|             if part == "." or part == "..": | ||||
|                 print("Illegal path nice try") | ||||
|         # Check for hidden files/folders (starting with '___') | ||||
|         relative_parts = secure_path.relative_to(base_dir).parts | ||||
|         # Also check the final component for the case where path is the base_dir itself. | ||||
|         if any( | ||||
|             part.startswith("___") for part in relative_parts | ||||
|         ) or secure_path.name.startswith("___"): | ||||
|             print(f"Illegal access to hidden path: {requested_path_str}") | ||||
|             return None | ||||
|  | ||||
|         # Reconstruct the secure path | ||||
|         secure_path = os.path.join(base_dir, *secure_path_parts) | ||||
|         secure_path = Path(secure_path) | ||||
|  | ||||
|         # Check if path exists | ||||
|         if not secure_path.exists(): | ||||
|             raise Exception("Illegal path") | ||||
|  | ||||
|         for part in secure_path.parts: | ||||
|             if part.startswith("___"): | ||||
|                 print("hidden file") | ||||
|                 raise Exception("Illegal path") | ||||
|  | ||||
|         return secure_path | ||||
|  | ||||
|     def _ensure_route(self, path: str): | ||||
|         file_path: Path = self.config.content_dir / (path if path else "index.md") | ||||
|         if file_path < self.config.content_dir: | ||||
|             raise Exception("Illegal path") | ||||
|  | ||||
|         if not self._validate_and_sanitize_path( | ||||
|             self.config.content_dir, str(file_path) | ||||
|         ): | ||||
|         file_path = self._validate_and_sanitize_path(self.config.content_dir, path) | ||||
|         if not file_path: | ||||
|             raise Exception("Illegal path") | ||||
|         return file_path | ||||
|  | ||||
|     def default_route(self, path: str): | ||||
|         """ | ||||
|         Handles the default route for serving content pages. | ||||
|  | ||||
|         Attempts to resolve the given path to a file within the content directory. | ||||
|         If the path is empty, defaults to "index.md". If the file is not found or an error occurs, | ||||
|         renders a 404 error page. Otherwise, renders the requested page using the specified | ||||
|         template and style directories. | ||||
|  | ||||
|         Args: | ||||
|             path (str): The requested path to resolve and serve. | ||||
|  | ||||
|         Returns: | ||||
|             Response: The rendered page or an error page if the file is not found. | ||||
|         """ | ||||
|         try: | ||||
|             self._ensure_route(path) | ||||
|         except Exception as e: | ||||
|             file_path = self._ensure_route(path if path else "index.md") | ||||
|         except Exception as _: | ||||
|             return render_error_page( | ||||
|                 404, | ||||
|                 "Not Found", | ||||
|                 "The requested resource was not found on this server.", | ||||
|                 self.config.templates_dir, | ||||
|             ) | ||||
|         file_path: Path = self.config.content_dir / (path if path else "index.md") | ||||
|         return render_page( | ||||
|             file_path, | ||||
|             base_path=self.config.content_dir, | ||||
| @ -80,19 +114,45 @@ class RouteManager: | ||||
|         ) | ||||
|  | ||||
|     def get_style(self, path: str): | ||||
|         try: | ||||
|             self._validate_and_sanitize_path(self.config.styles_dir, path) | ||||
|         except Exception as e: | ||||
|         """ | ||||
|         Retrieves and serves a style file from the configured styles directory. | ||||
|  | ||||
|         Args: | ||||
|             path (str): The relative path to the requested style file. | ||||
|  | ||||
|         Returns: | ||||
|             Response: A Flask response object containing the requested file if found, | ||||
|                       or an error page with a 404 status code if the file does not exist. | ||||
|         """ | ||||
|         file_path = self._validate_and_sanitize_path(self.config.styles_dir, path) | ||||
|         if not file_path: | ||||
|             return render_error_page( | ||||
|                 404, | ||||
|                 "Not Found", | ||||
|                 f"The requested resource was not found on this server. {e}", | ||||
|                 "The requested resource was not found on this server.", | ||||
|                 self.config.templates_dir, | ||||
|             ) | ||||
|         file_path: Path = self.config.styles_dir / path | ||||
|         if file_path.exists(): | ||||
|         return send_file(file_path) | ||||
|         else: | ||||
|  | ||||
|     def get_static(self, path: str): | ||||
|         """ | ||||
|         Serves static files from the configured content directory. | ||||
|  | ||||
|         If the requested file is an image (JPEG, PNG, or GIF), generates and returns a thumbnail | ||||
|         with a maximum width specified by the 'max_width' query parameter (default: 2048). | ||||
|         Otherwise, serves the file as-is. | ||||
|  | ||||
|         Args: | ||||
|             path (str): The relative path to the requested static file. | ||||
|  | ||||
|         Returns: | ||||
|             Response:  | ||||
|                 - If the file is not found or invalid, returns a rendered 404 error page. | ||||
|                 - If the file is an image, returns the thumbnail bytes with appropriate headers. | ||||
|                 - Otherwise, returns the file using Flask's send_file. | ||||
|         """ | ||||
|         file_path = self._validate_and_sanitize_path(self.config.content_dir, path) | ||||
|         if not file_path: | ||||
|             return render_error_page( | ||||
|                 404, | ||||
|                 "Not Found", | ||||
| @ -100,33 +160,18 @@ class RouteManager: | ||||
|                 self.config.templates_dir, | ||||
|             ) | ||||
|  | ||||
|     def get_static(self, path: str): | ||||
|         try: | ||||
|             self._validate_and_sanitize_path(self.config.content_dir, path) | ||||
|         except Exception as e: | ||||
|             return render_error_page( | ||||
|                 404, | ||||
|                 "Not Found", | ||||
|                 "The requested resource was not found on this server.", | ||||
|                 self.config.templates_dir, | ||||
|             ) | ||||
|         file_path: Path = self.config.content_dir / path | ||||
|         if file_path.exists(): | ||||
|         # Check to see if the file is an image, if it is, render a thumbnail | ||||
|         if file_path.suffix.lower() in [".jpg", ".jpeg", ".png", ".gif"]: | ||||
|             max_width = request.args.get("max_width", default=2048, type=int) | ||||
|             thumbnail_bytes, img_format = generate_thumbnail( | ||||
|                     str(file_path), 10, 2048 | ||||
|                 str(file_path), 10, 2048, max_width | ||||
|             ) | ||||
|             return ( | ||||
|                 thumbnail_bytes, | ||||
|                 200, | ||||
|                     {"Content-Type": f"image/{img_format.lower()}"}, | ||||
|                 { | ||||
|                     "Content-Type": f"image/{img_format.lower()}", | ||||
|                     "cache-control": "public, max-age=31536000", | ||||
|                 }, | ||||
|             ) | ||||
|         return send_file(file_path) | ||||
|         else: | ||||
|             return render_error_page( | ||||
|                 404, | ||||
|                 "Not Found", | ||||
|                 "The requested resource was not found on this server.", | ||||
|                 self.config.templates_dir, | ||||
|             ) | ||||
|  | ||||
| @ -40,6 +40,7 @@ def create_filemanager_blueprint(base_dir, url_prefix='/files', auth_password=No | ||||
|                 return redirect(next_url) | ||||
|             else: | ||||
|                 flash("Incorrect password") | ||||
|         #no-dd-sa | ||||
|         return render_template_string(''' | ||||
|         <!doctype html> | ||||
|         <html> | ||||
| @ -149,10 +150,10 @@ def create_filemanager_blueprint(base_dir, url_prefix='/files', auth_password=No | ||||
|           </ul> | ||||
|           <button onclick="bulkCut()">Bulk Cut Selected</button> | ||||
|           <hr> | ||||
|           <h2>Upload File</h2> | ||||
|           <h2>Upload File(s)</h2> | ||||
|           <form action="{{ url_for('filemanager.upload') }}" method="post" enctype="multipart/form-data"> | ||||
|             <input type="hidden" name="path" value="{{ rel_path }}"> | ||||
|             <input type="file" name="file"> | ||||
|             <input type="file" name="file" multiple> | ||||
|             <input type="submit" value="Upload"> | ||||
|           </form> | ||||
|           <hr> | ||||
| @ -276,11 +277,13 @@ def create_filemanager_blueprint(base_dir, url_prefix='/files', auth_password=No | ||||
|             return "Invalid path", 400 | ||||
|         if not os.path.isdir(abs_path): | ||||
|             return "Not a directory", 400 | ||||
|         file = request.files.get('file') | ||||
|         if file: | ||||
|         files = request.files.getlist('file') | ||||
|         if files: | ||||
|             for file in files: | ||||
|                 if file and file.filename: | ||||
|                     filename = secure_filename(file.filename) | ||||
|                     file.save(os.path.join(abs_path, filename)) | ||||
|             flash("Uploaded successfully") | ||||
|             flash("Uploaded files successfully") | ||||
|         return redirect(url_for('filemanager.index', path=rel_path)) | ||||
|  | ||||
|     @filemanager.route('/rename', methods=['POST']) | ||||
|  | ||||
| @ -6,7 +6,29 @@ import multiprocessing | ||||
|  | ||||
|  | ||||
| class Server(BaseApplication): | ||||
|  | ||||
|     """ | ||||
|     Server class for managing a Flask web application with Gunicorn integration. | ||||
|     This class extends BaseApplication to provide a configurable server environment | ||||
|     for Flask applications. It supports custom template functions, dynamic worker/thread | ||||
|     configuration, and flexible server options. | ||||
|     Attributes: | ||||
|         debug (bool): Enables or disables debug mode for the Flask app. | ||||
|         host (str): The hostname or IP address to bind the server to. | ||||
|         port (int): The port number to listen on. | ||||
|         app (Flask): The Flask application instance. | ||||
|         application (Flask): Alias for the Flask application instance. | ||||
|         options (dict): Gunicorn server options such as bind address, reload, threads, and access log. | ||||
|     Methods: | ||||
|         __init__(self, debug=True, host="0.0.0.0", port=8080, template_functions=None, workers=..., access_log=True, options=None): | ||||
|             Initializes the Server instance with the specified configuration and registers template functions. | ||||
|         register_template_function(self, name, func): | ||||
|             Registers a Python function to be available in Jinja2 templates. | ||||
|         load_config(self): | ||||
|             Loads configuration options from self.options into the Gunicorn config object. | ||||
|         load(self): | ||||
|             Returns the Flask application instance managed by the server. | ||||
|         register_route(self, route, func, defaults=None): | ||||
|     """ | ||||
|     def __init__( | ||||
|         self, | ||||
|         debug: bool = True, | ||||
| @ -32,17 +54,42 @@ class Server(BaseApplication): | ||||
|             "threads": workers, | ||||
|             "accesslog": "-" if access_log else None, | ||||
|         } | ||||
|         for name, func in template_functions.items(): | ||||
|             self.register_template_function(name, func) | ||||
|         super().__init__() | ||||
|  | ||||
|         for name, func in template_functions.items(): | ||||
|             self.register_template_function(name, func) | ||||
|         super(Server, self).__init__() | ||||
|  | ||||
|     def register_template_function(self, name, func): | ||||
|         """ | ||||
|         Register a function to be available in Jinja2 templates. | ||||
|  | ||||
|         This method adds a Python function to the Jinja2 environment's globals, | ||||
|         making it available for use in all templates rendered by the application. | ||||
|  | ||||
|         Parameters: | ||||
|         ---------- | ||||
|         name : str | ||||
|             The name under which the function will be accessible in templates | ||||
|         func : callable | ||||
|             The Python function to register | ||||
|  | ||||
|         Examples: | ||||
|         -------- | ||||
|         >>> server.register_template_function('format_date', lambda d: d.strftime('%Y-%m-%d')) | ||||
|         >>> # In template: {{ format_date(some_date) }} | ||||
|         """ | ||||
|         self.app.jinja_env.globals.update({name: func}) | ||||
|  | ||||
|     def load_config(self): | ||||
|         """ | ||||
|         Loads configuration options from self.options into self.cfg. | ||||
|          | ||||
|         This method filters out options that are not in self.cfg.settings or have None values. | ||||
|         The filtered options are then set in the configuration object (self.cfg) with lowercase keys. | ||||
|          | ||||
|         Returns: | ||||
|             None | ||||
|         """ | ||||
|         config = { | ||||
|             key: value | ||||
|             for key, value in self.options.items() | ||||
| @ -52,7 +99,24 @@ class Server(BaseApplication): | ||||
|             self.cfg.set(key.lower(), value) | ||||
|  | ||||
|     def load(self): | ||||
|         """ | ||||
|         Returns the application instance associated with the server. | ||||
|  | ||||
|         Returns: | ||||
|             Application: The application object managed by the server. | ||||
|         """ | ||||
|         return self.application | ||||
|  | ||||
|     def register_route(self, route, func, defaults=None): | ||||
|         """ | ||||
|         Registers a new route with the Flask application. | ||||
|  | ||||
|         Args: | ||||
|             route (str): The URL route to register. | ||||
|             func (callable): The view function to associate with the route. | ||||
|             defaults (dict, optional): A dictionary of default values for the route variables. Defaults to None. | ||||
|  | ||||
|         Returns: | ||||
|             None | ||||
|         """ | ||||
|         self.app.add_url_rule(route, func.__name__, func, defaults=defaults) | ||||
|  | ||||
							
								
								
									
										20
									
								
								uv.lock
									
									
									
										generated
									
									
									
								
							
							
						
						
									
										20
									
								
								uv.lock
									
									
									
										generated
									
									
									
								
							| @ -81,6 +81,7 @@ dependencies = [ | ||||
|     { name = "bs4" }, | ||||
|     { name = "flask" }, | ||||
|     { name = "gunicorn" }, | ||||
|     { name = "jinja2" }, | ||||
|     { name = "mistune" }, | ||||
|     { name = "pillow" }, | ||||
|     { name = "python-frontmatter" }, | ||||
| @ -94,6 +95,7 @@ requires-dist = [ | ||||
|     { name = "bs4", specifier = ">=0.0.2" }, | ||||
|     { name = "flask", specifier = ">=3.1.0" }, | ||||
|     { name = "gunicorn", specifier = ">=23.0.0" }, | ||||
|     { name = "jinja2", specifier = ">=3.1.6" }, | ||||
|     { name = "mistune", specifier = ">=3.1.1" }, | ||||
|     { name = "pillow", specifier = ">=10.4.0" }, | ||||
|     { name = "python-frontmatter", specifier = ">=1.1.0" }, | ||||
| @ -125,14 +127,14 @@ wheels = [ | ||||
|  | ||||
| [[package]] | ||||
| name = "jinja2" | ||||
| version = "3.1.5" | ||||
| version = "3.1.6" | ||||
| source = { registry = "https://pypi.org/simple" } | ||||
| dependencies = [ | ||||
|     { name = "markupsafe" }, | ||||
| ] | ||||
| sdist = { url = "https://files.pythonhosted.org/packages/af/92/b3130cbbf5591acf9ade8708c365f3238046ac7cb8ccba6e81abccb0ccff/jinja2-3.1.5.tar.gz", hash = "sha256:8fefff8dc3034e27bb80d67c671eb8a9bc424c0ef4c0826edbff304cceff43bb", size = 244674 } | ||||
| sdist = { url = "https://files.pythonhosted.org/packages/df/bf/f7da0350254c0ed7c72f3e33cef02e048281fec7ecec5f032d4aac52226b/jinja2-3.1.6.tar.gz", hash = "sha256:0137fb05990d35f1275a587e9aee6d56da821fc83491a0fb838183be43f66d6d", size = 245115 } | ||||
| wheels = [ | ||||
|     { url = "https://files.pythonhosted.org/packages/bd/0f/2ba5fbcd631e3e88689309dbe978c5769e883e4b84ebfe7da30b43275c5a/jinja2-3.1.5-py3-none-any.whl", hash = "sha256:aba0f4dc9ed8013c424088f68a5c226f7d6097ed89b246d7749c2ec4175c6adb", size = 134596 }, | ||||
|     { url = "https://files.pythonhosted.org/packages/62/a1/3d680cbfd5f4b8f15abc1d571870c5fc3e594bb582bc3b64ea099db13e56/jinja2-3.1.6-py3-none-any.whl", hash = "sha256:85ece4451f492d0c13c5dd7c13a64681a86afae63a5f347908daf103ce6d2f67", size = 134899 }, | ||||
| ] | ||||
|  | ||||
| [[package]] | ||||
| @ -186,11 +188,11 @@ wheels = [ | ||||
|  | ||||
| [[package]] | ||||
| name = "mistune" | ||||
| version = "3.1.1" | ||||
| version = "3.1.2" | ||||
| source = { registry = "https://pypi.org/simple" } | ||||
| sdist = { url = "https://files.pythonhosted.org/packages/c6/1d/6b2b634e43bacc3239006e61800676aa6c41ac1836b2c57497ed27a7310b/mistune-3.1.1.tar.gz", hash = "sha256:e0740d635f515119f7d1feb6f9b192ee60f0cc649f80a8f944f905706a21654c", size = 94645 } | ||||
| sdist = { url = "https://files.pythonhosted.org/packages/80/f7/f6d06304c61c2a73213c0a4815280f70d985429cda26272f490e42119c1a/mistune-3.1.2.tar.gz", hash = "sha256:733bf018ba007e8b5f2d3a9eb624034f6ee26c4ea769a98ec533ee111d504dff", size = 94613 } | ||||
| wheels = [ | ||||
|     { url = "https://files.pythonhosted.org/packages/c6/02/c66bdfdadbb021adb642ca4e8a5ed32ada0b4a3e4b39c5d076d19543452f/mistune-3.1.1-py3-none-any.whl", hash = "sha256:02106ac2aa4f66e769debbfa028509a275069dcffce0dfa578edd7b991ee700a", size = 53696 }, | ||||
|     { url = "https://files.pythonhosted.org/packages/12/92/30b4e54c4d7c48c06db61595cffbbf4f19588ea177896f9b78f0fbe021fd/mistune-3.1.2-py3-none-any.whl", hash = "sha256:4b47731332315cdca99e0ded46fc0004001c1299ff773dfb48fbe1fd226de319", size = 53696 }, | ||||
| ] | ||||
|  | ||||
| [[package]] | ||||
| @ -305,7 +307,7 @@ wheels = [ | ||||
|  | ||||
| [[package]] | ||||
| name = "typer" | ||||
| version = "0.15.1" | ||||
| version = "0.15.2" | ||||
| source = { registry = "https://pypi.org/simple" } | ||||
| dependencies = [ | ||||
|     { name = "click" }, | ||||
| @ -313,9 +315,9 @@ dependencies = [ | ||||
|     { name = "shellingham" }, | ||||
|     { name = "typing-extensions" }, | ||||
| ] | ||||
| sdist = { url = "https://files.pythonhosted.org/packages/cb/ce/dca7b219718afd37a0068f4f2530a727c2b74a8b6e8e0c0080a4c0de4fcd/typer-0.15.1.tar.gz", hash = "sha256:a0588c0a7fa68a1978a069818657778f86abe6ff5ea6abf472f940a08bfe4f0a", size = 99789 } | ||||
| sdist = { url = "https://files.pythonhosted.org/packages/8b/6f/3991f0f1c7fcb2df31aef28e0594d8d54b05393a0e4e34c65e475c2a5d41/typer-0.15.2.tar.gz", hash = "sha256:ab2fab47533a813c49fe1f16b1a370fd5819099c00b119e0633df65f22144ba5", size = 100711 } | ||||
| wheels = [ | ||||
|     { url = "https://files.pythonhosted.org/packages/d0/cc/0a838ba5ca64dc832aa43f727bd586309846b0ffb2ce52422543e6075e8a/typer-0.15.1-py3-none-any.whl", hash = "sha256:7994fb7b8155b64d3402518560648446072864beefd44aa2dc36972a5972e847", size = 44908 }, | ||||
|     { url = "https://files.pythonhosted.org/packages/7f/fc/5b29fea8cee020515ca82cc68e3b8e1e34bb19a3535ad854cac9257b414c/typer-0.15.2-py3-none-any.whl", hash = "sha256:46a499c6107d645a9c13f7ee46c5d5096cae6f5fc57dd11eccbbb9ae3e44ddfc", size = 45061 }, | ||||
| ] | ||||
|  | ||||
| [[package]] | ||||
|  | ||||
		Reference in New Issue
	
	Block a user
	