dubey/spectra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 8 Wiki Activity

Compare commits

base: dubey:9c1e6f0e9415f661499bd6e56741e6699b6a2e5b
Branches Tags
dubey:main dubey:gridlayout
dubey:v1.1 dubey:v1.0.2 dubey:1.0.1 dubey:v1.0.1 dubey:1.0 dubey:0.1.0 dubey:v1.1.1 dubey:v1.0.3a dubey:v1.0.3
...
compare: dubey:v1.0.1
Branches Tags
dubey:main dubey:gridlayout
dubey:v1.1 dubey:v1.0.2 dubey:1.0.1 dubey:v1.0.1 dubey:1.0 dubey:0.1.0 dubey:v1.1.1 dubey:v1.0.3a dubey:v1.0.3

4 Commits
9c1e6f0e94 ... v1.0.1

Author SHA1 Message Date
Tanishq Dubey
07725c99b4 Add release process
All checks were successful
Docker Build and Publish / build (push) Successful in 6s
Details
Docker Build and Publish / build (release) Successful in 7s
Details
2024-11-05 23:49:09 -05:00
Tanishq Dubey
05a184fcf7 Sizing Fix
All checks were successful
Docker Build and Publish / build (push) Successful in 7s
Details
2024-11-05 22:11:45 -05:00
Tanishq Dubey
13e61b7bef remove duplicate secret key handling
All checks were successful
Docker Build and Publish / build (push) Successful in 6s
Details
2024-11-05 19:40:29 -05:00
Tanishq Dubey
4c993ebacd Secret Key
All checks were successful
Docker Build and Publish / build (push) Successful in 6s
Details
2024-11-05 19:36:44 -05:00
3 changed files with 38 additions and 13 deletions
Expand all files Collapse all files

12
.gitea/workflows/docker-publish.yml
View File

@ -3,9 +3,11 @@ name: Docker Build and Publish
on: on:
push: push:
branches: [ main ] branches: [ main ]
tags: [ 'v*' ] tags: [ 'v*.*.*' ]
pull_request: pull_request:
branches: [ main ] branches: [ main ]
release:
types: [published]
jobs: jobs:
build: build:
@ -20,11 +22,11 @@ jobs:
with: with:
images: git.dws.rip/${{ github.repository }} images: git.dws.rip/${{ github.repository }}
tags: | tags: |
type=ref,event=branch type=raw,value=latest,enable=${{ github.ref == 'refs/heads/main' }}
type=semver,pattern={{version}},enable=${{ startsWith(github.ref, 'refs/tags/v') }}
type=semver,pattern={{major}}.{{minor}},enable=${{ startsWith(github.ref, 'refs/tags/v') }}
type=sha,format=long
type=ref,event=pr type=ref,event=pr
type=semver,pattern={{version}}
type=semver,pattern={{major}}.{{minor}}
type=sha
- name: Login to Gitea Container Registry - name: Login to Gitea Container Registry
uses: docker/login-action@v2 uses: docker/login-action@v2

10
README.md
View File

@ -114,4 +114,12 @@ spectra/
- `FLASK_ENV`: Set to 'production' in production - `FLASK_ENV`: Set to 'production' in production
- `WORKERS`: Number of Gunicorn workers (default: 4) - `WORKERS`: Number of Gunicorn workers (default: 4)
- `PORT`: Override default port (default: 5000) - `PORT`: Override default port (default: 5000)
## Release Process
To create a release:
- Create and push a tag: `git tag v1.0.0 && git push origin v1.0.0`
- Create a release in Gitea UI using that tag
- The workflow will build and push the Docker image with appropriate version tags
- The Docker image will be available at: `git.dws.rip/your-repo/image:v1.0.0`

29
app.py
View File

@ -11,7 +11,6 @@ from datetime import datetime
from pathlib import Path from pathlib import Path
from logging import getLogger from logging import getLogger
import logging import logging
from logging import getLogger
from logging.config import dictConfig from logging.config import dictConfig
import toml import toml
@ -31,13 +30,31 @@ from models import Session as DBSession
from models import SiteConfig, init_db from models import SiteConfig, init_db
from steganography import embed_message, extract_message from steganography import embed_message, extract_message
# Add this function to handle secret key persistence
def get_or_create_secret_key():
"""Get existing secret key or create a new one"""
secret_key_file = Path("secret.key")
try:
if secret_key_file.exists():
logger.info("Loading existing secret key")
return secret_key_file.read_bytes()
else:
logger.info("Generating new secret key")
secret_key = os.urandom(32) # Use 32 bytes for better security
secret_key_file.write_bytes(secret_key)
return secret_key
except Exception as e:
logger.error(f"Error handling secret key: {e}")
# Fallback to a memory-only key if file operations fail
return os.urandom(32)
DEFAULT_CONFIG = { DEFAULT_CONFIG = {
"server": {"host": "0.0.0.0", "port": 5000}, "server": {"host": "0.0.0.0", "port": 5000},
"directories": {"upload": "uploads", "thumbnail": "thumbnails"}, "directories": {"upload": "uploads", "thumbnail": "thumbnails"},
"admin": {"password": secrets.token_urlsafe(16)}, # Generate secure random password "admin": {"password": secrets.token_urlsafe(16)}, # Generate secure random password
} }
# Add this logging configuration before creating the Flask app # Configure logging
dictConfig({ dictConfig({
'version': 1, 'version': 1,
'formatters': { 'formatters': {
@ -66,8 +83,9 @@ dictConfig({
# Get logger for this module # Get logger for this module
logger = getLogger(__name__) logger = getLogger(__name__)
# Create Flask app with persistent secret key
app = Flask(__name__) app = Flask(__name__)
app.secret_key = os.urandom(24) app.secret_key = get_or_create_secret_key()
def allowed_file(filename): def allowed_file(filename):
return '.' in filename and filename.rsplit('.', 1)[1].lower() in ALLOWED_EXTENSIONS return '.' in filename and filename.rsplit('.', 1)[1].lower() in ALLOWED_EXTENSIONS
@ -211,9 +229,6 @@ limiter = Limiter(
storage_uri="memory://", storage_uri="memory://",
) )
# Generate a strong secret key at startup
app.secret_key = secrets.token_hex(32)
@app.before_request @app.before_request
def before_request(): def before_request():
g.csp_nonce = secrets.token_hex(16) g.csp_nonce = secrets.token_hex(16)
@ -274,7 +289,7 @@ def get_images():
images = [] images = []
for photo in photos: for photo in photos:
factor = random.randint(2, 3) factor = random.randint(2, 3)
if photo.height < 4000 or photo.width < 4000: if photo.height < 4000 and photo.width < 4000:
factor = 1 factor = 1
if photo.orientation == 6 or photo.orientation == 8: if photo.orientation == 6 or photo.orientation == 8:
width, height = photo.height, photo.width width, height = photo.height, photo.width