FitTrackee/fittrackee/__init__.py

203 lines
6.5 KiB
Python
Raw Normal View History

2017-12-16 21:00:46 +01:00
import logging
2018-04-10 21:53:18 +02:00
import os
import re
from importlib import import_module, reload
from typing import Any, Dict, Tuple
2017-12-16 21:00:46 +01:00
import redis
2022-02-13 10:21:22 +01:00
from flask import (
Flask,
Response,
render_template,
send_file,
send_from_directory,
)
2017-12-16 21:00:46 +01:00
from flask_bcrypt import Bcrypt
from flask_dramatiq import Dramatiq
from flask_limiter import Limiter
from flask_limiter.errors import RateLimitExceeded
from flask_limiter.util import get_remote_address
2018-01-20 19:12:34 +01:00
from flask_migrate import Migrate
2017-12-16 21:00:46 +01:00
from flask_sqlalchemy import SQLAlchemy
from sqlalchemy.exc import ProgrammingError
from werkzeug.middleware.proxy_fix import ProxyFix
2017-12-16 21:00:46 +01:00
2022-02-16 13:35:38 +01:00
from fittrackee.emails.email import EmailService
from fittrackee.request import CustomRequest
2023-05-29 14:35:09 +02:00
VERSION = __version__ = '0.7.16'
REDIS_URL = os.getenv('REDIS_URL', 'redis://')
API_RATE_LIMITS = os.environ.get('API_RATE_LIMITS', '300 per 5 minutes').split(
','
)
2020-09-18 08:49:48 +02:00
log_file = os.getenv('APP_LOG')
logging.basicConfig(
filename=log_file,
format='%(asctime)s - %(name)s - %(levelname)s - ' '%(message)s',
datefmt='%Y/%m/%d %H:%M:%S',
)
appLog = logging.getLogger('fittrackee')
2017-12-16 21:00:46 +01:00
db = SQLAlchemy()
bcrypt = Bcrypt()
migrate = Migrate()
email_service = EmailService()
dramatiq = Dramatiq()
limiter = Limiter(
key_func=get_remote_address,
default_limits=API_RATE_LIMITS, # type: ignore
default_limits_per_method=True,
headers_enabled=True,
storage_uri=REDIS_URL,
strategy='fixed-window',
)
# if redis is not available, disable the rate limiter
r = redis.from_url(REDIS_URL)
try:
r.ping()
except redis.exceptions.ConnectionError:
limiter.enabled = False
appLog.warning('Redis not available, API rate limits are disabled.')
2018-04-09 22:09:58 +02:00
class CustomFlask(Flask):
# add custom Request to handle user-agent parsing
# (removed in Werkzeug 2.1)
request_class = CustomRequest
def create_app(init_email: bool = True) -> Flask:
2018-04-09 22:09:58 +02:00
# instantiate the app
app = CustomFlask(
__name__, static_folder='dist/static', template_folder='dist'
)
2018-04-09 22:09:58 +02:00
# set config
with app.app_context():
app_settings = os.getenv(
'APP_SETTINGS', 'fittrackee.config.ProductionConfig'
)
if app_settings == 'fittrackee.config.TestingConfig':
# reload config on tests
config = import_module('fittrackee.config')
reload(config)
2018-04-10 21:53:18 +02:00
app.config.from_object(app_settings)
2018-04-09 22:09:58 +02:00
# set up extensions
db.init_app(app)
bcrypt.init_app(app)
migrate.init_app(app, db)
dramatiq.init_app(app)
limiter.init_app(app)
2018-04-09 22:09:58 +02:00
# set oauth2
from fittrackee.oauth2.config import config_oauth
config_oauth(app)
# set up email if 'EMAIL_URL' is initialized
if init_email:
if app.config['EMAIL_URL']:
email_service.init_email(app)
app.config['CAN_SEND_EMAILS'] = True
else:
appLog.warning(
'EMAIL_URL is not provided, email sending is deactivated.'
)
# get configuration from database
from .application.utils import (
get_or_init_config,
update_app_config_from_database,
)
with app.app_context():
# Note: check if "app_config" table exist to avoid errors when
# dropping tables on dev environments
try:
if db.engine.dialect.has_table(db.engine.connect(), 'app_config'):
db_app_config = get_or_init_config()
update_app_config_from_database(app, db_app_config)
except ProgrammingError as e:
# avoid error on AppConfig migration
if re.match(
r'psycopg2.errors.UndefinedColumn(.*)app_config.', str(e)
):
pass
from .application.app_config import config_blueprint # noqa
2022-06-19 20:04:42 +02:00
from .oauth2.routes import oauth2_blueprint # noqa
from .users.auth import auth_blueprint # noqa
from .users.users import users_blueprint # noqa
from .workouts.records import records_blueprint # noqa
from .workouts.sports import sports_blueprint # noqa
from .workouts.stats import stats_blueprint # noqa
from .workouts.workouts import workouts_blueprint # noqa
2018-04-09 22:09:58 +02:00
app.register_blueprint(auth_blueprint, url_prefix='/api')
2022-06-19 20:04:42 +02:00
app.register_blueprint(oauth2_blueprint, url_prefix='/api')
app.register_blueprint(config_blueprint, url_prefix='/api')
app.register_blueprint(records_blueprint, url_prefix='/api')
2018-05-01 16:17:12 +02:00
app.register_blueprint(sports_blueprint, url_prefix='/api')
2018-06-06 00:22:24 +02:00
app.register_blueprint(stats_blueprint, url_prefix='/api')
app.register_blueprint(users_blueprint, url_prefix='/api')
app.register_blueprint(workouts_blueprint, url_prefix='/api')
2018-04-09 22:09:58 +02:00
if app.debug:
logging.getLogger('sqlalchemy').setLevel(logging.WARNING)
2019-08-28 13:25:39 +02:00
logging.getLogger('sqlalchemy').handlers = logging.getLogger(
'werkzeug'
).handlers
2018-04-09 22:09:58 +02:00
logging.getLogger('sqlalchemy.orm').setLevel(logging.WARNING)
logging.getLogger('flake8').propagate = False
appLog.setLevel(logging.DEBUG)
# Enable CORS
@app.after_request # type: ignore
2021-01-02 19:28:03 +01:00
def after_request(response: Response) -> Response:
2018-04-09 22:09:58 +02:00
response.headers.add('Access-Control-Allow-Origin', '*')
response.headers.add(
'Access-Control-Allow-Headers', 'Content-Type,Authorization'
)
response.headers.add(
'Access-Control-Allow-Methods',
2019-08-28 13:25:39 +02:00
'GET,PUT,POST,DELETE,PATCH,OPTIONS',
2018-04-09 22:09:58 +02:00
)
return response
@app.errorhandler(429)
def rate_limit_handler(error: RateLimitExceeded) -> Tuple[Dict, int]:
return {
'status': 'error',
'message': f'rate limit exceeded ({error.description})',
}, 429
2020-09-16 15:53:05 +02:00
@app.route('/favicon.ico')
@limiter.exempt
2021-01-02 19:28:03 +01:00
def favicon() -> Any:
return send_file(
os.path.join(app.root_path, 'dist/favicon.ico') # type: ignore
)
2020-09-16 15:53:05 +02:00
@app.route('/', defaults={'path': ''})
@app.route('/<path:path>')
@limiter.exempt
2021-01-02 19:28:03 +01:00
def catch_all(path: str) -> Any:
2020-09-16 15:53:05 +02:00
# workaround to serve images (not in static directory)
if path.startswith('img/'):
2022-02-13 10:21:22 +01:00
return send_from_directory(
directory=os.path.join(
2021-01-02 19:28:03 +01:00
app.root_path, # type: ignore
'dist',
2022-02-13 10:21:22 +01:00
),
path=path,
2021-01-02 19:28:03 +01:00
)
2020-09-16 15:53:05 +02:00
else:
return render_template('index.html')
# to get headers, especially 'X-Forwarded-Proto' for scheme needed by
# Authlib, when the application is running behind a proxy server
app.wsgi_app = ProxyFix(app.wsgi_app) # type: ignore
2018-04-09 22:09:58 +02:00
return app