Share link implementation for followers

2025-06-11 16:40:40 +00:00 · 2023-02-22 16:00:04 +01:00
parent 4fab75f0e2
commit 3ad942f17b
5 changed files with 64 additions and 47 deletions
--- a/app/corpora/routes.py
+++ b/app/corpora/routes.py
@ -57,17 +57,27 @@ def disable_corpus_is_public(corpus_id):
@bp.route('/<hashid:corpus_id>/follow/<token>')
@login_required
 def follow_corpus(corpus_id, token):
-    try:    
+    corpus = Corpus.query.get_or_404(corpus_id)
+    try:
        payload = jwt.decode(
-            token,
-            current_app.config['SECRET_KEY'],
-            algorithms=['HS256'],
-            issuer=current_app.config['SERVER_NAME'],
-            options={'require': ['iat', 'iss', 'sub']}
-        )
+                token,
+                current_app.config['SECRET_KEY'],
+                algorithms=['HS256'],
+                issuer=current_app.config['SERVER_NAME'],
+                # options={'require': ['exp', 'iat', 'iss', 'sub']}
+                options={'require': ['exp', 'iat', 'iss']}
+            )
    except jwt.PyJWTError:
-        return False
-    return redirect(url_for('.corpus', corpus_id=corpus_id))
+        abort(403)
+    # permission = payload.get('sub')
+    expiration = payload.get('exp')
+    if expiration < int(datetime.utcnow().timestamp()):
+        abort(403)
+    if not current_user.is_following_corpus(corpus):
+        current_user.follow_corpus(corpus)
+        db.session.commit()
+        flash(f'You are following {corpus.title} now', category='corpus')
+    return redirect(url_for('corpora.corpus', corpus_id=corpus_id))


@bp.route('/<hashid:corpus_id>/followers/<hashid:follower_id>/unfollow', methods=['POST'])
@ -170,6 +180,9 @@ def create_corpus():
 def corpus(corpus_id):
    corpus = Corpus.query.get_or_404(corpus_id)
    exp_date = (datetime.utcnow() + timedelta(days=7)).strftime('%b %d, %Y')
+    print(corpus.user)
+    print(current_user)
+    print(current_user.is_following_corpus(corpus))
    if corpus.user == current_user or current_user.is_administrator():
        return render_template(
            'corpora/corpus.html.j2',
@ -191,15 +204,15 @@ def corpus(corpus_id):
@login_required
 def generate_corpus_share_link(corpus_id):
    data = request.get_json('data')
-    permission = data['permission']
-    expiration = data['expiration']
-    corpus = Corpus.query.get_or_404(corpus_id)
+    # permission = data['permission']
+    exp_data = data['expiration']
+    expiration = datetime.strptime(exp_data, '%b %d, %Y')
    now = datetime.utcnow()
    payload = {
            'exp': expiration,
            'iat': now,
-            'iss': current_app.config['SERVER_NAME'],
-            'sub': permission
+            'iss': current_app.config['SERVER_NAME']
+            # 'sub': permission
        }
    token = jwt.encode(
            payload,