mirror of
https://github.com/onionshare/onionshare.git
synced 2025-01-10 11:47:27 -03:00
237 lines
8.4 KiB
Python
237 lines
8.4 KiB
Python
# -*- coding: utf-8 -*-
|
|
"""
|
|
OnionShare | https://onionshare.org/
|
|
|
|
Copyright (C) 2014-2022 Micah Lee, et al. <micah@micahflee.com>
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
"""
|
|
import unicodedata
|
|
|
|
from flask import request, render_template, make_response, jsonify, session
|
|
from flask_socketio import emit, ConnectionRefusedError
|
|
|
|
|
|
class ChatModeWeb:
|
|
"""
|
|
All of the web logic for chat mode
|
|
"""
|
|
|
|
def __init__(self, common, web):
|
|
self.common = common
|
|
self.common.log("ChatModeWeb", "__init__")
|
|
|
|
self.web = web
|
|
|
|
# This tracks users in the server
|
|
self.connected_users = []
|
|
|
|
# This tracks the history id
|
|
self.cur_history_id = 0
|
|
|
|
# Whether or not we can send REQUEST_INDIVIDUAL_FILE_STARTED
|
|
# and maybe other events when requests come in to this mode
|
|
# Chat mode has no concept of individual file requests that
|
|
# turn into history widgets in the GUI, so set it to False
|
|
self.supports_file_requests = False
|
|
|
|
self.define_routes()
|
|
|
|
def remove_unallowed_characters(self, text):
|
|
"""
|
|
Sanitize username to remove unwanted characters.
|
|
Allowed characters right now are:
|
|
- all ASCII numbers
|
|
- all ASCII letters
|
|
- dash, underscore and single space
|
|
"""
|
|
|
|
def allowed_character(ch):
|
|
allowed_unicode_categories = [
|
|
'L', # All letters
|
|
'N', # All numbers
|
|
]
|
|
allowed_special_characters = [
|
|
'-', # dash
|
|
'_', # underscore
|
|
' ', # single space
|
|
]
|
|
return (
|
|
unicodedata.category(ch)[0] in allowed_unicode_categories and ord(ch) < 128
|
|
) or ch in allowed_special_characters
|
|
|
|
return "".join(
|
|
ch for ch in text if allowed_character(ch)
|
|
)
|
|
|
|
def validate_username(self, username):
|
|
try:
|
|
username = self.remove_unallowed_characters(username.strip())
|
|
return (
|
|
username
|
|
and username not in self.connected_users
|
|
and len(username) < 128
|
|
)
|
|
except Exception as e:
|
|
self.common.log("ChatModeWeb", "validate_username", e)
|
|
return False
|
|
|
|
def define_routes(self):
|
|
"""
|
|
The web app routes for chatting
|
|
"""
|
|
|
|
@self.web.app.route("/", methods=["GET"], provide_automatic_options=False)
|
|
def index():
|
|
history_id = self.cur_history_id
|
|
self.cur_history_id += 1
|
|
session["name"] = (
|
|
session.get("name")
|
|
if session.get("name")
|
|
else self.common.build_username()
|
|
)
|
|
self.web.add_request(
|
|
request.path,
|
|
{"id": history_id, "status_code": 200},
|
|
)
|
|
|
|
self.web.add_request(self.web.REQUEST_LOAD, request.path)
|
|
return render_template(
|
|
"chat.html",
|
|
static_url_path=self.web.static_url_path,
|
|
username=session.get("name"),
|
|
title=self.web.settings.get("general", "title"),
|
|
)
|
|
|
|
@self.web.app.route(
|
|
"/update-session-username",
|
|
methods=["POST"],
|
|
provide_automatic_options=False,
|
|
)
|
|
def update_session_username():
|
|
history_id = self.cur_history_id
|
|
data = request.get_json()
|
|
username = data.get("username", session.get("name")).strip()
|
|
if self.validate_username(username):
|
|
session["name"] = username
|
|
self.web.add_request(
|
|
request.path,
|
|
{"id": history_id, "status_code": 200},
|
|
)
|
|
|
|
self.web.add_request(self.web.REQUEST_LOAD, request.path)
|
|
r = make_response(
|
|
jsonify(
|
|
username=session.get("name"),
|
|
success=True,
|
|
)
|
|
)
|
|
else:
|
|
self.web.add_request(
|
|
request.path,
|
|
{"id": history_id, "status_code": 403},
|
|
)
|
|
|
|
r = make_response(
|
|
jsonify(
|
|
username=session.get("name"),
|
|
success=False,
|
|
)
|
|
)
|
|
return r
|
|
|
|
@self.web.socketio.on("connect", namespace="/chat")
|
|
def server_connect():
|
|
"""Sent by clients when they enter a room.
|
|
A status message is broadcast to all people in the room."""
|
|
if self.validate_username(session.get("name")):
|
|
self.connected_users.append(session.get("name"))
|
|
# Store the session id for the user
|
|
session["socketio_session_id"] = request.sid
|
|
emit(
|
|
"status",
|
|
{
|
|
"username": session.get("name"),
|
|
"msg": "{} has joined.".format(session.get("name")),
|
|
"connected_users": self.connected_users,
|
|
"user": session.get("name"),
|
|
},
|
|
broadcast=True,
|
|
)
|
|
else:
|
|
raise ConnectionRefusedError('Invalid session')
|
|
|
|
@self.web.socketio.on("text", namespace="/chat")
|
|
def text(message):
|
|
"""Sent by a client when the user entered a new message.
|
|
The message is sent to all people in the server."""
|
|
emit(
|
|
"chat_message",
|
|
{"username": session.get("name"), "msg": message["msg"]},
|
|
broadcast=True,
|
|
)
|
|
|
|
@self.web.socketio.on("update_username", namespace="/chat")
|
|
def update_username(message):
|
|
"""Sent by a client when the user updates their username.
|
|
The message is sent to all people in the server."""
|
|
current_name = session.get("name")
|
|
new_name = message.get("username", "").strip()
|
|
if self.validate_username(new_name):
|
|
session["name"] = new_name
|
|
self.connected_users[self.connected_users.index(current_name)] = (
|
|
session.get("name")
|
|
)
|
|
emit(
|
|
"status",
|
|
{
|
|
"msg": "{} has updated their username to: {}".format(
|
|
current_name, session.get("name")
|
|
),
|
|
"connected_users": self.connected_users,
|
|
"old_name": current_name,
|
|
"new_name": session.get("name"),
|
|
},
|
|
broadcast=True,
|
|
)
|
|
else:
|
|
emit(
|
|
"status",
|
|
{"msg": "Failed to update username."},
|
|
)
|
|
|
|
@self.web.socketio.on("disconnect", namespace="/chat")
|
|
def disconnect():
|
|
"""Sent by clients when they disconnect.
|
|
A status message is broadcast to all people in the server."""
|
|
user_already_disconnected = False
|
|
if session.get("name") in self.connected_users:
|
|
self.connected_users.remove(session.get("name"))
|
|
else:
|
|
user_already_disconnected = True
|
|
|
|
# Forcefully disconnect the user
|
|
self.web.socketio.server.disconnect(
|
|
sid=session.get("socketio_session_id"), namespace="/chat"
|
|
)
|
|
|
|
if not user_already_disconnected:
|
|
emit(
|
|
"status",
|
|
{
|
|
"msg": "{} has left the room.".format(session.get("name")),
|
|
"connected_users": self.connected_users,
|
|
},
|
|
broadcast=True,
|
|
)
|