# Copyright © Fundacja Nowoczesna Polska. See NOTICE for more information.
#
from datetime import datetime
+import json
import os
import logging
from time import mktime
from django.conf import settings
from django.urls import reverse
from django import http
-from django.http import Http404, HttpResponseForbidden
+from django.http import Http404, HttpResponse, HttpResponseForbidden, HttpResponseBadRequest
from django.middleware.gzip import GZipMiddleware
from django.utils.decorators import decorator_from_middleware
from django.utils.formats import localize
from sorl.thumbnail import get_thumbnail
from documents.models import Book, Chunk
+import sources.models
from . import nice_diff
from wiki import forms
from wiki.helpers import (JSONResponse, JSONFormInvalid, JSONServerError,
MAX_LAST_DOCS = 10
+class HttpResponseLengthRequired(HttpResponse):
+ status_code = 411
+
+
@never_cache
def editor(request, slug, chunk=None, template_name='wiki/document_details.html'):
try:
return HttpResponseForbidden("Not authorized.")
if request.method == 'POST':
+ # Check length to reject broken request.
+ try:
+ expected_cl = int(request.META['CONTENT_LENGTH'])
+ except:
+ return HttpResponseLengthRequired(json.dumps(
+ {"__message": _("Content length required.")}
+ ))
+ # 411 if missing
+ cl = len(request.body)
+ if cl != expected_cl:
+ return HttpResponseBadRequest(json.dumps(
+ {"__message": _("Wrong content length, request probably interrupted.")}
+ ))
+
form = forms.DocumentTextSaveForm(request.POST, user=request.user, prefix="textsave")
if form.is_valid():
if request.user.is_authenticated:
raise http.Http404
+@never_cache
+def scans_list(request, pks):
+ pks = pks.split(',')
+ bss = [
+ get_object_or_404(sources.models.BookSource, pk=pk)
+ for pk in pks
+ ]
+ def map_to_url(filename):
+ return quote(("%s/%s" % (settings.MEDIA_URL, filename)))
+ images = []
+ for bs in bss:
+ images.extend([
+ {
+ "url": map_to_url(f),
+ } for f in bs.get_view_files()
+ ])
+ return JSONResponse(images)
+
+
@never_cache
def diff(request, chunk_id):
revA = int(request.GET.get('from', 0))
if not doc.book.accessible(request):
return HttpResponseForbidden("Not authorized.")
+ history = doc.history()
+ try:
+ before = int(request.GET.get('before'))
+ except:
+ pass
+ else:
+ history = history.filter(revision__lt=before)
changes = []
- for change in doc.history().reverse():
+ for change in history.reverse()[:20]:
changes.append({
"version": change.revision,
"description": change.description,
"author": change.author_str(),
"date": localize(change.created_at),
- "publishable": _("Publishable") + "\n" if change.publishable else "",
+ "publishable": change.publishable,
"tag": ',\n'.join(str(tag) for tag in change.tags.all()),
"published": _("Published") + ": " + \
localize(change.publish_log.order_by('-book_record__timestamp')[0].book_record.timestamp) \
return JSONFormInvalid(form)
+@require_POST
+@ajax_require_permission('documents.book_edit')
+def set_gallery(request, chunk_id):
+ doc = get_object_or_404(Chunk, pk=chunk_id)
+ book = doc.book
+ book.gallery = request.POST['gallery']
+ book.save(update_fields=['gallery'])
+ return JSONResponse({})
+
+@require_POST
+@ajax_require_permission('documents.chunk_edit')
+def set_gallery_start(request, chunk_id):
+ doc = get_object_or_404(Chunk, pk=chunk_id)
+ doc.gallery_start = request.POST['start']
+ doc.save(update_fields=['gallery_start'])
+ return JSONResponse({})
+
+@ajax_require_permission('documents.chunk_edit')
+def galleries(request):
+ return JSONResponse(
+ sorted(
+ os.listdir(
+ os.path.join(
+ settings.MEDIA_ROOT,
+ settings.IMAGE_DIR,
+ )
+ )
+ )
+ )
+
def themes(request):
prefix = request.GET.get('q', '')
return http.HttpResponse('\n'.join([str(t) for t in Theme.objects.filter(name__istartswith=prefix)]))