anonkun/database.py

#!/usr/bin/env python3
"""
Database tools and functions.
"""
import MySQLdb
from flask import session
from passlib.hash import argon2

class Database():
	"""
	An interface to interact with the database.
	"""
	def __init__(self):
		"""
		Initalizes the database.
		"""
		with open("db_key", "r") as file:
			# TODO: encrypt this 
			self.user, self.db, self.key = file.read().strip().split()
		try:
			self.execute("SELECT * FROM `users`").fetchone()
		except MySQLdb.ProgrammingError: # database not initialized
			with open("anonkun.sql", "r") as file:
				commands = file.read().split(";")
			for cmd in commands:
				cmd = cmd.strip()
				if not cmd:
					continue
				self.execute(cmd)


	def execute(self, *args, **kwargs):
		"""
		Opens a connection to the app's database and executes the SQL
		statements passed to this function.
		"""
		with MySQLdb.connect(
				user=self.user,
				passwd=self.key,
				db=self.db,
				charset='utf8mb4') as cur:
			cur.execute(*args, **kwargs)
			return cur

_DB = Database()


def add_user(username, password, timestamp):
	"""
	Adds a user to the database.
	"""
	if verify_username(username): # username taken
		return "username_taken"
	elif len(username) > 20:
		return "username_too_long"

	pw_hash = argon2.hash(password)
	_DB.execute(
		"INSERT INTO `users` (`username`, `password_hash`, `signup_date`) " \
		+ "VALUES (%s, %s, %s)", (username, pw_hash, timestamp))
	return "success"


def verify_password(username, password):
	"""
	Verifies a user's password.
	"""
	user = verify_username(username)
	if not user:
		return False

	user_id, _, pw_hash, _ = user

	if argon2.verify(password, pw_hash):
		session["user_id"] = user_id
		return True
	else:
		return False


def verify_username(username):
	"""
	Checks to see if the given username is in the database.
	"""
	user = _DB.execute("SELECT * FROM `users` WHERE `username` = %s",
		(username,)).fetchone()
	if user:
		return user
	else:
		return False


def log_chat_message(data):
	"""
	Logs chat messages into the database.
	'data' should be a dict containing: message, date, room_id, name, and
	user_id (optional).
	"""
	message = data["message"]
	date = data["date"]
	room_id = int(data["room"])
	name = data["name"]
	user_id = data.get("user_id")
	_DB.execute(
		"INSERT INTO `chat_messages` (" \
		+ "`message`, `room_id`, `date`, `name`, `name_id`) VALUES (" \
		+ "%s, %s, %s, %s, %s)", (message, room_id, date, name, user_id))


def get_chat_messages(room_id):
	"""
	Retrieves all chat messages for the provided room_id.
	"""
	res = _DB.execute(
		"SELECT * FROM `chat_messages` WHERE `room_id` = %s " \
		+ "ORDER BY `date` ASC", (room_id,)).fetchall()
	return res


def insert_quest(canon_title, ident_title, owner_id):
	"""
	Creates a new quest entry.
	"""
	_DB.execute(
		"INSERT INTO `quest_meta` (`canon_title`, `ident_title`, `owner_id`) "\
		+ "VALUES (%s, %s, %s)", (canon_title, ident_title, owner_id))
	quest_id = _DB.execute(
		"SELECT `quest_id` FROM `quest_meta` WHERE `ident_title` = %s",
		(ident_title,)).fetchone()[0]
	return quest_id


def insert_quest_post(quest_id, post, timestamp):
	"""
	Insers a new quest post.
	"""
	_DB.execute(
		"INSERT INTO `quest_data` (`quest_id`, `post`, `timestamp`) " \
		+ "VALUES (%s, %s, %s)", (quest_id, post, timestamp))
	post_id = _DB.execute(
		"SELECT `post_id` FROM `quest_data` WHERE `quest_id` = %s " \
		+ "ORDER BY `post_id` DESC", (quest_id,)).fetchone()[0]
	return post_id


def get_quest_meta(quest_id=None, ident_title=None):
	"""
	Retrieves all meta info about a quest. Allows searching by either
	quest_id or ident_title.
	"""
	statement = "SELECT * FROM `quest_meta` WHERE "
	if quest_id:
		statement += "`quest_id` = %s"
		data = _DB.execute(statement, (quest_id,)).fetchone()
	elif ident_title:
		statement += "`ident_title` = %s"
		data = _DB.execute(statement, (ident_title,)).fetchone()
	else:
		return
	return data


def get_quest_data(quest_id):
	"""
	Retrieves all quest posts.
	"""
	data = _DB.execute("SELECT * FROM `quest_data` WHERE `quest_id` = %s",
		(quest_id,)).fetchall()
	return data


def get_user_info(username):
	"""
	Retrives relevant user data.
	"""
	data = _DB.execute(
		"SELECT `user_id`, `signup_date` FROM `users` WHERE `username` = %s",
		(username,)).fetchone()
	return data


def get_user_quests(user_id):
	"""
	Retrieves all quests ran by a particular user_id.
	"""
	data = _DB.execute(
		"SELECT * FROM `quest_meta` WHERE `owner_id` = %s",
		(user_id,)).fetchall()
	return data


def update_quest_post(post_id, new_post):
	"""
	Updates a quest post.
	"""
	_DB.execute(
		"UPDATE `quest_data` SET `post` = %s WHERE `post_id` = %s",
		(new_post, post_id))
split application into multiple modules 2018-06-16 18:52:46 -04:00			`#!/usr/bin/env python3`
			`"""`
			`Database tools and functions.`
			`"""`
			`import MySQLdb`
			`from flask import session`
			`from passlib.hash import argon2`

			`class Database():`
			`"""`
			`An interface to interact with the database.`
			`"""`
			`def __init__(self):`
			`"""`
			`Initalizes the database.`
			`"""`
			`with open("db_key", "r") as file:`
			`# TODO: encrypt this`
			`self.user, self.db, self.key = file.read().strip().split()`
			`try:`
			self.execute("SELECT * FROM `users`").fetchone()
			`except MySQLdb.ProgrammingError: # database not initialized`
			`with open("anonkun.sql", "r") as file:`
			`commands = file.read().split(";")`
			`for cmd in commands:`
			`cmd = cmd.strip()`
			`if not cmd:`
			`continue`
			`self.execute(cmd)`


			`def execute(self, args, *kwargs):`
			`"""`
			`Opens a connection to the app's database and executes the SQL`
			`statements passed to this function.`
			`"""`
fix connection encoding issue. emoji work now 2018-06-27 10:17:05 -04:00			`with MySQLdb.connect(`
			`user=self.user,`
			`passwd=self.key,`
			`db=self.db,`
			`charset='utf8mb4') as cur:`
split application into multiple modules 2018-06-16 18:52:46 -04:00			`cur.execute(args, *kwargs)`
			`return cur`

			`_DB = Database()`


added profile page 2018-06-21 11:00:24 -04:00			`def add_user(username, password, timestamp):`
split application into multiple modules 2018-06-16 18:52:46 -04:00			`"""`
			`Adds a user to the database.`
			`"""`
			`if verify_username(username): # username taken`
			`return "username_taken"`
			`elif len(username) > 20:`
			`return "username_too_long"`

			`pw_hash = argon2.hash(password)`
			`_DB.execute(`
added profile page 2018-06-21 11:00:24 -04:00			"INSERT INTO `users` (`username`, `password_hash`, `signup_date`) " \
			`+ "VALUES (%s, %s, %s)", (username, pw_hash, timestamp))`
split application into multiple modules 2018-06-16 18:52:46 -04:00			`return "success"`


			`def verify_password(username, password):`
			`"""`
			`Verifies a user's password.`
			`"""`
			`user = verify_username(username)`
			`if not user:`
			`return False`

added editing posts in place 2018-06-21 20:44:43 -04:00			`user_id, _, pw_hash, _ = user`
split application into multiple modules 2018-06-16 18:52:46 -04:00
			`if argon2.verify(password, pw_hash):`
			`session["user_id"] = user_id`
			`return True`
			`else:`
			`return False`


			`def verify_username(username):`
			`"""`
			`Checks to see if the given username is in the database.`
			`"""`
			user = _DB.execute("SELECT * FROM `users` WHERE `username` = %s",
			`(username,)).fetchone()`
			`if user:`
			`return user`
			`else:`
			`return False`
log and retrieve chat messages 2018-06-17 21:10:41 -04:00

			`def log_chat_message(data):`
			`"""`
			`Logs chat messages into the database.`
			`'data' should be a dict containing: message, date, room_id, name, and`
			`user_id (optional).`
			`"""`
			`message = data["message"]`
			`date = data["date"]`
			`room_id = int(data["room"])`
			`name = data["name"]`
			`user_id = data.get("user_id")`
			`_DB.execute(`
			"INSERT INTO `chat_messages` (" \
			+ "`message`, `room_id`, `date`, `name`, `name_id`) VALUES (" \
			`+ "%s, %s, %s, %s, %s)", (message, room_id, date, name, user_id))`


			`def get_chat_messages(room_id):`
			`"""`
			`Retrieves all chat messages for the provided room_id.`
			`"""`
			`res = _DB.execute(`
			"SELECT * FROM `chat_messages` WHERE `room_id` = %s " \
			+ "ORDER BY `date` ASC", (room_id,)).fetchall()
			`return res`
split quests table, added ability to update quest 2018-06-20 13:07:11 -04:00

			`def insert_quest(canon_title, ident_title, owner_id):`
			`"""`
			`Creates a new quest entry.`
			`"""`
			`_DB.execute(`
			"INSERT INTO `quest_meta` (`canon_title`, `ident_title`, `owner_id`) "\
			`+ "VALUES (%s, %s, %s)", (canon_title, ident_title, owner_id))`
			`quest_id = _DB.execute(`
			"SELECT `quest_id` FROM `quest_meta` WHERE `ident_title` = %s",
			`(ident_title,)).fetchone()[0]`
			`return quest_id`


			`def insert_quest_post(quest_id, post, timestamp):`
			`"""`
			`Insers a new quest post.`
			`"""`
			`_DB.execute(`
			"INSERT INTO `quest_data` (`quest_id`, `post`, `timestamp`) " \
fixed new posts not displaying correctly, dicecall frontend 2018-07-04 17:20:47 -04:00			`+ "VALUES (%s, %s, %s)", (quest_id, post, timestamp))`
			`post_id = _DB.execute(`
			"SELECT `post_id` FROM `quest_data` WHERE `quest_id` = %s " \
			+ "ORDER BY `post_id` DESC", (quest_id,)).fetchone()[0]
			`return post_id`
split quests table, added ability to update quest 2018-06-20 13:07:11 -04:00

added editing posts in place 2018-06-21 20:44:43 -04:00			`def get_quest_meta(quest_id=None, ident_title=None):`
split quests table, added ability to update quest 2018-06-20 13:07:11 -04:00			`"""`
added editing posts in place 2018-06-21 20:44:43 -04:00			`Retrieves all meta info about a quest. Allows searching by either`
			`quest_id or ident_title.`
split quests table, added ability to update quest 2018-06-20 13:07:11 -04:00			`"""`
added editing posts in place 2018-06-21 20:44:43 -04:00			statement = "SELECT * FROM `quest_meta` WHERE "
			`if quest_id:`
			statement += "`quest_id` = %s"
			`data = _DB.execute(statement, (quest_id,)).fetchone()`
			`elif ident_title:`
			statement += "`ident_title` = %s"
			`data = _DB.execute(statement, (ident_title,)).fetchone()`
			`else:`
			`return`
split quests table, added ability to update quest 2018-06-20 13:07:11 -04:00			`return data`


			`def get_quest_data(quest_id):`
			`"""`
			`Retrieves all quest posts.`
			`"""`
			data = _DB.execute("SELECT * FROM `quest_data` WHERE `quest_id` = %s",
			`(quest_id,)).fetchall()`
			`return data`
added profile page 2018-06-21 11:00:24 -04:00

			`def get_user_info(username):`
			`"""`
			`Retrives relevant user data.`
			`"""`
			`data = _DB.execute(`
			"SELECT `user_id`, `signup_date` FROM `users` WHERE `username` = %s",
			`(username,)).fetchone()`
			`return data`


			`def get_user_quests(user_id):`
			`"""`
			`Retrieves all quests ran by a particular user_id.`
			`"""`
			`data = _DB.execute(`
			"SELECT * FROM `quest_meta` WHERE `owner_id` = %s",
			`(user_id,)).fetchall()`
			`return data`
added editing posts in place 2018-06-21 20:44:43 -04:00

			`def update_quest_post(post_id, new_post):`
			`"""`
			`Updates a quest post.`
			`"""`
			`_DB.execute(`
			"UPDATE `quest_data` SET `post` = %s WHERE `post_id` = %s",
			`(new_post, post_id))`