nova-web/web/account.py

import os
import flask
import requests

from dotenv import load_dotenv
from requests_oauthlib import OAuth2Session

load_dotenv()

os.environ['OAUTHLIB_INSECURE_TRANSPORT'] = '0' # change this to '1' if you're running this on localhost!

API_URL = 'https://discordapp.com/api'
CLIENT_ID = str(os.environ['DISCORD_CLIENT_ID'])
CLIENT_SECRET = os.environ['DISCORD_CLIENT_SECRET']
# REDIRECT_URI = 'https://nova-oss.com/callback/discord'
REDIRECT_URI = 'http://localhost:2211/callback/discord'
SCOPES = ['identify']

def get_user(discord_id: int) -> dict:
    return requests.get(
        url=f'http://localhost:2333/users?discord_id={discord_id}',
        timeout=3,
        headers={
            'Content-Type': 'application/json',
            'Authorization': os.getenv('CORE_API_KEY')
        }
    ).json()

def register(app):
    @app.route('/logout')
    def logout():
        flask.session = {}
        return flask.redirect('/')

    @app.route('/account')
    def account_view():
        discord_id = flask.session.get('discord_id')

        if not discord_id:
            return flask.redirect('/login')

        discord_account = OAuth2Session(CLIENT_ID, token=flask.session['discord_token'])
        profile = discord_account.get(f'{API_URL}/users/@me').json()

        db_user = get_user(discord_id)

        user = {
            'name': profile['username'],
            'avatar': profile['avatar'],
            'role': db_user['role'],
            'credits': db_user['credits'],
            'api_key': db_user['api_key']
        }

        return flask.render_template('account.html', user=user)

    @app.route('/login')
    def login_view():
        return flask.render_template('login.html')

    @app.route('/auth/discord', methods=['POST', 'GET'])
    def auth_view():
        """Redirect to Discord's OAuth2 authorization page."""

        oauth = OAuth2Session(CLIENT_ID, redirect_uri=REDIRECT_URI, scope=SCOPES)
        login_url, state = oauth.authorization_url(f'{API_URL}/oauth2/authorize')
        flask.session['state'] = state

        return flask.redirect(login_url)

    @app.route('/callback/discord')
    def callback():
        """Handle the OAuth2 callback and log the user in."""
        if flask.request.args.get('code'): # OAUTH CALLBACK/REDIRECT
            discord_account = OAuth2Session(CLIENT_ID, redirect_uri=REDIRECT_URI, state=flask.session.get('state'), scope=SCOPES)
            token = discord_account.fetch_token(
                f'{API_URL}/oauth2/token',
                client_secret=CLIENT_SECRET,
                authorization_response=flask.request.url,
            )
            flask.session['discord_token'] = token

            print('Token:', token)

            return flask.redirect('/account')

        if flask.session.get('discord_token'): # ALREADY LOGGED IN
            print('Already logged in.')
            discord_account = OAuth2Session(CLIENT_ID, token=flask.session['discord_token'])

            try:
                profile = discord_account.get(f'{API_URL}/users/@me').json()
            except Exception as e:
                return f'Your token has expired. Please try logging in again.'

            flask.session.permanent = True
            flask.session['discord_id'] = profile['id']

            return flask.redirect('/') # DONE
We have more users now <3 2023-09-14 22:42:12 +02:00			`import os`
			`import flask`
			`import requests`

			`from dotenv import load_dotenv`
			`from requests_oauthlib import OAuth2Session`

			`load_dotenv()`

			`os.environ['OAUTHLIB_INSECURE_TRANSPORT'] = '0' # change this to '1' if you're running this on localhost!`

			`API_URL = 'https://discordapp.com/api'`
			`CLIENT_ID = str(os.environ['DISCORD_CLIENT_ID'])`
			`CLIENT_SECRET = os.environ['DISCORD_CLIENT_SECRET']`
			`# REDIRECT_URI = 'https://nova-oss.com/callback/discord'`
			`REDIRECT_URI = 'http://localhost:2211/callback/discord'`
			`SCOPES = ['identify']`

			`def get_user(discord_id: int) -> dict:`
			`return requests.get(`
			`url=f'http://localhost:2333/users?discord_id={discord_id}',`
			`timeout=3,`
			`headers={`
			`'Content-Type': 'application/json',`
			`'Authorization': os.getenv('CORE_API_KEY')`
			`}`
			`).json()`

			`def register(app):`
			`@app.route('/logout')`
			`def logout():`
			`flask.session = {}`
			`return flask.redirect('/')`

			`@app.route('/account')`
			`def account_view():`
			`discord_id = flask.session.get('discord_id')`

			`if not discord_id:`
			`return flask.redirect('/login')`

			`discord_account = OAuth2Session(CLIENT_ID, token=flask.session['discord_token'])`
			`profile = discord_account.get(f'{API_URL}/users/@me').json()`

			`db_user = get_user(discord_id)`

			`user = {`
			`'name': profile['username'],`
			`'avatar': profile['avatar'],`
			`'role': db_user['role'],`
			`'credits': db_user['credits'],`
			`'api_key': db_user['api_key']`
			`}`

			`return flask.render_template('account.html', user=user)`

			`@app.route('/login')`
			`def login_view():`
			`return flask.render_template('login.html')`

			`@app.route('/auth/discord', methods=['POST', 'GET'])`
			`def auth_view():`
			`"""Redirect to Discord's OAuth2 authorization page."""`

			`oauth = OAuth2Session(CLIENT_ID, redirect_uri=REDIRECT_URI, scope=SCOPES)`
			`login_url, state = oauth.authorization_url(f'{API_URL}/oauth2/authorize')`
			`flask.session['state'] = state`

			`return flask.redirect(login_url)`

			`@app.route('/callback/discord')`
			`def callback():`
			`"""Handle the OAuth2 callback and log the user in."""`
			`if flask.request.args.get('code'): # OAUTH CALLBACK/REDIRECT`
			`discord_account = OAuth2Session(CLIENT_ID, redirect_uri=REDIRECT_URI, state=flask.session.get('state'), scope=SCOPES)`
			`token = discord_account.fetch_token(`
			`f'{API_URL}/oauth2/token',`
			`client_secret=CLIENT_SECRET,`
			`authorization_response=flask.request.url,`
			`)`
			`flask.session['discord_token'] = token`

			`print('Token:', token)`

			`return flask.redirect('/account')`

			`if flask.session.get('discord_token'): # ALREADY LOGGED IN`
			`print('Already logged in.')`
			`discord_account = OAuth2Session(CLIENT_ID, token=flask.session['discord_token'])`

			`try:`
			`profile = discord_account.get(f'{API_URL}/users/@me').json()`
			`except Exception as e:`
			`return f'Your token has expired. Please try logging in again.'`

			`flask.session.permanent = True`
			`flask.session['discord_id'] = profile['id']`

			`return flask.redirect('/') # DONE`