Fixed .gitignore, added css, and a README.md

server/app.py

@@ -9,7 +9,7 @@ from zipfile import ZipFile
 from preview import generate_preview  # Import the preview module
 from rename import rename_file  # Import the rename module
 
-app = Flask(__name__, template_folder='../templates')
+app = Flask(__name__, template_folder='../templates', static_folder='../static')
 app.secret_key = os.urandom(24)
 talisman = Talisman(app, content_security_policy={
     'default-src': ["'self'"],

server/app.py.bak

@@ -1,177 +0,0 @@
-from flask import Flask, request, render_template, redirect, url_for, session, send_from_directory
-from flask_talisman import Talisman
-from functools import wraps
-import os
-from security import validate_user
-from data_handler import save_link, save_file, retrieve_uploads, handle_download, get_file_path
-from datetime import datetime
-
-app = Flask(__name__, template_folder='../templates')
-app.secret_key = os.urandom(24)
-talisman = Talisman(app, content_security_policy={
-    'default-src': ["'self'"],
-    'script-src': ["'self'", "'unsafe-inline'"]
-})
-
-UPLOAD_DIRECTORY = "../assets"
-if not os.path.exists(UPLOAD_DIRECTORY):
-    os.makedirs(UPLOAD_DIRECTORY)
-
-DOWNLOADS_DIRECTORY = os.path.expanduser("~/Downloads")
-if not os.path.exists(DOWNLOADS_DIRECTORY):
-    os.makedirs(DOWNLOADS_DIRECTORY)
-
-def login_required(f):
-    @wraps(f)
-    def decorated_function(*args, **kwargs):
-        if 'username' not in session:
-            print("User is not logged in, redirecting to login page")
-            return redirect(url_for('login', next=request.url))
-        print("User is logged in, proceeding to requested page")
-        return f(*args, **kwargs)
-    return decorated_function
-
-@app.before_request
-def ensure_login():
-    if 'username' not in session and request.endpoint not in ('login', 'static'):
-        return redirect(url_for('login'))
-
-@app.route('/')
-@login_required
-def index():
-    return render_template("index.html")
-
-@app.route('/login', methods=['GET', 'POST'])
-def login():
-    if request.method == 'POST':
-        username = request.form['username']
-        password = request.form['password']
-        valid, message = validate_user(username, password)
-        
-        if valid:
-            session['username'] = username
-            return redirect(url_for('index'))
-        else:
-            return render_template("login.html", error=message)
-
-    return render_template("login.html")
-
-@app.route('/logout')
-def logout():
-    session.clear()
-    return redirect(url_for('login'))
-
-@app.route('/upload/link', methods=['POST'])
-@login_required
-def upload_link():
-    link = request.form['link']
-    uploader = session['username']
-    save_link(uploader, link)
-    return redirect(url_for('index'))
-
-@app.route('/upload/files', methods=['POST'])
-@login_required
-def upload_files():
-    if 'files' not in request.files:
-        return redirect(url_for('index'))
-    
-    files = request.files.getlist('files')
-    uploader = session['username']
-    
-    for file in files:
-        save_file(uploader, file)
-    
-    return redirect(url_for('index'))
-
-@app.route('/uploads')
-@login_required
-def view_uploads():
-    uploads = retrieve_uploads()
-    
-    links = [upload for upload in uploads if upload[2] == 'link']
-    videos = [upload for upload in uploads if upload[2] == 'file' and upload[3].lower().endswith(('.mp4', '.mkv', '.avi'))]
-    photos = [upload for upload in uploads if upload[2] == 'file' and upload[3].lower().endswith(('.jpg', '.jpeg', '.png', '.gif'))]
-    misc = [upload for upload in uploads if upload[2] == 'file' and upload not in videos + photos]
-
-    return render_template(
-        "uploads.html", 
-        links=links, 
-        videos=videos, 
-        photos=photos, 
-        misc=misc, 
-        username=session['username']
-    )
-
-@app.route('/download_link/<int:link_id>', methods=['GET'])
-@login_required
-def download_link(link_id):
-    upload = handle_download(link_id)
-
-    if upload and upload[2] == 'link':
-        link_content = upload[3]
-        x = 1
-        while os.path.exists(os.path.join(DOWNLOADS_DIRECTORY, f"link_{x}.txt")):
-            x += 1
-        filename = f"link_{x}.txt"
-        filepath = os.path.join(DOWNLOADS_DIRECTORY, filename)
-        with open(filepath, 'w') as f:
-            f.write(link_content)
-
-        response = send_from_directory(DOWNLOADS_DIRECTORY, filename, as_attachment=True)
-
-        handle_download(link_id, delete_only=True)
-        return response
-    return "Link Not found", 404
-
-@app.route('/download_all_links', methods=['GET'])
-@login_required
-def download_all_links():
-    links = [upload for upload in retrieve_uploads() if upload[2] == 'link']
-
-    if len(links) > 1:
-        current_date = datetime.now().strftime("%m-%d-%Y")
-        filename = f"links_{current_date}.txt"
-        
-        links_file_path = os.path.join(DOWNLOADS_DIRECTORY, filename)
-        with open(links_file_path, 'w') as f:
-            for link in links:
-                f.write(link[3] + "\n")
-
-        response = send_from_directory(DOWNLOADS_DIRECTORY, filename, as_attachment=True)
-        for link in links:
-            handle_download(link[0], delete_only=True)
-        return response
-    else:
-        return redirect(url_for('view_uploads'))
-
-@app.route('/download/<int:upload_id>', methods=['GET'])
-@login_required
-def download(upload_id):
-    upload = handle_download(upload_id)
-
-    if upload and upload[2] == 'file':
-        file_path = get_file_path(upload[3])
-        if not os.path.isfile(file_path):
-            return "File not found", 404
-        
-        response = send_from_directory(os.path.dirname(file_path), os.path.basename(file_path), as_attachment=True)
-        handle_download(upload_id, delete_only=True)
-        return response
-
-    return "The requested file does not exist or you do not have permission to access it.", 404
-
-@app.route('/delete_link/<int:link_id>', methods=['GET'])
-@login_required
-def delete_link(link_id):
-    handle_download(link_id, delete_only=True)
-    return redirect(url_for('view_uploads'))
-
-@app.route('/delete_file/<int:file_id>', methods=['GET'])
-@login_required
-def delete_file(file_id):
-    handle_download(file_id, delete_only=True)
-    return redirect(url_for('view_uploads'))
-
-if __name__ == '__main__':
-    app.run(host='0.0.0.0', port=5000, ssl_context='adhoc')
-

server/db_setup.py.bak

@@ -1,77 +0,0 @@
-# server/db_setup.py
-import sqlite3
-import hashlib
-from contextlib import closing
-
-DATABASE = 'transfer_service.db'
-
-def initialize_db():
-    with closing(sqlite3.connect(DATABASE)) as conn, conn, closing(conn.cursor()) as c:
-        # Create users table
-        c.execute('''
-            CREATE TABLE IF NOT EXISTS users (
-                id INTEGER PRIMARY KEY,
-                username TEXT UNIQUE NOT NULL,
-                password TEXT NOT NULL,
-                login_attempts INTEGER DEFAULT 0
-            )
-        ''')
-
-        # Create uploads table for storing links, files, and images
-        c.execute('''
-            CREATE TABLE IF NOT EXISTS uploads (
-                id INTEGER PRIMARY KEY,
-                uploader TEXT NOT NULL,
-                file_type TEXT NOT NULL,  -- 'link', 'file', or 'image'
-                content TEXT NOT NULL,    -- The actual link, filename, or file path
-                uploaded_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
-            )
-        ''')
-
-        conn.commit()
-
-def add_user(username, password):
-    hashed_password = hashlib.sha256(password.encode()).hexdigest()
-    try:
-        with closing(sqlite3.connect(DATABASE)) as conn, conn, closing(conn.cursor()) as c:
-            c.execute('INSERT INTO users (username, password) VALUES (?, ?)', (username, hashed_password))
-            conn.commit()
-            print(f"User '{username}' added successfully.")
-    except sqlite3.IntegrityError:
-        print(f"User '{username}' already exists.")
-
-def get_user(username):
-    with closing(sqlite3.connect(DATABASE)) as conn, closing(conn.cursor()) as c:
-        c.execute('SELECT username, password, login_attempts FROM users WHERE username = ?', (username,))
-        return c.fetchone()
-
-def reset_login_attempts(username):
-    with closing(sqlite3.connect(DATABASE)) as conn, conn, closing(conn.cursor()) as c:
-        c.execute('UPDATE users SET login_attempts = 0 WHERE username = ?', (username,))
-        conn.commit()
-
-def increment_login_attempts(username):
-    with closing(sqlite3.connect(DATABASE)) as conn, conn, closing(conn.cursor()) as c:
-        c.execute('UPDATE users SET login_attempts = login_attempts + 1 WHERE username = ?', (username,))
-        conn.commit()
-
-def add_upload(uploader, file_type, content):
-    with closing(sqlite3.connect(DATABASE)) as conn, conn, closing(conn.cursor()) as c:
-        c.execute('INSERT INTO uploads (uploader, file_type, content) VALUES (?, ?, ?)', (uploader, file_type, content))
-        conn.commit()
-
-def get_uploads():
-    with closing(sqlite3.connect(DATABASE)) as conn, closing(conn.cursor()) as c:
-        c.execute('SELECT id, uploader, file_type, content FROM uploads')
-        return c.fetchall()
-
-def delete_upload(upload_id):
-    with closing(sqlite3.connect(DATABASE)) as conn, conn, closing(conn.cursor()) as c:
-        c.execute('DELETE FROM uploads WHERE id = ?', (upload_id,))
-        conn.commit()
-
-if __name__ == '__main__':
-    initialize_db()
-    # Example of initializing users (only run manually)
-#    add_user('iphone_user', 'your_secure_password')
-#    add_user('laptop_user', 'your_secure_password')