Skip to content

Perfectly organized worker.py into 8 files total #17

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
Shrey1006 wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Perfectly organized worker.py into 8 files total #17

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
87bfd48
Perfectly organized worker.py and other files
Shrey1006 Mar 24, 2026
58ac310
More split
Shrey1006 Mar 24, 2026
5bcb55c
resolving conversation
Shrey1006 Mar 26, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
430 changes: 430 additions & 0 deletions src/api_activities.py
View file
Open in desktop

Large diffs are not rendered by default.

24 changes: 24 additions & 0 deletions src/api_admin.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
"""
Admin-only API handlers live here.
"""

from http_utils import is_basic_auth_valid, json_resp, unauthorized_basic

async def api_admin_table_counts(req, env):
if not is_basic_auth_valid(req, env):
return unauthorized_basic()

tables_res = await env.DB.prepare(
"SELECT name FROM sqlite_master WHERE type='table' AND name NOT LIKE 'sqlite_%' ORDER BY name"
).all()

counts = []
for row in tables_res.results or []:
table_name = row.name
# Table names come from sqlite_master and are quoted to avoid SQL injection.
count_row = await env.DB.prepare(
f'SELECT COUNT(*) AS cnt FROM "{table_name.replace(chr(34), chr(34) + chr(34))}"'
).first()
counts.append({"table": table_name, "count": count_row.cnt if count_row else 0})

return json_resp({"tables": counts})
106 changes: 106 additions & 0 deletions src/api_auth.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,106 @@
"""
Authentication-related API handlers live here.
"""

from http_utils import capture_exception, err, ok, parse_json_object
from security_utils import (
blind_index,
create_token,
decrypt,
encrypt,
hash_password,
new_id,
verify_password,
)

# ---------------------------------------------------------------------------
# API handlers
# ---------------------------------------------------------------------------

async def api_register(req, env):
body, bad_resp = await parse_json_object(req)
if bad_resp:
return bad_resp

username = (body.get("username") or "").strip()
email = (body.get("email") or "").strip()
password = (body.get("password") or "")
name = (body.get("name") or username).strip()

if not username or not email or not password:
return err("username, email, and password are required")
if len(password) < 8:
return err("Password must be at least 8 characters")

role = "member"

enc = env.ENCRYPTION_KEY
uid = new_id()
try:
await env.DB.prepare(
"INSERT INTO users "
"(id,username_hash,email_hash,name,username,email,password_hash,role)"
" VALUES (?,?,?,?,?,?,?,?)"
).bind(
uid,
blind_index(username, enc),
blind_index(email, enc),
encrypt(name, enc),
encrypt(username, enc),
encrypt(email, enc),
hash_password(password, username),
encrypt(role, enc),
).run()
except Exception as e:
if "UNIQUE" in str(e):
return err("Username or email already registered", 409)
capture_exception(e, req, env, "api_register.insert_user")
return err("Registration failed — please try again", 500)

token = create_token(uid, username, role, env.JWT_SECRET)
return ok(
{"token": token,
"user": {"id": uid, "username": username, "name": name, "role": role}},
"Registration successful",
)


async def api_login(req, env):
body, bad_resp = await parse_json_object(req)
if bad_resp:
return bad_resp

username = (body.get("username") or "").strip()
password = (body.get("password") or "")

if not username or not password:
return err("username and password are required")

enc = env.ENCRYPTION_KEY
u_hash = blind_index(username, enc)
row = await env.DB.prepare(
"SELECT id,password_hash,role,name,username FROM users WHERE username_hash=?"
).bind(u_hash).first()

if not row:
return err("Invalid username or password", 401)

password_hash = row.password_hash
user_id = row.id
role_enc = row.role
name_enc = row.name
username_enc = row.username
stored_username = decrypt(username_enc, enc)

if not verify_password(password, password_hash, stored_username):
return err("Invalid username or password", 401)

real_role = decrypt(role_enc, enc)
real_name = decrypt(name_enc, enc)
token = create_token(user_id, stored_username, real_role, env.JWT_SECRET)
return ok(
{"token": token,
"user": {"id": user_id, "username": stored_username,
"name": real_name, "role": real_role}},
"Login successful",
)
Loading