Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Small idea #142

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Small idea #142

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
3551dba
This?
elmobp Jul 21, 2021
585dc4b
Move it further out
elmobp Jul 21, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
42 changes: 37 additions & 5 deletions snappass/main.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,11 +1,12 @@
from hashlib import sha256
import os
import sys
import uuid

import redis

from cryptography.fernet import Fernet
from flask import abort, Flask, render_template, request
from flask import abort, Flask, redirect, render_template, request
from redis.exceptions import ConnectionError
from werkzeug.urls import url_quote_plus
from werkzeug.urls import url_unquote_plus
Expand Down Expand Up @@ -104,6 +105,23 @@ def set_password(password, ttl):
return token


@check_redis_alive
def create_alias(token):
"""
From a generated token return a sha256 hash to use for URL shorterning
"""
token_hash = sha256(token.encode('utf-8'))
redis_client.set(token_hash.hexdigest(), token)
return token_hash.hexdigest()

@check_redis_alive
def get_alias_token(token_hash):
encrypted_token = redis_client.get(token_hash)
if encrypted_token:
return str(encrypted_token.decode('utf-8'))
else:
return False

@check_redis_alive
def get_password(token):
"""
Expand All @@ -115,7 +133,8 @@ def get_password(token):
storage_key, decryption_key = parse_token(token)
password = redis_client.get(storage_key)
redis_client.delete(storage_key)

encoded_token = sha256(storage_key.encode('utf-8'))
redis_client.delete(encoded_token.hexdigest())
if password is not None:

if decryption_key is not None:
Expand Down Expand Up @@ -162,17 +181,30 @@ def index():
def handle_password():
ttl, password = clean_input()
token = set_password(password, ttl)

hash_token = create_alias(token)
if NO_SSL:
base_url = request.url_root
else:
base_url = request.url_root.replace("http://", "https://")
if URL_PREFIX:
base_url = base_url + URL_PREFIX.strip("/") + "/"
link = base_url + url_quote_plus(token)
link = base_url + "u/" + url_quote_plus(hash_token)
return render_template('confirm.html', password_link=link)


@app.route('/u/<hash_token>', methods=['GET'])
def get_hash_token(hash_token):
redirect_token = get_alias_token(hash_token)
if redirect_token:
if NO_SSL:
base_url = request.url_root
else:
base_url = request.url_root.replace("http://", "https://")
if URL_PREFIX:
base_url = base_url + URL_PREFIX.strip("/") + "/"
return redirect(base_url + redirect_token, code=302)
else:
abort(404)

@app.route('/<password_key>', methods=['GET'])
def preview_password(password_key):
password_key = url_unquote_plus(password_key)
Expand Down